22 réponses
Utilisateur anonyme
24 mars 2011 à 13:17
24 mars 2011 à 13:17
bonjour,
* Télécharge de AD-Remover sur ton Bureau. (Merci à l'équipe TeamXscript)
http://www.teamxscript.org/adremoverTelechargement.html
( Lien officiel )
https://www.androidworld.fr/
( Miroir )
/!\ Ferme toutes applications en cours /!\
- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Sur la page, clique sur le bouton « Nettoyer »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)
(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
* Télécharge de AD-Remover sur ton Bureau. (Merci à l'équipe TeamXscript)
http://www.teamxscript.org/adremoverTelechargement.html
( Lien officiel )
https://www.androidworld.fr/
( Miroir )
/!\ Ferme toutes applications en cours /!\
- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Sur la page, clique sur le bouton « Nettoyer »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)
(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)
Bonjour et merci,
J'ai mis un coupe de combo fix (lu sur forum) voici le log : ComboFix 11-03-23.05 - Ose 24/03/2011 13:06:57.1.2 - x86
Microsoft Windows 7 Édition Intégrale 6.1.7601.1.1252.33.1036.18.2039.1290 [GMT 1:00]
Lancé depuis: c:\users\Ose\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-02-24 au 2011-03-24 ))))))))))))))))))))))))))))))))))))
.
.
2011-03-24 12:16 . 2011-03-24 12:16 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-03-23 20:40 . 2011-03-23 20:40 -------- d-----w- c:\windows\LastGood
2011-03-23 20:39 . 2011-03-23 20:39 -------- d-----w- c:\windows\system32\Atheros_L1e
2011-03-23 20:36 . 2010-09-27 14:23 68208 ----a-w- c:\windows\system32\drivers\L1C62x86.sys
2011-03-23 20:34 . 2011-03-23 20:35 -------- d-----w- c:\program files\PeaZip
2011-03-23 12:48 . 2011-03-23 12:48 -------- d-----w- c:\windows\system32\SRSLabs
2011-03-23 12:48 . 2011-03-23 12:48 -------- d-----w- c:\windows\system32\RTCOM
2011-03-23 12:36 . 2011-03-23 12:36 -------- d-----w- C:\Intel
2011-03-23 12:36 . 2010-11-05 22:39 354840 ----a-w- c:\windows\system32\drivers\iaStor.sys
2011-03-23 12:36 . 2011-03-23 20:39 -------- d--h--w- c:\program files\InstallShield Installation Information
2011-03-23 12:36 . 2011-03-23 12:37 -------- d-----w- c:\program files\Intel
2011-03-23 12:33 . 2011-03-23 12:33 -------- d-----w- c:\windows\system32\Macromed
2011-03-23 12:32 . 2011-03-23 12:32 -------- d-----w- c:\program files\ma-config.com
2011-03-23 12:32 . 2011-03-23 12:32 -------- d-----w- c:\programdata\ma-config.com
2011-03-23 12:18 . 2011-03-23 12:18 -------- d-----w- c:\program files\Xmarks
2011-03-23 11:57 . 2011-01-10 13:23 61960 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-03-23 11:57 . 2011-01-10 13:23 135096 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-03-23 11:57 . 2011-03-23 11:57 -------- d-----w- c:\programdata\Avira
2011-03-23 11:57 . 2011-03-23 11:57 -------- d-----w- c:\program files\Avira
2011-03-23 11:45 . 2011-03-23 11:45 -------- d-----w- c:\program files\Microsoft.NET
2011-03-23 11:44 . 2011-03-23 12:32 -------- d-sh--w- c:\windows\Installer
2011-03-22 23:00 . 2011-02-19 06:30 805376 ----a-w- c:\windows\system32\FntCache.dll
2011-03-22 23:00 . 2011-02-19 06:30 1076736 ----a-w- c:\windows\system32\DWrite.dll
2011-03-22 23:00 . 2011-02-19 06:30 739840 ----a-w- c:\windows\system32\d2d1.dll
2011-03-22 23:00 . 2011-01-07 07:46 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2011-03-22 23:00 . 2011-01-07 07:46 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-03-22 23:00 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2011-03-22 23:00 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-03-22 22:53 . 2011-02-23 09:35 5943120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0E9BAEFB-042B-42A4-99E0-BDD9611A1983}\mpengine.dll
2011-03-22 22:53 . 2011-02-02 17:11 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-03-22 22:53 . 2011-03-22 22:53 -------- d-----w- c:\windows\system32\Wat
2011-03-22 22:39 . 2011-03-22 22:39 -------- d-----w- c:\windows\system32\x64
2011-03-22 22:39 . 2009-09-23 18:30 1002008 ----a-w- c:\windows\system32\igxpun.exe
2011-03-22 22:25 . 2011-03-22 22:36 -------- d-----w- c:\windows\Panther
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-18 17:58 . 2011-03-23 20:59 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Xmarks"="c:\program files\Xmarks\IE Extension\xmarkssync.exe" [2011-02-05 1092808]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-01-10 281768]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-11-05 283160]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-01-18 10025576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2011-03-10 311744]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-22 1343400]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-01-10 135336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-05 13336]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-09-27 68208]
S3 netr28;Pilote sans fil Ralink 802.11n pour Windows Vista;c:\windows\system32\DRIVERS\netr28.sys [2009-07-13 530944]
.
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
FF - ProfilePath - c:\users\Ose\AppData\Roaming\Mozilla\Firefox\Profiles\vnpgkzx2.default\
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10n_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10n_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2011-03-24 13:21:57
ComboFix-quarantined-files.txt 2011-03-24 12:21
.
Avant-CF: 65 334 763 520 octets libres
Après-CF: 65 133 264 896 octets libres
.
- - End Of File - - C07CF45F0C219BBB0883CF001ACA78C6
Et un coupe de AD-R sur tes conseils, voici le log :
======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 01/03/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 13:32:57 le 24/03/2011, Mode normal
Microsoft Windows 7 Édition Intégrale Service Pack 1 (X86)
Ose@EEE_PC (ASUSTeK Computer INC. 1001HA)
============== ACTION(S) ==============
(!) -- Fichiers temporaires supprimés.
============== SCAN ADDITIONNEL ==============
**** Mozilla Firefox Version [4.0 (fr)] ****
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Components\browsercomps.dll (Mozilla Foundation)
-- C:\Users\Ose\AppData\Roaming\Mozilla\FireFox\Profiles\vnpgkzx2.default --
Prefs.js - browser.startup.homepage_override.buildID, 20110318052756
Prefs.js - browser.startup.homepage_override.mstone, rv:2.0
========================================
**** Internet Explorer Version [8.0.7601.17514] ****
HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\System32\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\System32\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKCU_Extensions\{638F11AA-DF27-433b-BA2E-7281CE561D71} - "?" (?)
========================================
C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 14 Fichier(s)
C:\Ad-Report-CLEAN[1].txt - 24/03/2011 13:33:04 (2207 Octet(s))
Fin à: 13:34:23, 24/03/2011
============== E.O.F ==============
Y vois tu quelque chose et merci encore
J'ai mis un coupe de combo fix (lu sur forum) voici le log : ComboFix 11-03-23.05 - Ose 24/03/2011 13:06:57.1.2 - x86
Microsoft Windows 7 Édition Intégrale 6.1.7601.1.1252.33.1036.18.2039.1290 [GMT 1:00]
Lancé depuis: c:\users\Ose\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((( Fichiers créés du 2011-02-24 au 2011-03-24 ))))))))))))))))))))))))))))))))))))
.
.
2011-03-24 12:16 . 2011-03-24 12:16 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-03-23 20:40 . 2011-03-23 20:40 -------- d-----w- c:\windows\LastGood
2011-03-23 20:39 . 2011-03-23 20:39 -------- d-----w- c:\windows\system32\Atheros_L1e
2011-03-23 20:36 . 2010-09-27 14:23 68208 ----a-w- c:\windows\system32\drivers\L1C62x86.sys
2011-03-23 20:34 . 2011-03-23 20:35 -------- d-----w- c:\program files\PeaZip
2011-03-23 12:48 . 2011-03-23 12:48 -------- d-----w- c:\windows\system32\SRSLabs
2011-03-23 12:48 . 2011-03-23 12:48 -------- d-----w- c:\windows\system32\RTCOM
2011-03-23 12:36 . 2011-03-23 12:36 -------- d-----w- C:\Intel
2011-03-23 12:36 . 2010-11-05 22:39 354840 ----a-w- c:\windows\system32\drivers\iaStor.sys
2011-03-23 12:36 . 2011-03-23 20:39 -------- d--h--w- c:\program files\InstallShield Installation Information
2011-03-23 12:36 . 2011-03-23 12:37 -------- d-----w- c:\program files\Intel
2011-03-23 12:33 . 2011-03-23 12:33 -------- d-----w- c:\windows\system32\Macromed
2011-03-23 12:32 . 2011-03-23 12:32 -------- d-----w- c:\program files\ma-config.com
2011-03-23 12:32 . 2011-03-23 12:32 -------- d-----w- c:\programdata\ma-config.com
2011-03-23 12:18 . 2011-03-23 12:18 -------- d-----w- c:\program files\Xmarks
2011-03-23 11:57 . 2011-01-10 13:23 61960 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-03-23 11:57 . 2011-01-10 13:23 135096 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-03-23 11:57 . 2011-03-23 11:57 -------- d-----w- c:\programdata\Avira
2011-03-23 11:57 . 2011-03-23 11:57 -------- d-----w- c:\program files\Avira
2011-03-23 11:45 . 2011-03-23 11:45 -------- d-----w- c:\program files\Microsoft.NET
2011-03-23 11:44 . 2011-03-23 12:32 -------- d-sh--w- c:\windows\Installer
2011-03-22 23:00 . 2011-02-19 06:30 805376 ----a-w- c:\windows\system32\FntCache.dll
2011-03-22 23:00 . 2011-02-19 06:30 1076736 ----a-w- c:\windows\system32\DWrite.dll
2011-03-22 23:00 . 2011-02-19 06:30 739840 ----a-w- c:\windows\system32\d2d1.dll
2011-03-22 23:00 . 2011-01-07 07:46 870912 ----a-w- c:\windows\system32\XpsPrint.dll
2011-03-22 23:00 . 2011-01-07 07:46 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-03-22 23:00 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2011-03-22 23:00 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2011-03-22 22:53 . 2011-02-23 09:35 5943120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0E9BAEFB-042B-42A4-99E0-BDD9611A1983}\mpengine.dll
2011-03-22 22:53 . 2011-02-02 17:11 222080 ------w- c:\windows\system32\MpSigStub.exe
2011-03-22 22:53 . 2011-03-22 22:53 -------- d-----w- c:\windows\system32\Wat
2011-03-22 22:39 . 2011-03-22 22:39 -------- d-----w- c:\windows\system32\x64
2011-03-22 22:39 . 2009-09-23 18:30 1002008 ----a-w- c:\windows\system32\igxpun.exe
2011-03-22 22:25 . 2011-03-22 22:36 -------- d-----w- c:\windows\Panther
.
