VIRUS police et gendarmerie nationaleRésolu/Fermé

Question

Bonjour, 

comme d'autres avant moi, je me suis fait avoir par le virus "police et gendarmerie nationale", sous windows xp.
quelqu'un peut-il m'aider SVP ?
merci !

X-FlaShou-X · Answer

Salut,

Pour t'en débarrasser,  diriges toi ici.

C'est clairement expliqué.


Bye et bonne chance!

Utilisateur anonyme · Answer

bonjour,

est ce que tu as accès au mode sans echec ?

fanfan2012 · Answer

j'ai acces au mode sans echec

Utilisateur anonyme · Answer

ok,

redémarre ton pc en mode sans echec avec la prise en charge du réseau,


 *	[*] Télécharger et enregistre RogueKiller sur le bureau 
https://www.luanagames.com/index.fr.html (by tigzy) 
[*] Quitter tous les programmes
[*] Lancer RogueKiller.exe.
[*] Attendre que le Prescan ait fini ...
[*] Cliquer sur Scan. Cliquer sur Rapport et copier coller le contenu du notepad

Note : Si Roguekiller ne se lance pas, change son nom en Winlogon.	


Note: Partie variable. Coller les lignes voulues en fonction de votre analyse

fanfan2012 · Answer

re,

merci de ton aide!

cependant lorsque je fais sans echec prise en charge reseau, mon ordi redémarre et revient dans le menu des choix de démarrage windows...

Utilisateur anonyme · Answer

ok,

télécharge Roguekiller avec un autre pc, transfère le vis une clé usb sur le pc infecté

redémarre le pc infecté en mode sans echec tout court, puis lance roguekiller  :D

fanfan2012 · Answer

et beh, j'arrive pas à lancer en mode sans echec non plus... c'est grave docteur ?

Utilisateur anonyme · Answer

lis et suis ceci, je regarde tes rapports après mon retours du boulot  :D

Grave le CD OTLPE : 

https://forum.malekal.com/viewtopic.php?t=23453&start=#p195540

Ensuite tu démarres sur OTLPE. 
Le but étant d'arriver sur un système d'exploitation tiers qui permet l'accès à tes fichiers Windows en autre.

La procédure est la suivante : 

- Télécharger le CD OTLPE (fichier image ISO) 
- Graver le CD OTLPE ou le mettre sur clef USB (les liens explicatifs sont donnés dans le lien plus haut) - on peux graver depuis un PC sain.
- Mettre le CD / Clef USB sur le PC infecté 
- Redémarre l'ordinateur et changer la séquence de démarrage https://forum.malekal.com/viewtopic.php?t=9447&start= 
pour faire démarrer sur le CD ou clef USB (Démarrage sur la clé Usb n'est pas supporté par tous les pc, à voir Dans les options de démarrage).

- OTLPE se charge 


une fois sur l'interface d'OTLPE,

avec un autre pc, télécharge ceci et transfère le via une clé usb sur le pc infecté :



* [*] Télécharger et enregistre RogueKiller sur le bureau 
https://www.luanagames.com/index.fr.html (by tigzy) 
[*] Quitter tous les programmes
[*] Lancer RogueKiller.exe.
[*] Attendre que le Prescan ait fini ...
[*] Cliquer sur Supprimer Cliquer sur Rapport et copier coller le contenu du notepad

Note : Si Roguekiller ne se lance pas, change son nom en Winlogon. 


après cette opération, tu peux redémarre ton pc en mode normal, connecte toi à internet et reviens ici pour qu'on le nettoie :D

fanfan2012 · Answer

Re,

Bon alors : j'ai gravé OTLPE mais je n'arrive pas à lancer le pc infecté. Il cherche à se lancer via le CD mais refuse de lancer ensuite. J'ai un message me disant qu'un problème a été détecté et windows "has been shut down to prevent damage" puis d'autres trucs dont "run CHKDSK /F to check for hard drive corruption".
 Pour info, j'ai un packard bell sans lecteur cd intégré, je recours à un lecteur externe par USB.

Utilisateur anonyme · Answer

est ce que tu as choisis de démarer ton pc depuis bios sur le port usb ?

il faut modifier la séquance de démarrage pour qu'il reconnaisse ton lecteur externe !

fanfan2012 · Answer

pardon: "stop: 0x0000007B (0xF7A4A528, 0x00000000, 0x00000000)

fanfan2012 · Answer

ZUT, debut de message manque.
oui, j'ai le choix entre 2 trucs : hdd ou usb. Je lance usb, le cd charge ("starting reatogo-x-pe) puis le logo windows vite fait et enfin le message d'erreur sur fond bleu qui se conclu par mon message précédent

Utilisateur anonyme · Answer

je pens e qu'il a du avoir un problème au moment de la créeation de cd boutable !

as tu essayé de créer une clé usb bootable avec OTLPE ?

fanfan2012 · Answer

non. une clé usb bootable, c'est une clé usb où j'enregistre otlpe et que je branche sur le pc infecté ?

Utilisateur anonyme · Answer

non, la procedure est là :

 https://forum.malekal.com/viewtopic.php?t=23453&start=

fanfan2012 · Answer

ok, merci. ça marche, mais mon écran me montre un truc que je ne vois pas dans les screens. Je peux faire "otlpe into ram" ou f9 réamorcer ou f10 arrêt. Je fais quoi ?

Utilisateur anonyme · Answer

Je peux faire "otlpe into ram" ou f9 réamorcer ou f10 arrêt.


tu le vois ou ?

fanfan2012 · Answer

une fois que le lancement par usb a été effectué via le boot menu...

fanfan2012 · Answer

y a écrit en haut aspire-one.fr rescue usb

Utilisateur anonyme · Answer

ok, lance le, puis branche la clé pour démarre dessus  :D

fanfan2012 · Answer

salut,

je ne comprend pas : dois-je lancer avec "otlpe  into ram" ou je lance le pc infecté puis je branche la clé. Dans ce second cas à quel moment je la branche ?

Utilisateur anonyme · Answer

bonjour,

il faut changer la séquance de démarrage pour que ton pc démarre ou sur ta clé usb avec OTLPE, ou sur le CD d'OTLPE,

ce changement se fait via le bios, vu que je ne sais pas les possibilités proposées par ton système, il faut que tu essais pour voir la quelle fonctionne !

fanfan2012 · Answer

re,

bon je galère... j'ai regravé le cd mais ça fait pareil : ça charge - logo windows - message d'erreur.
Mon bios ne me permet pas de mettre ma clé usb en priorité : j'ai le choix entre hdd, cd/dvd, removable device ou LAN. j'ai essayé différents ordres de séquences sauf de mettre LAN en priorité. J'ai une option "usb beep message : disabled" mais je n'y ai pas touché.
Par contre il la détecte lorsque je fais F12 au démarrage et ça me met ce que j'ai décrit hier, idem pour le cd.

Utilisateur anonyme · Answer

essaie avec OTLPE USB ou un lecteur DVD externe et essaie avec ceci :


removable device

fanfan2012 · Answer

victoire !
alors ça a fonctionné avec l'usb, avec le removable device en tête et choisir l'usb en F12... merci de ta patience, j'espère qu'on va y arriver.
donc ça y est je suis dans OTLPE

Utilisateur anonyme · Answer

ok,

depuis un autre pc, il faut transfèrer Roguekiller sur le pc infecté :


* [*] Télécharger et enregistre RogueKiller sur le bureau 
https://www.luanagames.com/index.fr.html (by tigzy) 
[*] Quitter tous les programmes
[*] Lancer RogueKiller.exe.
[*] Attendre que le Prescan ait fini ...
[*] Cliquer sur Supprimer Cliquer sur Rapport et copier coller le contenu du notepad

Note : Si Roguekiller ne se lance pas, change son nom en Winlogon. 


après cette opération, tu peux redémarre ton pc en mode normal, connecte toi à internet et reviens ici pour qu'on le nettoie :D

fanfan2012 · Answer

Le prescan est fini, mais je ne peux pas "deleter". Je lance un scan?

fanfan2012 · Answer

j'ai scanné. Celui-ci m'indique  "Dans l'onglet Registre, décocher les éventuels faux positifs". j'ai 2 "folder not found" : je décoche avant de les effacer : tu confirmes ?

Utilisateur anonyme · Answer

il faut accèpter le contrat de licence  :D

lance le scan, poste son rapport si tu peux, c'est un fichier format .doc  :D

fanfan2012 · Answer

j'ai scanné. un tutoriel m'indique "Dans l'onglet Registre, décocher les éventuels faux positifs". j'ai 2 "folder not found" dans "registre": je décoche avant de les effacer : tu confirmes ?

Utilisateur anonyme · Answer

tu peux me poster le rapport sur le forum ?

je en peux pas te dire s'il s'agit d'un faux positif ou pas !

fanfan2012 · Answer

RogueKiller V8.0.4 [09/19/2012] by Tigzy mail: tigzyRKgmailcom Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/ Blog: http://tigzyrk.blogspot.com Operating System: Windows XP (5.1.2600 ) 32 bits version Started in : Normal mode User : SYSTEM [Admin rights] Mode : Scan -- Date : 09/22/2012 21:53:20 ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 2 ¤¤¤ [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND [FILEASSO] HKLM\[...]\command : (X:\i386\iexplore.exe) -> FOLDER NOT FOUND ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED] ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> X:\i386\system32\drivers\etc\hosts 127.0.0.1 localhost ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: +++++ --- User --- [MBR] ed7d5aebd20fbd9b3461ae4cab1a994f [BSP] 149b3f7452843c0d33ebaa0b7e64bf50 : Windows Vista MBR Code Partition table: 0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 3820 Mo 1 - [XXXXXX] UNKNOWN (0x21) [VISIBLE] Offset (sectors): 7823655 | Size: 0 Mo User = LL1 ... OK! Error reading LL2 MBR! +++++ PhysicalDrive1: +++++ --- User --- [MBR] b1c1d751c7a8d2de951be99efe5807d3 [BSP] 514c2b0bb81a4ed2c35e933f01849b4f : Windows XP MBR Code Partition table: 0 - [ACTIVE] FAT16-LBA (0x0e) [VISIBLE] Offset (sectors): 63 | Size: 124 Mo User = LL1 ... OK! Error reading LL2 MBR! Finished : << RKreport[1].txt >> RKreport[1].txt

Utilisateur anonyme · Answer

ok, passe à la suppression quand meêm  :D


normalement, tu pourras redémarre ton pc sans la page de ukash !

fanfan2012 · Answer

la page ukash est toujours là... J'ai effacé avec roguekiller, eteint l'ordi, modifier l'ordre du bios et démarré l'ordi normalement

Utilisateur anonyme · Answer

ukash est toujours sur le pc ?

fanfan2012 · Answer

oui

Utilisateur anonyme · Answer

refais la même manip, puis une fois sur OTLPE, relance un scan avec Roguekiller pour voir !

fanfan2012 · Answer

j'ai refait la manip, ukash est toujours là. voici le rapport : RogueKiller V8.0.4 [09/19/2012] by Tigzy mail: tigzyRKgmailcom Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/ Blog: http://tigzyrk.blogspot.com Operating System: Windows XP (5.1.2600 ) 32 bits version Started in : Normal mode User : SYSTEM [Admin rights] Mode : Remove -- Date : 09/23/2012 00:20:38 ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 2 ¤¤¤ [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0) [FILEASSO] HKLM\[...]\command : (X:\i386\iexplore.exe) -> FOLDER NOT FOUND ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED] ¤¤¤ ¤¤¤ Infection : ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> X:\i386\system32\drivers\etc\hosts 127.0.0.1 localhost ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: +++++ --- User --- [MBR] ed7d5aebd20fbd9b3461ae4cab1a994f [BSP] 149b3f7452843c0d33ebaa0b7e64bf50 : Windows Vista MBR Code Partition table: 0 - [ACTIVE] FAT32-LBA (0x0c) [VISIBLE] Offset (sectors): 63 | Size: 3820 Mo 1 - [XXXXXX] UNKNOWN (0x21) [VISIBLE] Offset (sectors): 7823655 | Size: 0 Mo User = LL1 ... OK! Error reading LL2 MBR! +++++ PhysicalDrive1: +++++ --- User --- [MBR] b1c1d751c7a8d2de951be99efe5807d3 [BSP] 514c2b0bb81a4ed2c35e933f01849b4f : Windows XP MBR Code Partition table: 0 - [ACTIVE] FAT16-LBA (0x0e) [VISIBLE] Offset (sectors): 63 | Size: 124 Mo User = LL1 ... OK! Error reading LL2 MBR! Finished : << RKreport[2].txt >> RKreport[1].txt ; RKreport[2].txt

g3n-h@ckm@n · Answer

@FanFan2012 :

as-tu accès au net via otlpe ?

fanfan2012 · Answer

salut, 

non je n'y est pas accès, bien que relié par cable à mon boitier internet, que ce soit avec internet explorer ou firefoxportable

g3n-h@ckm@n · Answer

mouais bon tu as possibilité de transferer des fichiers via clé usb si je ne m'abuse.... 

une question avant de te faire faire les manips 

sais-tu si ton disque dur est branché en sATA ou IDE ?  
  
¤¤¤¤¤¤¤¤¤¤ Pre_Scan_Concept ¤¤¤¤¤¤¤¤¤¤

fanfan2012 · Answer

aucune idée. Comment je peux faire pour le savoir? et je peux transférer via une clé usb

g3n-h@ckm@n · Answer

quel age a le pc ?

fanfan2012 · Answer

+/- 4 ans

fanfan2012 · Answer

c'est un packard bell imax mini n1600. A priori ça serait SATA en cherchant sur internet

g3n-h@ckm@n · Answer

c'est du sATA-II 

bon on va le tenter comme ca 

tout se passe dans le live cd démarré. tranfère par clé usb si besoin donc. 

va dans demarrer => <Poste de travail ou ordinateur> => X:BOOT => Program Files => crée un dossier du nom exact de : 

Pre_Scan 

dezippe ceci dans le dossier du meme nom , et mets les 3 fichiers qui se trouvent  à l'interieur du dossier , dans le dossier pre_scan que tu viens de créer 

http://www.archive-host.com

ceci fait ,  

mets celui-ci sur le bureau du live CD attention ne te melange pas les pinceaux les fichiers ont le meme nom , le meme icone , mais ne contiennent pas les memes informations donc suis bien la procedure .... 

http://www.archive-host.com 

=============== 

si c'est trop difficile pour toi pas de soucis , tu graves un autre otlpe avec environnement Windows 7 où tout se passe tout seul....si besoin je te donne le lien 
¤¤¤¤¤¤¤¤¤¤ Pre_Scan_Concept ¤¤¤¤¤¤¤¤¤¤

fanfan2012 · Answer

j'ai pas les mêmes appellations, c'est en anglais...  
Donc je suis sur mon ordi infecté via otple en USB.  
X boot doit correspondre à "reatogoPE (X:) CD drive". sinon y a "Ramdisk (B:)", "OTLPEUSB (C:) removable disk"  

Dans "reatogoPE (X:) CD drive", j'ai "programs" et pas "programme files". y a bon? 

Sinon je vois pas ce que je dois dézipper, je n'ai que le 2e lien "Pre_Scan"

g3n-h@ckm@n · Answer

Dans "reatogoPE (X:) CD drive", j'ai "programs" et pas "programme files". y a bon? 

oui

fanfan2012 · Answer

la galère continue : je ne suis pas autorisé à créer un nouveau dossier dans "programs", un copier ou couper / coller non plus...

g3n-h@ckm@n · Answer

bon il est nul ce live cd...

https://gen-hackman.kanak.fr/

fanfan2012 · Answer

bon le scan est en cours, mais là il m'indique que "l'ordinal 404 est introuvable dans la bibliothèque de liens dynamiques SHLWAPI.dll. Je n'ai qu'OK comme solution. Je le fais. Ensuite "le point d'entrée de la procédure I_NetNameValidate est introuvable dans la bibliothèque de liens dynamiques NETAPIS32.dll"

Le scan est fini mais je n'ai pas de rapports qui s'affichent...

fanfan2012 · Answer

En fait j'ai trouvé le rapport , voici (balancé sur cjoint aussi) :

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan_PE | 2.0919 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤

~ Update on 19/09/2012 | 16.25.10 by g3n-h@ckm@n
~ Informations | Evolution : https://gen-hackman.kanak.fr/
~ Informations for the switches Pre_Script : https://gen-hackman.kanak.fr/
~ Feedback Pre_scan : https://gen-hackman.kanak.fr/#505
~ Thx to C_XX , Slyk & Saachaa for their help for the evolution of the tool

~ Ordinateur : MININT-C8O17D5

~ Système d'exploitation : Microsoft Windows XP :  
~ Enregistré sous : Francois
~ Processeur : Intel(R) Atom(TM) CPU  230   @ 1.60GHz
~ Identification : x86 Family 6 Model 28 Stepping 2
Internet Explorer : 8.0.6001.18702
Mozilla Firefox : 15.0.1 (fr)

C:\ -> [Fixed]|[[OS]|[Total] : 68840 Mo | Free : 4290 Mo -> NTFS
d:\ -> [Fixed]|[[DATA]|[Total] : 68790 Mo | Free : 17070 Mo -> NTFS
e:\ -> [CDROM]|[[Win7PE_x86]|[Total] : 330 Mo | Free : 0 Mo -> CDFS
x:\ -> [Fixed]|[[Boot]|[Total] : 250 Mo | Free : 250 Mo -> NTFS

¤¤¤¤¤¤¤¤¤¤ | Boot's scripts



¤¤¤¤¤¤¤¤¤¤ | Frameworks

[15/08/2009 19:57:36] - C:\WINDOWS\Microsoft.net\Framework\v1.0.3705
[15/08/2009 19:57:31] - C:\WINDOWS\Microsoft.net\Framework\v1.1.4322
[15/08/2009 19:59:59] - C:\WINDOWS\Microsoft.net\Framework\v2.0.50727
[30/08/2012 03:16:46] - C:\WINDOWS\Microsoft.net\Framework\v3.0
[30/08/2012 03:18:24] - C:\WINDOWS\Microsoft.net\Framework\v3.5

