ComboFix 14-07-25.01 - ***** 29/07/2014 8:01.8.2 - x64 MINIMAL Microsoft Windows 7 Édition Familiale Premium 6.1.7600.0.1252.32.1036.18.3996.2889 [GMT 2:00] Lancé depuis: c:\users\*****\Desktop\ComboFix.exe AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F} SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Un nouveau point de restauration a été créé . . ((((((((((((((((((((((((((((( Fichiers créés du 2014-06-28 au 2014-07-29 )))))))))))))))))))))))))))))))))))) . . 2014-07-29 06:11 . 2014-07-29 06:11 -------- d-----w- c:\users\Default\AppData\Local\temp 2014-07-29 06:11 . 2014-07-29 06:11 -------- d-----w- c:\users\Administrator\AppData\Local\temp 2014-07-29 05:38 . 2014-07-29 05:55 -------- d-----w- C:\log 2014-07-28 09:49 . 2014-07-02 03:09 10924376 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B0F465F8-4CDC-4102-889F-40A06B9C18D7}\mpengine.dll 2014-07-27 14:17 . 2008-01-19 17:45 45104 ----a-w- c:\windows\system32\drivers\v2imount.sys 2014-07-27 14:10 . 2007-12-20 15:13 165424 ----a-w- c:\windows\system32\drivers\symsnap.sys 2014-07-27 14:09 . 2014-07-27 14:17 -------- dc----w- c:\windows\system32\DRVSTORE 2014-07-27 10:59 . 2014-07-27 10:59 -------- d-----w- c:\users\*****\AppData\Roaming\Symantec 2014-07-27 10:59 . 2014-07-27 10:59 -------- d-----w- c:\users\*****\AppData\Local\Symantec_Corporation 2014-07-26 15:18 . 2014-07-26 15:18 -------- d-----w- c:\program files (x86)\Common Files\Symantec Shared 2014-07-26 14:59 . 2014-07-27 13:01 -------- d-----w- c:\program files (x86)\Norton Ghost 2014-07-26 14:59 . 2014-07-27 13:00 -------- d-----w- c:\programdata\Symantec 2014-07-23 20:26 . 2014-07-23 21:49 -------- d-----w- C:\97ed2e72a40a41a89ff79845e206183a 2014-07-21 21:27 . 2014-05-04 16:12 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E9607391-1CFF-4B38-9C78-B725AFFD1E09}\gapaengine.dll 2014-07-21 19:17 . 2014-07-21 19:18 -------- d-----w- C:\d3ed942af943cf295069472a 2014-07-20 10:11 . 2014-07-20 10:44 -------- d-----w- C:\7328e9b6d1a82d2499566b61 2014-07-20 09:46 . 2014-07-20 09:46 -------- d-----w- C:\968b5b1c3825adc4f553abb614f5af 2014-07-20 09:20 . 2014-07-20 09:37 -------- d-----w- C:\de32ca828caba8ba40c948c29e805f 2014-07-19 19:25 . 2014-07-19 19:28 -------- d-----w- C:\c822c9b5bf08d46eb8 2014-07-19 18:41 . 2014-07-19 18:41 -------- d-----w- C:\ee876e63d5d8c9d7084b70ed197642 2014-07-18 21:24 . 2014-07-18 21:52 -------- d-----w- C:\adb2b2068ced0a79cb6fbaa1a2e1 2014-07-18 18:11 . 2014-07-18 18:45 -------- d-----w- C:\6d0142a374cf338d9ceddbd12438 2014-07-18 09:51 . 2014-07-18 10:02 -------- d-----w- C:\159559a2a2eb14a61d2b0e8aecaa 2014-07-17 20:20 . 2014-07-28 09:44 -------- d-----r- C:\54c0a196337c78f81d32684d84 2014-07-17 17:43 . 2014-07-17 18:00 -------- d-----w- C:\2c19b43a7477190f5d48b752f0 2014-07-17 12:14 . 2014-07-17 12:39 -------- d-----w- C:\5c32860a219c5835223cbf4d17 . . . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2014-06-05 10:54 . 2014-06-28 08:08 10779000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2014-05-04 16:12 . 2011-09-01 12:17 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll . . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-06-13 39408] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "Norton Ghost 14.0"="c:\program files (x86)\Norton Ghost\Agent\VProTray.exe" [2008-01-19 2245984] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2011/06/13 14:31];c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl;c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [x] R2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x] R2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files\Motorola\Bluetooth\obexsrv.exe;c:\program files\Motorola\Bluetooth\obexsrv.exe [x] R2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x] R2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x] R2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [x] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [x] R2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe [x] R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x] R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [x] R2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe;c:\program files (x86)\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [x] R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x] R2 ntk_PowerDVD;ntk_PowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys [x] R2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [x] R3 Bluetooth Device Manager;Bluetooth Device Manager;c:\program files\Motorola\Bluetooth\devmgrsrv.exe;c:\program files\Motorola\Bluetooth\devmgrsrv.exe [x] R3 Bluetooth Media Service;Bluetooth Media Service;c:\program files\Motorola\Bluetooth\audiosrv.exe;c:\program files\Motorola\Bluetooth\audiosrv.exe [x] R3 BTMCOM;Bluetooth Serial Port;c:\windows\system32\Drivers\btmcom.sys;c:\windows\SYSNATIVE\Drivers\btmcom.sys [x] R3 BTMUSB;Motorola Bluetooth Radio Service;c:\windows\system32\Drivers\btmusb.sys;c:\windows\SYSNATIVE\Drivers\btmusb.sys [x] R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x] R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys;c:\windows\SYSNATIVE\drivers\IntcHdmi.sys [x] R3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x] R3 NisSrv;Inspection du réseau Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] R3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys;c:\windows\SYSNATIVE\DRIVERS\rtsuvc.sys [x] R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost] hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] 2010-01-22 18:06 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2014-07-21 20:08 1104200 ----a-w- c:\program files (x86)\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe . Contenu du dossier 'Tâches planifiées' . 2014-07-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-13 12:07] . 2014-07-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-13 12:07] . 2014-07-27 c:\windows\Tasks\HPCeeScheduleFor*****.job - c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2014-03-11 1271072] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "NCPluginUpdater"="c:\program files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" [2014-03-25 21720] . ------- Examen supplémentaire ------- . uLocal Page = c:\windows\system32\blank.htm uDefault_Search_URL = hxxp://www.google.com/ie mLocal Page = c:\windows\SysWOW64\blank.htm uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xporter vers Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000 IE: {{bd707fe6-39f6-4bda-9265-86a76719bdc5} - c:\program files\Motorola\Bluetooth\btmiesend.htm Trusted Zone: //about.htm/ Trusted Zone: //Exclude.htm/ Trusted Zone: //FWEvent.htm/ Trusted Zone: //LanguageSelection.htm/ Trusted Zone: //Message.htm/ Trusted Zone: //MyAgttryCmd.htm/ Trusted Zone: //MyAgttryNag.htm/ Trusted Zone: //MyNotification.htm/ Trusted Zone: //NOCLessUpdate.htm/ Trusted Zone: //quarantine.htm/ Trusted Zone: //ScanNow.htm/ Trusted Zone: //strings.vbs/ Trusted Zone: //Template.htm/ Trusted Zone: //Update.htm/ Trusted Zone: //VirFound.htm/ Trusted Zone: mcafee.com\* Trusted Zone: mcafeeasap.com\betavscan Trusted Zone: mcafeeasap.com\vs Trusted Zone: mcafeeasap.com\www TCP: DhcpNameServer = 192.168.1.1 . - - - - ORPHELINS SUPPRIMES - - - - . Wow6432Node-HKLM-Run- - (no file) AddRemove-{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE} - c:\program files (x86)\InstallShield Installation Information\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}\setup.exe . