Publicité
Publicité
Format du document : text/plain
Prévisualisation
~ Rapport de ZHPDiag v2013.9.16.270 - Nicolas Coolman (16/09/2013)
~ Lanc� par Admin (16/09/2013 15:34:42)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activ�e par le programme
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Not Found
---\\ Navigateurs Internet
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 23.0.1 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows XP Professional Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK
---\\ Logiciels de protection du syst�me
Avira Free Antivirus v13.0.0.4042
Malwarebytes' Anti-Malware
---\\ Logiciels d'optimisation du syst�me
CCleaner v3.24 =>Piriform Ltd
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader XI
Java 7 Update 25
---\\ Informations sur le syst�me
~ Processor: x86 Family 6 Model 6 Stepping 2, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1535 MB (45% free)
System Restore: Activ� (Enable)
System drive C: has 4 GB (10%) free of 39 GB
---\\ Mode de connexion au syst�me
~ Computer Name: PCPASCAL
~ User Name: Admin
~ All Users Names: SUPPORT_388945a0, Pascal Admin, HelpAssistant, eMule_Secure, Dominique, ASPNET, Administrateur, Admin,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Admin\Application Data\
~ %Desktop% : C:\Documents and Settings\Admin\Bureau\
~ %Favorites% : C:\Documents and Settings\Admin\Favoris\
~ %LocalAppData% : C:\Documents and Settings\Admin\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Admin\Menu D�marrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\
---\\ Enum�ration des unit�s disques
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 4 Go of 39 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 11 Go of 75 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 30 Go of 190 Go)
G:\ CD-ROM drive (Not Inserted)
H:\ CD-ROM drive (Not Inserted)
J:\ CD-ROM drive (Not Inserted)
---\\ Etat du Centre de S�curit� Windows
~ Security Center: 33 Legitimates Filtered in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.EA7AB3839BE1FFE067A8131F3547160D] - (.Microsoft Corporation - Internet Extensions for Win32.) (.08/08/2013 - 07:05:46.) -- C:\WINDOWS\system32\wininet.dll [920064]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/2
~ Mes musiques (My Musics) : 1/2
~ Mes Favoris (My Favorites) : 1/6
~ Mes Documents (My Documents) : 1/9
~ Mon Bureau (My Desktop) : 0/72
~ Menu demarrer (Programs) : 1/21
~ Hidden Files: Scanned in 00mn 00s
---\\ Processus lanc�s
[MD5.A2EAEB497CA29ECAEAF0DF66AD85C57D] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [413696] [PID.652]
[MD5.1A008CBB313F7A6644B883AE1829393B] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAcat.exe [216072] [PID.1096]
[MD5.A54B4FBC24C4EDE34BEB5F8D8974752A] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\oasrv.exe [4463864] [PID.1124]
[MD5.995D0B52870C7A5CAF3EA165FD674A35] - (.Logitech Inc. - Logitech LVPrcSrv Module..) -- c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe [109344] [PID.1296]
[MD5.8769E2D1072B62AB071F166F03B3E3DC] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024] [PID.1320]
[MD5.765FE0463E711E5A68AC7B69538ED922] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) -- C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [169312] [PID.1752]
[MD5.AD1D13E6326E0B8DA2A7BE13B39A8FE0] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088] [PID.1960]
[MD5.9ECF00E19736054E019C532AED8228FC] - (.Oracle Corporation - Java Quick Starter Service.) -- C:\Program Files\Java\jre7\bin\jqs.exe [182184] [PID.1468]
[MD5.B5354D391912E3ABC13E3B9E31D79367] - (.tzuk - Sandboxie Service.) -- C:\Program Files\Sandboxie\SbieSvc.exe [73960] [PID.1620]
[MD5.581176F60885AEF8F78C6E38DCC3CDF9] - (.Microsoft Corporation - WMDM PMSP Service.) -- C:\WINDOWS\System32\MsPMSPSv.exe [53520] [PID.700]
[MD5.2E0B0A051FFAA86E358465BB0880D453] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53784] [PID.800]
[MD5.DB3F7F19F942D3CE4E1A0E8D9FF541FB] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192] [PID.2348]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [253816] [PID.2440]
[MD5.DD851CB4DBB6EE0F9B7BC4DEBDA7544E] - (...) -- C:\WINDOWS\system32\qttask.exe [28672] [PID.2476]
[MD5.0AEFDADCDA44D8CE3C57BB32B7A3CED5] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAui.exe [2415104] [PID.2516]
[MD5.06F39071A9E3635F4258FD7F5E3F5988] - (.Nokia - Nokia Suite.) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1090912] [PID.2604]
[MD5.F07B8AAE1805EF9B12BF8EDFD0D50F0A] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAhlp.exe [1248144] [PID.2656]
[MD5.F30BF9FC4275156F2AE96FCDF1ED5EE4] - (.Avira Operations GmbH & Co. KG - Avira Shadow Copy Service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76856] [PID.3100]
[MD5.78F7BB9F4924BE164294C59B8C3FC096] - (.Nokia - ServiceLayer Module.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [737616] [PID.3956]
[MD5.5EBE396DB0ED20910A4C51E235539F9F] - (.Nokia - USB Media Server.) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe [179024] [PID.1784]
[MD5.192FBDF64A983CAC149D47D01970CE04] - (.Nokia - Microsoft Bluetooth Media Server.) -- C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe [150864] [PID.220]
[MD5.C52F40B273428861B06E9D027C80F8A4] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7963648] [PID.3140]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.3404]
~ Processes Running: Scanned in 00mn 03s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M2 - MFEP: prefs.js [Admin - bjby9717.default\fdm_ffext@freedownloadmanager.org] [] Free Download Manager plugin v1.5.7.6 (..)
P2 - FPN:Firefox Plugin Navigator . (.LizardTech - DjVu Plug-In(external version 6.1.1.1574).) -- C:\Program Files\Mozilla Firefox\Plugins\npdjvu.dll
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files\Mozilla Firefox\Plugins\NPSibelius.dll
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files\Mozilla Firefox\Plugins\ScorchPDFWrapper.dll
P2 - FPN: [HKLM] [@nokia.com/EnablerPlugin] - (.Pas de propri�taire - Nokia Suite Enabler Plugin.) -- C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
P2 - FPN: [HKLM] [yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1] - (...) -- C:\Program Files\Yahoo!\Common\npyaxmpb.dll (.not file.) =>Toolbar.Yahoo
~ Firefox Browser: 18 Legitimates Filtered in 00mn 02s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) (No version) -- (.not file.)
~ IE Browser: 10 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 1
---\\ Autres liens utilisateurs (O4)
O4 - GS\Program [AllUsers]: GenoPro.lnk . (.GenoPro - GenoPro 2011 - Picture Your Family Tree!.) -- C:\Program Files\GenoPro\GenoPro.exe
O4 - GS\Program [AllUsers]: MediaCUB.lnk . (...) -- C:\WINDOWS\Installer\{B1493D8A-C782-4ED3-A34D-8A9B8D9925BF}\_E76412006231BB098F8C6D.exe
O4 - GS\Program [AllUsers]: MSN Explorer.lnk . (.Microsoft Corporation - msn.) -- C:\Program Files\MSN\MSNCoreFiles\msn6.exe
O4 - GS\Program [Pascal Admin]: Blues for Piano and Keyboard 10.0.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\explorer.exe
O4 - GS\Program [Pascal Admin]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Program [Pascal Admin]: Windows Install Clean Up.lnk . (...) -- C:\Documents and Settings\Pascal Admin\Application Data\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
O4 - GS\Program [eMule_Secure]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Program [Dominique]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Program [Admin]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Global Startup: 28 Legitimates Filtered in 00mn 02s
---\\ Applications lanc�es au d�marrage du syt�me (O4)
O4 - HKLM\..\Run: [PSDrvCheck] . (...) -- C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] . (...) -- C:\WINDOWS\system32\qttask.exe
O4 - HKLM\..\Run: [@OnlineArmor GUI] . (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAui.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NokiaSuite.exe] . (.Nokia - Nokia Suite.) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe
O4 - HKUS\S-1-5-21-1935655697-1993962763-1343024091-1016\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1935655697-1993962763-1343024091-1016\..\Run: [NokiaSuite.exe] . (.Nokia - Nokia Suite.) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
~ Application: Scanned in 00mn 00s
---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} ((no name)) - http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} ((no name)) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ((no name)) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} ((no name)) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1155398021206
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} ((no name)) - http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} ((no name)) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-2.0.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} ((no name)) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
~ Objets ActiveX: Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr
O17 - HKLM\System\CS1\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr
O17 - HKLM\System\CS1\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpDomain = noos.fr
O17 - HKLM\System\CS2\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: NameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr
O17 - HKLM\System\CS3\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS3\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\System32\wiascr.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\WINDOWS\system32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent r�seau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Windows Genuine Advantage - Meddelande.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WRNotifier . (...) -- WRLogonNTF.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Online Armor Helper Service (OAcat) . (.Emsisoft GmbH - Online Armor Component.) - C:\Program Files\Online Armor\OAcat.exe
O23 - Service: Online Armor (SvcOnlineArmor) . (.Emsisoft GmbH - Online Armor Component.) - C:\Program Files\Online Armor\oasrv.exe
~ Services: 11 Legitimates Filtered in 01mn 48s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Desktop General: BackupWallPaper - .(...) - C:\WINDOWS\web\wallpaper\Colline verdoyante.bmp
O24 - Desktop General: WallPaper - .(...) - C:\WINDOWS\web\wallpaper\Colline verdoyante.bmp
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s
---\\ Enum�re les donn�es de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk /p \??\I:) - File not found
O34 - HKLM BootExecute: (SsiEfr.e) - File not found
O34 - HKLM BootExecute: (SsiEfr.e) - File not found
~ BEX: 4 Legitimates Filtered in 00mn 00s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: YInstStarterUpgrade Class - {0291E591-EA41-4c82-8106-3DC6CE7F7664} . (...) -- C:\Program Files\Yahoo!\Common\yinsthelper.dll =>Toolbar.Yahoo
O40 - ASIC: YSearchSetting2 Class - {347B0667-C7ED-429B-BDE3-CC8D3BACAA31} . (...) -- C:\Program Files\Yahoo!\Common\yinsthelper.dll =>Toolbar.Yahoo
~ Active Setup: 23 Legitimates Filtered in 00mn 01s
---\\ Pilotes lanc�s au d�marrage du syst�me (O41)
O41 - Driver: (OADevice) . (...) - C:\WINDOWS\system32\drivers\OADriver.sys
O41 - Driver: (oahlpXX) . (...) - C:\WINDOWS\system32\drivers\oahlp32.sys
O41 - Driver: (AVG Anti-Spyware Driver) . (. - .) - C:\Program Files\AVG Anti-Spyware 7.5\guard.sys (.not file.)
O41 - Driver: (AvgAsCln) . (. - .) - C:\WINDOWS\system32\DRIVERS\AvgAsCln.sys (.not file.)
O41 - Driver: (fwdrv) . (. - .) - C:\WINDOWS\system32\drivers\fwdrv.sys (.not file.)
O41 - Driver: (khips) . (. - .) - C:\WINDOWS\system32\drivers\khips.sys (.not file.)
O41 - Driver: (NaiAvTdi1) . (. - .) - C:\WINDOWS\system32\drivers\mvstdi5x.sys (.not file.)
~ Drivers: 86 Legitimates Filtered in 00mn 06s
---\\ Logiciels install�s (O42)
O42 - Logiciel: Advanced IRC - (...) [HKLM] -- Advanced IRC
O42 - Logiciel: BackupBuddy for Windows - (...) [HKLM] -- BackupBuddy for Windows
O42 - Logiciel: CDRWIN 5 - (.Engelmann Media.) [HKLM] -- {9B2B0EAD-2CC7-4589-B3AA-D23BAB724065}
O42 - Logiciel: CH Control Manager - (...) [HKLM] -- CHControlManager_is1
O42 - Logiciel: CyberView X - SF v1.30 (build 20110411) - (.Pacific Image ELectronics Co., Ltd..) [HKLM] -- {D8FF6E29-36B4-474F-A88F-973087650C00}
O42 - Logiciel: Dawn - (.\.) [HKLM] -- {459E0590-ECD4-490E-9E52-3EF1F1782225}
O42 - Logiciel: GedCom-Vision version 2.0e - (...) [HKLM] -- GedCom-Vision_is1
O42 - Logiciel: Harmony Assistant - (...) [HKLM] -- Harmony Assistant
O42 - Logiciel: IFOEdit 0.971 Fr - (...) [HKLM] -- IFOEdit 0.971 Fr
O42 - Logiciel: La France � la loupe - (.BSD Concept.) [HKLM] -- {E3F2269F-EC1F-494D-B700-E543EB509EFC}
O42 - Logiciel: P2400P Guide de r�f�rence - (...) [HKLM] -- P2400P Guide de r�f�rence
O42 - Logiciel: PDFtoMusic - (...) [HKLM] -- PDFtoMusic
O42 - Logiciel: PeerGuardian 2.0 - (.Methlabs Productions.) [HKLM] -- PeerGuardian_is1
O42 - Logiciel: Personal Ancestral File 5 - (...) [HKLM] -- {D94A8E22-DF2B-4107-9E51-608A60A7671D}
O42 - Logiciel: SanDisk SD Wi-Fi Card - (...) [HKLM] -- {6B73F555-C1A7-4EEC-B481-889637C5C728}
O42 - Logiciel: SaverWiz - (...) [HKLM] -- SaverWiz
O42 - Logiciel: Sibelius 5 Demo - (.Sibelius Software.) [HKLM] -- {24EDCB2B-A50E-43AB-8340-74BB46B1E9FE}
O42 - Logiciel: SmartList To Go - (.DataViz, Inc..) [HKLM] -- {36FBFDA5-E422-4C01-BA7C-C067E8ACFD90}
O42 - Logiciel: SplashID - (...) [HKLM] -- {9DBBC53C-AD7B-44ED-91A7-7568B51182F8}
O42 - Logiciel: TablePCRT - (.3M.) [HKLM] -- {C46A5F24-B91F-477C-B634-DB99A7D7792A}
O42 - Logiciel: Tous les Noms de Famille de France V.6.5.1 - (...) [HKLM] -- ST6UNST #2
O42 - Logiciel: VDMSound - (.Vlad Romascanu.) [HKLM] -- VDMSound
O42 - Logiciel: VobEdit 0.6 Fr - (...) [HKLM] -- VobEdit 0.6 Fr
O42 - Logiciel: Wintree Version 3.0 d - (.Decrock.) [HKLM] -- Wintree_is1
O42 - Logiciel: dMC Power Pack - (...) [HKLM] -- dMC Power Pack
O42 - Logiciel: iTextFront 1.17 - (.Ujihara.) [HKLM] -- {C9CE8735-F02F-4DE4-B979-04D30DFFE7C3}
~ Logic: 230 Legitimates Filtered in 00mn 13s
---\\ HKCU & HKLM Software Keys
[HKLM\Software\BigScott27]
[HKLM\Software\CDRWIN5]
[HKLM\Software\Carpet]
[HKLM\Software\CyberView X]
[HKLM\Software\D-Tools]
[HKLM\Software\DECROCK]
[HKLM\Software\GIANTCompany]
[HKLM\Software\Musicalis]
[HKLM\Software\Pacific Image ELectronics Co., Ltd.]