¤¤¤¤¤¤¤¤¤¤ | Windows Updates

Last(s) détection(s) : 2012-09-21 10:14:02
Last(s) download(s) : 2012-09-12 08:39:35
Last(s) installation(s) : 2012-09-12 22:33:38
Next search : 2012-09-22 20:48:07


copie saine d'Explorer.exe trouvée et remplacée


¤¤¤¤¤¤¤¤¤¤ | Contrôle MD5

[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - [16/08/2009 04:33:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [1013.5 Ko] - (6.0.2900.5512) - C:\WINDOWS\Explorer.exe
[MD5.E0E8A531CFCE1C2E5D79F683282C10C3] - [16/08/2009 04:33:49] - (.© Microsoft Corporation. - Client Server Runtime Process.) - [6 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\csrss.exe
[MD5.E0E8A531CFCE1C2E5D79F683282C10C3] - [16/08/2009 04:33:49] - (.© Microsoft Corporation. - Client Server Runtime Process.) - [6 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\csrss.exe
[MD5.48E430297DA757F5CC2793CCFACAD5E7] - [16/08/2009 04:34:04] - (.© Microsoft Corporation. - Gestionnaire de session Windows NT.) - [49.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\smss.exe
[MD5.48E430297DA757F5CC2793CCFACAD5E7] - [16/08/2009 04:34:04] - (.© Microsoft Corporation. - Gestionnaire de session Windows NT.) - [49.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\smss.exe
[MD5.E74DDB12188C2FF57A78624DBF7332FC] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [26 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\userinit.exe
[MD5.E74DDB12188C2FF57A78624DBF7332FC] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [26 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\userinit.exe
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - [16/08/2009 04:34:09] - (.© Microsoft Corporation. - Application d'ouverture de session Windows NT.) - [500 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\winlogon.exe
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - [16/08/2009 04:34:09] - (.© Microsoft Corporation. - Application d'ouverture de session Windows NT.) - [500 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\winlogon.exe
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [135.25 Ko] - (5.1.2600.6142) - C:\WINDOWS\system32\dllcache\afd.sys
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [135.25 Ko] - (5.1.2600.6142) - C:\WINDOWS\system32\drivers\afd.sys
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - [13/04/2008 12:40:32] - (.© Microsoft Corporation. - IDE/ATAPI Port Driver.) - [94.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\atapi.sys
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - [13/04/2008 12:40:32] - (.© Microsoft Corporation. - IDE/ATAPI Port Driver.) - [94.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\drivers\atapi.sys
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - [15/08/2009 20:06:19] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [61.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\drivers\cdrom.sys
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - MBT Transport driver.) - [159 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache
etbt.sys
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - MBT Transport driver.) - [159 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\drivers
etbt.sys
[MD5.46DE1126684369BACE4849E4FC8C43CA] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Pilote de cliché instantané du volume.) - [52.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\volsnap.sys
[MD5.46DE1126684369BACE4849E4FC8C43CA] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Pilote de cliché instantané du volume.) - [52.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\drivers\volsnap.sys

05:09:29

¤¤¤¤¤¤¤¤¤¤ | HKCR\Applications

[HKCR\Applications\EXCEL.EXE\Shell\open\command] : "C:\Program Files\Microsoft Office\Office12\EXCEL.EXE" /e
[HKCR\Applications\firefox.exe\Shell\open\command] : "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1"
[HKCR\Applications\iexplore.exe\Shell\open\command] : "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1
[HKCR\Applications\mpc-hc.exe\Shell\open\command] : "C:\Program Files\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe" "%1"
[HKCR\Applications\MSOXMLED.EXE\Shell\open\command] : "C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLED.EXE" /verb open "%1"
[HKCR\Applications
ero.exe\Shell\open\command] : "C:\Program Files\Nero\Nero8\Nero Burning Rom
ero.exe" "%1"
[HKCR\Applications
otepad.exe\Shell\open\command] : %SystemRoot%\system32\NOTEPAD.EXE %1
[HKCR\Applications\ois.exe\Shell\open\command] : C:\PROGRA~1\MICROS~2\Office12\OIS.EXE /shellOpen "%1"
[HKCR\Applications\PhotoshopElementsEditor.exe\Shell\open\command] : "C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsEditor.exe" "%1"
[HKCR\Applications\PowerDVD8.exe\Shell\open\command] : "C:\Program Files\CyberLink\PowerDVD8\PowerDVD8.exe" "%L"
[HKCR\Applications\shimgvw.dll\Shell\open\command] : rundll32.exe %SystemRoot%\system32\shimgvw.dll,ImageView_Fullscreen %1
[HKCR\Applications\swriter.exe\Shell\open\command] : "C:\Program Files\OpenOffice.org 3\program\swriter.exe" -o "%1"
[HKCR\Applications\VSLauncher.exe\Shell\open\command] : "C:\Program Files\Fichiers communs\Microsoft Shared\MSEnv\VSLauncher.exe" "%1"
[HKCR\Applications\vsta.exe\Shell\open\command] : "C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\vsta.exe" "%1"
[HKCR\Applications\WinRAR.exe\Shell\open\command] : "C:\Program Files\WinRAR\WinRAR.exe" "%1"
[HKCR\Applications\wksss.exe\Shell\open\command] : C:\PROGRA~1\MICROS~3\wksss.exe "%1"
[HKCR\Applications\wkswp.exe\Shell\open\command] : C:\PROGRA~1\MICROS~3\WksWP.exe "%1"
[HKCR\Applications\WLXPhotoGallery.exe\Shell\open\command] : C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe /LaunchPhotoViewer /v "%1"
[HKCR\Applications\WLXPhotoViewer.dll\Shell\open\command] : C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe /LaunchPhotoViewer /v "%1"
[HKCR\Applications\wmplayer.exe\Shell\open\command] : C:\Program Files\Windows Media Player\wmplayer.exe /Open "%L"
[HKCR\Applications\wordpad.exe\Shell\open\command] : "%ProgramFiles%\Windows NT\Accessoires\WORDPAD.EXE" "%1"

¤¤¤¤¤¤¤¤¤¤ | Windows

[HKLM | Session Manager\SubSystems]|[Windows] : winsrv : %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16


[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
"LoadAppInit_DLLs"=1

¤¤¤¤¤¤¤¤¤¤ | Svchost - Netsvc

Audiov
Tapiv

¤¤¤¤¤¤¤¤¤¤ | Winlogon

[HKU\Francois_ON_C | Winlogon]|[Shell] :  -> ()

¤

[HKLM | Winlogon]|[Shell] : Explorer.exe
[HKLM | Winlogon]|[userinit] : C:\WINDOWS\system32\userinit.exe,
[HKLM | Winlogon]|[PowerDownAfterShutdown] : 0 -> 1
[HKLM | Winlogon]|[System] : 
[HKLM | Winlogon]|[Taskman] : 

¤¤¤¤¤¤¤¤¤¤ | Associations

[.exe] : exefile
[exefile | command] : "%1" %*
[.com] : comfile
[comfile | command] : "%1" %*
[.reg] : regfile
[regfile | command] : regedit.exe "%1"
[.scr] : scrfile
[scrfile | command] : "%1" /S
[.bat] : batfile
[batfile | command] : "%1" %*
[.cmd] : cmdfile
[cmdfile | command] : "%1" %*
[.pif] : piffile
[piffile | command] : "%1" %*
[.url] : InternetShortcut
[InternetShortcut | command] : "C:\WINDOWS\system32undll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l
[Application.Manifest | command] : rundll32.exe dfshim.dll,ShOpenVerbApplication %1
[Application.Reference | command] : rundll32.exe dfshim.dll,ShOpenVerbShortcut %1|%2
[Folder | command] : %SystemRoot%\Explorer.exe /idlist,%I,%L -> C:\WINDOWS\explorer.exe

¤


¤

[Firefox | Command] : D:\Mozilla Firefox\firefox.exe -> "C:\Program Files\Mozilla Firefox\Firefox.exe"
[Firefox - Safemode | Command] : "D:\Mozilla Firefox\firefox.exe" -safe-mode -> "C:\Program Files\Mozilla Firefox\Firefox.exe" -safe-mode
[IE | Command] : C:\Program Files\Internet Explorer\iexplore.exe -> "C:\Program Files\Internet Explorer\iexplore.exe"
[Applications | IE | Command] : "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1
[Assoc | Applications] : http://shell.windows.com/fileassoc/%04x/xml/redir.aspExt=%s

¤¤¤¤¤¤¤¤¤¤ | Corrections diverses

[HKU\S-1-5-18 | HideDesktopIcons\ClassicStartMenu]|[{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}] : 0
[HKU\S-1-5-18 | HideDesktopIcons\ClassicStartMenu]|[{59031a47-3f72-44a7-89c5-5595fe6b30ee}] : 0
[HKLM | HideDesktopIcons\NewStartPanel]|[{20D04FE0-3AEA-1069-A2D8-08002B30309D}] : 1 -> 0
[HKLM | HideDesktopIcons\NewStartPanel]|[{208D2C60-3AEA-1069-A2D7-08002B30309D}] : 1 -> 0
[HKLM | HideDesktopIcons\NewStartPanel]|[{871C5380-42A0-1069-A2EA-08002B30309D}] : 0
[HKLM | Advanced\Folder\Hidden\SHOWALL]|[CheckedValue] : 1
[HKU\S-1-5-18 | Explorer\Advanced]|[Start_ShowUser] : 1
[HKU\S-1-5-18 | Explorer\Advanced]|[Start_ShowHelp] : 0 -> 1
[HKU\S-1-5-18 | Explorer\Advanced]|[Start_EnableDragDrop] : 1
[HKU\Francois_ON_C | Explorer\Advanced]|[Hidden] : 2 -> 0
[HKU\LocalService_ON_C | Explorer\Advanced]|[Hidden] :  -> 0
[HKU\NetworkService_ON_C | Explorer\Advanced]|[Hidden] :  -> 0
[HKU\S-1-5-19 | Explorer\Advanced]|[Hidden] :  -> 0
[HKU\S-1-5-20 | Explorer\Advanced]|[Hidden] :  -> 0
[HKU\systemprofile_ON_C | Explorer\Advanced]|[Hidden] :  -> 0
[HKU\S-1-5-18 | Explorer\Advanced]|[Hidden] : 1 -> 0
[HKU\Francois_ON_C | Policies\Explorer]|[NoDriveTypeAutoRun] : 91000000 -> 1
[HKU\LocalService_ON_C | Policies\Explorer]|[NoDriveTypeAutoRun] : 145
[HKU\NetworkService_ON_C | Policies\Explorer]|[NoDriveTypeAutoRun] : 145
[HKU\S-1-5-18 | Policies\Explorer]|[NoDriveTypeAutoRun] : 145

05:09:34


¤¤¤¤¤¤¤¤¤¤ | Security Center

[HKLM | Security Center]|[FirstRunDisabled] : 1
[HKLM | Security Center]|[AntiVirusDisableNotify] : 0
[HKLM | Security Center]|[AntiVirusOverride] : 1 -> 0
[HKLM | Security Center]|[FirewallDisableNotify] : 0
[HKLM | Security Center]|[FirewallOverride] : 0
[HKLM | Security Center]|[UpdatesDisableNotify] : 0



[HKLM | FirewallPolicy\StandardProfile]|[DisableNotifications] : 0

¤¤¤¤¤¤¤¤¤¤ | Services

[RPCSS] : 2
[srService] : 2
[Ndisuio] : 3
[PlugPlay] : 2
[Parvdm] : 2
[NVSvc] : 2
[lmhosts] : 2
[LanmanWorkstation] : 2
[LanmanServer] : 2
[agp440] : 4 -> 2
[Audiosrv] : 2
[ERSvc] : 2
[Bits] : 3 -> 2
[CryptSvc] : 2
[EapHost] : 3 -> 2
[SharedAccess] : 2
[wuauserv] : 2
[WerSvc] :  -> 2
[wscsvc] :  -> 2
[wzcsvc] : 2

05:09:34

¤¤¤¤¤¤¤¤¤¤ | Internet Explorer

[HKU\Francois_ON_C | Main]|[Start Page] : http://kurs.ru/index5 -> https://www.google.com/?gws_rd=ssl
[HKU\S-1-5-18 | Main]|[Start Page] : https://www.google.com/?gws_rd=ssl
[HKU\Francois_ON_C | Main]|[Local Page] : C:\WINDOWS\system32\blank.htm
[HKU\S-1-5-18 | Main]|[Local Page] : X:\windows\system32\blank.htm -> C:\WINDOWS\system32\blank.htm
[HKU\Francois_ON_C | Main]|[Search Page] : http://www.microsoft.com/isapi/redir.dllprd=ie&ar=iesearch
[HKU\S-1-5-18 | Main]|[Search Page] : http://go.microsoft.com/fwlink/LinkId=54896 -> http://www.microsoft.com/isapi/redir.dllprd=ie&ar=iesearch

[HKLM | Search]|[SearchAssistant] : https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm -> http://www.google.com/toolbar/ie8/sidebar.html
[HKLM | Main]|[Start Page] : http://go.microsoft.com/fwlink/LinkId=69157
[HKLM | Main]|[Local Page] : C:\WINDOWS\system32\blank.htm
[HKLM | Main]|[Default_Search_URL] : http://go.microsoft.com/fwlink/LinkId=54896
[HKLM | Main]|[Default_Page_URL] : http://go.microsoft.com/fwlink/LinkId=69157
[HKLM | Main]|[Search Page] : http://go.microsoft.com/fwlink/LinkId=54896
[HKLM | AboutURLs]|[Tabs] : http://webplayersearch.com/ -> res://ieframe.dll/tabswelcome.htm

¤

[HKU\Francois_ON_C | PhishingFilter]|[Enabled] : 0 -> 2
[HKU\Francois_ON_C | PhishingFilter]|[EnabledV8] : 0 -> 1
[HKU\S-1-5-18 | PhishingFilter]|[EnabledV8] : 1
[HKU\Francois_ON_C | Internet settings]|[EnableHttp1_1] : 1
[HKU\S-1-5-18 | Internet settings]|[EnableHttp1_1] : 1
[HKU\Francois_ON_C | Internet settings]|[MigrateProxy] : 1
[HKU\LocalService_ON_C | Internet settings]|[MigrateProxy] : 0 -> 1
[HKU\NetworkService_ON_C | Internet settings]|[MigrateProxy] : 0 -> 1
[HKU\Francois_ON_C | Internet settings]|[WarnonBadCertRecving] : 1
[HKU\Francois_ON_C | Internet settings]|[WarnonZoneCrossing] : 0 -> 1
[HKU\S-1-5-18 | Internet settings]|[WarnonZoneCrossing] : 0 -> 1
[HKU\Francois_ON_C | Internet settings]|[AutoConfigProxy] : wininet.dll
[HKU\S-1-5-18 | Internet settings]|[AutoConfigProxy] : wininet.dll

¤¤¤¤¤¤¤¤¤¤ | DNS

[HKLM\SYSTEM\CCS | Tcpip\Parameters]|[DhcpNameServer] : 89.2.0.1 89.2.0.2
[HKLM\SYSTEM\ControlSet001 | Interfaces\{E0BA3BA4-704F-436E-8618-3CA4221680DA}]|[DhcpNameServer] : 89.2.0.1 89.2.0.2
[HKLM\SYSTEM\ControlSet003 | Interfaces\{E0BA3BA4-704F-436E-8618-3CA4221680DA}]|[DhcpNameServer] : 89.2.0.1 89.2.0.2
[HKLM\SYSTEM\ControlSet004 | Interfaces\{E0BA3BA4-704F-436E-8618-3CA4221680DA}]|[DhcpNameServer] : 89.2.0.1 89.2.0.2

05:09:35

¤¤¤¤¤¤¤¤¤¤ | Traitement Files | Folders | Registre

Quarantined and deleted successfully : C:\Recycler\S-1-5-21-2802022764-2121953277-338115081-1006\desktop.ini
Quarantined and deleted successfully : C:\Recycler\S-1-5-21-2802022764-2121953277-338115081-1006\INFO2
Key deleted : [HKLM | Microsoft\RFC1156Agent]


