--------------- QuickDiag | g3n-h@ckm@n | V8.028.22.1 --------------- ----- XP | Vista | 7 | 8 | 8.1 | 10 - 32/64 bits ----- - Start 13/02/2022 23:05:34 Updated 28/01/2022 | 10:00 (GMT) by g3n-h@ckm@n Contact : http://www.sosvirus.net/ Time Zone : (UTC+01:00) Bruxelles, Copenhague, Madrid, Paris [Gregy&Justy (Administrator)] - [GREGYJUSTY] (S-1-5-21-3649652723-2583502882-2903364766-1000) PC : Acer AOD255 X86-based PC System: Microsoft Windows 7 Edition Starter - X86 - (6.1.7600) - BuildType: Multiprocessor Free - OSLanguage: 1036 (040c) -> () System: AutoReboot: False - DebugFilePath: %SystemRoot%\MEMORY.DMP - KernelDumpOnly: False - OverwriteExistingDebugFile: True - WriteDebugInfo: True - WriteToSystemLog: False Boot : Microsoft Windows 7 Edition Starter |C:\Windows|\Device\Harddisk0\Partition4 Boot : Fail-safe with network boot PC: AOD255 - Acer - IdNumber: LUSDG0D017032328551601 - UUID: 364EE69C-9C82-9CB1-2111-88AE1D77F7A2 Processor : Intel(R) Atom(TM) CPU N450 @ 1.66GHz (GenuineIntel) - Clock Speed : 1662 - Socket : CPU - Stauts : OK BIOS : Acer InsydeH2O Version V1.00 - SN : LUSDG0D017032328551601 - Status : OK - Version : ACRSYS - 1 - PrimaryBios : True - CurrentLanguage : - OtherTargetOS : CoreTemp : 50 Celsius ----------| Extended ---------- | SoundDevice Realtek High Definition Audio - Status: Unknown - Manufacturer: Realtek - PNPDeviceID: HDAUDIO\FUNC_01&VEN_10EC&DEV_0272&SUBSYS_10250349&REV_1000\4&350CB3CC&0&0001 ---------- | Video Intel(R) Graphics Media Accelerator 3150 - Resolution: x - Colors: - RefreshRate: - Bits Per Pixel - DeviceID: VideoController1 - Drivers: igdumdx32.dll - PNPDeviceID: PCI\VEN_8086&DEV_A011&SUBSYS_03491025&REV_00\3&33FD14CA&0&10 - AdapterCompatibility: Intel Corporation - RAM: 268435456 Intel(R) Graphics Media Accelerator 3150 - Resolution: x - Colors: - RefreshRate: - Bits Per Pixel - DeviceID: VideoController2 - Drivers: igdumdx32.dll - PNPDeviceID: PCI\VEN_8086&DEV_A012&SUBSYS_03491025&REV_00\3&33FD14CA&0&11 - AdapterCompatibility: Intel Corporation - RAM: Inegrated Video Chipset DeviceName: Intel(R) Graphics Media Accelerator 3150 - DriverVersion: 8.14.10.2567 - SpecificationVersion: 1025 ---------- | Codecs c:\windows\system32\msadp32.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 18432 - Manufacturer: Microsoft Corporation - Status: OK c:\windows\system32\iyuv_32.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 50176 - Manufacturer: Microsoft Corporation - Status: OK c:\windows\system32\tsbyuv.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 12288 - Manufacturer: Microsoft Corporation - Status: OK c:\windows\system32\msyuv.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 22016 - Manufacturer: Microsoft Corporation - Status: OK c:\windows\system32\msgsm32.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 23552 - Manufacturer: Microsoft Corporation - Status: OK c:\windows\system32\msg711.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 12288 - Manufacturer: Microsoft Corporation - Status: OK c:\windows\system32\imaadp32.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 17920 - Manufacturer: Microsoft Corporation - Status: OK c:\windows\system32\msvidc32.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 31744 - Manufacturer: Microsoft Corporation - Status: OK c:\windows\system32\msrle32.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 13312 - Manufacturer: Microsoft Corporation - Status: OK c:\windows\system32\l3codeca.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 64000 - Manufacturer: Fraunhofer Institut Integrierte Schaltungen IIS - Status: OK c:\windows\system32\iccvid.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 82944 - Manufacturer: Radius Inc. - Status: OK c:\windows\system32\sirenacm.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 48448 - Manufacturer: Microsoft Corporation - Status: OK c:\windows\system32\ir50_32.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 746496 - Manufacturer: Intel Corporation - Status: OK c:\windows\system32\x264vfw.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 3850240 - Manufacturer: x264vfw project - Status: OK c:\windows\system32\lagarith.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 216064 - Manufacturer: - Status: OK c:\windows\system32\xvidvfw.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 284160 - Manufacturer: - Status: OK c:\windows\system32\ac3acm.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 122880 - Manufacturer: fccHandler - Status: OK c:\windows\system32\ff_vfw.dll - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 112128 - Manufacturer: - Status: OK c:\windows\system32\l3codecp.acm - ClassName: Win32_CodecFile - FSName: NTFS - FileSize: 220672 - Manufacturer: Fraunhofer Institut Integrierte Schaltungen IIS - Status: OK ---------- | Memory Pagefile = Total (MB) : 2086 | Free (MB) : 857 Virtual = Total (MB) : 2097 | Free (MB) : 1930 Physical Memory (MB) -------------------- Total: 1013 Available: 186 Cached: 106475 Free: 145 System ------ Handles: 15178 Processes: 48 Threads: 558 ---------- | SID Users Administrateur : [S-1-5-21-3649652723-2583502882-2903364766-500] Gregy&Justy : [S-1-5-21-3649652723-2583502882-2903364766-1000] Invite : [S-1-5-21-3649652723-2583502882-2903364766-501] Administrateurs : [S-1-5-32-544] IIS_IUSRS : [S-1-5-32-568] Invites : [S-1-5-32-546] Lecteurs des journaux d’evenements : [S-1-5-32-573] Utilisateurs : [S-1-5-32-545] Utilisateurs de l’Analyseur de performances : [S-1-5-32-558] Utilisateurs du journal de performances : [S-1-5-32-559] Utilisateurs du modele COM distribue : [S-1-5-32-562] ---------- | Drives C:\ -> [Fixed] | [Acer] | Total : 215.79 Go | Free : 26.5 Go -> NTFS [ATA] D:\ -> [Fixed] | [] | Total : 4 Go | Free : 1.01 Go -> FAT32 [ATA] G:\ -> [Removable] | [CUBUNTU ONE] | Total : 7.2 Go | Free : 0.04 Go -> FAT32 [USB] H:\ -> [Removable] | [] | Total : 7.49 Go | Free : 1.81 Go -> FAT32 [USB] I:\ -> [Removable] | [] | Total : 7.5 Go | Free : 7.5 Go -> FAT32 [USB] J:\ -> [Removable] | [WIDEN52] | Total : 29.3 Go | Free : 27.94 Go -> FAT32 [USB] K:\ -> [Removable] | [FRAMA SALIX] | Total : 14.54 Go | Free : 1.83 Go -> FAT32 [USB] L:\ -> [Removable] | [WIDEN52] | Total : 1.86 Go | Free : 1.86 Go -> FAT [USB] N:\ -> [Removable] | [] | Total : 29.27 Go | Free : 13.33 Go -> FAT32 [USB] O:\ -> [Removable] | [] | Total : 29.28 Go | Free : 2.39 Go -> FAT32 [USB] P:\ -> [Removable] | [] | Total : 58.59 Go | Free : 55.95 Go -> exFAT [USB] R:\ -> [Removable] | [] | Total : 29.28 Go | Free : 12.88 Go -> FAT32 [USB] Drive: 0 Cylinders: 30401 Tracks per Cylinder: 255 Sectors per Track: 63 Bytes per Sector: 512 Total Space: 250059350016 bytes Drive: 1 Cylinders: 15198 Tracks per Cylinder: 255 Sectors per Track: 63 Bytes per Sector: 512 Total Space: 125015425024 bytes Drive: 2 Cylinders: 0 Tracks per Cylinder: 0 Sectors per Track: 0 Bytes per Sector: 512 Total Space: 0 bytes Drive: 3 Cylinders: 942 Tracks per Cylinder: 255 Sectors per Track: 63 Bytes per Sector: 512 Total Space: 7750287360 bytes Drive: 4 Cylinders: 979 Tracks per Cylinder: 255 Sectors per Track: 63 Bytes per Sector: 512 Total Space: 8053063680 bytes Drive: 5 Cylinders: 979 Tracks per Cylinder: 255 Sectors per Track: 63 Bytes per Sector: 512 Total Space: 8054112256 bytes Drive: 6 Cylinders: 243 Tracks per Cylinder: 255 Sectors per Track: 63 Bytes per Sector: 512 Total Space: 2002780160 bytes Drive: 7 Cylinders: 1899 Tracks per Cylinder: 255 Sectors per Track: 63 Bytes per Sector: 512 Total Space: 15623782400 bytes Drive: 8 Cylinders: 3824 Tracks per Cylinder: 255 Sectors per Track: 63 Bytes per Sector: 512 Total Space: 31457280000 bytes Drive: 9 Cylinders: 3826 Tracks per Cylinder: 255 Sectors per Track: 63 Bytes per Sector: 512 Total Space: 31474155520 bytes ---------- | Windows updates - Activation - License W.A.T : :) Next search : 2022-02-12 16:23:13 Service Pack 1 not installed !!! Personal Licence ---------- | Browsers IE : 8.0.7600.16385 (© Microsoft Corporation. Tous droits reserves.) FF : 97.0.0.8068 (©Firefox and Mozilla Developers; available under the MPL 2 license.) GC : 98.0.4758.82 (Copyright 2022 Google LLC.) Default : "C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --single-argument ---------- | FlashPlayer ---------- | Security AV : AS : Windows Defender Disabled FW : WINDOWS Firewall WMI : OK WU: Windows Update Service [Manual(3)] = stopped AS: Windows Defender [Manual(3)] = stopped WMI: Windows Management Instrumentation [Auto(2)] = Running ---------- | Running processes 240 | [Owner : Systeme | Parent : 4(System) | 0.39 Mo] - (.Microsoft Corporation - Gestionnaire de sessions Windows.) - (6.1.7600.16385) = C:\Windows\System32\smss.exe [14/07/2009 00:11:12] 336 | [Owner : Systeme | Parent : 328() | 0.67 Mo] - (.Microsoft Corporation - Processus d’execution client-serveur.) - (6.1.7600.16385) = C:\Windows\System32\csrss.exe [14/07/2009 00:11:09] 372 | [Owner : Systeme | Parent : 364() | 2.35 Mo] - (.Microsoft Corporation - Processus d’execution client-serveur.) - (6.1.7600.16385) = C:\Windows\System32\csrss.exe [14/07/2009 00:11:09] 380 | [Owner : Systeme | Parent : 328() | 0.13 Mo] - (.Microsoft Corporation - Application de demarrage de Windows.) - (6.1.7600.16385) = C:\Windows\System32\wininit.exe [14/07/2009 00:36:49] 420 | [Owner : Systeme | Parent : 364() | 0.33 Mo] - (.Microsoft Corporation - Application d’ouverture de session Windows.) - (6.1.7600.16447) = C:\Windows\System32\winlogon.exe [01/07/2010 13:35:15] 468 | [Owner : Systeme | Parent : 380(wininit.exe) | 1.92 Mo] - (.Microsoft Corporation - Applications Services et Controleur.) - (6.1.7600.16385) = C:\Windows\System32\services.exe [14/07/2009 00:11:26] 476 | [Owner : Systeme | Parent : 380(wininit.exe) | 2.87 Mo] - (.Microsoft Corporation - Local Security Authority Process.) - (6.1.7600.16385) = C:\Windows\System32\lsass.exe [14/07/2009 00:11:58] 484 | [Owner : Systeme | Parent : 380(wininit.exe) | 0.96 Mo] - (.Microsoft Corporation - Service du gestionnaire de session locale.) - (6.1.7600.16385) = C:\Windows\System32\lsm.exe [14/07/2009 01:02:46] 580 | [Owner : Systeme | Parent : 468(services.exe) | 3.06 Mo] - (.Microsoft Corporation - Processus hote pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe [14/07/2009 00:19:28] 660 | [Owner : SERVICE RESEAU | Parent : 468(services.exe) | 2.17 Mo] - (.Microsoft Corporation - Processus hote pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe [14/07/2009 00:19:28] 752 | [Owner : SERVICE LOCAL | Parent : 468(services.exe) | 3.12 Mo] - (.Microsoft Corporation - Processus hote pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe [14/07/2009 00:19:28] 788 | [Owner : Systeme | Parent : 468(services.exe) | 9.39 Mo] - (.Microsoft Corporation - Processus hote pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe [14/07/2009 00:19:28] 832 | [Owner : Systeme | Parent : 468(services.exe) | 1.86 Mo] - (.Microsoft Corporation - Processus hote pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe [14/07/2009 00:19:28] 880 | [Owner : SERVICE LOCAL | Parent : 468(services.exe) | 1.55 Mo] - (.Microsoft Corporation - Processus hote pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe [14/07/2009 00:19:28] 908 | [Owner : SERVICE RESEAU | Parent : 468(services.exe) | 4.82 Mo] - (.Microsoft Corporation - Processus hote pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe [14/07/2009 00:19:28] 1028 | [Owner : SERVICE LOCAL | Parent : 468(services.exe) | 2.1 Mo] - (.Microsoft Corporation - Processus hote pour les services Windows.) - (6.1.7600.16385) = C:\Windows\System32\svchost.exe [14/07/2009 00:19:28] 1356 | [Owner : Gregy&Justy | Parent : 1348() | 47.82 Mo] - (.Microsoft Corporation - Explorateur Windows.) - (6.1.7600.16450) = C:\Windows\explorer.exe [01/07/2010 13:35:15] 1400 | [Owner : Gregy&Justy | Parent : 1356(explorer.exe) | 0.54 Mo] - (.Microsoft Corporation - Chargeur CTF.) - (6.1.7600.16385) = C:\Windows\System32\ctfmon.exe [14/07/2009 00:26:10] 1516 | [Owner : Gregy&Justy | Parent : 580(svchost.exe) | 1.34 Mo] - (.Microsoft Corporation - Aide et support Microsoft.) - (6.1.7600.16385) = C:\Windows\HelpPane.exe [14/07/2009 01:12:58] 1580 | [Owner : Gregy&Justy | Parent : 1316() | 132.19 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 1952 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 1.58 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 1768 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 23.04 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 1228 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 5.52 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 2012 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 125.02 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 1136 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 118.56 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 2180 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 45.74 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 2264 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 110.92 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 2516 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 5.13 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 3284 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 56.14 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 3460 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 17.22 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 3672 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 102.13 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 1452 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 3.87 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 1416 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 18.67 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 3032 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 0.51 Mo] - (.Apowersoft - Apowersoft Installer.) - (1.1.1.2) = C:\Users\Gregy&Justy\Downloads\screencapturepro-setup.exe [12/02/2022 21:14:28] 3376 | [Owner : Gregy&Justy | Parent : 3032(screencapturepro-setup.exe) | 0.33 Mo] - (.APOWERSOFT LIMITED - Apowersoft Screen Capture Pro Setup .) - (1.4.9.12) = C:\Users\GRGY&J~1\AppData\Local\Temp\installer.exe [13/02/2022 16:40:59] 3564 | [Owner : Gregy&Justy | Parent : 3376(installer.exe) | 1.59 Mo] - (.- Setup/Uninstall.) - (51.1052.0.0) = C:\Users\GRGY&J~1\AppData\Local\Temp\is-89NB9.tmp\installer.tmp [13/02/2022 16:41:51] 3736 | [Owner : Gregy&Justy | Parent : 3564(installer.tmp) | 0.16 Mo] - (.Microsoft Corporation - Microsoft .NET Framework 4 Setup.) - (4.0.30319.1) = C:\Users\GRGY&J~1\AppData\Local\Temp\is-MO77G.tmp\dotnetfx40.exe [13/02/2022 16:41:56] 2684 | [Owner : Gregy&Justy | Parent : 3736(dotnetfx40.exe) | 1.32 Mo] - (.Microsoft Corporation - Setup Installer.) - (10.0.30319.1) = C:\9bc0f91cc312d22ba97710c5\Setup.exe [18/03/2010 21:16:28] 2072 | [Owner : Gregy&Justy | Parent : 3572() | 4.26 Mo] - (.Greenshot - Greenshot.) - (1.2.10.6) = C:\Program Files\Greenshot\Greenshot.exe [13/02/2022 20:17:51] 3884 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 0.53 Mo] - (.Yandex - Screenshots in Yandex.Disk.) - (3.0.0.9999) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\22.1.3.850\screenshot_editor.exe [10/02/2022 20:01:37] 3660 | [Owner : Gregy&Justy | Parent : 2940() | 19.34 Mo] - (.voidtools - Everything.) - (1.4.1.1015) = C:\Program Files\Everything\Everything.exe [06/02/2022 07:30:50] 1340 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 66.24 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 3664 | [Owner : Gregy&Justy | Parent : 1580(browser.exe) | 10.98 Mo] - (.YANDEX LLC - Yandex with voice assistant Alice.) - (22.1.3.850) = C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe [05/02/2022 14:45:06] 2928 | [Owner : Gregy&Justy | Parent : 1356(explorer.exe) | 40.42 Mo] - (.SosVirus - QuickDiag.) - (8.28.22.1) = C:\Users\Gregy&Justy\Desktop\QuickDiag.exe [13/02/2022 22:54:51] 848 | [Owner : SERVICE RESEAU | Parent : 580(svchost.exe) | 8.46 Mo] - (.Microsoft Corporation - WMI Provider Host.) - (6.1.7600.16385) = C:\Windows\System32\wbem\WmiPrvSE.exe [14/07/2009 00:30:40] 1884 | [Owner : Systeme | Parent : 580(svchost.exe) | 4.6 Mo] - (.Microsoft Corporation - WMI Provider Host.) - (6.1.7600.16385) = C:\Windows\System32\wbem\WmiPrvSE.exe [14/07/2009 00:30:40] ---------- | Locked Applications ---------- | Policy Restrictions ---------- | Explorer.exe Modules (Microsoft Files Whitelisted) (.Egis Technology Inc..-.PSD DragDrop Protection.) - (3.1.212.0) -- C:\Program Files\EgisTec MyWinLocker\x86\psdprotect.dll (.Egis Technology Inc..-.WinLocker System Environment Library.) - (3.1.212.0) -- C:\Program Files\EgisTec MyWinLocker\x86\sysenv.dll (.Apple Inc..-.Bonjour Namespace Provider.) - (3.0.0.10) -- C:\Program Files\Bonjour\mdnsNSP.dll (.Alexander Roshal.-.WinRAR shell extension.) - (6.10.0.0) -- C:\Program Files\WinRAR\rarext.dll (.Igor Pavlov.-.7-Zip Shell Extension.) - (21.6.0.0) -- C:\Program Files\7-Zip\7-zip.dll (.Egis Technology Inc..-.ShredderContextMenu.) - (2.0.8.3) -- C:\Program Files\EgisTec Shredder\x86\ShredderContextMenu.dll (.Egis Technology Inc..-.Frame Utility Dynamic Link Library.) - (1.6.34.0) -- C:\Program Files\EgisTec Shredder\x86\FrameUtility.dll (.Egis Technology Inc..-.LibFrame Release Library.) - (1.6.37.0) -- C:\Program Files\EgisTec Shredder\x86\LibFrame.dll (..-.360 Total Security.) - (9.6.0.1022) -- C:\Program Files\360\Total Security\MenuEx.dll (.Tracker Software Products (Canada) Ltd..-.PDF-XChange Shell Menu Extension.) - (9.2.359.0) -- C:\Program Files\Tracker Software\Shell Extensions\XCShellMenu.x86.dll (.IObit.-.IUMenuRightExtension.) - (11.0.0.0) -- C:\Program Files\IObit\IObit Uninstaller\IUMenuRight.dll (..-..) - (0.0.0.0) -- C:\Program Files\NCH Software\Fling\fldll.dll (..-..) - (0.0.0.0) -- C:\Program Files\NCH Software\ExpressZip\ezcm.dll (.Egis Technology Inc..-.Shell Extention.) - (3.1.212.0) -- C:\Program Files\EgisTec MyWinLocker\x86\mwlshellext.dll (.Anvisoft.-.Anvi Smart Defender Service.) - (1.6.1.1171) -- C:\Program Files\Anvisoft\Anvi Smart Defender\ContextMenu.dll (.AIMP DevTeam.-.Context Menu Extension.) - (4.0.0.0) -- C:\Program Files\AIMP\System\aimp_menu32.dll (.IObit.-.ASCExtMenu Module.) - (15.0.0.16) -- C:\Program Files\IObit\Advanced SystemCare\ASCExtMenu.dll ---------- | Winlogon.exe Modules (Microsoft Files Whitelisted) ---------- | svchost.exe Modules (Microsoft Files Whitelisted) (.Apple Inc..-.Bonjour Namespace Provider.) - (3.0.0.10) -- C:\Program Files\Bonjour\mdnsNSP.dll ---------- | Windows Installer Installations (LogMeIn) GoToMeeting 10.18.19932 - Install. : 13/02/2022 - Package : C:\Windows\Installer\e0abf8.msi (Reason Software Company Inc.) Boost - Install. : 28/01/2022 - Package : C:\Windows\Installer\931fc.msi (Microsoft Corporation) Microsoft Application Error Reporting - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf298.msi (HARMAN International) Adobe AIR - Install. : 13/02/2022 - Package : c:\Windows\Installer\ac8bb8.msi (Google Inc.) Google Toolbar for Internet Explorer - Install. : 01/07/2010 - Package : C:\Windows\Installer\7a96c.msi (Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2db.msi (Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 - Install. : 05/02/2022 - Package : c:\Windows\Installer\63f3bfa.msi (Microsoft Corporation) Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 - Install. : 05/02/2022 - Package : C:\Windows\Installer\642bb64.msi (Microsoft Corporation) Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 - Install. : 05/02/2022 - Package : C:\Windows\Installer\642bb6a.msi (Microsoft Corporation) Microsoft Games for Windows - LIVE Redistributable - Install. : 13/02/2022 - Package : c:\Windows\Installer\e0abec.msi (Egis Technology Inc.) Shredder - Install. : 01/07/2010 - Package : C:\Windows\Installer\7a9a6.msi (Egis Technology Inc.) MyWinLocker Suite - Install. : 01/07/2010 - Package : C:\Windows\Installer\7a971.msi (Microsoft Corporation) Microsoft Visual C++ 2019 X86 Minimum Runtime - 14.23.27820 - Install. : 13/02/2022 - Package : C:\Windows\Installer\d059bc.msi (Microsoft Corporation) Installation Windows Live - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2bc.msi (Oracle Corporation) Java 8 Update 321 - Install. : 13/02/2022 - Package : C:\Windows\Installer\e0abfe.msi (Nom de votre societe) AndroidInstaller - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf28c.msi (Microsoft Corporation) Windows Live Mail - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2d5.msi (Adobe Systems Incorporated) Adobe Reader 9.1 MUI - Install. : 01/07/2010 - Package : C:\Windows\Installer\7a9b2.msi (Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 - Install. : 05/02/2022 - Package : c:\Windows\Installer\63f3bf3.msi (Microsoft) MSVCRT - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf29e.msi (Microsoft Corporation) Windows Live Call - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2aa.msi (Microsoft Corporation) Microsoft Visual C++ 2019 X86 Additional Runtime - 14.23.27820 - Install. : 13/02/2022 - Package : C:\Windows\Installer\d059c2.msi (Microsoft Corporation) Windows Live FolderShare - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2e1.msi (Microsoft Corporation) Windows Live Writer - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2f4.msi (Ask.com) Ask Toolbar - Install. : 09/02/2022 - Package : C:\Windows\Installer\977364.msi (Microsoft Corporation) Microsoft Choice Guard - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2c2.msi (Microsoft Corporation) Microsoft XNA Framework Redistributable 3.0 - Install. : 13/02/2022 - Package : C:\Windows\Installer\e0abf2.msi (Tracker Software Products (Canada) Ltd.) PDF-XChange Editor - Install. : 13/02/2022 - Package : C:\Windows\Installer\e0ac0a.msi (Microsoft Corporation) Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 - Install. : 05/02/2022 - Package : C:\Windows\Installer\642bb5e.msi (Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - Install. : 05/02/2022 - Package : C:\Windows\Installer\63f3bec.msi (Microsoft Corporation) Microsoft Games for Windows Marketplace - Install. : 13/02/2022 - Package : c:\Windows\Installer\e0abe6.msi (Microsoft Corporation) Windows Live Messenger - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2c9.msi (Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 - Install. : 01/07/2010 - Package : c:\Windows\Installer\7a967.msi (Microsoft Corporation) Microsoft XNA Framework Redistributable 3.1 - Install. : 13/02/2022 - Package : C:\Windows\Installer\e0abd2.msi (Microsoft Corporation) Microsoft Silverlight - Install. : 13/02/2022 - Package : c:\Windows\Installer\7a95c.msi (Microsoft Corporation) Galerie de photos Windows Live - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2e7.msi (Microsoft Corporation) Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 - Install. : 05/02/2022 - Package : C:\Windows\Installer\642bb58.msi (Microsoft Corporation) Outil de telechargement Windows Live - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2b0.msi (8GadgetPack.net) 8GadgetPack - Install. : 13/02/2022 - Package : C:\Windows\Installer\ac8ba4.msi (Microsoft Corporation) Windows Live Communications Platform - Install. : 26/12/2021 - Package : C:\Windows\Installer\cf2a4.msi (Oracle Corporation) Java Auto Updater - Install. : 13/02/2022 - Package : C:\Windows\Installer\e0ac04.msi () AdAwareInstaller - Install. : // - Package : ---------- | Windows Updates KB971468 - Installed On : 07/01/2010 - [Security Update] KB972270 - Installed On : 07/01/2010 - [Security Update] KB972636 - Installed On : 07/01/2010 - [Update] KB973525 - Installed On : 07/01/2010 - [Security Update] KB974332 - Installed On : 07/01/2010 - [Update] KB974431 - Installed On : 07/01/2010 - [Update] KB974455 - Installed On : 07/01/2010 - [Security Update] KB974571 - Installed On : 07/01/2010 - [Security Update] KB974624 - Installed On : 07/01/2010 - [Hotfix] KB975364 - Installed On : 07/01/2010 - [Update] KB975467 - Installed On : 07/01/2010 - [Hotfix] KB975560 - Installed On : 07/01/2010 - [Security Update] KB975806 - Installed On : 12/26/2021 - [Hotfix] KB975851 - Installed On : 07/01/2010 - [Hotfix] KB976098 - Installed On : 07/01/2010 - [Update] KB976264 - Installed On : 07/01/2010 - [Update] KB976325 - Installed On : 07/01/2010 - [Security Update] KB976422 - Installed On : 07/01/2010 - [Hotfix] KB976662 - Installed On : 07/01/2010 - [Update] KB976749 - Installed On : 07/01/2010 - [Update] KB977074 - Installed On : 07/01/2010 - [Update] KB977132 - Installed On : 07/01/2010 - [Hotfix] KB977165 - Installed On : 07/01/2010 - [Security Update] KB978207 - Installed On : 07/01/2010 - [Update] KB978251 - Installed On : 07/01/2010 - [Security Update] KB978258 - Installed On : 07/01/2010 - [Hotfix] KB978262 - Installed On : 07/01/2010 - [Security Update] KB978506 - Installed On : 07/01/2010 - [Update] KB978601 - Installed On : 07/01/2010 - [Security Update] KB979099 - Installed On : 07/01/2010 - [Update] KB979306 - Installed On : 07/01/2010 - [Update] KB979309 - Installed On : 07/01/2010 - [Security Update] KB979482 - Installed On : 12/26/2021 - [Security Update] KB979538 - Installed On : 07/01/2010 - [Hotfix] KB979559 - Installed On : 12/26/2021 - [Security Update] KB979683 - Installed On : 07/01/2010 - [Security Update] KB979745 - Installed On : 07/01/2010 - [Hotfix] KB980182 - Installed On : 07/01/2010 - [Update] KB980195 - Installed On : 12/26/2021 - [Security Update] KB980218 - Installed On : 12/26/2021 - [Security Update] KB980232 - Installed On : 07/01/2010 - [Security Update] KB980302 - Installed On : 07/01/2010 - [Update] KB980408 - Installed On : 07/01/2010 - [Update] KB981332 - Installed On : 07/01/2010 - [Security Update] KB981793 - Installed On : 12/26/2021 - [Update] KB982381 - Installed On : 12/26/2021 - [Security Update] KB982632 - Installed On : 12/26/2021 - [Update] ---------- | ZeroAccess Check [HKLM\Software\Classes\CLSID\{1108BE51-F58A-4CDA-BB99-7A0227D11D5E}\InProcServer32] : %systemroot%\system32\wbem\fastprox.dll [HKLM\Software\Classes\CLSID\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] : %SystemRoot%\system32\shell32.dll [HKLM\Software\Classes\CLSID\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] : %systemroot%\system32\wbem\fastprox.dll [HKLM\Software\Classes\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] : %systemroot%\system32\wbem\wbemess.dll [HKLM\Software\Classes\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] : %SystemRoot%\system32\shell32.dll ---------- | Startings up C:\Users\Gregy&Justy\AppAdata\Roaming\Microsoft\Start Menu\Programs\Startup\Stardock ObjectDock.lnk|Stardock ObjectDock : C:\PROGRA~1\Stardock\ObjectDock\ObjectDock.exe [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Fling] : "C:\Program Files\NCH Software\Fling\fling.exe" -logon [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Advanced SystemCare] : "C:\Program Files\IObit\Advanced SystemCare\ASCTray.exe" /Auto [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Opera Browser Assistant] : C:\Users\Gregy&Justy\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[GoToMeeting] : "C:\Users\Gregy&Justy\AppData\Local\GoToMeeting\19932\g2mstart.exe" "/Trigger RunAtLogon" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[DriverFix] : "C:\Program Files\DriverFix\DriverFix.exe" -auto [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[GoogleChromeAutoLaunch_488E00D85983A0C41C30BD4F17BF1BB0] : "C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --shutdown-if-not-closed-by-system-restart C:\ProgramData\Microsoft\Start Menu\Programs\Startup\Intego Antivirus.lnk|Intego Antivirus : C:\PROGRA~1\Intego\Intego.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[FileFort] : "C:\Program Files\NCH Software\FileFort\filefort.exe" -logon [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[persistence module] : rem|"C:\Windows\system32\igfxpers.exe" [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[PLFSetL] : C:\Windows\PLFSetL.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[QHSafeTray] : "C:\Program Files\360\Total Security\safemon\QHSafeTray.exe" /start [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Greenshot] : C:\Program Files\Greenshot\Greenshot.exe [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Everything] : "C:\Program Files\Everything\Everything.exe" -startup [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Command Processor] "CompletionChar"=9 "DefaultColor"=0 "EnableExtensions"=1 "PathCompletionChar"=9 "DelayedExpansion"=0 [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Fling"="C:\Program Files\NCH Software\Fling\fling.exe" -logon "Advanced SystemCare"="C:\Program Files\IObit\Advanced SystemCare\ASCTray.exe" /Auto "Opera Browser Assistant"=C:\Users\Gregy&Justy\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [13/02/2022 00:51:18] "GoToMeeting"="C:\Users\Gregy&Justy\AppData\Local\GoToMeeting\19932\g2mstart.exe" "/Trigger RunAtLogon" "DriverFix"="C:\Program Files\DriverFix\DriverFix.exe" -auto "GoogleChromeAutoLaunch_488E00D85983A0C41C30BD4F17BF1BB0"="C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --shutdown-if-not-closed-by-system-restart [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\RunMRU] "a"=notepad\1 "MRUList"=cba "b"=msconfig\1 "c"=C:\Users\Gregy&Justy\Downloads\tgup0018.exe\1 [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "DebugOptions"=2048 "Documents"= "DosPrint"=no "Load"= "NetMessage"=no "NullPort"=None "Programs"=com exe bat pif cmd "Device"=Microsoft XPS Document Writer,winspool,Ne00: "UserSelectedDefault"=0 [HKLM\Software\Microsoft\Command Processor] "CompletionChar"=64 "DefaultColor"=0 "EnableExtensions"=1 "PathCompletionChar"=64 "DelayedExpansion"=0 [HKLM\Software\Microsoft\Windows\CurrentVersion\Run] "FileFort"="C:\Program Files\NCH Software\FileFort\filefort.exe" -logon "persistence module"=rem|"C:\Windows\system32\igfxpers.exe" "PLFSetL"=C:\Windows\PLFSetL.exe [17/01/2022 07:07:01] "QHSafeTray"="C:\Program Files\360\Total Security\safemon\QHSafeTray.exe" /start "Greenshot"=C:\Program Files\Greenshot\Greenshot.exe [13/02/2022 20:17:51] "Everything"="C:\Program Files\Everything\Everything.exe" -startup [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "IconServiceLib"=IconCodecService.dll "DdeSendTimeout"=0 "DesktopHeapLogging"=1 "GDIProcessHandleQuota"=10000 "ShutdownWarningDialogTimeout"=4294967295 "USERNestedWindowLimit"=50 "USERPostMessageLimit"=10000 "USERProcessHandleQuota"=10000 ""=mnmsrvc "DeviceNotSelectedTimeout"=15 "Spooler"=yes "TransmissionRetryTimeout"=90 "AppInit_DLLs"=C:\PROGRA~1\KEYCRY~1\KEYCRY~3.DLL [14/01/2022 19:07:32] "LoadAppInit_DLLs"=1 "System"= "Applnit_DLLs"= "RequireSignedAppInit_DLLs"=1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] "WebCheck"={E6FB5E20-DE35-11CF-9C87-00AA005127ED} ---------- | Win.ini : ---------- | System.ini : ---------- | Tasks List Anvi AD Blocker Ultimate ASD_Main ASR-Startup FixMeStickRunOnReboot G2MUpdateTask-S-1-5-21-3649652723-2583502882-2903364766-1000 G2MUploadTask-S-1-5-21-3649652723-2583502882-2903364766-1000 Mise a jour du navigateur Yandex Mise a jour systeme du Navigateur Yandex Reparation du service de mise a jour de navigateur Yandex Scheduled Update for Ask Toolbar TrackerAutoUpdate ---------- | Startings up registry ¦ Folder [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acer ePower Management] : C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [26/12/2021 12:45:22] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Adobe Reader Speed Launcher] : "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AndroidManager] : C:\Program Files\Acer\Android Manager\AML.exe [08/01/2010 10:47:52] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AntiLogger] : "C:\Program Files\AntiLogger\AntiLogger.exe" /minimized [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Apoint] : C:\Program Files\Apoint2K\Apoint.exe [01/07/2010 14:14:08] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Copper] : "C:\Program Files\NCH Software\Copper\copper.exe" -logon [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EgisTecPMMUpdate] : "C:\Program Files\EgisTec IPS\PmmUpdate.exe" [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EgisUpdate] : "C:\Program Files\EgisTec IPS\EgisUpdate.exe" -d [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\FastFox] : "C:\Program Files\NCH Software\FastFox\FastFox.exe" -logon [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\FlexiServer] : "C:\Program Files\NCH Software\FlexiServer\flexiserver.exe" -logon [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Fling] : "C:\Program Files\NCH Software\Fling\fling.exe" -logon [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HotKeysCmds] : C:\Windows\system32\hkcmd.exe [11/02/2022 14:47:40] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IAAnotif] : C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [01/07/2010 14:02:55] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\IgfxTray] : C:\Windows\system32\igfxtray.exe [11/02/2022 14:47:40] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iPatchData] : C:\Program Files\Acer\Updater\iUpdate.exe [21/07/2010 02:53:50] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\iSyncData] : C:\Program Files\Acer\Android Manager\iSync.exe [08/01/2010 10:53:30] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\LManager] : C:\Program Files\Launch Manager\LManager.exe [19/07/2010 09:10:07] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mwlDaemon] : C:\Program Files\EgisTec MyWinLocker\x86\mwlDaemon.exe [27/05/2010 03:41:24] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Persistence] : C:\Windows\system32\igfxpers.exe [11/02/2022 14:47:40] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PLD_FrameworkRun] : c:\windows\system32\oem\_NowIntoDT.vbs [01/07/2010 14:15:21] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PLFSetI] : C:\Windows\PLFSetI.exe [26/12/2021 12:41:00] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PLFSetL] : C:\Windows\PLFSetL.exe [17/01/2022 07:07:01] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\rfagent] : "d:\Program Files\RFA 11\rfagent32.exe" [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\RtHDVCpl] : C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SearcherBar] : "C:\Windows\system32\mshta.exe" "C:\SearcherBar\run.hta" [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SNUVCDSM] : C:\Windows\snuvcdsm.exe [17/01/2022 07:07:03] [HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SuiteTray] : "C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" ---------- | Control - lsa - SecurityProviders - Session Manager - Terminal Server [HKLM\System\CurrentControlSet\Control] "PreshutdownOrder"=wuauserv gpsvc trustedinstaller "WaitToKillServiceTimeout"=2000 "CurrentUser"=USERNAME "BootDriverFlags"=0 "ServiceControlManagerExtension"=%systemroot%\system32\scext.dll "SystemStartOptions"= NOEXECUTE=OPTIN SAFEBOOT:NETWORK SOS BOOTLOG NOGUIBOOT BOOTLOGO "SystemBootDevice"=multi(0)disk(0)rdisk(0)partition(4) "FirmwareBootDevice"=multi(0)disk(0)rdisk(0)partition(3) [HKLM\System\CurrentControlSet\Control\lsa] "auditbaseobjects"=0 "auditbasedirectories"=0 "crashonauditfail"=0 "fullprivilegeauditing"=0x00 "Bounds"=0x0030000000200000 "LimitBlankPasswordUse"=1 "NoLmHash"=1 "Notification Packages"=scecli "Security Packages"=kerberos msv1_0 schannel wdigest tspkg pku2u "Authentication Packages"=msv1_0 "LsaPid"=476 "SecureBoot"=1 "ProductType"=11 "disabledomaincreds"=0 "everyoneincludesanonymous"=0 "forceguest"=0 "restrictanonymous"=0 "restrictanonymoussam"=1 [HKLM\System\CurrentControlSet\Control\SecurityProviders] "SecurityProviders"=credssp.dll [HKLM\System\CurrentControlSet\Control\Session Manager] "CriticalSectionTimeout"=2592000 "GlobalFlag"=0 "HeapDeCommitFreeBlockThreshold"=0 "HeapDeCommitTotalFreeThreshold"=0 "HeapSegmentCommit"=0 "HeapSegmentReserve"=0 "ProcessorControl"=2 "ResourceTimeoutCount"=648000 "BootExecute"=autocheck autochk * "ExcludeFromKnownDlls"= "ObjectDirectories"=\Windows \RPC Control "ProtectionMode"=1 "NumberOfInitialSessions"=2 "SetupExecute"= "CWDIllegalInDllSearch"=2 "DisablePagingExecutive"=1 "AutoChkTimeout"=5 "PendingFileRenameOperations"=\??\C:\Program Files\Driver-Soft\DriverGenius\is-JO1AI.tmp !\??\C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe \??\C:\Program Files\Driver-Soft\DriverGenius\is-MGQPH.tmp !\??\C:\Program Files\Driver-Soft\DriverGenius\CodejockControls.ocx \??\C:\Program Files\Driver-Soft\DriverGenius\is-22JGQ.tmp !\??\C:\Program Files\Driver-Soft\DriverGenius\CodejockCommandBars.ocx \??\C:\Program Files\Driver-Soft\DriverGenius\is-LEHIG.tmp !\??\C:\Program Files\Driver-Soft\DriverGenius\CodejockReportControl.ocx \??\C:\Program Files\Driver-Soft\DriverGenius\is-PURT5.tmp !\??\C:\Program Files\Driver-Soft\DriverGenius\Style.dll \??\C:\Users\GRGY&J~1\AppData\Local\Temp\nsgC1A0.tmp\Everything\ \??\C:\Users\GRGY&J~1\AppData\Local\Temp\nsgC1A0.tmp\ [HKLM\System\CurrentControlSet\Control\Terminal Server] "RCDependentServices"=CertPropSvc SessionEnv "NotificationTimeOut"=0 "SnapshotMonitors"=1 "ProductVersion"=5.1 "AllowRemoteRPC"=0 "DelayConMgrTimeout"=0 "fDenyTSConnections"=1 "StartRCM"=0 "TSAdvertise"=0 "DeleteTempDirsOnExit"=1 "fSingleSessionPerUser"=1 "PerSessionTempDir"=0 "TSUserEnabled"=0 "InstanceID"=c826650d-2b61-48c1-8a4d-011ea01 "fAllowToGetHelp"=0 ---------- | .LNK with Arguments c:\program files\acer accessory store\acer boutique accessoire.lnk - Encrypted: False - Target: C:\Program Files\Acer Accessory Store\StartUrl.exe - Args: (hxxp://store.acer-euro.com/fr?utm_source=Icon&utm_medium=Icon&utm_campaign=Acer%2BInternal) - Hidden: False - Status: OK ---------- | AppCertDlls ---------- | Dnsapi.dll C:\Windows\System32\dnsapi.dll -> OK : \drivers\etc\hosts ---------- | Policies | Registry [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Control Panel\Desktop] "ScreenSaveActive"=1 "ActiveWndTrackTimeout"=0 "BlockSendInputResets"=0 "CaretWidth"=1 "ClickLockTime"=1200 "CoolSwitchColumns"=7 "CoolSwitchRows"=3 "CursorBlinkRate"=530 "DockMoving"=1 "DragFromMaximize"=1 "DragFullWindows"=0 "DragHeight"=4 "DragWidth"=4 "FocusBorderHeight"=1 "FocusBorderWidth"=1 "FontSmoothing"=2 "FontSmoothingGamma"=0 "FontSmoothingOrientation"=1 "FontSmoothingType"=2 "ForegroundFlashCount"=7 "LeftOverlapChars"=3 "PaintDesktopVersion"=0 "Pattern"=0 "RightOverlapChars"=3 "SnapSizing"=1 "TileWallpaper"=0 "WallpaperOriginX"=0 "WallpaperOriginY"=0 "WallpaperStyle"=10 "WheelScrollChars"=3 "WheelScrollLines"=3 "WindowArrangementActive"=1 "UserPreferencesMask"=0x9E3E078012000000 "ScreenSaveTimeOut"=600 "Wallpaper"=%windir%\web\wallpaper\windows\img0.jpg "HungAppTimeout"=2000 "WaitToKillAppTimeout"=2000 "SmoothScroll"=0 "ForegroundLockTimeout"=200000 "MenuShowDelay"=0 "AutoEndTasks"=1 [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Policies\Microsoft\Windows\System] "disablecmd"=0 [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer] "NoViewContextMenu"=0 "NoLowDiskSpaceChecks"=1 "NoDriveTypeAutoRun"=221 [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Policies\ActiveDesktop] "NoChangingWallpaper"=0 [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer] "ExplorerStartupTraceRecorded"=1 "ShellState"=0x240000003328000000000000000000000000000001000000120000000000000022000000 "CleanShutdown"=0 "Reason Setting"=255 "DesktopProcess"=1 "link"=0x00000000 "Browse For Folder Width"=347 "Browse For Folder Height"=288 [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced] "Start_SearchFiles"=2 "ServerAdminUI"=0 "Hidden"=2 "ShowCompColor"=1 "HideFileExt"=0 "DontPrettyPath"=0 "ShowInfoTip"=1 "HideIcons"=0 "MapNetDrvBtn"=0 "WebView"=1 "Filter"=0 "SuperHidden"=0 "SeparateProcess"=0 "AutoCheckSelect"=0 "IconsOnly"=0 "ShowTypeOverlay"=1 "ListviewAlphaSelect"=0 "ListviewShadow"=1 "TaskbarAnimations"=0 "StartMenuInit"=4 "DesktopLivePreviewHoverTime"=0 "PersistBrowsers"=0 "ShowSuperHidden"=0 "NoNetCrawling"=1 "TaskbarSi"=2 "DisablePreviewDesktop"=0 "ExtendedUIHoverTime"=0 [HKLM\Software\Policies\Microsoft\Windows\Safer\CodeIdentifiers] "authenticodeenabled"=0 [HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "legalnoticecaption"= "legalnoticetext"= "PromptOnSecureDesktop"=1 "ConsentPromptBehaviorAdmin"=5 "EnableLUA"=1 "scforceoption"=0 "ConsentPromptBehaviorUser"=3 "EnableInstallerDetection"=0 "EnableSecureUIAPaths"=1 "EnableUIADesktopToggle"=0 "EnableVirtualization"=1 "FilterAdministratorToken"=0 "ValidateAdminCodeSignatures"=0 "EnableSecureUIAPath"=1 "EnableLinkedConnections"=1 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\NewStartPanel] "{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}"=1 "{20D04FE0-3AEA-1069-A2D8-08002B30309D}"=1 "{208D2C60-3AEA-1069-A2D7-08002B30309D}"=1 "{871C5380-42A0-1069-A2EA-08002B30309D}"=1 "{5399E694-6CE5-4D6C-8FCE-1D8870FDCBA0}"=1 "{59031a47-3f72-44a7-89c5-5595fe6b30ee}"=1 "{031E4825-7B94-4dc3-B131-E946B44C8DD5}"=1 "{B4FB3F98-C1EA-428d-A78A-D1F5659CBA93}"=1 "{9343812e-1c37-4a49-a12e-4b2d810d956b}"=1 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\HideDesktopIcons\ClassicStartMenu] "{871C5380-42A0-1069-A2EA-08002B30309D}.default"=0 "{9343812e-1c37-4a49-a12e-4b2d810d956b}"=1 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Folder\Hidden\SHOWALL] "RegPath"=Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced "Text"=@shell32.dll,-30500 "Type"=radio "CheckedValue"=1 "ValueName"=Hidden "DefaultValue"=2 "HKeyRoot"=2147483649 "HelpID"=shell.hlp#51105 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer] "ListViewPopupControl"={8be9f5ea-e746-4e47-ad57-3fb191ca1eed} "BrowserCFCreator"={57f8510b-a5e2-41da-a8f0-8a5ae85dfffd} "GlobalFolderSettings"={EF8AD2D1-AE36-11D1-B2D2-006097DF8C11} "LVPopupSearchControl"={fccf70c8-f4d7-4d8b-8c17-cd6715e37fff} "FileOpenDialog"={DC1C5A9C-E88A-4dde-A5A1-60F82A20AEF7} "IconUnderline"=2 "GlobalAssocChangedCounter"=316 "AlwaysUnloadDLL"=1 "Max Cached Icons"=2000 [HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced] "TaskbarSizeMove"=0 [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations] "Application"=http://go.microsoft.com/fwlink/?LinkId=57426&Ext=%s ---------- | Winlogon [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] "ExcludeProfileDirs"=AppData\Local;AppData\LocalLow;$Recycle.Bin "BuildNumber"=7600 "FirstLogon"=0 "ParseAutoexec"=1 [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon] "ReportBootOk"=0 "Shell"=Explorer.exe "PreCreateKnownFolders"={A520A1A4-1780-4FF6-BD18-167343C5AF16} "Userinit"=C:\Windows\system32\userinit.exe, "VMApplet"=SystemPropertiesPerformance.exe /pagefile "AutoRestartShell"=1 "Background"=0 0 0 "CachedLogonsCount"=10 "DebugServerCommand"=no "ForceUnlockLogon"=0 "LegalNoticeCaption"= "LegalNoticeText"= "PasswordExpiryWarning"=5 "PowerdownAfterShutdown"=0 "ShutdownWithoutLogon"=0 "WinStationsDisabled"=0 "DisableCAD"=1 "scremoveoption"=0 "ShutdownFlags"=2147483687 "SFCDisable"=0 "DefaultUserName"=Gregy&Justy "DefaultDomainName"=GregyJusty "AutoAdminLogon"=1 ---------- | Associations [HKLM\Software\Classes\.exe] ""=exefile "Content Type"=application/x-msdownload [HKLM\Software\Classes\exefile\Shell\Open\Command] ""="%1" %* "IsolatedCommand"="%1" %* [HKLM\Software\Classes\.com] ""=comfile [HKLM\Software\Classes\comfile\Shell\Open\Command] ""="%1" %* [HKLM\Software\Classes\.reg] ""=regfile [HKLM\Software\Classes\regfile\Shell\Open\Command] ""=regedit.exe "%1" [HKLM\Software\Classes\.scr] ""=scrfile [HKLM\Software\Classes\scrfile\Shell\Open\Command] ""="%1" /S [HKLM\Software\Classes\.bat] ""=batfile [HKLM\Software\Classes\batfile\Shell\Open\Command] ""="%1" %* [HKLM\Software\Classes\.cmd] ""=cmdfile [HKLM\Software\Classes\cmdfile\Shell\Open\Command] ""="%1" %* [HKLM\Software\Classes\.pif] ""=piffile [HKLM\Software\Classes\piffile\Shell\Open\Command] ""="%1" %* [HKLM\Software\Classes\.inf] ""=inffile [HKLM\Software\Classes\inffile\Shell\Open\Command] ""=%SystemRoot%\system32\NOTEPAD.EXE %1 [HKLM\Software\Classes\.url] ""=InternetShortcut [HKLM\Software\Classes\.lnk] ""=lnkfile [HKLM\Software\Classes\.hta] "PerceivedType"=text ""=htafile "Content Type"=application/hta [HKLM\Software\Classes\htafile\Shell\Open\Command] ""=C:\Windows\System32\mshta.exe "%1" %* [HKLM\Software\Classes\InternetShortcut] "NeverShowExt"= "InfoTip"=prop:System.Link.TargetUrl;System.Rating;System.Link.Description;System.Link.Comment "EditFlags"=2 "FullDetails"=prop:System.Link.TargetUrl;System.Rating;System.Link.Description;System.Link.Comment "IsShortcut"= "FriendlyTypeName"=@C:\Windows\system32\ieframe.dll.mui,-10046 "PreviewDetails"=prop:System.Link.TargetUrl;System.Rating;System.History.VisitCount;System.History.DateChanged;System.Link.DateVisited;System.Link.Description;System.Link.Comment [HKLM\Software\Classes\Application.Manifest] ""=Application Manifest "EditFlags"=65536 "BrowserFlags"=4096 [HKLM\Software\Classes\Application.Reference] "NeverShowExt"= ""=Application Reference "IsShortcut"= "EditFlags"=131072 [HKLM\Software\Classes\Folder] "ContentViewModeLayoutPatternForBrowse"=delta "ContentViewModeForBrowse"=prop:~System.ItemNameDisplay;~System.LayoutPattern.PlaceHolder;~System.LayoutPattern.PlaceHolder;~System.LayoutPattern.PlaceHolder;System.DateModified "ContentViewModeLayoutPatternForSearch"=alpha "ContentViewModeForSearch"=prop:~System.ItemNameDisplay;System.DateModified;~System.ItemFolderPathDisplay ""=Folder "EditFlags"=0xD2030000 "FullDetails"=prop:System.PropGroup.Description;System.ItemNameDisplay;System.ItemTypeText;System.Size "NoRecentDocs"= "ThumbnailCutoff"=0 "TileInfo"=prop:System.Title;System.ItemTypeText [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Clients\StartMenuInternet\OperaStable\Shell\open\Command] ""="C:\Users\Gregy&Justy\AppData\Local\Programs\Opera\Launcher.exe" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Clients\StartMenuInternet\OperaStable\InstallInfo] "ReinstallCommand"="C:\Users\Gregy&Justy\AppData\Local\Programs\Opera\Launcher.exe" --makedefaultbrowser [HKLM\Software\Clients\StartMenuInternet\Firefox-308046B0AF4A39CB\Shell\open\Command] ""="C:\Program Files\Mozilla Firefox\firefox.exe" [HKLM\Software\Clients\StartMenuInternet\Firefox-308046B0AF4A39CB\InstallInfo] "ReinstallCommand"="C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [HKLM\Software\Clients\StartMenuInternet\Google Chrome\Shell\open\Command] ""="C:\Program Files\Google\Chrome\Application\chrome.exe" [HKLM\Software\Clients\StartMenuInternet\Google Chrome\InstallInfo] "ReinstallCommand"="C:\Program Files\Google\Chrome\Application\chrome.exe" --make-default-browser [HKLM\Software\Clients\StartMenuInternet\IEXPLORE.EXE\Shell\open\Command] ""=C:\Program Files\Internet Explorer\iexplore.exe [14/07/2009 00:43:32] [HKLM\Software\Clients\StartMenuInternet\IEXPLORE.EXE\InstallInfo] "ReinstallCommand"="C:\Windows\System32\ie4uinit.exe" -reinstall [HKLM\Software\Clients\StartMenuInternet\Opera Neon.NIBJOAH2HGAXQQK5CU4VH5D5EY\Shell\open\Command] ""="C:\Users\Gregy&Justy\AppData\Local\Opera Software\Opera Neon\Application\neon.exe" [HKLM\Software\Clients\StartMenuInternet\Opera Neon.NIBJOAH2HGAXQQK5CU4VH5D5EY\InstallInfo] "ReinstallCommand"="C:\Users\Gregy&Justy\AppData\Local\Opera Software\Opera Neon\Application\neon.exe" --make-default-browser [HKLM\Software\Clients\StartMenuInternet\SEAMONKEY.EXE\Shell\open\Command] ""="C:\Program Files\SeaMonkey\seamonkey.exe" [HKLM\Software\Clients\StartMenuInternet\SEAMONKEY.EXE\InstallInfo] "ReinstallCommand"="C:\Program Files\SeaMonkey\uninstall\helper.exe" /SetAsDefaultAppGlobal [HKLM\Software\Clients\StartMenuInternet\Yandex.NIBJOAH2HGAXQQK5CU4VH5D5EY\Shell\open\Command] ""="C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" [HKLM\Software\Clients\StartMenuInternet\Yandex.NIBJOAH2HGAXQQK5CU4VH5D5EY\InstallInfo] "ReinstallCommand"="C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe" --make-default-browser ---------- | AppcompatFlags [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted] "D:\adawarewebinstaller.exe"=1 "C:\Users\Gregy&Justy\AppData\Roaming\DRPSu\PROGRAMS\AvastAntivirusWorldwideA.exe"=1 "C:\ProgramData\IObit\ASCDownloader\ASC15\SgbSetup.exe"=1 "C:\ProgramData\IObit\ASCDownloader\ASC15\SDSetup.exe"=1 "C:\ProgramData\IObit\ASCDownloader\ASC15\IUSetup.exe"=1 "C:\ProgramData\IObit\ASCDownloader\ASC15\IMFSetup.exe"=1 "C:\Users\Gregy&Justy\Documents\Adaware_PC_Cleaner_Installer.exe"=1 "C:\Users\Gregy&Justy\Documents\adawarevpn.exe"=1 "C:\ProgramData\IObit\ASCDownloader\ASC15\iTopSetup.exe"=1 "C:\Users\Gregy&Justy\Documents\OneSafe_Driver_Manager.exe"=1 "C:\Users\GRGY&J~1\AppData\Local\Temp\FastFox-3036-1\ffortsetup.exe"=1 "C:\Users\GRGY&J~1\AppData\Local\Temp\FastFox-3036-2\veritysetup.exe"=1 "C:\Users\Gregy&Justy\AppData\Local\Programs\Opera\Launcher.exe"=32 ---------- | IFEO ---------- | Mountpoints2 ---------- | Windows [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\win.ini\Windows] "MouseSpeed"=#USR:Control Panel\Mouse "MouseThreshold1"=#USR:Control Panel\Mouse "MouseThreshold2"=#USR:Control Panel\Mouse "SwapMouseButtons"=#USR:Control Panel\Mouse "Beep"=#USR:Control Panel\Sound "DoubleClickSpeed"=#USR:Control Panel\Mouse "CoolSwitch"=USR:Control Panel\Desktop "DoubleClickHeight"=#USR:Control Panel\Mouse "DoubleClickWidth"=#USR:Control Panel\Mouse "DragFullWindows"=USR:Control Panel\Desktop "InitialKeyboardIndicators"=USR:Control Panel\Keyboard "LowPowerActive"=#USR:Control Panel\Desktop "LowPowerTimeOut"=#USR:Control Panel\Desktop "PowerOffActive"=#USR:Control Panel\Desktop "PowerOffTimeOut"=#USR:Control Panel\Desktop "ScreenSaveActive"=#USR:Control Panel\Desktop "ScreenSaveTimeOut"=#USR:Control Panel\Desktop "SnapToDefaultButton"=#USR:Control Panel\Mouse ""=USR:Software\Microsoft\Windows NT\CurrentVersion\Windows "Spooler"=#SYS:Microsoft\Windows NT\CurrentVersion\Windows "TRANSMISSIONRETRYTIMEOUT"=#SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS "DEFAULTSEPARATEVDM"=\\REGISTRY\\MACHINE\\SYSTEM\\CURRENTCONTROLSET\\CONTROL\\WOW "APPINIT_DLLS"=SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS "DEVICENOTSELECTEDTIMEOUT"=#SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS "SWAPDISK"=SYS:MICROSOFT\\WINDOWS NT\\CURRENTVERSION\\WINDOWS [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot] ""=SYS:Microsoft\Windows NT\CurrentVersion\WOW\boot "ScreenSaverActive"=USR:Control Panel\Desktop "ScreenSaverIsSecure"=USR:Control Panel\Desktop "SCRNSAVE.EXE"=USR:Control Panel\Desktop "Shell"=SYS:Microsoft\Windows NT\CurrentVersion\Winlogon [HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems] "windows"=%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,12288,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 ---------- | Security center [HKLM\SOFTWARE\Microsoft\Security Center] "cval"=1 [HKLM\SOFTWARE\Microsoft\Security Center\svc] "VistaSp1"=128920209537502489 "AntiVirusOverride"=0 "AntiSpywareOverride"=0 "FirewallOverride"=0 [HKLM\SOFTWARE\Microsoft\Windows Defender] "DisableAntiSpyware"=1 "DisableRoutinelyTakingAction"=0 "ProductStatus"=0 "InstallTime"=0xC7BE1F5C52FAD701 [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall"=1 [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall"=1 [HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall"=1 ---------- | Safeboot [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\adawareantivirusservice] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppMgmt] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Base] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot Bus Extender] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Boot file system] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CryptSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\DcomLaunch] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EFS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\epmdkdrv] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EuGdiDrv] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\EventLog] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\File system] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Filter] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HelpSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Netlogon] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PCI Configuration] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PlugPlay] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PNP Filter] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Power] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Primary disk] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcEptMapper] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\RpcSs] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SCSI Class] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sermouse.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\System Bus Extender] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vga.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vgasave.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vmms] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinMgmt] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{36FC9E60-C465-11CF-8056-444553540000}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\adawareantivirusservice] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AFD] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppInfo] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\AppMgmt] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ASCAntivirusSrv] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Base] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BFE] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Boot Bus Extender] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Boot file system] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\bowser] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Browser] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CryptSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\DcomLaunch] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\dfsc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Dhcp] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\DnsCache] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Dot3Svc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Eaphost] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\EFS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\epmdkdrv] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\EuGdiDrv] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\EventLog] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\File system] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Filter] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\HelpSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\IKEEXT] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ipnat.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\KeyIso] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LanmanServer] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LanmanWorkstation] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\LmHosts] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Messenger] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MPSDrv] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MPSSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mrxsmb] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mrxsmb10] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mrxsmb20] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MSIServer] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NativeWifiP] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NDIS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NDIS Wrapper] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ndiscap] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Ndisuio] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetBIOS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetBIOSGroup] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetBT] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetDDEGroup] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Netlogon] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetMan] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\netprofm] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Network] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NetworkProvider] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NlaSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Nsi] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nsiproxy.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\NTDS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PCI Configuration] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PlugPlay] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PNP Filter] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PNP_TDI] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PolicyAgent] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Power] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Primary disk] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ProfSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\rdbss] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\rdpencdd.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\rdsessmgr] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\RpcEptMapper] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\RpcSs] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sacsvr] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SCardSvr] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SCSI Class] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\sermouse.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SharedAccess] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Streams Drivers] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SWPRV] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\System Bus Extender] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TabletInputService] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TBS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Tcpip] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TDI] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\TrustedInstaller] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VaultSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\VDS] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vga.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vgasave.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vmms] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\volmgr.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\volmgrx.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WinDefend] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WinMgmt] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wlansvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WudfPf] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WudfRd] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WudfSvc] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\WudfUsbccidDriver] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{36FC9E60-C465-11CF-8056-444553540000}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E965-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E967-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E969-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96A-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96B-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E96F-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E973-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E974-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E975-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E977-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E97B-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E97D-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{4D36E980-E325-11CE-BFC1-08002BE10318}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{50DD5230-BA8A-11D1-BF5D-0000F805F530}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] [HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] ---------- | Winsock (Whitelist) ---------- | Hosts ---------- | Ping Envoi d'une requete 'ping' sur google.com [2a00:1450:4007:808::200e] avec 32 octets de donnees?: Reponse de 2a00:1450:4007:808::200e?: temps=36 ms Reponse de 2a00:1450:4007:808::200e?: temps=37 ms Reponse de 2a00:1450:4007:808::200e?: temps=37 ms Reponse de 2a00:1450:4007:808::200e?: temps=38 ms Statistiques Ping pour 2a00:1450:4007:808::200e: Paquets?: envoyes = 4, recus = 4, perdus = 0 (perte 0%), Duree approximative des boucles en millisecondes : Minimum = 36ms, Maximum = 38ms, Moyenne = 37ms ---------- | @ [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Internet Explorer\Main] "Disable Script Debugger"=yes "AlwaysShowMenus"=0 "StatusBarWeb"=1 "Start Page"=http://www.ask.com?o=10148&l=dis "Anchor Underline"=yes "Cache_Update_Frequency"=Once_Per_Session "Display Inline Images"=yes "Do404Search"=0x01000000 "Local Page"=C:\Windows\system32\blank.htm "Save_Session_History_On_Exit"=no "Show_FullURL"=no "Show_StatusBar"=yes "Show_ToolBar"=yes "Show_URLinStatusBar"=yes "Show_URLToolBar"=yes "Use_DlgBox_Colors"=yes "Search Page"=http://go.microsoft.com/fwlink/?LinkId=54896 "XMLHTTP"=1 "UseClearType"=yes "Enable Browser Extensions"=yes "Play_Background_Sounds"=yes "Play_Animations"=yes "DisableScriptDebuggerIE"=yes "NoUpdateCheck"=1 "SearchControlWidth"=300 "ForceGDIPlus"=0 "SuppressScriptDebuggerDialog"=0 "Page_Transitions"=1 "CSS_Compat"=doctype "Expand Alt Text"=no "Display Inline Videos"=1 "Print_Background"=no "Use Stylesheets"=1 "SmoothScroll"=1 "Show image placeholders"=0 "Move System Caret"=no "Force Offscreen Composition"=0 "Enable AutoImageResize"=yes "UseThemes"=1 "UseHR"=0 "Q300829"=0 "Cleanup HTCs"=0 "XDomainRequest"=1 "DOMStorage"=1 "IE8RunOnceLastShown"=0 "IE8RunOncePerInstallCompleted"=0 "IE8TourNoShow"=0 "IE8TourShown"=0 "FrameTabWindow"=1 "AdminTabProcs"=1 "SessionMerging"=1 "FrameMerging"=1 "HangResistance"=0 "TabShutdownDelay"=60000 "FrameShutdownDelay"=0 "Search Bar"=Preserve "DisableFirstRunCustomize"=1 "CompatibilityFlags"=0 "FullScreen"=no "Window_Placement"=0x2C0000000000000001000000FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF0A000000000000002A03000030020000 "Check_Associations"=yes [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Internet settings] "IE5_UA_Backup_Flag"=5.0 "User Agent"=Mozilla/4.0 (compatible; MSIE 8.0; Win32) "EmailName"=IEUser@ "PrivDiscUiShown"=1 "EnableHttp1_1"=1 "WarnOnIntranet"=1 "MimeExclusionListForCache"=multipart/mixed multipart/x-mixed-replace multipart/x-byteranges "AutoConfigProxy"=wininet.dll "UseSchannelDirectly"=0x01000000 "EnableNegotiate"=1 "WarnOnPost"=0x01000000 "UrlEncoding"=0 "SecureProtocols"=160 "PrivacyAdvanced"=0 "ZonesSecurityUpgrade"=0x284DFB9852FAD701 "DisableCachingOfSSLPages"=0 "WarnonZoneCrossing"=0 "CertificateRevocation"=1 "MigrateProxy"=1 "ProxyEnable"=0 "ProxyHttp1.1"=1 "WarNonBadCertReceving"=1 "WarNonHTTPSToHTTPRedirect"=1 "GlobalUserOffline"=0 "MaxConnectionsPer1_0Server"=10 "MaxConnectionsPerServer"=10 "EnableAutodial"=0 "NoNetAutodial"=0 "EnablePunycode"=1 "ShowPunycode"=0 "CreateUriCacheSize"=80 "CoInternetCombineIUriCacheSize"=80 "SecurityIdIUriCacheSize"=30 "SpecialFoldersCacheSize"=8 "AutoDetect"=0 [HKLM\Software\Microsoft\Internet Explorer\Main] "AutoHide"=yes "Security Risk Page"=about:SecurityRisk "Extensions Off Page"=about:NoAdd-ons "Default_Search_URL"=http://go.microsoft.com/fwlink/?LinkId=54896 "Default_Page_URL"=http://go.microsoft.com/fwlink/?LinkId=69157 "Anchor_Visitation_Horizon"=0x01000000 "Cache_Percent_of_Disk"=0x0A000000 "Placeholder_Width"=0x1A000000 "Placeholder_Height"=0x1A000000 "Default_Secondary_Page_URL"= "Use_Async_DNS"=yes "Start Page"=https://www.google.com/ "Local Page"=C:\Windows\system32\blank.htm "Search Page"=http://go.microsoft.com/fwlink/?LinkId=54896 "Delete_Temp_Files_On_Exit"=yes "Enable_Disk_Cache"=yes "TabProcGrowth"=Medium "Print_Background"=0 "AlwaysShowMenus"=0 "StatusBarWeb"=1 "SearchControlWidth"=300 "ForceGDIPlus"=0 "DEPOff"=0 "MaxRenderLine"=4000 "UseClearType"=yes "Page_Transitions"=1 "Use_DlgBox_Colors"=yes "Anchor Underline"=yes "Display Inline Images"=yes "Display Inline Videos"=1 "Play_Background_Sounds"=yes "Play_Animations"=yes "SmoothScroll"=1 "XMLHTTP"=1 "Show image placeholders"=0 "Disable Script Debugger"=yes "Enable AutoImageResize"=yes "XDomainRequest"=1 "DOMStorage"=1 "IE8RunOnceLastShown"=0 "IE8RunOncePerInstallCompleted"=0 "IE8TourNoShow"=0 "IE8TourShown"=0 "FrameTabWindow"=1 "AdminTabProcs"=1 "SessionMerging"=1 "FrameMerging"=1 "HangResistance"=0 "TabShutdownDelay"=60000 "FrameShutdownDelay"=0 [HKLM\Software\Microsoft\Internet Explorer\AboutURLs] "blank"=res://mshtml.dll/blank.htm "NoAdd-onsInfo"=res://ieframe.dll/noaddoninfo.htm "InPrivate"=res://ieframe.dll/inprivate.htm "NavigationFailure"=res://ieframe.dll/navcancl.htm "NoAdd-ons"=res://ieframe.dll/noaddon.htm "Home"=270 "PostNotCached"=res://ieframe.dll/repost.htm "DesktopItemNavigationFailure"=res://ieframe.dll/navcancl.htm "NavigationCanceled"=res://ieframe.dll/navcancl.htm "Tabs"=res://ieframe.dll/tabswelcome.htm "OfflineInformation"=res://ieframe.dll/offcancl.htm "SecurityRisk"=res://ieframe.dll/securityatrisk.htm [HKLM\Software\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix] ""=http:// [HKLM\Software\Microsoft\Windows\CurrentVersion\URL\Prefixes] "mosaic"=http:// "www"=http:// "home"=http:// "ftp"=ftp:// [HKLM\Software\Microsoft\Windows\CurrentVersion\Internet settings] "EnablePunycode"=1 "CodeBaseSearchPath"=CODEBASE "WarnOnIntranet"=1 "MinorVersion"=0 "ActiveXCache"=C:\Windows\Downloaded Program Files "UrlEncoding"=0 "SecureProtocols"=160 "EnableHttp1_1"=1 "ProxyHttp1.1"=1 "ShowPunycode"=0 "CreateUriCacheSize"=80 "CoInternetCombineIUriCacheSize"=80 "SecurityIdIUriCacheSize"=30 "SpecialFoldersCacheSize"=8 "DisableCachingOfSSLPages"=0 ---------- | Proxy ---------- | reparsepoint ---------- | Detection of offsets ---------- | Notify [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] : igfxdev.dll ---------- | Execution FileExts [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.apk] "ExpressZip.BAK"=NCH.ExpressZip.apk "Progid"=MobogenieAPKFile [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bkz] "ExpressZip.BAK"=NCH.ExpressZip.bkz [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dvs] "Scribe.BAK"=NCH.Switch.dvs [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gzip] "ExpressZip.BAK"=NCH.ExpressZip.gzip [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jar] "ExpressZip.BAK"=NCH.ExpressZip.jar [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg] "DrawPad.BAK"=jpegfile [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpk] "Progid"=MobogenieMPKFile [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.msv] "Scribe.BAK"=NCH.Switch.msv [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.NSR] "progid"=Potplayer.nsr [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pkpass] "ExpressZip.BAK"=NCH.ExpressZip.pkpass [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png] "DrawPad.BAK"=pngfile [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qcow2] "ExpressZip.BAK"=NCH.ExpressZip.qcow2 [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vmdk] "ExpressZip.BAK"=NCH.ExpressZip.vmdk [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wpp] "WavePad.BAK"=NCH.WavePad.wpp [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xcesession] "Progid"=PDFXEdit.XCESESSION "Application"=PDFXEdit.exe [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xclpack] "Progid"=PDFXEdit.XCLPACK "Application"=PDFXEdit.exe [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.zab] "ExpressZip.BAK"=NCH.ExpressZip.zab ---------- | SIOI | SEH | URLSH [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\egisPSDP] - {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} -- C:\Program Files\EgisTec MyWinLocker\x86\psdprotect.dll [27/05/2010 03:40:28] [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\EnhancedStorageShell] - {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} -- %SystemRoot%\system32\EhStorShell.dll [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\SharingPrivate] - {08244EE6-92F0-47f2-9FC9-929BAA2E7235} -- %SystemRoot%\system32\ntshrui.dll [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks] "{00000000-6E41-4FD3-8538-502F5495E5FC}"= "{CFBFAE00-17A6-11D0-99CB-00C04FD64497}"= ---------- | Toolbar [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "Locked"=1 [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser] "ITBar7Layout"=0x13000000000000000000000020000000100000000000000001000000800600005E01000007000000890000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000B1C218236549D4119B18009027A5CD4F00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 "ITBar7Height"=0 [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "Version"=4 "UpgradeTime"=0x73046E91A25DCF01 "DefaultPackCorrection"=1 "DefaultScope"={3CB12E97-BDDF-4488-8C61-217335DD319F} "ShowSearchSuggestions"=1 [HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "Locked"=0 "{D4027C7F-154A-4066-A1AD-4243D8127440}"=0x00 [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"={67A2568C-7A0A-4EED-AECC-B5405DE63B64} ---------- | Extensions [HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{219C3416-8CB2-491a-A3C7-D9FCDDC9D600}] : (&Ajout Direct dans Windows Live Writer) - [] ---------- | SearchScopes [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] - (Bing) - https://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC : [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{3CB12E97-BDDF-4488-8C61-217335DD319F}] - (Google) - https://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?