[HKLM\Software\SndDesrVersion]
[HKLM\Software\SplashData]
[HKLM\Software\Sports]
[HKLM\Software\Std]
[HKLM\Software\Textures]
[HKLM\Software\TorrentSearcher]
[HKLM\Software\Trance Pad]
[HKLM\Software\Tribal Masks]
~ Key Software: 323 Legitimates Filtered in 00mn 15s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 23/10/2005 - 11:03:08 - [0,024] ----D C:\Program Files\3D Photo Browser
O43 - CFD: 25/05/2007 - 17:19:20 - [1,200] ----D C:\Program Files\Advanced IRC
O43 - CFD: 17/11/2006 - 19:38:20 - [0,585] ----D C:\Program Files\ANtsP2P
O43 - CFD: 05/11/2005 - 10:52:21 - [6,055] ----D C:\Program Files\AVI MPEG RM WMV Joiner
O43 - CFD: 02/01/2008 - 11:37:28 - [60,073] ----D C:\Program Files\Avi2Dvd
O43 - CFD: 23/11/2005 - 19:47:40 - [0,000] ----D C:\Program Files\BackupBuddy
O43 - CFD: 03/12/2005 - 13:04:25 - [8,416] ----D C:\Program Files\CDRWIN5
O43 - CFD: 06/01/2008 - 18:37:12 - [12,524] ----D C:\Program Files\CH Products
O43 - CFD: 14/04/2006 - 12:02:35 - [0,532] ----D C:\Program Files\Common~1
O43 - CFD: 25/06/2011 - 10:16:59 - [2,041] ----D C:\Program Files\Dawn
O43 - CFD: 19/11/2005 - 12:42:15 - [0,000] ----D C:\Program Files\Documents To Go
O43 - CFD: 13/05/2008 - 18:55:00 - [8,422] ----D C:\Program Files\FamilySearch
O43 - CFD: 12/05/2008 - 10:17:08 - [0,963] ----D C:\Program Files\GedCom-Vision
O43 - CFD: 10/11/2007 - 15:01:46 - [0,971] ----D C:\Program Files\GedStar
O43 - CFD: 03/07/2010 - 11:58:20 - [35,868] ----D C:\Program Files\GenjFr
O43 - CFD: 18/02/2010 - 21:20:15 - [2,745] ----D C:\Program Files\HanDBase3
O43 - CFD: 07/09/2008 - 18:32:35 - [33,391] ----D C:\Program Files\Harmony Assistant
O43 - CFD: 20/12/2009 - 16:15:09 - [13,699] ----D C:\Program Files\i2p
O43 - CFD: 17/11/2006 - 13:53:30 - [2,454] ----D C:\Program Files\icesword
O43 - CFD: 11/10/2008 - 16:27:03 - [1,365] ----D C:\Program Files\IfoEdit
O43 - CFD: 20/12/2009 - 19:20:14 - [32,490] ----D C:\Program Files\iMule-1.4.5
O43 - CFD: 20/05/2011 - 15:18:55 - [71,852] ----D C:\Program Files\Kommute
O43 - CFD: 30/07/2005 - 12:39:24 - [0,000] ----D C:\Program Files\Messenger Backup
O43 - CFD: 22/12/2009 - 15:36:37 - [710,407] ----D C:\Program Files\Musicalis
O43 - CFD: 17/11/2006 - 19:42:04 - [19,998] ----D C:\Program Files\MUTE
O43 - CFD: 02/12/2007 - 13:22:35 - [0,011] ----D C:\Program Files\myFairTunes
O43 - CFD: 08/04/2006 - 14:56:03 - [2,868] ----D C:\Program Files\MyVideoSoft
O43 - CFD: 17/11/2006 - 19:21:34 - [0,384] ----D C:\Program Files\NapShare
O43 - CFD: 23/10/2005 - 10:52:05 - [2,308] ----D C:\Program Files\Newave
O43 - CFD: 04/06/2013 - 19:07:25 - [0,723] ----D C:\Program Files\ODEON
O43 - CFD: 30/08/2008 - 13:44:53 - [19,881] ----D C:\Program Files\PDFtoMusic
O43 - CFD: 23/08/2011 - 19:04:49 - [1390,739] ----D C:\Program Files\PeerGuardian2
O43 - CFD: 05/11/2004 - 15:40:40 - [3,209] ----D C:\Program Files\PW
O43 - CFD: 28/10/2007 - 14:20:31 - [1,613] ----D C:\Program Files\Reagclean
O43 - CFD: 05/05/2005 - 11:04:57 - [0,883] ----D C:\Program Files\SaverWiz
O43 - CFD: 19/04/2009 - 11:44:56 - [0,003] ----D C:\Program Files\Sensory
O43 - CFD: 17/05/2008 - 18:30:51 - [0,345] ----D C:\Program Files\SmartGenealogy_2.8c
O43 - CFD: 13/12/2009 - 17:20:50 - [8,310] ----D C:\Program Files\SmartList To Go
O43 - CFD: 06/11/2004 - 11:56:01 - [1,324] ----D C:\Program Files\SplashData
O43 - CFD: 22/10/2010 - 14:07:47 - [0,000] ----D C:\Program Files\TauVPN
O43 - CFD: 26/03/2007 - 20:17:53 - [3,929] ----D C:\Program Files\thinkingBytes
O43 - CFD: 28/02/2005 - 15:07:00 - [56,415] ----D C:\Program Files\Tweak-XP Pro 4
O43 - CFD: 13/03/2010 - 19:28:24 - [4,902] ----D C:\Program Files\Ujihara
O43 - CFD: 22/07/2012 - 10:19:59 - [0,053] ----D C:\Program Files\URLSnooper2
O43 - CFD: 18/04/2007 - 18:58:26 - [1,810] ----D C:\Program Files\VDMSound
O43 - CFD: 13/05/2008 - 18:47:07 - [14,404] ----D C:\Program Files\WINTREE
O43 - CFD: 09/10/2005 - 10:57:52 - [2,760] ----D C:\Program Files\Winwap Technologies
O43 - CFD: 30/12/2006 - 16:15:26 - [0] ----D C:\Program Files\Fichiers communs\element5 Shared
O43 - CFD: 12/03/2011 - 21:01:31 - [0,000] ----D C:\Documents and Settings\All Users\Application Data\Analog Pad
O43 - CFD: 15/05/2005 - 10:34:39 - [0,012] ----D C:\Documents and Settings\All Users\Application Data\element5
O43 - CFD: 11/11/2008 - 11:59:35 - [0,000] ----D C:\Documents and Settings\All Users\Application Data\Tables
O43 - CFD: 08/09/2012 - 18:30:48 - [0,003] ----D C:\Documents and Settings\Admin\Application Data\PIE
~ Program Folder: 303 Legitimates Filtered in 02mn 26s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.EAC16AEFFE8AD403D15F216AA2ED69CD] - 16/09/2013 - 14:31:13 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.83EB8ABA0B342BDFB990CC4831E8E232] - 16/09/2013 - 14:31:01 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.7112190518B5AEAA05B259BBE393C9ED] - 14/09/2013 - 16:38:21 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [116]
O44 - LFC:[MD5.570E3635FABBBD001EA0550B5861CCA2] - 13/09/2013 - 15:56:33 ---A- . (...) -- C:\WINDOWS\system32\GDIPFONTCACHEV1.DAT [119296]
O44 - LFC:[MD5.C0BA927C3A1A62F2BF664F242D91C082] - 13/09/2013 - 09:42:42 ---A- . (...) -- C:\WINDOWS\system32\Drivers\OADriver.sys [208320]
O44 - LFC:[MD5.C968369E2BC5F6A8426C1E7D78E33F1B] - 13/09/2013 - 09:42:42 ---A- . (...) -- C:\WINDOWS\system32\Drivers\oahlp32.sys [44992]
~ Files: 24 Legitimates Filtered in 02mn 04s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.158B9732EC1B6852DCA57BC653EF8594] - 16/09/2013 - 12:17:48 ---A- - C:\WINDOWS\Prefetch\I_VIEW32.EXE-38F9F646.pf
O45 - LFCP:[MD5.6671760AFAB401A1AD01F9C400010CAD] - 16/09/2013 - 13:32:30 ---A- - C:\WINDOWS\Prefetch\MPC_FR.EXE-0A7E7B09.pf
O45 - LFCP:[MD5.8778DEE373E13904DBA771878C3C1948] - 16/09/2013 - 14:18:07 ---A- - C:\WINDOWS\Prefetch\JRT.EXE-22C49E56.pf
O45 - LFCP:[MD5.729FFA86FE798596216C8D762BD20AEC] - 16/09/2013 - 14:18:11 ---A- - C:\WINDOWS\Prefetch\NIRCMD.DAT-3A6E400F.pf
O45 - LFCP:[MD5.4D61521AD9BB3876E517E33363281109] - 16/09/2013 - 14:18:13 ---A- - C:\WINDOWS\Prefetch\WGET.DAT-3120051A.pf
O45 - LFCP:[MD5.8CECD5262A1D04E8359CC640EF7BDC35] - 16/09/2013 - 14:18:14 ---A- - C:\WINDOWS\Prefetch\FC.EXE-1B9F0926.pf
O45 - LFCP:[MD5.66DEF312D04EA64358F7B9A4E1115F17] - 16/09/2013 - 14:22:19 ---A- - C:\WINDOWS\Prefetch\CHOICE.DAT-228B59E3.pf
O45 - LFCP:[MD5.A8D53E043ADCE9498BD37C6679724D2D] - 16/09/2013 - 14:22:46 ---A- - C:\WINDOWS\Prefetch\FIND.EXE-0EC32F1E.pf
O45 - LFCP:[MD5.EB48868F0FFC5B5483D4943BB8D8E479] - 16/09/2013 - 14:32:27 ---A- - C:\WINDOWS\Prefetch\PSDRVCHECK.EXE-04674802.pf
O45 - LFCP:[MD5.E9DCD255E71C32118C9B355C63A9B28C] - 16/09/2013 - 14:32:32 ---A- - C:\WINDOWS\Prefetch\OAUI.EXE-29741C36.pf
O45 - LFCP:[MD5.CB1353F85CC0ECE779255B0AD7BF6A83] - 16/09/2013 - 14:32:42 ---A- - C:\WINDOWS\Prefetch\OAHLP.EXE-2E2BAC05.pf
O45 - LFCP:[MD5.8172B8E69C1CD3DFD108EBBBE43D2544] - 16/09/2013 - 14:33:08 ---A- - C:\WINDOWS\Prefetch\OADUMP.EXE-2C782262.pf
~ Prefetcher: 86 Legitimates Filtered in 00mn 00s
---\\ Op�rations et fonctions au d�marrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\PROGRA~1\WINDOW~4\MpShHook.dll
O46 - SEH:ShellExecuteHooks - OA Shell Helper - {4F07DA45-8170-4859-9B5F-037EF2970034} - C:\PROGRA~1\ONLINE~1\oaevent.dll
~ ShellExecuteHooks: Scanned in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\HDDirect.sys . (...) -- C:\WINDOWS\system32\Drivers\HDDirect.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\HDDirect.sys . (...) -- C:\WINDOWS\system32\Drivers\HDDirect.sys (.not file.)
~ CSB: 25 Legitimates Filtered in 00mn 00s
---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO: Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=0
~ MWPE Keys: 4 Legitimates Filtered in 00mn 00s
---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.116BFF96077A4A724E0AAB800525CEB5] - 28/08/2002 - 22:59:12 ---A- . (.ADMtek Incorporated. - ADMtek AN983/AN985/ADM951X NDIS5 Driver.) -- C:\WINDOWS\system32\Drivers\an983.sys [36224]
O58 - SDL:[MD5.BA898B29F0DBF9307F494475A8393F03] - 05/05/2005 - 16:01:34 RSH-- . (...) -- C:\WINDOWS\system32\0AA48D50C7.sys [8]
~ Drivers: 7 Legitimates Filtered in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 13/09/2013 - 08:10:48 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\mbam-log-2013-09-13 (09-10-16).txt [1919]
O61 - LFC: 13/09/2013 - 08:37:02 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\bookmarkbackups\bookmarks-2013-09-13.json [3796]
O61 - LFC: 13/09/2013 - 08:53:53 -SHA- . (...) -- C:\Documents and Settings\Admin\IECompatCache\index.dat [868352]
O61 - LFC: 13/09/2013 - 09:25:19 ---A- . (...) -- C:\Documents and Settings\Admin\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [119296]
O61 - LFC: 13/09/2013 - 14:15:05 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\nanny.txt.lnk [591]
O61 - LFC: 13/09/2013 - 17:14:27 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\Disque deux (E).lnk [286]
O61 - LFC: 13/09/2013 - 17:14:27 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\cd rescue.iso.lnk [385]
O61 - LFC: 14/09/2013 - 13:13:22 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPDiag.txt.lnk [481]
O61 - LFC: 14/09/2013 - 13:20:32 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AVSCAN-20130912-092645-D74EAE1A.LOG.lnk [603]
O61 - LFC: 14/09/2013 - 13:38:21 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\bookmarkbackups\bookmarks-2013-09-14.json [3796]
O61 - LFC: 14/09/2013 - 14:05:43 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\AVSCAN-20130914-142127-096A90CF.LOG [23948]
O61 - LFC: 14/09/2013 - 14:05:43 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AVSCAN-20130914-142127-096A90CF.LOG.lnk [529]
O61 - LFC: 14/09/2013 - 14:09:19 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\hijackthis.log.lnk [498]
O61 - LFC: 14/09/2013 - 14:26:48 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\aa.txt [493]
O61 - LFC: 14/09/2013 - 14:26:48 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\aa.txt.lnk [452]
O61 - LFC: 16/09/2013 - 09:40:18 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\healthreport\state.json [89]
O61 - LFC: 16/09/2013 - 09:41:28 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\adwcleaner.exe [1039554]
O61 - LFC: 16/09/2013 - 09:42:23 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\bookmarkbackups\bookmarks-2013-09-16.json [3796]
O61 - LFC: 16/09/2013 - 09:42:23 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\healthreport.sqlite [1146880]
O61 - LFC: 16/09/2013 - 09:42:24 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\webappsstore.sqlite [163840]
O61 - LFC: 16/09/2013 - 09:53:48 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\AdwCleaner[S0].txt [2087]
O61 - LFC: 16/09/2013 - 10:01:03 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AdwCleaner[S0].txt.lnk [518]
O61 - LFC: 16/09/2013 - 10:22:00 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\blocklist.xml [78168]
O61 - LFC: 16/09/2013 - 10:37:56 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\addons.sqlite [524288]
O61 - LFC: 16/09/2013 - 10:38:50 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\downloads.sqlite [98304]
O61 - LFC: 16/09/2013 - 10:38:59 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\permissions.sqlite [65536]
O61 - LFC: 16/09/2013 - 10:41:56 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\ZHPFixReport.txt [2856]
O61 - LFC: 16/09/2013 - 10:42:28 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\ZHPFix[R1].txt [2856]
O61 - LFC: 16/09/2013 - 10:57:03 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPFixReport.txt.lnk [508]
O61 - LFC: 16/09/2013 - 10:57:04 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\extensions.sqlite [458752]
O61 - LFC: 16/09/2013 - 10:58:08 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPFix[R1].txt.lnk [498]
O61 - LFC: 16/09/2013 - 10:58:46 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\post.txt.lnk [464]
O61 - LFC: 16/09/2013 - 10:59:01 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\post.txt [86]
O61 - LFC: 16/09/2013 - 10:59:53 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\formhistory.sqlite [196608]
O61 - LFC: 16/09/2013 - 10:59:53 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\signons.sqlite [327680]
O61 - LFC: 16/09/2013 - 11:06:01 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\content-prefs.sqlite [229376]
O61 - LFC: 16/09/2013 - 12:16:50 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\places.sqlite [10485760]
O61 - LFC: 16/09/2013 - 12:17:14 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\cookies.sqlite [524288]
O61 - LFC: 16/09/2013 - 12:17:14 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\sessionstore.bak [2253]
O61 - LFC: 16/09/2013 - 12:17:15 ---A- . (...) -- C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\startupCache\startupCache.4.little [884499]
O61 - LFC: 16/09/2013 - 13:32:28 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\Provi.lnk [483]
O61 - LFC: 16/09/2013 - 13:32:28 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\nannys-day-1-revelation.swf.lnk [675]
O61 - LFC: 16/09/2013 - 13:32:31 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Media Player Classic\default.mpcpl [95]
O61 - LFC: 16/09/2013 - 13:52:05 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPDiag 160913.Txt.lnk [518]
O61 - LFC: 16/09/2013 - 13:57:43 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\parent.lock [0]
O61 - LFC: 16/09/2013 - 13:57:45 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\pluginreg.dat [6471]
O61 - LFC: 16/09/2013 - 13:57:45 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\webapps\webapps.json [2]
O61 - LFC: 16/09/2013 - 13:57:48 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\urlclassifierkey3.txt [154]
O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\cert8.db [131072]
O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\key3.db [16384]
O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\localstore.rdf [5047]
O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\sessionstore.js [604]
O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\_CACHE_CLEAN_ [1]
O61 - LFC: 16/09/2013 - 14:00:32 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\prefs.js [8161]
O61 - LFC: 16/09/2013 - 14:17:25 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\AdwCleaner[S1] 13 09 16.txt [1437]
O61 - LFC: 16/09/2013 - 14:18:08 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AdwCleaner[S1] 13 09 16.txt.lnk [577]
O61 - LFC: 16/09/2013 - 14:30:44 -SHA- . (...) -- C:\Documents and Settings\Admin\IETldCache\index.dat [262144]
O61 - LFC: 16/09/2013 - 14:32:54 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\OnlineArmor\client.dat.bak [619]
~ 17 Fichiers temporaires (Temporary files)
~ 4 Fichiers cookies (Cookies files)
~ Files: 240 Legitimates Filtered in 00mn 27s
---\\ Fichiers Alternate Data Stream (ADS) (O62)
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\$winnt$.inf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\0AA48D50C7.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\12520437.cpx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\12520850.cpx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\aaaamon.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\acctres.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\acelpdec.ax:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\acledit.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\activeds(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\activeds.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\adptif.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\adsldpc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\adsnds.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\advapi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ansi.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\apcups.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\append.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\apphelp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\arp.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\asr_ldm.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\atkctrs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\atl(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\atmpvcno.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\audiosrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\authz(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\autodisc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\autoexec.nt:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\AUTOEXEC.NT.bak:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avicap.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avicap32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avifile.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avmeter.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avtapi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avwav.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bios1.rom:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bios4.rom:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bootok.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bootvid.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bootvrfy.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bopomofo.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\browser(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cabinet(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\calc.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cards.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ccfgnt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cdmodem.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\certcli(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\certmgr.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CF32569.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\charmap.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Cha�nes.scf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\chcp.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\chkdsk.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\chkntfs.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciadmin.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciadv.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaResSvr20.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaSubClsSvr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaXPFrame20.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaXPRegSvr20.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaXPStatusBar20.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cidaemon.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ckcnv.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clb.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clbcatq(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cliconf.chm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cliconfg.rll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clspack.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clusapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmdlib.wsc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmmgr32.hlp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmos.ram:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmpbk32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cnetcfg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CNMLM3q.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CNMVS3q.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cnvfat.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\colbact(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comcat.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comctl32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comdlg32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comm.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\command.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\commdlg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comp.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\compact.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\compmgmt.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\compobj.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comres(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comsvcs(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CONFIG.NT:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\console.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\control.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\convert.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\country.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CPUINFO2.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\credui(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\crtdll.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\crypt32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cryptdll(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cryptsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cryptui(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cscdll(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\csseqchk.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CtMp3.Crl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ctype.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_037.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10000.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10006.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10007.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10010.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10017.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10029.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10079.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10081.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10082.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1026.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1250.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1251.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1252.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1253.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1254.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1255.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1256.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1257.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1258.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20127.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20261.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20866.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20905.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_21866.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28591.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28592.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28593.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\C_28594.NLS:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\C_28595.NLS:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\C_28597.NLS:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28598.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28599.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28603.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28605.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_437.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_500.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_737.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_775.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_850.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_852.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_855.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_857.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_860.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_861.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_863.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_865.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_866.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_869.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_874.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_875.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_932.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_936.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_949.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_950.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dim.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dpmesh.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dramp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3drm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dxof.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\davclnt(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dbgeng.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dbmsadsn.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dbmsvinn.dLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ddeml.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\debug.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\deskadp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\deskmon.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\deskperf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\devmgmt.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dfrg.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dfrgres.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dgrpsetu.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dgsetup.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dhcpcsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dhcpsapi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diactfrm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dimap.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskcomp.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskcopy.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskmgmt.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskperf.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\divxdec_0407.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\divxdec_040c.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\divxdec_0411.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dllhst3g.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmconfig.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmdskres.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmintf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmocx.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmserver(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmview.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dnsapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dnsrslvr(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\docprop.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\doskey.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dosx.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dplay.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpnmodem.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpnwsock.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpserial.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpwsock.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\drprov(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\drwatson.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\drwtsn32.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ds16gt.dLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dsauth.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dsound.vxd:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dssec.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dssenh(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\duser(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dvdplay.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dx3j.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\edit.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\edit.hlp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\edlin.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ega.cpi:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\emptyregdb.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\epDPE.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\EqnClass.Dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ersvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esccm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\escimg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\escwiab.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ESDTR.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esent(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esent97.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentprf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentprf.hxx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentprf.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentutl.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eula.txt:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventcls.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventlog(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventquery.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventvwr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventvwr.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\exe2bin.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\expand.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fastopen.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fc.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\find.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\finger.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fixmapi.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fmifs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\FNTCACHE.DAT:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\freecell.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fsmgmt.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fsusd.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fsutil.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ftsrch.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\g711codc.ax:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gb2312.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gcdef.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gcmd5query.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gcTypLibA.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gdi.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gdi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\geo.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\getuname.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\glmf32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Gold Button.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gpedit.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gpkcsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gpupdate.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\graftabl.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\graphics.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\graphics.pro:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\h323(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hid(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hidphone(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\himem.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hnetcfg(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hnetmon.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\homepage.inf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hostname.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hticons.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hxphk.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasacct.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasads.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iashlpr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasnap.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iaspolcy.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasrecst.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iassam.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iassdo.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iassvcs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\icaapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\icfgnt5.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\icmui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ideograf.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ifsutil.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iissuba.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\imagehlp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\imagr5.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\imagx5.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagX7.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXpr5.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXpr7.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXR7.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXRA7.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\inetcplc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\INETWH32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\infosoft.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\instcat.sql:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iologmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipconf(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iphlpapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipnathlp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iprop.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iprtprio.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipsec6.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxmontr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxpromn.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxrip.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxrtmgr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxsap.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ir32_32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\irclass.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iuengine.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jardin.scr:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javacypt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javaee.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javaprxy.