06:13:03

Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Application Data\InstallShield
Quarantined and deleted successfully : C:\Documents and settings\Default User\Application Data\InstallShield
Quarantined and deleted successfully : C:\Documents and settings\Francois\Application Data\InstallShield
Quarantined and deleted successfully : C:\Program Files\LP
Quarantined and deleted successfully : C:\WINDOWS\Thumbs.db
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local Settings\Application Data\dt.dat
Quarantined and deleted successfully : C:\Temp\devcon.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR10.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR11.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR12.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR14.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR17.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR19.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1B.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1E.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1F.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR20.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR25.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR26.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR5.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR7.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR8.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR9.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURC.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURD.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURE.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\140.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\1A0.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\1EF.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\92.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-007b5c02-dc34-461f-823d-a361eb22635a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0432a95f-d2b1-490e-9cbf-d815905a8b7f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-045e4030-cf1c-4b14-b79a-5245f6b74e39.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-04d9d24a-ca12-4328-9afd-ec77ffa7777c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-05234a71-6ea8-467e-a091-d37d274dff32.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-059ce734-db40-426c-8b12-6e7c4ce23f28.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-073f2c4b-7570-4751-a23b-2b6671d50d5f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-07a4f60b-714a-4a68-a52d-e11d5e75bd72.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0c3f1672-a9ed-4e15-8958-c849cfcc6a55.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0d01c25f-bbee-4d6f-bb4c-49734c145149.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0f4bc92c-ef3a-4f28-b4e2-b86a90bf8d2b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-104d0117-63ee-4836-86bd-5a010dc26b65.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-10e5c738-60f6-4c14-831c-bc03b3a57d7d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-11025533-7f21-4e06-989a-f44c0321912a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-111d4e27-fc7a-441a-8ffc-ce7ce2642913.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-123c9a6f-74c0-4555-9df8-f97a07287360.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12476b3b-fbce-4118-82b1-a145a852657b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12735876-af9f-4428-a052-e63b52d0f078.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12a1016e-d6ef-4609-a6ec-353b286b7b13.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12b00507-67ae-4562-8fb2-2d53ebb5ab7b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-141a1f06-c8f6-452c-aa54-127f381bf817.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-16de9b70-0b43-4c15-817f-5e1d9b32e97c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1717dd36-1f76-4c28-b066-3e39657dc76c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-18f0c84a-d177-430c-b04b-515ec53b0300.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1b9b7214-1316-421d-92f3-3b7e81dec231.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1c554221-437f-480d-ad50-497843cdaa24.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1e29c23e-5e7e-4241-abb7-3c4856137261.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1f874f19-963d-4049-a8e8-ef5b9f9f381c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-214ad94a-e12e-4833-b7ed-c46663c95e14.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-219a7776-9dca-4009-9546-870e9a92837c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-22beb53c-c20f-4718-a93f-f07042754619.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2449f543-9a33-4102-9790-68287c477c49.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-24967750-cafe-442b-994a-3e7c692e0277.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-24c61011-4440-4d2b-9671-38609b1b5653.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-267cba08-1fce-4e37-9d69-816e6ab26d7d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-27134d56-5850-4b3c-afa4-af1009656204.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-293b9419-2e83-4a7a-835c-dd0894e8791c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-29c29f0f-4a9b-4525-83d8-fa6157be2104.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2b9d441f-e7af-475e-af3c-605bdfbf2d29.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2cf3bd31-269e-4f42-907a-e7081af09d31.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2d23ea2d-de8d-431f-8230-4e675d1af307.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-31c8df34-58b6-4363-86d3-992b72328c14.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-34485209-eace-4d0a-ae57-d20d2635ac7b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-354e6f3d-ecff-4b20-9552-fc4674386e23.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-358c2904-cacb-4e51-ae10-471a26505529.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3768c30e-2a7e-470f-9abf-f826a9795621.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3ba7ee77-f877-4867-816b-954755270a1c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3cb3d460-3fc8-462d-8d45-565ca8c0225c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3d5a1942-1c47-4a1d-800a-b35246a01267.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3dd20716-67e6-4745-8f3b-31529e70195e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3e8afd5d-3339-4d0b-89af-20020facc00e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3e9fba12-7d0c-4905-b0e0-df04b8f3d14c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3f211b7c-9495-4110-beff-ba449920e41b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-40149003-625e-427b-8cc9-763c60d38911.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-420cba68-d980-4c6d-9596-126b0c317d14.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4387036a-d805-4800-958c-d9592d16681b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-44e81066-98ab-4502-8c45-eb32456f4271.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-47be1273-9434-4b37-add9-1f60087b3a77.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-48694517-bbbc-4a44-b9e4-b840aaa43a54.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4b23e84e-4463-445b-a496-4e5761031704.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4c52307e-069c-4e63-870d-7042e558424a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4cddab1c-f929-4d01-bf48-76300a72cb57.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4d64ab13-e5f6-476f-92b2-84675f774909.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4eb15874-325a-4d23-85de-ff6e2a10d32c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4f4c2052-9bfe-4f40-9765-fb00717f3505.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4fa97456-8c98-4b11-a439-d44904a7a364.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-507cdc2e-5d0f-440d-a31f-772e2edbc323.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-50821119-9029-4e57-af36-a647a2fc2c11.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-524f7e0c-ec7c-473b-a137-58282141ba6a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-529c8643-134a-4179-85fc-da059759ac3b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-52dfe221-0958-4c16-ad68-f041fdbd6e7c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5356e704-6abf-4876-8dbc-d327f0a5084c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53573c41-309d-441e-b379-cf4ccd409b33.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53630c44-fdd7-4b2c-b783-8f6dbefc2229.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53694b40-4aca-483f-b232-895e8289db7f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53d43f50-e357-4607-8eb2-8a68b60fcc0a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5620a313-65db-4376-8dc8-1e791fdf3571.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-575ccb00-814b-4123-ab39-d41b9ce2243f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-57e52148-7fb9-4454-bcd5-b45e0de84944.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-592f9311-6be0-4b03-aaf6-7934f8edaf73.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5af56438-42c2-4b34-a62e-0d2e6ce64c5f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5c2bea06-aae0-4e66-a70c-8a5e6fb7a17b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5ce63447-2162-4202-a48f-2623fb27fc49.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5d0f705a-f13e-4d13-b2ae-b52467e5053a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5db3e275-ad20-4445-9335-6a744d29e81a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5edeac05-a8cd-4501-bdaf-01586a52b06e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5f4d8e20-f5c4-497f-b90c-3869dbefa351.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6121913a-58b2-4144-92b7-8d1d0c30e23d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6123d273-da15-4130-b5b4-0a217adad246.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-616ddf1f-5a8f-4a17-a016-fe019dca8d1b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-61fec331-b466-4d56-b823-6d6fa5f61f3c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-62e78001-6b5d-4850-b2eb-c138c83b1b38.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-63185210-ceca-4678-954e-787e2ef58b22.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-635de220-b9a0-4826-8ec2-7717cc220415.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-63a8dd06-7438-4b5c-89ad-3a7233b2417e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-64bb866b-7cda-4a58-892d-ad674c70ac39.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-65097e03-9bae-4719-baeb-46049b721b1f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-68efe35a-7c74-4004-a3dd-a371c5549038.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-69888316-da01-4c62-aafd-862ee7ea8534.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6b630d46-2484-4341-aa22-2537f83f3264.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6ce1d243-5e0f-4258-ba9f-1b3789ad636a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6d45c24d-deaa-4b63-8a01-176883309d42.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6e305f58-46e7-442f-9bc9-d71ee308e51f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6fad0d14-ecd0-4123-8638-8632fa896f57.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6fbd240c-f708-4b40-8b4b-e46ddd00454c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7207d15e-c6bd-491f-8ee9-e061b819847b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-720f7e5f-1a2b-4d35-8be9-4605dd2cca5c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-729c1f24-3fa9-411f-b054-403b45e8981d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-72c39d68-9dc2-4f2c-b14c-da520659ce62.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7440bd58-1c78-4918-a157-d412ad9a3923.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-76006e65-48fd-4d55-87d3-8752db50532b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7619c91b-ef49-4a3a-a7e6-5b2c5c00aa4e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-76b83d76-3283-4546-9d24-c33eb8309203.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-76d66a47-d9a2-441e-9d3a-191e32df6267.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-77126155-33d4-4f17-9502-2b5b8ce0521a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-77355865-e9fa-4104-ba7d-05034ae86132.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-78f34215-06ee-4a2a-8a46-067ad6017b1b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7d83c559-5f6b-472c-aaae-d264dc8c4d4c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7de4d56e-3087-4635-92f9-9e157aad390a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-80537868-24c5-4142-a8e5-ce784fa31049.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-80cd6223-76d9-4923-b6a8-bf6a4e708f26.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-8177c73e-4df4-4a2a-a4fd-6658c2620d5f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-81b48b38-d3da-4d33-9f36-493a35d2f520.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-82004f47-6a42-473c-b491-7b09b1595951.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-827ff65d-a111-4c4f-a1a9-5d412b70af7b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-83037b26-0dab-4c40-a1ce-1874015bf976.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-8338ac68-318c-4209-b31c-4d4916616700.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-83c7a350-fdcd-4a48-8e6a-be6b7d65f220.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-83ff1d51-cda7-4725-800e-041f4abec01f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-86047630-11db-433d-8a17-4353bda1e350.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-86e46c4b-2ea8-4655-9909-a2153a7dce27.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-87729956-ff22-4434-a559-174ee0bf2a3a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-87975802-7039-411b-8ff3-7a79f386a12c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-88cd4227-06bf-443f-8043-46620ceeab3b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-89ea4e73-048b-4f3e-8e54-0523a393b10a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-8d19651c-f198-446b-91d3-1f1a8329926e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-934fb635-f637-4c78-bb0b-2a511c2f541d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9416990e-70aa-422a-9d86-2749f3bb9472.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9485e241-46d3-426d-9384-e3252602d740.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9630460d-cb93-4c4f-a588-3c62ef84fe14.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9676f02d-2ff6-4931-81ee-ad3c15b6af50.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9682080d-1c61-4373-92e1-fe5b9698df44.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-96c88330-3564-462b-99aa-f41098bc381e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-975b9f28-bec1-4832-ac04-e81010d1e425.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-986cd753-63ea-410b-9e2f-671511800a3e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-989c783a-5db9-4f5d-9c60-2a24b053837b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-99da9a43-fd44-4954-9fa6-313cb1ea7b0f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9a1cc27f-7597-4b4b-bfdd-7d58ad837d0f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9a2a923b-ffc8-4b46-bc68-f8643802382a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9abe5411-ca5b-4d78-b4ff-7850e7eefb49.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9dba740c-088e-463e-9539-cf1d58a37465.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9e13342b-d99b-4a1a-acee-637f7e893958.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9ef5ba49-800a-4402-935c-4e525587090b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9f8bd01b-289b-430a-aaf4-597c7560031d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9f93581f-e3a2-4600-a214-1e57963abe36.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a026f72b-d6d4-4d6e-a152-b73ad08dd455.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a05b3b19-d1f8-4917-b55a-586ed279b51f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a0a48f76-7057-4b14-a522-c058ee0a073c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a0a9704a-e42c-4142-8356-21137c98c519.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a0f6564f-576a-4435-b596-8951d9d3ac66.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a1a70b73-963e-4102-b71a-1941662bd83c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a40df321-8128-466f-a5c1-1c55397fd676.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a4b2841f-1fd8-4f50-ae7b-837951f24824.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a6982720-c29b-4a43-8846-b33c50dc3535.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a7bb857a-2f8d-4f42-83d5-ad5fd343c438.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a7d4972d-08d2-4d3e-a046-c52ad688cb53.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a8ece178-9547-455a-a337-7c5f6fb4041d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a90eae56-c942-415c-98cc-e2433ffff57b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aa343c26-be01-402c-ab1b-571f6ae2c475.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aa357b60-4a5b-4427-93c1-c437cf6df774.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aa6cdb6f-6eec-4519-bf9d-7001a6475410.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ab084e5e-2e21-4e42-a6dc-304d34015419.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ab56b466-d3e4-4752-a77b-154a559eb93d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ac3f0178-e8c3-473b-8b3a-eb52ee78dd51.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ace1dc1e-1069-4b7b-9968-6a0564c69b04.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ad074030-0aa5-466d-b0db-fc51206a8560.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ad22d206-bb72-4628-90f1-5750d1d9c42d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ad7d1e5c-614c-4962-9d65-e94e4d412014.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-addaec04-2afe-4c57-a3ce-214e16777640.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ae1aa25f-7da4-4578-ade7-0f5d4f02f76f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aec94f4b-ea98-4e0c-aab3-0b0401410e54.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-afc57d07-35e8-4d3e-a1a0-6a3b4a02b97e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b0ba2125-470c-4d1e-8f02-3b6082cb976e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b406a13b-b1d7-4921-b438-cd34bf24cb57.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b458b139-752b-4439-add4-310fa5c89443.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b7091b0e-c923-4a0b-8f0d-6942599e9625.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b74c304b-3d02-4130-af32-cd5cdca78a6c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b75b9f09-cd50-4d2b-aeac-70537810f16b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ba0bca5f-6c63-4115-976c-216036623967.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bb236563-f602-4d72-bd7d-88094f1b0e63.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bb25133c-ad35-4d43-9593-3b0ae8479943.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bb50a87d-901b-4e5e-b3ec-6d01d7a21e3f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bc02401e-c48b-4312-aecf-af2c4b7a587d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bff27721-b39a-4e3f-a62e-7b6100469e2b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c016f44b-abd6-432b-8ccd-c738827f073b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c133df15-5c37-4b70-893e-190c192bd506.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c136665a-e51a-417b-a02d-ad6c6683807b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c3f69324-ba73-4633-baa8-202f5d7d0159.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c6759b1a-bde2-4c15-a9fe-686b9357da78.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c6930965-e708-4a61-9548-1f1f9dc50a57.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c6d09269-e773-4301-bab9-bb47c5935046.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c7472654-bf9f-4762-bcac-0150809a3978.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c7deda6b-21cf-4e10-ba7c-0906002d2057.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-cc20381b-c7cf-462a-beca-b1525f551e0b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-cc80bf7d-79dc-4059-927a-d93aa9d6c62f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-cfa73e1a-806e-4723-b624-5f5120aa6062.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d0a79e3c-1b52-4f34-897e-555cd163bf3f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d21b616e-ecd9-4945-920e-3f475b0f1544.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d2df223d-1588-4755-ad8e-de5b8fc48514.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d5d36042-83be-4a05-bf38-3571a8666b01.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d5fc283d-6a4e-4d6b-8b1a-2714604bb67b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d790ad72-a0cc-406a-a9df-50159af33f5f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d828f565-6dad-480f-b181-4c6d549b9f48.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d95f0f42-ac7a-4b36-8504-fe6b7696dd5a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-da9be369-aa39-4414-b7ad-207891159b7d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-dade0961-88f0-420e-a729-b35edb6b2401.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-dd03cc40-3120-4664-927b-ba481e37fa3b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-dd0f4370-538d-4403-8ee1-0544fb48e332.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-deb52001-3a76-4422-b838-9c736eaa7f2b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-df5d9b45-43ab-4b0e-bb0f-96145752d04a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-df6bfb3d-1092-4756-8b02-7468035c835b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e1becf74-f794-4d68-b48b-bd210ee0b757.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e69d9a3c-5025-454d-987c-4b258877f967.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e6f44c35-984a-4b64-bf04-f449e8cd067f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e7b7aa30-ab53-4e1f-9ca2-0969992b9e3a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e98d763a-60e7-4073-ad20-1c5fafda2104.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e9947708-b66a-4c3d-b8a2-88436e4afa5c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e9c08b46-3518-4d5f-8e9b-de542252ee68.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e9fa3e08-94f8-4872-94c8-196d8625295d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ea6ddf7f-90a9-4535-8101-235c315f157c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-eab69e54-7946-4564-bc28-370d31d0c14a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ed40d013-6ce8-4754-b7b0-74602720524c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ef4de707-06c9-4418-bd91-7b74a6795902.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ef5d747c-fbe9-4069-878a-e2405445760d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f190300e-c4c2-4332-9810-c21cb1e67a6d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f2a8955d-767f-4454-a942-657319492271.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f2da6a63-7055-4a3d-8985-cf347b81404b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f4ca626a-f2c2-4125-8f3f-2921327af621.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f51f777e-e12f-480e-a51c-ce369f517947.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f6431d77-50d3-4f70-8e00-ca3341393e62.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f733aa5e-3b31-4e6b-a320-7a44c61f5f2d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f8187a54-2e68-4856-b1d8-070d89fa8c3d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f9412141-c174-493b-b7f5-626f1cca8a09.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-fa15082b-04e9-4f0a-a547-3232fc7b020d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-fa20585b-27cb-401f-afd3-4405ced6c755.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-fc12e279-c004-4968-9c03-965120089a68.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ff2fd70c-dabb-4138-aaee-ef47c51feb64.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ff924c78-eb7a-4c23-b92c-fe7b67c6ae37.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ffec5200-face-4011-a05c-36790b9f0c0b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR10.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR11.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR12.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR13.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR14.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR15.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR16.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR17.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR18.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR19.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1A.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1B.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1C.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1D.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1E.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1F.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR20.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR21.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR22.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR23.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR24.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR25.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR26.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR27.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR28.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR29.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2A.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2B.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2C.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2D.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2E.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2F.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR3.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR30.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR31.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR32.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR33.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR34.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR35.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR36.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR37.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR38.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR4.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR5.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR6.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR7.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR8.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR9.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURA.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURB.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURC.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURD.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURE.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\7za.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\conduitinstaller.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jre-6u31-windows-i586-iftw-rv.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\Kreapixel_addonAcPro.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\MSETUP4.EXE
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\MyBabylonTB.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\ose00000.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\push.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\Setup.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\SpotifyUpgrader.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\webplayer.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\_te25F.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\colorpicker.htm
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\eula.html
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jscontainer.htm
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp	abs.htm
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\gd34D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\is483.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~357.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF10D0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF1432.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF168A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF240F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF26C3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF2F0C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5AA7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5B43.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5C76.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5E7F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF845C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF9423.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF94F7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF9A8C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFA771.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFAAC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFE188.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFEBA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFF815.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\gd34D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\is483.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~357.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF10D0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF1432.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF240F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF26C3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF2F0C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5AA7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5B43.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5C76.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5E7F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF845C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF9423.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF94F7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DFA771.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DFE188.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DFF815.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\.cleanup.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\001171.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\14.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\155196.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\1D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\31.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\34.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\4.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\466586.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\6.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\615097.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\6ux369.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\7.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS2A.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS50.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS589.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS67.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS675.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\A9R42E2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\bb435E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD3B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD3D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD41.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD46.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD48.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\CR_35B40.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\fla44.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\fla45.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\fla48.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\gd34D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\IEC355.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\IEC358.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\is483.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\is5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\j2gC0A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache2868914835437258098.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache54703525118611025.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache7230730419412166458.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache7389933369740089577.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache8422748116928208792.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
ero.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
ps.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
sc35F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
sg363.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
si1C5.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
so1A3.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
so1BA.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\NSS1C4.TMP
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
sz356.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\set357.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\SPE456.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk1FB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk1FC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk1FD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk1FE.tmp
Quarantined and deleted successfully : C:\Documents and

fanfan2012 · Answer

il manque la fin, je met la 2e partie : 

