¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Diag | g3n-h@ckm@n | Saachaa | 3.0416 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

~ ¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤ - Start 17:11:05

~ Update on 16/04/2013 | 10.40 by g3n-h@ckm@n
~ Evolution : http://www.security-helpzone.com/forum/Forum-Mises-%C3%A0-jour-Pre-Scan | http://sosvirus.org/viewforum.php?f=229
~ Pre_Script Infos : http://sosvirus.org/viewtopic.php?f=228&t=312 | http://www.security-helpzone.com/forum/Thread-Les-Switches
~ Pre_scan Feedbacks : http://sosvirus.org/viewforum.php?f=233 | http://www.security-helpzone.com/forum/Forum-Feedbacks-Pre-Scan

~ [Mareva (Administrator)] - [MAREVA-PC]
~ SID = S-1-5-21-626529243-327759216-3920316985-1000

~ System : Windows 7 Home Premium (64 bits) HomePremium 
~ SystemBiosVersion : ACRSYS - 6040000
Ver 1.00PARTTBL | SystemBiosDate : 11/02/10
~ ProcessorNameString : Intel(R) Pentium(R) CPU        P6200  @ 2.13GHz
~ Identifier : Intel64 Family 6 Model 37 Stepping 5


~ Mémory RAM = Total (KB) : 2871800 | Free (KB) : 1854600
~ Pagefile = Total (KB) : 5741700 | Free (KB) : 4496440
~ Virtual = Total (KB) : 4194180 | Free (KB) : 4038040

¤¤¤¤¤¤¤¤¤¤ | Drives

c:\ -> [Fixed] | [Packard Bell] | Total : 463840 Mo | Free : 400520 Mo -> NTFS

¤¤¤¤¤¤¤¤¤¤ | quarantined at reboot

Present at Reboot : C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}

¤¤¤¤¤¤¤¤¤¤ | MD5 Control

[MD5.33F65219BD4E23A554C257910C2730ED] - [23/04/2013 16:01:47] - [0.5 Ko] - C:\Pre_Scan\MBR.bin
[MD5.0862495E0C825893DB75EF44FAEA8E93] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.16768) -> C:\Windows\explorer.exe
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553.5 Ko] - (6.1.7600.16768) -> C:\Windows\SysWOW64\explorer.exe
[MD5.C235A51CB740E45FFA0EBFB9BAFCDA64] - [14/07/2009 01:56:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_ada998b9936d7566\explorer.exe
[MD5.F170B4A061C9E026437B193B4D571799] - [08/09/2010 04:34:48] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.16404) -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_adff19b5932d79ae\explorer.exe
[MD5.9AAAEC8DAC27AA17B053E6352AD233AE] - [08/09/2010 04:41:06] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.16450) -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_adc508f19359a007\explorer.exe
[MD5.0862495E0C825893DB75EF44FAEA8E93] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.16768) -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_adc24107935a7e25\explorer.exe
[MD5.700073016DAC1C3D2E7E2CE4223334B6] - [08/09/2010 04:34:48] - (.© Microsoft Corporation. - Explorateur Windows.) - [2801 Ko] - (6.1.7600.20500) -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_ae84b558ac4eb41c\explorer.exe
[MD5.B8EC4BD49CE8F6FC457721BFC210B67F] - [08/09/2010 04:41:06] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.20563) -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_ae46d6aeac7ca7c7\explorer.exe
[MD5.E38899074D4951D31B4040E994DD7C8D] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. - Explorateur Windows.) - [2803.5 Ko] - (6.1.7600.20910) -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_ae79ed04ac56c4a9\explorer.exe
[MD5.332FEAB1435662FC6C672E25BEB37BE3] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. - Explorateur Windows.) - [2804.5 Ko] - (6.1.7601.17567) -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe
[MD5.3B69712041F3D63605529BD66DC00C48] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. - Explorateur Windows.) - [2804.5 Ko] - (6.1.7601.21669) -> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe
[MD5.15BC38A7492BEFE831966ADB477CF76F] - [14/07/2009 01:41:14] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_b7fe430bc7ce3761\explorer.exe
[MD5.B95EEB0F4E5EFBF1038A35B3351CF047] - [08/09/2010 04:34:48] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.16404) -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_b853c407c78e3ba9\explorer.exe
[MD5.2626FC9755BE22F805D3CFA0CE3EE727] - [08/09/2010 04:41:06] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553 Ko] - (6.1.7600.16450) -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_b819b343c7ba6202\explorer.exe
[MD5.2AF58D15EDC06EC6FDACCE1F19482BBF] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553.5 Ko] - (6.1.7600.16768) -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16768_none_b816eb59c7bb4020\explorer.exe
[MD5.9FF6C4C91A3711C0A3B18F87B08B518D] - [08/09/2010 04:34:48] - (.© Microsoft Corporation. - Explorateur Windows.) - [2552 Ko] - (6.1.7600.20500) -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_b8d95faae0af7617\explorer.exe
[MD5.C76153C7ECA00FA852BB0C193378F917] - [08/09/2010 04:41:06] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553 Ko] - (6.1.7600.20563) -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_b89b8100e0dd69c2\explorer.exe
[MD5.255CF508D7CFB10E0794D6AC93280BD8] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. - Explorateur Windows.) - [2553.5 Ko] - (6.1.7600.20910) -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20910_none_b8ce9756e0b786a4\explorer.exe
[MD5.8B88EBBB05A0E56B7DCC708498C02B3E] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. - Explorateur Windows.) - [2555 Ko] - (6.1.7601.17567) -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe
[MD5.0FB9C74046656D1579A64660AD67B746] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. - Explorateur Windows.) - [2555 Ko] - (6.1.7601.21669) -> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe
[MD5.24ACB7E5BE595468E3B9AA488B9B4FCB] - [14/07/2009 01:19:46] - (.© Microsoft Corporation. - Applications Services et Contrôleur.) - [321 Ko] - (6.1.7600.16385) -> C:\Windows\System32\services.exe
[MD5.24ACB7E5BE595468E3B9AA488B9B4FCB] - [14/07/2009 01:19:46] - (.© Microsoft Corporation. - Applications Services et Contrôleur.) - [321 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
[MD5.6F8F1376A13114CC10C0E69274F5A4DE] - [14/07/2009 01:50:33] - (.© Microsoft Corporation. - Application d’ouverture de session Userinit.) - [29.5 Ko] - (6.1.7600.16385) -> C:\Windows\System32\userinit.exe
[MD5.6DE80F60D7DE9CE6B8C2DDFDF79EF175] - [14/07/2009 01:34:20] - (.© Microsoft Corporation. - Application d’ouverture de session Userinit.) - [25.5 Ko] - (6.1.7600.16385) -> C:\Windows\SysWOW64\userinit.exe
[MD5.6F8F1376A13114CC10C0E69274F5A4DE] - [14/07/2009 01:50:33] - (.© Microsoft Corporation. - Application d’ouverture de session Userinit.) - [29.5 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_381dabbceb60feb2\userinit.exe
[MD5.6DE80F60D7DE9CE6B8C2DDFDF79EF175] - [14/07/2009 01:34:20] - (.© Microsoft Corporation. - Application d’ouverture de session Userinit.) - [25.5 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - [14/07/2009 01:52:37] - (.© Microsoft Corporation. - Application de démarrage de Windows.) - [126 Ko] - (6.1.7600.16385) -> C:\Windows\System32\wininit.exe
[MD5.B5C5DCAD3899512020D135600129D665] - [14/07/2009 01:36:49] - (.© Microsoft Corporation. - Application de démarrage de Windows.) - [94 Ko] - (6.1.7600.16385) -> C:\Windows\SysWOW64\wininit.exe
[MD5.94355C28C1970635A31B3FE52EB7CEBA] - [14/07/2009 01:52:37] - (.© Microsoft Corporation. - Application de démarrage de Windows.) - [126 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_8ce7aa761e01ad49\wininit.exe
[MD5.B5C5DCAD3899512020D135600129D665] - [14/07/2009 01:36:49] - (.© Microsoft Corporation. - Application de démarrage de Windows.) - [94 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\x86_microsoft-windows-wininit_31bf3856ad364e35_6.1.7600.16385_none_30c90ef265a43c13\wininit.exe
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - [08/09/2010 04:41:06] - (.© Microsoft Corporation. - Application d’ouverture de session Windows.) - [380.5 Ko] - (6.1.7600.16447) -> C:\Windows\System32\winlogon.exe
[MD5.132328DF455B0028F13BF0ABEE51A63A] - [14/07/2009 01:52:48] - (.© Microsoft Corporation. - Application d’ouverture de session Windows.) - [380 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_cbb7f2bdeea2829c\winlogon.exe
[MD5.DA3E2A6FA9660CC75B471530CE88453A] - [08/09/2010 04:41:06] - (.© Microsoft Corporation. - Application d’ouverture de session Windows.) - [380.5 Ko] - (6.1.7600.16447) -> C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_cbe534e7ee8042ad\winlogon.exe
[MD5.A93D41A4D4B0D91C072D11DD8AF266DE] - [08/09/2010 04:41:06] - (.© Microsoft Corporation. - Application d’ouverture de session Windows.) - [380.5 Ko] - (6.1.7600.20560) -> C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_cc522fd507b468f8\winlogon.exe
[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - [16/02/2012 05:29:22] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487.5 Ko] - (6.1.7600.16937) -> C:\Windows\System32\drivers\afd.sys
[MD5.B9384E03479D2506BC924C16A3DB87BC] - [14/07/2009 01:21:44] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [488.5 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16385_none_33dd3439781e25f7\afd.sys
[MD5.6EF20DDF3172E97D69F596FB90602F29] - [17/06/2011 17:01:11] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [488 Ko] - (6.1.7600.16802) -> C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16802_none_3430bc3977dfec2d\afd.sys
[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - [16/02/2012 05:29:22] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487.5 Ko] - (6.1.7600.16937) -> C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.16937_none_34154fcd77f3bbda\afd.sys
[MD5.FBFF8B7C9D116229E9208A0D1CAEB49B] - [17/06/2011 17:01:11] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [488 Ko] - (6.1.7600.20951) -> C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.20951_none_3483491e9126fe55\afd.sys
[MD5.CCA39961E76B491DDF44B1E90FC8971D] - [16/02/2012 05:29:22] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487.5 Ko] - (6.1.7600.21115) -> C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7600.21115_none_34b263fe91032456\afd.sys
[MD5.D5B031C308A409A0A576BFF4CF083D30] - [17/06/2011 17:01:11] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487.5 Ko] - (6.1.7601.17603) -> C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17603_none_3618198975057170\afd.sys
[MD5.1C7857B62DE5994A75B054A9FD4C3825] - [16/02/2012 05:29:21] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487 Ko] - (6.1.7601.17752) -> C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.17752_none_35e10b89752ee0f5\afd.sys
[MD5.F4AD06143EAC303F55D0E86C40802976] - [17/06/2011 17:01:11] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [487.5 Ko] - (6.1.7601.21712) -> C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.21712_none_3695e61e8e2c13d4\afd.sys
[MD5.36A14FD1A23F57046361733B792CA8DB] - [16/02/2012 05:29:22] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [486.5 Ko] - (6.1.7601.21887) -> C:\Windows\winsxs\amd64_microsoft-windows-winsock-core_31bf3856ad364e35_6.1.7601.21887_none_364f3a028e605345\afd.sys
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - ATAPI IDE Miniport Driver.) - [23.56 Ko] - (6.1.7600.16385) -> C:\Windows\System32\drivers\atapi.sys
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - ATAPI IDE Miniport Driver.) - [23.56 Ko] - (6.1.7600.16385) -> C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_amd64_neutral_a69a58a4286f0b22\atapi.sys
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - ATAPI IDE Miniport Driver.) - [23.56 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_392d19c13b3ad543\atapi.sys
[MD5.ABBF174CB394F5C437410A788B7E404A] - [08/09/2010 05:01:56] - (.Copyright(C) Intel Corporation 1994-2010  - Intel Rapid Storage Technology driver - x64.) - [528.02 Ko] - (9.6.0.1014) -> C:\Windows\System32\drivers\iaStor.sys
[MD5.ABBF174CB394F5C437410A788B7E404A] - [08/09/2010 05:01:56] - (.Copyright(C) Intel Corporation 1994-2010  - Intel Rapid Storage Technology driver - x64.) - [528.02 Ko] - (9.6.0.1014) -> C:\Windows\System32\DriverStore\FileRepository\iaahci.inf_amd64_neutral_78ebae21a80aa2b4\iaStor.sys
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - [14/07/2009 01:19:54] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [144 Ko] - (6.1.7600.16385) -> C:\Windows\System32\drivers\cdrom.sys
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - [14/07/2009 01:19:54] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [144 Ko] - (6.1.7600.16385) -> C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_amd64_neutral_8363d00ecae4322d\cdrom.sys
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - [14/07/2009 01:19:54] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [144 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_bb9e4d89bd7870f1\cdrom.sys
[MD5.9162B273A44AB9DCE5B44362731D062A] - [14/07/2009 01:21:29] - (.© Microsoft Corporation. - MBT Transport driver.) - [253 Ko] - (6.1.7600.16385) -> C:\Windows\System32\drivers\netbt.sys
[MD5.9162B273A44AB9DCE5B44362731D062A] - [14/07/2009 01:21:29] - (.© Microsoft Corporation. - MBT Transport driver.) - [253 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_microsoft-windows-netbt_31bf3856ad364e35_6.1.7600.16385_none_bc59ba0910f52e0c\netbt.sys
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - [14/07/2009 01:21:15] - (.© Microsoft Corporation. - TDI Translation Driver.) - [97.5 Ko] - (6.1.7600.16385) -> C:\Windows\System32\drivers\tdx.sys
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - [14/07/2009 01:21:15] - (.© Microsoft Corporation. - TDI Translation Driver.) - [97.5 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_microsoft-windows-tdi-over-tcpip_31bf3856ad364e35_6.1.7600.16385_none_4632b9f2f5c6af5e\tdx.sys
[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - [12/12/2012 11:02:38] - (.© Microsoft Corporation. - Pilote de cliché instantané du volume.) - [288.86 Ko] - (6.1.7600.17122) -> C:\Windows\System32\drivers\volsnap.sys
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - [14/07/2009 01:20:09] - (.© Microsoft Corporation. - Volume Shadow Copy Driver.) - [288.08 Ko] - (6.1.7600.16385) -> C:\Windows\System32\DriverStore\FileRepository\volume.inf_amd64_neutral_1b1a512d99c5b72c\volsnap.sys
[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - [12/12/2012 11:02:38] - (.© Microsoft Corporation. - Volume Shadow Copy Driver.) - [288.86 Ko] - (6.1.7600.17122) -> C:\Windows\System32\DriverStore\FileRepository\volume.inf_amd64_neutral_2509122af013a38e\volsnap.sys
[MD5.58F82EED8CA24B461441F9C3E4F0BF5C] - [14/07/2009 01:20:09] - (.© Microsoft Corporation. - Volume Shadow Copy Driver.) - [288.08 Ko] - (6.1.7600.16385) -> C:\Windows\winsxs\amd64_volume.inf_31bf3856ad364e35_6.1.7600.16385_none_71aba92815c60174\volsnap.sys
[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - [12/12/2012 11:02:38] - (.© Microsoft Corporation. - Volume Shadow Copy Driver.) - [288.86 Ko] - (6.1.7600.17122) -> C:\Windows\winsxs\amd64_volume.inf_31bf3856ad364e35_6.1.7600.17122_none_71e96d3e15982d1c\volsnap.sys
[MD5.523E3C704BEE5326A502BA235D0938D6] - [12/12/2012 11:02:39] - (.© Microsoft Corporation. - Volume Shadow Copy Driver.) - [289.36 Ko] - (6.1.7600.21320) -> C:\Windows\winsxs\amd64_volume.inf_31bf3856ad364e35_6.1.7600.21320_none_72710b5b2eb7975f\volsnap.sys
[MD5.2C105439AA27DC150511D90F3B6B1EC5] - [14/03/2013 00:01:50] - (.© Microsoft Corporation. - IE ActiveX Interface Marshaling Library.) - [190 Ko] - (9.0.8112.16470) - C:\Program Files (x86)\Internet Explorer\ieproxy.dll

¤¤¤¤¤¤¤¤¤¤ | Run

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Adobe ARM] : "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[IObit Malware Fighter] : "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[avast] : "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui   
[HKLM\SOFTWARE\wow6432Node\Microsoft\Windows\CurrentVersion\Run]|[Adobe ARM] : "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"   
[HKLM\SOFTWARE\wow6432Node\Microsoft\Windows\CurrentVersion\Run]|[IObit Malware Fighter] : "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart   
[HKLM\SOFTWARE\wow6432Node\Microsoft\Windows\CurrentVersion\Run]|[avast] : "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui   
[HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Sidebar] : %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun  
[HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Sidebar] : %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun  
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Google Update] : "C:\Users\Mareva\AppData\Local\Google\Update\GoogleUpdate.exe" /c  
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[LightShot] : C:\Users\Mareva\AppData\Local\Skillbrains\lightshot\LightShot.exe Flags: uninsdeletevalue  
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[ares] : "C:\Program Files (x86)\Ares\Ares.exe" -h  
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Advanced SystemCare 6] : "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart  
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Advanced SystemCare 6] : "C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart  
[HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]|[mctadmin] : C:\Windows\System32\mctadmin.exe  [14/07/2009 01:54:49]
[HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]|[mctadmin] : C:\Windows\System32\mctadmin.exe  [14/07/2009 01:54:49]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]|[FlashPlayerUpdate] : C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10x_ActiveX.exe -update activex  

¤¤¤¤¤¤¤¤¤¤ | StartupReg | StartUpFolder 


¤¤¤¤¤¤¤¤¤¤ | Others 

[HKLM\System\CurrentControlSet\Control\SecurityProviders]|[SecurityProviders] : credssp.dll
[HKLM\System\CurrentControlSet\Control\Terminal Server]|[AllowRemoteRPC] : 0
[HKLM\System\CurrentControlSet\Control\Session Manager]|[BootExecute] : autocheck autochk *
[HKLM\System\ControlSet001\Control\Session Manager]|[SetupExecute] : 
[HKLM\System\ControlSet001\Control]|[FirmwareBootDevice] : multi(0)disk(0)rdisk(0)partition(2)
[HKLM\System\ControlSet001\Control]|[SystemBootDevice] : multi(0)disk(0)rdisk(0)partition(3)
[HKLM\System\currentcontrolset\control\lsa]|[SecureBoot] : 1
[HKLM\system\currentcontrolset\control\lsa]|[restrictanonymous] : 0
[HKLM\system\currentcontrolset\control\lsa]|[restrictanonymoussam] : 1
[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]|[VMApplet] : SystemPropertiesPerformance.exe /pagefile
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon]|[VMApplet] : SystemPropertiesPerformance.exe /pagefile

¤¤¤¤¤¤¤¤¤¤ | Notify 


¤¤¤¤¤¤¤¤¤¤ | SSODL 

[HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]|[WebCheck] - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}   
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]|[WebCheck] - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}   

¤¤¤¤¤¤¤¤¤¤ | ShellExecuteHooks 


¤¤¤¤¤¤¤¤¤¤ | URLSearchHooks


¤¤¤¤¤¤¤¤¤¤ | Explorer Bars


¤¤¤¤¤¤¤¤¤¤ | IE extensions 

[HKLM\Software\Microsoft\Internet Explorer\Extensions\{219C3416-8CB2-491a-A3C7-D9FCDDC9D600}] :    
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions\{219C3416-8CB2-491a-A3C7-D9FCDDC9D600}] :    

¤¤¤¤¤¤¤¤¤¤ | Toolbar

[HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar]|[Locked] : 0   
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar]|[{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] :     : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar]|[Locked] : 0   
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]|[Locked] : 0   
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]|[{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] :     : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

¤¤¤¤¤¤¤¤¤¤ | SharedTaskScheduler


¤¤¤¤¤¤¤¤¤¤ | SearchScopes

[HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] - (Bing) - http://www.bing.com/search?q={searchTerms}&form=APBTDF&pc=MAPB&src=IE-SearchBox
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] - () - 
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{814C76CB-2623-43F4-AAD0-58A0E5190A20}] - (Orange) - http://rws.search.ke.voila.fr/RW/S/opensearch_orange?rdata={searchTerms}
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] - (Bing) - http://www.bing.com/search?q={searchTerms}&form=APBTDF&pc=MAPB&src=IE-SearchBox
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] - (@ieframe.dll,-12512) - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}] - (@ieframe.dll,-12512) - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

¤¤¤¤¤¤¤¤¤¤ | ElevationPolicy

[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0002df01-0000-0000-c000-000000000046}] - (iexplore.exe) - C:\Program Files (x86)\Internet Explorer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{003B91A6-61E3-4591-891D-01E94C8CB11E}] - (Silverlight.Configuration.exe) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{054aae20-4bea-4347-8a35-64a533254a9d}] - (tabtip.exe) - C:\Program Files (x86)\Common Files\Microsoft Shared\Ink
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a}] - (wpcer.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08E8D305-8D6D-49fe-8603-03A926E46AE0}] - (Adobe_Updater.exe) - C:\Program Files (x86)\Common Files\Adobe\Updater6
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08f24d68-9087-4b24-81ad-7b34af3e3ed5}] - (Acrobat Elements.exe) - C:\Program Files (x86)\adobe\acrobat 6.0\Acrobat Elements
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08FF730A-494F-4cba-AA0B-E4F1D44715F9}] - (symerr.exe) - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695}] - (winfxdocobj.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1138506a-b949-46a7-b6c0-ee26499fdeaf}] - (wuapp.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{130c40f0-1bcb-4852-8b63-291cf90a600b}] - (msdt.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15B3FB63-66F4-4EFC-B717-BB283B85E79B}] - (AcroBroker.exe) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{186e0934-aee9-11da-961b-0014223d2a70}] - (dfsvc.exe) - C:\Windows\microsoft.net\framework\v2.0.50727
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1ec76a37-1762-46ff-9b14-765b3e6793be}] - (agcp.exe) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1F1E561D-AF17-4510-B996-351BBA0862A7}] - () - 
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2391d819-9d17-44ec-9ac1-f6aa07549469}] - (wermgr.exe) - %systemroot%\system32
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{26fe7361-bd5a-4dcb-b309-c6f42dde661c}] - (ieinstal.exe) - C:\Program Files (x86)\Internet Explorer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{358E6F10-DE8A-4602-8424-179CA217F8EE}] - (AcroRd32Info.exe) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{380689D0-AFAA-47E6-B80E-A33436FE314B}] - (wlcomm.exe) - C:\Program Files (x86)\Windows Live\Contacts\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3842AB2A-D4CF-4093-A5F5-9B10A0F7C3F1}] - (ToolbarHelper.exe) - C:\Program Files (x86)\Orange\ToolbarFR
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{39A895E9-93DD-4ffa-A4A3-2C14608B5B61}] - (SwHelper_1200112.exe) - C:\Windows\SysWOW64\Adobe\Shockwave 12
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43ABBB95-C0E9-497B-8BB9-B5FA08861705}] - (wlmail.exe) - C:\Program Files (x86)\Windows Live\Mail\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4becf16c-74f0-429b-8d3e-4fba507ac661}] - (acrord32.exe) - C:\Program Files (x86)\adobe\acrobat 7.0\reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5852F5ED-8BF4-11D4-A245-0080C6F74284}] - () - 
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68934FDE-CDB1-42CC-A38B-A44B43B0785C}] - (SWDNLD.EXE) - C:\Windows\SysWOW64\Adobe\Director
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}] - (wmplayer.exe) - %ProgramFiles%\Windows Media Player : %SystemRoot%\system32\wmp.dll
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}-32] - (wmplayer.exe) - %ProgramFiles(x86)%\Windows Media Player
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999}] - (iedw.exe) - C:\Program Files (x86)\Internet Explorer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{76E2369A-75BA-41F9-8B9E-16059E5CF9A6}] - (AdobeARM.exe) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{78c7b664-c9bf-4ce9-8b3a-b05d442e451e}] - (CertEnrollCtrl.exe) - C:\Windows\SysWOW64\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7aaae723-5fb5-4b2d-9327-75519f336825}] - () - 
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7eb01fb2-f185-445a-94e4-ec4e1ba2202c}] - (verclsid.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85fc331e-bb64-4c53-ba25-3d8a956c02fd}] - (ctfmon.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A3F93B7-D0CD-4430-82BF-D831EB58878E}] - (ToolbarHelper.exe) - C:\Program Files (x86)\Orange\ToolbarFR
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8cec58ae-07a1-11d9-b15e-000d56bfe6ee}] - (helppane.exe) - C:\Windows
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E1F80F4-953F-41E7-8460-E64AE5BE4ED3}] - (AdobeCollabSync.exe) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9019d14b-638d-4383-bb95-441b7f57eafb}] - (wlstartup.exe) - C:\Program Files (x86)\Windows Live\Installer\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95a4104c-1c49-4c2a-9830-1be0f47e926c}] - (acrobat.exe) - C:\Program Files (x86)\adobe\acrobat 7.0\Acrobat
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C6A861C-B233-4994-AFB1-C158EE4FC578}] - (AcroRd32.exe) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9da1d2cb-796d-4bec-bbaa-0aa9ccd80e15}] - (Acrobat Elements.exe) - C:\Program Files (x86)\adobe\acrobat 7.0\Acrobat Elements
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a1ad1bbb-3b33-4260-a74c-5fd8bc1479fc}] - (splwow64.exe) - C:\Windows
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2397324-4D73-4870-A795-995C56F49FBD}] - (arh.exe) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a5a2d52a-4944-47c4-a3e0-8bd92e14d953}] - (xpsviewer.exe) - C:\Windows\SysWOW64\xpsviewer
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AAD4AE2E-D834-46D4-8B09-490FAC9C722B}] - () - 
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{aff735eb-cdf9-4894-aa69-3e3131128618}] - (cmd.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01}] - (TSWbPrxy.exe) - %systemroot%\system32
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BD18A03F-31CC-4CC0-B52D-9E199122923D}] - () - 
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}] - (GoogleUpdateBroker.exe) - C:\Program Files (x86)\Google\Update\1.3.21.135 : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55}] - (GoogleUpdate.exe) - C:\Program Files (x86)\Google\Update : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C8999AEC-AECE-4E27-9BCB-5358B13F9FF9}] - (dfsvc.exe) - C:\Windows\Microsoft.NET\Framework\v4.0.30319\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C8999AED-AECE-4E27-9BCB-5358B13F9FF9}] - (dfsvc.exe) - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D133B285-8A43-4EC7-93BE-9B909C2370F5}] - (msnmsgr.exe) - C:\Program Files (x86)\Windows Live\Messenger\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d8a5d001-3352-40db-9d1c-ed46683193b5}] - (WindowsLiveWriter.exe) - C:\Program Files (x86)\Windows Live\Writer\
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DB9524B3-24F4-48fa-91C5-B8EEF1C0A14F}] - () - 
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{dc6bf185-7ae4-444e-8c35-e447b0d2bd1e}] - (notepad.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DE939062-7FA0-4030-9E4F-283C392D32AB}] - (dtuser.exe) - C:\PROGRA~2\SEARCH~1\Datamngr\SRTOOL~1
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e5f90a07-7db7-4dcb-bd6d-d3fecd376ca3}] - (acrord32.exe) - C:\Program Files (x86)\adobe\acrobat 6.0\reader
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{eee261cc-4b3e-46e7-affb-61f297155bf2}] - (presentationhost.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FAF199D2-BFA7-4394-A4DE-044A08E59B32}] - (FlashUtil32_11_7_700_182_ActiveX.exe) - C:\Windows\SysWOW64\Macromed\Flash
[HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{fb9e068b-c612-4fa8-bdb9-d728a716a420}] - (acrobat.exe) - C:\Program Files (x86)\adobe\acrobat 6.0\Acrobat
[HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458}] - (wtapp_ProtocolHandler.exe) - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration
[HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458}] - (wtapp_ProtocolHandler.exe) - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458}] - (wtapp_ProtocolHandler.exe) - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}] - () - 
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{89A405EB-CFA8-4376-9B68-AD0D6DCEF426}] - (ToolbarHelper.exe) - C:\Program Files (x86)\Orange\ToolbarFR\
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}] - (GoogleUpdateOnDemand.exe) - C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55}] - (GoogleUpdate.exe) - C:\Users\Mareva\AppData\Local\Google\Update
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E0A900DF-9611-4446-86BD-4B1D47E7DB2A}] - (chrome_launcher.exe) - C:\Users\Mareva\AppData\Local\Google\Chrome\Application\14.0.835.202
[HKU\S-1-5-21-626529243-327759216-3920316985-1000_Classes\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458}] - (wtapp_ProtocolHandler.exe) - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration
[HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458}] - (wtapp_ProtocolHandler.exe) - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0002df01-0000-0000-c000-000000000046}] - (iexplore.exe) - C:\Program Files (x86)\Internet Explorer
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{003B91A6-61E3-4591-891D-01E94C8CB11E}] - (Silverlight.Configuration.exe) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{054aae20-4bea-4347-8a35-64a533254a9d}] - (tabtip.exe) - C:\Program Files (x86)\Common Files\Microsoft Shared\Ink
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a}] - (wpcer.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08E8D305-8D6D-49fe-8603-03A926E46AE0}] - (Adobe_Updater.exe) - C:\Program Files (x86)\Common Files\Adobe\Updater6
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08f24d68-9087-4b24-81ad-7b34af3e3ed5}] - (Acrobat Elements.exe) - C:\Program Files (x86)\adobe\acrobat 6.0\Acrobat Elements
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08FF730A-494F-4cba-AA0B-E4F1D44715F9}] - (symerr.exe) - C:\Program Files (x86)\Norton Internet Security\Engine\19.1.0.28
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695}] - (winfxdocobj.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1138506a-b949-46a7-b6c0-ee26499fdeaf}] - (wuapp.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{130c40f0-1bcb-4852-8b63-291cf90a600b}] - (msdt.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15B3FB63-66F4-4EFC-B717-BB283B85E79B}] - (AcroBroker.exe) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{186e0934-aee9-11da-961b-0014223d2a70}] - (dfsvc.exe) - C:\Windows\microsoft.net\framework\v2.0.50727
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1ec76a37-1762-46ff-9b14-765b3e6793be}] - (agcp.exe) - c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1F1E561D-AF17-4510-B996-351BBA0862A7}] - () - 
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2391d819-9d17-44ec-9ac1-f6aa07549469}] - (wermgr.exe) - %systemroot%\system32
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{26fe7361-bd5a-4dcb-b309-c6f42dde661c}] - (ieinstal.exe) - C:\Program Files (x86)\Internet Explorer
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{358E6F10-DE8A-4602-8424-179CA217F8EE}] - (AcroRd32Info.exe) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{380689D0-AFAA-47E6-B80E-A33436FE314B}] - (wlcomm.exe) - C:\Program Files (x86)\Windows Live\Contacts\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3842AB2A-D4CF-4093-A5F5-9B10A0F7C3F1}] - (ToolbarHelper.exe) - C:\Program Files (x86)\Orange\ToolbarFR
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{39A895E9-93DD-4ffa-A4A3-2C14608B5B61}] - (SwHelper_1200112.exe) - C:\Windows\SysWOW64\Adobe\Shockwave 12
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43ABBB95-C0E9-497B-8BB9-B5FA08861705}] - (wlmail.exe) - C:\Program Files (x86)\Windows Live\Mail\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4becf16c-74f0-429b-8d3e-4fba507ac661}] - (acrord32.exe) - C:\Program Files (x86)\adobe\acrobat 7.0\reader
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5852F5ED-8BF4-11D4-A245-0080C6F74284}] - () - 
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68934FDE-CDB1-42CC-A38B-A44B43B0785C}] - (SWDNLD.EXE) - C:\Windows\SysWOW64\Adobe\Director
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}] - (wmplayer.exe) - %ProgramFiles%\Windows Media Player : %SystemRoot%\system32\wmp.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}-32] - (wmplayer.exe) - %ProgramFiles(x86)%\Windows Media Player
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999}] - (iedw.exe) - C:\Program Files (x86)\Internet Explorer
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{76E2369A-75BA-41F9-8B9E-16059E5CF9A6}] - (AdobeARM.exe) - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{78c7b664-c9bf-4ce9-8b3a-b05d442e451e}] - (CertEnrollCtrl.exe) - C:\Windows\SysWOW64\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7aaae723-5fb5-4b2d-9327-75519f336825}] - () - 
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7eb01fb2-f185-445a-94e4-ec4e1ba2202c}] - (verclsid.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85fc331e-bb64-4c53-ba25-3d8a956c02fd}] - (ctfmon.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8A3F93B7-D0CD-4430-82BF-D831EB58878E}] - (ToolbarHelper.exe) - C:\Program Files (x86)\Orange\ToolbarFR
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8cec58ae-07a1-11d9-b15e-000d56bfe6ee}] - (helppane.exe) - C:\Windows
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E1F80F4-953F-41E7-8460-E64AE5BE4ED3}] - (AdobeCollabSync.exe) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9019d14b-638d-4383-bb95-441b7f57eafb}] - (wlstartup.exe) - C:\Program Files (x86)\Windows Live\Installer\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95a4104c-1c49-4c2a-9830-1be0f47e926c}] - (acrobat.exe) - C:\Program Files (x86)\adobe\acrobat 7.0\Acrobat
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C6A861C-B233-4994-AFB1-C158EE4FC578}] - (AcroRd32.exe) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9da1d2cb-796d-4bec-bbaa-0aa9ccd80e15}] - (Acrobat Elements.exe) - C:\Program Files (x86)\adobe\acrobat 7.0\Acrobat Elements
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a1ad1bbb-3b33-4260-a74c-5fd8bc1479fc}] - (splwow64.exe) - C:\Windows
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2397324-4D73-4870-A795-995C56F49FBD}] - (arh.exe) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a5a2d52a-4944-47c4-a3e0-8bd92e14d953}] - (xpsviewer.exe) - C:\Windows\SysWOW64\xpsviewer
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AAD4AE2E-D834-46D4-8B09-490FAC9C722B}] - () - 
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{aff735eb-cdf9-4894-aa69-3e3131128618}] - (cmd.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01}] - (TSWbPrxy.exe) - %systemroot%\system32
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BD18A03F-31CC-4CC0-B52D-9E199122923D}] - () - 
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}] - (GoogleUpdateBroker.exe) - C:\Program Files (x86)\Google\Update\1.3.21.135 : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C442AC41-9200-4770-8CC0-7CDB4F245C55}] - (GoogleUpdate.exe) - C:\Program Files (x86)\Google\Update : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C8999AEC-AECE-4E27-9BCB-5358B13F9FF9}] - (dfsvc.exe) - C:\Windows\Microsoft.NET\Framework\v4.0.30319\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C8999AED-AECE-4E27-9BCB-5358B13F9FF9}] - (dfsvc.exe) - C:\Windows\Microsoft.NET\Framework64\v4.0.30319\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D133B285-8A43-4EC7-93BE-9B909C2370F5}] - (msnmsgr.exe) - C:\Program Files (x86)\Windows Live\Messenger\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d8a5d001-3352-40db-9d1c-ed46683193b5}] - (WindowsLiveWriter.exe) - C:\Program Files (x86)\Windows Live\Writer\
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DB9524B3-24F4-48fa-91C5-B8EEF1C0A14F}] - () - 
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{dc6bf185-7ae4-444e-8c35-e447b0d2bd1e}] - (notepad.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DE939062-7FA0-4030-9E4F-283C392D32AB}] - (dtuser.exe) - C:\PROGRA~2\SEARCH~1\Datamngr\SRTOOL~1
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e5f90a07-7db7-4dcb-bd6d-d3fecd376ca3}] - (acrord32.exe) - C:\Program Files (x86)\adobe\acrobat 6.0\reader
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{eee261cc-4b3e-46e7-affb-61f297155bf2}] - (presentationhost.exe) - C:\Windows\SysWOW64
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{FAF199D2-BFA7-4394-A4DE-044A08E59B32}] - (FlashUtil32_11_7_700_182_ActiveX.exe) - C:\Windows\SysWOW64\Macromed\Flash
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{fb9e068b-c612-4fa8-bdb9-d728a716a420}] - (acrobat.exe) - C:\Program Files (x86)\adobe\acrobat 6.0\Acrobat

¤¤¤¤¤¤¤¤¤¤ | Ext\Settings

[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{86D596EF-DE80-4458-9AAE-3E75C75D8127}]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}] : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{9030D464-4C02-4ABF-8ECC-5164760863C6}] : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4b90-AC6A-D3874F591014},]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{D27CDB6E-AE6D-11CF-96B8-444553540000}] : C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_7_700_182.ocx
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00CBB66B-1D3B-46D3-9577-323A336ACB50}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1D970ED5-3EDA-438D-BFFD-715931E2775B}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{2318C2B1-4965-11D4-9B18-009027A5CD4F}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{86D596EF-DE80-4458-9AAE-3E75C75D8127}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}] : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{9030D464-4C02-4ABF-8ECC-5164760863C6}] : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{963B125B-8B21-49A2-A3A8-E37092276531}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{AA58ED58-01DD-4D91-8333-CF10577473F7}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{C9A6357B-25CC-4BCF-96C1-78736985D412}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{D27CDB6E-AE6D-11CF-96B8-444553540000}] : C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_7_700_182.ocx
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435B-BC74-9C25C1C588A9}]

¤¤¤¤¤¤¤¤¤¤ | Ext\Stats

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}] : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C442AC41-9200-4770-8CC0-7CDB4F245C55}] : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25336920-03F9-11CF-8FD0-00AA00686F13}] : C:\Windows\SysWOW64\mshtml.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2933BF90-7B36-11D2-B20E-00C04F983E60}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{318A227B-5E9F-45BD-8999-7F8F10CA4CF5}]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}] : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9030D464-4C02-4ABF-8ECC-5164760863C6}] : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}] : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C442AC41-9200-4770-8CC0-7CDB4F245C55}] : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}] : C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_7_700_182.ocx
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{DFEAF541-F3E1-4C24-ACAC-99C30715084A}] : c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{ED8C108E-4349-11D2-91A4-00C04F7969E8}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F5078F32-C551-11D3-89B9-0000F81FE221}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F6D90F11-9C73-11D3-B32E-00C04F990BB4}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{000F18F2-09EB-4A59-82B2-5AE4184C39C3}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00CBB66B-1D3B-46D3-9577-323A336ACB50}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110011341191}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{25336920-03F9-11CF-8FD0-00AA00686F13}] : C:\Windows\SysWOW64\mshtml.dll
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2933BF90-7B36-11D2-B20E-00C04F983E60}] : %SystemRoot%\System32\msxml3.dll
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8856F961-340A-11D0-A96B-00C04FD705A2}] : C:\Windows\SysWOW64\ieframe.dll
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8E5E2654-AD2D-48BF-AC2D-D17F00898D06}] : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9030D464-4C02-4ABF-8ECC-5164760863C6}] : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9E131A93-EED7-4BEB-B015-A0ADB30B5646}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C9A6357B-25CC-4BCF-96C1-78736985D412}]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{D27CDB6E-AE6D-11CF-96B8-444553540000}] : C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_7_700_182.ocx
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435B-BC74-9C25C1C588A9}]
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Stats\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}] : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\Stats\{C442AC41-9200-4770-8CC0-7CDB4F245C55}] : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll

¤¤¤¤¤¤¤¤¤¤ | Browser Helper Objects

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] -> (Adobe PDF Link Helper) : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll  [23/09/2012 20:43:36]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1d970ed5-3eda-438d-bffd-715931e2775b}] -> () :   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] -> (avast! WebRep) : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll  [23/04/2013 15:20:16]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] -> (Programme d'aide de l'Assistant de connexion Windows Live ID) : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll  [28/03/2011 20:35:06]
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] -> (Adobe PDF Link Helper) : C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll  [23/09/2012 20:43:36]
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1d970ed5-3eda-438d-bffd-715931e2775b}] -> () :   
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] -> (avast! WebRep) : C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll  [23/04/2013 15:20:16]
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] -> (Programme d'aide de l'Assistant de connexion Windows Live ID) : C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll  [28/03/2011 20:35:06]

¤¤¤¤¤¤¤¤¤¤ | Firefox

C:\Users\Mareva\AppData\Roaming\Mozilla\Firefox\Profiles\vd7ug0ce.default\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
C:\Users\Mareva\AppData\Roaming\Mozilla\Firefox\Profiles\vd7ug0ce.default\extensions\{377e5d4d-77e5-476a-8716-7e70a9272da0}
C:\Users\Mareva\AppData\Roaming\Mozilla\Firefox\Profiles\vd7ug0ce.default\extensions\{4D9AE42B-F4C0-40e6-AEDB-4EC6E42B77AF}
C:\Users\Mareva\AppData\Roaming\Mozilla\Firefox\Profiles\vd7ug0ce.default\extensions\{B3834E60-12A8-11E0-A289-939FDFD72085}
C:\Users\Mareva\AppData\Roaming\Mozilla\Firefox\Profiles\vd7ug0ce.default\searchplugins\orange.xml
C:\Program Files (x86)\Mozilla Firefox\extensions\toolbar@iadah.com
C:\Program Files (x86)\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
C:\Program Files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}
C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}
C:\Program Files (x86)\Mozilla Firefox\searchplugins\amazondotcom.xml
C:\Program Files (x86)\Mozilla Firefox\searchplugins\bing.xml
C:\Program Files (x86)\Mozilla Firefox\searchplugins\eBay.xml
C:\Program Files (x86)\Mozilla Firefox\searchplugins\google.xml
C:\Program Files (x86)\Mozilla Firefox\searchplugins\twitter.xml
C:\Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia.xml
C:\Program Files (x86)\Mozilla Firefox\searchplugins\yahoo.xml

[HKLM\Software\mozilla\Firefox\Extensions]|[wrc@avast.com]
[HKLM\Software\wow6432Node\mozilla\Firefox\Extensions]|[wrc@avast.com]
[HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer] - (Adobe® Flash® Player 11.7.700.182 Plugin) : C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_182.dll
[HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer] - (Adobe Shockwave Player) : C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll
[HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] - (Picasa3 plugin) : C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2] - (Java™ Deployment Toolkit) : C:\Windows\SysWOW64\npDeployJava1.dll
[HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE] - () : disabled
[HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] - (Ag Player Plugin) : c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] - (WLPG Install MIME type) : C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513] - (WLPG Install MIME type) : C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308] - (WLPG Install MIME type) : C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3] - (Google Update) : C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9] - (Google Update) : C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.4] - (VLC Multimedia Plugin) : C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0] - (WildTangent Games App Presence Detector Plugin) : C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll
[HKLM\Software\MozillaPlugins\Adobe Reader] - (Handles PDFs in-place in Firefox) : C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] - (Adobe® Flash® Player 11.7.700.182 Plugin) : C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_182.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer] - (Adobe Shockwave Player) : C:\Windows\SysWOW64\Adobe\Director\np32dsw_1200112.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] - (Picasa3 plugin) : C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.17.2] - (Java™ Deployment Toolkit) : C:\Windows\SysWOW64\npDeployJava1.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@microsoft.com/GENUINE] - () : disabled
[HKLM\Software\wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] - (Ag Player Plugin) : c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922] - (WLPG Install MIME type) : C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513] - (WLPG Install MIME type) : C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308] - (WLPG Install MIME type) : C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3] - (Google Update) : C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9] - (Google Update) : C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.4] - (VLC Multimedia Plugin) : C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKLM\Software\wow6432Node\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0] - (WildTangent Games App Presence Detector Plugin) : C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll
[HKLM\Software\wow6432Node\MozillaPlugins\Adobe Reader] - (Handles PDFs in-place in Firefox) : C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\MozillaPlugins\@tools.google.com/Google Update;version=3] - (Google Update) : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\MozillaPlugins\@tools.google.com/Google Update;version=9] - (Google Update) : C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll

¤¤¤¤¤¤¤¤¤¤ | DNS

[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters]|[DhcpNameServer] : 192.168.1.1
[HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{ACACDD27-7A52-4B86-8E3F-B520241DE64D}]|[DhcpNameServer] : 192.51.104.23
[HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{DFF3639B-1C6A-4A11-A42B-5729A27436D9}]|[DhcpNameServer] : 192.168.1.1
[HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{DFF3639B-1C6A-4A11-A42B-5729A27436D9}]|[NameServer] : 8.8.8.8,8.8.4.4
[HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{ACACDD27-7A52-4B86-8E3F-B520241DE64D}]|[DhcpNameServer] : 192.51.104.23
[HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{DFF3639B-1C6A-4A11-A42B-5729A27436D9}]|[DhcpNameServer] : 192.168.1.1
[HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{DFF3639B-1C6A-4A11-A42B-5729A27436D9}]|[NameServer] : 8.8.8.8,8.8.4.4
[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{ACACDD27-7A52-4B86-8E3F-B520241DE64D}]|[DhcpNameServer] : 192.51.104.23
[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{DFF3639B-1C6A-4A11-A42B-5729A27436D9}]|[DhcpNameServer] : 192.168.1.1
[HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{DFF3639B-1C6A-4A11-A42B-5729A27436D9}]|[NameServer] : 8.8.8.8,8.8.4.4

¤¤¤¤¤¤¤¤¤¤ | ActiveX 

[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - (WMPACCESS) : 12,0,7600,16667
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] - (IEACCESS) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] - (BRANDING.CAB) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - () : 12,0,7600,16667
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] - (Theme Component) : 1,1,1,9
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{3af36230-a269-11d1-b5bf-0000f8051515}] - (MobilePk) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] - (MailNews) : 6,1,7600,16385
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}] - (DirectDrawEx) : 4,71,1113,0
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{45ea75a0-a269-11d1-b5bf-0000f8051515}] - (HelpCont) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{4f645220-306d-11d2-995d-00c04f98bbc9}] - (MSVBScript) : 5,6,0,8833
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}] - (GenSetup) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{630b1da0-b465-11d1-9948-00c04f98bbc9}] - (ExtraPack) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] - (Microsoft Windows Media Player) : 12,0,7600,16667
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}] - (MSN_Auth) : 4,9,9,2
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] - () : 6,1,7600,16684
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{7C028AF8-F614-47B3-82DA-BA94E41B1089}] - (.NETFramework) : 2,0,50727,0
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] - (IE4_SHELLID) : 6,1,7600,17038
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] - (BASEIE40_W2K) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] - (DOTNETFRAMEWORKS) : 
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{9381D8F2-0288-11D0-9501-00AA00B911A5}] - (Tridata) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD}] - (.NETFramework) : 2,0,50727,1
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{C9E9A340-D1F1-11D0-821E-444553540600}] - (Fontcore) : 9,0,8112,16421
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}] - (HTMLHelp) : 6,1,7601,16978
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}] - (ADSI) : 5,0,00,0
[HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}] - (.NETFramework) : 4,0,30319,0
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] - () : 9,0,8112,16421
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] - () : 9,0,8112,16421
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] - () : 1,1,1,9
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] - () : 6,1,7600,16385
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] - () : 12,0,7600,16667
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] - () : 6,1,7600,17038
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] - () : 9,0,8112,16421
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] - () : 
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - (WMPACCESS) : 12,0,7600,16667
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] - (IEACCESS) : 9,0,8112,16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] - (BRANDING.CAB) : 9,0,8112,16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - () : 12,0,7600,16667
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] - (Theme Component) : 1,1,1,9
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{3af36230-a269-11d1-b5bf-0000f8051515}] - (MobilePk) : 9,0,8112,16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] - (MailNews) : 6,1,7600,16385
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}] - (DirectDrawEx) : 4,71,1113,0
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{45ea75a0-a269-11d1-b5bf-0000f8051515}] - (HelpCont) : 9,0,8112,16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{4f645220-306d-11d2-995d-00c04f98bbc9}] - (MSVBScript) : 5,6,0,8833
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}] - (GenSetup) : 9,0,8112,16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{630b1da0-b465-11d1-9948-00c04f98bbc9}] - (ExtraPack) : 9,0,8112,16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] - (Microsoft Windows Media Player) : 12,0,7600,16667
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}] - (MSN_Auth) : 4,9,9,2
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] - () : 6,1,7600,16684
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{7C028AF8-F614-47B3-82DA-BA94E41B1089}] - (.NETFramework) : 2,0,50727,0
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] - (IE4_SHELLID) : 6,1,7600,17038
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] - (BASEIE40_W2K) : 9,0,8112,16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] - (DOTNETFRAMEWORKS) : 
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{9381D8F2-0288-11D0-9501-00AA00B911A5}] - (Tridata) : 9,0,8112,16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD}] - (.NETFramework) : 2,0,50727,1
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{C9E9A340-D1F1-11D0-821E-444553540600}] - (Fontcore) : 9,0,8112,16421
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}] - (HTMLHelp) : 6,1,7601,16978
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}] - (ADSI) : 5,0,00,0
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}] - (.NETFramework) : 4,0,30319,0
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] - () : 9,0,8112,16421
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] - () : 9,0,8112,16421
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] - () : 1,1,1,9
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] - () : 6,1,7600,16385
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] - () : 12,0,7600,16667
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] - () : 6,1,7600,17038
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] - () : 9,0,8112,16421
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] - () : 


¤¤¤¤¤¤¤¤¤¤ | HKCR\Applications

[HKCR\Applications\ehshell.exe\Shell\open\command] : "C:\Windows\eHome\ehshell.exe" "%1"
[HKCR\Applications\iexplore.exe\Shell\open\command] : "C:\Program Files (x86)\Internet Explorer\iexplore.exe" %1
[HKCR\Applications\MovieMaker.exe\Shell\open\command] : "C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe" "%1"
[HKCR\Applications\NeroExpress.exe\Shell\open\command] : "c:\Program Files (x86)\Nero\Nero 9\Nero Express\NeroExpress.exe" "%1"
[HKCR\Applications\NeroStartSmart.exe\Shell\open\command] : "c:\Program Files (x86)\Nero\Nero 9\Nero StartSmart\NeroStartSmart.exe" "%1"
[HKCR\Applications\notepad.exe\Shell\open\command] : %SystemRoot%\system32\NOTEPAD.EXE %1
[HKCR\Applications\photofiltre.exe\Shell\open\command] : "C:\Program Files (x86)\PhotoFiltre\photofiltre.exe" "%1"
[HKCR\Applications\PhotoshopElementsEditor.exe\Shell\open\command] : "c:\Program Files (x86)\Adobe\Photoshop Elements 8.0\PhotoshopElementsEditor.exe" "%1"
[HKCR\Applications\photoviewer.dll\Shell\open\command] : %SystemRoot%\System32\rundll32.exe "%ProgramFiles%\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
[HKCR\Applications\PicasaPhotoViewer.exe\Shell\open\command] : "C:\Program Files (x86)\Google\Picasa3\PicasaPhotoViewer.exe" "%1"
[HKCR\Applications\uTorrent.exe\Shell\open\command] : "C:\Program Files (x86)\uTorrent\uTorrent.exe" "%1"
[HKCR\Applications\vlc.exe\Shell\open\command] : "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file "%1"
[HKCR\Applications\wmplayer.exe\Shell\open\command] : "%ProgramFiles(x86)%\Windows Media Player\wmplayer.exe" /Open "%L"
[HKCR\Applications\wordpad.exe\Shell\open\command] : "%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE" "%1"

¤¤¤¤¤¤¤¤¤¤ | Svchost - Netsvcs

Term -  : 

¤¤¤¤¤¤¤¤¤¤ | Users | Software

[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Acer]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Adobe]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\ALWIL Software]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Analog Sync]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\AppDataLow]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\ArcSoft]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Ares]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\AVAST Software]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\BitTorrent]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\CEC_CM_SW]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Clients]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Cyberlink]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Dritek]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\eMule]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\FileHippo.com]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\g3n-h@ckm@n]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Google]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\ilividtoolbargaw]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\IM Providers]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\IMVU]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Intel]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\IObit]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\JavaSoft]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\kde.org]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Local AppWizard-Generated Applications]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Macromedia]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\MainConcept (Adobe2)]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\MainConcept (Nikon)]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Malwarebytes' Anti-Malware]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\mozilla]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\MozillaPlugins]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Netscape]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Nikon]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\OEM]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Orange]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\PhotoFiltre]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Piriform]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Policies]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Realtek]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Screenshoter]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Secunia]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\SkillBrains]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Skype]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Sonix]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Synaptics]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Track Settings]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Tremolo]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Trolltech]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Tuner]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\WildTangent]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Wow6432Node]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Classes]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Active Setup]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\ActiveMovie]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\AntiPhishing]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Assistance]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Avalon.Graphics]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Command Processor]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\CTF]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Direct3D]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\DirectInput]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Ease of Access]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\EventSystem]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Fax]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Feeds]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\FTP]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\GDIPlus]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\IAM]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\IdentityCRL]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Ieak]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\IME]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\IMEJP]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Installer]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Internet Connection Wizard]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Internet Explorer]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Java VM]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Keyboard]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\MediaPlayer]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\MM20]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\MobilePC]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\MPEG2Demultiplexer]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\MSF]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\MSN]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\MSNMessenger]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Multimedia]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Notepad]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\PeerNet]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Protected Storage System Provider]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\RAS AutoDial]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\RAS Phonebook]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Remote Assistance]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\SBE]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Search Assistant]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Search Enhancement Pack]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Shared Tools]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\SideShow]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Speech]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\SQMClient]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\SystemCertificates]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\TPG]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Tracing]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\UCCPlatform]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\WAB]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\wfs]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows Live]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows Live Contacts]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows Live Mail]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows Mail]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows Media]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows Photo Viewer]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows Script]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows Script Host]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows Search]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows Sidebar]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Wisp]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows\CurrentVersion]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows\DWM]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows\Shell]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows\ShellNoRoam]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows\TabletPC]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows\Windows Error Reporting]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\Accessibility]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\Devices]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\EFS]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\Font Management]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\ICM]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\MsiCorruptedFileRecovery]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\Network]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\PeerNet]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\PrinterPorts]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\TaskManager]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\Windows]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Wow6432Node\Microsoft]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Wow6432Node\Microsoft\Active Setup]
[HKU\S-1-5-21-626529243-327759216-3920316985-1000\Software\Wow6432Node\Microsoft\Internet Explorer]

