Clé usb
Résolu/Fermé
zukerbill
Messages postés
5
Date d'inscription
lundi 16 novembre 2015
Statut
Membre
Dernière intervention
18 novembre 2015
-
16 nov. 2015 à 18:41
fabul Messages postés 37646 Date d'inscription dimanche 18 janvier 2009 Statut Modérateur Dernière intervention 18 avril 2024 - 18 nov. 2015 à 10:34
fabul Messages postés 37646 Date d'inscription dimanche 18 janvier 2009 Statut Modérateur Dernière intervention 18 avril 2024 - 18 nov. 2015 à 10:34
A voir également:
- Clé usb
- Cle usb non reconnu - Guide
- Clé windows 10 gratuit - Guide
- Cle usb bootable - Guide
- Formater clé usb mac - Guide
- Medicat usb - Guide
1 réponse
fabul
Messages postés
37646
Date d'inscription
dimanche 18 janvier 2009
Statut
Modérateur
Dernière intervention
18 avril 2024
5 167
Modifié par fabul le 17/11/2015 à 01:42
Modifié par fabul le 17/11/2015 à 01:42
Salut,
Utilise USBFix gratuit pour désinfecter en même temps ton PC et tes clés disques USB
Et tu peux vérifier ton PC avec RegRun Reanimator ensuite.
Avec "Scan Windows Startup..."
Attention, il détecte des faux positifs, (des bons fichiers).
Attention avec RegRun de ne pas supprimer un pilote .sys sans vérifier avec Virustotal , au cas ou ça soit un bon pilote, tu pourrais rendre le PC inutilisable.
Utilise USBFix gratuit pour désinfecter en même temps ton PC et tes clés disques USB
Et tu peux vérifier ton PC avec RegRun Reanimator ensuite.
Avec "Scan Windows Startup..."
Attention, il détecte des faux positifs, (des bons fichiers).
Attention avec RegRun de ne pas supprimer un pilote .sys sans vérifier avec Virustotal , au cas ou ça soit un bon pilote, tu pourrais rendre le PC inutilisable.
17 nov. 2015 à 01:50
Modifié par fabul le 17/11/2015 à 02:47
Installe RegRun Reanimator
Clic sur "Fix problems".
Clic sur "Scan windows startup...".
Coche la case "Use deep level scanning once (For advanced users)".
Clic sur "Make scan now".
Patiente durant l'analyse.
Clic sur "Fix problems".
Clic-droit dans le milieu de la fenêtre et choisis "Save to file" pour copier le résultat dans un fichier texte.
Tu peux le nommer 1 (tout court), le .txt sera généré automatiquement.
Clic sur la flèche pour passer a l'item suivant, fais comme pour le premier et nomme le 2, et ainsi de suite avec les autres.
A la fin, clic sur "Exit".
Poste les résultats contenus dans les fichiers texte dans ton prochain message.
PS:
Tu peux aussi utiliser ça: https://telecharger.malekal.com/download/rem-vbs/
17 nov. 2015 à 12:27
SpyHolesList Version:11.0 Build:7.76.0.176-64b
17.11.2015 11:53:06
WinDir=C:\Windows
Startup=C:\Users\KARIMU\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Common Startup=C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Windows 7 Ultimate N (6.1.7600)
Internet Explorer 8.0.7600.16385
[Internet Explorer]
[Default Home Page] :HKLM Default_Page_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
[Current Home Page] :HKCU Start Page=http://fr.msn.com/
[Current Home Page] :HKCU HOMEOldSP=""
[Current Home Page] :HKCU Default_Page_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
[Current Home Page] :HKLM Start Page=http://fr.msn.com/
[Current Home Page] :HKLM HOMEOldSP=""
[All Users Search] :HKLM Default_Search_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
[All Users Search] :HKLM Search Page=http://go.microsoft.com/fwlink/?LinkId=54896
[Current Users Search] :HKCU Default_Search_URL=http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
[Current Users Search] :HKCU Search Page=http://go.microsoft.com/fwlink/?LinkId=54896
[Current Users Search] :HKCU Search Bar=http://go.microsoft.com/fwlink/?linkid=54896
[IE Local Blank Page] :HKCU Local Page=C:\Windows\system32\blank.htm
[IE Local Blank Page] :HKLM Local Page=C:\Windows\SysWOW64\blank.htm
[Browser Helper Objects] {18DF081C-E8AD-4283-A596-FA578C2EBDC3}=C:\PROGRAM FILES (X86)\COMMON FILES\ADOBE\ACROBAT\ACTIVEX\ACROIEHELPERSHIM.DLL
[Browser Helper Objects] {1A2641AE-2C42-4C51-A05F-8ECEC3FDC94D}=C:\PROGRAM FILES (X86)\VISUAL IP TRACE 2009\VISUALIPTRACEIE.DLL
[Browser Helper Objects] {72853161-30C5-4D22-B7F9-0BBC1D38A37E}=C:\PROGRA~2\MICROS~1\OFFICE14\GROOVEEX.DLL
[Browser Helper Objects] {9961627E-4059-41B4-8E0E-A7D6B3854ADF}=C:\PROGRA~2\DOWNLO~1\DMIEHLP.DLL
[Browser Helper Objects] {B4F3A835-0E21-4959-BA22-42B3008E02FF}=C:\PROGRA~2\MICROS~1\OFFICE14\URLREDIR.DLL
[Browser Helper Objects] {B69F34DD-F0F9-42DC-9EDD-957187DA688D}=C:\PROGRAM FILES (X86)\360\TOTAL SECURITY\SAFEMON\SAFEMON.DLL
[Browser Helper Objects] {DBC80044-A445-435b-BC74-9C25C1C588A9}=C:\PROGRAM FILES (X86)\JAVA\JRE6\BIN\JP2SSV.DLL
[Browser Helper Objects(x64)] {72853161-30C5-4D22-B7F9-0BBC1D38A37E}=C:\PROGRA~1\MICROS~2\OFFICE14\GROOVEEX.DLL
[Browser Helper Objects(x64)] {B4F3A835-0E21-4959-BA22-42B3008E02FF}=C:\PROGRA~1\MICROS~2\OFFICE14\URLREDIR.DLL
[Browser Helper Objects(x64)] {B69F34DD-F0F9-42DC-9EDD-957187DA688D}=C:\PROGRAM FILES (X86)\360\TOTAL SECURITY\SAFEMON\SAFEMON64.DLL
[Browser Helper Objects(x64)] {F8A6CAA2-533D-4AED-9E05-8EB19A4021AB}=C:\PROGRAM FILES (X86)\CLOVER\TABHELPER64.DLL
[Auto Search URL] :HKCU provider=""
[Auto Search URL] :HKCU "Default Value"=""
[Search Assistant] :HKCU SearchAssistant=""
[Search Assistant] :HKLM SearchAssistant=""
[Search Assistant] :HKCU CustomizeSearch=""
[Search Assistant] :HKLM CustomizeSearch=""
[Search Provider] ${searchCLSID}=http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
[Search Provider] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}=http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
[Search Provider] DefaultScope={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[Search Provider for All Users] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[Search Provider for All Users] DefaultScope={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[Search Provider for All Users(x64)] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[Search Provider for All Users(x64)] DefaultScope={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[Search Provider(x64)] ${searchCLSID}=http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
[Search Provider(x64)] {0633EE93-D776-472f-A0FF-E1416B8B2E3A}=http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
[Search Provider(x64)] DefaultScope={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[CustomizeSearch] :HKLM CustomizeSearch=""
[URLSearchHook] :HKCU {CFBFAE00-17A6-11D0-99CB-00C04FD64497}=C:\WINDOWS\SYSWOW64\IEFRAME.DLL
[Search URL Template] :HKLM 1=""
[Search URL Template] :HKLM 2=""
[Search URL Template] :HKLM 3=""
[Search URL Template] :HKLM 4=""
[Default Prefix] :HKLM "Default Value"=http://
[URL Default Prefixes] :HKLM mosaic=http://
[URL Default Prefixes] :HKLM www=http://
[URL Default Prefixes] :HKLM home=http://
[URL Default Prefixes] :HKLM ftp=ftp://
[AboutURLs] :HKLM blank=res://mshtml.dll/blank.htm
[AboutURLs] :HKLM NoAdd-onsInfo=res://ieframe.dll/noaddoninfo.htm
[AboutURLs] :HKLM InPrivate=res://ieframe.dll/inprivate.htm
[AboutURLs] :HKLM NavigationFailure=res://ieframe.dll/navcancl.htm
[AboutURLs] :HKLM NoAdd-ons=res://ieframe.dll/noaddon.htm
[AboutURLs] :HKLM Home=270
[AboutURLs] :HKLM PostNotCached=res://ieframe.dll/repost.htm
[AboutURLs] :HKLM DesktopItemNavigationFailure=res://ieframe.dll/navcancl.htm
[AboutURLs] :HKLM NavigationCanceled=res://ieframe.dll/navcancl.htm
[AboutURLs] :HKLM Tabs=res://ieframe.dll/tabswelcome.htm
[AboutURLs] :HKLM OfflineInformation=res://ieframe.dll/offcancl.htm
[AboutURLs] :HKLM SecurityRisk=res://ieframe.dll/securityatrisk.htm
[User Style Sheet] :HKCU User Stylesheet=""
[User Style Sheet] :HKCU Use My Stylesheet=0
[Execute unsigned ActiveX in My Computer Zone] :HKCU 1201=0
[Execute unsigned ActiveX in My Computer Zone] :HKLM 1201=1
[Execute unsigned ActiveX in Local Intranet Zone] :HKCU 1201=0
[Execute unsigned ActiveX in Local Intranet Zone] :HKLM 1201=3
[Execute unsigned ActiveX in Internet Zone] :HKCU 1201=3
[Execute unsigned ActiveX in Internet Zone] :HKLM 1201=3
[Links Toolbar] :HKCU LinksFolderName=""
[Toolbars] :HKLM {CFB25594-4D5F-11D6-AB7B-00B0D094B576}=C:\PROGRAM FILES (X86)\SYSTRAN\4_0\PREMIUM\IEPLUGIN.DLL