06:13:03

Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Application Data\InstallShield
Quarantined and deleted successfully : C:\Documents and settings\Default User\Application Data\InstallShield
Quarantined and deleted successfully : C:\Documents and settings\Francois\Application Data\InstallShield
Quarantined and deleted successfully : C:\Program Files\LP
Quarantined and deleted successfully : C:\WINDOWS\Thumbs.db
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local Settings\Application Data\dt.dat
Quarantined and deleted successfully : C:\Temp\devcon.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR10.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR11.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR12.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR14.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR17.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR19.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1B.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1E.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1F.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR20.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR25.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR26.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR5.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR7.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR8.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR9.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURC.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURD.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURE.exe
Quarantined and deleted successfully : C:\WINDOWS\Temp\140.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\1A0.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\1EF.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\92.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-007b5c02-dc34-461f-823d-a361eb22635a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0432a95f-d2b1-490e-9cbf-d815905a8b7f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-045e4030-cf1c-4b14-b79a-5245f6b74e39.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-04d9d24a-ca12-4328-9afd-ec77ffa7777c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-05234a71-6ea8-467e-a091-d37d274dff32.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-059ce734-db40-426c-8b12-6e7c4ce23f28.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-073f2c4b-7570-4751-a23b-2b6671d50d5f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-07a4f60b-714a-4a68-a52d-e11d5e75bd72.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0c3f1672-a9ed-4e15-8958-c849cfcc6a55.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0d01c25f-bbee-4d6f-bb4c-49734c145149.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0f4bc92c-ef3a-4f28-b4e2-b86a90bf8d2b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-104d0117-63ee-4836-86bd-5a010dc26b65.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-10e5c738-60f6-4c14-831c-bc03b3a57d7d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-11025533-7f21-4e06-989a-f44c0321912a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-111d4e27-fc7a-441a-8ffc-ce7ce2642913.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-123c9a6f-74c0-4555-9df8-f97a07287360.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12476b3b-fbce-4118-82b1-a145a852657b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12735876-af9f-4428-a052-e63b52d0f078.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12a1016e-d6ef-4609-a6ec-353b286b7b13.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12b00507-67ae-4562-8fb2-2d53ebb5ab7b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-141a1f06-c8f6-452c-aa54-127f381bf817.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-16de9b70-0b43-4c15-817f-5e1d9b32e97c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1717dd36-1f76-4c28-b066-3e39657dc76c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-18f0c84a-d177-430c-b04b-515ec53b0300.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1b9b7214-1316-421d-92f3-3b7e81dec231.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1c554221-437f-480d-ad50-497843cdaa24.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1e29c23e-5e7e-4241-abb7-3c4856137261.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1f874f19-963d-4049-a8e8-ef5b9f9f381c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-214ad94a-e12e-4833-b7ed-c46663c95e14.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-219a7776-9dca-4009-9546-870e9a92837c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-22beb53c-c20f-4718-a93f-f07042754619.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2449f543-9a33-4102-9790-68287c477c49.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-24967750-cafe-442b-994a-3e7c692e0277.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-24c61011-4440-4d2b-9671-38609b1b5653.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-267cba08-1fce-4e37-9d69-816e6ab26d7d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-27134d56-5850-4b3c-afa4-af1009656204.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-293b9419-2e83-4a7a-835c-dd0894e8791c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-29c29f0f-4a9b-4525-83d8-fa6157be2104.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2b9d441f-e7af-475e-af3c-605bdfbf2d29.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2cf3bd31-269e-4f42-907a-e7081af09d31.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2d23ea2d-de8d-431f-8230-4e675d1af307.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-31c8df34-58b6-4363-86d3-992b72328c14.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-34485209-eace-4d0a-ae57-d20d2635ac7b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-354e6f3d-ecff-4b20-9552-fc4674386e23.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-358c2904-cacb-4e51-ae10-471a26505529.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3768c30e-2a7e-470f-9abf-f826a9795621.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3ba7ee77-f877-4867-816b-954755270a1c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3cb3d460-3fc8-462d-8d45-565ca8c0225c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3d5a1942-1c47-4a1d-800a-b35246a01267.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3dd20716-67e6-4745-8f3b-31529e70195e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3e8afd5d-3339-4d0b-89af-20020facc00e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3e9fba12-7d0c-4905-b0e0-df04b8f3d14c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3f211b7c-9495-4110-beff-ba449920e41b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-40149003-625e-427b-8cc9-763c60d38911.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-420cba68-d980-4c6d-9596-126b0c317d14.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4387036a-d805-4800-958c-d9592d16681b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-44e81066-98ab-4502-8c45-eb32456f4271.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-47be1273-9434-4b37-add9-1f60087b3a77.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-48694517-bbbc-4a44-b9e4-b840aaa43a54.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4b23e84e-4463-445b-a496-4e5761031704.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4c52307e-069c-4e63-870d-7042e558424a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4cddab1c-f929-4d01-bf48-76300a72cb57.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4d64ab13-e5f6-476f-92b2-84675f774909.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4eb15874-325a-4d23-85de-ff6e2a10d32c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4f4c2052-9bfe-4f40-9765-fb00717f3505.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4fa97456-8c98-4b11-a439-d44904a7a364.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-507cdc2e-5d0f-440d-a31f-772e2edbc323.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-50821119-9029-4e57-af36-a647a2fc2c11.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-524f7e0c-ec7c-473b-a137-58282141ba6a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-529c8643-134a-4179-85fc-da059759ac3b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-52dfe221-0958-4c16-ad68-f041fdbd6e7c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5356e704-6abf-4876-8dbc-d327f0a5084c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53573c41-309d-441e-b379-cf4ccd409b33.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53630c44-fdd7-4b2c-b783-8f6dbefc2229.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53694b40-4aca-483f-b232-895e8289db7f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53d43f50-e357-4607-8eb2-8a68b60fcc0a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5620a313-65db-4376-8dc8-1e791fdf3571.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-575ccb00-814b-4123-ab39-d41b9ce2243f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-57e52148-7fb9-4454-bcd5-b45e0de84944.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-592f9311-6be0-4b03-aaf6-7934f8edaf73.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5af56438-42c2-4b34-a62e-0d2e6ce64c5f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5c2bea06-aae0-4e66-a70c-8a5e6fb7a17b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5ce63447-2162-4202-a48f-2623fb27fc49.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5d0f705a-f13e-4d13-b2ae-b52467e5053a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5db3e275-ad20-4445-9335-6a744d29e81a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5edeac05-a8cd-4501-bdaf-01586a52b06e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5f4d8e20-f5c4-497f-b90c-3869dbefa351.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6121913a-58b2-4144-92b7-8d1d0c30e23d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6123d273-da15-4130-b5b4-0a217adad246.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-616ddf1f-5a8f-4a17-a016-fe019dca8d1b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-61fec331-b466-4d56-b823-6d6fa5f61f3c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-62e78001-6b5d-4850-b2eb-c138c83b1b38.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-63185210-ceca-4678-954e-787e2ef58b22.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-635de220-b9a0-4826-8ec2-7717cc220415.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-63a8dd06-7438-4b5c-89ad-3a7233b2417e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-64bb866b-7cda-4a58-892d-ad674c70ac39.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-65097e03-9bae-4719-baeb-46049b721b1f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-68efe35a-7c74-4004-a3dd-a371c5549038.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-69888316-da01-4c62-aafd-862ee7ea8534.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6b630d46-2484-4341-aa22-2537f83f3264.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6ce1d243-5e0f-4258-ba9f-1b3789ad636a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6d45c24d-deaa-4b63-8a01-176883309d42.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6e305f58-46e7-442f-9bc9-d71ee308e51f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6fad0d14-ecd0-4123-8638-8632fa896f57.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6fbd240c-f708-4b40-8b4b-e46ddd00454c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7207d15e-c6bd-491f-8ee9-e061b819847b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-720f7e5f-1a2b-4d35-8be9-4605dd2cca5c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-729c1f24-3fa9-411f-b054-403b45e8981d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-72c39d68-9dc2-4f2c-b14c-da520659ce62.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7440bd58-1c78-4918-a157-d412ad9a3923.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-76006e65-48fd-4d55-87d3-8752db50532b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7619c91b-ef49-4a3a-a7e6-5b2c5c00aa4e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-76b83d76-3283-4546-9d24-c33eb8309203.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-76d66a47-d9a2-441e-9d3a-191e32df6267.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-77126155-33d4-4f17-9502-2b5b8ce0521a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-77355865-e9fa-4104-ba7d-05034ae86132.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-78f34215-06ee-4a2a-8a46-067ad6017b1b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7d83c559-5f6b-472c-aaae-d264dc8c4d4c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7de4d56e-3087-4635-92f9-9e157aad390a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-80537868-24c5-4142-a8e5-ce784fa31049.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-80cd6223-76d9-4923-b6a8-bf6a4e708f26.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-8177c73e-4df4-4a2a-a4fd-6658c2620d5f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-81b48b38-d3da-4d33-9f36-493a35d2f520.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-82004f47-6a42-473c-b491-7b09b1595951.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-827ff65d-a111-4c4f-a1a9-5d412b70af7b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-83037b26-0dab-4c40-a1ce-1874015bf976.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-8338ac68-318c-4209-b31c-4d4916616700.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-83c7a350-fdcd-4a48-8e6a-be6b7d65f220.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-83ff1d51-cda7-4725-800e-041f4abec01f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-86047630-11db-433d-8a17-4353bda1e350.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-86e46c4b-2ea8-4655-9909-a2153a7dce27.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-87729956-ff22-4434-a559-174ee0bf2a3a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-87975802-7039-411b-8ff3-7a79f386a12c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-88cd4227-06bf-443f-8043-46620ceeab3b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-89ea4e73-048b-4f3e-8e54-0523a393b10a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-8d19651c-f198-446b-91d3-1f1a8329926e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-934fb635-f637-4c78-bb0b-2a511c2f541d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9416990e-70aa-422a-9d86-2749f3bb9472.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9485e241-46d3-426d-9384-e3252602d740.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9630460d-cb93-4c4f-a588-3c62ef84fe14.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9676f02d-2ff6-4931-81ee-ad3c15b6af50.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9682080d-1c61-4373-92e1-fe5b9698df44.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-96c88330-3564-462b-99aa-f41098bc381e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-975b9f28-bec1-4832-ac04-e81010d1e425.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-986cd753-63ea-410b-9e2f-671511800a3e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-989c783a-5db9-4f5d-9c60-2a24b053837b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-99da9a43-fd44-4954-9fa6-313cb1ea7b0f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9a1cc27f-7597-4b4b-bfdd-7d58ad837d0f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9a2a923b-ffc8-4b46-bc68-f8643802382a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9abe5411-ca5b-4d78-b4ff-7850e7eefb49.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9dba740c-088e-463e-9539-cf1d58a37465.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9e13342b-d99b-4a1a-acee-637f7e893958.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9ef5ba49-800a-4402-935c-4e525587090b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9f8bd01b-289b-430a-aaf4-597c7560031d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9f93581f-e3a2-4600-a214-1e57963abe36.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a026f72b-d6d4-4d6e-a152-b73ad08dd455.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a05b3b19-d1f8-4917-b55a-586ed279b51f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a0a48f76-7057-4b14-a522-c058ee0a073c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a0a9704a-e42c-4142-8356-21137c98c519.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a0f6564f-576a-4435-b596-8951d9d3ac66.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a1a70b73-963e-4102-b71a-1941662bd83c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a40df321-8128-466f-a5c1-1c55397fd676.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a4b2841f-1fd8-4f50-ae7b-837951f24824.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a6982720-c29b-4a43-8846-b33c50dc3535.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a7bb857a-2f8d-4f42-83d5-ad5fd343c438.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a7d4972d-08d2-4d3e-a046-c52ad688cb53.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a8ece178-9547-455a-a337-7c5f6fb4041d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a90eae56-c942-415c-98cc-e2433ffff57b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aa343c26-be01-402c-ab1b-571f6ae2c475.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aa357b60-4a5b-4427-93c1-c437cf6df774.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aa6cdb6f-6eec-4519-bf9d-7001a6475410.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ab084e5e-2e21-4e42-a6dc-304d34015419.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ab56b466-d3e4-4752-a77b-154a559eb93d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ac3f0178-e8c3-473b-8b3a-eb52ee78dd51.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ace1dc1e-1069-4b7b-9968-6a0564c69b04.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ad074030-0aa5-466d-b0db-fc51206a8560.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ad22d206-bb72-4628-90f1-5750d1d9c42d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ad7d1e5c-614c-4962-9d65-e94e4d412014.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-addaec04-2afe-4c57-a3ce-214e16777640.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ae1aa25f-7da4-4578-ade7-0f5d4f02f76f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aec94f4b-ea98-4e0c-aab3-0b0401410e54.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-afc57d07-35e8-4d3e-a1a0-6a3b4a02b97e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b0ba2125-470c-4d1e-8f02-3b6082cb976e.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b406a13b-b1d7-4921-b438-cd34bf24cb57.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b458b139-752b-4439-add4-310fa5c89443.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b7091b0e-c923-4a0b-8f0d-6942599e9625.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b74c304b-3d02-4130-af32-cd5cdca78a6c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b75b9f09-cd50-4d2b-aeac-70537810f16b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ba0bca5f-6c63-4115-976c-216036623967.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bb236563-f602-4d72-bd7d-88094f1b0e63.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bb25133c-ad35-4d43-9593-3b0ae8479943.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bb50a87d-901b-4e5e-b3ec-6d01d7a21e3f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bc02401e-c48b-4312-aecf-af2c4b7a587d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bff27721-b39a-4e3f-a62e-7b6100469e2b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c016f44b-abd6-432b-8ccd-c738827f073b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c133df15-5c37-4b70-893e-190c192bd506.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c136665a-e51a-417b-a02d-ad6c6683807b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c3f69324-ba73-4633-baa8-202f5d7d0159.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c6759b1a-bde2-4c15-a9fe-686b9357da78.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c6930965-e708-4a61-9548-1f1f9dc50a57.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c6d09269-e773-4301-bab9-bb47c5935046.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c7472654-bf9f-4762-bcac-0150809a3978.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c7deda6b-21cf-4e10-ba7c-0906002d2057.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-cc20381b-c7cf-462a-beca-b1525f551e0b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-cc80bf7d-79dc-4059-927a-d93aa9d6c62f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-cfa73e1a-806e-4723-b624-5f5120aa6062.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d0a79e3c-1b52-4f34-897e-555cd163bf3f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d21b616e-ecd9-4945-920e-3f475b0f1544.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d2df223d-1588-4755-ad8e-de5b8fc48514.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d5d36042-83be-4a05-bf38-3571a8666b01.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d5fc283d-6a4e-4d6b-8b1a-2714604bb67b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d790ad72-a0cc-406a-a9df-50159af33f5f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d828f565-6dad-480f-b181-4c6d549b9f48.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d95f0f42-ac7a-4b36-8504-fe6b7696dd5a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-da9be369-aa39-4414-b7ad-207891159b7d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-dade0961-88f0-420e-a729-b35edb6b2401.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-dd03cc40-3120-4664-927b-ba481e37fa3b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-dd0f4370-538d-4403-8ee1-0544fb48e332.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-deb52001-3a76-4422-b838-9c736eaa7f2b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-df5d9b45-43ab-4b0e-bb0f-96145752d04a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-df6bfb3d-1092-4756-8b02-7468035c835b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e1becf74-f794-4d68-b48b-bd210ee0b757.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e69d9a3c-5025-454d-987c-4b258877f967.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e6f44c35-984a-4b64-bf04-f449e8cd067f.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e7b7aa30-ab53-4e1f-9ca2-0969992b9e3a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e98d763a-60e7-4073-ad20-1c5fafda2104.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e9947708-b66a-4c3d-b8a2-88436e4afa5c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e9c08b46-3518-4d5f-8e9b-de542252ee68.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e9fa3e08-94f8-4872-94c8-196d8625295d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ea6ddf7f-90a9-4535-8101-235c315f157c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-eab69e54-7946-4564-bc28-370d31d0c14a.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ed40d013-6ce8-4754-b7b0-74602720524c.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ef4de707-06c9-4418-bd91-7b74a6795902.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ef5d747c-fbe9-4069-878a-e2405445760d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f190300e-c4c2-4332-9810-c21cb1e67a6d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f2a8955d-767f-4454-a942-657319492271.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f2da6a63-7055-4a3d-8985-cf347b81404b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f4ca626a-f2c2-4125-8f3f-2921327af621.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f51f777e-e12f-480e-a51c-ce369f517947.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f6431d77-50d3-4f70-8e00-ca3341393e62.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f733aa5e-3b31-4e6b-a320-7a44c61f5f2d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f8187a54-2e68-4856-b1d8-070d89fa8c3d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f9412141-c174-493b-b7f5-626f1cca8a09.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-fa15082b-04e9-4f0a-a547-3232fc7b020d.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-fa20585b-27cb-401f-afd3-4405ced6c755.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-fc12e279-c004-4968-9c03-965120089a68.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ff2fd70c-dabb-4138-aaee-ef47c51feb64.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ff924c78-eb7a-4c23-b92c-fe7b67c6ae37.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ffec5200-face-4011-a05c-36790b9f0c0b.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR10.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR11.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR12.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR13.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR14.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR15.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR16.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR17.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR18.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR19.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1A.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1B.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1C.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1D.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1E.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1F.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR20.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR21.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR22.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR23.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR24.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR25.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR26.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR27.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR28.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR29.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2A.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2B.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2C.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2D.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2E.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2F.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR3.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR30.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR31.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR32.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR33.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR34.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR35.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR36.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR37.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR38.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR4.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR5.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR6.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR7.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR8.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR9.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURA.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURB.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURC.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURD.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURE.tmp
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\7za.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\conduitinstaller.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jre-6u31-windows-i586-iftw-rv.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\Kreapixel_addonAcPro.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\MSETUP4.EXE
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\MyBabylonTB.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\ose00000.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\push.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\Setup.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\SpotifyUpgrader.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\webplayer.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\_te25F.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\colorpicker.htm
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\eula.html
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jscontainer.htm
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp	abs.htm
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\gd34D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\is483.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~357.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF10D0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF1432.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF168A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF240F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF26C3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF2F0C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5AA7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5B43.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5C76.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5E7F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF845C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF9423.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF94F7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF9A8C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFA771.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFAAC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFE188.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFEBA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFF815.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\gd34D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\is483.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~357.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF10D0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF1432.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF240F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF26C3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF2F0C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5AA7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5B43.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5C76.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5E7F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF845C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF9423.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF94F7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DFA771.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DFE188.tmp
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DFF815.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\.cleanup.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\001171.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\14.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\155196.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\1D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\31.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\34.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\4.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\466586.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\6.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\615097.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\6ux369.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\7.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS2A.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS50.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS589.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS67.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS675.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\A9R42E2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\bb435E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD3B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD3D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD41.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD46.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD48.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\CR_35B40.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\fla44.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\fla45.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\fla48.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\gd34D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\IEC355.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\IEC358.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\is483.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\is5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\j2gC0A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache2868914835437258098.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache54703525118611025.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache7230730419412166458.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache7389933369740089577.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache8422748116928208792.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
ero.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
ps.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
sc35F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
sg363.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
si1C5.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
so1A3.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
so1BA.tmp
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\NSS1C4.TMP
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
sz356.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\set357.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\SPE456.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk1FB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk1FC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk1FD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk1FE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk1FF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk200.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk201.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk202.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk203.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk204.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk205.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk206.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk207.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk208.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk209.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk20A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk20B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk20C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk224.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk225.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk226.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk227.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk228.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk229.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk22A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk22B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk22C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk22D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk22E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk22F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk230.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk231.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk232.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk233.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk234.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk235.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk236.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk237.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2D7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2D9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2DB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2DD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2DF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2E1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2E3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2E5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2E7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2E9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2EB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2ED.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2EF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2F1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2F3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2F5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2F7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2F9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2FB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2FD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk2FF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk301.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk303.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk305.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk307.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk309.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk30B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk30D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk30F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk311.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk313.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk315.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk317.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk319.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk31B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk31D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk31F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk321.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk323.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk325.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk327.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk329.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk32B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk32D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk32F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk331.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk333.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk335.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk337.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk339.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk33B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk33D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk33F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk341.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk343.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk346.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk348.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk34A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk34C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk34E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk350.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk352.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk354.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk356.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk358.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk35A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk35C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk35E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk360.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk362.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk364.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk366.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk368.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk36A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk36C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk36E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk370.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk372.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk374.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk376.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk378.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk37A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk37C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk37E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk380.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk382.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk384.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk386.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk388.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk38A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk38C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk38E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk390.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk392.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk394.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk396.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk398.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk39A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk39C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk39E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk3A0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk3A2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk3A4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk3A6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk3A8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk3AA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk3AC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk3AE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk3B0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk3B2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk61D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk61F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk621.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk623.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk625.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk627.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk629.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk62B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk62D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk62F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk631.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk633.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk635.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk637.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk639.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk63B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk63D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk63F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk641.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk643.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk645.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk647.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk649.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk64B.tmp
Quarantined and deleted successfully : C:\

