Aller au contenu
doni

Mise à jour impossible Windows Vista : erreur 80096001

Messages recommandés

bonsoir à tous,

suite a une attaque viral je me suis retrouvé avec l'impossibilité de mettre a jour Windows MSE ne démarrait pas plus de fire wall... a force de fouiller partout j'ai réussi a presque régler le problème ( fire wall retabli ainsi que MSE) mais la je cale ....

le centre de sécurité est désactivé :

lorsque je veut metre a jour Windows la reponse est :

code erreur 80096001

j'ai essayé de passer par microsoft fixit impossible de l'installer erreur inattendue !!

donc je ne sais plus quoi faire

...

MErci de votre aide !

 

Compact Presario CQ70 VISTA basique Pack2

Partager ce message


Lien à poster
Partager sur d’autres sites

Bonsoir

 

Essai ceci.

 

Télécharge WinUpdateFix de Xplode sur le bureau

Les Téléchargements - Outils de Xplode - WinUpdateFix

 

Lance-le en cliquant sur l'icône, il ne nécessite pas d'installation.

Sous Vista/7, faire un clic droit sur l'icône et Exécuter en tant qu'administrateur.

 

Clique sur le bouton Démarrer pour les trois cadres Services - BITS - Service de cryptographie si nécessaire.

Coche les cases devant les lignes suivantes (en gras) en appuyant sur Tous :

-Effacer le catalogue des mises à jour

-Réinscire les DLL

-Vider le dossier SoftwareDistribution

-Réinitialiser les paramètres Winsock

-Supprimer les fichiers temporaires

-Réinitialiser les descripteurs de sécurité

-Supprimer le proxy

-Restaurer les policies

-Effacer la file d'attente BITS

 

 

110413091819360846.jpg

 

 

Clique sur le bouton Exécuter

Un message t'avertira de la réussite de l'opération.

Il te sera demandé de redémarrer dans le cas d'une réinitialisation des paramètres Winsocks, fais-le en validant par OK

 

 

Pour tester le résultat :

Sous Vista/7 : Dans le panneau de configuration, Windows Update, clique sur Rechercher des mises à jour.

Partager ce message


Lien à poster
Partager sur d’autres sites

bonsoir et dsl pour une reponse si tardive.. (j'etais à l'etranger)

bon ben j'ai fait ce que tu m'indique plus haut et.. rien toujours pareil :

centre de securité desactivé, et update impossible...

une autre solution ? car la je ne sais plus quoi faire

Merci encore de ton aide

Partager ce message


Lien à poster
Partager sur d’autres sites

ok on va voir plus loin.

 

 

* Télécharge >> OTL <<sur ton bureau.

 

* Fait un double-clic sur l'icône d'OTL pour le lancer

/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

 

* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

 

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport minimal " soit cochée.

 

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL " Personnalisation"

%temp%\smtmp\1\*.* /s

%temp%\smtmp\2\*.* /s

%temp%\smtmp\4\*.* /s

NetSvcs

%systemroot%\system32\drivers\*.sys /lockedfiles

msconfig

safebootminimal

safebootnetwork

activex

drivers32

%ALLUSERSPROFILE%\Application Data\*.

%ALLUSERSPROFILE%\Application Data\*.exe /s

%APPDATA%\*.

%APPDATA%\*.exe /s

%SYSTEMDRIVE%\*.exe

netsvcs

/md5start

dwm.exe

taskhost.exe

taskeng.exe

wscntfy.exe

ctfmon.exe

rdpclip.exe

volsnap.sys

sptd.sys

explorer.exe

userinit.exe

winlogon.exe

wininit.exe

tcpip.sys

Sfloppy.sys

Changer.sys

cdrom.sys

disk.sys

ndis.sys

usbscan.sys

usbprint.sys

tdtcp.sys

tdpipe.sys

swmidi.sys

splitter.sys

rdpwd.sys

eventlog.dll

scecli.dll

netlogon.dll

cngaudit.dll

sceclt.dll

ntelogon.dll

logevent.dll

RASACD.SYS

iaStor.sys

nvstor.sys

atapi.sys

IdeChnDr.sys

viasraid.sys

AGP440.sys

vaxscsi.sys

nvatabus.sys

viamraid.sys

nvata.sys

nvgts.sys

iastorv.sys

ViPrt.sys

eNetHook.dll

ahcix86.sys

KR10N.sys

nvstor32.sys

ahcix86s.sys

nvrd32.sys

/md5stop

%systemroot%\*. /mp /s

%systemroot%\system32\*.dll /lockedfiles

%systemroot%\Tasks\*.job /lockedfiles

* Cliques sur l'icône "Analyse" (en haut à gauche) .