[Toolbars] :HKLM {E70C26AE-DFF1-40A8-8D37-19180F56F0AA}=C:\PROGRAM FILES (X86)\VISUAL IP TRACE 2009\VISUALIPTRACEIE.DLL
[IE Extensions - All Users] :HKLM {2670000A-7350-4f3c-8081-5663EE0C6C49}
[IE Extensions - All Users] :HKLM {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA}
[IE Extensions - All Users] :HKLM {8DAE90AD-4583-4977-9DD4-4360F7A45C74}=C:\PROGRAM FILES (X86)\DOWNLOAD MASTER\DMASTER.EXE
[Context menu items] :HKCU &Envoyer à OneNote=res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
[Context menu items] :HKCU E&xporter vers Microsoft Excel=res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
[Context menu items] :HKCU Çàêà÷àòü ÂÑÅ ïðè ïîìîùè Download Master=C:\PROGRAM FILES (X86)\DOWNLOAD MASTER\DMIEALL.HTM
[Context menu items] :HKCU Çàêà÷àòü ïðè ïîìîùè Download Master=C:\PROGRAM FILES (X86)\DOWNLOAD MASTER\DMIE.HTM
[AutoConfigURL] :HKCU AutoConfigURL=""
[Protocols Filter] :HKLM application/octet-stream=C:\Windows\system32\MSCOREE.DLL
[Protocols Filter] :HKLM application/x-complus=C:\Windows\system32\MSCOREE.DLL
[Protocols Filter] :HKLM application/x-msdownload=C:\Windows\system32\MSCOREE.DLL
[Protocols Filter] :HKLM deflate=C:\WINDOWS\SYSWOW64\URLMON.DLL
[Protocols Filter] :HKLM gzip=C:\WINDOWS\SYSWOW64\URLMON.DLL
[Protocols Filter] :HKLM text/xml=C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\OFFICE14\MSOXMLMF.DLL
[Protocols Handler] :HKLM about=C:\WINDOWS\SYSWOW64\MSHTML.DLL
[Protocols Handler] :HKLM cdl=C:\WINDOWS\SYSWOW64\URLMON.DLL
[Protocols Handler] :HKLM dvd=C:\WINDOWS\SYSWOW64\MSVIDCTL.DLL
[Protocols Handler] :HKLM file=C:\WINDOWS\SYSWOW64\URLMON.DLL
[Protocols Handler] :HKLM ftp=C:\WINDOWS\SYSWOW64\URLMON.DLL
[Protocols Handler] :HKLM http=C:\WINDOWS\SYSWOW64\URLMON.DLL
[Protocols Handler] :HKLM https=C:\WINDOWS\SYSWOW64\URLMON.DLL
[Protocols Handler] :HKLM its=C:\WINDOWS\SYSTEM32\ITSS.DLL
[Protocols Handler] :HKLM javascript=C:\WINDOWS\SYSWOW64\MSHTML.DLL
[Protocols Handler] :HKLM local=C:\WINDOWS\SYSWOW64\URLMON.DLL
[Protocols Handler] :HKLM mailto=C:\WINDOWS\SYSWOW64\MSHTML.DLL
[Protocols Handler] :HKLM mhtml=C:\WINDOWS\SYSTEM32\INETCOMM.DLL
[Protocols Handler] :HKLM mk=C:\WINDOWS\SYSWOW64\URLMON.DLL
[Protocols Handler] :HKLM ms-help=C:\PROGRAM FILES (X86)\COMMON FILES\MICROSOFT SHARED\HELP\HXDS.DLL
[Protocols Handler] :HKLM ms-its=C:\WINDOWS\SYSTEM32\ITSS.DLL
[Protocols Handler] :HKLM res=C:\WINDOWS\SYSWOW64\MSHTML.DLL
[Protocols Handler] :HKLM skype4com=C:\PROGRA~2\COMMON~1\SKYPE\SKYPE4~1.DLL
[Protocols Handler] :HKLM tv=C:\WINDOWS\SYSWOW64\MSVIDCTL.DLL
[Protocols Handler] :HKLM vbscript=C:\WINDOWS\SYSWOW64\MSHTML.DLL
[Proxy] :HKCU ProxyServer=""
[Proxy] :HKCU ProxyEnable=0
[Network Settings]
[Hosts File Path] :HKLM DataBasePath=%SystemRoot%\System32\drivers\etc
[Hosts File Contents] :HKLM 127.0.0.1 genuine.microsoft.com
[Hosts File Contents] :HKLM 127.0.0.1 mpa.one.microsoft.com
[Hosts File Contents] :HKLM 127.0.0.1 sa.windows.com
[Hosts File Contents] :HKLM 127.0.0.1 se.windows.com
[Hosts File Contents] :HKLM 127.0.0.1 ie.search.msn.com
[Hosts File Contents] :HKLM 127.0.0.1 wustat.windows.com
[Hosts File Contents] :HKLM 127.0.0.1 wutrack.windows.com
[Hosts File Contents] :HKLM 127.0.0.1 catalog.microsoft.com
[Hosts File Contents] :HKLM 127.0.0.1 sls.microsoft.com
[Browsers]
[Installed Browsers] 360 Browser=C:\USERS\KARIMU\APPDATA\LOCAL\360BROWSER\BROWSER\APPLICATION\360BROWSER.EXE
[Installed Browsers] FIREFOX.EXE=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\FIREFOX.EXE
[Installed Browsers] IEXPLORE.EXE=C:\PROGRAM FILES (X86)\INTERNET EXPLORER\IEXPLORE.EXE
[Installed Browsers] Torch.BN5I3S2PMXG6MZJ442XQEDVESM=C:\USERS\KARIMU\APPDATA\LOCAL\TORCH\APPLICATION\TORCH.EXE
[Installed Browsers] Yandex.BN5I3S2PMXG6MZJ442XQEDVESM=C:\USERS\KARIMU\APPDATA\LOCAL\YANDEX\YANDEXBROWSER\APPLICATION\BROWSER.EXE
[FireFox Components and Extensions] aboutCertError.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\aboutCertError.js
[FireFox Components and Extensions] aboutPrivateBrowsing.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\aboutPrivateBrowsing.js
[FireFox Components and Extensions] aboutRights.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\aboutRights.js
[FireFox Components and Extensions] aboutRobots.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\aboutRobots.js
[FireFox Components and Extensions] aboutSessionRestore.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\aboutSessionRestore.js
[FireFox Components and Extensions] browser.xpt=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\browser.xpt
[FireFox Components and Extensions] browserdirprovider.dll=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS\BROWSERDIRPROVIDER.DLL
[FireFox Components and Extensions] brwsrcmp.dll=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS\BRWSRCMP.DLL
[FireFox Components and Extensions] FeedConverter.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\FeedConverter.js
[FireFox Components and Extensions] FeedProcessor.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\FeedProcessor.js
[FireFox Components and Extensions] FeedWriter.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\FeedWriter.js
[FireFox Components and Extensions] fuelApplication.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\fuelApplication.js
[FireFox Components and Extensions] jsconsole-clhandler.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\jsconsole-clhandler.js
[FireFox Components and Extensions] NetworkGeolocationProvider.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\NetworkGeolocationProvider.js
[FireFox Components and Extensions] nsAddonRepository.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsAddonRepository.js
[FireFox Components and Extensions] nsBadCertHandler.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsBadCertHandler.js
[FireFox Components and Extensions] nsBlocklistService.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsBlocklistService.js
[FireFox Components and Extensions] nsBrowserContentHandler.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsBrowserContentHandler.js
[FireFox Components and Extensions] nsBrowserGlue.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsBrowserGlue.js
[FireFox Components and Extensions] nsContentDispatchChooser.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsContentDispatchChooser.js
[FireFox Components and Extensions] nsContentPrefService.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsContentPrefService.js
[FireFox Components and Extensions] nsDefaultCLH.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsDefaultCLH.js
[FireFox Components and Extensions] nsDownloadManagerUI.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsDownloadManagerUI.js
[FireFox Components and Extensions] nsExtensionManager.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsExtensionManager.js
[FireFox Components and Extensions] nsHandlerService.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsHandlerService.js
[FireFox Components and Extensions] nsHelperAppDlg.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsHelperAppDlg.js
[FireFox Components and Extensions] nsLivemarkService.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsLivemarkService.js
[FireFox Components and Extensions] nsLoginInfo.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsLoginInfo.js
[FireFox Components and Extensions] nsLoginManager.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsLoginManager.js
[FireFox Components and Extensions] nsLoginManagerPrompter.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsLoginManagerPrompter.js
[FireFox Components and Extensions] nsMicrosummaryService.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsMicrosummaryService.js
[FireFox Components and Extensions] nsPlacesDBFlush.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsPlacesDBFlush.js
[FireFox Components and Extensions] nsPlacesTransactionsService.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsPlacesTransactionsService.js
[FireFox Components and Extensions] nsPostUpdateWin.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsPostUpdateWin.js
[FireFox Components and Extensions] nsPrivateBrowsingService.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsPrivateBrowsingService.js
