~ Rapport de ZHPDiag v2013.9.16.270 - Nicolas Coolman (16/09/2013) ~ Lancé par Admin (16/09/2013 15:34:42) ~ Adresse du Site Web http://nicolascoolman.webs.com ~ Traduit par Nicolas Coolman ~ Etat de la version : ~ Liste blanche : Activée par le programme ~ Elévation des Privilèges : OK ~ User Account Control (UAC): Not Found ---\\ Navigateurs Internet MSIE: Internet Explorer v8.0.6001.18702 MFIE: Mozilla Firefox 23.0.1 (Defaut) ---\\ Informations sur les produits Windows ~ Langage: Français Windows XP Professional Service Pack 3 (Build 2600) Windows Automatic Updates : OK Windows Genuine Advantage : OK ---\\ Logiciels de protection du système Avira Free Antivirus v13.0.0.4042 Malwarebytes' Anti-Malware ---\\ Logiciels d'optimisation du système CCleaner v3.24 =>Piriform Ltd ---\\ Logiciels de partage PeerToPeer ---\\ Surveillance de Logiciels Adobe Flash Player 11 Plugin Adobe Reader XI Java 7 Update 25 ---\\ Informations sur le système ~ Processor: x86 Family 6 Model 6 Stepping 2, AuthenticAMD ~ Operating System: 32 Bits Boot mode: Normal (Normal boot) Total RAM: 1535 MB (45% free) System Restore: Activé (Enable) System drive C: has 4 GB (10%) free of 39 GB ---\\ Mode de connexion au système ~ Computer Name: PCPASCAL ~ User Name: Admin ~ All Users Names: SUPPORT_388945a0, Pascal Admin, HelpAssistant, eMule_Secure, Dominique, ASPNET, Administrateur, Admin, ~ Unselected Option: None Logged in as Administrator ---\\ Variables d'environnement ~ System Unit : C:\ ~ %AppData% : C:\Documents and Settings\Admin\Application Data\ ~ %Desktop% : C:\Documents and Settings\Admin\Bureau\ ~ %Favorites% : C:\Documents and Settings\Admin\Favoris\ ~ %LocalAppData% : C:\Documents and Settings\Admin\Local Settings\Application Data\ ~ %StartMenu% : C:\Documents and Settings\Admin\Menu Démarrer\ ~ %Windir% : C:\WINDOWS\ ~ %System% : C:\WINDOWS\system32\ ---\\ Enumération des unités disques A:\ Floppy drive, Flash card reader, USB Key (Not Inserted) C:\ Hard drive, Flash drive, Thumb drive (Free 4 Go of 39 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 11 Go of 75 Go) E:\ Hard drive, Flash drive, Thumb drive (Free 30 Go of 190 Go) G:\ CD-ROM drive (Not Inserted) H:\ CD-ROM drive (Not Inserted) J:\ CD-ROM drive (Not Inserted) ---\\ Etat du Centre de Sécurité Windows ~ Security Center: 33 Legitimates Filtered in 00mn 00s ---\\ Recherche particulière de fichiers génériques [MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824] [MD5.EA7AB3839BE1FFE067A8131F3547160D] - (.Microsoft Corporation - Internet Extensions for Win32.) (.08/08/2013 - 07:05:46.) -- C:\WINDOWS\system32\wininet.dll [920064] [MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000] [MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496] [MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512] [MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744] [MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976] [MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672] [MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384] [MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144] [MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112] [MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832] [MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264] [MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320] [MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816] [MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976] [MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parallèle.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384] [MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328] [MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224] [MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752] [MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de cliché instantané du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376] ~ Generic Processes: Scanned in 00mn 00s ---\\ Etat des fichiers cachés (Caché/Total) ~ Mes images (My Pictures) : 1/2 ~ Mes musiques (My Musics) : 1/2 ~ Mes Favoris (My Favorites) : 1/6 ~ Mes Documents (My Documents) : 1/9 ~ Mon Bureau (My Desktop) : 0/72 ~ Menu demarrer (Programs) : 1/21 ~ Hidden Files: Scanned in 00mn 00s ---\\ Processus lancés [MD5.A2EAEB497CA29ECAEAF0DF66AD85C57D] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [413696] [PID.652] [MD5.1A008CBB313F7A6644B883AE1829393B] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAcat.exe [216072] [PID.1096] [MD5.A54B4FBC24C4EDE34BEB5F8D8974752A] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\oasrv.exe [4463864] [PID.1124] [MD5.995D0B52870C7A5CAF3EA165FD674A35] - (.Logitech Inc. - Logitech LVPrcSrv Module..) -- c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe [109344] [PID.1296] [MD5.8769E2D1072B62AB071F166F03B3E3DC] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024] [PID.1320] [MD5.765FE0463E711E5A68AC7B69538ED922] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) -- C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [169312] [PID.1752] [MD5.AD1D13E6326E0B8DA2A7BE13B39A8FE0] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088] [PID.1960] [MD5.9ECF00E19736054E019C532AED8228FC] - (.Oracle Corporation - Java Quick Starter Service.) -- C:\Program Files\Java\jre7\bin\jqs.exe [182184] [PID.1468] [MD5.B5354D391912E3ABC13E3B9E31D79367] - (.tzuk - Sandboxie Service.) -- C:\Program Files\Sandboxie\SbieSvc.exe [73960] [PID.1620] [MD5.581176F60885AEF8F78C6E38DCC3CDF9] - (.Microsoft Corporation - WMDM PMSP Service.) -- C:\WINDOWS\System32\MsPMSPSv.exe [53520] [PID.700] [MD5.2E0B0A051FFAA86E358465BB0880D453] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53784] [PID.800] [MD5.DB3F7F19F942D3CE4E1A0E8D9FF541FB] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192] [PID.2348] [MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [253816] [PID.2440] [MD5.DD851CB4DBB6EE0F9B7BC4DEBDA7544E] - (...) -- C:\WINDOWS\system32\qttask.exe [28672] [PID.2476] [MD5.0AEFDADCDA44D8CE3C57BB32B7A3CED5] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAui.exe [2415104] [PID.2516] [MD5.06F39071A9E3635F4258FD7F5E3F5988] - (.Nokia - Nokia Suite.) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1090912] [PID.2604] [MD5.F07B8AAE1805EF9B12BF8EDFD0D50F0A] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAhlp.exe [1248144] [PID.2656] [MD5.F30BF9FC4275156F2AE96FCDF1ED5EE4] - (.Avira Operations GmbH & Co. KG - Avira Shadow Copy Service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76856] [PID.3100] [MD5.78F7BB9F4924BE164294C59B8C3FC096] - (.Nokia - ServiceLayer Module.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [737616] [PID.3956] [MD5.5EBE396DB0ED20910A4C51E235539F9F] - (.Nokia - USB Media Server.) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe [179024] [PID.1784] [MD5.192FBDF64A983CAC149D47D01970CE04] - (.Nokia - Microsoft Bluetooth Media Server.) -- C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe [150864] [PID.220] [MD5.C52F40B273428861B06E9D027C80F8A4] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7963648] [PID.3140] [MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.3404] ~ Processes Running: Scanned in 00mn 03s ---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3) M2 - MFEP: prefs.js [Admin - bjby9717.default\fdm_ffext@freedownloadmanager.org] [] Free Download Manager plugin v1.5.7.6 (..) P2 - FPN:Firefox Plugin Navigator . (.LizardTech - DjVu Plug-In(external version 6.1.1.1574).) -- C:\Program Files\Mozilla Firefox\Plugins\npdjvu.dll P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files\Mozilla Firefox\Plugins\NPSibelius.dll P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files\Mozilla Firefox\Plugins\ScorchPDFWrapper.dll P2 - FPN: [HKLM] [@nokia.com/EnablerPlugin] - (.Pas de propriétaire - Nokia Suite Enabler Plugin.) -- C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll P2 - FPN: [HKLM] [yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1] - (...) -- C:\Program Files\Yahoo!\Common\npyaxmpb.dll (.not file.) =>Toolbar.Yahoo ~ Firefox Browser: 18 Legitimates Filtered in 00mn 02s ---\\ Internet Explorer, Démarrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4) R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) (No version) -- (.not file.) ~ IE Browser: 10 Legitimates Filtered in 00mn 00s ---\\ Internet Explorer, Proxy Management (R5) R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1 R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll ~ Proxy management: Scanned in 00mn 00s ---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ~ Keys: Scanned in 00mn 00s ---\\ Hosts file redirection (O1) ~ Le fichier hosts est sain (The hosts file is clean). ~ Hosts File: Scanned in 00mn 00s ~ Nombre de lignes (Lines number): 1 ---\\ Autres liens utilisateurs (O4) O4 - GS\Program [AllUsers]: GenoPro.lnk . (.GenoPro - GenoPro 2011 - Picture Your Family Tree!.) -- C:\Program Files\GenoPro\GenoPro.exe O4 - GS\Program [AllUsers]: MediaCUB.lnk . (...) -- C:\WINDOWS\Installer\{B1493D8A-C782-4ED3-A34D-8A9B8D9925BF}\_E76412006231BB098F8C6D.exe O4 - GS\Program [AllUsers]: MSN Explorer.lnk . (.Microsoft Corporation - msn.) -- C:\Program Files\MSN\MSNCoreFiles\msn6.exe O4 - GS\Program [Pascal Admin]: Blues for Piano and Keyboard 10.0.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\explorer.exe O4 - GS\Program [Pascal Admin]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe O4 - GS\Program [Pascal Admin]: Windows Install Clean Up.lnk . (...) -- C:\Documents and Settings\Pascal Admin\Application Data\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe O4 - GS\Program [eMule_Secure]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe O4 - GS\Program [Dominique]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe O4 - GS\Program [Admin]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe ~ Global Startup: 28 Legitimates Filtered in 00mn 02s ---\\ Applications lancées au démarrage du sytème (O4) O4 - HKLM\..\Run: [PSDrvCheck] . (...) -- C:\WINDOWS\system32\PSDrvCheck.exe O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe O4 - HKLM\..\Run: [QuickTime Task] . (...) -- C:\WINDOWS\system32\qttask.exe O4 - HKLM\..\Run: [@OnlineArmor GUI] . (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAui.exe O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [NokiaSuite.exe] . (.Nokia - Nokia Suite.) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe O4 - HKUS\S-1-5-21-1935655697-1993962763-1343024091-1016\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-1935655697-1993962763-1343024091-1016\..\Run: [NokiaSuite.exe] . (.Nokia - Nokia Suite.) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe ~ Application: Scanned in 00mn 00s ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO ~ IE Extra Buttons: Scanned in 00mn 00s ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} ((no name)) - http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} ((no name)) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ((no name)) - http://download.bitdefender.com/resources/scan8/oscan8.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} ((no name)) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1155398021206 O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} ((no name)) - http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} ((no name)) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-2.0.cab O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} ((no name)) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab ~ Objets ActiveX: Scanned in 00mn 00s ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CCS\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CCS\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CCS\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr O17 - HKLM\System\CS1\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS1\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr O17 - HKLM\System\CS1\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpDomain = noos.fr O17 - HKLM\System\CS2\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: NameServer = 192.168.0.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS2\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr O17 - HKLM\System\CS3\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1 O17 - HKLM\System\CS3\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpNameServer = 89.2.0.1 89.2.0.2 O17 - HKLM\System\CS3\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2 ~ Domain: Scanned in 00mn 00s ---\\ Protocole additionnel (O18) O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\System32\wiascr.dll O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.dll ~ Protocole Additionnel: Scanned in 00mn 00s ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\WINDOWS\system32\Ati2evxx.dll O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent réseau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Windows Genuine Advantage - Meddelande.) -- C:\WINDOWS\system32\WgaLogon.dll O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de réception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll O20 - Winlogon Notify: WRNotifier . (...) -- WRLogonNTF.dll ~ Winlogon: Scanned in 00mn 00s ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Online Armor Helper Service (OAcat) . (.Emsisoft GmbH - Online Armor Component.) - C:\Program Files\Online Armor\OAcat.exe O23 - Service: Online Armor (SvcOnlineArmor) . (.Emsisoft GmbH - Online Armor Component.) - C:\Program Files\Online Armor\oasrv.exe ~ Services: 11 Legitimates Filtered in 01mn 48s ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Desktop General: BackupWallPaper - .(...) - C:\WINDOWS\web\wallpaper\Colline verdoyante.bmp O24 - Desktop General: WallPaper - .(...) - C:\WINDOWS\web\wallpaper\Colline verdoyante.bmp ~ Desktop Component: 4 Legitimates Filtered in 00mn 00s ---\\ Enumère les données de BootExecute (BEX) (O34) O34 - HKLM BootExecute: (autocheck autochk /p \??\I:) - File not found O34 - HKLM BootExecute: (SsiEfr.e) - File not found O34 - HKLM BootExecute: (SsiEfr.e) - File not found ~ BEX: 4 Legitimates Filtered in 00mn 00s ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: YInstStarterUpgrade Class - {0291E591-EA41-4c82-8106-3DC6CE7F7664} . (...) -- C:\Program Files\Yahoo!