} : [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EF641CB9-A500-480E-ABFC-370E51010B2B}] - (Yahoo) - https://search.yahoo.com/search?p={searchTerms}&b={startPage?}&fr=ie8 : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] - (@ieframe.dll,-12512) - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}] - (Google) - http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ACAW : [HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}] - (Google) - http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7 : ---------- | ElevationPolicy [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{13E0C436-2D13-4aae-8580-152920AB419F}] - (C:\Program Files\DAUM\PotPlayer) - PotPlayerMini.exe : [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7F275564-3303-46AD-93DE-019172520C2D}] - (C:\Users\Gregy&Justy\AppData\Local\GoToMeeting\19932) - G2MInstaller.exe : [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9A9F603B-51A8-4630-AE99-4BBF01675575}] - (C:\Program Files\Foxit Reader\) - FoxitReader.exe : C:\Program Files\Foxit Reader\plugins\FoxitReaderBrowserAx.dll [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] - (C:\Program Files\Ask.com\) - SaUpdate.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0002df01-0000-0000-c000-000000000046}] - (C:\Program Files\Internet Explorer) - iexplore.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{003B91A6-61E3-4591-891D-01E94C8CB11E}] - (c:\Program Files\Microsoft Silverlight\5.1.50918.0\) - Silverlight.Configuration.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{011A8F93-D24B-4142-BC7A-B4E528C97FAF}] - (C:\Program Files\Tracker Software\PDF Editor\) - C:\Program Files\Tracker Software\PDF Editor\PDFX.ProcessPool.Worker.x86.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{054aae20-4bea-4347-8a35-64a533254a9d}] - (C:\Program Files\Common Files\Microsoft Shared\Ink) - tabtip.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{067FB231-3933-4782-8F5E-1E17139E9B44}] - (C:\Program Files\Tracker Software\PDF Editor\) - C:\Program Files\Tracker Software\PDF Editor\PDFXHost32.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a}] - (C:\Windows\System32) - wpcer.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08E8D305-8D6D-49fe-8603-03A926E46AE0}] - (C:\Program Files\Common Files\Adobe\Updater6) - Adobe_Updater.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{08f24d68-9087-4b24-81ad-7b34af3e3ed5}] - (C:\Program Files\adobe\acrobat 6.0\Acrobat Elements) - Acrobat Elements.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695}] - (C:\Windows\System32) - winfxdocobj.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1138506a-b949-46a7-b6c0-ee26499fdeaf}] - (C:\Windows\System32) - wuapp.exe : %SystemRoot%\system32\wucltux.dll [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{130c40f0-1bcb-4852-8b63-291cf90a600b}] - (C:\Windows\System32) - msdt.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{13E0C436-2D13-4aae-8580-152920AB419F}] - (C:\Program Files\DAUM\PotPlayer) - PotPlayerMini.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{15B3FB63-66F4-4EFC-B717-BB283B85E79B}] - (C:\Program Files\Adobe\Reader 9.0\Reader\) - AcroBroker.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{186e0934-aee9-11da-961b-0014223d2a70}] - (C:\Windows\microsoft.net\framework\v2.0.50727) - dfsvc.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1A972DAF-A7EC-4ce3-B6C9-7B523CD6685F}] - (C:\Program Files\Google\Google Toolbar) - GoogleToolbarUser_32.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1ec76a37-1762-46ff-9b14-765b3e6793be}] - (c:\Program Files\Microsoft Silverlight\5.1.50918.0\) - agcp.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1FCCD250-A453-4348-86C1-E5EA9B76FADB}] - () - : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2391d819-9d17-44ec-9ac1-f6aa07549469}] - (%systemroot%\system32) - wermgr.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{26fe7361-bd5a-4dcb-b309-c6f42dde661c}] - (C:\Program Files\Internet Explorer) - ieinstal.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{358E6F10-DE8A-4602-8424-179CA217F8EE}] - (C:\Program Files\Adobe\Reader 9.0\Reader) - AcroRd32Info.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43ABBB95-C0E9-497B-8BB9-B5FA08861705}] - (C:\Program Files\Windows Live\Mail\) - wlmail.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{44D1B085-E495-4b5f-9EE6-34795C46E7E7}] - (C:\Program Files\Java\jre1.8.0_321\bin) - jp2launcher.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4becf16c-74f0-429b-8d3e-4fba507ac661}] - (C:\Program Files\adobe\acrobat 7.0\reader) - acrord32.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5852F5ED-8BF4-11D4-A245-0080C6F74284}] - (C:\Program Files\Java\jre1.8.0_321\bin) - javaws.exe : C:\Program Files\Java\jre1.8.0_321\bin\wsdetect.dll [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6bf52a52-394a-11d3-b153-00c04f79faa6}] - (%ProgramFiles%\Windows Media Player) - wmplayer.exe : %SystemRoot%\system32\wmp.dll [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999}] - (C:\Program Files\Internet Explorer) - iedw.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{78c7b664-c9bf-4ce9-8b3a-b05d442e451e}] - (C:\Windows\system32\) - CertEnrollCtrl.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7aaae723-5fb5-4b2d-9327-75519f336825}] - () - : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7B7FB824-0A43-4bc2-B58D-F6386FEEFD84}] - (Choice Guard) - CGuard.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7eb01fb2-f185-445a-94e4-ec4e1ba2202c}] - (C:\Windows\System32) - verclsid.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{80B84A0A-EDA4-47fd-8BE1-6B49F4197EE5}] - (C:\Program Files\Google\GoogleToolbarNotifier) - GoogleToolbarNotifier.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{85fc331e-bb64-4c53-ba25-3d8a956c02fd}] - (C:\Windows\System32) - ctfmon.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8cec58ae-07a1-11d9-b15e-000d56bfe6ee}] - (C:\Windows) - helppane.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8E1F80F4-953F-41E7-8460-E64AE5BE4ED3}] - (C:\Program Files\Adobe\Reader 9.0\Reader) - AdobeCollabSync.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8F1C58E0-2797-4EB7-A74A-397B24BB769D}] - (C:\Program Files\Tracker Software\PDF-XChange Lite\) - C:\Program Files\Tracker Software\PDF-XChange Lite\pdfSaverL.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{95a4104c-1c49-4c2a-9830-1be0f47e926c}] - (C:\Program Files\adobe\acrobat 7.0\Acrobat) - acrobat.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9C6A861C-B233-4994-AFB1-C158EE4FC578}] - (C:\Program Files\Adobe\Reader 9.0\Reader) - AcroRd32.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9da1d2cb-796d-4bec-bbaa-0aa9ccd80e15}] - (C:\Program Files\adobe\acrobat 7.0\Acrobat Elements) - Acrobat Elements.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a5a2d52a-4944-47c4-a3e0-8bd92e14d953}] - (C:\Windows\System32\xpsviewer) - xpsviewer.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}] - (C:\Program Files\Ask.com\) - SaUpdate.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5B020FD-E04B-4e67-B65A-E7DEED25B2CF}] - (%SystemRoot%\System32) - wisptis.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A6E2003F-95C5-4591-BA9A-0093080FDB5C}] - (C:\Program Files\Common Files\Oberon Media\OberonBroker\1.0.0.63) - OberonBroker.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A8F94DF3-F6C6-422a-8BFC-7EE0F60A8609}] - () - : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{aff735eb-cdf9-4894-aa69-3e3131128618}] - (C:\Windows\System32) - cmd.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01}] - (%systemroot%\system32) - TSWbPrxy.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BD18A03F-31CC-4CC0-B52D-9E199122923D}] - () - : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C8FE2181-CAE7-49EE-9B04-DB7EB4DA544A}] - (C:\Program Files\Java\jre1.8.0_321\bin) - ssvagent.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D133B285-8A43-4EC7-93BE-9B909C2370F5}] - (C:\Program Files\Windows Live\Messenger\) - msnmsgr.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{d8a5d001-3352-40db-9d1c-ed46683193b5}] - (C:\Program Files\Windows Live\Writer\) - WindowsLiveWriter.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{dc6bf185-7ae4-444e-8c35-e447b0d2bd1e}] - (C:\Windows\System32) - notepad.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{e5f90a07-7db7-4dcb-bd6d-d3fecd376ca3}] - (C:\Program Files\adobe\acrobat 6.0\reader) - acrord32.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{EE0B94B9-335F-4d2c-8B43-DACCD1EA6FF1}] - (C:\Program Files\Google\Google Toolbar) - GoogleToolbarUser_64.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{eee261cc-4b3e-46e7-affb-61f297155bf2}] - (C:\Windows\System32) - presentationhost.exe : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{fb9e068b-c612-4fa8-bdb9-d728a716a420}] - (C:\Program Files\adobe\acrobat 6.0\Acrobat) - acrobat.exe : ---------- | Ext\Settings [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] : : C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{9030D464-4C02-4ABF-8ECC-5164760863C6}] : : ---------- | Ext\Stats [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] : : C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1aad99ea-ee10-5c3a-8174-84c63a67adde}] : : C:\ProgramData\Anvisoft\Anvi Smart Defender 2\extensions\npAdblockPlugin.dll [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{219C3416-8CB2-491A-A3C7-D9FCDDC9D600}] : : [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{53719C00-353D-4FCF-A8AB-1B1027B60A49}] : : C:\Program Files\Tracker Software\PDF Editor\iePDFXEditPlugin.x86.dll [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9030D464-4C02-4ABF-8ECC-5164760863C6}] : : [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9BE31822-FDAD-461B-AD51-BE1D1C159921}] : : C:\Program Files\VideoLAN\VLC\axvlc.dll ---------- | Browser Helper Objects [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] -> (Adobe PDF Link Helper) : C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [27/02/2009 20:07:26] [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] -> (Java(tm) Plug-In SSV Helper) : C:\Program Files\Java\jre1.8.0_321\bin\ssv.dll [13/02/2022 03:36:21] [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] -> (Ask Toolbar) : C:\Program Files\Ask.com\GenericAskToolbar.dll [26/05/2010 15:23:06] [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] -> (Java(tm) Plug-In 2 SSV Helper) : C:\Program Files\Java\jre1.8.0_321\bin\jp2ssv.dll [13/02/2022 03:36:20] ---------- | Chrome C:\Users\Gregy&Justy\AppData\Local\Google\Chrome\User Data\Profile 1\extensions\aapocclcgogkmnckokdopfmhonfmgoek = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Gregy&Justy\AppData\Local\Google\Chrome\User Data\Profile 1\extensions\aohghmighlieiainnegkcijnfilokake = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Gregy&Justy\AppData\Local\Google\Chrome\User Data\Profile 1\extensions\apdfllckaahabafndbhieahigkjlhalf = : Google & co - https://drive.google.com/?usp=chrome_app - Google & co - [http://docs.google.com/http://drive.google.com/https://docs.google.com/https://drive.google.com/] - https://clients2.google.com/service/update2/crx C:\Users\Gregy&Justy\AppData\Local\Google\Chrome\User Data\Profile 1\extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo = : Google & co - http://www.youtube.com - http://www.youtube.com - Google & co - http://clients2.google.com/service/update2/crx C:\Users\Gregy&Justy\AppData\Local\Google\Chrome\User Data\Profile 1\extensions\cmllgdnjnkbapbchnebiedipojhmnjej = : __MSG_extShortDesc__ - short_name: Adaware Ad Block - https://clients2.google.com/service/update2/crx C:\Users\Gregy&Justy\AppData\Local\Google\Chrome\User Data\Profile 1\extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo = : The world's most popular userscript manager - short_name: Tampermonkey - permissions:[notificationsunlimitedStoragetabsidlewebNavigationwebRequestwebRequestBlockingstoragecontextMenuschrome://favicon/clipboardWritecookiesdeclarativeContent\u003Call_urls>] - https://clients2.google.com/service/update2/crx C:\Users\Gregy&Justy\AppData\Local\Google\Chrome\User Data\Profile 1\extensions\felcaaldnbdncclmgdcncolpebgiejap = : Google & co - Google & co - https://clients2.google.com/service/update2/crx C:\Users\Gregy&Justy\AppData\Local\Google\Chrome\User Data\Profile 1\extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi = : __MSG_extDesc__ - __MSG_extName__ - https://clients2.google.com/service/update2/crx C:\Users\Gregy&Justy\AppData\Local\Google\Chrome\User Data\Profile 1\extensions\nmmhkkegccagdldgiimedpiccmgmieda = : Google & co - Google & co - 203784468217.apps.googleusercontent.com - https://clients2.google.com/service/update2/crx C:\Users\Gregy&Justy\AppData\Local\Google\Chrome\User Data\Profile 1\extensions\pjkljhegncpnkpknbcohdijeoejaedia = : Google & co - https://mail.google.com/mail - Google & co - [*://mail.google.com/mail] - https://clients2.google.com/service/update2/crx [HKLM\Software\Google\Chrome\Extensions\glcimepnljoholdmjchkloafkggfoijh] [HKLM\Software\Google\Chrome\Extensions\lhmiofmipcpmhgihiecmpiekcacigpgb] ---------- | Opera C:\Users\Gregy&Justy\AppData\Roaming\Opera Software\Opera Stable\extensions\enegjkbbakeegngfapepobipndnebkdk = - Rich Hints Agent - https://extension-updates.opera.com/api/omaha/update/ C:\Users\Gregy&Justy\AppData\Roaming\Opera Software\Opera Stable\extensions\kbmoiomgmchbpihhdpabemajcbjpcijk = - Amazon Assistant Promotion - https://extension-updates.opera.com/api/omaha/update/ ---------- | Firefox [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf] - (Handles PDF files in place in the browser) : C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf] - (Handles PDF files in place in the browser) : C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf] - (Handles PDF files in place in the browser) : C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\MozillaPlugins\anvisoft.com/AdblockPlugin] - () : C:\ProgramData\Anvisoft\Anvi Smart Defender 2\extensions\npAdblockPlugin.dll [HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer] - (Adobe® Flash® Player 32.0.0.465 Plugin) : C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_465.dll [HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf] - () : C:\Program Files\Foxit Reader\plugins\npFoxitReaderPlugin.dll [HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf] - () : C:\Program Files\Foxit Reader\plugins\npFoxitReaderPlugin.dll [HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf] - () : C:\Program Files\Foxit Reader\plugins\npFoxitReaderPlugin.dll [HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp] - () : C:\Program Files\Foxit Reader\plugins\npFoxitReaderPlugin.dll [HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf] - () : C:\Program Files\Foxit Reader\plugins\npFoxitReaderPlugin.dll [HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.321.2] - (Java™ Deployment Toolkit) : C:\Program Files\Java\jre1.8.0_321\bin\dtplugin\npDeployJava1.dll [HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.321.2] - (Oracle® Next Generation Java™ Plug-In) : C:\Program Files\Java\jre1.8.0_321\bin\plugin2\npjp2.dll [HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] - (Ag Player Plugin) : c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf] - (Handles PDF files in place in the browser) : C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf] - (Handles PDF files in place in the browser) : C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [HKLM\Software\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf] - (Handles PDF files in place in the browser) : C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=3.0.16] - (VLC Multimedia Plugin) : C:\Program Files\VideoLAN\VLC\npvlc.dll C:\Users\Gregy&Justy\AppData\Roaming\Mozilla\Firefox\Profiles\n46144cc.default-release\Prefs.js user_pref("browser.startup.homepage_override.buildID", "20220202182137"); user_pref("browser.startup.homepage_override.mstone", "97.0"); user_pref("extensions.blocklist.pingCountVersion", -1); user_pref("extensions.databaseSchema", 35); user_pref("extensions.getAddons.cache.lastUpdate", 1644678490); user_pref("extensions.getAddons.databaseSchema", 6); user_pref("extensions.lastAppBuildId", "20220202182137"); user_pref("extensions.lastAppVersion", "97.0"); user_pref("extensions.lastPlatformVersion", "97.0"); user_pref("extensions.pendingOperations", false); user_pref("extensions.pictureinpicture.enable_picture_in_picture_overrides", true); user_pref("extensions.systemAddonSet", "{\"schema\":1,\"addons\":{}}"); user_pref("extensions.webcompat.enable_shims", true); user_pref("extensions.webcompat.perform_injections", true); user_pref("extensions.webcompat.perform_ua_overrides", true); user_pref("extensions.webextensions.uuids", "{\"doh-rollout@mozilla.org\":\"9007a05b-3cf9-4242-9c01-7a17151585ba\",\"formautofill@mozilla.org\":\"d5f4abca-b92c-46a1-a52e-077745290705\",\"pictureinpicture@mozilla.org\":\"613b480b-e304-4bc4-ad22-7aa2240fb6fa\",\"proxy-failover@mozilla.com\":\"388bdbf2-d553-4965-9d17-8acff7943044\",\"screenshots@mozilla.org\":\"c46d1c54-def2-4e94-8b72-0a958b97d50c\",\"webcompat-reporter@mozilla.org\":\"5619c021-1960-405e-9485-2b6677fac651\",\"webcompat@mozilla.org\":\"4ec64f7e-e711-434e-8427-567b7c51e4de\",\"addons-search-detection@mozilla.com\":\"cd09ab91-c64f-44f9-9ce3-fe6ec31a7c51\",\"google@search.mozilla.org\":\"44081653-b00b-4d23-ba35-32eb0d20515b\",\"wikipedia@search.mozilla.org\":\"00a87869-7b93-483f-9229-2669526a0892\",\"bing@search.mozilla.org\":\"d8d59480-922d-43ce-bc99-46cb1c4d0ceb\",\"amazon@search.mozilla.org\":\"ef23f881-4494-4c23-8dab-91fe133e15f7\",\"ddg@search.mozilla.org\":\"2141cdaa-1028-4a95-904b-4bbb53b43c63\",\"ebay@search.mozilla.org\":\"12de755c-f487-40c3-94ff-6ddac7e0ea13\",\"qwant@search.mozilla.org\":\"73c7fbff-9695-4ec1-afd2-81d88e8633f5\",\"default-theme@mozilla.org\":\"d42511c8-d241-4716-bbab-873df130951d\"}"); [Profile0] - Name=default-release -> Profiles/n46144cc.default-release ---------- | DNS [HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters] "DhcpNameServer"=192.168.1.1 [HKLM\SYSTEM\ControlSet001\services\Tcpip\Parameters\Interfaces\{629A035C-8B27-4F01-8626-9FF4A73ECDD2}] "DhcpNameServer"=192.168.1.1 [HKLM\SYSTEM\ControlSet002\services\Tcpip\Parameters\Interfaces\{629A035C-8B27-4F01-8626-9FF4A73ECDD2}] "DhcpNameServer"=192.168.1.1 [HKLM\SYSTEM\CurrentControlSet\services\Tcpip\Parameters\Interfaces\{629A035C-8B27-4F01-8626-9FF4A73ECDD2}] "DhcpNameServer"=192.168.1.1 ---------- | ActiveX [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] - () - -> [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] - () - -> [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] - () - -> [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] - () - -> [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] - () - -> [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] - () - -> [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] - () - -> [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] - () - -> [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] - () - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - (Microsoft Windows Media Player) - @%SystemRoot%\system32\wmploc.dll,-128 -> %SystemRoot%\system32\unregmp2.exe /ShowWMP [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] - (Internet Explorer) - @C:\Windows\System32\ie4uinit.exe,-21 -> C:\Windows\System32\ie4uinit.exe -UserIconConfig [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}] - (Browser Customizations) - @C:\Windows\System32\iedkcs32.dll,-3052 -> "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] - (Microsoft Windows Media Player 12.0) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] - (Themes Setup) - @%SystemRoot%\system32\themeui.dll,-2682 -> %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{3af36230-a269-11d1-b5bf-0000f8051515}] - (Offline Browsing Pack) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] - (Microsoft Windows) - -> "%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}] - (DirectDrawEx) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{45ea75a0-a269-11d1-b5bf-0000f8051515}] - (Internet Explorer Help) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{4f645220-306d-11d2-995d-00c04f98bbc9}] - (Microsoft Windows Script 5.6) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}] - (Internet Explorer Setup Tools) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{630b1da0-b465-11d1-9948-00c04f98bbc9}] - (Browsing Enhancements) - -> %SystemRoot%\system32\msieftp.dll [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] - (Microsoft Windows Media Player) - @%SystemRoot%\system32\wmploc.dll,-128 -> %SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}] - (MSN Site Access) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}] - (Address Book 7) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{7C028AF8-F614-47B3-82DA-BA94E41B1089}] - (.NET Framework) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] - (Windows Desktop Update) - @%SystemRoot%\system32\shell32.dll,-32969 -> regsvr32.exe /s /n /i:U shell32.dll [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] - (Web Platform Customizations) - @C:\Windows\System32\ie4uinit.exe,-2000 -> C:\Windows\System32\ie4uinit.exe -BaseSettings [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] - () - -> C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] - (Google Chrome) - -> "C:\Program Files\Google\Chrome\Application\98.0.4758.82\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel=stable [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{9381D8F2-0288-11D0-9501-00AA00B911A5}] - (Dynamic HTML Data Binding) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{C6BAF60B-6E91-453F-BFF9-D3789CFEFCDD}] - (.NET Framework) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{C9E9A340-D1F1-11D0-821E-444553540600}] - (Internet Explorer Core Fonts) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}] - (HTML Help) - -> [HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}] - (Active Directory Service Interface) - -> ---------- | Applications [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Classes\Applications\opera.exe] : "C:\Users\Gregy&Justy\AppData\Local\Programs\Opera\Launcher.exe" "%1" [HKLM\SOFTWARE\Classes\Applications\cardworks.exe] : "C:\Program Files\NCH Software\CardWorks\cardworks.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\clickcharts.exe] : "C:\Program Files\NCH Software\ClickCharts\clickcharts.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\crescendo.exe] : "C:\Program Files\NCH Software\Crescendo\crescendo.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\disketch.exe] : "C:\Program Files\NCH Software\Disketch\disketch.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\doxillion.exe] : "C:\Program Files\NCH Software\Doxillion\doxillion.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\drawpad.exe] : "C:\Program Files\NCH Software\DrawPad\drawpad.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\dreamplan.exe] : "C:\Program Files\NCH Software\DreamPlan\dreamplan.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\expressburn.exe] : "C:\Program Files\NCH Software\ExpressBurn\expressburn.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\expresszip.exe] : "C:\Program Files\NCH Software\ExpressZip\expresszip.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\filefort.exe] : "C:\Program Files\NCH Software\FileFort\filefort.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\firefox.exe] : "C:\Program Files\Mozilla Firefox\firefox.exe" -osint -url "%1" [HKLM\SOFTWARE\Classes\Applications\iexplore.exe] : "C:\Program Files\Internet Explorer\iexplore.exe" %1 [HKLM\SOFTWARE\Classes\Applications\mixpad.exe] : "C:\Program Files\NCH Software\MixPad\mixpad.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\mpc-hc.exe] : "C:\Program Files\K-Lite Codec Pack\MPC-HC\mpc-hc.exe" "%1" [HKLM\SOFTWARE\Classes\Applications\notepad.exe] : %SystemRoot%\system32\NOTEPAD.EXE %1 [HKLM\SOFTWARE\Classes\Applications\PDFXEdit.exe] : "C:\Program Files\Tracker Software\PDF Editor\PDFXEdit.exe" "%1" [HKLM\SOFTWARE\Classes\Applications\photopad.exe] : "C:\Program Files\NCH Software\PhotoPad\photopad.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\photostage.exe] : "C:\Program Files\NCH Software\PhotoStage\photostage.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\photoviewer.dll] : %SystemRoot%\System32\rundll32.exe "%ProgramFiles%\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1 [HKLM\SOFTWARE\Classes\Applications\pixillion.exe] : "C:\Program Files\NCH Software\Pixillion\pixillion.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\PotPlayerMini.exe] : "C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe" "%1" [HKLM\SOFTWARE\Classes\Applications\prism.exe] : "C:\Program Files\NCH Software\Prism\prism.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\scribe.exe] : "C:\Program Files\NCH Software\Scribe\scribe.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\switch.exe] : "C:\Program Files\NCH Software\Switch\switch.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\videopad.exe] : "C:\Program Files\NCH Software\VideoPad\videopad.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\vlc.exe] : "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "%1" [HKLM\SOFTWARE\Classes\Applications\wavepad.exe] : "C:\Program Files\NCH Software\WavePad\wavepad.exe" "%L" [HKLM\SOFTWARE\Classes\Applications\wmplayer.exe] : "%ProgramFiles%\Windows Media Player\wmplayer.exe" /Open "%L" [HKLM\SOFTWARE\Classes\Applications\wordpad.exe] : "%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE" "%1" ---------- | DCOMApplications Name: User Notification - AppID: {0010890e-8789-413c-adbc-48f5b511b3af} Name: WPD Association LUA Virtual Factory - AppID: {00393519-3A67-4507-A2B8-85146167ACA7} Name: PhotoAcquire - AppID: {00f22b16-589e-4982-a172-a51d9dcceb68} Name: PhotoAcqHWEventHandler - AppID: {00f2b433-44e4-4d88-b2b0-2698a0a91dba} Name: Virtual Factory for Biometrics - AppID: {0142e4d1-fb7a-11dc-ba4a-000ffe7ab428} Name: eDSPSDProtect - AppID: {023ED001-BA16-4467-B0D9-D098191C17A9} Name: PLA - AppID: {03837503-098b-11d8-9414-505054503030} Name: CTapiLuaLib Class - AppID: {03e15b2e-cca6-451c-8fb0-1e2ee37a27dd} Name: WPDBusEnum - AppID: {03f25b41-e981-4675-a256-27d1393e7488} Name: MsRdpWebAccess - AppID: {03FB0D37-37F1-4CCC-BA59-BA1B3A6A360A} Name: Device Display Object Function Discovery Provider - AppID: {04626806-2243-4354-ab44-4ade718d09df} Name: COpenControlPanel - AppID: {06622D85-6856-4460-8DE1-A81921B41C4B} Name: SMLUA - AppID: {0671E064-7C24-4AC0-AF10-0F3055707C32} Name: %systemroot%\System32\UserAccountControlSettings.dll - AppID: {06C792F8-6212-4F39-BF70-E8C0AC965C23} Name: sppui - AppID: {0868DC9B-D9A2-4f64-9362-133CEA201299} Name: RtkApoApi - AppID: {08B039CA-84AA-40EA-8E9C-1D9537DC415B} Name: PersistentZoneIdentifier - AppID: {0968e258-16c7-4dba-aa86-462dd61e31a3} Name: Windows Media Player Rich Preview Handler - AppID: {09C5C2B5-1D32-4598-B87E-203F32BB08E3} Name: ClariFiAPODll - AppID: {0A21D954-674A-4C09-806E-DB4FBE8F199C} Name: AxInstSv - AppID: {0B15AFD8-3A99-4A6E-9975-30D66F70BD94} Name: RASDLGLUA - AppID: {0C3B05FB-3498-40C3-9C03-4B22D735550C} Name: %SystemRoot%\system32\appwiz.cpl - AppID: {0da7bfdf-c0a0-44eb-be82-b7a82c4721de} Name: Vista Elevated Windows Update Web Control - AppID: {11c058e0-9f3e-4c90-a459-2553f2f9e011} Name: Sync Center Client - AppID: {1202DB60-1DAC-42C5-AED5-1ABDD432248E} Name: Virtual Factory for DiagCpl - AppID: {12C21EA7-2EB8-4B55-9249-AC243DA8C666} Name: DolbyDAX2APOvlldp - AppID: {18A5395C-F7C7-45D1-8D6D-F6BF56FE9427} Name: WriterBrowserExtension - AppID: {198B12CC-F591-440C-AC7A-6A730BBC436C} Name: Sync Center Control - AppID: {1A1F4206-0688-4E7F-BE03-D82EC69DF9A5} Name: MFRemoteDesktopPlugin - AppID: {1bc449da-b699-46c7-b4de-893e85e4ad6a} Name: %systemroot%\system32\lpksetup.exe - AppID: {1C749B87-568C-4865-8E73-6413F8372CE6} Name: RUExt - AppID: {1D928D64-60D3-4FAC-B810-C4D9D8A680CF} Name: wpcao.dll - AppID: {1E5300BE-0762-4527-8140-C0FF22DDFC56} Name: rshx32.dll - AppID: {1f2e5c40-9550-11ce-99d2-00aa006e086c} Name: ThirdPartyEapDispatcherPeerConfig - AppID: {1F7D1BE9-7A50-40B6-A605-C4F3696F49C0} Name: Microsoft WMI Provider Subsystem Secured Host - AppID: {1F87137D-0E7C-44d5-8C73-4EFFB68962F2} Name: DetectionAndSharing - AppID: {1fda955b-61ff-11da-978c-0008744faab7} Name: Microsoft Windows WSMan Provider Host With User Settings - AppID: {209444d2-2540-495e-962c-a61ad3243526} Name: MSDAINITIALIZE - AppID: {2206CDB0-19C1-11D1-89E0-00C04FD7A829} Name: DTSLimiterDLL - AppID: {24E79C19-1F52-43CC-8684-BFA13340E72C} Name: TabBtnEx - AppID: {25351F98-BEC9-4BA0-A1F7-D9D69225E52F} Name: ShredderContextMenu - AppID: {253C5D8C-536F-4140-9103-55F5B5442921} Name: Microsoft WBEM Active Scripting Event Consumer Provider - AppID: {266C72E7-62E8-11D1-AD89-00C04FD8FDFF} Name: DTSVoiceClarityDLL - AppID: {272EFD2A-90BE-4E48-8557-3D9CEA0530A0} Name: IMAPI2 - AppID: {273541FF-7F64-5B0F-8F00-5D77AFBE261E} Name: netman - AppID: {27AF75ED-20D9-11D1-B1CE-00805FC1270E} Name: AERTACap - AppID: {288E7ECC-EB53-45df-8EBD-72EAF9AFCB00} Name: kt_bho_dll - AppID: {28A88B70-D874-4f73-BBBA-9B2B222FB7D6} Name: RasMobilityManager - AppID: {292bed96-e9ce-40f8-b71b-c313defa3a78} Name: TosEAEAPODLL - AppID: {2A3C3DC0-7618-49FF-93E3-6481ACDDF2F2} Name: CMSVSWrap Object - AppID: {2B29DD0A-49D7-4C85-B4DA-64B1A22F1671} Name: faultrep.dll - AppID: {2C256447-3F0D-4CBB-9D12-575BB20CDA0A} Name: FileSystemImage - AppID: {2C941FD1-975B-59BE-A960-9A2A262853A5} Name: Identity Store - AppID: {30d49246-d217-465f-b00b-ac9ddd652eb7} Name: IPBusEnum - AppID: {344ED43D-D086-4961-86A6-1106F4ACAD9B} Name: CContactDb - AppID: {380689D0-AFAA-47E6-B80E-A33436FE314B} Name: DevicePairingHandler.dll - AppID: {383b69fa-5486-49da-91f5-d63c24c8e9d0} Name: AudioKsE - AppID: {393830E7-666C-4C5E-9DBC-077D8602B016} Name: C:\Program Files\Winamp\elevator.exe - AppID: {3B29AB5C-52CB-4a36-9314-E3FEE0BA7468} Name: EEL32A - AppID: {3D5781D9-B2FF-4396-8478-395412020995} Name: igfxcfg - AppID: {3D62E9A1-D243-11D2-B561-00A0C92E6848} Name: CMLUAUTIL - AppID: {3E000D72-A845-4CD9-BD83-80C07C3B881F} Name: Microsoft Windows Remote Shell Host - AppID: {3e5ca495-8d6a-4d1f-ad99-177b426c8b8e} Name: CMSTPLUA - AppID: {3E5FC7F9-9A51-4367-9063-A120244FBEC7} Name: Out Of Proc Mapi Handler - AppID: {3F5E4B87-C907-4f76-82E4-6FDF0CE90E25} Name: MSTTS DecObj Class Surrogate - AppID: {3F6B5E16-092A-41ED-930B-0B4125D91D4E} Name: Microsoft Windows WSMan Provider Host - AppID: {3feb2f63-0eec-4b96-84ab-da1307e0117c} Name: HTML Application - AppID: {40AEEAB6-8FDA-41e3-9A5F-8350D4CFCA91} Name: AERTARen - AppID: {41C98373-FE7F-4a42-B694-34CC4F979E61} Name: AccessibilityCplAdmin - AppID: {434A6274-C539-4E99-88FC-44206D942775} Name: Add to Windows Media Player list - AppID: {45597c98-80f6-4549-84ff-752cf55e2d29} Name: MCXMigPlugin - AppID: {4591a093-dc6b-4ffa-b700-c32e9dc8a014} Name: Health Key and Certificate Management - AppID: {46298684-0fd3-47f3-94b3-65650c65b36a} Name: McNAReg - AppID: {4743AB3F-566B-42ED-9F55-B561577663D2} Name: EEG32A - AppID: {47EC1E17-F30B-430b-B9C4-DF60ED501A4B} Name: IASDataStoreComServer - AppID: {48da6741-1bf0-4a44-8325-293086c79077} Name: COM_SRS_HP360 - AppID: {49611624-F1A3-4AA7-8A06-0209D7D6BA92} Name: Microsoft WBEM Unsecured Apartment - AppID: {49BD2028-1523-11D1-AD79-00C04FD8FDFF} Name: RASGCWLUA - AppID: {4A6B8BAD-9872-4525-A812-71A52367DC17} Name: wercplsupport.dll - AppID: {4BC67F23-D805-4384-BCA3-6F1EDFF50E2C} Name: DDPA32 - AppID: {4CBB9627-E758-489D-AE4E-A2BAFE0788F2} Name: Shell Security Editor - AppID: {4D111E08-CBF7-4f12-A926-2C7920AF52FC} Name: Microsoft Volume Shadow Copy Service software provider - AppID: {4db9c793-c48d-449c-9754-46027ee45c94} Name: COM+ Event System - AppID: {4E14FBA2-2E22-11D1-9964-00C04FBBB345} Name: ServiceModule - AppID: {4EB61BAC-A3B6-4760-9581-655041EF4D69} Name: upnpcont.exe - AppID: {4F0AC159-5804-4aa7-AE91-117D6E67BB9B} Name: Shell Computer Accounts - AppID: {4f6bcd94-c2a5-42ce-8dbc-31e794be4630} Name: WkspRT.exe - AppID: {4FCDA643-B15B-41C6-84F8-5E447F6F6D25} Name: HomeGroup CPL Advanced Settings Writer - AppID: {50a9ab2a-20f8-4d71-9f32-9fd305b49601} Name: Microsoft Windows Font Folder - AppID: {50d69d24-961d-4828-9d1c-5f4717f226d1} Name: acppage.dll - AppID: {513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8} Name: %systemroot%\system32\intl.cpl - AppID: {514B5E31-5596-422F-BE58-D804464683B5} Name: RemoteProxyFactory32 Class - AppID: {53362C32-A296-4F2D-A2F8-FD984D08340B} Name: 32-bit Preview Handler Surrogate Host - AppID: {534A1E02-D58F-44f0-B58B-36CBED287C7C} Name: Virtual Disk Service Loader - AppID: {5364ED0E-493F-4B16-9DBF-AE486CF22660} Name: SRS_APO_Universal - AppID: {553C48B2-BA6B-412B-9F8D-2B62B1B912AA} Name: Bonjour - AppID: {56608F9C-223B-4CB6-813D-85EDCCADFB4B} Name: Volume Shadow Copy Service - AppID: {56BE716B-2F76-4dfa-8702-67AE10044F0B} Name: Watson subscriber for SENS Network Events - AppID: {58FC39EB-9DBD-4EA7-B7B4-9404CC6ACFAB} Name: FaxCommon Class - AppID: {59347292-B72D-41F2-98C5-E9ACA1B247A2} Name: PfShellExtension - AppID: {59A55EF0-525F-4276-AB62-8F7E5F230399} Name: Authentication UI Terminal Services Bump Dialog - AppID: {59c7f6ec-7d18-412f-a68e-877982768e61} Name: EED32A - AppID: {5C73574D-FC7B-4747-8352-143F011923A0} Name: Virtual Factory for Display CPL - AppID: {5D05A4EB-54EA-4B7F-A28D-CE51F6BCBAF2} Name: Odyssey - AppID: {5F8FD45A-D58C-4AAD-8EDE-B9B78F02B959} Name: UIAutomationCrossBitnessHook32 Class - AppID: {60a90a2f-858d-42af-8929-82be9d99e8a1} Name: gusvc - AppID: {61E28BF8-C02B-499F-8E7A-34C1E4A1C649} Name: PDFPrevHndlr - AppID: {6236FF8C-E747-4173-86D3-99F511B61DF3} Name: Sync Center (Private) - AppID: {6295DF2D-35EE-11D1-8707-00C04FD93327} Name: PenIMC2 - AppID: {63CE6D27-426A-41F9-8E51-549C1132DAE2} Name: Windows Update Agent - AppID: {653C5148-4DCE-4905-9CFD-1B23662D3D9E} Name: FwCplLUA - AppID: {6571503D-D0FB-4D98-BBC3-1FBB2B3F344E} Name: McAlertHst - AppID: {66AEAB5B-1AC2-4504-B28D-667C2529858F} Name: DTSNeoPCDLL - AppID: {68976842-77A6-447F-83E8-97DF7A83A970} Name: Background Intelligent Transfer Service - AppID: {69AD4AEE-51BE-439b-A92C-86AE490E8B30} Name: Sync Center Isolation Collection (Private) - AppID: {69F9CB25-25E2-4BE1-AB8F-07AA7CB535E8} Name: PDFPreviewHandlerHost - AppID: {6B127CFD-C642-4338-BC8C-472DF61E5A14} Name: MsRdpSessionManager - AppID: {6B1DE8B3-DFB1-4C0E-9D9A-89CA730DE93F} Name: Preview Handler Surrogate Host - AppID: {6d2b5079-2f0b-48dd-ab7f-97cec514d30b} Name: UPnPContainer - AppID: {6d8ff8e0-730d-11d4-bf42-00b0d0118b56} Name: UPnPContainer64 - AppID: {6d8ff8e8-730d-11d4-bf42-00b0d0118b56} Name: SPPComApi - AppID: {6D9A7A40-DDCA-414E-B48E-DFB032C03C1B} Name: AutoItX3 - AppID: {6E8109C4-F369-415D-AF9A-2AEEFF313234} Name: HomeGroup UI Status - AppID: {6f33340d-8a01-473a-b75f-ded88c8360ce} Name: IEWindows - AppID: {6f5bad87-9d5e-459f-bd03-3957407051ca} Name: HomeGroup Provider Object - AppID: {6F7C8E8F-DC69-4e3f-BC05-439962A05FD5} Name: WindowsLiveWriterFilter - AppID: {7054B371-09E3-4BC8-8A61-02D7799EA98A} Name: Sharing Elevated Virtual Factory - AppID: {72A7994A-3092-4054-B6BE-08FF81AEEFFC} Name: User Profile Service DCOM server - AppID: {72E3272B-4EEA-4104-B358-1A282E4FC1AD} Name: Microsoft WMI Provider Subsystem Host - AppID: {73E709EA-5D93-4B2E-BBB0-99B7938DA9E4} Name: Trusted Installer Service - AppID: {752073A2-23F2-4396-85F0-8FDB879ED0ED} Name: PrintFilterPipelineSvc - AppID: {76db1bf3-e820-4765-a1b2-0b16a86b1950} Name: XWizard Virtual Factory - AppID: {777BA81A-2498-4875-933A-3067DE883070} Name: AcroIEHelperShim - AppID: {77AB4812-5411-4EA9-8437-77AD0F230302} Name: Network and Sharing Center Cpl Elevated Virtual Factory - AppID: {7A076CE1-4B31-452a-A4F1-0304C8738100} Name: Shell FMIFS Wrapper - AppID: {7aa7790d-75d7-484b-98a1-3913d022091d} Name: EapThirdPartyDllHost - AppID: {7B130458-E09C-4823-A8AF-2583DCD9AEC7} Name: Internet Explorer Add-on Installer - AppID: {7B29F495-0F55-49F7-8885-9E8A22CE3829} Name: WlanPrefLUA - AppID: {7C8AB6D9-8764-4033-8F62-2FE896E54B32} Name: Microsoft Windows Remote Shell Host With User Settings - AppID: {7d378de6-ed8d-426d-91df-0273d07cd7f6} Name: EEA32A - AppID: {7D5D40EC-DCAF-4858-B7DC-9BA70C8B7C39} Name: HomeGroup Printing Device Class - AppID: {7DF8EF76-D449-485f-B4EB-58DC96B31EDB} Name: MMC Application Class - AppID: {7e0423cd-1119-0928-900c-e6d4a52a0715} Name: DTSBassEnhancementDLL - AppID: {7E70FA0D-5DFA-4BA6-98C6-F10BBAAF7410} Name: wisptis - AppID: {7F429620-16D1-471E-A81A-114992148034} Name: AdAwareShellExtension - AppID: {815E3070-A914-4A36-BC40-2F35AAD1C91E} Name: WlanConn - AppID: {825FC848-87F7-4F26-9EF6-43964094FF98} Name: wlcsdk - AppID: {83B16523-1802-47EF-A9A6-2B3C8B796A6F} Name: CustReg Class - AppID: {84D586C4-A423-11D2-B943-00C04F79D22F} Name: Virtual Factory for Usercpl - AppID: {86d5eb8a-859f-4c7b-a76b-2bd819b7a850} Name: CElevateWlanUi - AppID: {86F80216-5DD6-4F43-953B-35EF40A35AEE} Name: IPS - AppID: {86F9F754-EB88-4A94-A092-721F013CB10B} Name: ThirdPartyEapDispatcherPeerRuntime - AppID: {87BB326B-E4A0-4DE1-94F0-B9F41D0C6059} Name: server - AppID: {8BB89536-83B9-4164-9531-12A20EA0A5A9} Name: Windows Management and Instrumentation - AppID: {8BC3F05E-D86B-11D0-A075-00C04FB68820} Name: TSTheme - AppID: {8be0366c-8522-40be-8b08-cb26557f2854} Name: TosASFAPODLL - AppID: {8C2856EC-F5FE-4FEA-BA6E-22AC88ED79F2} Name: IASExtensionHost - AppID: {8C334A55-DDB9-491C-817E-35A6B85D2ECB} Name: AP Client HxHelpPaneServer Class - AppID: {8cec58ae-07a1-11d9-b15e-000d56bfe6ee} Name: Virtual Factory for Action Center CPL - AppID: {8D26D9AA-5DA8-4b95-949A-B74954A229A6} Name: Sync Center Schedule Wizard - AppID: {8D8B8E30-C451-421B-8553-D2976AFA648C} Name: Shell Computer Groups - AppID: {8f3080a6-af99-4f2e-a806-f3d5702a0444} Name: SDRSVC service - AppID: {9037e3cf-1794-4af6-9c8d-92838d7a23db} Name: DTSSymmetryDLL - AppID: {91953DA9-4AB8-473A-BF6D-462FA2E58025} Name: Virtual Factory for Recovery - AppID: {9200689A-F979-4eea-8830-0E1D6B74821F} Name: RtkPgExt - AppID: {92842063-1ECC-4a1a-9343-9A8E1C972E60} Name: WMPDMCCore - AppID: {92C2A9B3-4228-438E-8A7B-EF110987764C} Name: ServiceModule - AppID: {9465B4B4-5216-4042-9A2C-754D3BCDC410} Name: MSRDC - AppID: {96236A96-9DBC-11DA-9E3F-0011114AE311} Name: protector_dll - AppID: {96FBC13C-8214-4100-88E0-FF74D7A1CB4D} Name: PrintIsolationHost - AppID: {98a89e0c-1fde-4c2a-a373-b04831e6aa60} Name: IcfUpgdMigPlugin - AppID: {992D028A-94D0-496C-8460-777FEA181333} Name: Shell Hardware Mixed Content Handler - AppID: {995C996E-D918-4a8c-A302-45719A6F4EA7} Name: Default Location CPL Data Handler LUA Helper - AppID: {9A630456-078D-43d3-9F1D-DF7A5BC0FA44} Name: GenericAskToolbar - AppID: {9B0CB95C-933A-4B8C-B6D4-EDCD19A43874} Name: ShellWindows - AppID: {9BA05972-F6A8-11CF-A442-00A0C90A8F39} Name: timedate.cpl - AppID: {9df523b0-a6c0-4ea9-b5f1-f4565c3ac8b8} Name: WSearch - AppID: {9E175B9C-F52A-11D8-B9A5-505054503030} Name: WMLSS - AppID: {9E88EF3C-E2BB-4E5E-AFBA-565B81069D7D} Name: TosSAEAPODLL - AppID: {9EE3B75C-74C4-4CCB-9BB2-BF5CA444C1A6} Name: RtkCfg - AppID: {A11009A7-DC01-48F8-B6AA-C4613FC5CB15} Name: WIA Device Manager - AppID: {A1F4E726-8CF1-11D1-BF92-0060081ED811} Name: Windows Parental Controls - AppID: {A2D8CFE7-7BA4-4bad-B86B-851376B59134} Name: Microsoft.Live.Folders.RichUpload.3.dll - AppID: {A40C5393-FD53-4528-95EB-0B348BC1539D} Name: Virtual Factory for Windows Firewall Cpl - AppID: {A4B07E49-6567-4FB8-8D39-01920E3B2357} Name: Shell ChkdskEx Dialog - AppID: {a4c31131-ff70-4984-afd6-0609ced53ad6} Name: PDFShellInfo - AppID: {A5090E95-F1E2-41C8-BDA1-5AEB6C321FDE} Name: WPDShextAutoplay - AppID: {A55803CC-4D53-404c-8557-FD63DBA95D24} Name: DTSBoostDLL - AppID: {A5900CCC-3E28-4F96-8410-C43BF113C279} Name: AIMPlugin - AppID: {A72B23B6-A76F-4E17-AEE0-50F10A9B5C9B} Name: Microsoft Windows Defender - AppID: {A79DB36D-6218-48e6-9EC9-DCBA9A39BF0F} Name: %SystemRoot%\System32\fveui.dll - AppID: {A7A63E5C-3877-4840-8727-C1EA9D7A4D50} Name: SysFxUi - AppID: {A7D2EC8B-B70F-434C-A0CE-0DF324805F7D} Name: IA3DUtility - AppID: {A7D71146-EBCD-4E6C-916C-E77865BCC53B} Name: Windows Remote Management Migration Plugin - AppID: {A87F5985-B130-4e0e-875D-0B0EF7C7300E} Name: ProtectorExe - AppID: {A97CA128-6998-4F8E-807E-8ED05FADAFB0} Name: Windows Media Player Encoder Helper Class - AppID: {A9D431C2-6D56-4727-9690-ADBE66B9184A} Name: TepeqAPODll - AppID: {AAA42638-53A8-4D94-95FC-52ED115A58B4} Name: DEFRAGSVC service - AppID: {ab7c873b-eb14-49a6-be60-a602f80e6d22} Name: Thumbnail Cache Out of Proc Server - AppID: {AB8902B4-09CA-4bb6-B78D-A8F59079A8D5} Name: BDEUILauncher Class - AppID: {AB93B6F1-BE76-4185-A488-A9001B105B94} Name: EEG32A - AppID: {ADC304B3-E91E-42dd-A72B-FE15B5E2C3BF} Name: NAP Agent Service - AppID: {B292921D-AF50-400c-9B75-0C57A7F29BA1} Name: Windows Update Agent - Remote Access - AppID: {B366DEBE-645B-43A5-B865-DDD82C345492} Name: DTSGainCompensatorDLL - AppID: {B3D43A87-E6C7-4EC8-8546-CEB9EE9BD936} Name: Found New Hardware Wizard - AppID: {B6A32FE6-E29D-AEAE-A608-D273E40CA34C} Name: WIA Device Manager 2 - AppID: {B6C292BC-7C88-41EE-8B54-8EC92617E599} Name: Com_SRS_TruSurroundHD - AppID: {B6D5C1B8-6F68-4A82-8E20-2D0F3A52BD6A} Name: WwanAdvui - AppID: {b70cc729-28ae-11dd-9676-000000000000} Name: Sync Center (Private) - AppID: {B8558612-DF5E-4F95-BB81-8E910B327FB2} Name: Windows Media Player - AppID: {B8C54A54-355E-11D3-83EB-00A0C92A2F2D} Name: DTSS2HeadphoneDLL - AppID: {BA291C7C-39AC-4331-9592-B694DA24BC89} Name: Event Object Change 2 - AppID: {BB07BACD-CD56-4E63-A8FF-CBF0355FB9F4} Name: AcroPDF - AppID: {BBAA0E44-3862-490C-8E63-AC2D2D6EF733} Name: SyncHost - AppID: {BBC4356A-F004-4628-A27A-E13D70412B70} Name: Virtual Factory for Power Options Control Panel - AppID: {BBD8C065-5E6C-4e88-BFD7-BE3E6D1C063B} Name: DfsShlEx.dll - AppID: {BCEA735B-4DAC-4B71-9C47-1D560AFD2A9B} Name: MigPluginSample - AppID: {BF60DE0B-B934-4a4e-AD49-BF9B27869BB1} Name: WindowsLiveWriterApplication - AppID: {BF7C0368-EA36-475E-AA42-3F28E736FABD} Name: provsvc.dll - AppID: {c2a71820-3463-498f-bab7-4798795a2ff6} Name: cttunesvr - AppID: {C3A34354-660F-41EE-B072-2AEA5E3A80AF} Name: Microsoft Block Level Backup Service - AppID: {C3B65D83-FB15-4e3f-BA04-097D1E2B5AC1} Name: Microsoft IMAPI - AppID: {C49F2185-50A7-11D3-9144-00104BA11C5E} Name: BdeUISrv - AppID: {C4AB7CB7-E735-48FF-AADD-39D09668F444} Name: HomeGroup Listener Service - AppID: {C4CDC408-581C-4480-9FFE-3B1C78D5C20D} Name: Nap Elevated COM class - AppID: {c5bbbd35-e321-468a-9884-6708aa083f83} Name: McNASvc - AppID: {C8A49047-AFB0-4931-9314-ABAAC93E662B} Name: TSWbPrxy.exe - AppID: {C92A9617-0EAE-4235-BD2B-84540EF1FFA9} Name: DictationHost Class - AppID: {C945AD06-534F-460C-8CB4-17C33099AF81} Name: Sync Infrastructure - AppID: {C947D50F-378E-4FF6-8835-FCB50305244D} Name: netprofm - AppID: {C96887DA-A652-4426-905E-4A37546F847C} Name: RCM - AppID: {C9F65BA8-1F8F-4382-AE27-C91FFB29275F} Name: OpenSearch Description Create Search Connector Verb Handler - AppID: {CB1DFE3A-EDFF-4d1f-867D-8ADB02926F4B} Name: LocationDisp - AppID: {CBDC4B31-CBE4-4A5B-BECF-64B29E47D2AD} Name: EnhancedStorageShell - AppID: {CC70FEAD-94B9-4F76-88CC-004BB068ACDF} Name: sppui - AppID: {CCFDD24D-CEAB-458B-A4F1-F884973395DF} Name: WcsPlugInServiceLib - AppID: {CD11FAB6-1C0E-45e1-BA31-5C6008EF2607} Name: Windows Media Player Burn Audio CD Handler - AppID: {cdc32574-7521-4124-90c3-8d5605a34933} Name: Elevated-Unelevated Explorer Factory - AppID: {CDCBCFCA-3CDC-436f-A4E2-0E02075250C2} Name: SharedAccess - AppID: {ce166e40-1e72-45b9-94c9-3b2050e8f180} Name: KettleSvc - AppID: {CE5AC9B5-9150-493f-9EEA-9C8A7C3DC841} Name: PNPXAssoc.dll - AppID: {cee8ccc9-4f6b-4469-a235-5a22869eef03} Name: sdchange - AppID: {CF254B00-1986-4b24-A92D-463D01F7E395} Name: MigPluginSample - AppID: {cf3b7cbe-c86a-4561-93a8-30e8036170a3} Name: DTSS2SpeakerDLL - AppID: {CF3C79C7-8096-4BF2-9684-9F6B832FAC23} Name: McSvHVer - AppID: {CFE68DFE-E6A3-48FC-A16B-0AE991E23576} Name: TrackerUpdate COM Server - AppID: {CFF399DD-5017-4A64-BC49-235836DDDD56} Name: Event Object Change - AppID: {D0565000-9DF4-11D1-A281-00C04FCA0AA7} Name: server - AppID: {D0950B53-608F-413D-AA85-39801B01DAB0} Name: Winmgmt MOF Compiler OOP - AppID: {D215781D-019E-4FA0-903D-0CDCDE13A4F5} Name: %systemroot%\system32\colorui.dll - AppID: {D2E7041B-2927-42fb-8E9F-7CE93B6DC937} Name: Bitmap Image - AppID: {D3E34B21-9D75-101A-8C3D-00AA001A1652} Name: WPDSp - AppID: {D455FA37-74F9-4A75-BD79-48659B12A1D6} Name: ghost - AppID: {D58F39FF-953E-4F45-898F-59F243B9A523} Name: Sync Center User Profile Notification Handler - AppID: {D63AA156-D534-4BAC-9BF1-55359CF5EC30} Name: server - AppID: {D8770326-6F07-4DFF-A3C2-F453500A253A} Name: Bluewire unpairing elevation surrogate - AppID: {D88EC52B-8D57-49e1-9EB3-4D267D68A2AE} Name: Microsoft.Live.FolderShare.Client - AppID: {daa6bc26-4dfa-4e8f-8d5f-47202dc8e400} Name: server - AppID: {DAD90530-F458-4A4C-8EB7-398E77577571} Name: TADEFxApo - AppID: {DB3D3052-9F00-4300-9285-91E27275BD34} Name: rundll32.exe - AppID: {de5d803e-5d2a-4b5f-9c63-af25a465cc44} Name: AccStore Class - AppID: {DE5DBCDC-104A-4cbc-A4D5-0C2104A142C5} Name: Profile Notification Host - AppID: {E10F6C3A-F1AE-4adc-AA9D-2FE65525666E} Name: RtkAPODll - AppID: {E1D2965E-D32B-4e1c-B9F1-159ACB984258} Name: Windows Update Agent User Interface for Published Applications - AppID: {e30984f1-b02b-4c27-a40f-23d11b8c1212} Name: Scan - AppID: {E32549C4-C2B8-4BCC-90D7-0FC3511092BB} Name: COM_SRS_WOWHD2 - AppID: {E46D2660-D86E-4B0A-BB61-F0FFE9BBDEB5} Name: upnphost - AppID: {E495081B-BBA5-4b89-BA3C-3B86A686B87A} Name: TrayDesktopBand - AppID: {E6442437-6C68-4f52-94DD-2CFED267EFB9} Name: UICOM - AppID: {E8054D20-497D-4E16-BF41-6E69FCD381A5} Name: wscui.cpl - AppID: {E9495B87-D950-4ab5-87A5-FF6D70BF3E90} Name: File Prop Sheet Page Helper - AppID: {E96767E0-7EAA-45e1-8E7D-64414AFF281A} Name: HomeGroup Provider Service - AppID: {EA022610-0748-4c24-B229-6C507EBDFDBB} Name: %systemroot%\System32\UserAccountControlSettings.dll - AppID: {EA2C6B24-C590-457B-BAC8-4A0F9B13B5B8} Name: McNAVer - AppID: {EC57D58E-0F20-4253-8C14-BD2B37BE5884} Name: ComEvents.ComServiceEvents - AppID: {ECABB0C3-7F19-11D2-978E-0000F8757E2A} Name: ComEvents.ComSystemAppEventData - AppID: {ECABB0C6-7F19-11D2-978E-0000F8757E2A} Name: Play with Windows Media Player - AppID: {ed1d0fdf-4414-470a-a56d-cfb68623fc58} Name: Windows Media Player Launch - AppID: {ED6BB178-B06A-47ad-98B3-6066E0CF0147} Name: Share Manager - AppID: {edb5f444-cb8d-445a-a523-ec5ab6ea33c7} Name: Microsoft Audio Device Graph Server - AppID: {F135BE18-BF34-4CBD-B1D5-55D49F0DEDCC} Name: AcroBroker - AppID: {F2383816-917A-46CC-AD2A-5013BED3800F} Name: Virtual Disk Service - AppID: {F290BFB2-1864-45B1-8804-2654194A87E7} Name: SPPSurrogate - AppID: {f32d97df-e3e5-4cb9-9e3e-0eb5b4e49801} Name: NDFAPI - AppID: {F3D3AA8D-EF96-4470-848E-BD70B803047A} Name: PerfCenter Enabler - AppID: {f4be747e-45c4-4701-90f1-d49d9ac30248} Name: sdclt - AppID: {f56b7b2a-5b5a-46d8-b6f9-d927ce34b717} Name: Windows Update Agent User Interface - AppID: {f62fdd2e-66d2-423b-9a04-f71ea00f892a} Name: PfShellExtension - AppID: {F6605BA7-71E8-4C6D-AD31-F05E3F568602} Name: PfShellExtension - AppID: {F6605BA7-71E8-4C6D-AD31-F05E3F568609} Name: WMPNSSCI - AppID: {F74BCE98-9EB4-4022-8317-11C723E5CCF8} Name: logagent - AppID: {F808DF63-6049-11D1-BA20-006097D2898E} Name: RAServer - AppID: {F8FD03A6-DDD9-4C1B-84EE-58159476A0D7} Name: NCLUA - AppID: {FA1456D3-4B97-4f9c-8511-2786161DC333} Name: VssEvent - AppID: {FAF53CC4-BD73-4E36-83F1-2B23F46E513E} Name: Shell Hardware Mixed Content Handler Cancelled - AppID: {fb479c02-9ec4-4fed-8599-debe037452cb} Name: RegisterControl - AppID: {FC38B7C8-9E50-497d-A387-7DEBDAD14160} Name: EEL32A - AppID: {FCA1E26B-AE4B-45a0-B7C8-34A007E79C3A} Name: appwiz.cpl - AppID: {FCC74B77-EC3E-4dd8-A80B-008A702075A9} Name: Wordpad - AppID: {fd6c8b29-e936-4a61-8da6-b0c12ad3ba00} Name: Shell Execute Hardware Event Handler - AppID: {FFB8655F-81B9-4fce-B89C-9A6BA76D13E7} Win32_DCOMApplication.AppID="{00021401-0000-0000-C000-000000000046}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{00021401-0000-0000-C000-000000000046}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{00021401-0000-0000-C000-000000000046}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{00393519-3A67-4507-A2B8-85146167ACA7}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{00393519-3A67-4507-A2B8-85146167ACA7}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{00393519-3A67-4507-A2B8-85146167ACA7}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{0142e4d1-fb7a-11dc-ba4a-000ffe7ab428}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{0142e4d1-fb7a-11dc-ba4a-000ffe7ab428}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{0142e4d1-fb7a-11dc-ba4a-000ffe7ab428}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{03837503-098b-11d8-9414-505054503030}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{03837503-098b-11d8-9414-505054503030}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{03837503-098b-11d8-9414-505054503030}" - Win32_SID.SID="S-1-5-32-559" Win32_DCOMApplication.AppID="{04626806-2243-4354-ab44-4ade718d09df}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{04626806-2243-4354-ab44-4ade718d09df}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{04626806-2243-4354-ab44-4ade718d09df}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{0671E064-7C24-4AC0-AF10-0F3055707C32}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{0671E064-7C24-4AC0-AF10-0F3055707C32}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{0671E064-7C24-4AC0-AF10-0F3055707C32}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{0868DC9B-D9A2-4f64-9362-133CEA201299}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{0868DC9B-D9A2-4f64-9362-133CEA201299}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{0A886F29-465A-4aea-8B8E-BE926BFAE83E}" - Win32_SID.SID="S-1-5-20" Win32_DCOMApplication.AppID="{0A886F29-465A-4aea-8B8E-BE926BFAE83E}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{0A886F29-465A-4aea-8B8E-BE926BFAE83E}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{0C3B05FB-3498-40C3-9C03-4B22D735550C}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{0C3B05FB-3498-40C3-9C03-4B22D735550C}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{0C3B05FB-3498-40C3-9C03-4B22D735550C}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{0CA545C6-37AD-4A6C-BF92-9F7610067EF5}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{0CA545C6-37AD-4A6C-BF92-9F7610067EF5}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{0CA545C6-37AD-4A6C-BF92-9F7610067EF5}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{0da7bfdf-c0a0-44eb-be82-b7a82c4721de}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{0da7bfdf-c0a0-44eb-be82-b7a82c4721de}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{0da7bfdf-c0a0-44eb-be82-b7a82c4721de}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{11c058e0-9f3e-4c90-a459-2553f2f9e011}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{11c058e0-9f3e-4c90-a459-2553f2f9e011}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{11c058e0-9f3e-4c90-a459-2553f2f9e011}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{12C21EA7-2EB8-4B55-9249-AC243DA8C666}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{12C21EA7-2EB8-4B55-9249-AC243DA8C666}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{12C21EA7-2EB8-4B55-9249-AC243DA8C666}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{136A0DC7-DF5C-4271-A2AC-15DF1A1323F2}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{136A0DC7-DF5C-4271-A2AC-15DF1A1323F2}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{19BCA967-D266-436f-B2D4-CBE4D4B42F96}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{19BCA967-D266-436f-B2D4-CBE4D4B42F96}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{19BCA967-D266-436f-B2D4-CBE4D4B42F96}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{19BCA967-D266-436f-B2D4-CBE4D4B42F96}" - Win32_SID.SID="S-1-5-19" Win32_DCOMApplication.AppID="{19BCA967-D266-436f-B2D4-CBE4D4B42F96}" - Win32_SID.SID="S-1-5-20" Win32_DCOMApplication.AppID="{19BCA967-D266-436f-B2D4-CBE4D4B42F96}" - Win32_SID.SID="S-1-5-32-547" Win32_DCOMApplication.AppID="{19BCA967-D266-436f-B2D4-CBE4D4B42F96}" - Win32_SID.SID="S-1-5-32-545" Win32_DCOMApplication.AppID="{19BCA967-D266-436f-B2D4-CBE4D4B42F96}" - Win32_SID.SID="S-1-5-32-556" Win32_DCOMApplication.AppID="{1BA783C1-2A30-4ad3-B928-A9A46C604C28}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{1BA783C1-2A30-4ad3-B928-A9A46C604C28}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{1BA783C1-2A30-4ad3-B928-A9A46C604C28}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{1C749B87-568C-4865-8E73-6413F8372CE6}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{1C749B87-568C-4865-8E73-6413F8372CE6}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{1C749B87-568C-4865-8E73-6413F8372CE6}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{1E5300BE-0762-4527-8140-C0FF22DDFC56}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{1E5300BE-0762-4527-8140-C0FF22DDFC56}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{1E5300BE-0762-4527-8140-C0FF22DDFC56}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{1f2e5c40-9550-11ce-99d2-00aa006e086c}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{1f2e5c40-9550-11ce-99d2-00aa006e086c}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{1f2e5c40-9550-11ce-99d2-00aa006e086c}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{1F7D1BE9-7A50-40B6-A605-C4F3696F49C0}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{1F7D1BE9-7A50-40B6-A605-C4F3696F49C0}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{1fb2a002-4c6c-4de7-85c2-cb8db9a4f728}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{1fb2a002-4c6c-4de7-85c2-cb8db9a4f728}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{1fb2a002-4c6c-4de7-85c2-cb8db9a4f728}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{1fda955b-61ff-11da-978c-0008744faab7}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{1fda955b-61ff-11da-978c-0008744faab7}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{1fda955b-61ff-11da-978c-0008744faab7}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{27170d71-7a40-4c8b-a3d1-64f7cbe81c66}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{27170d71-7a40-4c8b-a3d1-64f7cbe81c66}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{27170d71-7a40-4c8b-a3d1-64f7cbe81c66}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{292bed96-e9ce-40f8-b71b-c313defa3a78}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{292bed96-e9ce-40f8-b71b-c313defa3a78}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{292bed96-e9ce-40f8-b71b-c313defa3a78}" - Win32_SID.SID="S-1-5-19" Win32_DCOMApplication.AppID="{2B29DD0A-49D7-4C85-B4DA-64B1A22F1671}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{2B29DD0A-49D7-4C85-B4DA-64B1A22F1671}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{2B29DD0A-49D7-4C85-B4DA-64B1A22F1671}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{2C256447-3F0D-4CBB-9D12-575BB20CDA0A}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{2C256447-3F0D-4CBB-9D12-575BB20CDA0A}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{2C256447-3F0D-4CBB-9D12-575BB20CDA0A}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{2C5BC43E-3369-4C33-AB0C-BE9469677AF4}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{2C5BC43E-3369-4C33-AB0C-BE9469677AF4}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{2C5BC43E-3369-4C33-AB0C-BE9469677AF4}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{304CE942-6E39-40D8-943A-B913C40C9CD4}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{304CE942-6E39-40D8-943A-B913C40C9CD4}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{304CE942-6E39-40D8-943A-B913C40C9CD4}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{383b69fa-5486-49da-91f5-d63c24c8e9d0}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{383b69fa-5486-49da-91f5-d63c24c8e9d0}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{383b69fa-5486-49da-91f5-d63c24c8e9d0}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{3ad05575-8857-4850-9277-11b85bdb8e09}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{3ad05575-8857-4850-9277-11b85bdb8e09}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{3ad05575-8857-4850-9277-11b85bdb8e09}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{3B29AB5C-52CB-4a36-9314-E3FEE0BA7468}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{3B29AB5C-52CB-4a36-9314-E3FEE0BA7468}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{3C312978-E98D-4AA8-8613-EE47AE9DA458}" - Win32_SID.SID="S-1-1-0" Win32_DCOMApplication.AppID="{3E000D72-A845-4CD9-BD83-80C07C3B881F}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{3E000D72-A845-4CD9-BD83-80C07C3B881F}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{3E000D72-A845-4CD9-BD83-80C07C3B881F}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{3E5FC7F9-9A51-4367-9063-A120244FBEC7}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{3E5FC7F9-9A51-4367-9063-A120244FBEC7}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{3E5FC7F9-9A51-4367-9063-A120244FBEC7}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{3F4D7BB8-4F38-4526-8CD3-C44D68689C5F}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{3F4D7BB8-4F38-4526-8CD3-C44D68689C5F}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{3F4D7BB8-4F38-4526-8CD3-C44D68689C5F}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{434A6274-C539-4E99-88FC-44206D942775}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{434A6274-C539-4E99-88FC-44206D942775}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{434A6274-C539-4E99-88FC-44206D942775}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{44C39C96-0167-478F-B68D-783294A2545D}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{44C39C96-0167-478F-B68D-783294A2545D}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{44C39C96-0167-478F-B68D-783294A2545D}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{46C166AA-3108-11D4-9348-00C04F8EEB71}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{46C166AA-3108-11D4-9348-00C04F8EEB71}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{46C166AA-3108-11D4-9348-00C04F8EEB71}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{48da6741-1bf0-4a44-8325-293086c79077}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{48da6741-1bf0-4a44-8325-293086c79077}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{48da6741-1bf0-4a44-8325-293086c79077}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{4A6B8BAD-9872-4525-A812-71A52367DC17}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{4A6B8BAD-9872-4525-A812-71A52367DC17}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{4A6B8BAD-9872-4525-A812-71A52367DC17}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{4BC67F23-D805-4384-BCA3-6F1EDFF50E2C}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{4BC67F23-D805-4384-BCA3-6F1EDFF50E2C}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{4BC67F23-D805-4384-BCA3-6F1EDFF50E2C}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{4D111E08-CBF7-4f12-A926-2C7920AF52FC}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{4D111E08-CBF7-4f12-A926-2C7920AF52FC}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{4D111E08-CBF7-4f12-A926-2C7920AF52FC}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{4FCDA643-B15B-41C6-84F8-5E447F6F6D25}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{50a9ab2a-20f8-4d71-9f32-9fd305b49601}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{50a9ab2a-20f8-4d71-9f32-9fd305b49601}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{50a9ab2a-20f8-4d71-9f32-9fd305b49601}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{50d69d24-961d-4828-9d1c-5f4717f226d1}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{50d69d24-961d-4828-9d1c-5f4717f226d1}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{50d69d24-961d-4828-9d1c-5f4717f226d1}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{514B5E31-5596-422F-BE58-D804464683B5}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{514B5E31-5596-422F-BE58-D804464683B5}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{514B5E31-5596-422F-BE58-D804464683B5}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{59347292-B72D-41F2-98C5-E9ACA1B247A2}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{59347292-B72D-41F2-98C5-E9ACA1B247A2}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{59c7f6ec-7d18-412f-a68e-877982768e61}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{59c7f6ec-7d18-412f-a68e-877982768e61}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{59c7f6ec-7d18-412f-a68e-877982768e61}" - Win32_SID.SID="S-1-5-20" Win32_DCOMApplication.AppID="{5D05A4EB-54EA-4B7F-A28D-CE51F6BCBAF2}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{5D05A4EB-54EA-4B7F-A28D-CE51F6BCBAF2}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{5D05A4EB-54EA-4B7F-A28D-CE51F6BCBAF2}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{60173D16-A550-47f0-A14B-C6F9E4DA0831}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{60173D16-A550-47f0-A14B-C6F9E4DA0831}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{60173D16-A550-47f0-A14B-C6F9E4DA0831}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{642ef9d6-48a5-476b-919a-a507cfd02c0f}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{642ef9d6-48a5-476b-919a-a507cfd02c0f}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{642ef9d6-48a5-476b-919a-a507cfd02c0f}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{653C5148-4DCE-4905-9CFD-1B23662D3D9E}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{653C5148-4DCE-4905-9CFD-1B23662D3D9E}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{653C5148-4DCE-4905-9CFD-1B23662D3D9E}" - Win32_SID.SID="S-1-5-32-545" Win32_DCOMApplication.AppID="{6571503D-D0FB-4D98-BBC3-1FBB2B3F344E}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{6571503D-D0FB-4D98-BBC3-1FBB2B3F344E}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{6571503D-D0FB-4D98-BBC3-1FBB2B3F344E}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{683AC85E-50D6-4ABC-A3F4-78A481055B2D}" - Win32_SID.SID="S-1-1-0" Win32_DCOMApplication.AppID="{6B1DE8B3-DFB1-4C0E-9D9A-89CA730DE93F}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{6D9A7A40-DDCA-414E-B48E-DFB032C03C1B}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{6D9A7A40-DDCA-414E-B48E-DFB032C03C1B}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{6D9A7A40-DDCA-414E-B48E-DFB032C03C1B}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{7007ACC5-3202-11D1-AAD2-00805FC1270E}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{7007ACC5-3202-11D1-AAD2-00805FC1270E}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{7007ACC5-3202-11D1-AAD2-00805FC1270E}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{7007ACD1-3202-11D1-AAD2-00805FC1270E}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{7007ACD1-3202-11D1-AAD2-00805FC1270E}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{7007ACD1-3202-11D1-AAD2-00805FC1270E}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{72A7994A-3092-4054-B6BE-08FF81AEEFFC}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{72A7994A-3092-4054-B6BE-08FF81AEEFFC}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{72A7994A-3092-4054-B6BE-08FF81AEEFFC}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{752073A2-23F2-4396-85F0-8FDB879ED0ED}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{752073A2-23F2-4396-85F0-8FDB879ED0ED}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{752073A2-23F2-4396-85F0-8FDB879ED0ED}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{752073A2-23F2-4396-85F0-8FDB879ED0ED}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{752073A2-23F2-4396-85F0-8FDB879ED0ED}" - Win32_SID.SID="S-1-5-6" Win32_DCOMApplication.AppID="{76db1bf3-e820-4765-a1b2-0b16a86b1950}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{76db1bf3-e820-4765-a1b2-0b16a86b1950}" - Win32_SID.SID="S-1-5-11" Win32_DCOMApplication.AppID="{76db1bf3-e820-4765-a1b2-0b16a86b1950}" - Win32_SID.SID="S-1-5-32-546" Win32_DCOMApplication.AppID="{76db1bf3-e820-4765-a1b2-0b16a86b1950}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{777BA81A-2498-4875-933A-3067DE883070}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{777BA81A-2498-4875-933A-3067DE883070}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{777BA81A-2498-4875-933A-3067DE883070}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{7A076CE1-4B31-452a-A4F1-0304C8738100}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{7A076CE1-4B31-452a-A4F1-0304C8738100}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{7A076CE1-4B31-452a-A4F1-0304C8738100}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{7aa7790d-75d7-484b-98a1-3913d022091d}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{7aa7790d-75d7-484b-98a1-3913d022091d}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{7aa7790d-75d7-484b-98a1-3913d022091d}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{7aa7790d-75d7-484b-98a1-3913d022091d}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{7C8AB6D9-8764-4033-8F62-2FE896E54B32}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{7C8AB6D9-8764-4033-8F62-2FE896E54B32}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{7C8AB6D9-8764-4033-8F62-2FE896E54B32}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{7DF8EF76-D449-485f-B4EB-58DC96B31EDB}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{7DF8EF76-D449-485f-B4EB-58DC96B31EDB}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{7DF8EF76-D449-485f-B4EB-58DC96B31EDB}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{825FC848-87F7-4F26-9EF6-43964094FF98}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{825FC848-87F7-4F26-9EF6-43964094FF98}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{825FC848-87F7-4F26-9EF6-43964094FF98}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{84D586C4-A423-11D2-B943-00C04F79D22F}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{86d5eb8a-859f-4c7b-a76b-2bd819b7a850}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{86d5eb8a-859f-4c7b-a76b-2bd819b7a850}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{86d5eb8a-859f-4c7b-a76b-2bd819b7a850}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{86F80216-5DD6-4F43-953B-35EF40A35AEE}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{86F80216-5DD6-4F43-953B-35EF40A35AEE}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{86F80216-5DD6-4F43-953B-35EF40A35AEE}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{87BB326B-E4A0-4DE1-94F0-B9F41D0C6059}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{87BB326B-E4A0-4DE1-94F0-B9F41D0C6059}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{8be0366c-8522-40be-8b08-cb26557f2854}" - Win32_SID.SID="S-1-5-20" Win32_DCOMApplication.AppID="{8be0366c-8522-40be-8b08-cb26557f2854}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{8be0366c-8522-40be-8b08-cb26557f2854}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{8C334A55-DDB9-491C-817E-35A6B85D2ECB}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{8C334A55-DDB9-491C-817E-35A6B85D2ECB}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{8C334A55-DDB9-491C-817E-35A6B85D2ECB}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{8C482DCE-2644-4419-AEFF-189219F916B9}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{8C482DCE-2644-4419-AEFF-189219F916B9}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{8cec58ae-07a1-11d9-b15e-000d56bfe6ee}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{8cec58ae-07a1-11d9-b15e-000d56bfe6ee}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{8cec58ae-07a1-11d9-b15e-000d56bfe6ee}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{8D26D9AA-5DA8-4b95-949A-B74954A229A6}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{8D26D9AA-5DA8-4b95-949A-B74954A229A6}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{8D26D9AA-5DA8-4b95-949A-B74954A229A6}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{9200689A-F979-4eea-8830-0E1D6B74821F}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{9200689A-F979-4eea-8830-0E1D6B74821F}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{9200689A-F979-4eea-8830-0E1D6B74821F}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{98a89e0c-1fde-4c2a-a373-b04831e6aa60}" - Win32_SID.SID="S-1-1-0" Win32_DCOMApplication.AppID="{98a89e0c-1fde-4c2a-a373-b04831e6aa60}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{98a89e0c-1fde-4c2a-a373-b04831e6aa60}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{9A630456-078D-43d3-9F1D-DF7A5BC0FA44}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{9A630456-078D-43d3-9F1D-DF7A5BC0FA44}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{9A630456-078D-43d3-9F1D-DF7A5BC0FA44}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{9df523b0-a6c0-4ea9-b5f1-f4565c3ac8b8}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{9df523b0-a6c0-4ea9-b5f1-f4565c3ac8b8}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{9df523b0-a6c0-4ea9-b5f1-f4565c3ac8b8}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{A1F4E726-8CF1-11D1-BF92-0060081ED811}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{A1F4E726-8CF1-11D1-BF92-0060081ED811}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{A1F4E726-8CF1-11D1-BF92-0060081ED811}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{A2D8CFE7-7BA4-4bad-B86B-851376B59134}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{A2D8CFE7-7BA4-4bad-B86B-851376B59134}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{A2D8CFE7-7BA4-4bad-B86B-851376B59134}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{A4B07E49-6567-4FB8-8D39-01920E3B2357}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{A4B07E49-6567-4FB8-8D39-01920E3B2357}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{A4B07E49-6567-4FB8-8D39-01