Supprimer Web Companion (Lavasoft)
Fermé
LaCraquotte
Messages postés
4
Date d'inscription
jeudi 3 septembre 2015
Statut
Membre
Dernière intervention
3 septembre 2015
-
Modifié par STARGATE43 le 3/09/2015 à 03:57
fabul Messages postés 38887 Date d'inscription dimanche 18 janvier 2009 Statut Modérateur Dernière intervention 13 octobre 2024 - 3 sept. 2015 à 09:33
fabul Messages postés 38887 Date d'inscription dimanche 18 janvier 2009 Statut Modérateur Dernière intervention 13 octobre 2024 - 3 sept. 2015 à 09:33
Bonjour tout le monde,
depuis hier, j'essaie de virer Webcompanion de mon ordi, qui je pense est venu en même temps que HideMyAss!...
Du coup, en lisant les messages ici, j'ai lancé adwcleaner et voilà mon rapport:
https://www.cjoint.com/c/EIdbU4U00DY
Quelqu'un peut-il me confirmer que tout est bon ou m'indiquer la prochaine étape?
Merci beaucoup! =)
Amy
depuis hier, j'essaie de virer Webcompanion de mon ordi, qui je pense est venu en même temps que HideMyAss!...
Du coup, en lisant les messages ici, j'ai lancé adwcleaner et voilà mon rapport:
https://www.cjoint.com/c/EIdbU4U00DY
Quelqu'un peut-il me confirmer que tout est bon ou m'indiquer la prochaine étape?
Merci beaucoup! =)
Amy
A voir également:
- Impossible de désinstaller web companion
- Desinstaller edge - Guide
- Web office - Guide
- Désinstaller onedrive - Guide
- Désinstaller mcafee - Guide
- Desinstaller logiciel windows - Guide
5 réponses
fabul
Messages postés
38887
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
13 octobre 2024
5 367
3 sept. 2015 à 04:14
3 sept. 2015 à 04:14
Salut,
Je ne vois pas Web Companion dans le rapport.
Si tu désinstalle Ad-Aware, ça ne se désinstalle pas ?
Désinstalle Ad-Aware.
Installe RegRun Reanimator
Clic sur "Fix problems".
Clic sur "Scan windows startup...".
Coche la case "Use deep level scanning once (For advanced users)".
Clic sur "Make scan now".
Patiente durant l'analyse.
Clic sur "Fix problems".
Attention, il détecte aussi des faux positifs (des bons fichiers).
Tu peux faire des recherches sur Google.
Assure toi de ne supprimer que des malwares ou inutiles avec "Get it out", sinon tu peux planter ton système.
Passe avec la flèche pour les autres ou clic sur "False positive" si c'est un item que tu connais.
Clic sur "Reboot Computer" a la fin.
Si tu a besoin d'aide,
Si il y a plus d'une quinzaine de détections, Prohibited/Suspicious , tu peux le dire, on procédera différemment.
Clic-droit dans le milieu de la fenêtre et choisis "Save to file" pour copier le résultat dans un fichier texte.
Tu peux le nommer 1 (tout court), le .txt sera généré automatiquement.
Clic sur la flèche pour passer a l'item suivant, fais comme pour le premier et nomme le 2, et ainsi de suite avec les autres.
A la fin, clic sur "Exit".
Poste les résultats contenus dans les fichiers texte dans ton prochain message.
Met un espace d'une ligne entre chaque item détecté pour que ça soit lisible.
Regarde si tu vois quelque chose de mauvais ou inutile dans les onglets "Logon" et "Scheduled tasks" de Autoruns
La encore, tu peux faire des recherches.
Je ne vois pas Web Companion dans le rapport.
Si tu désinstalle Ad-Aware, ça ne se désinstalle pas ?
Désinstalle Ad-Aware.
Installe RegRun Reanimator
Clic sur "Fix problems".
Clic sur "Scan windows startup...".
Coche la case "Use deep level scanning once (For advanced users)".
Clic sur "Make scan now".
Patiente durant l'analyse.
Clic sur "Fix problems".
Attention, il détecte aussi des faux positifs (des bons fichiers).
Tu peux faire des recherches sur Google.
Assure toi de ne supprimer que des malwares ou inutiles avec "Get it out", sinon tu peux planter ton système.
Passe avec la flèche pour les autres ou clic sur "False positive" si c'est un item que tu connais.
Clic sur "Reboot Computer" a la fin.
Si tu a besoin d'aide,
Si il y a plus d'une quinzaine de détections, Prohibited/Suspicious , tu peux le dire, on procédera différemment.
Clic-droit dans le milieu de la fenêtre et choisis "Save to file" pour copier le résultat dans un fichier texte.
Tu peux le nommer 1 (tout court), le .txt sera généré automatiquement.
Clic sur la flèche pour passer a l'item suivant, fais comme pour le premier et nomme le 2, et ainsi de suite avec les autres.
A la fin, clic sur "Exit".
Poste les résultats contenus dans les fichiers texte dans ton prochain message.
Met un espace d'une ligne entre chaque item détecté pour que ça soit lisible.
Regarde si tu vois quelque chose de mauvais ou inutile dans les onglets "Logon" et "Scheduled tasks" de Autoruns
La encore, tu peux faire des recherches.
LaCraquotte
Messages postés
4
Date d'inscription
jeudi 3 septembre 2015
Statut
Membre
Dernière intervention
3 septembre 2015
3 sept. 2015 à 04:19
3 sept. 2015 à 04:19
C'est bien le problème: ad-aware (ou lavasoft ou web companion) n'apparaît nulle part:
- ni dans mes programmes et fonctionnalités
- ni dans le regedit
- AVG et Malware ne le trouvent pas
- Adwcleaner ne l'affiche pas (j'ai aussi tenté RunHunter et Ccleaner avant, et pareil)
Je le trouvais quand je cliquais sur "démarrer => tous les programmes", dans un dossier "lavasoft", mais ce dossier ne comprenait pas de "uninstall.exe" non plus.
Ceci dit, maintenant, je ne le trouve même plus ici!! La fenêtre a disparu aussi. Mais c'est bizarre que rien sur mon ordi ne le trouve. J'ai comme l'impression qu'il est pas totalement parti mais qu'il se cache :p
- ni dans mes programmes et fonctionnalités
- ni dans le regedit
- AVG et Malware ne le trouvent pas
- Adwcleaner ne l'affiche pas (j'ai aussi tenté RunHunter et Ccleaner avant, et pareil)
Je le trouvais quand je cliquais sur "démarrer => tous les programmes", dans un dossier "lavasoft", mais ce dossier ne comprenait pas de "uninstall.exe" non plus.
Ceci dit, maintenant, je ne le trouve même plus ici!! La fenêtre a disparu aussi. Mais c'est bizarre que rien sur mon ordi ne le trouve. J'ai comme l'impression qu'il est pas totalement parti mais qu'il se cache :p
LaCraquotte
Messages postés
4
Date d'inscription
jeudi 3 septembre 2015
Statut
Membre
Dernière intervention
3 septembre 2015
3 sept. 2015 à 04:22
3 sept. 2015 à 04:22
Alors je viens de vérifier en cherchant dans "démarrer" et effectivement, Lavasoft se trouve maintenant...dans mes images! Normal :p
Donc il est toujours là...
Donc il est toujours là...
LaCraquotte
Messages postés
4
Date d'inscription
jeudi 3 septembre 2015
Statut
Membre
Dernière intervention
3 septembre 2015
3 sept. 2015 à 05:02
3 sept. 2015 à 05:02
Voilà le rapport "regrunlog" que je viens d'avoir après le reboot:
SpyHolesList Version:11.1 Build:7.77.0.177-64b
03.09.2015 12:50:45
WinDir=C:\Windows
Startup=C:\Users\Amy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Common Startup=C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Windows 7 Home Premium (6.1.7601)
Internet Explorer 9.11.9600.17959
[Internet Explorer]
[Default Home Page] :HKLM Default_Page_URL=http://www.google.com
[Current Home Page] :HKCU Start Page=https://mysearch.avg.com/?cid={74E958B7-751D-41B9-AFD2-90D68D42144A}&mid=c5c5f8b8fc0f47cda97aa9cd7a12df4c-c52d453d5340061942dddac9da5d5e008224e32a&lang=en&ds=AVG&coid=avgtbavg&cmpid=0715av&pr=fr&d=2015-07-20 00:02:05&v=4.1.4.948&pid=wtu&sg=&sap=hp
[Current Home Page] :HKCU HOMEOldSP=""
[Current Home Page] :HKCU Default_Page_URL=http://www.google.com
[Current Home Page] :HKLM Start Page=about:blank
[Current Home Page] :HKLM HOMEOldSP=""
[All Users Search] :HKLM Default_Search_URL=http://www.google.com
[All Users Search] :HKLM Search Page=http://www.google.com
[Current Users Search] :HKCU Default_Search_URL=""
[Current Users Search] :HKCU Search Page=http://go.microsoft.com/fwlink/?LinkId=54896
[Current Users Search] :HKCU Search Bar=""
[IE Local Blank Page] :HKCU Local Page=C:\Windows\system32\blank.htm
[IE Local Blank Page] :HKLM Local Page=C:\Windows\SysWOW64\blank.htm
[Browser Helper Objects] {3785D0AD-BFFF-47F6-BF5B-A587C162FED9}=C:\PROGRAM FILES (X86)\CANON\EASY-WEBPRINT EX\EWPEXBHO.DLL
### Easy-WebPrint EX CANON INC. Easy-WebPrint EX 1.6.0.0
[Browser Helper Objects] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\PROGRAM FILES (X86)\JAVA\JRE1.8.0_60\BIN\SSV.DLL
### Java(TM) Platform SE binary Oracle Corporation Java(TM) Platform SE 8 U60 8.0.600.27
[Browser Helper Objects] {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}=C:\PROGRAM FILES (X86)\BLUETOOTH SUITE\IEPLUGIN.DLL
### Bluetooth IE PlugIn Atheros Commnucations Bluetooth Software 7.3.0.100
[Browser Helper Objects] {9030D464-4C02-4ABF-8ECC-5164760863C6}=C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WINDOWSLIVELOGIN.DLL
### Microsoft® Windows Live ID Login Helper Microsoft Corp. Microsoft® CoReXT 7.250.4225.0
[Browser Helper Objects] {DBC80044-A445-435b-BC74-9C25C1C588A9}=C:\PROGRAM FILES (X86)\JAVA\JRE1.8.0_60\BIN\JP2SSV.DLL
### Java(TM) Platform SE binary Oracle Corporation Java(TM) Platform SE 8 U60 8.0.600.27
[Browser Helper Objects(x64)] {3785D0AD-BFFF-47F6-BF5B-A587C162FED9}=C:\PROGRAM FILES\CANON\EASY-WEBPRINT EX\EWPEXBHO.DLL
### Easy-WebPrint EX CANON INC. Easy-WebPrint EX 1.6.0.0
[Browser Helper Objects(x64)] {9030D464-4C02-4ABF-8ECC-5164760863C6}=C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WINDOWSLIVELOGIN.DLL
### Microsoft® Windows Live ID Login Helper Microsoft Corp. Microsoft® CoReXT 7.250.4225.0
[Auto Search URL] :HKCU provider=""
[Auto Search URL] :HKCU "Default Value"=""
[Search Assistant] :HKCU SearchAssistant=""
[Search Assistant] :HKLM SearchAssistant=""
[Search Assistant] :HKCU CustomizeSearch=""
[Search Assistant] :HKLM CustomizeSearch=""
[Search Provider] {123DB893-8373-4BC1-A054-8A3633C75AB6}=https://au.search.yahoo.com/search?fr=sp_tr_ie&ei=utf-8&ilc=12&type=711278&p={searchTerms}
### Yahoo
[Search Provider] {730A673A-083B-4D3A-B898-F7523A00B6C7}=http://services.zinio.com/search?s={searchTerms}&rf=sonyslices
### Zinio
[Search Provider] {D99FC9BF-59F7-4795-A989-36EDFD74AFE1}=http://rover.ebay.com/rover/1/709-42536-16445-33/4?mpre=http://shop.ebay.fr/?oemInLn=ieSrch-Q311&_nkw={searchTerms}
### eBay
[Search Provider] DefaultScope={123DB893-8373-4BC1-A054-8A3633C75AB6}
[Search Provider for All Users] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
### Bing
[Search Provider for All Users] DefaultScope=""
[Search Provider for All Users(x64)] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}=http://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox
### Bing
[Search Provider for All Users(x64)] DefaultScope={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[Search Provider(x64)] {123DB893-8373-4BC1-A054-8A3633C75AB6}=https://au.search.yahoo.com/search?fr=sp_tr_ie&ei=utf-8&ilc=12&type=711278&p={searchTerms}
### Yahoo
[Search Provider(x64)] {730A673A-083B-4D3A-B898-F7523A00B6C7}=http://services.zinio.com/search?s={searchTerms}&rf=sonyslices
### Zinio
[Search Provider(x64)] {D99FC9BF-59F7-4795-A989-36EDFD74AFE1}=http://rover.ebay.com/rover/1/709-42536-16445-33/4?mpre=http://shop.ebay.fr/?oemInLn=ieSrch-Q311&_nkw={searchTerms}
### eBay
[Search Provider(x64)] DefaultScope={123DB893-8373-4BC1-A054-8A3633C75AB6}
[CustomizeSearch] :HKLM CustomizeSearch=""
[URLSearchHook] :HKCU {CFBFAE00-17A6-11D0-99CB-00C04FD64497}=C:\WINDOWS\SYSWOW64\IEFRAME.DLL
### Navigateur Internet Microsoft Corporation Internet Explorer 11.00.9600.17631
[Search URL Template] :HKLM 1=""
[Search URL Template] :HKLM 2=""
[Search URL Template] :HKLM 3=""
[Search URL Template] :HKLM 4=""
[Default Prefix] :HKLM "Default Value"=http://
[URL Default Prefixes] :HKLM ftp=ftp://
[URL Default Prefixes] :HKLM gopher=gopher://
[URL Default Prefixes] :HKLM home=http://
[URL Default Prefixes] :HKLM mosaic=http://
[URL Default Prefixes] :HKLM www=http://
[AboutURLs] :HKLM blank=res://mshtml.dll/blank.htm
[AboutURLs] :HKLM NoAdd-onsInfo=res://ieframe.dll/noaddoninfo.htm
[AboutURLs] :HKLM InPrivate=res://ieframe.dll/inprivate_win7.htm
[AboutURLs] :HKLM NavigationFailure=res://ieframe.dll/navcancl.htm
[AboutURLs] :HKLM NoAdd-ons=res://ieframe.dll/noaddon.htm
[AboutURLs] :HKLM Home=270
[AboutURLs] :HKLM PostNotCached=res://ieframe.dll/repost.htm
[AboutURLs] :HKLM DesktopItemNavigationFailure=res://ieframe.dll/navcancl.htm
[AboutURLs] :HKLM NavigationCanceled=res://ieframe.dll/navcancl.htm
[AboutURLs] :HKLM SecurityRisk=res://ieframe.dll/securityatrisk.htm
[AboutURLs] :HKLM Tabs=res://ieframe.dll/tabswelcome.htm
[User Style Sheet] :HKCU User Stylesheet=""
[User Style Sheet] :HKCU Use My Stylesheet=0
[Execute unsigned ActiveX in My Computer Zone] :HKCU 1201=0
[Execute unsigned ActiveX in My Computer Zone] :HKLM 1201=1
[Execute unsigned ActiveX in Local Intranet Zone] :HKCU 1201=0
[Execute unsigned ActiveX in Local Intranet Zone] :HKLM 1201=3
[Execute unsigned ActiveX in Internet Zone] :HKCU 1201=3
[Execute unsigned ActiveX in Internet Zone] :HKLM 1201=3
[Links Toolbar] :HKCU LinksFolderName=""
[Toolbars] :HKLM {759D9886-0C6F-4498-BAB6-4A5F47C6C72F}=C:\PROGRAM FILES (X86)\CANON\EASY-WEBPRINT EX\EWPEXHLP.DLL
### Easy-WebPrint EX CANON INC. Easy-WebPrint EX 1.6.0.0
[Toolbars(x64)] :HKLM {759D9886-0C6F-4498-BAB6-4A5F47C6C72F}=C:\PROGRAM FILES\CANON\EASY-WEBPRINT EX\EWPEXHLP.DLL
### Easy-WebPrint EX CANON INC. Easy-WebPrint EX 1.6.0.0
[IE Extensions - All Users] :HKLM {219C3416-8CB2-491a-A3C7-D9FCDDC9D600}=&Ajout Direct dans Windows Live Writer
### File is deleted or hidden by a rootkit or could not be located.
[IE Extensions - All Users] :HKLM {7815BE26-237D-41A8-A98F-F7BD75F71086}
### File is deleted or hidden by a rootkit or could not be located.
[IE Extensions - All Users] :HKLM {92780B25-18CC-41C8-B9BE-3C9C571A8263}=C:\PROGRA~2\MICROS~4\OFFICE12\REFIEBAR.DLL
### Allows you to use the Research Library and its collection of information services from Microsoft Internet Explorer Microsoft Corporation Research Library Explorer Bar 12.0.6606.1000
[Context menu items] :HKCU E&xporter vers Microsoft Excel=res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