fanfan2012 · Answer

Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk64D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk64F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk651.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk653.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk655.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk657.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk659.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk65B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk65D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk671.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\wbk673.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\Web Data.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~357.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF1092.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF10F3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF10F7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF127C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF1335.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF143E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF15BD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF185C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF1D40.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF1D9E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF1E0A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF1F1C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF20D7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF21D5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2247.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2321.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2359.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2672.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF28DC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2907.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF298F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF29D7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2AA4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2BEB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2C0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2C92.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2D37.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2DBE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2E18.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2F7C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF2FEC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF305B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF30F6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF318.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF3397.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF33A0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF354E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF35C9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF3635.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF38B6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF391A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF3B3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF3B30.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF3CB4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF3DD6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF3E08.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4043.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4175.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF42B4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF440E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF44B1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF45A0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF463B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4654.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4688.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4787.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF47F5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4845.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF484B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4863.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF48BE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4988.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF49B4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF49CF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4B25.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4B51.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4B71.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4B8E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4CAE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4D39.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4D88.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4D9F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4E22.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4E85.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4F3C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF4F72.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5049.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5145.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF517D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF51AD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF51B7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF51F4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF51F9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5211.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF523C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5288.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5367.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF54FA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF564E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF56BF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5799.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF579E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF585E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF588C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF59BA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5AD5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5ADC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5B67.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5C28.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5CBD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5CFA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5D9A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5DC8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5E30.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5E55.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5EC2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5EC8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5ED6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5F37.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5F76.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5FA1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF5FD8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6036.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF605D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6084.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF62A5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6377.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF63B0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6438.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF648A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF64C3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6647.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6666.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6673.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6788.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF679C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF67B1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF67BF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF67D9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6805.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF685A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6866.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF68FA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF697D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6999.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF69C4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF69DF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF69F3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6B24.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6C88.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6DAD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6DD5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6DEC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6E0B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6E85.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6F0E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF6FFF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7057.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7079.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF714C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7246.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF72A3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF731B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7478.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7541.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF756B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7587.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7600.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF762A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF76B5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7720.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7824.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7894.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7A02.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7A2A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7A34.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7B0F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7B53.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7C53.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7DCF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7E1D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF7EFB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8042.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8045.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8071.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF808B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF80CB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF80E9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8129.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8132.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8133.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8135.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8150.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8165.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF81BB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF81C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF81D5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF82EB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF830F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8366.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF836A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF83AF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF84B5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF84DB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF84E4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8523.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8547.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF854F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF85CA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF85F2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF85FE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8637.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8678.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF86A6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8765.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8934.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8AAC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8ABE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8B30.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8B5D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8B7B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8BB0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8BB7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8BE3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8BE4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8C23.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8CD0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8F59.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF8FF5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9090.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9138.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF914E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9231.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9293.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF92B1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF92CD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9331.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9356.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9391.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9412.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF947.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF948E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF94A6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF94CD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9513.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9564.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF956D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF95E1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF960B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF96A3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF970B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF970E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF974B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9820.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF983F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9849.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9893.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF98A8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF98C4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF98E4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF990D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9930.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9945.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9950.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF995D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9A36.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9B0C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9C94.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9CA0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9D6F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9DB3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9E4B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9E78.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9F0A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9F97.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DF9FB2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA132.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA152.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA17D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA205.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA214.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA23D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA284.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA2E7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA58A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA5D8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA62A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA647.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA664.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA6B4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA745.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA80A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA8B1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA8DF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFA972.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAA19.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAA6D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAA7F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAA91.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAAD5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAAE5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAB0F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAB7D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFABB8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAC04.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAC13.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFACEC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAD32.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAD4C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAE4D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAE53.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAEA6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAF4D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFAFA1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB049.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB0B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB2D3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB2F3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB337.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB42E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB4E5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB5A8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB62E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB7A5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB7E2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB8DF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB8F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB90C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB942.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB9AD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB9E6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFB9F1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBA67.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBA97.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBAB9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBACF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBB4A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBB4C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBC49.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBCB6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBCD6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBDC6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBE62.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBED7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBF37.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBF5F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBFEE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFBFF8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC0C2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC0FD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC1A7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC226.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC266.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC2C4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC2DF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC2E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC31E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC462.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC487.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC4E1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC4EB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC4EC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC4FF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC50D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC55D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC57E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC71B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC72F.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC79B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC7C3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC7DF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFC8DA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCA81.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCAC1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCAE6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCB54.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCB8A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCCBC.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCDB1.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCDD5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCE1C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCE6B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCEA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFCF1A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD021.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD050.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD1B6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD219.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD27.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD2F9.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD3A5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD3F6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD447.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD466.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD52A.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD57C.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD5F0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD635.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFD720.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDAD8.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDBAE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDCEE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDD85.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDD96.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDDD5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDDFF.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDE11.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDE49.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDEBD.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDED0.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFDF40.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE016.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE020.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE0C6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE1D4.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE35D.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE396.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE484.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE609.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE63B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE696.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE710.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE73E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE7E7.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE7F3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE934.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFE999.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFEBB2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFEC34.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFEDF6.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFEE86.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF238.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF312.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF318.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF329.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF455.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF493.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF4EE.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF4FB.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF51E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF630.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF713.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF83.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF94B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFF95E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFFA1E.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFFA51.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFFAE3.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFFB03.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFFC26.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFFDE5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFFECA.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\~DFFEF8.tmp

fanfan2012 · Answer

fully : C:\Documents and settings\Francois\Local settings\Temp	bWebp.dll
Quarantined and deleted successfully : C:\Program Files\searchweb	bunsi1C5.tmp
Quarantined and deleted successfully : \setup.exe
Impossible to move : C:\Documents and settings\Francois\Local settings\Temp\webplayer.exe
Impossible to move : C:\Program Files\searchweb	bunsi1C5.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\01net\avg_free_stb_eu_2012_2169_free.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\CCIS\ccsqlh.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\CT3128284\statisticsStub.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\FBF0DD04-BAB0-7891-9B53-26A2FB64C173\MyBabylonTB.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\FBF0DD04-BAB0-7891-9B53-26A2FB64C173\Setup.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\MozUpdater\updater.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\{8173A269-DAE5-4B6A-A444-1944E05B10C9}\GoogleCrashHandler.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\{8173A269-DAE5-4B6A-A444-1944E05B10C9}\GoogleCrashHandler64.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\{8173A269-DAE5-4B6A-A444-1944E05B10C9}\GoogleUpdate.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\{8173A269-DAE5-4B6A-A444-1944E05B10C9}\GoogleUpdateBroker.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\{8173A269-DAE5-4B6A-A444-1944E05B10C9}\GoogleUpdateOnDemand.exe
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\Google Toolbar\gtb1B.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\Google Toolbar\gtb2.tmp
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\Google Toolbar\gtbB.tmp

06:38:28

¤¤¤¤¤¤¤¤¤¤ | SafeBoot | Control | Repair

[HKLM | Safeboot] -> Missing...Restoring...
[HKLM | Safeboot\Minimal] -> Missing...Restoring...
[HKLM | Safeboot\Network] -> Missing...Restoring...

¤

[HKLM | Minimal\AppMgmt] :  -> Service
[HKLM | Minimal\Base] :  -> Driver Group
[HKLM | Minimal\Boot Bus Extender] :  -> Driver Group
[HKLM | Minimal\Boot file system] :  -> Driver Group
[HKLM | Minimal\CryptSvc] :  -> Service
[HKLM | Minimal\DcomLaunch] :  -> Service
[HKLM | Minimal\dmadmin] :  -> Service
[HKLM | Minimal\dmboot.sys] :  -> Driver
[HKLM | Minimal\dmio.sys] :  -> Driver
[HKLM | Minimal\dmload.sys] :  -> Driver
[HKLM | Minimal\dmserver] :  -> Service
[HKLM | Minimal\EventLog] :  -> Service
[HKLM | Minimal\File system] :  -> Driver Group
[HKLM | Minimal\Filter] :  -> Driver Group
[HKLM | Minimal\HelpSvc] :  -> Service
[HKLM | Minimal\Netlogon] :  -> Service
[HKLM | Minimal\PCI Configuration] :  -> Driver Group
[HKLM | Minimal\PlugPlay] :  -> Service
[HKLM | Minimal\PNP Filter] :  -> Driver Group
[HKLM | Minimal\Primary disk] :  -> Driver Group
[HKLM | Minimal\RpcSs] :  -> Service
[HKLM | Minimal\SCSI Class] :  -> Driver Group
[HKLM | Minimal\sermouse.sys] :  -> Driver
[HKLM | Minimal\sr.sys] :  -> FSFilter System Recovery
[HKLM | Minimal\SRService] :  -> Service
[HKLM | Minimal\System Bus Extender] :  -> Driver Group
[HKLM | Minimal\vds] :  -> Service
[HKLM | Minimal\vga.sys] :  -> Driver
[HKLM | Minimal\vgasave.sys] :  -> Driver
[HKLM | Minimal\WinMgmt] :  -> Service
[HKLM | Minimal\{36FC9E60-C465-11CF-8056-444553540000}] :  -> Universal Serial Bus controllers
[HKLM | Minimal\{4D36E965-E325-11CE-BFC1-08002BE10318}] :  -> CD-ROM Drive
[HKLM | Minimal\{4D36E967-E325-11CE-BFC1-08002BE10318}] :  -> DiskDrive
[HKLM | Minimal\{4D36E969-E325-11CE-BFC1-08002BE10318}] :  -> Standard floppy disk controller
[HKLM | Minimal\{4D36E96A-E325-11CE-BFC1-08002BE10318}] :  -> Hdc
[HKLM | Minimal\{4D36E96B-E325-11CE-BFC1-08002BE10318}] :  -> Keyboard
[HKLM | Minimal\{4D36E96F-E325-11CE-BFC1-08002BE10318}] :  -> Mouse
[HKLM | Minimal\{4D36E977-E325-11CE-BFC1-08002BE10318}] :  -> PCMCIA Adapters
[HKLM | Minimal\{4D36E97B-E325-11CE-BFC1-08002BE10318}] :  -> SCSIAdapter
[HKLM | Minimal\{4D36E97D-E325-11CE-BFC1-08002BE10318}] :  -> System
[HKLM | Minimal\{4D36E980-E325-11CE-BFC1-08002BE10318}] :  -> Floppy disk drive
[HKLM | Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] :  -> Volume shadow copy
[HKLM | Minimal\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] :  -> Volume
[HKLM | Minimal\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] :  -> Human Interface Devices

¤

[HKLM | Network\AFD] :  -> Service
[HKLM | Network\AppMgmt] :  -> Service
[HKLM | Network\Base] :  -> Driver Group
[HKLM | Network\Boot Bus Extender] :  -> Driver Group
[HKLM | Network\Boot file system] :  -> Driver Group
[HKLM | Network\Browser] :  -> Service
[HKLM | Network\CryptSvc] :  -> Service
[HKLM | Network\DcomLaunch] :  -> Service
[HKLM | Network\Dhcp] :  -> Service
[HKLM | Network\dmadmin] :  -> Service
[HKLM | Network\dmboot.sys] :  -> Driver
[HKLM | Network\dmio.sys] :  -> Driver
[HKLM | Network\dmload.sys] :  -> Driver
[HKLM | Network\dmserver] :  -> Service
[HKLM | Network\DnsCache] :  -> Service
[HKLM | Network\EventLog] :  -> Service
[HKLM | Network\File system] :  -> Driver Group
[HKLM | Network\Filter] :  -> Driver Group
[HKLM | Network\HelpSvc] :  -> Service
[HKLM | Network\ip6fw.sys] :  -> Driver
[HKLM | Network\ipnat.sys] :  -> Driver
[HKLM | Network\LanmanServer] :  -> Service
[HKLM | Network\LanmanWorkstation] :  -> Service
[HKLM | Network\LmHosts] :  -> Service
[HKLM | Network\Messenger] :  -> Service
[HKLM | Network\NDIS] :  -> Driver Group
[HKLM | Network\NDIS Wrapper] :  -> Driver Group
[HKLM | Network\Ndisuio] :  -> Service
[HKLM | Network\NetBIOS] :  -> Service
[HKLM | Network\NetBIOSGroup] :  -> Driver Group
[HKLM | Network\NetBT] :  -> Service
[HKLM | Network\NetDDEGroup] :  -> Driver Group
[HKLM | Network\Netlogon] :  -> Service
[HKLM | Network\NetMan] :  -> Service
[HKLM | Network\Network] :  -> Driver Group
[HKLM | Network\NetworkProvider] :  -> Driver Group
[HKLM | Network\NtLmSsp] :  -> Service
[HKLM | Network\PCI Configuration] :  -> Driver Group
[HKLM | Network\PlugPlay] :  -> Service
[HKLM | Network\PNP Filter] :  -> Driver Group
[HKLM | Network\PNP_TDI] :  -> Driver Group
[HKLM | Network\Primary disk] :  -> Driver Group
[HKLM | Networkdpcdd.sys] :  -> Driver
[HKLM | Networkdpdd.sys] :  -> Driver
[HKLM | Networkdpwd.sys] :  -> Driver
[HKLM | Networkdsessmgr] :  -> Service
[HKLM | Network\RpcSs] :  -> Service
[HKLM | Network\SCSI Class] :  -> Driver Group
[HKLM | Network\sermouse.sys] :  -> Driver
[HKLM | Network\sharedaccess] :  -> Service
[HKLM | Network\sr.sys] :  -> FSFilter System Recovery
[HKLM | Network\SRService] :  -> Service
[HKLM | Network\Streams Drivers] :  -> Driver Group
[HKLM | Network\System Bus Extender] :  -> Driver Group
[HKLM | Network\Tcpip] :  -> Service
[HKLM | Network\TDI] :  -> Driver Group
[HKLM | Network	dpipe.sys] :  -> Driver
[HKLM | Network	dtcp.sys] :  -> Driver
[HKLM | Network	ermservice] :  -> Service
[HKLM | Network\vga.sys] :  -> Driver
[HKLM | Network\vga.sys] :  -> Driver
[HKLM | Network\WinMgmt] :  -> Service
[HKLM | Network\WZCSVC] :  -> Service
[HKLM | Network\{36FC9E60-C465-11CF-8056-444553540000}] :  -> Universal Serial Bus controllers
[HKLM | Network\{4D36E965-E325-11CE-BFC1-08002BE10318}] :  -> CD-ROM Drive
[HKLM | Network\{4D36E967-E325-11CE-BFC1-08002BE10318}] :  -> DiskDrive
[HKLM | Network\{4D36E969-E325-11CE-BFC1-08002BE10318}] :  -> Standard floppy disk controller
[HKLM | Network\{4D36E96A-E325-11CE-BFC1-08002BE10318}] :  -> Hdc
[HKLM | Network\{4D36E96B-E325-11CE-BFC1-08002BE10318}] :  -> Keyboard
[HKLM | Network\{4D36E96F-E325-11CE-BFC1-08002BE10318}] :  -> Mouse
[HKLM | Network\{4D36E972-E325-11CE-BFC1-08002BE10318}] :  -> Net
[HKLM | Network\{4D36E973-E325-11CE-BFC1-08002BE10318}] :  -> NetClient
[HKLM | Network\{4D36E974-E325-11CE-BFC1-08002BE10318}] :  -> NetService
[HKLM | Network\{4D36E975-E325-11CE-BFC1-08002BE10318}] :  -> NetTrans
[HKLM | Network\{4D36E977-E325-11CE-BFC1-08002BE10318}] :  -> PCMCIA Adapters
[HKLM | Network\{4D36E97B-E325-11CE-BFC1-08002BE10318}] :  -> SCSIAdapter
[HKLM | Network\{4D36E97D-E325-11CE-BFC1-08002BE10318}] :  -> System
[HKLM | Network\{4D36E980-E325-11CE-BFC1-08002BE10318}] :  -> Floppy disk drive
[HKLM | Network\{71A27CDD-812A-11D0-BEC7-08002BE2092F}] :  -> Volume
[HKLM | Network\{745A17A0-74D3-11D0-B6FE-00A0C90F57DA}] :  -> Human Interface Devices

¤¤¤¤¤¤¤¤¤¤ | IFEO


¤¤¤¤¤¤¤¤¤¤ | Mountpoints2

Deleted : HKU\Francois_ON_C | Auto\command] : @ -> AdobeR.exe e
Deleted : HKU\Francois_ON_C | AutoRun\command] : @ -> C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL 