\Common\yinsthelper.dll =>Toolbar.Yahoo O40 - ASIC: YSearchSetting2 Class - {347B0667-C7ED-429B-BDE3-CC8D3BACAA31} . (...) -- C:\Program Files\Yahoo!\Common\yinsthelper.dll =>Toolbar.Yahoo ~ Active Setup: 23 Legitimates Filtered in 00mn 01s ---\\ Pilotes lancés au démarrage du système (O41) O41 - Driver: (OADevice) . (...) - C:\WINDOWS\system32\drivers\OADriver.sys O41 - Driver: (oahlpXX) . (...) - C:\WINDOWS\system32\drivers\oahlp32.sys O41 - Driver: (AVG Anti-Spyware Driver) . (. - .) - C:\Program Files\AVG Anti-Spyware 7.5\guard.sys (.not file.) O41 - Driver: (AvgAsCln) . (. - .) - C:\WINDOWS\system32\DRIVERS\AvgAsCln.sys (.not file.) O41 - Driver: (fwdrv) . (. - .) - C:\WINDOWS\system32\drivers\fwdrv.sys (.not file.) O41 - Driver: (khips) . (. - .) - C:\WINDOWS\system32\drivers\khips.sys (.not file.) O41 - Driver: (NaiAvTdi1) . (. - .) - C:\WINDOWS\system32\drivers\mvstdi5x.sys (.not file.) ~ Drivers: 86 Legitimates Filtered in 00mn 06s ---\\ Logiciels installés (O42) O42 - Logiciel: Advanced IRC - (...) [HKLM] -- Advanced IRC O42 - Logiciel: BackupBuddy for Windows - (...) [HKLM] -- BackupBuddy for Windows O42 - Logiciel: CDRWIN 5 - (.Engelmann Media.) [HKLM] -- {9B2B0EAD-2CC7-4589-B3AA-D23BAB724065} O42 - Logiciel: CH Control Manager - (...) [HKLM] -- CHControlManager_is1 O42 - Logiciel: CyberView X - SF v1.30 (build 20110411) - (.Pacific Image ELectronics Co., Ltd..) [HKLM] -- {D8FF6E29-36B4-474F-A88F-973087650C00} O42 - Logiciel: Dawn - (.\.) [HKLM] -- {459E0590-ECD4-490E-9E52-3EF1F1782225} O42 - Logiciel: GedCom-Vision version 2.0e - (...) [HKLM] -- GedCom-Vision_is1 O42 - Logiciel: Harmony Assistant - (...) [HKLM] -- Harmony Assistant O42 - Logiciel: IFOEdit 0.971 Fr - (...) [HKLM] -- IFOEdit 0.971 Fr O42 - Logiciel: La France à la loupe - (.BSD Concept.) [HKLM] -- {E3F2269F-EC1F-494D-B700-E543EB509EFC} O42 - Logiciel: P2400P Guide de référence - (...) [HKLM] -- P2400P Guide de référence O42 - Logiciel: PDFtoMusic - (...) [HKLM] -- PDFtoMusic O42 - Logiciel: PeerGuardian 2.0 - (.Methlabs Productions.) [HKLM] -- PeerGuardian_is1 O42 - Logiciel: Personal Ancestral File 5 - (...) [HKLM] -- {D94A8E22-DF2B-4107-9E51-608A60A7671D} O42 - Logiciel: SanDisk SD Wi-Fi Card - (...) [HKLM] -- {6B73F555-C1A7-4EEC-B481-889637C5C728} O42 - Logiciel: SaverWiz - (...) [HKLM] -- SaverWiz O42 - Logiciel: Sibelius 5 Demo - (.Sibelius Software.) [HKLM] -- {24EDCB2B-A50E-43AB-8340-74BB46B1E9FE} O42 - Logiciel: SmartList To Go - (.DataViz, Inc..) [HKLM] -- {36FBFDA5-E422-4C01-BA7C-C067E8ACFD90} O42 - Logiciel: SplashID - (...) [HKLM] -- {9DBBC53C-AD7B-44ED-91A7-7568B51182F8} O42 - Logiciel: TablePCRT - (.3M.) [HKLM] -- {C46A5F24-B91F-477C-B634-DB99A7D7792A} O42 - Logiciel: Tous les Noms de Famille de France V.6.5.1 - (...) [HKLM] -- ST6UNST #2 O42 - Logiciel: VDMSound - (.Vlad Romascanu.) [HKLM] -- VDMSound O42 - Logiciel: VobEdit 0.6 Fr - (...) [HKLM] -- VobEdit 0.6 Fr O42 - Logiciel: Wintree Version 3.0 d - (.Decrock.) [HKLM] -- Wintree_is1 O42 - Logiciel: dMC Power Pack - (...) [HKLM] -- dMC Power Pack O42 - Logiciel: iTextFront 1.17 - (.Ujihara.) [HKLM] -- {C9CE8735-F02F-4DE4-B979-04D30DFFE7C3} ~ Logic: 230 Legitimates Filtered in 00mn 13s ---\\ HKCU & HKLM Software Keys [HKLM\Software\BigScott27] [HKLM\Software\CDRWIN5] [HKLM\Software\Carpet] [HKLM\Software\CyberView X] [HKLM\Software\D-Tools] [HKLM\Software\DECROCK] [HKLM\Software\GIANTCompany] [HKLM\Software\Musicalis] [HKLM\Software\Pacific Image ELectronics Co., Ltd.] [HKLM\Software\SndDesrVersion] [HKLM\Software\SplashData] [HKLM\Software\Sports] [HKLM\Software\Std] [HKLM\Software\Textures] [HKLM\Software\TorrentSearcher] [HKLM\Software\Trance Pad] [HKLM\Software\Tribal Masks] ~ Key Software: 323 Legitimates Filtered in 00mn 15s ---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43) O43 - CFD: 23/10/2005 - 11:03:08 - [0,024] ----D C:\Program Files\3D Photo Browser O43 - CFD: 25/05/2007 - 17:19:20 - [1,200] ----D C:\Program Files\Advanced IRC O43 - CFD: 17/11/2006 - 19:38:20 - [0,585] ----D C:\Program Files\ANtsP2P O43 - CFD: 05/11/2005 - 10:52:21 - [6,055] ----D C:\Program Files\AVI MPEG RM WMV Joiner O43 - CFD: 02/01/2008 - 11:37:28 - [60,073] ----D C:\Program Files\Avi2Dvd O43 - CFD: 23/11/2005 - 19:47:40 - [0,000] ----D C:\Program Files\BackupBuddy O43 - CFD: 03/12/2005 - 13:04:25 - [8,416] ----D C:\Program Files\CDRWIN5 O43 - CFD: 06/01/2008 - 18:37:12 - [12,524] ----D C:\Program Files\CH Products O43 - CFD: 14/04/2006 - 12:02:35 - [0,532] ----D C:\Program Files\Common~1 O43 - CFD: 25/06/2011 - 10:16:59 - [2,041] ----D C:\Program Files\Dawn O43 - CFD: 19/11/2005 - 12:42:15 - [0,000] ----D C:\Program Files\Documents To Go O43 - CFD: 13/05/2008 - 18:55:00 - [8,422] ----D C:\Program Files\FamilySearch O43 - CFD: 12/05/2008 - 10:17:08 - [0,963] ----D C:\Program Files\GedCom-Vision O43 - CFD: 10/11/2007 - 15:01:46 - [0,971] ----D C:\Program Files\GedStar O43 - CFD: 03/07/2010 - 11:58:20 - [35,868] ----D C:\Program Files\GenjFr O43 - CFD: 18/02/2010 - 21:20:15 - [2,745] ----D C:\Program Files\HanDBase3 O43 - CFD: 07/09/2008 - 18:32:35 - [33,391] ----D C:\Program Files\Harmony Assistant O43 - CFD: 20/12/2009 - 16:15:09 - [13,699] ----D C:\Program Files\i2p O43 - CFD: 17/11/2006 - 13:53:30 - [2,454] ----D C:\Program Files\icesword O43 - CFD: 11/10/2008 - 16:27:03 - [1,365] ----D C:\Program Files\IfoEdit O43 - CFD: 20/12/2009 - 19:20:14 - [32,490] ----D C:\Program Files\iMule-1.4.5 O43 - CFD: 20/05/2011 - 15:18:55 - [71,852] ----D C:\Program Files\Kommute O43 - CFD: 30/07/2005 - 12:39:24 - [0,000] ----D C:\Program Files\Messenger Backup O43 - CFD: 22/12/2009 - 15:36:37 - [710,407] ----D C:\Program Files\Musicalis O43 - CFD: 17/11/2006 - 19:42:04 - [19,998] ----D C:\Program Files\MUTE O43 - CFD: 02/12/2007 - 13:22:35 - [0,011] ----D C:\Program Files\myFairTunes O43 - CFD: 08/04/2006 - 14:56:03 - [2,868] ----D C:\Program Files\MyVideoSoft O43 - CFD: 17/11/2006 - 19:21:34 - [0,384] ----D C:\Program Files\NapShare O43 - CFD: 23/10/2005 - 10:52:05 - [2,308] ----D C:\Program Files\Newave O43 - CFD: 04/06/2013 - 19:07:25 - [0,723] ----D C:\Program Files\ODEON O43 - CFD: 30/08/2008 - 13:44:53 - [19,881] ----D C:\Program Files\PDFtoMusic O43 - CFD: 23/08/2011 - 19:04:49 - [1390,739] ----D C:\Program Files\PeerGuardian2 O43 - CFD: 05/11/2004 - 15:40:40 - [3,209] ----D C:\Program Files\PW O43 - CFD: 28/10/2007 - 14:20:31 - [1,613] ----D C:\Program Files\Reagclean O43 - CFD: 05/05/2005 - 11:04:57 - [0,883] ----D C:\Program Files\SaverWiz O43 - CFD: 19/04/2009 - 11:44:56 - [0,003] ----D C:\Program Files\Sensory O43 - CFD: 17/05/2008 - 18:30:51 - [0,345] ----D C:\Program Files\SmartGenealogy_2.8c O43 - CFD: 13/12/2009 - 17:20:50 - [8,310] ----D C:\Program Files\SmartList To Go O43 - CFD: 06/11/2004 - 11:56:01 - [1,324] ----D C:\Program Files\SplashData O43 - CFD: 22/10/2010 - 14:07:47 - [0,000] ----D C:\Program Files\TauVPN O43 - CFD: 26/03/2007 - 20:17:53 - [3,929] ----D C:\Program Files\thinkingBytes O43 - CFD: 28/02/2005 - 15:07:00 - [56,415] ----D C:\Program Files\Tweak-XP Pro 4 O43 - CFD: 13/03/2010 - 19:28:24 - [4,902] ----D C:\Program Files\Ujihara O43 - CFD: 22/07/2012 - 10:19:59 - [0,053] ----D C:\Program Files\URLSnooper2 O43 - CFD: 18/04/2007 - 18:58:26 - [1,810] ----D C:\Program Files\VDMSound O43 - CFD: 13/05/2008 - 18:47:07 - [14,404] ----D C:\Program Files\WINTREE O43 - CFD: 09/10/2005 - 10:57:52 - [2,760] ----D C:\Program Files\Winwap Technologies O43 - CFD: 30/12/2006 - 16:15:26 - [0] ----D C:\Program Files\Fichiers communs\element5 Shared O43 - CFD: 12/03/2011 - 21:01:31 - [0,000] ----D C:\Documents and Settings\All Users\Application Data\Analog Pad O43 - CFD: 15/05/2005 - 10:34:39 - [0,012] ----D C:\Documents and Settings\All Users\Application Data\element5 O43 - CFD: 11/11/2008 - 11:59:35 - [0,000] ----D C:\Documents and Settings\All Users\Application Data\Tables O43 - CFD: 08/09/2012 - 18:30:48 - [0,003] ----D C:\Documents and Settings\Admin\Application Data\PIE ~ Program Folder: 303 Legitimates Filtered in 02mn 26s ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.EAC16AEFFE8AD403D15F216AA2ED69CD] - 16/09/2013 - 14:31:13 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.83EB8ABA0B342BDFB990CC4831E8E232] - 16/09/2013 - 14:31:01 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.7112190518B5AEAA05B259BBE393C9ED] - 14/09/2013 - 16:38:21 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [116] O44 - LFC:[MD5.570E3635FABBBD001EA0550B5861CCA2] - 13/09/2013 - 15:56:33 ---A- . (...) -- C:\WINDOWS\system32\GDIPFONTCACHEV1.DAT [119296] O44 - LFC:[MD5.C0BA927C3A1A62F2BF664F242D91C082] - 13/09/2013 - 09:42:42 ---A- . (...) -- C:\WINDOWS\system32\Drivers\OADriver.sys [208320] O44 - LFC:[MD5.C968369E2BC5F6A8426C1E7D78E33F1B] - 13/09/2013 - 09:42:42 ---A- . (...) -- C:\WINDOWS\system32\Drivers\oahlp32.sys [44992] ~ Files: 24 Legitimates Filtered in 02mn 04s ---\\ Derniers fichiers créés dans Windows Prefetcher (O45) O45 - LFCP:[MD5.158B9732EC1B6852DCA57BC653EF8594] - 16/09/2013 - 12:17:48 ---A- - C:\WINDOWS\Prefetch\I_VIEW32.EXE-38F9F646.pf O45 - LFCP:[MD5.6671760AFAB401A1AD01F9C400010CAD] - 16/09/2013 - 13:32:30 ---A- - C:\WINDOWS\Prefetch\MPC_FR.EXE-0A7E7B09.pf O45 - LFCP:[MD5.8778DEE373E13904DBA771878C3C1948] - 16/09/2013 - 14:18:07 ---A- - C:\WINDOWS\Prefetch\JRT.EXE-22C49E56.pf O45 - LFCP:[MD5.729FFA86FE798596216C8D762BD20AEC] - 16/09/2013 - 14:18:11 ---A- - C:\WINDOWS\Prefetch\NIRCMD.DAT-3A6E400F.pf O45 - LFCP:[MD5.4D61521AD9BB3876E517E33363281109] - 16/09/2013 - 14:18:13 ---A- - C:\WINDOWS\Prefetch\WGET.DAT-3120051A.pf O45 - LFCP:[MD5.8CECD5262A1D04E8359CC640EF7BDC35] - 16/09/2013 - 14:18:14 ---A- - C:\WINDOWS\Prefetch\FC.EXE-1B9F0926.pf O45 - LFCP:[MD5.66DEF312D04EA64358F7B9A4E1115F17] - 16/09/2013 - 14:22:19 ---A- - C:\WINDOWS\Prefetch\CHOICE.DAT-228B59E3.pf O45 - LFCP:[MD5.A8D53E043ADCE9498BD37C6679724D2D] - 16/09/2013 - 14:22:46 ---A- - C:\WINDOWS\Prefetch\FIND.EXE-0EC32F1E.pf O45 - LFCP:[MD5.EB48868F0FFC5B5483D4943BB8D8E479] - 16/09/2013 - 14:32:27 ---A- - C:\WINDOWS\Prefetch\PSDRVCHECK.EXE-04674802.pf O45 - LFCP:[MD5.E9DCD255E71C32118C9B355C63A9B28C] - 16/09/2013 - 14:32:32 ---A- - C:\WINDOWS\Prefetch\OAUI.EXE-29741C36.pf O45 - LFCP:[MD5.CB1353F85CC0ECE779255B0AD7BF6A83] - 16/09/2013 - 14:32:42 ---A- - C:\WINDOWS\Prefetch\OAHLP.EXE-2E2BAC05.pf O45 - LFCP:[MD5.8172B8E69C1CD3DFD108EBBBE43D2544] - 16/09/2013 - 14:33:08 ---A- - C:\WINDOWS\Prefetch\OADUMP.EXE-2C782262.pf ~ Prefetcher: 86 Legitimates Filtered in 00mn 00s ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll O46 - SEH:ShellExecuteHooks - Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\PROGRA~1\WINDOW~4\MpShHook.dll O46 - SEH:ShellExecuteHooks - OA Shell Helper - {4F07DA45-8170-4859-9B5F-037EF2970034} - C:\PROGRA~1\ONLINE~1\oaevent.dll ~ ShellExecuteHooks: Scanned in 00mn 00s ---\\ Contrôle du Safe Boot (CSB) (O49) O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\HDDirect.sys . (...) -- C:\WINDOWS\system32\Drivers\HDDirect.sys (.not file.) O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\HDDirect.sys . (...) -- C:\WINDOWS\system32\Drivers\HDDirect.sys (.not file.) ~ CSB: 25 Legitimates Filtered in 00mn 00s ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ~ IFEO: Scanned in 00mn 00s ---\\ Enumération des clés de registre PoliciesExplorer (MWPE) (O56) O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=0 ~ MWPE Keys: 4 Legitimates Filtered in 00mn 00s ---\\ Liste des pilotes du système (SDL) (O58) O58 - SDL:[MD5.116BFF96077A4A724E0AAB800525CEB5] - 28/08/2002 - 22:59:12 ---A- . (.ADMtek Incorporated. - ADMtek AN983/AN985/ADM951X NDIS5 Driver.) -- C:\WINDOWS\system32\Drivers\an983.sys [36224] O58 - SDL:[MD5.BA898B29F0DBF9307F494475A8393F03] - 05/05/2005 - 16:01:34 RSH-- . (...) -- C:\WINDOWS\system32\0AA48D50C7.sys [8] ~ Drivers: 7 Legitimates Filtered in 00mn 00s ---\\ Derniers fichiers modifiés ou crées (Utilisateur) (O61) O61 - LFC: 13/09/2013 - 08:10:48 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\mbam-log-2013-09-13 (09-10-16).txt [1919] O61 - LFC: 13/09/2013 - 08:37:02 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\bookmarkbackups\bookmarks-2013-09-13.json [3796] O61 - LFC: 13/09/2013 - 08:53:53 -SHA- . (...) -- C:\Documents and Settings\Admin\IECompatCache\index.dat [868352] O61 - LFC: 13/09/2013 - 09:25:19 ---A- . (...) -- C:\Documents and Settings\Admin\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [119296] O61 - LFC: 13/09/2013 - 14:15:05 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\nanny.txt.lnk [591] O61 - LFC: 13/09/2013 - 17:14:27 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\Disque deux (E).lnk [286] O61 - LFC: 13/09/2013 - 17:14:27 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\cd rescue.iso.lnk [385] O61 - LFC: 14/09/2013 - 13:13:22 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPDiag.txt.lnk [481] O61 - LFC: 14/09/2013 - 13:20:32 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AVSCAN-20130912-092645-D74EAE1A.LOG.lnk [603] O61 - LFC: 14/09/2013 - 13:38:21 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\bookmarkbackups\bookmarks-2013-09-14.json [3796] O61 - LFC: 14/09/2013 - 14:05:43 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\AVSCAN-20130914-142127-096A90CF.LOG [23948] O61 - LFC: 14/09/2013 - 14:05:43 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AVSCAN-20130914-142127-096A90CF.LOG.lnk [529] O61 - LFC: 14/09/2013 - 14:09:19 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\hijackthis.log.lnk [498] O61 - LFC: 14/09/2013 - 14:26:48 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\aa.txt [493] O61 - LFC: 14/09/2013 - 14:26:48 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\aa.txt.lnk [452] O61 - LFC: 16/09/2013 - 09:40:18 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\healthreport\state.json [89] O61 - LFC: 16/09/2013 - 09:41:28 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\adwcleaner.exe [1039554] O61 - LFC: 16/09/2013 - 09:42:23 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\bookmarkbackups\bookmarks-2013-09-16.json [3796] O61 - LFC: 16/09/2013 - 09:42:23 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\healthreport.sqlite [1146880] O61 - LFC: 16/09/2013 - 09:42:24 