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-18 17:58 . 2011-03-23 20:59 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Xmarks"="c:\program files\Xmarks\IE Extension\xmarkssync.exe" [2011-02-05 1092808]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-01-10 281768]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-11-05 283160]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-01-18 10025576]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2011-03-10 311744]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-20 77184]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-20 25600]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Service Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-22 1343400]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-01-10 135336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-05 13336]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-09-27 68208]
S3 netr28;Pilote sans fil Ralink 802.11n pour Windows Vista;c:\windows\system32\DRIVERS\netr28.sys [2009-07-13 530944]
.
.
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.google.fr/
FF - ProfilePath - c:\users\Ose\AppData\Roaming\Mozilla\Firefox\Profiles\vnpgkzx2.default\
.
.
--------------------- CLES DE REGISTRE BLOQUEES ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10n_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10n_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Heure de fin: 2011-03-24 13:21:57
ComboFix-quarantined-files.txt 2011-03-24 12:21
.
Avant-CF: 65 334 763 520 octets libres
Après-CF: 65 133 264 896 octets libres
.
- - End Of File - - C07CF45F0C219BBB0883CF001ACA78C6
Et un coupe de AD-R sur tes conseils, voici le log :
======= RAPPORT D'AD-REMOVER 2.0.0.2,F | UNIQUEMENT XP/VISTA/7 =======
Mis à jour par TeamXscript le 01/03/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org
C:\Program Files\Ad-Remover\main.exe (CLEAN [1]) -> Lancé à 13:32:57 le 24/03/2011, Mode normal
Microsoft Windows 7 Édition Intégrale Service Pack 1 (X86)
Ose@EEE_PC (ASUSTeK Computer INC. 1001HA)
============== ACTION(S) ==============
(!) -- Fichiers temporaires supprimés.
============== SCAN ADDITIONNEL ==============
**** Mozilla Firefox Version [4.0 (fr)] ****
Searchplugins\bing.xml ( hxxp://www.bing.com/search)
Components\browsercomps.dll (Mozilla Foundation)
-- C:\Users\Ose\AppData\Roaming\Mozilla\FireFox\Profiles\vnpgkzx2.default --
Prefs.js - browser.startup.homepage_override.buildID, 20110318052756
Prefs.js - browser.startup.homepage_override.mstone, rv:2.0
========================================
**** Internet Explorer Version [8.0.7601.17514] ****
HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://fr.msn.com/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\System32\wpcer.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\System32\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files\Internet Explorer\iedw.exe (x)
HKCU_Extensions\{638F11AA-DF27-433b-BA2E-7281CE561D71} - "?" (?)
========================================
C:\Program Files\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files\Ad-Remover\Backup: 14 Fichier(s)
C:\Ad-Report-CLEAN[1].txt - 24/03/2011 13:33:04 (2207 Octet(s))
Fin à: 13:34:23, 24/03/2011
============== E.O.F ==============
Y vois tu quelque chose et merci encore
Utilisateur anonyme
Modifié par Electricien 69 le 24/03/2011 à 19:19
Modifié par Electricien 69 le 24/03/2011 à 19:19
je pense que tu as passé combofix sur ton pc inutilement !!!
* /!\AVERTISSEMENT :
ce script n'est à utiliser que pour ce pc infecté et sur ce topic, il n'est valable pour aucun autre pc.
/!\ Utilisateur de Vista : Ne pas oublier de désactiver l'UAC juste le temps de désinfection de ton pc, il sera à réactiver plus tard :
Tuto : https://www.commentcamarche.net/faq/8343-vista-desactiver-l-uac
Télécharge OtmoveIT (de Old_Timer) sur ton Bureau
http://itxassociates.com/OT-Tools/OTM.exe
ou :
https://www.androidworld.fr/
(c est le numéro 7 en bas de la page) :
* Double-clique sur OTMoveIt.exe pour le lancer.
/!\Utilisateur de Vista et windows 7 : Clique droit sur le logo de OtmoveIT, « exécuter en tant qu'Administrateur »
* Copie la liste qui se trouve en gras dans la citation ci-dessous et colle-la dans le cadre de gauche de OTMoveIt sous Paste List of Files/Folders to move.
:processes
explorer.exe
:files
c:\windows\system32\x64
c:\program files\mozilla firefox\components\browsercomps.dll
:Commands
[emptytemp]
[purity]
[start explorer]
[Reboot]
# clique sur MoveIt! pour lancer la suppression.
# Le résultat apparaitra dans le cadre "Results".
# Clique sur Exit pour fermer.
# Poste le rapport situé dans C:\_OTMoveIt\MovedFiles.
# Il te sera peut-être demandé de redémarrer le pc pour achever la suppression. Si c'est le cas accepte par Yes.
Rends toi sur ce site :
https://www.virustotal.com/gui/
clique sur parcourir et cherche ce fichier :
c:\windows\system32\drivers\rdpvideominiport.sys
c:\windows\system32\drivers\synth3dvsc.sys
c:\windows\system32\drivers\terminpt.sys
c:\windows\system32\drivers\tsusbflt.sys
c:\windows\system32\drivers\TsUsbGD.sys
c:\windows\system32\drivers\tsusbhub.sys
c:\windows\system32\drivers\rdvgkmd.sys
clique sur send file
un rapport va s'élaborer ligne à ligne
attends un peu, il doit comprendre la taille du fichier envoyé
une fois le rapport complet, copie et colle le lien du rapport sur ton prochain message.
O.o°*??? Membre, Contributeur Sécurité CCM o°.Oø¤º°'°º¤ø
O.o°* ??? Réspire à fond, Rédige ton message en bon français et de manière claire. Une fois ton problème passé, coche ton message comme résolu.Ca va bien se passer, tu verras, enfin on essaie !!! o°.Oø¤º°'°º¤ø
* /!\AVERTISSEMENT :
ce script n'est à utiliser que pour ce pc infecté et sur ce topic, il n'est valable pour aucun autre pc.
/!\ Utilisateur de Vista : Ne pas oublier de désactiver l'UAC juste le temps de désinfection de ton pc, il sera à réactiver plus tard :
Tuto : https://www.commentcamarche.net/faq/8343-vista-desactiver-l-uac
Télécharge OtmoveIT (de Old_Timer) sur ton Bureau
http://itxassociates.com/OT-Tools/OTM.exe
ou :
https://www.androidworld.fr/
(c est le numéro 7 en bas de la page) :
* Double-clique sur OTMoveIt.exe pour le lancer.
/!\Utilisateur de Vista et windows 7 : Clique droit sur le logo de OtmoveIT, « exécuter en tant qu'Administrateur »
* Copie la liste qui se trouve en gras dans la citation ci-dessous et colle-la dans le cadre de gauche de OTMoveIt sous Paste List of Files/Folders to move.
:processes
explorer.exe
:files
c:\windows\system32\x64
c:\program files\mozilla firefox\components\browsercomps.dll
:Commands
[emptytemp]
[purity]
[start explorer]
[Reboot]
# clique sur MoveIt! pour lancer la suppression.
# Le résultat apparaitra dans le cadre "Results".
# Clique sur Exit pour fermer.
# Poste le rapport situé dans C:\_OTMoveIt\MovedFiles.
# Il te sera peut-être demandé de redémarrer le pc pour achever la suppression. Si c'est le cas accepte par Yes.
Rends toi sur ce site :
https://www.virustotal.com/gui/
clique sur parcourir et cherche ce fichier :
c:\windows\system32\drivers\rdpvideominiport.sys
c:\windows\system32\drivers\synth3dvsc.sys
c:\windows\system32\drivers\terminpt.sys
c:\windows\system32\drivers\tsusbflt.sys
c:\windows\system32\drivers\TsUsbGD.sys
c:\windows\system32\drivers\tsusbhub.sys
c:\windows\system32\drivers\rdvgkmd.sys
clique sur send file
un rapport va s'élaborer ligne à ligne
attends un peu, il doit comprendre la taille du fichier envoyé
une fois le rapport complet, copie et colle le lien du rapport sur ton prochain message.