* Laisse le scan aller à son terme sans te servir du PC

* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).

* Copie et colle le ou les rapports dans ta réponse stp...

* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés

Mets le rapport ici car il prend bien de la place.

Cliquez ici.

ou la

Cijoint.fr - Service gratuit de dépôt de fichiers

Partager ce message


Lien à poster
Partager sur d’autres sites

Rapport OK pas d'intrus juste du superflus donc.

 

 

 

* Fait un double-clic sur l'icône d'OTL pour le lancer

/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

 

* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

 

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case " Rapport minimal" soit cochée.

 

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

:OTL

SRV - (Norton Internet Security) -- File not found

FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found

FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll File not found

FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0: File not found

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

[2011/07/05 09:32:38 | 000,009,618 | -HS- | C] () -- C:\Users\denis\AppData\Local\0a2k6200h2763122nk2ub0o4k7uud603a8l

[2011/07/05 09:32:38 | 000,009,618 | -HS- | C] () -- C:\ProgramData\0a2k6200h2763122nk2ub0o4k7uud603a8l

File not found -- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\{174892B1-CBE7-44F5-86FF-AB555EFD73

File not found -- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB2465635

File not found -- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Apple Computer\Installer Cache\iTun

File not found -- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\H

File not found -- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\H

File not found -- C:\ProgramData\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Application Data\Y

:Commands

[emptytemp]

[createrestorepoint]

* Cliques sur l'icône Correction (en haut à gauche) .

* Laisse le scan aller à son terme sans te servir du PC

* A la fin du scan un rapport s'ouvrir "OTL.log"

* Copie et colle le ou les rapports dans ta réponse stp...

* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés

Mets le rapport ici car il prend bien de la place.

Cliquez ici.

ou la

Cijoint.fr - Service gratuit de dépôt de fichiers

 

 

Ensuite ceci alors.

 

 

Aller ici et télécharger, sur le Bureau, la dernière version de CAT ("Crisis Aversion Tool" par teamrocketops).

Double-cliquer sur cat_icon.png (Vista/W7, cliquer-droit dessus => "Exécuter en tant qu'administrateur") pour lancer le programme.

 

cat_menus.png

 

Cliquer sur le menu Fixes et cocher les cases devant les lignes suivantes:

[*]Flush DNS Resolver Cache

[*]Repair SSL/HTTPS/Cryptographic Services

[*]Reset Permissions

[*]Reset Default Services Start States

[*]Reset Windows Update

Fermer toutes les fenêtres et applications ouvertes sauf CAT puis presser le bouton "Apply Checked Fixes". Fermer le programme et Redémarrer le PC.

A noter que le programme crée un dossier nommé "CAT-Logs" à la racine de la partition système (généralement C:\CAT-Logs). Penser à supprimer ce dossier à la fin du nettoyage.

Partager ce message


Lien à poster
Partager sur d’autres sites

Merci:

j'ai tout fait comme tu l'indique, otl la premiere fois a planté ensuite j'ai refait et voila le og:

All processes killed

========== OTL ==========

Error: No service named Norton Internet Security was found to stop!

Service\Driver key Norton Internet Security not found.

File File not found not found.

Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ not found.

Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0\ not found.

Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0\ not found.

Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ not found.

File C:\Users\denis\AppData\Local\0a2k6200h2763122nk2ub0o4k7uud603a8l not found.

File C:\ProgramData\0a2k6200h2763122nk2ub0o4k7uud603a8l not found.