¤¤¤¤¤¤¤¤¤¤ | Run

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[nwiz] : nwiz.exe /install   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[NvMediaCenter] : RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[NvCplDaemon] : RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[RTHDCPL] : RTHDCPL.EXE   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Google Desktop Search] : "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Adobe Reader Speed Launcher] : "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[IMJPMIG8.1] : "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[MSPY2002] : C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[PHIME2002ASync] : C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[PHIME2002A] : C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[RemoteControl8] : "C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe"   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[PDVD8LanguageShortcut] : "C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe"   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[NeroFilterCheck] : C:\Program Files\Fichiers communs\Nero\Lib\NeroCheck.exe   [25/06/2008 11:48:18]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[GrooveMonitor] : "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[AVG_TRAY] : "C:\Program Files\AVG\AVG2012\avgtray.exe"   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[CanonMyPrinter] : C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[CanonSolutionMenuEx] : C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[SunJavaUpdateSched] : "C:\Program Files\Fichiers communs\Java\Java Update\jusched.exe"   
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Update] : C:\WINDOWS\system32\cccccc.exe   [20/09/2012 14:16:48]
[HKU\Administrateur_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[CTFMON.EXE] : C:\WINDOWS\system32\ctfmon.exe   [16/08/2009 04:34:13]
[HKU\Administrateur_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]|[NeroHomeFirstStart] : "C:\Program Files\Fichiers communs\Nero\Lib\NMFirstStart.exe"   
[HKU\Administrateur_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]|[ScrSav] :    
[HKU\Administrateur_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]|[RUN] :    
[HKU\Francois_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[CTFMON.EXE] : C:\WINDOWS\system32\ctfmon.exe   [16/08/2009 04:34:13]
[HKU\Francois_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[SmpcSys] : C:\Program Files\Packard Bell\SetupmyPC\SmpSys.exe   [18/03/2009 09:46:30]
[HKU\Francois_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] : "C:\Program Files\Fichiers communs\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020   
[HKU\Francois_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[swg] : "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"   
[HKU\Francois_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Google Update] : "C:\Documents and Settings\Francois\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c   
[HKU\Francois_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Spotify Web Helper] : "C:\Program Files\Spotify\Data\SpotifyWebHelper.exe"   
[HKU\Francois_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Steam] : "D:\Steam\Steam.exe" -silent   
[HKU\Francois_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[Update] : C:\WINDOWS\system32\cccccc.exe   [20/09/2012 14:16:48]
[HKU\LocalService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[CTFMON.EXE] : C:\WINDOWS\system32\CTFMON.EXE   [16/08/2009 04:34:13]
[HKU\NetworkService_ON_C\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[CTFMON.EXE] : C:\WINDOWS\system32\CTFMON.EXE   [16/08/2009 04:34:13]
[HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]|[HotSwap! Applet] : "X:\Windows\system32\HotSwap!.EXE"   

¤¤¤¤¤¤¤¤¤¤ | Others 

[HKLM\System\CurrentControlSet\Control\SecurityProviders]|[SecurityProviders] : msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll
[HKLM\System\CurrentControlSet\Control\Session Manager]|[BootExecute] : autocheck autochk *
avgrmbr.nt /mbr C:\WINDOWS\System32\avgrmbr.bin
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart
[HKLM\System\ControlSet001\Control]|[SystemBootDevice] : multi(0)disk(0)rdisk(0)partition(2)
[HKLM\system\currentcontrolset\control\lsa]|[SecureBoot] : 1
[HKLM\system\currentcontrolset\control\lsa]|[restrictanonymoussam] : 1
[HKLM | Winlogon]|[VMApplet] : rundll32 shell32,Control_RunDLL "sysdm.cpl"
[HKLM | Winlogon]|[SFCDisable] : 0
[HKLM | Winlogon]|[WinStationsDisabled] : 0
[HKLM | Winlogon]|[UIHost] : logonui.exe

¤¤¤¤¤¤¤¤¤¤ | Winlogon\Notify 

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] : crypt32.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] : cryptnet.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] : cscdll.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy] : %SystemRoot%\System32\dimsntfy.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] : wlnotify.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] : wlnotify.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] : sclgntfy.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] : WlNotify.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify	ermsrv] : wlnotify.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] : wlnotify.dll

06:41:00

fanfan2012 · Answer

¤¤¤¤¤¤¤¤¤¤ | Others 

[HKLM\System\CurrentControlSet\Control\SecurityProviders]|[SecurityProviders] : msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll
[HKLM\System\CurrentControlSet\Control\Session Manager]|[BootExecute] : autocheck autochk *
avgrmbr.nt /mbr C:\WINDOWS\System32\avgrmbr.bin
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart
[HKLM\System\ControlSet001\Control]|[SystemBootDevice] : multi(0)disk(0)rdisk(0)partition(2)
[HKLM\system\currentcontrolset\control\lsa]|[SecureBoot] : 1
[HKLM\system\currentcontrolset\control\lsa]|[restrictanonymoussam] : 1
[HKLM | Winlogon]|[VMApplet] : rundll32 shell32,Control_RunDLL "sysdm.cpl"
[HKLM | Winlogon]|[SFCDisable] : 0
[HKLM | Winlogon]|[WinStationsDisabled] : 0
[HKLM | Winlogon]|[UIHost] : logonui.exe

¤¤¤¤¤¤¤¤¤¤ | Winlogon\Notify 

[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] : crypt32.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] : cryptnet.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] : cscdll.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy] : %SystemRoot%\System32\dimsntfy.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] : wlnotify.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] : wlnotify.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] : sclgntfy.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] : WlNotify.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify	ermsrv] : wlnotify.dll
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] : wlnotify.dll

06:41:00


¤¤¤¤¤¤¤¤¤¤ | Derniers créés/modifiés

[03/09/2012 18:52:47] -- |D| -- C:\Program Files\Sports Interactive
[12/09/2012 23:33:31] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2736233$
[12/09/2012 23:33:27] -- |A| -- C:\WINDOWS\KB2736233.log
[23/09/2012 05:04:22] -- |D| -- C:\WINDOWS\Pre_Scan
[23/09/2012 05:06:59] -- |A| -- C:\WINDOWS\Pre_Scan.txt
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\bdaplgin.ax
[20/09/2012 14:16:48] -- |A| -- C:\WINDOWS\system32\cccccc.exe
[03/09/2012 19:08:53] -- |A| -- C:\WINDOWS\system32\D3DCompiler_39.dll
[03/09/2012 19:08:58] -- |A| -- C:\WINDOWS\system32\D3DCompiler_40.dll
[03/09/2012 19:09:03] -- |A| -- C:\WINDOWS\system32\D3DCompiler_41.dll
[03/09/2012 19:08:53] -- |A| -- C:\WINDOWS\system32\d3dx10_39.dll
[03/09/2012 19:08:58] -- |A| -- C:\WINDOWS\system32\d3dx10_40.dll
[03/09/2012 19:09:03] -- |A| -- C:\WINDOWS\system32\d3dx10_41.dll
[03/09/2012 19:08:52] -- |A| -- C:\WINDOWS\system32\D3DX9_39.dll
[03/09/2012 19:08:57] -- |A| -- C:\WINDOWS\system32\D3DX9_40.dll
[03/09/2012 20:04:51] -- |A| -- C:\WINDOWS\system32\dxdllreg.exe
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\ipsink.ax
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\ksolay.ax
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\kstvtune.ax
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\kswdmcap.ax
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\ksxbar.ax
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\msdvbnp.ax
[03/09/2012 20:04:57] -- |A| -- C:\WINDOWS\system32\psisdecd.dll
[03/09/2012 20:04:57] -- |A| -- C:\WINDOWS\system32\psisrndr.ax
[03/09/2012 19:08:55] -- |A| -- C:\WINDOWS\system32\X3DAudio1_5.dll
[03/09/2012 19:08:59] -- |A| -- C:\WINDOWS\system32\X3DAudio1_6.dll
[03/09/2012 19:08:53] -- |A| -- C:\WINDOWS\system32\xactengine3_2.dll
[03/09/2012 19:08:55] -- |A| -- C:\WINDOWS\system32\xactengine3_3.dll
[03/09/2012 19:08:59] -- |A| -- C:\WINDOWS\system32\xactengine3_4.dll
[03/09/2012 19:08:54] -- |A| -- C:\WINDOWS\system32\XAPOFX1_1.dll
[03/09/2012 19:08:56] -- |A| -- C:\WINDOWS\system32\XAPOFX1_2.dll
[03/09/2012 19:09:00] -- |A| -- C:\WINDOWS\system32\XAPOFX1_3.dll
[03/09/2012 19:08:54] -- |A| -- C:\WINDOWS\system32\XAudio2_2.dll
[03/09/2012 19:08:56] -- |A| -- C:\WINDOWS\system32\XAudio2_3.dll
[03/09/2012 19:09:00] -- |A| -- C:\WINDOWS\system32\XAudio2_4.dll
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\Drivers\bdasup.sys
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\Drivers\ccdecode.sys
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\Drivers\mpe.sys
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\Drivers\msdv.sys
[03/09/2012 20:04:56] -- |A| -- C:\WINDOWS\system32\Drivers\mstee.sys
[03/09/2012 20:04:57] -- |A| -- C:\WINDOWS\system32\Drivers
abtsfec.sys
[03/09/2012 20:04:57] -- |A| -- C:\WINDOWS\system32\Drivers
disip.sys
[03/09/2012 20:04:57] -- |A| -- C:\WINDOWS\system32\Drivers\slip.sys
[03/09/2012 20:04:57] -- |A| -- C:\WINDOWS\system32\Drivers\streamip.sys
[03/09/2012 20:04:57] -- |A| -- C:\WINDOWS\system32\Drivers\wstcodec.sys

¤¤¤¤¤¤¤¤¤¤ | Drives

[16/08/2009 04:34:16] -- |RASH| -- C:\NTDETECT.COM
[15/08/2009 19:53:12] -- |A| -- C:\AUTOEXEC.BAT

¤¤¤¤¤¤¤¤¤¤ | Homedrive

[15/01/2012 13:07:33] -- |HD| -- C:\$AVG
[23/09/2012 05:01:10] -- |SHD| -- C:\$RECYCLE.BIN
[15/08/2009 20:45:07] -- |HD| -- C:\ACER
[15/08/2009 19:53:12] -- |A| -- C:\AUTOEXEC.BAT
[15/08/2009 20:46:08] -- |D| -- C:\Book
[16/08/2009 04:38:22] -- |RASH| -- C:\boot.ini
[16/08/2009 04:34:14] -- |RASH| -- C:\Bootfont.bin
[15/08/2009 19:53:12] -- |A| -- C:\CONFIG.SYS
[15/08/2009 20:47:23] -- |D| -- C:\Documents and Settings
[09/09/2008 11:31:45] -- |D| -- C:\DOTNETFX
[24/04/2012 17:06:00] -- |ASH| -- C:\hiberfil.sys
[09/09/2008 11:26:15] -- |D| -- C:\i386
[26/06/2011 09:04:20] -- |D| -- C:\IDE
[15/08/2009 19:53:12] -- |RASH| -- C:\IO.SYS
[16/08/2009 04:38:18] -- |A| -- C:\MOD01SET0J00P20011.enc
[11/09/2008 10:27:43] -- |A| -- C:\MOD01WOS02FRP20001.enc
[15/08/2009 19:53:12] -- |RASH| -- C:\MSDOS.SYS
[26/06/2011 09:02:39] -- |RHD| -- C:\MSOCache
[16/08/2009 04:34:16] -- |RASH| -- C:\NTDETECT.COM
[16/08/2009 04:34:16] -- |RASH| -- C:
tldr
[25/06/2011 23:57:08] -- |A| -- C:\Packard Bell.lnk
[25/06/2011 23:49:16] -- |ASH| -- C:\pagefile.sys
[15/08/2009 20:48:07] -- |RD| -- C:\Program Files
[26/06/2011 00:28:39] -- |SHD| -- C:\RECYCLER
[15/08/2009 20:12:31] -- |A| -- C:\RHDSetup.log
[25/06/2011 23:51:44] -- |SHD| -- C:\System Volume Information
[15/08/2009 20:10:18] -- |D| -- C:	emp
[04/01/2012 22:36:49] -- |A| -- C:\user.js
[09/09/2008 11:31:41] -- |D| -- C:\VALUEADD
[15/08/2009 20:40:15] -- |AD| -- C:\WINDOWS