[FireFox Components and Extensions] nsProxyAutoConfig.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsProxyAutoConfig.js
[FireFox Components and Extensions] nsSafebrowsingApplication.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsSafebrowsingApplication.js
[FireFox Components and Extensions] nsSearchService.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsSearchService.js
[FireFox Components and Extensions] nsSearchSuggestions.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsSearchSuggestions.js
[FireFox Components and Extensions] nsSessionStartup.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsSessionStartup.js
[FireFox Components and Extensions] nsSessionStore.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsSessionStore.js
[FireFox Components and Extensions] nsSetDefaultBrowser.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsSetDefaultBrowser.js
[FireFox Components and Extensions] nsSidebar.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsSidebar.js
[FireFox Components and Extensions] nsTaggingService.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsTaggingService.js
[FireFox Components and Extensions] nsTryToClose.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsTryToClose.js
[FireFox Components and Extensions] nsUpdateService.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsUpdateService.js
[FireFox Components and Extensions] nsUrlClassifierLib.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsUrlClassifierLib.js
[FireFox Components and Extensions] nsUrlClassifierListManager.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsUrlClassifierListManager.js
[FireFox Components and Extensions] nsURLFormatter.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsURLFormatter.js
[FireFox Components and Extensions] nsWebHandlerApp.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\nsWebHandlerApp.js
[FireFox Components and Extensions] pluginGlue.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\pluginGlue.js
[FireFox Components and Extensions] storage-Legacy.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\storage-Legacy.js
[FireFox Components and Extensions] storage-mozStorage.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\storage-mozStorage.js
[FireFox Components and Extensions] txEXSLTRegExFunctions.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\txEXSLTRegExFunctions.js
[FireFox Components and Extensions] WebContentConverter.js=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Components\WebContentConverter.js
[FireFox Components and Extensions] staged-xpis=C:\Users\KARIMU\AppData\Roaming\Mozilla\Firefox\Profiles\2izic29n.default\extensions\staged-xpis\
[FireFox Components and Extensions] support@free-hideip.com=C:\Users\KARIMU\AppData\Roaming\Mozilla\Firefox\Profiles\2izic29n.default\extensions\support@free-hideip.com\
[FireFox Components and Extensions] {635abd67-4fe9-1b23-4f01-e679fa7484c1}=C:\Users\KARIMU\AppData\Roaming\Mozilla\Firefox\Profiles\2izic29n.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\
[FireFox Components and Extensions] {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\Extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}\
[FireFox Components and Extensions] WebProtection@360safe.com=C:\Program Files (x86)\360\Total Security\safemon\webprotection_firefox\
[FireFox Settings] :HKLM browser.startup.homepage=""
[FireFox Settings] :HKLM browser.startup.homepage_override_url=""
[FireFox Settings] :HKLM browser.search.selectedEngine=""
[FireFox Settings] :HKLM browser.search.selectedEngine,S=""
[FireFox Settings] :HKLM browser.search.defaultEnginename=""
[FireFox Settings] :HKLM browser.search.defaultEnginename,S=""
[FireFox Settings] :HKLM browser.search.order.1=""
[FireFox Settings] :HKLM browser.search.order.1,S=""
[FireFox Settings] :HKLM browser.search.defaulturl=""
[FireFox Settings] :HKLM browser.newtab.url=""
[FireFox Settings] :HKLM keyword.URL=""
[FireFox Settings] :HKLM network.proxy.autoconfig_url=""
[FireFox Settings] :HKLM network.proxy.type=""
[FireFox Settings] :HKLM network.proxy.http=""
[FireFox Settings] :HKLM network.proxy.http_port=""
[Google Chrome Settings] :HKLM backup.homepage=""
[Google Chrome Settings] :HKLM backup.session.urls_to_restore_on_startup=""
[Google Chrome Settings] :HKLM session.startup_urls=""
[Google Chrome Settings] :HKLM default_search_provider.icon_url=""
[Google Chrome Settings] :HKLM default_search_provider.keyword=""
[Google Chrome Settings] :HKLM default_search_provider.name=Google
[Google Chrome Settings] :HKLM default_search_provider.search_url={google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
[Google Chrome Settings] :HKLM default_search_provider.suggest_url={google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.alternate_urls=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.favicon_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.keyword=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.short_name=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.suggest_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.new_tab_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.instant_url=""
[Google Chrome Settings] :HKLM default_search_provider_data.template_url_data.image_url=""
[Google Chrome Settings] :HKLM homepage=http://www.google.com/
[Google Chrome Settings] :HKLM session.urls_to_restore_on_startup=[]
[Google Chrome Default Search Provider] Default Search=Google
[Google Chrome Addons] ehfanjejklfmnldbbclpocdbceaeemkn=C:\PROGRAM FILES (X86)\DOWNLOAD MASTER\DM_CHROME.CRX
[Network Settings]
[Domain Name] :HKLM Domain=""
[WinSock2 Components] NLAapi.dll=C:\WINDOWS\SYSWOW64\NLAAPI.DLL
[WinSock2 Components] mswsock.dll=C:\WINDOWS\SYSWOW64\MSWSOCK.DLL
[WinSock2 Components] winrnr.dll=C:\WINDOWS\SYSWOW64\WINRNR.DLL
[WinSock2 Components] napinsp.dll=C:\WINDOWS\SYSWOW64\NAPINSP.DLL
[WinSock2 Components] pnrpnsp.dll=C:\WINDOWS\SYSWOW64\PNRPNSP.DLL
[WinSock2 Components (x64)] NLAapi.dll=C:\WINDOWS\SYSNATIVE\NLAAPI.DLL
[WinSock2 Components (x64)] mswsock.dll=C:\WINDOWS\SYSNATIVE\MSWSOCK.DLL
[WinSock2 Components (x64)] winrnr.dll=C:\WINDOWS\SYSNATIVE\WINRNR.DLL
[WinSock2 Components (x64)] napinsp.dll=C:\WINDOWS\SYSNATIVE\NAPINSP.DLL
[WinSock2 Components (x64)] pnrpnsp.dll=C:\WINDOWS\SYSNATIVE\PNRPNSP.DLL
[Windows Shell]
[Display Scrap's Extensions] :HKLM NeverShowExt=""
[ScreenSaver] :HKCU SCRNSAVE.EXE=""
[System.ini] shell=Explorer.exe
[User Shell] :HKCU shell=""
[Internet Shortcuts] :HKLM C:\Users\KARIMU\Desktop\Facebook.lnk= --RUN-BY-FACEBOOK HTTP://WWW.FACEBOOK.COM
[Internet Shortcuts] :HKLM C:\Users\KARIMU\Desktop\Free Games.lnk=--RUN-BY-TG HTTP://GAMES.TORCHBROWSER.COM
[Internet Shortcuts] :HKLM C:\Users\KARIMU\Desktop\Free Music.lnk=--RUN-BY-TM HTTP://MUSIC.TORCHBROWSER.COM
[Internet Shortcuts] :HKLM C:\Users\KARIMU\Desktop\YouTube.lnk= --RUN-BY-YOUTUBE HTTP://WWW.YOUTUBE.COM
[Internet Shortcuts] :HKLM C:\ProgramData\Microsoft\Windows\Start Menu\Programmes\Reanimator\Update Reanimator.lnk=HTTP://GREATIS.COM/REANIMATOR.INI /R
[Internet Shortcuts] :HKLM C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Reanimator\Update Reanimator.lnk=HTTP://GREATIS.COM/REANIMATOR.INI /R
[Main File Extensions] :HKLM .exe="%1" %*
[Main File Extensions] :HKLM .com="%1" %*
[Main File Extensions] :HKLM .pif="%1" %*
[Main File Extensions] :HKLM .bat="%1" %*
[Main File Extensions] :HKLM .cmd="%1" %*
[Main File Extensions] :HKLM .scr="%1" /S
[Main File Extensions] :HKLM .txt=%SystemRoot%\system32\NOTEPAD.EXE %1
[Main File Extensions] :HKLM .reg=regedit.exe "%1"
[Main File Extensions] :HKLM .inf=%SystemRoot%\system32\NOTEPAD.EXE %1
[Main File Extensions] :HKLM .ini=%SystemRoot%\system32\NOTEPAD.EXE %1
[Main File Extensions] :HKLM .js=C:\Windows\System32\WScript.exe "%1" %*
[Main File Extensions] :HKLM .vbs="%SystemRoot%\System32\WScript.exe" "%1" %*
[Main File Extensions] :HKLM .vbe="%SystemRoot%\System32\WScript.exe" "%1" %*
[Main File Extensions] :HKLM .msc=%SystemRoot%\system32\mmc.exe "%1" %*
[Main File Extensions] :HKLM .jpg="C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1"