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javart.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javasup.vxd:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jdbgmgr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jet500.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgaw400.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgmd400.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgsd400.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgsh400.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jit.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jobexec.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jsfr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jview.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kanji_1.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kanji_2.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kb16.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdbe.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdbene.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdbr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdca.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdcan.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdda.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbddv.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdes.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfo.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdgae.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdgr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdgr1.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdic.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdir.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdit.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdit142.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdla.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdmac.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdne.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdno.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdpo.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsw.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbduk.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdus.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdusl.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdusr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdusx.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kdcom.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kerberos(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kernel32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\key01.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\keyboard.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\keyboard.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\KGyGaAvL.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kmddsp(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\korean.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\krnl386.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\label.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\langwrbk.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lanman.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfawd10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfbmp10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfbmp13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfcal10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfcmp10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\LFCMP13n.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfeps10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfeps13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lffax10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lffax13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lffpx10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Lffpx7.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfgif10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfgif13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfica10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfimg10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Lfkodak.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lflma10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lflmb10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfmac10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfmsp10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcd10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcd13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpct10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcx10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcx13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpng10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Lfpng13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpsd10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpsd13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfras10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftga10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftga13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftif10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftif13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfwfx10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfwmf13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfwpg10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lights.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lmhsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lnkstub.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\loadfix.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lodctr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\loghours.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\login.cmd:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\logoff.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lpq.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lpr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lprmonui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lsasrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lsass(2).exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Ltclr13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\LTDIS10N.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\LTDIS13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltefx13n.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltfil10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltfil13n.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltimg10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltimg13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltkrn10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltkrn13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lttwn10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Ltwvc13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lusrmgr.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lz32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lzexpand.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\l_except.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\l_intl.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mag_hook.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\main.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mapi32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mapistub.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mcd32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mcdsrv32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mchgrcoi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciavi.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mcicda.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciole16.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciole32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciseq.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciwave.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mdhcp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mdwmdmsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mem.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfc40loc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MFC42FRA.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfc42loc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfc70fra.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MFC71FRA.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfcans32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfcuia32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mib.bin:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\midimap(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\migpwd.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mindex.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mlang.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mll_hp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mll_mtf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mll_qic.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmdriver.inf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmdrv.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmsystem.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmtask.tsk:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmutilse.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mode.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\modex.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mountvol.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mouse.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mpnotify.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mpr(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprddm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqcertui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqgentr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqoa.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqoa10.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqoa20.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqperf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqperf.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqprfsym.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mrinfo.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msaatext.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm32(2).drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm32.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msasn1(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msaudite.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msawt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mscat32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mscdexnt.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msdtcprf.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msdtcprf.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msencode.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msexcl35.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSFLXGRD.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msg.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msg711.acm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msg723.acm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSGHOO32.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msgina(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msgsm32.acm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mshearts.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSHFLXGD.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msidle(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msidntld.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msimg32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMRT.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMRT16.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMRT32.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMUSIC.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msisam10.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msisam11.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjava.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjdbc10.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjet35.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjint32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjt3032.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjter32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjter35.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msls2.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSMASK32.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msobjs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MsPMSPSv.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msports.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msprivs(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSPRPFR.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msr2c.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msr2cenu.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msratelc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msrclr40.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSRDO20.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msrecr40.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mssign32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mssip32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSStdFmt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSSTKPRP.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msswch.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msswchx.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mstlsapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msuni10.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msuni11.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msv1_0(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvbvm50.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcp50.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcp60(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcrt(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcrt20.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvideo.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mswsock(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSXBSE35.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxml2r.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxml3r.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxml4a.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxmlr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mtxclu(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mycomput.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\narrhook.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nbtstat.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ncobjapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ncpa.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ncxpnt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nddeapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ndptsp(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\NeroBurnRights.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\NeroCheck.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\NeroCo.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\net.hlp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netapi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netapi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netcfgx(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netevent.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\neth.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netlogon(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netman(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netrap(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netshell(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netui0(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netui1(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netui2.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netware.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nlsfunc.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nmevtmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.chs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.cht:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.deu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.eng:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.enu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.esn:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.fra:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.ita:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.nld:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.sve:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.tha:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\npwmsdrm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdll(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos404.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos411.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos412.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos804.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdsapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdsbcli.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntimage.gif:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio404.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio411.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio412.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio804.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlanman(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlanui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlanui2.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlsapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmarta(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmsevt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmsmgr.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmsoprq.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntsd.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntsdexts.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nw16.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwapi16.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwc.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwcfg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwevent.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwscript.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\O2CPlayer.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\odbc16gt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\odbc32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\odbcint(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ODBCTL32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oembios.bin:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oembios.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oembios.sig:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole2.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole2disp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole2nls.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oleacc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oleaut32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olecli.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olesvr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olesvr32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olethk32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\osuninst.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pagefileconfig.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\PalmDevC.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\panmap.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Pano12.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\paqsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pathping.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Pcdlib32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pcl.sep:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pdf.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pentnt.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfci.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfci.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfd009.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfd00C.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perffilt.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perffilt.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfi009.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfi00C.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfnw.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfts.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfwci.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfwci.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pifmgr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ping6.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\plustab.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pmspl.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\powrprof(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prflbmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\print.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prncnfg.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prndrvr.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnjobs.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnmngr.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnport.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnqctl.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prodspec.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\profmap(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\psapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\psbase(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pschdcnt.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pschdprf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pschdprf.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pscript.sep:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\psnppagn.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pstorsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pubprn.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\python21.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pythoncom21.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\PyWinTypes21.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\qappsrv.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\qosname.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\qwinsta.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasadhlp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasapi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasautou.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\raschap(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasctrnm.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasctrs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasctrs.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasdial.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasdlg(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasman(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasmans(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasmontr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasmxs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasppp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasrad.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasser.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rastapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rastls(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\RDOCURS.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rdpcfgex.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\recover.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\redir.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regedt32.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regini.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regwiz.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\relog.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rend.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\replace.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\reset.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\resutils(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\riched32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\RICHTX32.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rnr20.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ROBOEX32.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\route.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\routemon.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\routetab.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rpcns4.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rpcrt4(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rpcss(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsaci.rat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsaenh(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsfsaps.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsm.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsmsink.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsmui.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsopprov.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvp.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvp.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvpcnts.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvpmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvpperf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\RTCRES.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rtm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rtutils(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\runas.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rwinsta.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\samlib(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\samsrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\saxzip.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scardssp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sccbase.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scecli(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scesrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\schannel(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\schedsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scofr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scredir.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scripto.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scriptpw.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scrrnfr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sdpblb.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\seclogon(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secpol.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secupd.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secupd.sig:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secur32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sens(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sensapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\senscfg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\serialui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\services(2).exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\services.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\serwvdrv.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setup.bmp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setupapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setupdll.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setver.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfc.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfc_os(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfmapi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\SFMS32.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shadow.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\share.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shdocvw(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shell.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shell32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shellstyle.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shiftjis.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shimeng(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shlwapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shsvcs(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sisbkup.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\skdll.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\slbcsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\slbrccsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\smss(2).exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\SndDrv32b.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sndvol32.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\softpub.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sol.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sortkey.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sound.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\spnike.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sprestrt.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sprio600.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sprio800.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\spxcoins.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlsodbc.chm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlsrv32.rll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlwid.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlwoa.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srclient(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srrstr(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srvsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ssdpapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\SSubTmr6.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\stdole32.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\storage.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\streamci.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\subrange.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\subst.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\superpad6.lnf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\superpad9.lnf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\svchost(2).exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\svcpack.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\swprv.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sxs(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\syncapp.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysedit.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysinv.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\syskey.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysprint.sep:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysprtj.sep:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\system.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\systray.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapiperf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapisrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapiui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\taskman.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tcmsetup.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tcpmon.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tcpsvcs.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\telephon.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Temp:99uDR2TtCG8HHtJOa2
