Sujet Précédent Sujet Suivant

Aida rapport hijackthis

infini12 Messages postés 6 Statut Membre -  
Fish66 Messages postés 18337 Statut Contributeur sécurité -
Bonjour,

Quelquu'n serait il compétent pour regarder ce rapport Hijackthis et me dire si je dois faire quelque chose?
Ma boite mail envoye un virus à mes contacts,e t j'ai eu plusieurs osucis de piratage de ocmptes FB, sfr...
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:06:27, on 12/02/2012
Platform: Unknown Windows (WinNT 6.01.3505 SP1)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Packard Bell\Software Suite SE\SoftSuiteSE.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files (x86)\Packard Bell\Software Suite SE\SEDevDetect.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\CANAL+ CANALSAT A LA DEMANDE.EXE
C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVH.EXE
C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ig
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://packardbell.msn.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://packardbell.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: PriceGong - {1631550F-191D-4826-B069-D9439253D926} - C:\Program Files (x86)\PriceGong\2.5.1\PriceGongIE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Hotkey Utility] C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [CANAL+ CANALSAT A LA DEMANDE] "C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\Launcher.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Software Suite SE] "C:\Program Files (x86)\Packard Bell\Software Suite SE\SoftSuiteSE.exe" /run
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
O4 - HKCU\..\Run: [Bubble Dock] "C:\Users\MOURA Family\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe" /winstartup
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Startup: OpenOffice.org 3.3.lnk = C:\Program Files (x86)\OpenOffice.org 3\program\quickstart.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O13 - Gopher Prefix:
O16 - DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} (PhotoboxPhotowaysUploader5 Control) - http://assets.photobox.com/assets/aurigma/ImageUploader5.cab?20110915070742
O16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} (BitDefender QuickScan Control) - http://quickscan.bitdefender.com/qsax/qsax.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CanalPlus.VOD - Canal+ Active - C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
A voir également:

11 réponses

Réponse 1 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Salut,

1/
Télécharge AdwCleaner (merci à Xplode)
Lance AdwCleaner
Clique sur le bouton [ Suppression ]
Patiente...
Poste le rapport qui apparait en fin de recherche.
Il se trouve également à C:\AdwCleaner[SX] (où X est un chiffre)

2/
Commence à changer tes mots de passes!

* Telecharge et install link officiel : >>>USBFix ICI<<<
ou : >>> ICI <<<

(!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir

* Double clique sur le raccourci UsbFix sur ton Bureau (clique droit avec la souris

:exécuter en tant qu'administrateur pour vista/seven), l'installation se fera

automatiquement

* Clique sur "Suppression"

* Laisse travailler l'outil

* A la fin, le rapport va s'afficher : poste le dans ta prochaine réponse (il est aussi sauvegardé a la racine du disque dur : C:\UsbFix.txt )

@+

_ _ _ Fish66_ _ _ I''"""""I_ _ membre contributeur sécurité_ _I''"""""I_ _ _
¤¤¤ Le meilleur remède pour tous les problèmes, c'est la patience.... ¤¤¤
0
Réponse 2 / 11
infini12 Messages postés 6 Statut Membre
 
Merci,
Voici le lien https://pjjoint.malekal.com/files.php?id=ZHPDiag_20120212_b10x6m12w11n15

et le rapport adv cleaner

# AdwCleaner v1.408 - Rapport créé le 12/02/2012 à 15:29:46
# Mis à jour le 29/01/2012 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : MOURA Family - MOURAFAMILY-PC (Administrateur)
# Exécuté depuis : C:\Users\MOURA Family\Downloads\adwcleaner.exe
# Option [Recherche]

***** [Services] *****

***** [Fichiers / Dossiers] *****

Dossier Présent : C:\Users\MOURA Family\AppData\Local\Conduit
Dossier Présent : C:\Users\MOURA Family\AppData\LocalLow\Conduit
Dossier Présent : C:\Users\MOURA Family\AppData\LocalLow\PriceGong
Dossier Présent : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong
Dossier Présent : C:\Program Files (x86)\PriceGong

***** [Registre] *****

[*] Clé Présente : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Clé Présente : HKCU\Software\Conduit
Clé Présente : HKCU\Software\SweetIm
Clé Présente : HKCU\Software\AppDataLow\Software\PriceGong
Clé Présente : HKLM\SOFTWARE\Conduit
Clé Présente : HKLM\SOFTWARE\Iminent
Clé Présente : HKLM\SOFTWARE\SweetIM
Clé Présente : HKLM\SOFTWARE\Classes\Conduit.Engine
Clé Présente : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO
Clé Présente : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO.1
Clé Présente : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl
Clé Présente : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl.1
Clé Présente : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Clé Présente : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Clé Présente : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\SoftwareUpdate.exe
Clé Présente : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{1631550F-191D-4826-B069-D9439253D926}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Clé Présente : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Clé Présente : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4
Clé Présente : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{8B3372D0-09F0-41A5-8D9B-134E148672FB}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Clé Présente : HKLM\SOFTWARE\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8856F961-340A-11D0-A96B-00C04FD705A2}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1631550F-191D-4826-B069-D9439253D926}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Clé Présente : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Clé Présente : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP

***** [Registre (x64)] *****

Clé Présente : HKCU\Software\Conduit
Clé Présente : HKCU\Software\SweetIm
Clé Présente : HKCU\Software\AppDataLow\Software\PriceGong
Clé Présente : HKLM\SOFTWARE\Classes\Conduit.Engine
Clé Présente : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO
Clé Présente : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO.1
Clé Présente : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl
Clé Présente : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl.1
Clé Présente : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Clé Présente : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Clé Présente : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\SoftwareUpdate.exe
Clé Présente : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Clé Présente : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Clé Présente : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4
Clé Présente : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Clé Présente : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{8B3372D0-09F0-41A5-8D9B-134E148672FB}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Clé Présente : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8856F961-340A-11D0-A96B-00C04FD705A2}
Clé Présente : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1631550F-191D-4826-B069-D9439253D926}

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Le registre ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [13730 octets] - [12/02/2012 15:29:46]

########## EOF - C:\AdwCleaner[R1].txt - [13859 octets] ##########
0
Réponse 3 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Re,
1/
Lance AdwCleaner
Clique sur le bouton [ Suppression ]
Patiente...
Poste le rapport qui apparait en fin de recherche.
Il se trouve également à C:\AdwCleaner[SX] (où X est un chiffre)

2/
Il manque le rapport USBFix comme expliqué : ici en 2/

@+
0
Réponse 4 / 11
infini12 Messages postés 6 Statut Membre
 
Voici donc cles 2 rapports:
# AdwCleaner v1.408 - Rapport créé le 12/02/2012 à 21:45:51
# Mis à jour le 29/01/2012 par Xplode
# Système d'exploitation : Windows 7 Home Premium Service Pack 1 (64 bits)
# Nom d'utilisateur : MOURA Family - MOURAFAMILY-PC (Administrateur)
# Exécuté depuis : C:\Users\MOURA Family\Downloads\adwcleaner.exe
# Option [Suppression]

***** [Services] *****

***** [Fichiers / Dossiers] *****

Dossier Supprimé : C:\Users\MOURA Family\AppData\Local\Conduit
Dossier Supprimé : C:\Users\MOURA Family\AppData\LocalLow\Conduit
Dossier Supprimé : C:\Users\MOURA Family\AppData\LocalLow\PriceGong
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PriceGong
Dossier Supprimé : C:\Program Files (x86)\PriceGong

***** [Registre] *****

[*] Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Clé Supprimée : HKCU\Software\Conduit
Clé Supprimée : HKCU\Software\SweetIm
Clé Supprimée : HKCU\Software\AppDataLow\Software\PriceGong
Clé Supprimée : HKLM\SOFTWARE\Conduit
Clé Supprimée : HKLM\SOFTWARE\Iminent
Clé Supprimée : HKLM\SOFTWARE\SweetIM
Clé Supprimée : HKLM\SOFTWARE\Classes\Conduit.Engine
Clé Supprimée : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO
Clé Supprimée : HKLM\SOFTWARE\Classes\PriceFactorIE.PriceGongBHO.1
Clé Supprimée : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl
Clé Supprimée : HKLM\SOFTWARE\Classes\PriceGongIE.PriceGongCtrl.1
Clé Supprimée : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Clé Supprimée : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\PriceGongIE.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\SoftwareUpdate.exe
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{835315FC-1BF6-4CA9-80CD-F6C158D40692}
Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{1631550F-191D-4826-B069-D9439253D926}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{D2A2595C-4FE4-4315-AA9B-19DBD6271B71}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\2796BAE63F1801E277261BA0D77770028F20EEE4
Clé Supprimée : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\DE28F4A4FFE5B92FA3C503D1A349A7F9962A8212
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{8B3372D0-09F0-41A5-8D9B-134E148672FB}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\bkomkajifikmkfnjgphkjcfeepbnojok
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1631550F-191D-4826-B069-D9439253D926}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8856F961-340A-11D0-A96B-00C04FD705A2}
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{1631550F-191D-4826-B069-D9439253D926}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48d2-9061-8BBD4899EB08}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PriceGong
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP

***** [Registre (x64)] *****

Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}

***** [Navigateurs] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Le registre ne contient aucune entrée illégitime.

*************************

AdwCleaner[R1].txt - [13725 octets] - [12/02/2012 15:29:46]
AdwCleaner[S1].txt - [12022 octets] - [12/02/2012 21:45:51]

*************************

Dossier Temporaire : 12 dossier(s) et 21 fichier(s) supprimés

########## EOF - C:\AdwCleaner[S1].txt - [12245 octets] ##########

et

############################## | UsbFix V 7.081 | [Suppression]

Utilisateur: MOURA Family (Administrateur) # MOURAFAMILY-PC
Mis à jour le 05/02/2012 par El Desaparecido
Lancé à 21:56:39 | 12/02/2012

Site Web: https://www.sosvirus.net/
Fichier suspect ? : http://eldesaparecido.com/upload.html
Contact: contact@eldesaparecido.com

PC: Packard Bell (imedia S3840) (x64-based PC) # Desktop Computer
CPU: Intel(R) Core(TM) i5-2310 CPU @ 2.90GHz (2901)
RAM -> [ Total : 6126 | Free : 4195 ]
BIOS: BIOS Date: 05/06/11 15:13:57 Ver: 04.06.04
BOOT: Normal boot

OS: Microsoft Windows 7 Édition Familiale Premium (6.1.7601 64-Bit) # Service Pack 1
WB: Windows Internet Explorer 9.0.8112.16421

SC: Security Center Service [ Enabled ]
WU: Windows Update Service [ Enabled ]
AV: avast! Antivirus [ (!) Disabled | Updated ]
FW: Windows FireWall Service [ Enabled ]

C:\ (%systemdrive%) -> Disque fixe # 454 Go (378 Go libre(s) - 83%) [Packard Bell] # NTFS
D:\ -> Disque fixe # 454 Go (454 Go libre(s) - 100%) [DATA] # NTFS
E:\ -> CD-ROM
J:\ -> Disque fixe # 466 Go (134 Go libre(s) - 29%) [LaCie] # NTFS

################## | Processus Actif |

C:\Windows\system32\csrss.exe (504)
C:\Windows\system32\wininit.exe (564)
C:\Windows\system32\csrss.exe (588)
C:\Windows\system32\services.exe (624)
C:\Windows\system32\lsass.exe (648)
C:\Windows\system32\lsm.exe (656)
C:\Windows\system32\winlogon.exe (712)
C:\Windows\system32\svchost.exe (800)
C:\Windows\system32\nvvsvc.exe (888)
C:\Windows\system32\svchost.exe (928)
C:\Windows\System32\svchost.exe (120)
C:\Windows\System32\svchost.exe (396)
C:\Windows\system32\svchost.exe (616)
C:\Windows\system32\svchost.exe (1088)
C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (1188)
C:\Windows\system32\nvvsvc.exe (1200)
C:\Windows\system32\svchost.exe (1260)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1320)
C:\Windows\system32\Dwm.exe (1500)
C:\Windows\Explorer.EXE (1508)
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (1796)
C:\Windows\System32\spoolsv.exe (1480)
C:\Windows\system32\taskhost.exe (1424)
C:\Windows\system32\svchost.exe (2032)
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (2168)
c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe (2188)
C:\Program Files (x86)\Packard Bell\Software Suite SE\SoftSuiteSE.exe (2220)
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (2228)
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (2236)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (2272)
C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe (2340)
C:\Program Files\AVAST Software\Avast\AvastUI.exe (2364)
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (2412)
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2420)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (2496)
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (2516)
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe (2568)
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (2696)
C:\Program Files\Bonjour\mDNSResponder.exe (2852)
C:\Program Files (x86)\Packard Bell\Software Suite SE\SEDevDetect.exe (2860)
C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe (2900)
C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin (2972)
C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe (2984)
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (3036)
C:\Program Files (x86)\iTunes\iTunesHelper.exe (3044)
C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\CANAL+ CANALSAT A LA DEMANDE.EXE (2088)
C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe (2148)
C:\Windows\System32\svchost.exe (2720)
C:\Windows\System32\svchost.exe (2052)
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (3252)
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (3316)
C:\Windows\system32\svchost.exe (3344)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (3376)
C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (3408)
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (3568)
C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (3876)
C:\Program Files\iPod\bin\iPodService.exe (4044)
C:\Windows\system32\SearchIndexer.exe (4088)
C:\Windows\system32\svchost.exe (4140)
C:\Windows\system32\svchost.exe (4292)
C:\Windows\system32\WUDFHost.exe (4344)
C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (5044)
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (4640)
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (2024)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (2552)
C:\Program Files (x86)\Nero\Update\NASvc.exe (4796)
C:\Windows\System32\svchost.exe (2548)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (3752)
C:\Program Files (x86)\Internet Explorer\iexplore.exe (512)
C:\Program Files (x86)\Internet Explorer\iexplore.exe (1016)
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe (2556)
C:\Windows\system32\wbem\wmiprvse.exe (5644)
C:\Program Files (x86)\Internet Explorer\iexplore.exe (5908)
C:\Windows\system32\wbem\wmiprvse.exe (3032)
C:\UsbFix\Go.exe (2288)
C:\Windows\System32\svchost.exe (5576)