[Main File Extensions] :HKLM .jpeg="C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe" "%1"
[Shell Execute Hooks] :HKLM {B5A7F190-DDA6-4420-B3BA-52453494E6CD}=C:\PROGRA~2\MICROS~1\OFFICE14\GROOVEEX.DLL
[UserInit Value] :HKLM UserInit=C:\Windows\SysWOW64\Userinit.exe,
[Shell Services DelayLoad] :HKLM WebCheck={E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[System Shell Policies] :HKCU shell=""
[System Shell Policies] :HKLM shell=""
[System Shell Policies] :HKCU run=""
[System Shell Policies] :HKLM run=""
[Prevents Display in Control Panel from running.] :HKCU NoDispCpl=0
[Disable Registry Tools] :HKCU DisableRegistryTools =0
[Print Monitors] :HKLM Local Port=C:\Windows\system32\LOCALSPL.DLL
[Print Monitors] :HKLM Microsoft Shared Fax Monitor=C:\Windows\system32\FXSMON.DLL
[Print Monitors] :HKLM Standard TCP/IP Port=C:\Windows\system32\TCPMON.DLL
[Print Monitors] :HKLM USB Monitor=C:\Windows\system32\USBMON.DLL
[Print Monitors] :HKLM WSD Port=C:\Windows\system32\WSDMON.DLL
[Shell Icon Overlay Handlers] :HKLM EnhancedStorageShell=C:\WINDOWS\SYSTEM32\EHSTORSHELL.DLL
[Shell Icon Overlay Handlers] :HKLM Groove Explorer Icon Overlay 1 (GFS Unread Stub)=C:\PROGRA~2\MICROS~1\OFFICE14\GROOVEEX.DLL
[Shell Icon Overlay Handlers] :HKLM Groove Explorer Icon Overlay 2 (GFS Stub)=C:\PROGRA~2\MICROS~1\OFFICE14\GROOVEEX.DLL
[Shell Icon Overlay Handlers] :HKLM Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)=C:\PROGRA~2\MICROS~1\OFFICE14\GROOVEEX.DLL
[Shell Icon Overlay Handlers] :HKLM Groove Explorer Icon Overlay 3 (GFS Folder)=C:\PROGRA~2\MICROS~1\OFFICE14\GROOVEEX.DLL
[Shell Icon Overlay Handlers] :HKLM Groove Explorer Icon Overlay 4 (GFS Unread Mark)=C:\PROGRA~2\MICROS~1\OFFICE14\GROOVEEX.DLL
[Shell Icon Overlay Handlers] :HKLM SharingPrivate=C:\WINDOWS\SYSTEM32\NTSHRUI.DLL
[Context Menu Handlers] :HKLM 7-Zip=C:\PROGRAM FILES\7-ZIP\7-ZIP32.DLL
[Context Menu Handlers] :HKLM AIMP=C:\PROGRAM FILES (X86)\AIMP3\MODULES\AIMP_MENU32.DLL
[Context Menu Handlers] :HKLM BriefcaseMenu=C:\WINDOWS\SYSTEM32\SYNCUI.DLL
[Context Menu Handlers] :HKLM Foxit_ConvertToPDF_Reader={A94757A0-0226-426F-B4F1-4DF381C630D3}
[Context Menu Handlers] :HKLM Open With=C:\WINDOWS\SYSTEM32\SHELL32.DLL
[Context Menu Handlers] :HKLM Open With EncryptionMenu=C:\WINDOWS\SYSTEM32\SHELL32.DLL
[Context Menu Handlers] :HKLM SD360={086F171D-5ED1-4ED2-B736-CFF3AD6A128E}
[Context Menu Handlers] :HKLM Sharing=C:\WINDOWS\SYSTEM32\NTSHRUI.DLL
[Context Menu Handlers] :HKLM WinRAR={B41DB860-64E4-11D2-9906-E49FADC173CA}
[Context Menu Handlers] :HKLM WinRAR32=C:\PROGRAM FILES (X86)\WINRAR\RAREXT.DLL
[Context Menu Handlers] :HKLM XXX Groove GFS Context Menu Handler XXX=C:\PROGRA~2\MICROS~1\OFFICE14\GROOVEEX.DLL
[Context Menu Handlers] :HKLM {90AA3A4E-1CBA-4233-B8BB-535773D48449}=C:\WINDOWS\SYSTEM32\SHELL32.DLL
[Context Menu Handlers] :HKLM {a2a9545d-a0c2-42b4-9708-a0b2badd77c8}=C:\WINDOWS\SYSTEM32\SHELL32.DLL
[App Paths] :HKLM 360browser.exe=C:\Users\KARIMU\AppData\Local\360browser\Browser\Application\360browser.exe
[App Paths] :HKLM 360safe.exe=C:\Program Files (x86)\360\Total Security\QHSafeMain.exe
[App Paths] :HKLM 7zFM.exe=C:\Program Files\7-Zip\7zFM.exe
[App Paths] :HKLM AcroRd32.exe=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
[App Paths] :HKLM AIMP3.exe=C:\Program Files (x86)\AIMP3\AIMP3.exe
[App Paths] :HKLM browser.exe=C:\Users\KARIMU\AppData\Local\Yandex\YandexBrowser\Application\browser.exe
[App Paths] :HKLM BurnAware.exe=C:\Program Files (x86)\BurnAware Free\BurnAware.exe
[App Paths] :HKLM ccleaner.exe=C:\Program Files (x86)\CCleaner\ccleaner.exe
[App Paths] :HKLM cmmgr32.exe
[App Paths] :HKLM enccalc.exe=C:\Program Files (x86)\Microsoft Etudes\Microsoft Encarta Maths\enccalc.exe
[App Paths] :HKLM excel.exe=C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE
[App Paths] :HKLM firefox.exe=C:\Program Files (x86)\Mozilla Firefox\firefox.exe
[App Paths] :HKLM FormatFactory.exe=C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe
[App Paths] :HKLM fsquirt.exe
[App Paths] :HKLM FSViewer.exe=C:\Program Files (x86)\FastStone Image Viewer\FSViewer.exe
[App Paths] :HKLM GROOVE.EXE=C:\PROGRA~2\MICROS~1\Office14\GROOVE.EXE
[App Paths] :HKLM IEXPLORE.EXE=C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
[App Paths] :HKLM infopath.exe=C:\PROGRA~2\MICROS~1\Office14\INFOPATH.EXE
[App Paths] :HKLM install.exe
[App Paths] :HKLM javaws.exe=C:\Program Files (x86)\Java\jre6\bin\javaws.exe
[App Paths] :HKLM Journal.exe=%ProgramFiles%\Windows Journal\Journal.exe
[App Paths] :HKLM MediaDico38.exe=C:\Program Files (x86)\Micro Application\38 Dictionnaires et Recueils de Correspondance\MediaDico38.exe
[App Paths] :HKLM mip.exe=%CommonProgramFiles%\Microsoft Shared\Ink\mip.exe
[App Paths] :HKLM MSACCESS.EXE=C:\PROGRA~2\MICROS~1\Office14\MSACCESS.EXE
[App Paths] :HKLM MsoHtmEd.exe
[App Paths] :HKLM msoxmled.exe=C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLED.EXE
[App Paths] :HKLM MSPUB.EXE=C:\PROGRA~2\MICROS~1\Office14\MSPUB.EXE
[App Paths] :HKLM ois.exe=C:\PROGRA~2\MICROS~1\Office14\OIS.EXE
[App Paths] :HKLM OneNote.exe=C:\PROGRA~2\MICROS~1\Office14\ONENOTE.EXE
[App Paths] :HKLM OUTLOOK.EXE=C:\PROGRA~2\MICROS~1\Office14\OUTLOOK.EXE
[App Paths] :HKLM pbrush.exe=%SystemRoot%\System32\mspaint.exe
[App Paths] :HKLM PhotoScape.exe="C:\Program Files (x86)\PhotoScape\PhotoScape.exe"
[App Paths] :HKLM PotPlayerMini.exe=C:\Program Files (x86)\Daum\PotPlayer\PotPlayerMini.exe
[App Paths] :HKLM powerpnt.exe=C:\PROGRA~2\MICROS~1\Office14\POWERPNT.EXE
[App Paths] :HKLM PowerShell.exe=%SystemRoot%\system32\WindowsPowerShell\v1.0\PowerShell.exe
[App Paths] :HKLM QHSafeMain.exe=C:\Program Files (x86)\360\Total Security\QHSafeMain.exe
[App Paths] :HKLM QHSafeTray.exe=C:\Program Files (x86)\360\Total Security\safemon\QHSafeTray.exe
[App Paths] :HKLM setup.exe
[App Paths] :HKLM sidebar.exe="%ProgramFiles%\Windows Sidebar\sidebar.exe"
[App Paths] :HKLM SnippingTool.exe=%SystemRoot%\system32\SnippingTool.exe
[App Paths] :HKLM supercopier.exe=C:\Program Files\Supercopier\supercopier.exe
[App Paths] :HKLM table30.exe
[App Paths] :HKLM TabTip.exe=%CommonProgramFiles%\microsoft shared\ink\TabTip.exe
[App Paths] :HKLM torch.exe=C:\Users\KARIMU\AppData\Local\Torch\Application\torch.exe
[App Paths] :HKLM Unlocker.exe=C:\Windows\system32\Unlocker.exe
[App Paths] :HKLM VisualIPTrace.exe=C:\Program Files (x86)\Visual IP Trace 2009\VisualIPTrace.exe
[App Paths] :HKLM vstoee.dll
[App Paths] :HKLM wab.exe=%ProgramFiles%\Windows Mail\wab.exe
[App Paths] :HKLM wabmig.exe=%ProgramFiles%\Windows Mail\wabmig.exe
[App Paths] :HKLM WinRAR.exe=C:\Program Files (x86)\WinRAR\WinRAR.exe
[App Paths] :HKLM Winword.exe=C:\PROGRA~2\MICROS~1\Office14\WINWORD.EXE
[App Paths] :HKLM WORDPAD.EXE=C:\PROGRAM FILES (X86)\WINDOWS NT\ACCESSORIES\WORDPAD.EXE
[App Paths] :HKLM WRITE.EXE="%ProgramFiles%\Windows NT\Accessories\WORDPAD.EXE"
[Kernel Auto Boot]
[Auto Services] AERTFilters
[Auto Services] AudioEndpointBuilder
[Auto Services] AudioSrv
[Auto Services] BFE
[Auto Services] BITS
[Auto Services] bthserv
[Auto Services] CGVPNCliService
[Auto Services] CryptSvc
[Auto Services] CscService
[Auto Services] DcomLaunch
[Auto Services] Dhcp
[Auto Services] Dnscache
[Auto Services] DPS
[Auto Services] EFS
[Auto Services] eventlog
[Auto Services] EventSystem
[Auto Services] gpsvc
[Auto Services] iphlpsvc
[Auto Services] LanmanServer
[Auto Services] LanmanWorkstation
[Auto Services] lmhosts
[Auto Services] Microsoft SharePoint Workspace Audit Service
[Auto Services] MMCSS
[Auto Services] MpsSvc
[Auto Services] msiserver
[Auto Services] NlaSvc
[Auto Services] nsi
[Auto Services] PcaSvc
[Auto Services] pla
[Auto Services] PlugPlay
[Auto Services] Power
[Auto Services] ProfSvc
[Auto Services] QHActiveDefense
[Auto Services] RpcEptMapper
[Auto Services] RpcSs
[Auto Services] RtkAudioService
[Auto Services] SamSs
[Auto Services] Schedule
[Auto Services] SENS
[Auto Services] SensrSvc
[Auto Services] SEVPNCLIENT
[Auto Services] ShellHWDetection
[Auto Services] SkypeUpdate
[Auto Services] Spooler
[Auto Services] sppsvc
[Auto Services] SysMain
[Auto Services] TeamViewer
[Auto Services] Themes