O.o°*??? Membre, Contributeur Sécurité CCM o°.Oø¤º°'°º¤ø
O.o°* ??? Réspire à fond, Rédige ton message en bon français et de manière claire. Une fois ton problème passé, coche ton message comme résolu.Ca va bien se passer, tu verras, enfin on essaie !!! o°.Oø¤º°'°º¤ø
Merci beaucoup de ton aide électricien.
je suis parfois un peu impatient (combofix)
Je fais ce que tu m as dit des que je rentré ce soir.
Par contre comment expliquer que cette saleté soit revenue
peu après la re installation de seven ?
Sais tu de quel virus ou Trojan ou autre il s agit ?
Pour né pas refaire la même erreur. Vu que mes deux pc sont
à priori infectés.
je suis parfois un peu impatient (combofix)
Je fais ce que tu m as dit des que je rentré ce soir.
Par contre comment expliquer que cette saleté soit revenue
peu après la re installation de seven ?
Sais tu de quel virus ou Trojan ou autre il s agit ?
Pour né pas refaire la même erreur. Vu que mes deux pc sont
à priori infectés.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Utilisateur anonyme
24 mars 2011 à 20:37
24 mars 2011 à 20:37
tu as installer un adware!
du coup, tu es vistime de redirection et page de pub !!!
évite d'installer les toolbars, il ne sont pas obligatoires !!!
il y a également un plugin de FF qui provoque des redirections , donc jopte plutôt pour cette option là :-)
j'attend stes rapports:-)
@ ++
du coup, tu es vistime de redirection et page de pub !!!
évite d'installer les toolbars, il ne sont pas obligatoires !!!
il y a également un plugin de FF qui provoque des redirections , donc jopte plutôt pour cette option là :-)
j'attend stes rapports:-)
@ ++
bonsoir,
voila le rapport de OTM
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
c:\windows\system32\x64 folder moved successfully.
LoadLibrary failed for c:\program files\mozilla firefox\components\browsercomps.dll
c:\program files\mozilla firefox\components\browsercomps.dll moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Ose
->Temp folder emptied: 49915 bytes
->Temporary Internet Files folder emptied: 53646674 bytes
->FireFox cache emptied: 9739040 bytes
->Flash cache emptied: 596 bytes
User: Public
->Temp folder emptied: 0 bytes
Pour les fichiers :
File name: rdpvideominiport.sys
Submission date: 2011-03-24 22:12:13 (UTC)
Current status: queued (#1) queued (#1) analysing finished
Result: 0/ 41 (0.0%)
File name: Synth3dVsc.sys
Submission date: 2011-03-24 22:16:50 (UTC)
Current status: queued (#1) queued (#1) analysing finished
Result: 0/ 43 (0.0%)
File name: terminpt.sys
Submission date: 2011-03-24 22:23:10 (UTC)
Current status: queued queued analysing finished
Result: 0/ 41 (0.0%)
File name: TsUsbFlt.sys
Submission date: 2011-03-24 22:25:50 (UTC)
Current status: queued queued analysing finished
Result: 0/ 43 (0.0%)
File name: TsUsbGD.sys
Submission date: 2011-03-24 22:24:27 (UTC)
Current status: queued queued analysing finished
Result: 0/ 41 (0.0%)
File name: TsUsbGD.sys
Submission date: 2011-03-24 22:24:27 (UTC)
Current status: queued queued analysing finished
Result: 0/ 41 (0.0%)
File name: tsusbhub.sys
Submission date: 2011-03-24 22:28:02 (UTC)
Current status: queued (#3) queued (#3) analysing finished
Result: 0/ 43 (0.0%)
File name: tsusbhub.sys
Submission date: 2011-03-24 22:28:02 (UTC)
Current status: queued (#3) queued (#3) analysing finished
Result: 0/ 43 (0.0%)
Par contre je n ai pas le fichier c:\windows\system32\drivers\rdvgkmd.sys
sinon derniere question comment a t il pu survivre a un formatage ??
voila le rapport de OTM
All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
========== FILES ==========
c:\windows\system32\x64 folder moved successfully.
LoadLibrary failed for c:\program files\mozilla firefox\components\browsercomps.dll
c:\program files\mozilla firefox\components\browsercomps.dll moved successfully.
========== COMMANDS ==========
[EMPTYTEMP]
User: All Users
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
User: Ose
->Temp folder emptied: 49915 bytes
->Temporary Internet Files folder emptied: 53646674 bytes
->FireFox cache emptied: 9739040 bytes
->Flash cache emptied: 596 bytes
User: Public
->Temp folder emptied: 0 bytes
Pour les fichiers :
File name: rdpvideominiport.sys
Submission date: 2011-03-24 22:12:13 (UTC)
Current status: queued (#1) queued (#1) analysing finished
Result: 0/ 41 (0.0%)
File name: Synth3dVsc.sys
Submission date: 2011-03-24 22:16:50 (UTC)
Current status: queued (#1) queued (#1) analysing finished
Result: 0/ 43 (0.0%)
File name: terminpt.sys
Submission date: 2011-03-24 22:23:10 (UTC)
Current status: queued queued analysing finished
Result: 0/ 41 (0.0%)
File name: TsUsbFlt.sys
Submission date: 2011-03-24 22:25:50 (UTC)
Current status: queued queued analysing finished
Result: 0/ 43 (0.0%)
File name: TsUsbGD.sys
Submission date: 2011-03-24 22:24:27 (UTC)
Current status: queued queued analysing finished
Result: 0/ 41 (0.0%)
File name: TsUsbGD.sys
Submission date: 2011-03-24 22:24:27 (UTC)
Current status: queued queued analysing finished
Result: 0/ 41 (0.0%)
File name: tsusbhub.sys
Submission date: 2011-03-24 22:28:02 (UTC)
Current status: queued (#3) queued (#3) analysing finished
Result: 0/ 43 (0.0%)
File name: tsusbhub.sys
Submission date: 2011-03-24 22:28:02 (UTC)
Current status: queued (#3) queued (#3) analysing finished
Result: 0/ 43 (0.0%)
Par contre je n ai pas le fichier c:\windows\system32\drivers\rdvgkmd.sys
sinon derniere question comment a t il pu survivre a un formatage ??
Utilisateur anonyme
25 mars 2011 à 07:29
25 mars 2011 à 07:29
bonjour,
pour les adwares, il suffit que tu ais installé un plugin ou un toolbar pendant l'installation d'un logiciel !!!
Télécharge Malwarebytes' Anti-Malware et enregistre le sur ton bureau:
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
ou ici :
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/
/!\Utilisateur de Vista et Windows 7 : Clique droit sur le logo de Malwarebytes' Anti-Malware, « exécuter en tant qu'Administrateur »
. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. si le pare-feu demande l'autorisation de se connecter pour malwarebytes, acceptes
. Une fois la mise à jour terminé
. rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, cliques sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. rends toi dans l'onglet rapport/log
. tu cliques dessus pour l'afficher une fois affiché
. tu cliques sur edition en haut du boc notes,et puis sur sélectionner tous
. tu recliques sur edition et puis sur copier et tu reviens sur le forum et dans ta réponse
. Tu cliques droit dans le cadre de la réponse et coller
. À la fin du scan, il se peut que MBAM ait besoin de redémarrer le pc pour finaliser la suppression, donc pas de panique, redémarre ton pc !!!
Si tu as besoin d'aide regarde ce tutoriel :
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
pour les adwares, il suffit que tu ais installé un plugin ou un toolbar pendant l'installation d'un logiciel !!!
Télécharge Malwarebytes' Anti-Malware et enregistre le sur ton bureau:
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
ou ici :
https://www.commentcamarche.net/telecharger/securite/14361-malwarebytes-anti-malware/
/!\Utilisateur de Vista et Windows 7 : Clique droit sur le logo de Malwarebytes' Anti-Malware, « exécuter en tant qu'Administrateur »
. Double cliques sur le fichier téléchargé pour lancer le processus d'installation.
. Dans l'onglet "mise à jour", cliques sur le bouton Recherche de mise à jour
. si le pare-feu demande l'autorisation de se connecter pour malwarebytes, acceptes
. Une fois la mise à jour terminé
. rend-toi dans l'onglet, Recherche
. Sélectionnes Exécuter un examen complet
. Cliques sur Rechercher
. Le scan démarre.
. A la fin de l'analyse, un message s'affiche : L'examen s'est terminé normalement. Clique sur 'Afficher les résultats' pour afficher tous les objets trouvés.
. Cliques sur Ok pour poursuivre.
. Si des malwares ont été détectés, cliques sur Afficher les résultats
. Sélectionnes tout (ou laisses cochés) et cliques sur Supprimer la sélection Malwarebytes va détruire les fichiers et clés de registre et en mettre une copie dans la quarantaine.
. Malwarebytes va ouvrir le bloc-notes et y copier le rapport d'analyse.
. rends toi dans l'onglet rapport/log
. tu cliques dessus pour l'afficher une fois affiché
. tu cliques sur edition en haut du boc notes,et puis sur sélectionner tous
. tu recliques sur edition et puis sur copier et tu reviens sur le forum et dans ta réponse
. Tu cliques droit dans le cadre de la réponse et coller
. À la fin du scan, il se peut que MBAM ait besoin de redémarrer le pc pour finaliser la suppression, donc pas de panique, redémarre ton pc !!!