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\webappsstore.sqlite [163840] O61 - LFC: 16/09/2013 - 09:53:48 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\AdwCleaner[S0].txt [2087] O61 - LFC: 16/09/2013 - 10:01:03 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AdwCleaner[S0].txt.lnk [518] O61 - LFC: 16/09/2013 - 10:22:00 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\blocklist.xml [78168] O61 - LFC: 16/09/2013 - 10:37:56 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\addons.sqlite [524288] O61 - LFC: 16/09/2013 - 10:38:50 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\downloads.sqlite [98304] O61 - LFC: 16/09/2013 - 10:38:59 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\permissions.sqlite [65536] O61 - LFC: 16/09/2013 - 10:41:56 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\ZHPFixReport.txt [2856] O61 - LFC: 16/09/2013 - 10:42:28 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\ZHPFix[R1].txt [2856] O61 - LFC: 16/09/2013 - 10:57:03 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPFixReport.txt.lnk [508] O61 - LFC: 16/09/2013 - 10:57:04 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\extensions.sqlite [458752] O61 - LFC: 16/09/2013 - 10:58:08 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPFix[R1].txt.lnk [498] O61 - LFC: 16/09/2013 - 10:58:46 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\post.txt.lnk [464] O61 - LFC: 16/09/2013 - 10:59:01 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\post.txt [86] O61 - LFC: 16/09/2013 - 10:59:53 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\formhistory.sqlite [196608] O61 - LFC: 16/09/2013 - 10:59:53 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\signons.sqlite [327680] O61 - LFC: 16/09/2013 - 11:06:01 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\content-prefs.sqlite [229376] O61 - LFC: 16/09/2013 - 12:16:50 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\places.sqlite [10485760] O61 - LFC: 16/09/2013 - 12:17:14 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\cookies.sqlite [524288] O61 - LFC: 16/09/2013 - 12:17:14 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\sessionstore.bak [2253] O61 - LFC: 16/09/2013 - 12:17:15 ---A- . (...) -- C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\startupCache\startupCache.4.little [884499] O61 - LFC: 16/09/2013 - 13:32:28 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\Provi.lnk [483] O61 - LFC: 16/09/2013 - 13:32:28 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\nannys-day-1-revelation.swf.lnk [675] O61 - LFC: 16/09/2013 - 13:32:31 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Media Player Classic\default.mpcpl [95] O61 - LFC: 16/09/2013 - 13:52:05 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPDiag 160913.Txt.lnk [518] O61 - LFC: 16/09/2013 - 13:57:43 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\parent.lock [0] O61 - LFC: 16/09/2013 - 13:57:45 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\pluginreg.dat [6471] O61 - LFC: 16/09/2013 - 13:57:45 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\webapps\webapps.json [2] O61 - LFC: 16/09/2013 - 13:57:48 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\urlclassifierkey3.txt [154] O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\cert8.db [131072] O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\key3.db [16384] O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\localstore.rdf [5047] O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\sessionstore.js [604] O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\_CACHE_CLEAN_ [1] O61 - LFC: 16/09/2013 - 14:00:32 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\prefs.js [8161] O61 - LFC: 16/09/2013 - 14:17:25 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\AdwCleaner[S1] 13 09 16.txt [1437] O61 - LFC: 16/09/2013 - 14:18:08 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AdwCleaner[S1] 13 09 16.txt.lnk [577] O61 - LFC: 16/09/2013 - 14:30:44 -SHA- . (...) -- C:\Documents and Settings\Admin\IETldCache\index.dat [262144] O61 - LFC: 16/09/2013 - 14:32:54 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\OnlineArmor\client.dat.bak [619] ~ 17 Fichiers temporaires (Temporary files) ~ 4 Fichiers cookies (Cookies files) ~ Files: 240 Legitimates Filtered in 00mn 27s ---\\ Fichiers Alternate Data Stream (ADS) (O62) O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\$winnt$.inf:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\0AA48D50C7.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\12520437.cpx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\12520850.cpx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\aaaamon.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\acctres.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\acelpdec.ax:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\acledit.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\activeds(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\activeds.tlb:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\adptif.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\adsldpc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\adsnds.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\advapi32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ansi.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\apcups.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\append.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\apphelp(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\arp.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\asr_ldm.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\atkctrs.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\atl(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\atmpvcno.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\audiosrv(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\authz(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\autodisc.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\autoexec.nt:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\AUTOEXEC.NT.bak:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avicap.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avicap32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avifile.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avmeter.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avtapi.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avwav.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bios1.rom:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bios4.rom:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bootok.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bootvid.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bootvrfy.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bopomofo.uce:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\browser(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cabinet(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\calc.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cards.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ccfgnt.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cdmodem.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\certcli(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\certmgr.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CF32569.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\charmap.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Chaînes.scf:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\chcp.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\chkdsk.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\chkntfs.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciadmin.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciadv.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaResSvr20.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaSubClsSvr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaXPFrame20.ocx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaXPRegSvr20.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaXPStatusBar20.ocx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cidaemon.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ckcnv.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clb.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clbcatq(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cliconf.chm:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cliconfg.rll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clspack.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clusapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmdlib.wsc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmmgr32.hlp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmos.ram:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmpbk32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cnetcfg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CNMLM3q.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CNMVS3q.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cnvfat.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\colbact(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comcat.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comctl32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comdlg32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comm.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\command.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\commdlg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comp.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\compact.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\compmgmt.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\compobj.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comres(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comsvcs(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CONFIG.NT:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\console.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\control.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\convert.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\country.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CPUINFO2.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\credui(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\crtdll.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\crypt32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cryptdll(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cryptsvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cryptui(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cscdll(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\csseqchk.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CtMp3.Crl:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ctype.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_037.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10000.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10006.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10007.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10010.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10017.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10029.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10079.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10081.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10082.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1026.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1250.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1251.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1252.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1253.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1254.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1255.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1256.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1257.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1258.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20127.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20261.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20866.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20905.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_21866.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28591.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28592.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28593.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\C_28594.NLS:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\C_28595.NLS:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\C_28597.NLS:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28598.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28599.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28603.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28605.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_437.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_500.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_737.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_775.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_850.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_852.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_855.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_857.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_860.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_861.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_863.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_865.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_866.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_869.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_874.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_875.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_932.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_936.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_949.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_950.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dim.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dpmesh.