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\termcap:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\termsrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tftp.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ThinkRLE.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\timer.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\toolhelp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tracert6.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\traffic.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\trkwks(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsappcmp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tscon.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tscupgrd.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsd32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsdiscon.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tskill.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tslabels.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tslabels.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tslicc.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsshutdn.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tssoft32.acm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\TwnLib20.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txp3.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txp4.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txp4lib.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\TXPstart.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txptabs.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\typelib.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\typeperf.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ufat.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\umdmxfrm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\umpnpmgr(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\unicode.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\unimdm(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\uniplat(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\unlodctr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\upnp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ureg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\urlmon(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\user.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\user32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\userenv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrcntra.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrcoina.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrdpa.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrdtea.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrfaxa.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrlbva.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrlogon.cmd:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrmlnka.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrprbda.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrrtosa.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrsdpia.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrshuta.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrsvpia.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrv42a.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrv80a.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrvoica.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrvpa.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\utildll.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\uxtheme(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\v7vga.rom:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB5DB.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB5FR.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB5StKit.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB6STKIT.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vbar2232.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vbar332.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vbsfr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vcdex.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VegaShEx.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ver.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\verifier.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\version(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vfpodbc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga256.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga64k.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vjoy.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vmhelper.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VSFLEX3.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vssadmin.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vssapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vss_ps.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vwipxspx.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vwipxspx.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\w32time(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\w32tm.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\w32topl.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.deu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.enu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.esn:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.fra:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.ita:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.nld:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.sve:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.deu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.enu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.esn:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.fra:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.ita:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.nld:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.sve:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wdigest(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wdl.trm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wdmaud(2).drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\webclnt(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\webfldrs.msi:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\webhits.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wfwnet.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wiasf.ax:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wiavusd.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wifeman.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\win.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\win32k(2).sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\win87em.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winchat.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winfax.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winhelp.hlp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winhlp32.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winhttp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wininet(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winipsec(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winlogon(2).exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winmine.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winmm(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winmsd.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winnls.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winoldap.mod:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winrnr(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winscard(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winsock.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winspool(2).drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winspool.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winsrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winsta(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winstrm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wintrust(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wjview.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wkssvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wldap32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wlnotify(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmerrFRA.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmi32.cnf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmidx.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmimgmt.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmiprop.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmiscmgr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmpns.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmpscheme.xml:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmpstub.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmv8dmod.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmvcore2.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmvdmoe.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\WNASPINT.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowdeb.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowexec.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowfax.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowfaxui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wpa.dbl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\write.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ws2help(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ws2_32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wscsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshatm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshfr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshisn.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshnetbs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshtcpip(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wsock32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wtsapi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuauclt1.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuaueng1.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuauserv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wupdmgr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wups(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wzcsapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wzcsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\xenroll.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\xpsp2res(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\zdec.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\zonedoff.reg:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\zonedon.reg:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\acpiec.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\an983.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1btxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1mdxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1pdxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1raxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1rvxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1snxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1ttxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1tuxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1xbxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1xsxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati2mtaa.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinbtxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinmdxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinpdxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinraxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinrvxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinsnxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinttxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atintuxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinxbxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinxsxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ativmc20.cod:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atmepvc.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atmuni.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\audstub.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\beep.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cbidf2k.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cdaudio.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cinemst2.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cpqdap01.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cxthsfs2.cty:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\dxapi.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\dxgthk.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\enum1394.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\fsvga.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\fs_rec.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\gm.dls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\gmreadme.txt:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\hsfbs2s2.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\hsfcxts2.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\hsfdpsp2.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\imagedrv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\imagesrv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ipfltdrv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mcd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mdmxsdk.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mnmdd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mtlmnt5.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mtlstrm.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mtxparhm.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\netwlan5.img:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nikedrv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ntmtlfax.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\null.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nv4_mini.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnkflt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnkfwd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnknb.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnkspx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\oprghdlr.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\parvdm.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ptilink.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\raspti.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\rawwan.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\recagent.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\rio8drv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\riodrv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\rootmdm.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\s3gnbm.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slnt7554.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slntamr.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slnthal.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slwdmsup.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\smclib.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\tosdvd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\tsbvcap.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\usbd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\vdmindvd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv07nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv08nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv09nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv11nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\watv06nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\watv10nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wmilib.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ws2ifsl.sys:KAVICHS
~ ADS: Scanned in 00mn 14s
---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: ZHPFix 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1
~ ADS: Scanned in 00mn 00s
---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 10/09/2013 - C:\WINDOWS\system32\DRIVERS\avgntflt.sys (avgntflt) .(.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) - LEGACY_AVGNTFLT
O64 - Services: CurCS - 02/01/1601 - Pas de propri�taire (AVG Clean Driver) .(...) - LEGACY_AVG_CLEAN_DRIVER
~ Legacy: 194 Legitimates Filtered in 00mn 03s
---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe
O68 - StartMenuInternet: [HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe
O68 - StartMenuInternet: <>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - msn.) -- C:\Program Files\MSN\MSNCoreFiles\MSN6.exe
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (@ieframe.dll,-12512) - http://www.bing.com
~ Keys: Scanned in 00mn 00s
---\\ Enum�re les fichiers Crack & Keygen (CKF) (O82)
D:\Documents de Pascal\bibli Palm\programmes Palm\Astraware Sudoku v1.00 Palmos5 Cracked-Cscpda.rar
D:\Documents de Pascal\bibli Palm\programmes Palm\Bases de donn�es\handmark.mobiledb.4.02.palmos.cracked-tsrh.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\calcul\NeoCal.v1.7.7.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Calendrier\Wassup.v1.4.4.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Daedalus.3D.v1.1b.PalmOS.Keygen-TM.crc.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Daedalus.3D.v1.1b.PalmOS.Keygen-TM.part1.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Daedalus.3D.v1.1b.PalmOS.Keygen-TM.part2.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Dicos\UltraEdit_9.00c_[with_all_dictionary_files]_[with_keygen].exe
D:\Documents de Pascal\bibli Palm\programmes Palm\G�n�rateur de cl�s\Astraware keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\G�n�rateur de cl�s\keygen collection 2ka.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\G�n�rateur de cl�s\keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\G�n�rateur de cl�s\Keygen_2.04.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Alchemy.v2.3.PalmOS.Cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Basketball.2003.v3.0.PalmOS.Cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Bejeweled.v2.3.PalmOS.Cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Chess.Genius.v2.1.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\TableTennis3D_inc_keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\livres\TealDoc.v6.35.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Sudoku.Addict.v1.03.PalmOS.Cracked-CSCPDA.rar
D:\Documents de Pascal\bibli Palm\programmes Palm\Syst�me\CardExport.2.01.626.cracked.by.-S-.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Syst�me\cardexport_cracked_2.0.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Syst�me\FlyZipSR_v3.02_PalmOS_cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Syst�me\JackFlash_b14_and_JackSprat_3.b4_keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Syst�me\PowerRun.1.3.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Top Sudoku v2.61 Palmos Cracked-Hspda.rar
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Aeroplayer.5.0.beta.PalmOS.Keygen-TM.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Aeroplayer.v2.11.1.Multilanguage.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Agendus Professional v7.04 Palmos Cracked-Cscpda.rar
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Agendus.Professional.v7.06.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Agendus.Professional.v8.03.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\AgendusProfessional_901-Cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\agendus_keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Cartes\HandMap.v4.6.9.PalmOS.Keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Cartes\HandMap.v4.7.1.PalmOS.Cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\LauncherX.1.02-cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\PalmaryClock.v2.3.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Resco.Photo.Viewer.v1.80.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\SilverScreen_v3.1.3_PalmOS_CRACKED.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\TealAuto.v1.52.PalmOS.Cracked.REPACK-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\TealMaster.Plus.v2.18.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\ZLauncher.v4.10.PalmOS.Cracked-TSRH.zip
D:\Documents de Pascal\FS 2004\Utilitaires\Flight Simulator 2004 - Scenery Lago Enhancer Keygen(1).rar
D:\Documents de Pascal\Sudoku\Astraware.Sudoku.v1.00.PalmOS5.Cracked-CSCPDA.rar
D:\Documents de Pascal\Sudoku\Palm - Top.SuDoKu.v2.0.PalmOS.Cracked-HSpda.zip
D:\Documents de Pascal\Sudoku\Sudoku.Addict.v1.03.PalmOS.Cracked-CSCPDA.rar
D:\Documents de Pascal\Sudoku\Sudoku.Master.v1.2.PalmOS.Cracked-CSCPDA.rar
D:\Documents de Pascal\Sudoku\Top Sudoku v2.61 Palmos Cracked-Hspda.rar
D:\Documents de Pascal\Sudoku\TopSuDoKu.v2.63.PalmOs.Cracked.zip
~ Files: Scanned in 03mn 40s
---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.6A6CE9A0410A29061FCF6CAD8DE0387C] [SPRF][16/09/2013] (...) -- C:\Documents and Settings\Admin\Bureau\adwcleaner.exe [1039554]
[MD5.98F2272A7D1BA8E3155FBEA167BCC613] [SPRF][02/12/1999] (...) -- C:\Program Files\xcacls.exe [91648]
[MD5.55C2B47FFF94570CC2D83AAA626360B4] [SPRF][13/02/2009] (.Dictao SA - Module de signature AdSignerADP.) -- C:\WINDOWS\Downloaded Program Files\AdSignerADP.dll [413056]
[MD5.E5F4ECE0255B0434AB746463EEF9AB47] [SPRF][13/02/2009] (.Dictao SA - Module de v�rification de signature AdSignerADP.) -- C:\WINDOWS\Downloaded Program Files\AdVerifierADP.dll [273792]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\bdcore.dll [32]
[MD5.A57234A9295B026C13FBF81B729FAFA6] [SPRF][01/03/2005] (...) -- C:\WINDOWS\Downloaded Program Files\bdupd.dll [118784]
[MD5.FE691848CED7C74B2A177319AC154A1F] [SPRF][01/03/2005] (...) -- C:\WINDOWS\Downloaded Program Files\ipsupd.dll [53248]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\libfn.dll [32]
[MD5.83167963FA7CE846389006723AEFEA9E] [SPRF][27/09/1999] (.3M - Post-it(R) Software Notes Plugin.) -- C:\WINDOWS\Downloaded Program Files\npcc.dll [624128]
[MD5.A1353BA0E465748A1A01EC1786FCB9B5] [SPRF][09/06/2004] (...) -- C:\WINDOWS\Downloaded Program Files\NPSWF32.dll [832728]
~ Files: 16 Legitimates Filtered in 00mn 01s
---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.BE40E101FCCCF8FC03B05439A0C8D49E] [WIS][13/03/2010] (.UJIHARA Kazuya - iTextFront: Tool to concatenate and split PDF file..) -- C:\Windows\Installer\166fb6b.msi [110080]
[MD5.AF1C470A9D524A4C526B840FBCF06861] [WIS][13/04/2006] (.3M - TabletPCRT.) -- C:\Windows\Installer\1b38127.msi [144384]
[MD5.493EC21231670AE10A39BE44B9E5CBED] [WIS][05/12/2009] (.DataViz, Inc. - SmartList To Go.) -- C:\Windows\Installer\202db2b.msi [7543808]
[MD5.2D1A28DFEEA9931837E1F85BEEEB543B] [WIS][03/12/2005] (.Engelmann Media - CD/DVD recording software.) -- C:\Windows\Installer\28498.msi [538624]
[MD5.12368A9F5B88A72A4B9970491A9CDC80] [WIS][11/10/2009] (.Infor - IKEA HomePlanner.) -- C:\Windows\Installer\79b0d7.msi [20414976]
[MD5.60C4499E512A2423E02D72D47036C197] [WIS][02/04/2006] (.BSD Concept - La France � la loupe.) -- C:\Windows\Installer\823c9.msi [2997248]
[MD5.477A1801BE0AAC6C68FD78BFCF6B613A] [WIS][11/04/2009] (.Nikon - Blank Project Template.) -- C:\Windows\Installer\ae24de.msi [10608128]
[MD5.3A3EB3F27DABC170CB358D1252BF8046] [WIS][03/10/2009] (.Musicalis - J'apprends le piano.) -- C:\Windows\Installer\de092.msi [27212288]
~ WIS: 123 Legitimates Filtered in 00mn 20s
---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 11/03/2006 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
SR - | Auto 18/09/2009 169312 | (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated.) - C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
SS - | Demand 13/09/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 10/09/2013 84024 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
SR - | Auto 10/09/2013 108088 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 03/05/2006 413696 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe
SS - | Auto 03/05/2006 520192 | (ATI Smart) . (...) - C:\WINDOWS\system32\ati2sgag.exe
SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SS - | Demand 01/06/2011 867080 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - | Demand 03/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Auto 07/07/2013 182184 | (JavaQuickStarterService) . (.Oracle Corporation.) - C:\Program Files\Java\jre7\bin\jqs.exe
SR - | Auto 06/02/2007 109344 | (LVPrcSrv) . (.Logitech Inc..) - c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe
SS - | Auto 06/02/2007 105248 | (LVSrvLauncher) . (.Logitech Inc..) - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
SS - | Demand 25/11/2011 311928 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe
SS - | Demand 18/08/2013 117656 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 02/10/2012 216072 | (OAcat) . (.Emsisoft GmbH.) - C:\Program Files\Online Armor\OAcat.exe
SS - | Demand 20/10/2009 117264 | (rpcapd) . (.CACE Technologies, Inc..) - C:\Program Files\WinPcap\rpcapd.exe
SR - | Auto 17/04/2010 73960 | (SbieSvc) . (.tzuk.) - C:\Program Files\Sandboxie\SbieSvc.exe
SR - | Demand 18/04/2013 737616 | (ServiceLayer) . (.Nokia.) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
SR - | Auto 02/10/2012 4463864 | (SvcOnlineArmor) . (.Emsisoft GmbH.) - C:\Program Files\Online Armor\oasrv.exe
~ Services: Scanned in 00mn 22s
---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by Admin at 16/09/2013 15:46:58
device: opened successfully
user: MBR read successfully
Disk trace:
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x8A73D01C]<<
1 nt!IofCallDriver[0x804E3735] >> \Device\Harddisk0\DR0[0x8A6A6AB8]
\Driver\atapi[0x8A7607A8] >> IRP_MJ_INTERNAL_DEVICE_CONTROL >> 0x8A73D01C
kernel: MBR read successfully
detected disk devices:
detected hooks:
\Driver\atapi >> 0x8a73d01c
IoDeviceObjectType >> ParseProcedure >> 0x898cf1b0
\Device\Harddisk0\DR0 >> ParseProcedure >> 0x898cf1b0
user & kernel MBR OK
Warning: possible MBR rootkit infection !
~ MBR: 19 Legitimates Filtered in 00mn 03s
---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Admin at 16/09/2013 15:47:01
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 06s
---\\ Scan Additionnel (O88)
Database Version : 12920 - (16/09/2013)
Cl�s trouv�es (Keys found) : 0
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 0
Fichiers trouv�s (Files found) : 1
C:\Program Files\Yahoo!\Common\yinsthelper.dll =>Toolbar.Yahoo^
~ Additionnel Scan: 341134 Items scanned in 00mn 58s
---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/30268689-toolbar-yahoo =>Toolbar.Yahoo
~ MSI: 1 link(s) detected in 00mn 58s
~ 1617 Legitimates filtered by white list
End of the scan (1911 lines in 13mn 21s)(48)
~ Lanc� par Admin (16/09/2013 15:34:42)
~ Adresse du Site Web http://nicolascoolman.webs.com
~ Traduit par Nicolas Coolman
~ Etat de la version :
~ Liste blanche : Activ�e par le programme
~ El�vation des Privil�ges : OK
~ User Account Control (UAC): Not Found
---\\ Navigateurs Internet
MSIE: Internet Explorer v8.0.6001.18702
MFIE: Mozilla Firefox 23.0.1 (Defaut)
---\\ Informations sur les produits Windows
~ Langage: Fran�ais
Windows XP Professional Service Pack 3 (Build 2600)
Windows Automatic Updates : OK
Windows Genuine Advantage : OK
---\\ Logiciels de protection du syst�me
Avira Free Antivirus v13.0.0.4042
Malwarebytes' Anti-Malware
---\\ Logiciels d'optimisation du syst�me
CCleaner v3.24 =>Piriform Ltd
---\\ Logiciels de partage PeerToPeer
---\\ Surveillance de Logiciels
Adobe Flash Player 11 Plugin
Adobe Reader XI
Java 7 Update 25
---\\ Informations sur le syst�me
~ Processor: x86 Family 6 Model 6 Stepping 2, AuthenticAMD
~ Operating System: 32 Bits
Boot mode: Normal (Normal boot)
Total RAM: 1535 MB (45% free)
System Restore: Activ� (Enable)
System drive C: has 4 GB (10%) free of 39 GB
---\\ Mode de connexion au syst�me
~ Computer Name: PCPASCAL
~ User Name: Admin
~ All Users Names: SUPPORT_388945a0, Pascal Admin, HelpAssistant, eMule_Secure, Dominique, ASPNET, Administrateur, Admin,
~ Unselected Option: None
Logged in as Administrator
---\\ Variables d'environnement
~ System Unit : C:\
~ %AppData% : C:\Documents and Settings\Admin\Application Data\
~ %Desktop% : C:\Documents and Settings\Admin\Bureau\
~ %Favorites% : C:\Documents and Settings\Admin\Favoris\
~ %LocalAppData% : C:\Documents and Settings\Admin\Local Settings\Application Data\
~ %StartMenu% : C:\Documents and Settings\Admin\Menu D�marrer\
~ %Windir% : C:\WINDOWS\
~ %System% : C:\WINDOWS\system32\
---\\ Enum�ration des unit�s disques
A:\ Floppy drive, Flash card reader, USB Key (Not Inserted)
C:\ Hard drive, Flash drive, Thumb drive (Free 4 Go of 39 Go)
D:\ Hard drive, Flash drive, Thumb drive (Free 11 Go of 75 Go)
E:\ Hard drive, Flash drive, Thumb drive (Free 30 Go of 190 Go)
G:\ CD-ROM drive (Not Inserted)
H:\ CD-ROM drive (Not Inserted)
J:\ CD-ROM drive (Not Inserted)
---\\ Etat du Centre de S�curit� Windows
~ Security Center: 33 Legitimates Filtered in 00mn 00s
---\\ Recherche particuli�re de fichiers g�n�riques
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - (.Microsoft Corporation - Explorateur Windows.) (.14/04/2008 - 03:34:03.) -- C:\WINDOWS\Explorer.exe [1037824]
[MD5.EA7AB3839BE1FFE067A8131F3547160D] - (.Microsoft Corporation - Internet Extensions for Win32.) (.08/08/2013 - 07:05:46.) -- C:\WINDOWS\system32\wininet.dll [920064]
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - (.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.14/04/2008 - 03:34:28.) -- C:\WINDOWS\system32\Winlogon.exe [512000]
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - (.Microsoft Corporation - Ancillary Function Driver for WinSock.) (.17/08/2011 - 14:49:54.) -- C:\WINDOWS\system32\Drivers\AFD.sys [138496]
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - (.Microsoft Corporation - IDE/ATAPI Port Driver.) (.13/04/2008 - 19:40:30.) -- C:\WINDOWS\system32\Drivers\atapi.sys [96512]
[MD5.C885B02847F5D2FD45A24E219ED93B32] - (.Microsoft Corporation - CD-ROM File System Driver.) (.13/04/2008 - 20:14:21.) -- C:\WINDOWS\system32\Drivers\Cdfs.sys [63744]
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - (.Microsoft Corporation - SCSI CD-ROM Driver.) (.13/04/2008 - 19:40:46.) -- C:\WINDOWS\system32\Drivers\Cdrom.sys [62976]
[MD5.31F923EB2170FC172C81ABDA0045D18C] - (.Microsoft Corporation - Pilote de cryptographie FIPS.) (.14/04/2008 - 02:57:38.) -- C:\WINDOWS\system32\Drivers\Fips.sys [44672]
[MD5.573C7D0A32852B48F3058CFD8026F511] - (.Windows (R) Server 2003 DDK provider - High Definition Audio Bus Driver v1.0a.) (.13/04/2008 - 17:36:05.) -- C:\WINDOWS\system32\Drivers\HDAudBus.sys [144384]
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - (.Microsoft Corporation - Pilote de port i8042.) (.14/04/2008 - 03:00:52.) -- C:\WINDOWS\system32\Drivers\i8042prt.sys [54144]
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - (.Microsoft Corporation - IMAPI Kernel Driver.) (.13/04/2008 - 19:40:58.) -- C:\WINDOWS\system32\Drivers\Imapi.sys [42112]
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - (.Microsoft Corporation - IP Network Address Translator.) (.13/04/2008 - 19:57:15.) -- C:\WINDOWS\system32\Drivers\IpNat.sys [152832]
[MD5.23C74D75E36E7158768DD63D92789A91] - (.Microsoft Corporation - IPSec Driver.) (.13/04/2008 - 20:19:42.) -- C:\WINDOWS\system32\Drivers\IPSec.sys [75264]
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - (.Microsoft Corporation - Windows NT SMB Minirdr.) (.15/07/2011 - 14:29:31.) -- C:\WINDOWS\system32\Drivers\MRxSmb.sys [456320]
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - (.Microsoft Corporation - MBT Transport driver.) (.13/04/2008 - 20:21:00.) -- C:\WINDOWS\system32\Drivers\netBT.sys [162816]
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - (.Microsoft Corporation - NT File System Driver.) (.13/04/2008 - 20:15:53.) -- C:\WINDOWS\system32\Drivers\ntfs.sys [574976]
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - (.Microsoft Corporation - Pilote de port parall�le.) (.14/04/2008 - 03:09:40.) -- C:\WINDOWS\system32\Drivers\Parport.sys [80384]
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - (.Microsoft Corporation - RAS L2TP mini-port/call-manager driver.) (.13/04/2008 - 20:19:43.) -- C:\WINDOWS\system32\Drivers\Rasl2tp.sys [51328]
[MD5.15CABD0F7C00C47C70124907916AF3F1] - (.Microsoft Corporation - Microsoft RDP Device redirector.) (.13/04/2008 - 19:32:51.) -- C:\WINDOWS\system32\Drivers\rdpdr.sys [196224]
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - (.Microsoft Corporation - Pilote de filtre audio Livre rouge.) (.14/04/2008 - 02:57:34.) -- C:\WINDOWS\system32\Drivers\redbook.sys [58752]
[MD5.46DE1126684369BACE4849E4FC8C43CA] - (.Microsoft Corporation - Pilote de clich� instantan� du volume.) (.14/04/2008 - 02:56:04.) -- C:\WINDOWS\system32\Drivers\volsnap.sys [53376]
~ Generic Processes: Scanned in 00mn 00s
---\\ Etat des fichiers cach�s (Cach�/Total)
~ Mes images (My Pictures) : 1/2
~ Mes musiques (My Musics) : 1/2
~ Mes Favoris (My Favorites) : 1/6
~ Mes Documents (My Documents) : 1/9
~ Mon Bureau (My Desktop) : 0/72
~ Menu demarrer (Programs) : 1/21
~ Hidden Files: Scanned in 00mn 00s
---\\ Processus lanc�s
[MD5.A2EAEB497CA29ECAEAF0DF66AD85C57D] - (.ATI Technologies Inc. - ATI External Event Utility EXE Module.) -- C:\WINDOWS\system32\Ati2evxx.exe [413696] [PID.652]
[MD5.1A008CBB313F7A6644B883AE1829393B] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAcat.exe [216072] [PID.1096]
[MD5.A54B4FBC24C4EDE34BEB5F8D8974752A] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\oasrv.exe [4463864] [PID.1124]
[MD5.995D0B52870C7A5CAF3EA165FD674A35] - (.Logitech Inc. - Logitech LVPrcSrv Module..) -- c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe [109344] [PID.1296]
[MD5.8769E2D1072B62AB071F166F03B3E3DC] - (.Avira Operations GmbH & Co. KG - Avira Scheduler.) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe [84024] [PID.1320]
[MD5.765FE0463E711E5A68AC7B69538ED922] - (.Adobe Systems Incorporated - Adobe Photoshop Elements 8.0 (component).) -- C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [169312] [PID.1752]
[MD5.AD1D13E6326E0B8DA2A7BE13B39A8FE0] - (.Avira Operations GmbH & Co. KG - Avira On-Access Service.) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe [108088] [PID.1960]
[MD5.9ECF00E19736054E019C532AED8228FC] - (.Oracle Corporation - Java Quick Starter Service.) -- C:\Program Files\Java\jre7\bin\jqs.exe [182184] [PID.1468]
[MD5.B5354D391912E3ABC13E3B9E31D79367] - (.tzuk - Sandboxie Service.) -- C:\Program Files\Sandboxie\SbieSvc.exe [73960] [PID.1620]
[MD5.581176F60885AEF8F78C6E38DCC3CDF9] - (.Microsoft Corporation - WMDM PMSP Service.) -- C:\WINDOWS\System32\MsPMSPSv.exe [53520] [PID.700]
[MD5.2E0B0A051FFAA86E358465BB0880D453] - (.Microsoft Corporation - Windows Update.) -- C:\WINDOWS\system32\wuauclt.exe [53784] [PID.800]
[MD5.DB3F7F19F942D3CE4E1A0E8D9FF541FB] - (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [347192] [PID.2348]
[MD5.D63797E8E7781EE1500A810CB6194FA6] - (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe [253816] [PID.2440]
[MD5.DD851CB4DBB6EE0F9B7BC4DEBDA7544E] - (...) -- C:\WINDOWS\system32\qttask.exe [28672] [PID.2476]
[MD5.0AEFDADCDA44D8CE3C57BB32B7A3CED5] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAui.exe [2415104] [PID.2516]
[MD5.06F39071A9E3635F4258FD7F5E3F5988] - (.Nokia - Nokia Suite.) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe [1090912] [PID.2604]
[MD5.F07B8AAE1805EF9B12BF8EDFD0D50F0A] - (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAhlp.exe [1248144] [PID.2656]
[MD5.F30BF9FC4275156F2AE96FCDF1ED5EE4] - (.Avira Operations GmbH & Co. KG - Avira Shadow Copy Service.) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe [76856] [PID.3100]
[MD5.78F7BB9F4924BE164294C59B8C3FC096] - (.Nokia - ServiceLayer Module.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [737616] [PID.3956]
[MD5.5EBE396DB0ED20910A4C51E235539F9F] - (.Nokia - USB Media Server.) -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe [179024] [PID.1784]
[MD5.192FBDF64A983CAC149D47D01970CE04] - (.Nokia - Microsoft Bluetooth Media Server.) -- C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe [150864] [PID.220]
[MD5.C52F40B273428861B06E9D027C80F8A4] - (.Nicolas Coolman - ZHPDiag.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [7963648] [PID.3140]
[MD5.5E9A6658A2A69AE7EB195113B7A2E7A9] - (.Microsoft Corporation - Application Layer Gateway Service.) -- C:\WINDOWS\System32\alg.exe [44544] [PID.3404]
~ Processes Running: Scanned in 00mn 03s
---\\ Mozilla Firefox, Plugins,Demarrage,Recherche,Extensions (P2,M0,M1,M2,M3)
M2 - MFEP: prefs.js [Admin - bjby9717.default\fdm_ffext@freedownloadmanager.org] [] Free Download Manager plugin v1.5.7.6 (..)