========== COMMANDS ==========

 

[EMPTYTEMP]

 

User: All Users

 

User: Default

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

 

User: Default User

->Temp folder emptied: 0 bytes

->Temporary Internet Files folder emptied: 0 bytes

->Flash cache emptied: 0 bytes

 

User: denis

->Temp folder emptied: 31832 bytes

->Temporary Internet Files folder emptied: 33170 bytes

->Java cache emptied: 0 bytes

->FireFox cache emptied: 362936195 bytes

->Google Chrome cache emptied: 7733944 bytes

->Flash cache emptied: 67497 bytes

 

User: denis2

->Temp folder emptied: 343654 bytes

->Temporary Internet Files folder emptied: 2123455 bytes

->FireFox cache emptied: 7038127 bytes

->Flash cache emptied: 56922 bytes

 

User: Public

->Temp folder emptied: 0 bytes

 

%systemdrive% .tmp files removed: 0 bytes

%systemroot% .tmp files removed: 0 bytes

%systemroot%\System32 .tmp files removed: 0 bytes

%systemroot%\System32\drivers .tmp files removed: 0 bytes

Windows Temp folder emptied: 3358623 bytes

RecycleBin emptied: 8149797845 bytes

 

Total Files Cleaned = 8 138,00 mb

 

 

 

OTL by OldTimer - Version 3.2.31.0 log created on 11052011_180204

 

Files\Folders moved on Reboot...

File\Folder C:\Windows\temp\SEPC953.tmp not found!

 

Registry entries deleted on Reboot...

 

et ensuite j'ai fait ce que tu me demande avec Cat..

et le probleme reste entier :

 

"windows ne peut pas rechercher de mise a jour" et impossible d'activer le centre de sécurité...

Partager ce message


Lien à poster
Partager sur d’autres sites

ok ceci alors.

 

 

Télécharge load_tdsskiller de Loup Blanc sur ton Bureau

http://fradesch.perso.cegetel.net/transf/Load_tdsskiller.exe

ou la:

http://support.kaspersky.com/downloads/utils/tdsskiller.zip

 

Cet outil est conçu pour automatiser différentes tâches proposées par TDSSKiller, un fix de Kaspersky.

 

Lance load_tdsskiller en double-cliquant dessus. Clic droit et exécuter en tant qu'administrateur avec Vista/Seven

 

A cette fenêtre lance le scan.

 

11012708271111174.jpg

 

Tu peux récupérer le rapport en validant Report

 

Si une détection est faite valide Cure puis

 

2663-2-eng.png

 

redémarres le pc pour confirmer la suppression de celle-ci.

 

INFO::

How to remove malware belonging to the family Rootkit.Win32.TDSS (aka Tidserv, TDSServ, Alureon)?

 

 

Puis ::

 

 

Télécharge ComboFix <ICI>>

 

Pour les Utilisateurs de VISTA: Clic-droit et choisis "Exécuter en tant qu'administrateur".

Pour VISTA : pas d'installation de la console de récupération.

 

>> Lors de son exécution, ComboFix va vérifier si la Console de récupération Microsoft Windows est installée.

 

Avec des infections comme celles d'aujourd'hui, il est fortement conseillé de l'avoir préinstallée sur votre PC avant toute suppression de nuisibles.

Elle permettra de démarrer dans un mode spécial, de récupération (réparation), qui nous permet de vous aider plus facilement si jamais votre ordinateur rencontre un problème après une tentative de nettoyage.

 

Suis les invites pour permettre à ComboFix de télécharger et installer la Console de récupération Microsoft Windows, et lorsque cela est demandé, accepte le Contrat de Licence Utilisateur Final pour l'installer.

>> Une fois sur ton bureau double clique dessus pour le lancer.

Note importante : Si la Console de récupération Microsoft Windows est déjà installée, ComboFix continuera ses procédures de suppression de nuisibles.

 

Lorsque le scan sera complet, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.

NOTE : Le rapport se trouve également ici : C:\Combofix.txt

 

>>Ne pas cliquer dans la fenêtre de Combofix durant lanalyse, ceci provoquerait le gel du programme

Partager ce message


Lien à poster
Partager sur d’autres sites

Merci de ton aide:

 

load_tdsskiller : 0 detections

 

pour combo:

 

ComboFix 11-11-05.03 - denis 05/11/2011 22:37:09.4.2 - x86

Microsoft® Windows Vista Édition Familiale Basique 6.0.6002.2.1252.33.1036.18.3002.1880 [GMT 1:00]

Lancé depuis: c:\users\denis\Desktop\ccm.exe

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((( Fichiers créés du 2011-10-05 au 2011-11-05 ))))))))))))))))))))))))))))))))))))

.