Si tu as besoin d'aide regarde ce tutoriel :
https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Bonjour,
Là je suis au boulot donc je passe malware ce soir en rentrant.
Par contre je l'avais déjà passé il y a un petit moment.
Il avait nettoyé le pc et pourtant cette saleté de redirection est revenue.
Je te poste le rapport ce soir.
Sinon as tu vu quelque chose dans un des logs qui expliquerai mes soucis.
En y repensant bien la seule chose que j'ai installé aprés formatage et installation des update de seven via windows update c'est Xmarks et Firefox 4.0, et le plugin de tous les drivers.com pour la détection.
C'est à dire rien de bien méchant, ce sont des choses très répandues.
Merci encore et à bientôt.
Là je suis au boulot donc je passe malware ce soir en rentrant.
Par contre je l'avais déjà passé il y a un petit moment.
Il avait nettoyé le pc et pourtant cette saleté de redirection est revenue.
Je te poste le rapport ce soir.
Sinon as tu vu quelque chose dans un des logs qui expliquerai mes soucis.
En y repensant bien la seule chose que j'ai installé aprés formatage et installation des update de seven via windows update c'est Xmarks et Firefox 4.0, et le plugin de tous les drivers.com pour la détection.
C'est à dire rien de bien méchant, ce sont des choses très répandues.
Merci encore et à bientôt.
Utilisateur anonyme
25 mars 2011 à 13:57
25 mars 2011 à 13:57
on verra déjà sur ton rapport de MBAM !
la redirection peut être du à plusieur source :
- les adwaes
- les cracks,
- un rogue
.
.
.
il suffit qu'un plugin de FF soit infectieux pour que ton pc soit infecté !!
j'ai eu quelques cas, on a viré carrement FF et réinstallé, mais on n'a jamais su de quel plugin pouvit venir le problème !!!
la redirection peut être du à plusieur source :
- les adwaes
- les cracks,
- un rogue
.
.
.
il suffit qu'un plugin de FF soit infectieux pour que ton pc soit infecté !!
j'ai eu quelques cas, on a viré carrement FF et réinstallé, mais on n'a jamais su de quel plugin pouvit venir le problème !!!
bonsoir,
voici le log de malware
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 6171
Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514
25/03/2011 22:17:31
mbam-log-2011-03-25 (22-17-31).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 208248
Temps écoulé: 41 minute(s), 2 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
voici le log de malware
Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org
Version de la base de données: 6171
Windows 6.1.7601 Service Pack 1
Internet Explorer 8.0.7601.17514
25/03/2011 22:17:31
mbam-log-2011-03-25 (22-17-31).txt
Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 208248
Temps écoulé: 41 minute(s), 2 seconde(s)
Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0
Processus mémoire infecté(s):
(Aucun élément nuisible détecté)
Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)
Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)
Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)
Dossier(s) infecté(s):
(Aucun élément nuisible détecté)
Fichier(s) infecté(s):
(Aucun élément nuisible détecté)
Utilisateur anonyme
26 mars 2011 à 08:54
26 mars 2011 à 08:54
bonjour,
as tu encore des redirections ?
sinon,
. télécharges Ccleaner à partir de cette adresse et enregistres le sur le bureau
https://www.commentcamarche.net/telecharger/utilitaires/5647-ccleaner/
.double-cliques sur le fichier pour lancer l'installation
/!\Utilisateur de Vista et windows 7 : Clique droit sur le logo de Ccleaner, « exécuter en tant qu'Administrateur »
.sur la fenêtre de l'installation langage bien choisir français et OK
.cliques sur suivant
.lis la licence et j'accepte
.cliques sur suivant
.la tu ne gardes de coché que mettre un raccourci sur le bureau et puis contrôler automatiquement les mises à jour de Ccleaner
.cliques sur installer
.cliques sur fermer
.double-cliques sur l'icône de Ccleaner pour l'ouvrir
.une fois ouvert tu cliques sur option et puis avancé
.tu décoches effacer uniquement les fichiers, du dossier temp de windows plus vieux que 24 heures
.cliques sur nettoyeur
.cliques sur windows et dans la colonne avancé
.coches la première case vieilles données du perfetch que celle-la ce qui te donnes la case vielles données du perfetch et la case avancé qui c'est coché automatiquement mais que celle-la
.cliques sur analyse une fois l'analyse terminé
.cliques sur lancer le nettoyage et sur la demande de confirmation OK il vas falloir que tu le refasses une autre fois une fois fini vériffis en appuiant de nouveau sur analyse pour être sur qu'il n'y est plus rien
.cliques maintenant sur registre et puis sur rechercher les erreurs
.laisses tout cochées et cliques sur réparrer les erreurs sélectionnées
.il te demande de sauvegarder OUI
.tu lui donnes un nom pour pouvoir la retrouver et enregistre
.cliques sur corriger toutes les erreurs sélectionnées et sur la demande de confirmation OK
.il supprime et fermer tu vérifies en relançant rechercher les erreurs
.tu retournes dans option et tu recoches la case effacer uniquement les fichiers, du dossier temp de windows plus vieux que 48 heures et sur nettoyeur, windows sous avancé tu décoches la première case vieilles données du perfetch
.tu peux fermer Ccleaner
tuto installation & nettoyage :
https://www.donnemoilinfo.com/tuto/CCleaner/
* pour supprimer les outils de désinfection
:
Télecharge Delfix sur ton bureau :
http://www.teamxscript.org/too/Xplode/DelFix.exe
*Clique sur le bouton « Suppression » et poste son rapport sur ton prochain message
**Pour le désinstaller, il suffit de le relancer et cliquer sur le bouton de désinstallation.
* Désactivation, puis Réactivation de la restauration système après désinfection :
Il est nécessaire de désactiver puis réactiver la restauration système pour la purger car les points de restauration peuvent être infectés :
Pour Windows 7 :
http://www.jenyburn.com/home/comment-desactiver-la-restauration-du-systeme-sous-windows-7
* fais une mise à jour de ton antivirus, lance un scan complet de ton pc, tiens moi au courant du résultat :-)
as tu encore des redirections ?
sinon,
. télécharges Ccleaner à partir de cette adresse et enregistres le sur le bureau
https://www.commentcamarche.net/telecharger/utilitaires/5647-ccleaner/
.double-cliques sur le fichier pour lancer l'installation
/!\Utilisateur de Vista et windows 7 : Clique droit sur le logo de Ccleaner, « exécuter en tant qu'Administrateur »
.sur la fenêtre de l'installation langage bien choisir français et OK
.cliques sur suivant
.lis la licence et j'accepte
.cliques sur suivant
.la tu ne gardes de coché que mettre un raccourci sur le bureau et puis contrôler automatiquement les mises à jour de Ccleaner
.cliques sur installer
.cliques sur fermer
.double-cliques sur l'icône de Ccleaner pour l'ouvrir
.une fois ouvert tu cliques sur option et puis avancé
.tu décoches effacer uniquement les fichiers, du dossier temp de windows plus vieux que 24 heures
.cliques sur nettoyeur
.cliques sur windows et dans la colonne avancé
.coches la première case vieilles données du perfetch que celle-la ce qui te donnes la case vielles données du perfetch et la case avancé qui c'est coché automatiquement mais que celle-la
.cliques sur analyse une fois l'analyse terminé
.cliques sur lancer le nettoyage et sur la demande de confirmation OK il vas falloir que tu le refasses une autre fois une fois fini vériffis en appuiant de nouveau sur analyse pour être sur qu'il n'y est plus rien
.cliques maintenant sur registre et puis sur rechercher les erreurs
.laisses tout cochées et cliques sur réparrer les erreurs sélectionnées
.il te demande de sauvegarder OUI
.tu lui donnes un nom pour pouvoir la retrouver et enregistre
.cliques sur corriger toutes les erreurs sélectionnées et sur la demande de confirmation OK
.il supprime et fermer tu vérifies en relançant rechercher les erreurs
.tu retournes dans option et tu recoches la case effacer uniquement les fichiers, du dossier temp de windows plus vieux que 48 heures et sur nettoyeur, windows sous avancé tu décoches la première case vieilles données du perfetch
.tu peux fermer Ccleaner
tuto installation & nettoyage :
https://www.donnemoilinfo.com/tuto/CCleaner/
* pour supprimer les outils de désinfection
:
Télecharge Delfix sur ton bureau :
http://www.teamxscript.org/too/Xplode/DelFix.exe
*Clique sur le bouton « Suppression » et poste son rapport sur ton prochain message
**Pour le désinstaller, il suffit de le relancer et cliquer sur le bouton de désinstallation.
* Désactivation, puis Réactivation de la restauration système après désinfection :
Il est nécessaire de désactiver puis réactiver la restauration système pour la purger car les points de restauration peuvent être infectés :
Pour Windows 7 :
http://www.jenyburn.com/home/comment-desactiver-la-restauration-du-systeme-sous-windows-7
* fais une mise à jour de ton antivirus, lance un scan complet de ton pc, tiens moi au courant du résultat :-)
bonjour,
oui j ai toujours des redirection
par contre j ai l impression que c est uniquement avec firefox, de plus le codage change tout seul en occidental (donc les è s'affichent en A)
sinon voici le log de desuppression : # DelFix v7.5 - Rapport créé le 27/03/2011 à 10:01
# Mis à jour le 15/03/11 à 16h30 par Xplode
# Système d'exploitation : Windows 7 Ultimate (32 bits) [version 6.1.7601] Service Pack 1
# Nom d'utilisateur : Ose - EEE_PC (Administrateur)
# Exécuté depuis : C:\Users\Ose\Desktop\DelFix.exe
# Option [Suppression]
~~~~~~ Dossier(s) ~~~~~~
-> C:\Qoobox\BackEnv ... ACL modifié avec succès.