P2 - FPN:Firefox Plugin Navigator . (.LizardTech - DjVu Plug-In(external version 6.1.1.1574).) -- C:\Program Files\Mozilla Firefox\Plugins\npdjvu.dll
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files\Mozilla Firefox\Plugins\NPSibelius.dll
P2 - FPN:Firefox Plugin Navigator . (...) -- C:\Program Files\Mozilla Firefox\Plugins\ScorchPDFWrapper.dll
P2 - FPN: [HKLM] [@nokia.com/EnablerPlugin] - (.Pas de propri�taire - Nokia Suite Enabler Plugin.) -- C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
P2 - FPN: [HKLM] [yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1] - (...) -- C:\Program Files\Yahoo!\Common\npyaxmpb.dll (.not file.) =>Toolbar.Yahoo
~ Firefox Browser: 18 Legitimates Filtered in 00mn 02s
---\\ Internet Explorer, D�marrage,Recherche,URLSearchHook, Phishing (R0,R1,R3,R4)
R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (...) (No version) -- (.not file.)
~ IE Browser: 10 Legitimates Filtered in 00mn 00s
---\\ Internet Explorer, Proxy Management (R5)
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = no key
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyEnable = 0
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,MigrateProxy = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,EnableHttp1_1 = 1
R5 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigProxy = wininet.dll
~ Proxy management: Scanned in 00mn 00s
---\\ Analyse des lignes F0, F1, F2, F3 - IniFiles, Autoloading programs
F2 - REG:system.ini: USERINIT=C:\WINDOWS\system32\userinit.exe,
F2 - REG:system.ini: Shell=C:\WINDOWS\explorer.exe
F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl"
~ Keys: Scanned in 00mn 00s
---\\ Hosts file redirection (O1)
~ Le fichier hosts est sain (The hosts file is clean).
~ Hosts File: Scanned in 00mn 00s
~ Nombre de lignes (Lines number): 1
---\\ Autres liens utilisateurs (O4)
O4 - GS\Program [AllUsers]: GenoPro.lnk . (.GenoPro - GenoPro 2011 - Picture Your Family Tree!.) -- C:\Program Files\GenoPro\GenoPro.exe
O4 - GS\Program [AllUsers]: MediaCUB.lnk . (...) -- C:\WINDOWS\Installer\{B1493D8A-C782-4ED3-A34D-8A9B8D9925BF}\_E76412006231BB098F8C6D.exe
O4 - GS\Program [AllUsers]: MSN Explorer.lnk . (.Microsoft Corporation - msn.) -- C:\Program Files\MSN\MSNCoreFiles\msn6.exe
O4 - GS\Program [Pascal Admin]: Blues for Piano and Keyboard 10.0.lnk . (.Microsoft Corporation - Explorateur Windows.) -- C:\WINDOWS\explorer.exe
O4 - GS\Program [Pascal Admin]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Program [Pascal Admin]: Windows Install Clean Up.lnk . (...) -- C:\Documents and Settings\Pascal Admin\Application Data\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe
O4 - GS\Program [eMule_Secure]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Program [Dominique]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
O4 - GS\Program [Admin]: Lecteur Windows Media.lnk . (.Microsoft Corporation - Windows Media Player.) -- C:\Program Files\Windows Media Player\wmplayer.exe
~ Global Startup: 28 Legitimates Filtered in 00mn 02s
---\\ Applications lanc�es au d�marrage du syt�me (O4)
O4 - HKLM\..\Run: [PSDrvCheck] . (...) -- C:\WINDOWS\system32\PSDrvCheck.exe
O4 - HKLM\..\Run: [avgnt] . (.Avira Operations GmbH & Co. KG - Avira System Tray Tool.) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
O4 - HKLM\..\Run: [Adobe ARM] . (.Adobe Systems Incorporated - Adobe Reader and Acrobat Manager.) -- C:\Program Files\Fichiers communs\Adobe\ARM\1.0\AdobeARM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] . (.Oracle Corporation - Java(TM) Update Scheduler.) -- C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] . (...) -- C:\WINDOWS\system32\qttask.exe
O4 - HKLM\..\Run: [@OnlineArmor GUI] . (.Emsisoft GmbH - Online Armor Component.) -- C:\Program Files\Online Armor\OAui.exe
O4 - HKCU\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NokiaSuite.exe] . (.Nokia - Nokia Suite.) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\System32\CTFMON.exe
O4 - HKUS\S-1-5-21-1935655697-1993962763-1343024091-1016\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1935655697-1993962763-1343024091-1016\..\Run: [NokiaSuite.exe] . (.Nokia - Nokia Suite.) -- C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe
~ Application: Scanned in 00mn 00s
---\\ Boutons situ�s sur la barre d'outils principale d'Internet Explorer (O9)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (...) -- C:\Program Files\Microsoft Office\Office12\REFBARH.ICO
~ IE Extra Buttons: Scanned in 00mn 00s
---\\ Objets ActiveX (Downloaded Program Files)(O16)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} ((no name)) - http://fpdownload.macromedia.com/get/shockwave/cabs/director/sw.cab
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} ((no name)) - http://ushousecall02.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} ((no name)) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} ((no name)) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1155398021206
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} ((no name)) - http://a840.g.akamai.net/7/840/537/2005111401/housecall.trendmicro.com/housecall/xscan53.cab
O16 - DPF: {88764F69-3831-4EC1-B40B-FF21D8381345} ((no name)) - https://static.impots.gouv.fr/tdir/static/adpform/AdSignerADP-2.0.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} ((no name)) - http://messenger.msn.com/download/msnmessengersetupdownloader.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} ((no name)) - http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
~ Objets ActiveX: Scanned in 00mn 00s
---\\ Modification Domaine/Adresses DNS (O17)
O17 - HKLM\System\CCS\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CCS\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr
O17 - HKLM\System\CS1\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS1\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr
O17 - HKLM\System\CS1\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpDomain = noos.fr
O17 - HKLM\System\CS2\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: NameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS2\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr
O17 - HKLM\System\CS3\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CS3\Services\Tcpip\..\{9548D205-C2A3-4969-BEF2-92CBB72FF227}: DhcpNameServer = 89.2.0.1 89.2.0.2
O17 - HKLM\System\CS3\Services\Tcpip\..\{7B375871-621A-45A3-97B7-4CD06966ED9F}: DhcpDomain = noos.fr
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 89.2.0.1 89.2.0.2
~ Domain: Scanned in 00mn 00s
---\\ Protocole additionnel (O18)
O18 - Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} . (.Microsoft Corporation - WIA Scripting Layer.) -- C:\WINDOWS\System32\wiascr.dll
O18 - Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} . (.Microsoft Corporation - Microsoft Office XML MIME Filter.) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.dll
~ Protocole Additionnel: Scanned in 00mn 00s
---\\ Valeur de Registre AppInit_DLLs et sous-cl�s Winlogon Notify (autorun) (O20)
O20 - Winlogon Notify: AtiExtEvent . (.ATI Technologies Inc. - ATI External Event Utility DLL Module.) -- C:\WINDOWS\system32\Ati2evxx.dll
O20 - Winlogon Notify: crypt32chain . (.Microsoft Corporation - Crypto API32.) -- C:\WINDOWS\system32\crypt32.dll
O20 - Winlogon Notify: cryptnet . (.Microsoft Corporation - Crypto Network Related API.) -- C:\WINDOWS\system32\cryptnet.dll
O20 - Winlogon Notify: cscdll . (.Microsoft Corporation - Agent r�seau hors connexion.) -- C:\WINDOWS\system32\cscdll.dll
O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\system32\dimsntfy.dll
O20 - Winlogon Notify: ScCertProp . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: Schedule . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: sclgntfy . (.Microsoft Corporation - DLL secondaire de notification de service d.) -- C:\WINDOWS\system32\sclgntfy.dll
O20 - Winlogon Notify: SensLogn . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\WlNotify.dll
O20 - Winlogon Notify: termsrv . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Windows Genuine Advantage - Meddelande.) -- C:\WINDOWS\system32\WgaLogon.dll
O20 - Winlogon Notify: wlballoon . (.Microsoft Corporation - DLL commune de r�ception des notifications.) -- C:\WINDOWS\system32\wlnotify.dll
O20 - Winlogon Notify: WRNotifier . (...) -- WRLogonNTF.dll
~ Winlogon: Scanned in 00mn 00s
---\\ Liste des services NT non Microsoft et non d�sactiv�s (O23)
O23 - Service: Online Armor Helper Service (OAcat) . (.Emsisoft GmbH - Online Armor Component.) - C:\Program Files\Online Armor\OAcat.exe
O23 - Service: Online Armor (SvcOnlineArmor) . (.Emsisoft GmbH - Online Armor Component.) - C:\Program Files\Online Armor\oasrv.exe
~ Services: 11 Legitimates Filtered in 01mn 48s
---\\ Enum�ration Active Desktop & MHTML Editor (O24)
O24 - Desktop General: BackupWallPaper - .(...) - C:\WINDOWS\web\wallpaper\Colline verdoyante.bmp
O24 - Desktop General: WallPaper - .(...) - C:\WINDOWS\web\wallpaper\Colline verdoyante.bmp
~ Desktop Component: 4 Legitimates Filtered in 00mn 00s
---\\ Enum�re les donn�es de BootExecute (BEX) (O34)
O34 - HKLM BootExecute: (autocheck autochk /p \??\I:) - File not found
O34 - HKLM BootExecute: (SsiEfr.e) - File not found
O34 - HKLM BootExecute: (SsiEfr.e) - File not found
~ BEX: 4 Legitimates Filtered in 00mn 00s
---\\ Composants install�s (ActiveSetup Installed Components) (O40)
O40 - ASIC: YInstStarterUpgrade Class - {0291E591-EA41-4c82-8106-3DC6CE7F7664} . (...) -- C:\Program Files\Yahoo!\Common\yinsthelper.dll =>Toolbar.Yahoo
O40 - ASIC: YSearchSetting2 Class - {347B0667-C7ED-429B-BDE3-CC8D3BACAA31} . (...) -- C:\Program Files\Yahoo!\Common\yinsthelper.dll =>Toolbar.Yahoo
~ Active Setup: 23 Legitimates Filtered in 00mn 01s
---\\ Pilotes lanc�s au d�marrage du syst�me (O41)
O41 - Driver: (OADevice) . (...) - C:\WINDOWS\system32\drivers\OADriver.sys
O41 - Driver: (oahlpXX) . (...) - C:\WINDOWS\system32\drivers\oahlp32.sys
O41 - Driver: (AVG Anti-Spyware Driver) . (. - .) - C:\Program Files\AVG Anti-Spyware 7.5\guard.sys (.not file.)
O41 - Driver: (AvgAsCln) . (. - .) - C:\WINDOWS\system32\DRIVERS\AvgAsCln.sys (.not file.)
O41 - Driver: (fwdrv) . (. - .) - C:\WINDOWS\system32\drivers\fwdrv.sys (.not file.)
O41 - Driver: (khips) . (. - .) - C:\WINDOWS\system32\drivers\khips.sys (.not file.)
O41 - Driver: (NaiAvTdi1) . (. - .) - C:\WINDOWS\system32\drivers\mvstdi5x.sys (.not file.)
~ Drivers: 86 Legitimates Filtered in 00mn 06s
---\\ Logiciels install�s (O42)
O42 - Logiciel: Advanced IRC - (...) [HKLM] -- Advanced IRC
O42 - Logiciel: BackupBuddy for Windows - (...) [HKLM] -- BackupBuddy for Windows
O42 - Logiciel: CDRWIN 5 - (.Engelmann Media.) [HKLM] -- {9B2B0EAD-2CC7-4589-B3AA-D23BAB724065}
O42 - Logiciel: CH Control Manager - (...) [HKLM] -- CHControlManager_is1
O42 - Logiciel: CyberView X - SF v1.30 (build 20110411) - (.Pacific Image ELectronics Co., Ltd..) [HKLM] -- {D8FF6E29-36B4-474F-A88F-973087650C00}
O42 - Logiciel: Dawn - (.\.) [HKLM] -- {459E0590-ECD4-490E-9E52-3EF1F1782225}
O42 - Logiciel: GedCom-Vision version 2.0e - (...) [HKLM] -- GedCom-Vision_is1
O42 - Logiciel: Harmony Assistant - (...) [HKLM] -- Harmony Assistant
O42 - Logiciel: IFOEdit 0.971 Fr - (...) [HKLM] -- IFOEdit 0.971 Fr
O42 - Logiciel: La France � la loupe - (.BSD Concept.) [HKLM] -- {E3F2269F-EC1F-494D-B700-E543EB509EFC}
O42 - Logiciel: P2400P Guide de r�f�rence - (...) [HKLM] -- P2400P Guide de r�f�rence
O42 - Logiciel: PDFtoMusic - (...) [HKLM] -- PDFtoMusic
O42 - Logiciel: PeerGuardian 2.0 - (.Methlabs Productions.) [HKLM] -- PeerGuardian_is1
O42 - Logiciel: Personal Ancestral File 5 - (...) [HKLM] -- {D94A8E22-DF2B-4107-9E51-608A60A7671D}
O42 - Logiciel: SanDisk SD Wi-Fi Card - (...) [HKLM] -- {6B73F555-C1A7-4EEC-B481-889637C5C728}
O42 - Logiciel: SaverWiz - (...) [HKLM] -- SaverWiz
O42 - Logiciel: Sibelius 5 Demo - (.Sibelius Software.) [HKLM] -- {24EDCB2B-A50E-43AB-8340-74BB46B1E9FE}
O42 - Logiciel: SmartList To Go - (.DataViz, Inc..) [HKLM] -- {36FBFDA5-E422-4C01-BA7C-C067E8ACFD90}
O42 - Logiciel: SplashID - (...) [HKLM] -- {9DBBC53C-AD7B-44ED-91A7-7568B51182F8}
O42 - Logiciel: TablePCRT - (.3M.) [HKLM] -- {C46A5F24-B91F-477C-B634-DB99A7D7792A}
O42 - Logiciel: Tous les Noms de Famille de France V.6.5.1 - (...) [HKLM] -- ST6UNST #2
O42 - Logiciel: VDMSound - (.Vlad Romascanu.) [HKLM] -- VDMSound
O42 - Logiciel: VobEdit 0.6 Fr - (...) [HKLM] -- VobEdit 0.6 Fr
O42 - Logiciel: Wintree Version 3.0 d - (.Decrock.) [HKLM] -- Wintree_is1
O42 - Logiciel: dMC Power Pack - (...) [HKLM] -- dMC Power Pack
O42 - Logiciel: iTextFront 1.17 - (.Ujihara.) [HKLM] -- {C9CE8735-F02F-4DE4-B979-04D30DFFE7C3}
~ Logic: 230 Legitimates Filtered in 00mn 13s
---\\ HKCU & HKLM Software Keys
[HKLM\Software\BigScott27]
[HKLM\Software\CDRWIN5]
[HKLM\Software\Carpet]
[HKLM\Software\CyberView X]
[HKLM\Software\D-Tools]
[HKLM\Software\DECROCK]
[HKLM\Software\GIANTCompany]
[HKLM\Software\Musicalis]
[HKLM\Software\Pacific Image ELectronics Co., Ltd.]