################## | Processus Stoppés |

Stoppé! C:\Windows\system32\nvvsvc.exe (888)
Stoppé! C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe (1188)
Stoppé! C:\Windows\system32\nvvsvc.exe (1200)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastSvc.exe (1320)
Stoppé! C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (1796)
Stoppé! C:\Windows\System32\spoolsv.exe (1480)
Stoppé! C:\Windows\system32\taskhost.exe (1424)
Stoppé! C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (2168)
Stoppé! c:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe (2188)
Stoppé! C:\Program Files (x86)\Packard Bell\Software Suite SE\SoftSuiteSE.exe (2220)
Stoppé! C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe (2228)
Stoppé! C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe (2236)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (2272)
Stoppé! C:\Program Files (x86)\Packard Bell\Hotkey Utility\HotkeyUtility.exe (2340)
Stoppé! C:\Program Files\AVAST Software\Avast\AvastUI.exe (2364)
Stoppé! C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (2412)
Stoppé! C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (2420)
Stoppé! C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (2496)
Stoppé! C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac (2516)
Stoppé! C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe (2568)
Stoppé! C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (2696)
Stoppé! C:\Program Files\Bonjour\mDNSResponder.exe (2852)
Stoppé! C:\Program Files (x86)\Packard Bell\Software Suite SE\SEDevDetect.exe (2860)
Stoppé! C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\VOD\CanalPlus.VOD.exe (2900)
Stoppé! C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin (2972)
Stoppé! C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe (2984)
Stoppé! C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (3036)
Stoppé! C:\Program Files (x86)\iTunes\iTunesHelper.exe (3044)
Stoppé! C:\Program Files (x86)\Canal+\CANAL+ CANALSAT A LA DEMANDE\CANAL+ CANALSAT A LA DEMANDE.EXE (2088)
Stoppé! C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe (2148)
Stoppé! C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe (3252)
Stoppé! C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (3316)
Stoppé! C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (3376)
Stoppé! C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe (3408)
Stoppé! C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE (3876)
Stoppé! C:\Program Files\iPod\bin\iPodService.exe (4044)
Stoppé! C:\Windows\system32\SearchIndexer.exe (4088)
Stoppé! C:\Windows\system32\WUDFHost.exe (4344)
Stoppé! C:\Program Files (x86)\Windows Live\Mail\wlmail.exe (5044)
Stoppé! C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (4640)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (2024)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (2552)
Stoppé! C:\Program Files (x86)\Nero\Update\NASvc.exe (4796)
Stoppé! C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (3752)
Stoppé! C:\Program Files (x86)\Internet Explorer\iexplore.exe (512)
Stoppé! C:\Program Files (x86)\Internet Explorer\iexplore.exe (1016)
Stoppé! C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe (2556)
Stoppé! C:\Program Files (x86)\Internet Explorer\iexplore.exe (5908)

################## | Éléments infectieux |

Supprimé! C:\$RECYCLE.BIN\S-1-5-21-2760883501-2330144951-568203475-1000
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-2760883501-2330144951-568203475-500
Supprimé! C:\$RECYCLE.BIN\S-1-5-21-3853251313-2893602899-2764856139-500
Supprimé! D:\$RECYCLE.BIN\S-1-5-21-2760883501-2330144951-568203475-1000

(!) Fichiers temporaires supprimés.

################## | Registre |

################## | Mountpoints2 |

################## | Listing |

[12/02/2012 - 21:57:35 | SHD ] C:\$Recycle.Bin
[12/02/2012 - 15:30:01 | N | 13725] C:\AdwCleaner[R1].txt
[12/02/2012 - 21:45:57 | N | 12159] C:\AdwCleaner[S1].txt
[25/06/2011 - 19:33:02 | D ] C:\book
[15/03/2011 - 10:01:46 | N | 8192] C:\BOOTSECT.BAK
[12/02/2012 - 14:41:08 | D ] C:\Config.Msi
[14/07/2009 - 06:08:56 | SHD ] C:\Documents and Settings
[12/02/2012 - 21:46:42 | ASH | 4817686528] C:\hiberfil.sys
[15/03/2011 - 09:09:18 | D ] C:\Intel
[18/09/2011 - 17:52:31 | RHD ] C:\MSOCache
[06/09/2011 - 17:48:44 | D ] C:\OEM
[12/02/2012 - 21:46:45 | ASH | 6423584768] C:\pagefile.sys
[14/07/2009 - 04:20:08 | D ] C:\PerfLogs
[12/02/2012 - 13:44:24 | D ] C:\Program Files
[12/02/2012 - 21:45:56 | D ] C:\Program Files (x86)
[12/02/2012 - 10:12:13 | HD ] C:\ProgramData
[06/09/2011 - 17:46:46 | SHD ] C:\Recovery
[12/02/2012 - 13:58:59 | SHD ] C:\System Volume Information
[12/02/2012 - 21:57:35 | D ] C:\UsbFix
[12/02/2012 - 21:56:48 | A | 10945] C:\UsbFix.txt
[06/09/2011 - 17:47:00 | D ] C:\Users
[12/02/2012 - 14:41:16 | D ] C:\Windows
[12/02/2012 - 15:35:59 | D ] C:\ZHP
[12/02/2012 - 21:57:35 | SHD ] D:\$RECYCLE.BIN
[07/11/2007 - 07:00:40 | N | 17734] D:\eula.1028.txt
[07/11/2007 - 07:00:40 | N | 17734] D:\eula.1031.txt
[07/11/2007 - 07:00:40 | N | 10134] D:\eula.1033.txt
[07/11/2007 - 07:00:40 | N | 17734] D:\eula.1036.txt
[07/11/2007 - 07:00:40 | N | 17734] D:\eula.1040.txt
[07/11/2007 - 07:00:40 | N | 118] D:\eula.1041.txt
[07/11/2007 - 07:00:40 | N | 17734] D:\eula.1042.txt
[07/11/2007 - 07:00:40 | N | 17734] D:\eula.2052.txt
[07/11/2007 - 07:00:40 | N | 17734] D:\eula.3082.txt
[07/11/2007 - 07:00:40 | N | 1110] D:\globdata.ini
[07/11/2007 - 07:03:18 | N | 562688] D:\install.exe
[07/11/2007 - 07:00:40 | N | 843] D:\install.ini
[07/11/2007 - 07:03:18 | N | 76304] D:\install.res.1028.dll
[07/11/2007 - 07:03:18 | N | 96272] D:\install.res.1031.dll
[07/11/2007 - 07:03:18 | N | 91152] D:\install.res.1033.dll
[07/11/2007 - 07:03:18 | N | 97296] D:\install.res.1036.dll
[07/11/2007 - 07:03:18 | N | 95248] D:\install.res.1040.dll
[07/11/2007 - 07:03:18 | N | 81424] D:\install.res.1041.dll
[07/11/2007 - 07:03:18 | N | 79888] D:\install.res.1042.dll
[07/11/2007 - 07:03:18 | N | 75792] D:\install.res.2052.dll
[07/11/2007 - 07:03:18 | N | 96272] D:\install.res.3082.dll
[06/09/2011 - 20:12:53 | SHD ] D:\System Volume Information
[07/11/2007 - 07:00:40 | N | 5686] D:\vcredist.bmp
[07/11/2007 - 07:09:22 | N | 1442522] D:\VC_RED.cab
[07/11/2007 - 07:12:28 | N | 232960] D:\VC_RED.MSI

################## | Vaccin |

C:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)
D:\Autorun.inf -> Vaccin créé par UsbFix (El Desaparecido)

################## | Upload |

Veuillez envoyer le fichier: C:\UsbFix_Upload_Me_MOURAFAMILY-PC.zip
http://eldesaparecido.com/upload.html
Merci de votre contribution.

################## | E.O.F |
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Bonjour,

* Télécharge de AD-Remover sur ton Bureau.
http://security-domain.be/download/AD-Remover.html

/!\ Ferme toutes applications en cours /!\

- Double sur l'icône Ad-remover située sur ton Bureau.
-Pour vista/Seven : clique avec le bouton droit de la souris et choisis « exécuter en tant qu'administrateur »
- Sur la page, clique sur le bouton « chercher »
- Confirme lancement du scan
- Laisse travailler l'outil.
- Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(Scan/clean).Txt)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour c

@+
0
Réponse 6 / 11
infini12 Messages postés 6 Statut Membre
 
Merci de votre réponse voila le rapport
======= RAPPORT D'AD-REMOVER 2.0.0.2,G | UNIQUEMENT XP/VISTA/7 =======

Mis à jour par TeamXscript le 12/04/11
Contact: AdRemover[DOT]contact[AT]gmail[DOT]com
Site web: http://www.teamxscript.org

C:\Program Files (x86)\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 18:18:04 le 13/02/2012, Mode normal

Microsoft Windows 7 Édition Familiale Premium Service Pack 1 (X64)
MOURA Family@MOURAFAMILY-PC (Packard Bell imedia S3840)

============== RECHERCHE ==============

============== SCAN ADDITIONNEL ==============

**** Internet Explorer Version [9.0.8112.16421] ****

HKCU_Main|Default_Page_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKCU_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU_Main|Search bar - hxxp://go.microsoft.com/fwlink/?linkid=54896
HKCU_Main|Start Page - hxxp://google.fr/
HKLM_Main|Default_Page_URL - hxxp://go.microsoft.com/fwlink/?LinkId=54896
HKLM_Main|Default_Search_URL - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Search bar - hxxp://search.msn.com/spbasic.htm
HKLM_Main|Search Page - hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM_Main|Start Page - hxxp://fr.msn.com/
HKCU_Toolbar\WebBrowser|{BA14329E-9550-4989-B3F2-9732E92D17CC} (x)
HKLM_Toolbar|{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)
HKCU_ElevationPolicy\{4169044D-6BA4-4661-B7D6-E29274F1F458} - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\wtapp_ProtocolHandler.exe (WildTangent, Inc.)
HKLM_ElevationPolicy\{07d873dc-b9b9-44f5-af0b-fb59fa54fb7a} - C:\Windows\SysWOW64\wpcer.exe (x)
HKLM_ElevationPolicy\{08FF730A-494F-4cba-AA0B-E4F1D44715F9} - C:\Program Files (x86)\Norton Internet Security\Engine\18.1.0.37\symerr.exe (x)
HKLM_ElevationPolicy\{0a402d70-1f10-4ae7-bec9-286a98240695} - C:\Windows\SysWOW64\winfxdocobj.exe (x)
HKLM_ElevationPolicy\{50A6102E-D757-409e-97B7-6EA4EEEA5BC3} - C:\Program Files (x86)\Common Files\Apple\Internet Services\BookmarkDAV_client.exe (Apple Inc.)
HKLM_ElevationPolicy\{70f641fd-9ffc-4d5b-a4dc-962af4ed7999} - C:\Program Files (x86)\Internet Explorer\iedw.exe (x)
HKLM_ElevationPolicy\{B43A0C1E-B63F-4691-B68F-CD807A45DA01} - C:\Windows\system32\TSWbPrxy.exe (x)
BHO\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - "avast! WebRep" (C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll)

========================================

C:\Program Files (x86)\Ad-Remover\Quarantine: 0 Fichier(s)
C:\Program Files (x86)\Ad-Remover\Backup: 15 Fichier(s)

C:\Ad-Report-CLEAN[1].txt - 13/02/2012 13:44:20 (2885 Octet(s))
C:\Ad-Report-SCAN[1].txt - 13/02/2012 18:19:02 (2665 Octet(s))

Fin à: 18:19:30, 13/02/2012

============== E.O.F ==============
0
Réponse 7 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Salut,
1/
Lance Ad-remover puis clique sur "Désinstaller"

2/
Nous allons effectuer un diagnostic plus profond de ton PC:
*Télécharge ZHPDiag sur ton bureau :

https://www.zebulon.fr/telechargements/securite/systeme/zhpdiag.html
ou :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html

* Laisse toi guider lors de l'installation,coche "Ajouter une icône sur le bureau" et décoche la case "Exécuter ZHPDiag"

/!\Utilisateur de Vista et Seven : Clique droit sur le logo de ZHPdiag, « exécuter en tant qu'Administrateur »

* Clique sur l'icône représentant une loupe (« Lancer le diagnostic »)
* Enregistre le rapport sur ton Bureau à l'aide de l'icône représentant une disquette
* Héberge le rapport ZHPDiag.txt sur un des sites ci dessous, puis copie/colle le lien fourni dans ta prochaine réponse sur le forum : http://pjjoint.malekal.com/
Si indisponible, tu peux essayer avec l'un de ces liens:
https://www.terafiles.net/
https://www.casimages.com/

* Tuto zhpdiag :
http://www.premiumorange.com/zeb-help-process/zhpdiag.html

Hébergement de rapport sur pjjoint.malekal.com

Rends toi sur pjjoint.malekal.com
* Clique sur le bouton Parcourir
* Sélectionne le fichier que tu veux héberger et clique sur Ouvrir
* Clique sur le bouton Envoyer
* Un message de confirmation s'affiche (L'upload a réussi ! - Le lien à transmettre à vos correspondant pour visualiser le fichier est : https://pjjoint.malekal.com/files.php?id=df5ea299241015

* Copie le lien dans ta prochaine réponse.