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher] "ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService" . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\{329F96B6-DF1E-4328-BFDA-39EA953C1312}] "ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl" . --------------------- CLES DE REGISTRE BLOQUEES --------------------- . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.032" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.abr" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.ani" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apd\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="ACDSeePhotoEditor.apd" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.bay" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.bw" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.cs1" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.cur" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.dcx" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.dib" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.djv" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.djvu" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.emf" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.eps" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.erf" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.fff" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.fpx" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.hdr" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.icl" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.icn" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.iff" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.ilbm" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.int" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.inta" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.iw4" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.j2c" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.j2k" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.jbr" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.jfif" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.jif" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.jp2" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.jpc" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.jpk" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.jpx" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.lbm" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.mef" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.mos" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nrw\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pbm" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pbr" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pcd" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pct" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pcx" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pgm" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pic" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pict" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pix" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.ppm" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.psd" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.psp" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pspbrush" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.pspimage" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.ras" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.rgb" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.rgba" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.rle" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.rsb" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rwl\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.rwl" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.sgi" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srw\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.srw" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.tga" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.thm" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice] @Denied: (2) (S-1-5-21-3459883454-2944937971-1405935997-1001) @Denied: (2) (LocalSystem) "Progid"="Google.PhotoViewer.3.0" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.ttc" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.ttf" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v40po\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.v40po" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v40pp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.v40pp" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v40ppf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.v40ppf" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.wbm" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.wbmp" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.wmf" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.xbm" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.xif" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xmp\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.xmp" . [HKEY_USERS\S-1-5-21-3459883454-2944937971-1405935997-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice] @Denied: (2) (LocalSystem) "Progid"="ACDSee Pro 4.xpm" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10s_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10s_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash10s.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Heure de fin: 2014-07-29 08:13:44 ComboFix-quarantined-files.txt 2014-07-29 06:13 ComboFix2.txt 2014-07-29 05:22 ComboFix3.txt 2014-07-29 01:18 ComboFix4.txt 2014-07-28 09:16 . Avant-CF: 424.829.648.896 octets libres Après-CF: 424.700.907.520 octets libres . - - End Of File - - FEC16EDF4880733CCDA4A3BA9903C892 A36C5E4F47E84449FF07ED3517B43A31