.

2011-11-05 21:48 . 2011-11-05 21:48 -------- d-----w- c:\users\denis\AppData\Local\temp

2011-11-05 21:48 . 2011-11-05 21:48 -------- d-----w- c:\users\Public\AppData\Local\temp

2011-11-05 21:48 . 2011-11-05 21:48 -------- d-----w- c:\users\denis2\AppData\Local\temp

2011-11-05 21:48 . 2011-11-05 21:48 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-11-05 17:20 . 2011-11-05 17:20 28752 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6A284DC8-635C-4962-BAAC-872AE5A391E1}\MpKslac006a4a.sys

2011-11-05 17:20 . 2011-11-05 17:20 56200 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6A284DC8-635C-4962-BAAC-872AE5A391E1}\offreg.dll

2011-11-05 17:18 . 2011-11-05 17:23 -------- d-----w- c:\windows\system32\catroot2

2011-11-05 17:17 . 2011-11-05 17:17 -------- d-----w- c:\programdata\CAT

2011-11-05 17:17 . 2011-11-05 17:17 -------- d-----w- C:\CYDELogs

2011-11-05 17:15 . 2011-11-05 17:15 -------- d-----w- C:\CAT-Logs

2011-11-05 16:57 . 2011-11-05 16:57 -------- d-----w- C:\_OTL

2011-10-31 19:20 . 2011-10-07 03:48 6668624 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6A284DC8-635C-4962-BAAC-872AE5A391E1}\mpengine.dll

2011-10-27 21:23 . 2011-10-27 21:23 -------- d-----w- c:\users\denis\AppData\Roaming\JasonRobitaille

2011-10-27 20:01 . 2011-10-27 20:01 -------- d-----w- c:\users\denis\AppData\Local\CrashRpt

2011-10-27 19:59 . 2011-10-27 20:01 -------- d-----w- c:\program files\RapidSolution

2011-10-27 19:59 . 2011-10-27 20:00 -------- d-----w- c:\programdata\RapidSolution

2011-10-27 19:58 . 2011-10-27 19:58 -------- d-----w- c:\users\denis\AppData\Local\RapidSolution

2011-10-27 19:44 . 2011-10-27 19:44 -------- d-----w- c:\users\denis\AppData\Roaming\gtk-2.0

2011-10-27 17:16 . 2011-10-27 17:16 -------- d-----w- c:\users\denis\Library

2011-10-27 17:11 . 2011-10-27 17:11 -------- d-----w- c:\program files\Palm

2011-10-16 18:30 . 2011-10-16 18:30 -------- d-----w- c:\users\denis\AppData\Local\ElevatedDiagnostics

2011-10-16 17:25 . 2002-11-27 11:12 4608 ----a-w- c:\windows\system32\W95INF32.DLL

2011-10-16 17:25 . 2002-11-27 11:12 2272 ----a-w- c:\windows\system32\W95INF16.DLL

2011-10-16 17:24 . 2004-02-16 17:48 323584 ----a-w- c:\windows\system32\AcShlExt.dll

2011-10-16 17:24 . 1995-09-20 14:16 456976 ----a-w- c:\program files\Common Files\Microsoft Shared\DAO\dao3032.dll

2011-10-16 17:16 . 2002-12-05 12:10 155648 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iuser.dll

2011-10-16 17:16 . 2002-12-02 13:22 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\DotNetInstaller.exe

2011-10-16 17:16 . 2002-12-02 11:33 57344 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\ctor.dll

2011-10-16 17:16 . 2002-12-02 11:33 237568 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iscript.dll

2011-10-16 17:16 . 2005-03-24 03:18 692224 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\0701\Intel32\iKernel.dll

2011-10-12 09:49 . 2010-11-30 09:43 439632 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll

2011-10-12 09:48 . 2011-10-04 15:22 703824 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AB5DDD94-AA81-49B0-8A1E-1B904DFB75AA}\gapaengine.dll

2011-10-07 20:11 . 2011-10-07 20:11 -------- d-----w- c:\program files\iPod

2011-10-07 20:11 . 2011-10-07 20:12 -------- d-----w- c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521}

2011-10-07 20:11 . 2011-10-07 20:12 -------- d-----w- c:\program files\iTunes

2011-10-07 20:10 . 2011-10-07 20:10 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin7.dll