@+
0
Réponse 8 / 11
infini12 Messages postés 6 Statut Membre
 
Merci pour votre aide. Je nee comprend pas, j'ai déjà posté ce rapport hier, mais le revoilà: https://www.casimages.com/f.php?f=120213094642892465.Txt

Bon courage
0
Réponse 9 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Bonjour,

1/ 
Je nee comprend pas, j'ai déjà posté ce rapport hier

Pour voir ce qui nous reste à supprimer :-)
=======================================

Copie tout le texte présent ci-dessous ( tu le selectionnes avec ta souris / Clique droit dessus et choisis "copier" ou fait Ctrl+C ) 

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer] NoActiveDesktopChanges: Modified     
O4 - HKCU\..\Run: [Bubble Dock] C:\Users\MOURA Family\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)    => Infection PUP (Adware.SPointer)
O4 - HKUS\S-1-5-21-2760883501-2330144951-568203475-1000\..\Run: [Bubble Dock] C:\Users\MOURA Family\AppData\Roaming\Nosibay\Bubble Dock\LBubble Dock.exe (.not file.)    => Infection PUP (Adware.SPointer)
O43 - CFD: 12/02/2012 - 10:07:12 - [0] ----D- C:\Users\MOURA Family\AppData\Roaming\Nosibay    => Infection PUP (Adware.SPointer)
O43 - CFD: 11/02/2012 - 18:57:56 - [0] ----D- C:\Program Files (x86)\Nosibay    => Infection PUP (Adware.SPointer)
O43 - CFD: 16/11/2011 - 20:28:08 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{00033777-3E1F-4E5C-BCB4-5A1A9785C5D8}
O43 - CFD: 12/12/2011 - 20:37:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{001802B8-211F-4F82-94B3-1FA62A210DED}
O43 - CFD: 01/12/2011 - 18:24:46 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{011219C1-390B-4DC9-8484-6F7CF01BA53F}
O43 - CFD: 19/01/2012 - 21:09:12 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{014C6713-547B-4BA6-821F-EC42A7683B6B}
O43 - CFD: 03/12/2011 - 07:53:56 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{018E68EE-7621-4A9A-859C-7F69F292A96F}
O43 - CFD: 06/01/2012 - 22:25:08 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{01B45403-C15C-4978-9A7B-9C86317F68D7}
O43 - CFD: 11/12/2011 - 21:03:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{024BA60D-ED86-4DCE-A99D-2D897664D725}
O43 - CFD: 14/10/2011 - 05:23:16 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{028CA2A5-4175-47C5-B745-34F37337BA8A}
O43 - CFD: 02/10/2011 - 21:09:12 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{02A3F388-83EC-4B12-A2F9-00A82264A8FD}
O43 - CFD: 19/12/2011 - 22:29:44 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{03786FE3-C1D8-4F65-B6BB-183F9AB0D75A}
O43 - CFD: 10/09/2011 - 16:12:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{040E5E05-7013-4622-A227-95DA1A7B0E23}
O43 - CFD: 19/11/2011 - 18:36:52 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{067DCCF0-ACAC-4B98-9B20-B76C1E852251}
O43 - CFD: 13/12/2011 - 20:37:26 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{074F1659-D590-4D26-8368-B1FCBE5C9333}
O43 - CFD: 15/01/2012 - 21:06:10 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{07D49194-4112-4783-9678-0AFE2D33C947}
O43 - CFD: 19/09/2011 - 08:11:44 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{084651B2-ABFF-42C3-ADE7-631C64534DD1}
O43 - CFD: 22/01/2012 - 09:29:26 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{095B6B29-5FA7-4C68-9A6F-FED678EFE5A9}
O43 - CFD: 09/01/2012 - 18:38:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{0961AD7A-F064-4E69-B8E6-99A9BD4DBD87}
O43 - CFD: 25/10/2011 - 20:10:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{0C571C60-78F3-4FA9-85AB-A27A01AACC09}
O43 - CFD: 04/02/2012 - 10:52:16 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{0E8F616E-48DC-4EA9-ABD6-90C41371C9FE}
O43 - CFD: 09/10/2011 - 07:14:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{0FAB372E-19AA-4813-93EF-9360C6D54061}
O43 - CFD: 22/11/2011 - 20:52:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{106F55FA-FFB4-45BB-961C-5948F090ABDD}
O43 - CFD: 12/02/2012 - 10:28:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{10A69CFE-3301-4B23-A7F9-53EE7643B25B}
O43 - CFD: 13/02/2012 - 13:33:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{111311E7-1BEC-4D8F-B3C1-443F8DAB49E9}
O43 - CFD: 27/11/2011 - 20:45:02 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{112229F5-F0F3-4062-A951-D9B6D5B3E5BA}
O43 - CFD: 20/12/2011 - 21:02:08 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{115AA9F2-20EE-461B-8D9F-9F61FBCB4DDA}
O43 - CFD: 20/10/2011 - 20:16:38 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{11CF9886-2631-443F-884D-1AA0112C4A2F}
O43 - CFD: 19/10/2011 - 20:40:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{130D7539-8A26-4B83-8467-EF0B43986A68}
O43 - CFD: 23/10/2011 - 17:53:08 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{138E652D-F1B4-4929-A598-5A5D5F76CC0B}
O43 - CFD: 14/01/2012 - 12:31:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{1431F8D0-F863-48F7-B1CF-9F4509F831E6}
O43 - CFD: 12/09/2011 - 17:29:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{144A728D-9F17-45FF-A7B5-A9EFB05A7D61}
O43 - CFD: 06/02/2012 - 20:53:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{15CA655F-D8DB-4B32-9A1E-04B80FD2BB19}
O43 - CFD: 15/10/2011 - 07:25:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{1663589C-3055-4783-B5F7-BA04278826DA}
O43 - CFD: 11/01/2012 - 20:31:54 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{16FE7F2A-E153-415B-BFD1-081799DE6279}
O43 - CFD: 20/11/2011 - 09:49:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{1803EBF7-0853-4CDE-A8CC-AD058E616560}
O43 - CFD: 08/10/2011 - 06:34:56 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{18857597-4995-4D4E-A417-4A2171625604}
O43 - CFD: 18/11/2011 - 16:19:54 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{18868161-9980-4AAB-BB3A-B7CADD41D425}
O43 - CFD: 08/12/2011 - 20:36:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{18F7635C-F34C-46DB-8E00-87AAF65A4BF7}
O43 - CFD: 17/11/2011 - 20:39:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{1960A06B-A1D8-44BB-B639-72D5838BE854}
O43 - CFD: 15/11/2011 - 18:51:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{19697959-6E17-4728-895C-B757212E2056}
O43 - CFD: 11/09/2011 - 08:22:56 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{19D05E66-BBBF-44A7-92ED-81A555D0291E}
O43 - CFD: 13/11/2011 - 21:13:54 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{1A120149-F19C-4F06-9E1E-CE37593A4E80}
O43 - CFD: 04/02/2012 - 22:53:12 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{1BF56D6D-0FE8-41E0-83F9-B022510AA887}
O43 - CFD: 10/12/2011 - 18:56:28 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{1C8BC0D2-F9B5-4984-BCD1-143132BB6366}
O43 - CFD: 12/01/2012 - 18:41:44 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{1F5FB12B-E918-4D62-BFD6-D1B925DB24FF}
O43 - CFD: 25/09/2011 - 21:13:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{1FBDB236-03EF-4C6C-89AE-03D349520608}
O43 - CFD: 08/02/2012 - 06:58:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{20DAFED6-39DD-4E39-89A3-1E892DCBAEBA}
O43 - CFD: 09/09/2011 - 21:09:06 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{23535C23-F917-445B-9601-42F085DEE5EF}
O43 - CFD: 12/01/2012 - 18:41:54 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{23F6A62D-E37D-4236-AF44-5C8AF21F5E2E}
O43 - CFD: 16/10/2011 - 09:42:06 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{256D8CB7-ADCF-47D8-BA6F-DF2CC6030C23}
O43 - CFD: 20/01/2012 - 18:46:10 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{2703BD28-2934-42E2-9AAC-C46E07DFDB28}
O43 - CFD: 06/01/2012 - 22:25:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{27976B35-1EF7-440E-B9B0-AADE2A6488A0}
O43 - CFD: 27/11/2011 - 20:44:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{27B9B3AF-9BF0-4BB2-AF40-DCA4F275472B}
O43 - CFD: 21/12/2011 - 21:21:10 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{2A5E6D96-81CB-41A7-AF99-DCE3F7FA2794}
O43 - CFD: 29/11/2011 - 20:44:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{2B083787-F750-409A-B360-B9CE6E5E2884}
O43 - CFD: 06/09/2011 - 21:00:46 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{2CE3A269-B24F-416C-9738-0F842CB83F4F}
O43 - CFD: 25/10/2011 - 20:10:30 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{2D7D41FF-F3DF-4590-8FC8-AF0D90122048}
O43 - CFD: 10/02/2012 - 18:07:28 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{2EE335F0-3D66-4DC9-9002-388FC630DADB}
O43 - CFD: 09/02/2012 - 20:47:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{2FCB608F-C952-4530-9104-427FE28AF89D}
O43 - CFD: 07/12/2011 - 20:52:44 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{2FCEA41C-8BA1-47A1-96C9-F8FA66ACE65D}
O43 - CFD: 02/02/2012 - 20:57:02 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{2FDA3445-EC39-46BC-BAAF-20D315D84B62}
O43 - CFD: 24/11/2011 - 21:00:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{2FE0DE3C-EFB3-4493-9579-7B413FE9149F}
O43 - CFD: 10/09/2011 - 16:12:44 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{303FD837-414A-4AD4-9C97-125F8D5BDD0E}
O43 - CFD: 07/11/2011 - 16:30:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{30DCDFAE-7D74-4FA6-B309-EE3EE8F318AB}
O43 - CFD: 14/12/2011 - 17:34:46 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{31E199C9-96F2-4076-A21C-BB71BF2CDEBF}
O43 - CFD: 22/11/2011 - 20:52:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{3215CA7D-BE75-438F-B9C6-8F2DD5699B0C}
O43 - CFD: 24/12/2011 - 16:27:14 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{33BA7CA4-EE44-44E5-A282-3A257DEAE950}
O43 - CFD: 29/09/2011 - 20:06:46 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{3506D844-7055-45B2-B42B-D80C960BF1B1}
O43 - CFD: 01/02/2012 - 15:30:12 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{35C96A22-2190-4BC3-8719-5D5652977D04}
O43 - CFD: 25/01/2012 - 21:03:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{362E0E3A-BF53-4C4D-A0AD-9F00691B06EE}
O43 - CFD: 07/11/2011 - 16:30:54 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{37345A38-FDF9-4DCD-B774-A4BCE128CDE9}
O43 - CFD: 30/01/2012 - 22:07:30 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{3740E012-B864-4E84-9CD9-7D07BB858285}
O43 - CFD: 24/01/2012 - 21:37:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{38534E29-151A-45D3-8F02-4D7D00061B5E}
O43 - CFD: 11/02/2012 - 17:08:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{38A74B4F-9C11-4D13-9D8B-5C25EA75065F}
O43 - CFD: 18/12/2011 - 14:36:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{38EAD783-18B5-4F8B-B1D5-C581C2212B3B}
O43 - CFD: 05/12/2011 - 18:23:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{3957B85F-4266-4C9E-91C9-EB5015E39307}
O43 - CFD: 11/09/2011 - 20:24:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{3BB66681-9D72-4D32-BA37-4E8B3326C382}
O43 - CFD: 03/11/2011 - 20:59:14 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{3C77850C-4204-4E67-85C2-11E8820EA8BD}
O43 - CFD: 18/01/2012 - 15:48:54 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{3D3A8E6B-FF2F-4BF5-A18A-00AE666A0AD3}
O43 - CFD: 16/11/2011 - 20:27:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{3DC1527D-12E8-4F01-B422-1F251DAB35D9}
O43 - CFD: 06/11/2011 - 07:07:24 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{3EBEBEA6-F281-401A-B1B9-415B04FFB67F}
O43 - CFD: 11/10/2011 - 17:32:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{3FDB3587-84A0-4170-9B73-3162B0271C80}
O43 - CFD: 27/11/2011 - 08:43:52 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{4021807C-4B19-4C53-8F05-3DDDA79CC900}
O43 - CFD: 01/10/2011 - 09:03:56 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{4156D9F1-29E1-4125-87B3-E68C49299F3D}
O43 - CFD: 04/12/2011 - 07:51:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{41898ACC-A6B0-4BA3-ABDD-BB334C0B9348}
O43 - CFD: 29/09/2011 - 20:06:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{424D3C8C-825C-4588-850C-B7006295F722}
O43 - CFD: 22/09/2011 - 21:34:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{43213A39-65EE-4508-AA3F-BD74A6C36404}
O43 - CFD: 29/01/2012 - 22:02:10 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{43278AF0-53CE-45D7-B76C-4ED048405299}
O43 - CFD: 21/01/2012 - 14:51:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{43F0C59F-528D-42C7-91B2-E9FB93DF0975}
O43 - CFD: 09/11/2011 - 21:30:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{467B9918-23DE-471B-A6EA-5D93BC3FC541}
O43 - CFD: 30/09/2011 - 09:11:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{48C1323A-186E-4986-9EC1-692B63CBCA15}
O43 - CFD: 29/11/2011 - 08:12:46 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{4B0496A6-1252-4BC3-83AF-3B675EF1581B}
O43 - CFD: 28/11/2011 - 18:40:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{4BD4BCC2-58AB-4D2D-82B5-3E62BE56F15F}
O43 - CFD: 06/02/2012 - 20:53:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{4C41CD30-9201-4D8A-AE63-98406D466511}
O43 - CFD: 23/10/2011 - 17:52:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{4C9062D4-B5E6-4C07-9065-E1EE75C70EEF}
O43 - CFD: 03/01/2012 - 13:49:06 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{4ECD4C5B-40C3-43A3-9530-B6AD7FF2F943}
O43 - CFD: 03/11/2011 - 20:59:08 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{4F385D56-8A94-4EE0-96BD-CAB3BF54785A}
O43 - CFD: 12/02/2012 - 22:38:24 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{4F3AC68C-F171-4C27-B3F5-9BF1422F5A45}
O43 - CFD: 29/11/2011 - 20:44:16 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{4F73DA57-093F-4B94-ADD2-E84E90304953}
O43 - CFD: 12/12/2011 - 20:37:16 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{50B7E14B-48CF-4CFF-B89E-53451695EB9C}
O43 - CFD: 30/11/2011 - 21:00:24 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5103C426-39F5-48F9-9C5B-0A54322EA5CB}
O43 - CFD: 20/01/2012 - 18:45:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{51CA13C1-220D-42A0-A01A-01ADE86752E7}
O43 - CFD: 16/01/2012 - 18:47:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{51D0D147-792B-439F-83C0-47B1A5EA37FA}
O43 - CFD: 23/01/2012 - 21:32:38 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5258ACA4-AFEB-4622-9028-779C919CC0E2}
O43 - CFD: 02/10/2011 - 09:08:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5303A082-8F6E-4E0D-9DB7-E0B77EB085D8}
O43 - CFD: 13/01/2012 - 06:43:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5310AF7D-9555-4F63-BE23-7FCEB0BB72F5}
O43 - CFD: 05/01/2012 - 21:05:06 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5454082E-5CF5-4518-9E4A-B5EFE12D3E89}
O43 - CFD: 15/01/2012 - 08:10:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5461D094-AE08-46AC-82BA-67C2BD04FEA4}
O43 - CFD: 15/10/2011 - 21:40:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{54AF7CD4-E76A-4191-B1E0-364F5EDB03FD}
O43 - CFD: 12/09/2011 - 17:29:20 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{54EC2454-0967-4345-8F96-D0E871C7FF8A}
O43 - CFD: 24/11/2011 - 06:08:38 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{55A297AC-6AD1-4DAB-8EA3-730F8E197DCD}
O43 - CFD: 17/11/2011 - 20:39:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{55E7ECA5-9B8E-474B-9EC1-4EBEAB0E0CEF}
O43 - CFD: 01/10/2011 - 21:05:24 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{58184C5D-A520-4822-86FC-940E375AAF45}
O43 - CFD: 09/12/2011 - 16:14:42 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5832CC07-70C3-4391-8957-115DBDB7AC4B}
O43 - CFD: 08/01/2012 - 11:22:42 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5A12DC68-9697-4B59-B492-CD70A89F7428}
O43 - CFD: 12/10/2011 - 18:07:30 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5B57947F-AAB7-418E-B80E-D335DB667AA0}
O43 - CFD: 25/09/2011 - 07:02:20 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5CC19B53-EB91-4D39-9DA8-2F2EFD6B9FA7}
O43 - CFD: 11/12/2011 - 21:03:30 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5EB6A9FA-DFDF-4154-9AD5-E194A425E66D}
O43 - CFD: 11/02/2012 - 17:08:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5F16FEDA-B118-45BA-BE94-2562465D8502}
O43 - CFD: 30/12/2011 - 06:55:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{5F9B5863-AE12-4818-AE67-A125DDEC0B81}
O43 - CFD: 06/09/2011 - 21:24:54 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{60D402FF-E9F1-4749-A9DE-80C5C6761942}
O43 - CFD: 02/10/2011 - 21:09:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{62FBB38D-3FC5-494B-9FAA-710291CF06EB}
O43 - CFD: 04/12/2011 - 20:28:52 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{6412F37D-AA73-4036-853A-5A6FD59CF43D}
O43 - CFD: 17/09/2011 - 20:50:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{6430A740-F45B-45A5-BCE4-F91794351178}
O43 - CFD: 15/12/2011 - 21:41:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{647403B6-230D-4FA1-BF94-BE5242699395}
O43 - CFD: 08/01/2012 - 11:22:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{649E16B4-C675-482B-B1CD-C7F0008A245D}
O43 - CFD: 07/12/2011 - 07:48:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{66386752-3D52-4ED1-9716-38B0226F209C}
O43 - CFD: 18/12/2011 - 14:36:10 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{66CB81DF-7D4F-4946-B281-EE1C2CCA941B}
O43 - CFD: 09/09/2011 - 21:09:16 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{67083731-9161-40A1-A596-17B239F5BF6A}
O43 - CFD: 09/01/2012 - 18:38:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{68713BC7-DDDC-4515-9936-D8C9668180E6}
O43 - CFD: 22/01/2012 - 21:46:46 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{68D2FA94-406E-4E8B-84FC-38D83ABA02FE}
O43 - CFD: 21/01/2012 - 14:50:52 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{69C0189B-04CD-4A87-B777-4D386F0C3399}
O43 - CFD: 15/01/2012 - 08:10:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{6A7B5843-07E5-4B30-8E79-068808FDEC5B}
O43 - CFD: 22/12/2011 - 22:25:38 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{6ABE297F-955E-4FB3-89B3-554132EE10FE}
O43 - CFD: 25/09/2011 - 07:02:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{6CD2B1B0-37B0-4F28-B80F-E922637EC6D1}
O43 - CFD: 19/01/2012 - 06:44:02 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{6D53E8FB-4547-4E23-AF09-B36963182921}
O43 - CFD: 13/01/2012 - 06:43:20 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{6DD3B5B8-3126-40C4-BD8B-1145BA5F9FB1}
O43 - CFD: 20/10/2011 - 20:16:28 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{6F65105B-F045-4EBB-BC4C-A3D8F260699C}
O43 - CFD: 12/10/2011 - 18:07:42 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{6F957024-81AC-4F5A-8362-0DC694ED249E}