### File is deleted or hidden by a rootkit or could not be located.
[AutoConfigURL] :HKCU AutoConfigURL=""
[Protocols Filter] :HKLM application/octet-stream=C:\Windows\system32\MSCOREE.DLL
### Microsoft .NET Runtime Execution Engine Microsoft Corporation Microsoft® .NET Framework 4.0.40305.0 mscoree.dll
[Protocols Filter] :HKLM application/x-complus=C:\Windows\system32\MSCOREE.DLL
### Microsoft .NET Runtime Execution Engine Microsoft Corporation Microsoft® .NET Framework 4.0.40305.0 mscoree.dll
[Protocols Filter] :HKLM application/x-msdownload=C:\Windows\system32\MSCOREE.DLL
### Microsoft .NET Runtime Execution Engine Microsoft Corporation Microsoft® .NET Framework 4.0.40305.0 mscoree.dll
[Protocols Filter] :HKLM text/xml=C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
### Microsoft Office XML MIME Filter Microsoft Corporation Microsoft Office InfoPath 12.0.6500.5000
[Protocols Handler] :HKLM about=C:\WINDOWS\SYSWOW64\MSHTML.DLL
### Visionneuse HTML Microsoft (R) Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM cdl=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM dvd=C:\WINDOWS\SYSWOW64\MSVIDCTL.DLL
### Contrôle ActiveX pour le flux vidéo Microsoft Corporation DirectShow 6.05.7600.16385
[Protocols Handler] :HKLM file=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM ftp=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM http=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM https=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM its=C:\WINDOWS\SYSTEM32\ITSS.DLL
### Microsoft® InfoTech Storage System Library Microsoft Corporation Microsoft® Windows® Operating System 6.1.7600.16385 %SystemRoot%\System32\itss.dll
[Protocols Handler] :HKLM javascript=C:\WINDOWS\SYSWOW64\MSHTML.DLL
### Visionneuse HTML Microsoft (R) Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM livecall=C:\PROGRAM FILES (X86)\WINDOWS LIVE\MESSENGER\MSGRAPP.DLL
### Windows Live Messenger Protocol Handler Module Microsoft Corporation Windows Live Messenger Protocol Handler Module 15.4.3508.1109
[Protocols Handler] :HKLM local=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM mailto=C:\WINDOWS\SYSWOW64\MSHTML.DLL
### Visionneuse HTML Microsoft (R) Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM mhtml=C:\WINDOWS\SYSTEM32\INETCOMM.DLL
### Microsoft Internet Messaging API Resources Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.17609 %SystemRoot%\system32\inetcomm.dll
[Protocols Handler] :HKLM mk=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM ms-help=C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\HELP\HXDS.DLL
### Microsoft® Help Data Services Module Microsoft Corporation Microsoft ® Help 2.7 5.70.51021.0
[Protocols Handler] :HKLM ms-its=C:\WINDOWS\SYSTEM32\ITSS.DLL
### Microsoft® InfoTech Storage System Library Microsoft Corporation Microsoft® Windows® Operating System 6.1.7600.16385 %SystemRoot%\System32\itss.dll
[Protocols Handler] :HKLM msnim=C:\PROGRAM FILES (X86)\WINDOWS LIVE\MESSENGER\MSGRAPP.DLL
### Windows Live Messenger Protocol Handler Module Microsoft Corporation Windows Live Messenger Protocol Handler Module 15.4.3508.1109
[Protocols Handler] :HKLM res=C:\WINDOWS\SYSWOW64\MSHTML.DLL
### Visionneuse HTML Microsoft (R) Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM skype4com=C:\PROGRA~2\COMMON~1\SKYPE\SKYPE4~1.DLL
### Skype4COM Skype Technologies Skype 6.16
[Protocols Handler] :HKLM tv=C:\WINDOWS\SYSWOW64\MSVIDCTL.DLL
### Contrôle ActiveX pour le flux vidéo Microsoft Corporation DirectShow 6.05.7600.16385
[Protocols Handler] :HKLM vbscript=C:\WINDOWS\SYSWOW64\MSHTML.DLL
### Visionneuse HTML Microsoft (R) Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM wlmailhtml=C:\PROGRAM FILES (X86)\WINDOWS LIVE\MAIL\MAILCOMM.DLL
### Windows Live Mail Microsoft Corporation Windows Live Mail 15.4.3508.1109
[Protocols Handler] :HKLM wlpg=C:\PROGRAM FILES (X86)\WINDOWS LIVE\PHOTO GALLERY\ALBUMDOWNLOADPROTOCOLHANDLER.DLL
### Windows Live Album Download Protocol Handler Microsoft Corporation Windows Live? Photo Gallery 15.4.3508.1109
[Proxy] :HKCU ProxyServer=""
[Proxy] :HKCU ProxyEnable=0
[Network Settings]
[Hosts File Path] :HKLM DataBasePath=%SystemRoot%\System32\drivers\etc
[Hosts File Contents] :HKLM 54.225.95.126 ajakpekbmnkgnjbpajgkdhimcbeoocam
[Browsers]
[Installed Browsers] FIREFOX.EXE=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE
### Default Browser
Firefox Mozilla Corporation Firefox 40.0.3
[Installed Browsers] Google Chrome=C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
### Google Chrome Google Inc. Google Chrome 45.0.2454.85
[Installed Browsers] IEXPLORE.EXE=C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE
### Internet Explorer Microsoft Corporation Internet Explorer 11.00.9600.16428
[FireFox Components and Extensions] nsIQTScriptablePlugin.xpt=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsIQTScriptablePlugin.xpt
[FireFox Components and Extensions] nsIZylomPlugin.xpt=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsIZylomPlugin.xpt
[FireFox Components and Extensions] Scriptff.dll=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS\SCRIPTFF.DLL
### VSCore Script Scanner McAfee, Inc. VSCORE
[FireFox Components and Extensions] {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}=C:\Users\Amy\AppData\Roaming\Mozilla\Firefox\Profiles\h0mns4o1.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
### {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} Adblock Plus https://adblockplus.org/fr/
[FireFox Components and Extensions] {e001c731-5e37-4538-a5cb-8168736a2360}=C:\Users\Amy\AppData\Roaming\Mozilla\Firefox\Profiles\h0mns4o1.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\
### {e001c731-5e37-4538-a5cb-8168736a2360} BitDefender QuickScan Files button.js button.xul window.xul npqscan.dll https://www.bitdefender.com/toolbox/
[FireFox Settings] :HKLM browser.startup.homepage=www.google.com.au
[FireFox Settings] :HKLM browser.startup.homepage_override_url=""
[FireFox Settings] :HKLM browser.search.selectedEngine=bing
[FireFox Settings] :HKLM browser.search.selectedEngine,S=""
[FireFox Settings] :HKLM browser.search.defaultEnginename=google default
[FireFox Settings] :HKLM browser.search.defaultEnginename,S=""
[FireFox Settings] :HKLM browser.search.order.1=google
[FireFox Settings] :HKLM browser.search.order.1,S=""
[FireFox Settings] :HKLM browser.search.defaulturl=https://www.google.com/search
[FireFox Settings] :HKLM browser.newtab.url=""
[FireFox Settings] :HKLM keyword.URL=""
[FireFox Settings] :HKLM network.proxy.autoconfig_url=""
[FireFox Settings] :HKLM network.proxy.type=""
[FireFox Settings] :HKLM network.proxy.http=""
[FireFox Settings] :HKLM network.proxy.http_port=""
[Google Chrome Settings] :HKLM backup.homepage=""
[Google Chrome Settings] :HKLM backup.session.urls_to_restore_on_startup=""
[Google Chrome Settings] :HKLM session.startup_urls=""
[Google Chrome Settings] :HKLM default_search_provider.icon_url=""
[Google Chrome Settings] :HKLM default_search_provider.keyword=""
[Google Chrome Settings] :HKLM default_search_provider.name=""
[Google Chrome Settings] :HKLM default_search_provider.search_url=""
[Google Chrome Settings] :HKLM default_search_provider.suggest_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.alternate_urls=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.favicon_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.keyword=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.short_name=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.suggest_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.new_tab_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.instant_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.image_url=""
[Google Chrome Settings] :HKLM homepage=""
[Google Chrome Settings] :HKLM session.urls_to_restore_on_startup=""
[Chrome Protected Settings] search_web_data.url=https://au.search.yahoo.com/search?fr=yo_tr_gc&ei=utf-8&ilc=12&type=711278&p={searchTerms}
[Chrome Protected Settings] search_web_data.created_by_policy=0
[Chrome Protected Settings] search_web_data.suggest_url=https://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms}
[Chrome Protected Settings] default_search_provider_data.template_url_data.alternate_urls=[]
[Chrome Protected Settings] default_search_provider_data.template_url_data.favicon_url=http://www.yahoo.com/favicon.ico
[Chrome Protected Settings] default_search_provider_data.template_url_data.suggestions_url=https://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms}
[Chrome Protected Settings] default_search_provider_data.template_url_data.url=https://au.search.yahoo.com/search?fr=yo_tr_gc&ei=utf-8&ilc=12&type=711278&p={searchTerms}
[Chrome Protected Settings] default_search_provider_data.template_url_data.keyword=yahoo.com search
[Chrome Protected Settings] default_search_provider_data.template_url_data.short_name=Yahoo
[Google Chrome Default Search Provider] Default Search=Google
[Google Chrome Addons] pjkljhegncpnkpknbcohdijeoejaedia=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0
### Gmail: Profitez d'une messagerie rapide, avec moins de spam et dotée d'une fonction de recherche. update_url: http://clients2.google.com/service/update2/crx
[Google Chrome Addons] coobgpohoikkiipiblmjeljniedjpjpf=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0
### Recherche Google: La recherche sur le Web à vitesse grand V update_url: http://clients2.google.com/service/update2/crx
[Google Chrome Addons] nbpagnldghgfoolbancepceaanlmhfmd=C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\resources\hotword
### Hotword triggering:
[Google Chrome Addons] aohghmighlieiainnegkcijnfilokake=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0
### Google Docs: Créez et modifiez des documents update_url: https://clients2.google.com/service/update2/crx
[Google Chrome Addons] kmendfapggjehodndflmmgagdbamhnfd=C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\resources\cryptotoken
### CryptoTokenExtension: CryptoToken Component Extension
[Google Chrome Addons] mhjfbmdgcfjbbpaeojofohoefgiehjai=C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\resources\pdf
### Chrome PDF Viewer:
[Google Chrome Addons] apdfllckaahabafndbhieahigkjlhalf=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0
### Google Drive: Google Drive : votre nouvel espace pour créer, stocker et partager update_url: https://clients2.google.com/service/update2/crx
[Google Chrome Addons] dnhpdliibojhegemfjheidglijccjfmc=C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.65\resources\hotword_helper
### hotword helper:
[Google Chrome Addons] nmmhkkegccagdldgiimedpiccmgmieda=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0
### Google Wallet: Google Wallet pour le contenu numérique update_url: https://clients2.google.com/service/update2/crx
[Google Chrome Addons] lccekmodgklaepjeofjdjpbminllajkg=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.2_0
### Chrome Hotword Shared Module: Support files for Chrome Hotwording. update_url: https://clients2.google.com/service/update2/crx
[Google Chrome Addons] blpcfgokakmgnkcojhhkbfbldkacnbeo=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0
### YouTube: La communauté de vidéos en ligne la plus populaire au monde. update_url: http://clients2.google.com/service/update2/crx
[GPO Chrome Policies] :HKLM Software\Policies\Google\Chrome\ExtensionInstallForcelist\1=cghlccabncdbjcmflnckhkkhhiafbcie;http://mediaply.net/mediaplayer/update/updateMediaPlayerV1alpha8396.xml
[GPO Chrome Policies] :HKLM Software\Policies\Google\Chrome\ExtensionInstallWhitelist\1=lpognfiiphffpbhkhhldgijmipkjkhkh
[Network Settings]
[Domain Name] :HKLM Domain=""
[Name Server] {09EED741-5852-4D29-87EE-9722A8AFFC99}=10.200.4.1
### DHCPNameServer:10.200.4.1 DhcpServer:10.200.7.254
[Name Server] {0B595C2C-939B-44DF-8734-DBA2F3BF70F0}=10.0.0.138
### Network Card:Atheros AR9285 Wireless Network Adapter DHCPNameServer:10.0.0.138 DhcpDefaultGateway:10.0.0.138
DhcpServer:10.0.0.138
[WinSock2 Components] NLAapi.dll=C:\WINDOWS\SYSWOW64\NLAAPI.DLL
### Network Location Awareness 2 Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.18685 %SystemRoot%\SYSWOW64\NLAapi.dll
[WinSock2 Components] napinsp.dll=C:\WINDOWS\SYSWOW64\NAPINSP.DLL
### Fournisseur Shim d'affectation de noms de messagerie Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSWOW64\napinsp.dll
[WinSock2 Components] pnrpnsp.dll=C:\WINDOWS\SYSWOW64\PNRPNSP.DLL
### Fournisseur d'espace de noms PNRP Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSWOW64\pnrpnsp.dll
[WinSock2 Components] mswsock.dll=C:\WINDOWS\SYSWOW64\MSWSOCK.DLL
### Fournisseur de service Sockets 2.0 de Microsoft Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSWOW64\mswsock.dll
[WinSock2 Components] winrnr.dll=C:\WINDOWS\SYSWOW64\WINRNR.DLL
### LDAP RnR Provider DLL Microsoft Corporation Microsoft® Windows® Operating System 6.1.7600.16385 %SystemRoot%\SYSWOW64\winrnr.dll
[WinSock2 Components] wshbth.dll=C:\WINDOWS\SYSWOW64\WSHBTH.DLL
### Windows Sockets Helper DLL Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.17514 %SystemRoot%\SYSWOW64\wshbth.dll
[WinSock2 Components] WLIDNSP.DLL=C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WLIDNSP.DLL
### Microsoft® Windows Live ID Namespace Provider Microsoft Corp. Microsoft® CoReXT 7.250.4225.0
[WinSock2 Components] mdnsNSP.dll=C:\PROGRAM FILES (X86)\BONJOUR\MDNSNSP.DLL
### Bonjour Namespace Provider Apple Inc. Bonjour 3,0,0,10
[WinSock2 Components (x64)] NLAapi.dll=C:\WINDOWS\SYSNATIVE\NLAAPI.DLL
### Network Location Awareness 2 Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.17964 %SystemRoot%\SYSNATIVE\NLAapi.dll
[WinSock2 Components (x64)] napinsp.dll=C:\WINDOWS\SYSNATIVE\NAPINSP.DLL
### Fournisseur Shim d'affectation de noms de messagerie Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSNATIVE\napinsp.dll
[WinSock2 Components (x64)] pnrpnsp.dll=C:\WINDOWS\SYSNATIVE\PNRPNSP.DLL
### Fournisseur d'espace de noms PNRP Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSNATIVE\pnrpnsp.dll
[WinSock2 Components (x64)] mswsock.dll=C:\WINDOWS\SYSNATIVE\MSWSOCK.DLL
### Fournisseur de service Sockets 2.0 de Microsoft Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSNATIVE\mswsock.dll
[WinSock2 Components (x64)] winrnr.dll=C:\WINDOWS\SYSNATIVE\WINRNR.DLL
### LDAP RnR Provider DLL Microsoft Corporation Microsoft® Windows® Operating System 6.1.7600.16385 %SystemRoot%\SYSNATIVE\winrnr.dll
[WinSock2 Components (x64)] wshbth.dll=C:\WINDOWS\SYSNATIVE\WSHBTH.DLL
### Windows Sockets Helper DLL Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.17514 %SystemRoot%\SYSNATIVE\wshbth.dll
[WinSock2 Components (x64)] WLIDNSP.DLL=C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WLIDNSP.DLL
### Microsoft® Windows Live ID Namespace Provider Microsoft Corp. Microsoft® CoReXT 7.250.4225.0
[WinSock2 Components (x64)] mdnsNSP.dll=C:\PROGRAM FILES\BONJOUR\MDNSNSP.DLL
### Bonjour Namespace Provider Apple Inc. Bonjour 3,0,0,10
[Windows Shell]
[Display Scrap's Extensions] :HKLM NeverShowExt=""
[ScreenSaver] :HKCU SCRNSAVE.EXE=C:\WINDOWS\SYSTEM32\BUBBLES.SCR
### Écran de veille Bulles Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385
[System.ini] shell=explorer.exe
[User Shell] :HKCU shell=""
[Internet Shortcuts] :HKLM C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX\Samplitude Music Studio 17\Services et Support\Inscription en ligne.lnk=HTTP://WWW.MAGIX.COM/USER/REGISTER/PRODUCT_REGISTRATION/LOGIN_SCREEN.PHP3?VARPROGRAM=MS17DLX&VARCHARGE=17.0.0.0&VARREGISTER=ONLINEREGISTER&VARLAND=F
### C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\MAGIX\SAMPLI~1\SERVIC~1\INSCRI~1.LNK
[Internet Shortcuts] :HKLM C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reanimator\Update Reanimator.lnk=HTTP://GREATIS.COM/REANIMATOR.INI /R