920E3B2357}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{a4c31131-ff70-4984-afd6-0609ced53ad6}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{a4c31131-ff70-4984-afd6-0609ced53ad6}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{a4c31131-ff70-4984-afd6-0609ced53ad6}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{A79DB36D-6218-48e6-9EC9-DCBA9A39BF0F}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{A79DB36D-6218-48e6-9EC9-DCBA9A39BF0F}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{A79DB36D-6218-48e6-9EC9-DCBA9A39BF0F}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{A7A63E5C-3877-4840-8727-C1EA9D7A4D50}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{A7A63E5C-3877-4840-8727-C1EA9D7A4D50}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{A7A63E5C-3877-4840-8727-C1EA9D7A4D50}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{B366DEBE-645B-43A5-B865-DDD82C345492}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{B6C292BC-7C88-41EE-8B54-8EC92617E599}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{B6C292BC-7C88-41EE-8B54-8EC92617E599}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{B6C292BC-7C88-41EE-8B54-8EC92617E599}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{b70cc729-28ae-11dd-9676-000000000000}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{b70cc729-28ae-11dd-9676-000000000000}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{b70cc729-28ae-11dd-9676-000000000000}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{B8C54A54-355E-11D3-83EB-00A0C92A2F2D}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{B8C54A54-355E-11D3-83EB-00A0C92A2F2D}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{BA126F01-2166-11D1-B1D0-00805FC1270E}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{BA126F01-2166-11D1-B1D0-00805FC1270E}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{BA126F01-2166-11D1-B1D0-00805FC1270E}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{BBD8C065-5E6C-4e88-BFD7-BE3E6D1C063B}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{BBD8C065-5E6C-4e88-BFD7-BE3E6D1C063B}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{BBD8C065-5E6C-4e88-BFD7-BE3E6D1C063B}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{BCEA735B-4DAC-4B71-9C47-1D560AFD2A9B}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{BCEA735B-4DAC-4B71-9C47-1D560AFD2A9B}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{BCEA735B-4DAC-4B71-9C47-1D560AFD2A9B}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{C100BEBB-D33A-4a4b-BF23-BBEF4663D017}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{C100BEBB-D33A-4a4b-BF23-BBEF4663D017}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{C100BEBB-D33A-4a4b-BF23-BBEF4663D017}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{c2a71820-3463-498f-bab7-4798795a2ff6}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{c2a71820-3463-498f-bab7-4798795a2ff6}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{c2a71820-3463-498f-bab7-4798795a2ff6}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{C3A34354-660F-41EE-B072-2AEA5E3A80AF}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{C3A34354-660F-41EE-B072-2AEA5E3A80AF}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{C3A34354-660F-41EE-B072-2AEA5E3A80AF}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{c5bbbd35-e321-468a-9884-6708aa083f83}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{c5bbbd35-e321-468a-9884-6708aa083f83}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{c5bbbd35-e321-468a-9884-6708aa083f83}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{c5bbbd35-e321-468a-9884-6708aa083f83}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{C92A9617-0EAE-4235-BD2B-84540EF1FFA9}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{CCFDD24D-CEAB-458B-A4F1-F884973395DF}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{CCFDD24D-CEAB-458B-A4F1-F884973395DF}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{CD11FAB6-1C0E-45e1-BA31-5C6008EF2607}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{CD11FAB6-1C0E-45e1-BA31-5C6008EF2607}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{CD11FAB6-1C0E-45e1-BA31-5C6008EF2607}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{CD11FAB6-1C0E-45e1-BA31-5C6008EF2607}" - Win32_SID.SID="S-1-5-19" Win32_DCOMApplication.AppID="{CD11FAB6-1C0E-45e1-BA31-5C6008EF2607}" - Win32_SID.SID="S-1-5-20" Win32_DCOMApplication.AppID="{CE5AC9B5-9150-493f-9EEA-9C8A7C3DC841}" - Win32_SID.SID="S-1-1-0" Win32_DCOMApplication.AppID="{cee8ccc9-4f6b-4469-a235-5a22869eef03}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{cee8ccc9-4f6b-4469-a235-5a22869eef03}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{cee8ccc9-4f6b-4469-a235-5a22869eef03}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{CF254B00-1986-4b24-A92D-463D01F7E395}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{CF254B00-1986-4b24-A92D-463D01F7E395}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{D215781D-019E-4FA0-903D-0CDCDE13A4F5}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{D88EC52B-8D57-49e1-9EB3-4D267D68A2AE}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{D88EC52B-8D57-49e1-9EB3-4D267D68A2AE}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{D88EC52B-8D57-49e1-9EB3-4D267D68A2AE}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{DCED8DB0-11A5-4b16-AB9D-4E28CA38C99F}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{DCED8DB0-11A5-4b16-AB9D-4E28CA38C99F}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{DCED8DB0-11A5-4b16-AB9D-4E28CA38C99F}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{de5d803e-5d2a-4b5f-9c63-af25a465cc44}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{de5d803e-5d2a-4b5f-9c63-af25a465cc44}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{de5d803e-5d2a-4b5f-9c63-af25a465cc44}" - Win32_SID.SID="S-1-5-20" Win32_DCOMApplication.AppID="{E2B3C97F-6AE1-41AC-817A-F6F92166D7DD}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{E2B3C97F-6AE1-41AC-817A-F6F92166D7DD}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{E2B3C97F-6AE1-41AC-817A-F6F92166D7DD}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{e30984f1-b02b-4c27-a40f-23d11b8c1212}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{e30984f1-b02b-4c27-a40f-23d11b8c1212}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{e30984f1-b02b-4c27-a40f-23d11b8c1212}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{E8054D20-497D-4E16-BF41-6E69FCD381A5}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{E8054D20-497D-4E16-BF41-6E69FCD381A5}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{E8054D20-497D-4E16-BF41-6E69FCD381A5}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{E9495B87-D950-4ab5-87A5-FF6D70BF3E90}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{E9495B87-D950-4ab5-87A5-FF6D70BF3E90}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{E9495B87-D950-4ab5-87A5-FF6D70BF3E90}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{EA022610-0748-4c24-B229-6C507EBDFDBB}" - Win32_SID.SID="S-1-5-19" Win32_DCOMApplication.AppID="{EA022610-0748-4c24-B229-6C507EBDFDBB}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{EA022610-0748-4c24-B229-6C507EBDFDBB}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{EA022610-0748-4c24-B229-6C507EBDFDBB}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{EA2C6B24-C590-457B-BAC8-4A0F9B13B5B8}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{EA2C6B24-C590-457B-BAC8-4A0F9B13B5B8}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{EA2C6B24-C590-457B-BAC8-4A0F9B13B5B8}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{EC9846B3-2762-4A6B-A214-6ACB603462D2}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{EC9846B3-2762-4A6B-A214-6ACB603462D2}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{EC9846B3-2762-4A6B-A214-6ACB603462D2}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{F290BFB2-1864-45B1-8804-2654194A87E7}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{F290BFB2-1864-45B1-8804-2654194A87E7}" - Win32_SID.SID="S-1-5-32-551" Win32_DCOMApplication.AppID="{F290BFB2-1864-45B1-8804-2654194A87E7}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{f32d97df-e3e5-4cb9-9e3e-0eb5b4e49801}" - Win32_SID.SID="S-1-5-19" Win32_DCOMApplication.AppID="{f32d97df-e3e5-4cb9-9e3e-0eb5b4e49801}" - Win32_SID.SID="S-1-5-20" Win32_DCOMApplication.AppID="{f32d97df-e3e5-4cb9-9e3e-0eb5b4e49801}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{f32d97df-e3e5-4cb9-9e3e-0eb5b4e49801}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{f32d97df-e3e5-4cb9-9e3e-0eb5b4e49801}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{F3D3AA8D-EF96-4470-848E-BD70B803047A}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{F3D3AA8D-EF96-4470-848E-BD70B803047A}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{F3D3AA8D-EF96-4470-848E-BD70B803047A}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{f4be747e-45c4-4701-90f1-d49d9ac30248}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{f4be747e-45c4-4701-90f1-d49d9ac30248}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{f4be747e-45c4-4701-90f1-d49d9ac30248}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{f62fdd2e-66d2-423b-9a04-f71ea00f892a}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{f62fdd2e-66d2-423b-9a04-f71ea00f892a}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{f62fdd2e-66d2-423b-9a04-f71ea00f892a}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{f735e733-d681-4aef-83c1-7ec82cac5ecc}" - Win32_SID.SID="S-1-5-80-364023826-931424190-487969545-1024119571-74567675" Win32_DCOMApplication.AppID="{f735e733-d681-4aef-83c1-7ec82cac5ecc}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{f735e733-d681-4aef-83c1-7ec82cac5ecc}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{f735e733-d681-4aef-83c1-7ec82cac5ecc}" - Win32_SID.SID="S-1-5-32-544" Win32_DCOMApplication.AppID="{F86BEF46-AAFA-46DF-8298-FD7907CA3A13}" - Win32_SID.SID="S-1-1-0" Win32_DCOMApplication.AppID="{F8FD03A6-DDD9-4C1B-84EE-58159476A0D7}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{FA1456D3-4B97-4f9c-8511-2786161DC333}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{FA1456D3-4B97-4f9c-8511-2786161DC333}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{FA1456D3-4B97-4f9c-8511-2786161DC333}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{FBF23B40-E3F0-101B-8488-00AA003E56F8}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{FBF23B40-E3F0-101B-8488-00AA003E56F8}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{FBF23B40-E3F0-101B-8488-00AA003E56F8}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{FCC74B77-EC3E-4dd8-A80B-008A702075A9}" - Win32_SID.SID="S-1-5-18" Win32_DCOMApplication.AppID="{FCC74B77-EC3E-4dd8-A80B-008A702075A9}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{FCC74B77-EC3E-4dd8-A80B-008A702075A9}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{ff9e6131-a8c1-4188-aa03-82e9f10a05a8}" - Win32_SID.SID="S-1-5-4" Win32_DCOMApplication.AppID="{ff9e6131-a8c1-4188-aa03-82e9f10a05a8}" - Win32_SID.SID="S-1-5-10" Win32_DCOMApplication.AppID="{ff9e6131-a8c1-4188-aa03-82e9f10a05a8}" - Win32_SID.SID="S-1-5-18" ---------- | SvcHost (Whitelist) [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost] "regsvc"=RemoteRegistry "DcomLaunch"=Power PlugPlay DcomLaunch "secsvcs"=WinDefend "bthsvcs"=bthserv "GPSvcGroup"=GPSvc "LocalDriverService"=LDrvSvc ---------- | SvcHost - Netsvcs (Whitelist) ---------- | Software [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\360] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\360desktoplite] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\360Safe] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\360TotalSecurity] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\7-Zip] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\8GadgetPack] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Acer] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Adlice Software] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Adobe] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Alps] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Anvisoft] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\AOMEI] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Apeaksoft Studio] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\AppDataLow] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Ashampoo] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Ask.com] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\AutoIt v3] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\AVAST Software] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Axialis] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Caphyon] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\CentBrowser] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Clients] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\CrystalIdea Software] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Digital River] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Dritek] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\DriverDoc] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\DriverFix] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\drpsu] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\EaseUS] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\EurekaLab] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\FlvtoConverter] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Foxit Software] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Gabest] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\GNU] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Google] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\hotger] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Icaros] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Insyde Software] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Intel] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\JSPortableAppsRuntimeData] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\KsL Software] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Licenses] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\LinuxLive] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\LogMeInInc] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\madshi] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Malwarebytes] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\MediaInfo] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Mirage] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Mobogenie3] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Mozilla] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\MozillaPlugins] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\MPC-BE Filters] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\MPC-HC] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\NCH Software] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\NCH Swift Sound] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\OEM] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\OneSafe Driver Manager] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\OneSafe Total PC Care] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Opera Software] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Partition Assistant] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\PC Speed Maximizer] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Policies] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\PortableAppC] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\PortableAppcCommonDir] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\PortableAppcCommonFile] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\QtProject] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Realtek] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Reason] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\RegisteredApplications] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\SIV] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Sonix] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Spoon] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Stardock] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Sysinternals] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\SysVulTer] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Tracker Software] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Trolltech] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\VB and VBA Program Settings] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\VS Revo Group] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\WAU MAnager] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Winamp] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\WinRAR] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\WinRAR SFX] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Yandex] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Zemana] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\AppDataLow\Software\AskToolbar] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\AppDataLow\Software\Google] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\AppDataLow\Software\Microsoft] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Active Setup] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\ActiveMovie] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Advanced INF Setup] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\AntiPhishing] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Assistance] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Command Processor] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\CTF] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Dfrg] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Direct3D] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\DirectInput] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\DirectX Diagnostic Tool] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\EventSystem] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Fax] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Feeds] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\FTP] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\GDIPlus] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\IAM] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Ieak] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\IME] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\IMEJP] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Installer] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Connection Wizard] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Keyboard] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Lptr] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\MediaPlayer] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\MSF] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Multimedia] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Notepad] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\PeerNet] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Protected Storage System Provider] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\RAS AutoDial] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Registration] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Shared Tools] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\SideShow] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Silverlight] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Speech] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\SQMClient] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\SystemCertificates] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\TPG] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Visual Basic] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\WAB] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\wfs] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows Mail] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows Media] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows NT] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows Script] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows Script Host] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows Search] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Windows Sidebar] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Wisp] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\CurrentVersion] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\DWM] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\Roaming] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\Shell] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\TabletPC] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows\Windows Error Reporting] [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\Software\Microsoft\Windows NT\CurrentVersion] [HKLM\Software\360Safe] [HKLM\Software\360TotalSecurity] [HKLM\Software\7-Zip] [HKLM\Software\Acer] [HKLM\Software\Adaware] [HKLM\Software\Adaware PC Cleaner] [HKLM\Software\Adaware VPN] [HKLM\Software\Adobe] [HKLM\Software\Alps] [HKLM\Software\America Online] [HKLM\Software\Anvisoft] [HKLM\Software\Apple Inc.] [HKLM\Software\Applogon] [HKLM\Software\Ashampoo] [HKLM\Software\ATI Technologies] [HKLM\Software\AutoHotkey] [HKLM\Software\AutoIt v3] [HKLM\Software\Avast Software] [HKLM\Software\Clients] [HKLM\Software\DAUM] [HKLM\Software\Dolby] [HKLM\Software\Dritek] [HKLM\Software\Driver-Soft] [HKLM\Software\Drive_Shortcut] [HKLM\Software\drpsu] [HKLM\Software\DTS] [HKLM\Software\EASEUS] [HKLM\Software\EgisTec] [HKLM\Software\EgisTec IPS] [HKLM\Software\EgisTec Shredder] [HKLM\Software\EUClone] [HKLM\Software\FastStone Image Viewer] [HKLM\Software\FixMeStick] [HKLM\Software\Fortemedia] [HKLM\Software\Foxit Software] [HKLM\Software\g3n-h@ckm@n] [HKLM\Software\GNU] [HKLM\Software\Google] [HKLM\Software\Icaros] [HKLM\Software\inPixio Photo Studio 11] [HKLM\Software\Insyde Software] [HKLM\Software\Intego] [HKLM\Software\Intel] [HKLM\Software\IObit] [HKLM\Software\iTop VPN] [HKLM\Software\JavaSoft] [HKLM\Software\JreMetrics] [HKLM\Software\KeyCryptSDK] [HKLM\Software\KLCodecPack] [HKLM\Software\Knowles] [HKLM\Software\LAV] [HKLM\Software\Lavasoft] [HKLM\Software\Licenses] [HKLM\Software\LinuxLive USB Creator] [HKLM\Software\LiveUpdate360] [HKLM\Software\LogMeInInc] [HKLM\Software\Macromedia] [HKLM\Software\McAfeeInstaller] [HKLM\Software\Microsoft] [HKLM\Software\Mobogenie3] [HKLM\Software\Mozilla] [HKLM\Software\mozilla.org] [HKLM\Software\MozillaPlugins] [HKLM\Software\NCH Software] [HKLM\Software\NCH Swift Sound] [HKLM\Software\Nuance] [HKLM\Software\Oberon Media] [HKLM\Software\ODBC] [HKLM\Software\OEM] [HKLM\Software\OemSetup] [HKLM\Software\OneSafe Driver Manager] [HKLM\Software\OOBEOffer] [HKLM\Software\OpenAL] [HKLM\Software\Oracle] [HKLM\Software\OSTotoSoft] [HKLM\Software\Policies] [HKLM\Software\Realtek] [HKLM\Software\REASONABLE SOFTWARE HOUSE] [HKLM\Software\RegisteredApplications] [HKLM\Software\SIV] [HKLM\Software\Skype] [HKLM\Software\SonicFocus] [HKLM\Software\SONIX] [HKLM\Software\SoundResearch] [HKLM\Software\Stardock] [HKLM\Software\Tracker Software] [HKLM\Software\UVK - Ultra virus killer backups] [HKLM\Software\VideoLAN] [HKLM\Software\voidtools] [HKLM\Software\WinRAR] [HKLM\Software\Wow6432Node] [HKLM\Software\Yandex] [HKLM\Software\Zemana] [HKLM\Software\ZmnGlobalSDK] [HKLM\SOFTWARE\Microsoft\.NETFramework] [HKLM\SOFTWARE\Microsoft\Active Setup] [HKLM\SOFTWARE\Microsoft\ADs] [HKLM\SOFTWARE\Microsoft\Advanced INF Setup] [HKLM\SOFTWARE\Microsoft\ALG] [HKLM\SOFTWARE\Microsoft\AMSI] [HKLM\SOFTWARE\Microsoft\AOMEI] [HKLM\SOFTWARE\Microsoft\ASP.NET] [HKLM\SOFTWARE\Microsoft\Assistance] [HKLM\SOFTWARE\Microsoft\AudioCompressionManager] [HKLM\SOFTWARE\Microsoft\BidInterface] [HKLM\SOFTWARE\Microsoft\COM3] [HKLM\SOFTWARE\Microsoft\Command Processor] [HKLM\SOFTWARE\Microsoft\Cryptography] [HKLM\SOFTWARE\Microsoft\CTF] [HKLM\SOFTWARE\Microsoft\DataAccess] [HKLM\SOFTWARE\Microsoft\DataFactory] [HKLM\SOFTWARE\Microsoft\DevDiv] [HKLM\SOFTWARE\Microsoft\Dfrg] [HKLM\SOFTWARE\Microsoft\Direct3D] [HKLM\SOFTWARE\Microsoft\DirectDraw] [HKLM\SOFTWARE\Microsoft\DirectInput] [HKLM\SOFTWARE\Microsoft\DirectMusic] [HKLM\SOFTWARE\Microsoft\DirectPlay] [HKLM\SOFTWARE\Microsoft\DirectPlay8] [HKLM\SOFTWARE\Microsoft\DirectPlayNATHelp] [HKLM\SOFTWARE\Microsoft\DirectShow] [HKLM\SOFTWARE\Microsoft\DirectX] [HKLM\SOFTWARE\Microsoft\DownloadManager] [HKLM\SOFTWARE\Microsoft\Driver Signing] [HKLM\SOFTWARE\Microsoft\DRM] [HKLM\SOFTWARE\Microsoft\DVR] [HKLM\SOFTWARE\Microsoft\DXP] [HKLM\SOFTWARE\Microsoft\Edge] [HKLM\SOFTWARE\Microsoft\EnterpriseCertificates] [HKLM\SOFTWARE\Microsoft\EventSystem] [HKLM\SOFTWARE\Microsoft\Exchange] [HKLM\SOFTWARE\Microsoft\Fax] [HKLM\SOFTWARE\Microsoft\Feeds] [HKLM\SOFTWARE\Microsoft\FlashConfig] [HKLM\SOFTWARE\Microsoft\FTH] [HKLM\SOFTWARE\Microsoft\Function Discovery] [HKLM\SOFTWARE\Microsoft\Fusion] [HKLM\SOFTWARE\Microsoft\GPUPipeline] [HKLM\SOFTWARE\Microsoft\HTMLHelp] [HKLM\SOFTWARE\Microsoft\IdentityCRL] [HKLM\SOFTWARE\Microsoft\IdentityStore] [HKLM\SOFTWARE\Microsoft\IMAPI] [HKLM\SOFTWARE\Microsoft\IMEJP] [HKLM\SOFTWARE\Microsoft\IMEKR] [HKLM\SOFTWARE\Microsoft\IMETC] [HKLM\SOFTWARE\Microsoft\Internet Account Manager] [HKLM\SOFTWARE\Microsoft\Internet Domains] [HKLM\SOFTWARE\Microsoft\Internet Explorer] [HKLM\SOFTWARE\Microsoft\IsoBurn] [HKLM\SOFTWARE\Microsoft\Jet] [HKLM\SOFTWARE\Microsoft\Lptr] [HKLM\SOFTWARE\Microsoft\MediaPlayer] [HKLM\SOFTWARE\Microsoft\MessengerService] [HKLM\SOFTWARE\Microsoft\Microsoft SQL Server Compact Edition] [HKLM\SOFTWARE\Microsoft\MigWiz] [HKLM\SOFTWARE\Microsoft\MMC] [HKLM\SOFTWARE\Microsoft\Mobile] [HKLM\SOFTWARE\Microsoft\MSBuild] [HKLM\SOFTWARE\Microsoft\MSDE] [HKLM\SOFTWARE\Microsoft\MSDTC] [HKLM\SOFTWARE\Microsoft\MSF] [HKLM\SOFTWARE\Microsoft\MSLicensing] [HKLM\SOFTWARE\Microsoft\MSN Apps] [HKLM\SOFTWARE\Microsoft\MSSQLServer] [HKLM\SOFTWARE\Microsoft\Multimedia] [HKLM\SOFTWARE\Microsoft\NapServer] [HKLM\SOFTWARE\Microsoft\NET Framework Setup] [HKLM\SOFTWARE\Microsoft\NetSh] [HKLM\SOFTWARE\Microsoft\Network] [HKLM\SOFTWARE\Microsoft\NetworkAccessProtection] [HKLM\SOFTWARE\Microsoft\Non-Driver Signing] [HKLM\SOFTWARE\Microsoft\Notepad] [HKLM\SOFTWARE\Microsoft\ODBC] [HKLM\SOFTWARE\Microsoft\OfficeSoftwareProtectionPlatform] [HKLM\SOFTWARE\Microsoft\Ole] [HKLM\SOFTWARE\Microsoft\Outlook Express] [HKLM\SOFTWARE\Microsoft\PCHealth] [HKLM\SOFTWARE\Microsoft\PLA] [HKLM\SOFTWARE\Microsoft\PlayReady] [HKLM\SOFTWARE\Microsoft\Policies] [HKLM\SOFTWARE\Microsoft\PowerShell] [HKLM\SOFTWARE\Microsoft\Print] [HKLM\SOFTWARE\Microsoft\RADAR] [HKLM\SOFTWARE\Microsoft\Ras] [HKLM\SOFTWARE\Microsoft\RAS AutoDial] [HKLM\SOFTWARE\Microsoft\Reliability Analysis] [HKLM\SOFTWARE\Microsoft\RemovalTools] [HKLM\SOFTWARE\Microsoft\RendezvousApps] [HKLM\SOFTWARE\Microsoft\RFC1156Agent] [HKLM\SOFTWARE\Microsoft\Router] [HKLM\SOFTWARE\Microsoft\Rpc] [HKLM\SOFTWARE\Microsoft\SchedulingAgent] [HKLM\SOFTWARE\Microsoft\Search Enhancement Pack] [HKLM\SOFTWARE\Microsoft\Security Center] [HKLM\SOFTWARE\Microsoft\Shared Tools] [HKLM\SOFTWARE\Microsoft\Shared Tools Location] [HKLM\SOFTWARE\Microsoft\SideShow] [HKLM\SOFTWARE\Microsoft\Silverlight] [HKLM\SOFTWARE\Microsoft\SoftGrid] [HKLM\SOFTWARE\Microsoft\Speech] [HKLM\SOFTWARE\Microsoft\SQMClient] [HKLM\SOFTWARE\Microsoft\Sync Framework] [HKLM\SOFTWARE\Microsoft\Sysprep] [HKLM\SOFTWARE\Microsoft\SystemCertificates] [HKLM\SOFTWARE\Microsoft\TableTextService] [HKLM\SOFTWARE\Microsoft\TabletTip] [HKLM\SOFTWARE\Microsoft\Tcpip] [HKLM\SOFTWARE\Microsoft\Terminal Server Client] [HKLM\SOFTWARE\Microsoft\TIP Shared] [HKLM\SOFTWARE\Microsoft\TMM] [HKLM\SOFTWARE\Microsoft\TPG] [HKLM\SOFTWARE\Microsoft\Tpm] [HKLM\SOFTWARE\Microsoft\Tracing] [HKLM\SOFTWARE\Microsoft\Transaction Server] [HKLM\SOFTWARE\Microsoft\TV System Services] [HKLM\SOFTWARE\Microsoft\uDRM] [HKLM\SOFTWARE\Microsoft\Updates] [HKLM\SOFTWARE\Microsoft\UPnP Device Host] [HKLM\SOFTWARE\Microsoft\VisualStudio] [HKLM\SOFTWARE\Microsoft\WAB] [HKLM\SOFTWARE\Microsoft\WBEM] [HKLM\SOFTWARE\Microsoft\WIMMount] [HKLM\SOFTWARE\Microsoft\Windows] [HKLM\SOFTWARE\Microsoft\Windows Defender] [HKLM\SOFTWARE\Microsoft\Windows Desktop Search] [HKLM\SOFTWARE\Microsoft\Windows Live] [HKLM\SOFTWARE\Microsoft\Windows Live Mail] [HKLM\SOFTWARE\Microsoft\Windows Live Writer] [HKLM\SOFTWARE\Microsoft\Windows Mail] [HKLM\SOFTWARE\Microsoft\Windows Media Device Manager] [HKLM\SOFTWARE\Microsoft\Windows Media Foundation] [HKLM\SOFTWARE\Microsoft\Windows Media Player NSS] [HKLM\SOFTWARE\Microsoft\Windows Messaging Subsystem] [HKLM\SOFTWARE\Microsoft\Windows NT] [HKLM\SOFTWARE\Microsoft\Windows Photo Viewer] [HKLM\SOFTWARE\Microsoft\Windows Portable Devices] [HKLM\SOFTWARE\Microsoft\Windows Script Host] [HKLM\SOFTWARE\Microsoft\Windows Search] [HKLM\SOFTWARE\Microsoft\Wisp] [HKLM\SOFTWARE\Microsoft\Wlansvc] [HKLM\SOFTWARE\Microsoft\Workspaces] [HKLM\SOFTWARE\Microsoft\WwanSvc] [HKLM\SOFTWARE\Microsoft\XNA] [HKLM\Software\Microsoft\Windows\CurrentVersion] [HKLM\Software\Microsoft\Windows\HTML Help] [HKLM\Software\Microsoft\Windows\ITStorage] [HKLM\Software\Microsoft\Windows\ScheduledDiagnostics] [HKLM\Software\Microsoft\Windows\ScriptedDiagnosticsProvider] [HKLM\Software\Microsoft\Windows\Tablet PC] [HKLM\Software\Microsoft\Windows\TabletPC] [HKLM\Software\Microsoft\Windows\Windows Error Reporting] [HKLM\Software\Microsoft\Windows\Windows Search] [HKLM\Software\Microsoft\Windows NT\CurrentVersion] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\AxInstSVGroup] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\defragsvc] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\GPSvcGroup] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalService] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalServiceAndNoImpersonation] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalServiceNetworkRestricted] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalServiceNoNetwork] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\LocalSystemNetworkRestricted] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\netsvcs] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\NetworkService] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\NetworkServiceRemoteDesktopHyperVAgent] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\NetworkServiceRemoteDesktopPublishing] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\SDRSVC] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\swprv] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\termsvcs] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\wcssvc] [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\wercplsupport] ---------- | FeatureControl [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_96DPI_PIXEL] "SdDisplay.exe"="1" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION] "fdm.exe"="11000" "ASZIP.EXE"="8888" "ASZSCRIPT.EXE"="8888" "Main.exe"="11000" "browser_assistant.exe"="9000" "ARC2.exe"="8888" "SdDisplay.exe"="8888" "PotPlayerMini.exe"="8000" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_MODE] "iexplore.exe"="8" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_CrossDomain_Fix_KB867801] "ASZIP.EXE"="1" "ASZSCRIPT.EXE"="1" "ARC2.exe"="1" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_Cross_Domain_Redirect_Mitigation] "ASZIP.EXE"="1" "ASZSCRIPT.EXE"="1" "ARC2.exe"="1" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_CLIPCHILDREN_OPTIMIZATION] "PotPlayerMini.exe"="1" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_GPU_RENDERING] "fdm.exe"="1" "mshta.exe"="1" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER] "ASZIP.EXE"="10" "ASZSCRIPT.EXE"="10" "ARC2.exe"="10" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER] "ASZIP.EXE"="10" "ASZSCRIPT.EXE"="10" "ARC2.exe"="10" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_NINPUT_LEGACYMODE] "mshta.exe"="0" [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SCRIPTURL_MITIGATION] "ASZIP.EXE"="1" "ASZSCRIPT.EXE"="1" "ARC2.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_96DPI_PIXEL] "WindowsAnytimeUpgradeUI.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ACTIVEX_REPURPOSEDETECTION] "sllauncher.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ADDON_MANAGEMENT] "prevhost.exe"="1" "wmplayer.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BEHAVIORS] "*"="1" "explorer.exe"="1" "iexplore.exe"="1" "infopath.exe"="0" "msn6.exe"="0" "wmplayer.exe"="1" "wlmail.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_INPUT_PROMPTS] "prevhost.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_IMG] "sllauncher.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_OBJECT] "sllauncher.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BLOCK_LMZ_SCRIPT] "sllauncher.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION] "prevhost.exe"="8" "fdm.exe"="11000" "Main.exe"="9999" "DriverTalent.exe"="8000" "sllauncher.exe"="8000" "PDFXEdit.exe"="11000" "FoxitReader.exe"="11000" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_MK_PROTOCOL] "*"="1" "explorer.exe"="1" "iexplore.exe"="1" "SAPfewgsrv.exe"="0" "SAPGuiIT.exe"="0" "SAPGUI.exe"="0" "SAPLgPad.exe"="0" "SAPLOGON.exe"="0" "Scale_for_R3.exe"="0" "wmplayer.exe"="1" "wlmail.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_SQM_UPLOAD_FOR_APP] "ieuser.exe"="1" "iexplore.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_DISABLE_UNICODE_HANDLE_CLOSING_CALLBACK] "YahooMusicEngine.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ENABLE_SCRIPT_PASTE_URLACTION_IF_PROMPT] "devenv.exe"="1" "dexplore.exe"="1" "helppane.exe"="1" "sllauncher.exe"="0" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FEEDS] "msfeedssync.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_FORCE_ADDR_AND_STATUS] "prevhost.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_GPU_RENDERING] "fdm.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HIGH_CONTRAST_BACKGROUND_IMAGES] "sidebar.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_HTTP_USERNAME_PASSWORD_DISABLE] "wmplayer.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IGNORE_XML_PROLOG] ""="" "msiexec.exe"="0" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_IMAGING_USE_ART] "wm.exe"="1" "cs.exe"="1" "waol.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_INTERNET_SHELL_FOLDERS] "iexplore.exe"="0" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LEGACY_DISPPARAMS] "helppane.exe"="0" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LEGACY_DLCONTROL_BEHAVIORS] "wlmail.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_LOCALMACHINE_LOCKDOWN] "explorer.exe"="1" "iexplore.exe"="1" "prevhost.exe"="1" "wmplayer.exe"="1" "wlmail.exe"="1" "sllauncher.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPER1_0SERVER] "explorer.exe"="10" "sllauncher.exe"="6" "iexplore.exe"="10" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MAXCONNECTIONSPERSERVER] "explorer.exe"="10" "sllauncher.exe"="6" "iexplore.exe"="10" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_HANDLING] "explorer.exe"="1" "iexplore.exe"="1" "prevhost.exe"="1" "wmplayer.exe"="1" "wlmail.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MIME_SNIFFING] "explorer.exe"="1" "iexplore.exe"="1" "wmplayer.exe"="1" "wlmail.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_MSHTML_AUTOLOAD_IEFRAME] "mshta.exe"="1" "outlook.exe"="1" "sidebar.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_OBJECT_CACHING] "explorer.exe"="1" "iexplore.exe"="1" "wmplayer.exe"="1" "wlmail.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_PROTOCOL_LOCKDOWN] "explorer.exe"="0" "iexplore.exe"="0" "wmplayer.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RELEASE_CALLBACK_ON_STOP_BINDING] "communicator.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ABOUT_PROTOCOL_IE7] "prevhost.exe"="1" "sllauncher.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_ACTIVEXINSTALL] "prevhost.exe"="1" "wmplayer.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_FILEDOWNLOAD] "msimn.exe"="1" "winmail.exe"="1" "prevhost.exe"="1" "wmplayer.exe"="1" "wlmail.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_OBJECT_DATA_ATTRIBUTE] "WindowsLiveWriter.exe"="1" "sllauncher.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_RESTRICT_RES_TO_LMZ] "prevhost.exe"="1" "sllauncher.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SAFE_BINDTOOBJECT] "explorer.exe"="1" "iexplore.exe"="1" "wmplayer.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SECURITYBAND] "prevhost.exe"="1" "wmplayer.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHIM_MSHELP_COMBINE] "prevhost.exe"="0" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SHOW_APP_PROTOCOL_WARN_DIALOG] "sllauncher.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_SUBDOWNLOAD_LOCKDOWN] "winmail.exe"="1" "msimn.exe"="1" "outlook.exe"="1" "wlmail.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_UNC_SAVEDFILECHECK] "wmplayer.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_USE_WINDOWEDSELECTCONTROL] "infopath.exe"="1" "winword.exe"="1" "excel.exe"="1" "powerpnt.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_VALIDATE_NAVIGATE_URL] "prevhost.exe"="1" "wmplayer.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_MOVESIZECHILD] "msn6.exe"="1" "msn.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WEBOC_POPUPMANAGEMENT] "explorer.exe"="1" "iexplore.exe"="1" "wmplayer.exe"="1" "wlmail.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_WINDOW_RESTRICTIONS] "explorer.exe"="1" "iexplore.exe"="1" "wmplayer.exe"="1" "wlmail.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_XSSFILTER] "iexplore.exe"="1" "prevhost.exe"="1" [HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_ZONE_ELEVATION] "explorer.exe"="1" "iexplore.exe"="1" "prevhost.exe"="1" "wmplayer.exe"="1" "PresentationHost.exe"="1" "wlmail.exe"="1" ---------- | The Created last ones ¦ Modified [MD5.00000000000000000000000000000000] - [13/02/2022 01:55:23] - |D| - [4101089] - C:\Program Files\7-Zip [MD5.00000000000000000000000000000000] - [02/02/2022 14:01:51] - |D| - [100843310] - C:\Program Files\Ad-Aware Browser [MD5.00000000000000000000000000000000] - [13/02/2022 08:58:31] - |D| - [51213551] - C:\Program Files\AIMP [MD5.00000000000000000000000000000000] - [06/02/2022 20:39:39] - |D| - [103000735] - C:\Program Files\Anvisoft [MD5.00000000000000000000000000000000] - [13/02/2022 05:59:08] - |D| - [382722191] - C:\Program Files\AOMEI [MD5.00000000000000000000000000000000] - [13/02/2022 16:40:59] - |D| - [0] - C:\Program Files\Apowersoft [MD5.00000000000000000000000000000000] - [13/02/2022 02:30:08] - |D| - [319530744] - C:\Program Files\Ashampoo [MD5.00000000000000000000000000000000] - [09/02/2022 10:23:25] - |D| - [1385864] - C:\Program Files\Ask.com [MD5.00000000000000000000000000000000] - [13/02/2022 10:21:45] - |D| - [31600516] - C:\Program Files\AudioRanger [MD5.00000000000000000000000000000000] - [13/02/2022 04:53:36] - |D| - [9095533] - C:\Program Files\AutoHotkey [MD5.00000000000000000000000000000000] - [13/02/2022 03:01:15] - |D| - [30696646] - C:\Program Files\AutoIt3 [MD5.00000000000000000000000000000000] - [01/02/2022 19:57:58] - |D| - [0] - C:\Program Files\Axialis [MD5.00000000000000000000000000000000] - [06/02/2022 07:04:20] - |D| - [223379693] - C:\Program Files\BCUninstaller [MD5.00000000000000000000000000000000] - [13/02/2022 05:07:49] - |D| - [631103] - C:\Program Files\Bonjour [MD5.00000000000000000000000000000000] - [13/02/2022 04:18:51] - |D| - [231992044] - C:\Program Files\DAUM [MD5.00000000000000000000000000000000] - [13/02/2022 16:20:46] - |D| - [124992569] - C:\Program Files\Driver-Soft [MD5.00000000000000000000000000000000] - [13/02/2022 10:13:42] - |D| - [33762874] - C:\Program Files\DriverFix [MD5.00000000000000000000000000000000] - [13/02/2022 13:33:10] - |D| - [21130240] - C:\Program Files\DriverPack [MD5.00000000000000000000000000000000] - [04/02/2022 04:22:44] - |D| - [916922] - C:\Program Files\Drive_Shortcut [MD5.00000000000000000000000000000000] - [12/02/2022 23:39:31] - |D| - [390810689] - C:\Program Files\EaseUS [MD5.00000000000000000000000000000000] - [06/02/2022 07:30:50] - |D| - [2823613] - C:\Program Files\Everything [MD5.00000000000000000000000000000000] - [13/02/2022 08:57:13] - |D| - [17825336] - C:\Program Files\FastStone Image Viewer [MD5.00000000000000000000000000000000] - [13/02/2022 01:59:08] - |D| - [85092317] - C:\Program Files\FinalWire [MD5.00000000000000000000000000000000] - [13/02/2022 09:02:30] - |RD| - [249035716] - C:\Program Files\Foxit Reader [MD5.00000000000000000000000000000000] - [13/02/2022 03:14:06] - |D| - [20984545] - C:\Program Files\GoToMeeting [MD5.00000000000000000000000000000000] - [13/02/2022 20:17:51] - |D| - [4633011] - C:\Program Files\Greenshot [MD5.00000000000000000000000000000000] - [13/02/2022 03:29:54] - |D| - [192667899] - C:\Program Files\Java [MD5.00000000000000000000000000000000] - [13/02/2022 03:38:50] - |D| - [114619267] - C:\Program Files\K-Lite Codec Pack [MD5.00000000000000000000000000000000] - [13/02/2022 04:58:13] - |D| - [12573429] - C:\Program Files\LinuxLive USB Creator [MD5.00000000000000000000000000000000] - [13/02/2022 02:58:32] - |D| - [9362570] - C:\Program Files\Microsoft Games for Windows - LIVE [MD5.00000000000000000000000000000000] - [13/02/2022 02:53:27] - |D| - [11254757] - C:\Program Files\Microsoft XNA [MD5.00000000000000000000000000000000] - [11/02/2022 01:24:30] - |D| - [212637028] - C:\Program Files\Mozilla Firefox [MD5.00000000000000000000000000000000] - [13/02/2022 04:55:34] - |D| - [18747042] - C:\Program Files\MultiCommander [MD5.00000000000000000000000000000000] - [13/02/2022 03:11:11] - |D| - [809496] - C:\Program Files\OpenAL [MD5.00000000000000000000000000000000] - [13/02/2022 04:24:36] - |D| - [95093261] - C:\Program Files\RogueKiller [MD5.00000000000000000000000000000000] - [13/02/2022 04:28:28] - |D| - [151629880] - C:\Program Files\SeaMonkey [MD5.00000000000000000000000000000000] - [13/02/2022 04:06:34] - |D| - [34208075] - C:\Program Files\Stardock [MD5.00000000000000000000000000000000] - [13/02/2022 04:13:09] - |D| - [193250744] - C:\Program Files\Tracker Software [MD5.00000000000000000000000000000000] - [13/02/2022 09:04:56] - |D| - [1442913] - C:\Program Files\uTorrent [MD5.00000000000000000000000000000000] - [13/02/2022 04:29:44] - |D| - [169852151] - C:\Program Files\VideoLAN [MD5.00000000000000000000000000000000] - [06/02/2022 14:41:47] - |D| - [65635448] - C:\Program Files\VS Revo Group [MD5.00000000000000000000000000000000] - [13/02/2022 04:37:27] - |D| - [29038785] - C:\Program Files\Winamp [MD5.00000000000000000000000000000000] - [05/02/2022 14:45:08] - |D| - [2600032] - C:\Program Files\Yandex [MD5.00000000000000000000000000000000] - [13/02/2022 04:40:11] - |D| - [78904408] - C:\Program Files\Youtube Downloader HD [MD5.20D4CB0D2A4CDB4F0F86FACA2CD9D8EF] - [12/02/2022 23:54:26] - |A| - [1902640] - C:\Windows\ampa.exe [MD5.4885CB318BBACD73904448EE1EB5D58E] - [12/02/2022 23:55:56] - |A| - [1135696] - C:\Windows\ddmmain.exe [MD5.00000000000000000000000000000000] - [03/02/2022 07:34:49] - |D| - [46103810] - C:\Windows\erdnt [MD5.00000000000000000000000000000000] - [06/02/2022 15:07:44] - |D| - [0] - C:\Windows\ERUNT [MD5.00000000000000000000000000000000] - [05/02/2022 08:03:40] - |HD| - [0] - C:\Windows\msdownld.tmp [MD5.2E99B00585D74B0FEF55C66A07EF8A12] - [13/02/2022 09:13:41] - |A| - [197416] - C:\Windows\ntbtlog.txt [MD5.1A9C6194BC69A775EE057398BA1C5707] - [13/02/2022 13:40:39] - |A| - [53806] - C:\Windows\PFRO.log [MD5.A84C16155D63F06FBB037B071A1E5B22] - [13/02/2022 14:09:08] - |A| - [6392] - C:\Windows\setupact.log [MD5.D41D8CD98F00B204E9800998ECF8427E] - [13/02/2022 14:09:08] - |A| - [0] - C:\Windows\setuperr.log [MD5.00000000000000000000000000000000] - [13/02/2022 03:01:21] - |D| - [636] - C:\Windows\ShellNew [MD5.EA5C32F9225F853A7564F24D50C54AB0] - [06/02/2022 20:40:16] - |A| - [209985] - C:\Windows\WindowsUpdate.log [MD5.E7814686CC3233BE9059175F9110F2FF] - [13/02/2022 00:42:43] - |RA| - [23695360] - C:\Windows\Installer\69b572.msp [MD5.85A4F18DA7092BFA18B2A4D0CFE60443] - [09/02/2022 10:22:35] - |A| - [2785280] - C:\Windows\Installer\977364.msi [MD5.729B635E462332B64562604B8928FA1D] - [13/02/2022 01:08:53] - |A| - [27517992] - C:\Windows\Installer\ac8ba4.msi [MD5.89215FCA2E0FA3927068E7EC96042171] - [13/02/2022 01:58:13] - |A| - [49152] - C:\Windows\Installer\ac8bb8.msi [MD5.52873853E4981D5B9147C93472BB4EE7] - [13/02/2022 02:52:27] - |A| - [7671808] - C:\Windows\Installer\e0abd2.msi [MD5.3BD0B94517AB07BC0A9ADE09B969A5C0] - [13/02/2022 03:05:25] - |A| - [7982080] - C:\Windows\Installer\e0abf2.msi [MD5.27B0C503B569B789B41EEABE4BC8C1CD] - [13/02/2022 01:34:30] - |A| - [21340160] - C:\Windows\Installer\e0abf8.msi [MD5.D7DADA2C9D56010F6FA398FC17E8312B] - [13/02/2022 03:28:24] - |A| - [71958528] - C:\Windows\Installer\e0abfe.msi [MD5.6E11C147606B5A22F5E0963A2B00B8A0] - [13/02/2022 03:53:53] - |A| - [1032192] - C:\Windows\Installer\e0ac04.msi [MD5.790CA6B0B827106E91A2EEB683196F40] - [13/02/2022 01:50:58] - |A| - [221298688] - C:\Windows\Installer\e0ac0a.msi [MD5.92A87F334573041E984A2579E0BB3BD3] - [13/02/2022 05:06:47] - |A| - [7168] - C:\Windows\Installer\e0ac0e.ipi [MD5.0FFD283D951D4601081C180563C333D1] - [13/02/2022 05:06:52] - |A| - [271713] - C:\Windows\Installer\MSI719C.tmp [MD5.00000000000000000000000000000000] - [13/02/2022 02:53:43] - |D| - [99678] - C:\Windows\Installer\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20} [MD5.00000000000000000000000000000000] - [13/02/2022 03:07:04] - |D| - [99678] - C:\Windows\Installer\{3898934B-05AE-41CD-96BE-70DA9BFBCE1F} [MD5.00000000000000000000000000000000] - [13/02/2022 02:58:36] - |D| - [76926] - C:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C} [MD5.00000000000000000000000000000000] - [13/02/2022 04:16:43] - |D| - [372526] - C:\Windows\Installer\{7022AF7B-99AD-4779-8641-31EE7592F9D8} [MD5.00000000000000000000000000000000] - [13/02/2022 05:08:18] - |D| - [92809] - C:\Windows\Installer\{79155F2B-9895-49D7-8612-D92580E0DE5B} [MD5.00000000000000000000000000000000] - [09/02/2022 10:23:27] - |D| - [111104] - C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE} [MD5.00000000000000000000000000000000] - [13/02/2022 00:45:45] - |D| - [74710] - C:\Windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} [MD5.00000000000000000000000000000000] - [13/02/2022 01:57:29] - |D| - [113731] - C:\Windows\Installer\{9004136E-78D3-46A4-893C-C4E38D871243} [MD5.00000000000000000000000000000000] - [13/02/2022 02:59:39] - |D| - [894] - C:\Windows\Installer\{F2508213-9989-4E85-A078-72BE483917EF} [MD5.23389D87C50444340F34C4A34E37F0D9] - [13/02/2022 06:51:50] - |A| - [104] - C:\Windows\system32\AbBakConfig.dat [MD5.FC726DD94F4DD4028A976FCC4DBF0C43] - [13/02/2022 03:40:04] - |A| - [122880] - C:\Windows\system32\ac3acm.acm [MD5.5FD6A5E341F8DF32141ED0CBFAD92311] - [01/02/2022 16:11:01] - |A| - [197344] - C:\Windows\system32\AcpiServiceVnA.dll [MD5.3DD8E9D75ED96837877F072C4B8D38A3] - [13/02/2022 06:03:12] - |A| - [46896] - C:\Windows\system32\ambakdrv.sys [MD5.DC757B26540EED98D38908B12E276653] - [13/02/2022 06:03:21] - |A| - [150192] - C:\Windows\system32\ammntdrv.sys [MD5.12F9554C965A20215596F42DA0BE8B1F] - [12/02/2022 23:54:27] - |A| - [35760] - C:\Windows\system32\ampa.sys [MD5.774C164E2E7E7BE88399718D1A8CB66D] - [13/02/2022 06:03:21] - |A| - [34864] - C:\Windows\system32\amwrtdrv.sys [MD5.B9C2EB1291BACAF8D979D7DF06D1E4EE] - [09/02/2022 10:20:51] - |A| - [33968] - C:\Windows\system32\anim.dll [MD5.7E04D46B430873BA2DB5DBE92B567CCB] - [03/02/2022 13:38:26] - |AC| - [86016] - C:\Windows\system32\atl70.dll [MD5.3AA83651D14BED011EE9A3460F336CB1] - [03/02/2022 13:38:26] - |AC| - [90112] - C:\Windows\system32\atl71.dll [MD5.02484BB9985CE62B829AFF1F79F74512] - [01/02/2022 16:11:01] - |A| - [96512] - C:\Windows\system32\audioLibVc.dll [MD5.BB6249EEAA59D02108630BB3F62FDDA5] - [12/02/2022 23:42:42] - |A| - [3994760] - C:\Windows\system32\BootMan.exe [MD5.9130CCE19B5DB3D2E31F9F789263FC4A] - [13/02/2022 10:01:17] - |A| - [511328] - C:\Windows\system32\capicom.dll [MD5.00000000000000000000000000000000] - [13/02/2022 15:23:23] - |D| - [2248638] - C:\Windows\system32\CleanLog [MD5.814CFB7B6D61211C02A15BF1D3A192BE] - [03/02/2022 13:38:26] - |AC| - [170920] - C:\Windows\system32\comct232.ocx [MD5.50F9E631CA79D0CE9C2F4143ED90C455] - [03/02/2022 13:38:26] - |AC| - [416408] - C:\Windows\system32\comct332.ocx [MD5.F5564D7F69C7BDEF4E078F610431D426] - [03/02/2022 13:38:27] - |AC| - [617896] - C:\Windows\system32\comctl32.ocx [MD5.9A4D0F97F0D84F877B388D4A12D90B6B] - [03/02/2022 13:38:27] - |AC| - [163480] - C:\Windows\system32\comdlg32.ocx [MD5.700DD454497204DD196494A6D29D947E] - [01/02/2022 16:11:03] - |A| - [101232] - C:\Windows\system32\CONEQMSAPOGUILibrary.dll [MD5.FAE7E1D578C42A7C3D9D61A99D178BD5] - [03/02/2022 14:21:44] - |A| - [1123696] - C:\Windows\system32\D3DCompiler_33.dll [MD5.75F206C195BBACA6EF28565B1C0CD75C] - [03/02/2022 14:21:46] - |A| - [1124720] - C:\Windows\system32\D3DCompiler_34.dll [MD5.5B441670A4F5F8BCCE76741902B8AF56] - [03/02/2022 14:21:47] - |A| - [1358192] - C:\Windows\system32\D3DCompiler_35.dll [MD5.FB4299688A0D3A37687C015AC2B9922D] - [03/02/2022 14:21:47] - |A| - [1374232] - C:\Windows\system32\D3DCompiler_36.dll [MD5.EA752DBCE35045D3C830DC16578CC8AB] - [03/02/2022 14:21:51] - |A| - [1420824] - C:\Windows\system32\D3DCompiler_37.dll [MD5.103CBFC5591008AD33046E20E8E1EEBE] - [03/02/2022 14:21:51] - |A| - [1491992] - C:\Windows\system32\D3DCompiler_38.dll [MD5.C4F1972497FE2CEB7D900938C97FCF91] - [03/02/2022 14:21:52] - |A| - [1493528] - C:\Windows\system32\D3DCompiler_39.dll [MD5.3384134EEB8F223178C2EB8323003EC0] - [03/02/2022 14:21:52] - |A| - [2036576] - C:\Windows\system32\D3DCompiler_40.dll [MD5.781E8B5B6FDB3C9B4E4A4A9FB019960D] - [03/02/2022 14:21:59] - |A| - [1846632] - C:\Windows\system32\D3DCompiler_41.dll [MD5.B33B21DB610116262D906305CE65C354] - [03/02/2022 14:22:01] - |A| - [1974616] - C:\Windows\system32\D3DCompiler_42.dll [MD5.B337306DFB508A1BCEF1974BFBB8D924] - [03/02/2022 14:22:08] - |A| - [5501792] - C:\Windows\system32\d3dcsx_42.dll [MD5.83EBA442F07AAB8D6375D2EEC945C46C] - [03/02/2022 14:22:11] - |A| - [1868128] - C:\Windows\system32\d3dcsx_43.dll [MD5.6F34F7405807DCBF0B9BF6811C94C6D9] - [03/02/2022 14:22:17] - |A| - [440080] - C:\Windows\system32\d3dx10.dll [MD5.37A8171ACCF46A9C196054066C28827F] - [03/02/2022 14:22:17] - |A| - [443752] - C:\Windows\system32\d3dx10_33.dll [MD5.5AA9987F2E62B56D7661B6901901F927] - [03/02/2022 14:22:18] - |A| - [443752] - C:\Windows\system32\d3dx10_34.dll [MD5.F3764552E45880DC49B82F38699AA87C] - [03/02/2022 14:22:18] - |A| - [444776] - C:\Windows\system32\d3dx10_35.dll [MD5.D9158E78A368B08D9133043EB3058C12] - [03/02/2022 14:22:18] - |A| - [444776] - C:\Windows\system32\d3dx10_36.dll [MD5.4A43E9A2B17E4CAFA9CB5FEC0B5B686B] - [03/02/2022 14:22:25] - |A| - [462864] - C:\Windows\system32\d3dx10_37.dll [MD5.A2650B27472C21CDD817EEEDE65648E1] - [03/02/2022 14:22:25] - |A| - [467984] - C:\Windows\system32\d3dx10_38.dll [MD5.E6C2F1D8B667DDC04CB55B9F0159EF97] - [03/02/2022 14:22:26] - |A| - [467984] - C:\Windows\system32\d3dx10_39.dll [MD5.91B4AAD4412BB223B466F3DFB43E86DA] - [03/02/2022 14:22:26] - |A| - [452440] - C:\Windows\system32\d3dx10_40.dll [MD5.1AA571774936717EE776DBED51E9EDF4] - [03/02/2022 14:22:26] - |A| - [453456] - C:\Windows\system32\d3dx10_41.dll [MD5.501AC862517C5445742BEE8A2B88414E] - [13/02/2022 03:00:09] - |A| - [453456] - C:\Windows\system32\d3dx10_42.dll [MD5.D09AC80A4B5312239852836C84DF3392] - [03/02/2022 14:22:28] - |A| - [235344] - C:\Windows\system32\d3dx11_42.dll [MD5.BC831661963763AC4D504C5CABB1FDD9] - [03/02/2022 14:22:33] - |A| - [2222800] - C:\Windows\system32\d3dx9_24.dll [MD5.5B48FE9D6686F0D54B26A005ACE24D1D] - [03/02/2022 14:22:36] - |A| - [2337488] - C:\Windows\system32\d3dx9_25.dll [MD5.523AB607EEF81CC4D909E7FEBD8A788E] - [03/02/2022 14:22:36] - |A| - [2297552] - C:\Windows\system32\d3dx9_26.dll [MD5.852EDC778A7A50077694F84D8E601234] - [03/02/2022 14:22:37] - |A| - [2319568] - C:\Windows\system32\d3dx9_27.dll [MD5.BE19B603DFBAA829EE5B7749B3BA97DB] - [03/02/2022 14:22:39] - |A| - [2323664] - C:\Windows\system32\d3dx9_28.dll [MD5.99F4FC172A5ACE36CF00AA7038D23F2C] - [03/02/2022 14:22:39] - |A| - [2332368] - C:\Windows\system32\d3dx9_29.dll [MD5.E415862612E65F10D7D888443ECD7594] - [03/02/2022 14:22:40] - |A| - [2388176] - C:\Windows\system32\d3dx9_30.dll [MD5.797E24743937D67D69F28F2CF5052EE8] - [13/02/2022 02:54:05] - |A| - [2414360] - C:\Windows\system32\d3dx9_31.dll [MD5.CDB1CD22BAFF21F48606B3C1A18B000B] - [13/02/2022 02:54:18] - |A| - [3495784] - C:\Windows\system32\d3dx9_33.dll [MD5.1CA939918ED1B930059B3A882DE6F648] - [03/02/2022 14:22:45] - |A| - [3497832] - C:\Windows\system32\d3dx9_34.dll [MD5.3EF18B78D17C962F2B71AC1CB7757684] - [03/02/2022 14:22:48] - |A| - [3727720] - C:\Windows\system32\d3dx9_35.dll [MD5.44BFEC5C9C82A2EE9871D88FD3B9A0E2] - [03/02/2022 14:22:50] - |A| - [3734536] - C:\Windows\system32\d3dx9_36.dll [MD5.AC3C517FB0FBBE45FE44007BCD3625A7] - [03/02/2022 14:22:51] - |A| - [3786760] - C:\Windows\system32\D3DX9_37.dll [MD5.8F3EB548AC4ED90252394F60C77E3196] - [03/02/2022 14:22:53] - |A| - [3850760] - C:\Windows\system32\D3DX9_38.dll [MD5.8CB3DEFB8887C4F0846DB1FC1304D6D2] - [03/02/2022 14:22:54] - |A| - [3851784] - C:\Windows\system32\D3DX9_39.dll [MD5.EEA5E428CE63804F9B12D21C97B5968F] - [03/02/2022 14:22:57] - |A| - [4379984] - C:\Windows\system32\D3DX9_40.dll [MD5.3FA06CF5079B84155D18B05C08F7131B] - [03/02/2022 14:23:00] - |A| - [4178264] - C:\Windows\system32\D3DX9_41.dll [MD5.C6A44FC3CF2F5801561804272217B14D] - [13/02/2022 03:00:02] - |A| - [1892184] - C:\Windows\system32\D3DX9_42.dll [MD5.00000000000000000000000000000000] - [01/02/2022 16:14:46] - |D| - [13090087] - C:\Windows\system32\DAX2 [MD5.00000000000000000000000000000000] - [01/02/2022 16:14:48] - |D| - [9850157] - C:\Windows\system32\DAX3 [MD5.B40BBF66375014BF276DB668AC59F918] - [01/02/2022 16:11:05] - |A| - [1250240] - C:\Windows\system32\DAX3APOProp.dll [MD5.277CEE318A2713387A3FBB34D4BCE28B] - [01/02/2022 16:11:05] - |A| - [1256088] - C:\Windows\system32\DAX3APOv251.dll [MD5.9981490539D5BBBC72FFBE3AB35BFCE7] - [03/02/2022 13:38:27] - |AC| - [218776] - C:\Windows\system32\dblist32.ocx [MD5.877B7E3E7C3574DE6A4C4E890EABDC4F] - [12/02/2022 23:55:57] - |A| - [33200] - C:\Windows\system32\ddmdrv.sys [MD5.17EFD02098C47564660D7F50ED736328] - [01/02/2022 16:11:05] - |A| - [237880] - C:\Windows\system32\DDPA32.dll [MD5.987071D40A56ADEBC85CFC92D0A106FA] - [01/02/2022 16:11:05] - |A| - [1517776] - C:\Windows\system32\DDPD32A.dll [MD5.E5D7EDD7ADC9D70CFED50E607BE37DED] - [01/02/2022 16:11:05] - |A| - [291088] - C:\Windows\system32\DDPO32A.dll [MD5.A0DE22D5FAF381E2A9C805BE134F6038] - [01/02/2022 16:11:05] - |A| - [7059152] - C:\Windows\system32\DDPP32A.dll [MD5.4A75292A737477F2D803EF10A8E4E6BF] - [13/02/2022 04:53:53] - |A| - [28160] - C:\Windows\system32\DfSdkBt.exe [MD5.00000000000000000000000000000000] - [05/02/2022 08:03:40] - |D| - [100497] - C:\Windows\system32\directx [MD5.9710E7A63F948CB5F15721C5CEA4F7F8] - [01/02/2022 16:11:06] - |A| - [1051056] - C:\Windows\system32\DolbyDAX2APOProp.dll [MD5.E2E1B769885FC4D65C5261BE649643DA] - [01/02/2022 16:11:06] - |A| - [1824824] - C:\Windows\system32\DolbyDAX2APOv201.dll [MD5.5B8894D1C5641A366660E256268DBF80] - [01/02/2022 16:11:06] - |A| - [4244128] - C:\Windows\system32\DolbyDAX2APOv211.dll [MD5.7F1CB0617FFC1B0F2CF489015D78D415] - [01/02/2022 16:11:06] - |A| - [1036544] - C:\Windows\system32\DolbyDAX2APOvlldp.dll [MD5.808323797FE50665F02E398C4A830DAD] - [01/02/2022 16:11:06] - |A| - [676832] - C:\Windows\system32\DTSBassEnhancementDLL.dll [MD5.C466135D6B3C2C730BB26E9AF89329FB] - [01/02/2022 16:11:06] - |A| - [1247048] - C:\Windows\system32\DTSBoostDLL.dll [MD5.60BCA1B4C8E227FBD90CBB86CDB47312] - [01/02/2022 16:11:06] - |A| - [409312] - C:\Windows\system32\DTSGainCompensatorDLL.dll [MD5.41B95F075B131D8BC81915D29B9C97FD] - [01/02/2022 16:11:06] - |A| - [236824] - C:\Windows\system32\DTSGFXAPO.dll [MD5.ECA5AAA2F9C66336DEF9E28DED3F5476] - [01/02/2022 16:11:06] - |A| - [236824] - C:\Windows\system32\DTSGFXAPONS.dll [MD5.98E8067979B88ED4EB7F07829D528A73] - [01/02/2022 16:11:06] - |A| - [236280] - C:\Windows\system32\DTSLFXAPO.dll [MD5.6C831958F206D05A3BCA002AF4E37A83] - [01/02/2022 16:11:06] - |A| - [394864] - C:\Windows\system32\DTSLimiterDLL.dll [MD5.B87F23426A131D482CB7C1A3B91567FB] - [01/02/2022 16:11:06] - |A| - [478528] - C:\Windows\system32\DTSNeoPCDLL.dll [MD5.DF0EC320059B7FFA9B1B8FA9C1BBFF8C] - [01/02/2022 16:11:06] - |A| - [1320360] - C:\Windows\system32\DTSS2HeadphoneDLL.dll [MD5.2C62EA6A6C93C03FCF4892766BD8E1BD] - [01/02/2022 16:11:07] - |A| - [1538920] - C:\Windows\system32\DTSS2SpeakerDLL.dll [MD5.9C0E7E216D9BCD276EBA8AC4E9D8EC72] - [01/02/2022 16:11:07] - |A| - [653064] - C:\Windows\system32\DTSSymmetryDLL.dll [MD5.1C86F726F613C912097B0E92E01916F7] - [01/02/2022 16:11:07] - |A| - [623112] - C:\Windows\system32\DTSVoiceClarityDLL.dll [MD5.E82219FE1E0C99374D0941BA74F191ED] - [12/02/2022 23:42:43] - |A| - [23688] - C:\Windows\system32\epmdkdrv.sys [MD5.165F246E51EA4745A56BA2A11214132A] - [12/02/2022 23:42:42] - |A| - [24712] - C:\Windows\system32\EuEpmGdi.dll [MD5.E038B61DBA4BF91C1E21E3D44B3F05A5] - [12/02/2022 23:42:43] - |A| - [13832] - C:\Windows\system32\EuGdiDrv.sys [MD5.0554D656B9DCAE7E3DA72659DFACB67A] - [13/02/2022 03:40:20] - |A| - [112128] - C:\Windows\system32\ff_vfw.dll [MD5.A25042BF2E7E5FCDC35675C6CEF4AA0D] - [13/02/2022 08:56:48] - |A| - [842296] - C:\Windows\system32\FlashPlayerApp.exe [MD5.CF13F274717D539D664493E6066EE858] - [13/02/2022 08:56:48] - |A| - [175160] - C:\Windows\system32\FlashPlayerCPLApp.cpl [MD5.3317698F2090DD811F0AA93190E13C82] - [09/02/2022 10:20:51] - |A| - [1706800] - C:\Windows\system32\gdiplus.dll [MD5.4309FEDEEC3937DA065E74CBDF29F9FD] - [13/02/2022 01:42:14] - |A| - [5623808] - C:\Windows\system32\GeneIcon.dll [MD5.095A0B208264FEBD2CEC3BBB7A273367] - [13/02/2022 01:42:14] - |A| - [15330] - C:\Windows\system32\GeneStor.INF [MD5.415AB1A2E5E8DDE4DBB5C3B6CE975761] - [13/02/2022 01:41:58] - |A| - [112072] - C:\Windows\system32\GSCoinst.dll [MD5.1B44576495A101EE467B54577D61833A] - [01/02/2022 16:11:07] - |A| - [130208] - C:\Windows\system32\HarmanAudioInterface.dll [MD5.3E3C1F8E5C85A9BE4956FD58C4D4B4A9] - [01/02/2022 16:11:07] - |A| - [321968] - C:\Windows\system32\HiFiDAX2API.dll [MD5.B1882A6F8AAF55EA8146136188005D18] - [01/02/2022 16:11:08] - |A| - [327848] - C:\Windows\system32\HiFiDAX2APIPCLL.dll [MD5.40C08AF0B795D55F5FE1B3EBED692BC8] - [11/02/2022 14:47:40] - |A| - [174360] - C:\Windows\system32\hkcmd.exe [MD5.ACC7B591EB98738C98D4D33B179F0FE7] - [01/02/2022 16:11:08] - |A| - [316336] - C:\Windows\system32\HMAPO.dll [MD5.E2FE6C57366CC77C6FD68E024BF16296] - [01/02/2022 16:11:08] - |A| - [363320] - C:\Windows\system32\HMClariFi.dll [MD5.C7AA3BCA8562538CA23A1C37AEAF98F6] - [01/02/2022 16:11:08] - |A| - [214568] - C:\Windows\system32\HMEQ.dll [MD5.5B0A52FD32AC946B494323F62EF94090] - [01/02/2022 16:11:08] - |A| - [214568] - C:\Windows\system32\HMEQ_Voice.dll [MD5.8B08C6371505FD85AB32B8C99DB7DB7A] - [01/02/2022 16:11:08] - |A| - [221808] - C:\Windows\system32\HMHVS.dll [MD5.4BB4D9EC2A4F4A9F3FC6AA74527BD214] - [01/02/2022 16:11:08] - |A| - [200640] - C:\Windows\system32\HMLimiter.dll [MD5.6174C868D25D2C47C95EF6AF06E4DC2E] - [01/02/2022 16:11:08] - |A| - [367264] - C:\Windows\system32\HMUI.dll [MD5.FDDB0BBAA9CEB5118D3CAF1E9E70849C] - [01/02/2022 16:11:08] - |A| - [642592] - C:\Windows\system32\ICEsoundAPO.dll [MD5.66637ABD7008A832868D0451C0E31831] - [11/02/2022 14:47:40] - |A| - [2686976] - C:\Windows\system32\ig4dev32.dll [MD5.6E2ECE1A74203506ECB8B66E8F1620CD] - [11/02/2022 14:47:40] - |A| - [4104192] - C:\Windows\system32\ig4icd32.dll [MD5.D2320D4CE2A31267A0E4C62FD52451C1] - [11/02/2022 14:47:41] - |A| - [3829760] - C:\Windows\system32\igdumd32.dll [MD5.8CAE6C6F235A28488A00C0EA2EC4A2F4] - [11/02/2022 14:47:41] - |A| - [536576] - C:\Windows\system32\igdumdx32.dll [MD5.953D2EEE5D0B58D89FF34558820C2D8D] - [11/02/2022 14:47:40] - |A| - [673048] - C:\Windows\system32\igfxcfg.exe [MD5.41DC0D5978463FA86C80E9895F4E0179] - [11/02/2022 14:47:42] - |A| - [155648] - C:\Windows\system32\igfxCoIn_v2567.dll [MD5.31587C9AD4CCCD25257D11597E085984] - [11/02/2022 14:47:39] - |A| - [119296] - C:\Windows\system32\igfxcpl.cpl [MD5.A538DFA6EA7F06633676EB99D175C378] - [11/02/2022 14:47:41] - |A| - [130048] - C:\Windows\system32\igfxdo.dll [MD5.1ADF39E31B3DE439767107074F38849A] - [11/02/2022 14:47:41] - |A| - [23552] - C:\Windows\system32\igfxexps.dll [MD5.BA33E3EE239B461476142D3047D29160] - [11/02/2022 14:47:40] - |A| - [173336] - C:\Windows\system32\igfxext.exe [MD5.17C10A618B1C1CB43F5E15A5A18B1B16] - [11/02/2022 14:47:40] - |A| - [150808] - C:\Windows\system32\igfxpers.exe [MD5.591861959DC8EAA944ECE5DE19B92F4C] - [11/02/2022 14:47:41] - |A| - [199680] - C:\Windows\system32\igfxpph.dll [MD5.8EA08BABE198AF5F4E30BD934B0DD998] - [11/02/2022 14:47:39] - |A| - [252416] - C:\Windows\system32\igfxrara.lrc [MD5.67AD268893C93189976ABD9193DC9F5A] - [11/02/2022 14:47:39] - |A| - [178176] - C:\Windows\system32\igfxrchs.lrc [MD5.6F3EF188472C2442EA63CBDC72756254] - [11/02/2022 14:47:39] - |A| - [179712] - C:\Windows\system32\igfxrcht.lrc [MD5.5CC2EA5A943028411A7026E95CF2F029] - [11/02/2022 14:47:39] - |A| - [282624] - C:\Windows\system32\igfxrcsy.lrc [MD5.B1C4BA29377B10A95669FBF0ED050612] - [11/02/2022 14:47:39] - |A| - [280576] - C:\Windows\system32\igfxrdan.lrc [MD5.0CB6FB851C6011CE796CEEBBFAE4F334] - [11/02/2022 14:47:39] - |A| - [303616] - C:\Windows\system32\igfxrdeu.lrc [MD5.8F3C2D1F49CDC89162D01A040ADDE4AF] - [11/02/2022 14:47:39] - |A| - [310784] - C:\Windows\system32\igfxrell.lrc [MD5.7672847F6C08365DC9AC9F0EE342C01B] - [11/02/2022 14:47:39] - |A| - [275968] - C:\Windows\system32\igfxrenu.lrc [MD5.CB9F451B81A32118DE936478E8942045] - [11/02/2022 14:47:39] - |A| - [303104] - C:\Windows\system32\igfxresp.lrc [MD5.CFB860CA981990C76C2B1D5C91679961] - [11/02/2022 14:47:39] - |A| - [281088] - C:\Windows\system32\igfxrfin.lrc [MD5.6D059D5EAD024ACF59F723B4566CC54E] - [11/02/2022 14:47:39] - |A| - [303616] - C:\Windows\system32\igfxrfra.lrc [MD5.815023D4C8F16778D18CD7BB18E0B56E] - [11/02/2022 14:47:39] - |A| - [249856] - C:\Windows\system32\igfxrheb.lrc [MD5.34F5F3D54409CAC9719B4DFD0DF7CC2A] - [11/02/2022 14:47:39] - |A| - [288256] - C:\Windows\system32\igfxrhun.lrc [MD5.87CFEB2BA836E292F09D5762776B1890] - [11/02/2022 14:47:39] - |A| - [304640] - C:\Windows\system32\igfxrita.lrc [MD5.6545040D4F40A72957C3586609AB5987] - [11/02/2022 14:47:39] - |A| - [206848] - C:\Windows\system32\igfxrjpn.lrc [MD5.836CF80A5B4CED37C628BF188D36A52A] - [11/02/2022 14:47:39] - |A| - [205312] - C:\Windows\system32\igfxrkor.lrc [MD5.5C6C48F1D569876510A11AB8BCD1D189] - [11/02/2022 14:47:39] - |A| - [299520] - C:\Windows\system32\igfxrnld.lrc [MD5.B35CE8F6ABAB0DFCEB32C40B82D073A7] - [11/02/2022 14:47:39] - |A| - [280064] - C:\Windows\system32\igfxrnor.lrc [MD5.0694F7F0D8B4CFF789406525A07111F2] - [11/02/2022 14:47:39] - |A| - [287744] - C:\Windows\system32\igfxrplk.lrc [MD5.08054A51BFEB41544249F1607C6DC401] - [11/02/2022 14:47:39] - |A| - [289280] - C:\Windows\system32\igfxrptb.lrc [MD5.280022FE4B24821A3B557B4E32720C16] - [11/02/2022 14:47:39] - |A| - [294912] - C:\Windows\system32\igfxrptg.lrc [MD5.0A37F8F5BFEB6F3639FBB714DF554B4E] - [11/02/2022 14:47:40] - |A| - [291328] - C:\Windows\system32\igfxrrus.lrc [MD5.29C301D7A939EC73FE9F9C6956446B71] - [11/02/2022 14:47:40] - |A| - [282624] - C:\Windows\system32\igfxrsky.lrc [MD5.FE7200F241CEF730B8C3FF7F3424D222] - [11/02/2022 14:47:40] - |A| - [277504] - C:\Windows\system32\igfxrslv.lrc [MD5.D2AEF9A0472E2DCDF4E9EC5C849F5891] - [11/02/2022 14:47:40] - |A| - [282624] - C:\Windows\system32\igfxrsve.lrc [MD5.42534BD921A1608E9CBD6D35DEA0252E] - [11/02/2022 14:47:40] - |A| - [262656] - C:\Windows\system32\igfxrtha.lrc [MD5.85B18D0A657DEC031B9FDEB5D481BC32] - [11/02/2022 14:47:40] - |A| - [279040] - C:\Windows\system32\igfxrtrk.lrc [MD5.AF7A45F96F43CEDD8444F2F600879537] - [11/02/2022 14:47:40] - |A| - [253208] - C:\Windows\system32\igfxsrvc.exe [MD5.8930D1254F36594CCC2093A58F3F2C8C] - [11/02/2022 14:47:42] - |A| - [257536] - C:\Windows\system32\igfxTMM.dll [MD5.BC76EEEF0A40C9A16DFBBE1FB8201211] - [11/02/2022 14:47:40] - |A| - [142104] - C:\Windows\system32\igfxtray.exe [MD5.0BE615F69D3F98AD987056EDCBD939F4] - [11/02/2022 14:47:40] - |A| - [39548] - C:\Windows\system32\iglhxs32.vp [MD5.FA425C74CE2EB719B2A77A7A2ADDAE32] - [13/02/2022 03:40:04] - |A| - [216064] - C:\Windows\system32\lagarith.dll [MD5.BD8A1A84554D33B20E2E0DB68D9B7802] - [03/02/2022 13:38:27] - |AC| - [2516992] - C:\Windows\system32\libcrypto-1_1.dll [MD5.8C7F9F7040D518D323732DE6FABE934E] - [03/02/2022 13:38:29] - |AC| - [1276928] - C:\Windows\system32\libeay32.dll [MD5.F81EB2DB0483D754610A8F2E72C1F60D] - [03/02/2022 13:38:29] - |AC| - [530944] - C:\Windows\system32\libssl-1_1.dll [MD5.455941DE967B579A3D5D8066B8DE79FC] - [03/02/2022 13:38:29] - |AC| - [212112] - C:\Windows\system32\mci32.ocx [MD5.5D3C0F40336B490EDE971C394CFB8F78] - [03/02/2022 13:38:29] - |AC| - [1024000] - C:\Windows\system32\mfc70.dll [MD5.A4CCA3F3145BA93383DFB126EC61C695] - [03/02/2022 13:38:32] - |AC| - [40960] - C:\Windows\system32\mfc70chs.dll [MD5.A0502BCED5C98A51E7E305029BD4009B] - [03/02/2022 13:38:32] - |AC| - [45056] - C:\Windows\system32\mfc70cht.dll [MD5.054809EA25F0110122B17835E94848F2] - [03/02/2022 13:38:32] - |AC| - [61440] - C:\Windows\system32\mfc70deu.dll [MD5.3F0E5AD6604D6585C2219D6688514817] - [03/02/2022 13:38:32] - |AC| - [57344] - C:\Windows\system32\mfc70enu.dll [MD5.D88BE83455C13B80B1AB103E82052F33] - [03/02/2022 13:38:32] - |AC| - [61440] - C:\Windows\system32\mfc70esp.dll [MD5.8F59C1FB4C18F08C0D4D24550E2F7375] - [03/02/2022 13:38:32] - |AC| - [61440] - C:\Windows\system32\mfc70fra.dll [MD5.78C3F9FFBC860D2153D6470BC65556FE] - [03/02/2022 13:38:37] - |AC| - [61440] - C:\Windows\system32\mfc70ita.dll [MD5.8448C67B7FF7A65AEAA25747D0E861B7] - [03/02/2022 13:38:37] - |AC| - [49152] - C:\Windows\system32\mfc70jpn.dll [MD5.E83773E9ED198BB59C072B453AF4F797] - [03/02/2022 13:38:37] - |AC| - [49152] - C:\Windows\system32\mfc70kor.dll [MD5.C440493ABF8CF179FF3351357C1EB426] - [03/02/2022 13:38:37] - |AC| - [1017344] - C:\Windows\system32\mfc70u.dll [MD5.0EAD1C87DC75863E7CFF7B2691C1B90C] - [03/02/2022 13:38:41] - |AC| - [1060864] - C:\Windows\system32\MFC71.dll [MD5.F0C3773C480C8E8FD8DD8BF82689D390] - [03/02/2022 13:38:41] - |AC| - [40960] - C:\Windows\system32\MFC71CHS.DLL [MD5.B80E70737148130AC3975F84E88ED8B0] - [03/02/2022 13:38:41] - |AC| - [45056] - C:\Windows\system32\MFC71CHT.DLL [MD5.92436C5844333188D8746079640419BF] - [03/02/2022 13:38:41] - |AC| - [65536] - C:\Windows\system32\MFC71DEU.DLL [MD5.DF8241122459E097DD393B74D3ABF64E] - [03/02/2022 13:38:46] - |AC| - [57344] - C:\Windows\system32\MFC71ENU.DLL [MD5.B1219D49B804F8D20D4A812E9AA773FB] - [03/02/2022 13:38:46] - |AC| - [61440] - C:\Windows\system32\MFC71ESP.DLL [MD5.4CF93C1BD454AC576D787FC8256E3D58] - [03/02/2022 13:38:48] - |AC| - [61440] - C:\Windows\system32\MFC71FRA.DLL [MD5.A31727B0310F97C279B4278A44D68F2E] - [03/02/2022 13:38:48] - |AC| - [61440] - C:\Windows\system32\MFC71ITA.DLL [MD5.DCDB167567AAD5A54EF6096324F7A67B] - [03/02/2022 13:38:48] - |AC| - [49152] - C:\Windows\system32\MFC71JPN.DLL [MD5.337E4EDA92C2858386E0072F604FE2D3] - [03/02/2022 13:38:48] - |AC| - [49152] - C:\Windows\system32\MFC71KOR.DLL [MD5.1A53510BFE257CE75CB6EA4D596243BE] - [03/02/2022 13:38:56] - |AC| - [1054208] - C:\Windows\system32\MFC71u.dll [MD5.8D8AAD175C9779503A68136E49EEA2B4] - [03/02/2022 13:38:56] - |AC| - [660120] - C:\Windows\system32\mscomct2.ocx [MD5.766F501B61C22723536AF696A74133D4] - [03/02/2022 13:38:56] - |AC| - [1070232] - C:\Windows\system32\mscomctl.ocx [MD5.D60FD0C924C0172B5AD2967E8473FFCD] - [03/02/2022 13:39:04] - |AC| - [119960] - C:\Windows\system32\mscomm32.ocx [MD5.552088FF7667D59E29D3231077B92D30] - [03/02/2022 13:39:06] - |AC| - [279192] - C:\Windows\system32\msdatgrd.ocx [MD5.C0393287EC3D0098932BC6DD7753CE50] - [03/02/2022 13:39:06] - |AC| - [253080] - C:\Windows\system32\msdatlst.ocx [MD5.151229FE0011294475AF03E2FBBAF33B] - [03/02/2022 04:59:18] - |AC| - [259736] - C:\Windows\system32\MSFLXGRD.OCX [MD5.D19D5DDC8D6446B8E08161012461210D] - [03/02/2022 13:39:06] - |AC| - [444328] - C:\Windows\system32\MShflxgd.ocx [MD5.BED46F55AF9A7B495EC0F2DE0CB5AD3F] - [03/02/2022 13:39:06] - |AC| - [131728] - C:\Windows\system32\msinet.ocx [MD5.9D1D5B434B7BC82A9167CA2D01000F78] - [03/02/2022 13:39:06] - |AC| - [179352] - C:\Windows\system32\msmask32.ocx [MD5.1E27A0F62EBE8277C61B89C3747CC45D] - [03/02/2022 13:39:06] - |AC| - [130712] - C:\Windows\system32\msstdfmt.dll [MD5.FC1E1896F31DAE6E8C68D95A645C9B1A] - [03/02/2022 13:39:06] - |AC| - [108696] - C:\Windows\system32\MSSTKPRP.DLL [MD5.D577EAF2B7E74DFDA9D9DFF6DC54C37A] - [03/02/2022 13:39:07] - |AC| - [1355776] - C:\Windows\system32\msvbvm50.dll [MD5.07B8A966FA4D08B797DE3FCC5C67EAB6] - [03/02/2022 13:39:11] - |AC| - [54784] - C:\Windows\system32\msvci70.dll [MD5.D04F7AACA2319A3BCDB2C5D5DD6F6026] - [03/02/2022 13:39:11] - |AC| - [487424] - C:\Windows\system32\MSVCP70.DLL [MD5.1874BBAD9AE4C993B74B7ABAA8B9D535] - [03/02/2022 13:39:17] - |AC| - [503808] - C:\Windows\system32\msvcp71.dll [MD5.837B1E310F2AA8B20F07A9B1CE90AC4F] - [03/02/2022 13:39:17] - |AC| - [344064] - C:\Windows\system32\msvcr71.dll [MD5.DF252F37880142ED5574C2BE4DADF5A7] - [03/02/2022 13:39:17] - |AC| - [210944] - C:\Windows\system32\msvcrt10.dll [MD5.57325D394119DB3D3B3CF8A3BBFDA5CA] - [03/02/2022 13:39:17] - |AC| - [127640] - C:\Windows\system32\mswinsck.ocx [MD5.D0575091341716336F790A061F6C917D] - [11/02/2022 14:47:42] - |A| - [59392] - C:\Windows\system32\oemdspif.dll [MD5.663A319D105E14548DBA4C72201876B1] - [03/02/2022 13:39:17] - |AC| - [109144] - C:\Windows\system32\OpenAL32.dll [MD5.79F387BFE802B37E076B500F5450F99B] - [13/02/2022 