[HKLM\Software\SndDesrVersion]
[HKLM\Software\SplashData]
[HKLM\Software\Sports]
[HKLM\Software\Std]
[HKLM\Software\Textures]
[HKLM\Software\TorrentSearcher]
[HKLM\Software\Trance Pad]
[HKLM\Software\Tribal Masks]
~ Key Software: 323 Legitimates Filtered in 00mn 15s
---\\ Contenu des dossiers Programs/ProgramFiles/ProgramData/AppData (O43)
O43 - CFD: 23/10/2005 - 11:03:08 - [0,024] ----D C:\Program Files\3D Photo Browser
O43 - CFD: 25/05/2007 - 17:19:20 - [1,200] ----D C:\Program Files\Advanced IRC
O43 - CFD: 17/11/2006 - 19:38:20 - [0,585] ----D C:\Program Files\ANtsP2P
O43 - CFD: 05/11/2005 - 10:52:21 - [6,055] ----D C:\Program Files\AVI MPEG RM WMV Joiner
O43 - CFD: 02/01/2008 - 11:37:28 - [60,073] ----D C:\Program Files\Avi2Dvd
O43 - CFD: 23/11/2005 - 19:47:40 - [0,000] ----D C:\Program Files\BackupBuddy
O43 - CFD: 03/12/2005 - 13:04:25 - [8,416] ----D C:\Program Files\CDRWIN5
O43 - CFD: 06/01/2008 - 18:37:12 - [12,524] ----D C:\Program Files\CH Products
O43 - CFD: 14/04/2006 - 12:02:35 - [0,532] ----D C:\Program Files\Common~1
O43 - CFD: 25/06/2011 - 10:16:59 - [2,041] ----D C:\Program Files\Dawn
O43 - CFD: 19/11/2005 - 12:42:15 - [0,000] ----D C:\Program Files\Documents To Go
O43 - CFD: 13/05/2008 - 18:55:00 - [8,422] ----D C:\Program Files\FamilySearch
O43 - CFD: 12/05/2008 - 10:17:08 - [0,963] ----D C:\Program Files\GedCom-Vision
O43 - CFD: 10/11/2007 - 15:01:46 - [0,971] ----D C:\Program Files\GedStar
O43 - CFD: 03/07/2010 - 11:58:20 - [35,868] ----D C:\Program Files\GenjFr
O43 - CFD: 18/02/2010 - 21:20:15 - [2,745] ----D C:\Program Files\HanDBase3
O43 - CFD: 07/09/2008 - 18:32:35 - [33,391] ----D C:\Program Files\Harmony Assistant
O43 - CFD: 20/12/2009 - 16:15:09 - [13,699] ----D C:\Program Files\i2p
O43 - CFD: 17/11/2006 - 13:53:30 - [2,454] ----D C:\Program Files\icesword
O43 - CFD: 11/10/2008 - 16:27:03 - [1,365] ----D C:\Program Files\IfoEdit
O43 - CFD: 20/12/2009 - 19:20:14 - [32,490] ----D C:\Program Files\iMule-1.4.5
O43 - CFD: 20/05/2011 - 15:18:55 - [71,852] ----D C:\Program Files\Kommute
O43 - CFD: 30/07/2005 - 12:39:24 - [0,000] ----D C:\Program Files\Messenger Backup
O43 - CFD: 22/12/2009 - 15:36:37 - [710,407] ----D C:\Program Files\Musicalis
O43 - CFD: 17/11/2006 - 19:42:04 - [19,998] ----D C:\Program Files\MUTE
O43 - CFD: 02/12/2007 - 13:22:35 - [0,011] ----D C:\Program Files\myFairTunes
O43 - CFD: 08/04/2006 - 14:56:03 - [2,868] ----D C:\Program Files\MyVideoSoft
O43 - CFD: 17/11/2006 - 19:21:34 - [0,384] ----D C:\Program Files\NapShare
O43 - CFD: 23/10/2005 - 10:52:05 - [2,308] ----D C:\Program Files\Newave
O43 - CFD: 04/06/2013 - 19:07:25 - [0,723] ----D C:\Program Files\ODEON
O43 - CFD: 30/08/2008 - 13:44:53 - [19,881] ----D C:\Program Files\PDFtoMusic
O43 - CFD: 23/08/2011 - 19:04:49 - [1390,739] ----D C:\Program Files\PeerGuardian2
O43 - CFD: 05/11/2004 - 15:40:40 - [3,209] ----D C:\Program Files\PW
O43 - CFD: 28/10/2007 - 14:20:31 - [1,613] ----D C:\Program Files\Reagclean
O43 - CFD: 05/05/2005 - 11:04:57 - [0,883] ----D C:\Program Files\SaverWiz
O43 - CFD: 19/04/2009 - 11:44:56 - [0,003] ----D C:\Program Files\Sensory
O43 - CFD: 17/05/2008 - 18:30:51 - [0,345] ----D C:\Program Files\SmartGenealogy_2.8c
O43 - CFD: 13/12/2009 - 17:20:50 - [8,310] ----D C:\Program Files\SmartList To Go
O43 - CFD: 06/11/2004 - 11:56:01 - [1,324] ----D C:\Program Files\SplashData
O43 - CFD: 22/10/2010 - 14:07:47 - [0,000] ----D C:\Program Files\TauVPN
O43 - CFD: 26/03/2007 - 20:17:53 - [3,929] ----D C:\Program Files\thinkingBytes
O43 - CFD: 28/02/2005 - 15:07:00 - [56,415] ----D C:\Program Files\Tweak-XP Pro 4
O43 - CFD: 13/03/2010 - 19:28:24 - [4,902] ----D C:\Program Files\Ujihara
O43 - CFD: 22/07/2012 - 10:19:59 - [0,053] ----D C:\Program Files\URLSnooper2
O43 - CFD: 18/04/2007 - 18:58:26 - [1,810] ----D C:\Program Files\VDMSound
O43 - CFD: 13/05/2008 - 18:47:07 - [14,404] ----D C:\Program Files\WINTREE
O43 - CFD: 09/10/2005 - 10:57:52 - [2,760] ----D C:\Program Files\Winwap Technologies
O43 - CFD: 30/12/2006 - 16:15:26 - [0] ----D C:\Program Files\Fichiers communs\element5 Shared
O43 - CFD: 12/03/2011 - 21:01:31 - [0,000] ----D C:\Documents and Settings\All Users\Application Data\Analog Pad
O43 - CFD: 15/05/2005 - 10:34:39 - [0,012] ----D C:\Documents and Settings\All Users\Application Data\element5
O43 - CFD: 11/11/2008 - 11:59:35 - [0,000] ----D C:\Documents and Settings\All Users\Application Data\Tables
O43 - CFD: 08/09/2012 - 18:30:48 - [0,003] ----D C:\Documents and Settings\Admin\Application Data\PIE
~ Program Folder: 303 Legitimates Filtered in 02mn 26s
---\\ Derniers fichiers modifi�s ou cr�es sous Windows et System32 (O44)
O44 - LFC:[MD5.EAC16AEFFE8AD403D15F216AA2ED69CD] - 16/09/2013 - 14:31:13 ---A- . (...) -- C:\WINDOWS\wiadebug.log [159]
O44 - LFC:[MD5.83EB8ABA0B342BDFB990CC4831E8E232] - 16/09/2013 - 14:31:01 ---A- . (...) -- C:\WINDOWS\wiaservc.log [50]
O44 - LFC:[MD5.7112190518B5AEAA05B259BBE393C9ED] - 14/09/2013 - 16:38:21 ---A- . (...) -- C:\WINDOWS\NeroDigital.ini [116]
O44 - LFC:[MD5.570E3635FABBBD001EA0550B5861CCA2] - 13/09/2013 - 15:56:33 ---A- . (...) -- C:\WINDOWS\system32\GDIPFONTCACHEV1.DAT [119296]
O44 - LFC:[MD5.C0BA927C3A1A62F2BF664F242D91C082] - 13/09/2013 - 09:42:42 ---A- . (...) -- C:\WINDOWS\system32\Drivers\OADriver.sys [208320]
O44 - LFC:[MD5.C968369E2BC5F6A8426C1E7D78E33F1B] - 13/09/2013 - 09:42:42 ---A- . (...) -- C:\WINDOWS\system32\Drivers\oahlp32.sys [44992]
~ Files: 24 Legitimates Filtered in 02mn 04s
---\\ Derniers fichiers cr��s dans Windows Prefetcher (O45)
O45 - LFCP:[MD5.158B9732EC1B6852DCA57BC653EF8594] - 16/09/2013 - 12:17:48 ---A- - C:\WINDOWS\Prefetch\I_VIEW32.EXE-38F9F646.pf
O45 - LFCP:[MD5.6671760AFAB401A1AD01F9C400010CAD] - 16/09/2013 - 13:32:30 ---A- - C:\WINDOWS\Prefetch\MPC_FR.EXE-0A7E7B09.pf
O45 - LFCP:[MD5.8778DEE373E13904DBA771878C3C1948] - 16/09/2013 - 14:18:07 ---A- - C:\WINDOWS\Prefetch\JRT.EXE-22C49E56.pf
O45 - LFCP:[MD5.729FFA86FE798596216C8D762BD20AEC] - 16/09/2013 - 14:18:11 ---A- - C:\WINDOWS\Prefetch\NIRCMD.DAT-3A6E400F.pf
O45 - LFCP:[MD5.4D61521AD9BB3876E517E33363281109] - 16/09/2013 - 14:18:13 ---A- - C:\WINDOWS\Prefetch\WGET.DAT-3120051A.pf
O45 - LFCP:[MD5.8CECD5262A1D04E8359CC640EF7BDC35] - 16/09/2013 - 14:18:14 ---A- - C:\WINDOWS\Prefetch\FC.EXE-1B9F0926.pf
O45 - LFCP:[MD5.66DEF312D04EA64358F7B9A4E1115F17] - 16/09/2013 - 14:22:19 ---A- - C:\WINDOWS\Prefetch\CHOICE.DAT-228B59E3.pf
O45 - LFCP:[MD5.A8D53E043ADCE9498BD37C6679724D2D] - 16/09/2013 - 14:22:46 ---A- - C:\WINDOWS\Prefetch\FIND.EXE-0EC32F1E.pf
O45 - LFCP:[MD5.EB48868F0FFC5B5483D4943BB8D8E479] - 16/09/2013 - 14:32:27 ---A- - C:\WINDOWS\Prefetch\PSDRVCHECK.EXE-04674802.pf
O45 - LFCP:[MD5.E9DCD255E71C32118C9B355C63A9B28C] - 16/09/2013 - 14:32:32 ---A- - C:\WINDOWS\Prefetch\OAUI.EXE-29741C36.pf
O45 - LFCP:[MD5.CB1353F85CC0ECE779255B0AD7BF6A83] - 16/09/2013 - 14:32:42 ---A- - C:\WINDOWS\Prefetch\OAHLP.EXE-2E2BAC05.pf
O45 - LFCP:[MD5.8172B8E69C1CD3DFD108EBBBE43D2544] - 16/09/2013 - 14:33:08 ---A- - C:\WINDOWS\Prefetch\OADUMP.EXE-2C782262.pf
~ Prefetcher: 86 Legitimates Filtered in 00mn 00s
---\\ Op�rations et fonctions au d�marrage de Windows Explorer (O46)
O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll
O46 - SEH:ShellExecuteHooks - Microsoft AntiMalware ShellExecuteHook - {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\PROGRA~1\WINDOW~4\MpShHook.dll
O46 - SEH:ShellExecuteHooks - OA Shell Helper - {4F07DA45-8170-4859-9B5F-037EF2970034} - C:\PROGRA~1\ONLINE~1\oaevent.dll
~ ShellExecuteHooks: Scanned in 00mn 00s
---\\ Contr�le du Safe Boot (CSB) (O49)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Minimal\HDDirect.sys . (...) -- C:\WINDOWS\system32\Drivers\HDDirect.sys (.not file.)
O49 - CSB:Control Safe Boot HKLM\...\CCS\Network\HDDirect.sys . (...) -- C:\WINDOWS\system32\Drivers\HDDirect.sys (.not file.)