### C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\REANIM~1\UPDATE~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\A-Series Keyboard.LNK=C:\Program Files (x86)\RdDrv001\RDID0133\Files\RDDP1133.EXE
### C:\Users\Amy\Desktop\A-SERI~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Ableton Live 9 Lite.lnk=C:\ProgramData\Ableton\Live 9 Lite\2\Program\Ableton Live 9 Lite.exe
### C:\Users\Amy\Desktop\ABLETO~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Ableton Live 9 Suite.lnk=C:\ProgramData\Ableton\Live 9 Suite\Program\Ableton Live 9 Suite.exe
### C:\Users\Amy\Desktop\ABLETO~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Amy.lnk=C:\Users\Amy
### C:\Users\Amy\Desktop\Amy.lnk
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Docs à travailler\Cadeau Maman\paint.net.lnk=C:\Program Files (x86)\Paint.NET\PaintDotNet.exe
### C:\Users\Amy\Desktop\DOCSTR~1\CADEAU~1\PAINTN~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Lavasoft\WebCompanion\Web Companion.lnk=C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
### C:\Users\Amy\Desktop\Lavasoft\WEBCOM~1\WEBCOM~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Microsoft Office Word 2007.lnk=C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
### C:\Users\Amy\Desktop\MICROS~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\ARIA Player x64.lnk=C:\Program Files\Garritan\ARIA Player\ARIA Player x64.exe
### C:\Users\Amy\Desktop\MUSICA~1\ARIAPL~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\ARIA Player.lnk=C:\Program Files\Garritan\ARIA Player\ARIA Player.exe
### C:\Users\Amy\Desktop\MUSICA~1\ARIAPL~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\Audacity.lnk=C:\Program Files (x86)\Audacity\audacity.exe
### C:\Users\Amy\Desktop\MUSICA~1\Audacity.lnk
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\AVS\AVSAudioEditor.exe - Good version.lnk=C:\Users\Amy\Desktop\Music apps\AVS\AVS.Audio.Editor.v7.2.1.487-CHAOS\Patch\AVSAudioEditor.exe
### C:\Users\Amy\Desktop\MUSICA~1\AVS\AVSAUD~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\iTunes.lnk=C:\Program Files (x86)\iTunes\iTunes.exe
### C:\Users\Amy\Desktop\MUSICA~1\iTunes.lnk
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\Nero Burning ROM 12.lnk=C:\Windows\Installer\{CF508721-0E1E-4F99-A359-59E4EA8DAEC1}\ARPPRODUCTICON.exe
### C:\Users\Amy\Desktop\MUSICA~1\NEROBU~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\Neuron G2 iMap.lnk=C:\Program Files (x86)\IconGlobal\Neuron G2 iMap\ICON_neuron_.exe
### C:\Users\Amy\Desktop\MUSICA~1\NEURON~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\Samplitude Music Studio 17.lnk=C:\Program Files (x86)\MAGIX\Samplitude_Music_Studio_17\MusicStudio.exe
### C:\Users\Amy\Desktop\MUSICA~1\SAMPLI~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\SmartMusic 9.lnk=C:\Program Files (x86)\SmartMusic 9\SmartMusic.exe
### C:\Users\Amy\Desktop\MUSICA~1\SMARTM~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music pro\Finale Files\Shortcut to Worksheets & Repertoire\target.lnk=C:\Program Files (x86)\Finale 2014\Music Files\Worksheets & Repertoire
### C:\Users\Amy\Desktop\MUSICP~1\FINALE~1\SHORTC~1\target.lnk
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Adobe Creative Cloud.lnk=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
### C:\Users\Amy\Desktop\RANDOM~1\ADOBEC~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Adobe Photoshop CS6 (64 Bit).lnk=C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe
### C:\Users\Amy\Desktop\RANDOM~1\ADOBEP~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Adobe Reader XI.lnk=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
### C:\Users\Amy\Desktop\RANDOM~1\ADOBER~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\AVG 2015.lnk=C:\Program Files (x86)\AVG\AVG2015\avgui.exe
### C:\Users\Amy\Desktop\RANDOM~1\AVG201~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Canon MG2500 series Manuel à l'écran.lnk=C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe
### C:\Users\Amy\Desktop\RANDOM~1\CANONM~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Canon Quick Menu.lnk=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
### C:\Users\Amy\Desktop\RANDOM~1\CANONQ~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\DAEMON Tools Ultra.lnk=C:\Program Files\DAEMON Tools Ultra\DTLauncher.exe
### C:\Users\Amy\Desktop\RANDOM~1\DAEMON~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\GIMP 2.lnk=C:\Program Files\GIMP 2\bin\gimp-2.8.exe
### C:\Users\Amy\Desktop\RANDOM~1\GIMP2~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Google Chrome.lnk=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
### C:\Users\Amy\Desktop\RANDOM~1\GOOGLE~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Google Earth.lnk=C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe
### C:\Users\Amy\Desktop\RANDOM~1\GOOGLE~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Malwarebytes Anti-Malware.lnk=C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
### C:\Users\Amy\Desktop\RANDOM~1\MALWAR~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Money Plus.lnk=C:\Program Files (x86)\Microsoft Money Plus\MNYCoreFiles\msmoney.exe
### C:\Users\Amy\Desktop\RANDOM~1\MONEYP~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\OpenOffice 4.1.1.lnk=C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
### C:\Users\Amy\Desktop\RANDOM~1\OPENOF~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Panorama Maker 6.lnk=C:\Program Files (x86)\ArcSoft\Panorama Maker 6\PMK.exe
### C:\Users\Amy\Desktop\RANDOM~1\PANORA~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Sweet Home 3D.lnk=C:\Program Files (x86)\Sweet Home 3D\SweetHome3D.exe
### C:\Users\Amy\Desktop\RANDOM~1\SWEETH~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\ViewNX 2.lnk=C:\Program Files (x86)\Nikon\ViewNX 2\ViewNX 2\ViewNX2.exe
### C:\Users\Amy\Desktop\RANDOM~1\VIEWNX~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\VLC media player.lnk=C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
### C:\Users\Amy\Desktop\RANDOM~1\VLCMED~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\µTorrent.lnk=C:\Users\Amy\AppData\Roaming\uTorrent\uTorrent.exe
### C:\Users\Amy\Desktop\RANDOM~1\TORREN~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Reanimator.lnk=C:\Program Files (x86)\Greatis\Reanimator\reanimator.exe
### C:\Users\Amy\Desktop\REANIM~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Revo Uninstaller.lnk=C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe
### C:\Users\Amy\Desktop\REVOUN~1.LNK
[User Shortcuts] :HKLM C:\Users\Public\Desktop\CCleaner.lnk=C:\Program Files\CCleaner\CCleaner64.exe
### C:\Users\Public\Desktop\CCleaner.lnk
[User Shortcuts] :HKLM C:\Users\Public\Desktop\Finale 2014.lnk=C:\Program Files (x86)\Finale 2014\Finale.exe
### C:\Users\Public\Desktop\FINALE~1.LNK
[User Shortcuts] :HKLM C:\Users\Public\Desktop\HMA! Pro VPN.lnk=C:\Program Files (x86)\HMA! Pro VPN\bin\HMA! Pro VPN.exe
### C:\Users\Public\Desktop\HMA!PR~1.LNK
[User Shortcuts] :HKLM C:\Users\Public\Desktop\Max 7 (64-bit).lnk=C:\Windows\Installer\{78C2DD68-C853-4E7E-AB38-E46FED1DFF93}\DesktopIcon.exe
### C:\Users\Public\Desktop\MAX7(6~1.LNK
[User Shortcuts] :HKLM C:\Users\Public\Desktop\Mozilla Firefox.lnk=C:\Program Files (x86)\Mozilla Firefox\firefox.exe
### C:\Users\Public\Desktop\MOZILL~1.LNK
[User Shortcuts] :HKLM C:\Users\Public\Desktop\Wondershare Filmora.lnk=C:\Program Files (x86)\Wondershare\Filmora\Filmora.exe
### C:\Users\Public\Desktop\WONDER~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ARIA Player.lnk=C:\Program Files\Garritan\ARIA Player\ARIA Player.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\ARIAPL~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Finale 2007.lnk=C:\Program Files (x86)\Finale 2007\FINALE.EXE
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\FINALE~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Finale 2012.lnk=C:\Program Files (x86)\Finale 2012\Finale.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\FINALE~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Finale 2014.lnk=C:\Program Files (x86)\Finale 2014\Finale.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\FINALE~3.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\GOOGLE~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk=C:\Program Files (x86)\Internet Explorer\iexplore.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\LAUNCH~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk=C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\MICROS~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\SHOWSD~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk=C:\Windows\System32\control.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\IMPLIC~1\7E4DCA~1\pinned.lnk
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Office Word 2007.lnk=C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\STARTM~1\MICROS~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Samplitude Music Studio 17.lnk=C:\Program Files (x86)\MAGIX\Samplitude_Music_Studio_17\MusicStudio.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\STARTM~1\SAMPLI~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Windows Live Messenger.lnk=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\STARTM~1\WINDOW~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Windows Live Movie Maker.lnk=C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\STARTM~1\WINDOW~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\TaskBar\GOOGLE~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk=C:\Program Files (x86)\Mozilla Firefox\firefox.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\TaskBar\MOZILL~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk=C:\Program Files (x86)\Windows Media Player\wmplayer.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\TaskBar\WINDOW~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\WINDOW~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk=C:\Users\Amy\AppData\Roaming\uTorrent\uTorrent.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\TORREN~1.LNK
[Main File Extensions] :HKLM .exe="%1" %*
[Main File Extensions] :HKLM .com="%1" %*
[Main File Extensions] :HKLM .pif="%1" %*
[Main File Extensions] :HKLM .bat="%1" %*
[Main File Extensions] :HKLM .cmd="%1" %*
[Main File Extensions] :HKLM .scr="%1" /S
[Main File Extensions] :HKLM .txt=%SystemRoot%\system32\NOTEPAD.EXE %1
[Main File Extensions] :HKLM .reg=regedit.exe "%1"
[Main File Extensions] :HKLM .inf=%SystemRoot%\system32\NOTEPAD.EXE %1
[Main File Extensions] :HKLM .ini=%SystemRoot%\system32\NOTEPAD.EXE %1
[Main File Extensions] :HKLM .js=%SystemRoot%\System32\WScript.exe "%1" %*
[Main File Extensions] :HKLM .vbs=%SystemRoot%\System32\WScript.exe "%1" %*
[Main File Extensions] :HKLM .vbe=%SystemRoot%\System32\WScript.exe "%1" %*
[Main File Extensions] :HKLM .msc=%SystemRoot%\system32\mmc.exe "%1" %*
[Main File Extensions] :HKLM .jpg=%SystemRoot%\System32\rundll32.exe "%ProgramFiles%\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
[Main File Extensions] :HKLM .jpeg=%SystemRoot%\System32\rundll32.exe "%ProgramFiles%\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
[UserInit Value] :HKLM UserInit=userinit.exe,
[Shell Services DelayLoad] :HKLM WebCheck={E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[System Shell Policies ] :HKCU shell=""
[System Shell Policies ] :HKLM shell=""
[System Shell Policies ] :HKCU run=""
[System Shell Policies ] :HKLM run=""
[Prevents Display in Control Panel from running.] :HKCU NoDispCpl=0
[Disable Registry Tools] :HKCU DisableRegistryTools =0
[Print Monitors] :HKLM Canon BJ Language Monitor MG2500 series=C:\Windows\system32\CNMLMBX.DLL
### IJ Language Monitor CANON INC. Canon IJ Printer Driver 2.70.2.10 CNMLMBX.DLL
[Print Monitors] :HKLM Canon BJ Language Monitor MG2500 series XPS=C:\Windows\system32\CNMXLMBX.DLL
### IJ Language Monitor CANON INC. Canon IJ Printer Driver 5.70.2.10 CNMXLMBX.DLL
[Print Monitors] :HKLM Canon BJ Language Monitor MP270 series=C:\Windows\system32\CNMLM9X.DLL
### IJ Language Monitor CANON INC. Canon IJ Printer Driver 2.33.2.10 CNMLM9X.DLL
[Print Monitors] :HKLM HP 9311 Status Monitor=C:\Windows\system32\HPINKSTS9311LM.DLL
### Print Status Language Monitor Hewlett-Packard Co. HP Digital Imaging 022.050.191.000 hpinksts9311LM.dll
[Print Monitors] :HKLM HP AF11 Status Monitor=C:\Windows\system32\HPINKSTSAF11LM.DLL
### Print Status Language Monitor Hewlett-Packard Co. HP Digital Imaging 028.000.944.000 hpinkstsAF11LM.dll
[Print Monitors] :HKLM HP Discovery Port Monitor (HP Deskjet 3050 J610 series)=C:\Windows\system32\HPDISCOPM9311.DLL
### HP Discovery Port Monitor Hewlett-Packard Co. HP Digital Imaging 022.050.231.000 HPDiscoPM9311.dll
[Print Monitors] :HKLM LIDIL hpzlllhn=C:\Windows\system32\HPZLLLHN.DLL
### LanguageMonitor Hewlett-Packard Company Language Monitor 61.053.25.9 hpzlllhn.dll
[Print Monitors] :HKLM Local Port=C:\Windows\system32\LOCALSPL.DLL
### DLL de spouleur local Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 localspl.dll
[Print Monitors] :HKLM Microsoft Shared Fax Monitor=C:\Windows\system32\FXSMON.DLL
### Microsoft Fax Print Monitor Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.17514 FXSMON.DLL
[Print Monitors] :HKLM S300-S400 Series Port=C:\Windows\system32\LXEALMPM.DLL
### Printer Communication System Printer Communication System 9.2.33.0 lxealmpm.DLL
[Print Monitors] :HKLM Standard TCP/IP Port=C:\Windows\system32\TCPMON.DLL
### DLL moniteur de port standard TCP/IP Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 tcpmon.dll
[Print Monitors] :HKLM USB Monitor=C:\Windows\system32\USBMON.DLL
### DLL du moniteur de port d'impression dynamique standard Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 usbmon.dll
[Print Monitors] :HKLM WSD Port=C:\Windows\system32\WSDMON.DLL
### Moniteur de port d'imprimante WSD Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 WSDMon.dll
[Shell Icon Overlay Handlers] :HKLM EnhancedStorageShell=C:\WINDOWS\SYSTEM32\EHSTORSHELL.DLL
### DLL d'extension d'environnement de stockage étendu Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\system32\EhStorShell.dll
[Shell Icon Overlay Handlers] :HKLM SharingPrivate=C:\WINDOWS\SYSTEM32\NTSHRUI.DLL
### Extensions de l'interpréteur de commandes pour le partage Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\system32\ntshrui.dll
[Context Menu Handlers] :HKLM AccExt={2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4}
[Context Menu Handlers] :HKLM ANotepad++64={B298D29A-A6ED-11DE-BA8C-A68E55D89593}
[Context Menu Handlers] :HKLM Atheros={B8952421-0E55-400B-94A6-FA858FC0A39F}
[Context Menu Handlers] :HKLM AVG Shell Extension=C:\PROGRAM FILES (X86)\AVG\AVG2015\AVGSE.DLL
### AVG Shell Extension AVG Technologies CZ, s.r.o. AVG Internet Security 15.0.0.6086
[Context Menu Handlers] :HKLM BriefcaseMenu=C:\WINDOWS\SYSTEM32\SYNCUI.DLL
### Porte-documents Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\system32\syncui.dll
[Context Menu Handlers] :HKLM Open With=C:\WINDOWS\SYSTEM32\SHELL32.DLL
### DLL commune du shell Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7601.17514 %SystemRoot%\system32\shell32.dll
[Context Menu Handlers] :HKLM Open With EncryptionMenu=C:\WINDOWS\SYSTEM32\SHELL32.DLL
### DLL commune du shell Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7601.17514 %SystemRoot%\system32\shell32.dll
[Context Menu Handlers] :HKLM PhotoStreamsExt=C:\PROGRAM FILES (X86)\COMMON FILES\APPLE\INTERNET SERVICES\SHELLSTREAMS.DLL
### ShellStreams Apple Inc. iCloud for Windows
[Context Menu Handlers] :HKLM Sharing=C:\WINDOWS\SYSTEM32\NTSHRUI.DLL
### Extensions de l'interpréteur de commandes pour le partage Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\system32\ntshrui.dll
[Context Menu Handlers] :HKLM ShellConverter={30A4E07E-068A-4d91-8F05-691283A1336B}
[Context Menu Handlers] :HKLM WinRAR={B41DB860-64E4-11D2-9906-E49FADC173CA}