01:42:14] - |A| - [2880] - C:\Windows\system32\parameter.log [MD5.7DB44D8D5AAA1890044E8B9EE2E4BF50] - [03/02/2022 13:39:17] - |AC| - [104088] - C:\Windows\system32\picclp32.ocx [MD5.D3CC225ADA0AA3C0A254AF1031C295F0] - [13/02/2022 04:17:31] - |A| - [2241408] - C:\Windows\system32\pxcpmL.dll [MD5.6377491C5BA89D2893107F5E7606EC4C] - [01/02/2022 16:11:09] - |A| - [107080] - C:\Windows\system32\R4EEA32A.dll [MD5.168DA885C7B2BC7D703DBFBF034DC984] - [01/02/2022 16:11:09] - |A| - [369480] - C:\Windows\system32\R4EED32A.dll [MD5.B5F156A6A96752B0DB67D3FA20642009] - [01/02/2022 16:11:09] - |A| - [77168] - C:\Windows\system32\R4EEG32A.dll [MD5.CF19882E27732BCA5CA1061ADF4C778C] - [01/02/2022 16:11:09] - |A| - [122112] - C:\Windows\system32\R4EEL32A.dll [MD5.57DDB1F938115AC7FD2E7B1B653BB311] - [01/02/2022 16:11:09] - |A| - [7176328] - C:\Windows\system32\R4EEP32A.dll [MD5.A53686FD5EC66D5B51975B9420052054] - [01/02/2022 16:10:54] - |A| - [72520616] - C:\Windows\system32\RCoRes.dat [MD5.14BB5CF93C7D69D019423C73C60AA856] - [03/02/2022 13:39:17] - |AC| - [219288] - C:\Windows\system32\richtx32.ocx [MD5.54F8DAFD71609B36DB47CCF4F2AC3829] - [01/02/2022 16:11:10] - |A| - [3334136] - C:\Windows\system32\RltkAPO.dll [MD5.2D29F9FE62CF037FA24D36BC497081B7] - [01/02/2022 16:11:10] - |A| - [312696] - C:\Windows\system32\RP3DAA32.dll [MD5.D199BE13F7DD0728D5D7B9114D6A48CC] - [01/02/2022 16:11:10] - |A| - [312696] - C:\Windows\system32\RP3DHT32.dll [MD5.27AD1BCF60ECE96D166CA7F351C12142] - [01/02/2022 16:11:10] - |A| - [186688] - C:\Windows\system32\RTEED32A.dll [MD5.03A79FA511A5E8E7767609FE407AD45B] - [01/02/2022 16:11:10] - |A| - [79840] - C:\Windows\system32\RTEEG32A.dll [MD5.19E5C20CCCD6799A4032B1B3FD9DEB32] - [01/02/2022 16:11:10] - |A| - [93736] - C:\Windows\system32\RTEEL32A.dll [MD5.54A609D3B28C49F65B4A1ADD1DEB576F] - [01/02/2022 16:11:10] - |A| - [377272] - C:\Windows\system32\RTEEP32A.dll [MD5.81061923EDF7C57F04B58BAF75A2252F] - [01/02/2022 16:11:14] - |A| - [2553152] - C:\Windows\system32\RtkApoApi.dll [MD5.AAD00F801FA0F903D9725F62AAC55C56] - [01/02/2022 16:11:14] - |A| - [2875784] - C:\Windows\system32\RtkCoInstII.dll [MD5.0CAAAC120E6ADDA2B8F561A65BCB4577] - [01/02/2022 16:11:14] - |A| - [22064] - C:\Windows\system32\RtkCoLDR.dll [MD5.D96A8F96F52DFBBA2C02E8A6332B04EF] - [01/02/2022 16:11:15] - |A| - [2879616] - C:\Windows\system32\RtkPgExt.dll [MD5.4EF201EDDEEFADC0AD8863C42BEE986F] - [01/02/2022 16:11:00] - |A| - [3609904] - C:\Windows\system32\RTSndMgr.cpl [MD5.00000000000000000000000000000000] - [13/02/2022 01:42:14] - |D| - [0] - C:\Windows\system32\sda [MD5.F70F4298DB27A3C755A4028DE4EAFD21] - [01/02/2022 16:11:16] - |A| - [969272] - C:\Windows\system32\SEAPO32.dll [MD5.EE8FDD38C24252CEECA3B311550DD453] - [01/02/2022 16:11:16] - |A| - [1061480] - C:\Windows\system32\SECOMN32.dll [MD5.340C135BCA893DEDDDF298BA863F418C] - [01/02/2022 16:11:16] - |A| - [1078592] - C:\Windows\system32\SEHDHF32.dll [MD5.8A13CDCEA463235F93494010EBDF1955] - [01/02/2022 16:11:16] - |A| - [914944] - C:\Windows\system32\SEHDRA32.dll [MD5.808312EB9EB1F59A135CE0A2A4E9E881] - [12/02/2022 23:42:43] - |A| - [149128] - C:\Windows\system32\setupepmdrv.exe [MD5.46370363EE690D8B7E69DC4A5A9C2C93] - [12/02/2022 23:42:43] - |A| - [57] - C:\Windows\system32\setupepmdrv.ini [MD5.902EF671E6577D5E572DE435FA55E1AB] - [01/02/2022 16:11:16] - |A| - [78392] - C:\Windows\system32\SFAPO.dll [MD5.BCF5C0E0AA3193F9EDD4C34DC3659C34] - [01/02/2022 16:11:16] - |A| - [83544] - C:\Windows\system32\SFCOM.dll [MD5.B74604C45E5810E11FB91DBF52297EF1] - [01/02/2022 16:11:17] - |A| - [224952] - C:\Windows\system32\SFNHK.dll [MD5.FF800E4C96B5D8F0BF6FC7A8CFC948FB] - [01/02/2022 16:11:17] - |A| - [936520] - C:\Windows\system32\SFSS_APO.dll [MD5.CF295F9A323B1EC8B196E598636E78E4] - [09/02/2022 10:20:49] - |A| - [439] - C:\Windows\system32\shfolder.inf [MD5.1822124F94117B118B49F7DAA8869716] - [01/02/2022 16:11:17] - |A| - [917888] - C:\Windows\system32\sl3apo32.dll [MD5.33E937D11B9B0B09EE60A74C8F7BCD37] - [01/02/2022 16:11:17] - |A| - [3002944] - C:\Windows\system32\slcnt32.dll [MD5.BBD05E345EB8F78C8A23165471F15B1F] - [01/02/2022 16:11:17] - |A| - [240344] - C:\Windows\system32\slprp32.dll [MD5.58E0190C8559B18E9C14A393FB4733A8] - [01/02/2022 16:11:17] - |A| - [2703904] - C:\Windows\system32\sltech32.dll [MD5.44C16A4DFB42AFE86A7BEB2245ED0B9B] - [01/02/2022 16:11:17] - |A| - [400952] - C:\Windows\system32\SRAPO.dll [MD5.282F7693D674D03210E398C9A2A2A04F] - [01/02/2022 16:11:17] - |A| - [341056] - C:\Windows\system32\SRCOM.dll [MD5.10791799B7192EAF64B2DB44370D7E24] - [01/02/2022 16:11:17] - |A| - [1073952] - C:\Windows\system32\SRRPTR.dll [MD5.7C36DEFBEF0C56C1EAFE67FA7E57995F] - [01/02/2022 16:11:18] - |A| - [192256] - C:\Windows\system32\SRSHP360.dll [MD5.241AC0CBC5A45C8D13FCD9247255B95B] - [01/02/2022 16:11:18] - |A| - [204648] - C:\Windows\system32\SRSTSHD.dll [MD5.67F81F6702F8D7DC9EC528D228E4CE6C] - [01/02/2022 16:11:18] - |A| - [365800] - C:\Windows\system32\SRSTSXT.dll [MD5.0AC08549DE5C631D6AB11AC6F0566C12] - [01/02/2022 16:11:18] - |A| - [159200] - C:\Windows\system32\SRSWOW.dll [MD5.B9CAFAB9D39548DDA98C9013C2450863] - [03/02/2022 13:39:17] - |AC| - [276992] - C:\Windows\system32\ssleay32.dll [MD5.25A010E52C6B8C94C1F00A849D210433] - [03/02/2022 13:39:17] - |AC| - [84624] - C:\Windows\system32\sysinfo.ocx [MD5.3F2B4D475AC8ED3F30E5A857EE413F7F] - [03/02/2022 04:59:14] - |AC| - [222360] - C:\Windows\system32\TabCtl32.OCX [MD5.3849FD6AC63C261CBE70D6880D5A48A0] - [01/02/2022 16:11:18] - |A| - [144592] - C:\Windows\system32\tadefxapo.dll [MD5.713D02AE0D9906ED7FF22F2A12A811A4] - [01/02/2022 16:11:18] - |A| - [860424] - C:\Windows\system32\tadefxapo2.dll [MD5.DCDB3339B17C5CE6BD8C80A8B51C1E6D] - [01/02/2022 16:11:18] - |A| - [67656] - C:\Windows\system32\TepeqAPO.dll [MD5.61B6DF0E6F7FE551F1FD7A676AFC1124] - [01/02/2022 16:11:18] - |A| - [1400712] - C:\Windows\system32\tosade.dll [MD5.5F3470D1AC4D3C715125C9C4FD46C7C7] - [01/02/2022 16:11:18] - |A| - [794704] - C:\Windows\system32\tosasfapo32.dll [MD5.C9E172B7E7886B7204378AE94C50C931] - [01/02/2022 16:11:18] - |A| - [390848] - C:\Windows\system32\toseaeapo32.dll [MD5.6BE726BED7EBFA45142D4C7C59A40B32] - [01/02/2022 16:11:18] - |A| - [1279224] - C:\Windows\system32\tossaeapo32.dll [MD5.7159E12DBCCDC16DB89B064741CBD9D5] - [01/02/2022 16:11:18] - |A| - [562320] - C:\Windows\system32\tossaemaxapo32.dll [MD5.E9BDFDA1C1067E01CB1594CD552DEBDD] - [13/02/2022 01:42:14] - |A| - [24576] - C:\Windows\system32\UMonit.exe [MD5.F8D176DB5B14AED7C9B25E0640226BD1] - [09/02/2022 10:20:51] - |A| - [258352] - C:\Windows\system32\unicows.dll [MD5.CAD21A79AA9BA9AEBA0A993F97F370F8] - [13/02/2022 08:56:44] - |A| - [1505848] - C:\Windows\system32\Uninstall.exe [MD5.1428A8B3DBF4F73B257C4A461DF9B996] - [12/02/2022 20:34:59] - |A| - [6112072] - C:\Windows\system32\usbaaplrc.dll [MD5.AE6808F2810037BFF5B959870D749420] - [13/02/2022 01:42:14] - |A| - [229376] - C:\Windows\system32\ustor.dll [MD5.7366EBD6982A36736D5087C1D9333421] - [03/02/2022 13:39:17] - |AC| - [935632] - C:\Windows\system32\Vb40016.dll [MD5.73978DD6DD93DFD1FDD83620AE604DD4] - [03/02/2022 13:39:17] - |AC| - [722192] - C:\Windows\system32\Vb40032.dll [MD5.127E75E5A9B93CFA4F964060D6F5BC8D] - [03/02/2022 13:39:17] - |AC| - [271264] - C:\Windows\system32\vbrun100.dll [MD5.A124BB62A15341E84FD1D8919B07ED65] - [03/02/2022 13:39:18] - |AC| - [356992] - C:\Windows\system32\vbrun200.dll [MD5.82AA757DE7D80FAFF99179B457AA0FA0] - [03/02/2022 13:39:23] - |AC| - [398416] - C:\Windows\system32\Vbrun300.dll [MD5.7210D5407A2D2F52E851604666403024] - [09/02/2022 10:20:51] - |A| - [2272] - C:\Windows\system32\W95INF16.DLL [MD5.7D4A0D6C685107AC1B5089806CD4273B] - [09/02/2022 10:20:51] - |A| - [4608] - C:\Windows\system32\W95INF32.DLL [MD5.7BDB3B1F1303F0370D7E4CE82AD73D37] - [09/02/2022 10:20:51] - |A| - [56496] - C:\Windows\system32\wbhelp2.dll [MD5.4BAF561A4819F0EDF96C6FD903A5694F] - [09/02/2022 10:20:51] - |A| - [544768] - C:\Windows\system32\wbocx.ocx [MD5.A9970042BE512C7981B36E689C5F3F9F] - [13/02/2022 01:41:59] - |A| - [1461992] - C:\Windows\system32\WdfCoInstaller01009.dll [MD5.BCE9E1B20F2F07C29CB3F0BA06E6F15A] - [13/02/2022 03:37:44] - |A| - [163552] - C:\Windows\system32\WindowsAccessBridge.dll [MD5.0215C9FA70FD7FA76ABBFE82540E6443] - [13/02/2022 06:51:30] - |A| - [432] - C:\Windows\system32\winsevr.dat [MD5.DB08CF76449D2EB521DFB71A58DAF62D] - [03/02/2022 13:39:17] - |AC| - [445016] - C:\Windows\system32\wrap_oal.dll [MD5.EEBA34D386EABA21DD998FEDC1A81D73] - [13/02/2022 03:39:59] - |A| - [3850240] - C:\Windows\system32\x264vfw.dll [MD5.4E961525CC7FF0E5D7DA19E170B7C14C] - [03/02/2022 14:23:03] - |A| - [14032] - C:\Windows\system32\x3daudio1_0.dll [MD5.121B131EAA369D8F58DACC5C39A77D80] - [03/02/2022 14:23:03] - |A| - [15128] - C:\Windows\system32\x3daudio1_1.dll [MD5.F6A9FC2AD2F9111372B5AB3BBA3707EC] - [03/02/2022 14:23:03] - |A| - [17928] - C:\Windows\system32\X3DAudio1_2.dll [MD5.C593FD0A96EE4B6390B653C4C641313F] - [03/02/2022 14:23:04] - |A| - [25608] - C:\Windows\system32\X3DAudio1_3.dll [MD5.E3832514BD21236067B7227F6165EF95] - [13/02/2022 03:07:20] - |A| - [25608] - C:\Windows\system32\X3DAudio1_4.dll [MD5.350FEFE18B86BD4D9AB2A96D00215A49] - [03/02/2022 14:23:04] - |A| - [23376] - C:\Windows\system32\X3DAudio1_5.dll [MD5.E763798CAD2A90B6AB61854F50CD47DD] - [13/02/2022 02:54:32] - |A| - [22360] - C:\Windows\system32\X3DAudio1_6.dll [MD5.C811E70C8804CFFF719038250A43B464] - [03/02/2022 14:23:07] - |A| - [22360] - C:\Windows\system32\X3DAudio1_7.dll [MD5.00000000000000000000000000000000] - [11/02/2022 14:49:08] - |D| - [0] - C:\Windows\system32\x64 [MD5.2112FE0C46662D429347A7D7B49E3ECE] - [03/02/2022 14:23:07] - |A| - [230096] - C:\Windows\system32\xactengine2_0.dll [MD5.7C9952111F4C743B9F0D8B68B6ED93C9] - [03/02/2022 14:23:07] - |A| - [229584] - C:\Windows\system32\xactengine2_1.dll [MD5.73E055AF78A64F9B2779D44407CA2AB6] - [03/02/2022 14:23:07] - |A| - [267272] - C:\Windows\system32\xactengine2_10.dll [MD5.5C4D3843B491C047B7A619901FBD2EC1] - [03/02/2022 14:23:07] - |A| - [230168] - C:\Windows\system32\xactengine2_2.dll [MD5.69D841744B2BAE38FBB2D40A230A549C] - [03/02/2022 14:23:08] - |A| - [236824] - C:\Windows\system32\xactengine2_3.dll [MD5.6550E1A0A7BE611592C31222FCB981FB] - [03/02/2022 14:23:08] - |A| - [237848] - C:\Windows\system32\xactengine2_4.dll [MD5.86C93789E9006F1AC47ED9DD47D4C8A1] - [03/02/2022 14:23:08] - |A| - [251672] - C:\Windows\system32\xactengine2_5.dll [MD5.39000E033D39D19CCCE21AEAFCCE2476] - [03/02/2022 14:23:08] - |A| - [255848] - C:\Windows\system32\xactengine2_6.dll [MD5.7FEBB8CE2233CBAE738B16D42ED29674] - [03/02/2022 14:23:09] - |A| - [261480] - C:\Windows\system32\xactengine2_7.dll [MD5.499210C45AFEAADEE8CF4DCF7D5E570B] - [03/02/2022 14:23:09] - |A| - [266088] - C:\Windows\system32\xactengine2_8.dll [MD5.46EE68F04A75A1CCF40235EA6F1CBA05] - [13/02/2022 03:07:18] - |A| - [267112] - C:\Windows\system32\xactengine2_9.dll [MD5.8A83673F0AB001870583FDE2B004FA59] - [03/02/2022 14:23:10] - |A| - [238088] - C:\Windows\system32\xactengine3_0.dll [MD5.2E0E25252E1D41752876E9FE12ADE175] - [03/02/2022 14:23:10] - |A| - [238088] - C:\Windows\system32\xactengine3_1.dll [MD5.F3C6BE26949CAADB11DBF0086082FAC9] - [03/02/2022 14:23:10] - |A| - [238088] - C:\Windows\system32\xactengine3_2.dll [MD5.8BA296419AF3417D1E9806B83166E472] - [03/02/2022 14:23:10] - |A| - [235856] - C:\Windows\system32\xactengine3_3.dll [MD5.686F8D1B4926D48227A06ACD4D41CD1E] - [13/02/2022 02:54:32] - |A| - [235352] - C:\Windows\system32\xactengine3_4.dll [MD5.DB3C93E87452B8DAB4F58ED1FD2B1998] - [03/02/2022 14:23:11] - |A| - [238936] - C:\Windows\system32\xactengine3_5.dll [MD5.F81C4678A55FFEE585AC75825FAF5582] - [03/02/2022 14:23:11] - |A| - [238936] - C:\Windows\system32\xactengine3_6.dll [MD5.4FD7BCB9D8AF6A165E9BA0C2EB702E7C] - [03/02/2022 14:23:11] - |A| - [239960] - C:\Windows\system32\xactengine3_7.dll [MD5.DD165760F1B95200A3DA2D9DFDB84234] - [13/02/2022 03:07:21] - |A| - [65032] - C:\Windows\system32\XAPOFX1_0.dll [MD5.D95EAABF5D277EF91D9CA70151209E56] - [03/02/2022 14:23:12] - |A| - [68616] - C:\Windows\system32\XAPOFX1_1.dll [MD5.295E47A75F278580F9441041EAAEA3D2] - [03/02/2022 14:23:12] - |A| - [70992] - C:\Windows\system32\XAPOFX1_2.dll [MD5.30686ECE80545E06D78D156EB9F7D463] - [03/02/2022 14:23:13] - |A| - [69464] - C:\Windows\system32\XAPOFX1_3.dll [MD5.E4CE2AF32F501A7F7DDDD908704A0EE6] - [03/02/2022 14:23:13] - |A| - [74072] - C:\Windows\system32\XAPOFX1_4.dll [MD5.8A4CEBF34370D689E198E6673C1F2C40] - [03/02/2022 14:23:14] - |A| - [74072] - C:\Windows\system32\XAPOFX1_5.dll [MD5.418CDC57E55EE79C3F86C13A19B3D5E3] - [03/02/2022 14:23:14] - |A| - [479752] - C:\Windows\system32\XAudio2_0.dll [MD5.E34FF0115B1EE3B4E03D22AE9840EE03] - [13/02/2022 03:07:21] - |A| - [507400] - C:\Windows\system32\XAudio2_1.dll [MD5.50F4A0D5E6A0BAFEFA78F353533B8E06] - [03/02/2022 14:23:15] - |A| - [509448] - C:\Windows\system32\XAudio2_2.dll [MD5.47ED15DC87AE334C13C4DACD1BE2CCED] - [03/02/2022 14:23:15] - |A| - [514384] - C:\Windows\system32\XAudio2_3.dll [MD5.E684C5FA18ADF9EA14737757413BF727] - [13/02/2022 02:54:33] - |A| - [517448] - C:\Windows\system32\XAudio2_4.dll [MD5.8B01FB723F3B30AB3DEBDDBF97CFE577] - [03/02/2022 14:23:16] - |A| - [515416] - C:\Windows\system32\XAudio2_5.dll [MD5.4976243BD70FAE3D1D24E49739AB2710] - [03/02/2022 14:23:16] - |A| - [528216] - C:\Windows\system32\XAudio2_6.dll [MD5.81DFDDFB401D663BA7E6AD1C80364216] - [03/02/2022 14:23:16] - |A| - [527192] - C:\Windows\system32\XAudio2_7.dll [MD5.F1726346E583442541FE73429F8E9C10] - [03/02/2022 14:23:16] - |A| - [62672] - C:\Windows\system32\xinput1_1.dll [MD5.33B62BE226934E1B01F5043870C70427] - [03/02/2022 14:23:17] - |A| - [62744] - C:\Windows\system32\xinput1_2.dll [MD5.77F595DEE5FFACEA72B135B1FCE1312E] - [13/02/2022 02:54:30] - |A| - [81768] - C:\Windows\system32\xinput1_3.dll [MD5.00000000000000000000000000000000] - [13/02/2022 02:59:25] - |D| - [140952] - C:\Windows\system32\xlive [MD5.3A1DCCA8C051E747AFDDA91C6E3D3E6F] - [13/02/2022 03:40:03] - |A| - [681984] - C:\Windows\system32\xvidcore.dll [MD5.6AF5E7909F52091FC7EA5709775B7806] - [13/02/2022 03:40:01] - |A| - [284160] - C:\Windows\system32\xvidvfw.dll [MD5.505A0EE4F01481CD951BB5D4836C0973] - [09/02/2022 10:45:23] - |A| - [45] - C:\Windows\system32\_WKERNEL.SYL [MD5.874F98CD2976B2ABB43E1616D268BC14] - [13/02/2022 09:13:39] - |A| - [165672] - C:\Windows\system32\Drivers\360AntiHacker.sys [MD5.81166941D40619CF56FBA5C03DF5D335] - [13/02/2022 09:13:42] - |A| - [74472] - C:\Windows\system32\Drivers\360AvFlt.sys [MD5.DF38750F3F3E205E8795724D970189EA] - [13/02/2022 09:13:53] - |A| - [221768] - C:\Windows\system32\Drivers\360Box.sys [MD5.ABFE625AB51EA7EA4EC69E555CB52BF3] - [13/02/2022 09:13:34] - |A| - [43952] - C:\Windows\system32\Drivers\360Camera.sys [MD5.A1C23F63E3B99D1760848FDD78318228] - [13/02/2022 14:12:56] - |A| - [79992] - C:\Windows\system32\Drivers\360netmon.sys [MD5.A190AAAA3DEC18E80A47398FB17255D0] - [13/02/2022 09:14:29] - |A| - [200464] - C:\Windows\system32\Drivers\360SelfProtection.sys [MD5.537AD0DECDC852F52E82E2BA57E00696] - [09/02/2022 11:55:57] - |A| - [43536] - C:\Windows\system32\Drivers\asd2fsm.sys [MD5.E7071B72A86F935F5E4461E4326F2411] - [03/02/2022 09:20:47] - |A| - [3376416] - C:\Windows\system32\Drivers\athr.sys [MD5.DB51D01941B1F6AAADD6770CCEBD7510] - [13/02/2022 09:13:48] - |A| - [196392] - C:\Windows\system32\Drivers\BAPIDRV.SYS [MD5.9FA405B04082D6C73C826750B0ECFFCF] - [13/02/2022 09:13:40] - |A| - [44032] - C:\Windows\system32\Drivers\efimon.sys [MD5.303C7367425C61F4753474C577E54488] - [12/02/2022 23:42:44] - |A| - [17672] - C:\Windows\system32\Drivers\EPMVolFl.sys [MD5.6523655224376C860DE01285D3DF2293] - [12/02/2022 23:47:42] - |A| - [67208] - C:\Windows\system32\Drivers\EUDCPEPM.sys [MD5.95E49B1A5AC59ECFCDB6FDA1FBE417D3] - [12/02/2022 23:47:32] - |A| - [21640] - C:\Windows\system32\Drivers\EUEDKEPM.sys [MD5.C104D3F08719E99EF2A6C7FF5BF292E0] - [13/02/2022 01:41:59] - |A| - [96664] - C:\Windows\system32\Drivers\GeneStor.sys [MD5.A6DF39C0432E7B4830BF3EB4E4663E71] - [13/02/2022 09:13:39] - |A| - [75280] - C:\Windows\system32\Drivers\hookport.sys [MD5.CC3C10EE092045394FB441D52B4AFCAA] - [11/02/2022 14:47:42] - |A| - [4816896] - C:\Windows\system32\Drivers\igdkmd32.sys [MD5.07A93A46C8F7FFD25637BFAACD1B6410] - [03/02/2022 09:04:50] - |A| - [110280] - C:\Windows\system32\Drivers\L1C62x86.sys [MD5.1DF6B9225D71AD514EBAB9BD1C201DEC] - [13/02/2022 02:16:11] - |A| - [107640] - C:\Windows\system32\Drivers\L1C63x86.sys [MD5.34316D374C489C7E7AE1E65405AEFFA6] - [13/02/2022 09:13:46] - |A| - [376520] - C:\Windows\system32\Drivers\qutmdrv.sys [MD5.30D562A2156E0E51F3B571F40F0136A8] - [06/02/2022 14:45:09] - |A| - [42152] - C:\Windows\system32\Drivers\revoflt.sys [MD5.1DAAA7C6126CA42ECE46A4CED76B6E37] - [01/02/2022 16:10:56] - |A| - [43252949] - C:\Windows\system32\Drivers\RTAIODAT.DAT [MD5.654671B01FB705A481D862A9C8309DD3] - [01/02/2022 16:11:15] - |A| - [4640864] - C:\Windows\system32\Drivers\RTKVHDA.sys [MD5.9B09F336DE36A7A6CA871DE8A7847B65] - [13/02/2022 01:05:24] - |A| - [62976] - C:\Windows\system32\Drivers\RTSTOR.sys [MD5.7D7FBC9504575D97885A858EA93684F5] - [01/02/2022 16:11:00] - |A| - [5804772] - C:\Windows\system32\Drivers\rtvienna.dat [MD5.503A5C435D2FA2EBF200741B5BFA2DF6] - [06/02/2022 17:17:01] - |A| - [66432] - C:\Windows\system32\Drivers\stdriverx86.sys [MD5.A176718F0DF45F60F545CF3E14F4D108] - [12/02/2022 20:35:04] - |A| - [45056] - C:\Windows\system32\Drivers\usbaapl.sys [MD5.7305AE33803C89216499DE1B289C90FE] - [06/02/2022 17:26:03] - |A| - [68472] - C:\Windows\system32\Drivers\voxaldriverx86.sys ---------- | Drives D: [14/01/2022 13:18:19] - |A| - (.© adaware. - Adaware PC Cleaner Installer.) - [15394720] - (7.1.82.476) - D:\Adaware_PC_Cleaner_Installer.exe [14/01/2022 13:18:21] - |A| - (.© adaware. - Adaware VPN Installer.) - [15346080] - (1.0.99.47) - D:\adawarevpn (1).exe [14/01/2022 13:18:22] - |A| - (.© adaware. - Adaware VPN Installer.) - [15346080] - (1.0.99.47) - D:\adawarevpn.exe [14/01/2022 13:18:23] - |A| - (.-.) - [17648032] - (12.10.191.0) - D:\adawarewebinstaller.exe [14/01/2022 13:18:25] - |A| - (.© Intego Inc - IntegoSetup.) - [567520] - (2.0.1.5) - D:\IntegoSetup.exe [14/01/2022 13:18:26] - |A| - (.-.) - [41372992] - (0.0.0.0) - D:\vlc-media-player_3-0-16_fr_10829_32.exe [14/01/2022 13:18:28] - |A| - (.360.cn - 360????.) - [45502432] - (2.0.0.1090) - D:\360SysVulTerminator.exe [21/01/2022 20:03:02] - |A| - (.2011-2015 - Fidelizer - Feel the "Real Sound".) - [508867] - (8.8.0.0) - D:\Fidelizer.exe G: [06/04/2021 09:48:11] - |A| - (.-.) - [1602] - (0.0.0.0) - G:\Skype.lnk [06/04/2021 14:43:10] - |A| - (.-.) - [1621] - (0.0.0.0) - G:\Print 3D.lnk [06/04/2021 09:48:11] - |A| - (.-.) - [1347] - (0.0.0.0) - G:\Windows Media Player.lnk [06/04/2021 14:43:16] - |A| - (.-.) - [1387] - (0.0.0.0) - G:\Tele Assistance HelloDoc.lnk [06/04/2021 14:43:17] - |A| - (.-.) - [1713] - (0.0.0.0) - G:\Camera.lnk [06/04/2021 09:47:53] - |A| - (.-.) - [1168] - (0.0.0.0) - G:\OpenOffice 4.1.6.lnk [06/04/2021 14:43:17] - |A| - (.-.) - [1549] - (0.0.0.0) - G:\Votre telephone.lnk [06/04/2021 14:43:18] - |A| - (.-.) - [1561] - (0.0.0.0) - G:\Cartes.lnk [06/04/2021 09:48:02] - |A| - (.-.) - [1677] - (0.0.0.0) - G:\Paint 3D.lnk [06/04/2021 09:48:02] - |A| - (.-.) - [1114] - (0.0.0.0) - G:\Paint.lnk [06/04/2021 14:43:17] - |A| - (.-.) - [1295] - (0.0.0.0) - G:\005[1] - Raccourci.lnk [06/04/2021 09:48:02] - |A| - (.-.) - [1545] - (0.0.0.0) - G:\Photos.lnk [06/04/2021 14:43:17] - |A| - (.-.) - [1630] - (0.0.0.0) - G:\Alarmes et horloge.lnk [06/04/2021 09:48:11] - |A| - (.-.) - [1516] - (0.0.0.0) - G:\Securite Windows.lnk [06/04/2021 14:43:17] - |A| - (.-.) - [1605] - (0.0.0.0) - G:\Calculatrice.lnk [06/04/2021 14:43:17] - |A| - (.-.) - [948] - (0.0.0.0) - G:\Calculette en Euros.lnk [06/04/2021 14:43:17] - |A| - (.-.) - [1822] - (0.0.0.0) - G:\Calendrier.lnk [06/04/2021 14:43:17] - |A| - (.-.) - [1509] - (0.0.0.0) - G:\Candy Crush Friends.lnk [06/04/2021 14:43:17] - |A| - (.-.) - [1481] - (0.0.0.0) - G:\Candy Crush Saga.lnk [06/04/2021 14:43:18] - |A| - (.-.) - [1733] - (0.0.0.0) - G:\Capture d'ecran et croquis.lnk [06/04/2021 09:48:31] - |A| - (.-.) - [1258] - (0.0.0.0) - G:\CDBurnerXP.lnk [06/04/2021 09:48:32] - |A| - (.-.) - [1087] - (0.0.0.0) - G:\Internet Explorer.lnk [06/04/2021 09:48:38] - |A| - (.-.) - [817] - (0.0.0.0) - G:\Mes Images.lnk [06/04/2021 09:48:38] - |A| - (.-.) - [804] - (0.0.0.0) - G:\Mes Musiques.lnk [06/04/2021 09:48:38] - |A| - (.-.) - [2770] - (0.0.0.0) - G:\Microsoft Excel 2010.lnk [06/04/2021 09:48:38] - |A| - (.-.) - [1769] - (0.0.0.0) - G:\Microsoft News les actualites a ne pas manquer.lnk [06/04/2021 09:48:38] - |A| - (.-.) - [2726] - (0.0.0.0) - G:\Microsoft PowerPoint 2010.lnk [06/04/2021 09:48:38] - |A| - (.-.) - [2824] - (0.0.0.0) - G:\Microsoft Publisher 2010.lnk [06/04/2021 09:48:38] - |A| - (.-.) - [1825] - (0.0.0.0) - G:\Microsoft Solitaire Collection.lnk [06/04/2021 09:48:38] - |A| - (.-.) - [2812] - (0.0.0.0) - G:\Microsoft Word 2010.lnk [06/04/2021 14:43:00] - |A| - (.-.) - [1053] - (0.0.0.0) - G:\DU Meter.lnk [06/04/2021 14:43:01] - |A| - (.-.) - [1962] - (0.0.0.0) - G:\Editeur de video.lnk [06/04/2021 14:43:01] - |A| - (.-.) - [2360] - (0.0.0.0) - G:\Google Chrome.lnk [06/04/2021 14:43:01] - |A| - (.-.) - [1072] - (0.0.0.0) - G:\Mes Favoris.lnk [06/04/2021 14:43:02] - |A| - (.-.) - [807] - (0.0.0.0) - G:\Mes Videos.lnk [06/04/2021 14:43:02] - |A| - (.-.) - [1730] - (0.0.0.0) - G:\Meteo.lnk [06/04/2021 14:43:04] - |A| - (.-.) - [1134] - (0.0.0.0) - G:\Snipping Tool.lnk [06/04/2021 14:43:04] - |A| - (.-.) - [1589] - (0.0.0.0) - G:\Pense-betes.lnk [06/04/2021 14:43:04] - |A| - (.-.) - [1253] - (0.0.0.0) - G:\Pre_Scan_Donate.lnk [06/04/2021 14:43:04] - |A| - (.-.) - [1589] - (0.0.0.0) - G:\Pre_Scan_Restore.lnk [06/04/2021 14:43:10] - |A| - (.Copyright (C) 2013-2021 SosVirus Software - QuickDiag.) - [4541680] - (7.76.21.1) - G:\QuickDiag.exe [06/04/2021 14:43:13] - |A| - (.Copyright (C) 2013-2019 SosVirus Software - QuickDiag.) - [5321112] - (29.10.19.1) - G:\quickdiag_V5_29.10.19.1.exe [06/04/2021 14:43:02] - |A| - (.-.) - [522240] - (3.1.21.0) - G:\OTM.exe [12/10/2020 03:19:09] - |H| - (.-.) - [16] - (0.0.0.0) - G:\AUTORUN.INF [10/05/2017 22:03:43] - |N| - (.-.) - [415] - (0.0.0.0) - G:\SmartClean.ini [06/04/2021 14:42:58] - |ASH| - (.-.) - [814] - (0.0.0.0) - G:\desktop.ini H: I: J: K: [09/10/2020 11:25:42] - |H| - (.-.) - [16] - (0.0.0.0) - K:\AUTORUN.INF [10/05/2018 09:49:26] - |N| - (.-.) - [68] - (0.0.0.0) - K:\pmp_usb.ini L: N: [12/02/2020 16:50:32] - |A| - (.2020 Rare Ideas, LLC - Start PortableApps.com.) - [1449024] - (16.1.0.0) - N:\Start.exe O: P: R: ---------- | C: [22/01/2022 16:00:52] - |SHD| - [1804937] - C:\$360Section [03/02/2022 09:05:35] - |SHD| - [129] - C:\$RECYCLE.BIN [05/02/2022 08:32:02] - |D| - [15353] - C:\$WINDOWS.~BT [05/02/2022 08:31:48] - |HD| - [0] - C:\$Windows.~WS [22/01/2022 21:44:48] - |D| - [0] - C:\360DecodeFiles [12/01/2022 20:04:12] - |D| - [0] - C:\360???? [20/01/2022 18:13:53] - |D| - [242220738] - C:\81f8ecbca23debf32dc6 [13/02/2022 19:44:40] - |D| - [248949265] - C:\9bc0f91cc312d22ba97710c5 [09/02/2022 17:57:23] - |D| - [886770] - C:\AdsFix [11/02/2022 16:04:09] - |D| - [0] - C:\AdwCleaner [04/02/2022 03:22:15] - |D| - [453368851] - C:\BCUninstaller [26/12/2021 12:25:08] - |AD| - [85211099] - C:\book [MD5.F6512FE893C80A698FCA3CF440A3686E] - [01/07/2010 14:16:38] - |RASH| - (.-.) - [8192] - (0.0.0.0) - C:\BOOTSECT.BAK [03/02/2022 04:48:46] - |D| - [922474144] - C:\carole, lady boo & nathalie [21/01/2022 22:56:13] - |D| - [0] - C:\CCleanerPortable [13/02/2022 05:07:29] - |SHD| - [112071] - C:\Config.Msi [14/07/2009 05:53:55] - |SHD| - [0] - C:\Documents and Settings [21/01/2022 22:55:32] - |D| - [0] - C:\DriverMagicianPortable [05/02/2022 08:48:17] - |D| - [0] - C:\ESD [09/02/2022 10:23:25] - |D| - [589594] - C:\FIND_MOZ_EXT [08/02/2022 15:24:34] - |D| - [33492494] - C:\FixMeStick [08/02/2022 22:53:39] - |AD| - [35428155] - C:\FixMeStick Quarantine [MD5.7215EE9C7D9DC229D2921A40E899EC5F] - [10/02/2022 15:24:49] - |A| - (.-.) - [1] - (0.0.0.0) - C:\fixmestick.boot.ex.flag [MD5.7215EE9C7D9DC229D2921A40E899EC5F] - [10/02/2022 15:24:49] - |A| - (.-.) - [1] - (0.0.0.0) - C:\fixmestick.boot.flag [MD5.7215EE9C7D9DC229D2921A40E899EC5F] - [10/02/2022 15:24:49] - |A| - (.-.) - [1] - (0.0.0.0) - C:\fixmestick.failsafeconf0.flag [MD5.7215EE9C7D9DC229D2921A40E899EC5F] - [10/02/2022 14:16:55] - |A| - (.-.) - [1] - (0.0.0.0) - C:\fixmestick.marker.flag [MD5.7215EE9C7D9DC229D2921A40E899EC5F] - [10/02/2022 18:14:04] - |A| - (.-.) - [1] - (0.0.0.0) - C:\fixmestick.scan.completed.flag [MD5.AAB3238922BCC25A6F606EB525FFDC56] - [10/02/2022 18:56:53] - |A| - (.-.) - [2] - (0.0.0.0) - C:\fixmestick.scan.quarantined.flag [MD5.D41D8CD98F00B204E9800998ECF8427E] - [13/02/2022 14:12:21] - |ASH| - (.-.) - [796733440] - (0.0.0.0) - C:\hiberfil.sys [01/07/2010 13:57:48] - |D| - [0] - C:\Intel [01/07/2010 14:12:32] - |D| - [2545030242] - C:\OEM [13/02/2022 00:19:08] - |D| - [141628076] - C:\OSTotoFolder [MD5.D41D8CD98F00B204E9800998ECF8427E] - [26/12/2021 12:19:02] - |ASH| - (.-.) - [1073741824] - (0.0.0.0) - C:\pagefile.sys [14/07/2009 03:37:05] - |D| - [0] - C:\PerfLogs [14/07/2009 03:37:05] - |RD| - [7848781521] - C:\Program Files [14/07/2009 03:37:05] - |D| - [1888444989] - C:\ProgramData [09/02/2022 11:07:57] - |D| - [545571] - C:\QuickDiag [MD5.9116570A7042964FD941C1FF93B817AF] - [13/02/2022 23:05:34] - |A| - (.-.) - [265200] - (0.0.0.0) - C:\QuickDiag.txt [MD5.FD80C8353077EEC196572FD168831B58] - [09/02/2022 11:40:46] - |RAST| - (.-.) - [545524] - (0.0.0.0) - C:\QuickDiag_09_02_2022_11_40_46.txt [26/12/2021 13:15:13] - |SHD| - [262174050] - C:\Recovery [09/02/2022 10:23:38] - |D| - [2333] - C:\searchplugins [24/01/2022 10:49:45] - |D| - [0] - C:\SFCFix [21/01/2022 21:35:57] - |D| - [5641583] - C:\SkinPack [12/02/2022 16:15:36] - |D| - [8684656] - C:\StartMeStick [26/12/2021 12:19:01] - |SHD| - [0] - C:\System Volume Information [14/07/2009 03:37:05] - |RD| - [182285843930] - C:\Users [12/07/2007 02:48:01] - |D| - [9601012990] - C:\Windows [05/02/2022 08:48:08] - |D| - [0] - C:\_iso ---------- | C:\Windows [MD5.D41D8CD98F00B204E9800998ECF8427E] - [01/07/2010 13:56:12] - |A| - (.-.) - [0] - (0.0.0.0) - C:\Windows\Acer.tag [14/07/2009 05:52:30] - |D| - [802] - C:\Windows\addins [MD5.20D4CB0D2A4CDB4F0F86FACA2CD9D8EF] - [12/02/2022 23:54:26] - |A| - (.-.) - [1902640] - (0.0.0.0) - C:\Windows\ampa.exe [14/07/2009 03:37:05] - |D| - [41211] - C:\Windows\AppCompat [14/07/2009 03:37:05] - |D| - [9810202] - C:\Windows\AppPatch [14/07/2009 03:37:05] - |RSD| - [378593612] - C:\Windows\assembly [MD5.7903FF991F1424A69C58AB3F25A36895] - [14/07/2009 00:13:55] - |A| - (.© Microsoft Corporation. Tous droits reserves. - Utilitaire de service de fichier de demarrage.) - [65024] - (6.1.7600.16385) - C:\Windows\bfsvc.exe [14/07/2009 03:37:06] - |D| - [18304062] - C:\Windows\Boot [MD5.1F8938A9606EF58925487EC8C4A253C4] - [14/07/2009 05:57:37] - |AS| - (.-.) - [67584] - (0.0.0.0) - C:\Windows\bootstat.dat [14/07/2009 03:37:06] - |D| - [3233280] - C:\Windows\Branding [MD5.6FBB766EB79F9EED3684194EEAF838DF] - [26/12/2021 21:16:01] - |A| - (.-.) - [11453] - (0.0.0.0) - C:\Windows\ChangeLang_Done.tag [MD5.621F19E27DA3BAFD6EF65C4A81753C92] - [23/07/2010 02:55:12] - |A| - (.-.) - [10] - (0.0.0.0) - C:\Windows\CSUP.TXT [14/07/2009 03:37:06] - |D| - [2113488] - C:\Windows\Cursors [MD5.4885CB318BBACD73904448EE1EB5D58E] - [12/02/2022 23:55:56] - |A| - (.-.) - [1135696] - (0.0.0.0) - C:\Windows\ddmmain.exe [14/07/2009 05:34:21] - |D| - [0] - C:\Windows\debug [06/10/2009 03:29:32] - |AD| - [254527] - C:\Windows\DeployWinRE2 [MD5.41A36FDD5F460CFB7E927CFCCF64F50D] - [26/12/2021 12:42:14] - |A| - (.-.) - [14634] - (0.0.0.0) - C:\Windows\devices.txt [14/07/2009 05:52:30] - |D| - [3327797] - C:\Windows\diagnostics [14/07/2009 05:56:48] - |D| - [0] - C:\Windows\DigitalLocker [01/07/2010 14:13:16] - |D| - [12505585] - C:\Windows\Downloaded Installations [14/07/2009 05:52:30] - |D| - [0] - C:\Windows\Downloaded Program Files [MD5.E7CCB395344AF1C555C45E55C149A773] - [01/07/2010 14:14:16] - |A| - (.Copyright (C) 2004 - EMCRI DLL.) - [361808] - (1.0.0.3) - C:\Windows\EMCRI_E.dll [03/02/2022 07:34:49] - |D| - [46103810] - C:\Windows\erdnt [06/02/2022 15:07:44] - |D| - [0] - C:\Windows\ERUNT [MD5.2626FC9755BE22F805D3CFA0CE3EE727] - [01/07/2010 13:35:15] - |A| - (.© Microsoft Corporation. Tous droits reserves. - Explorateur Windows.) - [2614272] - (6.1.7600.16450) - C:\Windows\explorer.exe [MD5.F38B53088F3200BC9B8037DBA400F0AA] - [26/12/2021 12:40:59] - |A| - (.-.) - [113264] - (0.0.0.0) - C:\Windows\FixUVC.exe [14/07/2009 03:37:06] - |RSD| - [354547627] - C:\Windows\Fonts [26/12/2021 21:10:39] - |D| - [142336] - C:\Windows\fr-FR [MD5.F9202335BBA03A02F084FE588564BBF5] - [14/07/2009 00:12:58] - |A| - (.© Microsoft Corporation. Tous droits reserves. - Utilitaire de service de chiffrement de lecteur BitLocker.) - [13824] - (6.1.7600.16385) - C:\Windows\fveupdate.exe [14/07/2009 03:37:06] - |D| - [79210028] - C:\Windows\Globalization [14/07/2009 03:37:06] - |D| - [38934178] - C:\Windows\Help [MD5.2FF3A32F01DF61836FED59D441D8B9DF] - [14/07/2009 01:12:58] - |A| - (.© Microsoft Corporation. Tous droits reserves. - Aide et support Microsoft.) - [497152] - (6.1.7600.16385) - C:\Windows\HelpPane.exe [MD5.9B90B0C78671A4881D06C91941F6F379] - [14/07/2009 01:12:22] - |A| - (.© Microsoft Corporation. Tous droits reserves. - Executable de l’aide HTML Microsoft®.) - [15360] - (6.1.7600.16385) - C:\Windows\hh.exe [14/07/2009 03:37:06] - |D| - [143547244] - C:\Windows\IME [14/07/2009 03:37:06] - |D| - [64176796] - C:\Windows\inf [01/07/2010 14:13:18] - |SHD| - [653031039] - C:\Windows\Installer [19/01/2022 16:12:33] - |D| - [0] - C:\Windows\IObit [14/07/2009 03:37:06] - |D| - [48371] - C:\Windows\L2Schemas [14/07/2009 03:37:06] - |D| - [0] - C:\Windows\LiveKernelReports [MD5.EF3024328398C07DE0BDF35B67ABEC68] - [01/07/2010 13:56:32] - |A| - (.-.) - [172] - (0.0.0.0) - C:\Windows\LMv4.UNI [14/07/2009 03:37:06] - |D| - [1164135] - C:\Windows\Logs [14/07/2009 03:37:06] - |RSD| - [13327133] - C:\Windows\Media [MD5.23AF90D2355D8C83AA4567EF1763B467] - [14/07/2009 00:55:01] - |A| - (.-.) - [43131] - (0.0.0.0) - C:\Windows\mib.bin [14/07/2009 03:37:07] - |AD| - [120671891] - C:\Windows\Microsoft.NET [20/01/2022 10:42:57] - |D| - [0] - C:\Windows\Minidump [MD5.A8BF8A76DA1BDCAEFB65F2F987BCA8C5] - [23/04/2009 05:44:23] - |A| - (.-.) - [2572] - (0.0.0.0) - C:\Windows\MOD01OPK04000H0001.enc [MD5.0D4EF74BDDAC1010D849BEA40C6425C8] - [23/07/2010 02:55:20] - |A| - (.-.) - [1996] - (0.0.0.0) - C:\Windows\MOD01SET00000000LI.enc [MD5.E551DAEAF6F19A8FCFA8E0D689870CD3] - [01/07/2010 14:15:44] - |A| - (.-.) - [2008] - (0.0.0.0) - C:\Windows\MOD01SET5K000G0002.enc [MD5.448CA8C1E3F648FFEF53645B511C5F74] - [06/10/2009 21:46:28] - |A| - (.-.) - [2476] - (0.0.0.0) - C:\Windows\MOD01SET74FR0H0003.enc [MD5.013985963D7C6010B033A70E452292BA] - [01/07/2010 14:15:44] - |A| - (.-.) - [2048] - (0.0.0.0) - C:\Windows\MOD01SET75000H0005.enc [MD5.24D9E3329D9625546EDD7EEB46B33E9A] - [01/07/2010 14:15:44] - |A| - (.-.) - [2168] - (0.0.0.0) - C:\Windows\MOD01SET78000G0018.enc [14/07/2009 03:37:07] - |D| - [0] - C:\Windows\ModemLogs [MD5.B9FB94A8DA62711C6955825DEFB25C5A] - [14/07/2009 03:04:57] - |A| - (.-.) - [1405] - (0.0.0.0) - C:\Windows\msdfmap.ini [05/02/2022 08:03:40] - |HD| - [0] - C:\Windows\msdownld.tmp [26/12/2021 21:02:59] - |D| - [0] - C:\Windows\NAPP_Dism_Log [MD5.D0B21C17A8FD3C4D452016AB5E640A58] - [06/10/2009 03:29:32] - |A| - (.-.) - [741] - (0.0.0.0) - C:\Windows\NewDeployWinRE.cmd [MD5.D378BFFB70923139D6A4F546864AA61C] - [14/07/2009 00:41:04] - |A| - (.© Microsoft Corporation. Tous droits reserves. - Bloc-notes.) - [179712] - (6.1.7600.16385) - C:\Windows\notepad.exe [MD5.2E99B00585D74B0FEF55C66A07EF8A12] - [13/02/2022 09:13:41] - |A| - (.-.) - [197416] - (0.0.0.0) - C:\Windows\ntbtlog.txt [01/07/2010 14:26:22] - |D| - [227901] - C:\Windows\oem [01/07/2010 14:31:48] - |D| - [499712] - C:\Windows\OEMTemp [14/07/2009 05:52:30] - |D| - [65] - C:\Windows\Offline Web Pages [01/07/2010 14:09:52] - |D| - [0] - C:\Windows\Options [12/07/2007 02:49:28] - |D| - [0] - C:\Windows\Panther [MD5.ACA81BF682ED2907FCEDF4A359BB8E1B] - [01/07/2010 14:32:45] - |A| - (.-.) - [70] - (0.0.0.0) - C:\Windows\patch.loag [26/12/2021 12:49:50] - |D| - [0] - C:\Windows\PCHEALTH [14/07/2009 05:52:30] - |D| - [62029270] - C:\Windows\Performance [MD5.1A9C6194BC69A775EE057398BA1C5707] - [13/02/2022 13:40:39] - |A| - (.-.) - [53806] - (0.0.0.0) - C:\Windows\PFRO.log [MD5.EDDBF74234EF0C2A4CFBC5671B25903B] - [17/01/2022 07:07:00] - |A| - (.-.) - [397] - (0.0.0.0) - C:\Windows\PidList.ini [MD5.C4929C7C4BE57AF744E315B239F61F07] - [26/12/2021 12:41:00] - |A| - (.-.) - [302] - (0.0.0.0) - C:\Windows\PidList_C.ini [14/07/2009 03:37:07] - |D| - [1132015] - C:\Windows\PLA [MD5.EADCEB89DD46DA2A5560CA2AF016A6A6] - [26/12/2021 12:41:00] - |A| - (.Copyright (C) 2007 - DefaultSettingEXE MFC Application.) - [206208] - (1.1.0.1) - C:\Windows\PLFSetI.exe [MD5.D7354055BBE86526807D34786159814B] - [17/01/2022 07:07:01] - |A| - (.Copyright (C) 2010 - DefaultSettingEXE.) - [99712] - (1.0.5.0) - C:\Windows\PLFSetL.exe [14/07/2009 03:37:07] - |D| - [3931703] - C:\Windows\PolicyDefinitions [01/07/2010 13:18:22] - |D| - [22595710] - C:\Windows\Prefetch [MD5.8A4883F5E7AC37444F23279239553878] - [14/07/2009 00:17:08] - |A| - (.© Microsoft Corporation. Tous droits reserves. - Editeur du Registre.) - [398336] - (6.1.7600.16385) - C:\Windows\regedit.exe [14/07/2009 03:37:07] - |D| - [21544] - C:\Windows\registration [14/07/2009 03:37:07] - |D| - [10288640] - C:\Windows\rescache [14/07/2009 03:37:07] - |D| - [1679683] - C:\Windows\Resources [MD5.C613568549E0036980D873B0B3B18115] - [01/07/2010 14:06:24] - |A| - (.Copyright (C) 2010 Realtek Semiconductor Corp. - RtlExUpd DLL for setup utility function.) - [1251944] - (1.0.2.2) - C:\Windows\RtlExUpd.dll [14/07/2009 03:37:07] - |D| - [0] - C:\Windows\SchCache [14/07/2009 03:37:07] - |D| - [55533] - C:\Windows\schemas [14/07/2009 03:37:07] - |D| - [6342854] - C:\Windows\security [14/07/2009 05:34:13] - |D| - [27979760] - C:\Windows\ServiceProfiles [14/07/2009 03:37:07] - |D| - [16249544] - C:\Windows\servicing [14/07/2009 05:34:16] - |D| - [457] - C:\Windows\Setup [MD5.A84C16155D63F06FBB037B071A1E5B22] - [13/02/2022 14:09:08] - |A| - (.-.) - [6392] - (0.0.0.0) - C:\Windows\setupact.log [MD5.D41D8CD98F00B204E9800998ECF8427E] - [13/02/2022 14:09:08] - |A| - (.-.) - [0] - (0.0.0.0) - C:\Windows\setuperr.log [13/02/2022 03:01:21] - |D| - [636] - C:\Windows\ShellNew [MD5.2939A288159AABA95594C4FC9098E67C] - [17/01/2022 07:07:03] - |A| - (.Copyright (C) 2007 - DisplaySettingMonitor MFC Application.) - [30080] - (1.0.4.0) - C:\Windows\snuvcdsm.exe [26/12/2021 12:22:02] - |D| - [8604244] - C:\Windows\SoftwareDistribution [14/07/2009 03:37:07] - |D| - [70586312] - C:\Windows\Speech [MD5.9060C3C745E7B2D8E1A81DD061021546] - [14/07/2009 05:48:09] - |A| - (.-.) - [48201] - (0.0.0.0) - C:\Windows\Starter.xml [14/07/2009 03:37:07] - |D| - [7117308] - C:\Windows\system [MD5.286A9EDB379DC3423A528B0864A0F111] - [14/07/2009 03:04:23] - |A| - (.-.) - [219] - (0.0.0.0) - C:\Windows\system.ini [12/07/2007 02:51:11] - |AD| - [3203664182] - C:\Windows\System32 [14/07/2009 03:37:09] - |D| - [15] - C:\Windows\TAPI [14/07/2009 03:37:09] - |D| - [15702] - C:\Windows\Tasks [14/07/2009 03:37:09] - |D| - [0] - C:\Windows\Temp [14/07/2009 03:37:09] - |D| - [0] - C:\Windows\tracing [MD5.0BEA3F79A36B1F67B2CE0F595524C77C] - [10/06/2009 22:41:17] - |A| - (.- Twain Source Manager (Image Acquisition Interface).) - [94784] - (1.7.0.0) - C:\Windows\twain.dll [14/07/2009 05:52:30] - |D| - [6144] - C:\Windows\twain_32 [MD5.59306373078DD1175B4BBCD5081A2EA0] - [14/07/2009 01:14:33] - |A| - (.- Gestionnaire de sources Twain_32 (Image Acquisition Interface).) - [51200] - (1.7.1.3) - C:\Windows\twain_32.dll [MD5.F36A271706EDD23C94956AFB56981184] - [13/07/2009 23:47:26] - |A| - (.- Twain_32.dll Client's 16-Bit Thunking Server.) - [49680] - (1.7.0.0) - C:\Windows\twunk_16.exe [MD5.0BD6E68F3EA0DD62CD86283D86895381] - [14/07/2009 01:14:40] - |A| - (.- Twain.dll Client's 32-Bit Thunking Server.) - [31232] - (1.7.1.0) - C:\Windows\twunk_32.exe [MD5.B38882E54F783A2C37946C27091DC8B4] - [01/07/2010 14:14:12] - |A| - (.(C) 2000-2009 Dritek System Inc. - Uninstall Application.) - [349776] - (2.1.2.2017) - C:\Windows\UNINSTLMv4.EXE [14/07/2009 03:37:09] - |D| - [12420] - C:\Windows\Vss [14/07/2009 03:37:09] - |D| - [1278600] - C:\Windows\Web [MD5.162904DAA5412143F5403233E77F787E] - [14/07/2009 03:04:23] - |A| - (.-.) - [403] - (0.0.0.0) - C:\Windows\win.ini [MD5.5A5CFF37F1BD0F86B9BDAAD7A9445882] - [14/07/2009 05:41:57] - |RAH| - (.-.) - [749] - (0.0.0.0) - C:\Windows\WindowsShell.Manifest [MD5.EA5C32F9225F853A7564F24D50C54AB0] - [06/02/2022 20:40:16] - |A| - (.-.) - [209985] - (0.0.0.0) - C:\Windows\WindowsUpdate.log [MD5.8E6F7D51A5CB299C25621C6C1AB57E84] - [13/07/2009 21:29:46] - |A| - (.Copyright © Microsoft Corp. 1991-1992 - Windows Help Engine application file.) - [256192] - (3.10.0.425) - C:\Windows\winhelp.exe [MD5.1D420D66250BCAAAED05724FB34008CF] - [14/07/2009 01:12:29] - |A| - (.© Microsoft Corporation. Tous droits reserves. - Relais Windows Winhlp32.) - [9728] - (6.1.7600.16385) - C:\Windows\winhlp32.exe [14/07/2009 03:37:09] - |D| - [4202577314] - C:\Windows\winsxs [MD5.67D4787E1D73580B8FBCBF0117C3F7F3] - [10/07/2009 13:01:54] - |A| - (.© 2008 Microsoft Corporation. Tous droits reserves. - Ecran de veille photos Windows Live.) - [307560] - (14.0.8081.709) - C:\Windows\WLXPGSS.SCR [MD5.DC17DD0189B0C36D863B4DD0A036C10F] - [10/06/2009 22:34:23] - |A| - (.-.) - [316640] - (0.0.0.0) - C:\Windows\WMSysPr9.prx [MD5.6E8EACC0B339365D79A2C06896865D3D] - [14/07/2009 00:41:00] - |A| - (.© Microsoft Corporation. - Windows Write.) - [9216] - (6.1.7600.16385) - C:\Windows\write.exe [MD5.B317B33694BAC49D492DD3F23E374899] - [13/07/2009 22:30:30] - |A| - (.-.) - [707] - (0.0.0.0) - C:\Windows\_default.pif ---------- | C:\Windows\System32\GroupPolicy [22/01/2022 14:00:05] - |D| - [0] - C:\Windows\System32\GroupPolicy\Machine [22/01/2022 14:00:05] - |D| - [0] - C:\Windows\System32\GroupPolicy\User ---------- | Systemroot\System [14/07/2009 00:00:47] - |A| - [69584] - C:\Windows\System\avicap.dll (Copyright © Microsoft Corp. 1992-1994) - (AVI Capture DLL) [14/07/2009 00:00:47] - |A| - [109456] - C:\Windows\System\avifile.dll (Copyright © Microsoft Corp. 1991-2000) - (Microsoft AVI File support library) [13/07/2009 22:41:42] - |A| - [32816] - C:\Windows\System\COMMDLG.DLL (Copyright © Microsoft Corp. 1981-1996) - (Common Dialogs libraries) [13/02/2022 01:05:23] - |A| - [6416928] - C:\Windows\System\DriveIcon.dll () - () [13/07/2009 22:41:23] - |A| - [2000] - C:\Windows\System\keyboard.drv (Copyright © Microsoft Corp. 1981-1996) - (WOW Keyboard Driver Module) [13/07/2009 21:29:46] - |A| - [9936] - C:\Windows\System\lzexpand.dll (Copyright © Microsoft Corp. 1989-1992) - (Windows file expansion library) [14/07/2009 00:00:47] - |A| - [73376] - C:\Windows\System\mciavi.drv (Copyright © Microsoft Corp. 1992-1994) - (MCI driver for AVI) [14/07/2009 00:00:47] - |A| - [25264] - C:\Windows\System\mciseq.drv (Copyright © Microsoft Corp. 1991) - (MCI driver for MIDI sequencer) [14/07/2009 00:00:47] - |A| - [28160] - C:\Windows\System\mciwave.drv (Copyright © Microsoft Corp. 1991) - (MCI driver for waveform audio) [13/07/2009 22:41:32] - |A| - [68992] - C:\Windows\System\MMSYSTEM.DLL (Copyright © Microsoft Corp. 1981-1996) - (System APIs for Multimedia) [13/07/2009 22:41:32] - |A| - [1152] - C:\Windows\System\mmtask.tsk (Copyright © Microsoft Corp. 1981-1996) - (Multimedia background task support module) [13/07/2009 22:41:27] - |A| - [2032] - C:\Windows\System\mouse.drv (Copyright © Microsoft Corp. 1981-1996) - (WOW MOUSE Driver Module) [10/06/2009 22:21:50] - |A| - [126912] - C:\Windows\System\msvideo.dll (Copyright © Microsoft Corp. 1992-1994) - (Microsoft Video for Windows DLL) [13/07/2009 21:29:46] - |A| - [82944] - C:\Windows\System\olecli.dll (Copyright © Microsoft Corp. 1991-1993) - (Object Linking and Embedding Client Library) [13/07/2009 22:41:50] - |A| - [24064] - C:\Windows\System\OLESVR.DLL (Copyright © Microsoft Corp. 1991-1996) - (Object Linking and Embedding Server Library) [13/07/2009 22:41:22] - |A| - [5120] - C:\Windows\System\SHELL.DLL (Copyright © Microsoft Corp. 1981-1996) - (Windows Shell library) [13/07/2009 22:41:23] - |A| - [1744] - C:\Windows\System\sound.drv (Copyright © Microsoft Corp. 1981-1996) - (WOW SOUND Driver Module) [13/07/2009 23:00:27] - |A| - [5532] - C:\Windows\System\stdole.tlb (Copyright © Microsoft Corp. 1993-1995) - (OLE 2.1 16/32 Interoperability Type Library) [13/07/2009 22:41:21] - |A| - [3360] - C:\Windows\System\system.drv (Copyright © Microsoft Corp. 1981-1996) - (Windows System Driver core component) [13/07/2009 22:41:39] - |A| - [4048] - C:\Windows\System\TIMER.DRV (Copyright © Microsoft Corp. 1981-1996) - (Timer driver for PC compatibles) [13/07/2009 21:29:46] - |A| - [9008] - C:\Windows\System\ver.dll (Copyright © Microsoft Corp. 1991) - (Version Checking and File Installation Libraries) [13/07/2009 22:41:26] - |A| - [2176] - C:\Windows\System\vga.drv (Copyright © Microsoft Corp. 1981-1996) - (WOW Display Driver Module) [13/07/2009 22:41:45] - |A| - [12704] - C:\Windows\System\WFWNET.DRV (Copyright © Microsoft Corp. 1981-1996) - (Windows for Workgroups network driver) ---------- | Systemroot\Installer (Microsoft Files Whitelisted) [01/07/2010 14:28:34] - C:\Windows\Installer\7a96c.msi : (Google Toolbar for Internet Explorer - Google Inc.) [Header ok : D0CF11E0A1B11AE10000000000000000] [01/07/2010 14:30:57] - C:\Windows\Installer\7a9a6.msi : (Blank Project Template - Egis Technology Inc.) [Header ok : D0CF11E0A1B11AE10000000000000000] [01/07/2010 14:34:02] - C:\Windows\Installer\7a9b7.msi : (Adobe AIR Installer - Adobe Systems Inc.) [Header ok : D0CF11E0A1B11AE10000000000000000] [01/07/2010 14:34:12] - C:\Windows\Installer\7a9bc.msi : (Acrobat.com - Adobe Systems Incorporated) [Header ok : D0CF11E0A1B11AE10000000000000000] [27/12/2013 21:23:48] - C:\Windows\Installer\931fc.msi : (Boost - Reason Software Company Inc.) [Header ok : D0CF11E0A1B11AE10000000000000000] [09/02/2022 10:22:35] - C:\Windows\Installer\977364.msi : (Blank Project Template - Ask.com) [Header ok : D0CF11E0A1B11AE10000000000000000] [14/01/2022 19:08:55] - C:\Windows\Installer\a065ecb.msi : (AntiLogger Installation - Zemana Ltd.) [Header ok : D0CF11E0A1B11AE10000000000000000] [13/02/2022 01:58:13] - C:\Windows\Installer\ac8bb8.msi : (Adobe AIR Installer - HARMAN International) [Header ok : D0CF11E0A1B11AE10000000000000000] [21/07/2010 03:28:52] - C:\Windows\Installer\cf28c.msi : (MSI Database - Insyde) [Header ok : D0CF11E0A1B11AE10000000000000000] [13/02/2022 03:53:53] - C:\Windows\Installer\e0ac04.msi : (Java Auto Updater - Oracle Corporation) [Header ok : D0CF11E0A1B11AE10000000000000000] [08/09/2020 19:35:00] - C:\Windows\Installer\e0ac0b.msi : ([ProductName] Installer - Apple Inc.) [Header ok : D0CF11E0A1B11AE10000000000000000] [28/06/2011 21:27:28] - [4028928] - (.().-. - ()) - C:\Windows\Installer\63f3bfb.msp [01/07/2010 14:23:00] - [15706112] - (.().-. - ()) - C:\Windows\Installer\7a962.msp [01/07/2010 14:30:29] - [327680] - C:\Windows\Installer\{0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}\ARPPRODUCTICON.exe (Copyright (C) 2008 Acresso Software Inc. and/or InstallShield Co. Inc.) - (InstallShield) [13/02/2022 02:58:36] - [76926] - C:\Windows\Installer\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}\GameForWindowsLiveDash.exe () - () [26/12/2021 12:44:53] - [172032] - C:\Windows\Installer\{523281E5-91DD-49F5-9D85-954148F7596A}\AndroidManager.exe_EDE5AF10CF5B4DA1B61C039E5CAD3FA5.exe (Copyright (C) 2007 Macrovision Corporation) - (InstallShield) [26/12/2021 12:44:53] - [172032] - C:\Windows\Installer\{523281E5-91DD-49F5-9D85-954148F7596A}\AndroidManager.exe_F8F646A2401140B3B12F09FEE59D8357.exe (Copyright (C) 2007 Macrovision Corporation) - (InstallShield) [26/12/2021 12:44:53] - [10134] - C:\Windows\Installer\{523281E5-91DD-49F5-9D85-954148F7596A}\ARPPRODUCTICON.exe () - () [26/12/2021 12:51:33] - [58945] - C:\Windows\Installer\{5DD76286-9BE7-4894-A990-E905E91AC818}\wlmail.exe () - () [01/07/2010 14:29:31] - [327680] - C:\Windows\Installer\{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}\ARPPRODUCTICON.exe (Copyright (C) 2009 Acresso Software Inc. and/or InstallShield Co. Inc.) - (InstallShield) [26/12/2021 12:51:02] - [80395] - C:\Windows\Installer\{770F1BEC-2871-4E70-B837-FB8525FFA3B1}\MsblIco.Exe () - () [26/12/2021 12:50:17] - [62304] - C:\Windows\Installer\{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}\IconWlc.exe (Copyright © 2008 Microsoft Corporation.) - (start phone dialer through Messenger) [09/02/2022 10:23:27] - [102400] - C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}\ARPPRODUCTICON.exe (Copyright (C) 2009 Acresso Software Inc. and/or InstallShield Co. Inc.) - (InstallShield) [14/01/2022 21:02:42] - [9662] - C:\Windows\Installer\{96508F93-3C9C-4C8F-BB34-E22EAF8F57A0}\_112D608FD02CD87FDC7735.exe () - () [14/01/2022 21:02:42] - [9662] - C:\Windows\Installer\{96508F93-3C9C-4C8F-BB34-E22EAF8F57A0}\_796A4C95475121D49EC7EA.exe () - () [14/01/2022 21:02:42] - [9662] - C:\Windows\Installer\{96508F93-3C9C-4C8F-BB34-E22EAF8F57A0}\_853F67D554F05449430E7E.exe () - () [14/01/2022 21:02:42] - [9662] - C:\Windows\Installer\{96508F93-3C9C-4C8F-BB34-E22EAF8F57A0}\_C7E216AAA0502ED48A4C6A.exe () - () [14/01/2022 21:02:42] - [10134] - C:\Windows\Installer\{96508F93-3C9C-4C8F-BB34-E22EAF8F57A0}\_D81C648FEF20190689F1EF.exe () - () [26/12/2021 12:52:11] - [132096] - C:\Windows\Installer\{B131E59D-202C-43C6-84C9-68F0C37541F1}\WLXPhotoGalleryIcon.exe (© 2008 Microsoft Corporation.) - (Windows Live Photo Gallery) [01/07/2010 14:31:20] - [327680] - C:\Windows\Installer\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}\ARPPRODUCTICON.exe (Copyright (C) 2009 Acresso Software Inc. and/or InstallShield Co. Inc.) - (InstallShield) [14/01/2022 13:59:00] - [348160] - C:\Windows\Installer\{C5007AAF-97B9-48B9-9068-D642A67D9732}\ARPPRODUCTICON.exe (Copyright (c) 2012 Flexera Software LLC.) - (InstallShield) [14/01/2022 13:59:01] - [348160] - C:\Windows\Installer\{C5007AAF-97B9-48B9-9068-D642A67D9732}\NewShortcut3_584C5294D2C64C45B426917F688B2604.exe (Copyright (c) 2012 Flexera Software LLC.) - (InstallShield) [14/01/2022 13:59:01] - [348160] - C:\Windows\Installer\{C5007AAF-97B9-48B9-9068-D642A67D9732}\NewShortcut5_E24AD543AE64432E9EAE7313733FEB8F.exe (Copyright (c) 2012 Flexera Software LLC.) - (InstallShield) [13/02/2022 02:59:39] - [894] - C:\Windows\Installer\{F2508213-9989-4E85-A078-72BE483917EF}\GameForWindowsLiveRedist.exe () - () ---------- | %System%\*.in* [14/07/2009 05:42:29] - [73] - C:\Windows\System32\desktop.ini [13/02/2022 01:42:14] - [15330] - C:\Windows\System32\GeneStor.INF [13/07/2009 23:38:23] - [71951] - C:\Windows\System32\ieuinit.inf [14/07/2009 05:42:26] - [535] - C:\Windows\System32\mapisvc.inf [01/07/2010 13:31:04] - [1533294] - C:\Windows\System32\PerfStringBackup.INI [12/02/2022 23:42:43] - [57] - C:\Windows\System32\setupepmdrv.ini [09/02/2022 10:20:49] - [439] - C:\Windows\System32\shfolder.inf [10/06/2009 22:39:59] - [60124] - C:\Windows\System32\tcpmon.ini ---------- | Listing no Microsoft signed files (Not necessary Malwares) | system32 | Syswow64 | General scan [MD5.D41D8CD98F00B204E9800998ECF8427E] - |N| - [06/02/2022 20:35:32] - (.-.) - [0 Ko] - (0.0.0.0) - C:\Windows\Temp\dsiwmis.log [MD5.00000000000000000000000000000000] - |D| - [26/12/2021 21:10:35] - [0 Ko] - C:\Windows\System32\040C [MD5.A174D5B800058CF284C17A9500664069] - |A| - [14/07/2009 05:34:15] - (.-.) - [9.47 Ko] - (0.0.0.0) - C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [MD5.A174D5B800058CF284C17A9500664069] - |A| - [14/07/2009 05:34:15] - (.-.) - [9.47 Ko] - (0.0.0.0) - C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [MD5.23389D87C50444340F34C4A34E37F0D9] - |A| - [13/02/2022 06:51:50] - (.-.) - [0.1 Ko] - (0.0.0.0) - C:\Windows\System32\AbBakConfig.dat [MD5.FC726DD94F4DD4028A976FCC4DBF0C43] - |A| - [13/02/2022 03:40:04] - (.Copyright © 2003-2012 by fccHandler - AC-3 ACM Codec.) - [120 Ko] - (2.2.0.0) - C:\Windows\System32\ac3acm.acm [MD5.ABD1534A22EA4DBCA06F936028CD35EA] - |A| - [24/12/2009 03:34:08] - (.All rights reserved. - Screen Saver.) - [442.53 Ko] - (1.0.1.0) - C:\Windows\System32\Acer.scr [MD5.5FD6A5E341F8DF32141ED0CBFAD92311] - |A| - [01/02/2022 16:11:01] - (.-.) - [192.72 Ko] - (0.0.0.0) - C:\Windows\System32\AcpiServiceVnA.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [2912.5 Ko] - C:\Windows\System32\AdvancedInstallers [MD5.3DD8E9D75ED96837877F072C4B8D38A3] - |A| - [13/02/2022 06:03:12] - (.-.) - [45.8 Ko] - (0.0.0.0) - C:\Windows\System32\ambakdrv.sys [MD5.DC757B26540EED98D38908B12E276653] - |A| - [13/02/2022 06:03:21] - (.-.) - [146.67 Ko] - (0.0.0.0) - C:\Windows\System32\ammntdrv.sys [MD5.12F9554C965A20215596F42DA0BE8B1F] - |A| - [12/02/2022 23:54:27] - (.-.) - [34.92 Ko] - (0.0.0.0) - C:\Windows\System32\ampa.sys [MD5.774C164E2E7E7BE88399718D1A8CB66D] - |A| - [13/02/2022 06:03:21] - (.-.) - [34.05 Ko] - (0.0.0.0) - C:\Windows\System32\amwrtdrv.sys [MD5.B9C2EB1291BACAF8D979D7DF06D1E4EE] - |A| - [09/02/2022 10:20:51] - (.Copyright © 1999 Stardock Systems, Inc - Animation Core.) - [33.17 Ko] - (3.1.0.0) - C:\Windows\System32\anim.dll [MD5.8AAD333C876590293F72B315E162BCC7] - |A| - [13/07/2009 22:40:41] - (.-.) - [8.82 Ko] - (0.0.0.0) - C:\Windows\System32\ANSI.SYS [MD5.D753EEE17725526A67ACDDAA5D63EF68] - |A| - [13/07/2009 22:40:49] - (.-.) - [12.21 Ko] - (0.0.0.0) - C:\Windows\System32\append.exe [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [201.5 Ko] - C:\Windows\System32\ar-SA [MD5.00000000000000000000000000000000] - |D| - [26/12/2021 12:32:11] - [80.54 Ko] - C:\Windows\System32\Atheros_L1e [MD5.02484BB9985CE62B829AFF1F79F74512] - |A| - [01/02/2022 16:11:01] - (.-.) - [94.25 Ko] - (0.0.0.0) - C:\Windows\System32\audioLibVc.dll [MD5.30475F091008E24550523515A023270D] - |A| - [14/07/2009 03:04:04] - (.-.) - [1.65 Ko] - (0.0.0.0) - C:\Windows\System32\autoexec.nt [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [173 Ko] - C:\Windows\System32\bg-BG [MD5.84BDB1E378591D930482B896A1648C53] - |A| - [10/06/2009 22:42:54] - (.-.) - [27.75 Ko] - (0.0.0.0) - C:\Windows\System32\bios1.rom [MD5.B44C4C9CA9D4BCC8430F3276576F562B] - |A| - [13/07/2009 22:30:26] - (.-.) - [8 Ko] - (0.0.0.0) - C:\Windows\System32\bios4.rom [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [992.98 Ko] - C:\Windows\System32\Boot [MD5.BB6249EEAA59D02108630BB3F62FDDA5] - |A| - [12/02/2022 23:42:42] - (.-.) - [3901.13 Ko] - (0.0.0.0) - C:\Windows\System32\BootMan.exe [MD5.278EE111CB021686C7BDB45C12EAC6E2] - |A| - [14/07/2009 01:59:14] - (.Copyright(C)Brother Industries Ltd.1997-2006 - Brother Multi Function CoInstaller.) - [17 Ko] - (1.0.0.20) - C:\Windows\System32\brcoinst.dll [MD5.D1E5E5826ECB8F87BDB0CF9E28B48465] - |A| - [14/07/2009 00:51:43] - (.Copyright (C) 2008 - Gestionnaire de contexte pour reseau personnel Bluetooth.) - [72 Ko] - (1.0.0.1) - C:\Windows\System32\BthpanContextHandler.dll [MD5.40DF43CA1A8752CAA135E27DCC6645B3] - |A| - [14/07/2009 00:41:26] - (.Copyright (C) 2006 - CardGames Resources.) - [6068.5 Ko] - (1.0.0.1) - C:\Windows\System32\CardGames.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [22776.3 Ko] - C:\Windows\System32\catroot [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [12248.17 Ko] - C:\Windows\System32\catroot2 [MD5.404E597579707E0C2897F5743C28ACBB] - |A| - [14/01/2022 10:50:24] - (.Copyright (c) 2020 Callback Technologies, Inc. - - Message definitions for event logging (no code).) - [11.26 Ko] - (20.0.7663.0) - C:\Windows\System32\cbfilterevtmsg.dll [MD5.43DFE8A8812A78F97082DAACBDF1FB72] - |A| - [14/01/2022 10:50:30] - (.Copyright (c) 2020 Callback Technologies, Inc. - - Message definitions for event logging (no code).) - [11.26 Ko] - (20.0.7663.0) - C:\Windows\System32\cbprocessevtmsg.dll [MD5.7241DCBAB33FF2C6A3EA211E3F095BE3] - |A| - [14/01/2022 10:50:34] - (.Copyright (c) 2020 Callback Technologies, Inc. - - Message definitions for event logging (no code).) - [11.26 Ko] - (20.0.7663.0) - C:\Windows\System32\cbregistryevtmsg.dll [MD5.00000000000000000000000000000000] - |D| - [13/02/2022 15:23:23] - [2195.94 Ko] - C:\Windows\System32\CleanLog [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [1927.67 Ko] - C:\Windows\System32\CodeIntegrity [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [302.5 Ko] - C:\Windows\System32\com [MD5.BA597F9A4BB90F038266CE1A3C3BE3FB] - |A| - [13/07/2009 22:40:48] - (.-.) - [49.46 Ko] - (0.0.0.0) - C:\Windows\System32\COMMAND.COM [MD5.700DD454497204DD196494A6D29D947E] - |A| - [01/02/2022 16:11:03] - (.2013 © Real Sound Lab SIA, iSoft Solutions - CONEQ™ Media Suite APO GUI Library.) - [98.86 Ko] - (1.0.0.4) - C:\Windows\System32\CONEQMSAPOGUILibrary.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [186166.17 Ko] - C:\Windows\System32\config [MD5.01C47C2ECED034EF6F8C1552A97CFF00] - |A| - [14/07/2009 03:04:04] - (.-.) - [2.52 Ko] - (0.0.0.0) - C:\Windows\System32\config.nt [MD5.0FE9F16075C9ACB941C957B7C649176E] - |A| - [13/07/2009 22:40:44] - (.-.) - [26.46 Ko] - (0.0.0.0) - C:\Windows\System32\country.sys [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [219.5 Ko] - C:\Windows\System32\cs-CZ [MD5.01B8B690C6F6AFD4686B880C29F93060] - |A| - [01/07/2010 13:58:06] - (.Copyright 2008 - CSVer.) - [52 Ko] - (9.1.1.1025) - C:\Windows\System32\CSVer.dll [MD5.1FF104ED4F6E5D912459FD9184006269] - |A| - [19/01/2022 10:55:07] - (.© Smart Game Booster. - D3DX8Wra Dynamic Link Library.) - [271.55 Ko] - (3.0.0.0) - C:\Windows\System32\D3DX8Wrapper.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [216 Ko] - C:\Windows\System32\da-DK [MD5.00000000000000000000000000000000] - |D| - [01/02/2022 16:14:46] - [12783.29 Ko] - C:\Windows\System32\DAX2 [MD5.00000000000000000000000000000000] - |D| - [01/02/2022 16:14:48] - [9619.29 Ko] - C:\Windows\System32\DAX3 [MD5.B40BBF66375014BF276DB668AC59F918] - |A| - [01/02/2022 16:11:05] - (.© 2017 Dolby Laboratories, Inc. - Dolby DAX APO Property Page.) - [1220.94 Ko] - (1.1.7.13) - C:\Windows\System32\DAX3APOProp.dll [MD5.277CEE318A2713387A3FBB34D4BCE28B] - |A| - [01/02/2022 16:11:05] - (.© 2017 Dolby Laboratories, Inc. - Dolby DAX APO.) - [1226.65 Ko] - (1.1.7.13) - C:\Windows\System32\DAX3APOv251.dll [MD5.877B7E3E7C3574DE6A4C4E890EABDC4F] - |A| - [12/02/2022 23:55:57] - (.-.) - [32.42 Ko] - (0.0.0.0) - C:\Windows\System32\ddmdrv.sys [MD5.17EFD02098C47564660D7F50ED736328] - |A| - [01/02/2022 16:11:05] - (.©2014 Dolby Laboratories. - Dolby Digital Plus API x86.) - [232.3 Ko] - (7.6.5.1) - C:\Windows\System32\DDPA32.dll [MD5.987071D40A56ADEBC85CFC92D0A106FA] - |A| - [01/02/2022 16:11:05] - (.©2014 Dolby Laboratories. - Dolby Digital Plus COM DLL x86.) - [1482.2 Ko] - (7.6.5.1) - C:\Windows\System32\DDPD32A.dll [MD5.E5D7EDD7ADC9D70CFED50E607BE37DED] - |A| - [01/02/2022 16:11:05] - (.©2014 Dolby Laboratories. - Dolby Digital Plus APO x86.) - [284.27 Ko] - (7.6.5.1) - C:\Windows\System32\DDPO32A.dll [MD5.A0DE22D5FAF381E2A9C805BE134F6038] - |A| - [01/02/2022 16:11:05] - (.©2014 Dolby Laboratories. - Dolby DS1PC Control Panel x86.) - [6893.7 Ko] - (7.6.5.1) - C:\Windows\System32\DDPP32A.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [240.5 Ko] - C:\Windows\System32\de-DE [MD5.C17AFA0AAD78C621F818DD6729572C48] - |A| - [13/07/2009 22:40:52] - (.-.) - [20.15 Ko] - (0.0.0.0) - C:\Windows\System32\debug.exe [MD5.079B8AEB4A55BF8493BD1EC70285D920] - |ASH| - [14/07/2009 05:42:29] - (.-.) - [0.07 Ko] - (0.0.0.0) - C:\Windows\System32\desktop.ini [MD5.4A75292A737477F2D803EF10A8E4E6BF] - |A| - [13/02/2022 04:53:53] - (.Copyright (C) 2005-2009, mst software GmbH. - mst Defrag SDK Boot.) - [27.5 Ko] - (3.6.0.6165) - C:\Windows\System32\DfSdkBt.exe [MD5.00000000000000000000000000000000] - |D| - [05/02/2022 08:03:40] - [98.14 Ko] - C:\Windows\System32\directx [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:07] - [3357 Ko] - C:\Windows\System32\Dism [MD5.9710E7A63F948CB5F15721C5CEA4F7F8] - |A| - [01/02/2022 16:11:06] - (.© 2018 Dolby Laboratories, Inc. - Dolby DAX2 APO Property Page.) - [1026.42 Ko] - (0.8.8.33) - C:\Windows\System32\DolbyDAX2APOProp.dll [MD5.E2E1B769885FC4D65C5261BE649643DA] - |A| - [01/02/2022 16:11:06] - (.© 2018 Dolby Laboratories, Inc. - Dolby DAX2 APO.) - [1782.05 Ko] - (0.8.8.33) - C:\Windows\System32\DolbyDAX2APOv201.dll [MD5.5B8894D1C5641A366660E256268DBF80] - |A| - [01/02/2022 16:11:06] - (.© 2018 Dolby Laboratories, Inc. - Dolby DAX2 APO.) - [4144.66 Ko] - (0.8.8.33) - C:\Windows\System32\DolbyDAX2APOv211.dll [MD5.7F1CB0617FFC1B0F2CF489015D78D415] - |A| - [01/02/2022 16:11:06] - (.© 2016 Dolby Laboratories, Inc. - Dolby DAX2 APO.) - [1012.25 Ko] - (1.6.1.53) - C:\Windows\System32\DolbyDAX2APOvlldp.dll [MD5.6E6CC8F1F71F93B7363A03C9762D7DE0] - |A| - [13/07/2009 22:41:56] - (.-.) - [52.3 Ko] - (0.0.0.0) - C:\Windows\System32\dosx.exe [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [102072.89 Ko] - C:\Windows\System32\drivers [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [1046480.87 Ko] - C:\Windows\System32\DriverStore [MD5.808323797FE50665F02E398C4A830DAD] - |A| - [01/02/2022 16:11:06] - (.(c) DTS. - DTS Bass Enhancement COM DLL.) - [660.97 Ko] - (1.0.0.1) - C:\Windows\System32\DTSBassEnhancementDLL.dll [MD5.C466135D6B3C2C730BB26E9AF89329FB] - |A| - [01/02/2022 16:11:06] - (.(c) DTS. - DTS Boost COM DLL.) - [1217.82 Ko] - (1.0.0.1) - C:\Windows\System32\DTSBoostDLL.dll [MD5.60BCA1B4C8E227FBD90CBB86CDB47312] - |A| - [01/02/2022 16:11:06] - (.(c) DTS. - DTS Gain Compensator COM DLL.) - [399.72 Ko] - (1.0.0.1) - C:\Windows\System32\DTSGainCompensatorDLL.dll [MD5.41B95F075B131D8BC81915D29B9C97FD] - |A| - [01/02/2022 16:11:06] - (.(c) DTS. - DTS GFX APO.) - [231.27 Ko] - (1.0.0.3) - C:\Windows\System32\DTSGFXAPO.dll [MD5.ECA5AAA2F9C66336DEF9E28DED3F5476] - |A| - [01/02/2022 16:11:06] - (.(c) DTS. - DTS GFX APO.) - [231.27 Ko] - (1.0.0.3) - C:\Windows\System32\DTSGFXAPONS.dll [MD5.98E8067979B88ED4EB7F07829D528A73] - |A| - [01/02/2022 16:11:06] - (.(c) DTS. - DTS LFX APO.) - [230.74 Ko] - (1.0.0.3) - C:\Windows\System32\DTSLFXAPO.dll [MD5.6C831958F206D05A3BCA002AF4E37A83] - |A| - [01/02/2022 16:11:06] - (.(c) DTS. - DTS Limiter COM DLL.) - [385.61 Ko] - (1.0.0.1) - C:\Windows\System32\DTSLimiterDLL.dll [MD5.B87F23426A131D482CB7C1A3B91567FB] - |A| - [01/02/2022 16:11:06] - (.(c) DTS. - DTS NEO:PC COM DLL.) - [467.31 Ko] - (1.0.0.1) - C:\Windows\System32\DTSNeoPCDLL.dll [MD5.DF0EC320059B7FFA9B1B8FA9C1BBFF8C] - |A| - [01/02/2022 16:11:06] - (.(c) DTS. - DTS Surround Sensation Headphone COM DLL.) - [1289.41 Ko] - (1.0.0.1) - C:\Windows\System32\DTSS2HeadphoneDLL.dll [MD5.2C62EA6A6C93C03FCF4892766BD8E1BD] - |A| - [01/02/2022 16:11:07] - (.(c) DTS. - DTS Surround Sensation Speaker COM DLL.) - [1502.85 Ko] - (1.0.0.1) - C:\Windows\System32\DTSS2SpeakerDLL.dll [MD5.9C0E7E216D9BCD276EBA8AC4E9D8EC72] - |A| - [01/02/2022 16:11:07] - (.(c) DTS. - DTS Symmetry COM DLL.) - [637.76 Ko] - (1.0.0.1) - C:\Windows\System32\DTSSymmetryDLL.dll [MD5.1C86F726F613C912097B0E92E01916F7] - |A| - [01/02/2022 16:11:07] - (.(c) DTS. - DTS Voice Clarity COM DLL.) - [608.51 Ko] - (1.0.0.1) - C:\Windows\System32\DTSVoiceClarityDLL.dll [MD5.F6E368E10B600836DD349FF937B183A2] - |A| - [10/06/2009 22:42:32] - (.-.) - [68.25 Ko] - (0.0.0.0) - C:\Windows\System32\edit.com [MD5.8AA8DCC96FA0492E3B5D415537FAB8FE] - |A| - [10/06/2009 22:42:32] - (.-.) - [10.54 Ko] - (0.0.0.0) - C:\Windows\System32\EDIT.HLP [MD5.B7A0AA49CBB604B2C3A42A49C36D8A4F] - |A| - [13/07/2009 22:40:50] - (.-.) - [12.35 Ko] - (0.0.0.0) - C:\Windows\System32\edlin.exe [MD5.52E91EAC2F3175B1A5B0150382B6D771] - |A| - [13/07/2009 21:31:17] - (.-.) - [124.23 Ko] - (0.0.0.0) - C:\Windows\System32\ega.cpi [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [240.5 Ko] - C:\Windows\System32\el-GR [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [209.5 Ko] - C:\Windows\System32\en-US [MD5.E82219FE1E0C99374D0941BA74F191ED] - |A| - [12/02/2022 23:42:43] - (.-.) - [23.13 Ko] - (0.0.0.0) - C:\Windows\System32\epmdkdrv.sys [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [230 Ko] - C:\Windows\System32\es-ES [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [160.5 Ko] - C:\Windows\System32\et-EE [MD5.165F246E51EA4745A56BA2A11214132A] - |A| - [12/02/2022 23:42:42] - (.-.) - [24.13 Ko] - (0.0.0.0) - C:\Windows\System32\EuEpmGdi.dll [MD5.E038B61DBA4BF91C1E21E3D44B3F05A5] - |A| - [12/02/2022 23:42:43] - (.-.) - [13.51 Ko] - (0.0.0.0) - C:\Windows\System32\EuGdiDrv.sys [MD5.683626544E81387771ED55E1A0F2047B] - |A| - [13/07/2009 22:40:51] - (.-.) - [8.23 Ko] - (0.0.0.0) - C:\Windows\System32\exe2bin.exe [MD5.68062C0ECE86AB7801B5B47FDC855A06] - |A| - [13/07/2009 22:41:02] - (.-.) - [0.86 Ko] - (0.0.0.0) - C:\Windows\System32\fastopen.exe [MD5.0554D656B9DCAE7E3DA72659DFACB67A] - |A| - [13/02/2022 03:40:20] - (.Copyright © 2002-2013 - ffdshow VFW.) - [109.5 Ko] - (1.3.4533.0) - C:\Windows\System32\ff_vfw.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [218 Ko] - C:\Windows\System32\fi-FI [MD5.7521A82ACB4568B7304FB7CDDA7A8C94] - |A| - [14/07/2009 05:33:53] - (.-.) - [253.21 Ko] - (0.0.0.0) - C:\Windows\System32\FNTCACHE.DAT [MD5.00000000000000000000000000000000] - |D| - [26/12/2021 21:10:35] - [1840 Ko] - C:\Windows\System32\fr [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [38074.58 Ko] - C:\Windows\System32\fr-FR [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 05:52:30] - [0 Ko] - C:\Windows\System32\FxsTmp [MD5.2AE808CB0D9A667B0CF41EA74B3B9BAC] - |A| - [10/06/2009 22:19:05] - (.-.) - [39.6 Ko] - (0.0.0.0) - C:\Windows\System32\gatherNetworkInfo.vbs [MD5.4309FEDEEC3937DA065E74CBDF29F9FD] - |A| - [13/02/2022 01:42:14] - (.Copyright c 2003 - GeneIcon.) - [5492 Ko] - (1.2.0.0) - C:\Windows\System32\GeneIcon.dll [MD5.095A0B208264FEBD2CEC3BBB7A273367] - |A| - [13/02/2022 01:42:14] - (.-.) - [14.97 Ko] - (0.0.0.0) - C:\Windows\System32\GeneStor.INF [MD5.6E4E7884E6489AC4F5E6DAB176A73E52] - |A| - [13/07/2009 22:41:01] - (.-.) - [19.23 Ko] - (0.0.0.0) - C:\Windows\System32\GRAPHICS.COM [MD5.BC33AA625D6B807F718627386DF78426] - |A| - [10/06/2009 22:42:32] - (.-.) - [20.73 Ko] - (0.0.0.0) - C:\Windows\System32\graphics.pro [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [0 Ko] - C:\Windows\System32\GroupPolicy [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [0 Ko] - C:\Windows\System32\GroupPolicyUsers [MD5.415AB1A2E5E8DDE4DBB5C3B6CE975761] - |A| - [13/02/2022 01:41:58] - (.Copyright (C) 2014 - GeneStor co-installer.) - [109.45 Ko] - (1.0.0.1) - C:\Windows\System32\GSCoinst.dll [MD5.1B44576495A101EE467B54577D61833A] - |A| - [01/02/2022 16:11:07] - (.(c) 2016 Harman. - Harman APO Interface.) - [127.16 Ko] - (1.2.0.0) - C:\Windows\System32\HarmanAudioInterface.dll [MD5.3E3C1F8E5C85A9BE4956FD58C4D4B4A9] - |A| - [01/02/2022 16:11:07] - (.© 2018 Dolby Laboratories, Inc. - Dolby DAX2 HiFi API.) - [314.42 Ko] - (0.8.8.85) - C:\Windows\System32\HiFiDAX2API.dll [MD5.B1882A6F8AAF55EA8146136188005D18] - |A| - [01/02/2022 16:11:08] - (.© 2016 Dolby Laboratories, Inc. - Dolby DAX2 HiFi API.) - [320.16 Ko] - (1.6.1.53) - C:\Windows\System32\HiFiDAX2APIPCLL.dll [MD5.E6BC0F98FECEF245A0010D350C1A0B9B] - |A| - [13/07/2009 22:40:40] - (.-.) - [4.66 Ko] - (0.0.0.0) - C:\Windows\System32\HIMEM.SYS [MD5.E2FE6C57366CC77C6FD68E024BF16296] - |A| - [01/02/2022 16:11:08] - (.© Harman. - Audio by Harman APO.) - [354.8 Ko] - (1.4.0.0) - C:\Windows\System32\HMClariFi.dll [MD5.C7AA3BCA8562538CA23A1C37AEAF98F6] - |A| - [01/02/2022 16:11:08] - (.© Harman. - Audio by Harman APO.) - [209.54 Ko] - (1.4.0.0) - C:\Windows\System32\HMEQ.dll [MD5.5B0A52FD32AC946B494323F62EF94090] - |A| - [01/02/2022 16:11:08] - (.© Harman. - Audio by Harman APO.) - [209.54 Ko] - (1.4.0.0) - C:\Windows\System32\HMEQ_Voice.dll [MD5.8B08C6371505FD85AB32B8C99DB7DB7A] - |A| - [01/02/2022 16:11:08] - (.© Harman. - Audio by Harman APO.) - [216.61 Ko] - (1.4.0.0) - C:\Windows\System32\HMHVS.dll [MD5.4BB4D9EC2A4F4A9F3FC6AA74527BD214] - |A| - [01/02/2022 16:11:08] - (.© Harman. - Audio by Harman APO.) - [195.94 Ko] - (1.4.0.0) - C:\Windows\System32\HMLimiter.dll [MD5.6174C868D25D2C47C95EF6AF06E4DC2E] - |A| - [01/02/2022 16:11:08] - (.?Harman. - Audio by Harman APO UI.) - [358.66 Ko] - (1.4.0.0) - C:\Windows\System32\HMUI.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [168 Ko] - C:\Windows\System32\hr-HR [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [221 Ko] - C:\Windows\System32\hu-HU [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [5.36 Ko] - C:\Windows\System32\ias [MD5.FDDB0BBAA9CEB5118D3CAF1E9E70849C] - |A| - [01/02/2022 16:11:08] - (.Copyright (c) 2018, ICEpower a/s - ICEpower ICEsound APO.) - [627.53 Ko] - (1.0.0.32) - C:\Windows\System32\ICEsoundAPO.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [36.27 Ko] - C:\Windows\System32\icsxml [MD5.1A3D8978E92A1844986F19F74B4A53CE] - |A| - [01/07/2010 14:14:40] - (.Copyright (C) 2009 - Intel® Graphics Media Accelerator Driver Coinstaller.) - [152 Ko] - (1.1.17.0) - C:\Windows\System32\igfxCoIn_v2117.dll [MD5.41DC0D5978463FA86C80E9895F4E0179] - |A| - [11/02/2022 14:47:42] - (.Copyright (C) 2009 - Intel® Graphics Media Accelerator Driver Coinstaller.) - [152 Ko] - (1.1.17.0) - C:\Windows\System32\igfxCoIn_v2567.dll [MD5.99AF886F548DFA1AEC9868A8BF0F74FC] - |A| - [01/07/2010 14:14:40] - (.-.) - [1876.24 Ko] - (0.0.0.0) - C:\Windows\System32\iglhxa32.cpa [MD5.7FEF5563D091D8A44B96DD4EBE0350AA] - |A| - [01/07/2010 14:14:40] - (.-.) - [1.06 Ko] - (0.0.0.0) - C:\Windows\System32\iglhxa32.vp [MD5.A16E966DEBE65033E703CA9514753E11] - |A| - [01/07/2010 14:14:40] - (.-.) - [58.81 Ko] - (0.0.0.0) - C:\Windows\System32\iglhxc32.vp [MD5.251D22DE1DF611739E4D0C7BAB2E80D6] - |A| - [01/07/2010 14:14:40] - (.-.) - [58.84 Ko] - (0.0.0.0) - C:\Windows\System32\iglhxg32.vp [MD5.CB4DCAF11675F52D39035BCEE14ABA77] - |A| - [01/07/2010 14:14:40] - (.-.) - [58.61 Ko] - (0.0.0.0) - C:\Windows\System32\iglhxo32.vp [MD5.0BE615F69D3F98AD987056EDCBD939F4] - |A| - [11/02/2022 14:47:40] - (.-.) - [38.62 Ko] - (0.0.0.0) - C:\Windows\System32\iglhxs32.vp [MD5.63D2B014282D833076FF39F8BCB2CDCB] - |A| - [26/12/2021 12:21:05] - (.Copyright © 2010 - Intel® Graphics Media Accelerator Driver installer.) - [982.52 Ko] - (1.1.36.0) - C:\Windows\System32\igxpun.exe [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [34094.94 Ko] - C:\Windows\System32\IME [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [0 Ko] - C:\Windows\System32\inetsrv [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [235 Ko] - C:\Windows\System32\it-IT [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [163 Ko] - C:\Windows\System32\ja-JP [MD5.4D7E256377A5E934EA1820B2CEA79131] - |A| - [13/07/2009 22:40:59] - (.-.) - [14.37 Ko] - (0.0.0.0) - C:\Windows\System32\KB16.COM [MD5.492090267B9608C62B956CD29BE3AFB7] - |A| - [13/07/2009 22:40:43] - (.-.) - [41.81 Ko] - (0.0.0.0) - C:\Windows\System32\KEY01.SYS [MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - |A| - [13/07/2009 22:40:43] - (.-.) - [41.54 Ko] - (0.0.0.0) - C:\Windows\System32\KEYBOARD.SYS [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [162 Ko] - C:\Windows\System32\ko-KR [MD5.C1B7AB03AC2F3C990A40BC2E18E02CF1] - |A| - [14/07/2009 03:05:05] - (.-.) - [11687.04 Ko] - (0.0.0.0) - C:\Windows\System32\korwbrkr.lex [MD5.FA425C74CE2EB719B2A77A7A2ADDAE32] - |A| - [13/02/2022 03:40:04] - (.Copyright © 2011 - Lagarith.) - [211 Ko] - (1.3.27.0) - C:\Windows\System32\lagarith.dll [MD5.00000000000000000000000000000000] - |D| - [26/12/2021 12:21:06] - [84 Ko] - C:\Windows\System32\Lang [MD5.BD8A1A84554D33B20E2E0DB68D9B7802] - |AC| - [03/02/2022 13:38:27] - (.Copyright 1998-2020 The OpenSSL Authors. - OpenSSL library.) - [2458 Ko] - (1.1.1.6) - C:\Windows\System32\libcrypto-1_1.dll [MD5.8C7F9F7040D518D323732DE6FABE934E] - |AC| - [03/02/2022 13:38:29] - (.Copyright © 1998-2005 The OpenSSL Project. Copyright © 1995-1998 Eric A. Young, Tim J. Hudson. - OpenSSL Shared Library.) - [1247 Ko] - (1.0.2.21) - C:\Windows\System32\libeay32.dll [MD5.F81EB2DB0483D754610A8F2E72C1F60D] - |AC| - [03/02/2022 13:38:29] - (.Copyright 1998-2020 The OpenSSL Authors. - OpenSSL library.) - [518.5 Ko] - (1.1.1.6) - C:\Windows\System32\libssl-1_1.dll [MD5.536460507B20AE0F03D7BEE8111028CF] - |A| - [13/07/2009 22:40:57] - (.-.) - [1.1 Ko] - (0.0.0.0) - C:\Windows\System32\LOADFIX.COM [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [640.01 Ko] - C:\Windows\System32\LogFiles [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [165 Ko] - C:\Windows\System32\lt-LT [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [166 Ko] - C:\Windows\System32\lv-LV [MD5.00000000000000000000000000000000] - |D| - [01/07/2010 14:34:25] - [62860.39 Ko] - C:\Windows\System32\Macromed [MD5.7A495CA1402C2F9F5D035092AD808669] - |A| - [13/07/2009 21:22:04] - (.-.) - [0.85 Ko] - (0.0.0.0) - C:\Windows\System32\manage-bde.wsf [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [2029.79 Ko] - C:\Windows\System32\manifeststore [MD5.98071B6EE16AA76DABFF377A5DC69C86] - |A| - [14/07/2009 05:42:26] - (.-.) - [0.52 Ko] - (0.0.0.0) - C:\Windows\System32\mapisvc.inf [MD5.84AB243EBB8839C268BA45975BD6558C] - |A| - [01/07/2010 14:06:27] - (.© Waves Audio Ltd. - MaxxAudio APO.) - [129.27 Ko] - (1.2.2.0) - C:\Windows\System32\MaxxAudioAPO.dll [MD5.08DC72FF7E209B748936ADA6124362B8] - |A| - [01/07/2010 14:06:27] - (.© Waves Audio Ltd. - MaxxAudio APO.) - [227.34 Ko] - (2.2.8.0) - C:\Windows\System32\MaxxAudioAPO20.dll [MD5.3AAA42CE4BA338360F118F9A8351E836] - |A| - [01/07/2010 14:06:27] - (.