2011-10-07 20:10 . 2011-10-07 20:10 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin6.dll

2011-10-07 20:10 . 2011-10-07 20:10 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll

2011-10-07 20:10 . 2011-10-07 20:10 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll

2011-10-07 20:10 . 2011-10-07 20:10 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll

2011-10-07 20:10 . 2011-10-07 20:10 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll

2011-10-07 20:10 . 2011-10-07 20:10 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll

2011-10-07 20:09 . 2011-10-07 20:10 -------- d-----w- c:\program files\QuickTime

2011-10-07 20:09 . 2011-10-07 20:11 -------- d-----w- c:\programdata\Apple Computer

2011-10-07 20:08 . 2011-10-07 20:08 -------- d-----w- c:\program files\Apple Software Update

2011-10-07 20:06 . 2011-10-07 20:06 -------- d-----w- c:\program files\Bonjour

2011-10-07 19:50 . 2011-10-07 19:50 -------- d-----w- c:\users\denis\AppData\Roaming\WindSolutions

2011-10-07 19:50 . 2011-10-07 19:50 -------- d-----w- c:\programdata\WindSolutions

.

.

.

(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-10-16 18:04 . 2011-05-15 07:41 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2011-10-07 03:48 . 2011-10-05 17:58 6668624 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2011-09-29 20:12 . 2011-09-29 20:12 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7C2FF423-6B2B-460A-9DE3-46D6FCE3010E}\offreg.dll

2011-09-29 08:08 . 2011-09-29 07:42 23624 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys

2011-09-21 07:00 . 2011-09-26 18:51 7269712 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7C2FF423-6B2B-460A-9DE3-46D6FCE3010E}\mpengine.dll

2011-09-09 10:10 . 2011-09-09 10:10 37920 ----a-w- c:\windows\system32\drivers\tbhsd.sys

2011-08-31 15:00 . 2011-09-29 22:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-08-29 18:05 . 2011-08-29 18:05 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2011-10-03 17:08 . 2011-09-29 22:19 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll

.

.

((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-10-09 39408]

"Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" [2011-08-21 6276408]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920]

"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-07-05 421888]

"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux1"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ autocheck autochk *\0bootdelete

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

@="Service"

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

@="Driver"

.

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]

path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

backup=c:\windows\pss\HP Digital Imaging Monitor.lnk.CommonStartup

backupExtension=.CommonStartup

.

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]

path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

backup=c:\windows\pss\McAfee Security Scan Plus.lnk.CommonStartup

backupExtension=.CommonStartup

.

[HKLM\~\startupfolder\C:^Users^denis^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Logitech . Enregistrement du produit.lnk]

path=c:\users\denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Logitech . Enregistrement du produit.lnk

backup=c:\windows\pss\Logitech . Enregistrement du produit.lnk.Startup

backupExtension=.Startup

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

2011-03-30 04:59 937920 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

2011-09-07 22:58 37296 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CANAL+ CANALSAT A LA DEMANDE]

2010-05-03 11:21 163992 ----a-r- c:\program files\Canal+\CANAL+ CANALSAT A LA DEMANDE\Launcher.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\COMODO Internet Security]

2011-06-30 07:37 2554696 ----a-w- c:\program files\COMODO\COMODO Internet Security\cfp.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EvtMgr6]

2010-10-28 23:32 1352272 ----a-w- c:\program files\Logitech\SetPointP\SetPoint.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

2011-05-31 19:29 136176 ----atw- c:\users\denis\AppData\Local\Google\Update\GoogleUpdate.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]

2010-10-15 21:36 171032 ----a-w- c:\windows\System32\hkcmd.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Health Check Scheduler]

2008-10-09 06:58 75008 ----a-w- c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpqSRMon]

2008-03-13 08:34 81920 ----a-w- c:\program files\HP\Digital Imaging\bin\HpqSRmon.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpWirelessAssistant]

2008-04-15 13:51 488752 ----a-w- c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]

2010-10-15 21:36 137752 ----a-w- c:\windows\System32\igfxtray.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

2011-08-18 23:07 421736 ----a-w- c:\program files\iTunes\iTunesHelper.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesHelper]

2011-01-29 21:11 888120 ----a-w- c:\program files\Samsung\Kies\KiesHelper.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]

2011-01-29 21:16 16216 ----a-w- c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]

2011-01-29 21:11 3372856 ----a-w- c:\program files\Samsung\Kies\KiesTrayAgent.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]

2008-06-09 08:16 2363392 ----a-w- c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Messenger (Yahoo!)]