Supprimé : C:\Qoobox
Supprimé : C:\_OTM
Supprimé : C:\Program Files\Ad-Remover
~~~~~~ Fichier(s) ~~~~~~
Supprimé : C:\ComboFix.txt
Supprimé : C:\Ad-Report-CLEAN[1].txt
Supprimé : C:\Windows\grep.exe
Supprimé : C:\Windows\PEV.exe
Supprimé : C:\Windows\NIRCMD.exe
Supprimé : C:\Windows\MBR.exe
Supprimé : C:\Windows\sed.exe
Supprimé : C:\Windows\SWREG.exe
Supprimé : C:\Windows\SWSC.exe
Supprimé : C:\Windows\SWXCACLS.exe
Supprimé : C:\Windows\zip.exe
Supprimé : C:\Users\Ose\Desktop\OTM.exe
Supprimé : C:\Users\Ose\Desktop\ComboFix.exe
Supprimé : C:\Users\Ose\Desktop\AD-R.lnk
~~~~~~ Registre ~~~~~~
Clé Supprimée : HKCU\SOFTWARE\Ad-Remover
Clé Supprimée : HKLM\Software\swearware
Clé Supprimée : HKLM\Software\OldTimer Tools
Clé Supprimée : HKLM\Software\Classes\.cfxxe
Clé Supprimée : HKLM\Software\Classes\cfxxefile
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ad-Remover
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
~~~~~~ Autre ~~~~~~
-> Prefetch vidé
########## EOF - "C:\DelFixSuppr.txt" - [1578 octets] ##########
je lance un scan antivir et je le poste.
oui j ai toujours des redirection
par contre j ai l impression que c est uniquement avec firefox, de plus le codage change tout seul en occidental (donc les è s'affichent en A)
sinon voici le log de desuppression : # DelFix v7.5 - Rapport créé le 27/03/2011 à 10:01
# Mis à jour le 15/03/11 à 16h30 par Xplode
# Système d'exploitation : Windows 7 Ultimate (32 bits) [version 6.1.7601] Service Pack 1
# Nom d'utilisateur : Ose - EEE_PC (Administrateur)
# Exécuté depuis : C:\Users\Ose\Desktop\DelFix.exe
# Option [Suppression]
~~~~~~ Dossier(s) ~~~~~~
-> C:\Qoobox\BackEnv ... ACL modifié avec succès.
Supprimé : C:\Qoobox
Supprimé : C:\_OTM
Supprimé : C:\Program Files\Ad-Remover
~~~~~~ Fichier(s) ~~~~~~
Supprimé : C:\ComboFix.txt
Supprimé : C:\Ad-Report-CLEAN[1].txt
Supprimé : C:\Windows\grep.exe
Supprimé : C:\Windows\PEV.exe
Supprimé : C:\Windows\NIRCMD.exe
Supprimé : C:\Windows\MBR.exe
Supprimé : C:\Windows\sed.exe
Supprimé : C:\Windows\SWREG.exe
Supprimé : C:\Windows\SWSC.exe
Supprimé : C:\Windows\SWXCACLS.exe
Supprimé : C:\Windows\zip.exe
Supprimé : C:\Users\Ose\Desktop\OTM.exe
Supprimé : C:\Users\Ose\Desktop\ComboFix.exe
Supprimé : C:\Users\Ose\Desktop\AD-R.lnk
~~~~~~ Registre ~~~~~~
Clé Supprimée : HKCU\SOFTWARE\Ad-Remover
Clé Supprimée : HKLM\Software\swearware
Clé Supprimée : HKLM\Software\OldTimer Tools
Clé Supprimée : HKLM\Software\Classes\.cfxxe
Clé Supprimée : HKLM\Software\Classes\cfxxefile
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Ad-Remover
Clé Supprimée : HKLM\Software\Microsoft\Windows\CurrentVersion\App Paths\combofix.exe
~~~~~~ Autre ~~~~~~
-> Prefetch vidé
########## EOF - "C:\DelFixSuppr.txt" - [1578 octets] ##########
je lance un scan antivir et je le poste.
Utilisateur anonyme
27 mars 2011 à 10:20
27 mars 2011 à 10:20
bonjour,
tes redirections se font ves quels site et avec quel navigateur ?
tes redirections se font ves quels site et avec quel navigateur ?
bonjour,
les sites sont divers, yahoo, pu, etc et j ai une page grise avec le message wait your request is loading. Les redirection sont pour l instant que avec firefox (4.0)
voici le loçg de avira
Avira AntiVir Personal
Report file date: dimanche 27 mars 2011 10:07
Scanning for 2533833 virus strains and unwanted programs.
The program is running as an unrestricted full version.
Online services are available:
Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows 7
Windows version : (Service Pack 1) [6.1.7601]
Boot mode : Normally booted
Username : Système
Computer name : EEE_PC
Version information:
BUILD.DAT : 10.0.0.635 31822 Bytes 07/03/2011 12:15:00
AVSCAN.EXE : 10.0.3.5 435368 Bytes 10/01/2011 13:23:31
AVSCAN.DLL : 10.0.3.0 46440 Bytes 01/04/2010 11:57:04
LUKE.DLL : 10.0.3.2 104296 Bytes 10/01/2011 13:23:40
LUKERES.DLL : 10.0.0.1 12648 Bytes 10/02/2010 22:40:49
VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 08:05:36
VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 13:23:50
VBASE002.VDF : 7.11.3.0 1950720 Bytes 09/02/2011 11:59:13
VBASE003.VDF : 7.11.3.1 2048 Bytes 09/02/2011 11:59:13
VBASE004.VDF : 7.11.3.2 2048 Bytes 09/02/2011 11:59:13
VBASE005.VDF : 7.11.3.3 2048 Bytes 09/02/2011 11:59:13
VBASE006.VDF : 7.11.3.4 2048 Bytes 09/02/2011 11:59:13
VBASE007.VDF : 7.11.3.5 2048 Bytes 09/02/2011 11:59:13
VBASE008.VDF : 7.11.3.6 2048 Bytes 09/02/2011 11:59:13
VBASE009.VDF : 7.11.3.7 2048 Bytes 09/02/2011 11:59:14
VBASE010.VDF : 7.11.3.8 2048 Bytes 09/02/2011 11:59:14
VBASE011.VDF : 7.11.3.9 2048 Bytes 09/02/2011 11:59:14
VBASE012.VDF : 7.11.3.10 2048 Bytes 09/02/2011 11:59:14
VBASE013.VDF : 7.11.3.59 157184 Bytes 14/02/2011 11:59:14
VBASE014.VDF : 7.11.3.97 120320 Bytes 16/02/2011 11:59:15
VBASE015.VDF : 7.11.3.148 128000 Bytes 19/02/2011 11:59:15
VBASE016.VDF : 7.11.3.183 140288 Bytes 22/02/2011 11:59:15
VBASE017.VDF : 7.11.3.216 124416 Bytes 24/02/2011 11:59:15
VBASE018.VDF : 7.11.3.251 159232 Bytes 28/02/2011 11:59:16
VBASE019.VDF : 7.11.4.33 148992 Bytes 02/03/2011 11:59:16
VBASE020.VDF : 7.11.4.73 150016 Bytes 06/03/2011 11:59:16
VBASE021.VDF : 7.11.4.108 122880 Bytes 08/03/2011 11:59:17
VBASE022.VDF : 7.11.4.150 133120 Bytes 10/03/2011 11:59:17
VBASE023.VDF : 7.11.4.183 122368 Bytes 14/03/2011 11:59:17
VBASE024.VDF : 7.11.4.228 123392 Bytes 16/03/2011 11:59:18
VBASE025.VDF : 7.11.5.8 246272 Bytes 21/03/2011 11:59:18
VBASE026.VDF : 7.11.5.38 137216 Bytes 23/03/2011 11:59:19
VBASE027.VDF : 7.11.5.39 2048 Bytes 23/03/2011 11:59:19
VBASE028.VDF : 7.11.5.40 2048 Bytes 23/03/2011 11:59:19
VBASE029.VDF : 7.11.5.41 2048 Bytes 23/03/2011 11:59:19
VBASE030.VDF : 7.11.5.42 2048 Bytes 23/03/2011 11:59:19
VBASE031.VDF : 7.11.5.79 142848 Bytes 25/03/2011 21:54:15
Engineversion : 8.2.4.192
AEVDF.DLL : 8.1.2.1 106868 Bytes 10/01/2011 13:23:26
AESCRIPT.DLL : 8.1.3.57 1261947 Bytes 23/03/2011 11:59:25
AESCN.DLL : 8.1.7.2 127349 Bytes 10/01/2011 13:23:26
AESBX.DLL : 8.1.3.2 254324 Bytes 10/01/2011 13:23:26
AERDL.DLL : 8.1.9.9 639347 Bytes 25/03/2011 21:54:30
AEPACK.DLL : 8.2.4.13 524662 Bytes 25/03/2011 21:54:29
AEOFFICE.DLL : 8.1.1.18 205178 Bytes 25/03/2011 21:54:29
AEHEUR.DLL : 8.1.2.91 3387767 Bytes 25/03/2011 21:54:28
AEHELP.DLL : 8.1.16.1 246134 Bytes 23/03/2011 11:59:20
AEGEN.DLL : 8.1.5.3 397684 Bytes 23/03/2011 11:59:20
AEEMU.DLL : 8.1.3.0 393589 Bytes 10/01/2011 13:23:18
AECORE.DLL : 8.1.19.2 196983 Bytes 23/03/2011 11:59:20
AEBB.DLL : 8.1.1.0 53618 Bytes 10/01/2011 13:23:18
AVWINLL.DLL : 10.0.0.0 19304 Bytes 10/01/2011 13:23:32
AVPREF.DLL : 10.0.0.0 44904 Bytes 10/01/2011 13:23:30
AVREP.DLL : 10.0.0.8 62209 Bytes 17/06/2010 13:27:13
AVREG.DLL : 10.0.3.2 53096 Bytes 10/01/2011 13:23:31
AVSCPLR.DLL : 10.0.3.2 84328 Bytes 10/01/2011 13:23:31
AVARKT.DLL : 10.0.22.6 231784 Bytes 10/01/2011 13:23:27
AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 10/01/2011 13:23:28
SQLITE3.DLL : 3.6.19.0 355688 Bytes 17/06/2010 13:27:22
AVSMTP.DLL : 10.0.0.17 63848 Bytes 10/01/2011 13:23:31
NETNT.DLL : 10.0.0.0 11624 Bytes 17/06/2010 13:27:21
RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 28/01/2010 12:10:20
RCTEXT.DLL : 10.0.58.0 97128 Bytes 10/01/2011 13:23:52
Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: C:\Program Files\Avira\AntiVir Desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium
Start of the scan: dimanche 27 mars 2011 10:07
Starting search for hidden objects.