[Auto Services] TorchCrashHandler
[Auto Services] UxSms
[Auto Services] WinDefend
[Auto Services] Winmgmt
[Auto Services] WiseBootAssistant
[Auto Services] Wlansvc
[Auto Services] wscsvc
[Auto Services] WSearch
[Auto Services] wuauserv
[Auto Services] InternetEverywhere_Service
[Svchost DLLs] :HKLM AeLookupSvc=C:\WINDOWS\SYSTEM32\AELUPSVC.DLL
[Svchost DLLs] :HKLM CertPropSvc=C:\WINDOWS\SYSTEM32\CERTPROP.DLL
[Svchost DLLs] :HKLM SCPolicySvc=C:\WINDOWS\SYSTEM32\CERTPROP.DLL
[Svchost DLLs] :HKLM lanmanserver=C:\WINDOWS\SYSTEM32\SRVSVC.DLL
[Svchost DLLs] :HKLM gpsvc=C:\WINDOWS\SYSTEM32\GPSVC.DLL
[Svchost DLLs] :HKLM AudioSrv=C:\WINDOWS\SYSTEM32\AUDIOSRV.DLL
[Svchost DLLs] :HKLM FastUserSwitchingCompatibility
[Svchost DLLs] :HKLM Ias
[Svchost DLLs] :HKLM Irmon
[Svchost DLLs] :HKLM Nla
[Svchost DLLs] :HKLM Ntmssvc
[Svchost DLLs] :HKLM NWCWorkstation
[Svchost DLLs] :HKLM Nwsapagent
[Svchost DLLs] :HKLM Rasauto=C:\WINDOWS\SYSTEM32\RASAUTO.DLL
[Svchost DLLs] :HKLM Rasman=C:\WINDOWS\SYSTEM32\RASMANS.DLL
[Svchost DLLs] :HKLM Remoteaccess=C:\WINDOWS\SYSTEM32\MPRDIM.DLL
[Svchost DLLs] :HKLM SENS=C:\WINDOWS\SYSTEM32\SENS.DLL
[Svchost DLLs] :HKLM Sharedaccess=C:\WINDOWS\SYSTEM32\IPNATHLP.DLL
[Svchost DLLs] :HKLM SRService
[Svchost DLLs] :HKLM Tapisrv=C:\WINDOWS\SYSTEM32\TAPISRV.DLL
[Svchost DLLs] :HKLM Wmi
[Svchost DLLs] :HKLM WmdmPmSp
[Svchost DLLs] :HKLM TermService=C:\WINDOWS\SYSTEM32\TERMSRV.DLL
[Svchost DLLs] :HKLM wuauserv=C:\WINDOWS\SYSTEM32\WUAUENG.DLL
[Svchost DLLs] :HKLM BITS=C:\WINDOWS\SYSTEM32\QMGR.DLL
[Svchost DLLs] :HKLM ShellHWDetection=C:\WINDOWS\SYSTEM32\SHSVCS.DLL
[Svchost DLLs] :HKLM LogonHours
[Svchost DLLs] :HKLM PCAudit
[Svchost DLLs] :HKLM helpsvc
[Svchost DLLs] :HKLM uploadmgr
[Svchost DLLs] :HKLM iphlpsvc=C:\WINDOWS\SYSTEM32\IPHLPSVC.DLL
[Svchost DLLs] :HKLM msiscsi=C:\WINDOWS\SYSTEM32\ISCSIEXE.DLL
[Svchost DLLs] :HKLM schedule=C:\WINDOWS\SYSTEM32\SCHEDSVC.DLL
[Svchost DLLs] :HKLM SessionEnv=C:\WINDOWS\SYSTEM32\SESSENV.DLL
[Svchost DLLs] :HKLM winmgmt=C:\WINDOWS\SYSTEM32\WBEM\WMISVC.DLL
[Svchost DLLs] :HKLM AppMgmt=C:\WINDOWS\SYSTEM32\APPMGMTS.DLL
[Svchost DLLs] :HKLM RemoteRegistry=C:\WINDOWS\SYSTEM32\REGSVC.DLL
[Svchost DLLs] :HKLM WinHttpAutoProxySvc=C:\Windows\system32\WINHTTP.DLL
[Svchost DLLs] :HKLM sppuinotify=C:\WINDOWS\SYSTEM32\SPPUINOTIFY.DLL
[Svchost DLLs] :HKLM netprofm=C:\WINDOWS\SYSTEM32\NETPROFM.DLL
[Svchost DLLs] :HKLM WebClient=C:\WINDOWS\SYSTEM32\WEBCLNT.DLL
[Svchost DLLs] :HKLM Netman=C:\WINDOWS\SYSTEM32\NETMAN.DLL
[Svchost DLLs] :HKLM AudioEndpointBuilder=C:\WINDOWS\SYSTEM32\AUDIOSRV.DLL
[Svchost DLLs] :HKLM dot3svc=C:\WINDOWS\SYSTEM32\DOT3SVC.DLL
[Svchost DLLs] :HKLM wlansvc=C:\WINDOWS\SYSTEM32\WLANSVC.DLL
[Svchost DLLs] :HKLM PLA=C:\WINDOWS\SYSTEM32\PLA.DLL
[Svchost DLLs] :HKLM RpcSs=C:\WINDOWS\SYSTEM32\RPCSS.DLL
[Svchost DLLs] :HKLM BthHFSrv
[Svchost DLLs] :HKLM LmHosts=C:\WINDOWS\SYSTEM32\LMHSVC.DLL
[Svchost DLLs] :HKLM wscsvc=C:\WINDOWS\SYSTEM32\WSCSVC.DLL
[Svchost DLLs] :HKLM WPCSvc=C:\WINDOWS\SYSTEM32\WPCSVC.DLL
[Svchost DLLs] :HKLM SSDPSRV=C:\WINDOWS\SYSTEM32\SSDPSRV.DLL
[Svchost DLLs] :HKLM upnphost=C:\WINDOWS\SYSTEM32\UPNPHOST.DLL
[Svchost DLLs] :HKLM SCardSvr=C:\WINDOWS\SYSTEM32\SCARDSVR.DLL
[Svchost DLLs] :HKLM TBS=C:\WINDOWS\SYSTEM32\TBSSVC.DLL
[Svchost DLLs] :HKLM QWAVE=C:\WINDOWS\SYSTEM32\QWAVE.DLL
[Svchost DLLs] :HKLM wcncsvc=C:\WINDOWS\SYSTEM32\WCNCSVC.DLL
[Svchost DLLs] :HKLM Power=C:\WINDOWS\SYSTEM32\UMPO.DLL
[Svchost DLLs] :HKLM PlugPlay=C:\WINDOWS\SYSTEM32\UMPNPMGR.DLL
[Svchost DLLs] :HKLM DcomLaunch=C:\WINDOWS\SYSTEM32\RPCSS.DLL
[Svchost DLLs] :HKLM CryptSvc=C:\WINDOWS\SYSTEM32\CRYPTSVC.DLL
[Svchost DLLs] :HKLM DHCP=C:\WINDOWS\SYSTEM32\DHCPCORE.DLL
[Svchost DLLs] :HKLM DNSCache=C:\WINDOWS\SYSTEM32\DNSRSLVR.DLL
[Svchost DLLs] :HKLM NapAgent=C:\WINDOWS\SYSTEM32\QAGENTRT.DLL
[Svchost DLLs] :HKLM nlasvc=C:\WINDOWS\SYSTEM32\NLASVC.DLL
[Svchost DLLs] :HKLM WinRM=C:\WINDOWS\SYSTEM32\WSMSVC.DLL
[Svchost DLLs] :HKLM WECSVC=C:\WINDOWS\SYSTEM32\WECSVC.DLL
[Svchost DLLs] :HKLM StiSvc=C:\WINDOWS\SYSTEM32\WIASERVC.DLL
[Svchost DLLs] :HKLM WcsPlugInService=C:\WINDOWS\SYSTEM32\WCSPLUGINSERVICE.DLL
[Svchost DLLs] :HKLM AppIDSvc=C:\WINDOWS\SYSTEM32\APPIDSVC.DLL
[Svchost DLLs] :HKLM Appinfo=C:\WINDOWS\SYSTEM32\APPINFO.DLL
[Svchost DLLs] :HKLM AxInstSV=C:\WINDOWS\SYSTEM32\AXINSTSV.DLL
[Svchost DLLs] :HKLM BDESVC=C:\WINDOWS\SYSTEM32\BDESVC.DLL
[Svchost DLLs] :HKLM BFE=C:\WINDOWS\SYSTEM32\BFE.DLL
[Svchost DLLs] :HKLM Browser=C:\WINDOWS\SYSTEM32\BROWSER.DLL
[Svchost DLLs] :HKLM bthserv=C:\WINDOWS\SYSTEM32\BTHSERV.DLL
[Svchost DLLs] :HKLM CscService=C:\WINDOWS\SYSTEM32\CSCSVC.DLL
[Svchost DLLs] :HKLM defragsvc=C:\WINDOWS\SYSTEM32\DEFRAGSVC.DLL
[Svchost DLLs] :HKLM DPS=C:\WINDOWS\SYSTEM32\DPS.DLL
[Svchost DLLs] :HKLM EapHost=C:\WINDOWS\SYSTEM32\EAPSVC.DLL
[Svchost DLLs] :HKLM EventSystem=C:\WINDOWS\SYSTEM32\ES.DLL
[Svchost DLLs] :HKLM fdPHost=C:\WINDOWS\SYSTEM32\FDPHOST.DLL
[Svchost DLLs] :HKLM FDResPub=C:\WINDOWS\SYSTEM32\FDRESPUB.DLL
[Svchost DLLs] :HKLM FontCache=C:\WINDOWS\SYSTEM32\FNTCACHE.DLL
[Svchost DLLs] :HKLM hidserv=C:\WINDOWS\SYSTEM32\HIDSERV.DLL
[Svchost DLLs] :HKLM hkmsvc=C:\WINDOWS\SYSTEM32\KMSVC.DLL
[Svchost DLLs] :HKLM HomeGroupListener=C:\WINDOWS\SYSTEM32\LISTSVC.DLL
[Svchost DLLs] :HKLM HomeGroupProvider=C:\WINDOWS\SYSTEM32\PROVSVC.DLL
[Svchost DLLs] :HKLM IKEEXT=C:\WINDOWS\SYSTEM32\IKEEXT.DLL
[Svchost DLLs] :HKLM IPBusEnum=C:\WINDOWS\SYSTEM32\IPBUSENUM.DLL
[Svchost DLLs] :HKLM KtmRm=C:\WINDOWS\SYSTEM32\MSDTCKRM.DLL
[Svchost DLLs] :HKLM LanmanWorkstation=C:\WINDOWS\SYSTEM32\WKSSVC.DLL
[Svchost DLLs] :HKLM lltdsvc=C:\WINDOWS\SYSTEM32\LLTDSVC.DLL
[Svchost DLLs] :HKLM MMCSS=C:\WINDOWS\SYSTEM32\MMCSS.DLL
[Svchost DLLs] :HKLM MpsSvc=C:\WINDOWS\SYSTEM32\MPSSVC.DLL
[Svchost DLLs] :HKLM nsi=C:\WINDOWS\SYSTEM32\NSISVC.DLL
[Svchost DLLs] :HKLM p2pimsvc=C:\WINDOWS\SYSTEM32\PNRPSVC.DLL
[Svchost DLLs] :HKLM p2psvc=C:\WINDOWS\SYSTEM32\P2PSVC.DLL
[Svchost DLLs] :HKLM PcaSvc=C:\WINDOWS\SYSTEM32\PCASVC.DLL
[Svchost DLLs] :HKLM PolicyAgent=C:\WINDOWS\SYSTEM32\IPSECSVC.DLL
[Svchost DLLs] :HKLM ProfSvc=C:\WINDOWS\SYSTEM32\PROFSVC.DLL
[Svchost DLLs] :HKLM RpcEptMapper=C:\WINDOWS\SYSTEM32\RPCEPMAP.DLL
[Svchost DLLs] :HKLM SDRSVC=C:\WINDOWS\SYSTEM32\SDRSVC.DLL
[Svchost DLLs] :HKLM seclogon=C:\WINDOWS\SYSTEM32\SECLOGON.DLL
[Svchost DLLs] :HKLM SensrSvc=C:\WINDOWS\SYSTEM32\SENSRSVC.DLL
[Svchost DLLs] :HKLM SstpSvc=C:\WINDOWS\SYSTEM32\SSTPSVC.DLL
[Svchost DLLs] :HKLM swprv=C:\WINDOWS\SYSTEM32\SWPRV.DLL
[Svchost DLLs] :HKLM SysMain=C:\WINDOWS\SYSTEM32\SYSMAIN.DLL
[Svchost DLLs] :HKLM TabletInputService=C:\WINDOWS\SYSTEM32\TABSVC.DLL
[Svchost DLLs] :HKLM Themes=C:\WINDOWS\SYSTEM32\THEMESERVICE.DLL
[Svchost DLLs] :HKLM THREADORDER=C:\WINDOWS\SYSTEM32\MMCSS.DLL
[Svchost DLLs] :HKLM TrkWks=C:\WINDOWS\SYSTEM32\TRKWKS.DLL
[Svchost DLLs] :HKLM UmRdpService=C:\WINDOWS\SYSTEM32\UMRDP.DLL
[Svchost DLLs] :HKLM UxSms=C:\WINDOWS\SYSTEM32\UXSMS.DLL
[Svchost DLLs] :HKLM W32Time=C:\WINDOWS\SYSTEM32\W32TIME.DLL
[Svchost DLLs] :HKLM WbioSrvc=C:\WINDOWS\SYSTEM32\WBIOSRVC.DLL
[Svchost DLLs] :HKLM WdiServiceHost=C:\WINDOWS\SYSTEM32\WDI.DLL
[Svchost DLLs] :HKLM WdiSystemHost=C:\WINDOWS\SYSTEM32\WDI.DLL
[Svchost DLLs] :HKLM wercplsupport=C:\WINDOWS\SYSTEM32\WERCPLSUPPORT.DLL
[Svchost DLLs] :HKLM WerSvc=C:\WINDOWS\SYSTEM32\WERSVC.DLL
[Svchost DLLs] :HKLM WinDefend=C:\PROGRAM FILES\WINDOWS DEFENDER\MPSVC.DLL
[Svchost DLLs] :HKLM wudfsvc=C:\WINDOWS\SYSTEM32\WUDFSVC.DLL
[Svchost DLLs] :HKLM WwanSvc=C:\WINDOWS\SYSTEM32\WWANSVC.DLL
[Bootexecute] :HKLM BootExecute=autocheck autochk *
[Winlogon System] :HKLM system=""
[Winlogon System] :HKLM taskman=""
[Winlogon System] :HKLM UIHost=""
[Winlogon Autostart] :HKLM VmApplet=SystemPropertiesPerformance.exe /pagefile
[Winlogon Autostart] :HKLM AppSetup=""
[KnownDLLs] :HKLM clbcatq=clbcatq.dll
[KnownDLLs] :HKLM ole32=ole32.dll
[KnownDLLs] :HKLM advapi32=advapi32.dll
[KnownDLLs] :HKLM COMDLG32=COMDLG32.dll
[KnownDLLs] :HKLM DllDirectory=%SystemRoot%\system32
[KnownDLLs] :HKLM DllDirectory32=%SystemRoot%\syswow64
[KnownDLLs] :HKLM gdi32=gdi32.dll
[KnownDLLs] :HKLM IERTUTIL=IERTUTIL.dll
[KnownDLLs] :HKLM IMAGEHLP=IMAGEHLP.dll
[KnownDLLs] :HKLM IMM32=IMM32.dll