2011-08-21 23:18 6276408 ----a-w- c:\progra~1\Yahoo!\Messenger\YahooMessenger.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

2011-05-13 14:03 4283256 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]

2010-10-15 21:36 170520 ----a-w- c:\windows\System32\igfxpers.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]

2008-08-01 15:14 202032 ----a-w- c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QPService]

2008-09-23 15:21 468264 ----a-w- c:\program files\HP\QuickPlay\QPService.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]

2011-07-05 16:36 421888 ----a-w- c:\program files\QuickTime\QTTask.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

2008-04-30 13:56 22058792 ----a-r- c:\program files\Skype\Phone\Skype.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]

2009-01-26 13:31 2144088 --sha-r- c:\program files\Spybot - Search & Destroy\TeaTimer.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

2010-05-14 10:44 248552 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]

2008-04-17 18:05 1049896 ----a-w- c:\program files\Synaptics\SynTP\SynTPEnh.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UCam_Menu]

2007-12-24 13:55 222504 ------w- c:\program files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateLBPShortCut]

2008-06-13 17:11 210216 ------w- c:\program files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateP2GoShortCut]

2008-06-13 17:11 210216 ------w- c:\program files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePDIRShortCut]

2008-06-13 17:11 210216 ------w- c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePSTShortCut]

2008-10-06 19:42 210216 ------w- c:\program files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USBToolTip]

2007-02-20 09:07 199752 ----a-w- c:\progra~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]

2010-11-29 20:17 328568 ----a-w- c:\program files\uTorrent\uTorrent.exe

.

R1 MpKsl0dd2f5a4;MpKsl0dd2f5a4;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{52F72C6D-8220-47BC-AD02-9C1AAF93CD52}\MpKsl0dd2f5a4.sys [x]

R1 MpKsl546a1144;MpKsl546a1144;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{74D007B4-FD4C-41AF-AA6A-84E8F3DA1083}\MpKsl546a1144.sys [x]

R1 MpKsl617ecdac;MpKsl617ecdac;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{13BBE39D-6DA2-4130-AAAE-8484436DA173}\MpKsl617ecdac.sys [x]

R1 MpKsl8bc9a642;MpKsl8bc9a642;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{55BAE460-216B-43F7-86CB-649E97506A0D}\MpKsl8bc9a642.sys [x]

R1 MpKslbac17b38;MpKslbac17b38;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1E0DA784-5212-4DA2-8631-950DF9616DC6}\MpKslbac17b38.sys [x]

R1 MpKsldddfaf5f;MpKsldddfaf5f;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D107D186-3D9F-403F-A552-942E305218D7}\MpKsldddfaf5f.sys [x]

R1 MpKsle1de2fc3;MpKsle1de2fc3;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{29B1ECB8-A589-4446-99A4-4628AFBF7225}\MpKsle1de2fc3.sys [x]

R1 MpKsleb5b164a;MpKsleb5b164a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C7C13DC8-EC83-45F5-B33E-18D3050AB099}\MpKsleb5b164a.sys [x]

R1 MpKslee76a071;MpKslee76a071;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A5BE2E51-9196-4BB8-8E17-28E498CF06C5}\MpKslee76a071.sys [x]

R1 MpKslf4e17f34;MpKslf4e17f34;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7C19DBB9-CA6A-4223-9384-85582CCB482F}\MpKslf4e17f34.sys [x]

R2 CanalPlus.VOD;CanalPlus.VOD;c:\program files\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe [2010-05-03 188416]

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 gupdate;Service Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-01-09 136176]

R2 Palm_TCP_Relay;Palm TCP Relay;c:\program files\Palm\PDK\tcprelay.exe [2010-12-23 11776]

R2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]

R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2010-12-21 30312]

R3 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]

R3 Com4QLBEx;Com4QLBEx;c:\program files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]

R3 gupdatem;Service Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-01-09 136176]