O43 - CFD: 23/01/2012 - 21:32:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7043F476-894C-4D61-9704-6B1391AB3291}
O43 - CFD: 19/11/2011 - 18:36:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{70780377-9EE8-41A1-AA2A-34FDD047A8D1}
O43 - CFD: 04/12/2011 - 20:29:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{70C8FCFC-F47D-41F6-A9EC-F98680FBE397}
O43 - CFD: 18/10/2011 - 20:00:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{70D6767E-5C62-4B6C-96CE-23C1FAF9BB53}
O43 - CFD: 09/02/2012 - 22:26:06 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{72387472-A57B-4FFD-9C3D-494FFEAB2DE7}
O43 - CFD: 13/11/2011 - 21:14:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{72F994DC-21C0-4A22-8323-0F8ABBB9D344}
O43 - CFD: 24/10/2011 - 18:03:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7313387E-B417-4519-9412-579B2047D232}
O43 - CFD: 02/02/2012 - 20:57:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7448D66C-5FB0-46E0-A3DD-ADA1E9928B64}
O43 - CFD: 09/09/2011 - 20:40:20 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{75163760-5986-44DD-8B5D-5704198E0260}
O43 - CFD: 22/09/2011 - 21:33:54 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{77C4C44B-0DFE-43F7-8022-58C551911466}
O43 - CFD: 01/01/2012 - 20:46:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7800DD6F-7DC4-4C5C-B6B1-1DFFCA214D7A}
O43 - CFD: 19/09/2011 - 20:12:44 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7962010B-2630-4F95-AE1A-B90E9F55698F}
O43 - CFD: 20/11/2011 - 09:50:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{796FFD97-0875-4490-8F47-5F7AF3C11640}
O43 - CFD: 01/02/2012 - 15:30:02 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7A640C12-EB1B-40EF-9060-1D948AA8E05B}
O43 - CFD: 03/10/2011 - 19:51:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7B7EEA7F-212D-4924-BA7B-943935DE9C63}
O43 - CFD: 15/01/2012 - 21:06:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7ED70585-22E5-44FF-903D-4D0D6F9FEB73}
O43 - CFD: 17/10/2011 - 20:34:14 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7EFA8465-84CC-40B1-A47E-0BE8CECDA142}
O43 - CFD: 22/09/2011 - 05:46:06 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7FC4734F-E73D-46BD-A8D3-9BF87425B348}
O43 - CFD: 17/10/2011 - 20:34:24 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{7FE25318-D30A-432E-AAEE-4D0CE4800897}
O43 - CFD: 08/02/2012 - 06:58:38 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8089F9C7-49F8-4CC4-84B3-EDE489B58632}
O43 - CFD: 10/09/2011 - 20:21:26 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{809DAF66-9DB3-4F56-BA71-88BDFBB8629C}
O43 - CFD: 22/01/2012 - 09:45:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{813CBCA0-A073-4117-8A32-E5401BCB0DFC}
O43 - CFD: 02/02/2012 - 08:55:08 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{816C4A3C-6136-4EB0-91F3-A7E55002F764}
O43 - CFD: 15/11/2011 - 18:51:46 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{81770EC2-FC5E-4129-9B44-0811DFC56542}
O43 - CFD: 30/09/2011 - 09:11:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8230AE8C-12AB-46D2-8243-7D32A156EA58}
O43 - CFD: 29/01/2012 - 22:01:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8279647B-29D2-466B-8F00-41962D76DBB9}
O43 - CFD: 13/09/2011 - 20:31:12 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{82DFD3DD-53AF-491C-A212-D784823A57C4}
O43 - CFD: 19/01/2012 - 21:09:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{837E0442-96CB-463D-AE2F-910B8BD9EEB9}
O43 - CFD: 15/12/2011 - 21:41:26 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8402E5DA-359B-4B62-9F58-D1296D81C9C4}
O43 - CFD: 12/02/2012 - 22:38:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{877908D5-F79E-4A7A-AECD-B67AC90B67B9}
O43 - CFD: 04/11/2011 - 21:18:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{88B20452-4FFA-4162-8AAB-387E667E44BA}
O43 - CFD: 14/10/2011 - 05:23:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8A9CAEE5-EE34-4510-BCB1-1721CFCBFE7E}
O43 - CFD: 24/01/2012 - 21:37:28 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8BA016D1-A43C-4335-8B61-7BDBD4979B60}
O43 - CFD: 19/11/2011 - 06:05:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8C06D58F-6EC6-4C59-9133-AF422EC5B422}
O43 - CFD: 22/01/2012 - 09:45:30 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8CDBA864-C0E7-4503-8A50-CA011B873D89}
O43 - CFD: 24/10/2011 - 18:04:02 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8E0F8847-4C50-47AB-8D18-086D2F27C9D4}
O43 - CFD: 06/11/2011 - 20:55:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8EFCE58D-D2B1-48B8-95D8-8E0D699C26BF}
O43 - CFD: 01/10/2011 - 09:04:06 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8F9425EC-C432-4229-92A7-DB1A4F3AEB9B}
O43 - CFD: 19/10/2011 - 20:40:08 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{8FF3743B-4DF3-45F1-861E-BCE3E57D37D0}
O43 - CFD: 17/09/2011 - 20:50:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{902294E5-7E55-4245-A733-B6221EF345AC}
O43 - CFD: 15/10/2011 - 21:40:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{92DA7091-A70D-46B5-9A7B-ED6C55FC67A1}
O43 - CFD: 24/12/2011 - 16:27:30 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{940A32EB-C919-4F5F-A824-F4CC69596FED}
O43 - CFD: 10/01/2012 - 18:45:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{940D7B92-80BC-4794-AE69-AB91A604B7EF}
O43 - CFD: 05/01/2012 - 21:04:56 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{94368291-DED0-46CE-936C-CD7FD48614CF}
O43 - CFD: 02/11/2011 - 19:01:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{94C5D9EB-EF06-40ED-8D61-211745CC45DA}
O43 - CFD: 08/12/2011 - 20:36:38 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{9609E5F9-CFA9-4AC6-94D1-61A3BEE93D0A}
O43 - CFD: 27/11/2011 - 08:44:02 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{978F4629-21F8-46AC-AE30-A8F066B3F6C0}
O43 - CFD: 26/01/2012 - 20:38:06 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{98083893-45E3-4BEF-B7E2-727653FC92AC}
O43 - CFD: 31/01/2012 - 22:57:24 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{98AB03C8-360C-4C5D-AD6B-82F5B6E27488}
O43 - CFD: 07/02/2012 - 18:57:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{9A0E3F9A-15CA-4654-A995-C7A72179A6B4}
O43 - CFD: 10/09/2011 - 17:32:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{9AFACAB9-CEB6-4764-89FB-C1773ACA9A2B}
O43 - CFD: 17/01/2012 - 20:56:20 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{9BE919F6-8D43-42B1-AED5-1DF1FCC401AD}
O43 - CFD: 13/12/2011 - 20:37:16 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{9DB2CA8A-AAA4-4904-880D-E49DB33509E7}
O43 - CFD: 30/11/2011 - 08:45:10 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{9E5B3B19-A7C4-4456-856F-17F3B924F277}
O43 - CFD: 26/01/2012 - 20:38:24 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{9F2D2064-EEE3-4DDC-9738-2A08FE9F0F4A}
O43 - CFD: 02/11/2011 - 19:01:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A0815FE4-6685-40B3-91A6-FE659753F510}
O43 - CFD: 14/01/2012 - 12:31:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A0B99542-72A2-42CA-BA65-CA509EBD4354}
O43 - CFD: 10/12/2011 - 06:55:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A0CD91AD-9945-42ED-9070-8D1DDAF7A4A8}
O43 - CFD: 04/01/2012 - 13:41:52 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A136B312-8777-4A8D-BCB4-D10D72F1BE58}
O43 - CFD: 13/02/2012 - 13:33:24 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A329280A-C2C0-4B73-BBE1-95510021487B}
O43 - CFD: 12/02/2012 - 10:28:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A3D376CB-6A90-4F44-A3EC-834EFF12BDD4}
O43 - CFD: 30/12/2011 - 06:54:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A710D3AD-F6B2-4E66-8505-BF5CA7DFC0AF}
O43 - CFD: 02/01/2012 - 22:26:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A798988C-1CD3-4368-9755-2562C7CA15F5}
O43 - CFD: 07/12/2011 - 07:48:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A805565B-2A90-4985-A408-601136ABDA6B}
O43 - CFD: 09/10/2011 - 07:13:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A95C3452-BCBC-40D9-857C-154F3C71A7EC}
O43 - CFD: 11/10/2011 - 17:32:46 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{A9A07198-D1A2-4B9D-9A48-5EE55FB9364B}
O43 - CFD: 01/01/2012 - 20:46:10 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{ACFC77E5-7D6E-4D90-9BA5-8E7BA9E71B84}
O43 - CFD: 01/12/2011 - 18:24:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{AF386937-71CD-4651-ADE7-B09260F91F0A}
O43 - CFD: 22/09/2011 - 05:46:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B0970109-4EE4-4D73-97B9-D7D9D5988F11}
O43 - CFD: 18/11/2011 - 16:19:42 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B13C4F93-42D9-4325-9304-6A3793C8D3AB}
O43 - CFD: 02/10/2011 - 09:07:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B25F292E-A5A1-4241-8193-FA38DFA1F17C}
O43 - CFD: 05/02/2012 - 10:54:26 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B26300F3-89B1-4736-B263-E76B7FC60496}
O43 - CFD: 05/11/2011 - 09:20:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B27E2C86-E41F-4220-A7D3-7D104A2DB3A9}
O43 - CFD: 19/11/2011 - 06:05:20 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B485B630-0ACF-4A2D-91DB-5BAB0BDB2AFA}
O43 - CFD: 18/01/2012 - 15:48:38 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B5059175-0F8C-4D51-A59A-2A26236C103C}
O43 - CFD: 19/09/2011 - 08:11:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B68291F9-6779-4C13-94F4-249675ECBE73}
O43 - CFD: 14/12/2011 - 17:34:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B7B179E9-0A85-484D-AB6C-88CC772B6BAB}
O43 - CFD: 10/12/2011 - 06:55:12 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B8DB9F6F-CC0A-44E6-9073-E2CDF5061332}
O43 - CFD: 19/01/2012 - 06:43:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{B9A63F90-60D6-43B5-A9F8-B7DD23FA0888}
O43 - CFD: 10/01/2012 - 18:45:30 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{BC1C7154-3781-4B51-82CD-93B1B74956FD}
O43 - CFD: 05/12/2011 - 18:22:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{BC22E5B6-71CC-4C66-98D3-890BA5417FA5}
O43 - CFD: 03/12/2011 - 07:53:44 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{BD32303E-D7CD-4A55-BDCB-D4B948D69A54}
O43 - CFD: 03/11/2011 - 21:28:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{BD97AB9E-D529-4834-AFC5-0570C6486215}
O43 - CFD: 06/11/2011 - 07:07:12 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{BD9D7586-C00F-47E8-A35D-DCCEA27CC320}
O43 - CFD: 10/09/2011 - 17:32:38 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{BDC027C8-D818-4BE3-993F-7340C46AB8B6}
O43 - CFD: 07/12/2011 - 20:52:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{BFBE0A17-73E2-448E-B9F5-565084F678A4}
O43 - CFD: 26/10/2011 - 20:19:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{C1572D42-355F-49DF-A669-95C3577F0E64}
O43 - CFD: 16/01/2012 - 18:47:58 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{C19E8D32-D634-42F8-B72F-189A774D4CDA}
O43 - CFD: 27/10/2011 - 19:41:38 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{C35ECCBC-64B7-4CEA-B9F3-DF3F42C666CE}
O43 - CFD: 22/01/2012 - 09:29:26 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{C392966A-5DD5-4FAA-A6F5-E988FCDF31E4}
O43 - CFD: 21/12/2011 - 21:21:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{C40729AD-5AFA-4E9F-BDDB-4F8993CCE408}
O43 - CFD: 18/09/2011 - 20:00:14 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{C42E93D7-D856-467A-9EA1-4B49585FDF04}
O43 - CFD: 07/09/2011 - 20:39:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{C5C954EA-489E-48D9-8721-0C8B9FA6A56B}
O43 - CFD: 27/10/2011 - 19:41:26 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{C6CA7D31-D539-4DC3-8F0C-B85C39899C43}
O43 - CFD: 25/01/2012 - 21:03:44 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{C9B731D6-EFA8-4EC4-8E91-47F82CD1F7E0}
O43 - CFD: 03/10/2011 - 19:52:10 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{CC08602A-4AB2-4927-8F68-621CE1D83A6C}
O43 - CFD: 26/10/2011 - 20:19:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{CC612534-2210-468F-AEE2-B154FE0C36F9}
O43 - CFD: 14/12/2011 - 09:46:46 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{CC8A356E-79BA-4010-BBEA-BE3CA933F889}
O43 - CFD: 28/11/2011 - 18:40:44 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{CCB51966-47BD-4AD2-B5C3-840A783A32AF}
O43 - CFD: 24/11/2011 - 21:00:16 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{CCFEACF8-9A96-4C4F-A10B-2C755960C719}
O43 - CFD: 24/11/2011 - 06:08:26 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{CDAD7CCA-204F-40B1-9B93-4CF65028310A}
O43 - CFD: 04/11/2011 - 21:19:00 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{CE30D17F-ED7E-4CCF-852C-3DB5275D1A7E}
O43 - CFD: 04/02/2012 - 22:53:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{D01738D3-673F-4763-9E22-9E57EAD70B87}
O43 - CFD: 10/11/2011 - 14:43:14 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{D145485A-E1B3-4125-9593-0A886036CB22}
O43 - CFD: 17/12/2011 - 22:50:28 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{D231E5F7-E7C6-49C0-AFD1-CC85C4B4530B}
O43 - CFD: 05/02/2012 - 10:54:14 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{D2A6681C-DED0-4340-9722-72A79FD83CB8}
O43 - CFD: 10/12/2011 - 18:56:16 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{D358E422-19FD-4D22-9D87-3491BC0B6C58}
O43 - CFD: 11/01/2012 - 20:32:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{D49BA5D7-1B68-4E7A-A38B-E541014CF3E0}
O43 - CFD: 18/09/2011 - 20:00:26 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{D75C900F-218A-4A4C-BAA3-E9D4C96744AB}
O43 - CFD: 18/10/2011 - 20:00:14 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{DA468F4E-1DFE-4947-94B1-8E73643F0325}
O43 - CFD: 10/02/2012 - 18:07:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{DB47A68B-3B46-496E-A64A-012301AECC79}
O43 - CFD: 09/09/2011 - 20:27:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{DB5CB397-4A5E-4C89-92DB-048A5D31EAEA}
O43 - CFD: 07/09/2011 - 21:00:14 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{DC3C936C-7B58-4DDF-A2AE-44EE9DAA8B4C}
O43 - CFD: 19/12/2011 - 22:29:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{DCB274DA-80C1-4975-BEC9-DA1D3FCDA779}
O43 - CFD: 13/09/2011 - 20:31:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{DCFA3314-AF27-4C7E-96D0-69C5D2D23F73}
O43 - CFD: 15/10/2011 - 07:25:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{DE8D3636-099A-4911-9811-19516DF9ABF3}
O43 - CFD: 07/11/2011 - 16:24:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{E0137328-10C3-4ABD-8F4E-1B210DE1F0B3}
O43 - CFD: 30/11/2011 - 08:45:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{E115ED48-9BE7-41BE-A9B8-EEFCD4DF7424}
O43 - CFD: 22/12/2011 - 22:25:28 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{E133AEF9-1DCB-4F28-9C5D-E8BF23D2D141}
O43 - CFD: 04/02/2012 - 10:52:04 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{E2135894-53AD-4DD9-B2FD-DA48DBD71033}
O43 - CFD: 22/01/2012 - 21:46:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{E654DFE4-1C02-414A-A027-C967CA13B36D}
O43 - CFD: 09/12/2011 - 16:14:54 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{E87B4502-CA7B-4E08-89D3-58DFE7FF25F8}
O43 - CFD: 03/11/2011 - 21:28:28 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{E88F3F62-B40A-440D-831E-C29DB7AD8A22}
O43 - CFD: 05/11/2011 - 09:19:54 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{E9E73731-BAC4-4C43-A265-4A29360C8412}
O43 - CFD: 17/01/2012 - 20:56:10 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{EA4EF143-3C9C-4B3F-BAA8-B09FEFA083F3}
O43 - CFD: 02/02/2012 - 08:55:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{EAE7DC02-FD05-4CB7-BE07-259AC61426AC}
O43 - CFD: 20/12/2011 - 21:01:56 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{EB8FE4A7-526E-4722-8153-553DEE30F29B}
O43 - CFD: 29/11/2011 - 08:12:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{EBC0F099-FBD4-4230-BE3A-FBB6F0B26481}
O43 - CFD: 06/11/2011 - 20:55:48 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{EC8799BA-8D89-4270-8BB0-7D3D90901206}
O43 - CFD: 11/09/2011 - 20:24:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{ED3A470F-9641-41A2-BC36-82B04A398FC7}
O43 - CFD: 09/11/2011 - 21:30:30 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{EDC0D61F-8F39-44B6-87D3-3647AB049583}
O43 - CFD: 07/02/2012 - 18:57:22 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{EF327ECA-CEFA-4F3D-928E-6AF74753CE52}
O43 - CFD: 03/01/2012 - 13:49:16 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{F0A54B70-D70F-4F64-9BCA-72A9AB78B506}
O43 - CFD: 04/01/2012 - 13:41:40 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{F1FFE702-C1F0-465A-BF17-811E1CCEE478}
O43 - CFD: 17/12/2011 - 22:50:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{F36F9764-0006-446B-ACB2-6ACDC89A2A0F}
O43 - CFD: 30/11/2011 - 21:00:34 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{F3935B4A-A7B7-4385-B82B-205DAE0DA12B}
O43 - CFD: 17/09/2011 - 20:50:18 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{F4591C8B-A42A-4D5C-A9FE-826A03705272}
O43 - CFD: 25/09/2011 - 21:13:30 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{F615D7DE-8B1B-4AC9-9059-1310836DEFF2}
O43 - CFD: 08/10/2011 - 06:35:08 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{F68793E1-AF7E-43CD-9B3A-3778AF26AD2F}
O43 - CFD: 10/09/2011 - 20:21:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{F7A1B235-BB8E-4E97-B41F-6488DA877AC5}
O43 - CFD: 02/01/2012 - 22:26:36 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{FA49E80F-0FB1-4F4F-AB4B-D184586E715B}
O43 - CFD: 04/12/2011 - 07:50:50 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{FAC526D8-7302-483C-93E4-334F0390B45D}
O43 - CFD: 01/10/2011 - 21:05:12 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{FBB14CDD-86F9-43D0-9DCB-D8CC998F017B}
O43 - CFD: 19/09/2011 - 20:12:32 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{FC0A25C5-26CA-4C9A-9245-27C87986A044}
O43 - CFD: 10/11/2011 - 14:43:02 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{FD4A41CC-5F2A-460B-9198-6BAF7E9DAA60}
O43 - CFD: 30/01/2012 - 22:07:46 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{FE2B207B-5131-46DF-92D0-8FD1DE4D750B}
O43 - CFD: 16/10/2011 - 09:41:56 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{FEE50891-70CC-4DBB-8EB1-4773BBAFEA45}
O43 - CFD: 11/12/2011 - 14:09:14 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{FF68599B-1A6E-4E68-9C75-D00171BF2F23}
O43 - CFD: 11/09/2011 - 08:23:08 - [0] ----D- C:\Users\MOURA Family\AppData\Local\{FF9051E7-BA3E-45C8-859D-D108166F0BEF}