[KnownDLLs] :HKLM kernel32=kernel32.dll
[KnownDLLs] :HKLM LPK=LPK.dll
[KnownDLLs] :HKLM MSCTF=MSCTF.dll
[KnownDLLs] :HKLM MSVCRT=MSVCRT.dll
[KnownDLLs] :HKLM NORMALIZ=NORMALIZ.dll
[KnownDLLs] :HKLM NSI=NSI.dll
[KnownDLLs] :HKLM OLEAUT32=OLEAUT32.dll
[KnownDLLs] :HKLM PSAPI=PSAPI.DLL
[KnownDLLs] :HKLM rpcrt4=rpcrt4.dll
[KnownDLLs] :HKLM sechost=sechost.dll
[KnownDLLs] :HKLM Setupapi=Setupapi.dll
[KnownDLLs] :HKLM SHELL32=SHELL32.dll
[KnownDLLs] :HKLM SHLWAPI=SHLWAPI.dll
[KnownDLLs] :HKLM URLMON=URLMON.dll
[KnownDLLs] :HKLM user32=user32.dll
[KnownDLLs] :HKLM USP10=USP10.dll
[KnownDLLs] :HKLM WININET=WININET.dll
[KnownDLLs] :HKLM WLDAP32=WLDAP32.dll
[KnownDLLs] :HKLM WS2_32=WS2_32.dll
[KnownDLLs] :HKLM DifxApi=difxapi.dll
[Environment - Path] :HKLM Path=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\7-Zip
[List of Injected DLLs] :HKLM AppInit_DLLs=""
[LSA Notification Packages] :HKLM scecli=C:\Windows\system32\SCECLI.DLL
[LSA Security Packages] :HKLM kerberos=C:\Windows\system32\KERBEROS.DLL
[LSA Security Packages] :HKLM msv1_0=C:\Windows\system32\MSV1_0.DLL
[LSA Security Packages] :HKLM schannel=C:\Windows\system32\SCHANNEL.DLL
[LSA Security Packages] :HKLM wdigest=C:\Windows\system32\WDIGEST.DLL
[LSA Security Packages] :HKLM tspkg=C:\Windows\system32\TSPKG.DLL
[LSA Security Packages] :HKLM pku2u=C:\Windows\system32\PKU2U.DLL
[Drivers] :HKLM 1394ohci=C:\WINDOWS\SYSTEM32\DRIVERS\1394OHCI.SYS
[Drivers] :HKLM 360AntiHacker=C:\WINDOWS\SYSTEM32\DRIVERS\360ANTIHACKER64.SYS
[Drivers] :HKLM 360AvFlt=C:\WINDOWS\SYSTEM32\DRIVERS\360AVFLT.SYS
[Drivers] :HKLM 360Box64=C:\WINDOWS\SYSTEM32\DRIVERS\360BOX64.SYS
[Drivers] :HKLM 360Camera=C:\WINDOWS\SYSTEM32\DRIVERS\360CAMERA64.SYS
[Drivers] :HKLM 360FsFlt=C:\WINDOWS\SYSTEM32\DRIVERS\360FSFLT.SYS
[Drivers] :HKLM ACPI=C:\WINDOWS\SYSTEM32\DRIVERS\ACPI.SYS
[Drivers] :HKLM AcpiPmi=C:\WINDOWS\SYSTEM32\DRIVERS\ACPIPMI.SYS
[Drivers] :HKLM adp94xx=C:\WINDOWS\SYSTEM32\DRIVERS\ADP94XX.SYS
[Drivers] :HKLM adpahci=C:\WINDOWS\SYSTEM32\DRIVERS\ADPAHCI.SYS
[Drivers] :HKLM adpu320=C:\WINDOWS\SYSTEM32\DRIVERS\ADPU320.SYS
[Drivers] :HKLM AFD=C:\WINDOWS\SYSTEM32\DRIVERS\AFD.SYS
[Drivers] :HKLM agp440=C:\WINDOWS\SYSTEM32\DRIVERS\AGP440.SYS
[Drivers] :HKLM aliide=C:\WINDOWS\SYSTEM32\DRIVERS\ALIIDE.SYS
[Drivers] :HKLM amdide=C:\WINDOWS\SYSTEM32\DRIVERS\AMDIDE.SYS
[Drivers] :HKLM AmdK8=C:\WINDOWS\SYSTEM32\DRIVERS\AMDK8.SYS
[Drivers] :HKLM AmdPPM=C:\WINDOWS\SYSTEM32\DRIVERS\AMDPPM.SYS
[Drivers] :HKLM amdsata=C:\WINDOWS\SYSTEM32\DRIVERS\AMDSATA.SYS
[Drivers] :HKLM amdsbs=C:\WINDOWS\SYSTEM32\DRIVERS\AMDSBS.SYS
[Drivers] :HKLM amdxata=C:\WINDOWS\SYSTEM32\DRIVERS\AMDXATA.SYS
[Drivers] :HKLM AppID=C:\WINDOWS\SYSTEM32\DRIVERS\APPID.SYS
[Drivers] :HKLM arc=C:\WINDOWS\SYSTEM32\DRIVERS\ARC.SYS
[Drivers] :HKLM arcsas=C:\WINDOWS\SYSTEM32\DRIVERS\ARCSAS.SYS
[Drivers] :HKLM AsyncMac=C:\WINDOWS\SYSTEM32\DRIVERS\ASYNCMAC.SYS
[Drivers] :HKLM atapi=C:\WINDOWS\SYSTEM32\DRIVERS\ATAPI.SYS
[Drivers] :HKLM athr=C:\WINDOWS\SYSTEM32\DRIVERS\ATHRX.SYS
[Drivers] :HKLM b06bdrv=C:\WINDOWS\SYSTEM32\DRIVERS\BXVBDA.SYS
[Drivers] :HKLM b57nd60a=C:\WINDOWS\SYSTEM32\DRIVERS\B57ND60A.SYS
[Drivers] :HKLM BAPIDRV=C:\WINDOWS\SYSTEM32\DRIVERS\BAPIDRV64.SYS
[Drivers] :HKLM blbdrive=C:\WINDOWS\SYSTEM32\DRIVERS\BLBDRIVE.SYS
[Drivers] :HKLM bowser=C:\WINDOWS\SYSTEM32\DRIVERS\BOWSER.SYS
[Drivers] :HKLM BrFiltLo=C:\WINDOWS\SYSTEM32\DRIVERS\BRFILTLO.SYS
[Drivers] :HKLM BrFiltUp=C:\WINDOWS\SYSTEM32\DRIVERS\BRFILTUP.SYS
[Drivers] :HKLM Brserid=C:\WINDOWS\SYSTEM32\DRIVERS\BRSERID.SYS
[Drivers] :HKLM BrSerWdm=C:\WINDOWS\SYSTEM32\DRIVERS\BRSERWDM.SYS
[Drivers] :HKLM BrUsbMdm=C:\WINDOWS\SYSTEM32\DRIVERS\BRUSBMDM.SYS
[Drivers] :HKLM BrUsbSer=C:\WINDOWS\SYSTEM32\DRIVERS\BRUSBSER.SYS
[Drivers] :HKLM BtFilter=C:\WINDOWS\SYSTEM32\DRIVERS\BTFILTER.SYS
[Drivers] :HKLM BTHMODEM=C:\WINDOWS\SYSTEM32\DRIVERS\BTHMODEM.SYS
[Drivers] :HKLM BTHPORT=C:\WINDOWS\SYSTEM32\DRIVERS\BTHPORT.SYS
[Drivers] :HKLM BTHUSB=C:\WINDOWS\SYSTEM32\DRIVERS\BTHUSB.SYS
[Drivers] :HKLM cdfs=C:\WINDOWS\SYSTEM32\DRIVERS\CDFS.SYS
[Drivers] :HKLM cdrom=C:\WINDOWS\SYSTEM32\DRIVERS\CDROM.SYS
[Drivers] :HKLM circlass=C:\WINDOWS\SYSTEM32\DRIVERS\CIRCLASS.SYS
[Drivers] :HKLM CLFS=C:\WINDOWS\SYSTEM32\CLFS.SYS
[Drivers] :HKLM CmBatt=C:\WINDOWS\SYSTEM32\DRIVERS\CMBATT.SYS
[Drivers] :HKLM cmdide=C:\WINDOWS\SYSTEM32\DRIVERS\CMDIDE.SYS
[Drivers] :HKLM CNG=C:\WINDOWS\SYSTEM32\DRIVERS\CNG.SYS
[Drivers] :HKLM Compbatt=C:\WINDOWS\SYSTEM32\DRIVERS\COMPBATT.SYS
[Drivers] :HKLM CompositeBus=C:\WINDOWS\SYSTEM32\DRIVERS\COMPOSITEBUS.SYS
[Drivers] :HKLM crcdisk=C:\WINDOWS\SYSTEM32\DRIVERS\CRCDISK.SYS
[Drivers] :HKLM CSC=C:\WINDOWS\SYSTEM32\DRIVERS\CSC.SYS
[Drivers] :HKLM DfsC=C:\WINDOWS\SYSTEM32\DRIVERS\DFSC.SYS
[Drivers] :HKLM discache=C:\WINDOWS\SYSTEM32\DRIVERS\DISCACHE.SYS
[Drivers] :HKLM Disk=C:\WINDOWS\SYSTEM32\DRIVERS\DISK.SYS
[Drivers] :HKLM drmkaud=C:\WINDOWS\SYSTEM32\DRIVERS\DRMKAUD.SYS
[Drivers] :HKLM DXGKrnl=C:\WINDOWS\SYSTEM32\DRIVERS\DXGKRNL.SYS
[Drivers] :HKLM ebdrv=C:\WINDOWS\SYSTEM32\DRIVERS\EVBDA.SYS
[Drivers] :HKLM elxstor=C:\WINDOWS\SYSTEM32\DRIVERS\ELXSTOR.SYS
[Drivers] :HKLM ErrDev=C:\WINDOWS\SYSTEM32\DRIVERS\ERRDEV.SYS
[Drivers] :HKLM fdc=C:\WINDOWS\SYSTEM32\DRIVERS\FDC.SYS
[Drivers] :HKLM FileInfo=C:\WINDOWS\SYSTEM32\DRIVERS\FILEINFO.SYS
[Drivers] :HKLM Filetrace=C:\WINDOWS\SYSTEM32\DRIVERS\FILETRACE.SYS
[Drivers] :HKLM flpydisk=C:\WINDOWS\SYSTEM32\DRIVERS\FLPYDISK.SYS
[Drivers] :HKLM FltMgr=C:\WINDOWS\SYSTEM32\DRIVERS\FLTMGR.SYS
[Drivers] :HKLM FsDepends=C:\WINDOWS\SYSTEM32\DRIVERS\FSDEPENDS.SYS
[Drivers] :HKLM fvevol=C:\WINDOWS\SYSTEM32\DRIVERS\FVEVOL.SYS
[Drivers] :HKLM gagp30kx=C:\WINDOWS\SYSTEM32\DRIVERS\GAGP30KX.SYS
[Drivers] :HKLM hcw85cir=C:\WINDOWS\SYSTEM32\DRIVERS\HCW85CIR.SYS
[Drivers] :HKLM HdAudAddService=C:\WINDOWS\SYSTEM32\DRIVERS\HDAUDIO.SYS
[Drivers] :HKLM HDAudBus=C:\WINDOWS\SYSTEM32\DRIVERS\HDAUDBUS.SYS
[Drivers] :HKLM HECIx64=C:\WINDOWS\SYSTEM32\DRIVERS\HECIX64.SYS
[Drivers] :HKLM HidBatt=C:\WINDOWS\SYSTEM32\DRIVERS\HIDBATT.SYS
[Drivers] :HKLM HidBth=C:\WINDOWS\SYSTEM32\DRIVERS\HIDBTH.SYS
[Drivers] :HKLM HidIr=C:\WINDOWS\SYSTEM32\DRIVERS\HIDIR.SYS
[Drivers] :HKLM HidUsb=C:\WINDOWS\SYSTEM32\DRIVERS\HIDUSB.SYS
[Drivers] :HKLM HpSAMD=C:\WINDOWS\SYSTEM32\DRIVERS\HPSAMD.SYS
[Drivers] :HKLM HTTP=C:\WINDOWS\SYSTEM32\DRIVERS\HTTP.SYS
[Drivers] :HKLM hwpolicy=C:\WINDOWS\SYSTEM32\DRIVERS\HWPOLICY.SYS
[Drivers] :HKLM i8042prt=C:\WINDOWS\SYSTEM32\DRIVERS\I8042PRT.SYS
[Drivers] :HKLM iaStorA=C:\WINDOWS\SYSTEM32\DRIVERS\IASTORA.SYS
[Drivers] :HKLM iaStorF=C:\WINDOWS\SYSTEM32\DRIVERS\IASTORF.SYS
[Drivers] :HKLM iaStorV=C:\WINDOWS\SYSTEM32\DRIVERS\IASTORV.SYS
[Drivers] :HKLM igfx=C:\WINDOWS\SYSTEM32\DRIVERS\IGDKMD64.SYS
[Drivers] :HKLM iirsp=C:\WINDOWS\SYSTEM32\DRIVERS\IIRSP.SYS
[Drivers] :HKLM IntcAzAudAddService=C:\WINDOWS\SYSTEM32\DRIVERS\RTKVHD64.SYS
[Drivers] :HKLM IntcDAud=C:\WINDOWS\SYSTEM32\DRIVERS\INTCDAUD.SYS
[Drivers] :HKLM intelide=C:\WINDOWS\SYSTEM32\DRIVERS\INTELIDE.SYS
[Drivers] :HKLM intelppm=C:\WINDOWS\SYSTEM32\DRIVERS\INTELPPM.SYS
[Drivers] :HKLM IpFilterDriver=C:\WINDOWS\SYSTEM32\DRIVERS\IPFLTDRV.SYS
[Drivers] :HKLM IPMIDRV=C:\WINDOWS\SYSTEM32\DRIVERS\IPMIDRV.SYS
[Drivers] :HKLM IPNAT=C:\WINDOWS\SYSTEM32\DRIVERS\IPNAT.SYS
[Drivers] :HKLM IRENUM=C:\WINDOWS\SYSTEM32\DRIVERS\IRENUM.SYS
[Drivers] :HKLM isapnp=C:\WINDOWS\SYSTEM32\DRIVERS\ISAPNP.SYS
[Drivers] :HKLM iScsiPrt=C:\WINDOWS\SYSTEM32\DRIVERS\MSISCSI.SYS
[Drivers] :HKLM kbdclass=C:\WINDOWS\SYSTEM32\DRIVERS\KBDCLASS.SYS
[Drivers] :HKLM kbdhid=C:\WINDOWS\SYSTEM32\DRIVERS\KBDHID.SYS
[Drivers] :HKLM KSecDD=C:\WINDOWS\SYSTEM32\DRIVERS\KSECDD.SYS
[Drivers] :HKLM KSecPkg=C:\WINDOWS\SYSTEM32\DRIVERS\KSECPKG.SYS
[Drivers] :HKLM ksthunk=C:\WINDOWS\SYSTEM32\DRIVERS\KSTHUNK.SYS
[Drivers] :HKLM lltdio=C:\WINDOWS\SYSTEM32\DRIVERS\LLTDIO.SYS
[Drivers] :HKLM LSI_FC=C:\WINDOWS\SYSTEM32\DRIVERS\LSI_FC.SYS
[Drivers] :HKLM LSI_SAS=C:\WINDOWS\SYSTEM32\DRIVERS\LSI_SAS.SYS
[Drivers] :HKLM LSI_SAS2=C:\WINDOWS\SYSTEM32\DRIVERS\LSI_SAS2.SYS
[Drivers] :HKLM LSI_SCSI=C:\WINDOWS\SYSTEM32\DRIVERS\LSI_SCSI.SYS
[Drivers] :HKLM luafv=C:\WINDOWS\SYSTEM32\DRIVERS\LUAFV.SYS
[Drivers] :HKLM megasas=C:\WINDOWS\SYSTEM32\DRIVERS\MEGASAS.SYS