[Context Menu Handlers] :HKLM WinRAR32=C:\PROGRAM FILES (X86)\WINRAR\RAREXT.DLL
### WinRAR shell extension Alexander Roshal WinRAR 4.20.0
[Context Menu Handlers] :HKLM {90AA3A4E-1CBA-4233-B8BB-535773D48449}=C:\WINDOWS\SYSTEM32\SHELL32.DLL
### DLL commune du shell Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7601.17514 %SystemRoot%\system32\shell32.dll
[Context Menu Handlers] :HKLM {a2a9545d-a0c2-42b4-9708-a0b2badd77c8}=C:\WINDOWS\SYSTEM32\SHELL32.DLL
### DLL commune du shell Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7601.17514 %SystemRoot%\system32\shell32.dll
[Context Menu Handlers] :HKLM {D2203704-49E1-476F-B118-CFE99115634F}=C:\PROGRAM FILES (X86)\NERO\NERO 11\NERO BACKITUP\NBSHELL.DLL
### Nero BackItUp Nero AG Nero BackItUp 6.0.19.100
[App Paths] :HKLM AcroRd32.exe=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
### AcroRd32.exe Adobe Reader Adobe Systems Incorporated Adobe Reader 11.0.12.18
[App Paths] :HKLM AVGSE.DLL=C:\PROGRA~2\AVG\AVG2015\avgsea.dll
### AVGSE.DLL AVG Shell Extension AVG Technologies CZ, s.r.o. AVG Internet Security 15.0.0.6086
[App Paths] :HKLM BJMYDGN.EXE=C:\Program Files\Canon\MyPrinter\BJMyDgn.exe
### BJMYDGN.EXE Canon My Printer CANON INC. Canon My Printer 3, 2, 1, 0
[App Paths] :HKLM BJMYPRT.EXE=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
### BJMYPRT.EXE Canon My Printer CANON INC. Canon My Printer 3.2.1.0
[App Paths] :HKLM ccleaner.exe=C:\Program Files\CCleaner\CCleaner64.exe
### ccleaner.exe CCleaner Piriform Ltd CCleaner 5, 09, 00, 5343
[App Paths] :HKLM chrome.exe=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
### chrome.exe Google Chrome Google Inc. Google Chrome 45.0.2454.85
[App Paths] :HKLM cmmgr32.exe
### cmmgr32.exe
[App Paths] :HKLM cmview.exe=C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe
### cmview.exe Easy Guide Viewer CANON INC. Easy Guide Viewer 1.9.0.0
[App Paths] :HKLM cnmigmain.exe=C:\Program Files (x86)\Canon\My Image Garden\cnmigmain.exe
### cnmigmain.exe Canon My Image Garden CANON INC. Canon My Image Garden 3.2.0.0
[App Paths] :HKLM CNMIGTV.DLL=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CNMIGTV.DLL
### CNMIGTV.DLL Canon cnmigtv CANON INC. Canon cnmigtv 3,2,0,0
[App Paths] :HKLM CNQMMAIN.EXE=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
### CNQMMAIN.EXE Canon Quick Menu CANON INC. Canon Quick Menu 2.6.0.0
[App Paths] :HKLM CNSEMAIN.EXE=C:\Program Files (x86)\Canon\Quick Menu\CNSEMAIN.EXE
### CNSEMAIN.EXE Canon Solution Menu EX CANON INC. Canon Solution Menu EX 2.6.0.0
[App Paths] :HKLM dvdmaker.exe=%ProgramFiles%\DVD Maker\dvdmaker.exe
### dvdmaker.exe
[App Paths] :HKLM ewpexdl.exe=C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexdl.exe
### ewpexdl.exe Easy-WebPrint EX Downloader Canon.inc Easy-WebPrint EX 1, 3, 0, 0
[App Paths] :HKLM excel.exe=C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE
### excel.exe Microsoft Office Excel Microsoft Corporation 2007 Microsoft Office system 12.0.6727.5000
[App Paths] :HKLM firefox.exe=C:\Program Files (x86)\Mozilla Firefox\firefox.exe
### firefox.exe Firefox Mozilla Corporation Firefox 40.0.3
[App Paths] :HKLM fsquirt.exe
### fsquirt.exe
[App Paths] :HKLM IEDIAG.EXE=C:\Program Files\Internet Explorer\IEDIAGCMD.EXE
### IEDIAG.EXE Diagnostics utility for Internet Explorer Microsoft Corporation Internet Explorer 11.00.9600.16428
[App Paths] :HKLM IEDIAGCMD.EXE=C:\Program Files\Internet Explorer\IEDIAGCMD.EXE
### IEDIAGCMD.EXE Diagnostics utility for Internet Explorer Microsoft Corporation Internet Explorer 11.00.9600.16428
[App Paths] :HKLM IEXPLORE.EXE=C:\Program Files\Internet Explorer\IEXPLORE.EXE
### IEXPLORE.EXE Internet Explorer Microsoft Corporation Internet Explorer 11.00.9600.16428
[App Paths] :HKLM infopath.exe=C:\PROGRA~2\MICROS~4\Office12\INFOPATH.EXE
### infopath.exe Microsoft Office InfoPath 2007 Microsoft Corporation Microsoft Office InfoPath 12.0.6662.5004
[App Paths] :HKLM install.exe
### install.exe
[App Paths] :HKLM iTunes.exe=C:\Program Files\iTunes\iTunes.exe
### iTunes.exe iTunes Apple Inc. iTunes 12.2.1.16
[App Paths] :HKLM Journal.exe=%ProgramFiles%\Windows Journal\Journal.exe
### Journal.exe
[App Paths] :HKLM LangSelector.exe=C:\Program Files (x86)\Windows Live\Installer\LangSelector.exe
### LangSelector.exe Windows Live Language Selection Microsoft Corporation Windows Live 15.4.3508.1109
[App Paths] :HKLM LogInfo.EXE=C:\Program Files\Canon\MyPrinter\LogInfo.exe
### LogInfo.EXE Canon My Printer CANON INC. Canon My Printer 3, 2, 1, 0
[App Paths] :HKLM LogInfo2.EXE=C:\Program Files\Canon\MyPrinter\LogInfo2.exe
### LogInfo2.EXE Canon MyPrinter CANON INC. Canon MyPrinter 3, 2, 1, 0
[App Paths] :HKLM mbam.exe=C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
### mbam.exe Malwarebytes Anti-Malware Malwarebytes Corporation Malwarebytes Anti-Malware 2.3.55.0
[App Paths] :HKLM mip.exe=%CommonProgramFiles%\Microsoft Shared\Ink\mip.exe
### mip.exe
[App Paths] :HKLM MovieMaker.exe=C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
### MovieMaker.exe Windows Live Movie Maker Microsoft Corporation Windows Live(TM) Movie Maker 15.4.3508.1109
[App Paths] :HKLM moviemk.exe=C:\Program Files (x86)\Movie Maker 2.6\MOVIEMK.exe
### moviemk.exe Windows Movie Maker Microsoft Corporation Windows Movie Maker 2.6.4037.0
[App Paths] :HKLM mplayer2.exe=%ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
### mplayer2.exe
[App Paths] :HKLM MSACCESS.EXE=C:\PROGRA~2\MICROS~4\Office12\MSACCESS.EXE
### MSACCESS.EXE Microsoft Office Access Microsoft Corporation 2007 Microsoft Office system 12.0.6606.1000
[App Paths] :HKLM MSMoney.EXE=C:\Program Files (x86)\Microsoft Money Plus\MNYCoreFiles\MSMoney.exe
### MSMoney.EXE Microsoft Money Microsoft(R) Corporation Microsoft(R) Money 17.00.3817
[App Paths] :HKLM MSNMSGR.EXE=C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe
### MSNMSGR.EXE Windows Live Messenger Microsoft Corporation Windows Live Messenger 15.4.3508.1109
[App Paths] :HKLM MsoHtmEd.exe
### MsoHtmEd.exe
[App Paths] :HKLM msoxmled.exe=C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSOXMLED.EXE
### msoxmled.exe XML Editor Microsoft Corporation Microsoft Office InfoPath 12.0.4518.1014
[App Paths] :HKLM MSPUB.EXE=C:\PROGRA~2\MICROS~4\Office12\MSPUB.EXE
### MSPUB.EXE Microsoft Office Publisher Microsoft Corporation 2007 Microsoft Office system 12.0.6676.5000
[App Paths] :HKLM notepad++.exe=C:\Program Files (x86)\Notepad++\notepad++.exe
### notepad++.exe Notepad++ : a free (GNU) source code editor Don HO don.h@free.fr Notepad++ 6.8.1
[App Paths] :HKLM ois.exe=C:\PROGRA~2\MICROS~4\Office12\OIS.EXE
### ois.exe Microsoft Office Picture Manager Microsoft Corporation Microsoft Office Picture Manager 12.0.6606.1000
[App Paths] :HKLM OUTLOOK.EXE=C:\PROGRA~2\MICROS~4\Office12\OUTLOOK.EXE
### OUTLOOK.EXE Microsoft Office Outlook Microsoft Corporation Microsoft Office Outlook 12.0.6691.5000
[App Paths] :HKLM pbrush.exe=%SystemRoot%\System32\mspaint.exe
### pbrush.exe
[App Paths] :HKLM Photoshop.exe=C:\Program Files\Adobe\Adobe Photoshop CC 2014\Photoshop.exe
### Photoshop.exe
[App Paths] :HKLM PMBBrowser.exe=C:\Program Files (x86)\Sony\PMB\PMBBrowser.exe
### PMBBrowser.exe Browser Sony Corporation PMB 5.5.00.11260
[App Paths] :HKLM PMBMediaImporter.exe=C:\Program Files (x86)\Sony\PMB\PMBMediaImporter.exe
### PMBMediaImporter.exe Media Importer Sony Corporation PMB 5.5.02.12220
[App Paths] :HKLM PMBMtpDeviceSwitch.exe=C:\Program Files (x86)\Sony\PMB\PMBMtpDeviceSwitch.exe
### PMBMtpDeviceSwitch.exe MtpDeviceSwitch Sony Corporation PMB 5.5.00.11260
[App Paths] :HKLM powerpnt.exe=C:\PROGRA~2\MICROS~4\Office12\POWERPNT.EXE
### powerpnt.exe Microsoft Office PowerPoint Microsoft Corporation 2007 Microsoft Office system 12.0.6600.1000
[App Paths] :HKLM PowerShell.exe=%SystemRoot%\system32\WindowsPowerShell\v1.0\PowerShell.exe
### PowerShell.exe
[App Paths] :HKLM PYVOOBE.exe=C:\Program Files (x86)\Sony\Prepare Your VAIO\PYVOOBE.exe
### PYVOOBE.exe Prepare Your VAIO Sony Corporation Prepare Your VAIO 6.1.0.03100
[App Paths] :HKLM QuickTimePlayer.exe=C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
### QuickTimePlayer.exe QuickTime Player Apple Inc. QuickTime QuickTime 7.7.7 (1680.95.51)
[App Paths] :HKLM Restore.exe=C:\Program Files (x86)\Sony\VAIO Data Restore Tool\Restore.exe
### Restore.exe Restore Data Sony Corporation VAIO Data Restore Tool 1.6.0.13140
[App Paths] :HKLM revouninstaller.exe=C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\revouninstaller.exe
### revouninstaller.exe Revo Uninstaller VS Revo Group Revo Uninstaller 1, 9, 5, 0
[App Paths] :HKLM sbase.exe=C:\Program Files (x86)\OpenOffice 4\program\sbase.exe
### sbase.exe OpenOffice Base Apache Software Foundation 4.00.9774
[App Paths] :HKLM scalc.exe=C:\Program Files (x86)\OpenOffice 4\program\scalc.exe
### scalc.exe OpenOffice Calc Apache Software Foundation 4.00.9774
[App Paths] :HKLM SCANUTILITY.exe=C:\Program Files (x86)\Canon\IJ Scan Utility\SCANUTILITY.exe
### SCANUTILITY.exe Canon IJ Scan Utility CANON INC. Canon IJ Scan Utility 1.1.2.1
[App Paths] :HKLM sdraw.exe=C:\Program Files (x86)\OpenOffice 4\program\sdraw.exe
### sdraw.exe OpenOffice Draw Apache Software Foundation 4.00.9774
[App Paths] :HKLM SetShotcut.exe=C:\Program Files (x86)\Sony\VAIO Easy Connect\SetShotcut.exe
### SetShotcut.exe InstallerHelper Sony Corporation VAIO Easy Connect 1.1.0.10130
[App Paths] :HKLM setup.exe
### setup.exe
[App Paths] :HKLM sidebar.exe="%ProgramFiles%\Windows Sidebar\sidebar.exe"
### sidebar.exe
[App Paths] :HKLM simpress.exe=C:\Program Files (x86)\OpenOffice 4\program\simpress.exe
### simpress.exe OpenOffice Impress Apache Software Foundation 4.00.9774
[App Paths] :HKLM smath.exe=C:\Program Files (x86)\OpenOffice 4\program\smath.exe
### smath.exe OpenOffice Math Apache Software Foundation 4.00.9774
[App Paths] :HKLM SnippingTool.exe=%SystemRoot%\system32\SnippingTool.exe
### SnippingTool.exe
[App Paths] :HKLM soffice.exe=C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
### soffice.exe OpenOffice 4.1.1 Apache Software Foundation 4.00.9774
[App Paths] :HKLM swriter.exe=C:\Program Files (x86)\OpenOffice 4\program\swriter.exe
### swriter.exe OpenOffice Writer Apache Software Foundation 4.00.9774
[App Paths] :HKLM table30.exe
### table30.exe
[App Paths] :HKLM TabTip.exe=%CommonProgramFiles%\microsoft shared\ink\TabTip.exe
### TabTip.exe
[App Paths] :HKLM unopkg.exe=C:\Program Files (x86)\OpenOffice 4\program\unopkg.exe
### unopkg.exe
[App Paths] :HKLM vgc.exe=C:\Program Files (x86)\Sony\VAIO Easy Connect\vgc.exe
### vgc.exe Connexion simple VAIO Sony Corporation Connexion simple VAIO 1.1.0.10240
[App Paths] :HKLM VRLP.exe=C:\VAIO Sample Contents\
### VRLP.exe
[App Paths] :HKLM VRP.exe=C:\Program Files (x86)\Sony\Remote Play with PlayStation 3\VRP.exe
### VRP.exe Remote Play with PlayStation®3 Sony Corporation Remote Play with PlayStation®3 1.1.0.15070
[App Paths] :HKLM wab.exe=%ProgramFiles%\Windows Mail\wab.exe
### wab.exe
[App Paths] :HKLM wabmig.exe=%ProgramFiles%\Windows Mail\wabmig.exe
### wabmig.exe
[App Paths] :HKLM WindowsLivePhotoViewer.exe=C:\Program Files (x86)\Windows Live\Photo Gallery\WindowsLivePhotoViewer.exe
### WindowsLivePhotoViewer.exe Windows Live Album Viewer Microsoft Corporation Windows Live? Photo Gallery 15.4.3508.1109
[App Paths] :HKLM WindowsLiveWriter.exe=C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe
### WindowsLiveWriter.exe Windows Live Writer Microsoft Corp. Windows Live Writer 15.4.3508.1109
[App Paths] :HKLM WINPROJ.EXE=C:\PROGRA~2\MICROS~4\Office12\WINPROJ.EXE
### WINPROJ.EXE Microsoft Office Project Microsoft Corporation 2007 Microsoft Office system 12.0.6607.1000
[App Paths] :HKLM WinRAR.exe=C:\Program Files (x86)\WinRAR\WinRAR.exe
### WinRAR.exe WinRAR archiver Alexander Roshal WinRAR 4.20.0
[App Paths] :HKLM Winword.exe=C:\PROGRA~2\MICROS~4\Office12\WINWORD.EXE
### Winword.exe Microsoft Office Word Microsoft Corporation 2007 Microsoft Office system 12.0.6727.5000
[App Paths] :HKLM wlarp.exe=C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
### wlarp.exe Windows Live Installer Microsoft Corporation Windows Live 15.4.3508.1109
[App Paths] :HKLM wlmail.exe=C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
### wlmail.exe Windows Live Mail Microsoft Corporation Windows Live Mail 15.4.3508.1109
[App Paths] :HKLM wlsettings.exe=C:\Program Files (x86)\Windows Live\Installer\wlsettings.exe
### wlsettings.exe Windows Live Settings Microsoft Corporation Windows Live 15.4.3508.1109
[App Paths] :HKLM wlstartup.exe=C:\Program Files (x86)\Windows Live\Installer\wlstartup.exe
### wlstartup.exe Windows Live Essentials Microsoft Corporation Windows Live 15.4.3508.1109
[App Paths] :HKLM WLSync.exe=C:\Program Files (x86)\Windows Live\Mesh\WLSync.exe
### WLSync.exe Windows Live Mesh Microsoft Corporation Windows Live Mesh 15.4.3502.0922
[App Paths] :HKLM WLXAlbumDownloadWizard.exe=C:\Program Files (x86)\Windows Live\Photo Gallery\WLXAlbumDownloadWizard.exe
### WLXAlbumDownloadWizard.exe Windows Live Photo Download Wizard Microsoft Corporation Windows Live Photo Gallery 15.4.3508.1109
[App Paths] :HKLM WLXPhotoGallery.exe=C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
### WLXPhotoGallery.exe Windows Live Photo Gallery Microsoft Corporation Windows Live? Photo Gallery 15.4.3508.1109
[App Paths] :HKLM wmplayer.exe=%ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
### wmplayer.exe
[App Paths] :HKLM WORDPAD.EXE=C:\PROGRAM FILES (X86)\WINDOWS NT\ACCESSORIES\WORDPAD.EXE
### WORDPAD.EXE Application Windows Wordpad Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 "%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"
[App Paths] :HKLM WRITE.EXE="%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"
### WRITE.EXE
[Kernel Auto Boot]
[ActiveSetup] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95}=C:\WINDOWS\SYSTEM32\UNREGMP2.EXE
### Utilitaire d'installation du Lecteur Windows Media de Microsoft Microsoft Corporation Système d'exploitation Microsoft® Windows® 12.0.7600.16385 %SystemRoot%\system32\unregmp2.exe /ShowWMP
[Auto Services] AdobeARMservice
### Internal Name: AdobeARMservice. Status: service is running. Actual File: "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" * Adobe Acrobat Updater keeps your Adobe software up to date. Adobe Acrobat Update Service Adobe Systems Incorporated Adobe Acrobat Update Service 1.824.14.7215
[Auto Services] AdobeUpdateService
### Internal Name: AdobeUpdateService. Status: service is running. Actual File: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe * Adobe Update Service Adobe Systems Incorporated Adobe Update Service 3.2.0.127
[Auto Services] Apple Mobile Device Service
### Internal Name: Apple Mobile Device Service. Status: service is running. Actual File: "C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" * Provides the interface to Apple mobile devices. MobileDeviceService Apple Inc. 3.3.0.0
[Auto Services] Atheros Bt&Wlan Coex Agent
### Internal Name: Atheros Bt&Wlan Coex Agent. Status: service is running. Actual File: C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe * Co-existence Coordinator Service between 11a/b/g/n Wireless LAN and Bluetooth. Atheros Coex Service Application Atheros Ath_Coex Application 8.0.0.195
[Auto Services] AtherosSvc
### Internal Name: AtherosSvc. Status: service is running. Actual File: C:\Program Files (x86)\Bluetooth Suite\adminservice.exe * Atheros BT Stack Service Agent AdminService Application Atheros Commnucations Bluetooth Software 7.3.0.100
[Auto Services] AudioEndpointBuilder
### Internal Name: AudioEndpointBuilder. Status: service is running. Actual File: C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted * Gère les périphériques audio pour le service Audio Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. S'il est désactivé, les services qui en dépendent explicitement ne démarreront pas Processus hôte pour les services Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385
[Auto Services] AudioSrv