FirewallRAZ
EmptyTemp
EmptyFlash


Puis Lance ZHPFix depuis le raccourci du bureau .

* Une fois l'outil ZHPFix ouvert , clique sur le bouton [ H ] ( "coller les lignes Helper" ) .

* Dans l'encadré principal tu verras donc les lignes que tu as copié précédemment apparaitrent .

Vérifie que toutes les lignes que je t'ai demandé de copier (et seulement elles) sont dans la fenêtre.

Clique sur le bouton GO

Copie/Colle le rapport à l'écran dans ton prochain message.

2/
* Télécharge OTM (OldTimer) sur ton Bureau

ICI >> OTM (OldTimer)
* Double clic "OTMoveIt3.exe"
* Utilisateurs Windows Vista / 7 Clic droit sur "OTMoveIt3.exe" choisis "exécuter en tant qu'administrateur" afin de le lancer.

- Copie (Ctrl+C) le texte suivant en gras ci-dessous :

:files
C:\Users\MOURA Family\AppData\Roaming\Nosibay
C:\Users\MOURA Family\AppData\LocalLow\Vuze_Remote
C:\Program Files (x86)\Nosibay
C:\Users\MOURA Family\AppData\LocalLow\Vuze_Remote

:Reg
[-HKCU\Software\Nosibay]

:commands
[emptytemp]


- Colle (Ctrl+V) le texte précédemment copié dans le cadre: Paste Instructions for Items to be Moved.
- Clique maintenant sur le bouton MoveIt!
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
- Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log

@+
0
Réponse 10 / 11
infini12 Messages postés 6 Statut Membre
 
Bonjour, et pardon pour le retard de ma réponse;
Voici le 1er rapport:

Rapport de ZHPFix 1.12.3380 par Nicolas Coolman, Update du 05/02/2011
Fichier d'export Registre : C:\ZHP\ZHPExportRegistry-15-02-2012-21-22-13.txt
Run by MOURA Family at 15/02/2012 21:22:13
Windows 7 Home Premium Edition, 64-bit Service Pack 1 (Build 7601)
Web site : http://www.premiumorange.com/zeb-help-process/zhpfix.html
Web site : http://nicolascoolman.skyrock.com/

========== Valeur(s) du Registre ==========
ABSENT RunValue: Bubble Dock
ABSENT Valeur Standard Profile: FirewallRaz :
ABSENT Valeur Domain Profile: FirewallRaz :

========== Elément(s) de donnée du Registre ==========
REMPLACE Value NoActiveDesktopChanges : Good (0) - Bad (1)