© Waves Audio Ltd. - MaxxAudio APO.) - [247.84 Ko] - (3.1.0.0) - C:\Windows\System32\MaxxAudioAPO30.dll [MD5.F678031A1EF7C96DB09AE9F0DDB7F88E] - |A| - [01/07/2010 14:06:27] - (.Copyright © 1996-2007 -.) - [1893.27 Ko] - (5.9.7.0) - C:\Windows\System32\MaxxAudioEQ.dll [MD5.03E8C843A159C79E2CBC49F25D8595FA] - |A| - [01/07/2010 14:06:27] - (.Copyright A© 1996-2008 -.) - [1285.34 Ko] - (1.0.0.0) - C:\Windows\System32\MaxxAudioRealtek.dll [MD5.6C75723CB2309D23A3A16EF9F45B2F49] - |A| - [01/07/2010 14:06:27] - (.© Waves Audio Ltd. - MaxxVolumeSD APO.) - [246.84 Ko] - (3.1.0.0) - C:\Windows\System32\MaxxVolumeSDAPO.dll [MD5.390762963E6B4C861E5E0CA5A3E56E40] - |A| - [13/07/2009 22:40:56] - (.-.) - [38.35 Ko] - (0.0.0.0) - C:\Windows\System32\mem.exe [MD5.00000000000000000000000000000000] - |SD| - [14/07/2009 05:34:06] - [2.33 Ko] - C:\Windows\System32\Microsoft [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [3123 Ko] - C:\Windows\System32\migration [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [32625.46 Ko] - C:\Windows\System32\migwiz [MD5.A311363F3C887D8C3A524A51B7F20D69] - |A| - [14/07/2009 05:42:29] - (.-.) - [1.21 Ko] - (0.0.0.0) - C:\Windows\System32\migwiz.lnk [MD5.52C7505D68C3CE8496EC8DC17D8FF75A] - |A| - [13/07/2009 22:41:05] - (.-.) - [0.7 Ko] - (0.0.0.0) - C:\Windows\System32\mscdexnt.exe [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [4148.28 Ko] - C:\Windows\System32\Msdtc [MD5.DF252F37880142ED5574C2BE4DADF5A7] - |AC| - [03/02/2022 13:39:17] - (.-.) - [206 Ko] - (0.0.0.0) - C:\Windows\System32\msvcrt10.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [24.16 Ko] - C:\Windows\System32\MUI [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [212 Ko] - C:\Windows\System32\nb-NO [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [0 Ko] - C:\Windows\System32\NDF [MD5.CD48AD912839B9FB6CCA5D4AA9B37500] - |A| - [13/07/2009 23:10:48] - (.-.) - [21.3 Ko] - (0.0.0.0) - C:\Windows\System32\NetTrace.PLA.Diagnostics.xml [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [68 Ko] - C:\Windows\System32\NetworkList [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [229 Ko] - C:\Windows\System32\nl-NL [MD5.5E835121A3899CFA37E285E0CA2B4E7D] - |A| - [13/07/2009 22:40:57] - (.-.) - [6.89 Ko] - (0.0.0.0) - C:\Windows\System32\nlsfunc.exe [MD5.1C96B3DA6ABE5E18B63C64DF75884F6A] - |A| - [14/07/2009 03:05:05] - (.-.) - [1.45 Ko] - (0.0.0.0) - C:\Windows\System32\noise.kor [MD5.FFFF296A08DBF2AC0126C62E3778AC0D] - |A| - [13/07/2009 22:40:23] - (.-.) - [27.21 Ko] - (0.0.0.0) - C:\Windows\System32\NTDOS.SYS [MD5.CF9ED169FF86D935E47999E82359E898] - |A| - [13/07/2009 22:40:31] - (.-.) - [28.46 Ko] - (0.0.0.0) - C:\Windows\System32\NTDOS404.SYS [MD5.03B945AC0481CD8BB161C3569D8ED1C3] - |A| - [13/07/2009 22:40:35] - (.-.) - [28.68 Ko] - (0.0.0.0) - C:\Windows\System32\NTDOS411.SYS [MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - |A| - [13/07/2009 22:40:39] - (.-.) - [28.59 Ko] - (0.0.0.0) - C:\Windows\System32\NTDOS412.SYS [MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - |A| - [13/07/2009 22:40:27] - (.-.) - [28.46 Ko] - (0.0.0.0) - C:\Windows\System32\NTDOS804.SYS [MD5.2E4112FB7D1B76E11ADFD7487B5D0E95] - |A| - [13/07/2009 22:40:11] - (.-.) - [33.16 Ko] - (0.0.0.0) - C:\Windows\System32\NTIO.SYS [MD5.A98EBD4C2DF983665BF2D1AF49949974] - |A| - [13/07/2009 22:40:15] - (.-.) - [33.86 Ko] - (0.0.0.0) - C:\Windows\System32\NTIO404.SYS [MD5.3F7E6406EDEF197C5CAAB2240EEF6F48] - |A| - [13/07/2009 22:40:17] - (.-.) - [34.94 Ko] - (0.0.0.0) - C:\Windows\System32\NTIO411.SYS [MD5.3E64D681B776CC57BDC38A46D881F85B] - |A| - [13/07/2009 22:40:19] - (.-.) - [34.7 Ko] - (0.0.0.0) - C:\Windows\System32\NTIO412.SYS [MD5.D86B6435729231C171432B4E77801BDB] - |A| - [13/07/2009 22:40:13] - (.-.) - [33.86 Ko] - (0.0.0.0) - C:\Windows\System32\NTIO804.SYS [MD5.00000000000000000000000000000000] - |D| - [12/07/2007 02:51:18] - [1484.95 Ko] - C:\Windows\System32\OEM [MD5.954AD7BE8D3E69BE52A4DE969128E41A] - |A| - [26/12/2021 13:16:28] - (.-.) - [0.33 Ko] - (0.0.0.0) - C:\Windows\System32\oem_Get_OS_Language.log [MD5.2901049544FDF863362FABA2363EB647] - |A| - [13/07/2009 21:30:24] - (.-.) - [0.82 Ko] - (0.0.0.0) - C:\Windows\System32\onlinesetup.cmd [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [18234.48 Ko] - C:\Windows\System32\oobe [MD5.663A319D105E14548DBA4C72201876B1] - |AC| - [03/02/2022 13:39:17] - (.Copyright (C) 2000-2006 - Standard OpenAL(TM) Implementation.) - [106.59 Ko] - (6.14.357.25) - C:\Windows\System32\OpenAL32.dll [MD5.79F387BFE802B37E076B500F5450F99B] - |A| - [13/02/2022 01:42:14] - (.-.) - [2.81 Ko] - (0.0.0.0) - C:\Windows\System32\parameter.log [MD5.6576A5769ABE92569565A78AA0E4FFFF] - |A| - [14/07/2009 03:05:48] - (.-.) - [104.94 Ko] - (0.0.0.0) - C:\Windows\System32\perfc009.dat [MD5.078A52B0CF8C73043A7AA5A9DAB2CDB4] - |A| - [26/12/2021 21:11:17] - (.-.) - [124.49 Ko] - (0.0.0.0) - C:\Windows\System32\perfc00C.dat [MD5.B7795BC96C1CEB86E04E8DC843E9C784] - |A| - [10/06/2009 22:17:19] - (.-.) - [113.56 Ko] - (0.0.0.0) - C:\Windows\System32\PerfCenterCpl.ico [MD5.7AAA3E23CE4C7845B112F7A79B110E60] - |A| - [14/07/2009 03:05:48] - (.-.) - [30.81 Ko] - (0.0.0.0) - C:\Windows\System32\perfd009.dat [MD5.07BA000B2E67565BDF112C35171865A5] - |A| - [26/12/2021 21:11:17] - (.-.) - [37.27 Ko] - (0.0.0.0) - C:\Windows\System32\perfd00C.dat [MD5.9B3817982A2A90933B7195CF582DE922] - |A| - [14/07/2009 03:05:48] - (.-.) - [596.95 Ko] - (0.0.0.0) - C:\Windows\System32\perfh009.dat [MD5.E92684FC5CE119B5E68605C699E89F8F] - |A| - [26/12/2021 21:11:17] - (.-.) - [678.48 Ko] - (0.0.0.0) - C:\Windows\System32\perfh00C.dat [MD5.C3BCE858570E73BE61987BADD93A8276] - |A| - [01/07/2010 13:31:04] - (.-.) - [1497.36 Ko] - (0.0.0.0) - C:\Windows\System32\PerfStringBackup.INI [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [224 Ko] - C:\Windows\System32\pl-PL [MD5.BC949EA893A9384070C31F083CCEFD26] - |A| - [26/12/2021 12:22:18] - (.-.) - [0 Ko] - (0.0.0.0) - C:\Windows\System32\PLD_Framework.cmd [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 05:56:47] - [420.42 Ko] - C:\Windows\System32\Printing_Admin_Scripts [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [222.5 Ko] - C:\Windows\System32\pt-BR [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [224 Ko] - C:\Windows\System32\pt-PT [MD5.D3CC225ADA0AA3C0A254AF1031C295F0] - |A| - [13/02/2022 04:17:31] - (.Copyright (C) 2001-21 by Tracker Software Products (Canada) Ltd. - PDF-XChange Port Monitor.) - [2188.88 Ko] - (0.3.2306.359) - C:\Windows\System32\pxcpmL.dll [MD5.6377491C5BA89D2893107F5E7606EC4C] - |A| - [01/02/2022 16:11:09] - (.©2012 Dolby Laboratories. - Dolby PCEE4 ASL Analog x86.) - [104.57 Ko] - (7.2.8000.17) - C:\Windows\System32\R4EEA32A.dll [MD5.168DA885C7B2BC7D703DBFBF034DC984] - |A| - [01/02/2022 16:11:09] - (.©2012 Dolby Laboratories. - Dolby PCEE4 COM DLL x86.) - [360.82 Ko] - (7.2.8000.17) - C:\Windows\System32\R4EED32A.dll [MD5.B5F156A6A96752B0DB67D3FA20642009] - |A| - [01/02/2022 16:11:09] - (.©2012 Dolby Laboratories. - Dolby PCEE4 GFX APO x86.) - [75.36 Ko] - (7.2.8000.17) - C:\Windows\System32\R4EEG32A.dll [MD5.CF19882E27732BCA5CA1061ADF4C778C] - |A| - [01/02/2022 16:11:09] - (.©2012 Dolby Laboratories. - Dolby PCEE4 LFX APO x86.) - [119.25 Ko] - (7.2.8000.17) - C:\Windows\System32\R4EEL32A.dll [MD5.57DDB1F938115AC7FD2E7B1B653BB311] - |A| - [01/02/2022 16:11:09] - (.©2012 Dolby Laboratories. - Dolby PCEE4 Control Panel x86.) - [7008.13 Ko] - (7.2.8000.17) - C:\Windows\System32\R4EEP32A.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [23.75 Ko] - C:\Windows\System32\ras [MD5.BBB40CA86B88918864D16CFAC9D4ABA4] - |A| - [13/07/2009 22:41:04] - (.-.) - [2.78 Ko] - (0.0.0.0) - C:\Windows\System32\redir.exe [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 05:52:30] - [0.07 Ko] - C:\Windows\System32\restore [MD5.83FB73099F8300F710FC7453030EF357] - |A| - [26/12/2021 12:24:36] - (.-.) - [13.53 Ko] - (0.0.0.0) - C:\Windows\System32\results.xml [MD5.2D29F9FE62CF037FA24D36BC497081B7] - |A| - [01/02/2022 16:11:10] - (.© 2008,2009 Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x86.) - [305.37 Ko] - (6.0.6001.18) - C:\Windows\System32\RP3DAA32.dll [MD5.D199BE13F7DD0728D5D7B9114D6A48CC] - |A| - [01/02/2022 16:11:10] - (.© 2008,2009 Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x86.) - [305.37 Ko] - (6.0.6001.18) - C:\Windows\System32\RP3DHT32.dll [MD5.00000000000000000000000000000000] - |D| - [01/07/2010 14:07:02] - [2212.37 Ko] - C:\Windows\System32\RTCOM [MD5.27AD1BCF60ECE96D166CA7F351C12142] - |A| - [01/02/2022 16:11:10] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x86.) - [182.31 Ko] - (6.1.6001.33) - C:\Windows\System32\RTEED32A.dll [MD5.03A79FA511A5E8E7767609FE407AD45B] - |A| - [01/02/2022 16:11:10] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x86.) - [77.97 Ko] - (6.1.6001.33) - C:\Windows\System32\RTEEG32A.dll [MD5.19E5C20CCCD6799A4032B1B3FD9DEB32] - |A| - [01/02/2022 16:11:10] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x86.) - [91.54 Ko] - (6.1.6001.33) - C:\Windows\System32\RTEEL32A.dll [MD5.54A609D3B28C49F65B4A1ADD1DEB576F] - |A| - [01/02/2022 16:11:10] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x86.) - [368.43 Ko] - (6.1.6001.33) - C:\Windows\System32\RTEEP32A.dll [MD5.808312EB9EB1F59A135CE0A2A4E9E881] - |A| - [12/02/2022 23:42:43] - (.-.) - [145.63 Ko] - (0.0.0.0) - C:\Windows\System32\setupepmdrv.exe [MD5.46370363EE690D8B7E69DC4A5A9C2C93] - |A| - [12/02/2022 23:42:43] - (.-.) - [0.06 Ko] - (0.0.0.0) - C:\Windows\System32\setupepmdrv.ini [MD5.AD7B906FC883959E56E210B2B077CA00] - |A| - [13/07/2009 22:40:54] - (.-.) - [11.48 Ko] - (0.0.0.0) - C:\Windows\System32\setver.exe [MD5.902EF671E6577D5E572DE435FA55E1AB] - |A| - [01/02/2022 16:11:16] - (.Copyright (c) 2006-2011 Synopsys, Inc. All Rights Reserved - SFAPO.DLL.) - [76.55 Ko] - (3.0.0.16) - C:\Windows\System32\SFAPO.dll [MD5.BCF5C0E0AA3193F9EDD4C34DC3659C34] - |A| - [01/02/2022 16:11:16] - (.Copyright (c) 2006-2011 Synopsys, Inc. All Rights Reserved - SFCOM.DLL.) - [81.59 Ko] - (3.0.0.16) - C:\Windows\System32\SFCOM.dll [MD5.B74604C45E5810E11FB91DBF52297EF1] - |A| - [01/02/2022 16:11:17] - (.Copyright (c) 2006-2011 Synopsys, Inc. All Rights Reserved - SFNHK.DLL.) - [219.68 Ko] - (3.0.0.16) - C:\Windows\System32\SFNHK.dll [MD5.68062C0ECE86AB7801B5B47FDC855A06] - |A| - [13/07/2009 22:41:02] - (.-.) - [0.86 Ko] - (0.0.0.0) - C:\Windows\System32\share.exe [MD5.CF295F9A323B1EC8B196E598636E78E4] - |A| - [09/02/2022 10:20:49] - (.-.) - [0.43 Ko] - (0.0.0.0) - C:\Windows\System32\shfolder.inf [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:08] - [169.5 Ko] - C:\Windows\System32\sk-SK [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [166 Ko] - C:\Windows\System32\sl-SI [MD5.1822124F94117B118B49F7DAA8869716] - |A| - [01/02/2022 16:11:17] - (.Copyright (C) 2018 DTS, Inc. - DTS Universal APO DLL.) - [896.38 Ko] - (3.5.18.0) - C:\Windows\System32\sl3apo32.dll [MD5.33E937D11B9B0B09EE60A74C8F7BCD37] - |A| - [01/02/2022 16:11:17] - (.Copyright (C) 2018 DTS, Inc. - DTS APO Controller DLL.) - [2932.56 Ko] - (3.5.18.0) - C:\Windows\System32\slcnt32.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 05:56:48] - [42.67 Ko] - C:\Windows\System32\slmgr [MD5.BBD05E345EB8F78C8A23165471F15B1F] - |A| - [01/02/2022 16:11:17] - (.TODO: (c) . - TODO: .) - [234.71 Ko] - (1.0.0.1) - C:\Windows\System32\slprp32.dll [MD5.58E0190C8559B18E9C14A393FB4733A8] - |A| - [01/02/2022 16:11:17] - (.Copyright (C) 2018 DTS, Inc. - DTS APO Technology DLL.) - [2640.53 Ko] - (3.5.18.0) - C:\Windows\System32\sltech32.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [8002.02 Ko] - C:\Windows\System32\SMI [MD5.E105496A1A00A847BC2F9913F1DA94A1] - |A| - [26/12/2021 12:41:00] - (.Copyright 2010 - Sonix Property Wrapper.) - [209.38 Ko] - (1.0.1.0) - C:\Windows\System32\Snpropwp.dll [MD5.C74D61FCA22F36791105D7878AF73572] - |A| - [10/06/2009 22:46:53] - (.-.) - [8.09 Ko] - (0.0.0.0) - C:\Windows\System32\spcinstrumentation.man [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [16337.5 Ko] - C:\Windows\System32\Speech [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [20499.03 Ko] - C:\Windows\System32\spool [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [1379.82 Ko] - C:\Windows\System32\spp [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [32.7 Ko] - C:\Windows\System32\sppui [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [170 Ko] - C:\Windows\System32\sr-Latn-CS [MD5.44C16A4DFB42AFE86A7BEB2245ED0B9B] - |A| - [01/02/2022 16:11:17] - (.Copyright (c) 2006-2012 Synopsys, Inc. All Rights Reserved - SRAPO.DLL.) - [391.55 Ko] - (4.0.0.59) - C:\Windows\System32\SRAPO.dll [MD5.282F7693D674D03210E398C9A2A2A04F] - |A| - [01/02/2022 16:11:17] - (.Copyright (c) 2006-2012 Synopsys, Inc. All Rights Reserved - SRCOM.DLL.) - [333.06 Ko] - (4.0.0.59) - C:\Windows\System32\SRCOM.dll [MD5.10791799B7192EAF64B2DB44370D7E24] - |A| - [01/02/2022 16:11:17] - (.Copyright (c) 2006-2012 Synopsys, Inc. All Rights Reserved - SRRPTR.DLL.) - [1048.78 Ko] - (4.0.0.59) - C:\Windows\System32\SRRPTR.dll [MD5.7C36DEFBEF0C56C1EAFE67FA7E57995F] - |A| - [01/02/2022 16:11:18] - (.(c) 2007 SRS Labs, Inc. - COM object implementing SRS Headphone 360.) - [187.75 Ko] - (1.1.0.0) - C:\Windows\System32\SRSHP360.dll [MD5.241AC0CBC5A45C8D13FCD9247255B95B] - |A| - [01/02/2022 16:11:18] - (.Copyright (c) 2006 SRS Labs, Inc.. - TruSurround HD and HD4 COM object for Windows.) - [199.85 Ko] - (1.1.4.0) - C:\Windows\System32\SRSTSHD.dll [MD5.67F81F6702F8D7DC9EC528D228E4CE6C] - |A| - [01/02/2022 16:11:18] - (.Copyright 2002 SRS Labs, Inc. - TruSurroundXT Module.) - [357.23 Ko] - (3.2.0.0) - C:\Windows\System32\SRSTSXT.dll [MD5.0AC08549DE5C631D6AB11AC6F0566C12] - |A| - [01/02/2022 16:11:18] - (.(c) 2006 SRS Labs, Inc. - WOW HD COM object for Windows.) - [155.47 Ko] - (1.1.3.0) - C:\Windows\System32\SRSWOW.dll [MD5.B9CAFAB9D39548DDA98C9013C2450863] - |AC| - [03/02/2022 13:39:17] - (.Copyright © 1998-2005 The OpenSSL Project. Copyright © 1995-1998 Eric A. Young, Tim J. Hudson. - OpenSSL Shared Library.) - [270.5 Ko] - (1.0.2.21) - C:\Windows\System32\ssleay32.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [216.5 Ko] - C:\Windows\System32\sv-SE [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [343.28 Ko] - C:\Windows\System32\sysprep [MD5.0D62530CDCE789F0581834E717E1FFE2] - |A| - [10/06/2009 22:46:40] - (.-.) - [148.94 Ko] - (0.0.0.0) - C:\Windows\System32\systemsf.ebd [MD5.47F22CAD4A16BB40153555D631546B94] - |A| - [10/06/2009 22:39:59] - (.-.) - [58.71 Ko] - (0.0.0.0) - C:\Windows\System32\tcpmon.ini [MD5.5F3470D1AC4D3C715125C9C4FD46C7C7] - |A| - [01/02/2022 16:11:18] - (.Copyright © 2016 Toshiba Client Solutions Co., Ltd. - TOSHIBA Audio Source Filtering APO.) - [776.08 Ko] - (2.1.1.0) - C:\Windows\System32\tosasfapo32.dll [MD5.C9E172B7E7886B7204378AE94C50C931] - |A| - [01/02/2022 16:11:18] - (.Copyright © 2016 Toshiba Client Solutions Co., Ltd. - TOSHIBA Earphone Audio Enhancement APO.) - [381.69 Ko] - (2.1.0.0) - C:\Windows\System32\toseaeapo32.dll [MD5.6BE726BED7EBFA45142D4C7C59A40B32] - |A| - [01/02/2022 16:11:18] - (.Copyright © 2016 Toshiba Client Solutions Co., Ltd. - TOSHIBA Speaker Audio Enhancement APO.) - [1249.24 Ko] - (2.1.1.0) - C:\Windows\System32\tossaeapo32.dll [MD5.7159E12DBCCDC16DB89B064741CBD9D5] - |A| - [01/02/2022 16:11:18] - (.Copyright © 2016 Toshiba Client Solutions Co., Ltd. - TOSHIBA Speaker Audio Enhancement Maximizer.) - [549.14 Ko] - (1.1.2.0) - C:\Windows\System32\tossaemaxapo32.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [212.5 Ko] - C:\Windows\System32\tr-TR [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [166.5 Ko] - C:\Windows\System32\uk-UA [MD5.E9BDFDA1C1067E01CB1594CD552DEBDD] - |A| - [13/02/2022 01:42:14] - (.Copyright (C) 2008 - ChangeIcon MFC Application.) - [24 Ko] - (15.0.0.1) - C:\Windows\System32\UMonit.exe [MD5.2653282D9DC9DB635E03780C02B053D8] - |A| - [14/07/2009 05:34:00] - (.-.) - [21 Ko] - (0.0.0.0) - C:\Windows\System32\umstartup.etl [MD5.132EEA9C6FEE5A7CE43264BF2614F4B7] - |A| - [14/07/2009 05:34:00] - (.-.) - [9 Ko] - (0.0.0.0) - C:\Windows\System32\umstartup000.etl [MD5.AE6808F2810037BFF5B959870D749420] - |A| - [13/02/2022 01:42:14] - (.Copyright 2009 - USB storage device DLL.) - [224 Ko] - (3.0.2.1) - C:\Windows\System32\ustor.dll [MD5.86491AD7BC0964089CD4E703E65D45DB] - |A| - [13/07/2009 22:30:26] - (.-.) - [18.39 Ko] - (0.0.0.0) - C:\Windows\System32\v7vga.rom [MD5.127E75E5A9B93CFA4F964060D6F5BC8D] - |AC| - [03/02/2022 13:39:17] - (.-.) - [264.91 Ko] - (0.0.0.0) - C:\Windows\System32\vbrun100.dll [MD5.15BD0F8D507546F512EE5D73C3721FA8] - |A| - [14/07/2009 03:04:56] - (.Copyright © 2000 - vfpodbc.) - [20.05 Ko] - (1.0.2.0) - C:\Windows\System32\vfpodbc.dll [MD5.05E75F993C7AD2FAECA476B6384615D4] - |A| - [01/07/2010 14:14:09] - (.Copyright (C) 1999-2010 Alps Electric Co., Ltd. - Vxdif.) - [113.19 Ko] - (7.3.0.14) - C:\Windows\System32\Vxdif.dll [MD5.10B04CCF552C649EA93CCA00B857912A] - |A| - [01/07/2010 14:06:29] - (.Copyright © 1996-2007 - General Library for Plug-Ins.) - [1697.34 Ko] - (1.0.0.0) - C:\Windows\System32\WavesGUILib.dll [MD5.CE1E84AA03EE50362D3C69382DCFA294] - |A| - [01/07/2010 14:06:29] - (.Copyright © 1996-2007 - General Library for Plug-Ins.) - [1741.27 Ko] - (5.9.7.0) - C:\Windows\System32\WavesLib.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [46563.57 Ko] - C:\Windows\System32\wbem [MD5.7BDB3B1F1303F0370D7E4CE82AD73D37] - |A| - [09/02/2022 10:20:51] - (.Copyright © 2000 Stardock.Net, Inc - WindowBlinds Helper DLL.) - [55.17 Ko] - (1.5.0.0) - C:\Windows\System32\wbhelp2.dll [MD5.BDDF10F9D8E179323BC1B49603809EB0] - |A| - [13/07/2009 22:38:33] - (.-.) - [0.6 Ko] - (0.0.0.0) - C:\Windows\System32\WdsUnattendTemplate.xml [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [0 Ko] - C:\Windows\System32\wfp [MD5.C980C971AD4FF3CA5CEFDEF40932D3A1] - |A| - [13/07/2009 21:29:46] - (.-.) - [13 Ko] - (0.0.0.0) - C:\Windows\System32\win87em.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 05:52:30] - [0 Ko] - C:\Windows\System32\WinBioDatabase [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 05:52:30] - [71 Ko] - C:\Windows\System32\WinBioPlugIns [MD5.BCE9E1B20F2F07C29CB3F0BA06E6F15A] - |A| - [13/02/2022 03:37:44] - (.Copyright © 2021 - Java(TM) Platform SE binary.) - [159.72 Ko] - (8.0.3210.7) - C:\Windows\System32\WindowsAccessBridge.dll [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 05:52:30] - [9079.89 Ko] - C:\Windows\System32\WindowsPowerShell [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [27076 Ko] - C:\Windows\System32\winevt [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 05:56:48] - [106.26 Ko] - C:\Windows\System32\winrm [MD5.0215C9FA70FD7FA76ABBFE82540E6443] - |A| - [13/02/2022 06:51:30] - (.-.) - [0.42 Ko] - (0.0.0.0) - C:\Windows\System32\winsevr.dat [MD5.DB08CF76449D2EB521DFB71A58DAF62D] - |AC| - [03/02/2022 13:39:17] - (.Copyright © 2008 - OpenAL32.) - [434.59 Ko] - (2.2.0.7) - C:\Windows\System32\wrap_oal.dll [MD5.EEBA34D386EABA21DD998FEDC1A81D73] - |A| - [13/02/2022 03:39:59] - (.Copyright (C) 2003-2017 x264vfw project - x264vfw - H.264/MPEG-4 AVC codec.) - [3760 Ko] - (44.2851.44825.0) - C:\Windows\System32\x264vfw.dll [MD5.00000000000000000000000000000000] - |D| - [11/02/2022 14:49:08] - [0 Ko] - C:\Windows\System32\x64 [MD5.00000000000000000000000000000000] - |D| - [13/02/2022 02:59:25] - [137.65 Ko] - C:\Windows\System32\xlive [MD5.340292C12C3533CE83BDC694D27A261E] - |A| - [09/04/2011 18:55:28] - (.-.) - [175.06 Ko] - (0.0.0.0) - C:\Windows\System32\xlive.dll.cat [MD5.00000000000000000000000000000000] - |D| - [26/12/2021 21:10:35] - [9.34 Ko] - C:\Windows\System32\XPSViewer [MD5.3A1DCCA8C051E747AFDDA91C6E3D3E6F] - |A| - [13/02/2022 03:40:03] - (.-.) - [666 Ko] - (0.0.0.0) - C:\Windows\System32\xvidcore.dll [MD5.6AF5E7909F52091FC7EA5709775B7806] - |A| - [13/02/2022 03:40:01] - (.-.) - [277.5 Ko] - (0.0.0.0) - C:\Windows\System32\xvidvfw.dll [MD5.5D89B594280D439187B1C142DA4894F2] - |A| - [14/01/2022 19:07:30] - (.Zemana Ltd. - Zemana ZALSDK.) - [6874.96 Ko] - (1.9.6.500) - C:\Windows\System32\ZALSDKCore.dll [MD5.00000000000000000000000000000000] - |D| - [14/01/2022 19:07:30] - [1179.63 Ko] - C:\Windows\System32\ZALSDK_uninst [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [141.5 Ko] - C:\Windows\System32\zh-CN [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [63 Ko] - C:\Windows\System32\zh-HK [MD5.00000000000000000000000000000000] - |D| - [14/07/2009 03:37:09] - [141.5 Ko] - C:\Windows\System32\zh-TW [MD5.505A0EE4F01481CD951BB5D4836C0973] - |A| - [09/02/2022 10:45:23] - (.-.) - [0.04 Ko] - (0.0.0.0) - C:\Windows\System32\_WKERNEL.SYL ---------- | [Gregy&Justy] [13/02/2022 13:42:12] - |SHD| - [49152] - C:\Users\Gregy&Justy\AppData [13/02/2022 23:24:18] - |SHD| - [32768] - C:\Users\Gregy&Justy\AppData\Local [13/02/2022 13:42:12] - |SHD| - [16384] - C:\Users\Gregy&Justy\AppData\Roaming [13/02/2022 23:24:18] - |SHD| - [32768] - C:\Users\Gregy&Justy\AppData\Local\Microsoft [13/02/2022 13:42:12] - |SHD| - [16384] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft ---------- | [Gregy&Justy] [15/01/2022 12:35:19] - |D| - [56] - C:\Users\Gregy&Justy\.cache [26/12/2021 13:15:28] - |D| - [3501574941] - C:\Users\Gregy&Justy\AppData [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\Application Data [26/12/2021 13:18:00] - |RD| - [45019] - C:\Users\Gregy&Justy\Contacts [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\Cookies [26/12/2021 13:15:28] - |RD| - [2040157706] - C:\Users\Gregy&Justy\Desktop [26/12/2021 13:15:28] - |RD| - [149503409654] - C:\Users\Gregy&Justy\Documents [26/12/2021 13:15:28] - |RD| - [823812898] - C:\Users\Gregy&Justy\Downloads [26/12/2021 13:15:28] - |RD| - [9033] - C:\Users\Gregy&Justy\Favorites [26/12/2021 13:15:28] - |RD| - [2332] - C:\Users\Gregy&Justy\Links [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\Local Settings [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\Menu Demarrer [26/12/2021 13:15:29] - |SHD| - [0] - C:\Users\Gregy&Justy\Mes documents [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\Modeles [26/12/2021 13:15:28] - |RD| - [504] - C:\Users\Gregy&Justy\Music [26/12/2021 13:15:28] - |ASH| - [2359296] - C:\Users\Gregy&Justy\ntuser.dat [26/12/2021 13:15:29] - |ASH| - [262144] - C:\Users\Gregy&Justy\ntuser.dat.LOG1 [26/12/2021 13:15:29] - |ASH| - [0] - C:\Users\Gregy&Justy\ntuser.dat.LOG2 [28/01/2022 07:39:57] - |ASH| - [65536] - C:\Users\Gregy&Justy\ntuser.dat{00f7b44a-8005-11ec-aaa9-c4461986adc1}.TM.blf [28/01/2022 07:39:57] - |ASH| - [524288] - C:\Users\Gregy&Justy\ntuser.dat{00f7b44a-8005-11ec-aaa9-c4461986adc1}.TMContainer00000000000000000001.regtrans-ms [28/01/2022 07:39:57] - |ASH| - [524288] - C:\Users\Gregy&Justy\ntuser.dat{00f7b44a-8005-11ec-aaa9-c4461986adc1}.TMContainer00000000000000000002.regtrans-ms [26/12/2021 13:15:29] - |ASH| - [65536] - C:\Users\Gregy&Justy\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf [26/12/2021 13:15:29] - |ASH| - [524288] - C:\Users\Gregy&Justy\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms [26/12/2021 13:15:29] - |ASH| - [524288] - C:\Users\Gregy&Justy\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms [26/12/2021 13:15:30] - |SH| - [20] - C:\Users\Gregy&Justy\ntuser.ini [26/12/2021 13:15:28] - |RD| - [504] - C:\Users\Gregy&Justy\Pictures [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\Recent [26/12/2021 13:15:28] - |RD| - [282] - C:\Users\Gregy&Justy\Saved Games [26/12/2021 13:18:17] - |RD| - [1020] - C:\Users\Gregy&Justy\Searches [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\SendTo [26/12/2021 13:15:28] - |RD| - [24451696164] - C:\Users\Gregy&Justy\Videos [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\Voisinage d'impression [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\Voisinage reseau [26/12/2021 13:15:28] - |D| - [2387882482] - C:\Users\Gregy&Justy\AppData\Local [26/12/2021 13:15:30] - |D| - [194912] - C:\Users\Gregy&Justy\AppData\LocalLow [26/12/2021 13:15:28] - |D| - [1118005146] - C:\Users\Gregy&Justy\AppData\Roaming [03/02/2022 04:21:59] - |D| - [71026] - C:\Users\Gregy&Justy\AppData\Local\Adobe [13/02/2022 02:10:53] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Local\Amazon Music [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\AppData\Local\Application Data [13/02/2022 02:51:32] - |D| - [41231] - C:\Users\Gregy&Justy\AppData\Local\Ashampoo [18/01/2022 10:54:40] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Local\Avast Software [01/02/2022 19:57:29] - |D| - [2550] - C:\Users\Gregy&Justy\AppData\Local\Axialis [13/02/2022 00:15:59] - |D| - [74592] - C:\Users\Gregy&Justy\AppData\Local\cache [18/01/2022 10:34:47] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Local\CEF [20/01/2022 14:59:09] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Local\CrashRpt [26/12/2021 13:18:56] - |D| - [191] - C:\Users\Gregy&Justy\AppData\Local\EgisTec IPS [13/02/2022 16:21:25] - |A| - [58344] - C:\Users\Gregy&Justy\AppData\Local\GDIPFONTCACHEV1.DAT [26/12/2021 13:21:51] - |D| - [165911957] - C:\Users\Gregy&Justy\AppData\Local\Google [13/02/2022 03:15:56] - |D| - [72966734] - C:\Users\Gregy&Justy\AppData\Local\GoToMeeting [13/02/2022 20:19:49] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Local\Greenshot [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\AppData\Local\Historique [26/12/2021 13:15:28] - |D| - [15418163] - C:\Users\Gregy&Justy\AppData\Local\Microsoft [21/01/2022 22:15:51] - |D| - [80534284] - C:\Users\Gregy&Justy\AppData\Local\Mozilla [24/01/2022 09:34:33] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Local\niemiro [21/01/2022 04:44:16] - |D| - [306061381] - C:\Users\Gregy&Justy\AppData\Local\Opera Software [14/01/2022 16:12:04] - |D| - [416965857] - C:\Users\Gregy&Justy\AppData\Local\Programs [14/01/2022 21:07:59] - |D| - [3084] - C:\Users\Gregy&Justy\AppData\Local\Reasonable_Software_House [21/01/2022 21:39:43] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Local\Safer-Networking Ltd [21/01/2022 19:22:52] - |D| - [32439400] - C:\Users\Gregy&Justy\AppData\Local\Screencast-O-Matic [21/01/2022 09:58:45] - |D| - [49664] - C:\Users\Gregy&Justy\AppData\Local\SIBL [13/02/2022 04:08:11] - |D| - [24619] - C:\Users\Gregy&Justy\AppData\Local\Stardock [14/01/2022 19:16:52] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Local\stellar_iphone [05/02/2022 10:35:40] - |D| - [85501204] - C:\Users\Gregy&Justy\AppData\Local\Temp [26/12/2021 13:15:30] - |SHD| - [0] - C:\Users\Gregy&Justy\AppData\Local\Temporary Internet Files [13/02/2022 00:14:36] - |D| - [422664] - C:\Users\Gregy&Justy\AppData\Local\ToolKitMain [13/02/2022 14:02:33] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Local\Tracker Software [05/02/2022 10:35:43] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Local\VirtualStore [04/02/2022 03:28:43] - |D| - [4017230] - C:\Users\Gregy&Justy\AppData\Local\VS Revo Group [05/02/2022 14:43:27] - |D| - [1206540786] - C:\Users\Gregy&Justy\AppData\Local\Yandex [14/01/2022 19:07:29] - |D| - [777521] - C:\Users\Gregy&Justy\AppData\Local\Zemana [21/01/2022 02:23:19] - |A| - [0] - C:\Users\Gregy&Justy\AppData\Local\{0F48489E-6965-446A-AD4D-2EDB91B64744} [01/02/2022 10:37:08] - |A| - [0] - C:\Users\Gregy&Justy\AppData\Local\{CC8F97B5-2628-4D5C-A9CD-CCFD09529BB0} [22/01/2022 13:55:18] - |D| - [24576] - C:\Users\Gregy&Justy\AppData\LocalLow\360WD [26/12/2021 13:21:55] - |D| - [0] - C:\Users\Gregy&Justy\AppData\LocalLow\Google [06/02/2022 08:50:20] - |D| - [773] - C:\Users\Gregy&Justy\AppData\LocalLow\IObit [15/01/2022 09:16:37] - |D| - [1571] - C:\Users\Gregy&Justy\AppData\LocalLow\IObit.BackupByPortableAppC [26/12/2021 13:22:03] - |D| - [149278] - C:\Users\Gregy&Justy\AppData\LocalLow\Microsoft [21/01/2022 22:16:07] - |D| - [0] - C:\Users\Gregy&Justy\AppData\LocalLow\Mozilla [13/02/2022 03:28:33] - |D| - [18714] - C:\Users\Gregy&Justy\AppData\LocalLow\Sun [29/01/2022 20:11:36] - |D| - [40210] - C:\Users\Gregy&Justy\AppData\Roaming\360DrvMgr [22/01/2022 14:28:28] - |SHD| - [36899] - C:\Users\Gregy&Justy\AppData\Roaming\360Quarant [22/01/2022 13:55:41] - |D| - [248256] - C:\Users\Gregy&Justy\AppData\Roaming\360safe [21/01/2022 04:41:45] - |D| - [72428] - C:\Users\Gregy&Justy\AppData\Roaming\360TotalSecurity [18/01/2022 23:00:51] - |D| - [1] - C:\Users\Gregy&Justy\AppData\Roaming\Adaware PC Cleaner [20/01/2022 16:07:02] - |D| - [1] - C:\Users\Gregy&Justy\AppData\Roaming\Adaware Protect [15/01/2022 13:41:21] - |D| - [1] - C:\Users\Gregy&Justy\AppData\Roaming\Adaware VPN [26/12/2021 13:29:19] - |D| - [160902] - C:\Users\Gregy&Justy\AppData\Roaming\Adobe [13/02/2022 08:58:53] - |D| - [1743] - C:\Users\Gregy&Justy\AppData\Roaming\AIMP [04/02/2022 03:55:41] - |D| - [4845] - C:\Users\Gregy&Justy\AppData\Roaming\CrystalIdea Software [13/02/2022 00:16:37] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\DataWorks [09/02/2022 10:17:11] - |D| - [18556310] - C:\Users\Gregy&Justy\AppData\Roaming\DriverDoc [13/02/2022 10:14:22] - |D| - [11112] - C:\Users\Gregy&Justy\AppData\Roaming\DriverFix [18/01/2022 07:31:00] - |D| - [8444] - C:\Users\Gregy&Justy\AppData\Roaming\DriverPack Cloud [15/01/2022 12:26:41] - |D| - [749700527] - C:\Users\Gregy&Justy\AppData\Roaming\DRPSu [13/02/2022 03:07:31] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\DVDVideoSoft [26/12/2021 13:21:52] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\Google [13/02/2022 20:19:49] - |D| - [8832] - C:\Users\Gregy&Justy\AppData\Roaming\Greenshot [26/12/2021 13:18:05] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\Identities [15/01/2022 09:55:50] - |D| - [128] - C:\Users\Gregy&Justy\AppData\Roaming\instinfo [14/01/2022 10:50:15] - |D| - [1118126] - C:\Users\Gregy&Justy\AppData\Roaming\Intego [15/01/2022 09:15:04] - |D| - [4790186] - C:\Users\Gregy&Justy\AppData\Roaming\IObit [20/01/2022 08:21:34] - |D| - [6194932] - C:\Users\Gregy&Justy\AppData\Roaming\iTop VPN [21/01/2022 21:38:11] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\Lavasoft [26/12/2021 13:15:28] - |SD| - [92209212] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft [14/01/2022 21:03:13] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft Corporation [13/02/2022 08:06:53] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\Mobogenie [21/01/2022 22:16:02] - |D| - [92967296] - C:\Users\Gregy&Justy\AppData\Roaming\Mozilla [21/01/2022 22:56:25] - |D| - [24561546] - C:\Users\Gregy&Justy\AppData\Roaming\mxnitro [31/01/2022 06:26:10] - |D| - [2707512] - C:\Users\Gregy&Justy\AppData\Roaming\NCH Software [13/02/2022 10:13:55] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\Neos Eureka S.r.l [08/02/2022 15:20:55] - |D| - [21455116] - C:\Users\Gregy&Justy\AppData\Roaming\OneSafe Driver Manager [12/02/2022 21:48:04] - |D| - [52] - C:\Users\Gregy&Justy\AppData\Roaming\OneSafe Total PC Care [21/01/2022 04:23:20] - |D| - [91521862] - C:\Users\Gregy&Justy\AppData\Roaming\Opera Software [12/02/2022 21:41:48] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\PC Speed Maximizer [13/02/2022 04:21:01] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\PotPlayerMini [13/02/2022 09:02:23] - |D| - [2357721] - C:\Users\Gregy&Justy\AppData\Roaming\PotPlayerMini64 [28/01/2022 08:27:17] - |D| - [5538924] - C:\Users\Gregy&Justy\AppData\Roaming\Reason [14/01/2022 21:03:44] - |D| - [1540720] - C:\Users\Gregy&Justy\AppData\Roaming\Reasonable Software House Ltd [06/02/2022 17:25:11] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\Recordpad [24/01/2022 21:31:42] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\Smart PC Solutions [13/02/2022 04:10:18] - |D| - [1200] - C:\Users\Gregy&Justy\AppData\Roaming\Stardock [13/02/2022 03:47:50] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\Sun [06/02/2022 09:05:47] - |A| - [3223] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingAdAwareBrowserInstaller.txt [06/02/2022 15:33:12] - |A| - [13265] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingEverything.1.txt [06/02/2022 15:33:12] - |A| - [4320] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingEverything.txt [06/02/2022 15:07:21] - |A| - [3270] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingExplorer.1.txt [06/02/2022 15:07:21] - |A| - [2947] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingExplorer.2.txt [06/02/2022 15:07:21] - |A| - [2989] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingExplorer.3.txt [06/02/2022 15:07:21] - |A| - [2917] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingExplorer.4.txt [06/02/2022 15:07:21] - |A| - [2943] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingExplorer.5.txt [06/02/2022 15:07:21] - |A| - [2995] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingExplorer.6.txt [06/02/2022 15:07:21] - |A| - [2877] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingExplorer.7.txt [06/02/2022 15:07:21] - |A| - [2965] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingExplorer.8.txt [06/02/2022 15:07:21] - |A| - [6171] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_FlingExplorer.txt [06/02/2022 08:44:44] - |A| - [6547] - C:\Users\Gregy&Justy\AppData\Roaming\tracedll_Flingiush.txt [22/01/2022 07:39:20] - |D| - [36324] - C:\Users\Gregy&Justy\AppData\Roaming\ViFind [22/01/2022 08:52:09] - |D| - [38] - C:\Users\Gregy&Justy\AppData\Roaming\ViGlance [22/01/2022 07:40:12] - |D| - [769785] - C:\Users\Gregy&Justy\AppData\Roaming\ViPad [22/01/2022 08:47:34] - |D| - [1263656] - C:\Users\Gregy&Justy\AppData\Roaming\ViStart [13/02/2022 04:37:27] - |D| - [62242] - C:\Users\Gregy&Justy\AppData\Roaming\Winamp [21/01/2022 19:53:58] - |D| - [12] - C:\Users\Gregy&Justy\AppData\Roaming\WinRAR [05/02/2022 14:37:33] - |D| - [616] - C:\Users\Gregy&Justy\AppData\Roaming\Yandex [26/12/2021 13:18:16] - |ASH| - [174] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini [26/12/2021 13:15:30] - |SHD| - [53600] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programmes [26/12/2021 13:15:28] - |RD| - [53600] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs [26/12/2021 13:15:28] - |RD| - [14625] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [26/12/2021 13:18:18] - |RD| - [174] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [28/01/2022 08:27:17] - |D| - [3168] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Boost [26/12/2021 13:18:17] - |ASH| - [338] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini [13/02/2022 03:17:53] - |A| - [1341] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\GoToMeeting.lnk [26/12/2021 13:18:23] - |A| - [1437] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [13/02/2022 04:58:53] - |D| - [2509] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LinuxLive USB Creator [26/12/2021 13:15:28] - |RD| - [580] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [03/02/2022 13:29:20] - |A| - [1358] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navigateur Opera.lnk [11/02/2022 23:52:53] - |D| - [21298] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NCH Software Suite [12/02/2022 21:43:22] - |A| - [2464] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Opera Neon.lnk [13/02/2022 09:02:25] - |D| - [2034] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PotPlayer [26/12/2021 13:18:18] - |RD| - [2274] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [06/02/2022 07:51:27] - |D| - [0] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Utilities [26/12/2021 13:18:18] - |ASH| - [174] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini [13/02/2022 04:08:41] - |A| - [2100] - C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Stardock ObjectDock.lnk ---------- | [Gr?gy&Justy] [13/02/2022 08:06:54] - |D| - [0] - C:\Users\Gr?gy&Justy\AppData [13/02/2022 08:06:54] - |D| - [0] - C:\Users\Gr?gy&Justy\AppData\Roaming [13/02/2022 08:06:54] - |D| - [0] - C:\Users\Gr?gy&Justy\AppData\Roaming\Mobogenie ---------- | [Public] [05/02/2022 06:57:44] - |D| - [80656] - C:\Users\Public\Anvisoft [14/07/2009 03:37:05] - |RHD| - [102046] - C:\Users\Public\Desktop [14/07/2009 05:41:57] - |SH| - [174] - C:\Users\Public\desktop.ini [14/07/2009 03:37:05] - |RD| - [58804141] - C:\Users\Public\Documents [14/07/2009 03:37:05] - |RD| - [174] - C:\Users\Public\Downloads [14/07/2009 03:37:05] - |RD| - [0] - C:\Users\Public\Favorites [13/02/2022 09:03:13] - |D| - [0] - C:\Users\Public\Foxit Software [14/07/2009 03:37:05] - |RHD| - [1002] - C:\Users\Public\Libraries [14/07/2009 03:37:05] - |RD| - [17371874] - C:\Users\Public\Music [04/02/2022 05:20:20] - |A| - [262144] - C:\Users\Public\NTUSER.DAT [04/02/2022 05:20:20] - |ASH| - [5120] - C:\Users\Public\NTUSER.DAT.LOG1 [04/02/2022 05:20:20] - |ASH| - [0] - C:\Users\Public\NTUSER.DAT.LOG2 [10/02/2022 21:25:52] - |ASH| - [65536] - C:\Users\Public\NTUSER.DAT{79409d9b-8aa1-11ec-bf31-88ae1d77f7a2}.TM.blf [10/02/2022 21:25:58] - |ASH| - [524288] - C:\Users\Public\NTUSER.DAT{79409d9b-8aa1-11ec-bf31-88ae1d77f7a2}.TMContainer00000000000000000001.regtrans-ms [10/02/2022 21:26:02] - |ASH| - [524288] - C:\Users\Public\NTUSER.DAT{79409d9b-8aa1-11ec-bf31-88ae1d77f7a2}.TMContainer00000000000000000002.regtrans-ms [04/02/2022 05:20:20] - |ASH| - [65536] - C:\Users\Public\NTUSER.DAT{fc1c7a7d-855d-11ec-9eb1-88ae1d77f7a2}.TM.blf [04/02/2022 05:20:20] - |ASH| - [524288] - C:\Users\Public\NTUSER.DAT{fc1c7a7d-855d-11ec-9eb1-88ae1d77f7a2}.TMContainer00000000000000000001.regtrans-ms [04/02/2022 05:20:21] - |ASH| - [524288] - C:\Users\Public\NTUSER.DAT{fc1c7a7d-855d-11ec-9eb1-88ae1d77f7a2}.TMContainer00000000000000000002.regtrans-ms [01/07/2010 14:34:37] - |D| - [454] - C:\Users\Public\OEM [14/07/2009 03:37:05] - |RD| - [5838651] - C:\Users\Public\Pictures [14/07/2009 03:37:05] - |RD| - [26246732] - C:\Users\Public\Videos ---------- | C:\ProgramData [22/01/2022 13:58:43] - |SHD| - [1110082] - C:\ProgramData\360Quarant [21/01/2022 04:41:55] - |D| - [42880] - C:\ProgramData\360Safe [22/01/2022 15:51:53] - |D| - [36899] - C:\ProgramData\360sd [21/01/2022 04:41:45] - |D| - [57380329] - C:\ProgramData\360TotalSecurity [01/07/2010 14:22:45] - |D| - [30375] - C:\ProgramData\Acer [18/01/2022 22:58:29] - |D| - [2775345] - C:\ProgramData\Adaware PC Cleaner [20/01/2022 16:06:31] - |D| - [2054] - C:\ProgramData\Adaware Software [15/01/2022 13:40:40] - |D| - [2777478] - C:\ProgramData\Adaware VPN [01/07/2010 14:33:25] - |D| - [761] - C:\ProgramData\Adobe [06/02/2022 20:39:47] - |D| - [10145895] - C:\ProgramData\Anvisoft [13/02/2022 06:51:49] - |D| - [104] - C:\ProgramData\Aomei [13/02/2022 00:14:07] - |D| - [192] - C:\ProgramData\AomeiBR [13/02/2022 05:07:49] - |D| - [0] - C:\ProgramData\Apple [14/07/2009 05:53:55] - |SHD| - [0] - C:\ProgramData\Application Data [13/02/2022 02:30:17] - |D| - [420246] - C:\ProgramData\Ashampoo [18/01/2022 07:07:39] - |D| - [900] - C:\ProgramData\Avast Software [22/01/2022 13:46:49] - |D| - [926841] - C:\ProgramData\AVG [05/02/2022 10:35:58] - |D| - [103656] - C:\ProgramData\boost_interprocess [26/12/2021 13:15:13] - |SHD| - [0] - C:\ProgramData\Bureau [14/07/2009 05:53:55] - |SHD| - [0] - C:\ProgramData\Desktop [14/07/2009 05:53:55] - |SHD| - [0] - C:\ProgramData\Documents [21/01/2022 21:22:24] - |A| - [0] - C:\ProgramData\DP45977C.lfl [13/02/2022 16:21:17] - |D| - [0] - C:\ProgramData\Driver-Soft [01/07/2010 14:30:15] - |D| - [142933] - C:\ProgramData\EgisTec IPS [01/07/2010 14:13:51] - |D| - [420] - C:\ProgramData\eSobi [26/12/2021 13:15:13] - |SHD| - [0] - C:\ProgramData\Favoris [14/07/2009 05:53:55] - |SHD| - [0] - C:\ProgramData\Favorites [13/02/2022 04:16:09] - |D| - [55932] - C:\ProgramData\FileOpen [13/02/2022 09:04:37] - |D| - [0] - C:\ProgramData\Foxit Software [01/07/2010 14:15:24] - |A| - [131984] - C:\ProgramData\FullRemove.exe [13/02/2022 01:42:14] - |D| - [15330] - C:\ProgramData\GenesysLogic [01/07/2010 14:28:34] - |D| - [509552] - C:\ProgramData\Google [14/01/2022 18:55:45] - |D| - [1797611] - C:\ProgramData\inPixio Photo Studio 11 [14/01/2022 10:41:49] - |D| - [381887085] - C:\ProgramData\Intego [15/01/2022 09:15:30] - |D| - [480306378] - C:\ProgramData\IObit [20/01/2022 08:42:13] - |D| - [351726] - C:\ProgramData\iTop VPN [14/01/2022 19:21:54] - |RASHD| - [1024] - C:\ProgramData\Key-Base [26/12/2021 13:15:13] - |SHD| - [0] - C:\ProgramData\Menu Demarrer [14/07/2009 03:37:05] - |SD| - [753447932] - C:\ProgramData\Microsoft [14/01/2022 21:04:16] - |A| - [109] - C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc [26/12/2021 13:15:13] - |SHD| - [0] - C:\ProgramData\Modeles [21/01/2022 22:16:03] - |D| - [8010298] - C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38 [31/01/2022 06:26:28] - |D| - [13290880] - C:\ProgramData\NCH Software [01/07/2010 14:32:32] - |D| - [278] - C:\ProgramData\oem [11/02/2022 14:47:11] - |D| - [11062624] - C:\ProgramData\OneSafe Driver Manager [12/02/2022 21:48:06] - |D| - [274] - C:\ProgramData\OneSafe Total PC Care [13/02/2022 03:31:04] - |D| - [70997662] - C:\ProgramData\Oracle [20/01/2022 14:58:13] - |D| - [89704489] - C:\ProgramData\Package Cache [01/07/2010 14:28:39] - |D| - [765920] - C:\ProgramData\Partner [19/01/2022 11:55:25] - |D| - [125] - C:\ProgramData\PCGameBoost [13/02/2022 00:16:49] - |D| - [1156] - C:\ProgramData\ProductData [15/01/2022 09:18:46] - |D| - [2358] - C:\ProgramData\ProductData.BackupByPortableAppC [08/02/2022 15:16:32] - |D| - [912] - C:\ProgramData\Registry First Aid [21/01/2022 21:37:40] - |D| - [5824] - C:\ProgramData\sib [13/02/2022 04:08:40] - |D| - [110] - C:\ProgramData\Stardock [14/07/2009 05:53:55] - |SHD| - [0] - C:\ProgramData\Start Menu [01/07/2010 14:32:35] - |D| - [0] - C:\ProgramData\Symantec [12/02/2022 23:48:58] - |D| - [4176] - C:\ProgramData\SystemAcCrux [21/01/2022 21:37:57] - |AD| - [0] - C:\ProgramData\TEMP [14/07/2009 05:53:55] - |SHD| - [0] - C:\ProgramData\Templates [13/02/2022 04:13:09] - |D| - [0] - C:\ProgramData\Tracker Software [04/02/2022 03:28:24] - |D| - [64876] - C:\ProgramData\VS Revo Group [05/02/2022 14:45:08] - |D| - [130271] - C:\ProgramData\Yandex [20/01/2022 08:42:13] - |D| - [294] - C:\ProgramData\{150F4013-6884-4350-8DDC-6BFCB4C5DC15} [14/01/2022 19:21:54] - |D| - [0] - C:\ProgramData\{6BEBA460-84C2-AC15-C184-1350F207DA26} [28/01/2022 20:34:10] - |D| - [63] - C:\ProgramData\{D76294E6-03B8-4971-AF2E-3F846161A690} [15/01/2022 09:27:22] - |D| - [232] - C:\ProgramData\{E0224FF9-7AE3-4F9E-991A-2F004F7E3952} [28/01/2022 20:34:10] - |D| - [65] - C:\ProgramData\{F801BDE9-22BF-4188-80EA-789D6EE5177E} [15/01/2022 09:19:15] - |D| - [65] - C:\ProgramData\{F86B0233-9A85-4589-8AAF-524CC4F8211B} ---------- | C:\ProgramData\Microsoft\Windows\Start Menu [14/07/2009 05:46:35] - |A| - [1282] - C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk [14/07/2009 05:37:43] - |ASH| - [442] - C:\ProgramData\Microsoft\Windows\Start Menu\desktop.ini [26/12/2021 13:15:13] - |SHD| - [389915] - C:\ProgramData\Microsoft\Windows\Start Menu\Programmes [14/07/2009 03:37:05] - |RD| - [389915] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs [14/07/2009 05:37:43] - |A| - [1266] - C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk ---------- | C:\ProgramData\Microsoft\Windows\Start Menu\Programs [13/02/2022 01:55:27] - |D| - [1797] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip [13/02/2022 01:57:07] - |D| - [2659] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\8GadgetPack [14/07/2009 03:37:05] - |RD| - [29797] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories [01/07/2010 14:26:23] - |RD| - [11767] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer [26/12/2021 12:40:59] - |D| - [1884] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer Crystal Eye webcam [01/07/2010 14:15:23] - |D| - [1198] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer GameZone [26/12/2021 12:25:08] - |AD| - [1063] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AcerSystem [14/07/2009 05:52:30] - |RD| - [18363] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools [01/07/2010 14:33:35] - |A| - [2441] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk [13/02/2022 00:28:29] - |D| - [7109] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Advanced SystemCare [13/02/2022 09:00:15] - |D| - [6329] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AIMP [06/02/2022 20:40:12] - |D| - [4693] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anvisoft [13/02/2022 06:35:12] - |D| - [3499] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Backupper [12/02/2022 23:55:58] - |D| - [1486] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AOMEI Partition Assistant [13/02/2022 02:34:02] - |D| - [5069] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo [06/02/2022 17:35:57] - |D| - [5998] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audio Related Programs [13/02/2022 10:21:54] - |A| - [1025] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AudioRanger.lnk [13/02/2022 04:53:37] - |D| - [6756] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoHotkey [13/02/2022 03:01:20] - |D| - [11251] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AutoIt v3 [06/02/2022 16:44:52] - |D| - [6022] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Business Related Programs [06/02/2022 16:57:19] - |A| - [1160] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CardWorks Business Card Software.lnk [13/02/2022 09:13:54] - |D| - [3549] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Centre 360 Security [06/02/2022 16:51:06] - |A| - [1120] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Copper Point of Sale Software.lnk [06/02/2022 17:34:15] - |A| - [1180] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Crescendo - Editeur de notation de musique.lnk [06/02/2022 17:35:29] - |A| - [1120] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DeskFX Audio Effect Processor.lnk [14/07/2009 05:41:57] - |ASH| - [886] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini [13/02/2022 16:20:52] - |D| - [4643] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Genius [09/02/2022 10:17:04] - |D| - [2399] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverDoc [13/02/2022 10:13:45] - |D| - [3732] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverFix [13/02/2022 13:33:48] - |D| - [3522] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DriverPack [12/02/2022 23:44:54] - |D| - [3540] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master [12/02/2022 23:49:18] - |D| - [2849] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Partition Master Suite [01/07/2010 14:30:44] - |D| - [6324] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EgisTec [13/02/2022 20:48:22] - |A| - [1013] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Everything.lnk [06/02/2022 16:49:34] - |A| - [1254] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Accounts - Logiciel de comptabilite.lnk [06/02/2022 17:12:31] - |A| - [1210] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Burn - Logiciel de gravure de disques.lnk [06/02/2022 16:42:23] - |A| - [1240] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Invoice - Logiciel de facturation.lnk [06/02/2022 17:14:31] - |A| - [1170] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Rip - Extracteur de CD.lnk [06/02/2022 17:03:03] - |A| - [1146] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Scribe - Logiciel de transcription.lnk [31/01/2022 20:36:54] - |A| - [1184] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Express Zip - Compresseur de fichiers.lnk [06/02/2022 17:06:32] - |A| - [1132] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastFox Text Expander Software.lnk [13/02/2022 08:57:14] - |D| - [4184] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FastStone Image Viewer [11/02/2022 23:52:49] - |A| - [1116] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileFort Backup.lnk [13/02/2022 01:59:47] - |D| - [3278] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire [30/01/2022 04:26:29] - |A| - [1131] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk [06/02/2022 17:00:07] - |A| - [1250] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlexiServer – Logiciel de productivite et de suivi de la presence.lnk [13/02/2022 09:04:42] - |D| - [1089] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader [14/07/2009 05:52:30] - |RD| - [3824] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games [06/02/2022 16:39:55] - |A| - [1202] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Golden Videos VHS to DVD Converter.lnk [26/12/2021 13:32:24] - |A| - [2172] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk [06/02/2022 16:58:19] - |D| - [6204] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Graphics Related Programs [13/02/2022 20:17:53] - |D| - [4063] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Greenshot [01/07/2010 14:03:23] - |D| - [1168] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel® Matrix Storage Manager [06/02/2022 16:55:05] - |A| - [1196] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inventoria - Logiciel de gestion des stocks.lnk [13/02/2022 00:36:18] - |D| - [3271] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Software Updater [06/02/2022 08:39:33] - |D| - [0] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit Uninstaller [20/01/2022 08:38:30] - |D| - [1167] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTop VPN [13/02/2022 03:37:18] - |D| - [6539] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java [13/02/2022 03:40:22] - |D| - [30660] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack [14/07/2009 03:37:05] - |RD| - [4370] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance [13/02/2022 02:58:37] - |D| - [1233] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace [13/02/2022 00:45:45] - |D| - [2243] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight [06/02/2022 17:20:35] - |A| - [1128] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixPad - Mixeur de fichiers audio.lnk [13/02/2022 08:03:16] - |D| - [1314] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mobogenie3 [06/02/2022 16:44:16] - |A| - [1114] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MoneyLine.lnk [13/02/2022 04:55:58] - |D| - [5950] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MultiCommander [06/02/2022 17:35:57] - |D| - [12072] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NCH Software Suite [08/02/2022 15:20:43] - |D| - [2745] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneSafe Driver Manager [12/02/2022 21:48:03] - |D| - [3428] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneSafe Total PC Care [12/02/2022 21:41:45] - |D| - [1845] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Speed Maximizer [13/02/2022 04:21:14] - |D| - [2392] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PotPlayer [06/02/2022 17:35:13] - |D| - [6278] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes audio [06/02/2022 17:05:11] - |D| - [3622] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de dictee et de transcription [06/02/2022 08:19:06] - |D| - [0] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de graphisme [06/02/2022 08:33:53] - |D| - [0] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes de video [06/02/2022 17:00:19] - |D| - [6512] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Programmes pour l'entreprise [06/02/2022 17:24:15] - |A| - [1156] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RecordPad - Enregistreur audio.lnk [08/02/2022 15:16:31] - |SD| - [9173] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registry First Aid 11 [06/02/2022 14:45:20] - |D| - [0] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro [13/02/2022 04:26:15] - |D| - [1031] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RogueKiller [13/02/2022 04:29:31] - |D| - [7766] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SeaMonkey [14/07/2009 05:42:29] - |A| - [1330] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk [01/07/2010 14:22:46] - |D| - [1298] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [06/02/2022 17:18:19] - |A| - [1174] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SoundTap - Enregistreur d'audio en streaming.lnk [13/02/2022 04:07:48] - |D| - [2042] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stardock [14/07/2009 03:37:05] - |RD| - [1995] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup [06/02/2022 17:35:13] - |D| - [12652] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Suite NCH Software [13/02/2022 04:16:44] - |D| - [8201] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tracker Software [06/02/2022 07:52:12] - |D| - [0] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Utilitaires [06/02/2022 07:49:59] - |D| - [0] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Utilities [13/02/2022 09:04:57] - |D| - [3499] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uTorrent [11/02/2022 23:53:00] - |A| - [1126] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Verity Parental Control Software.lnk [06/02/2022 16:40:07] - |D| - [6332] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Related Programs [13/02/2022 04:34:40] - |D| - [6558] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN [31/01/2022 06:26:37] - |A| - [1284] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoPad - Logiciel de montage video.lnk [06/02/2022 17:26:51] - |A| - [1100] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Voxal Modificateur de voix.lnk [06/02/2022 17:10:37] - |A| - [1240] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WavePad - Editeur audio.lnk [14/07/2009 05:42:24] - |A| - [1210] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk [26/12/2021 12:50:17] - |D| - [6096] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live [14/07/2009 05:46:36] - |A| - [1515] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk [09/02/2022 10:21:38] - |D| - [1699] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinUtilities [14/07/2009 05:42:30] - |A| - [1246] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk [13/02/2022 04:40:37] - |D| - [3853] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube Downloader HD ---------- | C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup [14/07/2009 05:41:57] - |ASH| - [174] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini [14/01/2022 10:50:19] - |A| - [1821] - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intego Antivirus.lnk ---------- | C:\Program Files [18/01/2022 07:21:09] - |D| - [91801168] - C:\Program Files\1642486869_0 [18/01/2022 07:22:06] - |D| - [388745915] - C:\Program Files\360 [12/01/2022 20:04:00] - |D| - [54277069] - C:\Program Files\360SysVulTerminator [13/02/2022 01:55:23] - |D| - [4101089] - C:\Program Files\7-Zip [01/07/2010 14:26:23] - |D| - [125544410] - C:\Program Files\Acer [26/12/2021 13:16:35] - |D| - [252761] - C:\Program Files\Acer Accessory Store [02/02/2022 14:01:51] - |D| - [100843310] - C:\Program Files\Ad-Aware Browser [01/07/2010 14:32:55] - |D| - [685234917] - C:\Program Files\Adobe [13/02/2022 08:58:31] - |D| - [51213551] - C:\Program Files\AIMP [06/02/2022 20:39:39] - |D| - [103000735] - C:\Program Files\Anvisoft [13/02/2022 05:59:08] - |D| - [382722191] - C:\Program Files\AOMEI [30/01/2022 05:03:46] - |D| - [0] - C:\Program Files\Apeaksoft Studio [26/12/2021 12:40:21] - |D| - [12592999] - C:\Program Files\Apoint2K [13/02/2022 16:40:59] - |D| - [0] - C:\Program Files\Apowersoft [13/02/2022 02:30:08] - |D| - [319530744] - C:\Program Files\Ashampoo [09/02/2022 10:23:25] - |D| - [1385864] - C:\Program Files\Ask.com [13/02/2022 10:21:45] - |D| - [31600516] - C:\Program Files\AudioRanger [13/02/2022 04:53:36] - |D| - [9095533] - C:\Program Files\AutoHotkey [13/02/2022 03:01:15] - |D| - [30696646] - C:\Program Files\AutoIt3 [22/01/2022 13:49:26] - |D| - [19409431] - C:\Program Files\AVG [01/02/2022 19:57:58] - |D| - [0] - C:\Program Files\Axialis [06/02/2022 07:04:20] - |D| - [223379693] - C:\Program Files\BCUninstaller [13/02/2022 05:07:49] - |D| - [631103] - C:\Program Files\Bonjour [14/07/2009 03:37:05] - |D| - [554812492] - C:\Program Files\Common Files [21/01/2022 22:55:37] - |D| - [9002] - C:\Program Files\CPUID [13/02/2022 04:18:51] - |D| - [231992044] - C:\Program Files\DAUM [14/07/2009 05:41:57] - |SH| - [174] - C:\Program Files\desktop.ini [01/07/2010 14:12:40] - |D| - [795472] - C:\Program Files\DIFX [13/02/2022 16:20:46] - |D| - [124992569] - C:\Program Files\Driver-Soft [13/02/2022 10:13:42] - |D| - [33762874] - C:\Program Files\DriverFix [13/02/2022 13:33:10] - |D| - [21130240] - C:\Program Files\DriverPack [04/02/2022 04:22:44] - |D| - [916922] - C:\Program Files\Drive_Shortcut [14/07/2009 05:52:30] - |D| - [4191414] - C:\Program Files\DVD Maker [12/02/2022 23:39:31] - |D| - [390810689] - C:\Program Files\EaseUS [01/07/2010 14:30:15] - |D| - [3623787] - C:\Program Files\EgisTec IPS [01/07/2010 14:30:15] - |D| - [50142616] - C:\Program Files\EgisTec MyWinLocker [01/07/2010 14:29:29] - |D| - [2243204] - C:\Program Files\EgisTec MyWinLockerSuite [01/07/2010 14:31:15] - |D| - [4136184] - C:\Program Files\EgisTec Shredder [06/02/2022 07:30:50] - |D| - [2823613] - C:\Program Files\Everything [13/02/2022 08:57:13] - |D| - [17825336] - C:\Program Files\FastStone Image Viewer [26/12/2021 13:15:13] - |SHD| - [0] - C:\Program Files\Fichiers communs [13/02/2022 01:59:08] - |D| - [85092317] - C:\Program Files\FinalWire [22/01/2022 03:18:25] - |D| - [4944371] - C:\Program Files\Firefox Nightly [13/02/2022 09:02:30] - |RD| - [249035716] - C:\Program Files\Foxit Reader [01/07/2010 14:28:34] - |D| - [270369305] - C:\Program Files\Google [13/02/2022 03:14:06] - |D| - [20984545] - C:\Program Files\GoToMeeting [13/02/2022 20:17:51] - |D| - [4633011] - C:\Program Files\Greenshot [01/07/2010 14:02:33] - |D| - [127574958] - C:\Program Files\InstallShield Installation Information [14/01/2022 10:44:08] - |D| - [222983520] - C:\Program Files\Intego [01/07/2010 13:58:06] - |D| - [61827980] - C:\Program Files\Intel [14/07/2009 03:37:05] - |D| - [4530242] - C:\Program Files\Internet Explorer [15/01/2022 09:24:28] - |D| - [350203856] - C:\Program Files\IObit [19/01/2022 15:45:31] - |D| - [0] - C:\Program Files\IOTransfer [13/02/2022 03:29:54] - |D| - [192667899] - C:\Program Files\Java [13/02/2022 03:38:50] - |D| - [114619267] - C:\Program Files\K-Lite Codec Pack [14/01/2022 19:07:32] - |D| - [193262] - C:\Program Files\KeyCryptSDK [26/12/2021 12:35:45] - |D| - [7368248] - C:\Program Files\Launch Manager [21/01/2022 21:37:23] - |D| - [210742] - C:\Program Files\Lavasoft [13/02/2022 04:58:13] - |D| - [12573429] - C:\Program Files\LinuxLive USB Creator [26/12/2021 12:50:46] - |D| - [266359790] - C:\Program Files\Microsoft [14/07/2009 05:52:30] - |D| - [46683959] - C:\Program Files\Microsoft Games [13/02/2022 02:58:32] - |D| - [9362570] - C:\Program Files\Microsoft Games for Windows - LIVE [01/07/2010 14:23:02] - |D| - [42894550] - C:\Program Files\Microsoft Silverlight [26/12/2021 12:51:42] - |D| - [1829877] - C:\Program Files\Microsoft SQL Server Compact Edition [13/02/2022 02:53:27] - |D| - [11254757] - C:\Program Files\Microsoft XNA [11/02/2022 01:24:30] - |D| - [212637028] - C:\Program Files\Mozilla Firefox [21/01/2022 22:14:53] - |D| - [310549] - C:\Program Files\Mozilla Maintenance Service [14/07/2009 05:52:30] - |D| - [25757] - C:\Program Files\MSBuild [13/02/2022 04:55:34] - |D| - [18747042] - C:\Program Files\MultiCommander [31/01/2022 06:26:24] - |D| - [242914334] - C:\Program Files\NCH Software [13/02/2022 03:11:11] - |D| - [809496] - C:\Program Files\OpenAL [01/07/2010 14:22:45] - |D| - [1825075] - C:\Program Files\Preload [01/07/2010 14:06:25] - |D| - [60401557] - C:\Program Files\Realtek [14/07/2009 05:52:30] - |D| - [38593281] - C:\Program Files\Reference Assemblies [13/02/2022 04:24:36] - |D| - [95093261] - C:\Program Files\RogueKiller [13/02/2022 04:28:28] - |D| - [151629880] - C:\Program Files\SeaMonkey [21/01/2022 08:47:58] - |D| - [2981386] - C:\Program Files\Silent Install Builder 6 [24/01/2022 21:30:44] - |D| - [82862] - C:\Program Files\Smart Privacy Protector [15/01/2022 11:03:33] - |D| - [0] - C:\Program Files\Softdeluxe [13/02/2022 04:06:34] - |D| - [34208075] - C:\Program Files\Stardock [14/01/2022 19:20:01] - |D| - [111768523] - C:\Program Files\Stellar Repair for Outlook [01/07/2010 14:32:35] - |D| - [0] - C:\Program Files\Symantec [01/07/2010 14:06:25] - |D| - [0] - C:\Program Files\Temp [13/02/2022 04:13:09] - |D| - [193250744] - C:\Program Files\Tracker Software [22/01/2022 14:36:30] - |D| - [63121] - C:\Program Files\TurboVPN [14/07/2009 05:53:23] - |D| - [0] - C:\Program Files\Uninstall Information [13/02/2022 09:04:56] - |D| - [1442913] - C:\Program Files\uTorrent [22/01/2022 03:37:04] - |D| - [9304526] - C:\Program Files\UX Pack [13/02/2022 04:29:44] - |D| - [169852151] - C:\Program Files\VideoLAN [22/01/2022 08:52:09] - |D| - [43573] - C:\Program Files\ViGlance [22/01/2022 07:40:20] - |D| - [213] - C:\Program Files\ViUpdater [06/02/2022 14:41:47] - |D| - [65635448] - C:\Program Files\VS Revo Group [13/02/2022 04:37:27] - |D| - [29038785] - C:\Program Files\Winamp [14/07/2009 05:52:30] - |D| - [3049984] - C:\Program Files\Windows Defender [26/12/2021 12:50:05] - |D| - [64913405] - C:\Program Files\Windows Live [26/12/2021 12:50:27] - |D| - [245112] - C:\Program Files\Windows Live SkyDrive [14/07/2009 03:37:05] - |D| - [6180864] - C:\Program Files\Windows Mail [14/07/2009 05:52:30] - |D| - [6607787] - C:\Program Files\Windows Media Player [14/07/2009 03:37:05] - |D| - [12194484] - C:\Program Files\Windows NT [14/07/2009 05:52:30] - |D| - [4417800] - C:\Program Files\Windows Photo Viewer [14/07/2009 05:52:30] - |D| - [189440] - C:\Program Files\Windows Portable Devices [14/07/2009 05:52:30] - |D| - [33186363] - C:\Program Files\Windows Sidebar [21/01/2022 19:35:20] - |D| - [7165814] - C:\Program Files\WinRAR [05/02/2022 14:45:08] - |D| - [2600032] - C:\Program Files\Yandex [13/02/2022 04:40:11] - |D| - [78904408] - C:\Program Files\Youtube Downloader HD ---------- | C:\Program Files\Common Files [01/07/2010 14:32:55] - |D| - [14779391] - C:\Program Files\Common Files\Adobe [01/07/2010 14:34:04] - |D| - [25655436] - C:\Program Files\Common Files\Adobe AIR [12/02/2022 22:21:59] - |D| - [2221568] - C:\Program Files\Common Files\Anvisoft [13/02/2022 09:13:12] - |D| - [3082096] - C:\Program Files\Common Files\AV [18/01/2022 07:11:36] - |D| - [1535256] - C:\Program Files\Common Files\Avast Software [01/07/2010 14:06:17] - |D| - [2037602] - C:\Program Files\Common Files\InstallShield [15/01/2022 09:18:32] - |D| - [1598] - C:\Program Files\Common Files\IObit [19/01/2022 15:13:17] - |D| - [646] - C:\Program Files\Common Files\IOTransfer [13/02/2022 03:54:10] - |D| - [2367528] - C:\Program Files\Common Files\Java [01/07/2010 14:23:30] - |D| - [5994919] - C:\Program Files\Common Files\mcafee [14/07/2009 03:37:05] - |D| - [21997795] - C:\Program Files\Common Files\microsoft shared [01/07/2010 14:15:22] - |D| - [354896] - C:\Program Files\Common Files\Oberon Media [13/02/2022 03:37:45] - |D| - [1763648] - C:\Program Files\Common Files\Oracle [14/07/2009 03:37:05] - |D| - [2702] - C:\Program Files\Common Files\Services [14/07/2009 03:37:05] - |D| - [41103783] - C:\Program Files\Common Files\SpeechEngines [14/07/2009 03:37:05] - |D| - [10102259] - C:\Program Files\Common Files\System [13/02/2022 04:13:10] - |D| - [421811369] - C:\Program Files\Common Files\Tracker Software [26/12/2021 12:48:14] - |D| - [0] - C:\Program Files\Common Files\Windows Live ---------- | Links to files c:\oem\preload\autorun\gui\acer generic guide\00\acersystem user guide.lnk -> C:\book\Generic_User_Guide.pdf - Status : OK c:\oem\preload\autorun\gui\acer quick guide\00\acersystem user quick guide.lnk -> C:\book\Quick_Guide.pdf - Status : OK c:\program files\acer accessory store\acer boutique accessoire.lnk -> C:\Program Files\Acer Accessory Store\StartUrl.exe - Status : OK c:\program files\bonjour\A propos de bonjour.lnk -> C:\Program Files\Bonjour\Bonjour.Resources\fr.lproj\About Bonjour.rtf - Status : OK c:\program files\microsoft games\freecell\freecellmce.lnk -> C:\Program Files\Microsoft Games\FreeCell\FreeCell.exe - Status : OK c:\program files\microsoft games\hearts\heartsmce.lnk -> C:\Program Files\Microsoft Games\Hearts\Hearts.exe - Status : OK c:\program files\microsoft games\purble place\purbleplacemce.lnk -> C:\Program Files\Microsoft Games\Purble Place\PurblePlace.exe - Status : OK c:\program files\microsoft games\solitaire\solitairemce.lnk -> C:\Program Files\Microsoft Games\Solitaire\Solitaire.exe - Status : OK c:\program files\microsoft games\spidersolitaire\spidersolitairemce.lnk -> C:\Program Files\Microsoft Games\SpiderSolitaire\SpiderSolitaire.exe - Status : OK c:\programdata\360safe\360disabled\acer vcm.lnk -> C:\Program Files\Acer\Acer VCM\AcerVCM.exe - Status : OK c:\programdata\microsoft\windows\start menu\default programs.lnk -> C:\Windows\system32\control.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\7-zip\7-zip file manager.lnk -> C:\Program Files\7-Zip\7zFM.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\7-zip\7-zip help.lnk -> C:\Program Files\7-Zip\7-zip.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\8gadgetpack\8gadgetpack tools.lnk -> C:\Program Files\Windows Sidebar\8GadgetPack.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\8gadgetpack\gadgets.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\8gadgetpack\uninstall 8gadgetpack.lnk -> C:\Windows\system32\msiexec.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\8gadgetpack\website.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\accessibility\speech recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\calculator.lnk -> C:\Windows\system32\calc.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\displayswitch.lnk -> C:\Windows\system32\displayswitch.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\paint.lnk -> C:\Windows\system32\mspaint.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\remote desktop connection.lnk -> C:\Windows\system32\mstsc.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\sound recorder.lnk -> C:\Windows\system32\SoundRecorder.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\sync center.lnk -> C:\Windows\System32\mobsync.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\system tools\character map.lnk -> C:\Windows\system32\charmap.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\system tools\dfrgui.lnk -> C:\Windows\system32\dfrgui.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\system tools\disk cleanup.lnk -> C:\Windows\system32\cleanmgr.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\system tools\resource monitor.lnk -> C:\Windows\system32\perfmon.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\system tools\system information.lnk -> C:\Windows\system32\msinfo32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\system tools\system restore.lnk -> C:\Windows\system32\rstrui.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\system tools\task scheduler.lnk -> C:\Windows\system32\taskschd.msc - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\system tools\windows easy transfer reports.lnk -> C:\Windows\system32\migwiz\postmig.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\system tools\windows easy transfer.lnk -> C:\Windows\system32\migwiz\migwiz.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\welcome center.lnk -> C:\Windows\system32\rundll32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\windows powershell\windows powershell ise.lnk -> C:\Windows\system32\WindowsPowerShell\v1.0\PowerShell_ISE.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\windows powershell\windows powershell.lnk -> C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\accessories\wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\acer\acer configuration manager for android(tm).lnk -> C:\Windows\Installer\{523281E5-91DD-49F5-9D85-954148F7596A}\AndroidManager.exe_F8F646A2401140B3B12F09FEE59D8357.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\acer\acer erecovery management.lnk -> C:\Program Files\Acer\Acer eRecovery Management\Recovery Management.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\acer\acer updater.lnk -> C:\Program Files\Acer\Acer Updater\ALU.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\acer\acer vcm.lnk -> C:\Program Files\Acer\Acer VCM\AcerVCM.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\acer\identity card.lnk -> C:\Program Files\Acer\Identity Card\IdentityCard.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\acer\welcome center.lnk -> C:\Program Files\Acer\Welcome Center\OEMWelcomeCenter.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\acer crystal eye webcam\acer crystal eye webcam.lnk -> C:\Program Files\Acer\Acer Crystal Eye webcam\CrystalEye.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\acer gamezone\acer gamezone online.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\acersystem\acersystem user guide.lnk -> C:\book\Generic_User_Guide.pdf - Status : OK c:\programdata\microsoft\windows\start menu\programs\acersystem\acersystem user quick guide.lnk -> C:\book\Quick_Guide.pdf - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\component services.lnk -> C:\Windows\system32\comexp.msc - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\computer management.lnk -> C:\Windows\system32\compmgmt.msc - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\data sources (odbc).lnk -> C:\Windows\system32\odbcad32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\event viewer.lnk -> C:\Windows\system32\eventvwr.msc - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\iscsi initiator.lnk -> C:\Windows\system32\iscsicpl.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\memory diagnostics tool.lnk -> C:\Windows\system32\MdSched.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\performance monitor.lnk -> C:\Windows\system32\perfmon.msc - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\services.lnk -> C:\Windows\system32\services.msc - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\system configuration.lnk -> C:\Windows\system32\msconfig.