### Internal Name: AudioSrv. Status: service is running. Actual File: C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted * Gère les périphériques audio pour les programmes compatibles Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. S'il est désactivé, les services qui en dépendent explicitement ne démarreront pas Processus hôte pour les services Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385
[Auto Services] AVGIDSAgent
### Internal Name: AVGIDSAgent. Status: service is running. Actual File: "C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe" * Provides Identity Protection Against Cyber Crime. AVG Identity Protection Service AVG Technologies CZ, s.r.o. AVG Internet Security 15.0.0.6086
[Auto Services] avgwd
### Internal Name: avgwd. Status: service is running. Actual File: "C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe" * AVG Watchdog Service AVG Watchdog Service AVG Technologies CZ, s.r.o. AVG Internet Security 15.0.0.6086
[Auto Services] BFE
### Internal Name: BFE. Status: service is running. Actual File: C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork * Le moteur de filtrage de base est un service qui gère les stratégies de pare-feu et de sécurité IP (IPsec), et qui implémente le filtrage en mode utilisateur. L'arrêt ou la désactivation du service Moteur de filtrage de base diminue significativement la sécurité du système et aboutit également à un fonctionnement imprévisible des applications de gestion et de pare-feu IPsec. Processus hôte pour les services Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385
[Auto Services] BITS
### Internal Name: BITS. Status: service is running. Actual File: C:\Windows\System32\svchost.exe -k netsvcs * Transfère des fichiers en arrière-plan en utilisant la bande passante réseau inactive. Si le service est désactivé, toutes les applications dépendant du service de transfert intelligent d'arrière-plan, telles que Windows Update ou MSN Explorer, ne pourront plus télécharger des programmes ni d'autres informations. Processus hôte pour les services Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385
[Auto Services] Bonjour Service
### Internal Name: Bonjour Service. Status: service is running. Actual File: "C:\Program Files\Bonjour\mDNSResponder.exe" * Permet aux périphériques matériels et aux services logiciels de se configurer automatiquement sur le réseau et de se rendre publics. Bonjour Service Apple Inc. Bonjour 3,0,0,10
[Auto Services] clr_optimization_v4.0.30319_32
### Internal Name: clr_optimization_v4.0.30319_32. Status: service stopped. Actual File: C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe * Microsoft .NET Framework NGEN .NET Runtime Optimization Service Microsoft Corporation Microsoft® .NET Framework 4.0.30319.34209
[Auto Services] clr_optimization_v4.0.30319_64
### Internal Name: clr_optimization_v4.0.30319_64. Status: service stopped. Actual File: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe * Microsoft .NET Framework NGEN .NET Runtime Optimization Service Microsoft Corporation Microsoft® .NET Framework 4.0.30319.34209
[Auto Services] CryptSvc
### Internal Name: CryptSvc. Status: service is running. Actual File: C:\Windows\system32\svchost.exe -k NetworkService * Fournit quatre services de gestion : le service
SpyHolesList Version:11.1 Build:7.77.0.177-64b
03.09.2015 12:50:45
WinDir=C:\Windows
Startup=C:\Users\Amy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Common Startup=C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Windows 7 Home Premium (6.1.7601)
Internet Explorer 9.11.9600.17959
[Internet Explorer]
[Default Home Page] :HKLM Default_Page_URL=http://www.google.com
[Current Home Page] :HKCU Start Page=https://mysearch.avg.com/?cid={74E958B7-751D-41B9-AFD2-90D68D42144A}&mid=c5c5f8b8fc0f47cda97aa9cd7a12df4c-c52d453d5340061942dddac9da5d5e008224e32a&lang=en&ds=AVG&coid=avgtbavg&cmpid=0715av&pr=fr&d=2015-07-20 00:02:05&v=4.1.4.948&pid=wtu&sg=&sap=hp
[Current Home Page] :HKCU HOMEOldSP=""
[Current Home Page] :HKCU Default_Page_URL=http://www.google.com
[Current Home Page] :HKLM Start Page=about:blank
[Current Home Page] :HKLM HOMEOldSP=""
[All Users Search] :HKLM Default_Search_URL=http://www.google.com
[All Users Search] :HKLM Search Page=http://www.google.com
[Current Users Search] :HKCU Default_Search_URL=""
[Current Users Search] :HKCU Search Page=http://go.microsoft.com/fwlink/?LinkId=54896
[Current Users Search] :HKCU Search Bar=""
[IE Local Blank Page] :HKCU Local Page=C:\Windows\system32\blank.htm
[IE Local Blank Page] :HKLM Local Page=C:\Windows\SysWOW64\blank.htm
[Browser Helper Objects] {3785D0AD-BFFF-47F6-BF5B-A587C162FED9}=C:\PROGRAM FILES (X86)\CANON\EASY-WEBPRINT EX\EWPEXBHO.DLL
### Easy-WebPrint EX CANON INC. Easy-WebPrint EX 1.6.0.0
[Browser Helper Objects] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\PROGRAM FILES (X86)\JAVA\JRE1.8.0_60\BIN\SSV.DLL
### Java(TM) Platform SE binary Oracle Corporation Java(TM) Platform SE 8 U60 8.0.600.27
[Browser Helper Objects] {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}=C:\PROGRAM FILES (X86)\BLUETOOTH SUITE\IEPLUGIN.DLL
### Bluetooth IE PlugIn Atheros Commnucations Bluetooth Software 7.3.0.100
[Browser Helper Objects] {9030D464-4C02-4ABF-8ECC-5164760863C6}=C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WINDOWSLIVELOGIN.DLL
### Microsoft® Windows Live ID Login Helper Microsoft Corp. Microsoft® CoReXT 7.250.4225.0
[Browser Helper Objects] {DBC80044-A445-435b-BC74-9C25C1C588A9}=C:\PROGRAM FILES (X86)\JAVA\JRE1.8.0_60\BIN\JP2SSV.DLL
### Java(TM) Platform SE binary Oracle Corporation Java(TM) Platform SE 8 U60 8.0.600.27
[Browser Helper Objects(x64)] {3785D0AD-BFFF-47F6-BF5B-A587C162FED9}=C:\PROGRAM FILES\CANON\EASY-WEBPRINT EX\EWPEXBHO.DLL
### Easy-WebPrint EX CANON INC. Easy-WebPrint EX 1.6.0.0
[Browser Helper Objects(x64)] {9030D464-4C02-4ABF-8ECC-5164760863C6}=C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WINDOWSLIVELOGIN.DLL
### Microsoft® Windows Live ID Login Helper Microsoft Corp. Microsoft® CoReXT 7.250.4225.0
[Auto Search URL] :HKCU provider=""
[Auto Search URL] :HKCU "Default Value"=""
[Search Assistant] :HKCU SearchAssistant=""
[Search Assistant] :HKLM SearchAssistant=""
[Search Assistant] :HKCU CustomizeSearch=""
[Search Assistant] :HKLM CustomizeSearch=""
[Search Provider] {123DB893-8373-4BC1-A054-8A3633C75AB6}=https://au.search.yahoo.com/search?fr=sp_tr_ie&ei=utf-8&ilc=12&type=711278&p={searchTerms}
### Yahoo
[Search Provider] {730A673A-083B-4D3A-B898-F7523A00B6C7}=http://services.zinio.com/search?s={searchTerms}&rf=sonyslices
### Zinio
[Search Provider] {D99FC9BF-59F7-4795-A989-36EDFD74AFE1}=http://rover.ebay.com/rover/1/709-42536-16445-33/4?mpre=http://shop.ebay.fr/?oemInLn=ieSrch-Q311&_nkw={searchTerms}
### eBay
[Search Provider] DefaultScope={123DB893-8373-4BC1-A054-8A3633C75AB6}
[Search Provider for All Users] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
### Bing
[Search Provider for All Users] DefaultScope=""
[Search Provider for All Users(x64)] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}=http://www.bing.com/search?q={searchTerms}&form=SNYEDF&pc=MASE&src=IE-SearchBox
### Bing
[Search Provider for All Users(x64)] DefaultScope={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[Search Provider(x64)] {123DB893-8373-4BC1-A054-8A3633C75AB6}=https://au.search.yahoo.com/search?fr=sp_tr_ie&ei=utf-8&ilc=12&type=711278&p={searchTerms}
### Yahoo
[Search Provider(x64)] {730A673A-083B-4D3A-B898-F7523A00B6C7}=http://services.zinio.com/search?s={searchTerms}&rf=sonyslices
### Zinio
[Search Provider(x64)] {D99FC9BF-59F7-4795-A989-36EDFD74AFE1}=http://rover.ebay.com/rover/1/709-42536-16445-33/4?mpre=http://shop.ebay.fr/?oemInLn=ieSrch-Q311&_nkw={searchTerms}
### eBay
[Search Provider(x64)] DefaultScope={123DB893-8373-4BC1-A054-8A3633C75AB6}
[CustomizeSearch] :HKLM CustomizeSearch=""
[URLSearchHook] :HKCU {CFBFAE00-17A6-11D0-99CB-00C04FD64497}=C:\WINDOWS\SYSWOW64\IEFRAME.DLL
### Navigateur Internet Microsoft Corporation Internet Explorer 11.00.9600.17631
[Search URL Template] :HKLM 1=""
[Search URL Template] :HKLM 2=""
[Search URL Template] :HKLM 3=""
[Search URL Template] :HKLM 4=""
[Default Prefix] :HKLM "Default Value"=http://
[URL Default Prefixes] :HKLM ftp=ftp://
[URL Default Prefixes] :HKLM gopher=gopher://
[URL Default Prefixes] :HKLM home=http://
[URL Default Prefixes] :HKLM mosaic=http://
[URL Default Prefixes] :HKLM www=http://
[AboutURLs] :HKLM blank=res://mshtml.dll/blank.htm
[AboutURLs] :HKLM NoAdd-onsInfo=res://ieframe.dll/noaddoninfo.htm
[AboutURLs] :HKLM InPrivate=res://ieframe.dll/inprivate_win7.htm
[AboutURLs] :HKLM NavigationFailure=res://ieframe.dll/navcancl.htm
[AboutURLs] :HKLM NoAdd-ons=res://ieframe.dll/noaddon.htm
[AboutURLs] :HKLM Home=270
[AboutURLs] :HKLM PostNotCached=res://ieframe.dll/repost.htm
[AboutURLs] :HKLM DesktopItemNavigationFailure=res://ieframe.dll/navcancl.htm
[AboutURLs] :HKLM NavigationCanceled=res://ieframe.dll/navcancl.htm
[AboutURLs] :HKLM SecurityRisk=res://ieframe.dll/securityatrisk.htm
[AboutURLs] :HKLM Tabs=res://ieframe.dll/tabswelcome.htm
[User Style Sheet] :HKCU User Stylesheet=""
[User Style Sheet] :HKCU Use My Stylesheet=0
[Execute unsigned ActiveX in My Computer Zone] :HKCU 1201=0
[Execute unsigned ActiveX in My Computer Zone] :HKLM 1201=1
[Execute unsigned ActiveX in Local Intranet Zone] :HKCU 1201=0
[Execute unsigned ActiveX in Local Intranet Zone] :HKLM 1201=3
[Execute unsigned ActiveX in Internet Zone] :HKCU 1201=3
[Execute unsigned ActiveX in Internet Zone] :HKLM 1201=3
[Links Toolbar] :HKCU LinksFolderName=""
[Toolbars] :HKLM {759D9886-0C6F-4498-BAB6-4A5F47C6C72F}=C:\PROGRAM FILES (X86)\CANON\EASY-WEBPRINT EX\EWPEXHLP.DLL
### Easy-WebPrint EX CANON INC. Easy-WebPrint EX 1.6.0.0
[Toolbars(x64)] :HKLM {759D9886-0C6F-4498-BAB6-4A5F47C6C72F}=C:\PROGRAM FILES\CANON\EASY-WEBPRINT EX\EWPEXHLP.DLL
### Easy-WebPrint EX CANON INC. Easy-WebPrint EX 1.6.0.0
[IE Extensions - All Users] :HKLM {219C3416-8CB2-491a-A3C7-D9FCDDC9D600}=&Ajout Direct dans Windows Live Writer
### File is deleted or hidden by a rootkit or could not be located.
[IE Extensions - All Users] :HKLM {7815BE26-237D-41A8-A98F-F7BD75F71086}
### File is deleted or hidden by a rootkit or could not be located.
[IE Extensions - All Users] :HKLM {92780B25-18CC-41C8-B9BE-3C9C571A8263}=C:\PROGRA~2\MICROS~4\OFFICE12\REFIEBAR.DLL
### Allows you to use the Research Library and its collection of information services from Microsoft Internet Explorer Microsoft Corporation Research Library Explorer Bar 12.0.6606.1000
[Context menu items] :HKCU E&xporter vers Microsoft Excel=res://C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE/3000
### File is deleted or hidden by a rootkit or could not be located.
[AutoConfigURL] :HKCU AutoConfigURL=""
[Protocols Filter] :HKLM application/octet-stream=C:\Windows\system32\MSCOREE.DLL
### Microsoft .NET Runtime Execution Engine Microsoft Corporation Microsoft® .NET Framework 4.0.40305.0 mscoree.dll
[Protocols Filter] :HKLM application/x-complus=C:\Windows\system32\MSCOREE.DLL
### Microsoft .NET Runtime Execution Engine Microsoft Corporation Microsoft® .NET Framework 4.0.40305.0 mscoree.dll
[Protocols Filter] :HKLM application/x-msdownload=C:\Windows\system32\MSCOREE.DLL
### Microsoft .NET Runtime Execution Engine Microsoft Corporation Microsoft® .NET Framework 4.0.40305.0 mscoree.dll
[Protocols Filter] :HKLM text/xml=C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
### Microsoft Office XML MIME Filter Microsoft Corporation Microsoft Office InfoPath 12.0.6500.5000
[Protocols Handler] :HKLM about=C:\WINDOWS\SYSWOW64\MSHTML.DLL
### Visionneuse HTML Microsoft (R) Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM cdl=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM dvd=C:\WINDOWS\SYSWOW64\MSVIDCTL.DLL
### Contrôle ActiveX pour le flux vidéo Microsoft Corporation DirectShow 6.05.7600.16385
[Protocols Handler] :HKLM file=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM ftp=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM http=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM https=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM its=C:\WINDOWS\SYSTEM32\ITSS.DLL
### Microsoft® InfoTech Storage System Library Microsoft Corporation Microsoft® Windows® Operating System 6.1.7600.16385 %SystemRoot%\System32\itss.dll
[Protocols Handler] :HKLM javascript=C:\WINDOWS\SYSWOW64\MSHTML.DLL
### Visionneuse HTML Microsoft (R) Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM livecall=C:\PROGRAM FILES (X86)\WINDOWS LIVE\MESSENGER\MSGRAPP.DLL
### Windows Live Messenger Protocol Handler Module Microsoft Corporation Windows Live Messenger Protocol Handler Module 15.4.3508.1109
[Protocols Handler] :HKLM local=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM mailto=C:\WINDOWS\SYSWOW64\MSHTML.DLL
### Visionneuse HTML Microsoft (R) Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM mhtml=C:\WINDOWS\SYSTEM32\INETCOMM.DLL
### Microsoft Internet Messaging API Resources Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.17609 %SystemRoot%\system32\inetcomm.dll
[Protocols Handler] :HKLM mk=C:\WINDOWS\SYSWOW64\URLMON.DLL
### Extensions OLE32 pour Win32 Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM ms-help=C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\HELP\HXDS.DLL
### Microsoft® Help Data Services Module Microsoft Corporation Microsoft ® Help 2.7 5.70.51021.0
[Protocols Handler] :HKLM ms-its=C:\WINDOWS\SYSTEM32\ITSS.DLL
### Microsoft® InfoTech Storage System Library Microsoft Corporation Microsoft® Windows® Operating System 6.1.7600.16385 %SystemRoot%\System32\itss.dll
[Protocols Handler] :HKLM msnim=C:\PROGRAM FILES (X86)\WINDOWS LIVE\MESSENGER\MSGRAPP.DLL
### Windows Live Messenger Protocol Handler Module Microsoft Corporation Windows Live Messenger Protocol Handler Module 15.4.3508.1109
[Protocols Handler] :HKLM res=C:\WINDOWS\SYSWOW64\MSHTML.DLL
### Visionneuse HTML Microsoft (R) Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM skype4com=C:\PROGRA~2\COMMON~1\SKYPE\SKYPE4~1.DLL
### Skype4COM Skype Technologies Skype 6.16
[Protocols Handler] :HKLM tv=C:\WINDOWS\SYSWOW64\MSVIDCTL.DLL
### Contrôle ActiveX pour le flux vidéo Microsoft Corporation DirectShow 6.05.7600.16385
[Protocols Handler] :HKLM vbscript=C:\WINDOWS\SYSWOW64\MSHTML.DLL
### Visionneuse HTML Microsoft (R) Microsoft Corporation Internet Explorer 11.00.9600.17631
[Protocols Handler] :HKLM wlmailhtml=C:\PROGRAM FILES (X86)\WINDOWS LIVE\MAIL\MAILCOMM.DLL
### Windows Live Mail Microsoft Corporation Windows Live Mail 15.4.3508.1109
[Protocols Handler] :HKLM wlpg=C:\PROGRAM FILES (X86)\WINDOWS LIVE\PHOTO GALLERY\ALBUMDOWNLOADPROTOCOLHANDLER.DLL
### Windows Live Album Download Protocol Handler Microsoft Corporation Windows Live? Photo Gallery 15.4.3508.1109
[Proxy] :HKCU ProxyServer=""
[Proxy] :HKCU ProxyEnable=0
[Network Settings]
[Hosts File Path] :HKLM DataBasePath=%SystemRoot%\System32\drivers\etc
[Hosts File Contents] :HKLM 54.225.95.126 ajakpekbmnkgnjbpajgkdhimcbeoocam
[Browsers]
[Installed Browsers] FIREFOX.EXE=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE
### Default Browser
Firefox Mozilla Corporation Firefox 40.0.3
[Installed Browsers] Google Chrome=C:\PROGRAM FILES (X86)\GOOGLE\CHROME\APPLICATION\CHROME.EXE
### Google Chrome Google Inc. Google Chrome 45.0.2454.85
[Installed Browsers] IEXPLORE.EXE=C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE
### Internet Explorer Microsoft Corporation Internet Explorer 11.00.9600.16428
[FireFox Components and Extensions] nsIQTScriptablePlugin.xpt=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsIQTScriptablePlugin.xpt