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\friendlytypename
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxURL\friendlytypename
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\FirefoxURL\editflags
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\ftp\editflags
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\http\editflags
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\https\editflags
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\devicecenter.dll,-1000
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\explorer.exe,-7021
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\prnfldr.dll,-8036
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\netshell.dll,-1200
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\macromed\flash\flashutil10n_activex.exe,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\networkexplorer.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\wmploc.dll,-128
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\ie4uinit.exe,-21
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\themeui.dll,-2682
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1122
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1142
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1162
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1182
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1202
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1222
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1242
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1262
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\ntshrui.dll,-103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\ntshrui.dll,-5112
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\wpccpl.dll,-100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\powercpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\powercpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\taskbarcpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\taskbarcpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\vault.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\vault.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\sud.dll,-10
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\tsworkspace.dll,-15300
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\tsworkspace.dll,-15301
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\wucltux.dll,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows sidebar\sidebar.exe,-11003
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows sidebar\sidebar.exe,-11002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\firewallcontrolpanel.dll,-12122
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\firewallcontrolpanel.dll,-12123
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\telephon.cpl,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\telephon.cpl,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\speech\speechux\speechuxcpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\speech\speechux\speechuxcpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\mblctr.exe,-1002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\mblctr.exe,-1003
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\usercpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\usercpl.dll,-1
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\usercpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\intl.cpl,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\intl.cpl,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\hgcpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\hgcpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\main.cpl,-100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\main.cpl,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\main.cpl,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\main.cpl,-103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\devmgr.dll,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\devmgr.dll,-5
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\icardres.dll,-4097
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\icardres.dll,-4098
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\perfcentercpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\perfcentercpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\appwiz.cpl,-159
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\appwiz.cpl,-160
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\srchadmin.dll,-601
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\srchadmin.dll,-602
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\netcenter.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\netcenter.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\wpccpl.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\autoplay.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\autoplay.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\synccenter.dll,-3001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\recovery.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\recovery.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\inetcpl.cpl,-4312
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\inetcpl.cpl,-4313
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\devicecenter.dll,-2000
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\colorcpl.exe,-6
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\colorcpl.exe,-7
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\sdcpl.dll,-100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\systemcpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\systemcpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\actioncentercpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\actioncentercpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\display.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\display.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\diagcpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\diagcpl.dll,-15
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\oobefldr.dll,-33057
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\accessibilitycpl.dll,-45
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows defender\msmpres.dll,-104
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows defender\msmpres.dll,-1176
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows defender\msmpres.dll,-1176
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\fvecpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\fvecpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\timedate.cpl,-51
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\timedate.cpl,-52
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\sensorscpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\sensorscpl.dll,-701
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\themecpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\themecpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\mmsys.cpl,-300
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\mmsys.cpl,-301
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\useraccountcontrolsettings.dll,-70
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\ieframe.dll,-903
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@zipfldr.dll,-10148
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@sendmail.dll,-21
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\fxsresm.dll,-120
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@sendmail.dll,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\aelupsvc.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\alg.exe,-113
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\appidsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\appinfo.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@appmgmts.dll,-3251
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\audiosrv.dll,-205
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\audiosrv.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\axinstsv.dll,-104
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\bdesvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\bfe.dll,-1002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\qmgr.dll,-1001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\browser.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\bthserv.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\certprop.dll,-12
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@comres.dll,-948
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\cryptsvc.dll,-1002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\cscsvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@oleres.dll,-5013
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\defragsvc.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\dhcpcore.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\dnsapi.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\dot3svc.dll,-1103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\dps.dll,-501
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\eapsvc.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\efssvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\ehome\ehrecvr.exe,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\ehome\ehsched.exe,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wevtsvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@comres.dll,-2451
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\fxsresm.dll,-122
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\fdphost.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\fdrespub.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\fntcache.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\presentationhost.exe,-3310
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@gpapi.dll,-113
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\hidserv.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\kmsvc.dll,-7
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\listsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\provsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\microsoft.net\framework\v3.0\windows communication foundation\servicemodelinstallrc.dll,-8192
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\ikeext.dll,-502
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\ipbusenum.dll,-103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\iphlpsvc.dll,-501
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@keyiso.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@comres.dll,-2947
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\srvsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wkssvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\lltdres.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\lmhsvc.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\ehome\ehres.dll,-15502
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\mmcss.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\firewallapi.dll,-23091
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@comres.dll,-2798
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\iscsidsc.dll,-5001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\msimsg.dll,-32
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\qagentrt.dll,-7
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\netlogon.dll,-103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\netman.dll,-110
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\netprofm.dll,-203
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\microsoft.net\framework\v3.0\windows communication foundation\servicemodelinstallrc.dll,-8200
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\nlasvc.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\nsisvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\pnrpsvc.dll,-8005
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\p2psvc.dll,-8007
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\pcasvc.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\peerdistsvc.dll,-9001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\pla.dll,-501
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\umpnpmgr.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\pnrpauto.dll,-8003
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\pnrpsvc.dll,-8001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\polstore.dll,-5011
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\umpo.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\profsvc.dll,-301
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\psbase.dll,-301
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\qwave.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\rasauto.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\rasmans.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\mprdim.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@regsvc.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%windir%\system32\rpcepmap.dll,-1002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\locator.exe,-3
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@oleres.dll,-5011
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\samsrv.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\scardsvr.dll,-5
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\schedsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\certprop.dll,-14
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sdrsvc.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\seclogon.dll,-7000
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sens.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sensrsvc.dll,-1001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sessenv.dll,-1027
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\ipnathlp.dll,-107
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\shsvcs.dll,-12289
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\snmptrap.exe,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\spoolsv.exe,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sppsvc.exe,-100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sppuinotify.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\ssdpsrv.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sstpsvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wiaservc.dll,-10
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\swprv.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sysmain.dll,-1001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\tabsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\tapisrv.dll,-10101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\tbssvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\termsrv.dll,-267
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\themeservice.dll,-8193
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\mmcss.dll,-103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\trkwks.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\servicing\trustedinstaller.exe,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\ui0detect.exe,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\umrdp.dll,-1001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\upnphost.dll,-214
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\dwm.exe,-2001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\vaultsvc.dll,-1004
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\vds.exe,-112
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\vssvc.exe,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\w32time.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wat\watux.exe,-602
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wbengine.exe,-105
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wbiosrvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wcncsvc.dll,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wcspluginservice.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wdi.dll,-503
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wdi.dll,-501
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\webclnt.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wecsvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wercplsupport.dll,-100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wersvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\winhttp.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wbem\wmisvc.dll,-204
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wsmsvc.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wlansvc.dll,-258
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wbem\wmiapsrv.exe,-111
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%programfiles%\windows media player\wmpnetwk.exe,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wpcsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wpdbusenum.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wscsvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\searchindexer.exe,-104
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wuaueng.dll,-106
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wudfsvc.dll,-1001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wwansvc.dll,-258
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\common files\system\wab32res.dll,-4602
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@"c:\program files\windows journal\journal.exe",-3072
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows nt\accessories\wordpad.exe,-190
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\display.dll,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows sidebar\sidebar.exe,-11100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\themecpl.dll,-10
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\common files\system\wab32res.dll,-10203
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\notepad.exe,-470
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\acppage.dll,-6002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\mstsc.exe,-4004
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\SyncMgr\startatlogin
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\SyncMgr\HandlerInstances\{750FDF10-2A26-11D1-A3EA-080036587F03}\synctime
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\SyncMgr\HandlerInstances\{750FDF10-2A26-11D1-A3EA-080036587F03}\active
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\SyncMgr\HandlerInstances\{750FDF10-2A26-11D1-A3EA-080036587F03}\connected
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\SyncMgr\HandlerInstances\{750FDF10-2A26-11D1-A3EA-080036587F03}\enabled
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\TrayNotify\promotediconcache
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\TrayNotify\lastadvertisement
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\TrayNotify\userstarttime
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\nodeslots
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\3
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\3
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\1\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\1\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\2\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\2\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\3\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\3\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2\0\nodeslot
les sites sont divers, yahoo, pu, etc et j ai une page grise avec le message wait your request is loading. Les redirection sont pour l instant que avec firefox (4.0)
voici le loçg de avira
Avira AntiVir Personal
Report file date: dimanche 27 mars 2011 10:07
Scanning for 2533833 virus strains and unwanted programs.