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\task scheduler.lnk -> C:\Windows\system32\taskschd.msc - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\windows firewall with advanced security.lnk -> C:\Windows\system32\WF.msc - Status : OK c:\programdata\microsoft\windows\start menu\programs\administrative tools\windows powershell modules.lnk -> C:\WINDOWS\system32\WindowsPowerShell\v1.0\powershell.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\adobe reader 9.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-A91000000001}\SC_Reader.ico - Status : OK c:\programdata\microsoft\windows\start menu\programs\advanced systemcare\advanced systemcare.lnk -> C:\Program Files\IObit\Advanced SystemCare\ASC.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\advanced systemcare\desinstaller advanced systemcare.lnk -> C:\Program Files\IObit\Advanced SystemCare\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\advanced systemcare\protect.lnk -> C:\Program Files\IObit\Advanced SystemCare\ASC.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\advanced systemcare\software updater.lnk -> C:\Program Files\IObit\Advanced SystemCare\ASC.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\advanced systemcare\speed up.lnk -> C:\Program Files\IObit\Advanced SystemCare\ASC.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\advanced systemcare\toolbox.lnk -> C:\Program Files\IObit\Advanced SystemCare\ASC.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\aimp\aimp.lnk -> C:\Program Files\AIMP\AIMP.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\aimp\audioconverter.lnk -> C:\Program Files\AIMP\AIMPac.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\aimp\history.lnk -> C:\Program Files\AIMP\history.txt - Status : OK c:\programdata\microsoft\windows\start menu\programs\aimp\homepage.lnk -> C:\Program Files\AIMP\AIMP.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\aimp\license.lnk -> C:\Program Files\AIMP\license.rtf - Status : OK c:\programdata\microsoft\windows\start menu\programs\aimp\tageditor.lnk -> C:\Program Files\AIMP\AIMPate.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\aimp\uninstall.lnk -> C:\Program Files\AIMP\Uninstall.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\anvisoft\anvi ad blocker ultimate\anvi ad blocker ultimate.lnk -> C:\Program Files\Anvisoft\Anvi AD Blocker Ultimate\adblocker2.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\anvisoft\anvi ad blocker ultimate\uninstall.lnk -> C:\Program Files\Anvisoft\Anvi AD Blocker Ultimate\uninstall.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\anvisoft\anvi smart defender\anvi smart defender.lnk -> C:\Program Files\Anvisoft\Anvi Smart Defender\ASD2.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\anvisoft\anvi smart defender\uninstall.lnk -> C:\Program Files\Anvisoft\Anvi Smart Defender\Uninstall.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\aomei backupper\aomei backupper.lnk -> C:\Program Files\AOMEI\AOMEI Backupper\ABLaucher.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\aomei backupper\desinstaller aomei backupper.lnk -> C:\Program Files\AOMEI\AOMEI Backupper\6.8.0\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\aomei backupper\manuel de l'utilisateur (pdf).lnk -> C:\Program Files\AOMEI\AOMEI Backupper\6.8.0\UserManual.pdf - Status : OK c:\programdata\microsoft\windows\start menu\programs\aomei partition assistant\aomei partition assistant 9.6.lnk -> I:\Program Files\AOMEI Partition Assistant\PartAssist.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\aomei partition assistant\uninstall aomei partition assistant.lnk -> I:\Program Files\AOMEI Partition Assistant\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\ashampoo\ashampoo burning studio 2021\ashampoo burning studio 2021 .lnk -> C:\Program Files\Ashampoo\Ashampoo Burning Studio 2021\burningstudio2021.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\ashampoo\ashampoo hdd control 3\ashampoo hdd control 3 .lnk -> C:\Program Files\Ashampoo\Ashampoo HDD Control 3\HDDC3.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\ashampoo\ashampoo hdd control 3\ashampoo hdd control 3 guard.lnk -> C:\Program Files\Ashampoo\Ashampoo HDD Control 3\HDDC3Guard.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\ashampoo\ashampoo registry cleaner 2\ashampoo registry cleaner 2 .lnk -> C:\Program Files\Ashampoo\Ashampoo Registry Cleaner 2\ARC2.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\audio related programs\audio editing software.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\audio related programs\audio file converter.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\audio related programs\cd ripper.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\audio related programs\multitrack recording software.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\audio related programs\streaming audio recorder.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\audioranger.lnk -> C:\Program Files\AudioRanger\AudioRanger.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\autohotkey\autohotkey help file.lnk -> C:\Program Files\AutoHotkey\AutoHotkey.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\autohotkey\autohotkey setup.lnk -> C:\Program Files\AutoHotkey\Installer.ahk - Status : OK c:\programdata\microsoft\windows\start menu\programs\autohotkey\autohotkey.lnk -> C:\Program Files\AutoHotkey\AutoHotkey.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\autohotkey\convert .ahk to .exe.lnk -> C:\Program Files\AutoHotkey\Compiler\Ahk2Exe.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\autohotkey\website.lnk -> C:\Program Files\AutoHotkey\AutoHotkey Website.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\autohotkey\window spy.lnk -> C:\Program Files\AutoHotkey\WindowSpy.ahk - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\autoit help file.lnk -> C:\Program Files\AutoIt3\AutoIt.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\autoit window info.lnk -> C:\Program Files\AutoIt3\Au3Info.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\check for updates.lnk -> C:\Program Files\AutoIt3\AutoIt3.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\compile script to .exe.lnk -> C:\Program Files\AutoIt3\Aut2Exe\Aut2exe.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\examples.lnk -> C:\Program Files\AutoIt3\Examples - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\extras\autoit v3 website.lnk -> C:\Program Files\AutoIt3\AutoIt v3 Website.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\extras\autoitx\autoitx help file.lnk -> C:\Program Files\AutoIt3\AutoItX\AutoItX.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\extras\autoitx\vbscript examples.lnk -> C:\Program Files\AutoIt3\AutoItX\ActiveX\VBScript - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\extras\browse extras.lnk -> C:\Program Files\AutoIt3\Extras - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\run script.lnk -> C:\Program Files\AutoIt3\AutoIt3.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\autoit v3\scite script editor.lnk -> C:\Program Files\AutoIt3\SciTE\SciTE.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\business related programs\accounting software.lnk -> C:\Program Files\NCH Software\Copper\copper.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\business related programs\inventory software.lnk -> C:\Program Files\NCH Software\Copper\copper.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\business related programs\invoicing software.lnk -> C:\Program Files\NCH Software\Copper\copper.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\business related programs\personal finance software.lnk -> C:\Program Files\NCH Software\Copper\copper.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\business related programs\retail pos point of sale software system.lnk -> C:\Program Files\NCH Software\Copper\copper.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\cardworks business card software.lnk -> C:\Program Files\NCH Software\CardWorks\cardworks.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\centre 360 security\360 total security\360 total security.lnk -> C:\Program Files\360\Total Security\QHSafeMain.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\centre 360 security\360 total security\appliquer le correctif.lnk -> C:\Program Files\360\Total Security\QHSafeMain.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\centre 360 security\360 total security\sandbox.lnk -> C:\Program Files\360\Total Security\ipc\360boxmain.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\copper point of sale software.lnk -> C:\Program Files\NCH Software\Copper\copper.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\crescendo - Editeur de notation de musique.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\deskfx audio effect processor.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\driver genius\driver genius sur internet.lnk -> C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\driver genius\driver genius.lnk -> C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\driver genius\desinstaller driver genius.lnk -> C:\Program Files\Driver-Soft\DriverGenius\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\driver genius\guide d’utilisation.lnk -> C:\Program Files\Driver-Soft\DriverGenius\Help\UserGuide_Fre.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\driverdoc\aide.lnk -> G:\Program Files\DriverDoc\DriverDoc.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\driverdoc\driverdoc.lnk -> G:\Program Files\DriverDoc\DriverDoc.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\driverdoc\desinstaller driverdoc.lnk -> G:\Program Files\DriverDoc\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\driverdoc\page d'accueil de driverdoc.lnk -> G:\Program Files\DriverDoc\HomePage.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\driverfix\driverfix homepage.lnk -> C:\Program Files\DriverFix\DriverFix.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\driverfix\driverfix.lnk -> C:\Program Files\DriverFix\DriverFix.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\driverpack\driverpack.lnk -> C:\Program Files\DriverPack\start.bat - Status : OK c:\programdata\microsoft\windows\start menu\programs\driverpack\uninstall.lnk -> C:\Program Files\DriverPack\Uninstall.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\easeus partition master\desinstaller easeus partition master.lnk -> C:\Program Files\EaseUS\EaseUS Partition Master Suite\ToolKits\EaseUS Partition Master\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\easeus partition master\easeus partition master.lnk -> C:\Program Files\EaseUS\EaseUS Partition Master Suite\ToolKits\EaseUS Partition Master\bin\Main.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\easeus partition master suite\desinstaller easeus partition master suite.lnk -> C:\Program Files\EaseUS\EaseUS Partition Master Suite\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\easeus partition master suite\easeus partition master suite.lnk -> C:\Program Files\EaseUS\EaseUS Partition Master Suite\bin\ToolKitMain.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\egistec\mywinlocker\mywinlocker.lnk -> C:\Program Files\EgisTec MyWinLocker\Launcher\x86\MiniLauncher.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\egistec\mywinlocker\online help.lnk -> C:\Program Files\EgisTec MyWinLocker\x86\OnlineHelp.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\egistec\shredder.lnk -> C:\Program Files\EgisTec Shredder\x86\ShredConsole.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\everything.lnk -> C:\Program Files\Everything\Everything.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\express accounts - logiciel de comptabilite.lnk -> C:\Program Files\NCH Software\ExpressAccounts\expressaccounts.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\express burn - logiciel de gravure de disques.lnk -> C:\Program Files\NCH Software\ExpressBurn\expressburn.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\express invoice - logiciel de facturation.lnk -> C:\Program Files\NCH Software\ExpressInvoice\expressinvoice.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\express rip - extracteur de cd.lnk -> C:\Program Files\NCH Software\ExpressRip\expressrip.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\express scribe - logiciel de transcription.lnk -> C:\Program Files\NCH Software\Scribe\scribe.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\express zip - compresseur de fichiers.lnk -> C:\Program Files\NCH Software\ExpressZip\expresszip.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\fastfox text expander software.lnk -> C:\Program Files\NCH Software\FastFox\fastfox.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\faststone image viewer\faststone image viewer help.lnk -> C:\Program Files\FastStone Image Viewer\FSViewerHelp.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\faststone image viewer\faststone image viewer.lnk -> C:\Program Files\FastStone Image Viewer\FSViewer.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\faststone image viewer\uninstall faststone image viewer.lnk -> C:\Program Files\FastStone Image Viewer\uninst.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\faststone image viewer\visit www.faststone.org.lnk -> C:\Program Files\FastStone Image Viewer\Website.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\filefort backup.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\finalwire\aida64 extreme\aida64 extreme documentation.lnk -> C:\Program Files\FinalWire\AIDA64 Extreme\aida64.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\finalwire\aida64 extreme\aida64 extreme.lnk -> C:\Program Files\FinalWire\AIDA64 Extreme\aida64.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\finalwire\aida64 extreme\page d'accueil de aida64 extreme.lnk -> C:\Program Files\FinalWire\AIDA64 Extreme\aida64.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\flexiserver – logiciel de productivite et de suivi de la presence.lnk -> C:\Program Files\NCH Software\FlexiServer\flexiserver.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\foxit reader\foxit reader.lnk -> C:\Program Files\Foxit Reader\FoxitReader.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\games\airport mania first flight.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\games\freecell.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\games\gameexplorer.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\games\games for windows marketplace.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\games\hearts.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\games\minesweeper.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\games\purble place.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\games\solitaire.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\games\spider solitaire.lnk -> - Status : OK c:\programdata\microsoft\windows\start menu\programs\golden videos vhs to dvd converter.lnk -> C:\Program Files\NCH Software\GoldenVideos\goldenvideos.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\google chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\graphics related programs\cd label maker.lnk -> C:\Program Files\NCH Software\CardWorks\cardworks.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\graphics related programs\diagram and flowchart software.lnk -> C:\Program Files\NCH Software\CardWorks\cardworks.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\graphics related programs\house design software.lnk -> C:\Program Files\NCH Software\CardWorks\cardworks.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\graphics related programs\image file converter.lnk -> C:\Program Files\NCH Software\CardWorks\cardworks.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\graphics related programs\photo editing software.lnk -> C:\Program Files\NCH Software\CardWorks\cardworks.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\greenshot\greenshot.lnk -> C:\Program Files\Greenshot\Greenshot.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\greenshot\license.txt.lnk -> C:\Program Files\Greenshot\license.txt - Status : OK c:\programdata\microsoft\windows\start menu\programs\greenshot\readme.txt.lnk -> C:\Program Files\Greenshot\readme.txt - Status : OK c:\programdata\microsoft\windows\start menu\programs\greenshot\uninstall greenshot.lnk -> C:\Program Files\Greenshot\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\intel® matrix storage manager\intel® matrix storage console.lnk -> C:\Program Files\Intel\Intel Matrix Storage Manager\Shell.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\inventoria - logiciel de gestion des stocks.lnk -> C:\Program Files\NCH Software\Inventoria\inventoria.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\iobit software updater\desinstaller iobit software updater.lnk -> C:\Program Files\IObit\Software Updater\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\iobit software updater\iobit software updater.lnk -> C:\Program Files\IObit\Software Updater\SoftwareUpdater.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\itop vpn\desinstaller itop vpn.lnk -> D:\Program Files\iTop VPN\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\itop vpn\itop vpn.lnk -> D:\Program Files\iTop VPN\iTopVPN.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\java\a propos de java.lnk -> C:\Program Files\Java\jre1.8.0_321\bin\javacpl.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\java\configurer java.lnk -> C:\Program Files\Java\jre1.8.0_321\bin\javacpl.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\java\rechercher les mises a jour.lnk -> C:\Program Files\Java\jre1.8.0_321\bin\javacpl.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\codec tweak tool.lnk -> C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\directvobsub.lnk -> C:\Windows\System32\rundll32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\ffdshow vfw interface.lnk -> C:\Windows\System32\rundll32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\lav audio.lnk -> C:\Windows\System32\rundll32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\lav splitter (mpc-hc internal).lnk -> C:\Program Files\K-Lite Codec Pack\MPC-HC\mpc-hc.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\lav splitter.lnk -> C:\Windows\System32\rundll32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\lav video.lnk -> C:\Windows\System32\rundll32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\madvr.lnk -> C:\Program Files\K-Lite Codec Pack\Filters\madVR\madHcCtrl.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\mpc video renderer.lnk -> C:\Windows\System32\rundll32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\x264 vfw (x86).lnk -> C:\Windows\System32\rundll32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\xvid vfw.lnk -> C:\Windows\System32\rundll32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\configuration\xysubfilter.lnk -> C:\Windows\System32\rundll32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\media player classic.lnk -> C:\Program Files\K-Lite Codec Pack\MPC-HC\mpc-hc.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\tools\graphstudionext.lnk -> C:\Program Files\K-Lite Codec Pack\Tools\GraphStudioNext.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\tools\mediainfo.lnk -> C:\Program Files\K-Lite Codec Pack\Tools\mediainfo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\k-lite codec pack\uninstall\uninstall k-lite codec pack.lnk -> C:\Program Files\K-Lite Codec Pack\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\maintenance\backup and restore center.lnk -> C:\Windows\System32\control.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\maintenance\create recovery disc.lnk -> C:\Windows\system32\recdisc.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\maintenance\remote assistance.lnk -> C:\Windows\system32\msra.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\microsoft games for windows marketplace\games for windows marketplace.lnk -> C:\Program Files\Microsoft Games for Windows - LIVE\Client\GFWLive.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\microsoft silverlight\microsoft silverlight.lnk -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\Silverlight.Configuration.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\mixpad - mixeur de fichiers audio.lnk -> C:\Program Files\NCH Software\MixPad\mixpad.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\mobogenie3\mobogenie3.lnk -> D:\Program Files\Mobogenie3\Mobogenie.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\mobogenie3\uninstall.lnk -> D:\Program Files\Mobogenie3\Uninstall.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\moneyline.lnk -> C:\Program Files\NCH Software\MoneyLine\moneyline.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\multicommander\multicommander.lnk -> C:\Program Files\MultiCommander\MultiCommander.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\multicommander\uninstall multicommander.lnk -> C:\Program Files\MultiCommander\Uninstall MultiCommander.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\multicommander\update multicommander.lnk -> C:\Program Files\MultiCommander\MultiUpdate.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\nch software suite\accounting software.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\nch software suite\audio editing software.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\nch software suite\audio file converter.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\nch software suite\express burn cd, dvd or blu-ray.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\nch software suite\invoice software.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\nch software suite\multitrack recording software.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\nch software suite\transcription software.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\nch software suite\video capture software.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\nch software suite\video editing software.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\nch software suite\video file converter.lnk -> C:\Program Files\NCH Software\DeskFX\deskfx.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\onesafe driver manager\aide.lnk -> D:\Program Files\OneSafe Driver Manager\OneSafeDriverManager.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\onesafe driver manager\desinstaller onesafe driver manager.lnk -> D:\Program Files\OneSafe Driver Manager\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\onesafe driver manager\onesafe driver manager.lnk -> D:\Program Files\OneSafe Driver Manager\OneSafeDriverManager.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\onesafe driver manager\page d'accueil de onesafe driver manager.lnk -> D:\Program Files\OneSafe Driver Manager\HomePage.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\onesafe total pc care\aide.lnk -> I:\Program Files\OneSafe Total PC Care\OneSafeTotalPCCare.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\onesafe total pc care\desinstaller onesafe total pc care.lnk -> I:\Program Files\OneSafe Total PC Care\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\onesafe total pc care\onesafe total pc care.lnk -> I:\Program Files\OneSafe Total PC Care\OneSafeTotalPCCare.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\onesafe total pc care\page d'accueil de onesafe total pc care.lnk -> I:\Program Files\OneSafe Total PC Care\HomePage.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\onesafe total pc care\verifiez les mises a jour.lnk -> I:\Program Files\OneSafe Total PC Care\OneSafeTotalPCCare.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\pc speed maximizer\help.lnk -> I:\Program Files\PC Speed Maximizer\PCSpeedMaximizer.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\pc speed maximizer\pc speed maximizer.lnk -> I:\Program Files\PC Speed Maximizer\PCSpeedMaximizer.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\pc speed maximizer\uninstall pc speed maximizer.lnk -> I:\Program Files\PC Speed Maximizer\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\potplayer\potplayer.lnk -> C:\Program Files\DAUM\PotPlayer\PotPlayerMini.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\potplayer\uninstall potplayer.lnk -> C:\Program Files\DAUM\PotPlayer\uninstall.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes audio\convertisseur de fichiers audio.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes audio\enregistreur de streaming audio.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes audio\enregistreur multipiste.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes audio\extracteur de cd.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes audio\Editeur audio.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes de dictee et de transcription\didacticiel de dactylographie.lnk -> C:\Program Files\NCH Software\Scribe\scribe.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes de dictee et de transcription\logiciel de dictee.lnk -> C:\Program Files\NCH Software\Scribe\scribe.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes de dictee et de transcription\logiciel de transcription.lnk -> C:\Program Files\NCH Software\Scribe\scribe.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes pour l'entreprise\logiciel de caisse enregistreuse.lnk -> C:\Program Files\NCH Software\FlexiServer\flexiserver.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes pour l'entreprise\logiciel de comptabilite.lnk -> C:\Program Files\NCH Software\FlexiServer\flexiserver.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes pour l'entreprise\logiciel de facturation.lnk -> C:\Program Files\NCH Software\FlexiServer\flexiserver.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes pour l'entreprise\logiciel de finances personnelles.lnk -> C:\Program Files\NCH Software\FlexiServer\flexiserver.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\programmes pour l'entreprise\logiciel de gestion de l’inventaire.lnk -> C:\Program Files\NCH Software\FlexiServer\flexiserver.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\recordpad - enregistreur audio.lnk -> C:\Program Files\NCH Software\Recordpad\recordpad.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\actions\envoyer un rapport de bug.lnk -> D:\Program Files\RFA 11\sysrep32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\actions\registry first aid mode non-administrateur.lnk -> D:\Program Files\RFA 11\reg1aid32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\actions\rfa defragmenter le registre.lnk -> D:\Program Files\RFA 11\RFA_start.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\actions\rfa full registry backup.lnk -> D:\Program Files\RFA 11\RFA_start.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\actions\rfa full registry restore.lnk -> D:\Program Files\RFA 11\RFA_start.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\actions\rfa gestionnaire du registre.lnk -> D:\Program Files\RFA 11\reg1aid32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\actions\rfa recherche dans le registre.lnk -> D:\Program Files\RFA 11\reg1aid32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\actions\rfa registry snapshot.lnk -> D:\Program Files\RFA 11\reg1aid32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\actions\rfa restaurer sauvegarde de registre.lnk -> D:\Program Files\RFA 11\reg1aid32.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\actions\rfa scanner et reparer le registre.lnk -> D:\Program Files\RFA 11\RFA_start.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\aide registry first aid.lnk -> D:\Program Files\RFA 11\HELP\reg1aid.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\registry first aid 11\registry first aid 11.lnk -> D:\Program Files\RFA 11\RFA_start.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\roguekiller\roguekiller.lnk -> C:\Program Files\RogueKiller\RogueKiller.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\seamonkey\profile manager.lnk -> C:\Program Files\SeaMonkey\seamonkey.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\seamonkey\seamonkey (safe mode).lnk -> C:\Program Files\SeaMonkey\seamonkey.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\seamonkey\seamonkey mail.lnk -> C:\Program Files\SeaMonkey\seamonkey.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\seamonkey\seamonkey.lnk -> C:\Program Files\SeaMonkey\seamonkey.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\skype\skype.lnk -> C:\Program Files\Microsoft\Skype for Desktop\Skype.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\soundtap - enregistreur d'audio en streaming.lnk -> C:\Program Files\NCH Software\SoundTap\soundtap.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\stardock\objectdock.lnk -> C:\Program Files\Stardock\ObjectDock\ObjectDock.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\startup\intego antivirus.lnk -> C:\Program Files\Intego\Intego.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\suite nch software\convertisseur de fichiers audio.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\suite nch software\convertisseur de fichiers video.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\suite nch software\enregistreur multipiste.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\suite nch software\express burn - cd, dvd ou blu-ray.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\suite nch software\logiciel de capture video.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\suite nch software\logiciel de comptabilite.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\suite nch software\logiciel de facturation.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\suite nch software\logiciel de montage video.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\suite nch software\logiciel de transcription.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\suite nch software\Editeur audio.lnk -> C:\Program Files\NCH Software\Crescendo\crescendo.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\tracker software\pdf-xchange editor\pdf-xchange editor help.lnk -> C:\Program Files\Tracker Software\PDF Editor\Help\PDFXVE8Sm.pdf - Status : OK c:\programdata\microsoft\windows\start menu\programs\tracker software\pdf-xchange editor\pdf-xchange editor license agreement.lnk -> C:\Program Files\Tracker Software\PDF Editor\PDF_VE.pdf - Status : OK c:\programdata\microsoft\windows\start menu\programs\tracker software\pdf-xchange editor.lnk -> C:\Program Files\Tracker Software\PDF Editor\PDFXEdit.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\tracker software\pdf-xchange lite\pdf-xchange lite license agreement.lnk -> C:\Program Files\Tracker Software\PDF-XChange Lite\Help\PDFXLicense.pdf - Status : OK c:\programdata\microsoft\windows\start menu\programs\tracker software\pdf-xchange lite\pdf-xchange lite pdfsaver.lnk -> C:\Program Files\Tracker Software\PDF-XChange Lite\pdfSaverL.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\tracker software\pdf-xchange lite\pdf-xchange lite user manual.lnk -> C:\Program Files\Tracker Software\PDF-XChange Lite\Help\PDFX8ManLiteSm.pdf - Status : OK c:\programdata\microsoft\windows\start menu\programs\tracker software\tracker updater.lnk -> C:\Program Files\Tracker Software\Update\TrackerUpdate.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\utorrent\utorrent.lnk -> C:\Program Files\uTorrent\uTorrent.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\utorrent\Oaaeeou.lnk -> C:\Program Files\uTorrent\Uninstall.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\verity parental control software.lnk -> C:\Program Files\NCH Software\Verity\verity.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\video related programs\slideshow software.lnk -> C:\Program Files\NCH Software\GoldenVideos\goldenvideos.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\video related programs\vhs to digital converter software.lnk -> C:\Program Files\NCH Software\GoldenVideos\goldenvideos.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\video related programs\video capture software.lnk -> C:\Program Files\NCH Software\GoldenVideos\goldenvideos.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\video related programs\video editing software.lnk -> C:\Program Files\NCH Software\GoldenVideos\goldenvideos.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\video related programs\video file converter.lnk -> C:\Program Files\NCH Software\GoldenVideos\goldenvideos.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\videolan\documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\videolan\release notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt - Status : OK c:\programdata\microsoft\windows\start menu\programs\videolan\videolan website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\videolan\vlc media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\videolan\vlc media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\videolan\vlc media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\videopad - logiciel de montage video.lnk -> C:\Program Files\NCH Software\VideoPad\videopad.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\voxal modificateur de voix.lnk -> C:\Program Files\NCH Software\Voxal\voxal.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\wavepad - Editeur audio.lnk -> C:\Program Files\NCH Software\WavePad\wavepad.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\windows fax and scan.lnk -> C:\Windows\system32\WFS.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\windows live\windows live call.lnk -> C:\Program Files\Windows Live\Messenger\wlcstart.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\windows live\windows live messenger .lnk -> C:\Program Files\Windows Live\Messenger\msnmsgr.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\windows live\windows live writer.lnk -> C:\Program Files\Windows Live\Writer\WindowsLiveWriter.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\windows media player.lnk -> C:\Program Files\Windows Media Player\wmplayer.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\winutilities\help document.lnk -> G:\Program Files\WinUtilities\help.chm - Status : OK c:\programdata\microsoft\windows\start menu\programs\winutilities\uninstall winutilities.lnk -> G:\Program Files\WinUtilities\unins000.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\winutilities\winutilities.lnk -> G:\Program Files\WinUtilities\WinUtil.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\xps viewer.lnk -> C:\Windows\system32\xpsrchvw.exe - Status : OK c:\programdata\microsoft\windows\start menu\programs\youtube downloader hd\flv converter.lnk -> C:\Program Files\Youtube Downloader HD\flv2avi.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\youtube downloader hd\other free programs\free duplicate photo finder on the web.lnk -> C:\Program Files\Youtube Downloader HD\DuplicatePhotoFinder.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\youtube downloader hd\visit website.lnk -> C:\Program Files\Youtube Downloader HD\YoutubeDownloaderHD.url - Status : OK c:\programdata\microsoft\windows\start menu\programs\youtube downloader hd\youtube downloader hd.lnk -> C:\Program Files\Youtube Downloader HD\YouTubeDownloaderHD.exe - Status : OK c:\programdata\microsoft\windows\start menu\windows update.lnk -> C:\Windows\system32\wuapp.exe - Status : OK c:\users\default\appdata\roaming\microsoft\internet explorer\quick launch\shows desktop.lnk -> - Status : OK c:\users\default\appdata\roaming\microsoft\internet explorer\quick launch\window switcher.lnk -> - Status : OK c:\users\default\appdata\roaming\microsoft\windows\sendto\fax recipient.lnk -> C:\Windows\system32\WFS.exe - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\accessibility\ease of access.lnk -> C:\Windows\system32\control.exe - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\accessibility\magnify.lnk -> C:\Windows\system32\magnify.exe - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\accessibility\narrator.lnk -> C:\Windows\system32\narrator.exe - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\accessibility\on-screen keyboard.lnk -> C:\Windows\system32\osk.exe - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\command prompt.lnk -> C:\Windows\system32\cmd.exe - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\notepad.lnk -> C:\Windows\system32\notepad.exe - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\run.lnk -> - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\system tools\computer.lnk -> - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\system tools\control panel.lnk -> - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\system tools\private character editor.lnk -> C:\Windows\system32\eudcedit.exe - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\windows explorer.lnk -> C:\Windows\explorer.exe - Status : OK c:\users\default\appdata\roaming\microsoft\windows\start menu\programs\maintenance\help.lnk -> - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\bcuninstaller.lnk -> C:\Program Files\BCUninstaller\BCUninstaller.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\easeus partition master.lnk -> C:\Program Files\EaseUS\EaseUS Partition Master Suite\ToolKits\EaseUS Partition Master\bin\Main.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\everything.lnk -> C:\Program Files\Everything\Everything.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\google chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\launch internet explorer browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\mobogenie3.lnk -> D:\Program Files\Mobogenie3\Mobogenie.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\multicommander.lnk -> C:\Program Files\MultiCommander\MultiCommander.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\opera neon.lnk -> C:\Users\Gregy&Justy\AppData\Local\Opera Software\Opera Neon\Application\neon.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\revo uninstaller pro.lnk -> C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\seamonkey.lnk -> C:\Program Files\SeaMonkey\seamonkey.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\shows desktop.lnk -> - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\startmenu\iobit uninstall tool.lnk -> C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\google chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\internet explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\opera neon.lnk -> C:\Users\Gregy&Justy\AppData\Local\Opera Software\Opera Neon\Application\neon.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\welcome center.lnk -> C:\Program Files\Acer\Welcome Center\OEMWelcomeCenter.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\windows explorer.lnk -> C:\Windows\explorer.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar\windows media player.lnk -> C:\Program Files\Windows Media Player\wmplayer.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\winamp.lnk -> C:\Program Files\Winamp\winamp.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\window switcher.lnk -> - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\internet explorer\quick launch\yandex.lnk -> C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\recent\choix-formatage-disque-e-bug-startmestick.jpg.lnk -> D:\choix-formatage-disque-e-bug-startmestick.jpg - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\recent\disque local (d).lnk -> D:\ - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\recent\lien cjen fat43oint help for conversion micro sd.txt.lnk -> D:\LIEN CJEN FAT43OINT HELP FOR CONVERSION MICRO SD.txt - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\recent\samdrivers_21.12.iso.lnk -> C:\Users\Gregy&Justy\Documents\SamDrivers_21.12.iso - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\sendto\fax recipient.lnk -> C:\Windows\system32\WFS.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\sendto\media player classic.lnk -> C:\Program Files\K-Lite Codec Pack\MPC-HC\mpc-hc.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\sendto\mediainfo.lnk -> C:\Program Files\K-Lite Codec Pack\Tools\mediainfo.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\accessibility\ease of access.lnk -> C:\Windows\system32\control.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\accessibility\magnify.lnk -> C:\Windows\system32\magnify.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\accessibility\narrator.lnk -> C:\Windows\system32\narrator.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\accessibility\on-screen keyboard.lnk -> C:\Windows\system32\osk.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\command prompt.lnk -> C:\Windows\system32\cmd.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\notepad.lnk -> C:\Windows\system32\notepad.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\run.lnk -> - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\system tools\computer.lnk -> - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\system tools\control panel.lnk -> - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\system tools\internet explorer (no add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\system tools\private character editor.lnk -> C:\Windows\system32\eudcedit.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\accessories\windows explorer.lnk -> C:\Windows\explorer.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\boost\boost.lnk -> C:\Users\Gregy&Justy\AppData\Roaming\Reason\Boost\boost.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\boost\uninstall boost.lnk -> C:\Windows\System32\msiexec.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\gotomeeting.lnk -> C:\Users\Gregy&Justy\AppData\Local\GoToMeeting\19932\g2mstart.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\internet explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\linuxlive usb creator\lili usb creator.lnk -> C:\Program Files\LinuxLive USB Creator\LiLi USB Creator.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\linuxlive usb creator\uninstall linuxlive usb creator.lnk -> C:\Program Files\LinuxLive USB Creator\Uninstall.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\maintenance\help.lnk -> - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\navigateur opera.lnk -> C:\Users\Gregy&Justy\AppData\Local\Programs\Opera\launcher.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\accounting software.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\classic ftp software.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\doxillion document converter.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\express burn cd, dvd or blu-ray.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\express dictate recorder.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\express rip cd ripper.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\express zip file compression.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\graphics file converter.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\invoicing software.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\mixpad multitrack mixer.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\prism video file format converter.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\recordpad sound recorder.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\soundtap streaming recorder.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\switch sound file converter.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\video capture software.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\videopad video editor.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\nch software suite\wavepad sound editor.lnk -> C:\Program Files\NCH Software\FileFort\filefort.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\opera neon.lnk -> C:\Users\Gregy&Justy\AppData\Local\Opera Software\Opera Neon\Application\neon.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\potplayer\potplayer.lnk -> C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\potplayer\Oaaeeou potplayer.lnk -> C:\Program Files\Daum\PotPlayer\UnInst.exe - Status : OK c:\users\gregy&justy\appdata\roaming\microsoft\windows\start menu\programs\startup\stardock objectdock.lnk -> C:\Program Files\Stardock\ObjectDock\ObjectDock.exe - Status : OK c:\users\gregy&justy\desktop\aida64 extreme.lnk -> C:\Program Files\FinalWire\AIDA64 Extreme\aida64.exe - Status : OK c:\users\gregy&justy\desktop\driver genius.lnk -> C:\Program Files\Driver-Soft\DriverGenius\DriverGenius.exe - Status : OK c:\users\gregy&justy\desktop\drive_shortcut.lnk -> C:\Program Files\Drive_Shortcut\Drive_Shortcut.exe - Status : OK c:\users\gregy&justy\desktop\e.lnk -> E:\ - Status : OK c:\users\gregy&justy\desktop\gotomeeting.lnk -> C:\Users\Gregy&Justy\AppData\Local\GoToMeeting\19932\g2mstart.exe - Status : OK c:\users\gregy&justy\desktop\onesafe total pc care.lnk -> I:\Program Files\OneSafe Total PC Care\OneSafeTotalPCCare.exe - Status : OK c:\users\gregy&justy\desktop\opera neon.lnk -> C:\Users\Gregy&Justy\AppData\Local\Opera Software\Opera Neon\Application\neon.exe - Status : OK c:\users\gregy&justy\desktop\pc speed maximizer.lnk -> I:\Program Files\PC Speed Maximizer\PCSpeedMaximizer.exe - Status : OK c:\users\gregy&justy\desktop\potplayer.lnk -> C:\Program Files\DAUM\PotPlayer\PotPlayerMini64.exe - Status : OK c:\users\gregy&justy\desktop\world of tanks.lnk -> - Status : OK c:\users\gregy&justy\desktop\world of warships.lnk -> - Status : OK c:\users\gregy&justy\desktop\yandex.lnk -> C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe - Status : OK c:\users\gregy&justy\desktop\youtube downloader hd.lnk -> C:\Program Files\Youtube Downloader HD\YouTubeDownloaderHD.exe - Status : OK c:\users\gregy&justy\desktop\ßíäåêñ.Èãðû.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\1.lnk -> C:\Users\Gregy&Justy - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\10.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\11.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\2.lnk -> C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Libraries\Documents.library-ms - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\20.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\21.lnk -> C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Libraries\Videos.library-ms - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\22.lnk -> C:\Users\Gregy&Justy\Downloads - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\23.lnk -> C:\Users\Public\Libraries\RecordedTV.library-ms - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\24.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\25.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\26.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\3.lnk -> C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Libraries\Pictures.library-ms - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\31.lnk -> C:\Users\Gregy&Justy\Favorites - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\4.lnk -> C:\Users\Gregy&Justy\AppData\Roaming\Microsoft\Windows\Libraries\Music.library-ms - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\5.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\6.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\7.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\8.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\program files\stardock\start10\links\9.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\programdata\microsoft\windows\start menu\programs\administrative tools\memory diagnostics tool.lnk -> C:\Windows\system32\MdSched.exe - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\programdata\microsoft\windows\start menu\programs\administrative tools\registry editor.lnk -> C:\Windows\regedit.exe - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessibility\ease of access center.lnk -> - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessibility\narrator.lnk -> C:\Windows\system32\narrator.exe - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\users\default\appdata\roaming\microsoft\windows\start menu\programs\accessories\notepad.lnk -> C:\Windows\system32\notepad.exe - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\users\default\appdata\roaming\microsoft\windows\start menu\programs\system tools\command prompt.lnk -> C:\Windows\system32\cmd.exe - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\windows\winsxs\amd64_microsoft-windows-commandprompt-shortcut_31bf3856ad364e35_10.0.19041.1_none_efaf63248e6d4479\command prompt.lnk -> C:\Windows\system32\cmd.exe - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\windows\winsxs\amd64_microsoft-windows-m..diagnostic-schedule_31bf3856ad364e35_10.0.19041.1_none_49c7a9c019150ac4\memory diagnostics tool.lnk -> C:\Windows\system32\MdSched.exe - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\windows\winsxs\amd64_microsoft-windows-narrator_31bf3856ad364e35_10.0.19041.1_none_740ee67443167eb4\narrator.lnk -> C:\Windows\system32\narrator.exe - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\windows\winsxs\amd64_microsoft-windows-notepad_31bf3856ad364e35_10.0.19041.1_none_250b9aff0f5d41ee\notepad.lnk -> C:\Windows\system32\notepad.exe - Status : OK c:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\antivirus\malwarebytes\windows\winsxs\amd64_microsoft-windows-registry-editor_31bf3856ad364e35_10.0.19041.1_none_aa1fc2e87b362d12\registry editor.lnk -> C:\Windows\regedit.exe - Status : OK ---------- | Tasks [MD5.00000000000000000000000000000000] - [13/02/2022 14:28:05] - |D| - [0] - C:\Windows\Tasks\360Disabled [MD5.81FC1B2E4BC1E45737314C831410CD5F] - [12/02/2022 22:26:46] - |A| - [368] - C:\Windows\Tasks\Anvi AD Blocker Ultimate.job [MD5.C5ADADE5D33710B59DAAC6FFFFF45EA4] - [09/02/2022 11:56:33] - |A| - [360] - C:\Windows\Tasks\ASD_Main.job [MD5.C4C9EC65856CE25FFA664F1F2B92309D] - [31/01/2022 20:42:11] - |A| - [350] - C:\Windows\Tasks\ASR-Startup.job [MD5.CC8E413B39DBCF66D4A22B2462CED1AB] - [10/02/2022 14:17:08] - |A| - [436] - C:\Windows\Tasks\FixMeStickRunOnReboot.job [MD5.188AB259C499BD71F0139EA221742C8D] - [13/02/2022 03:16:54] - |A| - [574] - C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-3649652723-2583502882-2903364766-1000.job [MD5.19D15C06F3AC56BF86128ED6E6314C33] - [13/02/2022 03:16:55] - |A| - [670] - C:\Windows\Tasks\G2MUploadTask-S-1-5-21-3649652723-2583502882-2903364766-1000.job [MD5.00000000000000000000000000000000] - [19/01/2022 12:04:07] - |D| - [0] - C:\Windows\Tasks\ImCleanDisabled [MD5.9A6CFE43B16C5CA61BBAF1B68A7DBC36] - [13/02/2022 16:21:56] - |A| - [464] - C:\Windows\Tasks\Mise a jour du navigateur Yandex.job [MD5.AC8097F9B53E3C0D2C99AF1E58C66499] - [06/02/2022 20:35:45] - |A| - [462] - C:\Windows\Tasks\Mise a jour systeme du Navigateur Yandex.job [MD5.056BE12DC159E7998363A06D9617FCDE] - [06/02/2022 20:35:50] - |A| - [430] - C:\Windows\Tasks\Reparation du service de mise a jour de navigateur Yandex.job [MD5.F1A6CD5ADAAB953A6764EA364E17BFB8] - [14/07/2009 05:53:47] - |AH| - [6] - C:\Windows\Tasks\SA.DAT [MD5.78ABFF5999229E8F5485E32164FB3F28] - [14/07/2009 05:53:46] - |A| - [11000] - C:\Windows\Tasks\SCHEDLGU.TXT [MD5.30B98087E73FF75AF0381D37AE3F3030] - [09/02/2022 10:23:40] - |A| - [238] - C:\Windows\Tasks\Scheduled Update for Ask Toolbar.job [MD5.EE1CB5396E885611FD2701B35D9AECE0] - [13/02/2022 04:17:29] - |A| - [638] - C:\Windows\Tasks\TrackerAutoUpdate.job [MD5.00000000000000000000000000000000] - [18/01/2022 07:14:15] - |D| - [7562] - C:\Windows\System32\Tasks\Avast Software [MD5.879EE68B12FE0FE6B10BAE47CFCFEEC6] - [26/12/2021 13:30:29] - |A| - [3364] - C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore : C:\Program Files\Google\Update\GoogleUpdate.exe [MD5.C4DC5EF4C5971EB3C09A13AB2298A631] - [26/12/2021 13:30:29] - |A| - [3492] - C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA : C:\Program Files\Google\Update\GoogleUpdate.exe [MD5.76B59AD8BFBE2F98FFD29B94C35B7B0B] - [20/01/2022 08:44:00] - |A| - [3170] - C:\Windows\System32\Tasks\iTopVPN_Scheduler_Gregy&Justy : "D:\Program Files\iTop VPN\iTopVPN.exe" [MD5.E14DCAC9298FF6139D6C5BB627FBA9B5] - [20/01/2022 08:43:52] - |A| - [2968] - C:\Windows\System32\Tasks\iTopVPN_SkipUAC_Gregy&Justy : "D:\Program Files\iTop VPN\iTopVPN.exe" [MD5.BF1BCC891E9E85E83B1A9632E0B8846A] - [20/01/2022 08:44:08] - |A| - [3212] - C:\Windows\System32\Tasks\iTopVPN_Update_Gregy&Justy : "D:\Program Files\iTop VPN\atud.exe" [MD5.00000000000000000000000000000000] - [14/07/2009 03:37:09] - |D| - [158868] - C:\Windows\System32\Tasks\Microsoft [MD5.DFC3D754D1296B3B302C2A2DAB63B733] - [06/02/2022 20:35:46] - |A| - [3554] - C:\Windows\System32\Tasks\Mise a jour systeme du Navigateur Yandex : C:\Program Files\Yandex\YandexBrowser\22.1.3.850\service_update.exe [MD5.00000000000000000000000000000000] - [09/02/2022 07:23:44] - |D| - [3532] - C:\Windows\System32\Tasks\Mozilla [MD5.00000000000000000000000000000000] - [11/02/2022 23:53:00] - |D| - [3554] - C:\Windows\System32\Tasks\NCH Software [MD5.E666D56DC64638A4365C0775351E4A3F] - [08/02/2022 15:21:13] - |A| - [3074] - C:\Windows\System32\Tasks\OneSafe Driver Manager automatic scan and new device notifications : "D:\Program Files\OneSafe Driver Manager\SDMTray.exe" [MD5.7D5F5B440DD87867222A361F48B1ECE7] - [06/02/2022 20:35:50] - |A| - [3426] - C:\Windows\System32\Tasks\Reparation du service de mise a jour de navigateur Yandex : C:\Program Files\Yandex\YandexBrowser\22.1.3.850\service_update.exe [MD5.AF5C34FE605A4A1C4D8F32C446BB4304] - [20/01/2022 09:32:13] - |A| - [3406] - C:\Windows\System32\Tasks\SU_AutoUpdate : "C:\Program Files\IObit\Software Updater\SoftwareUpdater.exe" [MD5.00000000000000000000000000000000] - [14/07/2009 05:54:35] - |D| - [0] - C:\Windows\System32\Tasks\WPD ---------- | Firewall [HKLM\SYSTEM\CurrentControlSet\Services\sharedaccess\Parameters\FirewallPolicy\FirewallRules] "Netlogon-NamedPipe-In"=v2.10|Action=Allow|Active=FALSE|Dir=In|Protocol=6|LPort=445|App=System|Name=@netlogon.dll,-1003|Desc=@netlogon.dll,-1006|EmbedCtxt=@netlogon.dll,-1010| "{BF674D3B-309A-4F76-BFE7-556597C54C8C}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=5353|App=C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\browser.exe|Name=Yandex (mDNS-In))|Desc=Regle d'arrivee pour Yandex pour autoriser le trafic mDNS|EmbedCtxt=Yandex| "{403B9FA7-E3AE-43CF-A326-37455D29BC46}"=v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|Profile=Private|LPort=89|App=C:\Program Files\NCH Software\FlexiServer\flexiserver.exe|Name=FlexiServer – Logiciel de productivite et de suivi de la presence|Desc=FlexiServer – Logiciel de productivite et de suivi de la presence Web Server|EmbedCtxt=FlexiServer| "{A26AC7BF-4064-4725-9505-C16295ADE937}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|Profile=Private|LPort=89|App=C:\Program Files\NCH Software\FlexiServer\flexiserver.exe|Name=FlexiServer – Logiciel de productivite et de suivi de la presence|Desc=FlexiServer – Logiciel de productivite et de suivi de la presence Web Server|EmbedCtxt=FlexiServer| "{256B85BE-BE7A-4629-A165-A96A63F91513}"=v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|Profile=Private|LPort=89|App=C:\Program Files\NCH Software\FlexiServer\flexiserver.exe|Name=FlexiServer – Logiciel de productivite et de suivi de la presence|Desc=FlexiServer – Logiciel de productivite et de suivi de la presence Port TCP/IP|EmbedCtxt=FlexiServer| "{E4DB8521-4AE4-437C-BBA6-D6DD90468497}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|Profile=Private|LPort=89|App=C:\Program Files\NCH Software\FlexiServer\flexiserver.exe|Name=FlexiServer – Logiciel de productivite et de suivi de la presence|Desc=FlexiServer – Logiciel de productivite et de suivi de la presence Port TCP/IP|EmbedCtxt=FlexiServer| "{979D15F7-12DD-4B23-8556-9B06EDBD646C}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=5353|App=C:\Program Files\Google\Chrome\Application\chrome.exe|Name=Google Chrome (mDNS-In)|Desc=Regle de trafic entrant pour Google Chrome autorisant le trafic mDNS|EmbedCtxt=Google Chrome| "{C10C3DB1-9E62-427A-B166-86812634E1B3}"=v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|Profile=Private|LPort=130|App=C:\Program Files\NCH Software\Verity\verity.exe|Name=Verity Parental Control Software|Desc=Verity Parental Control Software TCP/IP Port|EmbedCtxt=Verity| "{3E16EB20-B74F-4FAA-AFDD-4A33BCF796A8}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|Profile=Private|LPort=130|App=C:\Program Files\NCH Software\Verity\verity.exe|Name=Verity Parental Control Software|Desc=Verity Parental Control Software TCP/IP Port|EmbedCtxt=Verity| "{C65F20B8-21C6-48F6-850D-037CD90BB96F}"=v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=6|Profile=Domain|Profile=Private|LPort=130|App=C:\Program Files\NCH Software\Verity\verity.exe|Name=Verity Parental Control Software|Desc=Verity Parental Control Software TCP/IP Port|EmbedCtxt=Verity| "{ADB60196-D042-4646-A942-BCC149B5D443}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Domain|Profile=Private|LPort=130|App=C:\Program Files\NCH Software\Verity\verity.exe|Name=Verity Parental Control Software|Desc=Verity Parental Control Software TCP/IP Port|EmbedCtxt=Verity| "{CB736D4A-9C7D-4652-AF7E-493EFE69F7F2}"=v2.10|Action=Allow|Active=TRUE|Dir=Out|Protocol=17|Profile=Domain|Profile=Private|LPort=4100|App=C:\Program Files\NCH Software\Verity\verity.exe|Name=Verity Parental Control Software|Desc=uPNP Router Control Port|EmbedCtxt=Verity| "{6A8444DC-E176-438B-954A-7A30E523D5D4}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Domain|Profile=Private|LPort=4100|App=C:\Program Files\NCH Software\Verity\verity.exe|Name=Verity Parental Control Software|Desc=uPNP Router Control Port|EmbedCtxt=Verity| "{8DC4D7E8-C8FC-4413-91D7-050C4D75C8C6}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=5353|App=C:\Users\Gregy&Justy\AppData\Local\Opera Software\Opera Neon\Application\neon.exe|Name=Opera Neon (mDNS-In)|Desc=Regle de trafic entrant dans Opera Neon pour permettre le trafic mDNS.|EmbedCtxt=Opera Neon| "TCP Query User{223ECF8C-BAFF-42E2-A21E-6612CA1E8629}C:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\portableapps\driver talent pro 6.5.60.172\data\driver talent\local\stubexe\0x18f33e79f0e074a5\drivertalent.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Private|Profile=Public|App=C:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\portableapps\driver talent pro 6.5.60.172\data\driver talent\local\stubexe\0x18f33e79f0e074a5\drivertalent.exe|Name=Turbo Virtual Machine Executable|Desc=Turbo Virtual Machine Executable|Defer=User| "UDP Query User{63C0E8D0-E916-437E-8F58-97810DDA3339}C:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\portableapps\driver talent pro 6.5.60.172\data\driver talent\local\stubexe\0x18f33e79f0e074a5\drivertalent.exe"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|Profile=Public|App=C:\users\gregy&justy\documents\medicat usb v21.12\medicat.usb.v21.12\portableapps\driver talent pro 6.5.60.172\data\driver talent\local\stubexe\0x18f33e79f0e074a5\drivertalent.exe|Name=Turbo Virtual Machine Executable|Desc=Turbo Virtual Machine Executable|Defer=User| "{2B020B08-B184-4F76-BBFD-FCF1D23AFBB1}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|LPort=5353|App=C:\Users\Gregy&Justy\AppData\Local\Programs\Opera\83.0.4254.19\opera.exe|Name=Opera Internet Browser (mDNS-In)|Desc=Inbound rule to allow mDNS traffic.|EmbedCtxt=Opera Internet Browser| "{D53B1A8E-C33E-4D46-8383-ADB3AE9D273E}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Private|Profile=Public|App=C:\Program Files\Winamp\winamp.exe|Name=Winamp| "{D38BEE75-3F9E-4205-A6E8-4EAC4DC667A1}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Program Files\Bonjour\mDNSResponder.exe|Name=Service Bonjour| "{0CE1F70F-29AA-40F4-860E-E7EEEB0EAFBC}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Program Files\Bonjour\mDNSResponder.exe|Name=Service Bonjour| "{258C2750-F032-4B24-BB7C-93E0499CE811}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Program Files\360\Total Security\softmgr\360InstantSetup.exe|Name=360 Total Security| "{66716584-8D43-42C0-BAD1-A3C12534F675}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Program Files\360\Total Security\softmgr\360InstantSetup.exe|Name=360 Total Security| "{4303329B-6D8C-4CDA-BDE4-7D79DC398AE0}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Program Files\360\Total Security\safemon\QHSafeTray.exe|Name=360 Total Security| "{415ADEAD-3AB5-4E49-B2FD-B76A1F6ABD9D}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Program Files\360\Total Security\safemon\QHSafeTray.exe|Name=360 Total Security| "{3E0D7C34-585A-4F26-870D-C133BFB3B159}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=6|Profile=Public|App=C:\Program Files\360\Total Security\360TsLiveUpd.exe|Name=360TsLiveUpd.exe| "{85723A2F-4995-47F4-B5BA-D3E026F294ED}"=v2.10|Action=Allow|Active=TRUE|Dir=In|Protocol=17|Profile=Public|App=C:\Program Files\360\Total Security\360TsLiveUpd.exe|Name=360TsLiveUpd.exe| ---------- | Control\Class [HKLM\SYSTEM\CurrentControlSet\Control\Class\{0475BB51-5A02-4EE0-B36C-29040FAD2650}] : (igfx) [] -> [HKLM\SYSTEM\CurrentControlSet\Control\Class\{1264760F-A5C8-4BFE-B314-D56A7B44A362}] : (DXGKrnl) [] -> [HKLM\SYSTEM\CurrentControlSet\Control\Class\{25DBCE51-6C8F-4A72-8A6D-B54C2B4FC835}] : (WCEUSBS) [] -> @%SystemRoot%\System32\SysClass.Dll,-3026 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{36FC9E60-C465-11CF-8056-444553540000}] : (USB) [] -> @%SystemRoot%\System32\SysClass.Dll,-3025 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4116F60B-25B3-4662-B732-99A6111EDC0B}] : (IPMIDRV) [] -> [HKLM\SYSTEM\CurrentControlSet\Control\Class\{43675D81-502A-4A82-9F84-B75F418C5DEA}] : (Media Center Extender) [] -> @%SystemRoot%\system32\McxDriv.dll,-100 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4658EE7E-F050-11D1-B6BD-00C04FA372A7}] : (PnpPrinters) [] -> @%systemroot%\system32\ntprint.dll,-1300 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{48721B56-6795-11D2-B1A8-0080C72E74A2}] : (Dot4) [] -> @%SystemRoot%\system32\sysclass.dll,-3023 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{49CE6AC8-6F86-11D2-B1E5-0080C72E74A2}] : (Dot4Print) [] -> @%SystemRoot%\system32\sysclass.dll,-3024 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E965-E325-11CE-BFC1-08002BE10318}] : (CDROM) [] -> @%SystemRoot%\System32\StorProp.dll,-17001 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E966-E325-11CE-BFC1-08002BE10318}] : (Computer) [] -> @%SystemRoot%\System32\SysClass.dll,-3000 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E967-E325-11CE-BFC1-08002BE10318}] : (DiskDrive) [] -> @%SystemRoot%\System32\StorProp.dll,-17000 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E968-E325-11CE-BFC1-08002BE10318}] : (Display) [] -> @DispCI.dll,-3100 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E969-E325-11CE-BFC1-08002BE10318}] : (fdc) [] -> @%SystemRoot%\System32\SysClass.Dll,-3013 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96A-E325-11CE-BFC1-08002BE10318}] : (hdc) [] -> @%SystemRoot%\System32\SysClass.Dll,-3001 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96B-E325-11CE-BFC1-08002BE10318}] : (Keyboard) [] -> @%SystemRoot%\System32\SysClass.Dll,-3002 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96C-E325-11CE-BFC1-08002BE10318}] : (MEDIA) [] -> @mmci.dll,-3000 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}] : (Modem) [] -> @%SystemRoot%\System32\mdminst.dll,-14100 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96E-E325-11CE-BFC1-08002BE10318}] : (Monitor) [] -> @Montr_CI.dll,-3100 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E96F-E325-11CE-BFC1-08002BE10318}] : (Mouse) [] -> @%SystemRoot%\System32\SysClass.Dll,-3004 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E970-E325-11CE-BFC1-08002BE10318}] : (MTD) [] -> @SysClass.Dll,-3021 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E971-E325-11CE-BFC1-08002BE10318}] : (MultiFunction) [] -> @%SystemRoot%\System32\SysClass.Dll,-3014 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E972-E325-11CE-BFC1-08002BE10318}] : (Net) [] -> @NetCfgx.dll,-1502 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E973-E325-11CE-BFC1-08002BE10318}] : (NetClient) [] -> @NetCfgx.dll,-1504 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E974-E325-11CE-BFC1-08002BE10318}] : (NetService) [] -> @NetCfgx.dll,-1505 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E975-E325-11CE-BFC1-08002BE10318}] : (NetTrans) [] -> @NetCfgx.dll,-1503 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E977-E325-11CE-BFC1-08002BE10318}] : (PCMCIA) [] -> @%SystemRoot%\System32\SysClass.Dll,-3010 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E978-E325-11CE-BFC1-08002BE10318}] : (Ports) [] -> @%SystemRoot%\System32\msports.dll,-10000 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E979-E325-11CE-BFC1-08002BE10318}] : (Printer) [] -> @%systemroot%\system32\ntprint.dll,-1004 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E97B-E325-11CE-BFC1-08002BE10318}] : (SCSIAdapter) [] -> @%SystemRoot%\System32\SysClass.Dll,-3005 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E97D-E325-11CE-BFC1-08002BE10318}] : (System) [] -> @%SystemRoot%\System32\SysClass.Dll,-3008 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E97E-E325-11CE-BFC1-08002BE10318}] : (Unknown) [] -> @%SystemRoot%\System32\SysClass.Dll,-3009 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{4D36E980-E325-11CE-BFC1-08002BE10318}] : (FloppyDisk) [] -> @%SystemRoot%\System32\SysClass.Dll,-3015 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{50127DC3-0F36-415E-A6CC-4CB3BE910B65}] : (Processor) [] -> @%SystemRoot%\system32\procinst.dll,-100 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{50906CB8-BA12-11D1-BF5D-0000F805F530}] : (MultiPortSerial) [] -> @%SystemRoot%\system32\sysclass.dll,-3022 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{5099944A-F6B9-4057-A056-8C550228544C}] : (Memory) [] -> @%SystemRoot%\System32\SysClass.Dll,-3018 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{50DD5230-BA8A-11D1-BF5D-0000F805F530}] : (SmartCardReader) [] -> @StorProp.dll,-17002 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] : (VolumeSnapshot) [] -> @%SystemRoot%\System32\SysClass.Dll,-3011 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{53D29EF7-377C-4D14-864B-EB3A85769359}] : (BiometricDevice) [] -> @%SystemRoot%\System32\SysClass.DLL,-3028 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}] : (1394) [] -> @%SystemRoot%\System32\SysClass.Dll,-3016 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{6BDD1FC5-810F-11D0-BEC7-08002BE2092F}] : (Infrared) [] -> @NetCfgx.dll,-1501 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{6BDD1FC6-810F-11D0-BEC7-08002BE2092F}] : (Image) [] -> @%systemroot%\system32\sti_ci.dll,-52 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{6D807884-7D21-11CF-801C-08002BE10318}] : (TapeDrive) [] -> @%SystemRoot%\System32\SysClass.Dll,-3006 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{6FAE73B7-B735-4B50-A0DA-0DC2484B1F1A}] : (igfx) [] -> [HKLM\SYSTEM\CurrentControlSet\Control\Class\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] : (Volume) [] -> @%SystemRoot%\System32\SysClass.Dll,-3007 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{72631E54-78A4-11D0-BCF7-00AA00B7B32A}] : (Battery) [] -> @%SystemRoot%\system32\batt.dll,-100 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] : (HIDClass) [] -> @hid.dll,-101 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{7EBEFBC0-3200-11D2-B4C2-00A0C9697D07}] : (61883) [] -> @%SystemRoot%\System32\SysClass.Dll,-3019 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{8ECC055D-047F-11D1-A537-0000F8753ED1}] : (LegacyDriver) [] -> @%SystemRoot%\System32\SysClass.Dll,-3003 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{990A2BD7-E738-46C7-B26F-1CF8FB9F1391}] : (SmartCard) [] -> @sccls.dll,-300 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{997B5D8D-C442-4F2E-BAF3-9C8E671E9E21}] : (SideShow) [] -> @%systemroot%\system32\AuxiliaryDisplayClassInstaller.dll,-10000 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{A0A588A4-C46F-4B37-B7EA-C82FE89870C6}] : (SDHost) [] -> @%SystemRoot%\System32\SysClass.Dll,-3012 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{BC103702-DD72-406F-9B28-95C868337B59}] : (Transfer Cable) [] -> @%SystemRoot%\System32\migwiz\migres.dll,-20 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{C06FF265-AE09-48F0-812C-16753D7CBA83}] : (AVC) [] -> @%SystemRoot%\System32\SysClass.Dll,-3027 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{CE5939AE-EBDE-11D0-B181-0000F8753EC4}] : (MediumChanger) [] -> @%SystemRoot%\System32\StorProp.dll,-17003 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}] : (SBP2) [] -> @%SystemRoot%\System32\SysClass.Dll,-3017 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{D61CA365-5AF4-4486-998B-9DB4734C6CA3}] : (XnaComposite) [] -> @%SystemRoot%\system32\XInput9_1_0.dll,-1000 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}] : (SecurityDevices) [] -> @%SystemRoot%\System32\SysClass.Dll,-3020 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{DB4F6DDD-9C0E-45E4-9597-78DBBAD0F412}] : (SmartCardFilter) [] -> @sccls.dll,-301 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{E0CBF06C-CD8B-4647-BB8A-263B43F0F974}] : (Bluetooth) [] -> @%SystemRoot%\system32\bthci.dll,-4001 [HKLM\SYSTEM\CurrentControlSet\Control\Class\{EEC5AD98-8080-425F-922A-DABF3DE3F69A}] : (WPD) [] -> @wpd_ci.dll,-101 [HKLM\SYSTEM\CurrentControlSet\Control\Els\Services\{2D64B439-6CAF-4f6b-B688-E5D0F4FAA7D7}] : (Script Detection) [@elscore.dll,-2] -> ElsLad.dll (Copyright (c) Microsoft Corporation.) [HKLM\SYSTEM\CurrentControlSet\Control\Els\Services\{A22D52C1-DBFD-40cb-AE78-E3BA9EE1D88F}] : (Transliteration) [@elscore.dll,-5] -> elstrans.dll (Copyright (c) Microsoft Corporation.) [HKLM\SYSTEM\CurrentControlSet\Control\Els\Services\{CF7E00B1-909B-4d95-A8F4-611F7C377702}] : (Language