¤¤¤¤¤¤¤¤¤¤ | Machine | Software

[HKLM\Software\Adobe]
[HKLM\Software\AdwCleaner]
[HKLM\Software\ALWIL Software]
[HKLM\Software\AppDataLow]
[HKLM\Software\ArcSoft]
[HKLM\Software\Audible]
[HKLM\Software\AVAST Software]
[HKLM\Software\Basic Synth]
[HKLM\Software\Bunndle]
[HKLM\Software\business-inkjet]
[HKLM\Software\Chicony Electronics Co.,Ltd.]
[HKLM\Software\CyberLink]
[HKLM\Software\Debug]
[HKLM\Software\DivXNetworks]
[HKLM\Software\Dritek]
[HKLM\Software\g3n-h@ckm@n]
[HKLM\Software\Google]
[HKLM\Software\Intel]
[HKLM\Software\IObit]
[HKLM\Software\JavaSoft]
[HKLM\Software\JreMetrics]
[HKLM\Software\LogMeIn Rescue]
[HKLM\Software\Macromedia]
[HKLM\Software\Malwarebytes' Anti-Malware]
[HKLM\Software\Microsoft]
[HKLM\Software\Mozilla]
[HKLM\Software\mozilla.org]
[HKLM\Software\MozillaPlugins]
[HKLM\Software\Nero]
[HKLM\Software\NewTech Infosystems]
[HKLM\Software\Nikon]
[HKLM\Software\ODBC]
[HKLM\Software\OEM]
[HKLM\Software\Orange]
[HKLM\Software\Packard Bell]
[HKLM\Software\Realtek]
[HKLM\Software\Realtek Semiconductor Corp.]
[HKLM\Software\Secunia]
[HKLM\Software\SkillBrains]
[HKLM\Software\Skype]
[HKLM\Software\Sonic]
[HKLM\Software\Symantec]
[HKLM\Software\VideoLAN]
[HKLM\Software\Vocals]
[HKLM\Software\webtogo]
[HKLM\Software\WildTangent]
[HKLM\Software\Windows]
[HKLM\Software\Woodwinds]
[HKLM\Software\Classes]
[HKLM\Software\Clients]
[HKLM\Software\Policies]
[HKLM\Software\RegisteredApplications]
[HKLM\Software\Microsoft\.NETFramework]
[HKLM\Software\Microsoft\Active Setup]
[HKLM\Software\Microsoft\ADs]
[HKLM\Software\Microsoft\Advanced INF Setup]
[HKLM\Software\Microsoft\ASP.NET]
[HKLM\Software\Microsoft\Assistance]
[HKLM\Software\Microsoft\AudioCompressionManager]
[HKLM\Software\Microsoft\Avalon.Graphics]
[HKLM\Software\Microsoft\BidInterface]
[HKLM\Software\Microsoft\Code Store Database]
[HKLM\Software\Microsoft\Command Processor]
[HKLM\Software\Microsoft\Cryptography]
[HKLM\Software\Microsoft\CTF]
[HKLM\Software\Microsoft\DataAccess]
[HKLM\Software\Microsoft\DataFactory]
[HKLM\Software\Microsoft\DevDiv]
[HKLM\Software\Microsoft\Direct3D]
[HKLM\Software\Microsoft\DirectDraw]
[HKLM\Software\Microsoft\DirectInput]
[HKLM\Software\Microsoft\DirectMusic]
[HKLM\Software\Microsoft\DirectPlay]
[HKLM\Software\Microsoft\DirectPlay8]
[HKLM\Software\Microsoft\DirectPlayNATHelp]
[HKLM\Software\Microsoft\DirectShow]
[HKLM\Software\Microsoft\DirectX]
[HKLM\Software\Microsoft\DownloadManager]
[HKLM\Software\Microsoft\DRM]
[HKLM\Software\Microsoft\DVR]
[HKLM\Software\Microsoft\Exchange]
[HKLM\Software\Microsoft\Fax]
[HKLM\Software\Microsoft\Feeds]
[HKLM\Software\Microsoft\FlashConfig]
[HKLM\Software\Microsoft\FTH]
[HKLM\Software\Microsoft\Function Discovery]
[HKLM\Software\Microsoft\Fusion]
[HKLM\Software\Microsoft\HTMLHelp]
[HKLM\Software\Microsoft\IdentityCRL]
[HKLM\Software\Microsoft\IdentityStore]
[HKLM\Software\Microsoft\IMAPI]
[HKLM\Software\Microsoft\IMEJP]
[HKLM\Software\Microsoft\IMEKR]
[HKLM\Software\Microsoft\IMETC]
[HKLM\Software\Microsoft\Internet Account Manager]
[HKLM\Software\Microsoft\Internet Domains]
[HKLM\Software\Microsoft\Internet Explorer]
[HKLM\Software\Microsoft\IsoBurn]
[HKLM\Software\Microsoft\Jet]
[HKLM\Software\Microsoft\MediaCenterPeripheral]
[HKLM\Software\Microsoft\MediaPlayer]
[HKLM\Software\Microsoft\MessengerService]
[HKLM\Software\Microsoft\Microsoft SQL Server Compact Edition]
[HKLM\Software\Microsoft\Migwiz]
[HKLM\Software\Microsoft\MMC]
[HKLM\Software\Microsoft\Mobile]
[HKLM\Software\Microsoft\MSBuild]
[HKLM\Software\Microsoft\MSDE]
[HKLM\Software\Microsoft\MSDTC]
[HKLM\Software\Microsoft\MSF]
[HKLM\Software\Microsoft\MSLicensing]
[HKLM\Software\Microsoft\MSN]
[HKLM\Software\Microsoft\MSN Apps]
[HKLM\Software\Microsoft\Multimedia]
[HKLM\Software\Microsoft\NapServer]
[HKLM\Software\Microsoft\NET Framework Setup]
[HKLM\Software\Microsoft\NetSh]
[HKLM\Software\Microsoft\Network]
[HKLM\Software\Microsoft\NetworkAccessProtection]
[HKLM\Software\Microsoft\Notepad]
[HKLM\Software\Microsoft\ODBC]
[HKLM\Software\Microsoft\Office]
[HKLM\Software\Microsoft\OfficeSoftwareProtectionPlatform]
[HKLM\Software\Microsoft\OnlineProviders]
[HKLM\Software\Microsoft\Outlook Express]
[HKLM\Software\Microsoft\PCHealth]
[HKLM\Software\Microsoft\PLA]
[HKLM\Software\Microsoft\PowerShell]
[HKLM\Software\Microsoft\Print]
[HKLM\Software\Microsoft\RADAR]
[HKLM\Software\Microsoft\Reliability Analysis]
[HKLM\Software\Microsoft\RendezvousApps]
[HKLM\Software\Microsoft\RFC1156Agent]
[HKLM\Software\Microsoft\SchedulingAgent]
[HKLM\Software\Microsoft\Security Center]
[HKLM\Software\Microsoft\Sensors]
[HKLM\Software\Microsoft\Shared Tools]
[HKLM\Software\Microsoft\Shared Tools Location]
[HKLM\Software\Microsoft\SideShow]
[HKLM\Software\Microsoft\Silverlight]
[HKLM\Software\Microsoft\Software]
[HKLM\Software\Microsoft\Speech]
[HKLM\Software\Microsoft\SQMClient]
[HKLM\Software\Microsoft\Sync Framework]
[HKLM\Software\Microsoft\TableTextService]
[HKLM\Software\Microsoft\TabletTip]
[HKLM\Software\Microsoft\Tcpip]
[HKLM\Software\Microsoft\Terminal Server Client]
[HKLM\Software\Microsoft\TIP Shared]
[HKLM\Software\Microsoft\TPG]
[HKLM\Software\Microsoft\Tpm]
[HKLM\Software\Microsoft\Tracing]
[HKLM\Software\Microsoft\TV System Services]
[HKLM\Software\Microsoft\uDRM]
[HKLM\Software\Microsoft\Updates]
[HKLM\Software\Microsoft\UPnP Device Host]
[HKLM\Software\Microsoft\VisualStudio]
[HKLM\Software\Microsoft\WAB]
[HKLM\Software\Microsoft\WBEM]
[HKLM\Software\Microsoft\WIMMount]
[HKLM\Software\Microsoft\Windows]
[HKLM\Software\Microsoft\Windows Defender]
[HKLM\Software\Microsoft\Windows Desktop Search]
[HKLM\Software\Microsoft\Windows Live]
[HKLM\Software\Microsoft\Windows Live Mail]
[HKLM\Software\Microsoft\Windows Live Writer]
[HKLM\Software\Microsoft\Windows Mail]
[HKLM\Software\Microsoft\Windows Media Device Manager]
[HKLM\Software\Microsoft\Windows Media Foundation]
[HKLM\Software\Microsoft\Windows Media Player NSS]
[HKLM\Software\Microsoft\Windows Messaging Subsystem]
[HKLM\Software\Microsoft\Windows NT]
[HKLM\Software\Microsoft\Windows Photo Viewer]
[HKLM\Software\Microsoft\Windows Portable Devices]
[HKLM\Software\Microsoft\Windows Script Host]
[HKLM\Software\Microsoft\Windows Search]
[HKLM\Software\Microsoft\Workspaces]
[HKLM\Software\Microsoft\COM3]
[HKLM\Software\Microsoft\DFS]
[HKLM\Software\Microsoft\Driver Signing]
[HKLM\Software\Microsoft\EnterpriseCertificates]
[HKLM\Software\Microsoft\EventSystem]
[HKLM\Software\Microsoft\MSMQ]
[HKLM\Software\Microsoft\Non-Driver Signing]
[HKLM\Software\Microsoft\Ole]
[HKLM\Software\Microsoft\Ras]
[HKLM\Software\Microsoft\Rpc]
[HKLM\Software\Microsoft\SystemCertificates]
[HKLM\Software\Microsoft\TermServLicensing]
[HKLM\Software\Microsoft\Transaction Server]
[HKLM\Software\Microsoft\Windows\CurrentVersion]
[HKLM\Software\Microsoft\Windows\HTML Help]
[HKLM\Software\Microsoft\Windows\ITStorage]
[HKLM\Software\Microsoft\Windows\ScriptedDiagnosticsProvider]
[HKLM\Software\Microsoft\Windows\Windows Error Reporting]
[HKLM\Software\Microsoft\Windows\Windows Search]
[HKLM\Software\Microsoft\Windows\Tablet PC]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Accessibility]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\AdaptiveDisplayBrightness]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\AeDebug]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\APITracing]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\ASR]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\BootMgr]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Compatibility32]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\CorAM.CorAM]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\DeviceDisplayObjects]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\drivers.desc]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\EFS]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Event Viewer]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Font Drivers]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\ICM]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\IniFileMapping]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\KnownFunctionTableDlls]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\KnownManagedDebuggingDlls]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\MCI Extensions]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\MCI32]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\MiniDumpAuxiliaryDlls]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\NetworkList]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\NtVdm64]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\OpenGLDrivers]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\PeerNet]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\PerHwIdStorage]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileLoader]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileNotification]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\SeCEdit]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Svchost]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\SystemRestore]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Tracing]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\UnattendSettings]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\WbemPerf]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winsat]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Console]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\FontDPI]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\FontLink]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\FontMapper]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Fonts]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\FontSubstitutes]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\GRE_Initialize]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\LanguagePack]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\NetworkCards]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Perflib]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Ports]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Print]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\ProfileList]
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Time Zones]
[HKLM\Software\Wow6432Node\Adobe]
[HKLM\Software\Wow6432Node\AdwCleaner]
[HKLM\Software\Wow6432Node\ALWIL Software]
[HKLM\Software\Wow6432Node\AppDataLow]
[HKLM\Software\Wow6432Node\ArcSoft]
[HKLM\Software\Wow6432Node\Audible]
[HKLM\Software\Wow6432Node\AVAST Software]
[HKLM\Software\Wow6432Node\Basic Synth]
[HKLM\Software\Wow6432Node\Bunndle]
[HKLM\Software\Wow6432Node\business-inkjet]
[HKLM\Software\Wow6432Node\Chicony Electronics Co.,Ltd.]
[HKLM\Software\Wow6432Node\CyberLink]
[HKLM\Software\Wow6432Node\Debug]
[HKLM\Software\Wow6432Node\DivXNetworks]
[HKLM\Software\Wow6432Node\Dritek]
[HKLM\Software\Wow6432Node\g3n-h@ckm@n]
[HKLM\Software\Wow6432Node\Google]
[HKLM\Software\Wow6432Node\Intel]
[HKLM\Software\Wow6432Node\IObit]
[HKLM\Software\Wow6432Node\JavaSoft]
[HKLM\Software\Wow6432Node\JreMetrics]
[HKLM\Software\Wow6432Node\LogMeIn Rescue]
[HKLM\Software\Wow6432Node\Macromedia]
[HKLM\Software\Wow6432Node\Malwarebytes' Anti-Malware]
[HKLM\Software\Wow6432Node\Microsoft]
[HKLM\Software\Wow6432Node\Mozilla]
[HKLM\Software\Wow6432Node\mozilla.org]
[HKLM\Software\Wow6432Node\MozillaPlugins]
[HKLM\Software\Wow6432Node\Nero]
[HKLM\Software\Wow6432Node\NewTech Infosystems]
[HKLM\Software\Wow6432Node\Nikon]
[HKLM\Software\Wow6432Node\ODBC]
[HKLM\Software\Wow6432Node\OEM]
[HKLM\Software\Wow6432Node\Orange]
[HKLM\Software\Wow6432Node\Packard Bell]
[HKLM\Software\Wow6432Node\Realtek]
[HKLM\Software\Wow6432Node\Realtek Semiconductor Corp.]
[HKLM\Software\Wow6432Node\Secunia]
[HKLM\Software\Wow6432Node\SkillBrains]
[HKLM\Software\Wow6432Node\Skype]
[HKLM\Software\Wow6432Node\Sonic]
[HKLM\Software\Wow6432Node\Symantec]
[HKLM\Software\Wow6432Node\VideoLAN]
[HKLM\Software\Wow6432Node\Vocals]
[HKLM\Software\Wow6432Node\webtogo]
[HKLM\Software\Wow6432Node\WildTangent]
[HKLM\Software\Wow6432Node\Windows]
[HKLM\Software\Wow6432Node\Woodwinds]
[HKLM\Software\Wow6432Node\Classes]
[HKLM\Software\Wow6432Node\Clients]
[HKLM\Software\Wow6432Node\Policies]
[HKLM\Software\Wow6432Node\RegisteredApplications]
[HKLM\Software\Wow6432Node\Microsoft\.NETFramework]
[HKLM\Software\Wow6432Node\Microsoft\Active Setup]
[HKLM\Software\Wow6432Node\Microsoft\ADs]
[HKLM\Software\Wow6432Node\Microsoft\Advanced INF Setup]
[HKLM\Software\Wow6432Node\Microsoft\ASP.NET]
[HKLM\Software\Wow6432Node\Microsoft\Assistance]
[HKLM\Software\Wow6432Node\Microsoft\AudioCompressionManager]
[HKLM\Software\Wow6432Node\Microsoft\Avalon.Graphics]
[HKLM\Software\Wow6432Node\Microsoft\BidInterface]
[HKLM\Software\Wow6432Node\Microsoft\Code Store Database]
[HKLM\Software\Wow6432Node\Microsoft\Command Processor]
[HKLM\Software\Wow6432Node\Microsoft\Cryptography]
[HKLM\Software\Wow6432Node\Microsoft\CTF]
[HKLM\Software\Wow6432Node\Microsoft\DataAccess]
[HKLM\Software\Wow6432Node\Microsoft\DataFactory]
[HKLM\Software\Wow6432Node\Microsoft\DevDiv]
[HKLM\Software\Wow6432Node\Microsoft\Direct3D]
[HKLM\Software\Wow6432Node\Microsoft\DirectDraw]
[HKLM\Software\Wow6432Node\Microsoft\DirectInput]
[HKLM\Software\Wow6432Node\Microsoft\DirectMusic]
[HKLM\Software\Wow6432Node\Microsoft\DirectPlay]
[HKLM\Software\Wow6432Node\Microsoft\DirectPlay8]
[HKLM\Software\Wow6432Node\Microsoft\DirectPlayNATHelp]
[HKLM\Software\Wow6432Node\Microsoft\DirectShow]
[HKLM\Software\Wow6432Node\Microsoft\DirectX]
[HKLM\Software\Wow6432Node\Microsoft\DownloadManager]
[HKLM\Software\Wow6432Node\Microsoft\DRM]
[HKLM\Software\Wow6432Node\Microsoft\DVR]
[HKLM\Software\Wow6432Node\Microsoft\Exchange]
[HKLM\Software\Wow6432Node\Microsoft\Fax]
[HKLM\Software\Wow6432Node\Microsoft\Feeds]
[HKLM\Software\Wow6432Node\Microsoft\FlashConfig]
[HKLM\Software\Wow6432Node\Microsoft\FTH]
[HKLM\Software\Wow6432Node\Microsoft\Function Discovery]
[HKLM\Software\Wow6432Node\Microsoft\Fusion]
[HKLM\Software\Wow6432Node\Microsoft\HTMLHelp]
[HKLM\Software\Wow6432Node\Microsoft\IdentityCRL]
[HKLM\Software\Wow6432Node\Microsoft\IdentityStore]
[HKLM\Software\Wow6432Node\Microsoft\IMAPI]
[HKLM\Software\Wow6432Node\Microsoft\IMEJP]
[HKLM\Software\Wow6432Node\Microsoft\IMEKR]
[HKLM\Software\Wow6432Node\Microsoft\IMETC]
[HKLM\Software\Wow6432Node\Microsoft\Internet Account Manager]
[HKLM\Software\Wow6432Node\Microsoft\Internet Domains]
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer]
[HKLM\Software\Wow6432Node\Microsoft\IsoBurn]
[HKLM\Software\Wow6432Node\Microsoft\Jet]
[HKLM\Software\Wow6432Node\Microsoft\MediaCenterPeripheral]
[HKLM\Software\Wow6432Node\Microsoft\MediaPlayer]
[HKLM\Software\Wow6432Node\Microsoft\MessengerService]
[HKLM\Software\Wow6432Node\Microsoft\Microsoft SQL Server Compact Edition]
[HKLM\Software\Wow6432Node\Microsoft\Migwiz]
[HKLM\Software\Wow6432Node\Microsoft\MMC]
[HKLM\Software\Wow6432Node\Microsoft\Mobile]
[HKLM\Software\Wow6432Node\Microsoft\MSBuild]
[HKLM\Software\Wow6432Node\Microsoft\MSDE]
[HKLM\Software\Wow6432Node\Microsoft\MSDTC]
[HKLM\Software\Wow6432Node\Microsoft\MSF]
[HKLM\Software\Wow6432Node\Microsoft\MSLicensing]
[HKLM\Software\Wow6432Node\Microsoft\MSN]
[HKLM\Software\Wow6432Node\Microsoft\MSN Apps]
[HKLM\Software\Wow6432Node\Microsoft\Multimedia]
[HKLM\Software\Wow6432Node\Microsoft\NapServer]
[HKLM\Software\Wow6432Node\Microsoft\NET Framework Setup]
[HKLM\Software\Wow6432Node\Microsoft\NetSh]
[HKLM\Software\Wow6432Node\Microsoft\Network]
[HKLM\Software\Wow6432Node\Microsoft\NetworkAccessProtection]
[HKLM\Software\Wow6432Node\Microsoft\Notepad]
[HKLM\Software\Wow6432Node\Microsoft\ODBC]
[HKLM\Software\Wow6432Node\Microsoft\Office]
[HKLM\Software\Wow6432Node\Microsoft\OfficeSoftwareProtectionPlatform]
[HKLM\Software\Wow6432Node\Microsoft\OnlineProviders]
[HKLM\Software\Wow6432Node\Microsoft\Outlook Express]
[HKLM\Software\Wow6432Node\Microsoft\PCHealth]
[HKLM\Software\Wow6432Node\Microsoft\PLA]
[HKLM\Software\Wow6432Node\Microsoft\PowerShell]
[HKLM\Software\Wow6432Node\Microsoft\Print]
[HKLM\Software\Wow6432Node\Microsoft\RADAR]
[HKLM\Software\Wow6432Node\Microsoft\Reliability Analysis]
[HKLM\Software\Wow6432Node\Microsoft\RendezvousApps]
[HKLM\Software\Wow6432Node\Microsoft\RFC1156Agent]
[HKLM\Software\Wow6432Node\Microsoft\SchedulingAgent]
[HKLM\Software\Wow6432Node\Microsoft\Security Center]
[HKLM\Software\Wow6432Node\Microsoft\Sensors]
[HKLM\Software\Wow6432Node\Microsoft\Shared Tools]
[HKLM\Software\Wow6432Node\Microsoft\Shared Tools Location]
[HKLM\Software\Wow6432Node\Microsoft\SideShow]
[HKLM\Software\Wow6432Node\Microsoft\Silverlight]
[HKLM\Software\Wow6432Node\Microsoft\Software]
[HKLM\Software\Wow6432Node\Microsoft\Speech]
[HKLM\Software\Wow6432Node\Microsoft\SQMClient]
[HKLM\Software\Wow6432Node\Microsoft\Sync Framework]
[HKLM\Software\Wow6432Node\Microsoft\TableTextService]
[HKLM\Software\Wow6432Node\Microsoft\TabletTip]
[HKLM\Software\Wow6432Node\Microsoft\Tcpip]
[HKLM\Software\Wow6432Node\Microsoft\Terminal Server Client]
[HKLM\Software\Wow6432Node\Microsoft\TIP Shared]
[HKLM\Software\Wow6432Node\Microsoft\TPG]
[HKLM\Software\Wow6432Node\Microsoft\Tpm]
[HKLM\Software\Wow6432Node\Microsoft\Tracing]
[HKLM\Software\Wow6432Node\Microsoft\TV System Services]
[HKLM\Software\Wow6432Node\Microsoft\uDRM]
[HKLM\Software\Wow6432Node\Microsoft\Updates]
[HKLM\Software\Wow6432Node\Microsoft\UPnP Device Host]
[HKLM\Software\Wow6432Node\Microsoft\VisualStudio]
[HKLM\Software\Wow6432Node\Microsoft\WAB]
[HKLM\Software\Wow6432Node\Microsoft\WBEM]
[HKLM\Software\Wow6432Node\Microsoft\WIMMount]
[HKLM\Software\Wow6432Node\Microsoft\Windows]
[HKLM\Software\Wow6432Node\Microsoft\Windows Defender]
[HKLM\Software\Wow6432Node\Microsoft\Windows Desktop Search]
[HKLM\Software\Wow6432Node\Microsoft\Windows Live]
[HKLM\Software\Wow6432Node\Microsoft\Windows Live Mail]
[HKLM\Software\Wow6432Node\Microsoft\Windows Live Writer]
[HKLM\Software\Wow6432Node\Microsoft\Windows Mail]
[HKLM\Software\Wow6432Node\Microsoft\Windows Media Device Manager]
[HKLM\Software\Wow6432Node\Microsoft\Windows Media Foundation]
[HKLM\Software\Wow6432Node\Microsoft\Windows Media Player NSS]
[HKLM\Software\Wow6432Node\Microsoft\Windows Messaging Subsystem]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT]
[HKLM\Software\Wow6432Node\Microsoft\Windows Photo Viewer]
[HKLM\Software\Wow6432Node\Microsoft\Windows Portable Devices]
[HKLM\Software\Wow6432Node\Microsoft\Windows Script Host]
[HKLM\Software\Wow6432Node\Microsoft\Windows Search]
[HKLM\Software\Wow6432Node\Microsoft\Workspaces]
[HKLM\Software\Wow6432Node\Microsoft\COM3]
[HKLM\Software\Wow6432Node\Microsoft\DFS]
[HKLM\Software\Wow6432Node\Microsoft\Driver Signing]
[HKLM\Software\Wow6432Node\Microsoft\EnterpriseCertificates]
[HKLM\Software\Wow6432Node\Microsoft\EventSystem]
[HKLM\Software\Wow6432Node\Microsoft\MSMQ]
[HKLM\Software\Wow6432Node\Microsoft\Non-Driver Signing]
[HKLM\Software\Wow6432Node\Microsoft\Ole]
[HKLM\Software\Wow6432Node\Microsoft\Ras]
[HKLM\Software\Wow6432Node\Microsoft\Rpc]
[HKLM\Software\Wow6432Node\Microsoft\SystemCertificates]
[HKLM\Software\Wow6432Node\Microsoft\TermServLicensing]
[HKLM\Software\Wow6432Node\Microsoft\Transaction Server]
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion]
[HKLM\Software\Wow6432Node\Microsoft\Windows\HTML Help]
[HKLM\Software\Wow6432Node\Microsoft\Windows\ITStorage]
[HKLM\Software\Wow6432Node\Microsoft\Windows\ScriptedDiagnosticsProvider]
[HKLM\Software\Wow6432Node\Microsoft\Windows\Windows Error Reporting]
[HKLM\Software\Wow6432Node\Microsoft\Windows\Windows Search]
[HKLM\Software\Wow6432Node\Microsoft\Windows\Tablet PC]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Accessibility]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\AdaptiveDisplayBrightness]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\AeDebug]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\APITracing]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\AppCompatFlags]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\ASR]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\BootMgr]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Compatibility32]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\CorAM.CorAM]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\DeviceDisplayObjects]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\drivers.desc]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\EFS]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Event Viewer]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Font Drivers]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\ICM]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\IniFileMapping]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\KnownFunctionTableDlls]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\KnownManagedDebuggingDlls]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\MCI Extensions]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\MCI32]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\MiniDumpAuxiliaryDlls]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\NetworkList]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\NtVdm64]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\OpenGLDrivers]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\PeerNet]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\PerHwIdStorage]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\ProfileLoader]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\ProfileNotification]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Schedule]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\SeCEdit]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\SystemRestore]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Tracing]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\UnattendSettings]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\WbemPerf]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winsat]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Console]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\FontDPI]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\FontLink]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\FontMapper]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Fonts]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\FontSubstitutes]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\GRE_Initialize]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\LanguagePack]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\NetworkCards]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Perflib]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Ports]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Print]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\ProfileList]
[HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Time Zones]

¤¤¤¤¤¤¤¤¤¤ | Last created/Modified


[MD5.00000000000000000000000000000000] - [04/04/2013 13:40:07] - |D| - [97519129] - C:\Program Files (x86)\Java
[MD5.8C0E100191448D5C997C1D39F98EF4E9] - [23/04/2013 15:20:20] - |A| - [41664] - C:\Windows\avastSS.scr
[MD5.D41D8CD98F00B204E9800998ECF8427E] - [23/04/2013 15:24:52] - |A| - [0] - C:\Windows\setuperr.log
[MD5.640DAD2C12AB9C0D0D3070666B6CCF80] - [23/04/2013 15:24:52] - |A| - [224] - C:\Windows\setupact.log
[MD5.72920624DE7BAB83EFAE439243E34252] - [23/04/2013 15:29:44] - |A| - [54710] - C:\Windows\WindowsUpdate.log
[MD5.C4BA841A2097E8E9AC0E0329063C6A9E] - [23/04/2013 15:28:38] - |A| - [26112] - C:\Windows\Installer\1d953.msi
[MD5.0B25BCF13715D2BFF34638E6B7E29EA1] - [23/04/2013 15:24:40] - |A| - [274024] - C:\Windows\system32\FNTCACHE.DAT
[MD5.E92635BB235B03ED03B17CBB59F77FA4] - [23/04/2013 15:20:58] - |A| - [80816] - C:\Windows\system32\Drivers\aswMonFlt.sys
[MD5.B217378ED9A964E15346A67FEF609A17] - [23/04/2013 15:20:59] - |A| - [33400] - C:\Windows\system32\Drivers\aswFsBlk.sys
[MD5.7E44C2684A6CA779B9D07CB4BD3F649D] - [23/04/2013 15:20:58] - |A| - [178624] - C:\Windows\system32\Drivers\aswVmm.sys
[MD5.8F90459AFB7FD4557D935CE639EF6110] - [23/04/2013 15:20:58] - |A| - [70992] - C:\Windows\system32\Drivers\aswRdr2.sys
[MD5.D62C10D1829C65115111C160EA956260] - [23/04/2013 15:20:58] - |A| - [68920] - C:\Windows\system32\Drivers\aswTdi.sys
[MD5.97D4D725BD32C965119E6C8E252F8C64] - [23/04/2013 15:20:58] - |A| - [377920] - C:\Windows\system32\Drivers\aswSP.sys
[MD5.DE6759B8D8E62BF0FFF2B05F05AFCEE6] - [23/04/2013 15:20:58] - |A| - [65336] - C:\Windows\system32\Drivers\aswRvrt.sys
[MD5.AB8B4D3136D18A20777036E0F0CFC5E1] - [23/04/2013 15:20:58] - |A| - [1025808] - C:\Windows\system32\Drivers\aswSnx.sys
[MD5.00000000000000000000000000000000] - [23/04/2013 10:19:57] - |SD| - [0] - C:\Windows\syswow64\Microsoft

¤¤¤¤¤¤¤¤¤¤ | Drives


¤¤¤¤¤¤¤¤¤¤ | Homedrive

[23/04/2013 17:11:05] - |A| - [115770] - C:\Pre_Diag.txt
[02/12/2010 17:43:12] - |ASH| - [2205544448] - C:\hiberfil.sys
[02/12/2010 17:43:12] - |ASH| - [2940727296] - C:\pagefile.sys
[03/12/2010 02:28:42] - |RASH| - [1134] - C:\Patch.rev
[08/09/2010 05:16:07] - |RASH| - [221] - C:\Preload.rev
[12/05/2011 14:47:39] - |SHD| - [19922192] - C:\Config.Msi
[14/07/2009 05:18:56] - |SHD| - [112896] - C:\$Recycle.Bin
[27/07/2009 22:40:53] - |RASH| - [8192] - C:\BOOTSECT.BAK
[20/03/2011 23:31:59] - |SHD| - [1604] - C:\found.000
[27/07/2009 22:40:51] - |RASH| - [383562] - C:\bootmgr
[14/07/2009 05:20:08] - |D| - [0] - C:\PerfLogs
[14/07/2009 07:08:56] - |SHD| - [0] - C:\Documents and Settings
[08/09/2010 05:01:56] - |D| - [171944] - C:\Intel
[26/02/2011 12:05:14] - |SHD| - [282731227] - C:\Recovery
[14/07/2009 05:20:08] - |RD| - [19043271336] - C:\Users
[08/09/2010 05:17:36] - |HD| - [1536134899] - C:\OEM
[27/07/2009 22:26:27] - |DC| - [0] - C:\elements
[02/03/2011 23:30:57] - |D| - [204247140] - C:\e6af8098f50fb5739419aa3e67fdc4
[03/03/2011 13:41:45] - |D| - [37976132] - C:\0041f9359bb794fe47
[10/03/2011 06:54:18] - |D| - [3325854] - C:\e3c90ef989fb3b6f5ae992da
[12/05/2011 14:46:31] - |D| - [29346183] - C:\8eb161bfab8b9abe35eedee8cd0b57
[14/07/2009 05:20:08] - |RD| - [1170944861] - C:\Program Files
[02/12/2010 17:43:12] - |SHD| - [0] - C:\System Volume Information
[14/07/2009 05:20:08] - |D| - [5473163544] - C:\Program Files (x86)
[05/10/2009 22:41:14] - |AD| - [24352036322] - C:\Windows
[14/07/2009 05:20:08] - |HD| - [2359389617] - C:\ProgramData
[23/04/2013 15:57:10] - |D| - [1425282958] - C:\Pre_Scan

¤¤¤¤¤¤¤¤¤¤ | Systemroot

[14/07/2009 09:44:57] - |A| - [48223] - C:\Windows\HomeBasic.xml
[08/09/2010 05:25:54] - |A| - [48265] - C:\Windows\HomePremium.xml
[14/07/2009 07:28:38] - |A| - [48201] - C:\Windows\Starter.xml
[08/09/2010 05:16:09] - |A| - [213] - C:\Windows\Factory.xml
[03/12/2010 02:29:25] - |A| - [926] - C:\Windows\MOD01SET74FR0N0003.XML
[03/12/2010 02:26:31] - |A| - [201] - C:\Windows\USER.XML
[02/12/2010 17:51:20] - |A| - [184] - C:\Windows\LMv4.UNI
[08/09/2010 06:32:25] - |A| - [12] - C:\Windows\CSUP.txt
[08/09/2010 05:24:53] - |A| - [10] - C:\Windows\WIN7BASE_XX.TAG
[03/12/2010 02:41:26] - |A| - [11453] - C:\Windows\ChangeLang_Done.tag
[08/03/2012 18:37:20] - |A| - [302448] - C:\Windows\WLXPGSS.SCR
[23/04/2013 15:20:20] - |A| - [41664] - C:\Windows\avastSS.scr
[10/06/2009 22:52:44] - |A| - [316640] - C:\Windows\WMSysPr9.prx
[14/07/2009 05:20:10] - |D| - [755140523] - C:\Windows\Microsoft.NET
[14/07/2009 06:54:24] - |RA| - [749] - C:\Windows\WindowsShell.Manifest
[23/04/2013 15:24:52] - |A| - [0] - C:\Windows\setuperr.log
[23/04/2013 15:24:52] - |A| - [224] - C:\Windows\setupact.log
[23/04/2013 15:29:44] - |A| - [54710] - C:\Windows\WindowsUpdate.log
[14/07/2009 04:35:42] - |A| - [1405] - C:\Windows\msdfmap.ini
[14/07/2009 04:34:57] - |A| - [219] - C:\Windows\system.ini
[14/07/2009 04:34:57] - |A| - [403] - C:\Windows\win.ini
[02/12/2010 17:51:28] - |A| - [302] - C:\Windows\PidList_C.ini
[08/09/2010 05:16:07] - |A| - [271] - C:\Windows\WisPriority.ini
[08/09/2010 05:16:07] - |A| - [325] - C:\Windows\Prelaunch.ini
[03/12/2010 02:28:45] - |A| - [267] - C:\Windows\LaunApp.ini
[03/12/2010 02:26:16] - |A| - [1652] - C:\Windows\WPatchProgress.ini
[08/09/2010 05:16:07] - |A| - [168] - C:\Windows\WisLangCode.ini
[02/09/2012 15:50:09] - |A| - [0] - C:\Windows\ViewNX2.INI
[14/07/2009 00:47:26] - |A| - [49680] - C:\Windows\twunk_16.exe
[14/07/2009 02:14:40] - |A| - [31232] - C:\Windows\twunk_32.exe
[14/07/2009 02:12:29] - |A| - [9728] - C:\Windows\winhlp32.exe
[14/07/2009 01:23:40] - |A| - [71168] - C:\Windows\bfsvc.exe
[14/07/2009 01:22:13] - |A| - [15360] - C:\Windows\fveupdate.exe
[14/07/2009 02:29:03] - |A| - [16896] - C:\Windows\hh.exe
[14/07/2009 02:29:53] - |A| - [733696] - C:\Windows\HelpPane.exe
[14/07/2009 01:56:36] - |A| - [193536] - C:\Windows\notepad.exe
[14/07/2009 01:27:10] - |A| - [427008] - C:\Windows\regedit.exe
[14/07/2009 01:56:28] - |A| - [10240] - C:\Windows\write.exe
[03/12/2010 02:26:18] - |A| - [255264] - C:\Windows\WISI2BAT.EXE
[03/12/2010 02:26:17] - |A| - [326432] - C:\Windows\WisGAPas.exe
[03/12/2010 02:26:18] - |A| - [388384] - C:\Windows\WisGAPasx64.exe
[03/12/2010 02:26:18] - |A| - [342560] - C:\Windows\ParseModule_X64.exe
[03/12/2010 02:26:17] - |A| - [231968] - C:\Windows\ParseModule_X86.exe
[03/12/2010 02:27:20] - |A| - [349776] - C:\Windows\UNINSTLMv4.EXE
[03/12/2010 02:26:18] - |A| - [484128] - C:\Windows\WisMvImg.exe
[08/09/2010 05:16:08] - |A| - [298272] - C:\Windows\PLaunch.exe
[03/12/2010 02:26:32] - |A| - [527400] - C:\Windows\WGRegx64.exe
[02/12/2010 17:51:29] - |A| - [206208] - C:\Windows\PLFSetI.exe
[03/12/2010 02:26:18] - |A| - [1422888] - C:\Windows\PatchFul.exe
[08/09/2010 05:24:51] - |A| - [2669096] - C:\Windows\LaunApp.exe
[12/05/2011 12:23:35] - |A| - [2870272] - C:\Windows\explorer.exe
[16/08/2012 15:58:30] - |A| - [67584] - C:\Windows\splwow64.exe
[08/09/2010 05:17:18] - |RA| - [2048] - C:\Windows\MOD01SET75000N0006.enc
[06/10/2009 22:58:47] - |A| - [2476] - C:\Windows\MOD01SET74FR0N0003.enc
[10/06/2009 23:41:17] - |A| - [94784] - C:\Windows\twain.dll
[14/07/2009 02:14:33] - |A| - [51200] - C:\Windows\twain_32.dll
[08/09/2010 05:16:08] - |A| - [333088] - C:\Windows\Capsule.dll
[02/12/2010 17:48:29] - |A| - [1251944] - C:\Windows\RtlExUpd.dll
[26/02/2011 20:27:08] - |A| - [19] - C:\Windows\popcinfo.dat
[14/07/2009 07:38:36] - |AS| - [67584] - C:\Windows\bootstat.dat
[05/10/2009 22:41:14] - |A| - [741] - C:\Windows\NewDeployWinRE.cmd
[14/07/2009 02:10:29] - |A| - [43131] - C:\Windows\mib.bin
[14/07/2009 05:20:10] - |D| - [0] - C:\Windows\LiveKernelReports
[14/07/2009 05:20:14] - |D| - [0] - C:\Windows\tracing
[14/07/2009 05:20:10] - |D| - [0] - C:\Windows\ModemLogs
[14/07/2009 05:20:10] - |D| - [0] - C:\Windows\SchCache
[14/07/2009 05:20:10] - |D| - [0] - C:\Windows\system
[14/07/2009 05:20:10] - |D| - [1132015] - C:\Windows\PLA
[14/07/2009 05:20:10] - |D| - [1056768] - C:\Windows\security
[14/07/2009 05:20:14] - |D| - [12420] - C:\Windows\Vss
[14/07/2009 06:45:47] - |D| - [53478920] - C:\Windows\ServiceProfiles
[14/07/2009 06:45:50] - |D| - [42] - C:\Windows\Setup
[14/07/2009 05:20:10] - |D| - [55533] - C:\Windows\schemas
[14/07/2009 05:20:14] - |D| - [43072001] - C:\Windows\Web
[14/07/2009 07:32:38] - |D| - [62122047] - C:\Windows\Performance
[14/07/2009 05:20:10] - |D| - [1691430] - C:\Windows\Resources
[14/07/2009 07:32:38] - |D| - [3043762] - C:\Windows\diagnostics
[14/07/2009 05:20:09] - |D| - [3233280] - C:\Windows\Branding
[14/07/2009 05:20:09] - |D| - [28993502] - C:\Windows\Boot
[14/07/2009 05:20:10] - |D| - [70579144] - C:\Windows\Speech
[14/07/2009 05:20:09] - |D| - [79210028] - C:\Windows\Globalization
[08/09/2010 05:09:50] - |D| - [230080] - C:\Windows\oem
[08/09/2010 05:19:56] - |D| - [598016] - C:\Windows\OEMTemp
[08/09/2010 05:25:28] - |D| - [4544] - C:\Windows\ShellNew
[14/07/2009 07:32:38] - |D| - [802] - C:\Windows\addins
[14/07/2009 05:20:09] - |D| - [2113488] - C:\Windows\Cursors
[14/07/2009 07:32:38] - |D| - [65] - C:\Windows\Downloaded Program Files
[14/07/2009 05:20:10] - |D| - [48371] - C:\Windows\L2Schemas
[14/07/2009 05:20:10] - |RSD| - [13327133] - C:\Windows\Media
[14/07/2009 07:32:38] - |D| - [65] - C:\Windows\Offline Web Pages
[14/07/2009 05:20:14] - |D| - [15] - C:\Windows\TAPI
[14/07/2009 07:32:38] - |D| - [6144] - C:\Windows\twain_32
[02/12/2010 17:48:56] - |D| - [0] - C:\Windows\Options
[05/10/2009 22:41:14] - |AD| - [371775] - C:\Windows\DeployWinRE2
[02/12/2010 17:58:48] - |D| - [0] - C:\Windows\PCHEALTH
[03/12/2010 02:26:31] - |D| - [0] - C:\Windows\Lan
[03/12/2010 02:31:51] - |D| - [13485493] - C:\Windows\NAPP_Dism_Log
[14/07/2009 05:20:09] - |D| - [143547244] - C:\Windows\IME
[14/07/2009 07:37:46] - |D| - [0] - C:\Windows\DigitalLocker
[03/12/2010 02:37:40] - |D| - [142336] - C:\Windows\fr-FR
[14/07/2009 07:37:46] - |D| - [0] - C:\Windows\en-US
[14/07/2009 05:20:10] - |D| - [75074981] - C:\Windows\servicing
[12/03/2009 11:30:25] - |D| - [3259792] - C:\Windows\LP
[14/07/2009 05:20:09] - |D| - [40554785] - C:\Windows\Help
[08/09/2010 05:25:28] - |D| - [118074865] - C:\Windows\ehome
[14/07/2009 05:20:10] - |D| - [2692357] - C:\Windows\PolicyDefinitions
[27/07/2009 22:41:08] - |D| - [686674] - C:\Windows\Panther
[12/05/2012 08:14:18] - |D| - [0] - C:\Windows\Sun
[12/07/2012 12:45:47] - |D| - [107376] - C:\Windows\fr
[02/09/2012 15:46:45] - |D| - [27239620] - C:\Windows\Downloaded Installations
[14/07/2009 05:20:10] - |D| - [59690343] - C:\Windows\Logs
[14/07/2009 05:20:09] - |RSD| - [357610671] - C:\Windows\Fonts
[14/07/2009 05:20:10] - |D| - [6788977] - C:\Windows\rescache
[14/07/2009 05:20:08] - |D| - [11019598] - C:\Windows\AppPatch
[14/07/2009 05:20:10] - |D| - [22588] - C:\Windows\registration
[14/07/2009 05:20:08] - |D| - [4305661] - C:\Windows\AppCompat
[14/07/2009 05:20:14] - |D| - [1185621793] - C:\Windows\SysWOW64
[14/07/2009 06:45:54] - |D| - [1488] - C:\Windows\debug
[14/07/2009 05:20:10] - |D| - [3436638013] - C:\Windows\System32
[02/12/2010 17:49:01] - |D| - [267930199] - C:\Windows\SoftwareDistribution
[08/09/2010 05:02:25] - |SHD| - [1692033062] - C:\Windows\Installer
[14/07/2009 05:20:14] - |D| - [14337752202] - C:\Windows\winsxs
[14/07/2009 05:20:14] - |D| - [38100] - C:\Windows\Tasks
[14/07/2009 05:20:08] - |RSD| - [1302147774] - C:\Windows\assembly
[14/07/2009 05:20:10] - |D| - [75616876] - C:\Windows\inf
[14/07/2009 05:20:14] - |D| - [19046787] - C:\Windows\Temp
[27/07/2009 21:42:20] - |D| - [36659828] - C:\Windows\Prefetch

¤¤¤¤¤¤¤¤¤¤ | C:\Windows files signature

[MD5.F36A271706EDD23C94956AFB56981184] - [14/07/2009 00:47:26] - (. - Twain_32.dll Client's 16-Bit Thunking Server.) - [48.52 Ko] - (1.7.0.0) - C:\Windows\twunk_16.exe
[MD5.0BD6E68F3EA0DD62CD86283D86895381] - [14/07/2009 02:14:40] - (. - Twain.dll Client's 32-Bit Thunking Server.) - [30.5 Ko] - (1.7.1.0) - C:\Windows\twunk_32.exe
[MD5.1D420D66250BCAAAED05724FB34008CF] - [14/07/2009 02:12:29] - (.© Microsoft Corporation. Tous droits réservés. - Relais Windows Winhlp32.) - [9.5 Ko] - (6.1.7600.16385) - C:\Windows\winhlp32.exe
[MD5.10D027E3BF60DFC69CA74857DB6C9C70] - [14/07/2009 01:23:40] - (.© Microsoft Corporation. Tous droits réservés. - Utilitaire de service de fichier de démarrage.) - [69.5 Ko] - (6.1.7600.16385) - C:\Windows\bfsvc.exe
[MD5.92BB2E9AA28542C685C59EFCBAC2490B] - [14/07/2009 01:22:13] - (.© Microsoft Corporation. Tous droits réservés. - Utilitaire de service de chiffrement de lecteur BitLocker.) - [15 Ko] - (6.1.7600.16385) - C:\Windows\fveupdate.exe
[MD5.3D0B9EA79BF1F828324447D84AA9DCE2] - [14/07/2009 02:29:03] - (.© Microsoft Corporation. Tous droits réservés. - Exécutable de l’aide HTML Microsoft®.) - [16.5 Ko] - (6.1.7600.16385) - C:\Windows\hh.exe
[MD5.CD47548A52B02D254BF6D7F7A5F2BFD3] - [14/07/2009 02:29:53] - (.© Microsoft Corporation. Tous droits réservés. - Aide et support Microsoft.) - [716.5 Ko] - (6.1.7600.16385) - C:\Windows\HelpPane.exe
[MD5.F2C7BB8ACC97F92E987A2D4087D021B1] - [14/07/2009 01:56:36] - (.© Microsoft Corporation. Tous droits réservés. - Bloc-notes.) - [189 Ko] - (6.1.7600.16385) - C:\Windows\notepad.exe
[MD5.2E2C937846A0B8789E5E91739284D17A] - [14/07/2009 01:27:10] - (.© Microsoft Corporation. Tous droits réservés. - Éditeur du Registre.) - [417 Ko] - (6.1.7600.16385) - C:\Windows\regedit.exe
[MD5.F8ED3B4B209E2CB49028E36CF06CA851] - [14/07/2009 01:56:28] - (.© Microsoft Corporation. - Windows Write.) - [10 Ko] - (6.1.7600.16385) - C:\Windows\write.exe
[MD5.FE7ED5848D42C3A36EC795D15FAB180A] - [03/12/2010 02:26:18] - (.Copyright (C) 2009 - WisIni2Bat.) - [249.28 Ko] - (1.0.0.2) - C:\Windows\WISI2BAT.EXE
[MD5.749ACA9A0CCF9018964F54A47D10F48A] - [03/12/2010 02:26:17] - (.Copyright (C) 2009 - WisGAIAParser.) - [318.78 Ko] - (1.0.0.5) - C:\Windows\WisGAPas.exe
[MD5.798097D01E64F0F29E322B708CC71457] - [03/12/2010 02:26:18] - (.Copyright (C) 2009 - WisGAIAParser.) - [379.28 Ko] - (1.0.0.5) - C:\Windows\WisGAPasx64.exe
[MD5.6222D069102D98086CFEB9876E4F980F] - [03/12/2010 02:26:18] - (.Copyright (C) 2009 Acer Inc. - Acer GAIA ParseModule.) - [334.53 Ko] - (1.0.0.1) - C:\Windows\ParseModule_X64.exe
[MD5.A577F28CA591DFB728AA3970EF59B8F6] - [03/12/2010 02:26:17] - (.Copyright (C) 2009 Acer Inc. - Acer GAIA ParseModule.) - [226.53 Ko] - (1.0.0.1) - C:\Windows\ParseModule_X86.exe
[MD5.B38882E54F783A2C37946C27091DC8B4] - [03/12/2010 02:27:20] - (.(C) 2000-2009 Dritek System Inc. - Uninstall Application.) - [341.58 Ko] - (2.1.2.2017) - C:\Windows\UNINSTLMv4.EXE
[MD5.FAFD95D66883B875656A370C2AD164D7] - [03/12/2010 02:26:18] - (.Wistron Corp.  2009-2010 - WisMoveImage.) - [472.78 Ko] - (1.0.1.3) - C:\Windows\WisMvImg.exe
[MD5.9FADE696354E73A389B838808294793A] - [08/09/2010 05:16:08] - (.Copyright c 2006-2010 - PreLaunch.) - [291.28 Ko] - (2.1.1.0) - C:\Windows\PLaunch.exe
[MD5.8AE7862497294F9E03B7F9D2F5B561BA] - [03/12/2010 02:26:32] - (.Wistron Corp.  2010 - WisGRegOffer.) - [515.04 Ko] - (1.0.0.3) - C:\Windows\WGRegx64.exe
[MD5.EADCEB89DD46DA2A5560CA2AF016A6A6] - [02/12/2010 17:51:29] - (.Copyright (C) 2007 - DefaultSettingEXE MFC Application.) - [201.38 Ko] - (1.1.0.1) - C:\Windows\PLFSetI.exe
[MD5.F65BAFCE6D1B87D88883CDFA6B8F70B7] - [03/12/2010 02:26:18] - (.Copyright c 2004-2009 - RunXMLPL.) - [1389.54 Ko] - (2.0.0.7) - C:\Windows\PatchFul.exe
[MD5.3E79093ADE6D649DA39746EA176E451D] - [08/09/2010 05:24:51] - (.Copyright (C) 2001-2010.  Wistron Corp. - LaunchApp MFC Application.) - [2606.54 Ko] - (1.2.1.0) - C:\Windows\LaunApp.exe
[MD5.0862495E0C825893DB75EF44FAEA8E93] - [12/05/2011 12:23:35] - (.© Microsoft Corporation. Tous droits réservés. - Explorateur Windows.) - [2803 Ko] - (6.1.7600.16768) - C:\Windows\explorer.exe
[MD5.24AA25089217AF1B5289534824CAC69F] - [16/08/2012 15:58:30] - (.© Microsoft Corporation. - Print driver host for 32bit applications.) - [66 Ko] - (6.1.7600.16962) - C:\Windows\splwow64.exe

¤¤¤¤¤¤¤¤¤¤ | Systemroot\System


¤¤¤¤¤¤¤¤¤¤ | Systemroot\Installer

[08/09/2010 05:02:37] - [3584] - C:\Windows\Installer\{DD89CE29-BC88-40C6-A845-E2548682C5D6}\1033.mst
[08/09/2010 05:02:37] - [10134] - C:\Windows\Installer\{DD89CE29-BC88-40C6-A845-E2548682C5D6}\ARPPRODUCTICON.exe
[08/09/2010 05:19:37] - [18944] - C:\Windows\Installer\{72B776E5-4530-4C4B-9453-751DF87D9D93}\1033.mst
[08/09/2010 05:19:37] - [144343] - C:\Windows\Installer\{72B776E5-4530-4C4B-9453-751DF87D9D93}\ARPPRODUCTICON.exe
[02/12/2010 17:48:18] - [93184] - C:\Windows\Installer\{A84DB02B-9C2B-4272-9D2D-A80E00A56513}\1036.MST
[02/12/2010 17:48:18] - [45056] - C:\Windows\Installer\{A84DB02B-9C2B-4272-9D2D-A80E00A56513}\ARPPRODUCTICON.exe
[02/12/2010 17:52:10] - [37376] - C:\Windows\Installer\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}\1036.mst
[02/12/2010 17:52:10] - [64793] - C:\Windows\Installer\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}\ARPPRODUCTICON.exe
[02/12/2010 18:01:03] - [58945] - C:\Windows\Installer\{5DD76286-9BE7-4894-A990-E905E91AC818}\wlmail.exe
[02/12/2010 18:01:47] - [9062] - C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
[02/12/2010 18:02:14] - [29926] - C:\Windows\Installer\{76810709-A7D3-468D-9167-A1780C1E766C}\FolderShare48x48.ico
[02/12/2010 18:04:44] - [158560] - C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
[02/12/2010 18:07:07] - [108032] - C:\Windows\Installer\{17DFE37C-064E-4834-AD8F-A4B2B4DF68F8}\1036.mst
[01/03/2011 22:31:17] - [32768] - C:\Windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
[02/03/2011 01:32:06] - [32768] - C:\Windows\Installer\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}\icon.exe
[15/07/2011 13:24:14] - [80395] - C:\Windows\Installer\{EB4DF488-AAEF-406F-A341-CB2AAA315B90}\MsblIco.Exe
[09/09/2011 14:21:10] - [371272] - C:\Windows\Installer\{F1CECE09-7CBE-4E98-B435-DA87CDA86167}\SkypeIcon.exe
[04/05/2012 21:53:49] - [10134] - C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
[12/07/2012 12:44:14] - [80395] - C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
[12/07/2012 12:45:18] - [59185] - C:\Windows\Installer\{A726AE06-AAA3-43D1-87E3-70F510314F04}\ApplicationIcon.ico
[02/09/2012 15:45:49] - [99840] - C:\Windows\Installer\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}\1036.MST
[02/09/2012 15:45:48] - [409600] - C:\Windows\Installer\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}\ARPPRODUCTICON.exe
[02/09/2012 15:45:48] - [409600] - C:\Windows\Installer\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}\NewShortcut1_6B19358FC53642B4B5387EF0F1E8B7DD.exe
[02/09/2012 15:45:48] - [409600] - C:\Windows\Installer\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}\NewShortcut4_A7389806D4B24C66908F42D6EB015DF1.exe
[02/09/2012 15:45:48] - [49152] - C:\Windows\Installer\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}\New_Shortcut_9D55BA3AEE02449A908F666ADAD566F4.exe
[02/09/2012 15:46:32] - [98816] - C:\Windows\Installer\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}\1036.MST
[02/09/2012 15:46:32] - [172032] - C:\Windows\Installer\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}\ARPPRODUCTICON.exe
[02/09/2012 15:47:17] - [99328] - C:\Windows\Installer\{B014EE44-9197-4513-9613-71E6EB1B514E}\1036.MST
[02/09/2012 15:47:17] - [393216] - C:\Windows\Installer\{B014EE44-9197-4513-9613-71E6EB1B514E}\ARPPRODUCTICON.exe
[02/09/2012 15:47:17] - [393216] - C:\Windows\Installer\{B014EE44-9197-4513-9613-71E6EB1B514E}\NewShortcut1_205DE669FE4D464586AB7C8893422164.exe
[22/10/2012 22:26:28] - [40448] - C:\Windows\Installer\{26A24AE4-039D-4CA4-87B4-2F86417009FF}\jre1036.MST
[22/10/2012 22:23:00] - [292878] - C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\SC_Reader.ico
[22/10/2012 22:23:00] - [34295] - C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\FDFFile_8.ico
[22/10/2012 22:23:00] - [38614] - C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\XFDFFile_8.ico
[22/10/2012 22:23:00] - [38929] - C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\XDPFile_8.ico
[22/10/2012 22:23:00] - [30379] - C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\PDXFile_8.ico
[22/10/2012 22:23:00] - [27989] - C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\APIFile_8.ico
[22/10/2012 22:23:00] - [33752] - C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\SecStoreFile.ico
[22/10/2012 22:23:00] - [292878] - C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\PDFFile_8.ico
[14/03/2013 00:01:32] - [10806] - C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
[14/03/2013 00:01:32] - [52224] - C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIconDLL_64
[14/03/2013 00:01:32] - [52224] - C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIconDll

¤¤¤¤¤¤¤¤¤¤ | %System%\*.ini

[10/06/2009 23:01:25] - [60124] - C:\Windows\System32\tcpmon.ini
[14/07/2009 06:57:09] - [73] - C:\Windows\System32\desktop.ini
[14/07/2009 07:13:15] - [5194] - C:\Windows\System32\PerfStringBackup.INI

¤¤¤¤¤¤¤¤¤¤ | Profiles

[14/07/2009 07:38:14] - |AS| - [0] - C:\Windows\system32\config\systemprofile\ntuser.dat.LOG2
[14/07/2009 07:38:14] - |AS| - [9216] - C:\Windows\system32\config\systemprofile\ntuser.dat.LOG1
[14/07/2009 09:12:21] - |A| - [1024] - C:\Windows\system32\config\systemprofile\ntuser.dat.LOG
[14/07/2009 07:38:14] - |A| - [262144] - C:\Windows\system32\config\systemprofile\ntuser.dat
[14/07/2009 05:20:10] - |SD| - [4827100] - C:\Windows\system32\config\systemprofile\AppData
[14/07/2009 06:45:47] - |A| - [0] - C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT.LOG2
[14/07/2009 06:45:47] - |A| - [226304] - C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT.LOG1
[14/07/2009 09:12:21] - |A| - [1024] - C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT.LOG
[16/03/2013 10:20:12] - |A| - [249856] - C:\Windows\ServiceProfiles\LocalService\ntuser.dat.iobit
[07/02/2013 22:01:40] - |A| - [249856] - C:\Windows\ServiceProfiles\LocalService\ntuser.dat
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\LocalService\Documents
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\LocalService\Desktop
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\LocalService\Downloads
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\LocalService\Favorites
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\LocalService\Pictures
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\LocalService\Links
[14/07/2009 06:45:47] - |D| - [0] - C:\Windows\ServiceProfiles\LocalService\Saved Games
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\LocalService\Videos
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\LocalService\Music
[14/07/2009 06:45:47] - |D| - [2528735] - C:\Windows\ServiceProfiles\LocalService\AppData
[14/07/2009 06:45:47] - |A| - [0] - C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG2
[14/07/2009 06:45:47] - |A| - [226304] - C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG1
[14/07/2009 09:12:21] - |A| - [1024] - C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG
[16/03/2013 10:20:12] - |A| - [258048] - C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.iobit
[07/02/2013 22:01:40] - |A| - [258048] - C:\Windows\ServiceProfiles\NetworkService\ntuser.dat
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\NetworkService\Documents
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\NetworkService\Links
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\NetworkService\Favorites
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\NetworkService\Downloads
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\NetworkService\Desktop
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\NetworkService\Music
[14/07/2009 06:45:47] - |D| - [0] - C:\Windows\ServiceProfiles\NetworkService\Saved Games
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\NetworkService\Videos
[14/07/2009 06:45:47] - |RD| - [0] - C:\Windows\ServiceProfiles\NetworkService\Pictures
[14/07/2009 06:45:47] - |D| - [4915241] - C:\Windows\ServiceProfiles\NetworkService\AppData
[26/02/2011 12:05:23] - |ASH| - [0] - C:\Users\Mareva\ntuser.dat.LOG2
[26/02/2011 12:05:23] - |ASH| - [262144] - C:\Users\Mareva\ntuser.dat.LOG1
[16/03/2013 10:20:12] - |A| - [3997696] - C:\Users\Mareva\ntuser.dat.iobit
[26/02/2011 12:05:23] - |ASH| - [20] - C:\Users\Mareva\ntuser.ini
[07/02/2013 22:01:40] - |A| - [3997696] - C:\Users\Mareva\ntuser.dat
[26/02/2011 12:05:23] - |SHD| - [0] - C:\Users\Mareva\Mes documents
[26/02/2011 12:05:23] - |SHD| - [0] - C:\Users\Mareva\Voisinage d'impression
[26/02/2011 12:05:23] - |SHD| - [0] - C:\Users\Mareva\Voisinage réseau
[26/02/2011 12:05:23] - |SHD| - [0] - C:\Users\Mareva\Application Data
[26/02/2011 12:05:23] - |SHD| - [149355] - C:\Users\Mareva\Cookies
[26/02/2011 12:05:23] - |SHD| - [0] - C:\Users\Mareva\Modèles
[26/02/2011 12:05:23] - |SHD| - [0] - C:\Users\Mareva\Menu Démarrer
[26/02/2011 12:05:23] - |SHD| - [0] - C:\Users\Mareva\Local Settings
[26/02/2011 12:05:23] - |SHD| - [3773] - C:\Users\Mareva\SendTo
[26/02/2011 12:05:23] - |SHD| - [250882] - C:\Users\Mareva\Recent
[26/02/2011 12:05:23] - |HD| - [1745064697] - C:\Users\Mareva\AppData
[12/05/2012 08:15:01] - |D| - [321942378] - C:\Users\Mareva\SpawnApps
[26/02/2011 12:05:23] - |RD| - [504] - C:\Users\Mareva\Videos
[26/02/2011 12:05:47] - |RD| - [45009] - C:\Users\Mareva\Contacts
[26/02/2011 12:05:23] - |RD| - [5255] - C:\Users\Mareva\Favorites
[26/02/2011 12:05:59] - |RD| - [1020] - C:\Users\Mareva\Searches
[26/02/2011 12:05:23] - |RD| - [457] - C:\Users\Mareva\Saved Games
[26/02/2011 12:05:23] - |RD| - [2318] - C:\Users\Mareva\Links
[26/02/2011 12:05:23] - |RD| - [1065036428] - C:\Users\Mareva\Pictures
[26/02/2011 12:05:23] - |RD| - [132689734] - C:\Users\Mareva\Documents
[01/03/2011 20:55:54] - |D| - [0] - C:\Users\Mareva\Tracing
[26/02/2011 12:05:23] - |RD| - [1029] - C:\Users\Mareva\Music
[26/02/2011 12:05:23] - |RD| - [11996550625] - C:\Users\Mareva\Desktop
[26/02/2011 12:05:23] - |RD| - [1324058797] - C:\Users\Mareva\Downloads

¤¤¤¤¤¤¤¤¤¤ | Desktop

[23/12/2012 03:06:18] - |D| - [746654198] - C:\Users\Mareva\Desktop\[www.SceneUnderGround.org] Projet.X.2012.FRENCH.DVDRiP.XviD-WBZ
[23/12/2012 01:05:43] - |A| - [737028656] - C:\Users\Mareva\Desktop\Les.Kaira.2012.FRENCH.DVDRip.XviD-UTT
[28/05/2012 23:04:37] - |A| - [10] - C:\Users\Mareva\Desktop\mot de passe hotmail.txt
[22/02/2012 22:58:03] - |A| - [10] - C:\Users\Mareva\Desktop\mot de passe sfr.txt
[28/05/2012 23:09:25] - |A| - [9] - C:\Users\Mareva\Desktop\mot de passe enregistrement facebook.txt
[01/06/2012 22:42:51] - |A| - [36] - C:\Users\Mareva\Desktop\mot de passe facebook loic.txt
[08/07/2012 09:15:28] - |A| - [38] - C:\Users\Mareva\Desktop\mot de passe windows live.txt
[15/09/2012 09:43:41] - |A| - [29] - C:\Users\Mareva\Desktop\mot de passe comment sa marche loic.txt
[03/12/2012 16:06:49] - |A| - [9] - C:\Users\Mareva\Desktop\dukan.txt
[07/12/2012 21:23:46] - |A| - [10] - C:\Users\Mareva\Desktop\mot de passe panel.txt
[22/02/2012 22:59:02] - |A| - [17] - C:\Users\Mareva\Desktop\mot de passe facebook.txt
[18/07/2012 04:48:59] - |A| - [6] - C:\Users\Mareva\Desktop\mot de passe yoni.txt
[27/03/2013 11:51:30] - |A| - [22] - C:\Users\Mareva\Desktop\paypal.txt
[23/04/2013 16:50:58] - |A| - [405] - C:\Users\Mareva\Desktop\Part_Look.txt
[26/02/2011 12:05:59] - |A| - [905] - C:\Users\Mareva\Desktop\Downloads.lnk
[03/03/2011 13:52:58] - |A| - [363] - C:\Users\Mareva\Desktop\Ordinateur - Raccourci.lnk
[23/03/2011 14:01:34] - |A| - [1055] - C:\Users\Mareva\Desktop\PhotoFiltre.lnk
[01/05/2012 20:53:38] - |A| - [1941] - C:\Users\Mareva\Desktop\Update Checker.lnk
[10/02/2013 00:56:23] - |A| - [1247] - C:\Users\Mareva\Desktop\Play Free Games.lnk
[03/11/2012 17:51:58] - |A| - [2382] - C:\Users\Mareva\Desktop\Google Chrome.lnk
[23/04/2013 16:25:29] - |A| - [960] - C:\Users\Mareva\Desktop\Internet Explorer.lnk
[13/03/2013 20:45:56] - |A| - [55030] - C:\Users\Mareva\Desktop\481284_357793207670734_206790430_n.jpg
[24/03/2013 20:46:11] - |A| - [54312] - C:\Users\Mareva\Desktop\538216_305679602887507_67180609_n.jpg
[01/04/2013 15:08:28] - |A| - [22340] - C:\Users\Mareva\Desktop\9937_4680031729791_993278594_n.jpg
[26/02/2011 12:05:59] - |ASH| - [282] - C:\Users\Mareva\Desktop\desktop.ini
[23/10/2012 17:43:03] - |A| - [558528] - C:\Users\Mareva\Desktop\ssk_claro.exe
[03/03/2011 13:48:01] - |D| - [31381288] - C:\Users\Mareva\Desktop\dossier avast
[26/02/2011 19:51:16] - |D| - [10480756714] - C:\Users\Mareva\Desktop\Film
[23/12/2012 01:19:50] - |D| - [29823] - C:\Users\Mareva\Desktop\My Shared Folder
[08/09/2010 05:12:24] - |A| - [2076] - C:\Users\Public\Desktop\Packard Bell Registration.lnk
[08/09/2010 05:12:32] - |A| - [2081] - C:\Users\Public\Desktop\User's Guide (Packard Bell InfoCentre).lnk
[02/12/2010 18:07:05] - |A| - [1225] - C:\Users\Public\Desktop\Adobe Photoshop Elements 8.0.lnk
[02/04/2011 00:37:17] - |A| - [1118] - C:\Users\Public\Desktop\Picasa 3.lnk
[03/03/2011 14:04:13] - |A| - [1121] - C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[09/09/2011 14:21:10] - |A| - [2515] - C:\Users\Public\Desktop\Skype.lnk
[19/02/2012 15:19:12] - |A| - [949] - C:\Users\Public\Desktop\eMule.lnk
[04/09/2011 15:40:57] - |A| - [949] - C:\Users\Public\Desktop\Mozilla Firefox.lnk
[02/06/2012 16:28:04] - |A| - [915] - C:\Users\Public\Desktop\µTorrent.lnk
[02/09/2012 15:45:49] - |A| - [2061] - C:\Users\Public\Desktop\ViewNX 2.lnk
[02/09/2012 15:48:41] - |A| - [2026] - C:\Users\Public\Desktop\Panorama Maker 6.lnk
[22/10/2012 22:23:00] - |A| - [1991] - C:\Users\Public\Desktop\Adobe Reader XI.lnk
[23/12/2012 00:34:11] - |A| - [1038] - C:\Users\Public\Desktop\VLC media player.lnk
[20/12/2012 22:05:01] - |A| - [923] - C:\Users\Public\Desktop\Ares.lnk
[11/11/2012 11:42:29] - |A| - [1193] - C:\Users\Public\Desktop\Advanced SystemCare 6.lnk
[11/11/2012 11:42:29] - |A| - [1244] - C:\Users\Public\Desktop\Uninstaller.lnk
[03/03/2011 13:59:15] - |A| - [834] - C:\Users\Public\Desktop\CCleaner.lnk
[04/03/2013 22:06:41] - |A| - [1142] - C:\Users\Public\Desktop\Smart Defrag 2.lnk
[04/03/2013 22:06:46] - |A| - [1145] - C:\Users\Public\Desktop\IObit Malware Fighter.lnk
[09/08/2011 17:55:23] - |N| - [2742] - C:\Users\Public\Desktop\WildTangent Games App - packardbell.lnk
[23/04/2013 15:20:59] - |A| - [1934] - C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[26/02/2011 12:06:02] - |A| - [898] - C:\Users\Public\Desktop\Boutique Accessoires PB.lnk
[14/07/2009 06:54:23] - |SH| - [7034] - C:\Users\Public\Desktop\desktop.ini