~ CSB: 25 Legitimates Filtered in 00mn 00s
---\\ Image File Execution Options (IFEO) (O50)
O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d
~ IFEO: Scanned in 00mn 00s
---\\ Enum�ration des cl�s de registre PoliciesExplorer (MWPE) (O56)
O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=0
~ MWPE Keys: 4 Legitimates Filtered in 00mn 00s
---\\ Liste des pilotes du syst�me (SDL) (O58)
O58 - SDL:[MD5.116BFF96077A4A724E0AAB800525CEB5] - 28/08/2002 - 22:59:12 ---A- . (.ADMtek Incorporated. - ADMtek AN983/AN985/ADM951X NDIS5 Driver.) -- C:\WINDOWS\system32\Drivers\an983.sys [36224]
O58 - SDL:[MD5.BA898B29F0DBF9307F494475A8393F03] - 05/05/2005 - 16:01:34 RSH-- . (...) -- C:\WINDOWS\system32\0AA48D50C7.sys [8]
~ Drivers: 7 Legitimates Filtered in 00mn 00s
---\\ Derniers fichiers modifi�s ou cr�es (Utilisateur) (O61)
O61 - LFC: 13/09/2013 - 08:10:48 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\mbam-log-2013-09-13 (09-10-16).txt [1919]
O61 - LFC: 13/09/2013 - 08:37:02 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\bookmarkbackups\bookmarks-2013-09-13.json [3796]
O61 - LFC: 13/09/2013 - 08:53:53 -SHA- . (...) -- C:\Documents and Settings\Admin\IECompatCache\index.dat [868352]
O61 - LFC: 13/09/2013 - 09:25:19 ---A- . (...) -- C:\Documents and Settings\Admin\Local Settings\Application Data\GDIPFONTCACHEV1.DAT [119296]
O61 - LFC: 13/09/2013 - 14:15:05 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\nanny.txt.lnk [591]
O61 - LFC: 13/09/2013 - 17:14:27 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\Disque deux (E).lnk [286]
O61 - LFC: 13/09/2013 - 17:14:27 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\cd rescue.iso.lnk [385]
O61 - LFC: 14/09/2013 - 13:13:22 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPDiag.txt.lnk [481]
O61 - LFC: 14/09/2013 - 13:20:32 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AVSCAN-20130912-092645-D74EAE1A.LOG.lnk [603]
O61 - LFC: 14/09/2013 - 13:38:21 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\bookmarkbackups\bookmarks-2013-09-14.json [3796]
O61 - LFC: 14/09/2013 - 14:05:43 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\AVSCAN-20130914-142127-096A90CF.LOG [23948]
O61 - LFC: 14/09/2013 - 14:05:43 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AVSCAN-20130914-142127-096A90CF.LOG.lnk [529]
O61 - LFC: 14/09/2013 - 14:09:19 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\hijackthis.log.lnk [498]
O61 - LFC: 14/09/2013 - 14:26:48 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\aa.txt [493]
O61 - LFC: 14/09/2013 - 14:26:48 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\aa.txt.lnk [452]
O61 - LFC: 16/09/2013 - 09:40:18 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\healthreport\state.json [89]
O61 - LFC: 16/09/2013 - 09:41:28 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\adwcleaner.exe [1039554]
O61 - LFC: 16/09/2013 - 09:42:23 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\bookmarkbackups\bookmarks-2013-09-16.json [3796]
O61 - LFC: 16/09/2013 - 09:42:23 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\healthreport.sqlite [1146880]
O61 - LFC: 16/09/2013 - 09:42:24 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\webappsstore.sqlite [163840]
O61 - LFC: 16/09/2013 - 09:53:48 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\AdwCleaner[S0].txt [2087]
O61 - LFC: 16/09/2013 - 10:01:03 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AdwCleaner[S0].txt.lnk [518]
O61 - LFC: 16/09/2013 - 10:22:00 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\blocklist.xml [78168]
O61 - LFC: 16/09/2013 - 10:37:56 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\addons.sqlite [524288]
O61 - LFC: 16/09/2013 - 10:38:50 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\downloads.sqlite [98304]
O61 - LFC: 16/09/2013 - 10:38:59 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\permissions.sqlite [65536]
O61 - LFC: 16/09/2013 - 10:41:56 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\ZHPFixReport.txt [2856]
O61 - LFC: 16/09/2013 - 10:42:28 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\ZHPFix[R1].txt [2856]
O61 - LFC: 16/09/2013 - 10:57:03 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPFixReport.txt.lnk [508]
O61 - LFC: 16/09/2013 - 10:57:04 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\extensions.sqlite [458752]
O61 - LFC: 16/09/2013 - 10:58:08 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPFix[R1].txt.lnk [498]
O61 - LFC: 16/09/2013 - 10:58:46 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\post.txt.lnk [464]
O61 - LFC: 16/09/2013 - 10:59:01 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\post.txt [86]
O61 - LFC: 16/09/2013 - 10:59:53 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\formhistory.sqlite [196608]
O61 - LFC: 16/09/2013 - 10:59:53 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\signons.sqlite [327680]
O61 - LFC: 16/09/2013 - 11:06:01 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\content-prefs.sqlite [229376]
O61 - LFC: 16/09/2013 - 12:16:50 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\places.sqlite [10485760]
O61 - LFC: 16/09/2013 - 12:17:14 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\cookies.sqlite [524288]
O61 - LFC: 16/09/2013 - 12:17:14 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\sessionstore.bak [2253]
O61 - LFC: 16/09/2013 - 12:17:15 ---A- . (...) -- C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\startupCache\startupCache.4.little [884499]
O61 - LFC: 16/09/2013 - 13:32:28 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\Provi.lnk [483]
O61 - LFC: 16/09/2013 - 13:32:28 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\nannys-day-1-revelation.swf.lnk [675]
O61 - LFC: 16/09/2013 - 13:32:31 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Media Player Classic\default.mpcpl [95]
O61 - LFC: 16/09/2013 - 13:52:05 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\ZHPDiag 160913.Txt.lnk [518]
O61 - LFC: 16/09/2013 - 13:57:43 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\parent.lock [0]
O61 - LFC: 16/09/2013 - 13:57:45 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\pluginreg.dat [6471]
O61 - LFC: 16/09/2013 - 13:57:45 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\webapps\webapps.json [2]
O61 - LFC: 16/09/2013 - 13:57:48 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\urlclassifierkey3.txt [154]
O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\cert8.db [131072]
O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\key3.db [16384]
O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\localstore.rdf [5047]
O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\sessionstore.js [604]
O61 - LFC: 16/09/2013 - 13:57:51 ---A- . (...) -- C:\Documents and Settings\Admin\Local Settings\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\_CACHE_CLEAN_ [1]
O61 - LFC: 16/09/2013 - 14:00:32 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\bjby9717.default\prefs.js [8161]
O61 - LFC: 16/09/2013 - 14:17:25 ---A- . (...) -- C:\Documents and Settings\Admin\Bureau\AdwCleaner[S1] 13 09 16.txt [1437]
O61 - LFC: 16/09/2013 - 14:18:08 ---A- . (...) -- C:\Documents and Settings\Admin\Recent\AdwCleaner[S1] 13 09 16.txt.lnk [577]
O61 - LFC: 16/09/2013 - 14:30:44 -SHA- . (...) -- C:\Documents and Settings\Admin\IETldCache\index.dat [262144]
O61 - LFC: 16/09/2013 - 14:32:54 ---A- . (...) -- C:\Documents and Settings\Admin\Application Data\OnlineArmor\client.dat.bak [619]
~ 17 Fichiers temporaires (Temporary files)
~ 4 Fichiers cookies (Cookies files)
~ Files: 240 Legitimates Filtered in 00mn 27s
---\\ Fichiers Alternate Data Stream (ADS) (O62)
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\$winnt$.inf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\0AA48D50C7.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\12520437.cpx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\12520850.cpx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\aaaamon.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\acctres.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\acelpdec.ax:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\acledit.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\activeds(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\activeds.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\adptif.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\adsldpc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\adsnds.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\advapi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ansi.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\apcups.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\append.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\apphelp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\arp.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\asr_ldm.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\atkctrs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\atl(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\atmpvcno.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\audiosrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\authz(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\autodisc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\autoexec.nt:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\AUTOEXEC.NT.bak:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avicap.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avicap32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avifile.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avmeter.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avtapi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\avwav.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bios1.rom:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bios4.rom:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bootok.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bootvid.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bootvrfy.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\bopomofo.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\browser(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cabinet(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\calc.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cards.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ccfgnt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cdmodem.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\certcli(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\certmgr.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CF32569.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\charmap.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Cha�nes.scf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\chcp.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\chkdsk.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\chkntfs.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciadmin.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciadv.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaResSvr20.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaSubClsSvr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaXPFrame20.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaXPRegSvr20.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ciaXPStatusBar20.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cidaemon.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ckcnv.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clb.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clbcatq(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cliconf.chm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cliconfg.rll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clspack.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\clusapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmdlib.wsc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmmgr32.hlp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmos.ram:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cmpbk32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cnetcfg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CNMLM3q.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CNMVS3q.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cnvfat.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\colbact(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comcat.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comctl32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comdlg32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comm.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\command.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\commdlg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comp.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\compact.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\compmgmt.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\compobj.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comres(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\comsvcs(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CONFIG.NT:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\console.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\control.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\convert.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\country.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CPUINFO2.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\credui(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\crtdll.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\crypt32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cryptdll(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cryptsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cryptui(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\cscdll(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\csseqchk.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\CtMp3.Crl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ctype.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_037.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10000.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10006.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10007.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10010.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10017.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10029.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10079.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10081.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_10082.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1026.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1250.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1251.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1252.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1253.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1254.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1255.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1256.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1257.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_1258.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20127.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20261.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20866.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_20905.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_21866.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28591.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28592.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28593.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\C_28594.NLS:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\C_28595.NLS:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\C_28597.NLS:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28598.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28599.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28603.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_28605.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_437.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_500.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_737.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_775.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_850.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_852.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_855.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_857.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_860.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_861.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_863.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_865.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_866.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_869.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_874.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_875.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_932.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_936.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_949.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\c_950.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dim.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dpmesh.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dramp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3drm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\d3dxof.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\davclnt(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dbgeng.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dbmsadsn.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dbmsvinn.dLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ddeml.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\debug.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\deskadp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\deskmon.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\deskperf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\devmgmt.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dfrg.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dfrgres.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dgrpsetu.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dgsetup.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dhcpcsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dhcpsapi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diactfrm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dimap.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskcomp.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskcopy.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskmgmt.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\diskperf.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\divxdec_0407.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\divxdec_040c.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\divxdec_0411.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dllhst3g.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmconfig.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmdskres.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmintf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmocx.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmserver(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dmview.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dnsapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dnsrslvr(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\docprop.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\doskey.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dosx.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dplay.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpnmodem.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpnwsock.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpserial.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dpwsock.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\drprov(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\drwatson.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\drwtsn32.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ds16gt.dLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dsauth.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dsound.vxd:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dssec.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dssenh(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\duser(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dvdplay.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\dx3j.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\edit.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\edit.hlp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\edlin.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ega.cpi:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\emptyregdb.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\epDPE.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\EqnClass.Dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ersvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esccm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\escimg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\escwiab.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ESDTR.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esent(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esent97.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentprf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentprf.hxx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentprf.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\esentutl.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eula.txt:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventcls.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventlog(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventquery.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventvwr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\eventvwr.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\exe2bin.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\expand.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fastopen.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fc.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\find.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\finger.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fixmapi.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fmifs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\FNTCACHE.DAT:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\freecell.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fsmgmt.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fsusd.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\fsutil.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ftsrch.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\g711codc.ax:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gb2312.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gcdef.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gcmd5query.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gcTypLibA.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gdi.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gdi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\geo.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\getuname.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\glmf32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Gold Button.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gpedit.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gpkcsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\gpupdate.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\graftabl.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\graphics.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\graphics.pro:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\h323(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hid(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hidphone(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\himem.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hnetcfg(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hnetmon.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\homepage.inf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hostname.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hticons.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\hxphk.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasacct.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasads.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iashlpr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasnap.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iaspolcy.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iasrecst.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iassam.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iassdo.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iassvcs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\icaapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\icfgnt5.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\icmui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ideograf.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ifsutil.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iissuba.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\imagehlp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\imagr5.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\imagx5.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagX7.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXpr5.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXpr7.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXR7.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ImagXRA7.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\inetcplc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\INETWH32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\infosoft.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\instcat.sql:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iologmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipconf(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iphlpapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipnathlp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iprop.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iprtprio.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipsec6.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxmontr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxpromn.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxrip.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxrtmgr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ipxsap.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ir32_32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\irclass.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\iuengine.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jardin.scr:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javacypt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javaee.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javaprxy.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javart.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\javasup.vxd:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jdbgmgr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jet500.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgaw400.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgmd400.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgsd400.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jgsh400.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jit.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jobexec.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jsfr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\jview.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kanji_1.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kanji_2.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kb16.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdbe.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdbene.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdbr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdca.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdcan.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdda.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbddv.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdes.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfo.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdfr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdgae.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdgr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdgr1.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdic.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdir.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdit.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdit142.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdla.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdmac.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdne.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdno.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdpo.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdsw.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbduk.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdus.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdusl.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdusr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kbdusx.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kdcom.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kerberos(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kernel32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\key01.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\keyboard.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\keyboard.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\KGyGaAvL.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\kmddsp(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\korean.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\krnl386.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\label.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\langwrbk.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lanman.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfawd10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfbmp10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfbmp13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfcal10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfcmp10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\LFCMP13n.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfeps10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfeps13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lffax10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lffax13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lffpx10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Lffpx7.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfgif10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfgif13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfica10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfimg10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Lfkodak.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lflma10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lflmb10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfmac10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfmsp10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcd10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcd13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpct10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcx10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpcx13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpng10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Lfpng13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpsd10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfpsd13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfras10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftga10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftga13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftif10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lftif13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfwfx10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfwmf13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lfwpg10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lights.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lmhsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lnkstub.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\loadfix.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lodctr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\loghours.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\login.cmd:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\logoff.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lpq.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lpr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lprmonui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lsasrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lsass(2).exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Ltclr13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\LTDIS10N.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\LTDIS13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltefx13n.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltfil10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltfil13n.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltimg10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltimg13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltkrn10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ltkrn13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lttwn10n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Ltwvc13n.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lusrmgr.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lz32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\lzexpand.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\l_except.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\l_intl.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mag_hook.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\main.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mapi32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mapistub.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mcd32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mcdsrv32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mchgrcoi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciavi.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mcicda.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciole16.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciole32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciseq.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mciwave.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mdhcp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mdwmdmsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mem.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfc40loc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MFC42FRA.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfc42loc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfc70fra.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MFC71FRA.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfcans32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mfcuia32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mib.bin:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\midimap(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\migpwd.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mindex.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mlang.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mll_hp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mll_mtf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mll_qic.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmdriver.inf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmdrv.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmsystem.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmtask.tsk:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mmutilse.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mode.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\modex.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mountvol.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mouse.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mpnotify.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mpr(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprddm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mprui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqcertui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqgentr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqoa.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqoa10.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqoa20.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqperf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqperf.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mqprfsym.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mrinfo.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msaatext.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm32(2).drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msacm32.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msasn1(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msaudite.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msawt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mscat32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mscdexnt.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msdtcprf.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msdtcprf.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msencode.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msexcl35.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSFLXGRD.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msg.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msg711.acm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msg723.acm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSGHOO32.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msgina(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msgsm32.acm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mshearts.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSHFLXGD.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msidle(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msidntld.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msimg32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMRT.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMRT16.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMRT32.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSIMUSIC.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msisam10.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msisam11.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjava.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjdbc10.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjet35.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjint32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjt3032.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjter32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msjter35.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msls2.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSMASK32.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msobjs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MsPMSPSv.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msports.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msprivs(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSPRPFR.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msr2c.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msr2cenu.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msratelc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msrclr40.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSRDO20.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msrecr40.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mssign32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mssip32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSStdFmt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSSTKPRP.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msswch.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msswchx.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mstlsapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msuni10.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msuni11.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msv1_0(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvbvm50.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcp50.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcp60(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcrt(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvcrt20.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msvideo.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mswsock(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\MSXBSE35.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxml2r.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxml3r.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxml4a.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\msxmlr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mtxclu(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\mycomput.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\narrhook.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nbtstat.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ncobjapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ncpa.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ncxpnt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nddeapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ndptsp(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\NeroBurnRights.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\NeroCheck.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\NeroCo.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\net.hlp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netapi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netapi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netcfgx(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netevent.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\neth.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netlogon(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netman(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netrap(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netshell(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netui0(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netui1(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netui2.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\netware.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nlsfunc.