R3 hitmanpro35;Hitman Pro 3.5 Support Driver;c:\windows\system32\drivers\hitmanpro35.sys [2011-09-29 23624]

R3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [2011-05-01 311744]

R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]

R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2011-04-18 43392]

R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]

R3 RTL8187;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8187.sys [2011-03-03 335872]

R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-01-03 121192]

R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-01-03 12776]

R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-01-03 136680]

R3 TridVid;USB Video Grabber;c:\windows\system32\DRIVERS\TridVid.sys [2007-07-10 170752]

R3 USBPNPA;USB PnP Sound Device Interface;c:\windows\system32\drivers\CM108.sys [2009-12-22 1515520]

R3 WPFFontCache_v0400;Cache de police de Windows Presentation Foundation 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]

R3 ZTEusbvoice;ZTE VoUSB Port;c:\windows\system32\DRIVERS\ZTEusbvoice.sys [2009-10-09 105088]

S1 MpKslac006a4a;MpKslac006a4a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6A284DC8-635C-4962-BAAC-872AE5A391E1}\MpKslac006a4a.sys [2011-11-05 28752]

S1 NEOFLTR_650_15255;Juniper Networks TDI Filter Driver (NEOFLTR_650_15255);c:\windows\system32\Drivers\NEOFLTR_650_15255.SYS [2010-02-19 85360]

S1 RtlProt;Realtke RtlProt WLAN Utility Protocol Driver;c:\windows\system32\DRIVERS\rtlprot.sys [2007-04-23 25896]

S2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe [2008-01-21 21504]

S2 NovacomD;Palm Novacom;c:\program files\Palm, Inc\novacomd\x86\novacomd.exe [2011-06-24 61440]

S2 Recovery Service for Windows;Recovery Service for Windows;c:\program files\SMINST\BLService.exe [2008-10-06 365952]

S3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2010-03-15 127488]

S3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2011-04-27 65024]

S3 NisSrv;Inspection réseau Microsoft;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 208944]

.

.

--- Autres Services/Pilotes en mémoire ---

.

*NewlyCreated* - 01123384

*NewlyCreated* - 58768717

*NewlyCreated* - MPKSLAC006A4A

*Deregistered* - 01123384

*Deregistered* - 58768717

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc

bthsvcs REG_MULTI_SZ BthServ

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

ezSharedSvc

.

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]

2008-06-09 08:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe

.

Contenu du dossier 'Tâches planifiées'

.

2011-11-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-09 16:37]

.

2011-11-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2011-01-09 16:37]

.

2011-11-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-381717859-3267749563-3663598857-1000Core.job

- c:\users\denis\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-21 19:29]

.

2011-11-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-381717859-3267749563-3663598857-1000UA.job

- c:\users\denis\AppData\Local\Google\Update\GoogleUpdate.exe [2011-06-21 19:29]

.

2010-11-27 c:\windows\Tasks\HPCeeScheduleForAdministrator.job

- c:\program files\hewlett-packard\sdp\ceement\HPCEE.exe [2008-10-30 10:34]

.

2011-11-03 c:\windows\Tasks\HPCeeScheduleFordenis.job

- c:\program files\hewlett-packard\sdp\ceement\HPCEE.exe [2008-10-30 10:34]

.

.

------- Examen supplémentaire -------

.

uStart Page = hxxp://www.google.com/

mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_fr&c=91&bd=Presario&pf=cnnb

uInternet Settings,ProxyOverride = *.local

IE: &Envoyer à OneNote - c:\progra~1\MI1933~1\Office14\ONBttnIE.dll/105

IE: E&xporter vers Microsoft Excel - c:\progra~1\MI1933~1\Office14\EXCEL.EXE/3000

IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html

TCP: DhcpNameServer = 192.168.1.254

FF - ProfilePath - c:\users\denis\AppData\Roaming\Mozilla\Firefox\Profiles\q3ql34t5.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.google.fr/

FF - prefs.js: network.proxy.type - 0

.

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover

Rootkit scan 2011-11-05 22:48

Windows 6.0.6002 Service Pack 2 NTFS

.

Recherche de processus cachés ...

.

Recherche d'éléments en démarrage automatique cachés ...

.

Recherche de fichiers cachés ...

.

Scan terminé avec succès

Fichiers cachés: 0

.

**************************************************************************

.