¤¤¤¤¤¤¤¤¤¤ | Downloads

[23/03/2011 19:34:42] - |A| - [3914014] - C:\Users\Mareva\Downloads\01 Piste 1.wma
[23/03/2011 19:34:43] - |A| - [3155062] - C:\Users\Mareva\Downloads\02 Piste 2.wma
[23/03/2011 19:34:44] - |A| - [3190918] - C:\Users\Mareva\Downloads\03 Piste 3.wma
[23/03/2011 19:34:44] - |A| - [2545510] - C:\Users\Mareva\Downloads\04 Piste 4.wma
[23/03/2011 19:34:44] - |A| - [2491726] - C:\Users\Mareva\Downloads\05 Piste 5.wma
[23/03/2011 19:34:44] - |A| - [3358246] - C:\Users\Mareva\Downloads\06 Piste 6.wma
[23/03/2011 19:34:45] - |A| - [2904070] - C:\Users\Mareva\Downloads\07 Piste 7.wma
[23/03/2011 19:34:45] - |A| - [2348302] - C:\Users\Mareva\Downloads\08 Piste 8.wma
[23/03/2011 19:34:45] - |A| - [1864246] - C:\Users\Mareva\Downloads\09 Piste 9.wma
[23/03/2011 19:34:46] - |A| - [2228782] - C:\Users\Mareva\Downloads\10 Piste 10.wma
[23/03/2011 19:34:46] - |A| - [1493734] - C:\Users\Mareva\Downloads\11 Piste 11.wma
[23/03/2011 19:34:46] - |A| - [2581366] - C:\Users\Mareva\Downloads\12 Piste 12.wma
[23/03/2011 19:34:47] - |A| - [2617222] - C:\Users\Mareva\Downloads\16 Piste 16.wma
[23/03/2011 19:34:48] - |A| - [3107254] - C:\Users\Mareva\Downloads\17 Piste 17.wma
[23/03/2011 19:34:48] - |A| - [2360254] - C:\Users\Mareva\Downloads\18 Piste 18.wma
[23/03/2011 19:34:48] - |A| - [3388126] - C:\Users\Mareva\Downloads\19 Piste 19.wma
[23/03/2011 19:34:48] - |A| - [1625206] - C:\Users\Mareva\Downloads\20 Piste 20.wma
[23/03/2011 19:34:49] - |A| - [2151094] - C:\Users\Mareva\Downloads\21 Piste 21.wma
[23/03/2011 19:34:49] - |A| - [2067430] - C:\Users\Mareva\Downloads\22 Piste 22.wma
[23/03/2011 19:34:49] - |A| - [1798510] - C:\Users\Mareva\Downloads\23 Piste 23.wma
[23/03/2011 19:34:49] - |A| - [2007670] - C:\Users\Mareva\Downloads\24 Piste 24.wma
[23/03/2011 19:34:49] - |A| - [2204878] - C:\Users\Mareva\Downloads\25 Piste 25.wma
[23/03/2011 19:34:49] - |A| - [2073406] - C:\Users\Mareva\Downloads\26 Piste 26.wma
[23/03/2011 19:34:49] - |A| - [1141150] - C:\Users\Mareva\Downloads\27 Piste 27.wma
[23/03/2011 19:34:49] - |A| - [3465814] - C:\Users\Mareva\Downloads\28 Piste 28.wma
[23/03/2011 19:34:50] - |A| - [2192926] - C:\Users\Mareva\Downloads\29 Piste 29.wma
[23/03/2011 19:34:50] - |A| - [967846] - C:\Users\Mareva\Downloads\30 Piste 30.wma
[23/03/2011 19:34:50] - |A| - [1601302] - C:\Users\Mareva\Downloads\32 Piste 32.wma
[23/03/2011 19:34:50] - |A| - [1708870] - C:\Users\Mareva\Downloads\33 Piste 33.wma
[23/10/2012 18:23:43] - |A| - [10270] - C:\Users\Mareva\Downloads\google.txt
[02/06/2012 16:36:05] - |A| - [15362] - C:\Users\Mareva\Downloads\Projet.X.2012.FRENCH.DVDRiP.XviD-WBZ.torrent
[23/12/2012 00:21:59] - |A| - [17234] - C:\Users\Mareva\Downloads\Les.Kaira.2012.FRENCH.1080p.BluRay.x264-SEiGHT.mkv.torrent
[23/12/2012 00:37:30] - |A| - [17234] - C:\Users\Mareva\Downloads\Les.Kaira.2012.FRENCH.1080p.BluRay.x264-SEiGHT.mkv (1).torrent
[23/12/2012 01:05:35] - |A| - [14461] - C:\Users\Mareva\Downloads\Les.Kaira.2012.FRENCH.DVDRip.XviD-UTT.torrent
[12/02/2012 12:09:55] - |A| - [15646] - C:\Users\Mareva\Downloads\i-love-tous-mes-amis-de-facebook-130596525030.png
[01/05/2012 23:42:48] - |A| - [11558] - C:\Users\Mareva\Downloads\app_full_proxy.png
[06/05/2012 13:38:30] - |A| - [14136] - C:\Users\Mareva\Downloads\app_full_proxy (1)!!.png
[14/06/2012 20:47:00] - |A| - [801028] - C:\Users\Mareva\Downloads\Capture2.PNG
[30/06/2012 01:22:06] - |A| - [172598] - C:\Users\Mareva\Downloads\Capture5.PNG
[05/08/2012 19:15:22] - |A| - [15271] - C:\Users\Mareva\Downloads\app_full_proxy (1).png
[29/10/2012 00:56:53] - |A| - [14938] - C:\Users\Mareva\Downloads\app_full_proxy (2).png
[06/06/2012 21:42:11] - |A| - [2639] - C:\Users\Mareva\Downloads\Capture.PNG
[01/01/2012 16:13:26] - |HD| - [36387] - C:\Users\Mareva\Downloads\.picasaoriginals
[09/09/2011 14:33:30] - |A| - [11135488] - C:\Users\Mareva\Downloads\AdbeRdrUpd942_all_incr.msp
[09/09/2011 14:36:37] - |A| - [11135488] - C:\Users\Mareva\Downloads\AdbeRdrUpd942_all_incr(1).msp
[09/09/2011 14:19:56] - |A| - [22482944] - C:\Users\Mareva\Downloads\SkypeSetup.msi
[23/03/2011 19:34:45] - |A| - [10739712] - C:\Users\Mareva\Downloads\10 - Ya Rayah.mp3
[05/03/2011 22:14:32] - |A| - [4490167] - C:\Users\Mareva\Downloads\What you Need - Taio Cruz ( New R& 39;n& 39;B music 2010).mp3
[05/03/2011 22:32:26] - |A| - [1547390] - C:\Users\Mareva\Downloads\Mavado ft Stacious - Come Into My Room (January 2010) [ALL MOL Caribbean].mp3
[05/03/2011 04:06:04] - |A| - [5846731] - C:\Users\Mareva\Downloads\KAYNA SAMET YEMA CLIP.mp3
[04/03/2011 22:02:38] - |A| - [6354551] - C:\Users\Mareva\Downloads\TLF feat Indila - Criminel  CLIP OFFICIEL.mp3
[05/03/2011 03:56:13] - |A| - [4458689] - C:\Users\Mareva\Downloads\zaho tunisiano exclusif.mp3
[05/03/2011 00:56:31] - |A| - [5377154] - C:\Users\Mareva\Downloads\[LE CLIP] LYNNSHA & NEG& 39;MARRONS - MON IDEAL.mp3
[04/03/2011 21:55:59] - |A| - [1668647] - C:\Users\Mareva\Downloads\09 Jalal el Hamdaoui - Même si je tombe pas.mp3
[05/03/2011 03:50:03] - |A| - [1431579] - C:\Users\Mareva\Downloads\bles forever dis moi je t& 39;aime 2009.mp3
[05/03/2011 01:03:59] - |A| - [6224148] - C:\Users\Mareva\Downloads\Booba - Abracadabra (1).mp3
[05/03/2011 04:00:07] - |A| - [6269661] - C:\Users\Mareva\Downloads\booba - comme une etoile (Lunatic 2010 Qualité CD).mp3
[05/03/2011 03:47:49] - |A| - [4753977] - C:\Users\Mareva\Downloads\Cheba Maria feat Raiss - aji l& 39;darek.mp3
[05/03/2011 00:58:58] - |A| - [4811028] - C:\Users\Mareva\Downloads\Colonel Reyel - & 39;Celui& 39; (clip officiel) (1).mp3
[04/03/2011 22:14:21] - |A| - [5702535] - C:\Users\Mareva\Downloads\Don Choa feat Zaho - Lune de miel.mp3
[05/03/2011 03:51:54] - |A| - [1756215] - C:\Users\Mareva\Downloads\JALAL& RACHID KASMI  BLED FOREVER MALINA REMIX DJ AMIR.mp3
[06/03/2011 11:59:45] - |RA| - [4466089] - C:\Users\Mareva\Downloads\MAGIC SYSTEM - Ambiance à L& 39;Africaine.mp3
[06/03/2011 12:18:14] - |RA| - [4839999] - C:\Users\Mareva\Downloads\Inna - Sun Is Up.mp3
[06/03/2011 12:36:45] - |A| - [4711851] - C:\Users\Mareva\Downloads\Rihanna ft David Guetta - Who& 39;s That Chick.mp3
[06/03/2011 12:50:57] - |A| - [5778651] - C:\Users\Mareva\Downloads\Coming Home- Diddy feat. Skylar Grey Dirty Money(Download link).mp3
[08/03/2011 22:33:46] - |A| - [6536345] - C:\Users\Mareva\Downloads\Booba - Saddam Hauts De Seine.mp3
[09/03/2011 13:38:59] - |A| - [10281069] - C:\Users\Mareva\Downloads\ROHFF - CÉLIBATARD FEAT JMI SISSOKO (LA CUENTA) QUALITÉ CD [EXCLU] (1).mp3
[09/03/2011 13:37:14] - |A| - [5498022] - C:\Users\Mareva\Downloads\Rohff - Dans Ma Werss.mp3
[09/03/2011 22:59:03] - |A| - [11032602] - C:\Users\Mareva\Downloads\Rohff - Sincere (1).mp3
[10/03/2011 16:52:59] - |A| - [5801723] - C:\Users\Mareva\Downloads\Bilel - A la parisienne - NEOCHROME 2010.mp3
[10/03/2011 19:49:11] - |A| - [1569776] - C:\Users\Mareva\Downloads\Dayna - Madame la Justice.mp3
[10/03/2011 20:04:12] - |A| - [7214216] - C:\Users\Mareva\Downloads\Nelly - Stepped On My J& 39;z ft. Jermaine Dupri, Ciara.mp3
[23/03/2011 19:34:41] - |RA| - [6394807] - C:\Users\Mareva\Downloads\Jennifer Lopez - On The Floor ft. Pitbull.mp3
[23/03/2011 19:34:42] - |RA| - [5041873] - C:\Users\Mareva\Downloads\Wynter Gordon - Dirty Talk [Official Video].mp3
[23/03/2011 19:34:41] - |RA| - [4644394] - C:\Users\Mareva\Downloads\Alexandra Stan-Mr.Saxo Beat(OFICIAL VIDEO HD).mp3
[16/03/2011 00:28:49] - |A| - [6028492] - C:\Users\Mareva\Downloads\50 Cent - Candy Shop ft. Olivia.mp3
[15/03/2011 21:13:03] - |A| - [5125073] - C:\Users\Mareva\Downloads\DJDJEB - Cheb Fauzi Feat Shaim & Faouzi Attentat ""ELLE""HIYA"" NE.mp3
[23/03/2011 19:34:42] - |A| - [4921318] - C:\Users\Mareva\Downloads\Pitbull - Hey Baby (Drop It To The Floor) ft. T-Pain.mp3
[13/06/2011 18:19:25] - |A| - [2001638] - C:\Users\Mareva\Downloads\YouTube        - Mala - la malekal.mp3
[13/06/2011 18:19:22] - |A| - [1950229] - C:\Users\Mareva\Downloads\Mala feat booba danse pour moi.mp3
[13/06/2011 18:19:22] - |A| - [2143117] - C:\Users\Mareva\Downloads\LA SWIJA HLM HD.mp3
[13/06/2011 18:19:26] - |A| - [1820453] - C:\Users\Mareva\Downloads\Imran Khan - Bewafa Song Full High Quality.mp3
[13/06/2011 18:19:26] - |A| - [1570095] - C:\Users\Mareva\Downloads\Kenza Farah - Crack Musik feat alonzo - 2011 ( Clip Officiel ) Exclusive Sur www.Melody.Ma.mp3
[13/06/2011 18:19:26] - |A| - [1424018] - C:\Users\Mareva\Downloads\Imran Khan Qott Ghusian.mp3
[13/06/2011 18:19:26] - |A| - [1820871] - C:\Users\Mareva\Downloads\Imran Khan - Aaja We Mahiya 2010 ReMix By. [AsHeR MeKoNeN] =].mp3
[13/06/2011 18:19:24] - |A| - [1866010] - C:\Users\Mareva\Downloads\ROHFF LA CUENTA FEAT LUMIDEE.mp3
[13/06/2011 18:19:24] - |A| - [2191809] - C:\Users\Mareva\Downloads\Rohff-Que Pour Les Vrais.mp3
[13/06/2011 18:19:23] - |A| - [1775104] - C:\Users\Mareva\Downloads\OGB Feat Mohamed Lamine Lala Fat LE CLIP OFFICIEL HD.mp3
[13/06/2011 18:19:24] - |A| - [2718301] - C:\Users\Mareva\Downloads\Salif - Fugazi.mp3
[13/06/2011 18:19:25] - |A| - [1980766] - C:\Users\Mareva\Downloads\[EXCLU] ROHFF - LES CHOSES SIMPLES (QUALITECD) [LA CUENTA].mp3
[13/06/2011 18:19:25] - |A| - [2292773] - C:\Users\Mareva\Downloads\Booba ft. Akon Gun in hand.mp3
[13/06/2011 18:19:26] - |A| - [1638458] - C:\Users\Mareva\Downloads\La Comera-Galatick Beat Tu connais lipe.mp3
[13/06/2011 18:19:22] - |A| - [2895470] - C:\Users\Mareva\Downloads\LALGERINO - PAS LA POUR LEUR PLAIRE (SON HD).mp3
[13/06/2011 18:19:23] - |A| - [2080241] - C:\Users\Mareva\Downloads\Mokless  Boogie - Boogie  Scred Connexion.mp3
[13/06/2011 18:19:23] - |A| - [1892489] - C:\Users\Mareva\Downloads\RimK - Rachid System.mp3
[13/06/2011 18:19:23] - |A| - [2885109] - C:\Users\Mareva\Downloads\Rohff - 94.mp3
[13/06/2011 18:19:23] - |A| - [1660080] - C:\Users\Mareva\Downloads\Rohff - En Mode.mp3
[13/06/2011 18:19:24] - |A| - [2094242] - C:\Users\Mareva\Downloads\ROHFF FEAT LA FOUINE ON PEUT PAS TOUT AVOIR.mp3
[13/06/2011 18:19:25] - |A| - [1631562] - C:\Users\Mareva\Downloads\Salif - La zermi ( HQ ).mp3
[13/06/2011 18:19:25] - |A| - [2232378] - C:\Users\Mareva\Downloads\YouTube        - Mala - Bienvenue.mp3
[13/06/2011 18:19:26] - |A| - [2511993] - C:\Users\Mareva\Downloads\booba-du biff.mp3
[28/01/2013 08:24:41] - |A| - [9822812] - C:\Users\Mareva\Downloads\LA FOUINE  AUTOPSIE VOLUME 5 Official.mp3
[23/03/2011 19:34:42] - |A| - [3216868] - C:\Users\Mareva\Downloads\01 Piste 01 4.m4a
[23/03/2011 19:34:42] - |A| - [2426581] - C:\Users\Mareva\Downloads\01 Piste 01.m4a
[23/03/2011 19:34:43] - |A| - [3101718] - C:\Users\Mareva\Downloads\02 Piste 02 2.m4a
[23/03/2011 19:34:43] - |A| - [3786040] - C:\Users\Mareva\Downloads\02 Piste 02 4.m4a
[23/03/2011 19:34:43] - |A| - [4016546] - C:\Users\Mareva\Downloads\02 Piste 02 6.m4a
[23/03/2011 19:34:43] - |A| - [3566335] - C:\Users\Mareva\Downloads\02 Piste 02.m4a
[23/03/2011 19:34:44] - |A| - [2387485] - C:\Users\Mareva\Downloads\03 Piste 03.m4a
[23/03/2011 19:34:44] - |A| - [3070306] - C:\Users\Mareva\Downloads\06 Piste 06 2.m4a
[23/03/2011 19:34:46] - |A| - [3904292] - C:\Users\Mareva\Downloads\10 Piste 10.m4a
[23/03/2011 19:34:46] - |A| - [2538738] - C:\Users\Mareva\Downloads\12 Piste 12 1.m4a
[23/03/2011 19:34:46] - |A| - [3485156] - C:\Users\Mareva\Downloads\12 Piste 12 5.m4a
[23/03/2011 19:34:47] - |A| - [1874669] - C:\Users\Mareva\Downloads\13 Piste 13 1.m4a
[23/03/2011 19:34:47] - |A| - [2050205] - C:\Users\Mareva\Downloads\14 Piste 14 1.m4a
[23/03/2011 19:34:47] - |A| - [3241833] - C:\Users\Mareva\Downloads\15 Piste 15 1.m4a
[23/03/2011 19:34:48] - |A| - [2985274] - C:\Users\Mareva\Downloads\18 Piste 18.m4a
[23/03/2011 19:34:48] - |A| - [3316063] - C:\Users\Mareva\Downloads\19 Piste 19.m4a
[23/03/2011 19:34:50] - |A| - [1674407] - C:\Users\Mareva\Downloads\31 Piste 31.m4a
[23/04/2013 16:25:30] - |A| - [905] - C:\Users\Mareva\Downloads\Desinfecter son Pc gratuitement.lnk
[09/03/2011 19:58:58] - |ASH| - [1611] - C:\Users\Mareva\Downloads\AlbumArt_{FB30F22A-F5CC-43CC-8492-11C5575CF022}_Small.jpg
[09/03/2011 19:58:58] - |ASH| - [4900] - C:\Users\Mareva\Downloads\AlbumArt_{FB30F22A-F5CC-43CC-8492-11C5575CF022}_Large.jpg
[09/03/2011 19:59:24] - |ASH| - [2054] - C:\Users\Mareva\Downloads\AlbumArt_{36646D55-E4FD-4010-9DD6-E25E0DAC1C39}_Small.jpg
[09/03/2011 19:59:24] - |ASH| - [8032] - C:\Users\Mareva\Downloads\AlbumArt_{36646D55-E4FD-4010-9DD6-E25E0DAC1C39}_Large.jpg
[10/03/2011 15:44:42] - |ASH| - [2530] - C:\Users\Mareva\Downloads\AlbumArt_{7D4A6365-00B8-48CB-9F2C-C839D29A87F3}_Small.jpg
[10/03/2011 15:44:42] - |ASH| - [9721] - C:\Users\Mareva\Downloads\AlbumArt_{7D4A6365-00B8-48CB-9F2C-C839D29A87F3}_Large.jpg
[27/03/2011 20:03:33] - |ASH| - [1283] - C:\Users\Mareva\Downloads\AlbumArt_{0444C342-F2B8-4890-86A9-E85D62F63343}_Small.jpg
[27/03/2011 20:03:33] - |ASH| - [4301] - C:\Users\Mareva\Downloads\AlbumArt_{0444C342-F2B8-4890-86A9-E85D62F63343}_Large.jpg
[27/03/2011 20:04:26] - |ASH| - [1979] - C:\Users\Mareva\Downloads\AlbumArt_{4C34BB1E-6B5A-422F-93C8-86EF2A155E78}_Small.jpg
[27/03/2011 20:04:26] - |ASH| - [6932] - C:\Users\Mareva\Downloads\AlbumArt_{4C34BB1E-6B5A-422F-93C8-86EF2A155E78}_Large.jpg
[01/07/2011 21:31:24] - |ASH| - [2504] - C:\Users\Mareva\Downloads\AlbumArt_{08890A07-16E0-42ED-A318-306504DF39B8}_Small.jpg
[01/07/2011 21:31:24] - |ASH| - [9891] - C:\Users\Mareva\Downloads\AlbumArt_{08890A07-16E0-42ED-A318-306504DF39B8}_Large.jpg
[01/07/2011 21:32:07] - |ASH| - [2632] - C:\Users\Mareva\Downloads\AlbumArt_{20C48B46-1899-4E96-81E3-DAEA87F24B3D}_Small.jpg
[09/03/2011 19:58:58] - |ASH| - [2632] - C:\Users\Mareva\Downloads\AlbumArtSmall.jpg
[01/07/2011 21:32:07] - |ASH| - [10862] - C:\Users\Mareva\Downloads\AlbumArt_{20C48B46-1899-4E96-81E3-DAEA87F24B3D}_Large.jpg
[09/03/2011 19:58:58] - |ASH| - [10862] - C:\Users\Mareva\Downloads\Folder.jpg
[28/11/2011 10:34:32] - |A| - [42061] - C:\Users\Mareva\Downloads\beau papillon.jpg
[31/12/2011 12:01:30] - |A| - [40402] - C:\Users\Mareva\Downloads\nouvelle année.jpg
[01/01/2012 16:14:35] - |A| - [9928] - C:\Users\Mareva\Downloads\chance.jpg
[01/01/2012 16:13:26] - |A| - [9928] - C:\Users\Mareva\Downloads\loulou et chance.jpg
[01/01/2012 16:26:54] - |A| - [10816] - C:\Users\Mareva\Downloads\chance2.jpg
[01/01/2012 16:29:54] - |A| - [10825] - C:\Users\Mareva\Downloads\chance3.jpg
[12/02/2012 16:24:49] - |A| - [17942] - C:\Users\Mareva\Downloads\jolie rose.jpg
[02/03/2012 23:55:43] - |A| - [63942] - C:\Users\Mareva\Downloads\jolie foto.jpg
[03/03/2012 00:11:43] - |A| - [104247] - C:\Users\Mareva\Downloads\bo cheval.jpg
[11/03/2012 22:30:13] - |A| - [58992] - C:\Users\Mareva\Downloads\beau chat.jpg
[11/04/2012 21:13:10] - |A| - [36124] - C:\Users\Mareva\Downloads\beau cheval.jpg
[11/04/2012 21:15:27] - |A| - [69583] - C:\Users\Mareva\Downloads\beau texte.jpg
[21/04/2012 21:28:44] - |A| - [20003] - C:\Users\Mareva\Downloads\CHEVAL.jpg
[22/04/2012 00:08:22] - |A| - [62486] - C:\Users\Mareva\Downloads\O CHEVAL.jpg
[09/09/2012 03:42:30] - |A| - [99645] - C:\Users\Mareva\Downloads\579883_266946110083894_579599887_n.jpg
[09/09/2012 03:44:10] - |A| - [68899] - C:\Users\Mareva\Downloads\530169_266945013417337_472301640_n.jpg
[16/09/2012 09:29:16] - |A| - [68133] - C:\Users\Mareva\Downloads\381253_428334520535673_1118342437_n.jpg
[18/09/2012 23:10:22] - |A| - [78488] - C:\Users\Mareva\Downloads\564093_429186030450522_1105159986_n.jpg
[12/12/2012 00:30:58] - |A| - [84064] - C:\Users\Mareva\Downloads\77045_4839365549228_1999692859_n.jpg
[15/12/2012 21:54:50] - |A| - [20214] - C:\Users\Mareva\Downloads\563618_506815449351736_1539684657_n.jpg
[26/01/2013 17:33:12] - |A| - [59872] - C:\Users\Mareva\Downloads\408566_366471346785146_74250596_n.jpg
[20/03/2013 20:14:40] - |A| - [45525] - C:\Users\Mareva\Downloads\479992_243039242501440_1694242411_n.jpg
[03/12/2012 16:39:59] - |A| - [3273] - C:\Users\Mareva\Downloads\a3cdc07d21d403e47de8233368258f23.jpeg
[03/12/2012 16:42:34] - |A| - [3273] - C:\Users\Mareva\Downloads\a3cdc07d21d403e47de8233368258f23 (1).jpeg
[03/12/2012 16:42:34] - |A| - [3273] - C:\Users\Mareva\Downloads\a3cdc07d21d403e47de8233368258f23 (2).jpeg
[01/01/2012 16:13:08] - |AH| - [113] - C:\Users\Mareva\Downloads\.picasa.ini
[26/02/2011 12:05:59] - |ASH| - [976] - C:\Users\Mareva\Downloads\desktop.ini
[12/02/2013 18:59:59] - |A| - [9519] - C:\Users\Mareva\Downloads\web.gz
[12/02/2013 19:01:48] - |A| - [8875] - C:\Users\Mareva\Downloads\web (1).gz
[12/02/2013 19:50:20] - |A| - [10255] - C:\Users\Mareva\Downloads\web (3).gz
[12/02/2013 19:49:33] - |A| - [8478] - C:\Users\Mareva\Downloads\web (2).gz
[22/04/2012 12:01:08] - |A| - [483034] - C:\Users\Mareva\Downloads\WorldClock.gadget
[23/04/2013 16:49:31] - |A| - [459850] - C:\Users\Mareva\Downloads\Part_Look.exe
[23/04/2013 16:53:25] - |A| - [459850] - C:\Users\Mareva\Downloads\Part_Look (1).exe
[23/04/2013 17:10:41] - |A| - [2428313] - C:\Users\Mareva\Downloads\winlogon.exe
[18/01/2012 16:49:56] - |A| - [16084] - C:\Users\Mareva\Downloads\gameloader.dcr
[18/01/2012 16:58:31] - |A| - [3809160] - C:\Users\Mareva\Downloads\1179762872hostelpart2.dcr
[25/01/2012 10:52:40] - |A| - [151177] - C:\Users\Mareva\Downloads\polaristestride.dcr
[11/10/2012 21:28:19] - |A| - [326775] - C:\Users\Mareva\Downloads\TimeLineRemove.crx
[03/03/2011 14:11:05] - |D| - [0] - C:\Users\Mareva\Downloads\eMule
[04/09/2011 14:27:23] - |A| - [80811314] - C:\Users\Mareva\Downloads\Cars 2 [r5]
[02/09/2012 15:41:33] - |D| - [101446000] - C:\Users\Mareva\Downloads\Nikon
[09/12/2012 11:52:16] - |A| - [58333] - C:\Users\Mareva\Downloads\img_0264-1--14c401f
[20/05/2012 13:46:16] - |D| - [3641895] - C:\Users\Mareva\Downloads\belles images
[01/05/2012 15:18:47] - |D| - [11968] - C:\Users\Mareva\Downloads\farmville

¤¤¤¤¤¤¤¤¤¤ | StartMenu

[14/07/2009 06:45:47] - |D| - [676] - C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
[14/07/2009 06:45:47] - |D| - [676] - C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
[11/11/2012 11:42:33] - |A| - [1232] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
[26/02/2011 12:05:59] - |ASH| - [174] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
[26/02/2011 12:05:23] - |SD| - [0] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes
[26/02/2011 12:05:23] - |RD| - [26874] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
[14/07/2009 06:49:40] - |A| - [1266] - C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
[14/07/2009 07:01:14] - |A| - [1282] - C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
[11/11/2012 11:42:33] - |A| - [1214] - C:\ProgramData\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
[14/07/2009 06:49:40] - |ASH| - [442] - C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini
[26/02/2011 12:05:14] - |SHD| - [0] - C:\ProgramData\Microsoft\Windows\Start Menu\Programmes
[14/07/2009 05:20:08] - |RD| - [240457] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs

¤¤¤¤¤¤¤¤¤¤ | StartMenu\Programs

[14/07/2009 06:45:47] - |D| - [170] - C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[14/07/2009 06:45:47] - |D| - [506] - C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[14/07/2009 06:45:47] - |D| - [170] - C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[14/07/2009 06:45:47] - |D| - [506] - C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[26/02/2011 12:06:05] - |A| - [1437] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
[01/05/2012 20:53:38] - |A| - [1971] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Update Checker.lnk
[26/02/2011 12:05:59] - |ASH| - [476] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
[01/03/2011 13:21:59] - |D| - [0] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\My Application
[23/03/2011 14:01:34] - |D| - [0] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
[26/02/2011 12:05:23] - |RD| - [14637] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[26/02/2011 12:05:23] - |RD| - [580] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[26/02/2011 12:05:59] - |RD| - [174] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[26/02/2011 12:05:59] - |RD| - [174] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[07/11/2012 22:56:44] - |D| - [210] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU
[05/06/2012 16:51:47] - |D| - [4802] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LightShot
[03/11/2012 17:51:55] - |D| - [2413] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[14/07/2009 06:54:59] - |A| - [1210] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
[14/07/2009 06:57:08] - |A| - [1330] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
[14/07/2009 06:57:08] - |A| - [1246] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
[14/07/2009 06:57:09] - |A| - [1352] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
[08/09/2010 04:28:46] - |A| - [1326] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
[08/09/2010 04:28:51] - |A| - [1345] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
[14/07/2009 06:57:06] - |A| - [1547] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
[08/09/2010 05:12:45] - |A| - [2194] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Welcome Center.lnk
[08/09/2010 05:21:56] - |A| - [1949] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Contact a friend for Assistance.lnk
[02/12/2010 18:04:44] - |A| - [2435] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2010.lnk
[02/12/2010 18:07:05] - |A| - [1237] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Elements 8.0.lnk
[04/09/2011 15:40:57] - |A| - [961] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[15/07/2011 13:24:14] - |A| - [2502] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
[15/07/2011 13:24:27] - |A| - [1450] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
[15/07/2011 13:24:44] - |A| - [1346] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Photo Gallery.lnk
[15/07/2011 13:24:59] - |A| - [1277] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Movie Maker.lnk
[22/10/2012 22:23:00] - |A| - [2441] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
[14/07/2009 06:54:23] - |ASH| - [1914] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
[08/09/2010 05:07:52] - |D| - [15211] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
[08/09/2010 05:25:27] - |RHD| - [0] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tablet PC
[14/07/2009 05:20:08] - |RD| - [43590] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
[14/07/2009 07:32:38] - |RD| - [18363] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[14/07/2009 05:20:08] - |RD| - [4370] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance
[02/12/2010 17:51:27] - |D| - [1754] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Web Camera
[02/12/2010 17:52:11] - |RD| - [2019] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Social Networks
[03/03/2011 13:59:15] - |D| - [1764] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[23/03/2011 14:01:34] - |D| - [4265] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoFiltre
[02/04/2011 00:37:09] - |D| - [3156] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
[03/03/2011 14:04:13] - |D| - [3441] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[09/09/2011 14:21:10] - |D| - [2533] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[19/02/2012 15:19:04] - |D| - [3072] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eMule
[14/07/2009 05:20:08] - |RD| - [174] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
[15/07/2011 13:25:00] - |RD| - [2473] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
[02/09/2012 15:45:48] - |D| - [6100] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX 2
[02/09/2012 15:47:13] - |D| - [4374] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
[02/09/2012 15:48:41] - |D| - [1948] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ArcSoft Panorama Maker 6
[02/09/2012 15:41:22] - |D| - [797] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Link to Nikon
[01/03/2011 13:21:44] - |D| - [2155] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Orange
[20/12/2012 22:05:00] - |D| - [3940] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ares
[23/12/2012 00:34:11] - |D| - [6582] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
[11/11/2012 11:42:29] - |D| - [4869] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare 6
[04/03/2013 22:06:41] - |D| - [2373] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag 2
[04/03/2013 22:06:46] - |D| - [2403] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Malware Fighter
[14/03/2013 00:01:32] - |D| - [2241] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[14/07/2009 07:32:38] - |RD| - [54681] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
[23/04/2013 15:20:59] - |D| - [1871] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus
[08/09/2010 05:09:51] - |RD| - [10876] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Packard Bell - Security & Support

¤¤¤¤¤¤¤¤¤¤ | StartMenu\Programs\Startup

[26/02/2011 12:05:59] - |ASH| - [174] - C:\Users\Mareva\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
[14/07/2009 06:54:23] - |ASH| - [174] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini

¤¤¤¤¤¤¤¤¤¤ | AppData

[14/07/2009 06:48:33] - |SD| - [279468] - C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft
[14/07/2009 06:45:47] - |SD| - [74039] - C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft
[26/02/2011 15:17:53] - |D| - [2082294] - C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\PeerNetworking
[14/07/2009 06:45:47] - |SD| - [3934876] - C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft
[11/10/2012 20:26:35] - |A| - [43] - C:\Users\Mareva\AppData\Roaming\stats.txt
[26/02/2011 12:05:23] - |D| - [0] - C:\Users\Mareva\AppData\Roaming\Media Center Programs
[26/02/2011 12:05:50] - |D| - [0] - C:\Users\Mareva\AppData\Roaming\Identities
[26/02/2011 12:06:16] - |D| - [58186] - C:\Users\Mareva\AppData\Roaming\Macromedia
[26/02/2011 12:12:07] - |D| - [531045] - C:\Users\Mareva\AppData\Roaming\FloodLightGames
[28/02/2011 20:39:52] - |D| - [83628] - C:\Users\Mareva\AppData\Roaming\PlayFirst
[03/03/2011 14:04:32] - |D| - [0] - C:\Users\Mareva\AppData\Roaming\Malwarebytes
[23/03/2011 14:01:51] - |D| - [590] - C:\Users\Mareva\AppData\Roaming\PhotoFiltre
[03/03/2011 14:17:42] - |D| - [0] - C:\Users\Mareva\AppData\Roaming\Google
[08/03/2011 22:07:32] - |D| - [443] - C:\Users\Mareva\AppData\Roaming\SNS
[04/09/2011 15:41:01] - |D| - [20447691] - C:\Users\Mareva\AppData\Roaming\Mozilla
[21/09/2011 04:08:22] - |D| - [37] - C:\Users\Mareva\AppData\Roaming\Packard Bell
[27/11/2011 01:44:51] - |D| - [0] - C:\Users\Mareva\AppData\Roaming\Windows Live Writer
[02/09/2012 15:45:07] - |RA| - [268] - C:\Users\Mareva\AppData\Roaming\Nature
[02/09/2012 15:45:37] - |RA| - [268] - C:\Users\Mareva\AppData\Roaming\Logs
[02/09/2012 15:45:37] - |RA| - [268] - C:\Users\Mareva\AppData\Roaming\MIDI Configurations
[02/09/2012 15:46:24] - |RA| - [268] - C:\Users\Mareva\AppData\Roaming\MAS
[26/02/2011 12:05:23] - |SD| - [1921539] - C:\Users\Mareva\AppData\Roaming\Microsoft
[02/09/2012 15:47:55] - |D| - [634147] - C:\Users\Mareva\AppData\Roaming\ArcSoft
[02/09/2012 15:49:32] - |D| - [110795] - C:\Users\Mareva\AppData\Roaming\Nikon
[01/03/2011 16:42:55] - |D| - [362563] - C:\Users\Mareva\AppData\Roaming\Skype
[02/06/2012 16:26:38] - |D| - [1411197] - C:\Users\Mareva\AppData\Roaming\uTorrent
[01/03/2011 13:21:57] - |D| - [0] - C:\Users\Mareva\AppData\Roaming\Orange
[26/02/2011 12:11:21] - |D| - [5940237] - C:\Users\Mareva\AppData\Roaming\Adobe
[04/09/2011 15:27:22] - |D| - [84727] - C:\Users\Mareva\AppData\Roaming\vlc
[26/06/2011 15:55:13] - |D| - [14044938] - C:\Users\Mareva\AppData\Roaming\IObit
[07/11/2012 22:56:56] - |D| - [4314188] - C:\Users\Mareva\AppData\Roaming\IMVU
[07/11/2012 22:56:31] - |D| - [49499541] - C:\Users\Mareva\AppData\Roaming\IMVUClient

¤¤¤¤¤¤¤¤¤¤ | CommonAppData

[14/07/2009 07:08:56] - |SHD| - [39154] - C:\ProgramData\Desktop
[14/07/2009 07:08:56] - |SHD| - [0] - C:\ProgramData\Favorites
[14/07/2009 07:08:56] - |SHD| - [630] - C:\ProgramData\Documents
[14/07/2009 07:08:56] - |SHD| - [0] - C:\ProgramData\Application Data
[14/07/2009 07:08:56] - |SHD| - [0] - C:\ProgramData\Start Menu
[14/07/2009 07:08:56] - |SHD| - [0] - C:\ProgramData\Templates
[08/09/2010 05:02:36] - |D| - [564] - C:\ProgramData\AmUStor
[08/09/2010 05:06:29] - |D| - [14075263] - C:\ProgramData\NortonInstaller
[08/09/2010 05:07:38] - |D| - [10947893] - C:\ProgramData\Nero
[08/09/2010 05:11:31] - |D| - [1435038] - C:\ProgramData\Packard Bell
[08/09/2010 05:12:37] - |D| - [612] - C:\ProgramData\Acer
[08/09/2010 05:19:43] - |D| - [2] - C:\ProgramData\BackupManager
[02/12/2010 17:51:40] - |D| - [36864] - C:\ProgramData\Temp
[26/02/2011 12:05:14] - |SHD| - [39154] - C:\ProgramData\Bureau
[26/02/2011 12:05:14] - |SHD| - [0] - C:\ProgramData\Favoris
[26/02/2011 12:05:14] - |SHD| - [0] - C:\ProgramData\Menu Démarrer
[26/02/2011 12:05:14] - |SHD| - [0] - C:\ProgramData\Modèles
[08/09/2010 05:22:04] - |D| - [1017] - C:\ProgramData\oem
[26/02/2011 12:12:07] - |D| - [0] - C:\ProgramData\FloodLightGames
[28/02/2011 20:39:52] - |D| - [0] - C:\ProgramData\PlayFirst
[03/03/2011 14:04:12] - |D| - [16390264] - C:\ProgramData\Malwarebytes
[03/03/2011 14:11:05] - |D| - [0] - C:\ProgramData\eMule
[08/03/2011 22:07:34] - |D| - [4706] - C:\ProgramData\CyberLink
[01/03/2011 13:21:42] - |D| - [597089] - C:\ProgramData\Orange
[09/08/2011 18:05:56] - |D| - [8243615] - C:\ProgramData\Wild Tangent
[01/03/2011 16:42:50] - |D| - [19207831] - C:\ProgramData\Skype
[08/09/2010 05:12:53] - |D| - [169650660] - C:\ProgramData\WildTangent
[01/05/2012 20:45:18] - |D| - [189] - C:\ProgramData\Sun
[14/07/2009 05:20:08] - |SD| - [1403788017] - C:\ProgramData\Microsoft
[02/09/2012 15:45:07] - |RH| - [12] - C:\ProgramData\Printer Icons
[02/09/2012 15:45:07] - |RAH| - [12] - C:\ProgramData\Organic
[02/09/2012 15:45:37] - |RH| - [268] - C:\ProgramData\MIDI Drivers
[02/09/2012 15:45:37] - |RH| - [12] - C:\ProgramData\PPD Plugins
[02/09/2012 15:45:37] - |RAH| - [268] - C:\ProgramData\Machines
[02/09/2012 15:45:07] - |D| - [689] - C:\ProgramData\EnterNHelp
[02/09/2012 15:45:07] - |D| - [80] - C:\ProgramData\Ultima_T15
[02/09/2012 15:46:24] - |RAH| - [12] - C:\ProgramData\Overdrive
[02/09/2012 15:46:24] - |RH| - [268] - C:\ProgramData\MIDI Patch Names
[08/09/2010 05:06:50] - |D| - [30560] - C:\ProgramData\Norton
[02/09/2012 16:40:47] - |D| - [143597] - C:\ProgramData\Nikon
[03/03/2011 13:58:43] - |D| - [526512] - C:\ProgramData\Google
[08/09/2010 05:05:51] - |D| - [688460628] - C:\ProgramData\Adobe
[10/02/2013 00:55:36] - |D| - [193536] - C:\ProgramData\Wincert
[14/02/2013 14:58:43] - |D| - [0] - C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
[27/11/2011 01:30:12] - |D| - [21870451] - C:\ProgramData\IObit
[24/06/2011 20:09:55] - |D| - [4752726] - C:\ProgramData\AVAST Software

¤¤¤¤¤¤¤¤¤¤ | LocalAppData

[14/07/2009 06:49:37] - |D| - [68181] - C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft
[11/02/2013 20:10:06] - |D| - [4429268] - C:\Windows\system32\config\systemprofile\AppData\Local\CrashDumps
[23/04/2013 15:30:42] - |A| - [242444] - C:\Windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
[23/04/2013 16:26:18] - |ASH| - [2048] - C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
[23/04/2013 16:26:18] - |ASH| - [2048] - C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
[14/07/2009 06:45:47] - |D| - [49844] - C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft
[26/02/2011 16:02:29] - |D| - [0] - C:\Windows\ServiceProfiles\LocalService\AppData\Local\PnrpSqm
[06/04/2013 18:01:19] - |D| - [0] - C:\Windows\ServiceProfiles\LocalService\AppData\Local\CrashDumps
[14/07/2009 06:45:47] - |D| - [66016] - C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp
[14/07/2009 06:45:47] - |D| - [968108] - C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft
[14/07/2009 06:45:47] - |D| - [1162] - C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Temp
[05/06/2012 16:51:54] - |A| - [1011] - C:\Users\Mareva\AppData\Local\UserProducts.xml
[05/06/2012 16:51:53] - |A| - [3] - C:\Users\Mareva\AppData\Local\updater.log
[23/04/2013 15:30:40] - |AH| - [981886] - C:\Users\Mareva\AppData\Local\IconCache.db
[23/04/2013 15:52:46] - |A| - [59936] - C:\Users\Mareva\AppData\Local\GDIPFONTCACHEV1.DAT
[26/02/2011 12:05:23] - |SHD| - [0] - C:\Users\Mareva\AppData\Local\Temporary Internet Files
[26/02/2011 12:05:23] - |SHD| - [82500] - C:\Users\Mareva\AppData\Local\Historique
[26/02/2011 12:05:23] - |SHD| - [0] - C:\Users\Mareva\AppData\Local\Application Data
[26/02/2011 12:05:45] - |D| - [111213451] - C:\Users\Mareva\AppData\Local\VirtualStore
[26/02/2011 12:26:04] - |D| - [652201] - C:\Users\Mareva\AppData\Local\Microsoft Games
[01/03/2011 13:21:21] - |D| - [49] - C:\Users\Mareva\AppData\Local\Orange
[03/03/2011 14:24:00] - |D| - [2351] - C:\Users\Mareva\AppData\Local\Shalsoft
[11/08/2011 16:59:48] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D0078DEF-AA2D-4E14-8F98-941075FE8D56}
[11/08/2011 17:00:00] - |D| - [0] - C:\Users\Mareva\AppData\Local\{434CA4B8-DDDD-4DEF-8E9D-53DCE4072D97}
[12/08/2011 05:59:19] - |D| - [0] - C:\Users\Mareva\AppData\Local\{4D8FC7EC-3D45-45C6-A101-1E67BB7F9D66}
[12/08/2011 05:59:48] - |D| - [0] - C:\Users\Mareva\AppData\Local\{3282807B-7367-4679-9E7D-06C2A16BEFBC}
[13/08/2011 11:53:34] - |D| - [0] - C:\Users\Mareva\AppData\Local\{46BC7AE9-3B33-4A5D-83A6-FDD521DD8054}
[13/08/2011 11:53:57] - |D| - [0] - C:\Users\Mareva\AppData\Local\{DC93F728-E43B-4DA8-94A7-1510B349226B}
[13/08/2011 23:54:38] - |D| - [0] - C:\Users\Mareva\AppData\Local\{844A58EF-80BA-43AD-9407-3148369CBCBA}
[13/08/2011 23:54:24] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B77FAB63-323D-46BE-80F9-FA90D7D6FFF3}
[14/08/2011 11:55:03] - |D| - [0] - C:\Users\Mareva\AppData\Local\{25EB3B15-6EC0-4ACA-8A9E-4BB77DDA9E41}
[14/08/2011 23:55:16] - |D| - [0] - C:\Users\Mareva\AppData\Local\{4BCC145E-743D-407C-B4E7-6F2D35F3E1C7}
[14/08/2011 23:55:28] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1CE15599-A0ED-4B59-AA2E-B4739A9BFB98}
[15/08/2011 12:42:02] - |D| - [0] - C:\Users\Mareva\AppData\Local\{843519A3-3D0D-4620-ACCE-A0BAE67E77A8}
[15/08/2011 12:42:15] - |D| - [0] - C:\Users\Mareva\AppData\Local\{30B67903-C7C0-4299-8EEB-C3279251B3DD}
[16/08/2011 06:34:50] - |D| - [0] - C:\Users\Mareva\AppData\Local\{E5AF4F49-57F4-42D5-A83E-E0DDDDEF59A0}
[16/08/2011 06:35:27] - |D| - [0] - C:\Users\Mareva\AppData\Local\{9103BED8-6DC7-4653-8F41-39AF742CD366}
[16/08/2011 18:56:46] - |D| - [0] - C:\Users\Mareva\AppData\Local\{00542C09-3B97-4AE1-9F88-71CEB31481DC}
[16/08/2011 18:56:58] - |D| - [0] - C:\Users\Mareva\AppData\Local\{BDDE7C8A-7093-4A75-89BD-39FC219D2DFE}
[17/08/2011 07:16:47] - |D| - [0] - C:\Users\Mareva\AppData\Local\{219A8633-9590-452F-8853-E63BE099CB0A}
[17/08/2011 07:17:00] - |D| - [0] - C:\Users\Mareva\AppData\Local\{FE29D0F1-D2BF-4E2A-8F62-FD99483CED45}
[17/08/2011 19:37:08] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1BE5EFA3-E55F-4FB1-9DF3-399239A79302}
[18/08/2011 07:37:02] - |D| - [0] - C:\Users\Mareva\AppData\Local\{C557B618-AEAE-4EA0-845F-7A188C930EC9}
[18/08/2011 07:37:22] - |D| - [0] - C:\Users\Mareva\AppData\Local\{606AF8CA-B27C-45DE-A64E-C91F0891D917}
[18/08/2011 19:37:37] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D8C580AF-8F2D-4B03-B2DB-D471756667ED}
[18/08/2011 19:37:50] - |D| - [0] - C:\Users\Mareva\AppData\Local\{46141CF0-8E2A-4EFB-88EB-559E1670B99B}
[19/08/2011 07:49:12] - |D| - [0] - C:\Users\Mareva\AppData\Local\{37C956A3-DE44-4359-882A-64FF2D14330A}
[19/08/2011 07:49:25] - |D| - [0] - C:\Users\Mareva\AppData\Local\{F61E1D40-8C4C-4732-8A28-9B5313E4429E}
[19/08/2011 19:49:37] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D5F1AF95-6A44-42E0-8CB5-9943DD905872}
[19/08/2011 19:49:49] - |D| - [0] - C:\Users\Mareva\AppData\Local\{814B1715-4B1B-4A91-B745-8AB57ACED53B}
[20/08/2011 08:56:51] - |D| - [0] - C:\Users\Mareva\AppData\Local\{CA8F7963-5627-4D69-ABD4-240DA2D59D1E}
[20/08/2011 08:57:03] - |D| - [0] - C:\Users\Mareva\AppData\Local\{3A2642C4-F1CF-4AE0-93D1-F418996366F8}
[20/08/2011 20:57:18] - |D| - [0] - C:\Users\Mareva\AppData\Local\{48EBE81E-F65E-4FC0-977F-21AF67E76BD8}
[20/08/2011 20:57:37] - |D| - [0] - C:\Users\Mareva\AppData\Local\{5553A0BF-4DB3-43C6-81EF-43098A08C0CD}
[21/08/2011 09:41:21] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1C05AEE3-60C2-4831-BA35-6B0E2D33C71E}
[21/08/2011 09:41:33] - |D| - [0] - C:\Users\Mareva\AppData\Local\{712EFD5C-AACB-4862-B613-321D7F1ED3A5}
[21/08/2011 21:54:22] - |D| - [0] - C:\Users\Mareva\AppData\Local\{7BCB4D20-F06B-474C-80CD-44130D4A628B}
[22/08/2011 13:44:17] - |D| - [0] - C:\Users\Mareva\AppData\Local\{8B38E74D-D166-47C5-8CBB-86545340BA06}
[23/08/2011 03:03:28] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D61E15B8-200D-4F28-B746-05168FB57FDA}
[24/08/2011 04:00:04] - |D| - [0] - C:\Users\Mareva\AppData\Local\{39E40552-2003-4FC2-81C7-19949E594414}
[21/08/2011 21:54:11] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B1DF0F98-2AD1-4FFB-93BE-2B4D8E058319}
[24/08/2011 19:45:51] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B0AB32DB-12F7-436A-B853-20FE30B66C72}
[26/08/2011 06:20:08] - |D| - [0] - C:\Users\Mareva\AppData\Local\{CA548CF6-826D-4DA5-97BA-027D3E3F5669}
[26/08/2011 20:34:46] - |D| - [0] - C:\Users\Mareva\AppData\Local\{92378873-E686-46AC-85CA-99FD9C4CD9EE}
[27/08/2011 08:35:14] - |D| - [0] - C:\Users\Mareva\AppData\Local\{C6ACCF31-E6AB-483E-977B-72F85EC4721B}
[27/08/2011 20:35:39] - |D| - [0] - C:\Users\Mareva\AppData\Local\{756DAF50-9E3D-465B-9CA9-F076E664218A}
[30/08/2011 08:45:35] - |D| - [0] - C:\Users\Mareva\AppData\Local\{CAF8B59F-42A8-412D-A1F2-81D90E16D6DB}
[30/08/2011 23:29:07] - |D| - [0] - C:\Users\Mareva\AppData\Local\{8C29E8B2-6206-4760-8402-8D5C3B66ED56}
[31/08/2011 11:29:33] - |D| - [0] - C:\Users\Mareva\AppData\Local\{25F34424-2F9C-479A-87AA-73E1B257298A}
[31/08/2011 23:29:58] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B5529AD9-C1B3-47D5-9A44-B705AB5B1547}
[01/09/2011 12:00:01] - |D| - [0] - C:\Users\Mareva\AppData\Local\{00E96BA0-DCA7-4C5D-83D6-9A6DB2A29C24}
[02/09/2011 20:43:05] - |D| - [0] - C:\Users\Mareva\AppData\Local\{526034B0-EBFB-493C-A40C-42819FE7B3EA}
[03/09/2011 08:56:54] - |D| - [0] - C:\Users\Mareva\AppData\Local\{5915406B-2288-42D6-861E-02EEB38C7304}
[03/09/2011 22:09:37] - |D| - [0] - C:\Users\Mareva\AppData\Local\{83280E74-901C-4DB7-82AD-6C670963553C}
[25/08/2011 15:58:34] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1BBAB059-42DA-4C9F-B735-E7EFB8F71F5C}
[04/09/2011 10:10:01] - |D| - [0] - C:\Users\Mareva\AppData\Local\{AB7B68FD-17EC-42EF-95E3-5DDE69A4B637}
[04/09/2011 15:41:01] - |D| - [73571525] - C:\Users\Mareva\AppData\Local\Mozilla
[05/09/2011 03:24:55] - |D| - [0] - C:\Users\Mareva\AppData\Local\{CE90913D-EDEF-421C-82FF-43EEB1C98CDA}
[06/09/2011 13:54:39] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D3FA74B4-DA59-4C55-A157-8C4DC635180E}
[07/09/2011 03:37:05] - |D| - [0] - C:\Users\Mareva\AppData\Local\{4AEA999F-2CB0-4AFD-AE87-B7FE8936EDCA}
[05/09/2011 03:24:42] - |D| - [0] - C:\Users\Mareva\AppData\Local\{5BA8578D-0910-43B8-B55A-1CDA33F2C8AE}
[07/09/2011 17:05:50] - |D| - [0] - C:\Users\Mareva\AppData\Local\{8F4970B7-C5D1-4C4B-B59D-5EB94A240272}
[08/09/2011 13:42:38] - |D| - [0] - C:\Users\Mareva\AppData\Local\{52546F34-5C76-4903-A8D1-3465CF3E3F73}
[08/09/2011 13:42:25] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B3695728-7A0C-4DCE-8D7B-31C2B6927142}
[09/09/2011 07:43:06] - |D| - [0] - C:\Users\Mareva\AppData\Local\{001E57AB-0D21-4903-89D0-F854F97A7851}
[09/09/2011 14:07:38] - |D| - [0] - C:\Users\Mareva\AppData\Local\Secunia PSI
[10/09/2011 02:29:02] - |D| - [0] - C:\Users\Mareva\AppData\Local\{A1D67668-591F-43AF-96B9-F24D007A18DE}
[10/09/2011 14:52:27] - |D| - [0] - C:\Users\Mareva\AppData\Local\{DFA87926-D1D6-4DC9-A3CB-276CC269E1B4}
[10/09/2011 02:28:45] - |D| - [0] - C:\Users\Mareva\AppData\Local\{0CED5C0B-381F-4DAE-812B-5336127926D4}
[11/09/2011 10:17:11] - |D| - [0] - C:\Users\Mareva\AppData\Local\{48C40BA0-A59E-445B-B745-8D67ED1D3FA9}
[12/09/2011 08:09:52] - |D| - [0] - C:\Users\Mareva\AppData\Local\{A83E7E88-D341-45B6-B747-06400500A934}
[12/09/2011 08:09:27] - |D| - [0] - C:\Users\Mareva\AppData\Local\{29F9BDF3-A99C-4117-8DBA-07AFD2FE327F}
[12/09/2011 22:10:49] - |D| - [0] - C:\Users\Mareva\AppData\Local\{186131C1-0FAD-4967-8D5A-492652BBA12B}
[13/09/2011 10:11:27] - |D| - [0] - C:\Users\Mareva\AppData\Local\{87509CAA-78D7-424D-A328-CE988EF6623D}
[13/09/2011 10:11:16] - |D| - [0] - C:\Users\Mareva\AppData\Local\{02614594-E1C0-4FAB-96C0-AC5212A69BE6}
[13/09/2011 22:11:54] - |D| - [0] - C:\Users\Mareva\AppData\Local\{724B664A-7ED0-4A4C-8E8C-7CCBB92EE54C}
[14/09/2011 21:58:04] - |D| - [0] - C:\Users\Mareva\AppData\Local\{F7331D3A-46C9-4848-AB7A-1E56E85A2D98}
[14/09/2011 21:58:36] - |D| - [0] - C:\Users\Mareva\AppData\Local\{71668395-BFB2-47EE-8DB1-B298B0623996}
[16/09/2011 06:38:42] - |D| - [0] - C:\Users\Mareva\AppData\Local\{248B2523-C6ED-464E-A840-36C582BFC0D4}
[16/09/2011 06:39:02] - |D| - [0] - C:\Users\Mareva\AppData\Local\{C67A8F4C-E8A8-43F0-A7BB-3AEE223935B0}
[18/09/2011 09:46:03] - |D| - [0] - C:\Users\Mareva\AppData\Local\{92828B62-7D88-4CDD-A023-0ECC0CB5837B}
[19/09/2011 03:36:47] - |D| - [0] - C:\Users\Mareva\AppData\Local\{DE1C20EE-DADB-464A-AC22-383B2621C6E7}
[19/09/2011 17:49:39] - |D| - [0] - C:\Users\Mareva\AppData\Local\{4BF5CD44-1C85-4BD9-BFE4-DB981959E717}
[21/09/2011 04:08:21] - |D| - [2358] - C:\Users\Mareva\AppData\Local\Packard Bell
[22/09/2011 15:42:26] - |D| - [0] - C:\Users\Mareva\AppData\Local\{58FCAE37-0AE7-4903-8AC7-4747291B7C25}
[28/09/2011 23:16:24] - |D| - [0] - C:\Users\Mareva\AppData\Local\{462A7171-0F48-4B71-915B-E55AB3E4B758}
[13/10/2011 19:10:29] - |D| - [0] - C:\Users\Mareva\AppData\Local\{788A33B1-5EA0-4B54-9850-19EDE77A6817}
[13/10/2011 19:10:41] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D10020E2-CFE7-4F59-9530-67B7D190D06B}
[22/10/2011 15:05:13] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1D62EAD4-8FCF-468C-AE4B-95B21CDB270F}
[22/10/2011 15:05:44] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B8746562-DC06-4F57-AA95-9721AE23A761}
[23/10/2011 08:10:39] - |D| - [0] - C:\Users\Mareva\AppData\Local\{72051B80-8301-4E43-B7F5-8BA577411E4E}
[23/10/2011 08:11:17] - |D| - [0] - C:\Users\Mareva\AppData\Local\{AC43BB17-A70B-4CE1-AA01-DC369C4B93EC}
[23/10/2011 20:12:08] - |D| - [0] - C:\Users\Mareva\AppData\Local\{2ACA03D1-86E7-4E4D-A451-1D99DAA85064}
[24/10/2011 08:44:50] - |D| - [0] - C:\Users\Mareva\AppData\Local\{CE4B33A4-FE5E-43C2-951D-CE75AF51B806}
[24/10/2011 21:53:14] - |D| - [0] - C:\Users\Mareva\AppData\Local\{506B2BEE-8694-486C-BFFC-7632908777EF}
[25/10/2011 11:40:49] - |D| - [0] - C:\Users\Mareva\AppData\Local\{70928B45-A686-4A5D-A44E-B86843E76C76}
[26/10/2011 09:26:49] - |D| - [0] - C:\Users\Mareva\AppData\Local\{F6134A4E-A475-4B93-BD87-D12B9F838BAE}
[23/10/2011 20:11:56] - |D| - [0] - C:\Users\Mareva\AppData\Local\{82871F0B-C142-4FB5-BE34-AED6B85F2756}
[27/10/2011 00:06:12] - |D| - [0] - C:\Users\Mareva\AppData\Local\{CBBD84C7-06F1-4A83-826D-D4B8F28C71CA}
[30/10/2011 10:44:22] - |D| - [0] - C:\Users\Mareva\AppData\Local\{8B25D5DC-9770-4429-9244-54C60A03180F}
[30/10/2011 10:44:47] - |D| - [0] - C:\Users\Mareva\AppData\Local\{A0E955B3-55C5-45C6-97FC-058947251ED8}
[01/11/2011 09:02:42] - |D| - [0] - C:\Users\Mareva\AppData\Local\{904915D9-A05D-4886-A463-81BD24BD7295}
[01/11/2011 09:03:06] - |D| - [0] - C:\Users\Mareva\AppData\Local\{614C2E52-3D9E-4D0C-B28E-D5645AC0DF28}
[02/11/2011 16:57:25] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D36D0B17-0CD9-47A5-9E97-233C3693F4BF}
[02/11/2011 16:57:48] - |D| - [0] - C:\Users\Mareva\AppData\Local\{A284D7CF-3776-47C0-B917-187E64101D13}
[09/11/2011 10:49:36] - |D| - [0] - C:\Users\Mareva\AppData\Local\{11AE66AD-61C6-4842-B9A4-20CE47365399}
[11/11/2011 09:33:02] - |D| - [0] - C:\Users\Mareva\AppData\Local\{10B13348-A001-4474-9326-0CEAE05F3574}
[12/11/2011 19:07:23] - |D| - [0] - C:\Users\Mareva\AppData\Local\{ACF963F8-FF7B-41A2-84BB-20B9D938B737}
[12/11/2011 19:07:55] - |D| - [0] - C:\Users\Mareva\AppData\Local\{EC582C77-8588-4E2C-A5F4-DF14FEAD6560}
[18/11/2011 13:34:35] - |D| - [0] - C:\Users\Mareva\AppData\Local\{9325D9D9-94BC-4DE1-B1BA-EF0FDF829922}
[18/11/2011 18:57:59] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1A258852-8C12-41B6-8D52-9F1EA8AA496D}
[18/11/2011 18:58:24] - |D| - [0] - C:\Users\Mareva\AppData\Local\{3525FCD4-0970-4174-B9DC-7BA38BD9F78D}
[19/11/2011 15:25:34] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D9E87954-260A-4AC5-BACF-6C42A916F331}
[20/11/2011 21:51:34] - |D| - [0] - C:\Users\Mareva\AppData\Local\{4A8A2214-648C-4B25-ACAF-B44D69B930D7}
[20/11/2011 21:52:00] - |D| - [0] - C:\Users\Mareva\AppData\Local\{C5850E84-655A-43F2-AC8F-107DA7A95129}
[21/11/2011 22:24:30] - |D| - [0] - C:\Users\Mareva\AppData\Local\{AA89DAEE-334D-4E00-BF1D-C42726DF2FC6}
[21/11/2011 22:25:03] - |D| - [0] - C:\Users\Mareva\AppData\Local\{2B4A7012-DF45-4647-B241-74503C70BAD5}
[24/11/2011 23:43:25] - |D| - [0] - C:\Users\Mareva\AppData\Local\{5D534CCC-39E7-4A02-94CB-BE9D611159E4}
[26/11/2011 18:30:07] - |D| - [0] - C:\Users\Mareva\AppData\Local\{3D6B45C0-F941-499C-AF79-C41766D42FA6}
[26/11/2011 18:30:33] - |D| - [0] - C:\Users\Mareva\AppData\Local\{F2F5E304-4A7B-4877-97EA-29154B0C7C71}
[27/11/2011 01:44:51] - |D| - [648363] - C:\Users\Mareva\AppData\Local\Windows Live Writer
[28/11/2011 10:45:46] - |D| - [0] - C:\Users\Mareva\AppData\Local\{76A8B586-2FBB-48EE-823F-F852C50BF582}
[28/11/2011 10:46:11] - |D| - [0] - C:\Users\Mareva\AppData\Local\{BD671AEA-099E-491D-A13C-DF3EB8454124}
[29/11/2011 08:48:16] - |D| - [0] - C:\Users\Mareva\AppData\Local\{511E1B84-7D3B-4BF9-BBE7-45D1B15B8BBB}
[29/11/2011 08:48:28] - |D| - [0] - C:\Users\Mareva\AppData\Local\{4412E087-E27D-4A32-BFF4-4EC59A93F00E}
[29/11/2011 23:42:06] - |D| - [0] - C:\Users\Mareva\AppData\Local\{74881935-ABA3-44FD-877C-0AF18E72D6EA}
[29/11/2011 23:42:18] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1186DA8F-AB3F-489E-A06E-08638A9C2E80}
[01/12/2011 00:44:35] - |D| - [0] - C:\Users\Mareva\AppData\Local\{609D4031-D646-428B-8F2F-FAC954E092EB}
[01/12/2011 00:44:59] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B262A19B-99D9-4383-BADE-0D5B3BA55611}
[03/12/2011 14:33:27] - |D| - [0] - C:\Users\Mareva\AppData\Local\{F12B13C6-F0E1-4AE2-A20B-DD556CA2251F}
[03/12/2011 14:34:06] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D0F15826-34A8-4DF6-9D10-BB58CBB6BF4C}
[04/12/2011 20:37:38] - |D| - [0] - C:\Users\Mareva\AppData\Local\{FAEDFFE5-4B5C-40AA-963A-1A92E0F6A90C}
[11/12/2011 18:02:02] - |D| - [0] - C:\Users\Mareva\AppData\Local\{144E74F0-A437-45F8-8AAF-CD9245E7553C}
[11/12/2011 18:35:31] - |D| - [0] - C:\Users\Mareva\AppData\Local\{40A87755-60BB-4020-A203-BDCECFF29862}
[13/12/2011 12:13:03] - |D| - [0] - C:\Users\Mareva\AppData\Local\{7677B717-B3EC-440A-AA3D-AE4CF9561962}
[15/12/2011 09:15:10] - |D| - [0] - C:\Users\Mareva\AppData\Local\{29985E44-26B3-4350-AE14-ACF092405F86}
[19/12/2011 14:57:37] - |D| - [0] - C:\Users\Mareva\AppData\Local\{2B5E7A6D-098C-44D4-AE54-C7212B04017D}
[19/12/2011 16:49:20] - |D| - [0] - C:\Users\Mareva\AppData\Local\{7CB51F1A-5208-4B8F-A3F2-AD94DC6D92D6}
[19/12/2011 16:53:05] - |D| - [0] - C:\Users\Mareva\AppData\Local\{6C03BFFB-02ED-4781-9EC8-BF2843DFF254}
[19/12/2011 20:50:04] - |D| - [0] - C:\Users\Mareva\AppData\Local\{AEF4A73D-04B5-42DC-9F0A-8D2A28AE3F0D}
[23/12/2011 22:23:48] - |D| - [0] - C:\Users\Mareva\AppData\Local\{A51CB734-DC28-4AD2-891D-F9182FB1F144}
[23/12/2011 22:24:00] - |D| - [0] - C:\Users\Mareva\AppData\Local\{DEEFC6EF-3FA8-470E-AA2C-BF2D93D1D9B5}
[24/12/2011 19:40:38] - |D| - [0] - C:\Users\Mareva\AppData\Local\{0F87AF77-375E-4C44-BDF9-56CFE352860E}
[30/12/2011 20:08:45] - |D| - [0] - C:\Users\Mareva\AppData\Local\{4849FC52-06B1-4C37-B304-496BA861EE82}
[30/12/2011 20:09:26] - |D| - [0] - C:\Users\Mareva\AppData\Local\{32E9863F-5308-4166-8B2F-6A0EABB8D9F3}
[31/12/2011 10:24:46] - |D| - [0] - C:\Users\Mareva\AppData\Local\{180A71ED-A730-4E82-8C5F-A630FC96E607}
[31/12/2011 10:25:22] - |D| - [0] - C:\Users\Mareva\AppData\Local\{CC9E9608-A7C4-472E-9A3A-7A029003677A}
[01/01/2012 16:04:06] - |D| - [0] - C:\Users\Mareva\AppData\Local\{8BEBC202-FECD-4BDF-A898-2267A6D4C48A}
[01/01/2012 16:04:33] - |D| - [0] - C:\Users\Mareva\AppData\Local\{2CA2A7B2-1604-4659-8C16-8B8D0C9DF524}
[12/01/2012 08:48:30] - |D| - [0] - C:\Users\Mareva\AppData\Local\{BB7F4101-703A-4C96-934B-D7CDB7D4E4AB}
[12/01/2012 08:48:42] - |D| - [0] - C:\Users\Mareva\AppData\Local\{3D063B8A-F07B-42D0-A374-0F04155EF3CD}
[15/01/2012 18:11:26] - |D| - [0] - C:\Users\Mareva\AppData\Local\{243CDFEA-79BE-45EF-8E9F-195E27FE5F9D}
[16/01/2012 18:26:42] - |D| - [0] - C:\Users\Mareva\AppData\Local\{00B6DC8F-9C46-4EF5-93F9-3793596FAA56}
[16/01/2012 18:55:31] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1400B68F-8C1D-4296-89D0-1D3EE06E2006}
[16/01/2012 18:55:57] - |D| - [0] - C:\Users\Mareva\AppData\Local\{9527E5E5-B5B0-4E5B-823A-89FF6CE6EA24}
[17/01/2012 18:20:34] - |D| - [0] - C:\Users\Mareva\AppData\Local\{490DDBA5-94B5-41DD-8FF7-0D35328E3CF9}
[17/01/2012 18:21:12] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1906FDD2-2D12-4920-A809-C2042E818FE7}
[24/01/2012 12:59:00] - |D| - [0] - C:\Users\Mareva\AppData\Local\{061B9259-538D-4138-AAEB-E5845EAAEDF1}
[26/01/2012 09:05:52] - |D| - [0] - C:\Users\Mareva\AppData\Local\{2E319704-6351-4E40-86F5-086ACD7676DE}
[28/01/2012 21:00:02] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B002D52A-F70A-473A-AF57-9744D3FD98FA}
[28/01/2012 21:00:26] - |D| - [0] - C:\Users\Mareva\AppData\Local\{2AEC86A7-DF51-419F-8BDF-CFD6C68E6AC2}
[08/02/2012 23:34:09] - |D| - [0] - C:\Users\Mareva\AppData\Local\{2AFB4EE1-A576-4732-B8CD-1D1FDA4EC5E6}
[17/02/2012 23:42:11] - |D| - [0] - C:\Users\Mareva\AppData\Local\{EE8F5A6B-B5DD-411F-B605-438DC7E1E9C5}
[17/02/2012 23:42:24] - |D| - [0] - C:\Users\Mareva\AppData\Local\{AE6DB66B-7480-4AC7-B1C2-BD99D44E9757}
[18/02/2012 11:42:40] - |D| - [0] - C:\Users\Mareva\AppData\Local\{E7753BAE-A56B-4E36-871B-420F44C7651A}
[18/02/2012 11:42:53] - |D| - [0] - C:\Users\Mareva\AppData\Local\{E72A7DFA-D86C-4157-9BAA-800C3B0FCEDD}
[18/02/2012 23:43:07] - |D| - [0] - C:\Users\Mareva\AppData\Local\{7797935B-1B86-496B-BBBA-0E6A0E0AE6E4}
[18/02/2012 23:43:33] - |D| - [0] - C:\Users\Mareva\AppData\Local\{53BD5B3B-9F4E-415E-894A-29CC8F727DCD}
[22/02/2012 09:53:12] - |D| - [0] - C:\Users\Mareva\AppData\Local\{AC5D5FE0-B57C-4F1B-81F4-260DBEA4159B}
[25/02/2012 22:28:30] - |D| - [0] - C:\Users\Mareva\AppData\Local\{EEB6313A-D545-4317-8CC9-DDDAC7FEF723}
[25/02/2012 22:28:42] - |D| - [0] - C:\Users\Mareva\AppData\Local\{C53450FB-9DE4-4CAB-8C36-42A62CB34A42}
[09/03/2012 08:45:48] - |D| - [0] - C:\Users\Mareva\AppData\Local\{E5EA6667-6F45-4A17-8DE2-7566F11138CF}
[09/03/2012 08:45:59] - |D| - [0] - C:\Users\Mareva\AppData\Local\{375F5B93-0A35-4943-9D1F-296FD56AC4D5}
[15/03/2012 04:21:24] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1897F13B-7852-4A09-857E-67E6D6446643}
[15/03/2012 04:21:36] - |D| - [0] - C:\Users\Mareva\AppData\Local\{F619FC08-62F6-43B2-9F05-92914D869206}
[16/03/2012 18:32:54] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D252D879-8377-43FC-902F-9BB82F0133D2}
[16/03/2012 18:33:06] - |D| - [0] - C:\Users\Mareva\AppData\Local\{C6089348-E93A-4FA7-B854-177D8012B892}
[24/03/2012 20:32:02] - |D| - [0] - C:\Users\Mareva\AppData\Local\{88F5CA61-194A-4343-BEA1-5E1445E175D8}
[24/03/2012 20:32:16] - |D| - [0] - C:\Users\Mareva\AppData\Local\{15150CB1-AF5F-4202-8560-30530DE49CFF}
[29/03/2012 18:57:07] - |D| - [0] - C:\Users\Mareva\AppData\Local\{AE1F96B6-B61D-4CF7-A26D-A9BC776CBFBA}
[11/04/2012 09:26:02] - |D| - [0] - C:\Users\Mareva\AppData\Local\{F0DABE38-D7CF-4111-9E17-66E3A7DA812E}
[13/04/2012 12:42:40] - |D| - [0] - C:\Users\Mareva\AppData\Local\{6A07CFB5-F367-4153-AC13-36A0E547951B}
[14/04/2012 11:36:45] - |D| - [0] - C:\Users\Mareva\AppData\Local\{EC88057A-949E-4B04-BD91-4413EFFF6E9B}
[27/04/2012 04:20:03] - |D| - [0] - C:\Users\Mareva\AppData\Local\{25CACEB0-7617-4684-9BC4-4E979F8F7258}
[15/07/2011 13:22:10] - |D| - [217130719] - C:\Users\Mareva\AppData\Local\Windows Live
[01/05/2012 20:56:53] - |D| - [0] - C:\Users\Mareva\AppData\Local\{C83931B9-A970-4D0D-AB24-6409189857D2}
[01/05/2012 20:57:08] - |D| - [0] - C:\Users\Mareva\AppData\Local\{381C8065-3659-48B7-A429-FA13741D6812}
[01/05/2012 21:06:21] - |D| - [0] - C:\Users\Mareva\AppData\Local\{EDCE615D-01AC-4483-B553-671D4DE1A591}
[01/05/2012 21:06:33] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B8DD6361-47E0-4D42-BCB1-27E49BCE2327}
[08/05/2012 19:23:09] - |D| - [0] - C:\Users\Mareva\AppData\Local\{C08EC4AB-B9B0-447B-9FB3-9D0EA1251AD2}
[09/05/2012 11:59:26] - |D| - [0] - C:\Users\Mareva\AppData\Local\{95081747-F9DC-4E04-8060-D23F66D6CA56}
[15/05/2012 11:08:14] - |D| - [0] - C:\Users\Mareva\AppData\Local\{86D8B9AF-C438-4987-B8D6-0744CA23D353}
[16/05/2012 21:55:46] - |D| - [0] - C:\Users\Mareva\AppData\Local\{91E7F058-CAB9-4F69-900A-76C1CF7837B3}
[09/09/2011 14:19:02] - |D| - [384338] - C:\Users\Mareva\AppData\Local\Adobe
[21/05/2012 20:38:40] - |D| - [0] - C:\Users\Mareva\AppData\Local\{833ED47D-0DD7-4F6C-AF06-45F12788379C}
[21/05/2012 20:38:53] - |D| - [0] - C:\Users\Mareva\AppData\Local\{AF77A387-0F83-45DF-A9EB-1498C27121AD}
[22/05/2012 18:51:45] - |D| - [0] - C:\Users\Mareva\AppData\Local\{BC7DDE3D-5BEB-4C6A-8061-42AC76FF36D7}
[22/05/2012 18:51:58] - |D| - [0] - C:\Users\Mareva\AppData\Local\{16703DB8-7F3B-4F40-B43B-85D839C98B8E}
[30/05/2012 20:35:00] - |D| - [0] - C:\Users\Mareva\AppData\Local\{4350B5A1-45C6-4981-B412-3221E297C762}
[30/05/2012 20:35:11] - |D| - [0] - C:\Users\Mareva\AppData\Local\{5E0B1B91-B94F-4D0D-B65B-7469100DD840}
[01/06/2012 17:29:47] - |D| - [0] - C:\Users\Mareva\AppData\Local\{EA40EE72-4C31-4CE8-BEE4-16CCFE15944D}
[03/06/2012 20:02:01] - |D| - [0] - C:\Users\Mareva\AppData\Local\{7FC3BB62-DD96-4DAE-88A6-E91DE847CF23}
[03/06/2012 20:02:14] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1460E025-A3CF-471F-9559-1E40C958CE20}
[04/06/2012 21:09:55] - |D| - [0] - C:\Users\Mareva\AppData\Local\{C2E3B98E-37D6-4D0D-A3BE-FCD7ACFD94DD}
[05/06/2012 16:51:46] - |D| - [2807583] - C:\Users\Mareva\AppData\Local\Skillbrains
[15/06/2012 16:30:08] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B061EE0B-E9D7-430F-ADB5-69C21B93C09F}
[16/06/2012 17:01:01] - |D| - [0] - C:\Users\Mareva\AppData\Local\LogMeIn Rescue Applet
[19/06/2012 16:10:25] - |D| - [0] - C:\Users\Mareva\AppData\Local\{823946F4-9A77-48C9-8195-4144E66E30CA}
[19/06/2012 16:10:43] - |D| - [0] - C:\Users\Mareva\AppData\Local\{8355E5B7-CA3A-4BE6-8485-50E91D06AF1D}
[23/06/2012 08:17:52] - |D| - [0] - C:\Users\Mareva\AppData\Local\{E4642EDE-F1C0-414A-ABF8-E36DE003C2C9}
[23/06/2012 08:18:47] - |D| - [0] - C:\Users\Mareva\AppData\Local\Macromedia
[23/06/2012 08:29:02] - |D| - [0] - C:\Users\Mareva\AppData\Local\{F0394AF6-2C21-43C3-AAA5-9D70BF5CB09C}
[07/07/2012 09:09:41] - |D| - [0] - C:\Users\Mareva\AppData\Local\{93B0B1CE-08F4-48C9-8642-7BFA099EF0A4}
[08/07/2012 09:10:53] - |D| - [0] - C:\Users\Mareva\AppData\Local\{D4DB04C5-D4D8-4C3F-ACC9-DDF5D7AC1475}
[08/07/2012 09:11:04] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1B232305-E529-441A-84E1-CDD37B9ABD07}
[12/07/2012 11:25:57] - |D| - [0] - C:\Users\Mareva\AppData\Local\{6F6A6945-A96A-4C62-B57A-C25B984442BF}
[12/07/2012 11:26:09] - |D| - [0] - C:\Users\Mareva\AppData\Local\{98391382-8CF8-4204-8E64-3D13D4D56C5F}
[12/07/2012 13:05:51] - |D| - [0] - C:\Users\Mareva\AppData\Local\{8757CE11-68C4-405A-BCBC-0AAC2DA94D7F}
[26/02/2011 12:05:23] - |D| - [561480715] - C:\Users\Mareva\AppData\Local\Microsoft
[01/03/2011 13:27:16] - |D| - [0] - C:\Users\Mareva\AppData\Local\Diagnostics
[26/08/2012 00:00:08] - |D| - [0] - C:\Users\Mareva\AppData\Local\{DD734954-DD04-4CB2-B1FA-E10303506BEE}
[26/08/2012 00:00:31] - |D| - [0] - C:\Users\Mareva\AppData\Local\{3C96BEE5-CB72-4888-938D-B0CF9BD2DEF8}
[02/09/2012 15:45:20] - |D| - [63308792] - C:\Users\Mareva\AppData\Local\Downloaded Installations
[02/09/2012 15:49:32] - |D| - [2905920] - C:\Users\Mareva\AppData\Local\Nikon
[02/09/2012 16:10:51] - |D| - [0] - C:\Users\Mareva\AppData\Local\{4811D16B-9895-4CDC-AE8B-D2649ECDE7C8}
[03/09/2012 23:00:30] - |D| - [0] - C:\Users\Mareva\AppData\Local\{B19F688A-2D4A-4CD0-BCDD-34EF341091D7}
[12/09/2012 21:38:39] - |D| - [0] - C:\Users\Mareva\AppData\Local\{10757716-153D-44A3-A9B0-70D5BB1D89F8}
[13/09/2012 17:59:12] - |D| - [0] - C:\Users\Mareva\AppData\Local\{F0606F19-5951-49F6-8858-8C333BC2ECC9}
[15/09/2012 10:20:47] - |D| - [0] - C:\Users\Mareva\AppData\Local\{01A9E107-D6ED-473B-B7E5-03C2A61FBBF1}
[20/09/2012 22:23:08] - |D| - [0] - C:\Users\Mareva\AppData\Local\{C5CA7174-652C-4629-A1AF-B5CA25F6DB7F}
[30/09/2012 10:03:47] - |D| - [0] - C:\Users\Mareva\AppData\Local\{1F6D0A0F-3CA4-4920-99EF-84C3CE16A6B5}
[11/10/2012 20:31:36] - |D| - [0] - C:\Users\Mareva\AppData\Local\{40BE2F45-273E-433E-BF7B-2F2769DD5137}
[03/12/2011 10:11:11] - |D| - [55039] - C:\Users\Mareva\AppData\Local\Facebook
[01/03/2011 13:33:57] - |D| - [539826215] - C:\Users\Mareva\AppData\Local\Google
[14/11/2012 11:07:41] - |D| - [0] - C:\Users\Mareva\AppData\Local\Programs
[20/12/2012 22:05:08] - |D| - [240847] - C:\Users\Mareva\AppData\Local\Ares
[19/12/2011 18:00:11] - |D| - [0] - C:\Users\Mareva\AppData\Local\CrashDumps
[22/04/2013 20:21:09] - |D| - [0] - C:\Users\Mareva\AppData\Local\{5A058A7E-BF16-4295-9030-6458127CD669}
[22/06/2012 10:38:15] - |D| - [86871] - C:\Users\Mareva\AppData\Local\Module
[26/02/2011 12:05:23] - |D| - [71776] - C:\Users\Mareva\AppData\Local\Temp