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dramp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3drm.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dxof.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\davclnt(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dbgeng.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dbmsadsn.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dbmsvinn.dLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ddeml.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\debug.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\deskadp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\deskmon.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\deskperf.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\devmgmt.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dfrg.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dfrgres.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dgrpsetu.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dgsetup.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dhcpcsvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dhcpsapi.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diactfrm.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dimap.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskcomp.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskcopy.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskmgmt.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskperf.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\divxdec_0407.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\divxdec_040c.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\divxdec_0411.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dllhst3g.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmconfig.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmdskres.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmintf.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmocx.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmserver(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmview.ocx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dnsapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dnsrslvr(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\docprop.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\doskey.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dosx.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dplay.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpnmodem.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpnwsock.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpserial.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpwsock.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\drprov(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\drwatson.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\drwtsn32.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ds16gt.dLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dsauth.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dsound.vxd:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dssec.dat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dssenh(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\duser(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dvdplay.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dx3j.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\edit.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\edit.hlp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\edlin.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ega.cpi:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\emptyregdb.dat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\epDPE.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\EqnClass.Dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ersvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esccm.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\escimg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\escwiab.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ESDTR.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esent(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esent97.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentprf.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentprf.hxx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentprf.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentutl.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eula.txt:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventcls.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventlog(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventquery.vbs:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventvwr.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventvwr.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\exe2bin.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\expand.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fastopen.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fc.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\find.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\finger.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fixmapi.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fmifs.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\FNTCACHE.DAT:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\freecell.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fsmgmt.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fsusd.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fsutil.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ftsrch.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\g711codc.ax:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gb2312.uce:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gcdef.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gcmd5query.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gcTypLibA.tlb:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gdi.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gdi32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\geo.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\getuname.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\glmf32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Gold Button.ocx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gpedit.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gpkcsp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gpupdate.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\graftabl.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\graphics.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\graphics.pro:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\h323(2).tsp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hid(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hidphone(2).tsp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\himem.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hnetcfg(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hnetmon.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\homepage.inf:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hostname.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hticons.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hxphk.ocx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasacct.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasads.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iashlpr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasnap.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iaspolcy.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasrecst.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iassam.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iassdo.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iassvcs.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\icaapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\icfgnt5.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\icmui.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ideograf.uce:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ifsutil.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iissuba.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\imagehlp(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\imagr5.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\imagx5.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagX7.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXpr5.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXpr7.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXR7.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXRA7.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\inetcplc.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\INETWH32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\infosoft.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\instcat.sql:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iologmsg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipconf(2).tsp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iphlpapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipnathlp(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iprop.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iprtprio.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipsec6.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxmontr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxpromn.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxrip.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxrtmgr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxsap.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ir32_32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\irclass.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iuengine.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jardin.scr:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javacypt.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javaee.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javaprxy.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javart.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javasup.vxd:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jdbgmgr.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jet500.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgaw400.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgmd400.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgsd400.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgsh400.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jit.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jobexec.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jsfr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jview.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kanji_1.uce:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kanji_2.uce:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kb16.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdbe.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdbene.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdbr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdca.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdcan.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdda.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbddv.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdes.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfc.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfi.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfo.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdgae.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdgr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdgr1.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdic.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdir.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdit.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdit142.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdla.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdmac.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdne.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdno.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdpo.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsf.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsw.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbduk.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdus.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdusl.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdusr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdusx.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kdcom.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kerberos(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kernel32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\key01.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\keyboard.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\keyboard.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\KGyGaAvL.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kmddsp(2).tsp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\korean.uce:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\krnl386.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\label.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\langwrbk.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lanman.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfawd10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfbmp10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfbmp13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfcal10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfcmp10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\LFCMP13n.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfeps10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfeps13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lffax10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lffax13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lffpx10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Lffpx7.