[Drivers] :HKLM MegaSR=C:\WINDOWS\SYSTEM32\DRIVERS\MEGASR.SYS
[Drivers] :HKLM Modem=C:\WINDOWS\SYSTEM32\DRIVERS\MODEM.SYS
[Drivers] :HKLM monitor=C:\WINDOWS\SYSTEM32\DRIVERS\MONITOR.SYS
[Drivers] :HKLM mouclass=C:\WINDOWS\SYSTEM32\DRIVERS\MOUCLASS.SYS
[Drivers] :HKLM mouhid=C:\WINDOWS\SYSTEM32\DRIVERS\MOUHID.SYS
[Drivers] :HKLM mountmgr=C:\WINDOWS\SYSTEM32\DRIVERS\MOUNTMGR.SYS
[Drivers] :HKLM mpio=C:\WINDOWS\SYSTEM32\DRIVERS\MPIO.SYS
[Drivers] :HKLM mpsdrv=C:\WINDOWS\SYSTEM32\DRIVERS\MPSDRV.SYS
[Drivers] :HKLM MRxDAV=C:\WINDOWS\SYSTEM32\DRIVERS\MRXDAV.SYS
[Drivers] :HKLM mrxsmb=C:\WINDOWS\SYSTEM32\DRIVERS\MRXSMB.SYS
[Drivers] :HKLM mrxsmb10=C:\WINDOWS\SYSTEM32\DRIVERS\MRXSMB10.SYS
[Drivers] :HKLM mrxsmb20=C:\WINDOWS\SYSTEM32\DRIVERS\MRXSMB20.SYS
[Drivers] :HKLM msahci=C:\WINDOWS\SYSTEM32\DRIVERS\MSAHCI.SYS
[Drivers] :HKLM msdsm=C:\WINDOWS\SYSTEM32\DRIVERS\MSDSM.SYS
[Drivers] :HKLM mshidkmdf=C:\WINDOWS\SYSTEM32\DRIVERS\MSHIDKMDF.SYS
[Drivers] :HKLM msisadrv=C:\WINDOWS\SYSTEM32\DRIVERS\MSISADRV.SYS
[Drivers] :HKLM MSKSSRV=C:\WINDOWS\SYSTEM32\DRIVERS\MSKSSRV.SYS
[Drivers] :HKLM MSPCLOCK=C:\WINDOWS\SYSTEM32\DRIVERS\MSPCLOCK.SYS
[Drivers] :HKLM MSPQM=C:\WINDOWS\SYSTEM32\DRIVERS\MSPQM.SYS
[Drivers] :HKLM mssmbios=C:\WINDOWS\SYSTEM32\DRIVERS\MSSMBIOS.SYS
[Drivers] :HKLM MSTEE=C:\WINDOWS\SYSTEM32\DRIVERS\MSTEE.SYS
[Drivers] :HKLM MTConfig=C:\WINDOWS\SYSTEM32\DRIVERS\MTCONFIG.SYS
[Drivers] :HKLM Mup=C:\WINDOWS\SYSTEM32\DRIVERS\MUP.SYS
[Drivers] :HKLM NativeWifiP=C:\WINDOWS\SYSTEM32\DRIVERS\NWIFI.SYS
[Drivers] :HKLM NDIS=C:\WINDOWS\SYSTEM32\DRIVERS\NDIS.SYS
[Drivers] :HKLM NdisCap=C:\WINDOWS\SYSTEM32\DRIVERS\NDISCAP.SYS
[Drivers] :HKLM NdisTapi=C:\WINDOWS\SYSTEM32\DRIVERS\NDISTAPI.SYS
[Drivers] :HKLM Ndisuio=C:\WINDOWS\SYSTEM32\DRIVERS\NDISUIO.SYS
[Drivers] :HKLM NdisWan=C:\WINDOWS\SYSTEM32\DRIVERS\NDISWAN.SYS
[Drivers] :HKLM Neo_VPN=C:\WINDOWS\SYSTEM32\DRIVERS\NEO_0057.SYS
[Drivers] :HKLM NetBIOS=C:\WINDOWS\SYSTEM32\DRIVERS\NETBIOS.SYS
[Drivers] :HKLM NetBT=C:\WINDOWS\SYSTEM32\DRIVERS\NETBT.SYS
[Drivers] :HKLM nfrd960=C:\WINDOWS\SYSTEM32\DRIVERS\NFRD960.SYS
[Drivers] :HKLM nsiproxy=C:\WINDOWS\SYSTEM32\DRIVERS\NSIPROXY.SYS
[Drivers] :HKLM nvraid=C:\WINDOWS\SYSTEM32\DRIVERS\NVRAID.SYS
[Drivers] :HKLM nvstor=C:\WINDOWS\SYSTEM32\DRIVERS\NVSTOR.SYS
[Drivers] :HKLM nv_agp=C:\WINDOWS\SYSTEM32\DRIVERS\NV_AGP.SYS
[Drivers] :HKLM ohci1394=C:\WINDOWS\SYSTEM32\DRIVERS\OHCI1394.SYS
[Drivers] :HKLM orange_zte_cdc_acm=C:\WINDOWS\SYSTEM32\DRIVERS\ORANGE_ZTE_CDC_ACM.SYS
[Drivers] :HKLM orange_zte_cpo=C:\WINDOWS\SYSTEM32\DRIVERS\ORANGE_ZTE_CPO.SYS
[Drivers] :HKLM Parport=C:\WINDOWS\SYSTEM32\DRIVERS\PARPORT.SYS
[Drivers] :HKLM partmgr=C:\WINDOWS\SYSTEM32\DRIVERS\PARTMGR.SYS
[Drivers] :HKLM pci=C:\WINDOWS\SYSTEM32\DRIVERS\PCI.SYS
[Drivers] :HKLM pciide=C:\WINDOWS\SYSTEM32\DRIVERS\PCIIDE.SYS
[Drivers] :HKLM pcmcia=C:\WINDOWS\SYSTEM32\DRIVERS\PCMCIA.SYS
[Drivers] :HKLM pcw=C:\WINDOWS\SYSTEM32\DRIVERS\PCW.SYS
[Drivers] :HKLM PEAUTH=C:\WINDOWS\SYSTEM32\DRIVERS\PEAUTH.SYS
[Drivers] :HKLM PptpMiniport=C:\WINDOWS\SYSTEM32\DRIVERS\RASPPTP.SYS
[Drivers] :HKLM Processor=C:\WINDOWS\SYSTEM32\DRIVERS\PROCESSR.SYS
[Drivers] :HKLM Psched=C:\WINDOWS\SYSTEM32\DRIVERS\PACER.SYS
[Drivers] :HKLM ql2300=C:\WINDOWS\SYSTEM32\DRIVERS\QL2300.SYS
[Drivers] :HKLM ql40xx=C:\WINDOWS\SYSTEM32\DRIVERS\QL40XX.SYS
[Drivers] :HKLM QWAVEdrv=C:\WINDOWS\SYSTEM32\DRIVERS\QWAVEDRV.SYS
[Drivers] :HKLM RasAcd=C:\WINDOWS\SYSTEM32\DRIVERS\RASACD.SYS
[Drivers] :HKLM RasAgileVpn=C:\WINDOWS\SYSTEM32\DRIVERS\AGILEVPN.SYS
[Drivers] :HKLM Rasl2tp=C:\WINDOWS\SYSTEM32\DRIVERS\RASL2TP.SYS
[Drivers] :HKLM RasPppoe=C:\WINDOWS\SYSTEM32\DRIVERS\RASPPPOE.SYS
[Drivers] :HKLM RasSstp=C:\WINDOWS\SYSTEM32\DRIVERS\RASSSTP.SYS
[Drivers] :HKLM rdbss=C:\WINDOWS\SYSTEM32\DRIVERS\RDBSS.SYS
[Drivers] :HKLM rdpbus=C:\WINDOWS\SYSTEM32\DRIVERS\RDPBUS.SYS
[Drivers] :HKLM RDPCDD=C:\WINDOWS\SYSTEM32\DRIVERS\RDPCDD.SYS
[Drivers] :HKLM RDPDR=C:\WINDOWS\SYSTEM32\DRIVERS\RDPDR.SYS
[Drivers] :HKLM RDPENCDD=C:\WINDOWS\SYSTEM32\DRIVERS\RDPENCDD.SYS
[Drivers] :HKLM RDPREFMP=C:\WINDOWS\SYSTEM32\DRIVERS\RDPREFMP.SYS
[Drivers] :HKLM rdyboost=C:\WINDOWS\SYSTEM32\DRIVERS\RDYBOOST.SYS
[Drivers] :HKLM RSPCIESTOR=C:\WINDOWS\SYSTEM32\DRIVERS\RTSPSTOR.SYS
[Drivers] :HKLM rspndr=C:\WINDOWS\SYSTEM32\DRIVERS\RSPNDR.SYS
[Drivers] :HKLM RTL8167=C:\WINDOWS\SYSTEM32\DRIVERS\RT64WIN7.SYS
[Drivers] :HKLM s3cap=C:\WINDOWS\SYSTEM32\DRIVERS\VMS3CAP.SYS
[Drivers] :HKLM sbp2port=C:\WINDOWS\SYSTEM32\DRIVERS\SBP2PORT.SYS
[Drivers] :HKLM scfilter=C:\WINDOWS\SYSTEM32\DRIVERS\SCFILTER.SYS
[Drivers] :HKLM Serenum=C:\WINDOWS\SYSTEM32\DRIVERS\SERENUM.SYS
[Drivers] :HKLM Serial=C:\WINDOWS\SYSTEM32\DRIVERS\SERIAL.SYS
[Drivers] :HKLM sermouse=C:\WINDOWS\SYSTEM32\DRIVERS\SERMOUSE.SYS
[Drivers] :HKLM sffdisk=C:\WINDOWS\SYSTEM32\DRIVERS\SFFDISK.SYS
[Drivers] :HKLM sffp_mmc=C:\WINDOWS\SYSTEM32\DRIVERS\SFFP_MMC.SYS
[Drivers] :HKLM sffp_sd=C:\WINDOWS\SYSTEM32\DRIVERS\SFFP_SD.SYS
[Drivers] :HKLM sfloppy=C:\WINDOWS\SYSTEM32\DRIVERS\SFLOPPY.SYS
[Drivers] :HKLM SiSRaid2=C:\WINDOWS\SYSTEM32\DRIVERS\SISRAID2.SYS
[Drivers] :HKLM SiSRaid4=C:\WINDOWS\SYSTEM32\DRIVERS\SISRAID4.SYS
[Drivers] :HKLM Smb=C:\WINDOWS\SYSTEM32\DRIVERS\SMB.SYS
[Drivers] :HKLM SmbDrvI=C:\WINDOWS\SYSTEM32\DRIVERS\SMB_DRIVER_INTEL.SYS
[Drivers] :HKLM srv=C:\WINDOWS\SYSTEM32\DRIVERS\SRV.SYS
[Drivers] :HKLM srv2=C:\WINDOWS\SYSTEM32\DRIVERS\SRV2.SYS
[Drivers] :HKLM srvnet=C:\WINDOWS\SYSTEM32\DRIVERS\SRVNET.SYS
[Drivers] :HKLM stexstor=C:\WINDOWS\SYSTEM32\DRIVERS\STEXSTOR.SYS
[Drivers] :HKLM storflt=C:\WINDOWS\SYSTEM32\DRIVERS\VMSTORFL.SYS
[Drivers] :HKLM storvsc=C:\WINDOWS\SYSTEM32\DRIVERS\STORVSC.SYS
[Drivers] :HKLM swenum=C:\WINDOWS\SYSTEM32\DRIVERS\SWENUM.SYS
[Drivers] :HKLM SynTP=C:\WINDOWS\SYSTEM32\DRIVERS\SYNTP.SYS
[Drivers] :HKLM tap0901=C:\WINDOWS\SYSTEM32\DRIVERS\TAP0901.SYS
[Drivers] :HKLM Tcpip=C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS
[Drivers] :HKLM TCPIP6=C:\WINDOWS\SYSTEM32\DRIVERS\TCPIP.SYS
[Drivers] :HKLM tcpipreg=C:\WINDOWS\SYSTEM32\DRIVERS\TCPIPREG.SYS
[Drivers] :HKLM TDPIPE=C:\WINDOWS\SYSTEM32\DRIVERS\TDPIPE.SYS
[Drivers] :HKLM TDTCP=C:\WINDOWS\SYSTEM32\DRIVERS\TDTCP.SYS
[Drivers] :HKLM tdx=C:\WINDOWS\SYSTEM32\DRIVERS\TDX.SYS
[Drivers] :HKLM TermDD=C:\WINDOWS\SYSTEM32\DRIVERS\TERMDD.SYS
[Drivers] :HKLM tssecsrv=C:\WINDOWS\SYSTEM32\DRIVERS\TSSECSRV.SYS
[Drivers] :HKLM tunnel=C:\WINDOWS\SYSTEM32\DRIVERS\TUNNEL.SYS
[Drivers] :HKLM uagp35=C:\WINDOWS\SYSTEM32\DRIVERS\UAGP35.SYS
[Drivers] :HKLM udfs=C:\WINDOWS\SYSTEM32\DRIVERS\UDFS.SYS
[Drivers] :HKLM uliagpkx=C:\WINDOWS\SYSTEM32\DRIVERS\ULIAGPKX.SYS
[Drivers] :HKLM umbus=C:\WINDOWS\SYSTEM32\DRIVERS\UMBUS.SYS
[Drivers] :HKLM UmPass=C:\WINDOWS\SYSTEM32\DRIVERS\UMPASS.SYS
[Drivers] :HKLM usbccgp=C:\WINDOWS\SYSTEM32\DRIVERS\USBCCGP.SYS
[Drivers] :HKLM usbcir=C:\WINDOWS\SYSTEM32\DRIVERS\USBCIR.SYS
[Drivers] :HKLM usbehci=C:\WINDOWS\SYSTEM32\DRIVERS\USBEHCI.SYS
[Drivers] :HKLM usbhub=C:\WINDOWS\SYSTEM32\DRIVERS\USBHUB.SYS
[Drivers] :HKLM usbohci=C:\WINDOWS\SYSTEM32\DRIVERS\USBOHCI.SYS
[Drivers] :HKLM usbprint=C:\WINDOWS\SYSTEM32\DRIVERS\USBPRINT.SYS
[Drivers] :HKLM USBSTOR=C:\WINDOWS\SYSTEM32\DRIVERS\USBSTOR.SYS
[Drivers] :HKLM usbuhci=C:\WINDOWS\SYSTEM32\DRIVERS\USBUHCI.SYS
[Drivers] :HKLM usbvideo=C:\WINDOWS\SYSTEM32\DRIVERS\USBVIDEO.SYS
[Drivers] :HKLM vdrvroot=C:\WINDOWS\SYSTEM32\DRIVERS\VDRVROOT.SYS
[Drivers] :HKLM vga=C:\WINDOWS\SYSTEM32\DRIVERS\VGAPNP.SYS
[Drivers] :HKLM VgaSave=C:\WINDOWS\SYSTEM32\DRIVERS\VGA.SYS
[Drivers] :HKLM vhdmp=C:\WINDOWS\SYSTEM32\DRIVERS\VHDMP.SYS
[Drivers] :HKLM viaide=C:\WINDOWS\SYSTEM32\DRIVERS\VIAIDE.SYS
[Drivers] :HKLM vmbus=C:\WINDOWS\SYSTEM32\DRIVERS\VMBUS.SYS
[Drivers] :HKLM VMBusHID=C:\WINDOWS\SYSTEM32\DRIVERS\VMBUSHID.SYS
[Drivers] :HKLM volmgr=C:\WINDOWS\SYSTEM32\DRIVERS\VOLMGR.SYS
[Drivers] :HKLM volmgrx=C:\WINDOWS\SYSTEM32\DRIVERS\VOLMGRX.SYS
[Drivers] :HKLM volsnap=C:\WINDOWS\SYSTEM32\DRIVERS\VOLSNAP.SYS
[Drivers] :HKLM vsmraid=C:\WINDOWS\SYSTEM32\DRIVERS\VSMRAID.SYS
[Drivers] :HKLM vwifibus=C:\WINDOWS\SYSTEM32\DRIVERS\VWIFIBUS.SYS
[Drivers] :HKLM vwififlt=C:\WINDOWS\SYSTEM32\DRIVERS\VWIFIFLT.SYS
[Drivers] :HKLM WacomPen=C:\WINDOWS\SYSTEM32\DRIVERS\WACOMPEN.SYS
[Drivers] :HKLM WANARP=C:\WINDOWS\SYSTEM32\DRIVERS\WANARP.SYS