¤¤¤¤¤¤¤¤¤¤ | ProgramFiles

[15/07/2012 03:23:41] - |D| - [0] - C:\Program Files (x86)\GUMC5D4.tmp
[03/03/2011 13:40:13] - |D| - [15715] - C:\Program Files (x86)\Microsoft.NET
[14/07/2009 06:54:24] - |ASH| - [174] - C:\Program Files (x86)\desktop.ini
[01/05/2012 20:53:36] - |D| - [441824] - C:\Program Files (x86)\FileHippo.com
[01/03/2011 22:31:16] - |D| - [0] - C:\Program Files (x86)\MSXML 4.0
[14/07/2009 06:57:06] - |HD| - [0] - C:\Program Files (x86)\Uninstall Information
[14/07/2009 07:32:38] - |D| - [38601473] - C:\Program Files (x86)\Reference Assemblies
[14/07/2009 07:32:38] - |D| - [25757] - C:\Program Files (x86)\MSBuild
[14/07/2009 05:20:08] - |D| - [12197556] - C:\Program Files (x86)\Windows NT
[08/09/2010 05:02:36] - |D| - [3017431] - C:\Program Files (x86)\AmIcoSingLun
[08/09/2010 05:07:44] - |D| - [383615121] - C:\Program Files (x86)\Nero
[08/09/2010 05:19:32] - |D| - [28605114] - C:\Program Files (x86)\NewTech Infosystems
[14/07/2009 07:32:38] - |D| - [189440] - C:\Program Files (x86)\Windows Portable Devices
[08/09/2010 05:01:54] - |D| - [20707666] - C:\Program Files (x86)\Intel
[02/12/2010 17:48:30] - |D| - [3360505] - C:\Program Files (x86)\Realtek
[02/12/2010 17:48:30] - |D| - [0] - C:\Program Files (x86)\Temp
[02/12/2010 17:51:17] - |D| - [7515192] - C:\Program Files (x86)\Launch Manager
[02/12/2010 17:51:27] - |D| - [12063813] - C:\Program Files (x86)\Video Web Camera
[08/09/2010 05:09:51] - |D| - [72115906] - C:\Program Files (x86)\Packard Bell
[02/12/2010 17:52:11] - |D| - [66856] - C:\Program Files (x86)\Cyberlink
[02/12/2010 17:52:01] - |D| - [25835656] - C:\Program Files (x86)\Social Networks
[02/12/2010 17:52:35] - |D| - [0] - C:\Program Files (x86)\Microsoft
[02/12/2010 18:01:47] - |D| - [1829877] - C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[02/12/2010 18:04:43] - |D| - [6423243] - C:\Program Files (x86)\Microsoft Office
[14/07/2009 07:32:38] - |D| - [524800] - C:\Program Files (x86)\Windows Defender
[14/07/2009 07:32:38] - |D| - [4417800] - C:\Program Files (x86)\Windows Photo Viewer
[14/07/2009 07:32:38] - |D| - [5994114] - C:\Program Files (x86)\Windows Sidebar
[02/12/2010 17:52:17] - |D| - [468232] - C:\Program Files (x86)\Bing Bar Installer
[14/07/2009 07:32:38] - |D| - [5024017] - C:\Program Files (x86)\Windows Media Player
[14/07/2009 05:20:08] - |D| - [6180864] - C:\Program Files (x86)\Windows Mail
[23/03/2011 14:01:33] - |D| - [3699431] - C:\Program Files (x86)\PhotoFiltre
[03/03/2011 14:04:09] - |D| - [7585196] - C:\Program Files (x86)\Malwarebytes' Anti-Malware
[09/08/2011 17:54:26] - |D| - [10653423] - C:\Program Files (x86)\WildTangent Games
[08/09/2010 05:12:54] - |D| - [2355116931] - C:\Program Files (x86)\Packard Bell Games
[04/09/2011 15:26:52] - |D| - [98648575] - C:\Program Files (x86)\VideoLAN
[09/09/2011 14:07:24] - |D| - [326974] - C:\Program Files (x86)\Secunia
[09/09/2011 14:21:06] - |RD| - [19557090] - C:\Program Files (x86)\Skype
[19/02/2012 15:19:02] - |D| - [10965008] - C:\Program Files (x86)\eMule
[02/06/2012 16:28:04] - |D| - [880496] - C:\Program Files (x86)\uTorrent
[05/06/2012 16:51:50] - |D| - [611239] - C:\Program Files (x86)\Skillbrains
[02/12/2010 17:59:17] - |D| - [147970352] - C:\Program Files (x86)\Windows Live
[02/09/2012 15:45:44] - |D| - [38140217] - C:\Program Files (x86)\Nikon
[08/09/2010 05:01:54] - |HD| - [64435652] - C:\Program Files (x86)\InstallShield Installation Information
[02/09/2012 15:48:24] - |D| - [21295025] - C:\Program Files (x86)\ArcSoft
[01/03/2011 13:21:00] - |D| - [26166854] - C:\Program Files (x86)\Orange
[08/09/2010 05:05:37] - |D| - [897884737] - C:\Program Files (x86)\Adobe
[04/09/2011 15:40:55] - |D| - [37698321] - C:\Program Files (x86)\Mozilla Firefox
[20/12/2012 22:04:57] - |D| - [7225476] - C:\Program Files (x86)\Ares
[26/06/2011 15:55:11] - |D| - [193983225] - C:\Program Files (x86)\IObit
[14/03/2013 00:00:13] - |D| - [42818990] - C:\Program Files (x86)\Microsoft Silverlight
[14/07/2009 05:20:08] - |D| - [627967726] - C:\Program Files (x86)\Common Files
[04/04/2013 13:40:07] - |D| - [97519129] - C:\Program Files (x86)\Java
[14/07/2009 05:20:08] - |D| - [5172659] - C:\Program Files (x86)\Internet Explorer
[03/03/2011 13:58:43] - |D| - [117602672] - C:\Program Files (x86)\Google

¤¤¤¤¤¤¤¤¤¤ | CommonFiles

[14/07/2009 05:20:08] - |D| - [41103783] - C:\Program Files (x86)\Common Files\SpeechEngines
[08/09/2010 05:07:38] - |D| - [123693543] - C:\Program Files (x86)\Common Files\Nero
[14/07/2009 05:20:08] - |D| - [2702] - C:\Program Files (x86)\Common Files\Services
[02/12/2010 17:45:28] - |D| - [10915840] - C:\Program Files (x86)\Common Files\Intel
[02/12/2010 17:47:52] - |D| - [166332] - C:\Program Files (x86)\Common Files\postureAgent
[02/12/2010 17:56:35] - |D| - [238410551] - C:\Program Files (x86)\Common Files\Windows Live
[02/12/2010 18:06:06] - |D| - [339523] - C:\Program Files (x86)\Common Files\Sonic Shared
[02/12/2010 18:06:06] - |D| - [4226896] - C:\Program Files (x86)\Common Files\PX Storage Engine
[02/12/2010 18:07:19] - |D| - [867343] - C:\Program Files (x86)\Common Files\Macrovision Shared
[14/07/2009 05:20:08] - |D| - [10102259] - C:\Program Files (x86)\Common Files\System
[02/09/2012 15:46:30] - |D| - [11776582] - C:\Program Files (x86)\Common Files\Nikon
[02/12/2010 17:48:27] - |D| - [3261625] - C:\Program Files (x86)\Common Files\InstallShield
[02/09/2012 15:48:20] - |D| - [45347015] - C:\Program Files (x86)\Common Files\ArcSoft
[05/05/2012 16:00:25] - |D| - [0] - C:\Program Files (x86)\Common Files\Symantec Shared
[08/09/2010 05:05:37] - |D| - [69399208] - C:\Program Files (x86)\Common Files\Adobe
[08/09/2010 05:06:23] - |D| - [46349047] - C:\Program Files (x86)\Common Files\Adobe AIR
[04/04/2013 13:40:56] - |D| - [2827] - C:\Program Files (x86)\Common Files\Java
[14/07/2009 05:20:08] - |D| - [22002650] - C:\Program Files (x86)\Common Files\microsoft shared

¤¤¤¤¤¤¤¤¤¤ | Temp\Low

[// ::] - |D| - [0] - C:\Users\Mareva\AppData\Local\Temp\Low\

¤¤¤¤¤¤¤¤¤¤ | Tasks

[14/07/2009 07:08:49] - |A| - [32496] - C:\Windows\Tasks\SCHEDLGU.TXT
[03/11/2012 17:47:43] - |A| - [1030] - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-626529243-327759216-3920316985-1000Core.job
[23/04/2013 15:20:58] - |A| - [350] - C:\Windows\Tasks\avast! Emergency Update.job
[23/04/2013 15:21:02] - |A| - [1064] - C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
[23/04/2013 15:28:48] - |A| - [1070] - C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
[03/11/2012 17:47:44] - |A| - [1082] - C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-626529243-327759216-3920316985-1000UA.job
[31/03/2012 12:50:53] - |A| - [1002] - C:\Windows\Tasks\Adobe Flash Player Updater.job
[14/07/2009 07:08:49] - |AH| - [6] - C:\Windows\Tasks\SA.DAT

[MD5.000000000000000000000000000000000000] - [08/09/2010 05:20:03] - |D| - [3510] - C:\Windows\System32\Tasks\Recovery Management -> 
[MD5.402E2D1C44F3D981A8C9A2D3983DBDA4] - [02/03/2011 01:46:30] - |A| - [3540] - C:\Windows\System32\Tasks\CreateChoiceProcessTask         :   C:\Windows\System32\browserchoice.exe ->       /launch
[MD5.000000000000000000000000000000000000] - [14/07/2009 07:09:57] - |D| - [4478] - C:\Windows\System32\Tasks\WPD -> 
[MD5.F3341CE35D9A09A6D1A44C12C4A3C902] - [09/09/2011 14:19:23] - |A| - [3172] - C:\Windows\System32\Tasks\{DD0B6FB9-72D2-4C71-B9E1-B23BA90A7689}         :   C:\Windows\system32\pcalua.exe ->        C:\Users\Mareva\Downloads\AdobeAIRInstaller.exe  "C:\Program Files (x86)\Secunia\PSI"
[MD5.2984CC18FA92C0E661C58ECD573AE3C2] - [07/08/2012 23:17:45] - |A| - [2774] - C:\Windows\System32\Tasks\CCleanerSkipUAC         :   "C:\Program Files\CCleaner\CCleaner.exe" ->       $(Arg0)
[MD5.39684131D41DE18941A8015AF8D61CDA] - [20/11/2012 20:45:18] - |A| - [3436] - C:\Windows\System32\Tasks\Browser Manager         :   C:\Windows\system32\sc.exe ->       start Browser Manager
[MD5.BA77B1E56FD9CB70DA1D202DC25E7EEE] - [03/11/2012 17:47:44] - |A| - [3662] - C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-626529243-327759216-3920316985-1000Core         :   C:\Users\Mareva\AppData\Local\Google\Update\GoogleUpdate.exe ->       /c
[MD5.7426A94B7173CE743815EB6BC59E5317] - [03/11/2012 17:47:44] - |A| - [4058] - C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-626529243-327759216-3920316985-1000UA         :   C:\Users\Mareva\AppData\Local\Google\Update\GoogleUpdate.exe ->       /ua /installsource scheduler
[MD5.6DAAC3CB0601F6036B7FC6DA006B4347] - [31/03/2012 12:50:53] - |A| - [3940] - C:\Windows\System32\Tasks\Adobe Flash Player Updater         :   C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -> 
[MD5.000000000000000000000000000000000000] - [14/07/2009 05:20:13] - |D| - [265856] - C:\Windows\System32\Tasks\Microsoft -> 
[MD5.794DEEEF6C8F102C6E22A95339E776DD] - [23/04/2013 15:28:46] - |A| - [3812] - C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore         :   C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->       /c
[MD5.DA846A116FC918B265B8B34830EBD04D] - [23/04/2013 15:28:48] - |A| - [4066] - C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA         :   C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ->       /ua /installsource scheduler

¤¤¤¤¤¤¤¤¤¤ | Firewall

[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[SSTP-IN-TCP] : v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=443|App=System|Name=@sstpsvc.dll,-35002|Desc=@sstpsvc.dll,-35003|EmbedCtxt=@sstpsvc.dll,-35001|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[Netlogon-NamedPipe-In] : v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=445|App=System|Name=@netlogon.dll,-1003|Desc=@netlogon.dll,-1006|EmbedCtxt=@netlogon.dll,-1010|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[SNMPTRAP-In-UDP] : v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Private|Profile=Public|LPort=162|RA4=LocalSubnet|RA6=LocalSubnet|App=%SystemRoot%\system32\snmptrap.exe|Svc=SNMPTRAP|Name=@snmptrap.exe,-7|Desc=@snmptrap.exe,-8|EmbedCtxt=@snmptrap.exe,-3|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[SNMPTRAP-In-UDP-NoScope] : v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|LPort=162|App=%SystemRoot%\system32\snmptrap.exe|Svc=SNMPTRAP|Name=@snmptrap.exe,-7|Desc=@snmptrap.exe,-8|EmbedCtxt=@snmptrap.exe,-3|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{38312EA4-B242-40D9-98D4-84BBE33EB2D8}] : v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Public|App=C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe|Name=Adobe Photoshop Elements Media Server|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{C958D2DC-9109-400B-9044-9ABF8102DBE7}] : v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Public|App=C:\Program Files (x86)\Adobe\Elements Organizer 8.0\AdobePhotoshopElementsMediaServer.exe|Name=Adobe Photoshop Elements Media Server|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{0273304B-552C-4749-88AD-271B64CB69CE}] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=D:\fscommand\CKSocketServer.exe|Name=Socket Server|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{A4247EFD-2AAA-48DA-95E1-59DEF447C5EE}] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=D:\fscommand\CKSocketServer.exe|Name=Socket Server|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{BBC01D30-D617-4B12-93F1-26F0F0E10B0E}] : v2.10|Action=Allow|Active=TRUE|Dir=In|App=C:\Program Files (x86)\Skype\Phone\Skype.exe|Name=Skype|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[TCP Query User{03ED6AF4-4019-4125-AB97-162001B4FA3F}C:\program files (x86)\emule\emule.exe] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\program files (x86)\emule\emule.exe|Name=eMule|Desc=eMule|Defer=User|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[UDP Query User{E00CC7E4-B968-4200-8FED-7A052DA80EB4}C:\program files (x86)\emule\emule.exe] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\program files (x86)\emule\emule.exe|Name=eMule|Desc=eMule|Defer=User|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{9439E74B-4D46-48B7-8C31-02F8FD80E8CD}] : v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\program files (x86)\emule\emule.exe|Name=eMule|Desc=eMule|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{E73B1D0E-970A-4DF0-8890-55D84E0D8D88}] : v2.10|Action=Block|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\program files (x86)\emule\emule.exe|Name=eMule|Desc=eMule|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{55EEB24E-4CBB-4ADB-88AE-B21557F893B0}] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|App=C:\Program Files (x86)\uTorrent\uTorrent.exe|Name=µTorrent (TCP-In)|Desc=Allow µTorrent network traffic with Edge Traversal|Edge=TRUE|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{F0103641-FA16-49E4-9F95-13E40573DBCF}] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|App=C:\Program Files (x86)\uTorrent\uTorrent.exe|Name=µTorrent (UDP-In)|Desc=Allow µTorrent network traffic with Edge Traversal|Edge=TRUE|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{96EBB4BD-9A4C-4606-A129-098A54DB608B}] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Users\Mareva\AppData\Local\Google\Chrome\Application\chrome.exe|Name=Google Chrome|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{40480499-FB0E-4FB8-9AE4-FA62656BD0A1}] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Users\Mareva\AppData\Local\Google\Chrome\Application\chrome.exe|Name=Google Chrome|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{AE29394F-8E21-4648-8687-3A1EDBE94FE0}] : v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|Profile=Domain|App=C:\Users\Mareva\AppData\Local\Google\Chrome\Application\chrome.exe|Name=Google Chrome|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{1D49DBE2-016F-459B-8118-7CB53AD92BFB}] : v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=17|Profile=Domain|App=C:\Users\Mareva\AppData\Local\Google\Chrome\Application\chrome.exe|Name=Google Chrome|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{B63DCEC1-E452-4B7E-9314-01BF3EC675B4}] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe|Name=OrangeUpdate|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{3955BC0A-3994-4D1C-8785-2AC68E8979E9}] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe|Name=OrangeUpdate|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[TCP Query User{25449601-47C8-42C7-A2A9-2AF53A5778FB}C:\program files (x86)\ares\ares.exe] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\program files (x86)\ares\ares.exe|Name=Ares p2p for windows|Desc=Ares p2p for windows|Defer=User|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[UDP Query User{AAA0D7B3-6992-4E78-A345-71ABAEE0FE14}C:\program files (x86)\ares\ares.exe] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\program files (x86)\ares\ares.exe|Name=Ares p2p for windows|Desc=Ares p2p for windows|Defer=User|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[TCP Query User{297A398A-975E-431C-9150-E5A0F7CD7AB6}C:\program files (x86)\ares\ares.exe] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\program files (x86)\ares\ares.exe|Name=Ares p2p for windows|Desc=Ares p2p for windows|Defer=User|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[UDP Query User{4C6AB30C-C613-4E54-AFB7-C2F3A7AF71FD}C:\program files (x86)\ares\ares.exe] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\program files (x86)\ares\ares.exe|Name=Ares p2p for windows|Desc=Ares p2p for windows|Defer=User|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{16AF57E8-7F29-4F1B-AE68-408A8ABFA8DB}] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|App=C:\Program Files (x86)\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe|Name=Search-Results Toolbar DTX Broker|
[HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules]|[{1D349167-9DF6-4F53-BEDA-E4F29891A843}] : v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|App=C:\Program Files (x86)\Search Results Toolbar\Datamngr\SRTOOL~1\dtUser.exe|Name=Search-Results Toolbar DTX Broker|

¤¤¤¤¤¤¤¤¤¤ | Legacy

[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AFD] - [SVC : AFD] : @%systemroot%\system32\drivers\afd.sys,-1000
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWFSBLK] - [SVC : aswFsBlk] : aswFsBlk
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMONFLT] - [SVC : aswMonFlt] : aswMonFlt
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRDR] - [SVC : aswRdr] : aswRdr
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRVRT] - [SVC : aswRvrt] : aswRvrt
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSNX] - [SVC : aswSnx] : aswSnx
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSP] - [SVC : aswSP] : avast! Self Protection
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWTDI] - [SVC : aswTdi] : avast! Network Shield Support
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWVMM] - [SVC : aswVmm] : aswVmm
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ATAPI] - [SVC : atapi] : IDE Channel
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BEEP] - [SVC : Beep] : Beep
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BOWSER] - [SVC : bowser] : @%systemroot%\system32\browser.dll,-102
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CDFS] - [SVC : cdfs] : CD/DVD File System Reader
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CLFS] - [SVC : CLFS] : @%SystemRoot%\system32\clfs.sys,-100
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CNG] - [SVC : CNG] : CNG
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DFSC] - [SVC : DfsC] : @%systemroot%\system32\drivers\dfsc.sys,-101
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DISCACHE] - [SVC : discache] : @%systemroot%\system32\drivers\discache.sys,-102
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DXGKRNL] - [SVC : DXGKrnl] : LDDM Graphics Subsystem
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_EECTRL] - [SVC : eeCtrl] : Symantec Eraser Control driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ERASERUTILDRV11122] - [SVC : EraserUtilDrv11122] : EraserUtilDrv11122
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ERASERUTILDRV11210] - [SVC : EraserUtilDrv11210] : EraserUtilDrv11210
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ERASERUTILREBOOTDRV] - [SVC : EraserUtilRebootDrv] : EraserUtilRebootDrv
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FASTFAT] - [SVC : fastfat] : FAT12/16/32 File System Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FILEINFO] - [SVC : FileInfo] : @%SystemRoot%\system32\drivers\fileinfo.sys,-100
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FILEMONITOR] - [SVC : FileMonitor] : FileMonitor
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FLTMGR] - [SVC : FltMgr] : @%SystemRoot%\system32\drivers\fltmgr.sys,-10001
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FS_REC] - [SVC : Fs_Rec] : Fs_Rec
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FVEVOL] - [SVC : fvevol] : @%SystemRoot%\system32\drivers\fvevol.sys,-100
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HTTP] - [SVC : HTTP] : @%SystemRoot%\system32\drivers\http.sys,-1
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HWPOLICY] - [SVC : hwpolicy] : @%systemroot%\system32\drivers\hwpolicy.sys,-101
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_KSECDD] - [SVC : KSecDD] : KSecDD
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_KSECPKG] - [SVC : KSecPkg] : KSecPkg
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_LLTDIO] - [SVC : lltdio] : Link-Layer Topology Discovery Mapper I/O Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_LUAFV] - [SVC : luafv] : @%systemroot%\system32\drivers\luafv.sys,-100
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MOUNTMGR] - [SVC : mountmgr] : @%SystemRoot%\system32\drivers\mountmgr.sys,-100
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MPSDRV] - [SVC : mpsdrv] : @%SystemRoot%\system32\FirewallAPI.dll,-23092
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MRXSMB] - [SVC : mrxsmb] : @%systemroot%\system32\wkssvc.dll,-1002
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MRXSMB10] - [SVC : mrxsmb10] : @%systemroot%\system32\wkssvc.dll,-1004
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MRXSMB20] - [SVC : mrxsmb20] : @%systemroot%\system32\wkssvc.dll,-1006
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MSFS] - [SVC : Msfs] : Msfs
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MSISADRV] - [SVC : msisadrv] : msisadrv
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MUP] - [SVC : Mup] : @%systemroot%\system32\drivers\mup.sys,-101
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NATIVEWIFIP] - [SVC : NativeWifiP] : NativeWiFi Filter
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NDIS] - [SVC : NDIS] : @%SystemRoot%\system32\drivers\ndis.sys,-200
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NDISUIO] - [SVC : Ndisuio] : NDIS Usermode I/O Protocol
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NDPROXY] - [SVC : NDProxy] : NDProxy
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETBIOS] - [SVC : NetBIOS] : NetBIOS Interface
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETBT] - [SVC : NetBT] : @%SystemRoot%\system32\drivers\netbt.sys,-2
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NPFS] - [SVC : Npfs] : Npfs
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NSIPROXY] - [SVC : nsiproxy] : @%SystemRoot%\system32\drivers\nsiproxy.sys,-2
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NTFS] - [SVC : Ntfs] : Ntfs
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NULL] - [SVC : Null] : Null
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCW] - [SVC : pcw] : Performance Counters for Windows Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PEAUTH] - [SVC : PEAUTH] : PEAUTH
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PSCHED] - [SVC : Psched] : @%SystemRoot%\System32\drivers\pacer.sys,-101
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RDBSS] - [SVC : rdbss] : @%systemroot%\system32\wkssvc.dll,-1000
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RDPCDD] - [SVC : RDPCDD] : @%systemroot%\system32\DRIVERS\RDPCDD.sys,-100
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RDPENCDD] - [SVC : RDPENCDD] : @%systemroot%\system32\drivers\RDPENCDD.sys,-101
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RDPREFMP] - [SVC : RDPREFMP] : @%systemroot%\system32\drivers\RdpRefMp.sys,-101
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_REGFILTER] - [SVC : RegFilter] : RegFilter
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RSPNDR] - [SVC : rspndr] : Link-Layer Topology Discovery Responder
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SECDRV] - [SVC : secdrv] : Security Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SMARTDEFRAGDRIVER] - [SVC : SmartDefragDriver] : SmartDefragDriver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPLDR] - [SVC : spldr] : Security Processor Loader Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SRV] - [SVC : srv] : @%systemroot%\system32\srvsvc.dll,-102
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SRV2] - [SVC : srv2] : @%systemroot%\system32\srvsvc.dll,-104
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SRVNET] - [SVC : srvnet] : srvnet
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMIRON] - [SVC : SymIRON] : Symantec Iron Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMNETS] - [SVC : SymNetS] : Symantec Network Security WFP Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TCPIP] - [SVC : Tcpip] : @%SystemRoot%\system32\tcpipcfg.dll,-50003
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TCPIPREG] - [SVC : tcpipreg] : TCP/IP Registry Compatibility
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TDX] - [SVC : tdx] : @%SystemRoot%\system32\tcpipcfg.dll,-50004
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_UDFS] - [SVC : udfs] : udfs
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_URLFILTER] - [SVC : UrlFilter] : UrlFilter
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VGASAVE] - [SVC : VgaSave] : VgaSave
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VOLMGRX] - [SVC : volmgrx] : @%SystemRoot%\system32\drivers\volmgrx.sys,-100
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VOLSNAP] - [SVC : volsnap] : Volumes de stockage
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VWIFIFLT] - [SVC : vwififlt] : Virtual WiFi Filter Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WANARPV6] - [SVC : Wanarpv6] : @%systemroot%\system32\rascfg.dll,-32012
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WDF01000] - [SVC : Wdf01000] : Kernel Mode Driver Frameworks service
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WFPLWF] - [SVC : WfpLwf] : WFP Lightweight Filter
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WUDFPF] - [SVC : WudfPf] : User Mode Driver Frameworks Platform Driver

¤¤¤¤¤¤¤¤¤¤ | Drivers Loaded

[13/02/2013 11:33:23] - (6.1.7600.17207) - (Microsoft Corporation - NT Kernel & System) - C:\Windows\system32\ntoskrnl.exe
[14/07/2009 01:19:22] - (6.1.7600.16385) - (Microsoft Corporation - Hardware Abstraction Layer DLL) - C:\Windows\system32\hal.dll
[12/05/2011 12:22:01] - (6.1.7600.16757) - (Microsoft Corporation - Serial Kernel Debugger) - C:\Windows\system32\kdcom.dll
[14/07/2009 01:22:30] - (6.1.7600.16385) - (Microsoft Corporation - Intel Microcode Update Library) - C:\Windows\system32\mcupdate_GenuineIntel.dll
[14/07/2009 01:19:28] - (6.1.7600.16385) - (Microsoft Corporation - Pilote d’erreurs matérielles spécifiques à une plateforme) - C:\Windows\system32\PSHED.dll
[14/07/2009 01:19:59] - (6.1.7600.16385) - (Microsoft Corporation - Common Log File System Driver) - C:\Windows\system32\CLFS.SYS
[14/07/2009 01:22:33] - (6.1.7600.16385) - (Microsoft Corporation - Module d’intégrité du code) - C:\Windows\system32\CI.dll
[15/11/2012 11:00:39] - (1.11.9200.16384) - (Microsoft Corporation - Runtime de l’infrastructure de pilotes en mode noyau) - C:\Windows\system32\drivers\Wdf01000.sys
[15/11/2012 11:00:39] - (1.11.9200.16384) - (Microsoft Corporation - Kernel Mode Driver Framework Loader) - C:\Windows\system32\drivers\WDFLDR.SYS
[14/07/2009 01:19:35] - (6.1.7600.16385) - (Microsoft Corporation - Pilote ACPI pour NT) - C:\Windows\system32\DRIVERS\ACPI.sys
[14/07/2009 01:19:51] - (6.1.7600.16385) - (Microsoft Corporation - WMILIB WMI support library Dll) - C:\Windows\system32\DRIVERS\WMILIB.SYS
[14/07/2009 01:19:26] - (6.1.7600.16385) - (Microsoft Corporation - ISA Driver) - C:\Windows\system32\DRIVERS\msisadrv.sys
[14/07/2009 01:19:52] - (6.1.7600.16385) - (Microsoft Corporation - Énumérateur Plug-and-Play PCI pour NT) - C:\Windows\system32\DRIVERS\pci.sys
[14/07/2009 02:01:31] - (6.1.7600.16385) - (Microsoft Corporation - Énumérateur racine de lecteur virtuel) - C:\Windows\system32\DRIVERS\vdrvroot.sys
[08/05/2012 21:06:26] - (6.1.7600.16979) - (Microsoft Corporation - Partition Management Driver) - C:\Windows\System32\drivers\partmgr.sys
[14/07/2009 01:31:02] - (6.1.7600.16385) - (Microsoft Corporation - Composite Battery Driver) - C:\Windows\system32\DRIVERS\compbatt.sys
[14/07/2009 01:31:01] - (6.1.7600.16385) - (Microsoft Corporation - Battery Class Driver) - C:\Windows\system32\DRIVERS\BATTC.SYS
[14/07/2009 01:19:57] - (6.1.7600.16385) - (Microsoft Corporation - Volume Manager Driver) - C:\Windows\system32\DRIVERS\volmgr.sys
[14/07/2009 01:20:35] - (6.1.7600.16385) - (Microsoft Corporation - Pilote d’extension du gestionnaire de volumes) - C:\Windows\System32\drivers\volmgrx.sys
[14/07/2009 01:19:54] - (6.1.7600.16385) - (Microsoft Corporation - Gestionnaire des points de montage) - C:\Windows\System32\drivers\mountmgr.sys
[08/09/2010 05:01:56] - (9.6.0.1014) - (Intel Corporation - Intel Rapid Storage Technology driver - x64) - C:\Windows\system32\DRIVERS\iaStor.sys
[14/07/2009 01:19:47] - (6.1.7600.16385) - (Microsoft Corporation - ATAPI IDE Miniport Driver) - C:\Windows\system32\DRIVERS\atapi.sys
[14/07/2009 01:19:53] - (6.1.7600.16385) - (Microsoft Corporation - ATAPI Driver Extension) - C:\Windows\system32\DRIVERS\ataport.SYS
[12/05/2011 12:22:51] - (1.1.2.5) - (Advanced Micro Devices - Storage Filter Driver) - C:\Windows\system32\drivers\amdxata.sys
[14/07/2009 01:20:01] - (6.1.7600.16385) - (Microsoft Corporation - Gestionnaire de filtres de système de fichiers Microsoft) - C:\Windows\system32\drivers\fltmgr.sys
[14/07/2009 01:34:25] - (6.1.7600.16385) - (Microsoft Corporation - FileInfo Filter Driver) - C:\Windows\system32\drivers\fileinfo.sys
[02/12/2010 18:07:03] - (3.0.83.0) - (Sonic Solutions - Px Engine Device Driver for 64-bit Windows) - C:\Windows\System32\Drivers\PxHlpa64.sys
[10/10/2012 21:12:50] - (6.1.7600.17119) - (Microsoft Corporation - Pilote du système de fichiers NT) - C:\Windows\System32\Drivers\Ntfs.sys
[14/07/2009 01:21:34] - (6.1.7600.16385) - (Microsoft Corporation - Kernel Remote Procedure Call Provider) - C:\Windows\System32\Drivers\msrpc.sys
[11/07/2012 12:43:57] - (6.1.7600.17035) - (Microsoft Corporation - Kernel Security Support Provider Interface) - C:\Windows\System32\Drivers\ksecdd.sys
[11/07/2012 12:43:58] - (6.1.7600.17035) - (Microsoft Corporation - Kernel Cryptography, Next Generation) - C:\Windows\System32\Drivers\cng.sys
[14/07/2009 01:19:30] - (6.1.7600.16385) - (Microsoft Corporation - Performance Counters for Windows Driver) - C:\Windows\System32\drivers\pcw.sys
[11/04/2012 21:57:22] - (6.1.7600.16970) - (Microsoft Corporation - File System Recognizer Driver) - C:\Windows\System32\Drivers\Fs_Rec.sys
[14/07/2009 01:21:44] - (6.1.7600.16385) - (Microsoft Corporation - Pilote NDIS 6.20) - C:\Windows\system32\drivers\ndis.sys
[14/07/2009 01:21:48] - (6.1.7600.16385) - (Microsoft Corporation - Network I/O Subsystem) - C:\Windows\system32\drivers\NETIO.SYS
[11/07/2012 12:43:57] - (6.1.7600.17035) - (Microsoft Corporation - Kernel Security Support Provider Interface Packages) - C:\Windows\System32\Drivers\ksecpkg.sys
[13/02/2013 11:32:46] - (6.1.7600.17206) - (Microsoft Corporation - Pilote TCP/IP) - C:\Windows\System32\drivers\tcpip.sys
[13/02/2013 11:32:46] - (6.1.7600.17206) - (Microsoft Corporation - FWP/IPsec Kernel-Mode API) - C:\Windows\System32\drivers\fwpkclnt.sys
[12/12/2012 11:02:38] - (6.1.7600.17122) - (Microsoft Corporation - Pilote de cliché instantané du volume) - C:\Windows\system32\drivers\volsnap.sys
[13/07/2009 22:27:56] - (6.1.7127.0) - (Microsoft Corporation - loader for security processor) - C:\Windows\System32\Drivers\spldr.sys
[04/03/2013 22:06:43] - (0.0.0.0) - ( - ) - C:\Windows\System32\Drivers\SmartDefragDriver.sys
[08/09/2010 04:59:44] - (6.1.7600.16617) - (Microsoft Corporation - ReadyBoost Driver) - C:\Windows\System32\drivers\rdyboost.sys
[14/07/2009 01:23:45] - (6.1.7600.16385) - (Microsoft Corporation - Multiple UNC Provider Driver) - C:\Windows\System32\Drivers\mup.sys
[14/07/2009 01:19:23] - (6.1.7600.16385) - (Microsoft Corporation - Hardware Policy Driver) - C:\Windows\System32\drivers\hwpolicy.sys
[01/03/2011 18:16:38] - (6.1.7600.16429) - (Microsoft Corporation - BitLocker Drive Encryption Driver) - C:\Windows\System32\DRIVERS\fvevol.sys
[14/07/2009 01:19:57] - (6.1.7600.16385) - (Microsoft Corporation - PnP Disk Driver) - C:\Windows\system32\DRIVERS\disk.sys
[14/07/2009 01:19:59] - (6.1.7600.16385) - (Microsoft Corporation - SCSI Class System Dll) - C:\Windows\system32\DRIVERS\CLASSPNP.SYS
[23/04/2013 15:20:58] - (8.0.1483.72) - ( - ) - C:\Windows\System32\Drivers\aswRvrt.sys
[14/07/2009 01:19:54] - (6.1.7600.16385) - (Microsoft Corporation - SCSI CD-ROM Driver) - C:\Windows\system32\DRIVERS\cdrom.sys
[23/04/2013 15:20:58] - (8.0.1483.72) - (AVAST Software - avast! Virtualization Driver) - C:\Windows\System32\Drivers\aswSnx.SYS
[14/07/2009 01:19:38] - (6.1.7600.16385) - (Microsoft Corporation - NULL Driver) - C:\Windows\System32\Drivers\Null.SYS
[14/07/2009 02:00:13] - (6.1.7600.16385) - (Microsoft Corporation - BEEP Driver) - C:\Windows\System32\Drivers\Beep.SYS
[14/07/2009 01:38:48] - (6.1.7600.16385) - (Microsoft Corporation - VGA/Super VGA Video Driver) - C:\Windows\System32\drivers\vga.sys
[14/07/2009 01:38:51] - (6.1.7600.16385) - (Microsoft Corporation - Video Port Driver) - C:\Windows\System32\drivers\VIDEOPRT.SYS
[14/07/2009 01:37:35] - (6.1.7600.16385) - (Microsoft Corporation - Watchdog Driver) - C:\Windows\System32\drivers\watchdog.sys
[14/07/2009 02:16:34] - (6.1.7600.16385) - (Microsoft Corporation - RDP Miniport) - C:\Windows\System32\DRIVERS\RDPCDD.sys
[14/07/2009 02:16:34] - (6.1.7600.16385) - (Microsoft Corporation - RDP Encoder Miniport) - C:\Windows\system32\drivers\rdpencdd.sys
[14/07/2009 02:16:35] - (6.1.7600.16385) - (Microsoft Corporation - RDP Reflector Driver Miniport) - C:\Windows\system32\drivers\rdprefmp.sys
[14/07/2009 01:19:47] - (6.1.7600.16385) - (Microsoft Corporation - Mailslot driver) - C:\Windows\System32\Drivers\Msfs.SYS
[14/07/2009 01:19:48] - (6.1.7600.16385) - (Microsoft Corporation - NPFS Driver) - C:\Windows\System32\Drivers\Npfs.SYS
[14/07/2009 01:21:15] - (6.1.7600.16385) - (Microsoft Corporation - TDI Translation Driver) - C:\Windows\system32\DRIVERS\tdx.sys
[14/07/2009 01:21:19] - (6.1.7600.16385) - (Microsoft Corporation - TDI Wrapper) - C:\Windows\system32\DRIVERS\TDI.SYS
[23/04/2013 15:20:58] - (8.0.1483.72) - (AVAST Software - avast! TDI Filter Driver) - C:\Windows\System32\Drivers\aswTdi.SYS
[16/02/2012 05:29:22] - (6.1.7600.16937) - (Microsoft Corporation - Ancillary Function Driver for WinSock) - C:\Windows\system32\drivers\afd.sys
[23/04/2013 15:20:58] - (8.0.1483.72) - (AVAST Software - avast! WFP Redirect Driver) - C:\Windows\System32\Drivers\aswrdr2.sys
[14/07/2009 01:21:29] - (6.1.7600.16385) - (Microsoft Corporation - MBT Transport driver) - C:\Windows\System32\DRIVERS\netbt.sys
[14/07/2009 02:09:26] - (6.1.7600.16385) - (Microsoft Corporation - WFP NDIS 6.20 Lightweight Filter Driver) - C:\Windows\system32\DRIVERS\wfplwf.sys
[14/07/2009 02:09:42] - (6.1.7600.16385) - (Microsoft Corporation - Planificateur de paquets QoS) - C:\Windows\system32\DRIVERS\pacer.sys
[14/07/2009 02:07:22] - (6.1.7600.16385) - (Microsoft Corporation - Virtual WiFi Filter Driver) - C:\Windows\system32\DRIVERS\vwififlt.sys
[14/07/2009 02:09:26] - (6.1.7600.16385) - (Microsoft Corporation - NetBIOS interface driver) - C:\Windows\system32\DRIVERS\netbios.sys
[14/07/2009 02:10:22] - (6.1.7600.16385) - (Microsoft Corporation - MS Remote Access and Routing ARP Driver) - C:\Windows\system32\DRIVERS\wanarp.sys
[14/07/2009 02:16:36] - (6.1.7600.16385) - (Microsoft Corporation - Remote Desktop Server Driver) - C:\Windows\system32\DRIVERS\termdd.sys
[14/07/2009 01:24:11] - (6.1.7600.16385) - (Microsoft Corporation - Pilote du sous-système de mise en mémoire tampon de lecteur redirigé) - C:\Windows\system32\DRIVERS\rdbss.sys
[14/07/2009 01:21:03] - (6.1.7600.16385) - (Microsoft Corporation - NSI Proxy) - C:\Windows\system32\drivers\nsiproxy.sys
[14/07/2009 01:31:10] - (6.1.7600.16385) - (Microsoft Corporation - System Management BIOS Driver) - C:\Windows\system32\DRIVERS\mssmbios.sys
[14/07/2009 01:37:18] - (6.1.7600.16385) - (Microsoft Corporation - System Indexer/Cache Driver) - C:\Windows\System32\drivers\discache.sys
[17/06/2011 17:01:13] - (6.1.7600.16804) - (Microsoft Corporation - DFS Namespace Client Driver) - C:\Windows\System32\Drivers\dfsc.sys
[14/07/2009 01:35:59] - (6.1.7600.16385) - (Microsoft Corporation - BLB Drive Driver) - C:\Windows\system32\DRIVERS\blbdrive.sys
[23/04/2013 15:20:58] - (8.0.1483.72) - (AVAST Software - avast! self protection module) - C:\Windows\System32\Drivers\aswSP.SYS
[14/07/2009 02:09:38] - (6.1.7600.16385) - (Microsoft Corporation - Pilote d’interface de tunnel Microsoft) - C:\Windows\system32\DRIVERS\tunnel.sys
[03/12/2010 02:26:40] - (8.15.10.2119) - (Intel Corporation - Intel Graphics Kernel Mode Driver) - C:\Windows\system32\DRIVERS\igdkmd64.sys
[21/02/2012 23:30:14] - (6.1.7600.16748) - (Microsoft Corporation - DirectX Graphics Kernel) - C:\Windows\System32\drivers\dxgkrnl.sys
[21/02/2012 23:30:14] - (6.1.7600.16748) - (Microsoft Corporation - DirectX Graphics MMS) - C:\Windows\System32\drivers\dxgmms1.sys
[02/12/2010 17:47:44] - (6.0.0.1179) - (Intel Corporation - Intel(R) Management Engine Interface) - C:\Windows\system32\DRIVERS\HECIx64.sys
[12/05/2011 12:23:04] - (6.1.7600.20934) - (Microsoft Corporation - EHCI eUSB Miniport Driver) - C:\Windows\system32\drivers\usbehci.sys
[12/05/2011 12:23:04] - (6.1.7600.20934) - (Microsoft Corporation - Pilote de port USB 1.1 & 2.0) - C:\Windows\system32\drivers\USBPORT.SYS
[14/07/2009 02:06:13] - (6.1.7600.16385) - (Microsoft Corporation - High Definition Audio Bus Driver) - C:\Windows\system32\DRIVERS\HDAudBus.sys
[08/06/2010 05:36:18] - (14.2.0.7) - (Broadcom Corporation - Broadcom NetLink (TM) Gigabit Ethernet NDIS6.x Unified Driver.) - C:\Windows\system32\DRIVERS\k57nd60a.sys
[03/12/2010 02:27:23] - (9.0.0.202) - (Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver) - C:\Windows\system32\DRIVERS\athrx.sys
[14/07/2009 02:07:21] - (6.1.7600.16385) - (Microsoft Corporation - Pilote de bus WiFi virtuel) - C:\Windows\system32\DRIVERS\vwifibus.sys
[14/07/2009 01:31:03] - (6.1.7600.16385) - (Microsoft Corporation - Control Method Battery Driver) - C:\Windows\system32\DRIVERS\CmBatt.sys
[14/07/2009 01:19:58] - (6.1.7600.16385) - (Microsoft Corporation - Pilote de port i8042) - C:\Windows\system32\DRIVERS\i8042prt.sys
[14/07/2009 01:19:50] - (6.1.7600.16385) - (Microsoft Corporation - Pilote de la classe Clavier) - C:\Windows\system32\DRIVERS\kbdclass.sys
[03/12/2010 02:27:17] - (14.0.6.0) - (Synaptics Incorporated - Synaptics Touchpad Driver) - C:\Windows\system32\DRIVERS\SynTP.sys
[12/05/2011 12:23:03] - (6.1.7600.20934) - (Microsoft Corporation - Universal Serial Bus Driver) - C:\Windows\system32\DRIVERS\USBD.SYS
[14/07/2009 01:19:50] - (6.1.7600.16385) - (Microsoft Corporation - Pilote de la classe Souris) - C:\Windows\system32\DRIVERS\mouclass.sys
[08/09/2010 05:19:40] - (2.0.0.11) - (NewTech Infosystems Corporation - NTI CDROM Filter Driver) - C:\Windows\system32\drivers\UBHelper.sys
[08/09/2010 05:19:40] - (1.0.0.9) - (NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver) - C:\Windows\system32\drivers\NTIDrvr.sys
[03/12/2010 02:26:41] - (1.2.0.1002) - (Intel Corporation - Intel(R) Turbo Boost Technology Driver) - C:\Windows\system32\DRIVERS\Impcd.sys
[14/07/2009 01:19:26] - (6.1.7600.16385) - (Microsoft Corporation - Processor Device Driver) - C:\Windows\system32\DRIVERS\intelppm.sys
[14/07/2009 01:31:03] - (6.1.7600.16385) - (Microsoft Corporation - Windows Management Interface for ACPI) - C:\Windows\system32\DRIVERS\wmiacpi.sys
[14/07/2009 02:00:34] - (6.1.7600.16385) - (Microsoft Corporation - Multi-Transport Composite Bus Enumerator) - C:\Windows\system32\DRIVERS\CompositeBus.sys
[14/07/2009 02:10:24] - (6.1.7600.16385) - (Microsoft Corporation - RAS Agile Vpn Miniport Call Manager) - C:\Windows\system32\DRIVERS\AgileVpn.sys
[14/07/2009 02:10:12] - (6.1.7600.16385) - (Microsoft Corporation - RAS L2TP mini-port/call-manager driver) - C:\Windows\system32\DRIVERS\rasl2tp.sys
[14/07/2009 02:10:00] - (6.1.7600.16385) - (Microsoft Corporation - NDIS 3.0 connection wrapper driver) - C:\Windows\system32\DRIVERS\ndistapi.sys
[14/07/2009 02:10:13] - (6.1.7600.16385) - (Microsoft Corporation - MS PPP Framing Driver (Strong Encryption)) - C:\Windows\system32\DRIVERS\ndiswan.sys
[14/07/2009 02:10:17] - (6.1.7600.16385) - (Microsoft Corporation - RAS PPPoE mini-port/call-manager driver) - C:\Windows\system32\DRIVERS\raspppoe.sys
[14/07/2009 02:10:19] - (6.1.7600.16385) - (Microsoft Corporation - Peer-to-Peer Tunneling Protocol) - C:\Windows\system32\DRIVERS\raspptp.sys
[14/07/2009 02:10:25] - (6.1.7600.16385) - (Microsoft Corporation - RAS SSTP Miniport Call Manager) - C:\Windows\system32\DRIVERS\rassstp.sys
[14/07/2009 02:00:18] - (6.1.7600.16385) - (Microsoft Corporation - Plug and Play Software Device Enumerator) - C:\Windows\system32\DRIVERS\swenum.sys
[03/12/2010 02:28:05] - (6.1.7600.16543) - (Microsoft Corporation - Kernel CSA Library) - C:\Windows\system32\DRIVERS\ks.sys
[14/07/2009 02:06:56] - (6.1.7600.16385) - (Microsoft Corporation - User-Mode Bus Enumerator) - C:\Windows\system32\DRIVERS\umbus.sys
[12/05/2011 12:23:03] - (6.1.7600.20934) - (Microsoft Corporation - Default Hub Driver for USB) - C:\Windows\system32\DRIVERS\usbhub.sys
[14/07/2009 02:10:05] - (6.1.7600.16385) - (Microsoft Corporation - NDIS Proxy) - C:\Windows\System32\Drivers\NDProxy.SYS
[02/12/2010 17:48:32] - (6.0.1.6167) - (Realtek Semiconductor Corp. - Realtek(r) High Definition Audio Function Driver) - C:\Windows\system32\drivers\RTKVHD64.sys
[14/07/2009 02:06:29] - (6.1.7600.16385) - (Microsoft Corporation - Port Class (Class Driver for Port/Miniport Devices)) - C:\Windows\system32\drivers\portcls.sys
[14/07/2009 02:06:30] - (6.1.7600.16385) - (Microsoft Corporation - Microsoft Trusted Audio Drivers) - C:\Windows\system32\drivers\drmk.sys
[14/07/2009 02:00:19] - (6.1.7600.16385) - (Microsoft Corporation - Kernel Streaming WOW Thunk Service) - C:\Windows\system32\drivers\ksthunk.sys
[03/12/2010 02:26:41] - (6.12.0.3047) - (Intel(R) Corporation - Intel(R) Display Audio Driver) - C:\Windows\system32\DRIVERS\IntcDAud.sys
[12/05/2011 12:23:03] - (6.1.7600.20934) - (Microsoft Corporation - USB Common Class Generic Parent Driver) - C:\Windows\system32\DRIVERS\usbccgp.sys
[14/07/2009 02:06:22] - (6.1.7600.16385) - (Microsoft Corporation - USB Miniport Driver for Input Devices) - C:\Windows\system32\DRIVERS\hidusb.sys
[14/07/2009 02:06:21] - (6.1.7600.16385) - (Microsoft Corporation - Hid Class Library) - C:\Windows\system32\DRIVERS\HIDCLASS.SYS
[14/07/2009 02:06:17] - (6.1.7600.16385) - (Microsoft Corporation - Hid Parsing Library) - C:\Windows\system32\DRIVERS\HIDPARSE.SYS
[14/07/2009 02:00:20] - (6.1.7600.16385) - (Microsoft Corporation - Pilote de filtre souris HID) - C:\Windows\system32\DRIVERS\mouhid.sys
[13/02/2013 11:33:11] - (6.1.7600.17206) - (Microsoft Corporation - Pilote Win32 multi-utilisateurs) - C:\Windows\System32\win32k.sys
[14/07/2009 01:38:28] - (6.1.7600.16385) - (Microsoft Corporation - DirectX API Driver) - C:\Windows\System32\drivers\Dxapi.sys
[03/12/2010 02:28:05] - (6.1.7600.16543) - (Microsoft Corporation - USB Video Class Driver) - C:\Windows\System32\Drivers\usbvideo.sys
[14/07/2009 02:01:01] - (6.1.7600.16385) - (Microsoft Corporation - Crash Dump Driver) - C:\Windows\System32\Drivers\crashdmp.sys
[14/07/2009 01:38:53] - (6.1.7600.16385) - (Microsoft Corporation - Monitor Driver) - C:\Windows\system32\DRIVERS\monitor.sys
[14/07/2009 02:16:34] - (6.1.7600.16385) - (Microsoft Corporation - Framebuffer Display Driver) - C:\Windows\System32\TSDDD.dll
[21/02/2012 23:30:14] - (6.1.7600.16748) - (Microsoft Corporation - Canonical Display Driver) - C:\Windows\System32\cdd.dll
[14/07/2009 01:26:13] - (6.1.7600.16385) - (Microsoft Corporation - Pilote de filtre de virtualisation de fichier LUA) - C:\Windows\system32\drivers\luafv.sys
[23/04/2013 15:20:58] - (8.0.1483.72) - (AVAST Software - avast! File System Minifilter for Windows 2003/Vista) - C:\Windows\system32\drivers\aswMonFlt.sys
[23/04/2013 15:20:59] - (8.0.1483.72) - (AVAST Software - avast! File System Access Blocking Driver) - C:\Windows\System32\Drivers\aswFsBlk.SYS
[15/11/2012 10:51:39] - (6.2.9200.16384) - (Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Platform Driver) - C:\Windows\system32\drivers\WudfPf.sys
[14/07/2009 02:08:51] - (6.1.7600.16385) - (Microsoft Corporation - Link-Layer Topology Mapper I/O Driver) - C:\Windows\system32\DRIVERS\lltdio.sys
[14/07/2009 02:07:24] - (6.1.7600.16385) - (Microsoft Corporation - Pilote de miniport WiFi natif) - C:\Windows\system32\DRIVERS\nwifi.sys
[14/07/2009 02:09:25] - (6.1.7600.16385) - (Microsoft Corporation - Pilote d’E/S du mode utilisateur NDIS) - C:\Windows\system32\DRIVERS\ndisuio.sys
[14/07/2009 02:08:51] - (6.1.7600.16385) - (Microsoft Corporation - Link-Layer Topology Responder Driver for NDIS 6) - C:\Windows\system32\DRIVERS\rspndr.sys
[14/07/2009 01:22:20] - (6.1.7600.16385) - (Microsoft Corporation - HTTP Pile du protocole) - C:\Windows\system32\drivers\HTTP.sys
[12/05/2011 12:21:58] - (6.1.7600.16765) - (Microsoft Corporation - NT Lan Manager Datagram Receiver Driver) - C:\Windows\system32\DRIVERS\bowser.sys
[14/07/2009 02:08:25] - (6.1.7600.16385) - (Microsoft Corporation - Microsoft Protection Service Driver) - C:\Windows\System32\drivers\mpsdrv.sys
[17/06/2011 17:01:08] - (6.1.7600.16808) - (Microsoft Corporation - Windows NT SMB Minirdr) - C:\Windows\system32\DRIVERS\mrxsmb.sys
[11/08/2011 12:00:08] - (6.1.7600.16847) - (Microsoft Corporation - Longhorn SMB Downlevel SubRdr) - C:\Windows\system32\DRIVERS\mrxsmb10.sys
[17/06/2011 17:01:08] - (6.1.7600.16808) - (Microsoft Corporation - Longhorn SMB 2.0 Redirector) - C:\Windows\system32\DRIVERS\mrxsmb20.sys
[14/07/2009 01:51:01] - (6.1.7600.16385) - (Microsoft Corporation - Protected Environment Authentication and Authorization Export Driver) - C:\Windows\system32\drivers\peauth.sys
[14/07/2009 04:36:07] - (4.3.86.0) - (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K. - Macrovision SECURITY Driver) - C:\Windows\System32\Drivers\secdrv.SYS
[17/06/2011 17:00:34] - (6.1.7600.16806) - (Microsoft Corporation - Server Network driver) - C:\Windows\System32\DRIVERS\srvnet.sys
[14/07/2009 02:09:49] - (6.1.7600.16385) - (Microsoft Corporation - TCP/IP Registry Compatibility Driver) - C:\Windows\System32\drivers\tcpipreg.sys
[17/06/2011 17:00:34] - (6.1.7600.16806) - (Microsoft Corporation - Smb 2.0 Server driver) - C:\Windows\System32\DRIVERS\srv2.sys
[17/06/2011 17:00:34] - (6.1.7600.16806) - (Microsoft Corporation - Server driver) - C:\Windows\System32\DRIVERS\srv.sys
[04/03/2013 22:06:37] - (0.1.4.26) - (IObit.com - Registry Filter) - C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
[04/03/2013 22:06:37] - (1.2.0.2) - (IObit - IMF File MiniFilter Driver) - C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
[04/03/2013 22:06:37] - (0.1.0.25) - (IObit.com - URL Filter) - C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
[11/01/2012 22:50:13] - (6.1.7600.16915) - (Microsoft Corporation - DLL Couche NT) - C:\Windows\System32\ntdll.dll
[14/07/2009 01:19:50] - (6.1.7600.16385) - (Microsoft Corporation - Gestionnaire de sessions Windows) - C:\Windows\System32\smss.exe
[14/07/2009 01:18:54] - (6.1.7600.16385) - (Microsoft Corporation - ApiSet Schema DLL) - C:\Windows\System32\apisetschema.dll
[14/07/2009 01:25:36] - (6.1.7600.16385) - (Microsoft Corporation - Auto Check Utility) - C:\Windows\System32\autochk.exe

¤¤¤¤¤¤¤¤¤¤ | Services | 0 : Boot | 1 : System | 2 : Auto | 3 : Manual | 4 : Disabled | R : Running | S : Stopped