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfgif10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfgif13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfica10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfimg10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Lfkodak.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lflma10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lflmb10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfmac10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfmsp10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcd10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcd13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpct10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcx10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcx13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpng10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Lfpng13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpsd10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpsd13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfras10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftga10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftga13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftif10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftif13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfwfx10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfwmf13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfwpg10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lights.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lmhsvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lnkstub.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\loadfix.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lodctr.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\loghours.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\login.cmd:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\logoff.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lpq.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lpr.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lprmonui.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lsasrv(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lsass(2).exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Ltclr13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\LTDIS10N.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\LTDIS13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltefx13n.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltfil10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltfil13n.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltimg10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltimg13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltkrn10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltkrn13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lttwn10n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Ltwvc13n.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lusrmgr.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lz32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lzexpand.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\l_except.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\l_intl.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mag_hook.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\main.cpl:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mapi32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mapistub.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mcd32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mcdsrv32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mchgrcoi.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciavi.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mcicda.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciole16.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciole32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciseq.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciwave.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mdhcp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mdwmdmsp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mem.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfc40loc.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MFC42FRA.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfc42loc.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfc70fra.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MFC71FRA.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfcans32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfcuia32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mib.bin:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\midimap(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\migpwd.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mindex.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mlang.dat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mll_hp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mll_mtf.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mll_qic.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmdriver.inf:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmdrv.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmsystem.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmtask.tsk:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmutilse.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mode.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\modex.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mountvol.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mouse.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mpnotify.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mpr(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprddm.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprmsg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprui.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqcertui.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqgentr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqoa.tlb:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqoa10.tlb:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqoa20.tlb:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqperf.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqperf.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqprfsym.h:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mrinfo.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msaatext.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm32(2).drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm32.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msasn1(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msaudite.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msawt.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mscat32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mscdexnt.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msdtcprf.h:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msdtcprf.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msencode.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msexcl35.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSFLXGRD.OCX:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msg.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msg711.acm:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msg723.acm:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSGHOO32.OCX:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msgina(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msgsm32.acm:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mshearts.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSHFLXGD.OCX:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msidle(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msidntld.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msimg32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMRT.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMRT16.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMRT32.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMUSIC.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msisam10.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msisam11.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjava.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjdbc10.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjet35.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjint32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjt3032.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjter32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjter35.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msls2.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSMASK32.OCX:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msobjs.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MsPMSPSv.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msports.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msprivs(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSPRPFR.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msr2c.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msr2cenu.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msratelc.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msrclr40.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSRDO20.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msrecr40.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mssign32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mssip32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSStdFmt.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSSTKPRP.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msswch.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msswchx.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mstlsapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msuni10.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msuni11.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msv1_0(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvbvm50.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcp50.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcp60(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcrt(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcrt20.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvideo.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mswsock(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSXBSE35.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxml2r.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxml3r.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxml4a.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxmlr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mtxclu(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mycomput.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\narrhook.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nbtstat.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ncobjapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ncpa.cpl:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ncxpnt.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nddeapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ndptsp(2).tsp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\NeroBurnRights.cpl:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\NeroCheck.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\NeroCo.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\net.hlp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netapi.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netapi32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netcfgx(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netevent.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\neth.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netlogon(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netman(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netmsg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netrap(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netshell(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netui0(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netui1(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netui2.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netware.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nlsfunc.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nmevtmsg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.chs:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.cht:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.dat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.deu:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.eng:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.enu:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.esn:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.fra:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.ita:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.nld:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.sve:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.tha:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\npwmsdrm.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdll(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos404.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos411.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos412.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos804.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdsapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdsbcli.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntimage.gif:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio404.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio411.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio412.