The program is running as an unrestricted full version.
Online services are available:
Licensee : Avira AntiVir Personal - FREE Antivirus
Serial number : 0000149996-ADJIE-0000001
Platform : Windows 7
Windows version : (Service Pack 1) [6.1.7601]
Boot mode : Normally booted
Username : Système
Computer name : EEE_PC
Version information:
BUILD.DAT : 10.0.0.635 31822 Bytes 07/03/2011 12:15:00
AVSCAN.EXE : 10.0.3.5 435368 Bytes 10/01/2011 13:23:31
AVSCAN.DLL : 10.0.3.0 46440 Bytes 01/04/2010 11:57:04
LUKE.DLL : 10.0.3.2 104296 Bytes 10/01/2011 13:23:40
LUKERES.DLL : 10.0.0.1 12648 Bytes 10/02/2010 22:40:49
VBASE000.VDF : 7.10.0.0 19875328 Bytes 06/11/2009 08:05:36
VBASE001.VDF : 7.11.0.0 13342208 Bytes 14/12/2010 13:23:50
VBASE002.VDF : 7.11.3.0 1950720 Bytes 09/02/2011 11:59:13
VBASE003.VDF : 7.11.3.1 2048 Bytes 09/02/2011 11:59:13
VBASE004.VDF : 7.11.3.2 2048 Bytes 09/02/2011 11:59:13
VBASE005.VDF : 7.11.3.3 2048 Bytes 09/02/2011 11:59:13
VBASE006.VDF : 7.11.3.4 2048 Bytes 09/02/2011 11:59:13
VBASE007.VDF : 7.11.3.5 2048 Bytes 09/02/2011 11:59:13
VBASE008.VDF : 7.11.3.6 2048 Bytes 09/02/2011 11:59:13
VBASE009.VDF : 7.11.3.7 2048 Bytes 09/02/2011 11:59:14
VBASE010.VDF : 7.11.3.8 2048 Bytes 09/02/2011 11:59:14
VBASE011.VDF : 7.11.3.9 2048 Bytes 09/02/2011 11:59:14
VBASE012.VDF : 7.11.3.10 2048 Bytes 09/02/2011 11:59:14
VBASE013.VDF : 7.11.3.59 157184 Bytes 14/02/2011 11:59:14
VBASE014.VDF : 7.11.3.97 120320 Bytes 16/02/2011 11:59:15
VBASE015.VDF : 7.11.3.148 128000 Bytes 19/02/2011 11:59:15
VBASE016.VDF : 7.11.3.183 140288 Bytes 22/02/2011 11:59:15
VBASE017.VDF : 7.11.3.216 124416 Bytes 24/02/2011 11:59:15
VBASE018.VDF : 7.11.3.251 159232 Bytes 28/02/2011 11:59:16
VBASE019.VDF : 7.11.4.33 148992 Bytes 02/03/2011 11:59:16
VBASE020.VDF : 7.11.4.73 150016 Bytes 06/03/2011 11:59:16
VBASE021.VDF : 7.11.4.108 122880 Bytes 08/03/2011 11:59:17
VBASE022.VDF : 7.11.4.150 133120 Bytes 10/03/2011 11:59:17
VBASE023.VDF : 7.11.4.183 122368 Bytes 14/03/2011 11:59:17
VBASE024.VDF : 7.11.4.228 123392 Bytes 16/03/2011 11:59:18
VBASE025.VDF : 7.11.5.8 246272 Bytes 21/03/2011 11:59:18
VBASE026.VDF : 7.11.5.38 137216 Bytes 23/03/2011 11:59:19
VBASE027.VDF : 7.11.5.39 2048 Bytes 23/03/2011 11:59:19
VBASE028.VDF : 7.11.5.40 2048 Bytes 23/03/2011 11:59:19
VBASE029.VDF : 7.11.5.41 2048 Bytes 23/03/2011 11:59:19
VBASE030.VDF : 7.11.5.42 2048 Bytes 23/03/2011 11:59:19
VBASE031.VDF : 7.11.5.79 142848 Bytes 25/03/2011 21:54:15
Engineversion : 8.2.4.192
AEVDF.DLL : 8.1.2.1 106868 Bytes 10/01/2011 13:23:26
AESCRIPT.DLL : 8.1.3.57 1261947 Bytes 23/03/2011 11:59:25
AESCN.DLL : 8.1.7.2 127349 Bytes 10/01/2011 13:23:26
AESBX.DLL : 8.1.3.2 254324 Bytes 10/01/2011 13:23:26
AERDL.DLL : 8.1.9.9 639347 Bytes 25/03/2011 21:54:30
AEPACK.DLL : 8.2.4.13 524662 Bytes 25/03/2011 21:54:29
AEOFFICE.DLL : 8.1.1.18 205178 Bytes 25/03/2011 21:54:29
AEHEUR.DLL : 8.1.2.91 3387767 Bytes 25/03/2011 21:54:28
AEHELP.DLL : 8.1.16.1 246134 Bytes 23/03/2011 11:59:20
AEGEN.DLL : 8.1.5.3 397684 Bytes 23/03/2011 11:59:20
AEEMU.DLL : 8.1.3.0 393589 Bytes 10/01/2011 13:23:18
AECORE.DLL : 8.1.19.2 196983 Bytes 23/03/2011 11:59:20
AEBB.DLL : 8.1.1.0 53618 Bytes 10/01/2011 13:23:18
AVWINLL.DLL : 10.0.0.0 19304 Bytes 10/01/2011 13:23:32
AVPREF.DLL : 10.0.0.0 44904 Bytes 10/01/2011 13:23:30
AVREP.DLL : 10.0.0.8 62209 Bytes 17/06/2010 13:27:13
AVREG.DLL : 10.0.3.2 53096 Bytes 10/01/2011 13:23:31
AVSCPLR.DLL : 10.0.3.2 84328 Bytes 10/01/2011 13:23:31
AVARKT.DLL : 10.0.22.6 231784 Bytes 10/01/2011 13:23:27
AVEVTLOG.DLL : 10.0.0.8 203112 Bytes 10/01/2011 13:23:28
SQLITE3.DLL : 3.6.19.0 355688 Bytes 17/06/2010 13:27:22
AVSMTP.DLL : 10.0.0.17 63848 Bytes 10/01/2011 13:23:31
NETNT.DLL : 10.0.0.0 11624 Bytes 17/06/2010 13:27:21
RCIMAGE.DLL : 10.0.0.26 2550120 Bytes 28/01/2010 12:10:20
RCTEXT.DLL : 10.0.58.0 97128 Bytes 10/01/2011 13:23:52
Configuration settings for the scan:
Jobname.............................: Complete system scan
Configuration file..................: C:\Program Files\Avira\AntiVir Desktop\sysscan.avp
Logging.............................: low
Primary action......................: interactive
Secondary action....................: ignore
Scan master boot sector.............: on
Scan boot sector....................: on
Boot sectors........................: C:, D:,
Process scan........................: on
Extended process scan...............: on
Scan registry.......................: on
Search for rootkits.................: on
Integrity checking of system files..: off
Scan all files......................: All files
Scan archives.......................: on
Recursion depth.....................: 20
Smart extensions....................: on
Macro heuristic.....................: on
File heuristic......................: medium
Start of the scan: dimanche 27 mars 2011 10:07
Starting search for hidden objects.