R0 - ACPI (Microsoft ACPI Driver) -> system32\DRIVERS\ACPI.sys
R0 - amdxata () -> system32\drivers\amdxata.sys
R0 - aswRvrt (aswRvrt) -> (?)
R0 - atapi (IDE Channel) -> system32\DRIVERS\atapi.sys
R0 - CLFS (@%SystemRoot%\system32\clfs.sys,-100) -> System32\CLFS.sys
R0 - CNG () -> System32\Drivers\cng.sys
R0 - Compbatt (Microsoft Composite Battery Driver) -> system32\DRIVERS\compbatt.sys
R0 - Disk (Pilote de disque) -> system32\DRIVERS\disk.sys
R0 - FileInfo (@%SystemRoot%\system32\drivers\fileinfo.sys,-100) -> system32\drivers\fileinfo.sys
R0 - FltMgr (@%SystemRoot%\system32\drivers\fltmgr.sys,-10001) -> system32\drivers\fltmgr.sys
S0 - Fs_Rec () -> (?)
R0 - fvevol (@%SystemRoot%\system32\drivers\fvevol.sys,-100) -> System32\DRIVERS\fvevol.sys
R0 - hwpolicy (@%systemroot%\system32\drivers\hwpolicy.sys,-101) -> System32\drivers\hwpolicy.sys
R0 - iaStor (Intel AHCI Controller) -> system32\DRIVERS\iaStor.sys
R0 - KSecDD () -> System32\Drivers\ksecdd.sys
R0 - KSecPkg () -> System32\Drivers\ksecpkg.sys
R0 - mountmgr (@%SystemRoot%\system32\drivers\mountmgr.sys,-100) -> System32\drivers\mountmgr.sys
R0 - msisadrv () -> system32\DRIVERS\msisadrv.sys
R0 - Mup (@%systemroot%\system32\drivers\mup.sys,-101) -> System32\Drivers\mup.sys
R0 - NDIS (@%SystemRoot%\system32\drivers\ndis.sys,-200) -> system32\drivers\ndis.sys
R0 - partmgr (@%SystemRoot%\system32\drivers\partmgr.sys,-100) -> System32\drivers\partmgr.sys
R0 - pci (Pilote de bus PCI) -> system32\DRIVERS\pci.sys
R0 - pcw (Performance Counters for Windows Driver) -> System32\drivers\pcw.sys
R0 - PxHlpa64 (PxHlpa64) -> System32\Drivers\PxHlpa64.sys
R0 - rdyboost (ReadyBoost) -> System32\drivers\rdyboost.sys
R0 - SmartDefragDriver (SmartDefragDriver) -> System32\Drivers\SmartDefragDriver.sys
R0 - spldr (Security Processor Loader Driver) -> (?)
R0 - Tcpip (@%SystemRoot%\system32\tcpipcfg.dll,-50003) -> System32\drivers\tcpip.sys
R0 - vdrvroot (Microsoft Virtual Drive Enumerator Driver) -> system32\DRIVERS\vdrvroot.sys
R0 - volmgr (Volume Manager Driver) -> system32\DRIVERS\volmgr.sys
R0 - volmgrx (@%SystemRoot%\system32\drivers\volmgrx.sys,-100) -> System32\drivers\volmgrx.sys
R0 - volsnap (Volumes de stockage) -> system32\drivers\volsnap.sys
R0 - Wdf01000 (@%SystemRoot%\system32\drivers\Wdf01000.sys,-1000) -> system32\drivers\Wdf01000.sys
R1 - AFD (@%systemroot%\system32\drivers\afd.sys,-1000) -> \SystemRoot\system32\drivers\afd.sys
R1 - aswRdr (aswRdr) -> \SystemRoot\System32\Drivers\aswrdr2.sys
R1 - aswSnx (aswSnx) -> (?)
R1 - aswSP (aswSP) -> (?)
R1 - aswTdi (avast! Network Shield Support) -> (?)
R1 - Beep (Beep) -> (?)
R1 - blbdrive () -> \SystemRoot\system32\DRIVERS\blbdrive.sys
R1 - cdrom (Pilote de CD-ROM) -> system32\DRIVERS\cdrom.sys
R1 - DfsC (@%systemroot%\system32\drivers\dfsc.sys,-101) -> System32\Drivers\dfsc.sys
R1 - discache (@%systemroot%\system32\drivers\discache.sys,-102) -> System32\drivers\discache.sys
R1 - Msfs () -> (?)
R1 - mssmbios (Microsoft System Management BIOS Driver) -> \SystemRoot\system32\DRIVERS\mssmbios.sys
R1 - NetBIOS (NetBIOS Interface) -> system32\DRIVERS\netbios.sys
R1 - NetBT (@%SystemRoot%\system32\drivers\netbt.sys,-2) -> System32\DRIVERS\netbt.sys
R1 - Npfs () -> (?)
R1 - nsiproxy (@%SystemRoot%\system32\drivers\nsiproxy.sys,-2) -> system32\drivers\nsiproxy.sys
R1 - Null () -> (?)
R1 - Psched (@%SystemRoot%\System32\drivers\pacer.sys,-101) -> system32\DRIVERS\pacer.sys
R1 - rdbss (@%systemroot%\system32\wkssvc.dll,-1000) -> system32\DRIVERS\rdbss.sys
R1 - RDPCDD (@%systemroot%\system32\DRIVERS\RDPCDD.sys,-100) -> System32\DRIVERS\RDPCDD.sys
R1 - RDPENCDD (@%systemroot%\system32\drivers\RDPENCDD.sys,-101) -> system32\drivers\rdpencdd.sys
R1 - RDPREFMP (@%systemroot%\system32\drivers\RdpRefMp.sys,-101) -> system32\drivers\rdprefmp.sys
R1 - tdx (@%SystemRoot%\system32\tcpipcfg.dll,-50004) -> system32\DRIVERS\tdx.sys
R1 - TermDD (Terminal Device Driver) -> \SystemRoot\system32\DRIVERS\termdd.sys
R1 - VgaSave () -> \SystemRoot\System32\drivers\vga.sys
R1 - vwififlt (Virtual WiFi Filter Driver) -> system32\DRIVERS\vwififlt.sys
R1 - Wanarpv6 (@%systemroot%\system32\rascfg.dll,-32012) -> system32\DRIVERS\wanarp.sys
R1 - WfpLwf (WFP Lightweight Filter) -> system32\DRIVERS\wfplwf.sys
R2 - AdobeARMservice (Adobe Acrobat Update Service) -> "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
R2 - AdvancedSystemCareService6 (Advanced SystemCare Service 6) -> C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
R2 - aswFsBlk (aswFsBlk) -> (?)
R2 - aswMonFlt (aswMonFlt) -> \??\C:\Windows\system32\drivers\aswMonFlt.sys
R2 - AudioEndpointBuilder (@%SystemRoot%\system32\audiosrv.dll,-204) -> %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
R2 - AudioSrv (@%SystemRoot%\system32\audiosrv.dll,-200) -> %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
R2 - avast! Antivirus (avast! Antivirus) -> "C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
R2 - BFE (@%SystemRoot%\system32\bfe.dll,-1001) -> %systemroot%\system32\svchost.exe -k LocalServiceNoNetwork
R2 - BITS (@%SystemRoot%\system32\qmgr.dll,-1000) -> %SystemRoot%\System32\svchost.exe -k netsvcs
S2 - clr_optimization_v4.0.30319_32 (Microsoft .NET Framework NGEN v4.0.30319_X86) -> C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
S2 - clr_optimization_v4.0.30319_64 (Microsoft .NET Framework NGEN v4.0.30319_X64) -> C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
R2 - CryptSvc (@%SystemRoot%\system32\cryptsvc.dll,-1001) -> %SystemRoot%\system32\svchost.exe -k NetworkService
R2 - DcomLaunch (@oleres.dll,-5012) -> %SystemRoot%\system32\svchost.exe -k DcomLaunch
R2 - Dhcp (@%SystemRoot%\system32\dhcpcore.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
R2 - Dnscache (@%SystemRoot%\System32\dnsapi.dll,-101) -> %SystemRoot%\system32\svchost.exe -k NetworkService
R2 - DPS (@%systemroot%\system32\dps.dll,-500) -> %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork
R2 - DsiWMIService (Dritek WMI Service) -> C:\Program Files (x86)\Launch Manager\dsiwmis.exe
R2 - ePowerSvc (Acer ePower Service) -> C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
R2 - eventlog (@%SystemRoot%\system32\wevtsvc.dll,-200) -> %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
R2 - EventSystem (@comres.dll,-2450) -> %SystemRoot%\system32\svchost.exe -k LocalService
R2 - FontCache (@%systemroot%\system32\FntCache.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
R2 - gpsvc (@gpapi.dll,-112) -> %systemroot%\system32\svchost.exe -k netsvcs
R2 - GREGService (GREGService) -> C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
S2 - gupdate (Service Google Update (gupdate)) -> "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc
R2 - IKEEXT (@%SystemRoot%\system32\ikeext.dll,-501) -> %systemroot%\system32\svchost.exe -k netsvcs
R2 - IMFservice (IMF Service) -> C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
R2 - LanmanServer (@%systemroot%\system32\srvsvc.dll,-100) -> %SystemRoot%\system32\svchost.exe -k netsvcs
R2 - LanmanWorkstation (@%systemroot%\system32\wkssvc.dll,-100) -> %SystemRoot%\System32\svchost.exe -k NetworkService
R2 - lltdio (Link-Layer Topology Discovery Mapper I/O Driver) -> system32\DRIVERS\lltdio.sys
R2 - lmhosts (@%SystemRoot%\system32\lmhsvc.dll,-101) -> %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
R2 - LMS (Intel(R) Management and Security Application Local Management Service) -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
R2 - luafv (@%systemroot%\system32\drivers\luafv.sys,-100) -> \SystemRoot\system32\drivers\luafv.sys
S2 - MMCSS (@%systemroot%\system32\mmcss.dll,-100) -> %SystemRoot%\system32\svchost.exe -k netsvcs
R2 - MpsSvc (@%SystemRoot%\system32\FirewallAPI.dll,-23090) -> %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork
R2 - NlaSvc (@%SystemRoot%\System32\nlasvc.dll,-1) -> %SystemRoot%\System32\svchost.exe -k NetworkService
R2 - nsi (@%SystemRoot%\system32\nsisvc.dll,-200) -> %systemroot%\system32\svchost.exe -k LocalService
R2 - NTI IScheduleSvc (NTI IScheduleSvc) -> C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
S2 - Orange update Core Service (Orange update Core Service) -> C:\Program Files (x86)\Orange\OrangeUpdate\Service\OUCore.exe
R2 - PcaSvc (@%SystemRoot%\system32\pcasvc.dll,-1) -> %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
R2 - PEAUTH (PEAUTH) -> system32\drivers\peauth.sys
R2 - PlugPlay (@%SystemRoot%\system32\umpnpmgr.dll,-100) -> %SystemRoot%\system32\svchost.exe -k DcomLaunch
R2 - Power (@%SystemRoot%\system32\umpo.dll,-100) -> %SystemRoot%\system32\svchost.exe -k DcomLaunch
R2 - ProfSvc (@%systemroot%\system32\profsvc.dll,-300) -> %systemroot%\system32\svchost.exe -k netsvcs
R2 - RpcEptMapper (@%windir%\system32\RpcEpMap.dll,-1001) -> %SystemRoot%\system32\svchost.exe -k RPCSS
R2 - RpcSs (@oleres.dll,-5010) -> %SystemRoot%\system32\svchost.exe -k rpcss
R2 - rspndr (Link-Layer Topology Discovery Responder) -> system32\DRIVERS\rspndr.sys
R2 - SamSs (@%SystemRoot%\system32\samsrv.dll,-1) -> %SystemRoot%\system32\lsass.exe
R2 - Schedule (@%SystemRoot%\system32\schedsvc.dll,-100) -> %systemroot%\system32\svchost.exe -k netsvcs
R2 - secdrv (Security Driver) -> (?)
R2 - SENS (@%SystemRoot%\system32\Sens.dll,-200) -> %SystemRoot%\system32\svchost.exe -k netsvcs
R2 - ShellHWDetection (@%SystemRoot%\System32\shsvcs.dll,-12288) -> %SystemRoot%\System32\svchost.exe -k netsvcs
R2 - Spooler (@%systemroot%\system32\spoolsv.exe,-1) -> %SystemRoot%\System32\spoolsv.exe
S2 - sppsvc (@%SystemRoot%\system32\sppsvc.exe,-101) -> %SystemRoot%\system32\sppsvc.exe
R2 - stisvc (@%SystemRoot%\system32\wiaservc.dll,-9) -> %SystemRoot%\system32\svchost.exe -k imgsvc
R2 - SysMain (@%SystemRoot%\system32\sysmain.dll,-1000) -> %systemroot%\system32\svchost.exe -k LocalSystemNetworkRestricted
R2 - tcpipreg (TCP/IP Registry Compatibility) -> System32\drivers\tcpipreg.sys
R2 - Themes (@%SystemRoot%\System32\themeservice.dll,-8192) -> %SystemRoot%\System32\svchost.exe -k netsvcs
R2 - TrkWks (@%SystemRoot%\system32\trkwks.dll,-1) -> %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
R2 - UNS (Intel(R) Management & Security Application User Notification Service) -> "C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
R2 - Updater Service (Updater Service) -> C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
R2 - UxSms (@%SystemRoot%\system32\dwm.exe,-2000) -> %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
R2 - WinDefend (@%ProgramFiles%\Windows Defender\MsMpRes.dll,-103) -> %SystemRoot%\System32\svchost.exe -k secsvcs
R2 - Winmgmt (@%Systemroot%\system32\wbem\wmisvc.dll,-205) -> %systemroot%\system32\svchost.exe -k netsvcs
R2 - Wlansvc (@%SystemRoot%\System32\wlansvc.dll,-257) -> %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
R2 - wlidsvc (Windows Live ID Sign-in Assistant) -> "C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
R2 - WMPNetworkSvc (@%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101) -> "%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe"
R2 - wscsvc (@%SystemRoot%\System32\wscsvc.dll,-200) -> %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
R2 - WSearch (@%systemroot%\system32\SearchIndexer.exe,-103) -> %systemroot%\system32\SearchIndexer.exe /Embedding
R2 - wuauserv (@%systemroot%\system32\wuaueng.dll,-105) -> %systemroot%\system32\svchost.exe -k netsvcs
R2 - wudfsvc (@%SystemRoot%\system32\wudfsvc.dll,-1000) -> %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
S3 - 1394ohci (1394 OHCI Compliant Host Controller) -> \SystemRoot\system32\DRIVERS\1394ohci.sys
S3 - AcpiPmi (ACPI Power Meter Driver) -> \SystemRoot\system32\DRIVERS\acpipmi.sys
S3 - AdobeActiveFileMonitor8.0 (Adobe Active File Monitor V8) -> c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
S3 - AdobeFlashPlayerUpdateSvc (Adobe Flash Player Update Service) -> C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
S3 - adp94xx () -> \SystemRoot\system32\DRIVERS\adp94xx.sys
S3 - adpahci () -> \SystemRoot\system32\DRIVERS\adpahci.sys
S3 - adpu320 () -> \SystemRoot\system32\DRIVERS\adpu320.sys
R3 - AeLookupSvc (@%SystemRoot%\system32\aelupsvc.dll,-1) -> %systemroot%\system32\svchost.exe -k netsvcs
S3 - agp440 (Intel AGP Bus Filter) -> \SystemRoot\system32\DRIVERS\agp440.sys
S3 - ALG (@%SystemRoot%\system32\Alg.exe,-112) -> %SystemRoot%\System32\alg.exe
S3 - aliide () -> \SystemRoot\system32\DRIVERS\aliide.sys
S3 - amdide () -> \SystemRoot\system32\DRIVERS\amdide.sys
S3 - AmdK8 (AMD K8 Processor Driver) -> \SystemRoot\system32\DRIVERS\amdk8.sys
S3 - AmdPPM (AMD Processor Driver) -> \SystemRoot\system32\DRIVERS\amdppm.sys
S3 - amdsata () -> \SystemRoot\system32\drivers\amdsata.sys
S3 - amdsbs () -> \SystemRoot\system32\DRIVERS\amdsbs.sys
S3 - AmUStor (AM USB Stroage Driver) -> system32\drivers\AmUStor.SYS
S3 - AppID (@%systemroot%\system32\appidsvc.dll,-102) -> \SystemRoot\system32\drivers\appid.sys
S3 - AppIDSvc (@%systemroot%\system32\appidsvc.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
S3 - Appinfo (@%systemroot%\system32\appinfo.dll,-100) -> %SystemRoot%\system32\svchost.exe -k netsvcs
S3 - arc () -> \SystemRoot\system32\DRIVERS\arc.sys
S3 - arcsas () -> \SystemRoot\system32\DRIVERS\arcsas.sys
S3 - aswVmm (aswVmm) -> (?)
S3 - AsyncMac (@%systemroot%\system32\rascfg.dll,-32000) -> system32\DRIVERS\asyncmac.sys
R3 - athr (Atheros Extensible Wireless LAN device driver) -> system32\DRIVERS\athrx.sys
S3 - AxInstSV (@%SystemRoot%\system32\AxInstSV.dll,-103) -> %SystemRoot%\system32\svchost.exe -k AxInstSVGroup
S3 - b06bdrv (Broadcom NetXtreme II VBD) -> \SystemRoot\system32\DRIVERS\bxvbda.sys
S3 - b57nd60a (Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0) -> system32\DRIVERS\b57nd60a.sys
S3 - BCM43XX (Broadcom 802.11 Network Adapter Driver) -> system32\DRIVERS\bcmwl664.sys
S3 - BDESVC (@%SystemRoot%\system32\bdesvc.dll,-100) -> %SystemRoot%\System32\svchost.exe -k netsvcs
R3 - bowser (@%systemroot%\system32\browser.dll,-102) -> system32\DRIVERS\bowser.sys
S3 - BrFiltLo (Brother USB Mass-Storage Lower Filter Driver) -> \SystemRoot\system32\DRIVERS\BrFiltLo.sys
S3 - BrFiltUp (Brother USB Mass-Storage Upper Filter Driver) -> \SystemRoot\system32\DRIVERS\BrFiltUp.sys
R3 - Browser (@%systemroot%\system32\browser.dll,-100) -> %SystemRoot%\System32\svchost.exe -k netsvcs
S3 - Brserid (Brother MFC Serial Port Interface Driver (WDM)) -> \SystemRoot\System32\Drivers\Brserid.sys
S3 - BrSerWdm (Brother WDM Serial driver) -> \SystemRoot\System32\Drivers\BrSerWdm.sys
S3 - BrUsbMdm (Brother MFC USB Fax Only Modem) -> \SystemRoot\System32\Drivers\BrUsbMdm.sys
S3 - BrUsbSer (Brother MFC USB Serial WDM Driver) -> \SystemRoot\System32\Drivers\BrUsbSer.sys
S3 - BTHMODEM (Bluetooth Serial Communications Driver) -> \SystemRoot\system32\DRIVERS\bthmodem.sys
S3 - bthserv (@%SystemRoot%\System32\bthserv.dll,-101) -> %SystemRoot%\system32\svchost.exe -k bthsvcs
S3 - circlass (Consumer IR Devices) -> \SystemRoot\system32\DRIVERS\circlass.sys
R3 - CmBatt (Microsoft ACPI Control Method Battery Driver) -> \SystemRoot\system32\DRIVERS\CmBatt.sys
S3 - cmdide () -> \SystemRoot\system32\DRIVERS\cmdide.sys
R3 - CompositeBus (Composite Bus Enumerator Driver) -> \SystemRoot\system32\DRIVERS\CompositeBus.sys
S3 - COMSysApp (@comres.dll,-947) -> %SystemRoot%\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}
S3 - defragsvc (@%SystemRoot%\system32\defragsvc.dll,-101) -> %SystemRoot%\system32\svchost.exe -k defragsvc
S3 - dot3svc (@%systemroot%\system32\dot3svc.dll,-1102) -> %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
S3 - drmkaud (Microsoft Trusted Audio Drivers) -> system32\drivers\drmkaud.sys
R3 - DXGKrnl (LDDM Graphics Subsystem) -> \SystemRoot\System32\drivers\dxgkrnl.sys
R3 - EapHost (@%systemroot%\system32\eapsvc.dll,-1) -> %SystemRoot%\System32\svchost.exe -k netsvcs
S3 - ebdrv (Broadcom NetXtreme II 10 GigE VBD) -> \SystemRoot\system32\DRIVERS\evbda.sys
S3 - EFS (@%SystemRoot%\system32\efssvc.dll,-100) -> %SystemRoot%\System32\lsass.exe
S3 - ehRecvr (@%SystemRoot%\ehome\ehrecvr.exe,-101) -> %systemroot%\ehome\ehRecvr.exe
S3 - ehSched (@%SystemRoot%\ehome\ehsched.exe,-101) -> %systemroot%\ehome\ehsched.exe
S3 - elxstor () -> \SystemRoot\system32\DRIVERS\elxstor.sys
S3 - ErrDev (Microsoft Hardware Error Device Driver) -> \SystemRoot\system32\DRIVERS\errdev.sys
S3 - exfat (exFAT File System Driver) -> (?)
S3 - fastfat (FAT12/16/32 File System Driver) -> (?)
S3 - Fax (@%systemroot%\system32\fxsresm.dll,-118) -> %systemroot%\system32\fxssvc.exe
S3 - fdc (Floppy Disk Controller Driver) -> \SystemRoot\system32\DRIVERS\fdc.sys
R3 - fdPHost (@%systemroot%\system32\fdPHost.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalService
R3 - FDResPub (@%systemroot%\system32\fdrespub.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
R3 - FileMonitor (FileMonitor) -> \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
S3 - Filetrace (@%SystemRoot%\system32\drivers\filetrace.sys,-10001) -> system32\drivers\filetrace.sys
S3 - FLEXnet Licensing Service (FLEXnet Licensing Service) -> "C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe"
S3 - flpydisk (Floppy Disk Driver) -> \SystemRoot\system32\DRIVERS\flpydisk.sys
S3 - FontCache3.0.0.0 (@%SystemRoot%\system32\PresentationHost.exe,-3309) -> %systemroot%\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
S3 - FsDepends (@%SystemRoot%\system32\drivers\fsdepends.sys,-10001) -> System32\drivers\FsDepends.sys
S3 - gagp30kx (Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms) -> \SystemRoot\system32\DRIVERS\gagp30kx.sys
S3 - GamesAppService (GamesAppService) -> "C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe"
S3 - gupdatem (Service Google Update (gupdatem)) -> "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc
S3 - gusvc (Google Software Updater) -> "C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe"
S3 - hcw85cir (Hauppauge Consumer Infrared Receiver) -> \SystemRoot\system32\drivers\hcw85cir.sys
S3 - HdAudAddService (Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio) -> system32\drivers\HdAudio.sys
R3 - HDAudBus (Microsoft UAA Bus Driver for High Definition Audio) -> \SystemRoot\system32\DRIVERS\HDAudBus.sys
R3 - HECIx64 (Intel(R) Management Engine Interface) -> system32\DRIVERS\HECIx64.sys
S3 - HidBatt (HID UPS Battery Driver) -> \SystemRoot\system32\DRIVERS\HidBatt.sys
S3 - HidBth (Microsoft Bluetooth HID Miniport) -> \SystemRoot\system32\DRIVERS\hidbth.sys
S3 - HidIr (Microsoft Infrared HID Driver) -> \SystemRoot\system32\DRIVERS\hidir.sys
R3 - hidserv (@%SystemRoot%\System32\hidserv.dll,-101) -> %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
R3 - HidUsb (Pilote de classe HID Microsoft) -> system32\DRIVERS\hidusb.sys
S3 - hkmsvc (@%SystemRoot%\system32\kmsvc.dll,-6) -> %SystemRoot%\System32\svchost.exe -k netsvcs
R3 - HomeGroupListener (@%SystemRoot%\System32\ListSvc.dll,-100) -> %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
R3 - HomeGroupProvider (@%SystemRoot%\System32\provsvc.dll,-100) -> %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted
S3 - HpSAMD () -> \SystemRoot\system32\DRIVERS\HpSAMD.sys
R3 - HTTP (@%SystemRoot%\system32\drivers\http.sys,-1) -> system32\drivers\HTTP.sys
R3 - i8042prt (i8042 Keyboard and PS/2 Mouse Port Driver) -> \SystemRoot\system32\DRIVERS\i8042prt.sys
S3 - iaStorV (Contrôleur RAID Intel Windows 7) -> \SystemRoot\system32\drivers\iaStorV.sys
S3 - idsvc (@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8193) -> "%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe"
R3 - igfx () -> system32\DRIVERS\igdkmd64.sys
S3 - iirsp () -> \SystemRoot\system32\DRIVERS\iirsp.sys
R3 - Impcd () -> system32\DRIVERS\Impcd.sys
R3 - IntcAzAudAddService (Service for Realtek HD Audio (WDM)) -> system32\drivers\RTKVHD64.sys
R3 - IntcDAud (Son Intel(R) pour écrans) -> system32\DRIVERS\IntcDAud.sys
S3 - intelide () -> \SystemRoot\system32\DRIVERS\intelide.sys
R3 - intelppm (Pilote de processeur Intel) -> system32\DRIVERS\intelppm.sys
S3 - IPBusEnum (@%systemroot%\system32\IPBusEnum.dll,-102) -> %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
S3 - IpFilterDriver (@%systemroot%\system32\rascfg.dll,-32013) -> system32\DRIVERS\ipfltdrv.sys
S3 - IPMIDRV () -> \SystemRoot\system32\DRIVERS\IPMIDrv.sys
S3 - IPNAT (IP Network Address Translator) -> System32\drivers\ipnat.sys
S3 - IRENUM (@%SystemRoot%\system32\drivers\irenum.sys,-100) -> system32\drivers\irenum.sys
S3 - isapnp () -> \SystemRoot\system32\DRIVERS\isapnp.sys
S3 - iScsiPrt (iScsiPort Driver) -> \SystemRoot\system32\DRIVERS\msiscsi.sys
R3 - k57nd60a (Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0) -> system32\DRIVERS\k57nd60a.sys
R3 - kbdclass (Keyboard Class Driver) -> \SystemRoot\system32\DRIVERS\kbdclass.sys
S3 - kbdhid (Keyboard HID Driver) -> \SystemRoot\system32\DRIVERS\kbdhid.sys
R3 - KeyIso (@keyiso.dll,-100) -> %SystemRoot%\system32\lsass.exe
R3 - ksthunk (Kernel Streaming Thunks) -> \SystemRoot\system32\drivers\ksthunk.sys
S3 - KtmRm (@comres.dll,-2946) -> %SystemRoot%\System32\svchost.exe -k NetworkServiceAndNoImpersonation
S3 - L1E (NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20)) -> system32\DRIVERS\L1E62x64.sys
S3 - lltdsvc (@%SystemRoot%\system32\lltdres.dll,-1) -> %SystemRoot%\System32\svchost.exe -k LocalService
S3 - LSI_FC () -> \SystemRoot\system32\DRIVERS\lsi_fc.sys
S3 - LSI_SAS () -> \SystemRoot\system32\DRIVERS\lsi_sas.sys
S3 - LSI_SAS2 () -> \SystemRoot\system32\DRIVERS\lsi_sas2.sys
S3 - LSI_SCSI () -> \SystemRoot\system32\DRIVERS\lsi_scsi.sys
S3 - megasas () -> \SystemRoot\system32\DRIVERS\megasas.sys
S3 - MegaSR () -> \SystemRoot\system32\DRIVERS\MegaSR.sys
S3 - Modem () -> system32\drivers\modem.sys
R3 - monitor (Service Pilote de fonction de classe Moniteur Microsoft) -> system32\DRIVERS\monitor.sys
R3 - mouclass (Pilote de la classe Souris) -> system32\DRIVERS\mouclass.sys
R3 - mouhid (Pilote HID de souris) -> system32\DRIVERS\mouhid.sys
S3 - mpio () -> \SystemRoot\system32\DRIVERS\mpio.sys
R3 - mpsdrv (@%SystemRoot%\system32\FirewallAPI.dll,-23092) -> System32\drivers\mpsdrv.sys
S3 - MRxDAV (@%systemroot%\system32\webclnt.dll,-104) -> \SystemRoot\system32\drivers\mrxdav.sys
R3 - mrxsmb (@%systemroot%\system32\wkssvc.dll,-1002) -> system32\DRIVERS\mrxsmb.sys
R3 - mrxsmb10 (@%systemroot%\system32\wkssvc.dll,-1004) -> system32\DRIVERS\mrxsmb10.sys
R3 - mrxsmb20 (@%systemroot%\system32\wkssvc.dll,-1006) -> system32\DRIVERS\mrxsmb20.sys
S3 - msahci () -> \SystemRoot\system32\DRIVERS\msahci.sys
S3 - msdsm () -> \SystemRoot\system32\DRIVERS\msdsm.sys
S3 - MSDTC (@comres.dll,-2797) -> %SystemRoot%\System32\msdtc.exe
S3 - mshidkmdf (@%SystemRoot%\system32\drivers\mshidkmdf.sys,-100) -> \SystemRoot\System32\drivers\mshidkmdf.sys
S3 - msiserver (@%SystemRoot%\system32\msimsg.dll,-27) -> %systemroot%\system32\msiexec.exe /V
S3 - MSKSSRV (Microsoft Streaming Service Proxy) -> system32\drivers\MSKSSRV.sys
S3 - MSPCLOCK (Microsoft Streaming Clock Proxy) -> system32\drivers\MSPCLOCK.sys
S3 - MSPQM (Microsoft Streaming Quality Manager Proxy) -> system32\drivers\MSPQM.sys
S3 - MsRPC () -> (?)
S3 - MSTEE (Microsoft Streaming Tee/Sink-to-Sink Converter) -> system32\drivers\MSTEE.sys
S3 - MTConfig (Microsoft Input Configuration Driver) -> \SystemRoot\system32\DRIVERS\MTConfig.sys
R3 - NativeWifiP (NativeWiFi Filter) -> system32\DRIVERS\nwifi.sys
S3 - NdisCap (NDIS Capture LightWeight Filter) -> system32\DRIVERS\ndiscap.sys
R3 - NdisTapi (@%systemroot%\system32\rascfg.dll,-32001) -> system32\DRIVERS\ndistapi.sys
R3 - Ndisuio (NDIS Usermode I/O Protocol) -> system32\DRIVERS\ndisuio.sys
R3 - NdisWan (@%systemroot%\system32\rascfg.dll,-32002) -> system32\DRIVERS\ndiswan.sys
R3 - NDProxy (NDIS Proxy) -> (?)
S3 - Nero BackItUp Scheduler 4.0 (Nero BackItUp Scheduler 4.0) -> c:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
R3 - Netman (@%SystemRoot%\system32\netman.dll,-109) -> %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
R3 - netprofm (@%SystemRoot%\system32\netprofm.dll,-202) -> %SystemRoot%\System32\svchost.exe -k LocalService
S3 - nfrd960 () -> \SystemRoot\system32\DRIVERS\nfrd960.sys
R3 - Ntfs () -> (?)
R3 - NTIDrvr (NTIDrvr) -> \??\C:\Windows\system32\drivers\NTIDrvr.sys
S3 - nvraid () -> \SystemRoot\system32\drivers\nvraid.sys
S3 - nvstor () -> \SystemRoot\system32\drivers\nvstor.sys
S3 - nv_agp (NVIDIA nForce AGP Bus Filter) -> \SystemRoot\system32\DRIVERS\nv_agp.sys
S3 - ohci1394 (1394 OHCI Compliant Host Controller (Legacy)) -> \SystemRoot\system32\DRIVERS\ohci1394.sys
R3 - p2pimsvc (@%SystemRoot%\system32\pnrpsvc.dll,-8004) -> %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
R3 - p2psvc (@%SystemRoot%\system32\p2psvc.dll,-8006) -> %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
S3 - Parport (Parallel port driver) -> \SystemRoot\system32\DRIVERS\parport.sys
S3 - pciide () -> \SystemRoot\system32\DRIVERS\pciide.sys
S3 - pcmcia () -> \SystemRoot\system32\DRIVERS\pcmcia.sys
S3 - PerfHost (@%systemroot%\sysWow64\perfhost.exe,-2) -> %SystemRoot%\SysWow64\perfhost.exe
S3 - pla (@%systemroot%\system32\pla.dll,-500) -> %SystemRoot%\System32\svchost.exe -k LocalServiceNoNetwork
S3 - PNRPAutoReg (@%SystemRoot%\system32\pnrpauto.dll,-8002) -> %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
R3 - PNRPsvc (@%SystemRoot%\system32\pnrpsvc.dll,-8000) -> %SystemRoot%\System32\svchost.exe -k LocalServicePeerNet
R3 - PolicyAgent (@%SystemRoot%\System32\polstore.dll,-5010) -> %SystemRoot%\system32\svchost.exe -k NetworkServiceNetworkRestricted
R3 - PptpMiniport (@%systemroot%\system32\rascfg.dll,-32006) -> system32\DRIVERS\raspptp.sys
S3 - Processor (Processor Driver) -> \SystemRoot\system32\DRIVERS\processr.sys
S3 - ProtectedStorage (@%systemroot%\system32\psbase.dll,-300) -> %SystemRoot%\system32\lsass.exe
S3 - ql2300 () -> \SystemRoot\system32\DRIVERS\ql2300.sys
S3 - ql40xx () -> \SystemRoot\system32\DRIVERS\ql40xx.sys
S3 - QWAVE (@%SystemRoot%\system32\qwave.dll,-1) -> %windir%\system32\svchost.exe -k LocalServiceAndNoImpersonation
S3 - QWAVEdrv (@%SystemRoot%\system32\drivers\qwavedrv.sys,-1) -> \SystemRoot\system32\drivers\qwavedrv.sys
S3 - RasAcd (Remote Access Auto Connection Driver) -> System32\DRIVERS\rasacd.sys
R3 - RasAgileVpn (WAN Miniport (IKEv2)) -> system32\DRIVERS\AgileVpn.sys
S3 - RasAuto (@%Systemroot%\system32\rasauto.dll,-200) -> %SystemRoot%\System32\svchost.exe -k netsvcs
R3 - Rasl2tp (@%systemroot%\system32\rascfg.dll,-32005) -> system32\DRIVERS\rasl2tp.sys
S3 - RasMan (@%Systemroot%\system32\rasmans.dll,-200) -> %SystemRoot%\System32\svchost.exe -k netsvcs
R3 - RasPppoe (@%systemroot%\system32\rascfg.dll,-32007) -> system32\DRIVERS\raspppoe.sys
R3 - RasSstp (@%systemroot%\system32\sstpsvc.dll,-202) -> system32\DRIVERS\rassstp.sys
S3 - rdpbus (Remote Desktop Device Redirector Bus Driver) -> \SystemRoot\system32\DRIVERS\rdpbus.sys
S3 - RDPWD (RDP Winstation Driver) -> (?)
R3 - RegFilter (RegFilter) -> \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
S3 - RemoteRegistry (@regsvc.dll,-1) -> %SystemRoot%\system32\svchost.exe -k regsvc
S3 - RimUsb (Téléphone intelligent BlackBerry ) -> System32\Drivers\RimUsb_AMD64.sys
S3 - RpcLocator (@%systemroot%\system32\Locator.exe,-2) -> %SystemRoot%\system32\locator.exe
S3 - sbp2port () -> \SystemRoot\system32\DRIVERS\sbp2port.sys
S3 - SCardSvr (@%SystemRoot%\System32\SCardSvr.dll,-1) -> %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
S3 - scfilter (@%SystemRoot%\System32\drivers\scfilter.sys,-11) -> System32\DRIVERS\scfilter.sys
S3 - SCPolicySvc (@%SystemRoot%\System32\certprop.dll,-13) -> %SystemRoot%\system32\svchost.exe -k netsvcs
S3 - SDRSVC (@%SystemRoot%\system32\sdrsvc.dll,-107) -> %SystemRoot%\system32\svchost.exe -k SDRSVC
S3 - seclogon (@%SystemRoot%\system32\seclogon.dll,-7001) -> %windir%\system32\svchost.exe -k netsvcs
S3 - SensrSvc (@%SystemRoot%\System32\sensrsvc.dll,-1000) -> %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
S3 - Serenum (Serenum Filter Driver) -> \SystemRoot\system32\DRIVERS\serenum.sys
S3 - Serial () -> \SystemRoot\system32\DRIVERS\serial.sys
S3 - sermouse (Serial Mouse Driver) -> \SystemRoot\system32\DRIVERS\sermouse.sys
S3 - SessionEnv (@%SystemRoot%\System32\SessEnv.dll,-1026) -> %SystemRoot%\System32\svchost.exe -k netsvcs
S3 - sffdisk (SFF Storage Class Driver) -> \SystemRoot\system32\DRIVERS\sffdisk.sys
S3 - sffp_mmc (SFF Storage Protocol Driver for MMC) -> \SystemRoot\system32\DRIVERS\sffp_mmc.sys
S3 - sffp_sd (SFF Storage Protocol Driver for SDBus) -> \SystemRoot\system32\DRIVERS\sffp_sd.sys
S3 - sfloppy (High-Capacity Floppy Disk Drive) -> \SystemRoot\system32\DRIVERS\sfloppy.sys
S3 - SiSRaid2 () -> \SystemRoot\system32\DRIVERS\SiSRaid2.sys
S3 - SiSRaid4 () -> \SystemRoot\system32\DRIVERS\sisraid4.sys
S3 - Smb (@%SystemRoot%\system32\tcpipcfg.dll,-50005) -> system32\DRIVERS\smb.sys
S3 - sppuinotify (@%SystemRoot%\system32\sppuinotify.dll,-103) -> %SystemRoot%\system32\svchost.exe -k LocalService
R3 - srv (@%systemroot%\system32\srvsvc.dll,-102) -> System32\DRIVERS\srv.sys
R3 - srv2 (@%systemroot%\system32\srvsvc.dll,-104) -> System32\DRIVERS\srv2.sys
R3 - srvnet () -> System32\DRIVERS\srvnet.sys
R3 - SSDPSRV (@%systemroot%\system32\ssdpsrv.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
S3 - SstpSvc (@%SystemRoot%\system32\sstpsvc.dll,-200) -> %SystemRoot%\system32\svchost.exe -k LocalService
S3 - stexstor () -> \SystemRoot\system32\DRIVERS\stexstor.sys
R3 - swenum (Software Bus Driver) -> \SystemRoot\system32\DRIVERS\swenum.sys
S3 - swprv (@%SystemRoot%\System32\swprv.dll,-103) -> %SystemRoot%\System32\svchost.exe -k swprv
R3 - SynTP (Synaptics TouchPad Driver) -> system32\DRIVERS\SynTP.sys
S3 - TabletInputService (@%SystemRoot%\system32\TabSvc.dll,-100) -> %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
S3 - TapiSrv (@%SystemRoot%\system32\tapisrv.dll,-10100) -> %SystemRoot%\System32\svchost.exe -k NetworkService
S3 - TBS (@%SystemRoot%\system32\tbssvc.dll,-100) -> %SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation
S3 - TCPIP6 (Microsoft IPv6 Protocol Driver) -> system32\DRIVERS\tcpip.sys
S3 - TDPIPE (TDPIPE) -> system32\drivers\tdpipe.sys
S3 - TDTCP (TDTCP) -> system32\drivers\tdtcp.sys
S3 - TermService (@%SystemRoot%\System32\termsrv.dll,-268) -> %SystemRoot%\System32\svchost.exe -k NetworkService
S3 - THREADORDER (@%systemroot%\system32\mmcss.dll,-102) -> %SystemRoot%\system32\svchost.exe -k LocalService
S3 - TrustedInstaller (@%SystemRoot%\servicing\TrustedInstaller.exe,-100) -> %SystemRoot%\servicing\TrustedInstaller.exe
S3 - tssecsrv (@%SystemRoot%\System32\DRIVERS\tssecsrv.sys,-101) -> System32\DRIVERS\tssecsrv.sys
R3 - tunnel (Pilote de carte miniport Microsoft Tunnel) -> system32\DRIVERS\tunnel.sys
S3 - uagp35 (Microsoft AGPv3.5 Filter) -> \SystemRoot\system32\DRIVERS\uagp35.sys
R3 - UBHelper (UBHelper) -> \??\C:\Windows\system32\drivers\UBHelper.sys
S3 - UI0Detect (@%SystemRoot%\system32\ui0detect.exe,-101) -> %SystemRoot%\system32\UI0Detect.exe
S3 - uliagpkx (Uli AGP Bus Filter) -> \SystemRoot\system32\DRIVERS\uliagpkx.sys
R3 - umbus (Pilote d’énumérateur UMBus) -> system32\DRIVERS\umbus.sys
S3 - UmPass (Microsoft UMPass Driver) -> \SystemRoot\system32\DRIVERS\umpass.sys
R3 - upnphost (@%systemroot%\system32\upnphost.dll,-213) -> %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
R3 - UrlFilter (UrlFilter) -> \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
R3 - usbccgp (Pilote parent générique USB Microsoft) -> system32\DRIVERS\usbccgp.sys
S3 - usbcir (eHome Infrared Receiver (USBCIR)) -> \SystemRoot\system32\DRIVERS\usbcir.sys
R3 - usbehci (Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0) -> \SystemRoot\system32\drivers\usbehci.sys
R3 - usbhub (Pilote de concentrateur standard USB Microsoft) -> system32\DRIVERS\usbhub.sys
S3 - usbohci (Pilote miniport de contrôleur hôte ouvert USB Microsoft) -> \SystemRoot\system32\drivers\usbohci.sys
S3 - usbprint (Microsoft USB PRINTER Class) -> \SystemRoot\system32\DRIVERS\usbprint.sys
S3 - USBSTOR (Pilote de stockage de masse USB) -> system32\DRIVERS\USBSTOR.SYS
S3 - usbuhci (Pilote miniport de contrôleur hôte universel USB Microsoft) -> \SystemRoot\system32\drivers\usbuhci.sys
R3 - usbvideo (Périphérique vidéo USB (WDM)) -> System32\Drivers\usbvideo.sys
S3 - VaultSvc (@%SystemRoot%\system32\vaultsvc.dll,-1003) -> %SystemRoot%\system32\lsass.exe
S3 - vds (@%SystemRoot%\system32\vds.exe,-100) -> %SystemRoot%\System32\vds.exe
S3 - vga () -> system32\DRIVERS\vgapnp.sys
S3 - vhdmp () -> \SystemRoot\system32\DRIVERS\vhdmp.sys
S3 - viaide () -> \SystemRoot\system32\DRIVERS\viaide.sys
S3 - vsmraid () -> \SystemRoot\system32\DRIVERS\vsmraid.sys
S3 - VSS (@%systemroot%\system32\vssvc.exe,-102) -> %systemroot%\system32\vssvc.exe
R3 - vwifibus (Pilote de bus WiFi virtuel) -> system32\DRIVERS\vwifibus.sys
S3 - W32Time (@%SystemRoot%\system32\w32time.dll,-200) -> %SystemRoot%\system32\svchost.exe -k LocalService
S3 - WacomPen (Wacom Serial Pen HID Driver) -> \SystemRoot\system32\DRIVERS\wacompen.sys
S3 - WANARP (@%systemroot%\system32\rascfg.dll,-32011) -> system32\DRIVERS\wanarp.sys
S3 - WatAdminSvc (@%SystemRoot%\system32\Wat\WatUX.exe,-601) -> %SystemRoot%\system32\Wat\WatAdminSvc.exe
S3 - wbengine (@%systemroot%\system32\wbengine.exe,-104) -> "%systemroot%\system32\wbengine.exe"
S3 - WbioSrvc (@%systemroot%\system32\wbiosrvc.dll,-100) -> %SystemRoot%\system32\svchost.exe -k WbioSvcGroup
S3 - wcncsvc (@%SystemRoot%\system32\wcncsvc.dll,-3) -> %SystemRoot%\System32\svchost.exe -k LocalServiceAndNoImpersonation
S3 - WcsPlugInService (@%SystemRoot%\system32\WcsPlugInService.dll,-200) -> %SystemRoot%\system32\svchost.exe -k wcssvc
S3 - Wd () -> \SystemRoot\system32\DRIVERS\wd.sys
R3 - WdiServiceHost (@%systemroot%\system32\wdi.dll,-502) -> %SystemRoot%\System32\svchost.exe -k LocalService
S3 - WdiSystemHost (@%systemroot%\system32\wdi.dll,-500) -> %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted
S3 - WebClient (@%systemroot%\system32\webclnt.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalService
S3 - Wecsvc (@%SystemRoot%\system32\wecsvc.dll,-200) -> %SystemRoot%\system32\svchost.exe -k NetworkService
S3 - wercplsupport (@%SystemRoot%\System32\wercplsupport.dll,-101) -> %SystemRoot%\System32\svchost.exe -k netsvcs
S3 - WerSvc (@%SystemRoot%\System32\wersvc.dll,-100) -> %SystemRoot%\System32\svchost.exe -k WerSvcGroup
S3 - WIMMount (WIMMount) -> system32\drivers\wimmount.sys
S3 - WinHttpAutoProxySvc (@%SystemRoot%\system32\winhttp.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalService
S3 - WinRM (@%Systemroot%\system32\wsmsvc.dll,-101) -> %SystemRoot%\System32\svchost.exe -k NetworkService
S3 - Winsock () -> (?)
S3 - WinUsb (WinUsb) -> system32\DRIVERS\WinUsb.sys
R3 - WmiAcpi (Microsoft Windows Management Interface for ACPI) -> \SystemRoot\system32\DRIVERS\wmiacpi.sys
S3 - wmiApSrv (@%Systemroot%\system32\wbem\wmiapsrv.exe,-110) -> %systemroot%\system32\wbem\WmiApSrv.exe
S3 - WPCSvc (@%SystemRoot%\system32\wpcsvc.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted
S3 - WPDBusEnum (@%SystemRoot%\system32\wpdbusenum.dll,-100) -> %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted
R3 - WudfPf (@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000) -> system32\drivers\WudfPf.sys
S3 - WUDFRd () -> system32\DRIVERS\WUDFRd.sys
S3 - WwanSvc (@%SystemRoot%\System32\wwansvc.dll,-257) -> %SystemRoot%\system32\svchost.exe -k LocalServiceNoNetwork
S4 - cdfs (CD/DVD File System Reader) -> system32\DRIVERS\cdfs.sys
S4 - CertPropSvc (@%SystemRoot%\System32\certprop.dll,-11) -> %SystemRoot%\system32\svchost.exe -k netsvcs
S4 - clr_optimization_v2.0.50727_32 (Microsoft .NET Framework NGEN v2.0.50727_X86) -> %systemroot%\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
S4 - clr_optimization_v2.0.50727_64 (Microsoft .NET Framework NGEN v2.0.50727_X64) -> %systemroot%\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
S4 - crcdisk (Crcdisk Filter Driver) -> \SystemRoot\system32\DRIVERS\crcdisk.sys
S4 - iphlpsvc (@%SystemRoot%\system32\iphlpsvc.dll,-500) -> %SystemRoot%\System32\svchost.exe -k NetSvcs
S4 - Mcx2Svc (@%SystemRoot%\ehome\ehres.dll,-15501) -> %SystemRoot%\system32\svchost.exe -k LocalServiceAndNoImpersonation
S4 - MSiSCSI (@%SystemRoot%\system32\iscsidsc.dll,-5000) -> %systemroot%\system32\svchost.exe -k netsvcs
S4 - napagent (@%SystemRoot%\system32\qagentrt.dll,-6) -> %SystemRoot%\System32\svchost.exe -k NetworkService
S4 - Netlogon (@%SystemRoot%\System32\netlogon.dll,-102) -> %systemroot%\system32\lsass.exe
S4 - NetTcpPortSharing (@%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\ServiceModelInstallRC.dll,-8201) -> "%systemroot%\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe"
S4 - RemoteAccess (@%Systemroot%\system32\mprdim.dll,-200) -> %SystemRoot%\System32\svchost.exe -k netsvcs
S4 - SharedAccess (@%SystemRoot%\system32\ipnathlp.dll,-106) -> %SystemRoot%\System32\svchost.exe -k netsvcs
S4 - SNMPTRAP (@%SystemRoot%\system32\snmptrap.exe,-3) -> %SystemRoot%\System32\snmptrap.exe
S4 - udfs (udfs) -> system32\DRIVERS\udfs.sys
S4 - ws2ifsl (@%systemroot%\System32\drivers\ws2ifsl.sys,-1000) -> \SystemRoot\system32\drivers\ws2ifsl.sys