[Drivers] :HKLM Wanarpv6=C:\WINDOWS\SYSTEM32\DRIVERS\WANARP.SYS
[Drivers] :HKLM Wd=C:\WINDOWS\SYSTEM32\DRIVERS\WD.SYS
[Drivers] :HKLM Wdf01000=C:\WINDOWS\SYSTEM32\DRIVERS\WDF01000.SYS
[Drivers] :HKLM WfpLwf=C:\WINDOWS\SYSTEM32\DRIVERS\WFPLWF.SYS
[Drivers] :HKLM WIMMount=C:\WINDOWS\SYSTEM32\DRIVERS\WIMMOUNT.SYS
[Drivers] :HKLM WiseHDInfo=C:\WINDOWS\WISEHDINFO64.DLL
[Drivers] :HKLM WiseTdiFw=C:\WINDOWS\WISETDIFW64.SYS
[Drivers] :HKLM WmiAcpi=C:\WINDOWS\SYSTEM32\DRIVERS\WMIACPI.SYS
[Drivers] :HKLM ws2ifsl=C:\WINDOWS\SYSTEM32\DRIVERS\WS2IFSL.SYS
[Drivers] :HKLM WudfPf=C:\WINDOWS\SYSTEM32\DRIVERS\WUDFPF.SYS
[Codecs] :HKLM vidc.mrle=C:\Windows\system32\MSRLE32.DLL
[Codecs] :HKLM vidc.msvc=C:\Windows\system32\MSVIDC32.DLL
[Codecs] :HKLM msacm.imaadpcm=C:\Windows\system32\IMAADP32.ACM
[Codecs] :HKLM msacm.msg711=C:\Windows\system32\MSG711.ACM
[Codecs] :HKLM msacm.msgsm610=C:\Windows\system32\MSGSM32.ACM
[Codecs] :HKLM msacm.msadpcm=C:\Windows\system32\MSADP32.ACM
[Codecs] :HKLM midimapper=C:\Windows\system32\MIDIMAP.DLL
[Codecs] :HKLM wavemapper=C:\Windows\system32\MSACM32.DRV
[Codecs] :HKLM vidc.uyvy=C:\Windows\system32\MSYUV.DLL
[Codecs] :HKLM vidc.yuy2=C:\Windows\system32\MSYUV.DLL
[Codecs] :HKLM vidc.yvyu=C:\Windows\system32\MSYUV.DLL
[Codecs] :HKLM vidc.iyuv=C:\Windows\system32\IYUV_32.DLL
[Codecs] :HKLM vidc.i420=C:\Windows\system32\IYUV_32.DLL
[Codecs] :HKLM vidc.yvu9=C:\Windows\system32\TSBYUV.DLL
[Codecs] :HKLM vidc.cvid=C:\WINDOWS\Syswow64\ICCVID.DLL
[Codecs] :HKLM wave1=C:\Windows\system32\WDMAUD.DRV
[Codecs] :HKLM midi1=C:\Windows\system32\WDMAUD.DRV
[Codecs] :HKLM mixer1=C:\Windows\system32\WDMAUD.DRV
[Codecs] :HKLM aux1=C:\Windows\system32\WDMAUD.DRV
[Codecs] :HKLM wave=C:\Windows\system32\WDMAUD.DRV
[Codecs] :HKLM midi=C:\Windows\system32\WDMAUD.DRV
[Codecs] :HKLM mixer=C:\Windows\system32\WDMAUD.DRV
[Codecs] :HKLM aux=C:\Windows\system32\WDMAUD.DRV
[Codecs] :HKLM vidc.iv50=C:\WINDOWS\SYSWOW64\IR50_32.DLL
[Codecs] :HKLM VIDC.CSM0=CSMX.dll
[Codecs] :HKLM vidc.ffds=C:\Windows\system32\FF_VFW.DLL
[Codecs] :HKLM msacm.avis=C:\WINDOWS\Syswow64\FF_ACM.ACM
[Codecs] :HKLM msacm.aacacm=C:\WINDOWS\SYSWOW64\AACACM.ACM
[Codecs] :HKLM msacm.ac3acm=C:\WINDOWS\SYSWOW64\AC3ACM.ACM
[Codecs] :HKLM VIDC.CSCD=C:\WINDOWS\SYSWOW64\CAMCODEC.DLL
[Codecs] :HKLM VIDC.CFHD=C:\WINDOWS\SYSWOW64\CFHD.DLL
[Codecs] :HKLM msacm.l3acm=C:\WINDOWS\SYSWOW64\L3CODECA.ACM
[Codecs] :HKLM VIDC.LAGS=C:\Windows\system32\LAGARITH.DLL
[Codecs] :HKLM VIDC.MLCY=C:\WINDOWS\SYSWOW64\MLC.DLL
[Codecs] :HKLM vidc.x264=C:\PROGRA~2\X264VFW\X264VFW.DLL
[Codecs] :HKLM VIDC.VP80=C:\WINDOWS\SYSWOW64\VP8VFW.DLL
[Codecs] :HKLM msacm.iac2=C:\WINDOWS\SYSWOW64\IAC25_32.AX
[Codecs] :HKLM VIDC.IV41=C:\WINDOWS\SYSWOW64\IR41_32.DLL
[Codecs] :HKLM VIDC.GEOX=C:\WINDOWS\SYSWOW64\GEOCODEC.DLL
[Codecs] :HKLM VIDC.GEOV=C:\WINDOWS\SYSWOW64\GEOCODEC.DLL
[Codecs] :HKLM VIDC.GEOS=C:\WINDOWS\SYSWOW64\GEOCODECD.DLL
[Codecs] :HKLM VIDC.VMnc=C:\WINDOWS\SYSWOW64\VMNC.DLL
[DCOM Components] :HKLM {F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}=""
[DCOM Components] :HKLM {5839FCA9-774D-42A1-ACDA-D6A79037F57F}=C:\WINDOWS\SYSTEM32\WBEM\FASTPROX.DLL
[DCOM Components] :HKLM {42AEDC87-2188-41FD-B9A3-0C966FEABEC1}=C:\WINDOWS\SYSTEM32\SHELL32.DLL
[DCOM User Components] :HKCU {F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}=""
[DCOM User Components] :HKCU {FBEB8A05-BEEE-4442-804E-409D6C4515E9}=""
[DCOM User Components] :HKCU {42AEDC87-2188-41FD-B9A3-0C966FEABEC1}=""
[Auto Start Apps]
[Registry Run] :HKCU ultracopier=C:\PROGRAM FILES\SUPERCOPIER\SUPERCOPIER.EXE
[Registry Run] :HKLM BCSSync=C:\PROGRAM FILES (X86)\MICROSOFT OFFICE\OFFICE14\BCSSYNC.EXE
[Registry Run] :HKLM QHSafeTray=C:\PROGRAM FILES (X86)\360\TOTAL SECURITY\SAFEMON\QHSAFETRAY.EXE
[Registry Run] :HKLM SunJavaUpdateSched=C:\PROGRAM FILES (X86)\JAVA\JRE6\BIN\JUSCHED.EXE
[Registry Run] :HKLM Adobe Reader Speed Launcher=C:\PROGRAM FILES (X86)\ADOBE\READER 9.0\READER\READER_SL.EXE
[Registry Run(x64)] :HKLM RTHDVCPL=C:\PROGRAM FILES\REALTEK\AUDIO\HDA\RTKNGUI64.EXE
[Registry Run(x64)] :HKLM IgfxTray=C:\WINDOWS\SYSTEM32\IGFXTRAY.EXE
[Registry Run(x64)] :HKLM HotKeysCmds=C:\WINDOWS\SYSTEM32\HKCMD.EXE
[Registry Run(x64)] :HKLM Persistence=C:\WINDOWS\SYSTEM32\IGFXPERS.EXE
[Registry Run(x64)] :HKLM SoftEther VPN Client UI Helper=C:\PROGRAM FILES\SOFTETHER VPN CLIENT\VPNCLIENT_X64.EXE
[Registry RunOnce] :HKLM "Default Value"=""
[Win.ini] :HKCU load=""
[Win.ini] :HKCU run=""
[Common Startup Folder] Launcher.lnk=C:\PROGRAM FILES (X86)\INTERNETEVERYWHERE\INTERNETEVERYWHERE_LAUNCHER.EXE
[Common Startup Folder] SoftEther VPN Client Manager Startup.lnk=C:\PROGRAM FILES\SOFTETHER VPN CLIENT\VPNCMGR_X64.EXE
[Scheduled Tasks] Wise Turbo Checker=C:\PROGRAM FILES (X86)\WISE\WISE CARE 365\WISETURBO.EXE
[Scheduled Tasks] Wise System Monitor=C:\PROGRAM FILES (X86)\WISE\WISE SYSTEM MONITOR\WISESYSTEMMONITOR.EXE
[Scheduled Tasks] Wise Care 365=C:\PROGRAM FILES (X86)\WISE\WISE CARE 365\WISETRAY.EXE
[Unwanted Software Files] :HKLM TorchCrashHandler=C:\PROGRAMDATA\TORCHCRASHHANDLER\
[Unwanted Software Files] :HKLM Torch=C:\USERS\KARIMU\APPDATA\LOCAL\TORCH\
[Detected using Heuristic Algorithm] :HKLM FASTSTONE IMAGE VIEWER=C:\PROGRAM FILES (X86)\FASTSTONE IMAGE VIEWER\
[Detected using Heuristic Algorithm] :HKLM GREATIS=C:\PROGRAM FILES (X86)\GREATIS\
[Detected using Heuristic Algorithm] :HKLM KMPLAYER=C:\PROGRAM FILES (X86)\KMPLAYER\
[Detected using Heuristic Algorithm] :HKLM MOZILLA FIREFOX=C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\
[Detected using Heuristic Algorithm] :HKLM OPERA=C:\PROGRAM FILES (X86)\OPERA\
[Detected using Heuristic Algorithm] :HKLM SPLAYER=C:\PROGRAM FILES (X86)\SPLAYER\
[Detected using Heuristic Algorithm] :HKLM TOTAL COMMANDER=C:\PROGRAM FILES (X86)\TOTAL COMMANDER\
[Detected using Heuristic Algorithm] :HKLM DIFX=C:\PROGRAM FILES\DIFX\
[Detected using Heuristic Algorithm] :HKLM SOFTETHER VPN CLIENT=C:\PROGRAM FILES\SOFTETHER VPN CLIENT\
[Detected using Heuristic Algorithm] :HKLM 360QUARANT=C:\PROGRAMDATA\360QUARANT\
[Detected using Heuristic Algorithm] :HKLM 360SAFE=C:\PROGRAMDATA\360SAFE\
[Detected using Heuristic Algorithm] :HKLM 360TOTALSECURITY=C:\PROGRAMDATA\360TOTALSECURITY\
[Detected using Heuristic Algorithm] :HKLM MICROSOFT=C:\PROGRAMDATA\MICROSOFT\
[Detected using Heuristic Algorithm] :HKLM REGRUN=C:\PROGRAMDATA\REGRUN\
[Detected using Heuristic Algorithm] :HKLM 360BROWSER=C:\USERS\KARIMU\APPDATA\LOCAL\360BROWSER\
[Detected using Heuristic Algorithm] :HKLM TEMP=C:\USERS\KARIMU\APPDATA\LOCAL\TEMP\
[Detected using Heuristic Algorithm] :HKLM 360WD=C:\USERS\KARIMU\APPDATA\LOCALLOW\360WD\
[Detected using Heuristic Algorithm] :HKLM AIMP3=C:\USERS\KARIMU\APPDATA\ROAMING\AIMP3\
[Detected using Heuristic Algorithm] :HKLM INTERNETEVERYWHERE=C:\USERS\KARIMU\APPDATA\ROAMING\INTERNETEVERYWHERE\
[Detected using Heuristic Algorithm] :HKLM SPLAYER=C:\USERS\KARIMU\APPDATA\ROAMING\SPLAYER\
[Detected using Heuristic Algorithm] :HKLM TOR=C:\USERS\KARIMU\APPDATA\ROAMING\TOR\
[Detected using Heuristic Algorithm] :HKLM WISE CARE 365=C:\USERS\KARIMU\APPDATA\ROAMING\WISE CARE 365\
[Detected using Heuristic Algorithm] :HKLM WISE GAME BOOSTER=C:\USERS\KARIMU\APPDATA\ROAMING\WISE GAME BOOSTER\
[Detected using Heuristic Algorithm] :HKLM ZHP=C:\USERS\KARIMU\APPDATA\ROAMING\ZHP\
[Detected using Heuristic Algorithm] :HKLM DESKTOP=C:\USERS\KARIMU\DESKTOP\
[Detected using Heuristic Algorithm] :HKLM DOCUMENTS=C:\USERS\KARIMU\DOCUMENTS\
[Detected using Heuristic Algorithm] :HKLM DOWNLOADS=C:\USERS\KARIMU\DOWNLOADS\
[In memory]
[Running Processes] C:\PROGRAM FILES (X86)\360\TOTAL SECURITY\SAFEMON\QHACTIVEDEFENSE.EXE
[Running Processes] C:\PROGRAM FILES (X86)\360\TOTAL SECURITY\SAFEMON\QHWATCHDOG.EXE
[Running Processes] C:\PROGRAM FILES (X86)\360\TOTAL SECURITY\SAFEMON\QHSAFETRAY.EXE
[Running Processes] C:\USBFIX\USBFIX.EXE
[Running Processes] C:\PROGRAM FILES (X86)\TEAMVIE
17 nov. 2015 à 23:08
Je voulais voir les items que tu détecte, acec Clic droit dans le milieu de la fenètre
Save to file (un pour chaque item détecté)
18 nov. 2015 à 10:32
apparemment tout à lair de bien fonctionné en tout cas merci beacoups