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nmevtmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.chs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.cht:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.deu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.eng:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.enu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.esn:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.fra:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.ita:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.nld:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.sve:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\noise.tha:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\npwmsdrm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdll(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos404.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos411.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos412.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdos804.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdsapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntdsbcli.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntimage.gif:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio404.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio411.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio412.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntio804.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlanman(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlanui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlanui2.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntlsapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmarta(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmsevt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmsmgr.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntmsoprq.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntsd.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ntsdexts.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nw16.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwapi16.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwc.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwcfg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwevent.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\nwscript.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\O2CPlayer.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\odbc16gt.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\odbc32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\odbcint(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ODBCTL32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oembios.bin:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oembios.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oembios.sig:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole2.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole2disp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole2nls.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ole32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oleacc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\oleaut32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olecli.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olesvr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olesvr32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\olethk32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\osuninst.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pagefileconfig.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\PalmDevC.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\panmap.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Pano12.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\paqsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pathping.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Pcdlib32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pcl.sep:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pdf.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pentnt.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfci.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfci.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfd009.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfd00C.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perffilt.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perffilt.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfi009.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfi00C.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfnw.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfts.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfwci.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\perfwci.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pifmgr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ping6.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\plustab.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pmspl.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\powrprof(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prflbmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\print.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prncnfg.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prndrvr.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnjobs.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnmngr.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnport.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prnqctl.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\prodspec.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\profmap(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\psapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\psbase(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pschdcnt.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pschdprf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pschdprf.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pscript.sep:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\psnppagn.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pstorsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pubprn.vbs:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\python21.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\pythoncom21.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\PyWinTypes21.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\qappsrv.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\qosname.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\qwinsta.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasadhlp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasapi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasautou.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\raschap(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasctrnm.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasctrs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasctrs.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasdial.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasdlg(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasman(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasmans(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasmontr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasmxs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasppp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasrad.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rasser.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rastapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rastls(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\RDOCURS.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rdpcfgex.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\recover.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\redir.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regedt32.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regini.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\regwiz.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\relog.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rend.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\replace.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\reset.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\resutils(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\riched32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\RICHTX32.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rnr20.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ROBOEX32.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\route.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\routemon.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\routetab.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rpcns4.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rpcrt4(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rpcss(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsaci.rat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsaenh(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsfsaps.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsm.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsmsink.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsmui.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsopprov.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvp.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvp.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvpcnts.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvpmsg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rsvpperf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\RTCRES.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rtm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rtutils(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\runas.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\rwinsta.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\samlib(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\samsrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\saxzip.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scardssp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sccbase.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scecli(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scesrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\schannel(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\schedsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scofr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scredir.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scripto.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scriptpw.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\scrrnfr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sdpblb.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\seclogon(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secpol.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secupd.dat:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secupd.sig:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\secur32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sens(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sensapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\senscfg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\serialui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\services(2).exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\services.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\serwvdrv.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setup.bmp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setupapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setupdll.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\setver.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfc.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfc_os(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sfmapi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\SFMS32.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shadow.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\share.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shdocvw(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shell.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shell32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shellstyle.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shiftjis.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shimeng(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shlwapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\shsvcs(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sisbkup.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\skdll.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\slbcsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\slbrccsp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\smss(2).exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\SndDrv32b.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sndvol32.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\softpub.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sol.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sortkey.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sound.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\spnike.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sprestrt.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sprio600.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sprio800.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\spxcoins.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlsodbc.chm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlsrv32.rll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlwid.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sqlwoa.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srclient(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srrstr(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\srvsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ssdpapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\SSubTmr6.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\stdole32.tlb:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\storage.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\streamci.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\subrange.uce:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\subst.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\superpad6.lnf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\superpad9.lnf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\svchost(2).exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\svcpack.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\swprv.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sxs(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\syncapp.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysedit.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysinv.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\syskey.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysprint.sep:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\sysprtj.sep:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\system.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\systray.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapi.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapiperf.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapisrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tapiui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\taskman.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tcmsetup.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tcpmon.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tcpsvcs.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\telephon.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Temp:99uDR2TtCG8HHtJOa2
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\termcap:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\termsrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tftp.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ThinkRLE.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\timer.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\toolhelp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tracert6.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\traffic.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\trkwks(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsappcmp.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tscon.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tscupgrd.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsd32.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsdiscon.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tskill.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tslabels.h:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tslabels.ini:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tslicc.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tsshutdn.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\tssoft32.acm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\TwnLib20.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txp3.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txp4.cpl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txp4lib.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\TXPstart.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\txptabs.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\typelib.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\typeperf.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ufat.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\umdmxfrm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\umpnpmgr(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\unicode.nls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\unimdm(2).tsp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\uniplat(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\unlodctr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\upnp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ureg.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\urlmon(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\user.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\user32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\userenv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrcntra.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrcoina.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrdpa.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrdtea.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrfaxa.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrlbva.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrlogon.cmd:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrmlnka.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrprbda.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrrtosa.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrsdpia.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrshuta.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrsvpia.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrv42a.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrv80a.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrvoica.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\usrvpa.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\utildll.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\uxtheme(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\v7vga.rom:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB5DB.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB5FR.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB5StKit.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VB6STKIT.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vbar2232.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vbar332.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vbsfr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vcdex.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VegaShEx.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ver.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\verifier.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\version(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vfpodbc.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga256.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vga64k.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vjoy.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vmhelper.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\VSFLEX3.OCX:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vssadmin.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vssapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vss_ps.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vwipxspx.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\vwipxspx.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\w32time(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\w32tm.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\w32topl.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.deu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.enu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.esn:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.fra:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.ita:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.nld:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbcache.sve:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.deu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.enu:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.esn:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.fra:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.ita:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.nld:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wbdbase.sve:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wdigest(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wdl.trm:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wdmaud(2).drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\webclnt(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\webfldrs.msi:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\webhits.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wfwnet.drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wiasf.ax:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wiavusd.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wifeman.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\win.com:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\win32k(2).sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\win87em.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winchat.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winfax.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winhelp.hlp:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winhlp32.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winhttp(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wininet(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winipsec(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winlogon(2).exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winmine.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winmm(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winmsd.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winnls.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winoldap.mod:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winrnr(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winscard(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winsock.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winspool(2).drv:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winspool.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winsrv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winsta(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\winstrm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wintrust(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wjview.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wkssvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wldap32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wlnotify(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmerrFRA.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmi32.cnf:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmidx.ocx:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmimgmt.msc:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmiprop.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmiscmgr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmpns.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmpscheme.xml:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmpstub.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmv8dmod.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmvcore2.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wmvdmoe.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\WNASPINT.DLL:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowdeb.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowexec.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowfax.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wowfaxui.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wpa.dbl:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\write.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ws2help(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\ws2_32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wscsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshatm.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshfr.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshisn.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshnetbs.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wshtcpip(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wsock32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wtsapi32(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuauclt1.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuaueng1.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wuauserv(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wupdmgr.exe:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wups(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wzcsapi(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\wzcsvc(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\xenroll.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\xpsp2res(2).dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\zdec.dll:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\zonedoff.reg:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\zonedon.reg:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\acpiec.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\an983.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1btxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1mdxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1pdxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1raxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1rvxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1snxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1ttxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1tuxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1xbxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati1xsxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ati2mtaa.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinbtxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinmdxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinpdxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinraxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinrvxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinsnxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinttxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atintuxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinxbxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atinxsxx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ativmc20.cod:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atmepvc.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\atmuni.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\audstub.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\beep.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cbidf2k.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cdaudio.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cinemst2.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cpqdap01.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\cxthsfs2.cty:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\dxapi.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\dxgthk.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\enum1394.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\fsvga.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\fs_rec.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\gm.dls:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\gmreadme.txt:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\hsfbs2s2.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\hsfcxts2.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\hsfdpsp2.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\imagedrv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\imagesrv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ipfltdrv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mcd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mdmxsdk.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mnmdd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mtlmnt5.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mtlstrm.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\mtxparhm.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\netwlan5.img:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nikedrv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ntmtlfax.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\null.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nv4_mini.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnkflt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnkfwd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnknb.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\nwlnkspx.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\oprghdlr.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\parvdm.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ptilink.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\raspti.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\rawwan.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\recagent.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\rio8drv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\riodrv.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\rootmdm.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\s3gnbm.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slnt7554.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slntamr.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slnthal.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\slwdmsup.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\smclib.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\tosdvd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\tsbvcap.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\usbd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\vdmindvd.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv07nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv08nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv09nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wadv11nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\watv06nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\watv10nt.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\wmilib.sys:KAVICHS
O62 - ADS:Alternate Data Stream File - C:\WINDOWS\system32\Drivers\ws2ifsl.sys:KAVICHS
~ ADS: Scanned in 00mn 14s
---\\ Liste des outils de d�sinfection (LATC) (O63)
O63 - Logiciel: ZHPDiag 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPDiag_is1
O63 - Logiciel: ZHPFix 2013 - (.Nicolas Coolman.) [HKLM] -- ZHPFix_is1
~ ADS: Scanned in 00mn 00s
---\\ Liste les services legacy du registre (LALS) (O64)
O64 - Services: CurCS - 10/09/2013 - C:\WINDOWS\system32\DRIVERS\avgntflt.sys (avgntflt) .(.Avira Operations GmbH & Co. KG - Avira Minifilter Driver.) - LEGACY_AVGNTFLT
O64 - Services: CurCS - 02/01/1601 - Pas de propri�taire (AVG Clean Driver) .(...) - LEGACY_AVG_CLEAN_DRIVER
~ Legacy: 194 Legitimates Filtered in 00mn 03s
---\\ Menu de d�marrage Internet (SMI) (O68)
O68 - StartMenuInternet:
O68 - StartMenuInternet:
O68 - StartMenuInternet:
~ Keys: Scanned in 00mn 00s
---\\ Recherche d'infection sur les navigateurs internet (SBI) (O69)
O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (Bing) - http://www.bing.com
O69 - SBI: SearchScopes [HKCU] {6A1806CD-94D4-4689-BA73-E35EA1EA9990} - (@ieframe.dll,-12512) - http://www.bing.com
~ Keys: Scanned in 00mn 00s
---\\ Enum�re les fichiers Crack & Keygen (CKF) (O82)
D:\Documents de Pascal\bibli Palm\programmes Palm\Astraware Sudoku v1.00 Palmos5 Cracked-Cscpda.rar
D:\Documents de Pascal\bibli Palm\programmes Palm\Bases de donn�es\handmark.mobiledb.4.02.palmos.cracked-tsrh.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\calcul\NeoCal.v1.7.7.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Calendrier\Wassup.v1.4.4.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Daedalus.3D.v1.1b.PalmOS.Keygen-TM.crc.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Daedalus.3D.v1.1b.PalmOS.Keygen-TM.part1.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Daedalus.3D.v1.1b.PalmOS.Keygen-TM.part2.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Dicos\UltraEdit_9.00c_[with_all_dictionary_files]_[with_keygen].exe
D:\Documents de Pascal\bibli Palm\programmes Palm\G�n�rateur de cl�s\Astraware keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\G�n�rateur de cl�s\keygen collection 2ka.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\G�n�rateur de cl�s\keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\G�n�rateur de cl�s\Keygen_2.04.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Alchemy.v2.3.PalmOS.Cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Basketball.2003.v3.0.PalmOS.Cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Bejeweled.v2.3.PalmOS.Cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\Chess.Genius.v2.1.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Jeux\TableTennis3D_inc_keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\livres\TealDoc.v6.35.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Sudoku.Addict.v1.03.PalmOS.Cracked-CSCPDA.rar
D:\Documents de Pascal\bibli Palm\programmes Palm\Syst�me\CardExport.2.01.626.cracked.by.-S-.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Syst�me\cardexport_cracked_2.0.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Syst�me\FlyZipSR_v3.02_PalmOS_cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Syst�me\JackFlash_b14_and_JackSprat_3.b4_keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Syst�me\PowerRun.1.3.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Top Sudoku v2.61 Palmos Cracked-Hspda.rar
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Aeroplayer.5.0.beta.PalmOS.Keygen-TM.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Aeroplayer.v2.11.1.Multilanguage.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Agendus Professional v7.04 Palmos Cracked-Cscpda.rar
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Agendus.Professional.v7.06.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Agendus.Professional.v8.03.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\AgendusProfessional_901-Cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\agendus_keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Cartes\HandMap.v4.6.9.PalmOS.Keygen.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Cartes\HandMap.v4.7.1.PalmOS.Cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\LauncherX.1.02-cracked.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\PalmaryClock.v2.3.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\Resco.Photo.Viewer.v1.80.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\SilverScreen_v3.1.3_PalmOS_CRACKED.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\TealAuto.v1.52.PalmOS.Cracked.REPACK-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\TealMaster.Plus.v2.18.PalmOS.Cracked-CSCPDA.zip
D:\Documents de Pascal\bibli Palm\programmes Palm\Utilitaires\ZLauncher.v4.10.PalmOS.Cracked-TSRH.zip
D:\Documents de Pascal\FS 2004\Utilitaires\Flight Simulator 2004 - Scenery Lago Enhancer Keygen(1).rar
D:\Documents de Pascal\Sudoku\Astraware.Sudoku.v1.00.PalmOS5.Cracked-CSCPDA.rar
D:\Documents de Pascal\Sudoku\Palm - Top.SuDoKu.v2.0.PalmOS.Cracked-HSpda.zip
D:\Documents de Pascal\Sudoku\Sudoku.Addict.v1.03.PalmOS.Cracked-CSCPDA.rar
D:\Documents de Pascal\Sudoku\Sudoku.Master.v1.2.PalmOS.Cracked-CSCPDA.rar
D:\Documents de Pascal\Sudoku\Top Sudoku v2.61 Palmos Cracked-Hspda.rar
D:\Documents de Pascal\Sudoku\TopSuDoKu.v2.63.PalmOs.Cracked.zip
~ Files: Scanned in 03mn 40s
---\\ Recherche particuli�re � la racine du syst�me (SPRF) (O84)
[MD5.6A6CE9A0410A29061FCF6CAD8DE0387C] [SPRF][16/09/2013] (...) -- C:\Documents and Settings\Admin\Bureau\adwcleaner.exe [1039554]
[MD5.98F2272A7D1BA8E3155FBEA167BCC613] [SPRF][02/12/1999] (...) -- C:\Program Files\xcacls.exe [91648]
[MD5.55C2B47FFF94570CC2D83AAA626360B4] [SPRF][13/02/2009] (.Dictao SA - Module de signature AdSignerADP.) -- C:\WINDOWS\Downloaded Program Files\AdSignerADP.dll [413056]
[MD5.E5F4ECE0255B0434AB746463EEF9AB47] [SPRF][13/02/2009] (.Dictao SA - Module de v�rification de signature AdSignerADP.) -- C:\WINDOWS\Downloaded Program Files\AdVerifierADP.dll [273792]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\bdcore.dll [32]
[MD5.A57234A9295B026C13FBF81B729FAFA6] [SPRF][01/03/2005] (...) -- C:\WINDOWS\Downloaded Program Files\bdupd.dll [118784]
[MD5.FE691848CED7C74B2A177319AC154A1F] [SPRF][01/03/2005] (...) -- C:\WINDOWS\Downloaded Program Files\ipsupd.dll [53248]
[MD5.18075B2C9F0F300BEE209744A8BEC353] [SPRF][07/12/2004] (...) -- C:\WINDOWS\Downloaded Program Files\libfn.dll [32]
[MD5.83167963FA7CE846389006723AEFEA9E] [SPRF][27/09/1999] (.3M - Post-it(R) Software Notes Plugin.) -- C:\WINDOWS\Downloaded Program Files\npcc.dll [624128]
[MD5.A1353BA0E465748A1A01EC1786FCB9B5] [SPRF][09/06/2004] (...) -- C:\WINDOWS\Downloaded Program Files\NPSWF32.dll [832728]
~ Files: 16 Legitimates Filtered in 00mn 01s
---\\ Recherche des packages WindowsInstaller (WIS) (O93) (NTFS)
[MD5.BE40E101FCCCF8FC03B05439A0C8D49E] [WIS][13/03/2010] (.UJIHARA Kazuya - iTextFront: Tool to concatenate and split PDF file..) -- C:\Windows\Installer\166fb6b.msi [110080]
[MD5.AF1C470A9D524A4C526B840FBCF06861] [WIS][13/04/2006] (.3M - TabletPCRT.) -- C:\Windows\Installer\1b38127.msi [144384]
[MD5.493EC21231670AE10A39BE44B9E5CBED] [WIS][05/12/2009] (.DataViz, Inc. - SmartList To Go.) -- C:\Windows\Installer\202db2b.msi [7543808]
[MD5.2D1A28DFEEA9931837E1F85BEEEB543B] [WIS][03/12/2005] (.Engelmann Media - CD/DVD recording software.) -- C:\Windows\Installer\28498.msi [538624]
[MD5.12368A9F5B88A72A4B9970491A9CDC80] [WIS][11/10/2009] (.Infor - IKEA HomePlanner.) -- C:\Windows\Installer\79b0d7.msi [20414976]
[MD5.60C4499E512A2423E02D72D47036C197] [WIS][02/04/2006] (.BSD Concept - La France � la loupe.) -- C:\Windows\Installer\823c9.msi [2997248]
[MD5.477A1801BE0AAC6C68FD78BFCF6B613A] [WIS][11/04/2009] (.Nikon - Blank Project Template.) -- C:\Windows\Installer\ae24de.msi [10608128]
[MD5.3A3EB3F27DABC170CB358D1252BF8046] [WIS][03/10/2009] (.Musicalis - J'apprends le piano.) -- C:\Windows\Installer\de092.msi [27212288]
~ WIS: 123 Legitimates Filtered in 00mn 20s
---\\ Etat g�n�ral des services not Microsoft (EGS) (SR=Running, SS=Stopped)
SS - | Demand 11/03/2006 72704 | (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
SR - | Auto 18/09/2009 169312 | (AdobeActiveFileMonitor8.0) . (.Adobe Systems Incorporated.) - C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
SS - | Demand 13/09/2013 257416 | (AdobeFlashPlayerUpdateSvc) . (.Adobe Systems Incorporated.) - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
SR - | Auto 10/09/2013 84024 | (AntiVirSchedulerService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\sched.exe
SR - | Auto 10/09/2013 108088 | (AntiVirService) . (.Avira Operations GmbH & Co. KG.) - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
SR - | Auto 03/05/2006 413696 | (Ati HotKey Poller) . (.ATI Technologies Inc..) - C:\WINDOWS\system32\Ati2evxx.exe
SS - | Auto 03/05/2006 520192 | (ATI Smart) . (...) - C:\WINDOWS\system32\ati2sgag.exe
SS - | Demand 14/04/2008 225280 | (dmadmin) . (.Microsoft Corp., Veritas Software.) - C:\WINDOWS\system32\dmadmin.exe
SS - | Demand 01/06/2011 867080 | (FLEXnet Licensing Service) . (.Acresso Software Inc..) - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
SS - | Demand 03/04/2005 69632 | (IDriverT) . (.Macrovision Corporation.) - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
SR - | Auto 07/07/2013 182184 | (JavaQuickStarterService) . (.Oracle Corporation.) - C:\Program Files\Java\jre7\bin\jqs.exe
SR - | Auto 06/02/2007 109344 | (LVPrcSrv) . (.Logitech Inc..) - c:\program files\fichiers communs\logishrd\lvmvfm\LVPrcSrv.exe
SS - | Auto 06/02/2007 105248 | (LVSrvLauncher) . (.Logitech Inc..) - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
SS - | Demand 25/11/2011 311928 | (maconfservice) . (.CybelSoft.) - C:\Program Files\ma-config.com\maconfservice.exe
SS - | Demand 18/08/2013 117656 | (MozillaMaintenance) . (.Mozilla Foundation.) - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
SR - | Auto 02/10/2012 216072 | (OAcat) . (.Emsisoft GmbH.) - C:\Program Files\Online Armor\OAcat.exe
SS - | Demand 20/10/2009 117264 | (rpcapd) . (.CACE Technologies, Inc..) - C:\Program Files\WinPcap\rpcapd.exe
SR - | Auto 17/04/2010 73960 | (SbieSvc) . (.tzuk.) - C:\Program Files\Sandboxie\SbieSvc.exe
SR - | Demand 18/04/2013 737616 | (ServiceLayer) . (.Nokia.) - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
SR - | Auto 02/10/2012 4463864 | (SvcOnlineArmor) . (.Emsisoft GmbH.) - C:\Program Files\Online Armor\oasrv.exe
~ Services: Scanned in 00mn 22s
---\\ Recherche d'infection sur le Master Boot Record (MBR)(O80)
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Run by Admin at 16/09/2013 15:46:58
device: opened successfully
user: MBR read successfully
Disk trace:
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x8A73D01C]<<
1 nt!IofCallDriver[0x804E3735] >> \Device\Harddisk0\DR0[0x8A6A6AB8]
\Driver\atapi[0x8A7607A8] >> IRP_MJ_INTERNAL_DEVICE_CONTROL >> 0x8A73D01C
kernel: MBR read successfully
detected disk devices:
detected hooks:
\Driver\atapi >> 0x8a73d01c
IoDeviceObjectType >> ParseProcedure >> 0x898cf1b0
\Device\Harddisk0\DR0 >> ParseProcedure >> 0x898cf1b0
user & kernel MBR OK
Warning: possible MBR rootkit infection !
~ MBR: 19 Legitimates Filtered in 00mn 03s
---\\ Recherche d'infection sur le Master Boot Record (MBRCheck)(O80)
Written by ad13, http://ad13.geekstog
Run by Admin at 16/09/2013 15:47:01
********* Dump file Name *********
C:\PhysicalDisk0_MBR.bin
~ MBR: Scanned in 00mn 06s
---\\ Scan Additionnel (O88)
Database Version : 12920 - (16/09/2013)
Cl�s trouv�es (Keys found) : 0
Valeurs trouv�es (Values found) : 0
Dossiers trouv�s (Folders found) : 0
Fichiers trouv�s (Files found) : 1
C:\Program Files\Yahoo!\Common\yinsthelper.dll =>Toolbar.Yahoo^
~ Additionnel Scan: 341134 Items scanned in 00mn 58s
---\\ R�capitulatif des d�tections trouv�es sur votre station
~ http://nicolascoolman.webs.com/apps/blog/show/30268689-toolbar-yahoo =>Toolbar.Yahoo
~ MSI: 1 link(s) detected in 00mn 58s
~ 1617 Legitimates filtered by white list
End of the scan (1911 lines in 13mn 21s)(48)