¤¤¤¤¤¤¤¤¤¤ | System files

[MD5.7B04C9843921AB1F695FB395422C5360] - [14/05/2007 17:06:18] - (.Copyright 2006 Research In Motion Limited - BlackBerry Device Driver.) - [26.88 Ko] - (4.0.0.2) - C:\Windows\System32\Drivers\RimUsb_AMD64.sys
[MD5.FBF4DB6D53585437E41A113300002A2B] - [02/12/2010 18:07:03] - (.Copyright © Sonic Solutions - Px Engine Device Driver for 64-bit Windows.) - [53.73 Ko] - (3.0.83.0) - C:\Windows\System32\Drivers\PxHlpa64.sys
[MD5.2E22C1FD397A5A9FFEF55E9D1FC96C00] - [08/09/2010 05:19:40] - (.Copyright (C) NTI Corp. 2006~2009 - NTI CDROM Filter Driver.) - [16.5 Ko] - (2.0.0.11) - C:\Windows\System32\Drivers\UBHelper.sys
[MD5.64DDD0DEE976302F4BD93E5EFCC2F013] - [08/09/2010 05:19:40] - (.Copyright (C) 2002~2009 NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) - [18 Ko] - (1.0.0.9) - C:\Windows\System32\Drivers\NTIDrvr.sys
[MD5.F2523EF6460FC42405B12248338AB2F0] - [14/07/2009 00:53:43] - (.Copyright ©2007-2009 Hauppauge Computer Works, Inc. - Hauppauge WinTV 885 Consumer IR Driver for eHome.) - [30.5 Ko] - (1.31.27127.0) - C:\Windows\System32\Drivers\hcw85cir.sys
[MD5.B5ACE6968304A3900EEB1EBFD9622DF2] - [10/06/2009 22:34:23] - (.Copyright 2000-2008, Broadcom Corporation. - Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver..) - [264.5 Ko] - (10.100.4.0) - C:\Windows\System32\Drivers\b57nd60a.sys
[MD5.3E5B191307609F7514148C6832BB0842] - [10/06/2009 22:34:28] - (.(c) COPYRIGHT 2001-2008 Broadcom Corporation - Broadcom NetXtreme II GigE VBD.) - [457.5 Ko] - (4.8.2.0) - C:\Windows\System32\Drivers\bxvbda.sys
[MD5.DC5D737F51BE844D8C82C695EB17372F] - [10/06/2009 22:34:33] - (.(c) COPYRIGHT 2001-2008 Broadcom Corporation - Broadcom NetXtreme II 10 GigE VBD.) - [3209 Ko] - (4.8.13.0) - C:\Windows\System32\Drivers\evbda.sys
[MD5.9E84A931DBEE0292E38ED672F6293A99] - [10/06/2009 22:34:38] - (.1998-2007, Broadcom Corporation All Rights Rsvd. - Broadcom 802.11 Network Adapter wireless driver.) - [1280.5 Ko] - (4.176.75.18) - C:\Windows\System32\Drivers\BCMWL664.SYS
[MD5.3EA8A16169C26AFBEB544E0E48421186] - [14/07/2009 04:36:07] - (.© 2006 Macrovision Corporation  - Macrovision SECURITY Driver.) - [22.5 Ko] - (4.3.86.0) - C:\Windows\System32\Drivers\secdrv.sys
[MD5.F09EEE9EDC320B5E1501F749FDE686C8] - [14/07/2009 03:19:59] - (.Copyright (C) Brother Industries, Ltd. 2001-2003 - Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver.) - [18 Ko] - (1.10.0.2) - C:\Windows\System32\Drivers\BrFiltLo.sys
[MD5.B114D3098E9BDB8BEA8B053685831BE6] - [14/07/2009 03:20:21] - (.Copyright (C) Brother Industries, Ltd. 2001 - Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver.) - [8.5 Ko] - (1.4.0.1) - C:\Windows\System32\Drivers\BrFiltUp.sys
[MD5.A6ECA2151B08A09CACECA35C07F05B42] - [14/07/2009 03:20:11] - (.Copyright (C) Brother Industries Ltd.1997-2003 - Brother Serial driver (WDM version).) - [46 Ko] - (1.0.0.20) - C:\Windows\System32\Drivers\BrSerWdm.sys
[MD5.B79968002C277E869CF38BD22CD61524] - [14/07/2009 03:20:26] - (.Copyright(C)Brother Industries Ltd.1997-2006 - Brother USB MDM Driver .) - [14.63 Ko] - (1.0.0.12) - C:\Windows\System32\Drivers\BrUsbMdm.sys
[MD5.A87528880231C54E75EA7A44943B38BF] - [14/07/2009 03:20:15] - (.Copyright(C)Brother Industries Ltd.1997-2006 - Brother USB Serial Driver.) - [14.38 Ko] - (1.0.1.3) - C:\Windows\System32\Drivers\BrUsbSer.sys
[MD5.FFF95479C7AB1550F0750A5D01744211] - [10/06/2009 22:48:43] - (.© Microsoft Corporation. - security processor.) - [416.5 Ko] - (6.1.7127.0) - C:\Windows\System32\Drivers\spsys.sys
[MD5.2AC603C3188C704CFCE353659AA7AD71] - [20/06/2009 04:09:57] - (.2001-2008 Atheros Communications, Inc. - Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller(NDIS6.20).) - [53 Ko] - (1.0.0.15) - C:\Windows\System32\Drivers\L1E62x64.sys
[MD5.7024F087CFF1833A806193EF9D22CDA9] - [14/07/2009 01:19:26] - (.© Microsoft Corporation. - Processor Device Driver.) - [63 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\amdk8.sys
[MD5.ADA036632C664CAA754079041CF1F8C1] - [14/07/2009 01:19:26] - (.© Microsoft Corporation. - Processor Device Driver.) - [61 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\intelppm.sys
[MD5.1E56388B3FE0D031C44144EB8C4D6217] - [14/07/2009 01:19:26] - (.© Microsoft Corporation. - Processor Device Driver.) - [59.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\amdppm.sys
[MD5.0D922E23C041EFB1C3FAC2A6F943C9BF] - [14/07/2009 01:19:26] - (.© Microsoft Corporation. - Processor Device Driver.) - [59 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\processr.sys
[MD5.9899284589F75FA8724FF3D16AED75C1] - [14/07/2009 01:19:38] - (.© Microsoft Corporation. - NULL Driver.) - [6 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\null.sys
[MD5.B8BD2BB284668C84865658C77574381A] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - CD-ROM File System Driver.) - [90 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\cdfs.sys
[MD5.AA3FB40E17CE1388FA1BEDAB50EA8F96] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - Mailslot driver.) - [25.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\msfs.sys
[MD5.1E4C4AB5C9B8DD13179BBDC75A2A01F7] - [14/07/2009 01:19:48] - (.© Microsoft Corporation. - NPFS Driver.) - [43 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\npfs.sys
[MD5.83D2D75E1EFB81B3450C18131443F7DB] - [14/07/2009 01:19:54] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [144 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\cdrom.sys
[MD5.FA55C73D4AFFA7EE23AC4BE53B4592D3] - [14/07/2009 01:19:58] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de port i8042.) - [103 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\i8042prt.sys
[MD5.E7F5AE18AF4168178A642A9247C63001] - [14/07/2009 01:21:03] - (.© Microsoft Corporation. - NSI Proxy.) - [24 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\nsiproxy.sys
[MD5.079125C4B17B01FCAEEBCE0BCB290C0F] - [14/07/2009 01:21:15] - (.© Microsoft Corporation. - TDI Translation Driver.) - [97.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\tdx.sys
[MD5.0CA6FE26ACC7FFEE1BD0463F40835F32] - [14/07/2009 01:21:19] - (.© Microsoft Corporation. - TDI Wrapper.) - [26 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\tdi.sys
[MD5.9162B273A44AB9DCE5B44362731D062A] - [14/07/2009 01:21:29] - (.© Microsoft Corporation. - MBT Transport driver.) - [253 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\netbt.sys
[MD5.CEE049CAC4EFA7F4E1E4AD014414A5D4] - [14/07/2009 01:22:20] - (.© Microsoft Corporation. Tous droits réservés. - HTTP Pile du protocole.) - [734 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\http.sys
[MD5.0ADC83218B66A6DB380C330836F3E36D] - [14/07/2009 01:23:29] - (.© Microsoft Corporation. - Fast FAT File System Driver.) - [200 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\fastfat.sys
[MD5.A510C654EC00C1E9BDD91EEB3A59823B] - [14/07/2009 01:23:29] - (.© Microsoft Corporation. - Microsoft Extended FAT File System.) - [190.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\exfat.sys
[MD5.D47BAEAD86C65D4F4069D7CE0A4EDCEB] - [14/07/2009 01:23:37] - (.© Microsoft Corporation. - UDF File System Driver.) - [319.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\udfs.sys
[MD5.30524261BB51D96D6FCBAC20C810183C] - [14/07/2009 01:23:57] - (.© Microsoft Corporation. - Windows NT WebDav Minirdr.) - [137.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mrxdav.sys
[MD5.3BAC8142102C15D59A87757C1D41DCE5] - [14/07/2009 01:24:11] - (.© Microsoft Corporation. Tous droits réservés. - Pilote du sous-système de mise en mémoire tampon de lecteur redirigé.) - [302 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\rdbss.sys
[MD5.5F671AB5BC87EEA04EC38A6CD5962A47] - [14/07/2009 01:25:40] - (.© Microsoft Corporation. - File Trace Filter Driver.) - [33.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\filetrace.sys
[MD5.43D0F98E1D56CCDDB0D5254CFF7B356E] - [14/07/2009 01:26:13] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de filtre de virtualisation de fichier LUA.) - [110.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\luafv.sys
[MD5.63B05A0420CE4BF0E4AF6DCC7CADA254] - [14/07/2009 01:27:17] - (.© Microsoft Corporation. - ACPI Power Metering Driver.) - [12 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\acpipmi.sys
[MD5.F6FF8944478594D0E414D3F048F0D778] - [14/07/2009 01:31:03] - (.© Microsoft Corporation. - Windows Management Interface for ACPI.) - [14 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\wmiacpi.sys
[MD5.0840155D0BDDF1190F84A663C284BD33] - [14/07/2009 01:31:03] - (.© Microsoft Corporation. - Control Method Battery Driver.) - [17.25 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\CmBatt.sys
[MD5.34A3C54752046E79A126E15C51DB409B] - [14/07/2009 01:31:04] - (.© Microsoft Corporation. - Error Device Driver.) - [9.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\errdev.sys
[MD5.78E86380454A7B10A5EB255DC44A355F] - [14/07/2009 01:31:06] - (.© Microsoft Corporation. - Hid Battery Driver.) - [26 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\hidbatt.sys
[MD5.61583EE3C3A17003C4ACD0475646B4D3] - [14/07/2009 01:35:59] - (.© Microsoft Corporation. - BLB Drive Driver.) - [44 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\blbdrive.sys
[MD5.13096B05847EC78F0977F2C0F79E9AB3] - [14/07/2009 01:37:18] - (.© Microsoft Corporation. - System Indexer/Cache Driver.) - [39.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\discache.sys
[MD5.FC438D1430B28618E2D0C7C332A710AD] - [14/07/2009 01:37:35] - (.© Microsoft Corporation. - Watchdog Driver.) - [41.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\watchdog.sys
[MD5.BF24D6F2ED97FE830BFD52B246F98E67] - [14/07/2009 01:38:28] - (.© Microsoft Corporation. - DirectX API Driver.) - [16.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\dxapi.sys
[MD5.FEDE0629ECB23650D48989517D4914DA] - [14/07/2009 01:38:28] - (.© Microsoft Corporation. - DirectX Graphics Driver.) - [96.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\dxg.sys
[MD5.53E92A310193CB3C03BEA963DE7D9CFC] - [14/07/2009 01:38:48] - (.© Microsoft Corporation. - VGA/Super VGA Video Driver.) - [28.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\vga.sys
[MD5.DA4DA3F5E02943C2DC8C6ED875DE68DD] - [14/07/2009 01:38:48] - (.© Microsoft Corporation. - VGA/Super VGA Video Driver.) - [28.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\vgapnp.sys
[MD5.E7353D59C9842BC7299FAEB7E7E09340] - [14/07/2009 01:38:51] - (.© Microsoft Corporation. - Video Port Driver.) - [126 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\videoprt.sys
[MD5.B03D591DC7DA45ECE20B3B467E6AADAA] - [14/07/2009 01:38:53] - (.© Microsoft Corporation. - Monitor Driver.) - [29.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\monitor.sys
[MD5.E2B4A4494DB7CB9B89B55CA268C337C5] - [14/07/2009 01:47:45] - (.© OSA Technologies, Inc., une société Avocent, Tous droits réservés. © Microsoft Corporation. Tous droits réservés. - PILOT IPMI WMI.) - [77 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\IPMIDrv.sys
[MD5.C94DA20C7E3BA1DCA269BC8460D98387] - [14/07/2009 01:50:17] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de filtre de lecteur de carte à puce Microsoft.) - [29 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\scfilter.sys
[MD5.42FD751B27FA0E9C69BB39F39E409594] - [14/07/2009 01:52:40] - (.© Microsoft Corporation. - AppID Driver.) - [60 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\appid.sys
[MD5.16A47CE2DECC9B099349A5F840654746] - [14/07/2009 02:00:13] - (.© Microsoft Corporation. - BEEP Driver.) - [6.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\beep.sys
[MD5.4ED981241DB27C3383D72092B618A1D0] - [14/07/2009 02:00:17] - (.© Microsoft Corporation. - MS Proxy Quality Manager.) - [6.63 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mspqm.sys
[MD5.BDD71ACE35A232104DDD349EE70E1AB3] - [14/07/2009 02:00:17] - (.© Microsoft Corporation. - MS Proxy Clock.) - [7 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mspclock.sys
[MD5.2E66F9ECB30B4221A318C92AC2250779] - [14/07/2009 02:00:17] - (.© Microsoft Corporation. - WDM Tee/Communication Transform Filter .) - [7.88 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mstee.sys
[MD5.49CCF2C4FEA34FFAD8B1B59D49439366] - [14/07/2009 02:00:18] - (.© Microsoft Corporation. - MS KS Server.) - [10.88 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mskssrv.sys
[MD5.6869281E78CB31A43E969F06B57347C4] - [14/07/2009 02:00:19] - (.© Microsoft Corporation. - Kernel Streaming WOW Thunk Service.) - [20.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ksthunk.sys
[MD5.1C545A7D0691CC4A027396535691C3E3] - [14/07/2009 02:00:20] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de filtre souris série.) - [26 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\sermouse.sys
[MD5.D3BF052C40B0C4166D9FD86A4288C1E6] - [14/07/2009 02:00:20] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de filtre souris HID.) - [30.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mouhid.sys
[MD5.6DEF98F8541E1B5DCEB2C822A11F7323] - [14/07/2009 02:00:20] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de filtre clavier HID.) - [32.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\kbdhid.sys
[MD5.CB624C0035412AF0DEBEC78C41F5CA1B] - [14/07/2009 02:00:33] - (.© Microsoft Corporation. - Serial Port Enumerator.) - [23 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\serenum.sys
[MD5.F26B3A86F6FA87CA360B879581AB4123] - [14/07/2009 02:00:34] - (.© Microsoft Corporation. - Multi-Transport Composite Bus Enumerator.) - [38 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\CompositeBus.sys
[MD5.A80348BA03E96C70852959655CA3E084] - [14/07/2009 02:00:35] - (.© Microsoft Corporation. - Smart Card Driver Library.) - [20.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\smclib.sys
[MD5.C1D8E28B2C2ADFAEC4BA89E9FDA69BD6] - [14/07/2009 02:00:40] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de périphérique série.) - [92 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\serial.sys
[MD5.0086431C29C35BE1DBC43F52CC273887] - [14/07/2009 02:00:41] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de port parallèle.) - [95 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\parport.sys
[MD5.C172A0F53008EAEB8EA33FE10E177AF5] - [14/07/2009 02:00:54] - (.© Microsoft Corporation. - Floppy Driver.) - [24 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\flpydisk.sys
[MD5.D765D19CD8EF61F650C384F62FAC00AB] - [14/07/2009 02:00:54] - (.© Microsoft Corporation. - Floppy Disk Controller Driver.) - [29 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\fdc.sys
[MD5.A554811BCD09279536440C964AE35BBF] - [14/07/2009 02:01:01] - (.© Microsoft Corporation. - Small Form Factor Disk Driver.) - [14 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\sffdisk.sys
[MD5.A9D601643A1647211A1EE2EC4E433FF4] - [14/07/2009 02:01:02] - (.© Microsoft Corporation. - SCSI Floppy Driver.) - [16.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\sfloppy.sys
[MD5.FF414F0BAEFEBA59BC6C04B3DB0B87BF] - [14/07/2009 02:01:03] - (.© Microsoft Corporation. - Small Form Factor MMC Protocol Driver.) - [13.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\sffp_mmc.sys
[MD5.6E316C01CBA8B785FE495F5CC4F48C6F] - [14/07/2009 02:01:04] - (.© Microsoft Corporation. - SCSI Tape Class Driver.) - [28.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\tape.sys
[MD5.3C9F072F9DCA856B9FB7A20CBD4281AC] - [14/07/2009 02:01:06] - (.© Microsoft Corporation. - Medium changer class driver.) - [21.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mcd.sys
[MD5.4E9440F4F152A7B944CB1663D3935A3E] - [14/07/2009 02:02:07] - (.© Microsoft Corporation. - Wacom Serial Pen Tablet HID Driver.) - [27.13 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\wacompen.sys
[MD5.7EA404308934E675BFFDE8EDF0757BCD] - [14/07/2009 02:02:08] - (.© Microsoft Corporation. Tous droits réservés. - Pilote HID multipoint Microsoft.) - [15 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\MTConfig.sys
[MD5.0A49913402747A0B67DE940FB42CBDBB] - [14/07/2009 02:06:13] - (.© Microsoft Corporation. - High Definition Audio Bus Driver.) - [119.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\hdaudbus.sys
[MD5.9B19F34400D24DF84C858A421C205754] - [14/07/2009 02:06:16] - (.© Microsoft Corporation. - Microsoft Trusted Audio Drivers.) - [5.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\drmkaud.sys
[MD5.49EE2E52E6CD03947DAD72F65367BE06] - [14/07/2009 02:06:17] - (.© Microsoft Corporation. - Hid Parsing Library.) - [32.13 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\hidparse.sys
[MD5.001CC10FA5E71AE1119115E126C8750D] - [14/07/2009 02:06:18] - (.© Microsoft Corporation. - WDM CODEC Class Device Driver 2.0.) - [67.25 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\stream.sys
[MD5.685FEC2407FC121EB937CB658B3C0F35] - [14/07/2009 02:06:21] - (.© Microsoft Corporation. - Hid Class Library.) - [74.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\hidclass.sys
[MD5.B3BF6B5B50006DEF50B66306D99FCF6F] - [14/07/2009 02:06:22] - (.© Microsoft Corporation. - USB Miniport Driver for Input Devices.) - [29.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\hidusb.sys
[MD5.0A77D29F311B88CFAE3B13F9C1A73825] - [14/07/2009 02:06:23] - (.© Microsoft Corporation. - Infrared Miniport Driver for Input Devices.) - [45.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\hidir.sys
[MD5.F9D215A46A8B9753F61767FA72A20326] - [14/07/2009 02:06:24] - (.© Microsoft Corporation. - Pass-through HID to KMDF Filter Driver.) - [8 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mshidkmdf.sys
[MD5.817EAFF5D38674EDD7713B9DFB8E9791] - [14/07/2009 02:06:28] - (.© Microsoft Corporation. - Windows USB Class Driver BETA.) - [39.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\winusb.sys
[MD5.32E11315B5126921FFD9074840EF13D3] - [14/07/2009 02:06:29] - (.© Microsoft Corporation. - Port Class (Class Driver for Port/Miniport Devices).) - [225 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\portcls.sys
[MD5.D7CD5C4E1B71FA62050515314CFB52CF] - [14/07/2009 02:06:34] - (.© Microsoft Corporation. - Consumer IR Class Driver for eHome.) - [44.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\circlass.sys
[MD5.FAEC06C1D24E2770ECC4F7C37659824D] - [14/07/2009 02:06:35] - (.© Microsoft Corporation. - Universal Serial Bus Camera Driver.) - [32.13 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\USBCAMD2.sys
[MD5.AF0892A803FDDA7492F595368E3B68E7] - [14/07/2009 02:06:37] - (.© Microsoft Corporation. - USB Consumer IR Driver for eHome.) - [98 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\usbcir.sys
[MD5.64EDD3F59DB321947969FDF1DD747323] - [14/07/2009 02:06:39] - (.© Microsoft Corporation. - 1394 Bus Device Driver.) - [66.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\1394bus.sys
[MD5.3589478E4B22CE21B41FA1BFC0B8B8A0] - [14/07/2009 02:06:45] - (.© Microsoft Corporation. - 1394 OpenHCI Port Driver.) - [71.13 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ohci1394.sys
[MD5.7FD2A313F7AFE5C4DAB14798C48DD104] - [14/07/2009 02:06:52] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de miniport Bluetooth pour les périphériques HID.) - [98.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\hidbth.sys
[MD5.9DA669F11D1F894AB4EB69BF546A42E8] - [14/07/2009 02:06:52] - (.© Microsoft Corporation. - Bluetooth Communications Driver.) - [70.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\bthmodem.sys
[MD5.B2E8E8CB557B156DA5493BBDDCC1474D] - [14/07/2009 02:06:52] - (.© Microsoft Corporation. - Generic pass-through driver.) - [9.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\umpass.sys
[MD5.EAB6C35E62B1B0DB0D1B48B671D3A117] - [14/07/2009 02:06:56] - (.© Microsoft Corporation. - User-Mode Bus Enumerator.) - [47.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\umbus.sys
[MD5.6410F6F415B2A5A9037224C41DA8BF12] - [14/07/2009 02:07:00] - (.© Microsoft Corporation. - High Definition Audio Function Driver.) - [342 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\HdAudio.sys
[MD5.1B00662092F9F9568B995902F0CC40D5] - [14/07/2009 02:07:13] - (.© Microsoft Corporation. - 1394 OpenHCI Driver.) - [222.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\1394ohci.sys
[MD5.36D4720B72B5C5D9CB2B9C29E9DF67A1] - [14/07/2009 02:07:21] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de bus WiFi virtuel.) - [24 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\vwifibus.sys
[MD5.6A3D66263414FF0D6FA754C646612F3F] - [14/07/2009 02:07:22] - (.© Microsoft Corporation. - Virtual WiFi Filter Driver.) - [58.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\vwififlt.sys
[MD5.1EA3749C4114DB3E3161156FFFFA6B33] - [14/07/2009 02:07:24] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de miniport WiFi natif.) - [311.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\nwifi.sys
[MD5.6A638FC4BFDDC4D9B186C28C91BD1A01] - [14/07/2009 02:07:28] - (.© Microsoft Corporation. - Virtual WiFi Miniport Driver.) - [17.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\vwifimp.sys
[MD5.9F9A1F53AAD7DA4D6FEF5BB73AB811AC] - [14/07/2009 02:08:13] - (.© Microsoft Corporation. - NDIS Packet Capture Filter Driver.) - [34.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ndiscap.sys
[MD5.6C38C9E45AE0EA2FA5E551F2ED5E978F] - [14/07/2009 02:08:25] - (.© Microsoft Corporation. - Microsoft Protection Service Driver.) - [75.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mpsdrv.sys
[MD5.1538831CF8AD2979A04C423779465827] - [14/07/2009 02:08:51] - (.© Microsoft Corporation. - Link-Layer Topology Mapper I/O Driver.) - [59.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\lltdio.sys
[MD5.DDC86E4F8E7456261E637E3552E804FF] - [14/07/2009 02:08:51] - (.© Microsoft Corporation. - Link-Layer Topology Responder Driver for NDIS 6.) - [75 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\rspndr.sys
[MD5.3ABF5E7213EB28966D55D58B515D5CE9] - [14/07/2009 02:08:59] - (.© Microsoft Corporation. - Infra-Red Bus Enumerator.) - [17.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\irenum.sys
[MD5.05360B1EA5A2ABF620D1D96EBD8BD8F1] - [14/07/2009 02:09:02] - (.© Microsoft Corporation. - IRDA Protocol Driver.) - [117.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\irda.sys
[MD5.548260A7B8654E024DC30BF8A7C5BAA4] - [14/07/2009 02:09:09] - (.© Microsoft Corporation. - SMB Transport driver.) - [91 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\smb.sys
[MD5.77B3B747EB2413072B8E4306018D0C9B] - [14/07/2009 02:09:15] - (.© Microsoft Corporation. - Reliable Multicast Transport.) - [142.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\rmcast.sys
[MD5.F105BA1E22BF1F2EE8F005D4305E4BEC] - [14/07/2009 02:09:25] - (.© Microsoft Corporation. Tous droits réservés. - Pilote d’E/S du mode utilisateur NDIS.) - [55 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ndisuio.sys
[MD5.86743D9F5D2B1048062B14B1D84501C4] - [14/07/2009 02:09:26] - (.© Microsoft Corporation. - NetBIOS interface driver.) - [43.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\netbios.sys
[MD5.611B23304BF067451A9FDEE01FBDD725] - [14/07/2009 02:09:26] - (.© Microsoft Corporation. - WFP NDIS 6.20 Lightweight Filter Driver.) - [12.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\wfplwf.sys
[MD5.3836171A2CDF3AF8EF10856DB9835A70] - [14/07/2009 02:09:38] - (.© Microsoft Corporation. Tous droits réservés. - Pilote d’interface de tunnel Microsoft.) - [122.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\tunnel.sys
[MD5.EE992183BD8EAEFD9973F352E587A299] - [14/07/2009 02:09:42] - (.© Microsoft Corporation. Tous droits réservés. - Planificateur de paquets QoS.) - [128.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\pacer.sys
[MD5.76707BB36430888D9CE9D705398ADB6C] - [14/07/2009 02:09:48] - (.© Microsoft Corporation. Tous droits réservés. - Pilote du support de Microsoft Quality Windows Audio Video Experience (qWave).) - [45.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\qwavedrv.sys
[MD5.FC6D5C50D846B795335DEB3FCE8B33F3] - [14/07/2009 02:09:48] - (.© Microsoft Corporation. - Remote NDIS Miniport.) - [40.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\RNDISMP.sys
[MD5.76D078AF6F587B162D50210F761EB9ED] - [14/07/2009 02:09:49] - (.© Microsoft Corporation. - TCP/IP Registry Compatibility Driver.) - [43.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\tcpipreg.sys
[MD5.30639C932D9FEF22B31268FE25A1B6E5] - [14/07/2009 02:10:00] - (.© Microsoft Corporation. - NDIS 3.0 connection wrapper driver.) - [23.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ndistapi.sys
[MD5.AF9B39A7E7B6CAA203B3862582E9F2D0] - [14/07/2009 02:10:03] - (.© Microsoft Corporation. - IP Network Address Translator.) - [113.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ipnat.sys
[MD5.722DD294DF62483CECAAE6E094B4D695] - [14/07/2009 02:10:04] - (.© Microsoft Corporation. - IP FILTER DRIVER.) - [81 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ipfltdrv.sys
[MD5.659B74FB74B86228D6338D643CD3E3CF] - [14/07/2009 02:10:05] - (.© Microsoft Corporation. - NDIS Proxy.) - [56.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ndproxy.sys
[MD5.5A0DA8AD5762FA2D91678A8A01311704] - [14/07/2009 02:10:09] - (.© Microsoft Corporation. - RAS Automatic Connection Driver.) - [14.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\rasacd.sys
[MD5.87A6E852A22991580D6D39ADC4790463] - [14/07/2009 02:10:12] - (.© Microsoft Corporation. - RAS L2TP mini-port/call-manager driver.) - [127 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\rasl2tp.sys
[MD5.557DFAB9CA1FCB036AC77564C010DAD3] - [14/07/2009 02:10:13] - (.© Microsoft Corporation. - MS PPP Framing Driver (Strong Encryption).) - [160.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ndiswan.sys
[MD5.769765CE2CC62867468CEA93969B2242] - [14/07/2009 02:10:13] - (.© Microsoft Corporation. - MS Remote Access serial network driver.) - [22.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\asyncmac.sys
[MD5.855C9B1CD4756C5E9A2AA58A15F58C25] - [14/07/2009 02:10:17] - (.© Microsoft Corporation. - RAS PPPoE mini-port/call-manager driver.) - [90.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\raspppoe.sys
[MD5.27CC19E81BA5E3403C48302127BDA717] - [14/07/2009 02:10:19] - (.© Microsoft Corporation. - Peer-to-Peer Tunneling Protocol.) - [109 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\raspptp.sys
[MD5.47CA49400643EFFD3F1C9A27E1D69324] - [14/07/2009 02:10:22] - (.© Microsoft Corporation. - MS Remote Access and Routing ARP Driver.) - [86.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\wanarp.sys
[MD5.7ECFF9B22276B73F43A99A15A6094E90] - [14/07/2009 02:10:24] - (.© Microsoft Corporation. - RAS Agile Vpn Miniport Call Manager.) - [59 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\agilevpn.sys
[MD5.E8B1E447B008D07FF47D016C2B0EEECB] - [14/07/2009 02:10:25] - (.© Microsoft Corporation. - RAS SSTP Miniport Call Manager.) - [82 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\rassstp.sys
[MD5.6BCC1D7D2FD2453957C5479A32364E52] - [14/07/2009 02:10:34] - (.© Microsoft Corporation. Tous droits réservés. - Couche IFS Winsock2.) - [21 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ws2ifsl.sys
[MD5.388D3DD1A6457280F3BADBA9F3ACD6B1] - [14/07/2009 02:10:47] - (.© Microsoft Corporation. - Legacy Non-Pnp Modem Device Driver.) - [11 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\rootmdm.sys
[MD5.800BA92F7010378B09F9ED9270F07137] - [14/07/2009 02:10:49] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de périphérique modem.) - [39.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\modem.sys
[MD5.3371D21011695B16333A3934340C4E7C] - [14/07/2009 02:16:32] - (.© Microsoft Corporation. - Named Pipe Transport Driver.) - [15.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\tdpipe.sys
[MD5.BB5971A4F00659529A5C44831AF22365] - [14/07/2009 02:16:34] - (.© Microsoft Corporation. - RDP Encoder Miniport.) - [7.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\RDPENCDD.sys
[MD5.CEA6CC257FC9B7715F1C2B4849286D24] - [14/07/2009 02:16:34] - (.© Microsoft Corporation. - RDP Miniport.) - [7.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\RDPCDD.sys
[MD5.216F3FA57533D98E1F74DED70113177A] - [14/07/2009 02:16:35] - (.© Microsoft Corporation. - RDP Reflector Driver Miniport.) - [8 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\RDPREFMP.sys
[MD5.61B96C26131E37B24E93327A0BD1FB95] - [14/07/2009 02:16:41] - (.© Microsoft Corporation. - TS Security Filter Driver.) - [37.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\tssecsrv.sys
[MD5.302DA2A0539F2CF54D7C6CC30C1F2D8D] - [14/07/2009 02:17:46] - (.© Microsoft Corporation. - Microsoft RDP Bus Device driver.) - [23.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\rdpbus.sys
[MD5.8F0D9D2EA6CFED2730B5BAFB9B5B11C2] - [14/07/2009 02:35:14] - (.© Microsoft Corporation. Tous droits réservés. - Gestionnaire de stratégie de redirection USB Windows.) - [31 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\usbrpm.sys
[MD5.73188F58FB384E75C4063D29413CEE3D] - [14/07/2009 02:38:18] - (.© Microsoft Corporation. - USB Printer driver.) - [24.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\usbprint.sys
[MD5.68769C3356B3BE5D1C732C97B9A80D6E] - [14/07/2009 01:51:01] - (.© Microsoft Corporation. - Protected Environment Authentication and Authorization Export Driver.) - [636 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\PEAuth.sys
[MD5.21D26064AEDB4988F785BB4A3A2C051E] - [14/07/2009 02:06:30] - (.© Microsoft Corporation. - Microsoft Trusted Audio Drivers.) - [113.5 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\drmk.sys
[MD5.5C2F352A4E961D72518261257AAE204B] - [14/07/2009 03:05:51] - (.© Microsoft Corporation. - MAC Bridge Driver.) - [93 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\bridge.sys
[MD5.43BEA8D483BF1870F018E2D02E06A5BD] - [14/07/2009 03:19:06] - (.Copyright (C) Brother Industries Ltd.1997-2006 - Pilote Brother Série I/F (WDM).) - [280 Ko] - (1.0.1.6) - C:\Windows\System32\Drivers\BrSerId.sys
[MD5.814DB88F2641691575A455CF25354098] - [14/07/2009 01:21:56] - (.© Microsoft Corporation. - Bitlocker Drive Encryption Crashdump Filter.) - [53.84 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\dumpfve.sys
[MD5.4F6D12B51DE1AAEFF7DC58C4D75423C8] - [13/07/2009 23:59:34] - (.© QLogic Corporation. - QLogic iSCSI Storport Miniport Driver.) - [125.58 Ko] - (2.1.3.20) - C:\Windows\System32\Drivers\ql40xx.sys
[MD5.B5B8B5EF2E5CB34DF8DCF8831E3534FA] - [14/07/2009 01:19:49] - (.© Microsoft Corporation. - Generic PCI IDE Bus Driver.) - [12.06 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\pciide.sys
[MD5.843CAF1E5FDE1FFD5FF768F23A51E2E1] - [10/06/2009 22:37:40] - (.Copyright (c) SiS Corp. 2000-2010 - SiS RAID Stor Miniport Driver.) - [42.56 Ko] - (5.1.1039.2600) - C:\Windows\System32\Drivers\sisraid2.sys
[MD5.E3BBB89983DAF5622C1D50CF49F28227] - [14/07/2009 01:19:53] - (.© Microsoft Corporation. - SBP-2 Protocol Driver.) - [101.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\sbp2port.sys
[MD5.B2E81D4E87CE48589F98CB8C05B01F2F] - [14/07/2009 01:31:10] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de bus PCMCIA.) - [215.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\pcmcia.sys
[MD5.F36F6504009F2FB0DFD1B17A116AD74B] - [14/07/2009 01:19:52] - (.© Microsoft Corporation. Tous droits réservés. - Énumérateur Plug-and-Play PCI pour NT.) - [179.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\pci.sys
[MD5.D6B9C2E1A11A3A4B26A182FFEF18F603] - [14/07/2009 01:19:30] - (.© Microsoft Corporation. - Performance Counters for Windows Driver.) - [49.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\pcw.sys
[MD5.A53A15A11EBFD21077463EE2C7AFEEF0] - [10/06/2009 22:37:36] - (.Copyright © QLogic Corporation 1996-2009 - QLogic Fibre Channel Stor Miniport Driver.) - [1489.08 Ko] - (9.1.8.6) - C:\Windows\System32\Drivers\ql2300.sys
[MD5.6A6C106D42E9FFFF8B9FCB4F754F6DA4] - [13/07/2009 23:59:33] - (.Copyright (c) SiS Corp. 2007-2013 - SiS AHCI Stor-Miniport Driver.) - [78.58 Ko] - (5.1.1039.3600) - C:\Windows\System32\Drivers\sisraid4.sys
[MD5.AD3A6838A059D65FB55D2F61CF0A6C1F] - [14/07/2009 02:01:04] - (.© Microsoft Corporation. - SCSI Port Driver.) - [167.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\scsiport.sys
[MD5.144497DAA145BA0F7BE896064146C058] - [14/07/2009 01:19:48] - (.© Microsoft Corporation. - PCI IDE Bus Driver Extension.) - [47.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\pciidex.sys
[MD5.B9E31E5CACDFE584F34F730A677803F9] - [13/07/2009 22:27:56] - (.© Microsoft Corporation. - loader for security processor.) - [18.56 Ko] - (6.1.7127.0) - C:\Windows\System32\Drivers\spldr.sys
[MD5.D01EC09B6711A5F8E7E6564A4D0FBC90] - [14/07/2009 02:00:18] - (.© Microsoft Corporation. - Plug and Play Software Device Enumerator.) - [12.2 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\swenum.sys
[MD5.C448651339196C0E869A355171875522] - [14/07/2009 02:16:36] - (.© Microsoft Corporation. - Remote Desktop Server Driver.) - [61.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\termdd.sys
[MD5.B4DD609BD7E282BFC683CEC7EAAAAD67] - [14/07/2009 01:38:44] - (.© Microsoft Corporation. Tous droits réservés. - Filtre MS AGPv3.5.) - [62.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\UAGP35.SYS
[MD5.F3817967ED533D08327DC73BC4D5542A] - [13/07/2009 23:59:33] - (.Promise Technology - Promise  SuperTrak EX Series Driver for Windows .) - [24.08 Ko] - (5.0.1.1) - C:\Windows\System32\Drivers\stexstor.sys
[MD5.C82E748660F62A242B2DFAC1442F22A4] - [14/07/2009 02:01:36] - (.© Microsoft Corporation. - VHD Miniport Driver.) - [212.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\vhdmp.sys
[MD5.4BFE1BC28391222894CBF1E7D0E42320] - [14/07/2009 01:38:48] - (.© Microsoft Corporation. Tous droits réservés. - Filtre ULi AGPv3.0 pour plateformes à processeur K8/9.) - [63.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ULIAGPKX.SYS
[MD5.72889E16FF12BA0F235467D6091B17DC] - [14/07/2009 01:19:55] - (.© Microsoft Corporation. - Microsoft Watchdog Timer Driver.) - [20.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\wd.sys
[MD5.E5689D93FFE4E5D66C0178761240DD54] - [14/07/2009 01:19:50] - (.Copyright (C) VIA Technologies, Inc. 2000-2007 - VIA Generic PCI IDE Bus Driver.) - [17.08 Ko] - (6.0.6000.170) - C:\Windows\System32\Drivers\viaide.sys
[MD5.99B0CBB569CA79ACAED8C91461D765FB] - [14/07/2009 01:20:35] - (.© Microsoft Corporation. Tous droits réservés. - Pilote d’extension du gestionnaire de volumes.) - [355.06 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\volmgrx.sys
[MD5.C5C876CCFC083FF3B128F933823E87BD] - [14/07/2009 02:01:31] - (.© Microsoft Corporation. Tous droits réservés. - Énumérateur racine de lecteur virtuel.) - [35.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\vdrvroot.sys
[MD5.2B1A3DAE2B4E70DBBA822B7A03FBD4A3] - [14/07/2009 01:19:57] - (.© Microsoft Corporation. - Volume Manager Driver.) - [70.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\volmgr.sys
[MD5.5E2016EA6EBACA03C04FEAC5F330D997] - [10/06/2009 22:37:58] - (.Copyright (C) VIA Technologies 1992-2007 - VIA RAID DRIVER FOR AMD-X86-64.) - [158.08 Ko] - (6.0.6000.6210) - C:\Windows\System32\Drivers\vsmraid.sys
[MD5.FC146F46872D4C5B529B89A5131FD1E6] - [14/07/2009 01:19:51] - (.© Microsoft Corporation. - WMILIB WMI support library Dll.) - [16.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\wmilib.sys
[MD5.05ECAEC3E4529A7153B3136CEB49F0EC] - [14/07/2009 01:29:31] - (.© Microsoft Corporation. - Wim file system Driver.) - [21.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\wimmount.sys
[MD5.F7866AF72ABBAF84B1FA5AA195378C59] - [14/07/2009 01:20:01] - (.© Microsoft Corporation. Tous droits réservés. - Gestionnaire de filtres de système de fichiers Microsoft.) - [283.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\fltMgr.sys
[MD5.8C778D335C9D272CFD3298AB02ABE3B6] - [14/07/2009 01:38:44] - (.© Microsoft Corporation. Tous droits réservés. - Filtre AGPv3.0 générique Microsoft pour plateformes de processeur K8/9.) - [63.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\GAGP30KX.SYS
[MD5.1C827878A998C18847245FE1F34EE597] - [14/07/2009 02:01:14] - (.© Microsoft Corporation. - Disk Block Verification Filter Driver.) - [23.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\crcdisk.sys
[MD5.839B5FE3D48E9F35B22C21A3D5103F6C] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - ATAPI Dump Driver.) - [28.06 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\Dumpata.sys
[MD5.3E588B60EC061686BA05D33574A344C6] - [14/07/2009 02:01:01] - (.© Microsoft Corporation. - Crash Dump Driver.) - [38.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\crashdmp.sys
[MD5.9819EEE8B5EA3784EC4AF3B137A5244C] - [14/07/2009 01:19:57] - (.© Microsoft Corporation. - PnP Disk Driver.) - [71.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\disk.sys
[MD5.0886D440058F203EBA0E1825E4355914] - [13/07/2009 23:59:32] - (.Copyright (c) 2004-2008 Hewlett-Packard Development Company, L.P. - Smart Array SAS/SATA Controller Media Driver.) - [76.06 Ko] - (6.12.4.64) - C:\Windows\System32\Drivers\HpSAMD.sys
[MD5.0E5DA5369A0FCAEA12456DD852545184] - [10/06/2009 22:36:49] - (.Copyright © 2003-2009 Emulex - Storport Miniport Driver for LightPulse HBAs.) - [518.06 Ko] - (7.2.10.211) - C:\Windows\System32\Drivers\elxstor.sys
[MD5.655661BE46B5F5F3FD454E2C3095B930] - [14/07/2009 01:34:25] - (.© Microsoft Corporation. - FileInfo Filter Driver.) - [68.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\fileinfo.sys
[MD5.D43703496149971890703B4B1B723EAC] - [14/07/2009 01:26:13] - (.© Microsoft Corporation. - File System Dependency Manager Mini Filter Driver.) - [54.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\fsdepends.sys
[MD5.BC02336F1CBA7DCC7D1213BB588A68A5] - [14/07/2009 01:19:50] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de la classe Clavier.) - [49.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\kbdclass.sys
[MD5.F00F20E70C6EC3AA366910083A0518AA] - [14/07/2009 01:19:48] - (.© Microsoft Corporation. - Intel PCI IDE Driver.) - [16.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\intelide.sys
[MD5.5C18831C61933628F5BB0EA2675B9D21] - [13/07/2009 23:59:33] - (.Copyright © 2002-05 Intel Corp./ICP vortex GmbH - Intel/ICP Raid Storport Driver.) - [43.08 Ko] - (5.4.22.0) - C:\Windows\System32\Drivers\iirsp.sys
[MD5.F17766A19145F111856378DF337A5D79] - [14/07/2009 01:19:23] - (.© Microsoft Corporation. - Hardware Policy Driver.) - [14.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\hwpolicy.sys
[MD5.1047184A9FDC8BDBFF857175875EE810] - [13/07/2009 23:59:33] - (.Copyright © LSI Corporation 2008 - LSI Fusion-MPT SAS Driver (StorPort).) - [104.06 Ko] - (1.28.3.52) - C:\Windows\System32\Drivers\lsi_sas.sys
[MD5.30F5C0DE1EE8B5BC9306C1F0E4A75F93] - [13/07/2009 23:59:34] - (.Copyright © LSI Corporation 2009 - LSI SAS Gen2 Driver (StorPort).) - [64.06 Ko] - (2.0.2.71) - C:\Windows\System32\Drivers\lsi_sas2.sys
[MD5.0504EACAFF0D3C8AED161C4B0D369D4A] - [13/07/2009 23:59:33] - (.Copyright © LSI Corporation 2008 - LSI Fusion-MPT SCSI Driver (StorPort).) - [113.06 Ko] - (1.28.3.67) - C:\Windows\System32\Drivers\lsi_scsi.sys
[MD5.1A93E54EB0ECE102495A51266DCDB6A6] - [13/07/2009 23:59:34] - (.Copyright © LSI Corporation 2008 - LSI Fusion-MPT FC Driver (StorPort).) - [112.06 Ko] - (1.28.3.52) - C:\Windows\System32\Drivers\lsi_fc.sys
[MD5.A55805F747C6EDB6A9080D7C633BD0F4] - [10/06/2009 22:37:14] - (.Copyright © LSI Corporation          - MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64.) - [34.56 Ko] - (4.5.1.64) - C:\Windows\System32\Drivers\megasas.sys
[MD5.BAF74CE0072480C3B6B7C13B2A94D6B3] - [13/07/2009 23:59:33] - (.Copyright (C) 2007 LSI Corporation. - LSI MegaRAID Software RAID Driver.) - [278.06 Ko] - (13.5.409.2009) - C:\Windows\System32\Drivers\MegaSR.sys
[MD5.2F7B28DC3E1183E5EB418DF55C204F38] - [14/07/2009 01:31:08] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de bus PNP ISA.) - [20.06 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\isapnp.sys
[MD5.89CB141AA8616D8C6A4610FA26C60964] - [14/07/2009 01:21:34] - (.© Microsoft Corporation. - Kernel Remote Procedure Call Provider.) - [358.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\msrpc.sys
[MD5.270D7CD42D6E3979F6DD0146650F0E05] - [14/07/2009 01:38:44] - (.© Microsoft Corporation. Tous droits réservés. - Filtre AGP NForce NT.) - [120.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\NV_AGP.SYS
[MD5.77889813BE4D166CDAB78DDBA990DA92] - [13/07/2009 23:59:33] - (.(C) Copyright IBM Corp. 1994, 2002. - IBM ServeRAID Controller Driver.) - [50.06 Ko] - (7.10.0.0) - C:\Windows\System32\Drivers\nfrd960.sys
[MD5.D916874BBD4F8B07BFB7FA9B3CCAE29D] - [14/07/2009 01:19:26] - (.© Microsoft Corporation. - ISA Driver.) - [15.06 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\msisadrv.sys
[MD5.791AF66C4D0E7C90A3646066386FB571] - [14/07/2009 01:19:54] - (.© Microsoft Corporation. Tous droits réservés. - Gestionnaire des points de montage.) - [92.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mountmgr.sys
[MD5.7B8403912673A87EA6622F5CB867A670] - [14/07/2009 01:21:48] - (.© Microsoft Corporation. - Network I/O Subsystem.) - [366.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\netio.sys
[MD5.CAD515DBD07D082BB317D9928CE8962C] - [14/07/2009 01:21:44] - (.© Microsoft Corporation. Tous droits réservés. - Pilote NDIS 6.20.) - [925.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ndis.sys
[MD5.7D27EA49F3C1F687D357E77A470AEA99] - [14/07/2009 01:19:50] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de la classe Souris.) - [48.06 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mouclass.sys
[MD5.FA4D2557DE56D45B0A346F93564BE6E1] - [14/07/2009 02:01:27] - (.© Microsoft Corporation. - Microsoft iSCSI Initiator Driver.) - [219.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\msiscsi.sys
[MD5.8D27B597229AED79430FB9DB3BCBFBD0] - [14/07/2009 02:01:32] - (.© Microsoft Corporation. Tous droits réservés. - Module spécifique de périphériques Microsoft.) - [137.06 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\msdsm.sys
[MD5.5C37497276E3B3A5488B23A326A754B7] - [14/07/2009 02:01:01] - (.© Microsoft Corporation. - MS AHCI 1.0 Standard Driver.) - [29.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\msahci.sys
[MD5.0EED230E37515A0EAEE3C2E1BC97B288] - [14/07/2009 01:31:10] - (.© Microsoft Corporation. - System Management BIOS Driver.) - [31.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mssmbios.sys
[MD5.F9A18612FD3526FE473C1BDA678D61C8] - [14/07/2009 01:23:45] - (.© Microsoft Corporation. - Multiple UNC Provider Driver.) - [59.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mup.sys
[MD5.609D1D87649ECC19796F4D76D4C15CEA] - [14/07/2009 02:01:27] - (.© Microsoft Corporation. Tous droits réservés. - Pilote du bus de prise en charge des chemins d’accès multiples.) - [151.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\mpio.sys
[MD5.F67F933E79241ED32FF46A4F29B5120B] - [10/06/2009 22:37:35] - (.2008 Advanced Micro Devices, Inc. - AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform.) - [189.58 Ko] - (3.6.1540.127) - C:\Windows\System32\Drivers\amdsbs.sys
[MD5.5812713A477A3AD7363C7438CA2EE038] - [14/07/2009 01:19:47] - (.Copyright (C) Acer Laboratories Inc.  2000  - ALi mini IDE Driver.) - [15.08 Ko] - (1.2.0.0) - C:\Windows\System32\Drivers\aliide.sys
[MD5.C484F8CEB1717C540242531DB7845C4E] - [13/07/2009 23:59:33] - (.Copyright 2007 Adaptec, Inc. - Adaptec RAID Storport Driver.) - [85.58 Ko] - (5.2.0.10384) - C:\Windows\System32\Drivers\arc.sys
[MD5.2F6B34B83843F0C5118B63AC634F5BF4] - [10/06/2009 22:36:24] - (.Copyright © 2006 Adaptec, Inc. - Adaptec Windows SAS/SATA Storport Driver.) - [479.58 Ko] - (1.6.6.4) - C:\Windows\System32\Drivers\adp94xx.sys
[MD5.019AF6924AEFE7839F61C830227FE79C] - [13/07/2009 23:59:33] - (.Copyright 2008 Adaptec, Inc. - Adaptec SAS RAID WS03 Driver.) - [95.56 Ko] - (5.2.0.16119) - C:\Windows\System32\Drivers\arcsas.sys
[MD5.02062C0B390B7729EDC9E69C680A6F3C] - [14/07/2009 01:19:47] - (.© Microsoft Corporation. - ATAPI IDE Miniport Driver.) - [23.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\atapi.sys
[MD5.62F1ED63F0CB0B5A2F65D15A6490C2FD] - [14/07/2009 01:19:59] - (.© Microsoft Corporation. - SCSI Class System Dll.) - [174.56 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\Classpnp.sys
[MD5.E109549C90F62FB570B9540C4B148E54] - [13/07/2009 23:59:33] - (.Copyright © 2003 Adaptec, Inc. - Adaptec StorPort Ultra320 SCSI Driver (X64).) - [178.58 Ko] - (7.2.0.0) - C:\Windows\System32\Drivers\adpu320.sys
[MD5.6F11E88748CDEFD2F76AA215F97DDFE5] - [14/07/2009 01:19:35] - (.© Microsoft Corporation. Tous droits réservés. - Pilote ACPI pour NT.) - [326.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\acpi.sys
[MD5.F4DE2AE7A9E1BADAC70BC71EA2C17612] - [14/07/2009 01:31:01] - (.© Microsoft Corporation. - Battery Class Driver.) - [27.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\battc.sys
[MD5.1FF8B4431C353CE385C875F194924C0C] - [14/07/2009 01:19:49] - (.Copyright (C) AMD 2003 - Pilote IDE AMD.) - [15.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\amdide.sys
[MD5.597F78224EE9224EA1A13D6350CED962] - [13/07/2009 23:59:32] - (.Copyright © 2006 Adaptec, Inc. - Adaptec Windows SATA Storport Driver.) - [331.58 Ko] - (1.6.6.1) - C:\Windows\System32\Drivers\adpahci.sys
[MD5.AA2186F7944104A16D6ED176ED462CEC] - [14/07/2009 01:19:53] - (.© Microsoft Corporation. - ATAPI Driver Extension.) - [152.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\ataport.sys
[MD5.608C14DBA7299D8CB6ED035A68A15799] - [14/07/2009 01:38:44] - (.© Microsoft Corporation. Tous droits réservés. - Filtre AGP 440 NT.) - [59.58 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\AGP440.sys
[MD5.102DE219C3F61415F964C88E9085AD14] - [14/07/2009 01:31:02] - (.© Microsoft Corporation. - Composite Battery Driver.) - [21.08 Ko] - (6.1.7600.16385) - C:\Windows\System32\Drivers\compbatt.sys
[MD5.E19D3F095812725D88F9001985B94EDD] - [14/07/2009 01:19:48] - (.Copyright (C) CMD Technology, Inc. 1999-2000 - CMD PCI IDE Bus Driver.) - [17.08 Ko] - (2.0.7.0) - C:\Windows\System32\Drivers\cmdide.sys
[MD5.B6AC71AAA2B10848F57FC49D55A651AF] - [02/12/2010 17:47:44] - (.Copyright © 2006-2009, Intel Corporation. - Intel(R) Management Engine Interface.) - [55.02 Ko] - (6.0.0.1179) - C:\Windows\System32\Drivers\HECIx64.sys
[MD5.ED6D1424E5B0C21A57B28DD8508D6843] - [03/12/2010 02:27:17] - (.Copyright (C) Synaptics Incorporated 1996-2009 - Synaptics Touchpad Driver.) - [286.05 Ko] - (14.0.6.0) - C:\Windows\System32\Drivers\SynTP.sys
[MD5.AE87BA80D0EC3B57126ED2CDC15B24ED] - [01/03/2011 18:16:38] - (.© Microsoft Corporation. - BitLocker Drive Encryption Driver.) - [218.21 Ko] - (6.1.7600.16429) - C:\Windows\System32\Drivers\fvevol.sys
[MD5.58CF58DEE26C909BD6F977B61D246295] - [03/12/2010 02:26:41] - (. Intel(R) Corporation. - Intel(R) Display Audio Driver.) - [265.5 Ko] - (6.12.0.3047) - C:\Windows\System32\Drivers\IntcDAud.sys
[MD5.DD587A55390ED2295BCE6D36AD567DA9] - [03/12/2010 02:26:41] - (.Copyright(C) 2008 Intel Corporation  - Intel(R) Turbo Boost Technology Driver.) - [155.25 Ko] - (1.2.0.1002) - C:\Windows\System32\Drivers\Impcd.sys
[MD5.ABBF174CB394F5C437410A788B7E404A] - [08/09/2010 05:01:56] - (.Copyright(C) Intel Corporation 1994-2010  - Intel Rapid Storage Technology driver - x64.) - [528.02 Ko] - (9.6.0.1014) - C:\Windows\System32\Drivers\iaStor.sys
[MD5.2A22AB054F4630D2EF4BAB2853F6D5F6] - [03/12/2010 02:26:40] - (.Copyright (c) 1998-2006 Intel Corporation. - Intel Graphics Kernel Mode Driver.) - [10084.75 Ko] - (8.15.10.2119) - C:\Windows\System32\Drivers\igdkmd64.sys
[MD5.E642491F64E58CD5BC8FB8B347DCF65F] - [03/12/2010 02:27:23] - (.Copyright (C) 2001-2009 Atheros Communications, Inc. - Atheros Extensible Wireless LAN device driver.) - [2177.35 Ko] - (9.0.0.202) - C:\Windows\System32\Drivers\athrx.sys
[MD5.12E27942DBB7C91880163634B0D8A776] - [08/06/2010 05:36:18] - (.Copyright 2000-2010, Broadcom Corporation. - Broadcom NetLink (TM) Gigabit Ethernet NDIS6.x Unified Driver..) - [396.54 Ko] - (14.2.0.7) - C:\Windows\System32\Drivers\k57nd60a.sys
[MD5.391887990CDAA83DE5C56C3FDE966DA1] - [10/06/2010 22:57:20] - (.Copyright(C) Alcor Micro, Corp. - Alocr Micro USB Mass Storage Driver.) - [39.5 Ko] - (1.0.12.50) - C:\Windows\System32\Drivers\AmUStor.sys
[MD5.E5DC9BA9E439D6DBDD79F8CAACB5BF01] - [08/09/2010 04:59:44] - (.© Microsoft Corporation. - ReadyBoost Driver.) - [208.88 Ko] - (6.1.7600.16617) - C:\Windows\System32\Drivers\rdyboost.sys
[MD5.E8017F1662D9142F45CEAB694D013C00] - [02/12/2010 17:48:32] - (.Copyright (c) Realtek Semiconductor Corp.1998-2012 - Realtek(r) High Definition Audio Function Driver.) - [2388.35 Ko] - (6.0.1.6167) - C:\Windows\System32\Drivers\RTKVHD64.sys
[MD5.178298F767FE638C9FEDCBDEF58BB5E4] - [08/09/2010 04:51:02] - (.© Microsoft Corporation. - Small Form Factor SD Protocol Driver.) - [14 Ko] - (6.1.7600.16438) - C:\Windows\System32\Drivers\sffp_sd.sys
[MD5.DD0443BC6CC78A19FD399817F8C51401] - [04/03/2013 22:06:43] - (. - .) - [17.3 Ko] - (0.0.0.0) - C:\Windows\System32\Drivers\SmartDefragDriver.sys
[MD5.5C7AF4A20F5BF67042B2E613D123D111] - [03/12/2010 02:28:05] - (.© Microsoft Corporation. - Kernel CSA Library.) - [238 Ko] - (6.1.7600.16543) - C:\Windows\System32\Drivers\ks.sys
[MD5.7CB8C573C6E4A2714402CC0A36EAB4FE] - [03/12/2010 02:28:05] - (.© Microsoft Corporation. - USB Video Class Driver.) - [180.5 Ko] - (6.1.7600.16543) - C:\Windows\System32\Drivers\usbvideo.sys
[MD5.19D20159708E152267E53B66677A4995] - [12/05/2011 12:21:58] - (.© Microsoft Corporation. - NT Lan Manager Datagram Receiver Driver.) - [88.5 Ko] - (6.1.7600.16765) - C:\Windows\System32\Drivers\bowser.sys
[MD5.F39983647BC1F3E6100778DDFE9DCE29] - [12/05/2011 12:22:51] - (.© Microsoft Corporation. - USB Mass Storage Class Driver.) - [89 Ko] - (6.1.7600.16778) - C:\Windows\System32\Drivers\USBSTOR.SYS
[MD5.DB27766102C7BF7E95140A2AA81D042E] - [12/05/2011 12:22:51] - (.Copyright © 2008-2010 AMD, Inc. - Storage Filter Driver.) - [26.38 Ko] - (1.1.2.5) - C:\Windows\System32\Drivers\amdxata.sys
[MD5.EC7EBAB00A4D8448BAB68D1E49B4BEB9] - [12/05/2011 12:22:51] - (.Copyright © 2008-2010 AMD, Inc. - AHCI 1.2 Device Driver.) - [105.38 Ko] - (1.1.2.5) - C:\Windows\System32\Drivers\amdsata.sys
[MD5.B75E45C564E944A2657167D197AB29DA] - [12/05/2011 12:22:51] - (.Copyright(C) Intel Corporation 1994-2008  - Intel Matrix Storage Manager driver - x64.) - [400.88 Ko] - (8.6.2.1013) - C:\Windows\System32\Drivers\iaStorV.sys
[MD5.A4D9C9A608A97F59307C2F2600EDC6A4] - [12/05/2011 12:22:52] - (.Copyright(C) 2001-2010 NVIDIA Corporation - NVIDIA® nForce(TM) RAID Driver.) - [144.88 Ko] - (10.6.0.18) - C:\Windows\System32\Drivers\nvraid.sys
[MD5.6C1D5F70E7A6A3FD1C90D840EDC048B9] - [12/05/2011 12:22:52] - (.Copyright(C) 2001-2010 NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) - [162.38 Ko] - (10.6.0.18) - C:\Windows\System32\Drivers\nvstor.sys
[MD5.CFD8802CAC57D3AFE0C687786E9E55F8] - [12/05/2011 12:22:51] - (.© Microsoft Corporation. - Microsoft Storage Port Driver.) - [182.88 Ko] - (6.1.7600.16778) - C:\Windows\System32\Drivers\storport.sys
[MD5.F96F7835C8818895C47F6213E3A01F5D] - [12/05/2011 12:23:03] - (.© Microsoft Corporation. - Universal Serial Bus Driver.) - [7.75 Ko] - (6.1.7600.20934) - C:\Windows\System32\Drivers\usbd.sys
[MD5.0B5B3B2DF3FD1709618ACFA50B8392B0] - [12/05/2011 12:23:03] - (.© Microsoft Corporation. - UHCI USB Miniport Driver.) - [30 Ko] - (6.1.7600.20934) - C:\Windows\System32\Drivers\usbuhci.sys
[MD5.FBB21EBE49F6D560DB37AC25FBC68E66] - [12/05/2011 12:23:04] - (.© Microsoft Corporation. - EHCI eUSB Miniport Driver.) - [51 Ko] - (6.1.7600.20934) - C:\Windows\System32\Drivers\usbehci.sys
[MD5.8C88AA7617B4CBC2E4BED61D26B33A27] - [12/05/2011 12:23:03] - (.© Microsoft Corporation. - OHCI USB Miniport Driver.) - [25 Ko] - (6.1.7600.20934) - C:\Windows\System32\Drivers\usbohci.sys
[MD5.B37C3BF3FFC97177B1A9C016B7C8CDD6] - [12/05/2011 12:23:04] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de port USB 1.1 & 2.0.) - [317 Ko] - (6.1.7600.20934) - C:\Windows\System32\Drivers\usbport.sys
[MD5.537A4E03D7103C12D42DFD8FFDB5BDC9] - [12/05/2011 12:23:03] - (.© Microsoft Corporation. - USB Common Class Generic Parent Driver.) - [97 Ko] - (6.1.7600.20934) - C:\Windows\System32\Drivers\usbccgp.sys
[MD5.6B7A8A99C4A459E73C286A6763EA24CC] - [12/05/2011 12:23:03] - (.© Microsoft Corporation. - Default Hub Driver for USB.) - [335 Ko] - (6.1.7600.20934) - C:\Windows\System32\Drivers\usbhub.sys
[MD5.20080512F61D3210E449A1256F66A7FD] - [25/05/2011 08:48:14] - (.© Microsoft Corporation. - Crash Dump Disk Driver.) - [26.38 Ko] - (6.1.7600.16800) - C:\Windows\System32\Drivers\Diskdump.sys
[MD5.9C253CE7311CA60FC11C774692A13208] - [17/06/2011 17:01:13] - (.© Microsoft Corporation. - DFS Namespace Client Driver.) - [100 Ko] - (6.1.7600.16804) - C:\Windows\System32\Drivers\dfsc.sys
[MD5.0AF6E19D39C70844C5CAA8FB0183C36E] - [17/06/2011 17:00:34] - (.© Microsoft Corporation. - Server Network driver.) - [158 Ko] - (6.1.7600.16806) - C:\Windows\System32\Drivers\srvnet.sys
[MD5.76548F7B818881B47D8D1AE1BE9C11F8] - [17/06/2011 17:00:34] - (.© Microsoft Corporation. - Smb 2.0 Server driver.) - [390.5 Ko] - (6.1.7600.16806) - C:\Windows\System32\Drivers\srv2.sys
[MD5.2408C0366D96BCDF63E8F1C78E4A29C5] - [17/06/2011 17:00:34] - (.© Microsoft Corporation. - Server driver.) - [450.5 Ko] - (6.1.7600.16806) - C:\Windows\System32\Drivers\srv.sys
[MD5.3C142D31DE9F2F193218A53FE2632051] - [17/06/2011 17:01:08] - (.© Microsoft Corporation. - Longhorn SMB 2.0 Redirector.) - [123.5 Ko] - (6.1.7600.16808) - C:\Windows\System32\Drivers\mrxsmb20.sys
[MD5.040D62A9D8AD28922632137ACDD984F2] - [17/06/2011 17:01:08] - (.© Microsoft Corporation. - Windows NT SMB Minirdr.) - [154 Ko] - (6.1.7600.16808) - C:\Windows\System32\Drivers\mrxsmb.sys
[MD5.ED49FD1373DE93617A1F6D128D98FE4D] - [03/03/2011 14:04:09] - (.© Malwarebytes Corporation. - Malwarebytes' Anti-Malware.) - [25.3 Ko] - (1.50.1.0) - C:\Windows\System32\Drivers\mbam.sys
[MD5.F0067552F8F9B33D7C59403AB808A3CB] - [11/08/2011 12:00:08] - (.© Microsoft Corporation. - Longhorn SMB Downlevel SubRdr.) - [281 Ko] - (6.1.7600.16847) - C:\Windows\System32\Drivers\mrxsmb10.sys
[MD5.DB9D6C6B2CD95A9CA414D045B627422E] - [16/02/2012 05:29:22] - (.© Microsoft Corporation. Tous droits réservés. - Ancillary Function Driver for WinSock.) - [487.5 Ko] - (6.1.7600.16937) - C:\Windows\System32\Drivers\afd.sys
[MD5.7518F7BCFD4B308ABC9192BACAF6C970] - [14/03/2012 19:19:14] - (.© Microsoft Corporation. - TCP Transport Driver.) - [23 Ko] - (6.1.7600.16963) - C:\Windows\System32\Drivers\tdtcp.sys
[MD5.1633B9ABF52784A1331476397A48CBEF] - [21/02/2012 23:30:14] - (.© Microsoft Corporation. - DirectX Graphics Kernel.) - [959.88 Ko] - (6.1.7600.16748) - C:\Windows\System32\Drivers\dxgkrnl.sys
[MD5.3238B9078E0766AB5E62DC737A809ADB] - [21/02/2012 23:30:14] - (.© Microsoft Corporation. - DirectX Graphics MMS.) - [258.88 Ko] - (6.1.7600.16748) - C:\Windows\System32\Drivers\dxgmms1.sys
[MD5.D3E3F93D67821A2DB2B3D9FAC2DC2064] - [11/04/2012 21:57:22] - (.© Microsoft Corporation. - File System Recognizer Driver.) - [22.36 Ko] - (6.1.7600.16970) - C:\Windows\System32\Drivers\fs_rec.sys
[MD5.90061B1ACFE8CCAA5345750FFE08D8B8] - [08/05/2012 21:06:26] - (.© Microsoft Corporation. - Partition Management Driver.) - [73.86 Ko] - (6.1.7600.16979) - C:\Windows\System32\Drivers\partmgr.sys
[MD5.447DE7E3DEA39D422C1504F245B668B1] - [13/06/2012 22:13:20] - (.© Microsoft Corporation. - RDP Terminal Stack Driver.) - [200 Ko] - (6.1.7600.17011) - C:\Windows\System32\Drivers\rdpwd.sys
[MD5.CA7720B73446FDDEC5C69519C1174C98] - [11/07/2012 12:43:58] - (.© Microsoft Corporation. - Kernel Cryptography, Next Generation.) - [448.45 Ko] - (6.1.7600.17035) - C:\Windows\System32\Drivers\cng.sys
[MD5.6F40465A44ECDC1731BEFAFEC5BDD03C] - [11/07/2012 12:43:57] - (.© Microsoft Corporation. - Kernel Security Support Provider Interface Packages.) - [148.86 Ko] - (6.1.7600.17035) - C:\Windows\System32\Drivers\ksecpkg.sys
[MD5.4F4B5FDE429416877DE7143044582EB5] - [11/07/2012 12:43:57] - (.© Microsoft Corporation. - Kernel Security Support Provider Interface.) - [92.86 Ko] - (6.1.7600.17035) - C:\Windows\System32\Drivers\ksecdd.sys
[MD5.DDA4CAF29D8C0A297F886BFE561E6659] - [15/11/2012 10:51:39] - (.© Microsoft Corporation. - Windows Driver Foundation - User-mode Driver Framework Reflector.) - [194 Ko] - (6.2.9200.16384) - C:\Windows\System32\Drivers\WUDFRd.sys
[MD5.AB886378EEB55C6C75B4F2D14B6C869F] - [15/11/2012 10:51:39] - (.© Microsoft Corporation. - Windows Driver Foundation - User-mode Driver Framework Platform Driver.) - [85 Ko] - (6.2.9200.16384) - C:\Windows\System32\Drivers\WUDFPf.sys
[MD5.AEA0A67275CFBA0E463E00C6E9A1DDAE] - [15/11/2012 11:00:39] - (.© Microsoft Corporation. - Kernel Mode Driver Framework Loader.) - [53.1 Ko] - (1.11.9200.16384) - C:\Windows\System32\Drivers\WdfLdr.sys
[MD5.442783E2CB0DA19873B7A63833FF4CB4] - [15/11/2012 11:00:39] - (.© Microsoft Corporation. Tous droits réservés. - Runtime de l’infrastructure de pilotes en mode noyau.) - [767.1 Ko] - (1.11.9200.16384) - C:\Windows\System32\Drivers\Wdf01000.sys
[MD5.184C189D4FC416978550FC599BB4EDDA] - [10/10/2012 21:12:50] - (.© Microsoft Corporation. Tous droits réservés. - Pilote du système de fichiers NT.) - [1617.86 Ko] - (6.1.7600.17119) - C:\Windows\System32\Drivers\ntfs.sys
[MD5.9E425AC5C9A5A973273D169F43B4F5E1] - [12/12/2012 11:02:38] - (.© Microsoft Corporation. Tous droits réservés. - Pilote de cliché instantané du volume.) - [288.86 Ko] - (6.1.7600.17122) - C:\Windows\System32\Drivers\volsnap.sys
[MD5.2FFDCD3E5ABAC88C3C193F3AC3360ED9] - [13/02/2013 11:32:46] - (.© Microsoft Corporation. - FWP/IPsec Kernel-Mode API.) - [280.84 Ko] - (6.1.7600.17206) - C:\Windows\System32\Drivers\FWPKCLNT.SYS
[MD5.5CFB7AB8F9524D1A1E14369DE63B83CC] - [13/02/2013 11:32:46] - (.© Microsoft Corporation. Tous droits réservés. - Pilote TCP/IP.) - [1848.85 Ko] - (6.1.7600.17206) - C:\Windows\System32\Drivers\tcpip.sys
[MD5.EF45DCE7B2BED36C566EAC743EAE66A4] - [15/03/2013 08:57:51] - (.© Microsoft Corporation. - Remote NDIS USB Driver.) - [19.5 Ko] - (6.1.7600.17233) - C:\Windows\System32\Drivers\usb8023.sys
[MD5.E92635BB235B03ED03B17CBB59F77FA4] - [23/04/2013 15:20:58] - (.Copyright (c) 2013 AVAST Software - avast! File System Minifilter for Windows 2003/Vista.) - [78.92 Ko] - (8.0.1483.72) - C:\Windows\System32\Drivers\aswMonFlt.sys
[MD5.B217378ED9A964E15346A67FEF609A17] - [23/04/2013 15:20:59] - (.Copyright (c) 2013 AVAST Software - avast! File System Access Blocking Driver.) - [32.62 Ko] - (8.0.1483.72) - C:\Windows\System32\Drivers\aswFsBlk.sys
[MD5.8F90459AFB7FD4557D935CE639EF6110] - [23/04/2013 15:20:58] - (.Copyright (c) 2013 AVAST Software - avast! WFP Redirect Driver.) - [69.33 Ko] - (8.0.1483.72) - C:\Windows\System32\Drivers\aswRdr2.sys
[MD5.DE6759B8D8E62BF0FFF2B05F05AFCEE6] - [23/04/2013 15:20:58] - (. - .) - [63.8 Ko] - (8.0.1483.72) - C:\Windows\System32\Drivers\aswRvrt.sys
[MD5.D62C10D1829C65115111C160EA956260] - [23/04/2013 15:20:58] - (.Copyright (c) 2013 AVAST Software - avast! TDI Filter Driver.) - [67.3 Ko] - (8.0.1483.72) - C:\Windows\System32\Drivers\aswTdi.sys
[MD5.97D4D725BD32C965119E6C8E252F8C64] - [23/04/2013 15:20:58] - (.Copyright (c) 2013 AVAST Software - avast! self protection module.) - [369.06 Ko] - (8.0.1483.72) - C:\Windows\System32\Drivers\aswSP.sys
[MD5.7E44C2684A6CA779B9D07CB4BD3F649D] - [23/04/2013 15:20:58] - (. - .) - [174.44 Ko] - (8.0.1483.72) - C:\Windows\System32\Drivers\aswVmm.sys
[MD5.AB8B4D3136D18A20777036E0F0CFC5E1] - [23/04/2013 15:20:58] - (.Copyright (c) 2013 AVAST Software - avast! Virtualization Driver.) - [1001.77 Ko] - (8.0.1483.72) - C:\Windows\System32\Drivers\aswSnx.sys
[MD5.5CF95B35E59E2A38023836FFF31BE64C] - [14/07/2009 01:17:57] - (.© Microsoft Corporation. - Wim file system Driver.) - [18.56 Ko] - (6.1.7600.16385) - C:\Windows\Syswow64\Drivers\wimmount.sys
[MD5.B309912717C29FC67E1BA4730A82B6DD] - [03/03/2011 14:04:13] - (.© Malwarebytes Corporation. - Malwarebytes' Anti-Malware.) - [39.05 Ko] - (1.50.1.0) - C:\Windows\Syswow64\Drivers\mbamswissarmy.sys

¤¤¤¤¤¤¤¤¤¤ | Uninstall

[HKCU\Software\Microsoft\windows\CurrentVersion\Uninstall\Google Chrome] -> Google Chrome (Google Inc.) -> "C:\Users\Mareva\AppData\Local\Google\Chrome\Application\26.0.1410.64\Installer\setup.exe" --uninstall --multi-install --chrome
[HKCU\Software\Microsoft\windows\CurrentVersion\Uninstall\IMVU Avatar chat client software BETA] -> IMVU Avatar Chat Software () -> C:\Users\Mareva\AppData\Roaming\IMVUClient\Uninstall.exe
[HKCU\Software\Microsoft\windows\CurrentVersion\Uninstall\PhotoFiltre] -> PhotoFiltre () -> "C:\Program Files (x86)\PhotoFiltre\Uninst.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Adobe AIR] -> Adobe AIR (Adobe Systems Incorporated) -> c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Adobe Flash Player ActiveX] -> Adobe Flash Player 11 ActiveX (Adobe Systems Incorporated) -> C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_7_700_182_ActiveX.exe -maintain activex
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Adobe Flash Player Plugin] -> Adobe Flash Player 11 Plugin (Adobe Systems Incorporated) -> C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_7_700_182_Plugin.exe -maintain plugin
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Adobe Photoshop Elements 8.0] -> Adobe Photoshop Elements 8.0 (Adobe Systems Incorporated) -> msiexec /i {17DFE37C-064E-4834-AD8F-A4B2B4DF68F8}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Adobe Shockwave Player] -> Adobe Shockwave Player 12.0 (Adobe Systems, Inc.) -> "C:\Windows\SysWOW64\Adobe\Shockwave 12\uninstaller.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Advanced SystemCare 6_is1] -> Advanced SystemCare 6 (IObit) -> "C:\Program Files (x86)\IObit\Advanced SystemCare 6\unins000.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Ares] -> Ares 2.1.9 (Ares Development Group) -> "C:\Program Files (x86)\Ares\uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\avast] -> avast! Free Antivirus (AVAST Software) -> C:\Program Files\AVAST Software\Avast\aswRunDll.exe "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Connection Manager] ->  () -> 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\eMule] -> eMule () -> "C:\Program Files (x86)\eMule\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\FileHippo.com] -> FileHippo.com Update Checker () -> "C:\Program Files (x86)\FileHippo.com\uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Identity Card] -> Identity Card (Packard Bell) -> C:\Program Files (x86)\Packard Bell\Identity Card\Uninstall.exe
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\ilividtoolbargaw] -> Search-Results Toolbar (APN LLC) -> C:\PROGRA~2\SEARCH~1\Datamngr\SRTOOL~1\uninstall.exe
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\InstallShield Uninstall Information] ->  () -> 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\InstallShield_{64EF903E-D00A-414C-94A4-FBA368FFCDC9}] -> Packard Bell Social Networks (CyberLink Corp.) -> "C:\Program Files (x86)\InstallShield Installation Information\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}\setup.exe" /z-uninstall
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}] -> Packard Bell MyBackup (NewTech Infosystems) -> C:\Program Files (x86)\InstallShield Installation Information\{72B776E5-4530-4C4B-9453-751DF87D9D93}\setup.exe -runfromtemp -l0x0409
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\InstallShield_{DD89CE29-BC88-40C6-A845-E2548682C5D6}] -> Alcor Micro USB Card Reader (Alcor Micro Corp.) -> C:\Program Files (x86)\InstallShield Installation Information\{DD89CE29-BC88-40C6-A845-E2548682C5D6}\setup.exe
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\IObit Malware Fighter_is1] -> IObit Malware Fighter (IObit) -> "C:\Program Files (x86)\IObit\IObit Malware Fighter\unins000.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\LManager] -> Launch Manager (Packard Bell) -> C:\Windows\UNINSTLMv4.EXE LMv4.UNI
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Malwarebytes' Anti-Malware_is1] -> Malwarebytes' Anti-Malware version 1.51.0.1200 (Malwarebytes Corporation) -> "C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Mozilla Firefox 10.0.5 (x86 en-US)] -> Mozilla Firefox 10.0.5 (x86 en-US) (Mozilla) -> C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\OrangeUpdateManager] -> Orange update (Orange) -> "C:\Program Files (x86)\Orange\OrangeUpdate\Manager\GUIuninstaller.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Packard Bell InfoCentre] -> Packard Bell InfoCentre (Packard Bell) -> C:\Program Files (x86)\Packard Bell\InfoCentre\Uninstall.exe
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Packard Bell Registration] -> Packard Bell Registration (Packard Bell) -> C:\Program Files (x86)\Packard Bell\Registration\Uninstall.exe
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Packard Bell Screensaver] -> Packard Bell ScreenSaver (Packard Bell ) -> C:\Program Files (x86)\Packard Bell\Screensaver\Uninstall.exe
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Packard Bell Welcome Center] -> Welcome Center (Packard Bell) -> C:\Program Files (x86)\Packard Bell\Welcome Center\Uninstall.exe
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Picasa 3] -> Picasa 3 (Google, Inc.) -> "C:\Program Files (x86)\Google\Picasa3\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\Smart Defrag 2_is1] -> Smart Defrag 2 (IObit) -> "C:\Program Files (x86)\IObit\Smart Defrag 2\unins000.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\uTorrent] -> µTorrent () -> "C:\Program Files (x86)\uTorrent\uTorrent.exe" /UNINSTALL
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\VLC media player] -> VLC media player 2.0.4 (VideoLAN) -> C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WIC] ->  () -> 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WildTangent packardbell Master Uninstall] -> Packard Bell Games (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WildTangentGameProvider-packardbell-main] ->  (WildTangent, Inc.) -> "C:\Program Files (x86)\Packard Bell Games\Game Explorer Categories - main\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WildTangentGDF-packardbell-clubpenguin] ->  (WildTangent, Inc.) -> "C:\Program Files (x86)\Packard Bell Games\Web Link - Club Penguin\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088216] -> Agatha Christie - Death on the Nile (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Agatha Christie - Death on the Nile\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088226] -> Bejeweled 2 Deluxe (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Bejeweled 2 Deluxe\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088228] -> Build-a-lot 2 (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Build-a-lot 2\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088235] -> Chuzzle Deluxe (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Chuzzle Deluxe\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088238] -> Diner Dash 2 Restaurant Rescue (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Diner Dash 2 Restaurant Rescue\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088260] -> Farm Frenzy (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Farm Frenzy\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088268] -> Insaniquarium Deluxe (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Insaniquarium Deluxe\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088269] -> Jewel Quest Solitaire 2 (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Jewel Quest Solitaire 2\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088283] -> Plants vs. Zombies (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Plants vs. Zombies\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088292] -> Zuma Deluxe (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Zuma Deluxe\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088416] -> FATE (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\FATE\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088420] -> Final Drive Nitro (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Final Drive Nitro\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088448] -> John Deere Drive Green (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\John Deere Drive Green\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088452] -> Penguins! (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Penguins!\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088456] -> Polar Bowler (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Polar Bowler\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088460] -> Polar Golfer (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Polar Golfer\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088508] -> Virtual Villagers 4 - The Tree of Life (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Virtual Villagers 4 - The Tree of Life\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\WT088531] -> Zuma's Revenge (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Zuma's Revenge\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{12A1B519-5934-4508-ADBD-335347B0DC87}] -> Video Web Camera (Chicony Electronics Co.,Ltd.) -> "C:\Program Files (x86)\InstallShield Installation Information\{12A1B519-5934-4508-ADBD-335347B0DC87}\Setup.exe" -runfromtemp -l0x040c  -removeonly
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{16337ff7-9fb9-4476-837b-acc962fc4bc5}] -> Nero 9 Essentials (Nero AG) -> C:\Program Files (x86)\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe  REMOVESERIALNUMBER="2M02-K0C4-CM6L-227P-0EU0-651U-T39T-6337-W4KW-P288-2P9U-AZ0M-1E68-AE4Z-1A7E-7T4H-0000"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{17DFE37C-064E-4834-AD8F-A4B2B4DF68F8}] -> Adobe Photoshop Elements 8.0 (Adobe Systems Incorporated) -> 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}] -> Nero InfoTool Help (Nero AG) -> MsiExec.exe /X{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{2348B586-C9AE-46CE-936C-A68E9426E214}] -> Nero StartSmart Help (Nero AG) -> MsiExec.exe /X{2348B586-C9AE-46CE-936C-A68E9426E214}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83216037FB}] ->  () -> 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83216039FB}] ->  () -> 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{287ECFA4-719A-2143-A09B-D6A12DE54E40}] -> Acrobat.com (Adobe Systems Incorporated) -> MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App] -> Update Installer for WildTangent Games App (WildTangent) -> "C:\Program Files (x86)\WildTangent Games\App\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1] -> lightshot-3.4.0.20 (Skillbrains) -> "C:\Users\Mareva\AppData\Local\Skillbrains\lightshot\unins000.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{33CF58F5-48D8-4575-83D6-96F574E4D83A}] -> Nero DriveSpeed (Nero AG) -> MsiExec.exe /X{33CF58F5-48D8-4575-83D6-96F574E4D83A}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{3DB0448D-AD82-4923-B305-D001E521A964}] -> Packard Bell Power Management (Packard Bell) -> "C:\Program Files (x86)\InstallShield Installation Information\{3DB0448D-AD82-4923-B305-D001E521A964}\setup.exe" -runfromtemp -l0x40c -removeonly
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}] -> Intel(R) Rapid Storage Technology (Intel Corporation) -> C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}] -> Nero StartSmart OEM (Nero AG) -> MsiExec.exe /X{4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{56C049BE-79E9-4502-BEA7-9754A3E60F9B}] -> neroxml (Nero AG) -> MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{595A3116-40BB-4E0F-A2E8-D7951DA56270}] -> NeroExpress (Nero AG) -> MsiExec.exe /X{595A3116-40BB-4E0F-A2E8-D7951DA56270}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{5AF4B3C4-C393-48D7-AC7E-8E7615579548}] -> Adobe AIR (Adobe Systems Incorporated) -> MsiExec.exe /I{5AF4B3C4-C393-48D7-AC7E-8E7615579548}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}] -> Nikon Movie Editor (Nikon) -> 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{6068A42A-C1CF-45F2-9859-5DB16287FE5D}] -> msvcrt_installer (SAH) -> MsiExec.exe /I{6068A42A-C1CF-45F2-9859-5DB16287FE5D}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{612C34C7-5E90-47D8-9B5C-0F717DD82726}] -> swMSM (Adobe Systems, Inc) -> MsiExec.exe /I{612C34C7-5E90-47D8-9B5C-0F717DD82726}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}] -> Packard Bell Social Networks (CyberLink Corp.) -> "C:\Program Files (x86)\InstallShield Installation Information\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}\setup.exe" /z-uninstall
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}] -> Intel(R) Management Engine Components (Intel Corporation) -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell] -> WildTangent Games App (Packard Bell Games) (WildTangent) -> "C:\Program Files (x86)\WildTangent Games\Touchpoints\packardbell\Uninstall.exe"
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{72B776E5-4530-4C4B-9453-751DF87D9D93}] -> Backup Manager Basic (NewTech Infosystems) -> C:\Program Files (x86)\InstallShield Installation Information\{72B776E5-4530-4C4B-9453-751DF87D9D93}\setup.exe -runfromtemp -l0x0409
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{7748AC8C-18E3-43BB-959B-088FAEA16FB2}] -> Nero StartSmart (Nero AG) -> MsiExec.exe /X{7748AC8C-18E3-43BB-959B-088FAEA16FB2}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{7F811A54-5A09-4579-90E1-C93498E230D9}] -> Packard Bell Recovery Management (Packard Bell) -> "C:\Program Files (x86)\InstallShield Installation Information\{7F811A54-5A09-4579-90E1-C93498E230D9}\setup.exe" -runfromtemp -l0x40c -removeonly
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{83202942-84B3-4C50-8622-B8C0AA2D2885}] -> Nero Express Help (Nero AG) -> MsiExec.exe /X{83202942-84B3-4C50-8622-B8C0AA2D2885}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{869200DB-287A-4DC0-B02B-2B6787FBCD4C}] -> Nero DiscSpeed (Nero AG) -> MsiExec.exe /X{869200DB-287A-4DC0-B02B-2B6787FBCD4C}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{A047FE02-C91C-41CB-898C-4ED21B86025A}] -> ToolbarFR (Orange) -> MsiExec.exe /I{A047FE02-C91C-41CB-898C-4ED21B86025A}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}] -> ImagXpress (Nero AG) -> 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}] -> Google Update Helper (Google Inc.) -> MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1033-7B44-AB0000000001}] -> Adobe Reader XI (11.0.02) (Adobe Systems Incorporated) -> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-AB0000000001}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{B014EE44-9197-4513-9613-71E6EB1B514E}] -> Nikon Message Center 2 (Nikon) -> MsiExec.exe /X{B014EE44-9197-4513-9613-71E6EB1B514E}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}] -> Advertising Center (Nero AG) -> MsiExec.exe /X{B2EC4A38-B545-4A00-8214-13FE0E915E6D}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{BB8B979E-E336-47E7-96BC-1031C1B94561}] ->  () -> 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}] -> Nero ControlCenter (Nero AG) -> MsiExec.exe /X{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}] -> Nero Online Upgrade (Nero AG) -> MsiExec.exe /X{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{CC019E3F-59D2-4486-8D4B-878105B62A71}] -> Nero DiscSpeed Help (Nero AG) -> MsiExec.exe /X{CC019E3F-59D2-4486-8D4B-878105B62A71}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{DABFD34E-BE68-4BC6-9254-5D7A7FF76B99}] -> ArcSoft Panorama Maker 6 (ArcSoft) -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{DABFD34E-BE68-4BC6-9254-5D7A7FF76B99}\Setup.exe" -l0x40c 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{DD89CE29-BC88-40C6-A845-E2548682C5D6}] -> Alcor Micro USB Card Reader (Alcor Micro Corp.) -> 
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{E5C7D048-F9B4-4219-B323-8BDB01A2563D}] -> Nero DriveSpeed Help (Nero AG) -> MsiExec.exe /X{E5C7D048-F9B4-4219-B323-8BDB01A2563D}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{E8A80433-302B-4FF1-815D-FCC8EAC482FF}] -> Nero Installer (Nero AG) -> MsiExec.exe /X{E8A80433-302B-4FF1-815D-FCC8EAC482FF}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}] -> Packard Bell Updater (Packard Bell) -> "C:\Program Files (x86)\InstallShield Installation Information\{EE171732-BEB4-4576-887D-CB62727F01CA}\setup.exe" -runfromtemp -l0x40c -removeonly
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}] -> Intel(R) Graphics Media Accelerator Driver (Intel Corporation) -> C:\Program Files (x86)\Intel\Intel(R) Graphics Media Accelerator Driver\Uninstall\setup.exe -uninstall
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}] -> Realtek High Definition Audio Driver (Realtek Semiconductor Corp.) -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe"  -removeonly
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{F1CECE09-7CBE-4E98-B435-DA87CDA86167}] -> Skype™ 5.5 (Skype Technologies S.A.) -> MsiExec.exe /X{F1CECE09-7CBE-4E98-B435-DA87CDA86167}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}] -> Nero ControlCenter (Nero AG) -> MsiExec.exe /X{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
[HKLM\Software\Microsoft\windows\CurrentVersion\Uninstall\{FBCDFD61-7DCF-4E71-9226-873BA0053139}] -> Nero InfoTool (Nero AG) -> MsiExec.exe /X{FBCDFD61-7DCF-4E71-9226-873BA0053139}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Adobe AIR] -> Adobe AIR (Adobe Systems Incorporated) -> c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Adobe Flash Player ActiveX] -> Adobe Flash Player 11 ActiveX (Adobe Systems Incorporated) -> C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_7_700_182_ActiveX.exe -maintain activex
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Adobe Flash Player Plugin] -> Adobe Flash Player 11 Plugin (Adobe Systems Incorporated) -> C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_7_700_182_Plugin.exe -maintain plugin
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Adobe Photoshop Elements 8.0] -> Adobe Photoshop Elements 8.0 (Adobe Systems Incorporated) -> msiexec /i {17DFE37C-064E-4834-AD8F-A4B2B4DF68F8}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Adobe Shockwave Player] -> Adobe Shockwave Player 12.0 (Adobe Systems, Inc.) -> "C:\Windows\SysWOW64\Adobe\Shockwave 12\uninstaller.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Advanced SystemCare 6_is1] -> Advanced SystemCare 6 (IObit) -> "C:\Program Files (x86)\IObit\Advanced SystemCare 6\unins000.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Ares] -> Ares 2.1.9 (Ares Development Group) -> "C:\Program Files (x86)\Ares\uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\avast] -> avast! Free Antivirus (AVAST Software) -> C:\Program Files\AVAST Software\Avast\aswRunDll.exe "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Connection Manager] ->  () -> 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\eMule] -> eMule () -> "C:\Program Files (x86)\eMule\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\FileHippo.com] -> FileHippo.com Update Checker () -> "C:\Program Files (x86)\FileHippo.com\uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Identity Card] -> Identity Card (Packard Bell) -> C:\Program Files (x86)\Packard Bell\Identity Card\Uninstall.exe
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\ilividtoolbargaw] -> Search-Results Toolbar (APN LLC) -> C:\PROGRA~2\SEARCH~1\Datamngr\SRTOOL~1\uninstall.exe
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\InstallShield Uninstall Information] ->  () -> 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\InstallShield_{64EF903E-D00A-414C-94A4-FBA368FFCDC9}] -> Packard Bell Social Networks (CyberLink Corp.) -> "C:\Program Files (x86)\InstallShield Installation Information\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}\setup.exe" /z-uninstall
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}] -> Packard Bell MyBackup (NewTech Infosystems) -> C:\Program Files (x86)\InstallShield Installation Information\{72B776E5-4530-4C4B-9453-751DF87D9D93}\setup.exe -runfromtemp -l0x0409
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\InstallShield_{DD89CE29-BC88-40C6-A845-E2548682C5D6}] -> Alcor Micro USB Card Reader (Alcor Micro Corp.) -> C:\Program Files (x86)\InstallShield Installation Information\{DD89CE29-BC88-40C6-A845-E2548682C5D6}\setup.exe
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\IObit Malware Fighter_is1] -> IObit Malware Fighter (IObit) -> "C:\Program Files (x86)\IObit\IObit Malware Fighter\unins000.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\LManager] -> Launch Manager (Packard Bell) -> C:\Windows\UNINSTLMv4.EXE LMv4.UNI
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Malwarebytes' Anti-Malware_is1] -> Malwarebytes' Anti-Malware version 1.51.0.1200 (Malwarebytes Corporation) -> "C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Mozilla Firefox 10.0.5 (x86 en-US)] -> Mozilla Firefox 10.0.5 (x86 en-US) (Mozilla) -> C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\OrangeUpdateManager] -> Orange update (Orange) -> "C:\Program Files (x86)\Orange\OrangeUpdate\Manager\GUIuninstaller.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Packard Bell InfoCentre] -> Packard Bell InfoCentre (Packard Bell) -> C:\Program Files (x86)\Packard Bell\InfoCentre\Uninstall.exe
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Packard Bell Registration] -> Packard Bell Registration (Packard Bell) -> C:\Program Files (x86)\Packard Bell\Registration\Uninstall.exe
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Packard Bell Screensaver] -> Packard Bell ScreenSaver (Packard Bell ) -> C:\Program Files (x86)\Packard Bell\Screensaver\Uninstall.exe
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Packard Bell Welcome Center] -> Welcome Center (Packard Bell) -> C:\Program Files (x86)\Packard Bell\Welcome Center\Uninstall.exe
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Picasa 3] -> Picasa 3 (Google, Inc.) -> "C:\Program Files (x86)\Google\Picasa3\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\Smart Defrag 2_is1] -> Smart Defrag 2 (IObit) -> "C:\Program Files (x86)\IObit\Smart Defrag 2\unins000.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\uTorrent] -> µTorrent () -> "C:\Program Files (x86)\uTorrent\uTorrent.exe" /UNINSTALL
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\VLC media player] -> VLC media player 2.0.4 (VideoLAN) -> C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WIC] ->  () -> 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WildTangent packardbell Master Uninstall] -> Packard Bell Games (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WildTangentGameProvider-packardbell-main] ->  (WildTangent, Inc.) -> "C:\Program Files (x86)\Packard Bell Games\Game Explorer Categories - main\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WildTangentGDF-packardbell-clubpenguin] ->  (WildTangent, Inc.) -> "C:\Program Files (x86)\Packard Bell Games\Web Link - Club Penguin\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088216] -> Agatha Christie - Death on the Nile (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Agatha Christie - Death on the Nile\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088226] -> Bejeweled 2 Deluxe (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Bejeweled 2 Deluxe\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088228] -> Build-a-lot 2 (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Build-a-lot 2\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088235] -> Chuzzle Deluxe (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Chuzzle Deluxe\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088238] -> Diner Dash 2 Restaurant Rescue (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Diner Dash 2 Restaurant Rescue\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088260] -> Farm Frenzy (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Farm Frenzy\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088268] -> Insaniquarium Deluxe (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Insaniquarium Deluxe\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088269] -> Jewel Quest Solitaire 2 (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Jewel Quest Solitaire 2\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088283] -> Plants vs. Zombies (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Plants vs. Zombies\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088292] -> Zuma Deluxe (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Zuma Deluxe\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088416] -> FATE (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\FATE\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088420] -> Final Drive Nitro (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Final Drive Nitro\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088448] -> John Deere Drive Green (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\John Deere Drive Green\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088452] -> Penguins! (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Penguins!\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088456] -> Polar Bowler (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Polar Bowler\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088460] -> Polar Golfer (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Polar Golfer\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088508] -> Virtual Villagers 4 - The Tree of Life (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Virtual Villagers 4 - The Tree of Life\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\WT088531] -> Zuma's Revenge (WildTangent) -> "C:\Program Files (x86)\Packard Bell Games\Zuma's Revenge\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{12A1B519-5934-4508-ADBD-335347B0DC87}] -> Video Web Camera (Chicony Electronics Co.,Ltd.) -> "C:\Program Files (x86)\InstallShield Installation Information\{12A1B519-5934-4508-ADBD-335347B0DC87}\Setup.exe" -runfromtemp -l0x040c  -removeonly
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{16337ff7-9fb9-4476-837b-acc962fc4bc5}] -> Nero 9 Essentials (Nero AG) -> C:\Program Files (x86)\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe  REMOVESERIALNUMBER="2M02-K0C4-CM6L-227P-0EU0-651U-T39T-6337-W4KW-P288-2P9U-AZ0M-1E68-AE4Z-1A7E-7T4H-0000"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{17DFE37C-064E-4834-AD8F-A4B2B4DF68F8}] -> Adobe Photoshop Elements 8.0 (Adobe Systems Incorporated) -> 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}] -> Nero InfoTool Help (Nero AG) -> MsiExec.exe /X{20400DBD-E6DB-45B8-9B6B-1DD7033818EC}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{2348B586-C9AE-46CE-936C-A68E9426E214}] -> Nero StartSmart Help (Nero AG) -> MsiExec.exe /X{2348B586-C9AE-46CE-936C-A68E9426E214}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83216037FB}] ->  () -> 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F83216039FB}] ->  () -> 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{287ECFA4-719A-2143-A09B-D6A12DE54E40}] -> Acrobat.com (Adobe Systems Incorporated) -> MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App] -> Update Installer for WildTangent Games App (WildTangent) -> "C:\Program Files (x86)\WildTangent Games\App\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1] -> lightshot-3.4.0.20 (Skillbrains) -> "C:\Users\Mareva\AppData\Local\Skillbrains\lightshot\unins000.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{33CF58F5-48D8-4575-83D6-96F574E4D83A}] -> Nero DriveSpeed (Nero AG) -> MsiExec.exe /X{33CF58F5-48D8-4575-83D6-96F574E4D83A}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{3DB0448D-AD82-4923-B305-D001E521A964}] -> Packard Bell Power Management (Packard Bell) -> "C:\Program Files (x86)\InstallShield Installation Information\{3DB0448D-AD82-4923-B305-D001E521A964}\setup.exe" -runfromtemp -l0x40c -removeonly
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}] -> Intel(R) Rapid Storage Technology (Intel Corporation) -> C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}] -> Nero StartSmart OEM (Nero AG) -> MsiExec.exe /X{4D43D635-6FDA-4FA5-AA9B-23CF73D058EA}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{56C049BE-79E9-4502-BEA7-9754A3E60F9B}] -> neroxml (Nero AG) -> MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{595A3116-40BB-4E0F-A2E8-D7951DA56270}] -> NeroExpress (Nero AG) -> MsiExec.exe /X{595A3116-40BB-4E0F-A2E8-D7951DA56270}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{5AF4B3C4-C393-48D7-AC7E-8E7615579548}] -> Adobe AIR (Adobe Systems Incorporated) -> MsiExec.exe /I{5AF4B3C4-C393-48D7-AC7E-8E7615579548}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}] -> Nikon Movie Editor (Nikon) -> 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{6068A42A-C1CF-45F2-9859-5DB16287FE5D}] -> msvcrt_installer (SAH) -> MsiExec.exe /I{6068A42A-C1CF-45F2-9859-5DB16287FE5D}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{612C34C7-5E90-47D8-9B5C-0F717DD82726}] -> swMSM (Adobe Systems, Inc) -> MsiExec.exe /I{612C34C7-5E90-47D8-9B5C-0F717DD82726}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}] -> Packard Bell Social Networks (CyberLink Corp.) -> "C:\Program Files (x86)\InstallShield Installation Information\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}\setup.exe" /z-uninstall
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}] -> Intel(R) Management Engine Components (Intel Corporation) -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-packardbell] -> WildTangent Games App (Packard Bell Games) (WildTangent) -> "C:\Program Files (x86)\WildTangent Games\Touchpoints\packardbell\Uninstall.exe"
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{72B776E5-4530-4C4B-9453-751DF87D9D93}] -> Backup Manager Basic (NewTech Infosystems) -> C:\Program Files (x86)\InstallShield Installation Information\{72B776E5-4530-4C4B-9453-751DF87D9D93}\setup.exe -runfromtemp -l0x0409
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{7748AC8C-18E3-43BB-959B-088FAEA16FB2}] -> Nero StartSmart (Nero AG) -> MsiExec.exe /X{7748AC8C-18E3-43BB-959B-088FAEA16FB2}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{7F811A54-5A09-4579-90E1-C93498E230D9}] -> Packard Bell Recovery Management (Packard Bell) -> "C:\Program Files (x86)\InstallShield Installation Information\{7F811A54-5A09-4579-90E1-C93498E230D9}\setup.exe" -runfromtemp -l0x40c -removeonly
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{83202942-84B3-4C50-8622-B8C0AA2D2885}] -> Nero Express Help (Nero AG) -> MsiExec.exe /X{83202942-84B3-4C50-8622-B8C0AA2D2885}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{869200DB-287A-4DC0-B02B-2B6787FBCD4C}] -> Nero DiscSpeed (Nero AG) -> MsiExec.exe /X{869200DB-287A-4DC0-B02B-2B6787FBCD4C}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{A047FE02-C91C-41CB-898C-4ED21B86025A}] -> ToolbarFR (Orange) -> MsiExec.exe /I{A047FE02-C91C-41CB-898C-4ED21B86025A}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}] -> ImagXpress (Nero AG) -> 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}] -> Google Update Helper (Google Inc.) -> MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-1033-7B44-AB0000000001}] -> Adobe Reader XI (11.0.02) (Adobe Systems Incorporated) -> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-AB0000000001}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{B014EE44-9197-4513-9613-71E6EB1B514E}] -> Nikon Message Center 2 (Nikon) -> MsiExec.exe /X{B014EE44-9197-4513-9613-71E6EB1B514E}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{B2EC4A38-B545-4A00-8214-13FE0E915E6D}] -> Advertising Center (Nero AG) -> MsiExec.exe /X{B2EC4A38-B545-4A00-8214-13FE0E915E6D}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{BB8B979E-E336-47E7-96BC-1031C1B94561}] ->  () -> 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}] -> Nero ControlCenter (Nero AG) -> MsiExec.exe /X{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}] -> Nero Online Upgrade (Nero AG) -> MsiExec.exe /X{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{CC019E3F-59D2-4486-8D4B-878105B62A71}] -> Nero DiscSpeed Help (Nero AG) -> MsiExec.exe /X{CC019E3F-59D2-4486-8D4B-878105B62A71}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{DABFD34E-BE68-4BC6-9254-5D7A7FF76B99}] -> ArcSoft Panorama Maker 6 (ArcSoft) -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{DABFD34E-BE68-4BC6-9254-5D7A7FF76B99}\Setup.exe" -l0x40c 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{DD89CE29-BC88-40C6-A845-E2548682C5D6}] -> Alcor Micro USB Card Reader (Alcor Micro Corp.) -> 
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{E5C7D048-F9B4-4219-B323-8BDB01A2563D}] -> Nero DriveSpeed Help (Nero AG) -> MsiExec.exe /X{E5C7D048-F9B4-4219-B323-8BDB01A2563D}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{E8A80433-302B-4FF1-815D-FCC8EAC482FF}] -> Nero Installer (Nero AG) -> MsiExec.exe /X{E8A80433-302B-4FF1-815D-FCC8EAC482FF}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{EE171732-BEB4-4576-887D-CB62727F01CA}] -> Packard Bell Updater (Packard Bell) -> "C:\Program Files (x86)\InstallShield Installation Information\{EE171732-BEB4-4576-887D-CB62727F01CA}\setup.exe" -runfromtemp -l0x40c -removeonly
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}] -> Intel(R) Graphics Media Accelerator Driver (Intel Corporation) -> C:\Program Files (x86)\Intel\Intel(R) Graphics Media Accelerator Driver\Uninstall\setup.exe -uninstall
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}] -> Realtek High Definition Audio Driver (Realtek Semiconductor Corp.) -> RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe"  -removeonly
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{F1CECE09-7CBE-4E98-B435-DA87CDA86167}] -> Skype™ 5.5 (Skype Technologies S.A.) -> MsiExec.exe /X{F1CECE09-7CBE-4E98-B435-DA87CDA86167}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}] -> Nero ControlCenter (Nero AG) -> MsiExec.exe /X{F4041DCE-3FE1-4E18-8A9E-9DE65231EE36}
[HKLM\Software\Wow6432Node\Microsoft\windows\CurrentVersion\Uninstall\{FBCDFD61-7DCF-4E71-9226-873BA0053139}] -> Nero InfoTool (Nero AG) -> MsiExec.exe /X{FBCDFD61-7DCF-4E71-9226-873BA0053139}