========== Dossier(s) ==========
ABSENT C:\Users\MOURA Family\AppData\Roaming\Nosibay
ABSENT C:\Program Files (x86)\Nosibay
ABSENT C:\Users\MOURA Family\AppData\Local\{00033777-3E1F-4E5C-BCB4-5A1A9785C5D8}
ABSENT C:\Users\MOURA Family\AppData\Local\{001802B8-211F-4F82-94B3-1FA62A210DED}
ABSENT C:\Users\MOURA Family\AppData\Local\{011219C1-390B-4DC9-8484-6F7CF01BA53F}
ABSENT C:\Users\MOURA Family\AppData\Local\{014C6713-547B-4BA6-821F-EC42A7683B6B}
ABSENT C:\Users\MOURA Family\AppData\Local\{018E68EE-7621-4A9A-859C-7F69F292A96F}
ABSENT C:\Users\MOURA Family\AppData\Local\{01B45403-C15C-4978-9A7B-9C86317F68D7}
ABSENT C:\Users\MOURA Family\AppData\Local\{024BA60D-ED86-4DCE-A99D-2D897664D725}
ABSENT C:\Users\MOURA Family\AppData\Local\{028CA2A5-4175-47C5-B745-34F37337BA8A}
ABSENT C:\Users\MOURA Family\AppData\Local\{02A3F388-83EC-4B12-A2F9-00A82264A8FD}
ABSENT C:\Users\MOURA Family\AppData\Local\{03786FE3-C1D8-4F65-B6BB-183F9AB0D75A}
ABSENT C:\Users\MOURA Family\AppData\Local\{040E5E05-7013-4622-A227-95DA1A7B0E23}
ABSENT C:\Users\MOURA Family\AppData\Local\{067DCCF0-ACAC-4B98-9B20-B76C1E852251}
ABSENT C:\Users\MOURA Family\AppData\Local\{074F1659-D590-4D26-8368-B1FCBE5C9333}
ABSENT C:\Users\MOURA Family\AppData\Local\{07D49194-4112-4783-9678-0AFE2D33C947}
ABSENT C:\Users\MOURA Family\AppData\Local\{084651B2-ABFF-42C3-ADE7-631C64534DD1}
ABSENT C:\Users\MOURA Family\AppData\Local\{095B6B29-5FA7-4C68-9A6F-FED678EFE5A9}
ABSENT C:\Users\MOURA Family\AppData\Local\{0961AD7A-F064-4E69-B8E6-99A9BD4DBD87}
ABSENT C:\Users\MOURA Family\AppData\Local\{0C571C60-78F3-4FA9-85AB-A27A01AACC09}
ABSENT C:\Users\MOURA Family\AppData\Local\{0E8F616E-48DC-4EA9-ABD6-90C41371C9FE}
ABSENT C:\Users\MOURA Family\AppData\Local\{0FAB372E-19AA-4813-93EF-9360C6D54061}
ABSENT C:\Users\MOURA Family\AppData\Local\{106F55FA-FFB4-45BB-961C-5948F090ABDD}
ABSENT C:\Users\MOURA Family\AppData\Local\{10A69CFE-3301-4B23-A7F9-53EE7643B25B}
ABSENT C:\Users\MOURA Family\AppData\Local\{111311E7-1BEC-4D8F-B3C1-443F8DAB49E9}
ABSENT C:\Users\MOURA Family\AppData\Local\{112229F5-F0F3-4062-A951-D9B6D5B3E5BA}
ABSENT C:\Users\MOURA Family\AppData\Local\{115AA9F2-20EE-461B-8D9F-9F61FBCB4DDA}
ABSENT C:\Users\MOURA Family\AppData\Local\{11CF9886-2631-443F-884D-1AA0112C4A2F}
ABSENT C:\Users\MOURA Family\AppData\Local\{130D7539-8A26-4B83-8467-EF0B43986A68}
ABSENT C:\Users\MOURA Family\AppData\Local\{138E652D-F1B4-4929-A598-5A5D5F76CC0B}
ABSENT C:\Users\MOURA Family\AppData\Local\{1431F8D0-F863-48F7-B1CF-9F4509F831E6}
ABSENT C:\Users\MOURA Family\AppData\Local\{144A728D-9F17-45FF-A7B5-A9EFB05A7D61}
ABSENT C:\Users\MOURA Family\AppData\Local\{15CA655F-D8DB-4B32-9A1E-04B80FD2BB19}
ABSENT C:\Users\MOURA Family\AppData\Local\{1663589C-3055-4783-B5F7-BA04278826DA}
ABSENT C:\Users\MOURA Family\AppData\Local\{16FE7F2A-E153-415B-BFD1-081799DE6279}
ABSENT C:\Users\MOURA Family\AppData\Local\{1803EBF7-0853-4CDE-A8CC-AD058E616560}
ABSENT C:\Users\MOURA Family\AppData\Local\{18857597-4995-4D4E-A417-4A2171625604}
ABSENT C:\Users\MOURA Family\AppData\Local\{18868161-9980-4AAB-BB3A-B7CADD41D425}
ABSENT C:\Users\MOURA Family\AppData\Local\{18F7635C-F34C-46DB-8E00-87AAF65A4BF7}
ABSENT C:\Users\MOURA Family\AppData\Local\{1960A06B-A1D8-44BB-B639-72D5838BE854}
ABSENT C:\Users\MOURA Family\AppData\Local\{19697959-6E17-4728-895C-B757212E2056}
ABSENT C:\Users\MOURA Family\AppData\Local\{19D05E66-BBBF-44A7-92ED-81A555D0291E}
ABSENT C:\Users\MOURA Family\AppData\Local\{1A120149-F19C-4F06-9E1E-CE37593A4E80}
ABSENT C:\Users\MOURA Family\AppData\Local\{1BF56D6D-0FE8-41E0-83F9-B022510AA887}
ABSENT C:\Users\MOURA Family\AppData\Local\{1C8BC0D2-F9B5-4984-BCD1-143132BB6366}
ABSENT C:\Users\MOURA Family\AppData\Local\{1F5FB12B-E918-4D62-BFD6-D1B925DB24FF}
ABSENT C:\Users\MOURA Family\AppData\Local\{1FBDB236-03EF-4C6C-89AE-03D349520608}
ABSENT C:\Users\MOURA Family\AppData\Local\{20DAFED6-39DD-4E39-89A3-1E892DCBAEBA}
ABSENT C:\Users\MOURA Family\AppData\Local\{23535C23-F917-445B-9601-42F085DEE5EF}
ABSENT C:\Users\MOURA Family\AppData\Local\{23F6A62D-E37D-4236-AF44-5C8AF21F5E2E}
ABSENT C:\Users\MOURA Family\AppData\Local\{256D8CB7-ADCF-47D8-BA6F-DF2CC6030C23}
ABSENT C:\Users\MOURA Family\AppData\Local\{2703BD28-2934-42E2-9AAC-C46E07DFDB28}
ABSENT C:\Users\MOURA Family\AppData\Local\{27976B35-1EF7-440E-B9B0-AADE2A6488A0}
ABSENT C:\Users\MOURA Family\AppData\Local\{27B9B3AF-9BF0-4BB2-AF40-DCA4F275472B}
ABSENT C:\Users\MOURA Family\AppData\Local\{2A5E6D96-81CB-41A7-AF99-DCE3F7FA2794}
ABSENT C:\Users\MOURA Family\AppData\Local\{2B083787-F750-409A-B360-B9CE6E5E2884}
ABSENT C:\Users\MOURA Family\AppData\Local\{2CE3A269-B24F-416C-9738-0F842CB83F4F}
ABSENT C:\Users\MOURA Family\AppData\Local\{2D7D41FF-F3DF-4590-8FC8-AF0D90122048}
ABSENT C:\Users\MOURA Family\AppData\Local\{2EE335F0-3D66-4DC9-9002-388FC630DADB}
ABSENT C:\Users\MOURA Family\AppData\Local\{2FCB608F-C952-4530-9104-427FE28AF89D}
ABSENT C:\Users\MOURA Family\AppData\Local\{2FCEA41C-8BA1-47A1-96C9-F8FA66ACE65D}
ABSENT C:\Users\MOURA Family\AppData\Local\{2FDA3445-EC39-46BC-BAAF-20D315D84B62}
ABSENT C:\Users\MOURA Family\AppData\Local\{2FE0DE3C-EFB3-4493-9579-7B413FE9149F}
ABSENT C:\Users\MOURA Family\AppData\Local\{303FD837-414A-4AD4-9C97-125F8D5BDD0E}
ABSENT C:\Users\MOURA Family\AppData\Local\{30DCDFAE-7D74-4FA6-B309-EE3EE8F318AB}
ABSENT C:\Users\MOURA Family\AppData\Local\{31E199C9-96F2-4076-A21C-BB71BF2CDEBF}
ABSENT C:\Users\MOURA Family\AppData\Local\{3215CA7D-BE75-438F-B9C6-8F2DD5699B0C}
ABSENT C:\Users\MOURA Family\AppData\Local\{33BA7CA4-EE44-44E5-A282-3A257DEAE950}
ABSENT C:\Users\MOURA Family\AppData\Local\{3506D844-7055-45B2-B42B-D80C960BF1B1}
ABSENT C:\Users\MOURA Family\AppData\Local\{35C96A22-2190-4BC3-8719-5D5652977D04}
ABSENT C:\Users\MOURA Family\AppData\Local\{362E0E3A-BF53-4C4D-A0AD-9F00691B06EE}
ABSENT C:\Users\MOURA Family\AppData\Local\{37345A38-FDF9-4DCD-B774-A4BCE128CDE9}
ABSENT C:\Users\MOURA Family\AppData\Local\{3740E012-B864-4E84-9CD9-7D07BB858285}
ABSENT C:\Users\MOURA Family\AppData\Local\{38534E29-151A-45D3-8F02-4D7D00061B5E}
ABSENT C:\Users\MOURA Family\AppData\Local\{38A74B4F-9C11-4D13-9D8B-5C25EA75065F}
ABSENT C:\Users\MOURA Family\AppData\Local\{38EAD783-18B5-4F8B-B1D5-C581C2212B3B}
ABSENT C:\Users\MOURA Family\AppData\Local\{3957B85F-4266-4C9E-91C9-EB5015E39307}
ABSENT C:\Users\MOURA Family\AppData\Local\{3BB66681-9D72-4D32-BA37-4E8B3326C382}
ABSENT C:\Users\MOURA Family\AppData\Local\{3C77850C-4204-4E67-85C2-11E8820EA8BD}
ABSENT C:\Users\MOURA Family\AppData\Local\{3D3A8E6B-FF2F-4BF5-A18A-00AE666A0AD3}
ABSENT C:\Users\MOURA Family\AppData\Local\{3DC1527D-12E8-4F01-B422-1F251DAB35D9}
ABSENT C:\Users\MOURA Family\AppData\Local\{3EBEBEA6-F281-401A-B1B9-415B04FFB67F}
ABSENT C:\Users\MOURA Family\AppData\Local\{3FDB3587-84A0-4170-9B73-3162B0271C80}
ABSENT C:\Users\MOURA Family\AppData\Local\{4021807C-4B19-4C53-8F05-3DDDA79CC900}
ABSENT C:\Users\MOURA Family\AppData\Local\{4156D9F1-29E1-4125-87B3-E68C49299F3D}
ABSENT C:\Users\MOURA Family\AppData\Local\{41898ACC-A6B0-4BA3-ABDD-BB334C0B9348}
ABSENT C:\Users\MOURA Family\AppData\Local\{424D3C8C-825C-4588-850C-B7006295F722}
ABSENT C:\Users\MOURA Family\AppData\Local\{43213A39-65EE-4508-AA3F-BD74A6C36404}
ABSENT C:\Users\MOURA Family\AppData\Local\{43278AF0-53CE-45D7-B76C-4ED048405299}
ABSENT C:\Users\MOURA Family\AppData\Local\{43F0C59F-528D-42C7-91B2-E9FB93DF0975}
ABSENT C:\Users\MOURA Family\AppData\Local\{467B9918-23DE-471B-A6EA-5D93BC3FC541}
ABSENT C:\Users\MOURA Family\AppData\Local\{48C1323A-186E-4986-9EC1-692B63CBCA15}
ABSENT C:\Users\MOURA Family\AppData\Local\{4B0496A6-1252-4BC3-83AF-3B675EF1581B}
ABSENT C:\Users\MOURA Family\AppData\Local\{4BD4BCC2-58AB-4D2D-82B5-3E62BE56F15F}
ABSENT C:\Users\MOURA Family\AppData\Local\{4C41CD30-9201-4D8A-AE63-98406D466511}
ABSENT C:\Users\MOURA Family\AppData\Local\{4C9062D4-B5E6-4C07-9065-E1EE75C70EEF}
ABSENT C:\Users\MOURA Family\AppData\Local\{4ECD4C5B-40C3-43A3-9530-B6AD7FF2F943}
ABSENT C:\Users\MOURA Family\AppData\Local\{4F385D56-8A94-4EE0-96BD-CAB3BF54785A}
ABSENT C:\Users\MOURA Family\AppData\Local\{4F3AC68C-F171-4C27-B3F5-9BF1422F5A45}
ABSENT C:\Users\MOURA Family\AppData\Local\{4F73DA57-093F-4B94-ADD2-E84E90304953}
ABSENT C:\Users\MOURA Family\AppData\Local\{50B7E14B-48CF-4CFF-B89E-53451695EB9C}
ABSENT C:\Users\MOURA Family\AppData\Local\{5103C426-39F5-48F9-9C5B-0A54322EA5CB}
ABSENT C:\Users\MOURA Family\AppData\Local\{51CA13C1-220D-42A0-A01A-01ADE86752E7}
ABSENT C:\Users\MOURA Family\AppData\Local\{51D0D147-792B-439F-83C0-47B1A5EA37FA}
ABSENT C:\Users\MOURA Family\AppData\Local\{5258ACA4-AFEB-4622-9028-779C919CC0E2}
ABSENT C:\Users\MOURA Family\AppData\Local\{5303A082-8F6E-4E0D-9DB7-E0B77EB085D8}
ABSENT C:\Users\MOURA Family\AppData\Local\{5310AF7D-9555-4F63-BE23-7FCEB0BB72F5}
ABSENT C:\Users\MOURA Family\AppData\Local\{5454082E-5CF5-4518-9E4A-B5EFE12D3E89}
ABSENT C:\Users\MOURA Family\AppData\Local\{5461D094-AE08-46AC-82BA-67C2BD04FEA4}
ABSENT C:\Users\MOURA Family\AppData\Local\{54AF7CD4-E76A-4191-B1E0-364F5EDB03FD}
ABSENT C:\Users\MOURA Family\AppData\Local\{54EC2454-0967-4345-8F96-D0E871C7FF8A}
ABSENT C:\Users\MOURA Family\AppData\Local\{55A297AC-6AD1-4DAB-8EA3-730F8E197DCD}
ABSENT C:\Users\MOURA Family\AppData\Local\{55E7ECA5-9B8E-474B-9EC1-4EBEAB0E0CEF}
ABSENT C:\Users\MOURA Family\AppData\Local\{58184C5D-A520-4822-86FC-940E375AAF45}
ABSENT C:\Users\MOURA Family\AppData\Local\{5832CC07-70C3-4391-8957-115DBDB7AC4B}
ABSENT C:\Users\MOURA Family\AppData\Local\{5A12DC68-9697-4B59-B492-CD70A89F7428}
ABSENT C:\Users\MOURA Family\AppData\Local\{5B57947F-AAB7-418E-B80E-D335DB667AA0}
ABSENT C:\Users\MOURA Family\AppData\Local\{5CC19B53-EB91-4D39-9DA8-2F2EFD6B9FA7}
ABSENT C:\Users\MOURA Family\AppData\Local\{5EB6A9FA-DFDF-4154-9AD5-E194A425E66D}
ABSENT C:\Users\MOURA Family\AppData\Local\{5F16FEDA-B118-45BA-BE94-2562465D8502}
ABSENT C:\Users\MOURA Family\AppData\Local\{5F9B5863-AE12-4818-AE67-A125DDEC0B81}
ABSENT C:\Users\MOURA Family\AppData\Local\{60D402FF-E9F1-4749-A9DE-80C5C6761942}
ABSENT C:\Users\MOURA Family\AppData\Local\{62FBB38D-3FC5-494B-9FAA-710291CF06EB}
ABSENT C:\Users\MOURA Family\AppData\Local\{6412F37D-AA73-4036-853A-5A6FD59CF43D}
ABSENT C:\Users\MOURA Family\AppData\Local\{6430A740-F45B-45A5-BCE4-F91794351178}
ABSENT C:\Users\MOURA Family\AppData\Local\{647403B6-230D-4FA1-BF94-BE5242699395}
ABSENT C:\Users\MOURA Family\AppData\Local\{649E16B4-C675-482B-B1CD-C7F0008A245D}
ABSENT C:\Users\MOURA Family\AppData\Local\{66386752-3D52-4ED1-9716-38B0226F209C}
ABSENT C:\Users\MOURA Family\AppData\Local\{66CB81DF-7D4F-4946-B281-EE1C2CCA941B}
ABSENT C:\Users\MOURA Family\AppData\Local\{67083731-9161-40A1-A596-17B239F5BF6A}
ABSENT C:\Users\MOURA Family\AppData\Local\{68713BC7-DDDC-4515-9936-D8C9668180E6}
ABSENT C:\Users\MOURA Family\AppData\Local\{68D2FA94-406E-4E8B-84FC-38D83ABA02FE}
ABSENT C:\Users\MOURA Family\AppData\Local\{69C0189B-04CD-4A87-B777-4D386F0C3399}
ABSENT C:\Users\MOURA Family\AppData\Local\{6A7B5843-07E5-4B30-8E79-068808FDEC5B}
ABSENT C:\Users\MOURA Family\AppData\Local\{6ABE297F-955E-4FB3-89B3-554132EE10FE}
ABSENT C:\Users\MOURA Family\AppData\Local\{6CD2B1B0-37B0-4F28-B80F-E922637EC6D1}
ABSENT C:\Users\MOURA Family\AppData\Local\{6D53E8FB-4547-4E23-AF09-B36963182921}
ABSENT C:\Users\MOURA Family\AppData\Local\{6DD3B5B8-3126-40C4-BD8B-1145BA5F9FB1}
ABSENT C:\Users\MOURA Family\AppData\Local\{6F65105B-F045-4EBB-BC4C-A3D8F260699C}
ABSENT C:\Users\MOURA Family\AppData\Local\{6F957024-81AC-4F5A-8362-0DC694ED249E}
ABSENT C:\Users\MOURA Family\AppData\Local\{7043F476-894C-4D61-9704-6B1391AB3291}
ABSENT C:\Users\MOURA Family\AppData\Local\{70780377-9EE8-41A1-AA2A-34FDD047A8D1}
ABSENT C:\Users\MOURA Family\AppData\Local\{70C8FCFC-F47D-41F6-A9EC-F98680FBE397}
ABSENT C:\Users\MOURA Family\AppData\Local\{70D6767E-5C62-4B6C-96CE-23C1FAF9BB53}
ABSENT C:\Users\MOURA Family\AppData\Local\{72387472-A57B-4FFD-9C3D-494FFEAB2DE7}