[FireFox Components and Extensions] nsIZylomPlugin.xpt=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsIZylomPlugin.xpt
[FireFox Components and Extensions] Scriptff.dll=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS\SCRIPTFF.DLL
### VSCore Script Scanner McAfee, Inc. VSCORE
[FireFox Components and Extensions] {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}=C:\Users\Amy\AppData\Roaming\Mozilla\Firefox\Profiles\h0mns4o1.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
### {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} Adblock Plus https://adblockplus.org/fr/
[FireFox Components and Extensions] {e001c731-5e37-4538-a5cb-8168736a2360}=C:\Users\Amy\AppData\Roaming\Mozilla\Firefox\Profiles\h0mns4o1.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\
### {e001c731-5e37-4538-a5cb-8168736a2360} BitDefender QuickScan Files button.js button.xul window.xul npqscan.dll https://www.bitdefender.com/toolbox/
[FireFox Settings] :HKLM browser.startup.homepage=www.google.com.au
[FireFox Settings] :HKLM browser.startup.homepage_override_url=""
[FireFox Settings] :HKLM browser.search.selectedEngine=bing
[FireFox Settings] :HKLM browser.search.selectedEngine,S=""
[FireFox Settings] :HKLM browser.search.defaultEnginename=google default
[FireFox Settings] :HKLM browser.search.defaultEnginename,S=""
[FireFox Settings] :HKLM browser.search.order.1=google
[FireFox Settings] :HKLM browser.search.order.1,S=""
[FireFox Settings] :HKLM browser.search.defaulturl=https://www.google.com/search
[FireFox Settings] :HKLM browser.newtab.url=""
[FireFox Settings] :HKLM keyword.URL=""
[FireFox Settings] :HKLM network.proxy.autoconfig_url=""
[FireFox Settings] :HKLM network.proxy.type=""
[FireFox Settings] :HKLM network.proxy.http=""
[FireFox Settings] :HKLM network.proxy.http_port=""
[Google Chrome Settings] :HKLM backup.homepage=""
[Google Chrome Settings] :HKLM backup.session.urls_to_restore_on_startup=""
[Google Chrome Settings] :HKLM session.startup_urls=""
[Google Chrome Settings] :HKLM default_search_provider.icon_url=""
[Google Chrome Settings] :HKLM default_search_provider.keyword=""
[Google Chrome Settings] :HKLM default_search_provider.name=""
[Google Chrome Settings] :HKLM default_search_provider.search_url=""
[Google Chrome Settings] :HKLM default_search_provider.suggest_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.alternate_urls=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.favicon_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.keyword=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.short_name=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.suggest_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.new_tab_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.instant_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.image_url=""
[Google Chrome Settings] :HKLM homepage=""
[Google Chrome Settings] :HKLM session.urls_to_restore_on_startup=""
[Chrome Protected Settings] search_web_data.url=https://au.search.yahoo.com/search?fr=yo_tr_gc&ei=utf-8&ilc=12&type=711278&p={searchTerms}
[Chrome Protected Settings] search_web_data.created_by_policy=0
[Chrome Protected Settings] search_web_data.suggest_url=https://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms}
[Chrome Protected Settings] default_search_provider_data.template_url_data.alternate_urls=[]
[Chrome Protected Settings] default_search_provider_data.template_url_data.favicon_url=http://www.yahoo.com/favicon.ico
[Chrome Protected Settings] default_search_provider_data.template_url_data.suggestions_url=https://ff.search.yahoo.com/gossip?output=fxjson&command={searchTerms}
[Chrome Protected Settings] default_search_provider_data.template_url_data.url=https://au.search.yahoo.com/search?fr=yo_tr_gc&ei=utf-8&ilc=12&type=711278&p={searchTerms}
[Chrome Protected Settings] default_search_provider_data.template_url_data.keyword=yahoo.com search
[Chrome Protected Settings] default_search_provider_data.template_url_data.short_name=Yahoo
[Google Chrome Default Search Provider] Default Search=Google
[Google Chrome Addons] pjkljhegncpnkpknbcohdijeoejaedia=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\8.1_0
### Gmail: Profitez d'une messagerie rapide, avec moins de spam et dotée d'une fonction de recherche. update_url: http://clients2.google.com/service/update2/crx
[Google Chrome Addons] coobgpohoikkiipiblmjeljniedjpjpf=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.30_0
### Recherche Google: La recherche sur le Web à vitesse grand V update_url: http://clients2.google.com/service/update2/crx
[Google Chrome Addons] nbpagnldghgfoolbancepceaanlmhfmd=C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\resources\hotword
### Hotword triggering:
[Google Chrome Addons] aohghmighlieiainnegkcijnfilokake=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.9_0
### Google Docs: Créez et modifiez des documents update_url: https://clients2.google.com/service/update2/crx
[Google Chrome Addons] kmendfapggjehodndflmmgagdbamhnfd=C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\resources\cryptotoken
### CryptoTokenExtension: CryptoToken Component Extension
[Google Chrome Addons] mhjfbmdgcfjbbpaeojofohoefgiehjai=C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\resources\pdf
### Chrome PDF Viewer:
[Google Chrome Addons] apdfllckaahabafndbhieahigkjlhalf=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.4_0
### Google Drive: Google Drive : votre nouvel espace pour créer, stocker et partager update_url: https://clients2.google.com/service/update2/crx
[Google Chrome Addons] dnhpdliibojhegemfjheidglijccjfmc=C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.65\resources\hotword_helper
### hotword helper:
[Google Chrome Addons] nmmhkkegccagdldgiimedpiccmgmieda=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.1.0.0_0
### Google Wallet: Google Wallet pour le contenu numérique update_url: https://clients2.google.com/service/update2/crx
[Google Chrome Addons] lccekmodgklaepjeofjdjpbminllajkg=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.2_0
### Chrome Hotword Shared Module: Support files for Chrome Hotwording. update_url: https://clients2.google.com/service/update2/crx
[Google Chrome Addons] blpcfgokakmgnkcojhhkbfbldkacnbeo=C:\Users\Amy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.7_0
### YouTube: La communauté de vidéos en ligne la plus populaire au monde. update_url: http://clients2.google.com/service/update2/crx
[GPO Chrome Policies] :HKLM Software\Policies\Google\Chrome\ExtensionInstallForcelist\1=cghlccabncdbjcmflnckhkkhhiafbcie;http://mediaply.net/mediaplayer/update/updateMediaPlayerV1alpha8396.xml
[GPO Chrome Policies] :HKLM Software\Policies\Google\Chrome\ExtensionInstallWhitelist\1=lpognfiiphffpbhkhhldgijmipkjkhkh
[Network Settings]
[Domain Name] :HKLM Domain=""
[Name Server] {09EED741-5852-4D29-87EE-9722A8AFFC99}=10.200.4.1
### DHCPNameServer:10.200.4.1 DhcpServer:10.200.7.254
[Name Server] {0B595C2C-939B-44DF-8734-DBA2F3BF70F0}=10.0.0.138
### Network Card:Atheros AR9285 Wireless Network Adapter DHCPNameServer:10.0.0.138 DhcpDefaultGateway:10.0.0.138
DhcpServer:10.0.0.138
[WinSock2 Components] NLAapi.dll=C:\WINDOWS\SYSWOW64\NLAAPI.DLL
### Network Location Awareness 2 Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.18685 %SystemRoot%\SYSWOW64\NLAapi.dll
[WinSock2 Components] napinsp.dll=C:\WINDOWS\SYSWOW64\NAPINSP.DLL
### Fournisseur Shim d'affectation de noms de messagerie Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSWOW64\napinsp.dll
[WinSock2 Components] pnrpnsp.dll=C:\WINDOWS\SYSWOW64\PNRPNSP.DLL
### Fournisseur d'espace de noms PNRP Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSWOW64\pnrpnsp.dll
[WinSock2 Components] mswsock.dll=C:\WINDOWS\SYSWOW64\MSWSOCK.DLL
### Fournisseur de service Sockets 2.0 de Microsoft Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSWOW64\mswsock.dll
[WinSock2 Components] winrnr.dll=C:\WINDOWS\SYSWOW64\WINRNR.DLL
### LDAP RnR Provider DLL Microsoft Corporation Microsoft® Windows® Operating System 6.1.7600.16385 %SystemRoot%\SYSWOW64\winrnr.dll
[WinSock2 Components] wshbth.dll=C:\WINDOWS\SYSWOW64\WSHBTH.DLL
### Windows Sockets Helper DLL Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.17514 %SystemRoot%\SYSWOW64\wshbth.dll
[WinSock2 Components] WLIDNSP.DLL=C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WLIDNSP.DLL
### Microsoft® Windows Live ID Namespace Provider Microsoft Corp. Microsoft® CoReXT 7.250.4225.0
[WinSock2 Components] mdnsNSP.dll=C:\PROGRAM FILES (X86)\BONJOUR\MDNSNSP.DLL
### Bonjour Namespace Provider Apple Inc. Bonjour 3,0,0,10
[WinSock2 Components (x64)] NLAapi.dll=C:\WINDOWS\SYSNATIVE\NLAAPI.DLL
### Network Location Awareness 2 Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.17964 %SystemRoot%\SYSNATIVE\NLAapi.dll
[WinSock2 Components (x64)] napinsp.dll=C:\WINDOWS\SYSNATIVE\NAPINSP.DLL
### Fournisseur Shim d'affectation de noms de messagerie Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSNATIVE\napinsp.dll
[WinSock2 Components (x64)] pnrpnsp.dll=C:\WINDOWS\SYSNATIVE\PNRPNSP.DLL
### Fournisseur d'espace de noms PNRP Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSNATIVE\pnrpnsp.dll
[WinSock2 Components (x64)] mswsock.dll=C:\WINDOWS\SYSNATIVE\MSWSOCK.DLL
### Fournisseur de service Sockets 2.0 de Microsoft Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\SYSNATIVE\mswsock.dll
[WinSock2 Components (x64)] winrnr.dll=C:\WINDOWS\SYSNATIVE\WINRNR.DLL
### LDAP RnR Provider DLL Microsoft Corporation Microsoft® Windows® Operating System 6.1.7600.16385 %SystemRoot%\SYSNATIVE\winrnr.dll
[WinSock2 Components (x64)] wshbth.dll=C:\WINDOWS\SYSNATIVE\WSHBTH.DLL
### Windows Sockets Helper DLL Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.17514 %SystemRoot%\SYSNATIVE\wshbth.dll
[WinSock2 Components (x64)] WLIDNSP.DLL=C:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\WINDOWS LIVE\WLIDNSP.DLL
### Microsoft® Windows Live ID Namespace Provider Microsoft Corp. Microsoft® CoReXT 7.250.4225.0
[WinSock2 Components (x64)] mdnsNSP.dll=C:\PROGRAM FILES\BONJOUR\MDNSNSP.DLL
### Bonjour Namespace Provider Apple Inc. Bonjour 3,0,0,10
[Windows Shell]
[Display Scrap's Extensions] :HKLM NeverShowExt=""
[ScreenSaver] :HKCU SCRNSAVE.EXE=C:\WINDOWS\SYSTEM32\BUBBLES.SCR
### Écran de veille Bulles Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385
[System.ini] shell=explorer.exe
[User Shell] :HKCU shell=""
[Internet Shortcuts] :HKLM C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAGIX\Samplitude Music Studio 17\Services et Support\Inscription en ligne.lnk=HTTP://WWW.MAGIX.COM/USER/REGISTER/PRODUCT_REGISTRATION/LOGIN_SCREEN.PHP3?VARPROGRAM=MS17DLX&VARCHARGE=17.0.0.0&VARREGISTER=ONLINEREGISTER&VARLAND=F
### C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\MAGIX\SAMPLI~1\SERVIC~1\INSCRI~1.LNK
[Internet Shortcuts] :HKLM C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reanimator\Update Reanimator.lnk=HTTP://GREATIS.COM/REANIMATOR.INI /R
### C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\REANIM~1\UPDATE~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\A-Series Keyboard.LNK=C:\Program Files (x86)\RdDrv001\RDID0133\Files\RDDP1133.EXE
### C:\Users\Amy\Desktop\A-SERI~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Ableton Live 9 Lite.lnk=C:\ProgramData\Ableton\Live 9 Lite\2\Program\Ableton Live 9 Lite.exe
### C:\Users\Amy\Desktop\ABLETO~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Ableton Live 9 Suite.lnk=C:\ProgramData\Ableton\Live 9 Suite\Program\Ableton Live 9 Suite.exe
### C:\Users\Amy\Desktop\ABLETO~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Amy.lnk=C:\Users\Amy
### C:\Users\Amy\Desktop\Amy.lnk
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Docs à travailler\Cadeau Maman\paint.net.lnk=C:\Program Files (x86)\Paint.NET\PaintDotNet.exe
### C:\Users\Amy\Desktop\DOCSTR~1\CADEAU~1\PAINTN~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Lavasoft\WebCompanion\Web Companion.lnk=C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
### C:\Users\Amy\Desktop\Lavasoft\WEBCOM~1\WEBCOM~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Microsoft Office Word 2007.lnk=C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
### C:\Users\Amy\Desktop\MICROS~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\ARIA Player x64.lnk=C:\Program Files\Garritan\ARIA Player\ARIA Player x64.exe
### C:\Users\Amy\Desktop\MUSICA~1\ARIAPL~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\ARIA Player.lnk=C:\Program Files\Garritan\ARIA Player\ARIA Player.exe
### C:\Users\Amy\Desktop\MUSICA~1\ARIAPL~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\Audacity.lnk=C:\Program Files (x86)\Audacity\audacity.exe
### C:\Users\Amy\Desktop\MUSICA~1\Audacity.lnk
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\AVS\AVSAudioEditor.exe - Good version.lnk=C:\Users\Amy\Desktop\Music apps\AVS\AVS.Audio.Editor.v7.2.1.487-CHAOS\Patch\AVSAudioEditor.exe
### C:\Users\Amy\Desktop\MUSICA~1\AVS\AVSAUD~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\iTunes.lnk=C:\Program Files (x86)\iTunes\iTunes.exe
### C:\Users\Amy\Desktop\MUSICA~1\iTunes.lnk
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\Nero Burning ROM 12.lnk=C:\Windows\Installer\{CF508721-0E1E-4F99-A359-59E4EA8DAEC1}\ARPPRODUCTICON.exe
### C:\Users\Amy\Desktop\MUSICA~1\NEROBU~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\Neuron G2 iMap.lnk=C:\Program Files (x86)\IconGlobal\Neuron G2 iMap\ICON_neuron_.exe
### C:\Users\Amy\Desktop\MUSICA~1\NEURON~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\Samplitude Music Studio 17.lnk=C:\Program Files (x86)\MAGIX\Samplitude_Music_Studio_17\MusicStudio.exe
### C:\Users\Amy\Desktop\MUSICA~1\SAMPLI~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music apps\SmartMusic 9.lnk=C:\Program Files (x86)\SmartMusic 9\SmartMusic.exe
### C:\Users\Amy\Desktop\MUSICA~1\SMARTM~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Music pro\Finale Files\Shortcut to Worksheets & Repertoire\target.lnk=C:\Program Files (x86)\Finale 2014\Music Files\Worksheets & Repertoire
### C:\Users\Amy\Desktop\MUSICP~1\FINALE~1\SHORTC~1\target.lnk
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Adobe Creative Cloud.lnk=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