¤¤¤¤¤¤¤¤¤¤ | Systemroot

[15/08/2009 20:03:28] -- |HD| -- C:\WINDOWS\$hf_mig$
[15/08/2009 20:03:52] -- |HDC| -- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
[15/08/2009 20:03:37] -- |HDC| -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[29/08/2012 02:18:53] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2115168$
[29/08/2012 02:17:42] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2229593$
[29/08/2012 02:19:16] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2296011$
[30/08/2012 02:00:53] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2345886$
[29/08/2012 02:14:45] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2347290$
[29/08/2012 02:00:34] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2360937$
[29/08/2012 02:18:30] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2378111_WM9$
[29/08/2012 02:21:10] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2387149$
[29/08/2012 02:01:58] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2393802$
[29/08/2012 02:08:30] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2419632$
[29/08/2012 02:00:50] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2423089$
[29/08/2012 02:16:53] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2440591$
[29/08/2012 02:17:58] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2443105$
[29/08/2012 02:15:41] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2476490$
[29/08/2012 02:02:10] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2478960$
[29/08/2012 02:20:12] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2478971$
[29/08/2012 02:20:32] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2479943$
[29/08/2012 02:17:26] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2481109$
[29/08/2012 02:14:18] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2483185$
[29/08/2012 02:17:08] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2485663$
[29/08/2012 02:19:57] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2491683$
[29/08/2012 02:07:07] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2506212$
[29/08/2012 02:09:04] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2507618$
[29/08/2012 02:16:09] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2507938$
[29/08/2012 02:08:14] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2508429$
[29/08/2012 02:04:02] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2509553$
[29/08/2012 02:09:52] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2535512$
[29/08/2012 02:19:49] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2536276-v2$
[29/08/2012 02:20:05] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2544893-v2$
[29/08/2012 02:20:18] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2564958$
[29/08/2012 02:01:32] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2566454$
[29/08/2012 02:09:28] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2570947$
[29/08/2012 02:01:20] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2584146$
[29/08/2012 02:19:34] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2585542$
[29/08/2012 02:11:26] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2592799$
[29/08/2012 02:17:01] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2598479$
[29/08/2012 02:08:54] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2603381$
[29/08/2012 02:05:02] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2618451$
[29/08/2012 02:06:16] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2619339$
[29/08/2012 02:01:38] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2620712$
[29/08/2012 02:13:59] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2624667$
[29/08/2012 02:19:26] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2631813$
[29/08/2012 02:06:49] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2633952$
[29/08/2012 02:19:41] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2646524$
[29/08/2012 02:08:05] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2653956$
[29/08/2012 02:17:50] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2655992$
[29/08/2012 02:20:25] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2659262$
[29/08/2012 02:01:26] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2661637$
[29/08/2012 02:03:49] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2676562$
[29/08/2012 02:16:47] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2686509$
[29/08/2012 02:19:03] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2691442$
[29/08/2012 02:10:51] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2695962$
[29/08/2012 02:06:23] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2698365$
[29/08/2012 02:12:26] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2705219$
[29/08/2012 02:20:42] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2707511$
[29/08/2012 02:21:02] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2712808$
[29/08/2012 02:11:04] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2718704$
[29/08/2012 02:11:53] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2719985$
[29/08/2012 02:09:40] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2723135$
[30/08/2012 02:01:03] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2731847$
[12/09/2012 23:33:31] -- |HDC| -- C:\WINDOWS\$NtUninstallKB2736233$
[28/08/2012 22:14:25] -- |HDC| -- C:\WINDOWS\$NtUninstallKB898461$
[29/08/2012 02:01:44] -- |HDC| -- C:\WINDOWS\$NtUninstallKB923561$
[29/08/2012 02:10:39] -- |HDC| -- C:\WINDOWS\$NtUninstallKB941569$
[29/08/2012 02:21:19] -- |HDC| -- C:\WINDOWS\$NtUninstallKB946648$
[29/08/2012 02:09:34] -- |HDC| -- C:\WINDOWS\$NtUninstallKB950762$
[29/08/2012 02:17:35] -- |HDC| -- C:\WINDOWS\$NtUninstallKB950974$
[29/08/2012 02:21:42] -- |HDC| -- C:\WINDOWS\$NtUninstallKB951376-v2$
[29/08/2012 02:18:14] -- |HDC| -- C:\WINDOWS\$NtUninstallKB951978$
[29/08/2012 02:11:45] -- |HDC| -- C:\WINDOWS\$NtUninstallKB952004$
[29/08/2012 02:06:55] -- |HDC| -- C:\WINDOWS\$NtUninstallKB952069_WM9$
[29/08/2012 02:09:16] -- |HDC| -- C:\WINDOWS\$NtUninstallKB952287$
[29/08/2012 02:21:35] -- |HDC| -- C:\WINDOWS\$NtUninstallKB952954$
[29/08/2012 02:16:14] -- |HDC| -- C:\WINDOWS\$NtUninstallKB954155_WM9$
[29/08/2012 02:18:39] -- |HDC| -- C:\WINDOWS\$NtUninstallKB955759$
[29/08/2012 02:15:10] -- |HDC| -- C:\WINDOWS\$NtUninstallKB956572$
[29/08/2012 02:15:50] -- |HDC| -- C:\WINDOWS\$NtUninstallKB956744$
[29/08/2012 02:04:12] -- |HDC| -- C:\WINDOWS\$NtUninstallKB956802$
[29/08/2012 02:14:35] -- |HDC| -- C:\WINDOWS\$NtUninstallKB956844$
[29/08/2012 02:21:27] -- |HDC| -- C:\WINDOWS\$NtUninstallKB959426$
[29/08/2012 02:05:20] -- |HDC| -- C:\WINDOWS\$NtUninstallKB960803$
[29/08/2012 02:20:55] -- |HDC| -- C:\WINDOWS\$NtUninstallKB960859$
[31/08/2012 01:09:45] -- |HDC| -- C:\WINDOWS\$NtUninstallKB961118$
[29/08/2012 02:00:58] -- |HDC| -- C:\WINDOWS\$NtUninstallKB968389$
[29/08/2012 02:18:05] -- |HDC| -- C:\WINDOWS\$NtUninstallKB969059$
[30/08/2012 02:00:40] -- |HDC| -- C:\WINDOWS\$NtUninstallKB970430$
[29/08/2012 02:07:21] -- |HDC| -- C:\WINDOWS\$NtUninstallKB971029$
[29/08/2012 02:16:30] -- |HDC| -- C:\WINDOWS\$NtUninstallKB971657$
[29/08/2012 02:15:59] -- |HDC| -- C:\WINDOWS\$NtUninstallKB972270$
[29/08/2012 02:10:57] -- |HDC| -- C:\WINDOWS\$NtUninstallKB973507$
[29/08/2012 02:08:37] -- |HDC| -- C:\WINDOWS\$NtUninstallKB973540_WM9$
[29/08/2012 02:05:11] -- |HDC| -- C:\WINDOWS\$NtUninstallKB973815$
[29/08/2012 02:12:10] -- |HDC| -- C:\WINDOWS\$NtUninstallKB973869$
[29/08/2012 02:08:46] -- |HDC| -- C:\WINDOWS\$NtUninstallKB973904$
[29/08/2012 02:15:31] -- |HDC| -- C:\WINDOWS\$NtUninstallKB974112$
[29/08/2012 02:18:24] -- |HDC| -- C:\WINDOWS\$NtUninstallKB974318$
[29/08/2012 02:07:42] -- |HDC| -- C:\WINDOWS\$NtUninstallKB974392$
[29/08/2012 02:11:33] -- |HDC| -- C:\WINDOWS\$NtUninstallKB974571$
[29/08/2012 02:12:03] -- |HDC| -- C:\WINDOWS\$NtUninstallKB975025$
[29/08/2012 02:01:13] -- |HDC| -- C:\WINDOWS\$NtUninstallKB975467$
[29/08/2012 02:18:46] -- |HDC| -- C:\WINDOWS\$NtUninstallKB975558_WM8$
[29/08/2012 02:11:19] -- |HDC| -- C:\WINDOWS\$NtUninstallKB975560$
[29/08/2012 02:17:16] -- |HDC| -- C:\WINDOWS\$NtUninstallKB975713$
[29/08/2012 02:09:46] -- |HDC| -- C:\WINDOWS\$NtUninstallKB977816$
[29/08/2012 02:06:39] -- |HDC| -- C:\WINDOWS\$NtUninstallKB977914$
[29/08/2012 02:16:21] -- |HDC| -- C:\WINDOWS\$NtUninstallKB978338$
[29/08/2012 02:06:06] -- |HDC| -- C:\WINDOWS\$NtUninstallKB978542$
[29/08/2012 02:09:08] -- |HDC| -- C:\WINDOWS\$NtUninstallKB978695_WM9$
[29/08/2012 02:05:40] -- |HDC| -- C:\WINDOWS\$NtUninstallKB978706$
[29/08/2012 02:05:55] -- |HDC| -- C:\WINDOWS\$NtUninstallKB979309$
[29/08/2012 02:05:48] -- |HDC| -- C:\WINDOWS\$NtUninstallKB979482$
[29/08/2012 02:12:18] -- |HDC| -- C:\WINDOWS\$NtUninstallKB979687$
[29/08/2012 02:09:22] -- |HDC| -- C:\WINDOWS\$NtUninstallKB981322$
[29/08/2012 02:05:28] -- |HDC| -- C:\WINDOWS\$NtUninstallKB981997$
[29/08/2012 02:16:37] -- |HDC| -- C:\WINDOWS\$NtUninstallKB982132$
[29/08/2012 02:02:25] -- |HDC| -- C:\WINDOWS\$NtUninstallKB982665$
[15/08/2009 19:56:56] -- |A| -- C:\WINDOWS\0.log
[15/08/2009 19:56:57] -- |A| -- C:\WINDOWS\Acerlang.bat
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\addins
[15/08/2009 20:12:33] -- |A| -- C:\WINDOWS\ALCMTR.EXE
[15/08/2009 20:12:33] -- |A| -- C:\WINDOWS\ALCWZRD.EXE
[15/08/2009 19:56:57] -- |A| -- C:\WINDOWS\AMove.exe
[15/08/2009 19:56:57] -- |A| -- C:\WINDOWS\APanel.exe
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\AppPatch
[15/08/2009 19:57:31] -- |RSD| -- C:\WINDOWS\assembly
[01/07/2011 17:40:52] -- |A| -- C:\WINDOWS\avisplitter.ini
[15/08/2009 19:55:17] -- |AS| -- C:\WINDOWS\bootstat.dat
[15/08/2009 19:50:13] -- |A| -- C:\WINDOWS\Bulles de savon.bmp
[16/08/2009 04:34:22] -- |A| -- C:\WINDOWS\CLEANUP.CMD
[16/08/2009 04:34:15] -- |A| -- C:\WINDOWS\clock.avi
[15/08/2009 19:49:54] -- |A| -- C:\WINDOWS\cmsetacl.log
[15/08/2009 20:05:01] -- |A| -- C:\WINDOWS\COM+.log
[15/08/2009 20:48:14] -- |A| -- C:\WINDOWS\comsetup.log
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Config
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Connection Wizard
[15/08/2009 19:53:12] -- |A| -- C:\WINDOWS\control.ini
[15/08/2009 20:45:06] -- |D| -- C:\WINDOWS\CPU
[16/08/2009 04:34:22] -- |A| -- C:\WINDOWS\CSUP.TXT
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Cursors
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Debug
[16/08/2009 04:34:22] -- |A| -- C:\WINDOWS\DelShortcut.vbs
[15/08/2009 19:51:29] -- |A| -- C:\WINDOWS\desktop.ini
[15/08/2009 20:35:54] -- |A| -- C:\WINDOWS\DirectX.log
[15/08/2009 19:51:57] -- |SD| -- C:\WINDOWS\Downloaded Program Files
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Driver Cache
[15/08/2009 20:13:30] -- |D| -- C:\WINDOWS\drv
[15/08/2009 19:51:01] -- |A| -- C:\WINDOWS\DtcInstall.log
[16/08/2009 04:33:52] -- |A| -- C:\WINDOWS\Explorer.exe
[16/08/2009 04:33:52] -- |A| -- C:\WINDOWS\explorer.scf
[15/08/2009 20:48:13] -- |A| -- C:\WINDOWS\FaxSetup.log
[15/08/2009 20:40:15] -- |RSD| -- C:\WINDOWS\Fonts
[15/08/2009 19:50:13] -- |A| -- C:\WINDOWS\Granit vert.bmp
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Help
[16/08/2009 04:33:53] -- |A| -- C:\WINDOWS\hh.exe
[15/08/2009 19:56:57] -- |A| -- C:\WINDOWS\HotFix.bat
[15/08/2009 19:56:57] -- |A| -- C:\WINDOWS\HotFix2.bat
[15/08/2009 19:56:57] -- |A| -- C:\WINDOWS\HotFix3.bat
[15/08/2009 20:03:48] -- |A| -- C:\WINDOWS\IDNMitigationAPIs.log
[15/08/2009 20:04:06] -- |HDC| -- C:\WINDOWS\ie7
[15/08/2009 20:03:57] -- |A| -- C:\WINDOWS\ie7.log
[15/08/2009 20:43:23] -- |D| -- C:\WINDOWS\ie7updates
[15/08/2009 20:03:23] -- |A| -- C:\WINDOWS\ie7_main.log
[26/06/2011 08:20:13] -- |HDC| -- C:\WINDOWS\ie8
[26/06/2011 08:04:04] -- |A| -- C:\WINDOWS\ie8.log
[26/06/2011 08:07:38] -- |A| -- C:\WINDOWS\ie8Uninst.log
[29/08/2012 02:02:17] -- |D| -- C:\WINDOWS\ie8updates
[26/06/2011 08:03:46] -- |A| -- C:\WINDOWS\ie8_main.log
[15/08/2009 20:48:13] -- |A| -- C:\WINDOWS\iis6.log
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\ime
[15/08/2009 20:48:14] -- |A| -- C:\WINDOWS\imsins.BAK
[15/08/2009 20:48:14] -- |A| -- C:\WINDOWS\imsins.log
[15/08/2009 20:40:15] -- |HD| -- C:\WINDOWS\inf
[15/08/2009 20:48:11] -- |SHD| -- C:\WINDOWS\Installer
[10/07/2012 17:42:05] -- |A| -- C:\WINDOWS\IsUn040c.exe
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\java
[15/08/2009 19:50:13] -- |A| -- C:\WINDOWS\Jour de pêche.bmp
[29/08/2012 00:51:33] -- |A| -- C:\WINDOWS\KB2115168.log
[29/08/2012 02:17:41] -- |A| -- C:\WINDOWS\KB2229593.log
[29/08/2012 02:19:14] -- |A| -- C:\WINDOWS\KB2296011.log
[29/08/2012 10:44:03] -- |A| -- C:\WINDOWS\KB2345886.log
[29/08/2012 00:45:57] -- |A| -- C:\WINDOWS\KB2347290.log
[29/08/2012 02:00:31] -- |A| -- C:\WINDOWS\KB2360937.log
[29/08/2012 02:18:28] -- |A| -- C:\WINDOWS\KB2378111.log
[29/08/2012 02:21:07] -- |A| -- C:\WINDOWS\KB2387149.log
[29/08/2012 02:01:56] -- |A| -- C:\WINDOWS\KB2393802.log
[29/08/2012 00:43:38] -- |A| -- C:\WINDOWS\KB2419632.log
[29/08/2012 02:00:50] -- |A| -- C:\WINDOWS\KB2423089.log
[29/08/2012 02:16:51] -- |A| -- C:\WINDOWS\KB2440591.log
[29/08/2012 00:50:07] -- |A| -- C:\WINDOWS\KB2443105.log
[29/08/2012 00:47:05] -- |A| -- C:\WINDOWS\KB2476490.log
[29/08/2012 00:40:41] -- |A| -- C:\WINDOWS\KB2478960.log
[29/08/2012 00:51:45] -- |A| -- C:\WINDOWS\KB2478971.log
[29/08/2012 00:52:13] -- |A| -- C:\WINDOWS\KB2479943.log
[29/08/2012 02:17:21] -- |A| -- C:\WINDOWS\KB2481109.log
[29/08/2012 00:47:16] -- |A| -- C:\WINDOWS\KB2483185.log
[29/08/2012 02:17:07] -- |A| -- C:\WINDOWS\KB2485663.log
[29/08/2012 00:51:24] -- |A| -- C:\WINDOWS\KB2491683.log
[29/08/2012 00:43:23] -- |A| -- C:\WINDOWS\KB2506212.log
[29/08/2012 00:48:33] -- |A| -- C:\WINDOWS\KB2507618.log
[29/08/2012 00:49:04] -- |A| -- C:\WINDOWS\KB2507938.log
[29/08/2012 00:43:15] -- |A| -- C:\WINDOWS\KB2508429.log
[29/08/2012 00:42:07] -- |A| -- C:\WINDOWS\KB2509553.log
[29/08/2012 02:02:39] -- |A| -- C:\WINDOWS\KB2510531-IE8.log
[29/08/2012 02:09:51] -- |A| -- C:\WINDOWS\KB2535512.log
[29/08/2012 02:19:46] -- |A| -- C:\WINDOWS\KB2536276-v2.log
[29/08/2012 02:02:16] -- |A| -- C:\WINDOWS\KB2544521-IE8.log
[29/08/2012 00:51:29] -- |A| -- C:\WINDOWS\KB2544893-v2.log
[29/08/2012 02:20:16] -- |A| -- C:\WINDOWS\KB2564958.log
[29/08/2012 02:01:31] -- |A| -- C:\WINDOWS\KB2566454.log
[29/08/2012 02:09:27] -- |A| -- C:\WINDOWS\KB2570947.log
[29/08/2012 00:38:58] -- |A| -- C:\WINDOWS\KB2584146.log
[29/08/2012 00:52:08] -- |A| -- C:\WINDOWS\KB2585542.log
[29/08/2012 02:11:24] -- |A| -- C:\WINDOWS\KB2592799.log
[29/08/2012 00:49:45] -- |A| -- C:\WINDOWS\KB2598479.log
[29/08/2012 02:08:53] -- |A| -- C:\WINDOWS\KB2603381.log
[29/08/2012 02:05:01] -- |A| -- C:\WINDOWS\KB2618451.log
[29/08/2012 00:42:55] -- |A| -- C:\WINDOWS\KB2619339.log
[29/08/2012 00:40:25] -- |A| -- C:\WINDOWS\KB2620712.log
[29/08/2012 00:45:48] -- |A| -- C:\WINDOWS\KB2624667.log
[29/08/2012 00:51:58] -- |A| -- C:\WINDOWS\KB2631813.log
[29/08/2012 02:06:47] -- |A| -- C:\WINDOWS\KB2633952.log
[29/08/2012 00:51:03] -- |A| -- C:\WINDOWS\KB2646524.log
[29/08/2012 00:44:14] -- |A| -- C:\WINDOWS\KB2653956.log
[29/08/2012 00:50:17] -- |A| -- C:\WINDOWS\KB2655992.log
[29/08/2012 02:20:24] -- |A| -- C:\WINDOWS\KB2659262.log
[29/08/2012 02:01:25] -- |A| -- C:\WINDOWS\KB2661637.log
[29/08/2012 00:41:45] -- |A| -- C:\WINDOWS\KB2676562.log
[29/08/2012 02:16:43] -- |A| -- C:\WINDOWS\KB2686509.log
[29/08/2012 00:51:50] -- |A| -- C:\WINDOWS\KB2691442.log
[29/08/2012 02:10:49] -- |A| -- C:\WINDOWS\KB2695962.log
[29/08/2012 02:06:21] -- |A| -- C:\WINDOWS\KB2698365.log
[29/08/2012 00:46:03] -- |A| -- C:\WINDOWS\KB2705219.log
[29/08/2012 00:52:28] -- |A| -- C:\WINDOWS\KB2707511.log
[29/08/2012 00:52:49] -- |A| -- C:\WINDOWS\KB2712808.log
[29/08/2012 00:44:43] -- |A| -- C:\WINDOWS\KB2718704.log
[29/08/2012 00:48:43] -- |A| -- C:\WINDOWS\KB2719985.log
[29/08/2012 02:02:48] -- |A| -- C:\WINDOWS\KB2722913-IE8.log
[29/08/2012 02:09:39] -- |A| -- C:\WINDOWS\KB2723135.log
[30/08/2012 02:00:59] -- |A| -- C:\WINDOWS\KB2731847.log
[12/09/2012 23:33:27] -- |A| -- C:\WINDOWS\KB2736233.log
[28/08/2012 22:14:19] -- |A| -- C:\WINDOWS\KB898461.log
[15/08/2009 20:03:28] -- |A| -- C:\WINDOWS\KB915865.log
[29/08/2012 02:01:43] -- |A| -- C:\WINDOWS\KB923561.log
[15/08/2009 20:05:49] -- |A| -- C:\WINDOWS\KB932716-v2.log
[26/06/2011 10:21:32] -- |A| -- C:\WINDOWS\KB932716-v2Uninst.log
[26/06/2011 08:37:34] -- |A| -- C:\WINDOWS\KB932823-v3.log
[29/08/2012 02:09:56] -- |A| -- C:\WINDOWS\KB941569.log
[29/08/2012 02:21:17] -- |A| -- C:\WINDOWS\KB946648.log
[29/08/2012 02:09:32] -- |A| -- C:\WINDOWS\KB950762.log
[29/08/2012 00:50:00] -- |A| -- C:\WINDOWS\KB950974.log
[29/08/2012 02:21:40] -- |A| -- C:\WINDOWS\KB951376-v2.log
[29/08/2012 00:50:25] -- |A| -- C:\WINDOWS\KB951978.log
[29/08/2012 00:47:54] -- |A| -- C:\WINDOWS\KB952004.log
[29/08/2012 02:06:53] -- |A| -- C:\WINDOWS\KB952069.log
[29/08/2012 02:09:15] -- |A| -- C:\WINDOWS\KB952287.log
[29/08/2012 00:52:18] -- |A| -- C:\WINDOWS\KB952954.log
[29/08/2012 02:16:13] -- |A| -- C:\WINDOWS\KB954155.log
[15/08/2009 20:35:42] -- |A| -- C:\WINDOWS\KB954708.log
[29/08/2012 02:18:37] -- |A| -- C:\WINDOWS\KB955759.log
[29/08/2012 02:14:52] -- |A| -- C:\WINDOWS\KB956572.log
[29/08/2012 02:15:48] -- |A| -- C:\WINDOWS\KB956744.log
[29/08/2012 00:42:15] -- |A| -- C:\WINDOWS\KB956802.log
[29/08/2012 02:14:32] -- |A| -- C:\WINDOWS\KB956844.log
[29/08/2012 00:52:59] -- |A| -- C:\WINDOWS\KB959426.log
[15/08/2009 20:43:18] -- |A| -- C:\WINDOWS\KB960714-IE7.log
[29/08/2012 02:05:18] -- |A| -- C:\WINDOWS\KB960803.log
[29/08/2012 00:52:44] -- |A| -- C:\WINDOWS\KB960859.log
[31/08/2012 01:09:38] -- |A| -- C:\WINDOWS\KB961118.log
[29/08/2012 00:38:38] -- |A| -- C:\WINDOWS\KB968389.log
[29/08/2012 00:50:12] -- |A| -- C:\WINDOWS\KB969059.log
[29/08/2012 10:43:52] -- |A| -- C:\WINDOWS\KB970430.log
[29/08/2012 00:48:22] -- |A| -- C:\WINDOWS\KB971029.log
[29/08/2012 00:49:21] -- |A| -- C:\WINDOWS\KB971657.log
[29/08/2012 02:15:57] -- |A| -- C:\WINDOWS\KB972270.log
[29/08/2012 00:44:32] -- |A| -- C:\WINDOWS\KB973507.log
[29/08/2012 02:08:35] -- |A| -- C:\WINDOWS\KB973540.log
[29/08/2012 00:42:29] -- |A| -- C:\WINDOWS\KB973815.log
[29/08/2012 02:12:08] -- |A| -- C:\WINDOWS\KB973869.log
[29/08/2012 02:08:45] -- |A| -- C:\WINDOWS\KB973904.log
[29/08/2012 00:46:59] -- |A| -- C:\WINDOWS\KB974112.log
[29/08/2012 00:50:46] -- |A| -- C:\WINDOWS\KB974318.log
[29/08/2012 00:43:32] -- |A| -- C:\WINDOWS\KB974392.log
[29/08/2012 00:44:58] -- |A| -- C:\WINDOWS\KB974571.log
[29/08/2012 00:48:11] -- |A| -- C:\WINDOWS\KB975025.log
[29/08/2012 00:39:58] -- |A| -- C:\WINDOWS\KB975467.log
[29/08/2012 02:18:44] -- |A| -- C:\WINDOWS\KB975558.log
[29/08/2012 00:46:19] -- |A| -- C:\WINDOWS\KB975560.log
[29/08/2012 00:49:50] -- |A| -- C:\WINDOWS\KB975713.log
[29/08/2012 02:07:30] -- |A| -- C:\WINDOWS\KB976002-v5.log
[29/08/2012 00:46:10] -- |A| -- C:\WINDOWS\KB977816.log
[29/08/2012 02:06:31] -- |A| -- C:\WINDOWS\KB977914.log
[29/08/2012 02:16:20] -- |A| -- C:\WINDOWS\KB978338.log
[29/08/2012 00:43:07] -- |A| -- C:\WINDOWS\KB978542.log
[29/08/2012 02:09:07] -- |A| -- C:\WINDOWS\KB978695.log
[29/08/2012 00:42:42] -- |A| -- C:\WINDOWS\KB978706.log
[29/08/2012 00:37:47] -- |A| -- C:\WINDOWS\KB979309.log
[29/08/2012 00:42:49] -- |A| -- C:\WINDOWS\KB979482.log
[29/08/2012 00:48:54] -- |A| -- C:\WINDOWS\KB979687.log
[29/08/2012 00:38:09] -- |A| -- C:\WINDOWS\KB981322.log
[29/08/2012 02:05:26] -- |A| -- C:\WINDOWS\KB981997.log
[29/08/2012 00:49:26] -- |A| -- C:\WINDOWS\KB982132.log
[29/08/2012 00:40:53] -- |A| -- C:\WINDOWS\KB982665.log
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\L2Schemas
[01/07/2011 19:09:13] -- |D| -- C:\WINDOWS\Logs
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Media
[15/08/2009 20:12:35] -- |A| -- C:\WINDOWS\MicCal.exe
[15/08/2009 19:57:31] -- |D| -- C:\WINDOWS\Microsoft.NET
[22/07/2011 11:50:30] -- |D| -- C:\WINDOWS\Minidump
[16/08/2009 04:34:22] -- |A| -- C:\WINDOWS\MOD01SET00000000DT.enc
[16/08/2009 04:34:22] -- |A| -- C:\WINDOWS\MOD01SET0600P8001C.enc
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\msagent
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\msapps
[16/08/2009 04:33:57] -- |A| -- C:\WINDOWS\msdfmap.ini
[15/08/2009 20:48:14] -- |A| -- C:\WINDOWS\msgsocm.log
[29/08/2012 02:03:35] -- |A| -- C:\WINDOWS\msxml4-KB954430-enu.LOG
[29/08/2012 02:02:31] -- |A| -- C:\WINDOWS\msxml4-KB973688-enu.LOG
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\mui
[15/08/2009 19:50:14] -- |A| -- C:\WINDOWS\Mur de Santa Fe.bmp
[01/07/2011 17:19:19] -- |A| -- C:\WINDOWS\NeroDigital.ini
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Network Diagnostic
[15/08/2009 20:03:30] -- |A| -- C:\WINDOWS\NLSDownlevelMapping.log
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\NOTEPAD.EXE
[26/06/2011 08:45:08] -- |A| -- C:\WINDOWS
sreg.dat
[26/06/2011 10:41:54] -- |A| -- C:\WINDOWS
tbtlog.txt
[15/08/2009 20:48:14] -- |A| -- C:\WINDOWS
tdtcsetup.log
[15/08/2009 20:48:13] -- |A| -- C:\WINDOWS\ocgen.log
[15/08/2009 20:48:15] -- |A| -- C:\WINDOWS\ocmsn.log
[15/08/2009 20:48:10] -- |A| -- C:\WINDOWS\ODBCINST.INI
[26/06/2011 00:11:46] -- |D| -- C:\WINDOWS\oem
[15/08/2009 20:40:19] -- |D| -- C:\WINDOWS\OemDir
[15/08/2009 19:53:00] -- |A| -- C:\WINDOWS\OEWABLog.txt
[15/08/2009 19:51:57] -- |RD| -- C:\WINDOWS\Offline Web Pages
[15/08/2009 20:10:20] -- |D| -- C:\WINDOWS\Options
[15/08/2009 20:07:24] -- |A| -- C:\WINDOWS\PACK.tag
[15/08/2009 20:13:33] -- |A| -- C:\WINDOWS\Patch.log
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\pchealth
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\PeerNet
[15/01/2012 11:50:00] -- |HD| -- C:\WINDOWS\PIF
[15/08/2009 20:50:35] -- |A| -- C:\WINDOWS\pldwinbom.log
[15/08/2009 19:50:13] -- |A| -- C:\WINDOWS\Plume.bmp
[15/08/2009 19:56:45] -- |D| -- C:\WINDOWS\Prefetch
[15/08/2009 20:14:46] -- |A| -- C:\WINDOWS\preload.log
[23/09/2012 05:04:22] -- |D| -- C:\WINDOWS\Pre_Scan
[23/09/2012 05:06:59] -- |A| -- C:\WINDOWS\Pre_Scan.txt
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Provisioning
[26/06/2011 10:16:36] -- |D| -- C:\WINDOWS\pss
[16/08/2009 04:34:03] -- |A| -- C:\WINDOWSegedit.exe
[15/08/2009 20:25:44] -- |D| -- C:\WINDOWS\RegisteredPackages
[15/08/2009 19:51:03] -- |D| -- C:\WINDOWS\Registration
[25/06/2011 23:52:22] -- |A| -- C:\WINDOWS\REGLOCS.OLD
[15/08/2009 20:48:02] -- |A| -- C:\WINDOWSegopt.log
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWSepair
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Resources
[15/08/2009 19:50:13] -- |A| -- C:\WINDOWS\Rhododendron.bmp
[15/08/2009 19:50:14] -- |A| -- C:\WINDOWS\Rivière Sumida.bmp
[15/08/2009 19:50:13] -- |A| -- C:\WINDOWS\Rosace bleue 16.bmp
[15/08/2009 20:12:35] -- |A| -- C:\WINDOWS\RTHDCPL.EXE
[15/08/2009 20:12:36] -- |A| -- C:\WINDOWS\RtkAudioService.exe
[15/08/2009 20:12:37] -- |A| -- C:\WINDOWS\RTLCPL.EXE
[15/08/2009 20:12:31] -- |A| -- C:\WINDOWS\RtlExUpd.dll
[15/08/2009 20:12:38] -- |A| -- C:\WINDOWS\RtlUpd.exe
[15/08/2009 19:56:45] -- |A| -- C:\WINDOWS\SchedLgU.Txt
[15/08/2009 20:49:46] -- |D| -- C:\WINDOWS\Screensavers
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\security
[29/08/2012 02:19:59] -- |D| -- C:\WINDOWS\ServicePackFiles
[15/08/2009 19:50:59] -- |A| -- C:\WINDOWS\sessmgr.setup.log
[15/08/2009 20:47:29] -- |A| -- C:\WINDOWS\setupact.log
[26/06/2011 08:04:50] -- |A| -- C:\WINDOWS\setupapi.log
[15/08/2009 20:47:33] -- |A| -- C:\WINDOWS\setupapi.log.0.old
[15/08/2009 20:47:29] -- |A| -- C:\WINDOWS\setuperr.log
[15/08/2009 20:47:27] -- |A| -- C:\WINDOWS\setuplog.txt
[26/06/2011 00:00:36] -- |A| -- C:\WINDOWS\SetupMyPC_AppPath.log
[26/06/2011 00:00:38] -- |A| -- C:\WINDOWS\SetupMyPC_SysVar.log
[26/06/2011 09:03:23] -- |D| -- C:\WINDOWS\SHELLNEW
[15/08/2009 20:12:38] -- |A| -- C:\WINDOWS\SkyTel.exe
[15/08/2009 21:08:29] -- |A| -- C:\WINDOWS\smscfg.ini
[15/08/2009 19:56:49] -- |D| -- C:\WINDOWS\SoftwareDistribution
[15/08/2009 20:12:38] -- |A| -- C:\WINDOWS\SOUNDMAN.EXE
[15/08/2009 20:05:30] -- |A| -- C:\WINDOWS\spupdsvc.log
[15/08/2009 19:51:24] -- |D| -- C:\WINDOWS\srchasst
[15/08/2009 20:49:36] -- |A| -- C:\WINDOWS\Sti_Trace.log
[12/07/2011 19:35:46] -- |D| -- C:\WINDOWS\Sun
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\system
[16/08/2009 04:34:06] -- |A| -- C:\WINDOWS\system.ini
[15/08/2009 20:40:15] -- |AD| -- C:\WINDOWS\system32
[15/08/2009 19:50:28] -- |A| -- C:\WINDOWS\T30DebugLogFile.txt
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\TASKMAN.EXE
[15/08/2009 19:51:25] -- |SD| -- C:\WINDOWS\Tasks
[15/08/2009 19:50:13] -- |A| -- C:\WINDOWS\Tasse à café.bmp
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\Temp
[15/08/2009 20:48:14] -- |A| -- C:\WINDOWS	soc.log
[16/08/2009 04:34:07] -- |A| -- C:\WINDOWS	wain.dll
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS	wain_32
[16/08/2009 04:34:07] -- |A| -- C:\WINDOWS	wain_32.dll
[16/08/2009 04:34:07] -- |A| -- C:\WINDOWS	wunk_16.exe
[16/08/2009 04:34:07] -- |A| -- C:\WINDOWS	wunk_32.exe
[30/08/2005 19:33:38] -- |A| -- C:\WINDOWS\UNNeroBackItUp.cfg
[20/03/2007 19:22:04] -- |A| -- C:\WINDOWS\UNNeroBackItUp.exe
[15/09/2005 12:35:46] -- |A| -- C:\WINDOWS\UNNeroMediaHome.cfg
[28/02/2008 16:38:48] -- |A| -- C:\WINDOWS\UNNeroMediaHome.exe
[30/08/2005 19:37:04] -- |A| -- C:\WINDOWS\UNNeroShowTime.cfg
[28/02/2007 14:41:02] -- |A| -- C:\WINDOWS\UNNeroShowTime.exe
[30/08/2005 19:37:52] -- |A| -- C:\WINDOWS\UNNeroVision.cfg
[21/03/2007 19:02:12] -- |A| -- C:\WINDOWS\UNNeroVision.exe
[30/08/2005 19:36:38] -- |A| -- C:\WINDOWS\UNRecode.cfg
[20/03/2008 15:56:18] -- |A| -- C:\WINDOWS\UNRecode.exe
[15/08/2009 20:04:15] -- |A| -- C:\WINDOWS\updspapi.log
[15/08/2009 19:51:05] -- |A| -- C:\WINDOWS\vb.ini
[15/08/2009 19:51:05] -- |A| -- C:\WINDOWS\vbaddin.ini
[15/08/2009 19:50:13] -- |A| -- C:\WINDOWS\Vent de prairie.bmp
[16/08/2009 04:34:18] -- |A| -- C:\WINDOWS\vmmreg32.dll
[15/08/2009 20:12:38] -- |A| -- C:\WINDOWS\vncutil.exe
[15/08/2009 20:04:25] -- |D| -- C:\WINDOWS\WBEM
[15/08/2009 20:40:15] -- |RD| -- C:\WINDOWS\Web
[15/08/2009 20:49:36] -- |A| -- C:\WINDOWS\wiadebug.log
[15/08/2009 20:49:36] -- |A| -- C:\WINDOWS\wiaservc.log
[16/08/2009 04:34:08] -- |A| -- C:\WINDOWS\win.ini
[15/08/2009 19:51:47] -- |RAH| -- C:\WINDOWS\WindowsShell.Manifest
[15/08/2009 19:51:42] -- |A| -- C:\WINDOWS\WindowsUpdate.log
[16/08/2009 04:34:09] -- |A| -- C:\WINDOWS\winhelp.exe
[16/08/2009 04:34:09] -- |A| -- C:\WINDOWS\winhlp32.exe
[15/08/2009 19:51:29] -- |ASH| -- C:\WINDOWS\winnt.bmp
[15/08/2009 19:51:29] -- |ASH| -- C:\WINDOWS\winnt256.bmp
[15/08/2009 20:40:15] -- |D| -- C:\WINDOWS\WinSxS
[05/12/2008 00:11:14] -- |A| -- C:\WINDOWS\WLXPGSS.SCR
[16/08/2009 04:34:14] -- |A| -- C:\WINDOWS\wmprfFRA.prx
[15/08/2009 19:50:29] -- |A| -- C:\WINDOWS\wmsetup.log
[15/08/2009 19:53:05] -- |A| -- C:\WINDOWS\WMSysPr9.prx
[15/08/2009 19:50:14] -- |A| -- C:\WINDOWS\Zapotec.bmp
[16/08/2009 04:33:46] -- |A| -- C:\WINDOWS\_default.pif