ABSENT C:\Users\MOURA Family\AppData\Local\{72F994DC-21C0-4A22-8323-0F8ABBB9D344}
ABSENT C:\Users\MOURA Family\AppData\Local\{7313387E-B417-4519-9412-579B2047D232}
ABSENT C:\Users\MOURA Family\AppData\Local\{7448D66C-5FB0-46E0-A3DD-ADA1E9928B64}
ABSENT C:\Users\MOURA Family\AppData\Local\{75163760-5986-44DD-8B5D-5704198E0260}
ABSENT C:\Users\MOURA Family\AppData\Local\{77C4C44B-0DFE-43F7-8022-58C551911466}
ABSENT C:\Users\MOURA Family\AppData\Local\{7800DD6F-7DC4-4C5C-B6B1-1DFFCA214D7A}
ABSENT C:\Users\MOURA Family\AppData\Local\{7962010B-2630-4F95-AE1A-B90E9F55698F}
ABSENT C:\Users\MOURA Family\AppData\Local\{796FFD97-0875-4490-8F47-5F7AF3C11640}
ABSENT C:\Users\MOURA Family\AppData\Local\{7A640C12-EB1B-40EF-9060-1D948AA8E05B}
ABSENT C:\Users\MOURA Family\AppData\Local\{7B7EEA7F-212D-4924-BA7B-943935DE9C63}
ABSENT C:\Users\MOURA Family\AppData\Local\{7ED70585-22E5-44FF-903D-4D0D6F9FEB73}
ABSENT C:\Users\MOURA Family\AppData\Local\{7EFA8465-84CC-40B1-A47E-0BE8CECDA142}
ABSENT C:\Users\MOURA Family\AppData\Local\{7FC4734F-E73D-46BD-A8D3-9BF87425B348}
ABSENT C:\Users\MOURA Family\AppData\Local\{7FE25318-D30A-432E-AAEE-4D0CE4800897}
ABSENT C:\Users\MOURA Family\AppData\Local\{8089F9C7-49F8-4CC4-84B3-EDE489B58632}
ABSENT C:\Users\MOURA Family\AppData\Local\{809DAF66-9DB3-4F56-BA71-88BDFBB8629C}
ABSENT C:\Users\MOURA Family\AppData\Local\{813CBCA0-A073-4117-8A32-E5401BCB0DFC}
ABSENT C:\Users\MOURA Family\AppData\Local\{816C4A3C-6136-4EB0-91F3-A7E55002F764}
ABSENT C:\Users\MOURA Family\AppData\Local\{81770EC2-FC5E-4129-9B44-0811DFC56542}
ABSENT C:\Users\MOURA Family\AppData\Local\{8230AE8C-12AB-46D2-8243-7D32A156EA58}
ABSENT C:\Users\MOURA Family\AppData\Local\{8279647B-29D2-466B-8F00-41962D76DBB9}
ABSENT C:\Users\MOURA Family\AppData\Local\{82DFD3DD-53AF-491C-A212-D784823A57C4}
ABSENT C:\Users\MOURA Family\AppData\Local\{837E0442-96CB-463D-AE2F-910B8BD9EEB9}
ABSENT C:\Users\MOURA Family\AppData\Local\{8402E5DA-359B-4B62-9F58-D1296D81C9C4}
ABSENT C:\Users\MOURA Family\AppData\Local\{877908D5-F79E-4A7A-AECD-B67AC90B67B9}
ABSENT C:\Users\MOURA Family\AppData\Local\{88B20452-4FFA-4162-8AAB-387E667E44BA}
ABSENT C:\Users\MOURA Family\AppData\Local\{8A9CAEE5-EE34-4510-BCB1-1721CFCBFE7E}
ABSENT C:\Users\MOURA Family\AppData\Local\{8BA016D1-A43C-4335-8B61-7BDBD4979B60}
ABSENT C:\Users\MOURA Family\AppData\Local\{8C06D58F-6EC6-4C59-9133-AF422EC5B422}
ABSENT C:\Users\MOURA Family\AppData\Local\{8CDBA864-C0E7-4503-8A50-CA011B873D89}
ABSENT C:\Users\MOURA Family\AppData\Local\{8E0F8847-4C50-47AB-8D18-086D2F27C9D4}
ABSENT C:\Users\MOURA Family\AppData\Local\{8EFCE58D-D2B1-48B8-95D8-8E0D699C26BF}
ABSENT C:\Users\MOURA Family\AppData\Local\{8F9425EC-C432-4229-92A7-DB1A4F3AEB9B}
ABSENT C:\Users\MOURA Family\AppData\Local\{8FF3743B-4DF3-45F1-861E-BCE3E57D37D0}
ABSENT C:\Users\MOURA Family\AppData\Local\{902294E5-7E55-4245-A733-B6221EF345AC}
ABSENT C:\Users\MOURA Family\AppData\Local\{92DA7091-A70D-46B5-9A7B-ED6C55FC67A1}
ABSENT C:\Users\MOURA Family\AppData\Local\{940A32EB-C919-4F5F-A824-F4CC69596FED}
ABSENT C:\Users\MOURA Family\AppData\Local\{940D7B92-80BC-4794-AE69-AB91A604B7EF}
ABSENT C:\Users\MOURA Family\AppData\Local\{94368291-DED0-46CE-936C-CD7FD48614CF}
ABSENT C:\Users\MOURA Family\AppData\Local\{94C5D9EB-EF06-40ED-8D61-211745CC45DA}
ABSENT C:\Users\MOURA Family\AppData\Local\{9609E5F9-CFA9-4AC6-94D1-61A3BEE93D0A}
ABSENT C:\Users\MOURA Family\AppData\Local\{978F4629-21F8-46AC-AE30-A8F066B3F6C0}
ABSENT C:\Users\MOURA Family\AppData\Local\{98083893-45E3-4BEF-B7E2-727653FC92AC}
ABSENT C:\Users\MOURA Family\AppData\Local\{98AB03C8-360C-4C5D-AD6B-82F5B6E27488}
ABSENT C:\Users\MOURA Family\AppData\Local\{9A0E3F9A-15CA-4654-A995-C7A72179A6B4}
ABSENT C:\Users\MOURA Family\AppData\Local\{9AFACAB9-CEB6-4764-89FB-C1773ACA9A2B}
ABSENT C:\Users\MOURA Family\AppData\Local\{9BE919F6-8D43-42B1-AED5-1DF1FCC401AD}
ABSENT C:\Users\MOURA Family\AppData\Local\{9DB2CA8A-AAA4-4904-880D-E49DB33509E7}
ABSENT C:\Users\MOURA Family\AppData\Local\{9E5B3B19-A7C4-4456-856F-17F3B924F277}
ABSENT C:\Users\MOURA Family\AppData\Local\{9F2D2064-EEE3-4DDC-9738-2A08FE9F0F4A}
ABSENT C:\Users\MOURA Family\AppData\Local\{A0815FE4-6685-40B3-91A6-FE659753F510}
ABSENT C:\Users\MOURA Family\AppData\Local\{A0B99542-72A2-42CA-BA65-CA509EBD4354}
ABSENT C:\Users\MOURA Family\AppData\Local\{A0CD91AD-9945-42ED-9070-8D1DDAF7A4A8}
ABSENT C:\Users\MOURA Family\AppData\Local\{A136B312-8777-4A8D-BCB4-D10D72F1BE58}
ABSENT C:\Users\MOURA Family\AppData\Local\{A329280A-C2C0-4B73-BBE1-95510021487B}
ABSENT C:\Users\MOURA Family\AppData\Local\{A3D376CB-6A90-4F44-A3EC-834EFF12BDD4}
ABSENT C:\Users\MOURA Family\AppData\Local\{A710D3AD-F6B2-4E66-8505-BF5CA7DFC0AF}
ABSENT C:\Users\MOURA Family\AppData\Local\{A798988C-1CD3-4368-9755-2562C7CA15F5}
ABSENT C:\Users\MOURA Family\AppData\Local\{A805565B-2A90-4985-A408-601136ABDA6B}
ABSENT C:\Users\MOURA Family\AppData\Local\{A95C3452-BCBC-40D9-857C-154F3C71A7EC}
ABSENT C:\Users\MOURA Family\AppData\Local\{A9A07198-D1A2-4B9D-9A48-5EE55FB9364B}
ABSENT C:\Users\MOURA Family\AppData\Local\{ACFC77E5-7D6E-4D90-9BA5-8E7BA9E71B84}
ABSENT C:\Users\MOURA Family\AppData\Local\{AF386937-71CD-4651-ADE7-B09260F91F0A}
ABSENT C:\Users\MOURA Family\AppData\Local\{B0970109-4EE4-4D73-97B9-D7D9D5988F11}
ABSENT C:\Users\MOURA Family\AppData\Local\{B13C4F93-42D9-4325-9304-6A3793C8D3AB}
ABSENT C:\Users\MOURA Family\AppData\Local\{B25F292E-A5A1-4241-8193-FA38DFA1F17C}
ABSENT C:\Users\MOURA Family\AppData\Local\{B26300F3-89B1-4736-B263-E76B7FC60496}
ABSENT C:\Users\MOURA Family\AppData\Local\{B27E2C86-E41F-4220-A7D3-7D104A2DB3A9}
ABSENT C:\Users\MOURA Family\AppData\Local\{B485B630-0ACF-4A2D-91DB-5BAB0BDB2AFA}
ABSENT C:\Users\MOURA Family\AppData\Local\{B5059175-0F8C-4D51-A59A-2A26236C103C}
ABSENT C:\Users\MOURA Family\AppData\Local\{B68291F9-6779-4C13-94F4-249675ECBE73}
ABSENT C:\Users\MOURA Family\AppData\Local\{B7B179E9-0A85-484D-AB6C-88CC772B6BAB}
ABSENT C:\Users\MOURA Family\AppData\Local\{B8DB9F6F-CC0A-44E6-9073-E2CDF5061332}
ABSENT C:\Users\MOURA Family\AppData\Local\{B9A63F90-60D6-43B5-A9F8-B7DD23FA0888}
ABSENT C:\Users\MOURA Family\AppData\Local\{BC1C7154-3781-4B51-82CD-93B1B74956FD}
ABSENT C:\Users\MOURA Family\AppData\Local\{BC22E5B6-71CC-4C66-98D3-890BA5417FA5}
ABSENT C:\Users\MOURA Family\AppData\Local\{BD32303E-D7CD-4A55-BDCB-D4B948D69A54}
ABSENT C:\Users\MOURA Family\AppData\Local\{BD97AB9E-D529-4834-AFC5-0570C6486215}
ABSENT C:\Users\MOURA Family\AppData\Local\{BD9D7586-C00F-47E8-A35D-DCCEA27CC320}
ABSENT C:\Users\MOURA Family\AppData\Local\{BDC027C8-D818-4BE3-993F-7340C46AB8B6}
ABSENT C:\Users\MOURA Family\AppData\Local\{BFBE0A17-73E2-448E-B9F5-565084F678A4}
ABSENT C:\Users\MOURA Family\AppData\Local\{C1572D42-355F-49DF-A669-95C3577F0E64}
ABSENT C:\Users\MOURA Family\AppData\Local\{C19E8D32-D634-42F8-B72F-189A774D4CDA}
ABSENT C:\Users\MOURA Family\AppData\Local\{C35ECCBC-64B7-4CEA-B9F3-DF3F42C666CE}
ABSENT C:\Users\MOURA Family\AppData\Local\{C392966A-5DD5-4FAA-A6F5-E988FCDF31E4}
ABSENT C:\Users\MOURA Family\AppData\Local\{C40729AD-5AFA-4E9F-BDDB-4F8993CCE408}
ABSENT C:\Users\MOURA Family\AppData\Local\{C42E93D7-D856-467A-9EA1-4B49585FDF04}
ABSENT C:\Users\MOURA Family\AppData\Local\{C5C954EA-489E-48D9-8721-0C8B9FA6A56B}
ABSENT C:\Users\MOURA Family\AppData\Local\{C6CA7D31-D539-4DC3-8F0C-B85C39899C43}
ABSENT C:\Users\MOURA Family\AppData\Local\{C9B731D6-EFA8-4EC4-8E91-47F82CD1F7E0}
ABSENT C:\Users\MOURA Family\AppData\Local\{CC08602A-4AB2-4927-8F68-621CE1D83A6C}
ABSENT C:\Users\MOURA Family\AppData\Local\{CC612534-2210-468F-AEE2-B154FE0C36F9}
ABSENT C:\Users\MOURA Family\AppData\Local\{CC8A356E-79BA-4010-BBEA-BE3CA933F889}
ABSENT C:\Users\MOURA Family\AppData\Local\{CCB51966-47BD-4AD2-B5C3-840A783A32AF}
ABSENT C:\Users\MOURA Family\AppData\Local\{CCFEACF8-9A96-4C4F-A10B-2C755960C719}
ABSENT C:\Users\MOURA Family\AppData\Local\{CDAD7CCA-204F-40B1-9B93-4CF65028310A}
ABSENT C:\Users\MOURA Family\AppData\Local\{CE30D17F-ED7E-4CCF-852C-3DB5275D1A7E}
ABSENT C:\Users\MOURA Family\AppData\Local\{D01738D3-673F-4763-9E22-9E57EAD70B87}
ABSENT C:\Users\MOURA Family\AppData\Local\{D145485A-E1B3-4125-9593-0A886036CB22}
ABSENT C:\Users\MOURA Family\AppData\Local\{D231E5F7-E7C6-49C0-AFD1-CC85C4B4530B}
ABSENT C:\Users\MOURA Family\AppData\Local\{D2A6681C-DED0-4340-9722-72A79FD83CB8}
ABSENT C:\Users\MOURA Family\AppData\Local\{D358E422-19FD-4D22-9D87-3491BC0B6C58}
ABSENT C:\Users\MOURA Family\AppData\Local\{D49BA5D7-1B68-4E7A-A38B-E541014CF3E0}
ABSENT C:\Users\MOURA Family\AppData\Local\{D75C900F-218A-4A4C-BAA3-E9D4C96744AB}
ABSENT C:\Users\MOURA Family\AppData\Local\{DA468F4E-1DFE-4947-94B1-8E73643F0325}
ABSENT C:\Users\MOURA Family\AppData\Local\{DB47A68B-3B46-496E-A64A-012301AECC79}
ABSENT C:\Users\MOURA Family\AppData\Local\{DB5CB397-4A5E-4C89-92DB-048A5D31EAEA}
ABSENT C:\Users\MOURA Family\AppData\Local\{DC3C936C-7B58-4DDF-A2AE-44EE9DAA8B4C}
ABSENT C:\Users\MOURA Family\AppData\Local\{DCB274DA-80C1-4975-BEC9-DA1D3FCDA779}
ABSENT C:\Users\MOURA Family\AppData\Local\{DCFA3314-AF27-4C7E-96D0-69C5D2D23F73}
ABSENT C:\Users\MOURA Family\AppData\Local\{DE8D3636-099A-4911-9811-19516DF9ABF3}
ABSENT C:\Users\MOURA Family\AppData\Local\{E0137328-10C3-4ABD-8F4E-1B210DE1F0B3}
ABSENT C:\Users\MOURA Family\AppData\Local\{E115ED48-9BE7-41BE-A9B8-EEFCD4DF7424}
ABSENT C:\Users\MOURA Family\AppData\Local\{E133AEF9-1DCB-4F28-9C5D-E8BF23D2D141}
ABSENT C:\Users\MOURA Family\AppData\Local\{E2135894-53AD-4DD9-B2FD-DA48DBD71033}
ABSENT C:\Users\MOURA Family\AppData\Local\{E654DFE4-1C02-414A-A027-C967CA13B36D}
ABSENT C:\Users\MOURA Family\AppData\Local\{E87B4502-CA7B-4E08-89D3-58DFE7FF25F8}
ABSENT C:\Users\MOURA Family\AppData\Local\{E88F3F62-B40A-440D-831E-C29DB7AD8A22}
ABSENT C:\Users\MOURA Family\AppData\Local\{E9E73731-BAC4-4C43-A265-4A29360C8412}
ABSENT C:\Users\MOURA Family\AppData\Local\{EA4EF143-3C9C-4B3F-BAA8-B09FEFA083F3}
ABSENT C:\Users\MOURA Family\AppData\Local\{EAE7DC02-FD05-4CB7-BE07-259AC61426AC}
ABSENT C:\Users\MOURA Family\AppData\Local\{EB8FE4A7-526E-4722-8153-553DEE30F29B}
ABSENT C:\Users\MOURA Family\AppData\Local\{EBC0F099-FBD4-4230-BE3A-FBB6F0B26481}
ABSENT C:\Users\MOURA Family\AppData\Local\{EC8799BA-8D89-4270-8BB0-7D3D90901206}
ABSENT C:\Users\MOURA Family\AppData\Local\{ED3A470F-9641-41A2-BC36-82B04A398FC7}
ABSENT C:\Users\MOURA Family\AppData\Local\{EDC0D61F-8F39-44B6-87D3-3647AB049583}
ABSENT C:\Users\MOURA Family\AppData\Local\{EF327ECA-CEFA-4F3D-928E-6AF74753CE52}
ABSENT C:\Users\MOURA Family\AppData\Local\{F0A54B70-D70F-4F64-9BCA-72A9AB78B506}
ABSENT C:\Users\MOURA Family\AppData\Local\{F1FFE702-C1F0-465A-BF17-811E1CCEE478}
ABSENT C:\Users\MOURA Family\AppData\Local\{F36F9764-0006-446B-ACB2-6ACDC89A2A0F}
ABSENT C:\Users\MOURA Family\AppData\Local\{F3935B4A-A7B7-4385-B82B-205DAE0DA12B}
ABSENT C:\Users\MOURA Family\AppData\Local\{F4591C8B-A42A-4D5C-A9FE-826A03705272}
ABSENT C:\Users\MOURA Family\AppData\Local\{F615D7DE-8B1B-4AC9-9059-1310836DEFF2}
ABSENT C:\Users\MOURA Family\AppData\Local\{F68793E1-AF7E-43CD-9B3A-3778AF26AD2F}
ABSENT C:\Users\MOURA Family\AppData\Local\{F7A1B235-BB8E-4E97-B41F-6488DA877AC5}
ABSENT C:\Users\MOURA Family\AppData\Local\{FA49E80F-0FB1-4F4F-AB4B-D184586E715B}
ABSENT C:\Users\MOURA Family\AppData\Local\{FAC526D8-7302-483C-93E4-334F0390B45D}
ABSENT C:\Users\MOURA Family\AppData\Local\{FBB14CDD-86F9-43D0-9DCB-D8CC998F017B}
ABSENT C:\Users\MOURA Family\AppData\Local\{FC0A25C5-26CA-4C9A-9245-27C87986A044}
ABSENT C:\Users\MOURA Family\AppData\Local\{FD4A41CC-5F2A-460B-9198-6BAF7E9DAA60}
ABSENT C:\Users\MOURA Family\AppData\Local\{FE2B207B-5131-46DF-92D0-8FD1DE4D750B}
ABSENT C:\Users\MOURA Family\AppData\Local\{FEE50891-70CC-4DBB-8EB1-4773BBAFEA45}
ABSENT C:\Users\MOURA Family\AppData\Local\{FF68599B-1A6E-4E68-9C75-D00171BF2F23}
ABSENT C:\Users\MOURA Family\AppData\Local\{FF9051E7-BA3E-45C8-859D-D108166F0BEF}
SUPPRIME Temporaires Windows: : 8
SUPPRIME Flash Cookies: 1