### C:\Users\Amy\Desktop\RANDOM~1\ADOBEC~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Adobe Photoshop CS6 (64 Bit).lnk=C:\Program Files\Adobe\Adobe Photoshop CS6 (64 Bit)\Photoshop.exe
### C:\Users\Amy\Desktop\RANDOM~1\ADOBEP~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Adobe Reader XI.lnk=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
### C:\Users\Amy\Desktop\RANDOM~1\ADOBER~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\AVG 2015.lnk=C:\Program Files (x86)\AVG\AVG2015\avgui.exe
### C:\Users\Amy\Desktop\RANDOM~1\AVG201~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Canon MG2500 series Manuel à l'écran.lnk=C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe
### C:\Users\Amy\Desktop\RANDOM~1\CANONM~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Canon Quick Menu.lnk=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
### C:\Users\Amy\Desktop\RANDOM~1\CANONQ~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\DAEMON Tools Ultra.lnk=C:\Program Files\DAEMON Tools Ultra\DTLauncher.exe
### C:\Users\Amy\Desktop\RANDOM~1\DAEMON~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\GIMP 2.lnk=C:\Program Files\GIMP 2\bin\gimp-2.8.exe
### C:\Users\Amy\Desktop\RANDOM~1\GIMP2~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Google Chrome.lnk=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
### C:\Users\Amy\Desktop\RANDOM~1\GOOGLE~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Google Earth.lnk=C:\Program Files (x86)\Google\Google Earth\client\googleearth.exe
### C:\Users\Amy\Desktop\RANDOM~1\GOOGLE~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Malwarebytes Anti-Malware.lnk=C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
### C:\Users\Amy\Desktop\RANDOM~1\MALWAR~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Money Plus.lnk=C:\Program Files (x86)\Microsoft Money Plus\MNYCoreFiles\msmoney.exe
### C:\Users\Amy\Desktop\RANDOM~1\MONEYP~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\OpenOffice 4.1.1.lnk=C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
### C:\Users\Amy\Desktop\RANDOM~1\OPENOF~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Panorama Maker 6.lnk=C:\Program Files (x86)\ArcSoft\Panorama Maker 6\PMK.exe
### C:\Users\Amy\Desktop\RANDOM~1\PANORA~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\Sweet Home 3D.lnk=C:\Program Files (x86)\Sweet Home 3D\SweetHome3D.exe
### C:\Users\Amy\Desktop\RANDOM~1\SWEETH~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\ViewNX 2.lnk=C:\Program Files (x86)\Nikon\ViewNX 2\ViewNX 2\ViewNX2.exe
### C:\Users\Amy\Desktop\RANDOM~1\VIEWNX~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\VLC media player.lnk=C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
### C:\Users\Amy\Desktop\RANDOM~1\VLCMED~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Random apps\µTorrent.lnk=C:\Users\Amy\AppData\Roaming\uTorrent\uTorrent.exe
### C:\Users\Amy\Desktop\RANDOM~1\TORREN~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Reanimator.lnk=C:\Program Files (x86)\Greatis\Reanimator\reanimator.exe
### C:\Users\Amy\Desktop\REANIM~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\Desktop\Revo Uninstaller.lnk=C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe
### C:\Users\Amy\Desktop\REVOUN~1.LNK
[User Shortcuts] :HKLM C:\Users\Public\Desktop\CCleaner.lnk=C:\Program Files\CCleaner\CCleaner64.exe
### C:\Users\Public\Desktop\CCleaner.lnk
[User Shortcuts] :HKLM C:\Users\Public\Desktop\Finale 2014.lnk=C:\Program Files (x86)\Finale 2014\Finale.exe
### C:\Users\Public\Desktop\FINALE~1.LNK
[User Shortcuts] :HKLM C:\Users\Public\Desktop\HMA! Pro VPN.lnk=C:\Program Files (x86)\HMA! Pro VPN\bin\HMA! Pro VPN.exe
### C:\Users\Public\Desktop\HMA!PR~1.LNK
[User Shortcuts] :HKLM C:\Users\Public\Desktop\Max 7 (64-bit).lnk=C:\Windows\Installer\{78C2DD68-C853-4E7E-AB38-E46FED1DFF93}\DesktopIcon.exe
### C:\Users\Public\Desktop\MAX7(6~1.LNK
[User Shortcuts] :HKLM C:\Users\Public\Desktop\Mozilla Firefox.lnk=C:\Program Files (x86)\Mozilla Firefox\firefox.exe
### C:\Users\Public\Desktop\MOZILL~1.LNK
[User Shortcuts] :HKLM C:\Users\Public\Desktop\Wondershare Filmora.lnk=C:\Program Files (x86)\Wondershare\Filmora\Filmora.exe
### C:\Users\Public\Desktop\WONDER~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\ARIA Player.lnk=C:\Program Files\Garritan\ARIA Player\ARIA Player.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\ARIAPL~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Finale 2007.lnk=C:\Program Files (x86)\Finale 2007\FINALE.EXE
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\FINALE~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Finale 2012.lnk=C:\Program Files (x86)\Finale 2012\Finale.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\FINALE~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Finale 2014.lnk=C:\Program Files (x86)\Finale 2014\Finale.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\FINALE~3.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\GOOGLE~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk=C:\Program Files (x86)\Internet Explorer\iexplore.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\LAUNCH~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Outlook.lnk=C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\MICROS~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\SHOWSD~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\7e4dca80246863e3\pinned.lnk=C:\Windows\System32\control.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\IMPLIC~1\7E4DCA~1\pinned.lnk
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Microsoft Office Word 2007.lnk=C:\Windows\Installer\{90120000-0011-0000-0000-0000000FF1CE}\wordicon.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\STARTM~1\MICROS~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Samplitude Music Studio 17.lnk=C:\Program Files (x86)\MAGIX\Samplitude_Music_Studio_17\MusicStudio.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\STARTM~1\SAMPLI~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Windows Live Messenger.lnk=C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\STARTM~1\WINDOW~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Windows Live Movie Maker.lnk=C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\STARTM~1\WINDOW~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\TaskBar\GOOGLE~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk=C:\Program Files (x86)\Mozilla Firefox\firefox.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\TaskBar\MOZILL~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk=C:\Program Files (x86)\Windows Media Player\wmplayer.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\USERPI~1\TaskBar\WINDOW~2.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\WINDOW~1.LNK
[User Shortcuts] :HKLM C:\Users\Amy\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk=C:\Users\Amy\AppData\Roaming\uTorrent\uTorrent.exe
### C:\Users\Amy\AppData\Roaming\MICROS~1\INTERN~1\QUICKL~1\TORREN~1.LNK
[Main File Extensions] :HKLM .exe="%1" %*
[Main File Extensions] :HKLM .com="%1" %*
[Main File Extensions] :HKLM .pif="%1" %*
[Main File Extensions] :HKLM .bat="%1" %*
[Main File Extensions] :HKLM .cmd="%1" %*
[Main File Extensions] :HKLM .scr="%1" /S
[Main File Extensions] :HKLM .txt=%SystemRoot%\system32\NOTEPAD.EXE %1
[Main File Extensions] :HKLM .reg=regedit.exe "%1"
[Main File Extensions] :HKLM .inf=%SystemRoot%\system32\NOTEPAD.EXE %1
[Main File Extensions] :HKLM .ini=%SystemRoot%\system32\NOTEPAD.EXE %1
[Main File Extensions] :HKLM .js=%SystemRoot%\System32\WScript.exe "%1" %*
[Main File Extensions] :HKLM .vbs=%SystemRoot%\System32\WScript.exe "%1" %*
[Main File Extensions] :HKLM .vbe=%SystemRoot%\System32\WScript.exe "%1" %*
[Main File Extensions] :HKLM .msc=%SystemRoot%\system32\mmc.exe "%1" %*
[Main File Extensions] :HKLM .jpg=%SystemRoot%\System32\rundll32.exe "%ProgramFiles%\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
[Main File Extensions] :HKLM .jpeg=%SystemRoot%\System32\rundll32.exe "%ProgramFiles%\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
[UserInit Value] :HKLM UserInit=userinit.exe,
[Shell Services DelayLoad] :HKLM WebCheck={E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[System Shell Policies ] :HKCU shell=""
[System Shell Policies ] :HKLM shell=""
[System Shell Policies ] :HKCU run=""
[System Shell Policies ] :HKLM run=""
[Prevents Display in Control Panel from running.] :HKCU NoDispCpl=0
[Disable Registry Tools] :HKCU DisableRegistryTools =0
[Print Monitors] :HKLM Canon BJ Language Monitor MG2500 series=C:\Windows\system32\CNMLMBX.DLL
### IJ Language Monitor CANON INC. Canon IJ Printer Driver 2.70.2.10 CNMLMBX.DLL
[Print Monitors] :HKLM Canon BJ Language Monitor MG2500 series XPS=C:\Windows\system32\CNMXLMBX.DLL
### IJ Language Monitor CANON INC. Canon IJ Printer Driver 5.70.2.10 CNMXLMBX.DLL
[Print Monitors] :HKLM Canon BJ Language Monitor MP270 series=C:\Windows\system32\CNMLM9X.DLL
### IJ Language Monitor CANON INC. Canon IJ Printer Driver 2.33.2.10 CNMLM9X.DLL
[Print Monitors] :HKLM HP 9311 Status Monitor=C:\Windows\system32\HPINKSTS9311LM.DLL
### Print Status Language Monitor Hewlett-Packard Co. HP Digital Imaging 022.050.191.000 hpinksts9311LM.dll
[Print Monitors] :HKLM HP AF11 Status Monitor=C:\Windows\system32\HPINKSTSAF11LM.DLL
### Print Status Language Monitor Hewlett-Packard Co. HP Digital Imaging 028.000.944.000 hpinkstsAF11LM.dll
[Print Monitors] :HKLM HP Discovery Port Monitor (HP Deskjet 3050 J610 series)=C:\Windows\system32\HPDISCOPM9311.DLL
### HP Discovery Port Monitor Hewlett-Packard Co. HP Digital Imaging 022.050.231.000 HPDiscoPM9311.dll
[Print Monitors] :HKLM LIDIL hpzlllhn=C:\Windows\system32\HPZLLLHN.DLL
### LanguageMonitor Hewlett-Packard Company Language Monitor 61.053.25.9 hpzlllhn.dll
[Print Monitors] :HKLM Local Port=C:\Windows\system32\LOCALSPL.DLL
### DLL de spouleur local Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 localspl.dll
[Print Monitors] :HKLM Microsoft Shared Fax Monitor=C:\Windows\system32\FXSMON.DLL
### Microsoft Fax Print Monitor Microsoft Corporation Microsoft® Windows® Operating System 6.1.7601.17514 FXSMON.DLL
[Print Monitors] :HKLM S300-S400 Series Port=C:\Windows\system32\LXEALMPM.DLL
### Printer Communication System Printer Communication System 9.2.33.0 lxealmpm.DLL
[Print Monitors] :HKLM Standard TCP/IP Port=C:\Windows\system32\TCPMON.DLL
### DLL moniteur de port standard TCP/IP Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 tcpmon.dll
[Print Monitors] :HKLM USB Monitor=C:\Windows\system32\USBMON.DLL
### DLL du moniteur de port d'impression dynamique standard Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 usbmon.dll
[Print Monitors] :HKLM WSD Port=C:\Windows\system32\WSDMON.DLL
### Moniteur de port d'imprimante WSD Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 WSDMon.dll
[Shell Icon Overlay Handlers] :HKLM EnhancedStorageShell=C:\WINDOWS\SYSTEM32\EHSTORSHELL.DLL
### DLL d'extension d'environnement de stockage étendu Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\system32\EhStorShell.dll
[Shell Icon Overlay Handlers] :HKLM SharingPrivate=C:\WINDOWS\SYSTEM32\NTSHRUI.DLL
### Extensions de l'interpréteur de commandes pour le partage Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\system32\ntshrui.dll
[Context Menu Handlers] :HKLM AccExt={2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4}
[Context Menu Handlers] :HKLM ANotepad++64={B298D29A-A6ED-11DE-BA8C-A68E55D89593}
[Context Menu Handlers] :HKLM Atheros={B8952421-0E55-400B-94A6-FA858FC0A39F}
[Context Menu Handlers] :HKLM AVG Shell Extension=C:\PROGRAM FILES (X86)\AVG\AVG2015\AVGSE.DLL
### AVG Shell Extension AVG Technologies CZ, s.r.o. AVG Internet Security 15.0.0.6086
[Context Menu Handlers] :HKLM BriefcaseMenu=C:\WINDOWS\SYSTEM32\SYNCUI.DLL
### Porte-documents Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\system32\syncui.dll
[Context Menu Handlers] :HKLM Open With=C:\WINDOWS\SYSTEM32\SHELL32.DLL
### DLL commune du shell Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7601.17514 %SystemRoot%\system32\shell32.dll
[Context Menu Handlers] :HKLM Open With EncryptionMenu=C:\WINDOWS\SYSTEM32\SHELL32.DLL
### DLL commune du shell Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7601.17514 %SystemRoot%\system32\shell32.dll
[Context Menu Handlers] :HKLM PhotoStreamsExt=C:\PROGRAM FILES (X86)\COMMON FILES\APPLE\INTERNET SERVICES\SHELLSTREAMS.DLL
### ShellStreams Apple Inc. iCloud for Windows
[Context Menu Handlers] :HKLM Sharing=C:\WINDOWS\SYSTEM32\NTSHRUI.DLL
### Extensions de l'interpréteur de commandes pour le partage Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 %SystemRoot%\system32\ntshrui.dll
[Context Menu Handlers] :HKLM ShellConverter={30A4E07E-068A-4d91-8F05-691283A1336B}
[Context Menu Handlers] :HKLM WinRAR={B41DB860-64E4-11D2-9906-E49FADC173CA}
[Context Menu Handlers] :HKLM WinRAR32=C:\PROGRAM FILES (X86)\WINRAR\RAREXT.DLL
### WinRAR shell extension Alexander Roshal WinRAR 4.20.0
[Context Menu Handlers] :HKLM {90AA3A4E-1CBA-4233-B8BB-535773D48449}=C:\WINDOWS\SYSTEM32\SHELL32.DLL
### DLL commune du shell Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7601.17514 %SystemRoot%\system32\shell32.dll
[Context Menu Handlers] :HKLM {a2a9545d-a0c2-42b4-9708-a0b2badd77c8}=C:\WINDOWS\SYSTEM32\SHELL32.DLL
### DLL commune du shell Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7601.17514 %SystemRoot%\system32\shell32.dll
[Context Menu Handlers] :HKLM {D2203704-49E1-476F-B118-CFE99115634F}=C:\PROGRAM FILES (X86)\NERO\NERO 11\NERO BACKITUP\NBSHELL.DLL
### Nero BackItUp Nero AG Nero BackItUp 6.0.19.100
[App Paths] :HKLM AcroRd32.exe=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
### AcroRd32.exe Adobe Reader Adobe Systems Incorporated Adobe Reader 11.0.12.18
[App Paths] :HKLM AVGSE.DLL=C:\PROGRA~2\AVG\AVG2015\avgsea.dll
### AVGSE.DLL AVG Shell Extension AVG Technologies CZ, s.r.o. AVG Internet Security 15.0.0.6086
[App Paths] :HKLM BJMYDGN.EXE=C:\Program Files\Canon\MyPrinter\BJMyDgn.exe
### BJMYDGN.EXE Canon My Printer CANON INC. Canon My Printer 3, 2, 1, 0
[App Paths] :HKLM BJMYPRT.EXE=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
### BJMYPRT.EXE Canon My Printer CANON INC. Canon My Printer 3.2.1.0
[App Paths] :HKLM ccleaner.exe=C:\Program Files\CCleaner\CCleaner64.exe
### ccleaner.exe CCleaner Piriform Ltd CCleaner 5, 09, 00, 5343
[App Paths] :HKLM chrome.exe=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
### chrome.exe Google Chrome Google Inc. Google Chrome 45.0.2454.85
[App Paths] :HKLM cmmgr32.exe
### cmmgr32.exe
[App Paths] :HKLM cmview.exe=C:\Program Files (x86)\Canon\IJ Manual\Easy Guide Viewer\cmview.exe
### cmview.exe Easy Guide Viewer CANON INC. Easy Guide Viewer 1.9.0.0
[App Paths] :HKLM cnmigmain.exe=C:\Program Files (x86)\Canon\My Image Garden\cnmigmain.exe
### cnmigmain.exe Canon My Image Garden CANON INC. Canon My Image Garden 3.2.0.0
[App Paths] :HKLM CNMIGTV.DLL=C:\Program Files (x86)\Canon\My Image Garden\AddOn\CNMIGTV.DLL
### CNMIGTV.DLL Canon cnmigtv CANON INC. Canon cnmigtv 3,2,0,0
[App Paths] :HKLM CNQMMAIN.EXE=C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE
### CNQMMAIN.EXE Canon Quick Menu CANON INC. Canon Quick Menu 2.6.0.0
[App Paths] :HKLM CNSEMAIN.EXE=C:\Program Files (x86)\Canon\Quick Menu\CNSEMAIN.EXE
### CNSEMAIN.EXE Canon Solution Menu EX CANON INC. Canon Solution Menu EX 2.6.0.0
[App Paths] :HKLM dvdmaker.exe=%ProgramFiles%\DVD Maker\dvdmaker.exe
### dvdmaker.exe
[App Paths] :HKLM ewpexdl.exe=C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexdl.exe
### ewpexdl.exe Easy-WebPrint EX Downloader Canon.inc Easy-WebPrint EX 1, 3, 0, 0
[App Paths] :HKLM excel.exe=C:\PROGRA~2\MICROS~4\Office12\EXCEL.EXE
### excel.exe Microsoft Office Excel Microsoft Corporation 2007 Microsoft Office system 12.0.6727.5000
[App Paths] :HKLM firefox.exe=C:\Program Files (x86)\Mozilla Firefox\firefox.exe
### firefox.exe Firefox Mozilla Corporation Firefox 40.0.3
[App Paths] :HKLM fsquirt.exe
### fsquirt.exe
[App Paths] :HKLM IEDIAG.EXE=C:\Program Files\Internet Explorer\IEDIAGCMD.EXE
### IEDIAG.EXE Diagnostics utility for Internet Explorer Microsoft Corporation Internet Explorer 11.00.9600.16428
[App Paths] :HKLM IEDIAGCMD.EXE=C:\Program Files\Internet Explorer\IEDIAGCMD.EXE
### IEDIAGCMD.EXE Diagnostics utility for Internet Explorer Microsoft Corporation Internet Explorer 11.00.9600.16428
[App Paths] :HKLM IEXPLORE.EXE=C:\Program Files\Internet Explorer\IEXPLORE.EXE
### IEXPLORE.EXE Internet Explorer Microsoft Corporation Internet Explorer 11.00.9600.16428
[App Paths] :HKLM infopath.exe=C:\PROGRA~2\MICROS~4\Office12\INFOPATH.EXE
### infopath.exe Microsoft Office InfoPath 2007 Microsoft Corporation Microsoft Office InfoPath 12.0.6662.5004
[App Paths] :HKLM install.exe
### install.exe
[App Paths] :HKLM iTunes.exe=C:\Program Files\iTunes\iTunes.exe
### iTunes.exe iTunes Apple Inc. iTunes 12.2.1.16
[App Paths] :HKLM Journal.exe=%ProgramFiles%\Windows Journal\Journal.exe
### Journal.exe
[App Paths] :HKLM LangSelector.exe=C:\Program Files (x86)\Windows Live\Installer\LangSelector.exe
### LangSelector.exe Windows Live Language Selection Microsoft Corporation Windows Live 15.4.3508.1109
[App Paths] :HKLM LogInfo.EXE=C:\Program Files\Canon\MyPrinter\LogInfo.exe