Detection) [@elscore.dll,-1] -> ElsLad.dll (Copyright (c) Microsoft Corporation.) ---------- | Loaded modules (whitelist) [12/02/2022 23:47:42] - (1.0.1.0) - (CHENGDU YIWO Tech Development Co., Ltd - Disk Backup Driver) - C:\Windows\system32\drivers\EUDCPEPM.sys [12/02/2022 23:42:44] - (6.0.6001.18000) - (Windows (R) Codename Longhorn DDK provider - Disk Performance Driver) - C:\Windows\System32\drivers\EPMVolFl.sys [29/05/2014 03:03:04] - (1.0.0.795) - (Anvisoft - Anvisoft Intrusion Detection System) - C:\Windows\system32\DRIVERS\asdids.sys [03/02/2022 09:04:50] - (2.1.0.21) - (Qualcomm Atheros Co., Ltd. - Qualcomm Atheros Ar81xx series PCI-E Gigabit Ethernet Controller) - C:\Windows\system32\DRIVERS\L1C62x86.sys [03/02/2022 09:20:47] - (10.0.0.355) - (Qualcomm Atheros Communications, Inc. - Qualcomm Atheros Extensible Wireless LAN device driver) - C:\Windows\system32\DRIVERS\athr.sys [14/01/2022 19:07:32] - (1.8.6.199) - (Zemana Ltd. - Zemana AntiLogger SDK) - C:\Windows\system32\DRIVERS\KeyCrypt32.sys [01/07/2010 14:14:08] - (7.4.0.27) - (Alps Electric Co., Ltd. - Alps Touch Pad Driver) - C:\Windows\system32\DRIVERS\Apfiltr.sys [12/02/2022 20:35:04] - (1.67.0.0) - (Apple, Inc. - Apple Mobile Device USB Driver) - C:\Windows\System32\Drivers\usbaapl.sys ---------- | LoadOrderGroup Name: System Reserved - DriverEnabled: True - GroupOrder: 1 - Status: OK Name: EMS - DriverEnabled: True - GroupOrder: 2 - Status: OK Name: WdfLoadGroup - DriverEnabled: True - GroupOrder: 3 - Status: OK Name: Boot Bus Extender - DriverEnabled: True - GroupOrder: 4 - Status: OK Name: System Bus Extender - DriverEnabled: True - GroupOrder: 5 - Status: OK Name: SCSI miniport - DriverEnabled: True - GroupOrder: 6 - Status: OK Name: Port - DriverEnabled: True - GroupOrder: 7 - Status: OK Name: Primary Disk - DriverEnabled: True - GroupOrder: 8 - Status: OK Name: SCSI Class - DriverEnabled: True - GroupOrder: 9 - Status: OK Name: SCSI CDROM Class - DriverEnabled: True - GroupOrder: 10 - Status: OK Name: FSFilter Infrastructure - DriverEnabled: True - GroupOrder: 11 - Status: OK Name: FSFilter System - DriverEnabled: True - GroupOrder: 12 - Status: OK Name: FSFilter Bottom - DriverEnabled: True - GroupOrder: 13 - Status: OK Name: FSFilter Copy Protection - DriverEnabled: True - GroupOrder: 14 - Status: OK Name: FSFilter Security Enhancer - DriverEnabled: True - GroupOrder: 15 - Status: OK Name: FSFilter Open File - DriverEnabled: True - GroupOrder: 16 - Status: OK Name: FSFilter Physical Quota Management - DriverEnabled: True - GroupOrder: 17 - Status: OK Name: FSFilter Virtualization - DriverEnabled: True - GroupOrder: 18 - Status: OK Name: FSFilter Encryption - DriverEnabled: True - GroupOrder: 19 - Status: OK Name: FSFilter Compression - DriverEnabled: True - GroupOrder: 20 - Status: OK Name: FSFilter Imaging - DriverEnabled: True - GroupOrder: 21 - Status: OK Name: FSFilter HSM - DriverEnabled: True - GroupOrder: 22 - Status: OK Name: FSFilter Cluster File System - DriverEnabled: True - GroupOrder: 23 - Status: OK Name: FSFilter System Recovery - DriverEnabled: True - GroupOrder: 24 - Status: OK Name: FSFilter Quota Management - DriverEnabled: True - GroupOrder: 25 - Status: OK Name: FSFilter Content Screener - DriverEnabled: True - GroupOrder: 26 - Status: OK Name: FSFilter Continuous Backup - DriverEnabled: True - GroupOrder: 27 - Status: OK Name: FSFilter Replication - DriverEnabled: True - GroupOrder: 28 - Status: OK Name: FSFilter Anti-Virus - DriverEnabled: True - GroupOrder: 29 - Status: OK Name: FSFilter Undelete - DriverEnabled: True - GroupOrder: 30 - Status: OK Name: FSFilter Activity Monitor - DriverEnabled: True - GroupOrder: 31 - Status: OK Name: FSFilter Top - DriverEnabled: True - GroupOrder: 32 - Status: OK Name: Filter - DriverEnabled: True - GroupOrder: 33 - Status: OK Name: Boot File System - DriverEnabled: True - GroupOrder: 34 - Status: OK Name: Base - DriverEnabled: True - GroupOrder: 35 - Status: OK Name: Pointer Port - DriverEnabled: True - GroupOrder: 36 - Status: OK Name: Keyboard Port - DriverEnabled: True - GroupOrder: 37 - Status: OK Name: Pointer Class - DriverEnabled: True - GroupOrder: 38 - Status: OK Name: Keyboard Class - DriverEnabled: True - GroupOrder: 39 - Status: OK Name: Video Init - DriverEnabled: True - GroupOrder: 40 - Status: OK Name: Video - DriverEnabled: True - GroupOrder: 41 - Status: OK Name: Video Save - DriverEnabled: True - GroupOrder: 42 - Status: OK Name: File System - DriverEnabled: True - GroupOrder: 43 - Status: OK Name: Streams Drivers - DriverEnabled: True - GroupOrder: 44 - Status: OK Name: NDIS Wrapper - DriverEnabled: True - GroupOrder: 45 - Status: OK Name: COM Infrastructure - DriverEnabled: True - GroupOrder: 46 - Status: OK Name: Event Log - DriverEnabled: True - GroupOrder: 47 - Status: OK Name: AudioGroup - DriverEnabled: True - GroupOrder: 48 - Status: OK Name: ProfSvc_Group - DriverEnabled: True - GroupOrder: 49 - Status: OK Name: UIGroup - DriverEnabled: True - GroupOrder: 50 - Status: OK Name: MS_WindowsLocalValidation - DriverEnabled: True - GroupOrder: 51 - Status: OK Name: PlugPlay - DriverEnabled: True - GroupOrder: 52 - Status: OK Name: Cryptography - DriverEnabled: True - GroupOrder: 53 - Status: OK Name: PNP_TDI - DriverEnabled: True - GroupOrder: 54 - Status: OK Name: NDIS - DriverEnabled: True - GroupOrder: 55 - Status: OK Name: TDI - DriverEnabled: True - GroupOrder: 56 - Status: OK Name: iSCSI - DriverEnabled: True - GroupOrder: 57 - Status: OK Name: NetBIOSGroup - DriverEnabled: True - GroupOrder: 58 - Status: OK Name: ShellSvcGroup - DriverEnabled: True - GroupOrder: 59 - Status: OK Name: SchedulerGroup - DriverEnabled: True - GroupOrder: 60 - Status: OK Name: SpoolerGroup - DriverEnabled: True - GroupOrder: 61 - Status: OK Name: SmartCardGroup - DriverEnabled: True - GroupOrder: 62 - Status: OK Name: NetworkProvider - DriverEnabled: True - GroupOrder: 63 - Status: OK Name: MS_WindowsRemoteValidation - DriverEnabled: True - GroupOrder: 64 - Status: OK Name: NetDDEGroup - DriverEnabled: True - GroupOrder: 65 - Status: OK Name: Parallel arbitrator - DriverEnabled: True - GroupOrder: 66 - Status: OK Name: Extended Base - DriverEnabled: True - GroupOrder: 67 - Status: OK Name: PCI Configuration - DriverEnabled: True - GroupOrder: 68 - Status: OK Name: MS Transactions - DriverEnabled: True - GroupOrder: 69 - Status: OK Name: PnP Filter - DriverEnabled: False - GroupOrder: 70 - Status: OK Name: Avira - DriverEnabled: False - GroupOrder: 71 - Status: OK Name: Network - DriverEnabled: False - GroupOrder: 72 - Status: OK Name: Intego - DriverEnabled: False - GroupOrder: 73 - Status: OK Name: SCSI Storport - DriverEnabled: False - GroupOrder: 74 - Status: OK ---------- | LoadOrderGroupServiceDependencies LoadOrderGroup.Name="NetBIOSGroup" - Service.Name="RemoteAccess" LoadOrderGroup.Name="SCSI CDROM Class" - SystemDriver.Name="cdfs" LoadOrderGroup.Name="Parallel arbitrator" - SystemDriver.Name="Parvdm" ---------- | LoadOrderGroupServiceMembers LoadOrderGroup.Name="FSFilter Activity Monitor" - SystemDriver.Name="360AvFlt" LoadOrderGroup.Name="FSFilter Activity Monitor" - SystemDriver.Name="360Box" LoadOrderGroup.Name="PNP_TDI" - SystemDriver.Name="360netmon" LoadOrderGroup.Name="Base" - SystemDriver.Name="360SelfProtection" LoadOrderGroup.Name="Boot Bus Extender" - SystemDriver.Name="ACPI" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="adp94xx" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="adpahci" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="adpu320" LoadOrderGroup.Name="PNP_TDI" - SystemDriver.Name="AFD" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="agp440" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="aic78xx" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="aliide" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="amdagp" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="amdide" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="AmdK8" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="AmdPPM" LoadOrderGroup.Name="SCSI miniport" - SystemDriver.Name="amdsata" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="amdsbs" LoadOrderGroup.Name="SCSI miniport" - SystemDriver.Name="amdxata" LoadOrderGroup.Name="Pointer Port" - SystemDriver.Name="ApfiltrService" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="arc" LoadOrderGroup.Name="SCSI miniport" - SystemDriver.Name="arcsas" LoadOrderGroup.Name="FSFilter Content Screener" - SystemDriver.Name="asd2fsm" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="Asdids" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="atapi" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="athr" LoadOrderGroup.Name="FSFilter Anti-Virus" - SystemDriver.Name="avgntflt" LoadOrderGroup.Name="Avira" - SystemDriver.Name="avipbb" LoadOrderGroup.Name="Avira" - SystemDriver.Name="avkmgr" LoadOrderGroup.Name="base" - SystemDriver.Name="b06bdrv" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="b57nd60x" LoadOrderGroup.Name="Base" - SystemDriver.Name="Beep" LoadOrderGroup.Name="Network" - SystemDriver.Name="bowser" LoadOrderGroup.Name="extended base" - SystemDriver.Name="BrFiltLo" LoadOrderGroup.Name="extended base" - SystemDriver.Name="BrFiltUp" LoadOrderGroup.Name="PNP_TDI" - SystemDriver.Name="BridgeMP" LoadOrderGroup.Name="Boot File System" - SystemDriver.Name="cdfs" LoadOrderGroup.Name="SCSI CDROM Class" - SystemDriver.Name="cdrom" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="circlass" LoadOrderGroup.Name="Filter" - SystemDriver.Name="CLFS" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="cmdide" LoadOrderGroup.Name="Base" - SystemDriver.Name="CNG" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="Compbatt" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="CompositeBus" LoadOrderGroup.Name="Pnp Filter" - SystemDriver.Name="crcdisk" LoadOrderGroup.Name="Network" - SystemDriver.Name="DfsC" LoadOrderGroup.Name="Video Init" - SystemDriver.Name="DXGKrnl" LoadOrderGroup.Name="base" - SystemDriver.Name="ebdrv" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="elxstor" LoadOrderGroup.Name="Boot File System" - SystemDriver.Name="epmdkdrv" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="EPMVolFl" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="ErrDev" LoadOrderGroup.Name="Boot File System" - SystemDriver.Name="EuGdiDrv" LoadOrderGroup.Name="Boot File System" - SystemDriver.Name="exfat" LoadOrderGroup.Name="Boot File System" - SystemDriver.Name="fastfat" LoadOrderGroup.Name="FSFilter Bottom" - SystemDriver.Name="FileInfo" LoadOrderGroup.Name="FSFilter Activity Monitor" - SystemDriver.Name="Filetrace" LoadOrderGroup.Name="FSFilter Infrastructure" - SystemDriver.Name="FltMgr" LoadOrderGroup.Name="Filter" - SystemDriver.Name="FsDepends" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="fvevol" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="gagp30kx" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="hcw85cir" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="HDAudBus" LoadOrderGroup.Name="extended base" - SystemDriver.Name="HidBth" LoadOrderGroup.Name="extended base" - SystemDriver.Name="HidIr" LoadOrderGroup.Name="extended base" - SystemDriver.Name="HidUsb" LoadOrderGroup.Name="Boot Bus Extender" - SystemDriver.Name="HookPort" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="HpSAMD" LoadOrderGroup.Name="Keyboard Port" - SystemDriver.Name="i8042prt" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="iaStor" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="iaStorV" LoadOrderGroup.Name="Video" - SystemDriver.Name="igfx" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="iirsp" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="intelide" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="intelppm" LoadOrderGroup.Name="Boot Bus Extender" - SystemDriver.Name="isapnp" LoadOrderGroup.Name="Intego" - SystemDriver.Name="iwf" LoadOrderGroup.Name="Keyboard Class" - SystemDriver.Name="kbdclass" LoadOrderGroup.Name="Keyboard Port" - SystemDriver.Name="kbdhid" LoadOrderGroup.Name="Keyboard Class" - SystemDriver.Name="keycrypt" LoadOrderGroup.Name="Base" - SystemDriver.Name="KSecDD" LoadOrderGroup.Name="Cryptography" - SystemDriver.Name="KSecPkg" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="L1C" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="lltdio" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="LSI_FC" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="LSI_SAS" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="LSI_SAS2" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="LSI_SCSI" LoadOrderGroup.Name="FSFilter Virtualization" - SystemDriver.Name="luafv" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="megasas" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="MegaSR" LoadOrderGroup.Name="Extended base" - SystemDriver.Name="Modem" LoadOrderGroup.Name="Pointer Class" - SystemDriver.Name="mouclass" LoadOrderGroup.Name="Pointer Port" - SystemDriver.Name="mouhid" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="mountmgr" LoadOrderGroup.Name="Boot Bus Extender" - SystemDriver.Name="mpio" LoadOrderGroup.Name="network" - SystemDriver.Name="mpsdrv" LoadOrderGroup.Name="Network" - SystemDriver.Name="mrxsmb" LoadOrderGroup.Name="Network" - SystemDriver.Name="mrxsmb10" LoadOrderGroup.Name="Network" - SystemDriver.Name="mrxsmb20" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="msahci" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="msdsm" LoadOrderGroup.Name="File system" - SystemDriver.Name="Msfs" LoadOrderGroup.Name="Base" - SystemDriver.Name="mshidkmdf" LoadOrderGroup.Name="Boot Bus Extender" - SystemDriver.Name="msisadrv" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="MSKSSRV" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="MSPCLOCK" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="MSPQM" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="MSTEE" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="MTConfig" LoadOrderGroup.Name="Network" - SystemDriver.Name="Mup" LoadOrderGroup.Name="FSFilter Activity Monitor" - SystemDriver.Name="mwlPSDFilter" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="NativeWifiP" LoadOrderGroup.Name="NDIS Wrapper" - SystemDriver.Name="NDIS" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="NdisCap" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="Ndisuio" LoadOrderGroup.Name="PNP_TDI" - SystemDriver.Name="NDProxy" LoadOrderGroup.Name="Filter" - SystemDriver.Name="necbatt" LoadOrderGroup.Name="NetBIOSGroup" - SystemDriver.Name="NetBIOS" LoadOrderGroup.Name="PNP_TDI" - SystemDriver.Name="NetBT" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="nfrd960" LoadOrderGroup.Name="File system" - SystemDriver.Name="Npfs" LoadOrderGroup.Name="Boot File System" - SystemDriver.Name="Ntfs" LoadOrderGroup.Name="Base" - SystemDriver.Name="Null" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="nvraid" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="nvstor" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="nv_agp" LoadOrderGroup.Name="Parallel arbitrator" - SystemDriver.Name="Parport" LoadOrderGroup.Name="Boot Bus Extender" - SystemDriver.Name="partmgr" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="Parvdm" LoadOrderGroup.Name="Boot Bus Extender" - SystemDriver.Name="pci" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="pciide" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="pcmcia" LoadOrderGroup.Name="Base" - SystemDriver.Name="pcw" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="Processor" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="Psched" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="ql2300" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="ql40xx" LoadOrderGroup.Name="Streams Drivers" - SystemDriver.Name="RasAcd" LoadOrderGroup.Name="Network" - SystemDriver.Name="rdbss" LoadOrderGroup.Name="Video Save" - SystemDriver.Name="RDPCDD" LoadOrderGroup.Name="Video Save" - SystemDriver.Name="RDPENCDD" LoadOrderGroup.Name="Video Save" - SystemDriver.Name="RDPREFMP" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="rdyboost" LoadOrderGroup.Name="FSFilter Activity Monitor" - SystemDriver.Name="Revoflt" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="rspndr" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="scfilter" LoadOrderGroup.Name="PNP Filter" - SystemDriver.Name="Serenum" LoadOrderGroup.Name="Extended base" - SystemDriver.Name="Serial" LoadOrderGroup.Name="Pointer Port" - SystemDriver.Name="sermouse" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="sisagp" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="SiSRaid2" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="SiSRaid4" LoadOrderGroup.Name="PNP_TDI" - SystemDriver.Name="Smb" LoadOrderGroup.Name="Network" - SystemDriver.Name="srv" LoadOrderGroup.Name="Network" - SystemDriver.Name="srv2" LoadOrderGroup.Name="Network" - SystemDriver.Name="srvnet" LoadOrderGroup.Name="SCSI Storport" - SystemDriver.Name="stexstor" LoadOrderGroup.Name="PNP_TDI" - SystemDriver.Name="Tcpip" LoadOrderGroup.Name="PNP_TDI" - SystemDriver.Name="tdx" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="tunnel" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="uagp35" LoadOrderGroup.Name="Boot File System" - SystemDriver.Name="udfs" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="uliagpkx" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="umbus" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="UmPass" LoadOrderGroup.Name="Base" - SystemDriver.Name="USBAAPL" LoadOrderGroup.Name="Base" - SystemDriver.Name="usbccgp" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="usbcir" LoadOrderGroup.Name="Base" - SystemDriver.Name="usbehci" LoadOrderGroup.Name="Base" - SystemDriver.Name="usbhub" LoadOrderGroup.Name="Base" - SystemDriver.Name="usbohci" LoadOrderGroup.Name="extended base" - SystemDriver.Name="usbprint" LoadOrderGroup.Name="Base" - SystemDriver.Name="usbuhci" LoadOrderGroup.Name="Boot Bus Extender" - SystemDriver.Name="vdrvroot" LoadOrderGroup.Name="Video" - SystemDriver.Name="vga" LoadOrderGroup.Name="Video Save" - SystemDriver.Name="VgaSave" LoadOrderGroup.Name="SCSI miniport" - SystemDriver.Name="vhdmp" LoadOrderGroup.Name="PnP Filter" - SystemDriver.Name="viaagp" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="ViaC7" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="viaide" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="volmgr" LoadOrderGroup.Name="System Bus Extender" - SystemDriver.Name="volmgrx" LoadOrderGroup.Name="SCSI Miniport" - SystemDriver.Name="vsmraid" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="vwififlt" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="WacomPen" LoadOrderGroup.Name="WdfLoadGroup" - SystemDriver.Name="Wdf01000" LoadOrderGroup.Name="NDIS" - SystemDriver.Name="WfpLwf" LoadOrderGroup.Name="FSFilter Infrastructure" - SystemDriver.Name="WIMMount" LoadOrderGroup.Name="Extended Base" - SystemDriver.Name="WmiAcpi" LoadOrderGroup.Name="PNP_TDI" - SystemDriver.Name="ws2ifsl" LoadOrderGroup.Name="base" - SystemDriver.Name="WudfPf" LoadOrderGroup.Name="System Reserved" - Service.Name="AdvancedSystemCareService15" LoadOrderGroup.Name="ProfSvc_Group" - Service.Name="AppIDSvc" LoadOrderGroup.Name="AudioGroup" - Service.Name="AudioEndpointBuilder" LoadOrderGroup.Name="AudioGroup" - Service.Name="Audiosrv" LoadOrderGroup.Name="NetworkProvider" - Service.Name="BFE" LoadOrderGroup.Name="NetworkProvider" - Service.Name="Browser" LoadOrderGroup.Name="COM Infrastructure" - Service.Name="DcomLaunch" LoadOrderGroup.Name="TDI" - Service.Name="Dhcp" LoadOrderGroup.Name="TDI" - Service.Name="Dnscache" LoadOrderGroup.Name="TDI" - Service.Name="dot3svc" LoadOrderGroup.Name="Event Log" - Service.Name="eventlog" LoadOrderGroup.Name="ProfSvc_Group" - Service.Name="gpsvc" LoadOrderGroup.Name="NetworkProvider" - Service.Name="LanmanWorkstation" LoadOrderGroup.Name="TDI" - Service.Name="lmhosts" LoadOrderGroup.Name="NetworkProvider" - Service.Name="MpsSvc" LoadOrderGroup.Name="iSCSI" - Service.Name="MSiSCSI" LoadOrderGroup.Name="MS_WindowsRemoteValidation" - Service.Name="Netlogon" LoadOrderGroup.Name="PlugPlay" - Service.Name="PlugPlay" LoadOrderGroup.Name="Plugplay" - Service.Name="Power" LoadOrderGroup.Name="profsvc_group" - Service.Name="ProfSvc" LoadOrderGroup.Name="TDI" - Service.Name="QHActiveDefense" LoadOrderGroup.Name="COM Infrastructure" - Service.Name="RpcEptMapper" LoadOrderGroup.Name="COM Infrastructure" - Service.Name="RpcSs" LoadOrderGroup.Name="MS_WindowsLocalValidation" - Service.Name="SamSs" LoadOrderGroup.Name="SmartCardGroup" - Service.Name="SCardSvr" LoadOrderGroup.Name="SchedulerGroup" - Service.Name="Schedule" LoadOrderGroup.Name="ProfSvc_Group" - Service.Name="SENS" LoadOrderGroup.Name="ShellSvcGroup" - Service.Name="ShellHWDetection" LoadOrderGroup.Name="SpoolerGroup" - Service.Name="Spooler" LoadOrderGroup.Name="PlugPlay" - Service.Name="TabletInputService" LoadOrderGroup.Name="ProfSvc_Group" - Service.Name="Themes" LoadOrderGroup.Name="ProfSvc_Group" - Service.Name="TrustedInstaller" LoadOrderGroup.Name="UIGroup" - Service.Name="UxSms" LoadOrderGroup.Name="SmartCardGroup" - Service.Name="WbioSrvc" LoadOrderGroup.Name="NetworkProvider" - Service.Name="WebClient" LoadOrderGroup.Name="TDI" - Service.Name="Wlansvc" LoadOrderGroup.Name="PlugPlay" - Service.Name="wudfsvc" LoadOrderGroup.Name="TDI" - Service.Name="WwanSvc" ---------- | Services | 0 : Starting up | 1 : System | 2 : Automatic | 3 : Manual | 4 : Disabled | R : Running service | S : Stopped service R0 - [Kernel Driver] - ACPI (Microsoft ACPI Driver) -> C:\Windows\system32\drivers\ACPI.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - amdxata (amdxata) -> C:\Windows\system32\drivers\amdxata.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - atapi (IDE Channel) -> C:\Windows\system32\drivers\atapi.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - CLFS (Journal commun (CLFS)) -> C:\Windows\system32\CLFS.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - CNG (CNG) -> C:\Windows\system32\Drivers\cng.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - Compbatt (Microsoft Composite Battery Driver) -> C:\Windows\system32\drivers\compbatt.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - Disk (Pilote de disque) -> C:\Windows\system32\drivers\disk.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - EUDCPEPM (EUDCPEPM) -> C:\Windows\system32\drivers\EUDCPEPM.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [File System Driver] - FileInfo (File Information FS MiniFilter) -> C:\Windows\system32\drivers\fileinfo.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [File System Driver] - FltMgr (FltMgr) -> C:\Windows\system32\drivers\fltmgr.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - fvevol (Pilote de filtre de Chiffrement de lecteur Bitlocker) -> C:\Windows\system32\DRIVERS\fvevol.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S0 - [Kernel Driver] - HookPort (HookPort) -> C:\Windows\system32\Drivers\Hookport.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R0 - [Kernel Driver] - hwpolicy (Hardware Policy Driver) -> C:\Windows\system32\drivers\hwpolicy.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - iaStor (Intel AHCI Controller) -> C:\Windows\system32\drivers\iaStor.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - KSecDD (KSecDD) -> C:\Windows\system32\Drivers\ksecdd.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - KSecPkg (KSecPkg) -> C:\Windows\system32\Drivers\ksecpkg.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - mountmgr (Gestionnaire des points de montage) -> C:\Windows\system32\drivers\mountmgr.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - msisadrv (msisadrv) -> C:\Windows\system32\drivers\msisadrv.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [File System Driver] - Mup (Mup) -> C:\Windows\system32\Drivers\mup.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - NDIS (Pilote systeme NDIS) -> C:\Windows\system32\drivers\ndis.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - partmgr (Gestionnaire de partitions) -> C:\Windows\system32\drivers\partmgr.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - pci (Pilote de bus PCI) -> C:\Windows\system32\drivers\pci.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - pcw (Performance Counters for Windows Driver) -> C:\Windows\system32\drivers\pcw.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - rdyboost (ReadyBoost) -> C:\Windows\system32\drivers\rdyboost.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S0 - [Kernel Driver] - spldr (Security Processor Loader Driver) -> C:\Windows\system32\drivers\spldr.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R0 - [Kernel Driver] - Tcpip (Pilote du protocole TCP/IP) -> C:\Windows\system32\drivers\tcpip.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - vdrvroot (Microsoft Virtual Drive Enumerator Driver) -> C:\Windows\system32\drivers\vdrvroot.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - volmgr (Volume Manager Driver) -> C:\Windows\system32\drivers\volmgr.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - volmgrx (Gestionnaire de volumes dynamiques) -> C:\Windows\system32\drivers\volmgrx.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - volsnap (Volumes de stockage) -> C:\Windows\system32\drivers\volsnap.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - Wd (Microsoft Watchdog Timer Driver) -> C:\Windows\system32\drivers\wd.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R0 - [Kernel Driver] - Wdf01000 (Wdf01000) -> C:\Windows\system32\drivers\Wdf01000.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S1 - [Kernel Driver] - 360AntiHacker (360Safe Anti Hacker Service) -> C:\Windows\system32\Drivers\360AntiHacker.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [Kernel Driver] - 360netmon (360netmon) -> C:\Windows\system32\DRIVERS\360netmon.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [Kernel Driver] - 360SelfProtection (360SelfProtection) -> C:\Windows\system32\drivers\360SelfProtection.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R1 - [Kernel Driver] - AFD (Ancillary Function Driver for Winsock) -> C:\Windows\system32\drivers\afd.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S1 - [Kernel Driver] - AntiLog32 (AntiLog32) -> \??\C:\Windows\system32\drivers\AntiLog32.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [File System Driver] - asd2fsm (asd2fsm) -> C:\Windows\system32\DRIVERS\asd2fsm.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R1 - [Kernel Driver] - Asdids (Anvisoft Intrusion Detection System (NDIS6.0)) -> C:\Windows\system32\DRIVERS\asdids.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S1 - [Kernel Driver] - avipbb (avipbb) -> C:\Windows\system32\DRIVERS\avipbb.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [Kernel Driver] - avkmgr (avkmgr) -> C:\Windows\system32\DRIVERS\avkmgr.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [Kernel Driver] - BAPIDRV (BAPIDRV) -> C:\Windows\system32\DRIVERS\BAPIDRV.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R1 - [Kernel Driver] - Beep (Beep) -> C:\Windows\system32\drivers\Beep.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [Kernel Driver] - blbdrive (blbdrive) -> C:\Windows\system32\drivers\blbdrive.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S1 - [Kernel Driver] - cbfilter20-0 (cbfilter20-0) -> \??\C:\Program Files\Intego\cbfilter20.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [Kernel Driver] - cbprocess20-0 (cbprocess20-0) -> \??\C:\Program Files\Intego\cbprocess20.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [Kernel Driver] - cbregistry20-0 (cbregistry20-0) -> \??\C:\Program Files\Intego\cbregistry20.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R1 - [File System Driver] - DfsC (DFS Namespace Client Driver) -> C:\Windows\system32\Drivers\dfsc.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S1 - [Kernel Driver] - discache (System Attribute Cache) -> C:\Windows\system32\drivers\discache.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [Kernel Driver] - EfiMon (EfiSystemMon) -> C:\Windows\system32\Drivers\Efimon.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [Kernel Driver] - EUEDKEPM (EUEDKEPM) -> \??\C:\Windows\system32\drivers\EUEDKEPM.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R1 - [File System Driver] - Msfs (Msfs) -> C:\Windows\system32\drivers\Msfs.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [Kernel Driver] - mssmbios (Microsoft System Management BIOS Driver) -> C:\Windows\system32\drivers\mssmbios.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S1 - [File System Driver] - mwlPSDFilter (mwlPSDFilter) -> C:\Windows\system32\DRIVERS\mwlPSDFilter.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [Kernel Driver] - mwlPSDNServ (mwlPSDNServ) -> C:\Windows\system32\DRIVERS\mwlPSDNServ.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S1 - [Kernel Driver] - mwlPSDVDisk (mwlPSDVDisk) -> C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R1 - [File System Driver] - NetBIOS (NetBIOS Interface) -> C:\Windows\system32\DRIVERS\netbios.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [Kernel Driver] - NetBT (NetBT) -> C:\Windows\system32\DRIVERS\netbt.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [File System Driver] - Npfs (Npfs) -> C:\Windows\system32\drivers\Npfs.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [Kernel Driver] - nsiproxy (NSI proxy service driver.) -> C:\Windows\system32\drivers\nsiproxy.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [Kernel Driver] - Null (Null) -> C:\Windows\system32\drivers\Null.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [Kernel Driver] - Psched (Planificateur de paquets QoS) -> C:\Windows\system32\DRIVERS\pacer.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [File System Driver] - rdbss (Sous-systeme de mise en memoire tampon redirigee) -> C:\Windows\system32\DRIVERS\rdbss.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S1 - [Kernel Driver] - RDPCDD (RDPCDD) -> C:\Windows\system32\DRIVERS\RDPCDD.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R1 - [Kernel Driver] - RDPENCDD (RDP Encoder Mirror Driver) -> C:\Windows\system32\drivers\rdpencdd.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S1 - [Kernel Driver] - RDPREFMP (Reflector Display Driver used to gain access to graphics data) -> C:\Windows\system32\drivers\rdprefmp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R1 - [Kernel Driver] - tdx (Pilote de prise en charge TDI heritee NetIO) -> C:\Windows\system32\DRIVERS\tdx.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [Kernel Driver] - TermDD (Terminal Device Driver) -> C:\Windows\system32\drivers\termdd.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [Kernel Driver] - VgaSave (VgaSave) -> C:\Windows\system32\drivers\vga.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [Kernel Driver] - vwififlt (Virtual WiFi Filter Driver) -> C:\Windows\system32\DRIVERS\vwififlt.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S1 - [Kernel Driver] - Wanarpv6 (Pilote ARP IPv6 d’acces a distance) -> C:\Windows\system32\DRIVERS\wanarp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R1 - [Kernel Driver] - WfpLwf (WFP Lightweight Filter) -> C:\Windows\system32\DRIVERS\wfplwf.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R1 - [Kernel Driver] - ws2ifsl (Pilote IFS Winsock) -> C:\Windows\system32\drivers\ws2ifsl.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S2 - [File System Driver] - avgntflt (avgntflt) -> C:\Windows\system32\DRIVERS\avgntflt.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Kernel Driver] - lltdio (Link-Layer Topology Discovery Mapper I/O Driver) -> C:\Windows\system32\DRIVERS\lltdio.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [File System Driver] - luafv (Virtualisation de fichier UAC) -> C:\Windows\system32\drivers\luafv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Kernel Driver] - Parvdm (Parvdm) -> C:\Windows\system32\drivers\parvdm.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Kernel Driver] - PEAUTH (PEAUTH) -> C:\Windows\system32\drivers\peauth.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - AudioEndpointBuilder (Generateur de points de terminaison du service Audio Windows) -> C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - Audiosrv (Audio Windows) -> C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - BFE (Moteur de filtrage de base) -> C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork - AcceptPause : False - AcceptStop : True - DesktopInteract : False R2 - [Share Process] - CryptSvc (Services de chiffrement) -> C:\Windows\system32\svchost.exe -k NetworkService - AcceptPause : False - AcceptStop : True - DesktopInteract : False R2 - [Share Process] - DcomLaunch (Lanceur de processus serveur DCOM) -> C:\Windows\system32\svchost.exe -k DcomLaunch - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - Dhcp (Client DHCP) -> C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted - AcceptPause : False - AcceptStop : True - DesktopInteract : False R2 - [Share Process] - Dnscache (Client DNS) -> C:\Windows\system32\svchost.exe -k NetworkService - AcceptPause : False - AcceptStop : True - DesktopInteract : False S2 - [Share Process] - DPS (Service de strategie de diagnostic) -> C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Own Process] - DsiWMIService (Dritek WMI Service) -> C:\Program Files\Launch Manager\dsiwmis.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - eventlog (Journal d’evenements Windows) -> C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted - AcceptPause : False - AcceptStop : True - DesktopInteract : False S2 - [Share Process] - EventSystem (Systeme d’evenement COM+) -> C:\Windows\system32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - FDResPub (Publication des ressources de decouverte de fonctions) -> C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Kernel Driver] - rspndr (Link-Layer Topology Discovery Responder) -> C:\Windows\system32\DRIVERS\rspndr.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Kernel Driver] - secdrv (Security Driver) -> C:\Windows\system32\drivers\secdrv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Kernel Driver] - tcpipreg (TCP/IP Registry Compatibility) -> C:\Windows\system32\drivers\tcpipreg.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - gpsvc (Client de strategie de groupe) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Own Process] - IAANTMON (Intel(R) Matrix Storage Event Monitor) -> C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - LanmanServer (Serveur) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - LanmanWorkstation (Station de travail) -> C:\Windows\System32\svchost.exe -k NetworkService - AcceptPause : True - AcceptStop : True - DesktopInteract : False S2 - [Share Process] - LDrvSvc (Local Driver Service) -> C:\Windows\System32\svchost.exe -k LocalDriverService - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - lmhosts (Assistance NetBIOS sur TCP/IP) -> C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted - AcceptPause : False - AcceptStop : True - DesktopInteract : False S2 - [Share Process] - MMCSS (Planificateur de classes multimedias) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - MpsSvc (Pare-feu Windows) -> C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork - AcceptPause : False - AcceptStop : True - DesktopInteract : False R2 - [Share Process] - Netman (Connexions reseau) -> C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : True - DesktopInteract : False R2 - [Share Process] - NlaSvc (Connaissance des emplacements reseau) -> C:\Windows\System32\svchost.exe -k NetworkService - AcceptPause : False - AcceptStop : True - DesktopInteract : False R2 - [Share Process] - nsi (Service Interface du magasin reseau) -> C:\Windows\system32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : True - DesktopInteract : False S2 - [Share Process] - PcaSvc (Service de l’Assistant Compatibilite des programmes) -> C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - PlugPlay (Plug-and-Play) -> C:\Windows\system32\svchost.exe -k DcomLaunch - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - Power (Alimentation) -> C:\Windows\system32\svchost.exe -k DcomLaunch - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - ProfSvc (Service de profil utilisateur) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : True - DesktopInteract : False S2 - [Own Process] - QHActiveDefense (360 Total Security) -> "C:\Program Files\360\Total Security\safemon\QHActiveDefense.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - RpcEptMapper (Mappeur de point de terminaison RPC) -> C:\Windows\system32\svchost.exe -k RPCSS - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - RpcSs (Appel de procedure distante (RPC)) -> C:\Windows\system32\svchost.exe -k rpcss - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Own Process] - RS_Service (Raw Socket Service) -> C:\Program Files\Acer\Acer VCM\RS_Service.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - SamSs (Gestionnaire de comptes de securite) -> C:\Windows\system32\lsass.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - Schedule (Planificateur de taches) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - SENS (Service de notification d’evenements systeme) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - ShellHWDetection (Detection materiel noyau) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Own Process] - Spooler (Spouleur d’impression) -> C:\Windows\System32\spoolsv.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : True S2 - [Own Process] - sppsvc (Protection logicielle) -> C:\Windows\system32\sppsvc.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Own Process] - StiSvc (Acquisition d’image Windows (WIA)) -> C:\Windows\system32\svchost.exe -k imgsvc - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - SysMain (Superfetch) -> C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - Themes (Themes) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - UxSms (Gestionnaire de sessions du Gestionnaire de fenetrage) -> C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - W32Time (Temps Windows) -> C:\Windows\system32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - Winmgmt (Infrastructure de gestion Windows) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : True - AcceptStop : True - DesktopInteract : False R2 - [Share Process] - Wlansvc (Service de configuration automatique WLAN) -> C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : True - DesktopInteract : False S2 - [Own Process] - WMPNetworkSvc (Service Partage reseau du Lecteur Windows Media) -> "C:\Program Files\Windows Media Player\wmpnetwk.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Share Process] - wscsvc (Centre de securite) -> C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Own Process] - WSearch (Windows Search) -> C:\Windows\system32\SearchIndexer.exe /Embedding - AcceptPause : False - AcceptStop : False - DesktopInteract : False R2 - [Share Process] - wudfsvc (Windows Driver Foundation - Infrastructure de pilote mode-utilisateur) -> C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S2 - [Own Process] - YandexBrowserService (Yandex.Browser Update Service) -> "C:\Program Files\Yandex\YandexBrowser\22.1.3.850\service_update.exe" --run-as-service - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - 1394ohci (1394 OHCI Compliant Host Controller) -> C:\Windows\system32\drivers\1394ohci.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [File System Driver] - 360AvFlt (360AvFlt mini-filter driver) -> C:\Windows\system32\DRIVERS\360AvFlt.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [File System Driver] - 360Box (360Box mini-filter driver) -> C:\Windows\system32\DRIVERS\360Box.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - 360Camera (360Safe Camera Filter Service) -> C:\Windows\system32\Drivers\360Camera.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - AcpiPmi (ACPI Power Meter Driver) -> C:\Windows\system32\drivers\acpipmi.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - adp94xx (adp94xx) -> C:\Windows\system32\drivers\adp94xx.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - adpahci (adpahci) -> C:\Windows\system32\drivers\adpahci.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - adpu320 (adpu320) -> C:\Windows\system32\drivers\adpu320.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - agp440 (Intel AGP Bus Filter) -> C:\Windows\system32\drivers\agp440.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - aic78xx (aic78xx) -> C:\Windows\system32\drivers\djsvs.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - aliide (aliide) -> C:\Windows\system32\drivers\aliide.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - amdagp (AMD AGP Bus Filter Driver) -> C:\Windows\system32\drivers\amdagp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - amdide (amdide) -> C:\Windows\system32\drivers\amdide.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - AmdK8 (AMD K8 Processor Driver) -> C:\Windows\system32\drivers\amdk8.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - AmdPPM (AMD Processor Driver) -> C:\Windows\system32\drivers\amdppm.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - amdsata (amdsata) -> C:\Windows\system32\drivers\amdsata.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - amdsbs (amdsbs) -> C:\Windows\system32\drivers\amdsbs.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - ampa (ampa) -> \??\C:\Windows\system32\ampa.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - ApfiltrService (Alps Pointing-device Filter Driver) -> C:\Windows\system32\DRIVERS\Apfiltr.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - AppID (Pilote AppID) -> C:\Windows\system32\drivers\appid.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - arc (arc) -> C:\Windows\system32\drivers\arc.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - arcsas (arcsas) -> C:\Windows\system32\drivers\arcsas.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - AsyncMac (Pilote de media asynchrone RAS) -> C:\Windows\system32\DRIVERS\asyncmac.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - athr (Qualcomm Atheros Extensible Wireless LAN device driver) -> C:\Windows\system32\DRIVERS\athr.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - b06bdrv (Broadcom NetXtreme II VBD) -> C:\Windows\system32\drivers\bxvbdx.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - b57nd60x (Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0) -> C:\Windows\system32\DRIVERS\b57nd60x.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [File System Driver] - bowser (Pilote de prise en charge du navigateur) -> C:\Windows\system32\DRIVERS\bowser.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - BrFiltLo (Brother USB Mass-Storage Lower Filter Driver) -> C:\Windows\system32\drivers\BrFiltLo.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - BrFiltUp (Brother USB Mass-Storage Upper Filter Driver) -> C:\Windows\system32\drivers\BrFiltUp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - BridgeMP (Miniport de pont MAC) -> C:\Windows\system32\DRIVERS\bridge.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - Brserid (Brother MFC Serial Port Interface Driver (WDM)) -> C:\Windows\system32\Drivers\Brserid.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - BrSerWdm (Brother WDM Serial driver) -> C:\Windows\system32\Drivers\BrSerWdm.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - BrUsbMdm (Brother MFC USB Fax Only Modem) -> C:\Windows\system32\Drivers\BrUsbMdm.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - BrUsbSer (Brother MFC USB Serial WDM Driver) -> C:\Windows\system32\Drivers\BrUsbSer.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - BTHMODEM (Bluetooth Serial Communications Driver) -> C:\Windows\system32\drivers\bthmodem.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - cdrom (cdrom) -> C:\Windows\system32\drivers\cdrom.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - circlass (Consumer IR Devices) -> C:\Windows\system32\drivers\circlass.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - CmBatt (Pilote pour Batterie a methode de controle ACPI Microsoft) -> C:\Windows\system32\DRIVERS\CmBatt.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - cmdide (cmdide) -> C:\Windows\system32\drivers\cmdide.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - CompositeBus (Composite Bus Enumerator Driver) -> C:\Windows\system32\drivers\CompositeBus.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - ddmdrv (ddmdrv) -> \??\C:\Windows\system32\ddmdrv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - drmkaud (Microsoft Trusted Audio Drivers) -> C:\Windows\system32\drivers\drmkaud.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - DXGKrnl (LDDM Graphics Subsystem) -> C:\Windows\system32\drivers\dxgkrnl.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - ebdrv (Broadcom NetXtreme II 10 GigE VBD) -> C:\Windows\system32\drivers\evbdx.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - elxstor (elxstor) -> C:\Windows\system32\drivers\elxstor.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - epmdkdrv (epmdkdrv) -> C:\Windows\system32\epmdkdrv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - ErrDev (Microsoft Hardware Error Device Driver) -> C:\Windows\system32\drivers\errdev.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - EUCR (EUCR) -> C:\Windows\system32\drivers\EUCR6SK.SYS - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - EuGdiDrv (EuGdiDrv) -> C:\Windows\system32\EuGdiDrv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [File System Driver] - exfat (exFAT File System Driver) -> C:\Windows\system32\drivers\exfat.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [File System Driver] - fastfat (FAT12/16/32 File System Driver) -> C:\Windows\system32\drivers\fastfat.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - fdc (Floppy Disk Controller Driver) -> C:\Windows\system32\drivers\fdc.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [File System Driver] - Filetrace (Filetrace) -> C:\Windows\system32\drivers\filetrace.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - flpydisk (Floppy Disk Driver) -> C:\Windows\system32\drivers\flpydisk.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [File System Driver] - FsDepends (File System Dependency Minifilter) -> C:\Windows\system32\drivers\FsDepends.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - gagp30kx (Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms) -> C:\Windows\system32\drivers\gagp30kx.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - GeneStor (Genesys Logic Storage Driver) -> C:\Windows\system32\DRIVERS\GeneStor.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - hcw85cir (Hauppauge Consumer Infrared Receiver) -> C:\Windows\system32\drivers\hcw85cir.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - HdAudAddService (Microsoft 1.1 UAA Function Driver for High Definition Audio Service) -> C:\Windows\system32\drivers\HdAudio.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - HDAudBus (Microsoft UAA Bus Driver for High Definition Audio) -> C:\Windows\system32\drivers\HDAudBus.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - HidBatt (HID UPS Battery Driver) -> C:\Windows\system32\drivers\HidBatt.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - HidBth (Microsoft Bluetooth HID Miniport) -> C:\Windows\system32\drivers\hidbth.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - HidIr (Microsoft Infrared HID Driver) -> C:\Windows\system32\drivers\hidir.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - HidUsb (Pilote de classe HID Microsoft) -> C:\Windows\system32\DRIVERS\hidusb.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - HpSAMD (HpSAMD) -> C:\Windows\system32\drivers\HpSAMD.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - HTTP (HTTP) -> C:\Windows\system32\drivers\HTTP.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - i8042prt (Pilote pour clavier i8042 et souris sur port PS/2) -> C:\Windows\system32\DRIVERS\i8042prt.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - iaStorV (iaStorV) -> C:\Windows\system32\drivers\iaStorV.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - igfx (igfx) -> C:\Windows\system32\DRIVERS\igdkmd32.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - iirsp (iirsp) -> C:\Windows\system32\drivers\iirsp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - IntcAzAudAddService (Service for Realtek HD Audio (WDM)) -> C:\Windows\system32\drivers\RTKVHDA.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - intelide (intelide) -> C:\Windows\system32\drivers\intelide.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - intelppm (Pilote de processeur Intel) -> C:\Windows\system32\DRIVERS\intelppm.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - IpFilterDriver (Pilote de filtre de trafic IP) -> C:\Windows\system32\DRIVERS\ipfltdrv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - IPMIDRV (IPMIDRV) -> C:\Windows\system32\drivers\IPMIDrv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - IPNAT (IP Network Address Translator) -> C:\Windows\system32\drivers\ipnat.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - IRENUM (IR Bus Enumerator) -> C:\Windows\system32\drivers\irenum.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - isapnp (isapnp) -> C:\Windows\system32\drivers\isapnp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - iScsiPrt (iScsiPort Driver) -> C:\Windows\system32\drivers\msiscsi.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - IUProcessFilter (IUProcessFilter) -> \??\D:\IObit.Uninstaller.11.2.0.10.Portable.KaranPC\App\ProgramFiles\drivers\win7_x86\IUProcessFilter.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - iwf (iwf) -> C:\Windows\system32\DRIVERS\iwf.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - kbdclass (Keyboard Class Driver) -> C:\Windows\system32\drivers\kbdclass.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - kbdhid (Keyboard HID Driver) -> C:\Windows\system32\drivers\kbdhid.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - keycrypt (keycrypt) -> C:\Windows\system32\DRIVERS\KeyCrypt32.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [Kernel Driver] - L1C (NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller) -> C:\Windows\system32\DRIVERS\L1C62x86.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - LSI_FC (LSI_FC) -> C:\Windows\system32\drivers\lsi_fc.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - LSI_SAS (LSI_SAS) -> C:\Windows\system32\drivers\lsi_sas.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - LSI_SAS2 (LSI_SAS2) -> C:\Windows\system32\drivers\lsi_sas2.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - LSI_SCSI (LSI_SCSI) -> C:\Windows\system32\drivers\lsi_scsi.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - megasas (megasas) -> C:\Windows\system32\drivers\megasas.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - MegaSR (MegaSR) -> C:\Windows\system32\drivers\MegaSR.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - Modem (Modem) -> C:\Windows\system32\drivers\modem.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - monitor (Service Pilote de fonction de classe Moniteur Microsoft) -> C:\Windows\system32\DRIVERS\monitor.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - mouclass (Pilote de la classe Souris) -> C:\Windows\system32\DRIVERS\mouclass.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - mouhid (Pilote HID de souris) -> C:\Windows\system32\DRIVERS\mouhid.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - mpio (mpio) -> C:\Windows\system32\drivers\mpio.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - mpsdrv (Pilote d’autorisation du Pare-feu Windows) -> C:\Windows\system32\drivers\mpsdrv.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [File System Driver] - MRxDAV (Pilote du redirecteur client WebDav) -> C:\Windows\system32\drivers\mrxdav.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [File System Driver] - mrxsmb (Wrapper et moteur de mini-redirecteur SMB) -> C:\Windows\system32\DRIVERS\mrxsmb.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [File System Driver] - mrxsmb10 (Mini-redirecteur SMB 1.x) -> C:\Windows\system32\DRIVERS\mrxsmb10.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [File System Driver] - mrxsmb20 (Mini-redirecteur SMB 2.0) -> C:\Windows\system32\DRIVERS\mrxsmb20.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - msahci (msahci) -> C:\Windows\system32\drivers\msahci.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - msdsm (msdsm) -> C:\Windows\system32\drivers\msdsm.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - mshidkmdf (Pass-through HID to KMDF Filter Driver) -> C:\Windows\system32\drivers\mshidkmdf.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - MSKSSRV (Proxy de service de repartition Microsoft) -> C:\Windows\system32\drivers\MSKSSRV.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - MSPCLOCK (Proxy d'horloge de repartition Microsoft) -> C:\Windows\system32\drivers\MSPCLOCK.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - MSPQM (Proxy de gestion de qualite de repartition Microsoft) -> C:\Windows\system32\drivers\MSPQM.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - MsRPC (MsRPC) -> C:\Windows\system32\drivers\MsRPC.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - MSTEE (Convertisseur en T/site-a-site de repartition Microsoft) -> C:\Windows\system32\drivers\MSTEE.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - MTConfig (Microsoft Input Configuration Driver) -> C:\Windows\system32\drivers\MTConfig.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - NativeWifiP (NativeWiFi Filter) -> C:\Windows\system32\DRIVERS\nwifi.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - NdisCap (NDIS Capture LightWeight Filter) -> C:\Windows\system32\DRIVERS\ndiscap.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - NdisTapi (Pilote TAPI NDIS d’acces distant) -> C:\Windows\system32\DRIVERS\ndistapi.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [Kernel Driver] - Ndisuio (NDIS Usermode I/O Protocol) -> C:\Windows\system32\DRIVERS\ndisuio.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [Kernel Driver] - NdisWan (Pilote reseau etendu NDIS d’acces distant) -> C:\Windows\system32\DRIVERS\ndiswan.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [Kernel Driver] - NDProxy (NDIS Proxy) -> C:\Windows\system32\drivers\NDProxy.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - necbatt (Battery Filter Driver) -> C:\Windows\system32\DRIVERS\necbatt.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - nfrd960 (nfrd960) -> C:\Windows\system32\drivers\nfrd960.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [File System Driver] - Ntfs (Ntfs) -> C:\Windows\system32\drivers\Ntfs.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - nvraid (nvraid) -> C:\Windows\system32\drivers\nvraid.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - nvstor (nvstor) -> C:\Windows\system32\drivers\nvstor.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - nv_agp (NVIDIA nForce AGP Bus Filter) -> C:\Windows\system32\drivers\nv_agp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - ohci1394 (1394 OHCI Compliant Host Controller (Legacy)) -> C:\Windows\system32\drivers\ohci1394.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - Parport (Parallel port driver) -> C:\Windows\system32\drivers\parport.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - pciide (pciide) -> C:\Windows\system32\drivers\pciide.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - pcmcia (pcmcia) -> C:\Windows\system32\drivers\pcmcia.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - PptpMiniport (Miniport WAN (PPTP)) -> C:\Windows\system32\DRIVERS\raspptp.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - Processor (Processor Driver) -> C:\Windows\system32\drivers\processr.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - ql2300 (ql2300) -> C:\Windows\system32\drivers\ql2300.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - ql40xx (ql40xx) -> C:\Windows\system32\drivers\ql40xx.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - qutmdserv (Quantum DeepScanner Servers) -> \??\C:\Windows\system32\drivers\qutmdrv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - QWAVEdrv (Pilote QWAVE) -> C:\Windows\system32\drivers\qwavedrv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - RasAcd (Remote Access Auto Connection Driver) -> C:\Windows\system32\DRIVERS\rasacd.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - RasAgileVpn (WAN Miniport (IKEv2)) -> C:\Windows\system32\DRIVERS\AgileVpn.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [Kernel Driver] - Rasl2tp (Miniport WAN (L2TP)) -> C:\Windows\system32\DRIVERS\rasl2tp.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [Kernel Driver] - RasPppoe (Pilote PPPOE d’acces a distance) -> C:\Windows\system32\DRIVERS\raspppoe.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Share Process] - AeLookupSvc (Experience d’application) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - ALG (Service de la passerelle de la couche Application) -> C:\Windows\System32\alg.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - AppIDSvc (Identite de l’application) -> C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - Appinfo (Informations d’application) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - AxInstSV (Programme d’installation ActiveX (AxInstSV)) -> C:\Windows\system32\svchost.exe -k AxInstSVGroup - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - BDESVC (Service de chiffrement de lecteur BitLocker) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - BITS (Service de transfert intelligent en arriere-plan) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - Browser (Explorateur d’ordinateurs) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - bthserv (Service de prise en charge Bluetooth) -> C:\Windows\system32\svchost.exe -k bthsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - CertPropSvc (Propagation du certificat) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - COMSysApp (Application systeme COM+) -> C:\Windows\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - dot3svc (Configuration automatique de reseau cable) -> C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Share Process] - EapHost (Protocole EAP (Extensible Authentication Protocol)) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Share Process] - EFS (Systeme de fichiers EFS (Encrypting File System)) -> C:\Windows\System32\lsass.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - Fax (Telecopie) -> C:\Windows\system32\fxssvc.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - fdPHost (Hote du fournisseur de decouverte de fonctions) -> C:\Windows\system32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - RasSstp (Miniport WAN (SSTP)) -> C:\Windows\system32\DRIVERS\rassstp.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - rdpbus (Remote Desktop Device Redirector Bus Driver) -> C:\Windows\system32\drivers\rdpbus.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - RDPWD (RDP Winstation Driver) -> C:\Windows\system32\drivers\RDPWD.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [File System Driver] - Revoflt (Revoflt) -> C:\Windows\system32\DRIVERS\revoflt.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - RTSTOR (Realtek USB 2.0 Card Reader) -> C:\Windows\system32\drivers\RTSTOR.SYS - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - sbp2port (sbp2port) -> C:\Windows\system32\drivers\sbp2port.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - scfilter (Pilote de filtre de classe PnP de carte a puce) -> C:\Windows\system32\DRIVERS\scfilter.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - Serenum (Serenum Filter Driver) -> C:\Windows\system32\drivers\serenum.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - Serial (Serial Port Driver) -> C:\Windows\system32\drivers\serial.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - sermouse (Serial Mouse Driver) -> C:\Windows\system32\drivers\sermouse.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - sffdisk (SFF Storage Class Driver) -> C:\Windows\system32\drivers\sffdisk.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - sffp_mmc (SFF Storage Protocol Driver for MMC) -> C:\Windows\system32\drivers\sffp_mmc.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - sffp_sd (SFF Storage Protocol Driver for SDBus) -> C:\Windows\system32\drivers\sffp_sd.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - sfloppy (High-Capacity Floppy Disk Drive) -> C:\Windows\system32\drivers\sfloppy.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - sisagp (SIS AGP Bus Filter) -> C:\Windows\system32\drivers\sisagp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - SiSRaid2 (SiSRaid2) -> C:\Windows\system32\drivers\SiSRaid2.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - SiSRaid4 (SiSRaid4) -> C:\Windows\system32\drivers\sisraid4.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - Smb (Protocoles TCP/IP et TCP/IPv6 oriente messages (session SMB)) -> C:\Windows\system32\DRIVERS\smb.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - SNP2UVC (USB2.0 PC Camera (SNP2UVC)) -> C:\Windows\system32\DRIVERS\snp2uvc.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [File System Driver] - srv (Pilote de serveur SMB 1.xxx) -> C:\Windows\system32\DRIVERS\srv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [File System Driver] - srv2 (Pilote de serveur SMB 2.xxx) -> C:\Windows\system32\DRIVERS\srv2.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [File System Driver] - srvnet (srvnet) -> C:\Windows\system32\DRIVERS\srvnet.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - stdriver (SoundTap Upper Filter Driver v7.0.0) -> C:\Windows\system32\DRIVERS\stdriverx86.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - stexstor (stexstor) -> C:\Windows\system32\drivers\stexstor.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - swenum (Software Bus Driver) -> C:\Windows\system32\drivers\swenum.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - TCPIP6 (Microsoft IPv6 Protocol Driver) -> C:\Windows\system32\DRIVERS\tcpip.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - TDPIPE (TDPIPE) -> C:\Windows\system32\drivers\tdpipe.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - TDTCP (TDTCP) -> C:\Windows\system32\drivers\tdtcp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - tssecsrv (Remote Desktop Services Security Filter Driver) -> C:\Windows\system32\DRIVERS\tssecsrv.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - tunnel (Pilote de carte miniport Microsoft Tunnel) -> C:\Windows\system32\DRIVERS\tunnel.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - uagp35 (Microsoft AGPv3.5 Filter) -> C:\Windows\system32\drivers\uagp35.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - uliagpkx (Uli AGP Bus Filter) -> C:\Windows\system32\drivers\uliagpkx.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - umbus (Pilote d’enumerateur UMBus) -> C:\Windows\system32\DRIVERS\umbus.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - UmPass (Microsoft UMPass Driver) -> C:\Windows\system32\drivers\umpass.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - USBAAPL (Apple Mobile USB Driver) -> C:\Windows\system32\Drivers\usbaapl.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [Kernel Driver] - usbccgp (Pilote parent generique USB Microsoft) -> C:\Windows\system32\DRIVERS\usbccgp.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - usbcir (eHome Infrared Receiver (USBCIR)) -> C:\Windows\system32\drivers\usbcir.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - usbehci (Pilote miniport de controleur d'hote ameliore Microsoft USB 2.0) -> C:\Windows\system32\DRIVERS\usbehci.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [Kernel Driver] - usbhub (Pilote de concentrateur standard USB Microsoft) -> C:\Windows\system32\DRIVERS\usbhub.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - usbohci (Microsoft USB Open Host Controller Miniport Driver) -> C:\Windows\system32\drivers\usbohci.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - usbprint (Microsoft USB PRINTER Class) -> C:\Windows\system32\drivers\usbprint.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - USBSTOR (Pilote de stockage de masse USB) -> C:\Windows\system32\DRIVERS\USBSTOR.SYS - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [Kernel Driver] - usbuhci (Microsoft USB Universal Host Controller Miniport Driver) -> C:\Windows\system32\drivers\usbuhci.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - usbvideo (USB Video Device (WDM)) -> C:\Windows\system32\Drivers\usbvideo.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - vga (vga) -> C:\Windows\system32\DRIVERS\vgapnp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - vhdmp (vhdmp) -> C:\Windows\system32\drivers\vhdmp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - viaagp (VIA AGP Bus Filter) -> C:\Windows\system32\drivers\viaagp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - ViaC7 (VIA C7 Processor Driver) -> C:\Windows\system32\drivers\viac7.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - viaide (viaide) -> C:\Windows\system32\drivers\viaide.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - voxaldriver (Voxal Filter Driver 3.3.0) -> C:\Windows\system32\DRIVERS\voxaldriverx86.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - vsmraid (vsmraid) -> C:\Windows\system32\drivers\vsmraid.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - vwifibus (Pilote de bus WiFi virtuel) -> C:\Windows\system32\DRIVERS\vwifibus.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - WacomPen (Wacom Serial Pen HID Driver) -> C:\Windows\system32\drivers\wacompen.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - WANARP (Pilote ARP IP d’acces a distance) -> C:\Windows\system32\DRIVERS\wanarp.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [File System Driver] - WIMMount (WIMMount) -> C:\Windows\system32\drivers\wimmount.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Kernel Driver] - WinUsb (WinUsb) -> C:\Windows\system32\DRIVERS\WinUsb.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Kernel Driver] - WmiAcpi (Microsoft Windows Management Interface for ACPI) -> C:\Windows\system32\drivers\wmiacpi.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False R3 - [Kernel Driver] - WudfPf (User Mode Driver Frameworks Platform Driver) -> C:\Windows\system32\drivers\WudfPf.sys - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Kernel Driver] - WUDFRd (WUDFRd) -> C:\Windows\system32\DRIVERS\WUDFRd.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - FontCache (Service de cache de police Windows) -> C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - FontCache3.0.0.0 (Cache de police de Windows Presentation Foundation 3.0.0.0) -> C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - hidserv (Acces du peripherique d'interface utilisateur) -> C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - hkmsvc (Gestion des cles et des certificats d’integrite) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - HomeGroupListener (Ecouteur HomeGroup) -> C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - HomeGroupProvider (Fournisseur HomeGroup) -> C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - idsvc (Windows CardSpace) -> "C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - IKEEXT (Modules de generation de cles IKE et AuthIP) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - IPBusEnum (Enumerateur de bus IP PnP-X) -> C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - iphlpsvc (Assistance IP) -> C:\Windows\System32\svchost.exe -k NetSvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Share Process] - KeyIso (Isolation de cle CNG) -> C:\Windows\system32\lsass.exe - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Share Process] - KtmRm (Service KtmRm pour Distributed Transaction Coordinator) -> C:\Windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - lltdsvc (Mappage de decouverte de topologie de la couche de liaison) -> C:\Windows\System32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - MSDTC (Coordinateur de transactions distribuees) -> C:\Windows\System32\msdtc.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - MSiSCSI (Service Initiateur iSCSI de Microsoft) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - msiserver (Windows Installer) -> C:\Windows\system32\msiexec.exe /V - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - napagent (Agent de protection d’acces reseau) -> C:\Windows\System32\svchost.exe -k NetworkService - AcceptPause : False - AcceptStop : False - DesktopInteract : False R3 - [Share Process] - netprofm (Service Liste des reseaux) -> C:\Windows\System32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : True - DesktopInteract : False S3 - [Share Process] - p2pimsvc (Gestionnaire d’identite reseau homologue) -> C:\Windows\System32\svchost.exe -k LocalServicePeerNet - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - p2psvc (Groupement de mise en reseau de pairs) -> C:\Windows\System32\svchost.exe -k LocalServicePeerNet - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - pla (Journaux & alertes de performance) -> C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - PNRPAutoReg (Service de publication des noms d’ordinateurs PNRP) -> C:\Windows\System32\svchost.exe -k LocalServicePeerNet - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - PNRPsvc (Protocole PNRP) -> C:\Windows\System32\svchost.exe -k LocalServicePeerNet - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - PolicyAgent (Agent de strategie IPsec) -> C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - ProtectedStorage (Emplacement protege) -> C:\Windows\system32\lsass.