========== Fichier(s) ==========
ABSENT File: c:\users\moura family\appdata\roaming\nosibay\bubble dock\lbubble dock.exe
SUPPRIME Temporaires Windows: : 5
SUPPRIME Flash Cookies: 0

========== Récapitulatif ==========
3 : Valeur(s) du Registre
1 : Elément(s) de donnée du Registre
291 : Dossier(s)
3 : Fichier(s)

End of clean in 00mn 00s

========== Chemin de fichier rapport ==========
C:\ZHP\ZHPFix[R1].txt - 15/02/2012 21:13:23 [30232]
C:\ZHP\ZHPFix[R2].txt - 15/02/2012 21:22:13 [25094]


ET LE SECOND

All processes killed
========== FILES ==========
File/Folder C:\Users\MOURA Family\AppData\Roaming\Nosibay not found.
C:\Users\MOURA Family\AppData\LocalLow\Vuze_Remote\Repository\conduit_CT2504091_CT2504091\ToolbarSettings folder moved successfully.
C:\Users\MOURA Family\AppData\LocalLow\Vuze_Remote\Repository\conduit_CT2504091_CT2504091 folder moved successfully.
C:\Users\MOURA Family\AppData\LocalLow\Vuze_Remote\Repository folder moved successfully.
C:\Users\MOURA Family\AppData\LocalLow\Vuze_Remote folder moved successfully.
File/Folder C:\Program Files (x86)\Nosibay not found.
File/Folder C:\Users\MOURA Family\AppData\LocalLow\Vuze_Remote not found.
========== REGISTRY ==========
Registry key HKEY_CURRENT_USER\Software\Nosibay\ deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 56796 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: MOURA Family
->Temp folder emptied: 2016 bytes
->Temporary Internet Files folder emptied: 292360272 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 58681 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 7722 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 68044 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 279,00 mb

OTM by OldTimer - Version 3.1.19.0 log created on 02152012_211558

Files moved on Reboot...
C:\Users\MOURA Family\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.
File move failed. C:\Windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...
0
Réponse 11 / 11
Fish66 Messages postés 18337 Statut Contributeur sécurité 1 318
 
Bonjour,

/!\ ATTENTION : cette analyse peut durer quelques heures /!\

* Télécharge MBAM et installe le selon l'emplacement par défaut
https://www.malwarebytes.com/mwb-download/
* Lance Malwarebytes' Anti-Malware
* Fais la mise à jour
* Clique dans l'onglet "Recherche"
* Coche l'option "Exécuter un examen complet" puis sur le bouton "Rechercher"
* Choisis de scanner tous tes disques durs, puis clique sur 'Lancer l'examen"

A la fin de l'analyse, si MBAM n'a rien trouvé :

* Clique sur OK, le rapport s'ouvre spontanément

Si des menaces ont été détectées :

* Clique sur OK puis "Afficher les résultats"
*Vérifie que toutes les lignes sont cochées
* Choisis l'option "Supprimer la sélection"
* Si MBAM demande le redémarrage de Windows : Clique sur "Oui"
* Le rapport s'ouvre automatiquement après la suppression, il se trouve aussi dans l'onglet "Rapports/Logs"

* Copie/colle le rapport dans le prochain message

Remarque :
- S'il y'a un problème de mise à jour de mbam, tu peux la faire manuellement en téléchargeant ce fichier puis en l'exécutant.

@+
0

Discussions similaires

Impossible d'afficher le rapport de tableau croisé dynamique sur un rapport
Utilisateur anonyme -
TomH. -

13 réponses
écrire un rapport de travail
asi -
REGINALD -

3 réponses
impossible d'afficher le tableau dynamique sur un rapport existant
Pierre -
Adrien71 -

3 réponses
Problém affichage du tableau croisé dynamique
BK -
Raymond PENTIER -

2 réponses
Theme de rapport de stage option comptabilité
sana saydou -
Raymond PENTIER -

2 réponses