### LogInfo.EXE Canon My Printer CANON INC. Canon My Printer 3, 2, 1, 0
[App Paths] :HKLM LogInfo2.EXE=C:\Program Files\Canon\MyPrinter\LogInfo2.exe
### LogInfo2.EXE Canon MyPrinter CANON INC. Canon MyPrinter 3, 2, 1, 0
[App Paths] :HKLM mbam.exe=C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
### mbam.exe Malwarebytes Anti-Malware Malwarebytes Corporation Malwarebytes Anti-Malware 2.3.55.0
[App Paths] :HKLM mip.exe=%CommonProgramFiles%\Microsoft Shared\Ink\mip.exe
### mip.exe
[App Paths] :HKLM MovieMaker.exe=C:\Program Files (x86)\Windows Live\Photo Gallery\MovieMaker.exe
### MovieMaker.exe Windows Live Movie Maker Microsoft Corporation Windows Live(TM) Movie Maker 15.4.3508.1109
[App Paths] :HKLM moviemk.exe=C:\Program Files (x86)\Movie Maker 2.6\MOVIEMK.exe
### moviemk.exe Windows Movie Maker Microsoft Corporation Windows Movie Maker 2.6.4037.0
[App Paths] :HKLM mplayer2.exe=%ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
### mplayer2.exe
[App Paths] :HKLM MSACCESS.EXE=C:\PROGRA~2\MICROS~4\Office12\MSACCESS.EXE
### MSACCESS.EXE Microsoft Office Access Microsoft Corporation 2007 Microsoft Office system 12.0.6606.1000
[App Paths] :HKLM MSMoney.EXE=C:\Program Files (x86)\Microsoft Money Plus\MNYCoreFiles\MSMoney.exe
### MSMoney.EXE Microsoft Money Microsoft(R) Corporation Microsoft(R) Money 17.00.3817
[App Paths] :HKLM MSNMSGR.EXE=C:\Program Files (x86)\Windows Live\Messenger\MsnMsgr.Exe
### MSNMSGR.EXE Windows Live Messenger Microsoft Corporation Windows Live Messenger 15.4.3508.1109
[App Paths] :HKLM MsoHtmEd.exe
### MsoHtmEd.exe
[App Paths] :HKLM msoxmled.exe=C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSOXMLED.EXE
### msoxmled.exe XML Editor Microsoft Corporation Microsoft Office InfoPath 12.0.4518.1014
[App Paths] :HKLM MSPUB.EXE=C:\PROGRA~2\MICROS~4\Office12\MSPUB.EXE
### MSPUB.EXE Microsoft Office Publisher Microsoft Corporation 2007 Microsoft Office system 12.0.6676.5000
[App Paths] :HKLM notepad++.exe=C:\Program Files (x86)\Notepad++\notepad++.exe
### notepad++.exe Notepad++ : a free (GNU) source code editor Don HO don.h@free.fr Notepad++ 6.8.1
[App Paths] :HKLM ois.exe=C:\PROGRA~2\MICROS~4\Office12\OIS.EXE
### ois.exe Microsoft Office Picture Manager Microsoft Corporation Microsoft Office Picture Manager 12.0.6606.1000
[App Paths] :HKLM OUTLOOK.EXE=C:\PROGRA~2\MICROS~4\Office12\OUTLOOK.EXE
### OUTLOOK.EXE Microsoft Office Outlook Microsoft Corporation Microsoft Office Outlook 12.0.6691.5000
[App Paths] :HKLM pbrush.exe=%SystemRoot%\System32\mspaint.exe
### pbrush.exe
[App Paths] :HKLM Photoshop.exe=C:\Program Files\Adobe\Adobe Photoshop CC 2014\Photoshop.exe
### Photoshop.exe
[App Paths] :HKLM PMBBrowser.exe=C:\Program Files (x86)\Sony\PMB\PMBBrowser.exe
### PMBBrowser.exe Browser Sony Corporation PMB 5.5.00.11260
[App Paths] :HKLM PMBMediaImporter.exe=C:\Program Files (x86)\Sony\PMB\PMBMediaImporter.exe
### PMBMediaImporter.exe Media Importer Sony Corporation PMB 5.5.02.12220
[App Paths] :HKLM PMBMtpDeviceSwitch.exe=C:\Program Files (x86)\Sony\PMB\PMBMtpDeviceSwitch.exe
### PMBMtpDeviceSwitch.exe MtpDeviceSwitch Sony Corporation PMB 5.5.00.11260
[App Paths] :HKLM powerpnt.exe=C:\PROGRA~2\MICROS~4\Office12\POWERPNT.EXE
### powerpnt.exe Microsoft Office PowerPoint Microsoft Corporation 2007 Microsoft Office system 12.0.6600.1000
[App Paths] :HKLM PowerShell.exe=%SystemRoot%\system32\WindowsPowerShell\v1.0\PowerShell.exe
### PowerShell.exe
[App Paths] :HKLM PYVOOBE.exe=C:\Program Files (x86)\Sony\Prepare Your VAIO\PYVOOBE.exe
### PYVOOBE.exe Prepare Your VAIO Sony Corporation Prepare Your VAIO 6.1.0.03100
[App Paths] :HKLM QuickTimePlayer.exe=C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe
### QuickTimePlayer.exe QuickTime Player Apple Inc. QuickTime QuickTime 7.7.7 (1680.95.51)
[App Paths] :HKLM Restore.exe=C:\Program Files (x86)\Sony\VAIO Data Restore Tool\Restore.exe
### Restore.exe Restore Data Sony Corporation VAIO Data Restore Tool 1.6.0.13140
[App Paths] :HKLM revouninstaller.exe=C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\revouninstaller.exe
### revouninstaller.exe Revo Uninstaller VS Revo Group Revo Uninstaller 1, 9, 5, 0
[App Paths] :HKLM sbase.exe=C:\Program Files (x86)\OpenOffice 4\program\sbase.exe
### sbase.exe OpenOffice Base Apache Software Foundation 4.00.9774
[App Paths] :HKLM scalc.exe=C:\Program Files (x86)\OpenOffice 4\program\scalc.exe
### scalc.exe OpenOffice Calc Apache Software Foundation 4.00.9774
[App Paths] :HKLM SCANUTILITY.exe=C:\Program Files (x86)\Canon\IJ Scan Utility\SCANUTILITY.exe
### SCANUTILITY.exe Canon IJ Scan Utility CANON INC. Canon IJ Scan Utility 1.1.2.1
[App Paths] :HKLM sdraw.exe=C:\Program Files (x86)\OpenOffice 4\program\sdraw.exe
### sdraw.exe OpenOffice Draw Apache Software Foundation 4.00.9774
[App Paths] :HKLM SetShotcut.exe=C:\Program Files (x86)\Sony\VAIO Easy Connect\SetShotcut.exe
### SetShotcut.exe InstallerHelper Sony Corporation VAIO Easy Connect 1.1.0.10130
[App Paths] :HKLM setup.exe
### setup.exe
[App Paths] :HKLM sidebar.exe="%ProgramFiles%\Windows Sidebar\sidebar.exe"
### sidebar.exe
[App Paths] :HKLM simpress.exe=C:\Program Files (x86)\OpenOffice 4\program\simpress.exe
### simpress.exe OpenOffice Impress Apache Software Foundation 4.00.9774
[App Paths] :HKLM smath.exe=C:\Program Files (x86)\OpenOffice 4\program\smath.exe
### smath.exe OpenOffice Math Apache Software Foundation 4.00.9774
[App Paths] :HKLM SnippingTool.exe=%SystemRoot%\system32\SnippingTool.exe
### SnippingTool.exe
[App Paths] :HKLM soffice.exe=C:\Program Files (x86)\OpenOffice 4\program\soffice.exe
### soffice.exe OpenOffice 4.1.1 Apache Software Foundation 4.00.9774
[App Paths] :HKLM swriter.exe=C:\Program Files (x86)\OpenOffice 4\program\swriter.exe
### swriter.exe OpenOffice Writer Apache Software Foundation 4.00.9774
[App Paths] :HKLM table30.exe
### table30.exe
[App Paths] :HKLM TabTip.exe=%CommonProgramFiles%\microsoft shared\ink\TabTip.exe
### TabTip.exe
[App Paths] :HKLM unopkg.exe=C:\Program Files (x86)\OpenOffice 4\program\unopkg.exe
### unopkg.exe
[App Paths] :HKLM vgc.exe=C:\Program Files (x86)\Sony\VAIO Easy Connect\vgc.exe
### vgc.exe Connexion simple VAIO Sony Corporation Connexion simple VAIO 1.1.0.10240
[App Paths] :HKLM VRLP.exe=C:\VAIO Sample Contents\
### VRLP.exe
[App Paths] :HKLM VRP.exe=C:\Program Files (x86)\Sony\Remote Play with PlayStation 3\VRP.exe
### VRP.exe Remote Play with PlayStation®3 Sony Corporation Remote Play with PlayStation®3 1.1.0.15070
[App Paths] :HKLM wab.exe=%ProgramFiles%\Windows Mail\wab.exe
### wab.exe
[App Paths] :HKLM wabmig.exe=%ProgramFiles%\Windows Mail\wabmig.exe
### wabmig.exe
[App Paths] :HKLM WindowsLivePhotoViewer.exe=C:\Program Files (x86)\Windows Live\Photo Gallery\WindowsLivePhotoViewer.exe
### WindowsLivePhotoViewer.exe Windows Live Album Viewer Microsoft Corporation Windows Live? Photo Gallery 15.4.3508.1109
[App Paths] :HKLM WindowsLiveWriter.exe=C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriter.exe
### WindowsLiveWriter.exe Windows Live Writer Microsoft Corp. Windows Live Writer 15.4.3508.1109
[App Paths] :HKLM WINPROJ.EXE=C:\PROGRA~2\MICROS~4\Office12\WINPROJ.EXE
### WINPROJ.EXE Microsoft Office Project Microsoft Corporation 2007 Microsoft Office system 12.0.6607.1000
[App Paths] :HKLM WinRAR.exe=C:\Program Files (x86)\WinRAR\WinRAR.exe
### WinRAR.exe WinRAR archiver Alexander Roshal WinRAR 4.20.0
[App Paths] :HKLM Winword.exe=C:\PROGRA~2\MICROS~4\Office12\WINWORD.EXE
### Winword.exe Microsoft Office Word Microsoft Corporation 2007 Microsoft Office system 12.0.6727.5000
[App Paths] :HKLM wlarp.exe=C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
### wlarp.exe Windows Live Installer Microsoft Corporation Windows Live 15.4.3508.1109
[App Paths] :HKLM wlmail.exe=C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
### wlmail.exe Windows Live Mail Microsoft Corporation Windows Live Mail 15.4.3508.1109
[App Paths] :HKLM wlsettings.exe=C:\Program Files (x86)\Windows Live\Installer\wlsettings.exe
### wlsettings.exe Windows Live Settings Microsoft Corporation Windows Live 15.4.3508.1109
[App Paths] :HKLM wlstartup.exe=C:\Program Files (x86)\Windows Live\Installer\wlstartup.exe
### wlstartup.exe Windows Live Essentials Microsoft Corporation Windows Live 15.4.3508.1109
[App Paths] :HKLM WLSync.exe=C:\Program Files (x86)\Windows Live\Mesh\WLSync.exe
### WLSync.exe Windows Live Mesh Microsoft Corporation Windows Live Mesh 15.4.3502.0922
[App Paths] :HKLM WLXAlbumDownloadWizard.exe=C:\Program Files (x86)\Windows Live\Photo Gallery\WLXAlbumDownloadWizard.exe
### WLXAlbumDownloadWizard.exe Windows Live Photo Download Wizard Microsoft Corporation Windows Live Photo Gallery 15.4.3508.1109
[App Paths] :HKLM WLXPhotoGallery.exe=C:\Program Files (x86)\Windows Live\Photo Gallery\WLXPhotoGallery.exe
### WLXPhotoGallery.exe Windows Live Photo Gallery Microsoft Corporation Windows Live? Photo Gallery 15.4.3508.1109
[App Paths] :HKLM wmplayer.exe=%ProgramFiles(x86)%\Windows Media Player\wmplayer.exe
### wmplayer.exe
[App Paths] :HKLM WORDPAD.EXE=C:\PROGRAM FILES (X86)\WINDOWS NT\ACCESSORIES\WORDPAD.EXE
### WORDPAD.EXE Application Windows Wordpad Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385 "%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"
[App Paths] :HKLM WRITE.EXE="%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"
### WRITE.EXE
[Kernel Auto Boot]
[ActiveSetup] >{22d6f312-b0f6-11d0-94ab-0080c74c7e95}=C:\WINDOWS\SYSTEM32\UNREGMP2.EXE
### Utilitaire d'installation du Lecteur Windows Media de Microsoft Microsoft Corporation Système d'exploitation Microsoft® Windows® 12.0.7600.16385 %SystemRoot%\system32\unregmp2.exe /ShowWMP
[Auto Services] AdobeARMservice
### Internal Name: AdobeARMservice. Status: service is running. Actual File: "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" * Adobe Acrobat Updater keeps your Adobe software up to date. Adobe Acrobat Update Service Adobe Systems Incorporated Adobe Acrobat Update Service 1.824.14.7215
[Auto Services] AdobeUpdateService
### Internal Name: AdobeUpdateService. Status: service is running. Actual File: C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe * Adobe Update Service Adobe Systems Incorporated Adobe Update Service 3.2.0.127
[Auto Services] Apple Mobile Device Service
### Internal Name: Apple Mobile Device Service. Status: service is running. Actual File: "C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe" * Provides the interface to Apple mobile devices. MobileDeviceService Apple Inc. 3.3.0.0
[Auto Services] Atheros Bt&Wlan Coex Agent
### Internal Name: Atheros Bt&Wlan Coex Agent. Status: service is running. Actual File: C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe * Co-existence Coordinator Service between 11a/b/g/n Wireless LAN and Bluetooth. Atheros Coex Service Application Atheros Ath_Coex Application 8.0.0.195
[Auto Services] AtherosSvc
### Internal Name: AtherosSvc. Status: service is running. Actual File: C:\Program Files (x86)\Bluetooth Suite\adminservice.exe * Atheros BT Stack Service Agent AdminService Application Atheros Commnucations Bluetooth Software 7.3.0.100
[Auto Services] AudioEndpointBuilder
### Internal Name: AudioEndpointBuilder. Status: service is running. Actual File: C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted * Gère les périphériques audio pour le service Audio Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. S'il est désactivé, les services qui en dépendent explicitement ne démarreront pas Processus hôte pour les services Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385
[Auto Services] AudioSrv
### Internal Name: AudioSrv. Status: service is running. Actual File: C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted * Gère les périphériques audio pour les programmes compatibles Windows. Si ce service est arrêté, les périphériques et les effets audio ne fonctionneront pas correctement. S'il est désactivé, les services qui en dépendent explicitement ne démarreront pas Processus hôte pour les services Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385
[Auto Services] AVGIDSAgent
### Internal Name: AVGIDSAgent. Status: service is running. Actual File: "C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe" * Provides Identity Protection Against Cyber Crime. AVG Identity Protection Service AVG Technologies CZ, s.r.o. AVG Internet Security 15.0.0.6086
[Auto Services] avgwd
### Internal Name: avgwd. Status: service is running. Actual File: "C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe" * AVG Watchdog Service AVG Watchdog Service AVG Technologies CZ, s.r.o. AVG Internet Security 15.0.0.6086
[Auto Services] BFE
### Internal Name: BFE. Status: service is running. Actual File: C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork * Le moteur de filtrage de base est un service qui gère les stratégies de pare-feu et de sécurité IP (IPsec), et qui implémente le filtrage en mode utilisateur. L'arrêt ou la désactivation du service Moteur de filtrage de base diminue significativement la sécurité du système et aboutit également à un fonctionnement imprévisible des applications de gestion et de pare-feu IPsec. Processus hôte pour les services Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385
[Auto Services] BITS
### Internal Name: BITS. Status: service is running. Actual File: C:\Windows\System32\svchost.exe -k netsvcs * Transfère des fichiers en arrière-plan en utilisant la bande passante réseau inactive. Si le service est désactivé, toutes les applications dépendant du service de transfert intelligent d'arrière-plan, telles que Windows Update ou MSN Explorer, ne pourront plus télécharger des programmes ni d'autres informations. Processus hôte pour les services Windows Microsoft Corporation Système d'exploitation Microsoft® Windows® 6.1.7600.16385
[Auto Services] Bonjour Service
### Internal Name: Bonjour Service. Status: service is running. Actual File: "C:\Program Files\Bonjour\mDNSResponder.exe" * Permet aux périphériques matériels et aux services logiciels de se configurer automatiquement sur le réseau et de se rendre publics. Bonjour Service Apple Inc. Bonjour 3,0,0,10
[Auto Services] clr_optimization_v4.0.30319_32
### Internal Name: clr_optimization_v4.0.30319_32. Status: service stopped. Actual File: C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe * Microsoft .NET Framework NGEN .NET Runtime Optimization Service Microsoft Corporation Microsoft® .NET Framework 4.0.30319.34209
[Auto Services] clr_optimization_v4.0.30319_64
### Internal Name: clr_optimization_v4.0.30319_64. Status: service stopped. Actual File: C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe * Microsoft .NET Framework NGEN .NET Runtime Optimization Service Microsoft Corporation Microsoft® .NET Framework 4.0.30319.34209
[Auto Services] CryptSvc
### Internal Name: CryptSvc. Status: service is running. Actual File: C:\Windows\system32\svchost.exe -k NetworkService * Fournit quatre services de gestion : le service
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
fabul
Messages postés
38887
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
13 octobre 2024
5 367
Modifié par fabul le 3/09/2015 à 10:12
Modifié par fabul le 3/09/2015 à 10:12
Les rapports RegRunlog ne passent pas au complet sur le forum.
Quels sont ler items que tu détecte (un par un) manuellement avec le scan RegRun ?
Quand tu clic-droit dans le milieu de la fenêtre et choisis "Save to file"
Les Prohibited,Suspicious,Warning ?
Sinon, réinstalle Lavasoft par dessus et désinstalle le proprement avec
Revo Uninstaller Portable
Quels sont ler items que tu détecte (un par un) manuellement avec le scan RegRun ?
Quand tu clic-droit dans le milieu de la fenêtre et choisis "Save to file"
Les Prohibited,Suspicious,Warning ?
Sinon, réinstalle Lavasoft par dessus et désinstalle le proprement avec
Revo Uninstaller Portable