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - QWAVE (Experience audio-video haute qualite Windows) -> C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - RasAuto (Gestionnaire de connexion automatique d’acces distant) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - RasMan (Gestionnaire de connexions d’acces distant) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - RpcLocator (Localisateur d’appels de procedure distante (RPC)) -> C:\Windows\system32\locator.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - SCardSvr (Carte a puce) -> C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - SCPolicySvc (Strategie de retrait de la carte a puce) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - seclogon (Ouverture de session secondaire) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - SessionEnv (Configuration des services Bureau a distance) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - SNMPTRAP (Interruption SNMP) -> C:\Windows\System32\snmptrap.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - sppuinotify (Service de notification SPP) -> C:\Windows\system32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - SSDPSRV (Decouverte SSDP) -> C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - SstpSvc (Service SSTP (Secure Socket Tunneling Protocol)) -> C:\Windows\system32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - swprv (Fournisseur de cliche instantane de logiciel Microsoft) -> C:\Windows\System32\svchost.exe -k swprv - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - TabletInputService (Service Panneau de saisie Tablet PC) -> C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - TapiSrv (Telephonie) -> C:\Windows\System32\svchost.exe -k NetworkService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - TBS (Services de base de module de plateforme securisee) -> C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - TermService (Services Bureau a distance) -> C:\Windows\System32\svchost.exe -k NetworkService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - THREADORDER (Serveur de priorites des threads) -> C:\Windows\system32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - TrkWks (Client de suivi de lien distribue) -> C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - TrustedInstaller (Programme d’installation pour les modules Windows) -> C:\Windows\servicing\TrustedInstaller.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - UI0Detect (Detection de services interactifs) -> C:\Windows\system32\UI0Detect.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : True S3 - [Own Process] - Updater Service (Updater Service) -> C:\Program Files\Acer\Acer Updater\UpdaterService.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - upnphost (Hote de peripherique UPnP) -> C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - VaultSvc (Gestionnaire d’informations d’identification) -> C:\Windows\system32\lsass.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - vds (Disque virtuel) -> C:\Windows\System32\vds.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - VSS (Cliche instantane des volumes) -> C:\Windows\system32\vssvc.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - wbengine (Service de moteur de sauvegarde en mode bloc) -> "C:\Windows\system32\wbengine.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WbioSrvc (Service de biometrie Windows) -> C:\Windows\system32\svchost.exe -k WbioSvcGroup - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - wcncsvc (Windows Connect Now - Registre de configuration) -> C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WcsPlugInService (Systeme de couleurs Windows) -> C:\Windows\system32\svchost.exe -k wcssvc - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WdiServiceHost (Service hote WDIServiceHost) -> C:\Windows\System32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WdiSystemHost (Hote systeme de diagnostics) -> C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - Wecsvc (Collecteur d’evenements de Windows) -> C:\Windows\system32\svchost.exe -k NetworkService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - wercplsupport (Prise en charge de l’application Rapports et solutions aux problemes du Panneau de configuration) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WerSvc (Service de rapport d’erreurs Windows) -> C:\Windows\System32\svchost.exe -k WerSvcGroup - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WinDefend (Windows Defender) -> C:\Windows\System32\svchost.exe -k secsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WinHttpAutoProxySvc (Service de decouverte automatique de Proxy Web pour les services HTTP Windows) -> C:\Windows\system32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WinRM (Gestion a distance de Windows (Gestion WSM)) -> C:\Windows\System32\svchost.exe -k NetworkService - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Own Process] - wmiApSrv (Carte de performance WMI) -> C:\Windows\system32\wbem\WmiApSrv.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WPCSvc (Parental Controls) -> C:\Windows\system32\svchost.exe -k LocalServiceNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WPDBusEnum (Service Enumerateur d’appareil mobile) -> C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - wuauserv (Windows Update) -> C:\Windows\system32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S3 - [Share Process] - WwanSvc (Service de configuration automatique WWAN) -> C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [File System Driver] - cdfs (CD/DVD File System Reader) -> C:\Windows\system32\DRIVERS\cdfs.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Kernel Driver] - crcdisk (Crcdisk Filter Driver) -> C:\Windows\system32\drivers\crcdisk.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - AdvancedSystemCareService15 (Advanced SystemCare Service 15) -> "C:\Program Files\IObit\Advanced SystemCare\ASCService.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - ASD2Svc (Anvi Smart Defender 2 Service) -> "C:\Program Files\Anvisoft\Anvi Smart Defender\ASD2Srv.exe" --service - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - Backupper Service (AOMEI Backupper Scheduler Service) -> "C:\Program Files\AOMEI\AOMEI Backupper\6.8.0\ABService.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - Bonjour Service (Service Bonjour) -> "C:\Program Files\Bonjour\mDNSResponder.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - clr_optimization_v2.0.50727_32 (Microsoft .NET Framework NGEN v2.0.50727_X86) -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - CopperService (Copper Point of Sale Software) -> "C:\Program Files\NCH Software\Copper\copper.exe" -service - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - DfSdkS (Defragmentation-Service) -> C:\Program Files\Ashampoo\Ashampoo HDD Control 3\DfSdkS.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - EaseUS UPDATE SERVICE (EaseUS UPDATE SERVICE) -> C:\Program Files\EaseUS\ENS\ensserver.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - ePowerSvc (Acer ePower Service) -> C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - ExpressAccountsService (Express Accounts - Logiciel de comptabilite) -> "C:\Program Files\NCH Software\ExpressAccounts\expressaccounts.exe" -service - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - ExpressInvoiceService (Express Invoice - Logiciel de facturation) -> "C:\Program Files\NCH Software\ExpressInvoice\expressinvoice.exe" -service - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - FlexiServerService (FlexiServer – Logiciel de productivite et de suivi de la presence) -> "C:\Program Files\NCH Software\FlexiServer\flexiserver.exe" -service - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [File System Driver] - udfs (udfs) -> C:\Windows\system32\DRIVERS\udfs.sys - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - FlingService (Fling - Telechargement FTP automatique) -> "C:\Program Files\NCH Software\Fling\fling.exe" -service - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - FoxitReaderUpdateService (Foxit Reader Update Service) -> "C:\Program Files\Foxit Reader\FoxitReaderUpdateService.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : True S4 - [Own Process] - GoogleChromeElevationService (Google Chrome Elevation Service (GoogleChromeElevationService)) -> "C:\Program Files\Google\Chrome\Application\98.0.4758.82\elevation_service.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - GREGService (GREGService) -> C:\Program Files\Acer\Registration\GREGsvc.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - gupdate (Service Google Update (gupdate)) -> "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - gupdatem (Service Google Update (gupdatem)) -> "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - gusvc (Google Software Updater) -> "C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - IntegoPreventions (Intego Preventions) -> "C:\Program Files\Intego\Preventions\MVArmorService32.exe" --module iavp4026294 - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - IntegoWebfilter (Intego Webfilter) -> "C:\Program Files\Intego\IavWebfilter.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - InventoriaService (Inventoria - Logiciel de gestion des stocks) -> "C:\Program Files\NCH Software\Inventoria\inventoria.exe" -service - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - IObitUnSvr (IObit Uninstaller Service) -> C:\Program Files\IObit\IObit Uninstaller\IUService.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - MobogenieService (MobogenieService) -> D:\Program Files\Mobogenie3\MobogenieService.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : True S4 - [Own Process] - MozillaMaintenance (Mozilla Maintenance Service) -> "C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - MWLService (MyWinLocker Service) -> C:\Program Files\EgisTec MyWinLocker\x86\MWLService.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Share Process] - Netlogon (Netlogon) -> C:\Windows\system32\lsass.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Share Process] - NetTcpPortSharing (Service de partage de ports Net.Tcp) -> "C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Share Process] - RemoteAccess (Routage et acces distant) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Share Process] - RemoteRegistry (Registre a distance) -> C:\Windows\system32\svchost.exe -k regsvc - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - rkrtservice (RogueKiller RTP) -> C:\Program Files\RogueKiller\RogueKillerSvc.exe - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Share Process] - SharedAccess (Partage de connexion Internet (ICS)) -> C:\Windows\System32\svchost.exe -k netsvcs - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Own Process] - VerityService (Verity Parental Control Software) -> "C:\Program Files\NCH Software\Verity\verity.exe" -service - AcceptPause : False - AcceptStop : False - DesktopInteract : False S4 - [Share Process] - WebClient (WebClient) -> C:\Windows\system32\svchost.exe -k LocalService - AcceptPause : False - AcceptStop : False - DesktopInteract : False ---------- | System files (Microsoft|Avast|Atheros|Adaptec|Brother|Intel Files whitelisted) ---------- | Uninstall (Whitelist) [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Boost 1.0.2] : (Boost.-.Reason Software Company Inc.) -> msiexec.exe /x {115FB0FD-1A0A-4C26-82A7-A6689A799BB9} [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\GoToMeeting] : (GoToMeeting 10.18.0.19932.-.LogMeIn, Inc.) -> "C:\Users\Gregy&Justy\AppData\Local\GoToMeeting\19932\G2MUninstall.exe" /uninstall [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Opera 83.0.4254.19] : (Opera Stable 83.0.4254.19.-.Opera Software) -> "C:\Users\Gregy&Justy\AppData\Local\Programs\Opera\Launcher.exe" /uninstall [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Opera Neon] : (Opera Neon.-.Opera Software AS) -> "C:\Users\Gregy&Justy\AppData\Local\Opera Software\Opera Neon\Application\1.0.2531.0\Installer\setup.exe" --uninstall [HKU\S-1-5-21-3649652723-2583502882-2903364766-1000\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\YandexBrowser] : (Yandex.-.YANDEX) -> "C:\Users\Gregy&Justy\AppData\Local\Yandex\YandexBrowser\Application\22.1.3.850\Installer\setup.exe" --uninstall --verbose-logging [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\360SysVulTer.{A3B90FC6-E6A9-4BD1-AD8A-812A978CB1F5}] : (360 high-risk vulnerability immunity tool.-.360 Total Security) -> "C:\Program Files\360SysVulTerminator\360SysVulTerminator\SysVulTerminator.exe" /src=uninst [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\360TotalSecurity] : (360 Total Security.-.Centre 360 Security) -> C:\Program Files\360\Total Security\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\3B29FD3CCF1F5B855DA0C521597413EBABE97DFB] : (ENE USB Card Reader Driver.-.ENE) -> C:\PROGRA~1\DIFX\1D7EDBE51E76976F\DPInst.exe /u C:\Windows\System32\DriverStore\FileRepository\eucr6sk.inf_x86_neutral_7c75d214bf460262\eucr6sk.inf [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\7-Zip] : (7-Zip 21.06.-.Igor Pavlov) -> "C:\Program Files\7-Zip\Uninstall.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\8B3D7924-ED89-486B-8322-E8594065D5CB_is1] : (RogueKiller version 15.2.0.0.-.Adlice Software) -> "C:\Program Files\RogueKiller\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Acer Registration] : (Acer Registration.-.Acer Incorporated) -> C:\Program Files\Acer\Registration\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Acer Screensaver] : (Acer ScreenSaver.-.Acer Incorporated) -> C:\Program Files\Acer\Screensaver\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Acer Welcome Center] : (Welcome Center.-.Acer Incorporated) -> C:\Program Files\Acer\Welcome Center\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Adobe AIR] : (Adobe AIR.-.HARMAN International) -> c:\Program Files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Adobe Flash Player] : (Adobe Flash Player ActiveX+Plugins.-.oszone.net) -> rundll32 advpack,LaunchINFSection C:\Windows\INF\FP.inf,Uninstall_7x86 [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Advanced SystemCare_is1] : (Advanced SystemCare.-.IObit) -> "C:\Program Files\IObit\Advanced SystemCare\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\AIDA64 Extreme_is1] : (AIDA64 Extreme v6.33.-.FinalWire Ltd.) -> "C:\Program Files\FinalWire\AIDA64 Extreme\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\AIMP] : (AIMP.-.AIMP DevTeam) -> C:\Program Files\\AIMP\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Anvi AD Blocker Ultimate] : (Anvi AD Blocker Ultimate 3.2.-.Anvisoft) -> C:\Program Files\Anvisoft\Anvi AD Blocker Ultimate\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Anvi Smart Defender] : (Anvi Smart Defender 2.2.-.Anvisoft) -> C:\Program Files\Anvisoft\Anvi Smart Defender\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\AOMEI Backupper] : (.-.) -> C:\Program Files\AOMEI\AOMEI Backupper\6.8.0\unins000.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Aomei Partition Assistant_is1] : (.-.) -> i:\Program Files\AOMEI Partition Assistant\unins000.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\AutoHotkey] : (AutoHotkey 1.1.33.10.-.Lexikos) -> "C:\Program Files\AutoHotkey\AutoHotkey.exe" "C:\Program Files\AutoHotkey\Installer.ahk" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\AutoItv3] : (AutoIt v3.3.14.5.-.AutoIt Team) -> C:\Program Files\AutoIt3\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\CardWorks] : (CardWorks Business Card Software.-.NCH Software) -> "C:\Program Files\NCH Software\CardWorks\cardworks.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\ClickCharts] : (ClickCharts – Logiciel d’organigrammes.-.NCH Software) -> "C:\Program Files\NCH Software\ClickCharts\clickcharts.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Cloud System Booster] : (Cloud System Booster.-.Anvisoft) -> ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Connection Manager] : (.-.) -> [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Copper] : (Copper Point of Sale Software.-.NCH Software) -> "C:\Program Files\NCH Software\Copper\copper.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Crescendo] : (Crescendo - Editeur de notation de musique.-.NCH Software) -> "C:\Program Files\NCH Software\Crescendo\crescendo.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Debut] : (Debut - Logiciel de capture video.-.NCH Software) -> "C:\Program Files\NCH Software\Debut\debut.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\DeskFX] : (DeskFX Audio Effect Processor.-.NCH Software) -> "C:\Program Files\NCH Software\DeskFX\deskfx.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Disketch] : (Disketch - Logiciel pour etiquettes de CD.-.NCH Software) -> "C:\Program Files\NCH Software\Disketch\disketch.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Doxillion] : (Doxillion - Convertisseur de documents.-.NCH Software) -> "C:\Program Files\NCH Software\Doxillion\doxillion.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\DrawPad] : (DrawPad Logiciel d'infographie.-.NCH Software) -> "C:\Program Files\NCH Software\DrawPad\drawpad.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\DreamPlan] : (DreamPlan - Logiciel d'amenagement.-.NCH Software) -> "C:\Program Files\NCH Software\DreamPlan\dreamplan.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Driver Genius_is1] : (Driver Genius.-.Driver-Soft Inc.) -> "C:\Program Files\Driver-Soft\DriverGenius\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\DriverDoc_is1] : (DriverDoc v5.3.519.-.Solvusoft Corporation) -> "g:\Program Files\DriverDoc\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\DriverFix_is1] : (DriverFix 4.2021.8.30.-.DriverFix, Inc) -> "C:\Program Files\DriverFix\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\DriverPack] : (DriverPack.-.DriverPack) -> "C:\Program Files\DriverPack\Uninstall.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\EaseUS Partition Master Suite_is1] : (EaseUS Partition Master Suite 16.6.-.EaseUS) -> "C:\Program Files\EaseUS\EaseUS Partition Master Suite\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\EaseUS Partition Master_is1] : (EaseUS Partition Master.-.EaseUS) -> "C:\Program Files\EaseUS\EaseUS Partition Master Suite\ToolKits\EaseUS Partition Master\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Everything] : (Everything 1.4.1.1015 (x86).-.voidtools) -> C:\Program Files\Everything\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\ExpressAccounts] : (Express Accounts - Logiciel de comptabilite.-.NCH Software) -> "C:\Program Files\NCH Software\ExpressAccounts\expressaccounts.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\ExpressBurn] : (Express Burn - Logiciel de gravure de disques.-.NCH Software) -> "C:\Program Files\NCH Software\ExpressBurn\expressburn.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\ExpressInvoice] : (Express Invoice - Logiciel de facturation.-.NCH Software) -> "C:\Program Files\NCH Software\ExpressInvoice\expressinvoice.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\ExpressRip] : (Express Rip - Extracteur de CD.-.NCH Software) -> "C:\Program Files\NCH Software\ExpressRip\expressrip.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\ExpressZip] : (Express Zip - Compresseur de fichiers.-.NCH Software) -> "C:\Program Files\NCH Software\ExpressZip\expresszip.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\FastFox] : (FastFox Text Expander Software.-.NCH Software) -> "C:\Program Files\NCH Software\FastFox\fastfox.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\FastStone Image Viewer] : (FastStone Image Viewer 7.5.-.FastStone Soft) -> C:\Program Files\FastStone Image Viewer\uninst.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\FileFort] : (FileFort Backup.-.NCH Software) -> "C:\Program Files\NCH Software\FileFort\filefort.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\FlexiServer] : (FlexiServer – Logiciel de productivite et de suivi de la presence.-.NCH Software) -> "C:\Program Files\NCH Software\FlexiServer\flexiserver.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Fling] : (Fling - Telechargement FTP automatique.-.NCH Software) -> "C:\Program Files\NCH Software\Fling\fling.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Foxit Reader_is1] : (Foxit Reader.-.Foxit Software Inc.) -> rundll32.exe advpack.dll,LaunchINFSection C:\Windows\INF\FoxitReader.inf,Uninstall_x86 [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\GoldenVideos] : (Golden Videos VHS to DVD Converter.-.NCH Software) -> "C:\Program Files\NCH Software\GoldenVideos\goldenvideos.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Google Chrome] : (Google Chrome.-.Google LLC) -> "C:\Program Files\Google\Chrome\Application\98.0.4758.82\Installer\setup.exe" --uninstall --channel=stable --system-level --verbose-logging [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Greenshot_is1] : (Greenshot 1.2.10.6.-.Greenshot) -> "C:\Program Files\Greenshot\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\HDMI] : (Intel(R) Graphics Media Accelerator Driver.-.Intel Corporation) -> C:\Windows\system32\igxpun.exe -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Identity Card] : (Identity Card.-.Acer Incorporated) -> C:\Program Files\Acer\Identity Card\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\InstallShield_{0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}] : (.-.Egis Technology Inc.) -> "C:\Program Files\InstallShield Installation Information\{0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}\setup.exe" -runfromtemp -l0x040c -removeonly ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\InstallShield_{523281E5-91DD-49F5-9D85-954148F7596A}] : (AndroidInstaller.-.Nom de votre societe) -> "C:\Program Files\InstallShield Installation Information\{523281E5-91DD-49F5-9D85-954148F7596A}\setup.exe" -runfromtemp -l0x040c -removeonly [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}] : (MyWinLocker Suite.-.Egis Technology Inc.) -> "C:\Program Files\InstallShield Installation Information\{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}\setup.exe" -runfromtemp -l0x040c -removeonly [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\InstallShield_{C2695E83-CF1D-43D1-84FE-B3BEC561012A}] : (.-.Egis Technology Inc.) -> "C:\Program Files\InstallShield Installation Information\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}\setup.exe" -runfromtemp -l0x0409 -removeonly [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Intego Antivirus] : (Intego Antivirus.-.Intego) -> C:\Program Files\Intego\uninst.exe _?=C:\Program Files\Intego [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Inventoria] : (Inventoria - Logiciel de gestion des stocks.-.NCH Software) -> "C:\Program Files\NCH Software\Inventoria\inventoria.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\IObit Software Updater_is1] : (IObit Software Updater.-.IObit) -> "C:\Program Files\IObit\Software Updater\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\IObitUninstall] : (IObit Uninstaller.-.IObit) -> D:\IObit.Uninstaller.11.2.0.10.Portable.KaranPC\App\ProgramFiles\unins000.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\IObitUninstall.BackupByJSPortableApps] : (IObit Uninstaller 11.-.IObit) -> "C:\Program Files\IObit\IObit Uninstaller\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\iTop VPN_is1] : (iTop VPN.-.iTop Inc.) -> "D:\Program Files\iTop VPN\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\KeyBlaze] : (KeyBlaze Typing Tutor.-.NCH Software) -> "C:\Program Files\NCH Software\KeyBlaze\keyblaze.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\KLiteCodecPack_is1] : (K-Lite Mega Codec Pack 16.7.0.-.KLCP) -> "C:\Program Files\K-Lite Codec Pack\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\LinuxLive USB Creator] : (LinuxLive USB Creator.-.Thibaut Lauziere) -> C:\Program Files\LinuxLive USB Creator\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\LManager] : (Launch Manager.-.Acer Inc.) -> C:\Windows\UNINSTLMv4.EXE LMv4.UNI [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\MixPad] : (MixPad - Mixeur de fichiers audio.-.NCH Software) -> "C:\Program Files\NCH Software\MixPad\mixpad.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Mobogenie3] : (Mobogenie3.-.Mobogenie.com) -> d:\Program Files\Mobogenie3\Uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\MoneyLine] : (MoneyLine.-.NCH Software) -> "C:\Program Files\NCH Software\MoneyLine\moneyline.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Mozilla Firefox 96.0.3 (x86 fr)] : (Mozilla Firefox (x86 fr).-.Mozilla) -> "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\MozillaMaintenanceService] : (Mozilla Maintenance Service.-.Mozilla) -> "C:\Program Files\Mozilla Maintenance Service\uninstall.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\MultiCommander Win32] : (MultiCommander (Win32).-.Mathias Svensson) -> C:\Program Files\MultiCommander\Uninstall MultiCommander.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\OneSafe Driver Manager_is1] : (OneSafe Driver Manager v5.3.543.-.Avanquest) -> "d:\Program Files\OneSafe Driver Manager\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\OneSafe Total PC Care_is1] : (OneSafe Total PC Care v6.9.6.8 (32-bit).-.Avanquest Software) -> "i:\Program Files\OneSafe Total PC Care\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\OneStart] : (OneStart.-.Anvisoft) -> [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\OpenAL] : (OpenAL.-.) -> "C:\Program Files\OpenAL\oalinst.exe" /U [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Orion] : (Orion File Recovery Software.-.NCH Software) -> "C:\Program Files\NCH Software\Orion\orion.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\PC Speed Maximizer_is1] : (PC Speed Maximizer v2.1.-.Smart PC Solutions) -> "i:\Program Files\PC Speed Maximizer\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\PhotoPad] : (PhotoPad Editeur d’images.-.NCH Software) -> "C:\Program Files\NCH Software\PhotoPad\photopad.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\PhotoStage] : (PhotoStage - Createur de diaporamas.-.NCH Software) -> "C:\Program Files\NCH Software\PhotoStage\photostage.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Pixillion] : (Pixillion - Convertisseur d'images.-.NCH Software) -> "C:\Program Files\NCH Software\Pixillion\pixillion.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\PotPlayer] : (PotPlayer.-.Kakao Corp.) -> C:\Program Files\DAUM\PotPlayer\uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Prism] : (Prism - Convertisseur de fichiers video.-.NCH Software) -> "C:\Program Files\NCH Software\Prism\prism.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Recordpad] : (RecordPad - Enregistreur audio.-.NCH Software) -> "C:\Program Files\NCH Software\Recordpad\recordpad.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\RFA11_is1] : (Registry First Aid 11.-.RoseCitySoftware) -> "d:\Program Files\RFA 11\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Scribe] : (Express Scribe - Logiciel de transcription.-.NCH Software) -> "C:\Program Files\NCH Software\Scribe\scribe.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\SeaMonkey 2.53.10.2 (x86 en-US)] : (SeaMonkey 2.53.10.2 (x86 en-US).-.Mozilla) -> C:\Program Files\SeaMonkey\uninstall\helper.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Skype_is1] : (Skype version 8.78.-.Skype Technologies S.A.) -> "C:\Program Files\Microsoft\Skype for Desktop\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\SoundTap] : (SoundTap - Enregistreur d'audio en streaming.-.NCH Software) -> "C:\Program Files\NCH Software\SoundTap\soundtap.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Stardock ObjectDock] : (Stardock ObjectDock.-.Stardock Software, Inc.) -> "C:\Program Files\Stardock\ObjectDock\uninstall.exe" "/U:C:\Program Files\Stardock\ObjectDock\Uninstall\uninstall.xml" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Switch] : (Switch - Convertisseur de fichiers audio.-.NCH Software) -> "C:\Program Files\NCH Software\Switch\switch.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\uTorrent] : (uTorrent.-.) -> "C:\Program Files\uTorrent\uninstall.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Verity] : (Verity Parental Control Software.-.NCH Software) -> "C:\Program Files\NCH Software\Verity\verity.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\VideoPad] : (VideoPad - Logiciel de montage video.-.NCH Software) -> "C:\Program Files\NCH Software\VideoPad\videopad.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\VLC media player] : (VLC media player.-.VideoLAN) -> "C:\Program Files\VideoLAN\VLC\uninstall.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Voxal] : (Voxal Modificateur de voix.-.NCH Software) -> "C:\Program Files\NCH Software\Voxal\voxal.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\WavePad] : (WavePad - Editeur audio.-.NCH Software) -> "C:\Program Files\NCH Software\WavePad\wavepad.exe" -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\WIC] : (.-.) -> [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Winamp] : (Winamp.-.Winamp SA) -> "C:\Program Files\Winamp\UninstWA.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\WinRAR archiver] : (WinRAR 6.10 (32-bit).-.win.rar GmbH) -> C:\Program Files\WinRAR\uninstall.exe [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\Youtube Downloader HD_is1] : (Youtube Downloader HD v. 4.3.-.YoutubeDownloaderHD.com) -> "C:\Program Files\Youtube Downloader HD\unins000.exe" ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{014534FF-1D46-4A77-9B48-29EFD145995B}] : (AntiLogger.-.Zemana Ltd.) -> ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{01db25f3-1b76-4d97-88c8-1c90634d88fb}] : (Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 False.-.Êîðïîðàöèÿ Ìàéêðîñîôò) -> "C:\ProgramData\Package Cache\{01db25f3-1b76-4d97-88c8-1c90634d88fb}\vcredist_x86.exe" /uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1] : (AOMEI Partition Assistant 9.6.-.AOMEI International Network Limited.) -> "i:\Program Files\AOMEI Partition Assistant\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}] : (Acer VCM.-.Acer Incorporated) -> "C:\Program Files\InstallShield Installation Information\{047F790A-7A2A-4B6A-AD02-38092BA63DAC}\setup.exe" -runfromtemp -l0x40c -removeonly ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{0D7CD0D9-4A88-4A63-8F91-3F4E8F371768}] : (MyWinLocker.-.Egis Technology Inc.) -> MsiExec.exe /X{0D7CD0D9-4A88-4A63-8F91-3F4E8F371768} ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{115FB0FD-1A0A-4C26-82A7-A6689A799BB9}] : (Boost.-.Reason Software Company Inc.) -> MsiExec.exe /X{115FB0FD-1A0A-4C26-82A7-A6689A799BB9} ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{18455581-E099-4BA8-BC6B-F34B2F06600C}] : (Google Toolbar for Internet Explorer.-.Google Inc.) -> MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C} [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{26A24AE4-039D-4CA4-87B4-2F32180321F0}] : (Java 8 Update 321.-.Oracle Corporation) -> MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F32180321F0} [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{287ECFA4-719A-2143-A09B-D6A12DE54E40}] : (Acrobat.com.-.Adobe Systems Incorporated) -> MsiExec.exe /X{287ECFA4-719A-2143-A09B-D6A12DE54E40} ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}] : (Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 False.-.Êîðïîðàöèÿ Ìàéêðîñîôò) -> "C:\ProgramData\Package Cache\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}\vcredist_x86.exe" /uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{3108C217-BE83-42E4-AE9E-A56A2A92E549}] : (Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver.-.Atheros Communications Inc.) -> "C:\Program Files\InstallShield Installation Information\{3108C217-BE83-42E4-AE9E-A56A2A92E549}\setup.exe" -runfromtemp -l0x040c -removeonly [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{3DB0448D-AD82-4923-B305-D001E521A964}] : (Acer ePower Management.-.Acer Incorporated) -> "C:\Program Files\InstallShield Installation Information\{3DB0448D-AD82-4923-B305-D001E521A964}\setup.exe" -runfromtemp -l0x40c -removeonly [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{4209F371-7505-A040-718A-C57DA1CB7247}_is1] : (Ashampoo HDD Control 3.-.Ashampoo GmbH & Co. KG) -> "C:\Program Files\Ashampoo\Ashampoo HDD Control 3\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{4209F371-AD80-9E5D-7FD6-99DC6D5D8B7F}_is1] : (Ashampoo Registry Cleaner 2.-.Ashampoo GmbH & Co. KG) -> "C:\Program Files\Ashampoo\Ashampoo Registry Cleaner 2\unins000.exe" ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{4A03706F-666A-4037-7777-5F2748764D10}] : (Java Auto Updater.-.Oracle Corporation) -> ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{523281E5-91DD-49F5-9D85-954148F7596A}] : (AndroidInstaller.-.Nom de votre societe) -> [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{5575EADE-4685-4E15-A9CD-6036BC2A3F75}_is1] : (KeyCrypt SDK version 1.8.1.199.-.Zemana Ltd.) -> "C:\Windows\system32\ZALSDK_uninst\unins000.exe" ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{58975D61-1C4B-4385-ADB0-4A8E3EC250A4}] : (Adobe AIR.-.HARMAN International) -> MsiExec.exe /I{58975D61-1C4B-4385-ADB0-4A8E3EC250A4} ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{615bc16d-60f5-482e-91b3-b51d8130963b}] : (Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 False.-.Êîðïîðàöèÿ Ìàéêðîñîôò) -> "C:\ProgramData\Package Cache\{615bc16d-60f5-482e-91b3-b51d8130963b}\vcredist_x86.exe" /uninstall ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{672A439B-9FC4-4557-8467-515C79B06708}] : (GoToMeeting 10.18.19932.-.LogMeIn) -> MsiExec.exe /I{672A439B-9FC4-4557-8467-515C79B06708} [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1] : (Revo Uninstaller Pro 4.5.3.-.VS Revo Group, Ltd.) -> "C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{683E4F0D-5A86-48BC-BD93-4751849028A8}] : (.-.) -> [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{7022AF7B-99AD-4779-8641-31EE7592F9D8}] : (PDF-XChange Editor.-.Tracker Software Products (Canada) Ltd.) -> MsiExec.exe /I{7022AF7B-99AD-4779-8641-31EE7592F9D8} ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}] : (MyWinLocker Suite.-.Egis Technology Inc.) -> MsiExec.exe /X{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE} [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{7F811A54-5A09-4579-90E1-C93498E230D9}] : (Acer eRecovery Management.-.Acer Incorporated) -> "C:\Program Files\InstallShield Installation Information\{7F811A54-5A09-4579-90E1-C93498E230D9}\setup.exe" -runfromtemp -l0x40c -removeonly [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}] : (Ask Toolbar.-.Ask.com) -> MsiExec.exe /I{86D4B82A-ABED-442A-BE86-96357B70F4FE} [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{9004136E-78D3-46A4-893C-C4E38D871243}] : (8GadgetPack.-.8GadgetPack.net) -> MsiExec.exe /X{9004136E-78D3-46A4-893C-C4E38D871243} [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{90468FD2-CE3A-404D-9211-DC6E3F4576E4}_is1] : (AudioRanger 3.4.2.-.AudioRanger IT) -> "C:\Program Files\AudioRanger\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}] : (Intel® Matrix Storage Manager.-.Intel Corporation) -> C:\Program Files\Intel\Intel Matrix Storage Manager\Uninstall\imsmudlg.exe -uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{91B33C97-87D2-CBDB-6C78-9844D71F4195}_is1] : (Ashampoo Burning Studio 2021.-.Ashampoo GmbH & Co. KG) -> "C:\Program Files\Ashampoo\Ashampoo Burning Studio 2021\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}] : (ALPS Touch Pad Driver.-.Alps Electric) -> C:\Program Files\Apoint2K\Uninstap.exe ADDREMOVE [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{A83692F5-3E9B-4E95-9E7E-B5DF5536CE9D}_is1] : (AOMEI Backupper Trial.-.AOMEI International Network Limited.) -> "C:\Program Files\AOMEI\AOMEI Backupper\6.8.0\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{AC76BA86-7AD7-FFFF-7B44-A91000000001}] : (Adobe Reader 9.1 MUI.-.Adobe Systems Incorporated) -> MsiExec.exe /I{AC76BA86-7AD7-FFFF-7B44-A91000000001} ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}] : (Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 False.-.Êîðïîðàöèÿ Ìàéêðîñîôò) -> "C:\ProgramData\Package Cache\{b55f7208-e02b-4828-ac78-59c73ddf5bc7}\vcredist_x86.exe" /uninstall ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{BB8B979E-E336-47E7-96BC-1031C1B94561}] : (.-.) -> ----------[{Hidden}][HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}] : (Shredder.-.Egis Technology Inc.) -> MsiExec.exe /I{C2695E83-CF1D-43D1-84FE-B3BEC561012A} [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}] : (Acer Crystal Eye webcam Ver:1.1.184.610.-.Chicony Electronics Co.,Ltd.) -> "C:\Program Files\InstallShield Installation Information\{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}\setup.exe" -runfromtemp -l0x040c -removeonly [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}] : (Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030.-.Êîðïîðàöèÿ Ìàéêðîñîôò) -> "C:\ProgramData\Package Cache\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}\vcredist_x86.exe" /uninstall [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}] : (Realtek High Definition Audio Driver.-.Realtek Semiconductor Corp.) -> "C:\Program Files\Realtek\Audio\HDA\RtlUpd.exe" -r -m -nrg2709 [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{f4fef76c-1aa9-441c-af7e-d27f58d898d1}_is1] : (BCUninstaller.-.Marcin Szeniak) -> "C:\Program Files\BCUninstaller\unins000.exe" [HKLM\SOFTWARE\Microsoft\windows\CurrentVersion\Uninstall\{FC274982-5AAD-4C20-848D-4424A5043009}_is1] : (WinUtilities 9.9 Professional Edition.-.YL Computing, Inc) -> "g:\Program Files\WinUtilities\unins000.exe" ---------- | Ports ---------- | Microsoft Specifications CheckID: SearchAndIndex0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - DISABLE_SEARCH5="YES" -> SearchAndIndex CheckID: MultimediaPlugin0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - DISABLE_MULTIMEDIA="YES" -> MultimediaPlugin CheckID: ReaderBrowserIntegration0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - DISABLE_BROWSER_INTEGRATION="YES" -> ReaderBrowserIntegration CheckID: ReaderPDFIntegration0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - SETUP_PDF_INTEGRATION="NO" -> ReaderPDFIntegration CheckID: Accessibility_Plugins0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - DISABLE_ACCESSIBILITY="YES" -> Accessibility_Plugins CheckID: Atmosphere_3D0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - DISABLE_3D="YES" -> Atmosphere_3D CheckID: AdobeCommonLinguistics_Big0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - DISABLE_LINGUISTICS="YES" -> AdobeCommonLinguistics_Big CheckID: AUM__zh_TW0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"CHT" -> AUM__zh_TW CheckID: AUM__zh_CN0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"CHS" -> AUM__zh_CN CheckID: AUM__sv_SE0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"SVE" -> AUM__sv_SE CheckID: AUM__pt_BR0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"PTB" -> AUM__pt_BR CheckID: AUM__nl_NL0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"NLD" -> AUM__nl_NL CheckID: AUM__nb_NO0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"NOR" -> AUM__nb_NO CheckID: AUM__ko_KR0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"KOR" -> AUM__ko_KR CheckID: AUM__ja_JP0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"JPN" -> AUM__ja_JP CheckID: AUM__it_IT0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"ITA" -> AUM__it_IT CheckID: AUM__fr_FR0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"FRA" -> AUM__fr_FR CheckID: AUM__fi_FI0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"SUO" -> AUM__fi_FI CheckID: AUM__es_ES0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"ESP" -> AUM__es_ES CheckID: AUM__de_DE0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"DEU" -> AUM__de_DE CheckID: AUM__da_DK0{AC76BA86-7AD7-FFFF-7B44-A91000000001} - ProductCode><"7AD7-FFFF" AND NOT LANG_LIST><"DAN" -> AUM__da_DK CheckID: SuperToolbarFF200{86D4B82A-ABED-442A-BE86-96357B70F4FE} - IS_MOZILLA_INSTALLED = 1 -> SuperToolbarFF CheckID: SuperToolbarFF202{86D4B82A-ABED-442A-BE86-96357B70F4FE} - TBR="NO" -> SuperToolbarFF CheckID: SuperToolbarFF203{86D4B82A-ABED-442A-BE86-96357B70F4FE} - IS_MOZ_1_5 = "FOUND" -> SuperToolbarFF CheckID: SuperToolbarIE200{86D4B82A-ABED-442A-BE86-96357B70F4FE} - TBR="NO" -> SuperToolbarIE ---------- | CLSID (Whitelist) [HKCR\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}] - (.(c) Ask. - Ask Toolbar.) - C:\Program Files\Ask.com\GenericAskToolbar.dll [26/05/2010 15:23:06] [HKCR\CLSID\{001348B9-D4F7-4008-A509-DFAE98D73CD0}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x86.) - C:\Windows\system32\RTEED32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{02696AD5-FF96-454B-9E00-81DA8B79B678}] - (.-.) - C:\Program Files\NCH Software\Fling\fldll.dll [06/02/2022 07:52:12] [HKCR\CLSID\{077E8B55-07FC-470F-9070-7DB1855FE8A0}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{07AAEC22-28E3-483E-996E-09A639DF4A3F}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{086F171D-5ED1-4ED2-B736-CFF3AD6A128E}] - (.(C) Qihoo 360 Technology Co. Ltd., - 360 Total Security.) - C:\Program Files\360\Total Security\MenuEx.dll [13/02/2022 09:12:46] [HKCR\CLSID\{08D6D113-675E-4f07-A869-60A0713BBDB5}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{08FD8A78-64B6-4692-96D2-1A363A7E3B9A}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x86.) - C:\Windows\system32\RTEEP32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{0BE6A136-61BF-4A35-A294-1B9D22AB1F13}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{0DAEF0E9-D165-4C46-B229-3C587B558026}] - (.-.) - C:\ProgramData\NCH Software\DeskFX\loadeddll\deskfxapox32.dll [06/02/2022 17:35:48] [HKCR\CLSID\{0DC39FF3-7F96-405e-BC77-1323866D97CF}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x86.) - C:\Windows\system32\RTEED32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{0EA24717-2A34-4FE5-B365-6E3B3DFC1282}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{1314AA9D-5AF7-4f1f-AD10-734156E1FF73}] - (.©2012 Dolby Laboratories. - Dolby PCEE4 COM DLL x86.) - C:\Windows\system32\R4EED32A.dll [01/02/2022 16:11:09] [HKCR\CLSID\{137A78D3-65B7-4e2f-851C-6EC4B633B436}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x86.) - C:\Windows\system32\RTEEP32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{15FD01A3-6E5D-4ECD-9EBD-1813CB3887A1}] - (.-.) - %windir%\system32\btpanui.dll [HKCR\CLSID\{16DA0ED2-8CE0-4D9D-B154-2B8C042DC38B}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{1814CEEB-49E2-407F-AF99-FA755A7D2607}] - (.License: MPL 2 -.) - C:\Program Files\Mozilla Firefox\AccessibleMarshal.dll [11/02/2022 01:24:31] [HKCR\CLSID\{19FF3488-2F16-409b-8FDA-B99181718FF6}] - (.Copyrignt(C) 2011-2012 TOSHIBA Corporation. - TOSHIBA Audio Enhancement APO.) - C:\Windows\system32\tadefxapo2.dll [01/02/2022 16:11:18] [HKCR\CLSID\{1A671297-FA74-4422-80FA-6C5D8CE4DE04}] - (.©1999-2018 Jonathan Bennett & AutoIt Team - AutoIt v3 ActiveX Control.) - C:\Program Files\AutoIt3\AutoItX\AutoItX3.dll [15/03/2018 14:17:50] [HKCR\CLSID\{1CF9D401-3BC6-47eb-9607-004DCFEFD88D}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{1DCF439D-B5D6-436B-A9EB-6847EA9B9940}] - (.(c) DTS. - DTS Surround Sensation Headphone COM DLL.) - C:\Windows\system32\DTSS2HeadphoneDLL.dll [01/02/2022 16:11:06] [HKCR\CLSID\{1F76D7C4-58D0-43B8-BFD9-29EB23C71F4B}] - (.(c) 2007 SRS Labs, Inc. - COM object implementing SRS Headphone 360.) - C:\Windows\system32\SRSHP360.dll [01/02/2022 16:11:18] [HKCR\CLSID\{1F77B17B-F531-44DB-ACA4-76ABB5010A28}] - (.Artem Izmaylov - Context Menu Extension.) - C:\Program Files\AIMP\System\aimp_menu32.dll [13/02/2022 08:58:43] [HKCR\CLSID\{22DF4E87-F39A-4cbd-988C-BF3F49CDA965}] - (.© Waves Audio Ltd. - MaxxAudio APO.) - C:\Windows\system32\MaxxAudioAPO20.dll [01/07/2010 14:06:27] [HKCR\CLSID\{266ADF9D-0053-4228-B1DD-B09177D552C0}] - (.©2014 Dolby Laboratories. - Dolby Digital Plus COM DLL x86.) - C:\Windows\system32\DDPD32A.dll [01/02/2022 16:11:05] [HKCR\CLSID\{2803063F-4B8D-4dc6-8874-D1802487FE2D}] - (.© IObit. - ASCExtMenu Module.) - C:\Program Files\IObit\Advanced SystemCare\ASCExtMenu.dll [13/02/2022 00:28:25] [HKCR\CLSID\{2869F087-165A-4B0F-9657-6608B8318DDB}] - (.(C) All rights reserved - Acer Siren Audio Encoding Filter.) - C:\Program Files\Acer\Acer VCM\AcerSirenEnc.dll [01/07/2010 14:34:35] [HKCR\CLSID\{2D4E5D27-F310-4C93-B2F5-78AD4166C15F}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{2F17F282-6474-407B-BE59-92D5F9BCD8BA}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{3037B4CD-A40B-401B-B676-2017EE8FAFF4}] - (.-.) - "C:\Program Files\Windows NT\Accessories\WordpadFilter.dll" [HKCR\CLSID\{32581F0D-E898-4A6C-9D3E-80841D810C8F}] - (.(C) All rights reserved - Acer WMV9 Video Encoding Filter.) - C:\Program Files\Acer\Acer VCM\acerwmv9enc.dll [01/07/2010 14:34:35] [HKCR\CLSID\{340DAC03-D632-449d-A211-4182115FA4D3}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x86.) - C:\Windows\system32\RTEED32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{3465F123-4E8C-4720-8A82-E3393DB33BFE}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{34c219bd-85c1-4338-95e8-788a36901dc2}] - (.-.) - %windir%\System32\wpdwcn.dll [HKCR\CLSID\{35D7A7FA-8AB2-401c-983E-919903F5D5AD}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 Control Panel x86.) - C:\Windows\system32\RTEEP32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{3652DCDC-70DA-46FB-9B81-F0938731EE44}] - (.(c) DTS. - DTS Boost COM DLL.) - C:\Windows\system32\DTSBoostDLL.dll [01/02/2022 16:11:06] [HKCR\CLSID\{3CB69821-FBE0-4C15-8730-E9EFC104FBC1}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{3D54C6B8-D283-40E0-8FAB-C97F05947EE8}] - (.©1999-2018 Jonathan Bennett & AutoIt Team - AutoIt v3 ActiveX Control.) - C:\Program Files\AutoIt3\AutoItX\AutoItX3.dll [15/03/2018 14:17:50] [HKCR\CLSID\{3DC1D403-6706-49D2-B2E0-A4A8B505F153}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{3E8FD258-0359-4476-AAF4-7C5F65E9B46E}] - (.(c) Oberon Media. - My Games.) - C:\Program Files\Common Files\Oberon Media\Odyssey\2.0.0.29\Odyssey.dll [04/07/2007 12:17:40] [HKCR\CLSID\{417BAB8B-9D22-4A88-9DA0-98C4AB6745D5}] - (.-.) - %windir%\System32\wpdwcn.dll [HKCR\CLSID\{441DBEFC-EF60-4162-837F-826503E971C3}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{446563B6-7BC8-48FD-84B8-94234EA0FF54}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{44B8214D-17AC-4B34-9036-A50B4269AD80}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{451E556B-F356-4A1A-AF9D-6330A2FD8501}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{453161A5-1E23-4c83-B41B-1C6F1911F312}] - (.-.) - C:\Program Files\Foxit Reader\plugins\FoxitReaderBrowserAx.dll [13/02/2022 09:02:57] [HKCR\CLSID\{486ED91D-C9EC-4C3C-B059-C91F94367D36}] - (.(C) All rights reserved - Acer Siren Audio Encoding Filter.) - C:\Program Files\Acer\Acer VCM\AcerSirenEnc.dll [01/07/2010 14:34:35] [HKCR\CLSID\{494E53BE-0695-4736-9777-607CBB9D0A7B}] - (.(C) All rights reserved - Acer WMV9 Video Encoding Filter.) - C:\Program Files\Acer\Acer VCM\acerwmv9enc.dll [01/07/2010 14:34:35] [HKCR\CLSID\{4D919989-4AE1-47ca-BD41-39BB9F1C4973}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{4FE5B912-1EE4-42D8-BEF8-08815A2B6726}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{4FF2411F-0C96-4cbf-86D3-C8D6669E21CE}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{50A08D22-0958-456C-A04D-FB41BEB5914E}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{513D916F-2A8E-4F51-AEAB-0CBC76FB1AF8}] - (.-.) - %windir%\system32\acppage.dll [HKCR\CLSID\{52B5A5CE-BEBB-4CA8-AF25-C319918EA896}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{54E2FC61-FA9E-4667-BC4B-005BD2EF3EA1}] - (.©2014 Dolby Laboratories. - Dolby Digital Plus API x86.) - C:\Windows\system32\DDPA32.dll [01/02/2022 16:11:05] [HKCR\CLSID\{56E00778-C664-4bb5-AA2B-CA6F14840BB3}] - (.©2012 Dolby Laboratories. - Dolby PCEE4 GFX APO x86.) - C:\Windows\system32\R4EEG32A.dll [01/02/2022 16:11:09] [HKCR\CLSID\{584D2B36-4C34-4d88-83A2-F6E1EC56784D}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{5B778A28-C6A3-401B-81DA-FC3F857B7733}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{5BF24DA0-28E8-41CE-BA5B-3E5988F5F696}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{5D062D6A-4D8D-405c-9D41-36517A79D799}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x86.) - C:\Windows\system32\RTEED32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{5F12FB09-9A65-4087-BCF8-E1EDAF1D5FB1}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{6047F837-D527-467E-9DC1-6D51F92D9E45}] - (.-.) - "C:\Program Files\Windows NT\Accessories\WordpadFilter.dll" [HKCR\CLSID\{60DCC162-E643-4809-A9F4-4F905F295716}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{61633164-6935-3152-724F-6C6462497648}] - (.(C) All rights reserved - AIM plugin for AcerVCM.) - C:\Program Files\Acer\Acer VCM\AIMPlugin.dll [01/07/2010 14:34:35] [HKCR\CLSID\{67F13738-8E0A-46B7-AB7A-33E17D2F2AC2}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{6BC5BA40-B56C-44E9-BF40-1185DEC77400}] - (.(C) All rights reserved - Acer WMV9 Screen Encoding Filter.) - C:\Program Files\Acer\Acer VCM\AcerWmv9ScreenEnc.dll [01/07/2010 14:34:35] [HKCR\CLSID\{6C57B2A2-91F5-4b90-93D5-FAB82485ECA6}] - (.?Harman. - Audio by Harman APO UI.) - C:\Windows\system32\HMUI.dll [01/02/2022 16:11:08] [HKCR\CLSID\{6C77EE15-11FE-4689-9814-C25DC3B9226E}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x86.) - C:\Windows\system32\RTEEG32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{6E0C2E1F-8421-4175-8B3C-17CC11DE164C}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{6EE7C3A6-4AF7-425B-8958-7FB4E0B310A8}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{71A9F619-3584-46F2-BB42-1FC2512A6D1F}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{7CDE61E6-5B1C-4E39-A34A-42CD0073E581}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{7E973472-C905-4967-BBC4-1316EB28FC0A}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{7F35C5D8-A7A7-4E6F-8ADB-E695EF0035E9}] - (.TODO: (c) . - TODO: .) - C:\Windows\system32\slprp32.dll [01/02/2022 16:11:17] [HKCR\CLSID\{7F56EE63-86CA-4BD3-9C3B-85E84A6C0373}] - (.(c) DTS. - DTS Bass Enhancement COM DLL.) - C:\Windows\system32\DTSBassEnhancementDLL.dll [01/02/2022 16:11:06] [HKCR\CLSID\{824A0A93-F495-48c1-83C4-09EDA26D15FC}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{836AB26C-2DE4-41D3-AC24-4C6C2699B960}] - (.© IObit. - IUMenuRightExtension.) - C:\Program Files\IObit\IObit Uninstaller\IUMenuRight.dll [06/02/2022 08:39:21] [HKCR\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}] - (.-.) - C:\Users\Gregy&Justy\AppData\Local\GoToMeeting\19932\G2MOutlookAddin.dll [HKCR\CLSID\{88350C55-213D-408D-99EB-2648F56DC195}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{8A6BCC1E-1DBB-49C9-8CDE-B810227FAE0A}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{8AEC9DD4-6A7C-4ab2-A2DA-B6F2F35366A4}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{8C4BEBA7-72FE-4ed3-86CF-9760915AE13D}] - (.©2012 Dolby Laboratories. - Dolby PCEE4 COM DLL x86.) - C:\Windows\system32\R4EED32A.dll [01/02/2022 16:11:09] [HKCR\CLSID\{8DAC5492-4DF7-4681-A9E7-7435DEB49955}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{8E93A1B1-8EF0-42e9-AC76-D2CA4CF28681}] - (.© 2008,2009 Dolby Laboratories, Inc. - PCEE3 DHT Control Panel x86.) - C:\Windows\system32\RP3DHT32.dll [01/02/2022 16:11:10] [HKCR\CLSID\{8EEA165E-0B8B-4BA7-9796-50214C767171}] - (.-.) - C:\Program Files\NCH Software\ExpressZip\ezcm.dll [31/01/2022 20:36:49] [HKCR\CLSID\{902445EE-6CB4-45f8-A14F-A34C3FECBA34}] - (.© Waves Audio Ltd. - MaxxAudio APO.) - C:\Windows\system32\MaxxAudioAPO.dll [01/07/2010 14:06:27] [HKCR\CLSID\{9180EC39-FC40-4cee-9F0D-2398771A544E}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 GFX APO x86.) - C:\Windows\system32\RTEEG32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{919E321F-A0D6-460d-9333-1A0FAD222AB7}] - (.© Waves Audio Ltd. - MaxxVolumeSD APO.) - C:\Windows\system32\MaxxVolumeSDAPO.dll [01/07/2010 14:06:27] [HKCR\CLSID\{91AA17F8-8A7E-4E11-8389-EAA92FC2A9C5}] - (.(c) DTS. - DTS Limiter COM DLL.) - C:\Windows\system32\DTSLimiterDLL.dll [01/02/2022 16:11:06] [HKCR\CLSID\{91F3402B-E6A1-42EB-BBCD-73CEF3A9452D}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{9262D7FD-68EA-434F-BC50-6B6EE2531B04}] - (.© 2017 Dolby Laboratories, Inc. - Dolby DAX APO Property Page.) - C:\Windows\system32\DAX3APOProp.dll [01/02/2022 16:11:05] [HKCR\CLSID\{958342AF-451A-4443-9CFE-55679A2DD524}] - (.©2012 Dolby Laboratories. - Dolby PCEE4 ASL Analog x86.) - C:\Windows\system32\R4EEA32A.dll [01/02/2022 16:11:09] [HKCR\CLSID\{960E9A3D-8315-45C2-BA85-93F4DD64169B}] - (.© 2016 Dolby Laboratories, Inc. - Dolby DAX2 HiFi API.) - C:\Windows\system32\HiFiDAX2APIPCLL.dll [01/02/2022 16:11:08] [HKCR\CLSID\{9768DBDE-CA7E-400b-8C7D-F02CEF85B98D}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSkin.dll [HKCR\CLSID\{994309D6-AC78-4950-A31C-0AD1EFA208B3}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{9A27392C-1B4F-439B-BCE5-9E974E330073}] - (.© 2016 Dolby Laboratories, Inc. - Dolby DAX2 HiFi API.) - C:\Windows\system32\HiFiDAX2APIPCLL.dll [01/02/2022 16:11:08] [HKCR\CLSID\{9A9F603B-51A8-4630-AE99-4BBF01675575}] - (.-.) - C:\Program Files\Foxit Reader\plugins\FoxitReaderBrowserAx.dll [13/02/2022 09:02:57] [HKCR\CLSID\{9B7CB601-AC89-4143-B879-D3856E8992A9}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{9DF29763-A061-4329-BAD1-B18F95F8D9D9}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{9E09D2E4-036E-4AFA-AB2A-E662DCB9DE82}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{9FBDFCF7-35ED-42bd-BF9C-417CAD0C9343}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{A0763D81-B7C9-487c-BEFC-1A1B1D8F4B63}] - (.-.) - g:\Program Files\WinUtilities\dll\ComLicense2.dll [HKCR\CLSID\{A0AE9296-FE5E-4A69-927B-A0835754E8A0}] - (.(c) 2016 Harman. - Harman APO Interface.) - C:\Windows\system32\HarmanAudioInterface.dll [01/02/2022 16:11:07] [HKCR\CLSID\{A0F4AFA6-AA17-47C6-8842-D2C08B25ABAA}] - (.?Harman. - Audio by Harman APO UI.) - C:\Windows\system32\HMUI.dll [01/02/2022 16:11:08] [HKCR\CLSID\{A15A5877-34E6-470D-8D61-45FB4BF771B9}] - (.-.) - C:\Program Files\NCH Software\Fling\fldll.dll [06/02/2022 07:52:12] [HKCR\CLSID\{A1B78981-4E84-4C0D-AE67-EF173688221C}] - (.(c) DTS. - DTS Voice Clarity COM DLL.) - C:\Windows\system32\DTSVoiceClarityDLL.dll [01/02/2022 16:11:07] [HKCR\CLSID\{A35E5F84-E3CF-4914-8FDB-DB96D9D9624A}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{A5190EEA-5FCC-4C39-A295-A6E357EB0D24}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{A540F538-5DF9-4416-AC51-EA1A93E6F175}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{A6098E79-9C50-4F87-8973-5FB4532C93D8}] - (.-.) - %windir%\system32\btpanui.dll [HKCR\CLSID\{A6FF5DAF-4D23-410F-A83F-C8FF1FCB2A71}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{AA58369F-2062-47EE-BBC3-5466A273CF2B}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{AAF1A9FE-267C-4528-ADFE-F34397B99B6D}] - (.© Waves Audio Ltd. - MaxxAudio APO.) - C:\Windows\system32\MaxxAudioAPO30.dll [01/07/2010 14:06:27] [HKCR\CLSID\{ABC87F6A-B935-4E6C-AED1-B9A443E3E47E}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x86.) - C:\Windows\system32\RTEEL32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{ADA17483-5770-4D29-90F2-1C4763BECBA3}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{ADC5425D-C13C-4713-ADBA-09CEAAF68276}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{ADFC2A09-C233-440C-822F-716E9966961F}] - (.© 2018 Dolby Laboratories, Inc. - Dolby DAX2 HiFi API.) - C:\Windows\system32\HiFiDAX2API.dll [01/02/2022 16:11:07] [HKCR\CLSID\{AE0B08BE-FF0E-4FF6-BEC5-24BFD96B4050}] - (.©2014 Dolby Laboratories. - Dolby Digital Plus APO x86.) - C:\Windows\system32\DDPO32A.dll [01/02/2022 16:11:05] [HKCR\CLSID\{AF7A75BE-33DC-4c3a-9ACD-4EF8AAF02185}] - (.-.) - g:\Program Files\WinUtilities\dll\ComHistoryCleaner.dll [HKCR\CLSID\{B2C11E09-6689-443D-9C23-5C369FBD1F3E}] - (.(C) All rights reserved - Acer WMV9 Screen Encoding Filter.) - C:\Program Files\Acer\Acer VCM\AcerWmv9ScreenEnc.dll [01/07/2010 14:34:35] [HKCR\CLSID\{B4380351-FA1F-4F54-9831-BA54EA5F8906}] - (.TODO: (c) . - TODO: .) - C:\Windows\system32\slprp32.dll [01/02/2022 16:11:17] [HKCR\CLSID\{B51593B2-75D7-4a06-9356-00B9B94AD1B1}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{B553320A-E687-4616-852A-40F334C20CCF}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{B786AA8A-3748-4cf4-9F64-F4077DA25F0F}] - (.© 2008,2009 Dolby Laboratories, Inc. - PCEE3 DAA Control Panel x86.) - C:\Windows\system32\RP3DAA32.dll [01/02/2022 16:11:10] [HKCR\CLSID\{B79717DC-E2C6-4CDF-8280-CE2E701BEB04}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{BA671804-F70B-4bc4-AB81-FD8CA07ECE62}] - (.(c) 2006 SRS Labs, Inc. - WOW HD COM object for Windows.) - C:\Windows\system32\SRSWOW.dll [01/02/2022 16:11:18] [HKCR\CLSID\{BC799B8B-08FC-4034-84BB-7B1B4EC32671}] - (.(c) DTS. - DTS Symmetry COM DLL.) - C:\Windows\system32\DTSSymmetryDLL.dll [01/02/2022 16:11:07] [HKCR\CLSID\{BC8E3B67-3306-4eef-B230-6798E9A67F0B}] - (.©2012 Dolby Laboratories. - Dolby PCEE4 LFX APO x86.) - C:\Windows\system32\R4EEL32A.dll [01/02/2022 16:11:09] [HKCR\CLSID\{BC95C973-E2C1-4df5-8878-6CCE0CB568FE}] - (.©2012 Dolby Laboratories. - Dolby PCEE4 COM DLL x86.) - C:\Windows\system32\R4EED32A.dll [01/02/2022 16:11:09] [HKCR\CLSID\{BD76A28B-DD85-4BEC-963F-7F7941717973}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{BE79D50C-73D1-4C1A-8A4B-79A5E000FA87}] - (.(c) DTS. - DTS NEO:PC COM DLL.) - C:\Windows\system32\DTSNeoPCDLL.dll [01/02/2022 16:11:06] [HKCR\CLSID\{C17C23F8-5F05-4DA1-AB70-E0702F5DD5F4}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{C3F94207-05F7-4E41-A63C-A4590CBD7B88}] - (.© adaware. -.) - C:\ProgramData\Adaware VPN\Installation\Statistics.dll [15/01/2022 13:40:58] [HKCR\CLSID\{C5324769-D2B9-43a5-8DE5-A2A1A7F24FEF}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{C53E5AAF-5F6F-41c2-9F63-ADEBBC9B6B64}] - (.©2012 Dolby Laboratories. - Dolby PCEE4 Control Panel x86.) - C:\Windows\system32\R4EEP32A.dll [01/02/2022 16:11:09] [HKCR\CLSID\{C619A7DC-3DB7-4011-A303-B75AA76C9C56}] - (.(C) All rights reserved - Acer Siren Audio Decoding Filter.) - C:\Program Files\Acer\Acer VCM\AcerSirenDec.dll [01/07/2010 14:34:35] [HKCR\CLSID\{C71D8AD3-3EAC-4CC4-A566-E90C0AEA331D}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{C79BA6D1-F7B8-4b87-A405-ED9DE29A8B6D}] - (.(c) DTS. - DTS GFX APO.) - C:\Windows\system32\DTSGFXAPO.dll [01/02/2022 16:11:06] [HKCR\CLSID\{CA8F9BDC-9B69-4BDA-8C4E-864BB2E7EC84}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{CA9235E4-C44A-46E9-AD55-C99A1AF38851}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{CBEB14A0-9B78-41BC-97D5-EA649DBB338D}] - (.(c) DTS. - DTS Surround Sensation Speaker COM DLL.) - C:\Windows\system32\DTSS2SpeakerDLL.dll [01/02/2022 16:11:07] [HKCR\CLSID\{CDAA095E-0218-4486-B0F4-A449216212B0}] - (.© 2017 Dolby Laboratories, Inc. - Dolby DAX APO.) - C:\Windows\system32\DAX3APOv251.dll [01/02/2022 16:11:05] [HKCR\CLSID\{CEDCD345-8C2C-4928-B8C9-AE867372A7CF}] - (.(c) DTS. - DTS LFX APO.) - C:\Windows\system32\DTSLFXAPO.dll [01/02/2022 16:11:06] [HKCR\CLSID\{CF74FB2A-DBB2-4c8d-9C8E-0424AB05C810}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x86.) - C:\Windows\system32\RTEED32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{D030594F-5F74-4517-A61B-D4ADDAF7979C}] - (.Copyrignt(C) 2011 TOSHIBA Corporation. - TOSHIBA Audio Enhancement APO.) - C:\Windows\system32\tadefxapo.dll [01/02/2022 16:11:18] [HKCR\CLSID\{D1219BD5-B542-4ab7-82CB-C89DDA9F3768}] - (.(c) DTS. - DTS GFX APO.) - C:\Windows\system32\DTSGFXAPONS.dll [01/02/2022 16:11:06] [HKCR\CLSID\{D3075F87-A7BD-4231-9F6A-60C5E07374A7}] - (.-.) - %windir%\system32\acppage.dll [HKCR\CLSID\{D3C3DA2B-E149-41DD-BA29-373DD5DA6F21}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}] - (.(c) Ask. - Ask Toolbar.) - C:\Program Files\Ask.com\GenericAskToolbar.dll [26/05/2010 15:23:06] [HKCR\CLSID\{D6B23B09-BBB6-43a2-837F-BB2AA9237A30}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x86.) - C:\Windows\system32\RTEED32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{DAA92564-78C8-40A3-96D2-9115A76B8F29}] - (.-.) - %windir%\System32\wpdwcn.dll [HKCR\CLSID\{DBCDAF53-8C25-4697-BBC3-6936E6E138FB}] - (.-.) - g:\Program Files\WinUtilities\dll\ComSysControl.dll [HKCR\CLSID\{DCA8D857-1A63-4045-8F36-8809EB093D04}] - (.License: MPL 2 -.) - C:\Program Files\SeaMonkey\AccessibleHandler.dll [13/02/2022 04:28:30] [HKCR\CLSID\{DDE20A40-F390-4616-AE98-2BA9E8C70744}] - (.©2014 Dolby Laboratories. - Dolby DS1PC Control Panel x86.) - C:\Windows\system32\DDPP32A.dll [01/02/2022 16:11:05] [HKCR\CLSID\{DF76A088-FD7D-4f4e-AAA1-626606B2419F}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x86.) - C:\Windows\system32\RTEEL32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{E0068BF0-51DB-47C2-8FA2-B05D783EFFDA}] - (.© 2018 Dolby Laboratories, Inc. - Dolby DAX2 HiFi API.) - C:\Windows\system32\HiFiDAX2API.dll [01/02/2022 16:11:07] [HKCR\CLSID\{E19A7C4A-CC40-4722-9CB7-918AF6823702}] - (.-.) - g:\Program Files\WinUtilities\dll\ComHistoryCleaner.dll [HKCR\CLSID\{E23C746E-3A9D-4040-8C85-6BBB044B73C7}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 LFX APO x86.) - C:\Windows\system32\RTEEL32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{E32A710E-8693-44e2-87FF-6B578E845C50}] - (.©2009 Dolby Laboratories, Inc. - Dolby PCEE3 COM DLL x86.) - C:\Windows\system32\RTEED32A.dll [01/02/2022 16:11:10] [HKCR\CLSID\{E9737F69-AB4A-44A6-A584-406245B6525D}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{EE105714-A6AA-4DEF-8CF2-E87BB8D93726}] - (.© adaware. -.) - C:\ProgramData\Adaware PC Cleaner\Installation\Statistics.dll [18/01/2022 23:00:12] [HKCR\CLSID\{F6F218EB-D925-43C7-BD4A-200ED278E81D}] - (.(c) DTS. - DTS Gain Compensator COM DLL.) - C:\Windows\system32\DTSGainCompensatorDLL.dll [01/02/2022 16:11:06] [HKCR\CLSID\{F930DC36-4B86-477E-8FDA-70C40E7EBF8C}] - (.© Avanquest Software. - analytics.) - C:\ProgramData\inPixio Photo Studio 11\Installation\analytics.dll [14/01/2022 18:56:05] [HKCR\CLSID\{FABD6EA5-AE10-4E7A-B83B-5F07ACC84214}] - (.-.) - %windir%\System32\wpdwcn.dll [HKCR\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA1}] - (.(C) All rights reserved - Acer Screen Capture Filter.) - C:\Program Files\Acer\Acer VCM\AcerScreenCap.dll [01/07/2010 14:34:35] [HKCR\CLSID\{FE96CC3F-CE1B-4A52-8896-199816D939CF}] - (.(C) All rights reserved - Acer Siren Audio Decoding Filter.) - C:\Program Files\Acer\Acer VCM\AcerSirenDec.dll [01/07/2010 14:34:35] ---------- | Installer [HKCR\Installer\Products\16D57985B4C15834DA0BA4E8E32C054A] : Adobe AIR [HKCR\Installer\Products\18555481990E8AB4CBB63FB4F26006C0] : Google Toolbar for Internet Explorer [HKCR\Installer\Products\38E5962CD1FC1D3448EF3BEB5C1610A2] : Shredder -> C:\Windows\Installer\{C2695E83-CF1D-43D1-84FE-B3BEC561012A}\ARPPRODUCTICON.exe [HKCR\Installer\Products\3C5FB837B7FA0BB47BFE5E50FE7C65EB] : MyWinLocker Suite -> C:\Windows\Installer\{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}\ARPPRODUCTICON.exe [HKCR\Installer\Products\4EA42A62D9304AC4784BF2238130120F] : Java 8 Update 321 -> C:\Program Files\Java\jre1.8.0_321\\bin\javaws.exe [HKCR\Installer\Products\5E182325DD195F94D9585914847F95A6] : AndroidInstaller -> C:\Windows\Installer\{523281E5-91DD-49F5-9D85-954148F7596A}\ARPPRODUCTICON.exe [HKCR\Installer\Products\68AB67CA7DA7FFFFB7449A0100000010] : Adobe Reader 9.1 MUI -> C:\Windows\Installer\{AC76BA86-7AD7-FFFF-7B44-A91000000001}\SC_Reader.ico [HKCR\Installer\Products\7E577B2224C65CF4E801A9E52375DB49] : MSVCRT [HKCR\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF] : Ask Toolbar -> c:\program files\ask.com\fv_659.ico [HKCR\Installer\Products\B7FA2207DA999774681413EE57299F8D] : PDF-XChange Editor -> C:\Windows\Installer\{7022AF7B-99AD-4779-8641-31EE7592F9D8}\AppIco [HKCR\Installer\Products\E63140093D874A6498C34C3ED8782134] : 8GadgetPack -> C:\Windows\Installer\{9004136E-78D3-46A4-893C-C4E38D871243}\ProductIcon [HKCR\Installer\Products\F60730A4A66673047777F5728467D401] : Java Auto Updater [HKCR\Installer\Products\FAA7005C9B799B8409866D246AD77923] : AdAwareInstaller -> C:\Windows\Installer\{C5007AAF-97B9-48B9-9068-D642A67D9732}\ARPPRODUCTICON.exe ---------- | UserSettings [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Power\User\PowerSchemes\381b4222-f694-41f0-9685-ff5bb260df2e]~[Description] : @%SystemRoot%\system32\powrprof.dll,-14,Automatically balances performance with energy consumption on capable hardware. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Power\User\PowerSchemes\381b4222-f694-41f0-9685-ff5bb260df2e]~[FriendlyName] : @%SystemRoot%\system32\powrprof.dll,-15,Balanced (recommended) [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Power\User\PowerSchemes\8c5e7fda-e8bf-4a96-9a85-a6e23a8c635c]~[Description] : @%SystemRoot%\system32\powrprof.dll,-12,Favors performance, but may use more energy. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Power\User\PowerSchemes\8c5e7fda-e8bf-4a96-9a85-a6e23a8c635c]~[FriendlyName] : @%SystemRoot%\system32\powrprof.dll,-13,High Performance [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Power\User\PowerSchemes\a1841308-3541-4fab-bc81-f71556f20b4a]~[Description] : @%SystemRoot%\system32\powrprof.dll,-10,Saves energy by reducing your computer performance where possible. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Power\User\PowerSchemes\a1841308-3541-4fab-bc81-f71556f20b4a]~[FriendlyName] : @%SystemRoot%\system32\powrprof.dll,-11,Power Saver [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Power\User\PowerSchemes\b308f138-5c4e-41e7-a234-4a3158a47d0d]~[Description] : Activate it when you switch to Gaming Mode for boosting. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Power\User\PowerSchemes\b308f138-5c4e-41e7-a234-4a3158a47d0d]~[FriendlyName] : Smart Game Boost Power Plan [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Power\User\PowerSchemes\381b4222-f694-41f0-9685-ff5bb260df2e]~[Description] : @%SystemRoot%\system32\powrprof.dll,-14,Automatically balances performance with energy consumption on capable hardware. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Power\User\PowerSchemes\381b4222-f694-41f0-9685-ff5bb260df2e]~[FriendlyName] : @%SystemRoot%\system32\powrprof.dll,-15,Balanced (recommended) [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Power\User\PowerSchemes\8c5e7fda-e8bf-4a96-9a85-a6e23a8c635c]~[Description] : @%SystemRoot%\system32\powrprof.dll,-12,Favors performance, but may use more energy. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Power\User\PowerSchemes\8c5e7fda-e8bf-4a96-9a85-a6e23a8c635c]~[FriendlyName] : @%SystemRoot%\system32\powrprof.dll,-13,High Performance [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Power\User\PowerSchemes\a1841308-3541-4fab-bc81-f71556f20b4a]~[Description] : @%SystemRoot%\system32\powrprof.dll,-10,Saves energy by reducing your computer performance where possible. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Power\User\PowerSchemes\a1841308-3541-4fab-bc81-f71556f20b4a]~[FriendlyName] : @%SystemRoot%\system32\powrprof.dll,-11,Power Saver [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Power\User\PowerSchemes\b308f138-5c4e-41e7-a234-4a3158a47d0d]~[Description] : Activate it when you switch to Gaming Mode for boosting. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Power\User\PowerSchemes\b308f138-5c4e-41e7-a234-4a3158a47d0d]~[FriendlyName] : Smart Game Boost Power Plan [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Power\User\PowerSchemes\381b4222-f694-41f0-9685-ff5bb260df2e]~[Description] : @%SystemRoot%\system32\powrprof.dll,-14,Automatically balances performance with energy consumption on capable hardware. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Power\User\PowerSchemes\381b4222-f694-41f0-9685-ff5bb260df2e]~[FriendlyName] : @%SystemRoot%\system32\powrprof.dll,-15,Balanced (recommended) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Power\User\PowerSchemes\8c5e7fda-e8bf-4a96-9a85-a6e23a8c635c]~[Description] : @%SystemRoot%\system32\powrprof.dll,-12,Favors performance, but may use more energy. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Power\User\PowerSchemes\8c5e7fda-e8bf-4a96-9a85-a6e23a8c635c]~[FriendlyName] : @%SystemRoot%\system32\powrprof.dll,-13,High Performance [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Power\User\PowerSchemes\a1841308-3541-4fab-bc81-f71556f20b4a]~[Description] : @%SystemRoot%\system32\powrprof.dll,-10,Saves energy by reducing your computer performance where possible. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Power\User\PowerSchemes\a1841308-3541-4fab-bc81-f71556f20b4a]~[FriendlyName] : @%SystemRoot%\system32\powrprof.dll,-11,Power Saver [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Power\User\PowerSchemes\b308f138-5c4e-41e7-a234-4a3158a47d0d]~[Description] : Activate it when you switch to Gaming Mode for boosting. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Power\User\PowerSchemes\b308f138-5c4e-41e7-a234-4a3158a47d0d]~[FriendlyName] : Smart Game Boost Power Plan ---------- | ADS Detected : C:\ProgramData\Temp:43AAB821 ---------- | 20 LastEventLog Produit : APFS for Windows by Paragon Software -- Ce programme fonctionne uniquement sous Windows 7 SP1 et versions ulterieures. ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ Echec de l’extraction de la liste racine tierce depuis le fichier CAB de mise a jour automatique a : avec l’erreur : Un certificat requis n’est pas dans sa periode de validite selon la verification par rapport a l’horloge systeme en cours ou le tampon date dans le fichier signe. . ------------ ----------( EOF)---------- - 6569 | 00:09:00