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio804.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlanman(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlanui.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlanui2.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlsapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmarta(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmsevt.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmsmgr.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmsoprq.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntsd.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntsdexts.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nw16.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwapi16.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwc.cpl:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwcfg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwevent.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwscript.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\O2CPlayer.OCX:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\odbc16gt.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\odbc32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\odbcint(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ODBCTL32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oembios.bin:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oembios.dat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oembios.sig:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole2.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole2disp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole2nls.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oleacc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oleaut32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olecli.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olesvr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olesvr32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olethk32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\osuninst.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pagefileconfig.vbs:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\PalmDevC.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\panmap.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Pano12.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\paqsp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pathping.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Pcdlib32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pcl.sep:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pdf.ocx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pentnt.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfci.h:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfci.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfd009.dat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfd00C.dat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perffilt.h:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perffilt.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfi009.dat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfi00C.dat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfnw.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfts.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfwci.h:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfwci.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pifmgr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ping6.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\plustab.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pmspl.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\powrprof(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prflbmsg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\print.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prncnfg.vbs:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prndrvr.vbs:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnjobs.vbs:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnmngr.vbs:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnport.vbs:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnqctl.vbs:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prodspec.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\profmap(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\psapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\psbase(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pschdcnt.h:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pschdprf.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pschdprf.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pscript.sep:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\psnppagn.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pstorsvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pubprn.vbs:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\python21.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pythoncom21.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\PyWinTypes21.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\qappsrv.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\qosname.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\qwinsta.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasadhlp(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasapi32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasautou.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\raschap(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasctrnm.h:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasctrs.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasctrs.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasdial.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasdlg(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasman(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasmans(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasmontr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasmxs.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasppp(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasrad.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasser.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rastapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rastls(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\RDOCURS.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rdpcfgex.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\recover.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\redir.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regedt32.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regini.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regsvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regwiz.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\relog.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rend.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\replace.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\reset.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\resutils(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\riched32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\RICHTX32.OCX:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rnr20.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ROBOEX32.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\route.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\routemon.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\routetab.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rpcns4.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rpcrt4(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rpcss(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsaci.rat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsaenh(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsfsaps.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsm.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsmsink.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsmui.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsopprov.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvp.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvp.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvpcnts.h:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvpmsg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvpperf.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\RTCRES.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rtm.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rtutils(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\runas.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rwinsta.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\samlib(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\samsrv(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\saxzip.ocx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scardssp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sccbase.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scecli(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scesrv(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\schannel(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\schedsvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scofr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scredir.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scripto.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scriptpw.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scrrnfr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sdpblb.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\seclogon(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secpol.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secupd.dat:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secupd.sig:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secur32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sens(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sensapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\senscfg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\serialui.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\services(2).exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\services.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\serwvdrv.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setup.bmp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setupapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setupdll.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setver.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfc.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfc_os(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfmapi.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\SFMS32.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shadow.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\share.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shdocvw(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shell.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shell32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shellstyle.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shiftjis.uce:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shimeng(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shlwapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shsvcs(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sisbkup.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\skdll.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\slbcsp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\slbrccsp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\smss(2).exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\SndDrv32b.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sndvol32.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\softpub.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sol.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sortkey.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sound.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\spnike.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sprestrt.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sprio600.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sprio800.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\spxcoins.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlsodbc.chm:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlsrv32.rll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlwid.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlwoa.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srclient(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srrstr(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srsvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srvsvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ssdpapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\SSubTmr6.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\stdole32.tlb:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\storage.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\streamci.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\subrange.uce:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\subst.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\superpad6.lnf:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\superpad9.lnf:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\svchost(2).exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\svcpack.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\swprv.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sxs(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\syncapp.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysedit.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysinv.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\syskey.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysprint.sep:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysprtj.sep:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\system.