--------------------- CLES DE REGISTRE BLOQUEES ---------------------

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.032"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.abr"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.ani"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.arw"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.bay"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.bmp"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.bw"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bwf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.bwf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cel\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.cel"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.cr2"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.crw"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.cs1"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.cur"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.dcr"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.dcx"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.dib"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.djv"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.djvu"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.dng"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.emf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.eps"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.erf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.fff"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.flc\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.flc"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fli\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.fli"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.fpx"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.gif"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.hdr"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.icl"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.icn"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.iff"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.ilbm"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.int"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.inta"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.iw4"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.j2c"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.j2k"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.jbr"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.jfif"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.jif"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.jp2"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.jpc"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.jpe"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.jpeg"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.jpg"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.jpk"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.jpx"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kar\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.kar"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.kdc"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.lbm"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m15\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.m15"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m1a\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.m1a"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m2a\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.m2a"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m75\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.m75"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.mef"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.mos"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpv\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.mpv"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.mrw"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.nef"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.orf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pbm"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pbr"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pcd"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pct"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pcx"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pef"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pgm"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pic"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pics\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pics"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pict"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pix"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.png"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.ppm"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.psd"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.psp"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pspbrush"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.pspimage"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qcp\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.qcp"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.qtpf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.qtpf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.raf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.ras"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.raw"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.rgb"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.rgba"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.rle"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.rsb"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rw2\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.rw2"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sdv\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.sdv"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sfil\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.sfil"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.sgi"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.smf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.smf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.smi\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.smi"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.smil\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.smil"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sml\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.sml"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.sr2"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.srf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.swa\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.swa"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.tga"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.thm"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.tif"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.tiff"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.ttc"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.ttf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ulw\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.ulw"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v25po\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.v25po"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v25pp\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.v25pp"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.v25ppf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.v25ppf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vfw\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.vfw"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.wbm"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.wbmp"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.wmf"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.xbm"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.xif"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xmp\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.xmp"

.

[HKEY_USERS\S-1-5-21-381717859-3267749563-3663598857-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="ACDSee Pro 2.5.xpm"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0009\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0010\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0011\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0012\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0013\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

Heure de fin: 2011-11-05 22:51:44

ComboFix-quarantined-files.txt 2011-11-05 21:51

ComboFix2.txt 2011-09-29 20:08

ComboFix3.txt 2011-09-29 08:56

ComboFix4.txt 2011-09-28 22:00

.

Avant-CF: 66 107 535 360 octets libres

Après-CF: 66 075 660 288 octets libres

.

- - End Of File - - D875C4AEB0EEFE96814BC1499F9170D9

 

Mais le problème reste entier !

Partager ce message


Lien à poster
Partager sur d’autres sites

ok déjà je supprimerais"SpybotSD " puis tu as vérifier dans COMODO s'il n'est pas en cause de ton soucis?

Regarde les autorisations chez lui.

 

Si comodo n'est pas en cause ceci.

 

 

Aller ici et télécharger, sur le Bureau, la dernière version de CAT ("Crisis Aversion Tool" par teamrocketops).

Double-cliquer sur cat_icon.png (Vista/W7, cliquer-droit dessus => "Exécuter en tant qu'administrateur") pour lancer le programme.

 

cat_menus.png

 

Cliquer sur le menu Fixes et cocher les cases devant les lignes suivantes:

[*]Flush DNS Resolver Cache

[*]Repair SSL/HTTPS/Cryptographic Services

[*]Reset Permissions

[*]Reset Default Services Start States

[*]Reset Windows Update

Fermer toutes les fenêtres et applications ouvertes sauf CAT puis presser le bouton "Apply Checked Fixes". Fermer le programme et Redémarrer le PC.

A noter que le programme crée un dossier nommé "CAT-Logs" à la racine de la partition système (généralement C:\CAT-Logs). Penser à supprimer ce dossier à la fin du nettoyage.

Modifié par bernard53

Partager ce message


Lien à poster
Partager sur d’autres sites

Créer un compte ou se connecter pour commenter

Vous devez être membre afin de pouvoir déposer un commentaire

Créer un compte

Créez un compte sur notre communauté. C’est facile !

Créer un nouveau compte

Se connecter

Vous avez déjà un compte ? Connectez-vous ici.

Connectez-vous maintenant

×