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\friendlytypename
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxHTML\shell\open\ddeexec\noactivatehandler
HKEY_CURRENT_USER\Software\Classes\FirefoxURL\friendlytypename
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\FirefoxURL\editflags
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\ftp\editflags
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\http\editflags
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\https\editflags
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\devicecenter.dll,-1000
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\explorer.exe,-7021
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\prnfldr.dll,-8036
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\netshell.dll,-1200
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\macromed\flash\flashutil10n_activex.exe,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\networkexplorer.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\wmploc.dll,-128
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\ie4uinit.exe,-21
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\themeui.dll,-2682
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1122
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1142
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1162
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1182
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1202
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1222
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1242
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\oobefldr.dll,-1262
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\ntshrui.dll,-103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\ntshrui.dll,-5112
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\wpccpl.dll,-100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\powercpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\powercpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\taskbarcpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\taskbarcpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\vault.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\vault.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\sud.dll,-10
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\tsworkspace.dll,-15300
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\tsworkspace.dll,-15301
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\wucltux.dll,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows sidebar\sidebar.exe,-11003
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows sidebar\sidebar.exe,-11002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\firewallcontrolpanel.dll,-12122
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\firewallcontrolpanel.dll,-12123
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\telephon.cpl,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\telephon.cpl,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\speech\speechux\speechuxcpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\speech\speechux\speechuxcpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\mblctr.exe,-1002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\mblctr.exe,-1003
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\usercpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\usercpl.dll,-1
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\usercpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\intl.cpl,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\intl.cpl,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\hgcpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\hgcpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\main.cpl,-100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\main.cpl,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\main.cpl,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\main.cpl,-103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\devmgr.dll,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\devmgr.dll,-5
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\icardres.dll,-4097
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\icardres.dll,-4098
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\perfcentercpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\perfcentercpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\appwiz.cpl,-159
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\appwiz.cpl,-160
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\srchadmin.dll,-601
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\srchadmin.dll,-602
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\netcenter.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\netcenter.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\wpccpl.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\autoplay.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\autoplay.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\synccenter.dll,-3001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\recovery.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\recovery.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\inetcpl.cpl,-4312
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\inetcpl.cpl,-4313
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\devicecenter.dll,-2000
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\colorcpl.exe,-6
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\colorcpl.exe,-7
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\sdcpl.dll,-100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\systemcpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\systemcpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\actioncentercpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\actioncentercpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\display.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\display.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\diagcpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\diagcpl.dll,-15
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\oobefldr.dll,-33057
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\accessibilitycpl.dll,-45
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows defender\msmpres.dll,-104
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows defender\msmpres.dll,-1176
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows defender\msmpres.dll,-1176
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\fvecpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\fvecpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\timedate.cpl,-51
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\timedate.cpl,-52
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\sensorscpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\sensorscpl.dll,-701
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\themecpl.dll,-1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\themecpl.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\mmsys.cpl,-300
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\mmsys.cpl,-301
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\useraccountcontrolsettings.dll,-70
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\ieframe.dll,-903
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@zipfldr.dll,-10148
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@sendmail.dll,-21
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\fxsresm.dll,-120
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@sendmail.dll,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\aelupsvc.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\alg.exe,-113
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\appidsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\appinfo.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@appmgmts.dll,-3251
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\audiosrv.dll,-205
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\audiosrv.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\axinstsv.dll,-104
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\bdesvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\bfe.dll,-1002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\qmgr.dll,-1001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\browser.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\bthserv.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\certprop.dll,-12
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@comres.dll,-948
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\cryptsvc.dll,-1002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\cscsvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@oleres.dll,-5013
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\defragsvc.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\dhcpcore.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\dnsapi.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\dot3svc.dll,-1103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\dps.dll,-501
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\eapsvc.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\efssvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\ehome\ehrecvr.exe,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\ehome\ehsched.exe,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wevtsvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@comres.dll,-2451
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\fxsresm.dll,-122
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\fdphost.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\fdrespub.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\fntcache.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\presentationhost.exe,-3310
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@gpapi.dll,-113
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\hidserv.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\kmsvc.dll,-7
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\listsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\provsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\microsoft.net\framework\v3.0\windows communication foundation\servicemodelinstallrc.dll,-8192
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\ikeext.dll,-502
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\ipbusenum.dll,-103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\iphlpsvc.dll,-501
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@keyiso.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@comres.dll,-2947
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\srvsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wkssvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\lltdres.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\lmhsvc.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\ehome\ehres.dll,-15502
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\mmcss.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\firewallapi.dll,-23091
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@comres.dll,-2798
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\iscsidsc.dll,-5001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\msimsg.dll,-32
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\qagentrt.dll,-7
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\netlogon.dll,-103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\netman.dll,-110
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\netprofm.dll,-203
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\microsoft.net\framework\v3.0\windows communication foundation\servicemodelinstallrc.dll,-8200
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\nlasvc.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\nsisvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\pnrpsvc.dll,-8005
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\p2psvc.dll,-8007
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\pcasvc.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\peerdistsvc.dll,-9001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\pla.dll,-501
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\umpnpmgr.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\pnrpauto.dll,-8003
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\pnrpsvc.dll,-8001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\polstore.dll,-5011
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\umpo.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\profsvc.dll,-301
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\psbase.dll,-301
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\qwave.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\rasauto.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\rasmans.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\mprdim.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@regsvc.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%windir%\system32\rpcepmap.dll,-1002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\locator.exe,-3
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@oleres.dll,-5011
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\samsrv.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\scardsvr.dll,-5
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\schedsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\certprop.dll,-14
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sdrsvc.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\seclogon.dll,-7000
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sens.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sensrsvc.dll,-1001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sessenv.dll,-1027
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\ipnathlp.dll,-107
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\shsvcs.dll,-12289
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\snmptrap.exe,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\spoolsv.exe,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sppsvc.exe,-100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sppuinotify.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\ssdpsrv.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sstpsvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wiaservc.dll,-10
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\swprv.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\sysmain.dll,-1001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\tabsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\tapisrv.dll,-10101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\tbssvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\termsrv.dll,-267
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\themeservice.dll,-8193
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\mmcss.dll,-103
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\trkwks.dll,-2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\servicing\trustedinstaller.exe,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\ui0detect.exe,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\umrdp.dll,-1001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\upnphost.dll,-214
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\dwm.exe,-2001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\vaultsvc.dll,-1004
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\vds.exe,-112
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\vssvc.exe,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\w32time.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wat\watux.exe,-602
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wbengine.exe,-105
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wbiosrvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wcncsvc.dll,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wcspluginservice.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wdi.dll,-503
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wdi.dll,-501
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\webclnt.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wecsvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wercplsupport.dll,-100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wersvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\winhttp.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wbem\wmisvc.dll,-204
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wsmsvc.dll,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wlansvc.dll,-258
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wbem\wmiapsrv.exe,-111
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%programfiles%\windows media player\wmpnetwk.exe,-102
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wpcsvc.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wpdbusenum.dll,-101
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wscsvc.dll,-201
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\searchindexer.exe,-104
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wuaueng.dll,-106
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wudfsvc.dll,-1001
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@%systemroot%\system32\wwansvc.dll,-258
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\common files\system\wab32res.dll,-4602
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@"c:\program files\windows journal\journal.exe",-3072
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows nt\accessories\wordpad.exe,-190
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\display.dll,-4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\windows sidebar\sidebar.exe,-11100
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\themecpl.dll,-10
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\program files\common files\system\wab32res.dll,-10203
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\notepad.exe,-470
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\acppage.dll,-6002
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\MuiCache\D\D9B7F780\@c:\windows\system32\mstsc.exe,-4004
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\SyncMgr\startatlogin
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\SyncMgr\HandlerInstances\{750FDF10-2A26-11D1-A3EA-080036587F03}\synctime
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\SyncMgr\HandlerInstances\{750FDF10-2A26-11D1-A3EA-080036587F03}\active
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\SyncMgr\HandlerInstances\{750FDF10-2A26-11D1-A3EA-080036587F03}\connected
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\SyncMgr\HandlerInstances\{750FDF10-2A26-11D1-A3EA-080036587F03}\enabled
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\TrayNotify\promotediconcache
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\TrayNotify\lastadvertisement
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\TrayNotify\userstarttime
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\nodeslots
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\3
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\4
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\3
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\1\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\0\1\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\1\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\2\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\2\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\3\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\0\3\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\1\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\0\2\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\1\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\0\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1\0\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\1\0\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2\nodeslot
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2\mrulistex
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2\0
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2\1
[NOTE] The registry entry is invisible.
HKEY_CURRENT_USER\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\2\2\0\nodeslot
Utilisateur anonyme
27 mars 2011 à 12:15
27 mars 2011 à 12:15
désinstalle entièrement FF de ton pc,
supprime son répertoire manuellement de ton disque dure !
retélécharge et réinstalle le.
évited'installer trop de plugin, il y en a un qui provoque la redirection !!!
on ne sait pas encore le quel !!!
supprime son répertoire manuellement de ton disque dure !
retélécharge et réinstalle le.
évited'installer trop de plugin, il y en a un qui provoque la redirection !!!
on ne sait pas encore le quel !!!
Ok je desinstalle et reinstalle.
Ps : je n ai installé aucun plugin juste la nouvelle versin 4.0
Merci encore
Ps : je n ai installé aucun plugin juste la nouvelle versin 4.0
Merci encore
Utilisateur anonyme
27 mars 2011 à 12:57
27 mars 2011 à 12:57
avant l'installation de la version 4, tu utilisais FF ?
on verra suite à la réinstallation si le problème vien de la version 4 !
on verra suite à la réinstallation si le problème vien de la version 4 !
C sur une reinstallation que j 'ai installé la v 4.
Je viens de reinstaller et pour l'instant pas de redirection.
Je te tiens au courant.
J'arrive pas à comprendre d ou ca vien .
Je viens de reinstaller et pour l'instant pas de redirection.
Je te tiens au courant.
J'arrive pas à comprendre d ou ca vien .
Juste un conseil, ad aware contient un bouclier web, mais pas malware.
Quel config tu me conseille anti virus + anti malware en freeware ?
Quel config tu me conseille anti virus + anti malware en freeware ?
Utilisateur anonyme
27 mars 2011 à 13:20
27 mars 2011 à 13:20
conserve MBAM sur ton pc en complément de ton antivirus.
installe un pafreu autre que celui de windows.
pour FF, il y a un module WOT qui est pas mal :-)
évite d'installer des plugins inutile sur ton pc .
oublie Adaware et spybot, ils sont inutiles !!!
du moment ou il n'y a plus de redirections, vire tes anciens points de restauration système, crée en un nouveau, tout beau tout frais , ça peut servire :-)
installe un pafreu autre que celui de windows.
pour FF, il y a un module WOT qui est pas mal :-)
évite d'installer des plugins inutile sur ton pc .
oublie Adaware et spybot, ils sont inutiles !!!
du moment ou il n'y a plus de redirections, vire tes anciens points de restauration système, crée en un nouveau, tout beau tout frais , ça peut servire :-)