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\systray.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapi.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapi32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapiperf.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapisrv(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapiui.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\taskman.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tcmsetup.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tcpmon.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tcpsvcs.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\telephon.cpl:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Temp:99uDR2TtCG8HHtJOa2 O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\termcap:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\termsrv(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tftp.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ThinkRLE.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\timer.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\toolhelp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tracert6.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\traffic.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\trkwks(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsappcmp.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tscon.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tscupgrd.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsd32.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsdiscon.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tskill.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tslabels.h:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tslabels.ini:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tslicc.ocx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsshutdn.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tssoft32.acm:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\TwnLib20.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txp3.cpl:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txp4.cpl:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txp4lib.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\TXPstart.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txptabs.ocx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\typelib.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\typeperf.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ufat.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\umdmxfrm.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\umpnpmgr(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\unicode.nls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\unimdm(2).tsp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\uniplat(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\unlodctr.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\upnp(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ureg.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\urlmon(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\user.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\user32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\userenv(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrcntra.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrcoina.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrdpa.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrdtea.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrfaxa.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrlbva.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrlogon.cmd:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrmlnka.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrprbda.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrrtosa.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrsdpia.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrshuta.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrsvpia.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrv42a.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrv80a.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrvoica.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrvpa.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\utildll.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\uxtheme(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\v7vga.rom:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB5DB.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB5FR.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB5StKit.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB6STKIT.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vbar2232.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vbar332.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vbsfr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vcdex.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VegaShEx.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ver.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\verifier.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\version(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vfpodbc.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga256.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga64k.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vjoy.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vmhelper.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VSFLEX3.OCX:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vssadmin.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vssapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vss_ps.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vwipxspx.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vwipxspx.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\w32time(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\w32tm.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\w32topl.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.deu:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.enu:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.esn:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.fra:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.ita:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.nld:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.sve:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.deu:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.enu:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.esn:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.fra:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.ita:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.nld:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.sve:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wdigest(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wdl.trm:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wdmaud(2).drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\webclnt(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\webfldrs.msi:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\webhits.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wfwnet.drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wiasf.ax:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wiavusd.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wifeman.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\win.com:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\win32k(2).sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\win87em.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winchat.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winfax.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winhelp.hlp:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winhlp32.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winhttp(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wininet(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winipsec(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winlogon(2).exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winmine.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winmm(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winmsd.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winnls.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winoldap.mod:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winrnr(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winscard(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winsock.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winspool(2).drv:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winspool.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winsrv(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winsta(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winstrm.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wintrust(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wjview.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wkssvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wldap32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wlnotify(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmerrFRA.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmi32.cnf:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmidx.ocx:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmimgmt.msc:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmiprop.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmiscmgr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmpns.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmpscheme.xml:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmpstub.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmv8dmod.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmvcore2.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmvdmoe.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\WNASPINT.DLL:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowdeb.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowexec.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowfax.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowfaxui.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wpa.dbl:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\write.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ws2help(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ws2_32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wscsvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshatm.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshfr.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshisn.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshnetbs.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshtcpip(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wsock32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wtsapi32(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuauclt1.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuaueng1.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuauserv(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wupdmgr.exe:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wups(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wzcsapi(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wzcsvc(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\xenroll.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\xpsp2res(2).dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\zdec.dll:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\zonedoff.reg:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\zonedon.reg:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\acpiec.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\an983.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1btxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1mdxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1pdxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1raxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1rvxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1snxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1ttxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1tuxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1xbxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1xsxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati2mtaa.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinbtxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinmdxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinpdxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinraxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinrvxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinsnxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinttxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atintuxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinxbxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinxsxx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ativmc20.cod:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atmepvc.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atmuni.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\audstub.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\beep.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cbidf2k.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cdaudio.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cinemst2.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cpqdap01.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cxthsfs2.cty:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\dxapi.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\dxgthk.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\enum1394.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\fsvga.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\fs_rec.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\gm.dls:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\gmreadme.txt:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\hsfbs2s2.