¤¤¤¤¤¤¤¤¤¤ | Ports 


¤¤¤¤¤¤¤¤¤¤ | CLSID

[HKCR\CLSID\{00000300-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000303-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000304-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000305-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000306-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000308-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000309-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{0000030B-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000315-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000316-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000319-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{0000031A-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{0000031D-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000320-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{00000327-0000-0000-C000-000000000046}] - (.. - ..) - OLE32.DLL   
[HKCR\CLSID\{0000032E-0000-0000-C000-000000000046}] - (.. - ..) - ole32.dll   
[HKCR\CLSID\{0002E005-0000-0000-C000-000000000046}] - (.. - ..) - OLE32.DLL   
[HKCR\CLSID\{0002E006-0000-0000-C000-000000000046}] - (.. - ..) - OLE32.DLL   
[HKCR\CLSID\{00BB2764-6A77-11D0-A535-00C04FD7D062}] - (.. - ..) - shell32.dll   
[HKCR\CLSID\{0302A95D-FC12-47E9-8413-B453AE137785}] - (.Copyright © 1997-2006, Pegasus Imaging Corp. - ImagXpr7 Module.) - c:\Windows\SysWOW64\imagXpr7.dll   [04/07/2008 19:23:38]
[HKCR\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}] - (.Copyright 2007-2010 Google Inc. - Google Update.) - C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\psuser.dll   [17/02/2013 13:29:17]
[HKCR\CLSID\{057632B9-879F-4D20-AF84-4DCA93CFB08C}] - (.ArcSoft Copyright 2005 - EditHostDll Module.) - C:\PROGRA~2\ArcSoft\PANORA~1\uEditHostDll.dll   [02/09/2012 15:48:36]
[HKCR\CLSID\{0632FAE0-123D-4D91-9701-B24BEBA45E3A}] - (.Copyright© MainConcept GmbH "2010 - Sink DS Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_render_fileindex_ds.ax   [23/03/2011 02:45:52]
[HKCR\CLSID\{07DC68FA-A15D-4E44-93DE-645060C7B469}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{0944D16C-D0F4-4389-982A-A085595A9EB3}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{0AFC4BE0-0A56-4A08-B47D-9DAA0A322CC1}] - (.Copyright © 2010 MainConcept GmbH - Audio Converter DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_trans_audio_converter_ds.ax   [23/03/2011 02:45:00]
[HKCR\CLSID\{0CB91C4B-AAED-4D4A-8CB3-6FEEBE9F3A8A}] - (.Copyright © 2010 MainConcept GmbH - AVC/H.264 Encoder DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_enc_avc_ds.ax   [23/03/2011 02:35:18]
[HKCR\CLSID\{0D68D6D0-D93D-4D08-A30D-F00DD1F45B24}] - (.License: MPL 1.1/GPL 2.0/LGPL 2.1 - .) - C:\Program Files (x86)\Mozilla Firefox\AccessibleMarshal.dll   [04/09/2011 15:40:55]
[HKCR\CLSID\{14834D34-8CEE-459e-8520-2264EC46E099}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{15D633E2-AD00-465b-9EC7-F56B7CDF8E27}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\TipBand.dll   
[HKCR\CLSID\{15FD01A3-6E5D-4ECD-9EBD-1813CB3887A1}] - (.. - ..) - %windir%\system32\btpanui.dll   
[HKCR\CLSID\{1CEBDE3E-6B91-484A-AF48-5E4F4ED6B1E1}] - (.. - ..) - C:\Windows\System32\dmscript.dll   
[HKCR\CLSID\{1EF89626-358F-11D5-8071-0060082AE372}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{1EF89628-358F-11D5-8071-0060082AE372}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{1F1BFFD3-EEE0-4E2D-A209-6FBBC0019147}] - (.Copyright © 2010 MainConcept GmbH - AVC/H.264 Encoder DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_enc_avc_ds.ax   [23/03/2011 02:35:18]
[HKCR\CLSID\{1F8ED5AC-DE88-4A41-BC7F-893D3DECCEB6}] - (.Copyright © MainConcept GmbH 2010 - AAC audio decoder filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_dec_aac_ds.ax   [23/03/2011 02:37:14]
[HKCR\CLSID\{2060435E-AB52-49E1-A2EA-5D31645887CF}] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynCtrl.) - C:\Windows\SysWOW64\SynCtrl.dll   [03/12/2010 02:27:16]
[HKCR\CLSID\{206D8F65-689B-40D0-8F07-8D974CD8884B}] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynCtrl.) - C:\Windows\SysWOW64\SynCtrl.dll   [03/12/2010 02:27:16]
[HKCR\CLSID\{22222222-2222-2222-2222-220022342291}] - (.. - ..) - C:\Program Files (x86)\Vid-Saver\Vid-Saver.dll   
[HKCR\CLSID\{231D1CF6-C578-411D-9B9B-48264355805D}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Encryption Library.) - C:\Windows\SysWOW64\XceedCry.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{248AFB1A-27C4-4A30-BF45-6544146648BC}] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynCOM.) - C:\Windows\SysWOW64\SynCOM.dll   [03/12/2010 02:27:16]
[HKCR\CLSID\{27E7234F-429F-4787-AC8F-8AADDED01355}] - (.Copyright 1999-2006, Intel Corporation - igfxext Module.) - C:\Windows\SysWOW64\igfxexps32.DLL   [03/12/2010 02:26:41]
[HKCR\CLSID\{286F484D-375E-4458-A272-B138E2F80A6A}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{29A279CC-FBEC-44F8-8614-67B3DF1FCC84}] - (.Copyright © 1997-2006, Pegasus Imaging Corp. - ImagXpr7 Module.) - c:\Windows\SysWOW64\imagXpr7.dll   [04/07/2008 19:23:38]
[HKCR\CLSID\{29AAD3F2-F7A6-4F7E-A6C0-96F674F47142}] - (.Copyright 2007-2010 Google Inc. - Google Update.) - C:\Program Files (x86)\Google\Update\1.3.21.135\psmachine.dll   [23/04/2013 15:28:45]
[HKCR\CLSID\{2A833A93-6641-11D3-B5FE-00104B0A87C2}] - (.Copyright (C) Synaptics Incorporated 1996-2009 - Synaptics TouchPad Interfaces.) - C:\Windows\SysWOW64\SynTPCOM.dll   [03/12/2010 02:27:17]
[HKCR\CLSID\{2B324061-0C5D-424F-9221-A3D6E28CDFAC}] - (.Copyright © 1997-2006, Pegasus Imaging Corp. - ImagXpr7 Module.) - c:\Windows\SysWOW64\imagXpr7.dll   [04/07/2008 19:23:38]
[HKCR\CLSID\{2C5F9B72-7148-4D97-BFC9-68A0E076BEBD}] - (.. - ..) - C:\Windows\System32\dmscript.dll   
[HKCR\CLSID\{2D3B15BF-E42F-40F6-93E3-C44F72372892}] - (.Copyright© MainConcept GmbH "2010 - Sink DS Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_render_fileindex_ds.ax   [23/03/2011 02:45:52]
[HKCR\CLSID\{2D594C78-EC80-11D4-8016-0060082AE372}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{2E1AE5DF-5A6F-420A-9B7B-41E5BA8FA36D}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{2FE8F810-B2A5-11d0-A787-0000F803ABFC}] - (.. - ..) - C:\Windows\system32\dplayx.dll   
[HKCR\CLSID\{3037B4CD-A40B-401B-B676-2017EE8FAFF4}] - (.. - ..) - "C:\Program Files (x86)\Windows NT\Accessories\WordpadFilter.dll"   
[HKCR\CLSID\{32714800-2E5F-11d0-8B85-00AA0044F941}] - (.. - ..) - %ProgramFiles(x86)%\Windows Mail\wabfind.dll   
[HKCR\CLSID\{33333333-3333-3333-3333-330033343391}] - (.. - ..) - C:\Program Files (x86)\Vid-Saver\Vid-Saver.dll   
[HKCR\CLSID\{3429E395-176B-4a0a-863D-FCA6B19073BA}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{343D770D-7788-47c2-B62A-B7C4CED925CB}] - (.. - ..) - C:\Windows\SysWOW64\wpcmig.dll   
[HKCR\CLSID\{34c219bd-85c1-4338-95e8-788a36901dc2}] - (.. - ..) - %windir%\System32\wpdwcn.dll   
[HKCR\CLSID\{376C906C-B019-47EC-A62C-3C361E22150D}] - (.Copyright (C) 2011, Nikon Inc. - NkmTextFilter.) - C:\Program Files (x86)\Nikon\ViewNX 2\Nikon Movie Editor\NkmTextFilter.ax   [05/07/2012 21:15:00]
[HKCR\CLSID\{3831331E-0D11-4716-871D-68F3B11D23C9}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{3968ACC4-3B6D-4AEA-A74F-9AF96D81C6BD}] - (.Copyright (C) 2011-2012 Nikon Corporation - Nikon MOV Demultiplexer.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\NkmlMovDemux.ax   [14/05/2012 09:45:50]
[HKCR\CLSID\{39C42C60-85F5-40ED-BF39-975A0AA0B2A4}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{3B2B6775-70B6-45AF-8DEA-A209C69559F3}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{3B2D194D-F107-4489-ABF8-57A125275E4E}] - (.Copyright (C) 2008 - Application ContextH.) - C:\Windows\system32\BWContextHandler.dll   [14/07/2009 01:57:57]
[HKCR\CLSID\{3B77D79A-CE78-4854-9FC4-AE1400D001DC}] - (.Copyright © 1997-2006, Pegasus Imaging Corp. - ImagXpr7 Module.) - c:\Windows\SysWOW64\imagXpr7.dll   [04/07/2008 19:23:38]
[HKCR\CLSID\{3BE68CD0-D915-4E9E-A854-E79BD5943FEA}] - (.Copyright© MainConcept GmbH 2010 - MJPEG Decoder Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_dec_mjpg_ds.ax   [23/03/2011 02:43:46]
[HKCR\CLSID\{3BE68CD1-D915-4E9E-A854-E79BD5943FEA}] - (.Copyright© MainConcept GmbH 2010 - MJPEG Encoder Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_enc_mjpg_ds.ax   [23/03/2011 02:44:12]
[HKCR\CLSID\{3BE68CD2-D915-4E9E-A854-E79BD5943FEA}] - (.Copyright© MainConcept GmbH 2010 - MJPEG Decoder Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_dec_mjpg_ds.ax   [23/03/2011 02:43:46]
[HKCR\CLSID\{3BE68CD3-D915-4E9E-A854-E79BD5943FEA}] - (.Copyright© MainConcept GmbH 2010 - MJPEG Encoder Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_enc_mjpg_ds.ax   [23/03/2011 02:44:12]
[HKCR\CLSID\{3C305196-50DB-11D3-9CFE-00C04FD930C5}] - (.. - ..) - ddraw.dll   
[HKCR\CLSID\{3DCD2BC5-8489-48AE-891F-90C8B2F19F56}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{3E0FA044-926C-42D9-BA12-EF16E980913B}] - (. - .) - C:\Program Files (x86)\Ares\AsyncEx.ax   [24/04/2007 03:11:18]
[HKCR\CLSID\{3F037241-414E-11D1-A7CE-00A0C913F73C}] - (.. - ..) - C:\Windows\System32\dmstyle.dll   
[HKCR\CLSID\{4062C116-0270-11D3-8BCB-00600893B1B6}] - (.. - ..) - C:\Windows\System32\dmscript.dll   
[HKCR\CLSID\{4108FA85-3586-11D3-8BD7-00600893B1B6}] - (.. - ..) - C:\Windows\System32\dmscript.dll   
[HKCR\CLSID\{4169044D-6BA4-4661-B7D6-E29274F1F458}] - (.Copyright (C) 2010, WildTangent, Inc. - WildTangent Games App Presence Detector.) - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\wtapp_PresenceDetector.dll   [22/12/2011 18:52:08]
[HKCR\CLSID\{417BAB8B-9D22-4A88-9DA0-98C4AB6745D5}] - (.. - ..) - %windir%\System32\wpdwcn.dll   
[HKCR\CLSID\{422A3AF6-0B1D-42CB-AAF9-7DFD8EB2FCEF}] - (. - .) - C:\Program Files (x86)\Ares\MP3Source.ax   [10/12/2004 13:51:50]
[HKCR\CLSID\{43FD1592-3A84-11D5-8077-0060082AE372}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{43FD1594-3A84-11D5-8077-0060082AE372}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{43FD1596-3A84-11D5-8077-0060082AE372}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{43FD1598-3A84-11D5-8077-0060082AE372}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{444EC86F-03BD-4e9b-9FCD-A87407A78710}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{4516EC43-8F20-11D0-9B6D-0000C0781BC3}] - (.. - ..) - C:\Windows\system32\d3dxof.dll   
[HKCR\CLSID\{457BC604-48ED-451E-8051-A46EA7B611C4}] - (.. - ..) - C:\Program Files (x86)\Google\Update\1.3.21.123\psmachine.dll   
[HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] - (.Copyright (c) 2013 AVAST Software - avast! Shell Extension.) - C:\Program Files\AVAST Software\Avast\ashShell.dll   [23/04/2013 15:20:16]
[HKCR\CLSID\{47D7ED16-3901-11D5-8074-0060082AE372}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{4BE0537B-5C19-11D3-8BDC-00600893B1B6}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{4EE17959-931E-49E4-A2C6-977ECF3628F3}] - (.. - ..) - C:\Windows\System32\dmscript.dll   
[HKCR\CLSID\{513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}] - (.. - ..) - %windir%\system32\acppage.dll   
[HKCR\CLSID\{52C01A76-19E2-4A50-AE8A-38FFBCCF9182}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{55A8FD00-4288-11D3-9BD1-8A0D61C88835}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{56AB2DFF-B78D-4CD5-A731-F16657C29906}] - (.Copyright © 2010 MainConcept GmbH - MP4 Multiplexer Direct Show Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_mux_mp4_ds.ax   [23/03/2011 02:42:10]
[HKCR\CLSID\{593817A0-7DB3-11CF-A2DE-00AA00B93356}] - (.. - ..) - ddraw.dll   
[HKCR\CLSID\{5954EA75-9BFA-461A-BD34-CEA3A861FF19}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{5D2318FC-BD98-4110-8453-5B60E04B4EDF}] - (.Copyright © 2010 MainConcept GmbH - MP4 Demultiplexer Direct Show Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_demux_mp4_ds.ax   [23/03/2011 02:41:38]
[HKCR\CLSID\{5ED98377-87A3-4d86-81F7-3E46E0342833}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{6047F837-D527-467E-9DC1-6D51F92D9E45}] - (.. - ..) - "C:\Program Files (x86)\Windows NT\Accessories\WordpadFilter.dll"   
[HKCR\CLSID\{640167b4-59b0-47a6-b335-a6b3c0695aea}] - (.. - ..) - C:\Windows\system32\audiodev.dll   
[HKCR\CLSID\{667955AD-6B3B-43CA-B949-BC69B5BAFF7F}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{69B007A2-F262-4432-A8C7-04BCD3289EAD}] - (.Copyright 2010 - Sonix Property Wrapper.) - C:\Windows\SysWOW64\snpropwp.dll   [02/12/2010 17:51:29]
[HKCR\CLSID\{6D3CF4F3-C2F3-46E7-A126-3E53102A6B91}] - (.Copyright © 1997-2006, Pegasus Imaging Corp. - ImagXpr7 Module.) - c:\Windows\SysWOW64\imagXpr7.dll   [04/07/2008 19:23:38]
[HKCR\CLSID\{6D4A3650-628D-11D2-AE0F-006097B01411}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{6F073EC2-7F33-466B-8E59-31F68F4309EE}] - (.Copyright © 2010 MainConcept GmbH - AAC Encoder DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_enc_aac_ds.ax   [23/03/2011 02:37:40]
[HKCR\CLSID\{71A27032-C7D8-11D2-BEF8-525400DFB47A}] - (.<none> - Subclassing and Timer Assistant, modified for configurable message response, multi control support and bug fixed for timer errors..) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\ssubtmr6.dll   [03/03/2011 14:04:12]
[HKCR\CLSID\{71A27034-C7D8-11D2-BEF8-525400DFB47A}] - (.<none> - Subclassing and Timer Assistant, modified for configurable message response, multi control support and bug fixed for timer errors..) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\ssubtmr6.dll   [03/03/2011 14:04:12]
[HKCR\CLSID\{73C0325A-D3BF-48AF-9F37-1589CC58E788}] - (.Copyright (C) 2009, Intel Corporation. - MEProv Dynamic Link Library.) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\MEWMIProv\MeProv.dll   [02/12/2010 17:48:00]
[HKCR\CLSID\{743B5D60-628D-11D2-AE0F-006097B01411}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{743F1DC6-5ABA-429F-8BDF-C54D03253DC2}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{74ABD359-DD57-46b2-B459-B8FC803E67D4}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{762EC429-1A5D-4AB8-844A-9A552E1241DA}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{79BA9E00-B6EE-11D1-86BE-00C04FBF8FEF}] - (.. - ..) - C:\Windows\System32\dmband.dll   
[HKCR\CLSID\{7BFC2BD7-0937-41EA-8872-CE3B27E08F84}] - (.Copyright (c) 2013 AVAST Software - avast! Script Blocking library for Windows Scripting Interface.) - C:\Program Files\AVAST Software\Avast\AhAScr.dll   [23/04/2013 15:20:16]
[HKCR\CLSID\{7EC04D5B-19A8-45EE-BCB0-6FE0067F9468}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Encryption Library.) - C:\Windows\SysWOW64\XceedCry.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{7F852CAF-5F49-449A-A95F-DD65FF839A4C}] - (.Copyright (C) 2011-2012 Nikon Corporation - Nikon MOV Multiplexer.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\NkmlMovMux.ax   [14/05/2012 09:45:50]
[HKCR\CLSID\{7FB13A4C-3871-4FA2-B99E-46F16AAC47E0}] - (.Copyright © 2010 MainConcept GmbH - AAC Encoder DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_enc_aac_ds.ax   [23/03/2011 02:37:40]
[HKCR\CLSID\{7FDC193C-2E9A-4E14-943E-4EB4364F38C1}] - (.Copyright © MainConcept GmbH 2010 - AAC audio decoder filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_dec_aac_ds.ax   [23/03/2011 02:37:14]
[HKCR\CLSID\{80175A47-8856-47C0-9490-508AFB1BE60F}] - (.Copyright (C) 2011-2012 Nikon Corporation - Nikon MOV Demultiplexer.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\NkmlMovDemux.ax   [14/05/2012 09:45:50]
[HKCR\CLSID\{809C453C-F7DB-4154-AA2D-561D8FC72495}] - (.Copyright © 2010 MainConcept GmbH - MP4 Demultiplexer Direct Show Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_demux_mp4_ds.ax   [23/03/2011 02:41:38]
[HKCR\CLSID\{810B5013-E88D-11D2-8BC1-00600893B1B6}] - (.. - ..) - C:\Windows\System32\dmscript.dll   
[HKCR\CLSID\{8293C13F-044A-4153-9A03-D9357541F65C}] - (.Copyright© MainConcept GmbH 2010 - AVC/H.264 Decoder DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_dec_avc_ds.ax   [23/03/2011 02:34:48]
[HKCR\CLSID\{88EEBD3A-9091-44b8-92A7-F0D595422D90}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{8913C82B-385B-48c1-8AE0-5D837DB4ADC5}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{89A502FC-857B-4698-A0B7-027192002F9E}] - (.Copyright (C) 2008 - Application ContextH.) - C:\Windows\system32\BWContextHandler.dll   [14/07/2009 01:57:57]
[HKCR\CLSID\{8bf9a910-a8ff-457f-999f-a5ca10b4a885}] - (.. - ..) - SmartcardCredentialProvider.dll   
[HKCR\CLSID\{8DF59D73-22D2-48D2-B83F-84AAB1753F66}] - (.Copyright © 2010 MainConcept GmbH - MP4 Multiplexer Direct Show Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_mux_mp4_ds.ax   [23/03/2011 02:42:10]
[HKCR\CLSID\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}] - (.Copyright (c) 2013 AVAST Software - avast! WebRep Plugin.) - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll   [23/04/2013 15:20:16]
[HKCR\CLSID\{90FDB7BD-EB76-4AC9-8385-D1EE80BBCDCD}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Encryption Library.) - C:\Windows\SysWOW64\XceedCry.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{9345312C-D098-4BB1-B2B2-D529EB995173}] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynCOM.) - C:\Windows\SysWOW64\SynCOM.dll   [03/12/2010 02:27:16]
[HKCR\CLSID\{934A9523-A3CA-4BC5-ADA0-D6D95D979421}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{939B7964-D38D-4E3F-B0A9-E071F8C3911A}] - (.Copyright © 2010 MainConcept GmbH - AVC/H.264 Encoder DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_enc_avc_ds.ax   [23/03/2011 02:35:18]
[HKCR\CLSID\{94596c7e-3744-41ce-893e-bbf09122f76a}] - (.. - ..) - SmartcardCredentialProvider.dll   
[HKCR\CLSID\{995C1CF5-54FF-11D3-8BDA-00600893B1B6}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{9B3CAEB3-2581-4911-B7CF-1CD1CA5D4657}] - (.Copyright © 2010 MainConcept GmbH - Audio Converter DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_trans_audio_converter_ds.ax   [23/03/2011 02:45:00]
[HKCR\CLSID\{9BE31822-FDAD-461B-AD51-BE1D1C159921}] - (. - .) - C:\Program Files (x86)\VideoLAN\VLC\axvlc.dll   [15/10/2012 22:27:56]
[HKCR\CLSID\{9C042297-D1CD-4F0D-B1AB-9F48AD6A6DFF}] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynCOM.) - C:\Windows\SysWOW64\SynCOM.dll   [03/12/2010 02:27:16]
[HKCR\CLSID\{9CEE304E-DC6C-11D2-B561-00A0C92E6848}] - (.Copyright 1999-2006, Intel Corporation - igfxdev Module.) - C:\Windows\SysWOW64\igfxdv32.dll   [03/12/2010 02:26:41]
[HKCR\CLSID\{9D6AA569-9F30-41AD-885A-346685C74928}] - (.Copyright 2007-2010 Google Inc. - Google Update.) - C:\Program Files (x86)\Google\Update\1.3.21.135\psmachine.dll   [23/04/2013 15:28:45]
[HKCR\CLSID\{9DF96355-4956-43ED-8DF2-ED551364FC16}] - (.Copyright © 1997-2006, Pegasus Imaging Corp. - ImagXpr7 Module.) - c:\Windows\SysWOW64\imagXpr7.dll   [04/07/2008 19:23:38]
[HKCR\CLSID\{9E9EA8FD-501A-4D36-B5DA-F000A4C45DF2}] - (.Copyright © 1997-2006, Pegasus Imaging Corp. - ImagXpr7 Module.) - c:\Windows\SysWOW64\imagXpr7.dll   [04/07/2008 19:23:38]
[HKCR\CLSID\{9FBF9E45-974F-4CBD-A58E-12D7AC1918EF}] - (.Copyright © 2010 MainConcept GmbH - AAC Encoder DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_enc_aac_ds.ax   [23/03/2011 02:37:40]
[HKCR\CLSID\{9FF62CEC-3A69-11D5-8077-0060082AE372}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Streaming Compression Library.) - C:\Windows\SysWOW64\XceedSco.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{A02A65C1-50E4-4E5D-B9D0-625D5DEBC671}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Encryption Library.) - C:\Windows\SysWOW64\XceedCry.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{A0A61B00-96A6-457F-AA5E-AFA5167852E5}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Encryption Library.) - C:\Windows\SysWOW64\XceedCry.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{a220a2df-406f-4d68-9b62-995669ae0c92}] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynCtrl.) - C:\Windows\SysWOW64\SynCtrl.dll   [03/12/2010 02:27:16]
[HKCR\CLSID\{A48432C8-595C-48A9-8BB0-E5F480CC09B7}] - (.Copyright© MainConcept GmbH 2010 - AVC/H.264 Decoder DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_dec_avc_ds.ax   [23/03/2011 02:34:48]
[HKCR\CLSID\{A506EF88-9EFC-4522-BFE1-A8E886A64D80}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{A5704C37-40DA-49EF-904B-97E5F5F9B1C5}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{A6098E79-9C50-4F87-8973-5FB4532C93D8}] - (.. - ..) - %windir%\system32\btpanui.dll   
[HKCR\CLSID\{A861C6E2-FCFC-11D2-8BC9-00600893B1B6}] - (.. - ..) - C:\Windows\System32\dmscript.dll   
[HKCR\CLSID\{AA7E2086-CB55-11D2-8094-00104B1F9838}] - (.Copyright (C) 1990-2001 InstallShield Software Corporation - InstallShield (R) Ctor DLL.) - C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\ctor.dll   [02/09/2012 15:47:51]
[HKCR\CLSID\{AA7E2087-CB55-11D2-8094-00104B1F9838}] - (.Copyright (C) 1990-2001 InstallShield Software Corporation - InstallShield (R) Ctor DLL.) - C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\ctor.dll   [02/09/2012 15:47:51]
[HKCR\CLSID\{ABBA176C-C286-4A00-AE1A-45158F756CA3}] - (.Copyright (C) 2011, Nikon Inc.  - MediaDSF.) - C:\Program Files (x86)\Nikon\ViewNX 2\Nikon Movie Editor\MediaDSFilter.dll   [05/07/2012 21:15:00]
[HKCR\CLSID\{AFDC2B9A-F9EE-4426-AD70-EB74EC30853D}] - (.Copyright © 2010 MainConcept GmbH - MP4 Demultiplexer Direct Show Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_demux_mp4_ds.ax   [23/03/2011 02:41:38]
[HKCR\CLSID\{B1C98652-4F49-40A6-81F9-80365D129298}] - (.Copyright © MainConcept GmbH 2010 - AAC audio decoder filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_dec_aac_ds.ax   [23/03/2011 02:37:14]
[HKCR\CLSID\{B342E21B-AD7E-4568-AE3F-D0D844537A7A}] - (.Copyright (c) 2013 AVAST Software - AsOutExt Module.) - C:\Program Files\AVAST Software\Avast\asOutExt.dll   [23/04/2013 15:20:16]
[HKCR\CLSID\{b5866878-bd99-11d0-b04b-00c04fd91550}] - (.. - ..) - rpcrt4.dll   
[HKCR\CLSID\{B87799AF-2CE9-4DAA-93CF-65F002035369}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{BAE4D665-4EA1-11D3-8BDA-00600893B1B6}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{BBA63CAC-9913-4A13-9212-E97BB70C05C9}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Encryption Library.) - C:\Windows\SysWOW64\XceedCry.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{BBC73C94-337C-43CC-B52C-31EB9FA34013}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}] - (.Copyright 2007-2010 Google Inc. - Google Update.) - C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll   [17/02/2013 13:29:19]
[HKCR\CLSID\{C3271080-C57A-4520-8066-337AD212D7E0}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Encryption Library.) - C:\Windows\SysWOW64\XceedCry.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{C406F816-318D-4F7D-81CB-BA93CA7B70D5}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}] - (.Copyright 2007-2010 Google Inc. - Google Update.) - C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\npGoogleUpdate3.dll   [17/02/2013 13:29:19]
[HKCR\CLSID\{C5DA1F2B-B2BF-4DFC-BC9A-439133543A67}] - (.Copyright © 1998-2004 Steve McMahon for vbAccelerator Ltd. - vbAccelerator VB6 SGrid Control 2.0.) - C:\Program Files (x86)\Malwarebytes' Anti-Malware\vbalsgrid6.ocx   [03/03/2011 14:04:12]
[HKCR\CLSID\{C70EB77F-EFD4-4678-A27B-BF1648F30D04}] - (.. - ..) - C:\Windows\System32\dmscript.dll   
[HKCR\CLSID\{C9CD1A93-D7B4-11D2-80C5-00104B1F6CEA}] - (.Copyright (C) 1990-2001 InstallShield Software Corporation - InstallShield (R) User DLL.) - C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll   [02/09/2012 15:47:51]
[HKCR\CLSID\{CB445657-116F-11D8-941D-00065B83EE53}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{CF34CFD1-EECF-415F-A23B-D3B4731E80FD}] - (.Copyright© MainConcept GmbH "2010 - Sink DS Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_render_fileindex_ds.ax   [23/03/2011 02:45:52]
[HKCR\CLSID\{D1EB6D20-8923-11d0-9D97-00A0C90A43CB}] - (.. - ..) - dplayx.dll   
[HKCR\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] - (.Adobe® Flash® Player. Copyright © 1996 Adobe Systems Incorporated. Adobe and Flash are either trademarks or registered trademarks in the United States and/or other countries. - Adobe Flash Player 11.7 r700.) - C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_7_700_182.ocx   [23/04/2013 11:51:12]
[HKCR\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] - (.Adobe® Flash® Player. Copyright © 1996 Adobe Systems Incorporated. Adobe and Flash are either trademarks or registered trademarks in the United States and/or other countries. - Adobe Flash Player 11.7 r700.) - C:\Windows\SysWOW64\Macromed\Flash\Flash32_11_7_700_182.ocx   [23/04/2013 11:51:12]
[HKCR\CLSID\{D2AC2881-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{D2AC2882-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{D2AC2883-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{D2AC2884-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{D2AC2885-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{D2AC2886-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{D2AC2887-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{D2AC2888-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{D2AC288A-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmstyle.dll   
[HKCR\CLSID\{D2AC288B-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmstyle.dll   
[HKCR\CLSID\{D2AC288C-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmstyle.dll   
[HKCR\CLSID\{D2AC288D-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmstyle.dll   
[HKCR\CLSID\{D2AC288E-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmstyle.dll   
[HKCR\CLSID\{D2AC288F-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmcompos.dll   
[HKCR\CLSID\{D2AC2890-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmcompos.dll   
[HKCR\CLSID\{D2AC2894-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmband.dll   
[HKCR\CLSID\{D2AC2896-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmcompos.dll   
[HKCR\CLSID\{D2AC2897-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmstyle.dll   
[HKCR\CLSID\{D2AC2898-B39B-11D1-8704-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmstyle.dll   
[HKCR\CLSID\{D3075F87-A7BD-4231-9F6A-60C5E07374A7}] - (.. - ..) - %windir%\system32\acppage.dll   
[HKCR\CLSID\{D30BCC65-60E8-11D1-A7CE-00A0C913F73C}] - (.. - ..) - C:\Windows\System32\dmcompos.dll   
[HKCR\CLSID\{D3E95E1D-D003-42A0-91FD-465DC624BC7A}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Encryption Library.) - C:\Windows\SysWOW64\XceedCry.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{D502D4A3-03E6-4EAE-A14E-69606CA63430}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{D7207B70-2B50-40EC-B701-71714DE09A9A}] - (.Copyright © 2010 MainConcept GmbH - MP4 Multiplexer Direct Show Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_mux_mp4_ds.ax   [23/03/2011 02:42:10]
[HKCR\CLSID\{D7B70EE0-4340-11CF-B063-0020AFC2CD35}] - (.. - ..) - ddraw.dll   
[HKCR\CLSID\{D865F1E7-BAC6-4ECA-B37B-0A5DDFF2D031}] - (.Copyright © 2001-2003 Xceed Software Inc. - Xceed Encryption Library.) - C:\Windows\SysWOW64\XceedCry.dll   [16/05/2008 20:51:22]
[HKCR\CLSID\{D88EC52B-8D57-49e1-9EB3-4D267D68A2AE}] - (.Copyright (C) 2008 - Application ContextH.) - C:\Windows\system32\BWContextHandler.dll   [14/07/2009 01:57:57]
[HKCR\CLSID\{DA825E1B-6830-43D7-835D-0B5AD82956A2}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{DAA92564-78C8-40A3-96D2-9115A76B8F29}] - (.. - ..) - %windir%\System32\wpdwcn.dll   
[HKCR\CLSID\{DDBC3B40-97D3-4474-B9BE-215E6D663AF0}] - (.Copyright© MainConcept GmbH 2010 - AVC/H.264 Decoder DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_dec_avc_ds.ax   [23/03/2011 02:34:48]
[HKCR\CLSID\{dee35070-506b-11cf-b1aa-00aa00b8de95}] - (. - .) - C:\Windows\SysWOW64\msjetoledb40.dll   [13/07/2009 23:03:59]
[HKCR\CLSID\{dee35071-506b-11cf-b1aa-00aa00b8de95}] - (. - .) - C:\Windows\SysWOW64\msjetoledb40.dll   [13/07/2009 23:03:59]
[HKCR\CLSID\{DFA14C43-F385-4170-99CC-1B7765FA0E4A}] - (.. - ..) - C:\Windows\SysWOW64\wpcumi.dll   
[HKCR\CLSID\{E0C6335D-27F8-424B-A5C2-561291A902A0}] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynCOM.) - C:\Windows\SysWOW64\SynCOM.dll   [03/12/2010 02:27:16]
[HKCR\CLSID\{E23FE9C6-778E-49D4-B537-38FCDE4887D8}] - (. - .) - C:\Program Files (x86)\VideoLAN\VLC\axvlc.dll   [15/10/2012 22:27:56]
[HKCR\CLSID\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}] - (.. - ..) - %ProgramFiles(x86)%\Windows NT\TableTextService\TableTextService.dll   
[HKCR\CLSID\{E4C1D9A2-CBF7-48BD-9A69-34A55E0D8941}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{E756373F-67DE-44A1-9C78-5DE466102CB8}] - (.Copyright © 2010 MainConcept GmbH - AVC/H.264 Encoder DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_enc_avc_ds.ax   [23/03/2011 02:35:18]
[HKCR\CLSID\{E7D06080-238B-11D3-80D7-00104B1F6CEA}] - (.Copyright (C) 1990-2001 InstallShield Software Corporation - InstallShield (R) Script Engine.) - C:\Program Files (x86)\Common Files\InstallShield\IScript\iscript.dll   [02/09/2012 15:47:51]
[HKCR\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}] - (.Copyright 2007-2010 Google Inc. - Google Update.) - C:\Users\Mareva\AppData\Local\Google\Update\1.3.21.135\psuser.dll   [17/02/2013 13:29:17]
[HKCR\CLSID\{E94137E0-92ED-4579-9251-18AF2A08CCD1}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{EBF2320A-2502-11D3-8BD1-00600893B1B6}] - (.. - ..) - C:\Windows\System32\dmscript.dll   
[HKCR\CLSID\{EBFE7BA0-628D-11D2-AE0F-006097B01411}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{EC22770D-3343-4C56-8A8D-3E560475F655}] - (.Copyright (C) 2001-2002 SoftShape Development - ActiveSkin Module.) - C:\Windows\SysWOW64\actskin4.ocx   [16/05/2011 18:31:18]
[HKCR\CLSID\{EE0B9CA0-A81E-11D3-9BD1-0080C7150A74}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{EED36461-9EA5-11D3-9BD1-0080C7150A74}] - (.. - ..) - C:\Windows\System32\dmime.dll   
[HKCR\CLSID\{F17E8672-C3B4-11D1-870B-00600893B1BD}] - (.. - ..) - C:\Windows\System32\dmcompos.dll   
[HKCR\CLSID\{F3B4F2E9-CCCC-49aa-B0B2-2C4A02E69A37}] - (.. - ..) - C:\Program Files (x86)\Common Files\microsoft shared\ink\tipskins.dll   
[HKCR\CLSID\{f414c260-6ac0-11cf-b6d1-00aa00bbbb58}] - (.Copyright (c) 2013 AVAST Software - avast! Script Blocking library for Windows Scripting Interface.) - C:\Program Files\AVAST Software\Avast\AhAScr.dll   [23/04/2013 15:20:16]
[HKCR\CLSID\{f414c262-6ac0-11cf-b6d1-00aa00bbbb58}] - (.Copyright (c) 2013 AVAST Software - avast! Script Blocking library for Windows Scripting Interface.) - C:\Program Files\AVAST Software\Avast\AhAScr.dll   [23/04/2013 15:20:16]
[HKCR\CLSID\{F418EBA0-6A10-4482-AC2B-2D10C807073A}] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynCtrl.) - C:\Windows\SysWOW64\SynCtrl.dll   [03/12/2010 02:27:16]
[HKCR\CLSID\{F4817E4B-04B6-11D3-8862-00C04F72F303}] - (.Copyright (C) 1990-2001 InstallShield Software Corporation - InstallShield (R) ObjectPS DLL.) - C:\Program Files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll   [02/09/2012 15:47:51]
[HKCR\CLSID\{F77C0A7D-7395-45c5-BDFC-B096BF6C4DA0}] - (.Copyright (C) 2008 - Application ContextH.) - C:\Windows\system32\BWContextHandler.dll   [14/07/2009 01:57:57]
[HKCR\CLSID\{F975AF2C-9A51-4AF0-91EA-06038698CE38}] - (.. - ..) - dpnet.dll   
[HKCR\CLSID\{FABD6EA5-AE10-4E7A-B83B-5F07ACC84214}] - (.. - ..) - %windir%\System32\wpdwcn.dll   
[HKCR\CLSID\{FADC2392-6667-499A-A9EB-AD738F022A1A}] - (.Copyright © 2010 MainConcept GmbH - Audio Converter DirectShow Filter.) - C:\Program Files (x86)\Common Files\Nikon\DirectShow Filters\nikon_trans_audio_converter_ds.ax   [23/03/2011 02:45:00]
[HKCR\CLSID\{FC47060E-6153-4B34-B975-8E4121EB7F3C}] - (.. - ..) - dpnet.dll   

¤¤¤¤¤¤¤¤¤¤ | Extended No Microsoft files | system32 (Not necessary Malwares)

[MD5.0A05D6A4DE27C77D924F89635987FDA9] - |A| - [13/07/2009 23:36:47] - (. - .) - [17.51 Ko] - (0.0.0.0) - C:\Windows\system32\EventViewer_EventDetails.xsl
[MD5.B2EDF82825D979928AE07CBE9C7A2160] - |A| - [14/07/2009 00:53:10] - (. - .) - [2.37 Ko] - (0.0.0.0) - C:\Windows\system32\WsmTxt.xsl
[MD5.D6CBFA113B69C491DE370E85EBAC80E9] - |A| - [14/07/2009 00:53:10] - (. - .) - [1.52 Ko] - (0.0.0.0) - C:\Windows\system32\WsmPty.xsl
[MD5.9D6B8FC71167D22849424084F0F3D9E9] - |A| - [10/06/2009 22:31:09] - (. - .) - [74.28 Ko] - (0.0.0.0) - C:\Windows\system32\xpsrchvw.xml
[MD5.EA63CC5BCAE1631C6DA5ACE9299BABB6] - |A| - [10/06/2009 22:31:50] - (. - .) - [2.66 Ko] - (0.0.0.0) - C:\Windows\system32\locationnotificationsview.xml
[MD5.86166DAA04A6C154826508304CC6D4AC] - |A| - [10/06/2009 22:35:23] - (. - .) - [0.55 Ko] - (0.0.0.0) - C:\Windows\system32\NdfEventView.xml
[MD5.CD48AD912839B9FB6CCA5D4AA9B37500] - |A| - [14/07/2009 00:01:19] - (. - .) - [21.3 Ko] - (0.0.0.0) - C:\Windows\system32\NetTrace.PLA.Diagnostics.xml
[MD5.3C436603213561E2E7DD3D4459DBB7D4] - |A| - [14/07/2009 00:53:10] - (. - .) - [4.57 Ko] - (0.0.0.0) - C:\Windows\system32\wsmanconfig_schema.xml
[MD5.C059C6B7518A9D6DE3616A3143392FE6] - |A| - [10/06/2009 23:01:24] - (. - .) - [1.02 Ko] - (0.0.0.0) - C:\Windows\system32\tcpbidi.xml
[MD5.F0C0C920D42211DE027375793033E3A7] - |A| - [10/06/2009 23:08:04] - (. - .) - [102.9 Ko] - (0.0.0.0) - C:\Windows\system32\RacRules.xml
[MD5.6EDD021A8B6457DDE09DE7B7FA4E8C8B] - |A| - [13/07/2009 23:54:15] - (. - .) - [0.6 Ko] - (0.0.0.0) - C:\Windows\system32\WdsUnattendTemplate.xml
[MD5.7A495CA1402C2F9F5D035092AD808669] - |A| - [13/07/2009 22:17:48] - (. - .) - [0.85 Ko] - (0.0.0.0) - C:\Windows\system32\manage-bde.wsf
[MD5.A980B0ED5543E3DFD1C21058B06C5A65] - |A| - [03/12/2010 02:26:41] - (. - .) - [58.81 Ko] - (0.0.0.0) - C:\Windows\system32\iglhxc64.vp
[MD5.DB945DDE9D7825BB4A173CD108193C49] - |A| - [03/12/2010 02:26:41] - (. - .) - [1.06 Ko] - (0.0.0.0) - C:\Windows\system32\iglhxa64.vp
[MD5.82001B2CC6728CE282EF036ABC2BC975] - |A| - [03/12/2010 02:26:41] - (. - .) - [58.84 Ko] - (0.0.0.0) - C:\Windows\system32\iglhxg64.vp
[MD5.3B6C78580EC3B9A0346D2AD63EC7906A] - |A| - [03/12/2010 02:26:41] - (. - .) - [58.61 Ko] - (0.0.0.0) - C:\Windows\system32\iglhxo64.vp
[MD5.22D1A7CED575312B1D212B4791A26296] - |A| - [03/12/2010 02:26:41] - (. - .) - [5.24 Ko] - (0.0.0.0) - C:\Windows\system32\iglhxs64.vp
[MD5.C10910B59B49A68E810E42CE7AD24420] - |A| - [27/07/2009 21:49:11] - (. - .) - [2.08 Ko] - (0.0.0.0) - C:\Windows\system32\slpset.vbs
[MD5.2AE808CB0D9A667B0CF41EA74B3B9BAC] - |A| - [10/06/2009 22:36:24] - (. - .) - [39.6 Ko] - (0.0.0.0) - C:\Windows\system32\gatherNetworkInfo.vbs
[MD5.38482A5013D8AB40DF0FB15EAE022C57] - |A| - [10/06/2009 22:59:12] - (. - .) - [110.97 Ko] - (0.0.0.0) - C:\Windows\system32\slmgr.vbs
[MD5.5B49271AEC5D5A221E91C7B4F3BC2F4C] - |A| - [14/07/2009 00:53:10] - (. - .) - [196.32 Ko] - (0.0.0.0) - C:\Windows\system32\winrm.vbs
[MD5.405E1EF8E3C88E9BCD2853382BB12430] - |A| - [10/06/2009 22:48:31] - (. - .) - [22.45 Ko] - (0.0.0.0) - C:\Windows\system32\bopomofo.uce
[MD5.4FDED87068052EEB9B72A97FDBC141DB] - |A| - [14/07/2009 01:56:51] - (. - .) - [23.44 Ko] - (0.0.0.0) - C:\Windows\system32\gb2312.uce
[MD5.038F6AD6CEE43585D814CDBC7CDFD3EC] - |A| - [14/07/2009 01:56:51] - (. - .) - [59.04 Ko] - (0.0.0.0) - C:\Windows\system32\ideograf.uce
[MD5.7C0C25F4BA1084C4ABBEEA2C74194C5F] - |A| - [14/07/2009 01:56:51] - (. - .) - [6.79 Ko] - (0.0.0.0) - C:\Windows\system32\kanji_1.uce
[MD5.7A7A04370A6030B9B0E8178DAD4A6E41] - |A| - [14/07/2009 01:56:51] - (. - .) - [12.57 Ko] - (0.0.0.0) - C:\Windows\system32\korean.uce
[MD5.529BBD63519BBD654EF328454019693F] - |A| - [14/07/2009 01:56:51] - (. - .) - [8.29 Ko] - (0.0.0.0) - C:\Windows\system32\kanji_2.uce
[MD5.8CA32E9D986FA76F60EFBCFCD9D80A58] - |A| - [14/07/2009 01:56:51] - (. - .) - [16.35 Ko] - (0.0.0.0) - C:\Windows\system32\ShiftJIS.uce
[MD5.30F5568679A54042F99CA9EC1102EBCD] - |A| - [14/07/2009 01:56:51] - (. - .) - [91.51 Ko] - (0.0.0.0) - C:\Windows\system32\SubRange.uce
[MD5.BDD9B70A185CA6DEFEAA59BB55B70644] - |A| - [14/07/2009 04:35:51] - (. - .) - [0.68 Ko] - (0.0.0.0) - C:\Windows\system32\NOISE.THA
[MD5.D3C85593F8C4576FCF9B42AC48CA4368] - |A| - [13/07/2009 23:25:31] - (. - .) - [23.55 Ko] - (0.0.0.0) - C:\Windows\system32\lcptr.tbl
[MD5.531FE5A2634D87A078017259F21D9736] - |A| - [10/06/2009 23:01:55] - (. - .) - [206.97 Ko] - (0.0.0.0) - C:\Windows\system32\lcphrase.tbl
[MD5.A029A434A3035429628CA35102FFB907] - |A| - [14/07/2009 01:16:33] - (. - .) - [0.11 Ko] - (0.0.0.0) - C:\Windows\system32\pcl.sep
[MD5.C09741B9886EF0D15EC3B1443352FB62] - |A| - [14/07/2009 01:16:33] - (. - .) - [0.05 Ko] - (0.0.0.0) - C:\Windows\system32\pscript.sep
[MD5.74943B60374CB5F9C6F9907F8BD2F79A] - |A| - [10/06/2009 23:01:15] - (. - .) - [3.14 Ko] - (0.0.0.0) - C:\Windows\system32\sysprint.sep
[MD5.9E1F3509104FCEB377A58A16E8243D39] - |A| - [14/07/2009 01:16:33] - (. - .) - [3.49 Ko] - (0.0.0.0) - C:\Windows\system32\sysprtj.sep
[MD5.22D9945B4AAE36DD59620A918F2E65F4] - |A| - [10/06/2009 23:06:00] - (. - .) - [3096 Ko] - (0.0.0.0) - C:\Windows\system32\boot.sdi
[MD5.30D6067496182C3A6AC273815F5604D0] - |A| - [16/05/2011 18:31:30] - (.Copyright (c) 2009 ALWIL Software - avast! Screen Saver.) - [95.2 Ko] - (4.8.1367.0) - C:\Windows\system32\AvastSS.scr
[MD5.029E33E451079A04E889D71ECE2C2C33] - |A| - [29/07/2010 10:30:32] - (.All rights reserved. - Screen Saver.) - [445.53 Ko] - (1.0.1.0) - C:\Windows\system32\Packard Bell.scr
[MD5.EDCB1DFDE6D5935856EB25517B633DAC] - |A| - [14/07/2009 07:01:34] - (. - .) - [52.3 Ko] - (0.0.0.0) - C:\Windows\system32\license.rtf
[MD5.5D27362AF3BCAA75A418F5416A35934E] - |A| - [14/07/2009 01:14:22] - (. - .) - [0.26 Ko] - (0.0.0.0) - C:\Windows\system32\odbcconf.rsp
[MD5.B1DDD68AE12DB12893DF400DC43CD53E] - |A| - [03/12/2010 02:26:39] - (. - .) - [107.46 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.en-US.resources
[MD5.335D3BF4AB945D6C3888E39A51BAA67C] - |A| - [03/12/2010 02:26:39] - (. - .) - [136.46 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.ar-SA.resources
[MD5.65E7E561C9BA24157F987FE4F065C9A4] - |A| - [03/12/2010 02:26:39] - (. - .) - [111.4 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.da-DK.resources
[MD5.E7791CB2FFA421D6CD9AA6342C1CB864] - |A| - [03/12/2010 02:26:39] - (. - .) - [115.81 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.cs-CZ.resources
[MD5.34C6A4720F314A4A4C9BAA632C3CFFC4] - |A| - [03/12/2010 02:26:39] - (. - .) - [119.66 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.de-DE.resources
[MD5.76C72E979A3B0873C2B07B4768B9EF67] - |A| - [03/12/2010 02:26:39] - (. - .) - [174.06 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.el-GR.resources
[MD5.BD53578DA9B2CF81B0B60D05E637B255] - |A| - [03/12/2010 02:26:39] - (. - .) - [119.88 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.es-ES.resources
[MD5.8E69FC2666BA81FDEFB6881F247ED3BA] - |A| - [03/12/2010 02:26:39] - (. - .) - [115.73 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.fi-FI.resources
[MD5.92EF4F46FEE42C98B69CF5ECC60A0C4F] - |A| - [03/12/2010 02:26:39] - (. - .) - [117.79 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.fr-FR.resources
[MD5.5410773871DAFE0729E764A2128E48E7] - |A| - [03/12/2010 02:26:39] - (. - .) - [130.44 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.he-IL.resources
[MD5.B1168073A2BA08796DA7B2A386046D77] - |A| - [03/12/2010 02:26:39] - (. - .) - [116.63 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.hu-HU.resources
[MD5.322E3A1F62B063C4FAC16D07C4408BCB] - |A| - [03/12/2010 02:26:39] - (. - .) - [122.44 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.it-IT.resources
[MD5.9377A30D6DF33EDA68E7AE90DDF3538E] - |A| - [03/12/2010 02:26:39] - (. - .) - [133.04 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.ja-JP.resources
[MD5.DCC9FD1A92B13878EEB580C7974C694F] - |A| - [03/12/2010 02:26:39] - (. - .) - [120.18 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.ko-KR.resources
[MD5.3B0CCE2C57FB94FA6357DD05EFEDF236] - |A| - [03/12/2010 02:26:39] - (. - .) - [111.98 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.nb-NO.resources
[MD5.104791A4C1D79031C4286C6EA50ABE62] - |A| - [03/12/2010 02:26:39] - (. - .) - [116.62 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.nl-NL.resources
[MD5.9EA78A4512942BC6A463598C57F95655] - |A| - [03/12/2010 02:26:39] - (. - .) - [115.47 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.pl-PL.resources
[MD5.9C367A59345734AB9941EF47A8F0D3B8] - |A| - [03/12/2010 02:26:39] - (. - .) - [117.38 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.pt-BR.resources
[MD5.70EE106D9866E979789EB6700B12814E] - |A| - [03/12/2010 02:26:39] - (. - .) - [116.11 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.pt-PT.resources
[MD5.E2EC4FA6EE13108EF471307580CA402C] - |A| - [03/12/2010 02:26:39] - (. - .) - [115.12 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.sk-SK.resources
[MD5.AD28873D4FEAF7405F52E16A9DF28ACF] - |A| - [03/12/2010 02:26:39] - (. - .) - [161.34 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.ru-RU.resources
[MD5.4BE50BA356C3A6DED4482DBB6C45C7C1] - |A| - [03/12/2010 02:26:39] - (. - .) - [111.51 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.sl-SI.resources
[MD5.5F0D6786BC58AD722F28DA11301CCFEE] - |A| - [03/12/2010 02:26:40] - (. - .) - [116.38 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.sv-SE.resources
[MD5.F8632DE2CBE11F6E0491180DC8F1B38F] - |A| - [03/12/2010 02:26:40] - (. - .) - [184.93 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.th-TH.resources
[MD5.35C36EDFACA8DA42F07F55C189E35880] - |A| - [03/12/2010 02:26:40] - (. - .) - [118.16 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.tr-TR.resources
[MD5.138B2AE8AAF3CA9A9348D51E6140D15B] - |A| - [03/12/2010 02:26:40] - (. - .) - [101.43 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.zh-TW.resources
[MD5.70996FAFB1CDD19ED013FEBE06CAF164] - |A| - [03/12/2010 02:26:40] - (. - .) - [100.3 Ko] - (0.0.0.0) - C:\Windows\system32\Gfxres.zh-CN.resources
[MD5.ECD81B99477AB4A93D7838EB40B870D0] - |A| - [14/07/2009 04:34:28] - (. - .) - [8.59 Ko] - (0.0.0.0) - C:\Windows\system32\icrav03.rat
[MD5.6D21D0A95286DCD09E354B612F592EB7] - |A| - [14/07/2009 04:34:28] - (. - .) - [1.94 Ko] - (0.0.0.0) - C:\Windows\system32\ticrf.rat
[MD5.AC27746CE65F3A7A1329BEBA7A64E08F] - |A| - [13/07/2009 23:52:42] - (. - .) - [121.21 Ko] - (0.0.0.0) - C:\Windows\system32\comexp.msc
[MD5.C5B3E109B3B88B0CC420304EA7BF6B70] - |A| - [13/07/2009 23:34:41] - (. - .) - [40.61 Ko] - (0.0.0.0) - C:\Windows\system32\azman.msc
[MD5.F04C119C159670C9271623454BEC3254] - |A| - [13/07/2009 23:34:41] - (. - .) - [110.6 Ko] - (0.0.0.0) - C:\Windows\system32\compmgmt.msc
[MD5.97AED7FC6C2B38F34CA1A3C10D2F5A60] - |A| - [13/07/2009 23:34:42] - (. - .) - [141.51 Ko] - (0.0.0.0) - C:\Windows\system32\fsmgmt.msc
[MD5.7A1D35F59468B8118AF5B8E21DF78AE2] - |A| - [13/07/2009 23:34:42] - (. - .) - [90.57 Ko] - (0.0.0.0) - C:\Windows\system32\services.msc
[MD5.6579C0CE76E8D6A6A664475D7237F7E3] - |A| - [14/07/2009 00:02:47] - (. - .) - [61.92 Ko] - (0.0.0.0) - C:\Windows\system32\NAPCLCFG.MSC
[MD5.3279476E39DE235B426D69CFE8DEBF55] - |A| - [13/07/2009 23:46:53] - (. - .) - [141.6 Ko] - (0.0.0.0) - C:\Windows\system32\lusrmgr.msc
[MD5.9ED84D86676B79DFC7A9DD1B537E1883] - |A| - [14/07/2009 00:01:54] - (. - .) - [112.39 Ko] - (0.0.0.0) - C:\Windows\system32\WF.msc
[MD5.9BE46DD971FBA66D84567679D3D414EC] - |A| - [13/07/2009 23:14:23] - (. - .) - [142.11 Ko] - (0.0.0.0) - C:\Windows\system32\perfmon.msc
[MD5.4C7390A1FF613FBBF59141CA0BE8AE89] - |A| - [13/07/2009 23:38:17] - (. - .) - [61.59 Ko] - (0.0.0.0) - C:\Windows\system32\certmgr.msc
[MD5.9BDCCC1A87CCA27ADEACE8144F385165] - |A| - [13/07/2009 23:36:47] - (. - .) - [141.73 Ko] - (0.0.0.0) - C:\Windows\system32\eventvwr.msc
[MD5.AB2A58839814D2EA5EE621B5DBF944FF] - |A| - [13/07/2009 23:36:47] - (. - .) - [141.66 Ko] - (0.0.0.0) - C:\Windows\system32\taskschd.msc
[MD5.E0ADDCE97EE521C9AC4F53EE17A05BD5] - |A| - [13/07/2009 23:36:38] - (. - .) - [141.28 Ko] - (0.0.0.0) - C:\Windows\system32\WmiMgmt.msc
[MD5.9359341F78E00134B527814B4868ECD5] - |A| - [13/07/2009 23:05:46] - (. - .) - [141.47 Ko] - (0.0.0.0) - C:\Windows\system32\tpm.msc
[MD5.DDB99F7FE6C9875A2B0696AA06ED0223] - |A| - [13/07/2009 23:09:54] - (. - .) - [142.23 Ko] - (0.0.0.0) - C:\Windows\system32\devmgmt.msc
[MD5.3972B8D1A036CD4389655E3414C9570F] - |A| - [13/07/2009 23:19:46] - (. - .) - [46.56 Ko] - (0.0.0.0) - C:\Windows\system32\diskmgmt.msc
[MD5.43E7D0AB6A8564F5BF375FBF0934FAD1] - |A| - [13/07/2009 23:18:33] - (. - .) - [0.7 Ko] - (0.0.0.0) - C:\Windows\system32\RestartManager.mof
[MD5.3F75A221A01F68D6CE67FE99A868BD8F] - |A| - [13/07/2009 23:18:33] - (. - .) - [0.17 Ko] - (0.0.0.0) - C:\Windows\system32\RestartManagerUninstall.mof
[MD5.C74D61FCA22F36791105D7878AF73572] - |A| - [10/06/2009 23:08:17] - (. - .) - [8.09 Ko] - (0.0.0.0) - C:\Windows\system32\spcinstrumentation.man
[MD5.954AD7BE8D3E69BE52A4DE969128E41A] - |A| - [02/12/2010 18:05:05] - (. - .) - [0.33 Ko] - (0.0.0.0) - C:\Windows\system32\oem_Get_OS_Language.log
[MD5.39E801545FFF6230C80140E0F8A06629] - |A| - [14/07/2009 06:57:09] - (. - .) - [1.21 Ko] - (0.0.0.0) - C:\Windows\system32\migwiz.lnk
[MD5.C1B7AB03AC2F3C990A40BC2E18E02CF1] - |A| - [14/07/2009 04:35:50] - (. - .) - [11687.04 Ko] - (0.0.0.0) - C:\Windows\system32\korwbrkr.lex
[MD5.1C96B3DA6ABE5E18B63C64DF75884F6A] - |A| - [14/07/2009 04:35:51] - (. - .) - [1.45 Ko] - (0.0.0.0) - C:\Windows\system32\noise.kor
[MD5.C04D36BBEF5B9BAA8D8DA0B57F22BE20] - |A| - [10/06/2009 22:49:51] - (. - .) - [2.01 Ko] - (0.0.0.0) - C:\Windows\system32\noise.jpn
[MD5.47F22CAD4A16BB40153555D631546B94] - |A| - [10/06/2009 23:01:25] - (. - .) - [58.71 Ko] - (0.0.0.0) - C:\Windows\system32\tcpmon.ini
[MD5.079B8AEB4A55BF8493BD1EC70285D920] - |A| - [14/07/2009 06:57:09] - (. - .) - [0.07 Ko] - (0.0.0.0) - C:\Windows\system32\desktop.ini
[MD5.9E99D0C83D5515C8EC39F6094A25F773] - |A| - [14/07/2009 07:13:15] - (. - .) - [5.07 Ko] - (0.0.0.0) - C:\Windows\system32\PerfStringBackup.INI
[MD5.4B333D3CC96AE66BD754329FD2989EE2] - |A| - [21/02/2012 23:31:28] - (. - .) - [71.12 Ko] - (0.0.0.0) - C:\Windows\system32\ieuinit.inf
[MD5.B7795BC96C1CEB86E04E8DC843E9C784] - |A| - [10/06/2009 22:33:35] - (. - .) - [113.56 Ko] - (0.0.0.0) - C:\Windows\system32\PerfCenterCpl.ico
[MD5.3A77C18665A4C8428768CE186A5BC1EF] - |A| - [10/06/2009 22:59:55] - (. - .) - [1.78 Ko] - (0.0.0.0) - C:\Windows\system32\rasctrnm.h
[MD5.1149CC1B47F0B0CEAB5ECD5E7C21BA10] - |A| - [03/12/2010 02:26:42] - (. - .) - [149.02 Ko] - (0.0.0.0) - C:\Windows\system32\difx64.exe
[MD5.64CA382622F90218B6D1805FDFF50C96] - |A| - [22/10/2012 22:26:36] - (.Copyright © 2012 - Java(TM) Platform SE binary.) - [184.48 Ko] - (7.0.90.5) - C:\Windows\system32\java.exe
[MD5.55709115BCAAFEC054057B9020F75EF9] - |A| - [22/10/2012 22:26:36] - (.Copyright © 2012 - Java(TM) Platform SE binary.) - [184.98 Ko] - (7.0.90.5) - C:\Windows\system32\javaw.exe
[MD5.D30A34EB30AEDDCDAC58C76A71AA03CD] - |A| - [22/10/2012 22:26:44] - (.Copyright © 2012 - Java(TM) Web Start Launcher.) - [282.98 Ko] - (10.9.2.5) - C:\Windows\system32\javaws.exe
[MD5.F141A19DF98FED55165D14CC8F798507] - |A| - [28/01/2012 21:05:27] - (.Copyright(C) 2005-2013 - Advanced SystemCare.) - [25.81 Ko] - (1.2.1.6) - C:\Windows\system32\RegistryDefragBootTime.exe
[MD5.DFA65F31129C35DA05767C8755DD183E] - |A| - [24/06/2011 20:10:54] - (.Copyright (c) 2013 AVAST Software - avast! start-up scanner.) - [281.09 Ko] - (8.0.1483.72) - C:\Windows\system32\aswBoot.exe
[MD5.E2090ABBDE0128166584C1534810D334] - |A| - [14/07/2009 06:45:37] - (. - .) - [9 Ko] - (0.0.0.0) - C:\Windows\system32\umstartup000.etl
[MD5.B0D8E26D3CC725F0CC6D33FDBEA061F7] - |A| - [14/07/2009 06:45:37] - (. - .) - [21 Ko] - (0.0.0.0) - C:\Windows\system32\umstartup.etl
[MD5.54ED60256CF2871F65FA5CBC5712B3B7] - |A| - [10/06/2009 23:08:08] - (. - .) - [361.05 Ko] - (0.0.0.0) - C:\Windows\system32\systemsf.ebd
[MD5.CFB89001DDE4224FB10C47E3DB3F5956] - |A| - [10/06/2009 23:03:31] - (. - .) - [3.95 Ko] - (0.0.0.0) - C:\Windows\system32\xwizard.dtd
[MD5.F02F93D5AEC524052E4A37C1BB7CCF31] - |A| - [14/07/2009 03:20:24] - (.Copyright(C)Brother Industries Ltd.1997-2006 - Brother Multi Function CoInstaller.) - [19 Ko] - (1.0.0.20) - C:\Windows\system32\brcoinst.dll
[MD5.7D00FF6A4315FDF4ACAFBB4EF157EA9F] - |A| - [14/07/2009 02:07:04] - (.Copyright (C) 2008 - Gestionnaire de contexte pour réseau personnel Bluetooth.) - [91.5 Ko] - (1.0.0.1) - C:\Windows\system32\BthpanContextHandler.dll
[MD5.718B2F97951B3A5F2968E91DE7DE74E5] - |A| - [14/07/2009 01:57:57] - (.Copyright (C) 2008 - Application ContextH.) - [67.5 Ko] - (1.0.0.1) - C:\Windows\system32\BWContextHandler.dll
[MD5.069C456FDACC17E7572C5D4F72BDB751] - |A| - [14/07/2009 01:38:33] - (.© Microsoft Corporation. Tous droits réservés. - Services de gestion des polices.) - [113.5 Ko] - (1.1.6000.16384) - C:\Windows\system32\fms.dll
[MD5.00AECA569474CAC0C798472C510A8DA1] - |A| - [03/12/2010 02:27:16] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynCOM.) - [386.79 Ko] - (14.0.6.0) - C:\Windows\system32\SynCOM.dll
[MD5.E5F4C1519953B1239E473992E0180622] - |A| - [03/12/2010 02:27:16] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynCtrl.) - [257.29 Ko] - (14.0.6.0) - C:\Windows\system32\SynCtrl.dll
[MD5.0FCCCF6EC4653DE9442898A85EC2F486] - |A| - [03/12/2010 02:27:17] - (.Copyright (C) Synaptics Incorporated 1996-2009 - SynTPAPI.) - [200.79 Ko] - (14.0.6.0) - C:\Windows\system32\SynTPAPI.dll
[MD5.8750C237018A0BF18119B0DEE6908522] - |A| - [03/12/2010 02:27:17] - (.Copyright (C) Synaptics Incorporated 1996-2009 - Synaptics Pointing Device Driver Co-Installer.) - [144.29 Ko] - (14.0.6.0) - C:\Windows\system32\SynTPCo4.dll
[MD5.973ADB6AD47AC047F900C0D760AB6BE2] - |A| - [02/12/2010 17:48:30] - (.Copyright © 2006-2009 Andrea Electronics Corporation.  - Render Noise Filters (64-bit).) - [106.41 Ko] - (1.0.64.9) - C:\Windows\system32\AERTAR64.dll
[MD5.87B5AB256A5A068EDDA0F4B4FAC728CC] - |A| - [02/12/2010 17:48:31] - (.Copyright © 1996-2007 - .) - [2145.77 Ko] - (5.9.7.0) - C:\Windows\system32\MaxxAudioEQ.dll
[MD5.A028717B791416182959B325D5B40679] - |A| - [02/12/2010 17:48:32] - (.Copyright (c) 2006 SRS Labs, Inc..  - TruSurround HD and HD4 COM object for Windows.) - [206.23 Ko] - (1.1.4.0) - C:\Windows\system32\SRSTSH64.dll
[MD5.2FCADCC14F8E540F6ADE4BF92BD8AEDD] - |A| - [02/12/2010 17:48:32] - (.(c) 2006 SRS Labs, Inc.  - WOW HD COM object for Windows.) - [152.23 Ko] - (1.1.3.0) - C:\Windows\system32\SRSWOW64.dll
[MD5.A88BE9A6C4E646A2B2A1BD3A7F4B58E7] - |A| - [02/12/2010 17:48:32] - (.(c) 2007 SRS Labs, Inc.  - COM object implementing SRS Headphone 360.) - [194.23 Ko] - (1.1.0.0) - C:\Windows\system32\SRSHP64.dll
[MD5.018D3D2478754AA411DE6DA6DE5F8F21] - |A| - [02/12/2010 17:48:32] - (.Copyright 2002 SRS Labs, Inc. - TruSurroundXT Module.) - [506.73 Ko] - (3.2.0.0) - C:\Windows\system32\SRSTSX64.dll
[MD5.95A95297D5689F61F1FBC6A328075356] - |A| - [02/12/2010 17:48:32] - (.© 2008,2009 Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x64.) - [300.7 Ko] - (6.0.6001.18) - C:\Windows\system32\RP3DHT64.dll
[MD5.5245E1443EE4DC110DF9217E1D0AEB0A] - |A| - [02/12/2010 17:48:32] - (.© 2008,2009 Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x64.) - [300.7 Ko] - (6.0.6001.18) - C:\Windows\system32\RP3DAA64.dll
[MD5.CDB380C1138EDCDC5BE166DE887D581C] - |A| - [02/12/2010 17:48:32] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x64.) - [74.7 Ko] - (6.1.6001.33) - C:\Windows\system32\RTEEG64A.dll
[MD5.6B0EBD56951F62D4E86B7CBE8613B05A] - |A| - [02/12/2010 17:48:32] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x64.) - [364.2 Ko] - (6.1.6001.33) - C:\Windows\system32\RTEEP64A.dll
[MD5.CB3CF9915ED7888FDBAF3694775DCCC7] - |A| - [02/12/2010 17:48:32] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x64.) - [96.7 Ko] - (6.1.6001.33) - C:\Windows\system32\RTEEL64A.dll
[MD5.483849E481652C22BAFC8052414B3099] - |A| - [02/12/2010 17:48:32] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x64.) - [197.2 Ko] - (6.1.6001.33) - C:\Windows\system32\RTEED64A.dll
[MD5.DE6E5B926B9610EF56BDE4D0C786D5BD] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS Bass Enhancement COM DLL.) - [492.77 Ko] - (1.0.0.1) - C:\Windows\system32\DTSBassEnhancementDLL64.dll
[MD5.D18563EACBA8F6A2A72D2F0E5FB2BA85] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS Boost COM DLL.) - [1084.77 Ko] - (1.0.0.1) - C:\Windows\system32\DTSBoostDLL64.dll
[MD5.B507F4F5B3511AF5CC3C5B25F350553C] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS Gain Compensator COM DLL.) - [259.27 Ko] - (1.0.0.1) - C:\Windows\system32\DTSGainCompensatorDLL64.dll
[MD5.2BBA69E37995CD5F7B55EAB7E2C0585F] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS Limiter COM DLL.) - [262.27 Ko] - (1.0.0.1) - C:\Windows\system32\DTSLimiterDLL64.dll
[MD5.7C13EC4E581AF7AA8807DE3B6E131440] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS NEO:PC COM DLL.) - [307.77 Ko] - (1.0.0.1) - C:\Windows\system32\DTSNeoPCDLL64.dll
[MD5.1DA288F5CE50BAF239B3DB2FFE406403] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS Surround Sensation Headphone COM DLL.) - [1150.77 Ko] - (1.0.0.1) - C:\Windows\system32\DTSS2HeadphoneDLL64.dll
[MD5.02D7167E5E263D2F3BA549D257911450] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS Surround Sensation Speaker COM DLL.) - [1294.27 Ko] - (1.0.0.1) - C:\Windows\system32\DTSS2SpeakerDLL64.dll
[MD5.8B878A97A0903B5CCE850B1C3E7019C0] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS Symmetry COM DLL.) - [478.27 Ko] - (1.0.0.1) - C:\Windows\system32\DTSSymmetryDLL64.dll
[MD5.789C3C3FDCA799F905861961F39BE174] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS Voice Clarity COM DLL.) - [463.77 Ko] - (1.0.0.1) - C:\Windows\system32\DTSVoiceClarityDLL64.dll
[MD5.41F892F1DA3F6ACC4F845662D992F7DC] - |A| - [03/12/2010 02:26:41] - (. Intel(R) Corporation. - Intel(R) Display Audio Coinstaller.) - [14.5 Ko] - (6.12.0.3047) - C:\Windows\system32\IntcDAuC.dll
[MD5.7214D6F7175D0581F934C3393EEA8085] - |A| - [02/12/2010 17:48:31] - (.© Waves Audio Ltd. - MaxxAudio APO.) - [311.34 Ko] - (2.2.8.0) - C:\Windows\system32\MaxxAudioAPO20.dll
[MD5.64FEFB16DEAF1A22DE833FEC22D3A9D2] - |A| - [03/12/2010 02:26:41] - (. - .) - [183 Ko] - (0.0.0.0) - C:\Windows\system32\iglhcp64.dll
[MD5.913CAEE7DD2A9A26A0ACFA75AA68F48D] - |A| - [03/12/2010 02:26:41] - (. - .) - [201 Ko] - (0.0.0.0) - C:\Windows\system32\iglhsip64.dll
[MD5.8B626417540010719B7428388A605D0D] - |A| - [03/12/2010 02:26:41] - (.  -  .) - [4 Ko] - (1.0.0.0) - C:\Windows\system32\IGFXDEVLib.dll
[MD5.B9DCA2198F7FB17F8475E573163399FB] - |A| - [03/12/2010 02:26:41] - (.Copyright (C) 2009 - Intel(R) Graphics Media Accelerator Driver Coinstaller.) - [90.5 Ko] - (1.2.30.0) - C:\Windows\system32\igfxCoIn_v2119.dll
[MD5.B80A99C369F871945C207A67841CD1C5] - |A| - [02/12/2010 17:48:30] - (.Copyright (c) Fortemedia Corporation. - Fortemedia SAMSoft sAPO.) - [322.91 Ko] - (42.6.32.66) - C:\Windows\system32\FMAPO64.dll
[MD5.642AF5A67DD4778C812BEBE47F56E79B] - |A| - [02/12/2010 17:48:32] - (.Copyright © 1996-2007 - General Library for Plug-Ins.) - [2540.84 Ko] - (1.0.0.0) - C:\Windows\system32\WavesGUILib.dll
[MD5.CF171618F3999FEB4F95C77A8C376C92] - |A| - [02/12/2010 17:48:31] - (.© Waves Audio Ltd. - MaxxVolumeSD APO.) - [326.84 Ko] - (3.1.0.0) - C:\Windows\system32\MaxxVolumeSDAPO.dll
[MD5.B3E76552165BF2364EDDD0D0F8452E14] - |A| - [10/06/2010 22:57:20] - (.Copyright(C) Alcor Micro, Corp. - USB Mass Storage Driver Coinstaller.) - [10.5 Ko] - (1.4.0.0) - C:\Windows\system32\AmUStor.dll
[MD5.55458412629AA2B34B2B25320257AAFE] - |A| - [02/12/2010 17:48:31] - (.© Waves Audio Ltd. - MaxxAudio APO.) - [327 Ko] - (3.2.0.2) - C:\Windows\system32\MaxxAudioAPO30.dll
[MD5.E729EBA9BEE6DAE905D6EB20FE99193E] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS LFX APO.) - [121.22 Ko] - (1.0.0.2) - C:\Windows\system32\DTSLFXAPO64.dll
[MD5.73840FADF75C09A463039760BAB6CA1A] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS GFX APO.) - [121.22 Ko] - (1.0.0.2) - C:\Windows\system32\DTSGFXAPO64.dll
[MD5.C79535F6B49B48D1182A02D6A5B021D4] - |A| - [02/12/2010 17:48:30] - (.(c) DTS.  - DTS GFX APO.) - [120.22 Ko] - (1.0.0.2) - C:\Windows\system32\DTSGFXAPONS64.dll
[MD5.ECFDE2019F1BFDC4E64F0C51EBC779B1] - |A| - [02/12/2010 17:48:31] - (.Copyright © 1996-2008 - .) - [1715 Ko] - (1.0.0.0) - C:\Windows\system32\MaxxAudioRealtek.dll
[MD5.A7138E6FFA25D5281A0E35ABF60D60A9] - |A| - [02/12/2010 17:48:30] - (.Copyright © 2006-2010 Andrea Electronics Corporation.  - Capture Noise Filters (64-bit).) - [196.09 Ko] - (2.0.64.13) - C:\Windows\system32\AERTAC64.dll
[MD5.24827B761D21FCEC4114EEC1320483F9] - |A| - [02/12/2010 17:48:32] - (.(c) 2006-2010 Virage Logic Corporation / Sonic Focus - SFCOM.DLL.) - [79.33 Ko] - (3.0.0.11) - C:\Windows\system32\SFCOM64.dll
[MD5.D1DF74B41B2B0D76B832972D07CCACD6] - |A| - [02/12/2010 17:48:32] - (.(c) 2006-2010 Virage Logic Corporation / Sonic Focus - SFAPO.DLL.) - [76.33 Ko] - (3.0.0.11) - C:\Windows\system32\SFAPO64.dll
[MD5.AFF64AE0550FFD82DB4B6D0D913FB652] - |A| - [02/12/2010 17:48:32] - (.(c) 2006-2010 Virage Logic Corporation / Sonic Focus - SFNHK.DLL.) - [215.33 Ko] - (3.0.0.11) - C:\Windows\system32\SFNHK64.dll
[MD5.F7F850426712A6DD554FBC9B678AE221] - |A| - [23/06/2012 08:24:24] - (.Copyright © 2012 - Java(TM) Platform SE binary.) - [894.98 Ko] - (10.9.2.5) - C:\Windows\system32\deployJava1.dll
[MD5.7BAE25CCB88706C339292C23265AAA46] - |A| - [23/06/2012 08:24:24] - (.Copyright © 2012 - NPRuntime Script Plug-in Library for Java(TM) Deploy.) - [1009.98 Ko] - (10.9.2.5) - C:\Windows\system32\npDeployJava1.dll
[MD5.04FC9BC5F980551F3C5543762F703616] - |A| - [22/10/2012 22:26:36] - (.Copyright © 2012 - .) - [105.48 Ko] - (2.0.7.0) - C:\Windows\system32\WindowsAccessBridge-64.dll
[MD5.ED434A3EBE29070A7E0138C42482EB93] - |A| - [10/06/2009 22:44:02] - (. - .) - [657.31 Ko] - (0.0.0.0) - C:\Windows\system32\mlang.dat
[MD5.DE78E0C57BC478D47CC2F470B68E1A45] - |A| - [14/07/2009 04:35:51] - (. - .) - [0.72 Ko] - (0.0.0.0) - C:\Windows\system32\NOISE.DAT
[MD5.8C6F56F4CDDE6A1FD01F4FCF2773298E] - |A| - [14/07/2009 04:34:42] - (. - .) - [210.88 Ko] - (0.0.0.0) - C:\Windows\system32\dssec.dat
[MD5.7AAA3E23CE4C7845B112F7A79B110E60] - |A| - [14/07/2009 04:36:59] - (. - .) - [30.81 Ko] - (0.0.0.0) - C:\Windows\system32\perfd009.dat
[MD5.07BA000B2E67565BDF112C35171865A5] - |A| - [03/12/2010 02:38:05] - (. - .) - [37.27 Ko] - (0.0.0.0) - C:\Windows\system32\perfd00C.dat
[MD5.ADAF4F102C8FAD1D0E421A3479896B90] - |A| - [14/07/2009 04:36:59] - (. - .) - [250.71 Ko] - (0.0.0.0) - C:\Windows\system32\perfc009.dat
[MD5.D8F8A8FEB9FBA31DED69FD10BE42A865] - |A| - [14/07/2009 04:36:59] - (. - .) - [752.99 Ko] - (0.0.0.0) - C:\Windows\system32\perfh009.dat
[MD5.050E02FCA145E93588332FF333E2B18B] - |A| - [03/12/2010 02:38:05] - (. - .) - [295.96 Ko] - (0.0.0.0) - C:\Windows\system32\perfc00C.dat
[MD5.96071004C7567ABB1F0518C2DECF197C] - |A| - [03/12/2010 02:38:05] - (. - .) - [1192.48 Ko] - (0.0.0.0) - C:\Windows\system32\perfh00C.dat
[MD5.0B25BCF13715D2BFF34638E6B7E29EA1] - |A| - [23/04/2013 15:24:40] - (. - .) - [267.6 Ko] - (0.0.0.0) - C:\Windows\system32\FNTCACHE.DAT
[MD5.9A014CE65642722D72588D5196F147CE] - |A| - [03/12/2010 02:26:41] - (. - .) - [1945.25 Ko] - (0.0.0.0) - C:\Windows\system32\iglhxa64.cpa
[MD5.FFB49EE58EF3E271AA25F847D3299047] - |A| - [03/12/2010 02:26:40] - (. - .) - [0.15 Ko] - (0.0.0.0) - C:\Windows\system32\GfxUI.exe.config
[MD5.33C138E3A498083EF8792EAC3FD707BA] - |A| - [10/06/2009 23:00:54] - (. - .) - [0.03 Ko] - (0.0.0.0) - C:\Windows\system32\winrm.cmd
[MD5.2901049544FDF863362FABA2363EB647] - |A| - [13/07/2009 22:24:21] - (. - .) - [0.82 Ko] - (0.0.0.0) - C:\Windows\system32\onlinesetup.cmd
[MD5.6C114885CC2C983BA24F9A4EDE9A48FA] - |A| - [14/07/2009 04:35:50] - (. - .) - [1.66 Ko] - (0.0.0.0) - C:\Windows\system32\NOISE.CHT
[MD5.5A34DB0802A96719F9DC08DFC7F356D1] - |A| - [14/07/2009 04:35:50] - (. - .) - [1.66 Ko] - (0.0.0.0) - C:\Windows\system32\NOISE.CHS
[MD5.90BCC01D3090AA38D92EDEDBAE999D5B] - |A| - [14/07/2009 06:45:49] - (. - .) - [17.19 Ko] - (0.0.0.0) - C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[MD5.90BCC01D3090AA38D92EDEDBAE999D5B] - |A| - [14/07/2009 06:45:49] - (. - .) - [17.19 Ko] - (0.0.0.0) - C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[MD5.093C86CD529A3932C9E58C3387DA4AAC] - |A| - [13/07/2009 23:59:35] - (. - .) - [407.56 Ko] - (0.0.0.0) - C:\Windows\system32\igcompkrng500.bin
[MD5.87031985145FE4FC13E8DABF387E78A4] - |A| - [13/07/2009 23:59:36] - (. - .) - [136.55 Ko] - (0.0.0.0) - C:\Windows\system32\igfcg500.bin
[MD5.44E5EA6A6AB4D6343B8FBC1DE19B5005] - |A| - [13/07/2009 23:59:36] - (. - .) - [95.16 Ko] - (0.0.0.0) - C:\Windows\system32\igfcg500m.bin
[MD5.71E96C791D10CAACF4867C5AD65FA19B] - |A| - [13/07/2009 23:59:36] - (. - .) - [959.18 Ko] - (0.0.0.0) - C:\Windows\system32\igkrng500.bin
[MD5.7A0A7E1A1D022A0222870EE3711028D1] - |A| - [03/12/2010 02:26:41] - (. - .) - [102.18 Ko] - (0.0.0.0) - C:\Windows\system32\igfcg575m.bin
[MD5.7160225C6C719A014EEB3FD8049DBB39] - |A| - [03/12/2010 02:26:41] - (. - .) - [850.16 Ko] - (0.0.0.0) - C:\Windows\system32\igkrng575.bin
[MD5.4504F5E982E047E3F1585727E33A2D5C] - |A| - [03/12/2010 02:26:40] - (. - .) - [124.87 Ko] - (0.0.0.0) - C:\Windows\system32\igcompkrng575.bin
[MD5.5046E55184021406C27E8D48A1B2C9D2] - |A| - [14/07/2009 02:22:31] - (.Copyright © 1996-1999 Fraunhofer Institut Integrierte Schaltungen IIS - MPEG Layer-3 Audio Codec for MSACM.) - [79.5 Ko] - (1.9.0.401) - C:\Windows\system32\l3codeca.acm
[MD5.3F209D551A39797CF5F47E2D5B683ADA] - |A| - [14/07/2009 02:23:57] - (.Copyright © 2004 Fraunhofer IIS - MPEG Audio Layer-3 Codec for MSACM.) - [178 Ko] - (3.4.0.0) - C:\Windows\system32\l3codecp.acm

¤¤¤¤¤¤¤¤¤¤ | Installer

[HKCR\Installer\Products\000021599B0090400100000000F01FEC] : Microsoft Application Error Reporting
[HKCR\Installer\Products\00004159070000000000000000F01FEC] : Microsoft Office 2010 -> C:\Windows\Installer\{95140000-0070-0000-0000-0000000FF1CE}\oobeicon.exe
[HKCR\Installer\Products\076CFAAAB965F2A4284B2449E5D03EFE] : Windows Live Writer -> C:\Windows\Installer\{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}\ApplicationIcon.ico
[HKCR\Installer\Products\0C8D398C0AB171541BC18EB9567EF207] : Windows Live Photo Common
[HKCR\Installer\Products\0D756077321A70C3E844C138CE981581] : Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
[HKCR\Installer\Products\0EF2A18C47539A00EC4DDBAA33C4EBE8] : Nero Online Upgrade
[HKCR\Installer\Products\1007C6B46D7C017319E3B52CF3EC196E] : Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
[HKCR\Installer\Products\11B786265B8581A4B93CD94FEC301F49] : Windows Live Writer Resources
[HKCR\Installer\Products\11F12B5E3396B0E42AC597363E0CD711] : Windows Live Messenger -> C:\Windows\Installer\{E5B21F11-6933-4E0B-A25C-7963E3C07D11}\MsblIco.Exe
[HKCR\Installer\Products\16DFDCBFFCD717E4296278B30A501393] : Nero InfoTool
[HKCR\Installer\Products\1926E8D15D0BCE53481466615F760A7F] : Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
[HKCR\Installer\Products\1D034B0FAA6BD374B960AAD30DF10D8B] : Microsoft SQL Server 2005 Compact Edition [ENU] -> C:\Windows\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
[HKCR\Installer\Products\1D5E3C0FEDA1E123187686FED06E995A] : Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
[HKCR\Installer\Products\206EB536C9BB95C4C85C399F63E6A812] : ViewNX 2 -> C:\Windows\Installer\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\249202383B4805C468228B0CAAD28258] : Nero Express Help
[HKCR\Installer\Products\26CEF00243C306D4C98ECE73E2100CF8] : Windows Live SOXE Definitions
[HKCR\Installer\Products\33408A8EB2031FF418D5CF8CAE4C28FF] : Nero Installer
[HKCR\Installer\Products\3933DAC50CEEEC44F939CBAA63B577BF] : Nikon Movie Editor -> C:\Windows\Installer\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\3D04254D3B6B9FF42B3445CE3E1E0066] : Windows Live Communications Platform
[HKCR\Installer\Products\4314AE291D01A814191EA5403531A183] : Windows Live Movie Maker
[HKCR\Installer\Products\44EE410B791931546931176EBEB115E4] : Nikon Message Center 2 -> C:\Windows\Installer\{B014EE44-9197-4513-9613-71E6EB1B514E}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\4AFCE782A91734120AB96D1AD25EE404] : Acrobat.com
[HKCR\Installer\Products\4C3B4FA5393C7D84CAE7E86751755984] : Adobe AIR
[HKCR\Installer\Products\4EA42A62D9304AC4784BF268140790FF] : Java 7 Update 9 (64-bit)
[HKCR\Installer\Products\52744B0D6663D294EB6F85A741DBB99D] : MSVCRT_amd64
[HKCR\Installer\Products\536D34D4ADF65AF4AAB932FC370D85AE] : Nero StartSmart OEM
[HKCR\Installer\Products\5DB8CED64757AF740B0894B2BB2EEF3A] : Windows Live Movie Maker
[HKCR\Installer\Products\5E677B270354B4C4493557D18FD7D939] : Backup Manager Basic -> C:\Windows\Installer\{72B776E5-4530-4C4B-9453-751DF87D9D93}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\5F85FC338D845754386D695F474E8DA3] : Nero DriveSpeed
[HKCR\Installer\Products\60EA627A3AAA1D34783E075F0113F440] : Windows Live Writer
[HKCR\Installer\Products\6113A595BB04F0E42A8E7D59D15A2607] : NeroExpress
[HKCR\Installer\Products\67D6ECF5CD5FBA732B8B22BAC8DE1B4D] : Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
[HKCR\Installer\Products\685B8432EA9CEC6439C66AE849622E41] : Nero StartSmart Help
[HKCR\Installer\Products\68AB67CA7DA73301B744BA0000000010] : Adobe Reader XI (11.0.02) -> C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\SC_Reader.ico
[HKCR\Installer\Products\6E815EB96CCE9A53884E7857C57002F0] : Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
[HKCR\Installer\Products\6E8A266FCD4F2A1409E1C8110F44DBCE] : MSXML 4.0 SP2 (KB973688)
[HKCR\Installer\Products\7430F8847A4C4734197A0318B8DE7A01] : Galerie de photos Windows Live
[HKCR\Installer\Products\766F6333940964D4896BC447E3BE5C1B] : Windows Live Photo Gallery
[HKCR\Installer\Products\7B292C385A83B0447A137070E0186AF4] : Windows Live PIMT Platform
[HKCR\Installer\Products\7BD4C90EC03660F46A13E87A329932FA] : D3DX10
[HKCR\Installer\Products\7C43C21609E58D74B9C5F017D78D7262] : swMSM -> C:\Windows\Installer\{612C34C7-5E90-47D8-9B5C-0F717DD82726}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\7E0BA6F1DDC839B4A832AAE92BEFCF4E] : Junk Mail filter update
[HKCR\Installer\Products\83A4CE2B545B00A4284131EFE019E5D6] : Advertising Center
[HKCR\Installer\Products\840D7C5E4B9F91243B32B8BD102A65D3] : Nero DriveSpeed Help
[HKCR\Installer\Products\907018673D7AD86419761A87C0E167C6] : Windows Live FolderShare -> C:\Windows\Installer\{76810709-A7D3-468D-9167-A1780C1E766C}\FolderShare48x48.ico
[HKCR\Installer\Products\90ECEC1FEBC789E44B53AD78DC8A1676] : Skype™ 5.5 -> C:\Windows\Installer\{F1CECE09-7CBE-4E98-B435-DA87CDA86167}\SkypeIcon.exe
[HKCR\Installer\Products\92EC98DD88CB6C048A542E4568285C6D] : Alcor Micro USB Card Reader -> C:\Windows\Installer\{DD89CE29-BC88-40C6-A845-E2548682C5D6}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E] : Google Update Helper
[HKCR\Installer\Products\9E2A16BA3D73D584095891BFFDC8FEA4] : Windows Live Messenger
[HKCR\Installer\Products\A24A8606FC1C2F548995D51B2678EFD5] : msvcrt_installer
[HKCR\Installer\Products\A57765D93F393A44082948E08362ED03] : Windows Live Mail
[HKCR\Installer\Products\A6C64DD86500CEF47BA082BB611A1FF1] : MSVCRT
[HKCR\Installer\Products\AD0AC5DBDA17AD341BE9E6EEC0A9CDA9] : Nero ControlCenter
[HKCR\Installer\Products\AD29A9B3473627846B6452F38126D4F5] : Windows Live Writer
[HKCR\Installer\Products\B20BD48AB2C92724D9D28AE0005A5631] : Broadcom Gigabit NetLink Controller -> c:\Windows\Installer\{A84DB02B-9C2B-4272-9D2D-A80E00A56513}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\b25099274a207264182f8181add555d0] : Microsoft Visual C++ 2005 Redistributable
[HKCR\Installer\Products\B6ACDB9A3563B764CA384963D73AFB3E] : Windows Live Photo Common
[HKCR\Installer\Products\B9802F8A97F16FB43B582A2C0B9B7AD4] : ImagXpress
[HKCR\Installer\Products\BAF5E720674195C4AA4B23FE82253099] : Windows Live Language Selector
[HKCR\Installer\Products\BD002968A7820CD40BB2B27678BFDCC4] : Nero DiscSpeed
[HKCR\Installer\Products\BFF8CCA148D950C44AED2DA8B99C6189] : Windows Live ID Sign-in Assistant
[HKCR\Installer\Products\c1c4f01781cc94c4c8fb1542c0981a2a] : Microsoft Visual C++ 2005 Redistributable
[HKCR\Installer\Products\C73EFD71E4604384DAF84A2B4BFD868F] : Adobe Photoshop Elements 8.0
[HKCR\Installer\Products\C8CA84773E81BB3459B980F8EA1AF62B] : Nero StartSmart
[HKCR\Installer\Products\CC973E50626FD7E438456483563B30FB] : Windows Live UX Platform Language Pack
[HKCR\Installer\Products\CFD2C1F142D260E3CB8B271543DA9F98] : Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
[HKCR\Installer\Products\D20352A90C039D93DBF6126ECE614057] : Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
[HKCR\Installer\Products\D7314F9862C648A4DB8BE2A5B47BE100] : Microsoft Silverlight -> c:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ARPIcon
[HKCR\Installer\Products\D8E6EAF9686E5F945A47A085FD9D85C0] : Windows Live Mail
[HKCR\Installer\Products\DBD00402BD6E8B54B9B6D17D308381CE] : Nero InfoTool Help
[HKCR\Installer\Products\DDA39468D428E8B4DB27C8D5DC5CA217] : MSXML 4.0 SP2 (KB954430)
[HKCR\Installer\Products\DFC90B5F2B0FFA63D84FD16F6BF37C4B] : Microsoft .NET Framework 4 Client Profile
[HKCR\Installer\Products\E08F45ADC1622A148A5545A941F4F295] : Windows Live MIME IFilter
[HKCR\Installer\Products\E309FE46A00DC414494ABF3A86FFDC9C] : SocialNetworkService -> c:\Windows\Installer\{64EF903E-D00A-414C-94A4-FBA368FFCDC9}\ARPPRODUCTICON.exe
[HKCR\Installer\Products\E97A59ECCF4EFFF4A857920FB449F22F] : Windows Live UX Platform
[HKCR\Installer\Products\EB940C659E972054EB7A79453A6EF0B9] : neroxml
[HKCR\Installer\Products\ECD1404F1EF381E4A8E9D96E2513EE63] : Nero ControlCenter
[HKCR\Installer\Products\F132F0B0A6ECD384AA32773B467F9571] : Windows Live Installer
[HKCR\Installer\Products\F1F913432FC79CC43B75A17E2DFFA35C] : Windows Live
[HKCR\Installer\Products\F3E910CC2D956844D8B47818506BA217] : Nero DiscSpeed Help
[HKCR\Installer\Products\F4E3B286A696ED244AC1C470AE61874B] : Windows Live SOXE
[HKCR\Installer\Products\FB4B305EBB7FF5D3B88C6F491BFC9F24] : Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218

¤¤¤¤¤¤¤¤¤¤ | AppId

[HKCR\AppId\AcroBroker.EXE] : {F2383816-917A-46CC-AD2A-5013BED3800F}
[HKCR\AppId\AcroIEHelperShim.DLL] : {77AB4812-5411-4EA9-8437-77AD0F230302}
[HKCR\AppId\AcroPDF.DLL] : {BBAA0E44-3862-490C-8E63-AC2D2D6EF733}
[HKCR\AppId\AERTACap.DLL] : {288E7ECC-EB53-45df-8EBD-72EAF9AFCB00}
[HKCR\AppId\AERTARen.DLL] : {41C98373-FE7F-4a42-B694-34CC4F979E61}
[HKCR\AppId\AvAScr.DLL] : {66A841F2-956C-4631-BFE7-C90225F417D6}
[HKCR\AppId\AvastGUIProxy.DLL] : {5020EF2C-60F4-47BE-8918-A167229B11EE}
[HKCR\AppId\BdeUISrv.EXE] : {AB93B6F1-BE76-4185-A488-A9001B105B94}
[HKCR\AppId\BITS] : {69AD4AEE-51BE-439b-A92C-86AE490E8B30}
[HKCR\AppId\COM_SRS_HP360.DLL] : {49611624-F1A3-4AA7-8A06-0209D7D6BA92}
[HKCR\AppId\Com_SRS_TruSurroundHD.DLL] : {B6D5C1B8-6F68-4A82-8E20-2D0F3A52BD6A}
[HKCR\AppId\COM_SRS_WOWHD2.DLL] : {E46D2660-D86E-4B0A-BB61-F0FFE9BBDEB5}
[HKCR\AppId\cttunesvr.EXE] : {C3A34354-660F-41EE-B072-2AEA5E3A80AF}
[HKCR\AppId\DeviceDisplayObjectProvider.exe] : {04626806-2243-4354-ab44-4ade718d09df}
[HKCR\AppId\DTSBassEnhancementDLL.DLL] : {7E70FA0D-5DFA-4BA6-98C6-F10BBAAF7410}
[HKCR\AppId\DTSBoostDLL.DLL] : {A5900CCC-3E28-4F96-8410-C43BF113C279}
[HKCR\AppId\DTSGainCompensatorDLL.DLL] : {B3D43A87-E6C7-4EC8-8546-CEB9EE9BD936}
[HKCR\AppId\dtsh.dll] : {1fda955b-61ff-11da-978c-0008744faab7}
[HKCR\AppId\DTSLimiterDLL.DLL] : {24E79C19-1F52-43CC-8684-BFA13340E72C}
[HKCR\AppId\DTSNeoPCDLL.DLL] : {68976842-77A6-447F-83E8-97DF7A83A970}
[HKCR\AppId\DTSS2HeadphoneDLL.DLL] : {BA291C7C-39AC-4331-9592-B694DA24BC89}
[HKCR\AppId\DTSS2SpeakerDLL.DLL] : {CF3C79C7-8096-4BF2-9684-9F6B832FAC23}
[HKCR\AppId\DTSSymmetryDLL.DLL] : {91953DA9-4AB8-473A-BF6D-462FA2E58025}
[HKCR\AppId\DTSVoiceClarityDLL.DLL] : {272EFD2A-90BE-4E48-8557-3D9CEA0530A0}
[HKCR\AppId\DVDMaker.exe] : {658A269B-B922-4e62-B519-50B1CF0787D1} -> Found New Hardware Wizard
[HKCR\AppId\dxpServer.EXE] : {01A39A4B-90E2-4EDF-8A1C-DD9E5F526568}
[HKCR\AppId\EED64A.DLL] : {5C73574D-FC7B-4747-8352-143F011923A0}
[HKCR\AppId\EEG64A.DLL] : {47EC1E17-F30B-430b-B9C4-DF60ED501A4B}
[HKCR\AppId\EEL64A.DLL] : {3D5781D9-B2FF-4396-8478-395412020995}
[HKCR\AppId\EEP64A.DLL] : 3382ACA0-42A8-4aad-8035-E12CB03DC0EE
[HKCR\AppId\ehmsas.EXE] : {4EFC572D-7C9C-455C-99F3-CA4D6838E55B}
[HKCR\AppId\ehRec.EXE] : {0E11CB54-4C4A-4B37-AE0B-E93CEE60E646}
[HKCR\AppId\ehrecvr.exe] : {b622553e-eadb-445e-9493-c3df5af99268}
[HKCR\AppId\ehTrace.DLL] : {E1990E85-DFE4-4410-82CE-C74C57BF6E8E}
[HKCR\AppId\ehVid.EXE] : {C3812B04-E2F1-4E53-95F8-B2363C198946}
[HKCR\AppId\firewallcontrolpanel.dll] : {6571503D-D0FB-4D98-BBC3-1FBB2B3F344E}
[HKCR\AppId\GameConsole-wt.exe] : {568C34F6-73E1-4F3E-ADAE-FF34A076294C}
[HKCR\AppId\GamesAppService.EXE] : {394447FA-A1B8-4E2D-8677-3441FD66C004}
[HKCR\AppId\GoogleUpdate.exe] : {9465B4B4-5216-4042-9A2C-754D3BCDC410}
[HKCR\AppId\GoogleUpdaterService.exe] : {61E28BF8-C02B-499F-8E7A-34C1E4A1C649}
[HKCR\AppId\IDBHO.DLL] : {062C56BD-B2FF-4405-88D9-93154F27D785}
[HKCR\AppId\igfxcfg.EXE] : {3D62E9A1-D243-11D2-B561-00A0C92E6848}
[HKCR\AppId\ImagXpr7.DLL] : {ED512BE6-6629-4FB4-953D-D0C353847163}
[HKCR\AppId\IMAPI.DLL] : {C49F2185-50A7-11D3-9144-00104BA11C5E}
[HKCR\AppId\IMAPI2.DLL] : {273541FF-7F64-5B0F-8F00-5D77AFBE261E}
[HKCR\AppId\IMAPI2FS.DLL] : {2C941FD1-975B-59BE-A960-9A2A262853A5}
[HKCR\AppId\InkWatson.EXE] : {43332d9a-f3a9-4de4-be9a-0fa730bc311d}
[HKCR\AppId\InputPersonalization.exe] : {B1445657-5A98-11d9-A4E5-00301BB132BA}
[HKCR\AppId\IPBusEnum.DLL] : {344ED43D-D086-4961-86A6-1106F4ACAD9B}
[HKCR\AppId\LocationApi.dll] : {CBDC4B31-CBE4-4A5B-BECF-64B29E47D2AD}
[HKCR\AppId\MaxxAudioAPODll.DLL] : {0A21D954-674A-4C09-806E-DB4FBE8F199C}
[HKCR\AppId\MaxxVolumeSDAPODll.DLL] : {0A21D954-674A-4C09-806E-DB4FBE8F199C}
[HKCR\AppId\mcGlidHost.EXE] : {0F8DD0B7-D5A6-4C0C-BA04-8A2CA3CE5EE1}
[HKCR\AppId\mcsrchPH.dll] : {3B07977C-7A38-455D-AAD5-88500A360D24}
[HKCR\AppId\Mcx2Prov.exe] : {893CFE8F-CD6B-412E-A2F0-10840D69E858}
[HKCR\AppId\McxMdeOutputProfile.DLL] : {659A3105-82A2-49F9-B7E4-263766BDF1DD}
[HKCR\AppId\MFCongestionController.DLL] : {DE77B1FA-E898-42A0-B647-DFB567BFD89B}
[HKCR\AppId\MhegVM.dll] : {A3637A1F-8CD0-4DA3-9EF5-CC0BD38AF308}
[HKCR\AppId\MigAutoPlay.exe] : {AA530F18-0818-4643-8884-AAE61A76488B}
[HKCR\AppId\migwiz.exe] : {41CA32F2-698A-4fd8-BB78-B102CE155F53}
[HKCR\AppId\MSTSC.EXE] : {6B1DE8B3-DFB1-4C0E-9D9A-89CA730DE93F}
[HKCR\AppId\NBService.EXE] : {0B0A4A53-FEA7-4693-89EE-926A445E3A36}
[HKCR\AppId\ndfapi.dll] : {F3D3AA8D-EF96-4470-848E-BD70B803047A}
[HKCR\AppId\NeroStarter.DLL] : {F79461D3-DCE3-42E0-A6BA-9C16866036AC}
[HKCR\AppId\netcenter.dll] : {FA1456D3-4B97-4f9c-8511-2786161DC333}
[HKCR\AppId\newdev.exe] : {B6A32FE6-E29D-AEAE-A608-D273E40CA34C} -> Found New Hardware Wizard
[HKCR\AppId\NkmMovieMaker.EXE] : {075BE5C2-611C-413B-99AF-A91C9E771399}
[HKCR\AppId\NOSProductRegistration.DLL] : {FCCD4F86-3FED-4968-BC86-2159D3E1018D}
[HKCR\AppId\NOSUsageStatistics.DLL] : {39B3FE2D-5A89-4C79-BAF5-2485DFCC16FA}
[HKCR\AppId\OptPCEE3Prop.DLL] : 3382ACA0-42A8-4aad-8035-E12CB03DC0EE
[HKCR\AppId\PDFPrevHndlr.DLL] : {6236FF8C-E747-4173-86D3-99F511B61DF3}
[HKCR\AppId\PenIMC2] : {63CE6D27-426A-41F9-8E51-549C1132DAE2}
[HKCR\AppId\PenIMC4] : {7568952A-571E-4C70-BEA9-7F9004393436}
[HKCR\AppId\PhotoAcq.DLL] : {00f22b16-589e-4982-a172-a51d9dcceb68}
[HKCR\AppId\PrintFilterPipelineSvc.Exe] : {76db1bf3-e820-4765-a1b2-0b16a86b1950}
[HKCR\AppId\PrintIsolationHost.exe] : {98a89e0c-1fde-4c2a-a373-b04831e6aa60}
[HKCR\AppId\PseProxy.exe] : {9F84B6ED-423D-4ca2-8864-A2CB15B05890}
[HKCR\AppId\RAServer.EXE] : {F8FD03A6-DDD9-4C1B-84EE-58159476A0D7}
[HKCR\AppId\RCM.DLL] : {C9F65BA8-1F8F-4382-AE27-C91FFB29275F}
[HKCR\AppId\RegisterControl.DLL] : {FC38B7C8-9E50-497d-A387-7DEBDAD14160}
[HKCR\AppId\RtkAPO.DLL] : {E1D2965E-D32B-4e1c-B9F1-159ACB984258}
[HKCR\AppId\RtkApoApi.DLL] : {08B039CA-84AA-40EA-8E9C-1D9537DC415B}
[HKCR\AppId\RtkCfg.DLL] : {A11009A7-DC01-48F8-B6AA-C4613FC5CB15}
[HKCR\AppId\RtkPgExt.DLL] : {92842063-1ECC-4a1a-9343-9A8E1C972E60}
[HKCR\AppId\rundll32.exe] : {de5d803e-5d2a-4b5f-9c63-af25a465cc44}
[HKCR\AppId\RunLegacyCPLElevated.exe] : {de5d803e-5d2a-4b5f-9c63-af25a465cc44}
[HKCR\AppId\SapiSvr.exe] : {C945AD06-534F-460C-8CB4-17C33099AF81}
[HKCR\AppId\SBEServer.EXE] : {1A26548E-BC18-4DB0-B60C-75E8491D34AB}
[HKCR\AppId\sdchange.EXE] : {CF254B00-1986-4b24-A92D-463D01F7E395}
[HKCR\AppId\sdclt.exe] : {f56b7b2a-5b5a-46d8-b6f9-d927ce34b717} -> sdclt
[HKCR\AppId\SFSAPO.DLL] : {0A21D954-674A-4C09-806E-DB4FBE8F199C}
[HKCR\AppId\ShapeCollector.exe] : {56676660-4A4D-45B0-B24E-9CF6B35E9ABF}
[HKCR\AppId\sharemediacpl.dll] : {0671E064-7C24-4AC0-AF10-0F3055707C32}
[HKCR\AppId\sidebar.exe] : {D58F39FF-953E-4F45-898F-59F243B9A523}
[HKCR\AppId\slui.exe] : {CCFDD24D-CEAB-458B-A4F1-F884973395DF}
[HKCR\AppId\spoolsv.exe] : {f735e733-d681-4aef-83c1-7ec82cac5ecc}
[HKCR\AppId\sppcomapi.dll] : {6D9A7A40-DDCA-414E-B48E-DFB032C03C1B}
[HKCR\AppId\SuperfishIEAddon.DLL] : {51B4D471-086A-4137-AD28-84EED05088AE}
[HKCR\AppId\SwapAPODll.DLL] : {0A21D954-674A-4C09-806E-DB4FBE8F199C}
[HKCR\AppId\SWDNLD.EXE] : {ED372EB0-5B14-484F-A27C-05FF89B6DF25}
[HKCR\AppId\SwHelper_1164634.EXE] : {AF551664-D2DF-4E34-85DE-46320B13A0B4}
[HKCR\AppId\SwHelper_1165635.EXE] : {AF551664-D2DF-4E34-85DE-46320B13A0B4}
[HKCR\AppId\SwHelper_1200112.EXE] : {AF551664-D2DF-4E34-85DE-46320B13A0B4}
[HKCR\AppId\SyncHost.EXE] : {BBC4356A-F004-4628-A27A-E13D70412B70}
[HKCR\AppId\SysFxUi.DLL] : {A7D2EC8B-B70F-434C-A0CE-0DF324805F7D}
[HKCR\AppId\TabBtnEx.DLL] : {25351F98-BEC9-4BA0-A1F7-D9D69225E52F}
[HKCR\AppId\TabTip.EXE] : {36938566-B1AA-4E77-9B3F-730CF4E996AB}
[HKCR\AppId\TrustedInstaller.exe] : {752073A2-23F2-4396-85F0-8FDB879ED0ED}
[HKCR\AppId\TSTheme.EXE] : {8be0366c-8522-40be-8b08-cb26557f2854}
[HKCR\AppId\TSWbPrxy.exe] : {C92A9617-0EAE-4235-BD2B-84540EF1FFA9}
[HKCR\AppId\UNS.EXE] : {545C8D56-7A88-492D-B38D-559657A3DD4C}
[HKCR\AppId\upnpcont.exe] : {4F0AC159-5804-4aa7-AE91-117D6E67BB9B}
[HKCR\AppId\vds.exe] : {F290BFB2-1864-45B1-8804-2654194A87E7}
[HKCR\AppId\ViewNX2.EXE] : {45C810A1-6611-4547-B4AA-8559DA32E607}
[HKCR\AppId\WatAdminSvc.EXE] : {205609B7-5E08-443E-B0A7-A7AED3F3A716}
[HKCR\AppId\WcsPlugInService.dll] : {CD11FAB6-1C0E-45e1-BA31-5C6008EF2607}
[HKCR\AppId\wiaacmgr.EXE] : {E32549C4-C2B8-4BCC-90D7-0FC3511092BB}
[HKCR\AppId\WindowsLiveSync.EXE] : {daa6bc26-4dfa-4e8f-8d5f-47202dc8e400}
[HKCR\AppId\WindowsLiveWriter.exe] : {5564D5FC-DB2D-4658-8DB9-86B822815961}
[HKCR\AppId\WindowsLiveWriterFilter.DLL] : {7054B371-09E3-4BC8-8A61-02D7799EA98A}
[HKCR\AppId\winmgmt] : {8BC3F05E-D86B-11D0-A075-00C04FB68820}
[HKCR\AppId\wisptis.EXE] : {7F429620-16D1-471E-A81A-114992148034}
[HKCR\AppId\WkspRT.exe] : {4FCDA643-B15B-41C6-84F8-5E447F6F6D25}
[HKCR\AppId\wlanconn.dll] : {825FC848-87F7-4F26-9EF6-43964094FF98}
[HKCR\AppId\wlanpref.dll] : {7C8AB6D9-8764-4033-8F62-2FE896E54B32}
[HKCR\AppId\wlidcli.dll] : {623D5F5E-2F09-427d-8BD7-64495CD9835D}
[HKCR\AppId\WLIDSvc.EXE] : {A6721677-BA21-44E9-9E2A-76466D24D121}
[HKCR\AppId\WLXVideoCameraAutoPlayManager.exe] : {9B5CDBB0-6D57-4816-BD04-CA9E68DF5610}
[HKCR\AppId\WMPDMCCore.DLL] : {92C2A9B3-4228-438E-8A7B-EF110987764C}
[HKCR\AppId\wmplayer.exe] : {B8C54A54-355E-11D3-83EB-00A0C92A2F2D}
[HKCR\AppId\WMPMediaSharing.DLL] : {9E88EF3C-E2BB-4E5E-AFBA-565B81069D7D}
[HKCR\AppId\WMPNSSCI.DLL] : {F74BCE98-9EB4-4022-8317-11C723E5CCF8}
[HKCR\AppId\WPDBusEnum.DLL] : {03f25b41-e981-4675-a256-27d1393e7488}
[HKCR\AppId\{D3E34B21-9D75-101A-8C3D-00AA001A1652}] : {D3E34B21-9D75-101A-8C3D-00AA001A1652} -> Bitmap Image

¤¤¤¤¤¤¤¤¤¤ | Control Panel

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\DelegateFolders]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{025A5937-A6BE-4686-A844-36FE4BEC8B6D}] : Power Options : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{0DF44EAA-FF21-4412-828E-260A8728E7F1}] : Taskbar and Start Menu
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{1206F5F1-0569-412C-8FEC-3204630DFB70}] : Credential Manager : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{17cd9488-1228-4b2f-88ce-4298e93e0966}] : Set User Defaults : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{241D7C96-F8BF-4F85-B01F-E2B043341A4B}] : Workspaces Center : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{2BADA6D5-9815-4f01-9957-74AF8077FD18}] : Windows Live Language Setting
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{37efd44d-ef8d-41b1-940d-96973a50e9e0}] : Windows Sidebar Properties
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{38A98528-6CBF-4CA9-8DC0-B1E1D10F7B1B}] : View Available Networks
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{4026492F-2F69-46B8-B9BF-5654FC07E423}] : Windows Firewall : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{40419485-C444-4567-851A-2DD7BFA1684D}] : Phone and Modem
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{60632754-c523-4b62-b45c-4172da012619}] : User Accounts : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{62D8ED13-C9D0-4CE8-A914-47DD628FB1B0}] : Region and Language
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{67CA7650-96E6-4FDD-BB43-A8E774F73A57}] : HomeGroup Control Panel : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{6C8EEC18-8D75-41B2-A177-8831D59D2D50}] : Mouse
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF}] : Folder Options
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{725BE8F7-668E-4C7B-8F90-46BDB0936430}] : Keyboard
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{74246bfc-4c96-11d0-abef-0020af6b0b7a}] : Device Manager : %SystemRoot%\System32\devmgr.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{78CB147A-98EA-4AA6-B0DF-C8681F69341C}] : CardSpace
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{78F3955E-3B90-4184-BD14-5397C15F1EFC}] : Performance Information and Tools : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{7b81be6a-ce2b-4676-a29e-eb907a5126c5}] : Programs and Features : %SystemRoot%\System32\appwiz.cpl
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{87D66A43-7B11-4A28-9811-C86EE395ACF7}] : Indexing Options
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{8E908FC9-BECC-40f6-915B-F4CA0E70D03D}] : Network and Sharing Center : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{96AE8D84-A250-4520-95A5-A47A7E3C548B}] : Parental Controls : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{9C60DE1E-E5FC-40f4-A487-460851A8D915}] : AutoPlay : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{9C73F5E5-7AE7-4E32-A8E8-8D23B85255BF}] : Sync Center Folder : %SystemRoot%\System32\SyncCenter.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{A0275511-0E86-4ECA-97C2-ECD8F1221D08}] : Infrared
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{A3DD4F92-658A-410F-84FD-6FBBBEF2FFFE}] : Internet Options
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{A8A91A66-3A7D-4424-8D24-04E180695C7A}] : Device Center : %systemroot%\system32\DeviceCenter.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{B2C761C6-29BC-4f19-9251-E6195265BAF1}] : Color Management
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{BB06C0E4-D293-4f75-8A90-CB05B6477EEE}] : System : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{BB64F8A7-BEE7-4E1A-AB8D-7D8273F7FDB6}] : Action Center CPL : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{BD84B380-8CA2-1069-AB1D-08000948F534}] : Font Folder : %SystemRoot%\system32\fontext.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{C555438B-3C23-4769-A71F-B6D3D9B6053A}] : Display : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{CB1B7F8C-C50A-4176-B604-9E24DEE8D4D1}] : Getting Started : %SystemRoot%\system32\OobeFldr.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{D17D1D6D-CC3F-4815-8FE3-607E7D5D10B3}] : Text to Speech
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{D20EA4E1-3957-11d2-A40B-0C5020524153}] : Administrative Tools : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{D555645E-D4F8-4c29-A827-D93C859C4F2A}] : Ease of Access : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{E2E7934B-DCE5-43C4-9576-7FE4F75E7480}] : Date and Time
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{E7DE9B1A-7533-4556-9484-B26FB486475E}] : Network Map : %SystemRoot%\system32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{E95A4861-D57A-4be1-AD0F-35267E261739}] : Windows SideShow : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{E9950154-C418-419e-A90A-20C5287AE24B}] : Sensors : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{F2DDFC82-8F12-4CDD-B7DC-D4FE1425AA4D}] : Sound
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\DelegateFolders]
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{025A5937-A6BE-4686-A844-36FE4BEC8B6D}] : Power Options : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{0DF44EAA-FF21-4412-828E-260A8728E7F1}] : Taskbar and Start Menu
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{1206F5F1-0569-412C-8FEC-3204630DFB70}] : Credential Manager : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{17cd9488-1228-4b2f-88ce-4298e93e0966}] : Set User Defaults : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{241D7C96-F8BF-4F85-B01F-E2B043341A4B}] : Workspaces Center : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{2BADA6D5-9815-4f01-9957-74AF8077FD18}] : Windows Live Language Setting
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{37efd44d-ef8d-41b1-940d-96973a50e9e0}] : Windows Sidebar Properties
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{38A98528-6CBF-4CA9-8DC0-B1E1D10F7B1B}] : View Available Networks
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{4026492F-2F69-46B8-B9BF-5654FC07E423}] : Windows Firewall : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{40419485-C444-4567-851A-2DD7BFA1684D}] : Phone and Modem
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{60632754-c523-4b62-b45c-4172da012619}] : User Accounts : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{62D8ED13-C9D0-4CE8-A914-47DD628FB1B0}] : Region and Language
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{67CA7650-96E6-4FDD-BB43-A8E774F73A57}] : HomeGroup Control Panel : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{6C8EEC18-8D75-41B2-A177-8831D59D2D50}] : Mouse
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF}] : Folder Options
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{725BE8F7-668E-4C7B-8F90-46BDB0936430}] : Keyboard
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{74246bfc-4c96-11d0-abef-0020af6b0b7a}] : Device Manager : %SystemRoot%\System32\devmgr.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{78CB147A-98EA-4AA6-B0DF-C8681F69341C}] : CardSpace
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{78F3955E-3B90-4184-BD14-5397C15F1EFC}] : Performance Information and Tools : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{7b81be6a-ce2b-4676-a29e-eb907a5126c5}] : Programs and Features : %SystemRoot%\System32\appwiz.cpl
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{87D66A43-7B11-4A28-9811-C86EE395ACF7}] : Indexing Options
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{8E908FC9-BECC-40f6-915B-F4CA0E70D03D}] : Network and Sharing Center : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{96AE8D84-A250-4520-95A5-A47A7E3C548B}] : Parental Controls : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{9C60DE1E-E5FC-40f4-A487-460851A8D915}] : AutoPlay : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{9C73F5E5-7AE7-4E32-A8E8-8D23B85255BF}] : Sync Center Folder : %SystemRoot%\System32\SyncCenter.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{A0275511-0E86-4ECA-97C2-ECD8F1221D08}] : Infrared
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{A3DD4F92-658A-410F-84FD-6FBBBEF2FFFE}] : Internet Options
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{A8A91A66-3A7D-4424-8D24-04E180695C7A}] : Device Center : %systemroot%\system32\DeviceCenter.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{B2C761C6-29BC-4f19-9251-E6195265BAF1}] : Color Management
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{BB06C0E4-D293-4f75-8A90-CB05B6477EEE}] : System : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{BB64F8A7-BEE7-4E1A-AB8D-7D8273F7FDB6}] : Action Center CPL : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{BD84B380-8CA2-1069-AB1D-08000948F534}] : Font Folder : %SystemRoot%\system32\fontext.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{C555438B-3C23-4769-A71F-B6D3D9B6053A}] : Display : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{CB1B7F8C-C50A-4176-B604-9E24DEE8D4D1}] : Getting Started : %SystemRoot%\system32\OobeFldr.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{D17D1D6D-CC3F-4815-8FE3-607E7D5D10B3}] : Text to Speech
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{D20EA4E1-3957-11d2-A40B-0C5020524153}] : Administrative Tools : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{D555645E-D4F8-4c29-A827-D93C859C4F2A}] : Ease of Access : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{E2E7934B-DCE5-43C4-9576-7FE4F75E7480}] : Date and Time
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{E7DE9B1A-7533-4556-9484-B26FB486475E}] : Network Map : %SystemRoot%\system32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{E95A4861-D57A-4be1-AD0F-35267E261739}] : Windows SideShow : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{E9950154-C418-419e-A90A-20C5287AE24B}] : Sensors : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ControlPanel\NameSpace\{F2DDFC82-8F12-4CDD-B7DC-D4FE1425AA4D}] : Sound

¤¤¤¤¤¤¤¤¤¤ | Shell Extensions\Approved

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00C6D95F-329C-409a-81D7-C46C66EA7F33}] : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{80009818-f38f-4af1-87b5-eadab9433e58}] -> MF ADTS Property Handler : %SystemRoot%\System32\mf.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{0563DB41-F538-4B37-A92D-4659049B7766}] -> WLMD Message Handler
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{06A2568A-CED6-4187-BB20-400B8C02BE5A}]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F33137-EE26-412F-8D71-F84E4C2C6625}] : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{2BE99FD4-A181-4996-BFA9-58C5FFD11F6C}] -> Windows Live Photo Gallery Autoplay Drop Target
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C}] -> Windows Live Photo Gallery Viewer Drop Target
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F374B7-B390-4884-B372-2FC349F2172B}] -> Windows Live Photo Gallery Editor Drop Target
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F346CB-35A4-465B-8B8F-65A29DBAB1F6}] -> Windows Live Photo Gallery Viewer Drop Target Shim : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F3712A-CA79-45B4-9E4D-D7891E7F8B9D}] -> Windows Live Photo Gallery Editor Drop Target Shim : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F30F90-3E96-453B-AFCD-D71989ECC2C7}] -> Windows Live Photo Gallery Autoplay Drop Target Shim : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{08165EA0-E946-11CF-9C87-00AA005127ED}] -> WebCheckWebCrawler : C:\Windows\SysWOW64\webcheck.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{F5175861-2688-11d0-9C5E-00AA00A45957}] -> Subscription Folder : C:\Windows\SysWOW64\webcheck.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{E6FB5E20-DE35-11CF-9C87-00AA005127ED}] -> WebCheck
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{7D559C10-9FE9-11d0-93F7-00AA0059CE02}] -> Code Download Agent : C:\Windows\SysWOW64\webcheck.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{ABBE31D0-6DAE-11D0-BECA-00C04FD940BE}] -> Subscription Mgr : C:\Windows\SysWOW64\webcheck.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB}] -> WebCheck SyncMgr Handler : C:\Windows\SysWOW64\webcheck.dll
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{472083B0-C522-11CF-8763-00608CC02F24}] -> avast : C:\Program Files\AVAST Software\Avast\ashShell.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00C6D95F-329C-409a-81D7-C46C66EA7F33}] : %SystemRoot%\System32\shdocvw.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{80009818-f38f-4af1-87b5-eadab9433e58}] -> MF ADTS Property Handler : %SystemRoot%\System32\mf.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{0563DB41-F538-4B37-A92D-4659049B7766}] -> WLMD Message Handler
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{06A2568A-CED6-4187-BB20-400B8C02BE5A}]
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F33137-EE26-412F-8D71-F84E4C2C6625}] : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{2BE99FD4-A181-4996-BFA9-58C5FFD11F6C}] -> Windows Live Photo Gallery Autoplay Drop Target
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F30F64-AC33-42F5-8FD1-5DC2D3FDE06C}] -> Windows Live Photo Gallery Viewer Drop Target
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F374B7-B390-4884-B372-2FC349F2172B}] -> Windows Live Photo Gallery Editor Drop Target
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F346CB-35A4-465B-8B8F-65A29DBAB1F6}] -> Windows Live Photo Gallery Viewer Drop Target Shim : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F3712A-CA79-45B4-9E4D-D7891E7F8B9D}] -> Windows Live Photo Gallery Editor Drop Target Shim : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{00F30F90-3E96-453B-AFCD-D71989ECC2C7}] -> Windows Live Photo Gallery Autoplay Drop Target Shim : C:\Program Files (x86)\Windows Live\Photo Gallery\PhotoViewerShim.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{08165EA0-E946-11CF-9C87-00AA005127ED}] -> WebCheckWebCrawler : C:\Windows\SysWOW64\webcheck.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{F5175861-2688-11d0-9C5E-00AA00A45957}] -> Subscription Folder : C:\Windows\SysWOW64\webcheck.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{E6FB5E20-DE35-11CF-9C87-00AA005127ED}] -> WebCheck
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{7D559C10-9FE9-11d0-93F7-00AA0059CE02}] -> Code Download Agent : C:\Windows\SysWOW64\webcheck.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{ABBE31D0-6DAE-11D0-BECA-00C04FD940BE}] -> Subscription Mgr : C:\Windows\SysWOW64\webcheck.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{7FC0B86E-5FA7-11d1-BC7C-00C04FD929DB}] -> WebCheck SyncMgr Handler : C:\Windows\SysWOW64\webcheck.dll
[HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]|[{472083B0-C522-11CF-8763-00608CC02F24}] -> avast : C:\Program Files\AVAST Software\Avast\ashShell.dll
¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤ - 4288