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\hsfcxts2.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\hsfdpsp2.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\imagedrv.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\imagesrv.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ipfltdrv.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mcd.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mdmxsdk.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mnmdd.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mtlmnt5.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mtlstrm.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mtxparhm.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\netwlan5.img:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nikedrv.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ntmtlfax.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\null.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nv4_mini.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnkflt.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnkfwd.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnknb.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnkspx.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\oprghdlr.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\parvdm.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ptilink.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\raspti.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\rawwan.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\recagent.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\rio8drv.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\riodrv.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\rootmdm.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\s3gnbm.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slnt7554.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slntamr.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slnthal.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slwdmsup.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\smclib.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\tosdvd.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\tsbvcap.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\usbd.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\vdmindvd.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv07nt.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv08nt.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv09nt.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv11nt.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\watv06nt.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\watv10nt.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wmilib.sys:KAVICHS O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ws2ifsl.sys:KAVICHS ~ ADS: Scanned in 00mn 14s ---\\ Liste des outils de désinfection (LATC) (O63) O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1 O63 - Logiciel: ZHPFix 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1 ~ ADS: Scanned in 00mn 00s ---\\ Liste les services legacy du registre (LALS) (O64) O64 - Services: CurCS - 10/09/2013 - C:\WINDOWS\system32\DRIVERS\avgntflt.sys (avgntflt) .(.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) - LEGACY_AVGNTFLT O64 - Services: CurCS - 02/01/1601 - Pas de propriétaire (AVG Clean Driver) .(...) - LEGACY_AVG_CLEAN_DRIVER ~ Legacy: 194 Legitimates Filtered in 00mn 03s ---\\ Menu de démarrage Internet (SMI) (O68) O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - msn.) -- C:\Program Files\MSN\MSNCoreFiles\MSN6.exe ~ Keys: Scanned in 00mn 00s ---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (@ieframe.dll,-12512) - http://www.bing.com ~ Keys: Scanned in 00mn 00s ---\\ Enumère les fichiers Crack & Keygen (CKF) (O82) D:\Documents de Pascal\bibli Palm\programmes Palm\Astraware Sudoku v1.00 Palmos5 Cracked-Cscpda.rar D:\Documents de Pascal\bibli Palm\programmes Palm\Bases de données\handmark.mobiledb.4.02.palmos.cracked-tsrh.zip D:\Documents de Pascal\bibli Palm\programmes Palm\calcul\NeoCal.v1.7.7.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Calendrier\Wassup.v1.4.4.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Daedalus.3D.v1.1b.PalmOS.Keygen-TM.crc.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Daedalus.3D.v1.1b.PalmOS.Keygen-TM.part1.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Daedalus.3D.v1.1b.PalmOS.Keygen-TM.part2.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Dicos\UltraEdit_9.00c_[with_all_dictionary_files]_[with_keygen].exe D:\Documents de Pascal\bibli Palm\programmes Palm\Générateur de clés\Astraware keygen.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Générateur de clés\keygen collection 2ka.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Générateur de clés\keygen.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Générateur de clés\Keygen_2.04.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Alchemy.v2.3.PalmOS.Cracked.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Basketball.2003.v3.0.PalmOS.Cracked.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Bejeweled.v2.3.PalmOS.Cracked.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Chess.Genius.v2.1.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\TableTennis3D_inc_keygen.zip D:\Documents de Pascal\bibli Palm\programmes Palm\livres\TealDoc.v6.35.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Sudoku.Addict.v1.03.PalmOS.Cracked-CSCPDA.rar D:\Documents de Pascal\bibli Palm\programmes Palm\Système\CardExport.2.01.626.cracked.by.-S-.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Système\cardexport_cracked_2.0.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Système\FlyZipSR_v3.02_PalmOS_cracked.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Système\JackFlash_b14_and_JackSprat_3.b4_keygen.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Système\PowerRun.1.3.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Top Sudoku v2.61 Palmos Cracked-Hspda.rar D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Aeroplayer.5.0.beta.PalmOS.Keygen-TM.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Aeroplayer.v2.11.1.Multilanguage.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Agendus Professional v7.04 Palmos Cracked-Cscpda.rar D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Agendus.Professional.v7.06.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Agendus.Professional.v8.03.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\AgendusProfessional_901-Cracked.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\agendus_keygen.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Cartes\HandMap.v4.6.9.PalmOS.Keygen.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Cartes\HandMap.v4.7.1.PalmOS.Cracked.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\LauncherX.1.02-cracked.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\PalmaryClock.v2.3.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Resco.Photo.Viewer.v1.80.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\SilverScreen_v3.1.3_PalmOS_CRACKED.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\TealAuto.v1.52.PalmOS.Cracked.REPACK-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\TealMaster.Plus.v2.18.PalmOS.Cracked-CSCPDA.zip D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\ZLauncher.v4.10.PalmOS.Cracked-TSRH.zip D:\Documents de Pascal\FS 2004\Utilitaires\Flight Simulator 2004 - Scenery Lago Enhancer Keygen(1).rar D:\Documents de Pascal\Sudoku\Astraware.Sudoku.v1.00.PalmOS5.Cracked-CSCPDA.rar D:\Documents de Pascal\Sudoku\Palm - Top.SuDoKu.v2.0.PalmOS.Cracked-HSpda.zip D:\Documents de Pascal\Sudoku\Sudoku.Addict.v1.03.PalmOS.Cracked-CSCPDA.rar D:\Documents de Pascal\Sudoku\Sudoku.Master.v1.2.PalmOS.Cracked-CSCPDA.rar D:\Documents de Pascal\Sudoku\Top Sudoku v2.61 Palmos Cracked-Hspda.rar D:\Documents de Pascal\Sudoku\TopSuDoKu.v2.63.PalmOs.Cracked.zip ~ Files: Scanned in 03mn 40s ---\\ Recherche particulière à la racine du système (SPRF) (O84) [MD5.6A6CE9A0410A29061FCF6CAD8DE0387C] [SPRF][16/09/2013] (...) -- C:\Documents and Settings\Admin\Bureau\adwcleaner.exe [1039554] [MD5.98F2272A7D1BA8E3155FBEA167BCC613] [SPRF][02/12/1999] (...) -- C:\Program Files\xcacls.exe [91648] [MD5.55C2B47FFF94570CC2D83AAA626360B4] [SPRF][13/02/2009] (.Dictao SA - Module de signature AdSignerADP.) -- C:\WINDOWS\Downloaded Program Files\AdSignerADP.dll [413056] [MD5.E5F4ECE0255B0434AB746463EEF9AB47] [SPRF][13/02/2009] (.Dictao SA - Module de vérification de signature AdSignerADP.) -- C:\WINDOWS\Downloaded Program Files\AdVerifierADP.dll [273792] [MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\bdcore.dll [32] [MD5.A57234A9295B026C13FBF81B729FAFA6] [SPRF][01/03/2005] (...) -- C:\WINDOWS\Downloaded Program Files\bdupd.dll [118784] [MD5.FE691848CED7C74B2A177319AC154A1F] [SPRF][01/03/2005] (...) -- C:\WINDOWS\Downloaded Program Files\ipsupd.dll [53248] [MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\libfn.dll [32] [MD5.83167963FA7CE846389006723AEFEA9E] [SPRF][27/09/1999] (.3M - Post-it(R) Software Notes Plugin.) -- C:\WINDOWS\Downloaded Program Files\npcc.dll [624128] [MD5.A1353BA0E465748A1A01EC1786FCB9B5] [SPRF][09/06/2004] (...) -- C:\WINDOWS\Downloaded Program Files\NPSWF32.dll [832728] ~ Files: 16 Legitimates Filtered in 00mn 01s ---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS) [MD5.BE40E101FCCCF8FC03B05439A0C8D49E] [WIS][13/03/2010] (.UJIHARA Kazuya - iTextFront: Tool to concatenate and split PDF file..) -- C:\Windows\Installer\166fb6b.msi [110080] [MD5.AF1C470A9D524A4C526B840FBCF06861] [WIS][13/04/2006] (.3M - TabletPCRT.) -- C:\Windows\Installer\1b38127.msi [144384] [MD5.493EC21231670AE10A39BE44B9E5CBED] [WIS][05/12/2009] (.DataViz, Inc. - SmartList To Go.) -- C:\Windows\Installer\202db2b.msi [7543808] [MD5.2D1A28DFEEA9931837E1F85BEEEB543B] [WIS][03/12/2005] (.Engelmann Media - CD/DVD recording software.) -- C:\Windows\Installer\28498.msi [538624] [MD5.12368A9F5B88A72A4B9970491A9CDC80] [WIS][11/10/2009] (.Infor - IKEA HomePlanner.) -- C:\Windows\Installer\79b0d7.msi [20414976] [MD5.60C4499E512A2423E02D72D47036C197] [WIS][02/04/2006] (.BSD Concept - La France à la loupe.) -- C:\Windows\Installer\823c9.msi [2997248] [MD5.477A1801BE0AAC6C68FD78BFCF6B613A] [WIS][11/04/2009] (.Nikon - Blank Project Template.) -- C:\Windows\Installer\ae24de.msi [10608128] [MD5.3A3EB3F27DABC170CB358D1252BF8046] [WIS][03/10/2009] (.Musicalis - J'apprends le piano.) -- C:\Windows\Installer\de092.msi [27212288] ~ WIS: 123 Legitimates Filtered in 00mn 20s ---\\ Etat général des services not Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Demand 11/03/2006 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe SR - | Auto 18/09/2009 169312 | (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated.) - C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe SS - | Demand 13/09/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe SR - | Auto 10/09/2013 84024 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe SR - | Auto 10/09/2013 108088 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe SR - | Auto 03/05/2006 413696 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe SS - | Auto 03/05/2006 520192 | (ATI Smart) . (...) - C:\WINDOWS\system32\ati2sgag.exe SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe SS - | Demand 01/06/2011 867080 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe SS - | Demand 03/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe SR - | Auto 07/07/2013 182184 | (JavaQuickStarterService) . (.Oracle Corporation.) - C:\Program Files\Java\jre7\bin\jqs.exe SR - | Auto 06/02/2007 109344 | (LVPrcSrv) . (.Logitech Inc..) - c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe SS - | Auto 06/02/2007 105248 | (LVSrvLauncher) . (.Logitech Inc..) - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe SS - | Demand 25/11/2011 311928 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe SS - | Demand 18/08/2013 117656 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe SR - | Auto 02/10/2012 216072 | (OAcat) . (.Emsisoft GmbH.) - C:\Program Files\Online Armor\OAcat.exe SS - | Demand 20/10/2009 117264 | (rpcapd) . (.CACE Technologies, Inc..) - C:\Program Files\WinPcap\rpcapd.exe SR - | Auto 17/04/2010 73960 | (SbieSvc) . (.tzuk.) - C:\Program Files\Sandboxie\SbieSvc.exe SR - | Demand 18/04/2013 737616 | (ServiceLayer) . (.Nokia.) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe SR - | Auto 02/10/2012 4463864 | (SvcOnlineArmor) . (.Emsisoft GmbH.) - C:\Program Files\Online Armor\oasrv.exe ~ Services: Scanned in 00mn 22s ---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net Run by Admin at 16/09/2013 15:46:58 device: opened successfully user: MBR read successfully Disk trace: called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x8A73D01C]<< 1 nt!IofCallDriver[0x804E3735] >> \Device\Harddisk0\DR0[0x8A6A6AB8] \Driver\atapi[0x8A7607A8] >> IRP_MJ_INTERNAL_DEVICE_CONTROL >> 0x8A73D01C kernel: MBR read successfully detected disk devices: detected hooks: \Driver\atapi >> 0x8a73d01c IoDeviceObjectType >> ParseProcedure >> 0x898cf1b0 \Device\Harddisk0\DR0 >> ParseProcedure >> 0x898cf1b0 user & kernel MBR OK Warning: possible MBR rootkit infection ! ~ MBR: 19 Legitimates Filtered in 00mn 03s ---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80) Written by ad13, http://ad13.geekstog Run by Admin at 16/09/2013 15:47:01 ********* Dump file Name ********* C:\PhysicalDisk0_MBR.bin ~ MBR: Scanned in 00mn 06s ---\\ Scan Additionnel (O88) Database Version : 12920 - (16/09/2013) Clés trouvées (Keys found) : 0 Valeurs trouvées (Values found) : 0 Dossiers trouvés (Folders found) : 0 Fichiers trouvés (Files found) : 1 C:\Program Files\Yahoo!\Common\yinsthelper.dll =>Toolbar.Yahoo^ ~ Additionnel Scan: 341134 Items scanned in 00mn 58s ---\\ Récapitulatif des détections trouvées sur votre station ~ http://nicolascoolman.webs.com/apps/blog/show/30268689-toolbar-yahoo =>Toolbar.Yahoo ~ MSI: 1 link(s) detected in 00mn 58s ~ 1617 Legitimates filtered by white list End of the scan (1911 lines in 13mn 21s)(48)