¤¤¤¤¤¤¤¤¤¤ | signature des Files à la racine du Folder Windows

[MD5.D7A8887AE6B55F175F4ACADA91BFF129] -- [15/08/2009 20:12:33] -- (.Copyright (c) 2004 Realtek Semiconductor Corp. - Realtek Azalia Audio - Event Monitor.) -- [56 Ko] -- C:\WINDOWS\ALCMTR.EXE -> (1.6.0.4)
[MD5.C99D1EB52DE019556F72671CB23D8513] -- [15/08/2009 20:12:33] -- (.Copyright (C) 2003-2004 Realtek Semiconductor Corp. - RealTek AlcWzrd Application.) -- [2743 Ko] -- C:\WINDOWS\ALCWZRD.EXE -> (1.1.0.37)
[MD5.4BBBF1AC59DA25D9558189C2E875E838] -- [15/08/2009 19:56:57] -- (. - .) -- [32 Ko] -- C:\WINDOWS\AMove.exe -> (0.0.0.0)
[MD5.C8FD081133CFD96475619BFD0F283253] -- [15/08/2009 19:56:57] -- (.Copyright (C) 2002 QOOS Team Acer Inc. - APanel Tool Utility.) -- [24 Ko] -- C:\WINDOWS\APanel.exe -> (1.0.0.0)
[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] -- [16/08/2009 04:33:52] -- (.© Microsoft Corporation. - Explorateur Windows.) -- [1013.5 Ko] -- C:\WINDOWS\Explorer.exe -> (6.0.2900.5512)
[MD5.143E3B993DDE4F5D8A6E00BEBB662767] -- [16/08/2009 04:33:53] -- (.© Microsoft Corporation. - Microsoft® HTML Help Executable.) -- [10.5 Ko] -- C:\WINDOWS\hh.exe -> (5.2.3790.2453)
[MD5.36932522D014499D7F7B1BB921D05842] -- [10/07/2012 17:42:05] -- (.Copyright© 1990-1998 InstallShield Software Corporation Phone : (847) 240-9111   - InstallShield® unInstaller.) -- [319.5 Ko] -- C:\WINDOWS\IsUn040c.exe -> (5.50.137.0)
[MD5.DA3F3ED3F316721C5ED54FE5F9484EFA] -- [15/08/2009 20:12:35] -- (.Copyright (c) 2008 Realtek Semiconductor Corp. - Realtek Audio Microphone Calibration.) -- [2117.5 Ko] -- C:\WINDOWS\MicCal.exe -> (1.1.2.1)
[MD5.2DCC5C800F51D487178814CA9EADA181] -- [15/08/2009 20:47:59] -- (.© Microsoft Corporation. - Bloc-notes.) -- [69 Ko] -- C:\WINDOWS\NOTEPAD.EXE -> (5.1.2600.5512)
[MD5.ADF88D0996A634B5B13EE8FB9595647D] -- [16/08/2009 04:34:03] -- (.© Microsoft Corporation. - Éditeur du Registre.) -- [149.5 Ko] -- C:\WINDOWSegedit.exe -> (5.1.2600.5512)
[MD5.2CC9A09302592884E442C9D6D4B306CA] -- [15/08/2009 20:12:35] -- (.Copyright (c) 2008 Realtek Semiconductor Corp. - Realtek HD Audio Control Panel.) -- [17462.5 Ko] -- C:\WINDOWS\RTHDCPL.EXE -> (2.2.9.0)
[MD5.B0036538A94734748EE6F7DE5BF3ECFC] -- [15/08/2009 20:12:36] -- (.2009 (c) Realtek Semiconductor.  - Realtek Audio Service.) -- [120 Ko] -- C:\WINDOWS\RtkAudioService.exe -> (1.0.0.19)
[MD5.6BA107F1A62E1D37CD1DC8B943365491] -- [15/08/2009 20:12:37] -- (.Copyright (c) 2003-2004 Realtek Semiconductor Corp. - Realtek Audio Control Panel.) -- [9487.5 Ko] -- C:\WINDOWS\RTLCPL.EXE -> (1.0.1.66)
[MD5.A53137AF6DD2EFCBA91009F92ABA2780] -- [15/08/2009 20:12:38] -- (.Copyright (C) 2009 Realtek Semiconductor Corp. - Driver Update and remove for Windows x64 or x86_32.) -- [1172 Ko] -- C:\WINDOWS\RtlUpd.exe -> (2.7.1.3)
[MD5.C8612E58FB7FCFA5EEA4E39F7B8CBC17] -- [15/08/2009 20:12:38] -- (.Copyright (c) 2007 Realtek Semiconductor Corp. - Realtek Voice  Manager.) -- [1784 Ko] -- C:\WINDOWS\SkyTel.exe -> (2.0.2.0)
[MD5.846535EF009EC28753C9B64FCB30F299] -- [15/08/2009 20:12:38] -- (.Copyright (c) 2008 Realtek Semiconductor Corp. - Realtek Sound Manager.) -- [76 Ko] -- C:\WINDOWS\SOUNDMAN.EXE -> (1.0.0.32)
[MD5.DA090A1AD995DB0716293E029E6198E5] -- [15/08/2009 20:47:59] -- (.© Microsoft Corporation. - Gestionnaire des tâches.) -- [15.5 Ko] -- C:\WINDOWS\TASKMAN.EXE -> (5.1.2600.0)
[MD5.F36A271706EDD23C94956AFB56981184] -- [16/08/2009 04:34:07] -- (. - Twain_32.dll Client's 16-Bit Thunking Server.) -- [48.52 Ko] -- C:\WINDOWS	wunk_16.exe -> (1.7.0.0)
[MD5.5F3C040D22D8A0D031283E3C5BCC18B5] -- [16/08/2009 04:34:07] -- (. - Twain.dll Client's 32-Bit Thunking Server.) -- [25 Ko] -- C:\WINDOWS	wunk_32.exe -> (1.7.1.0)
[MD5.79888E37178B4216AF4AF8F1750F037F] -- [20/03/2007 19:22:04] -- (.Copyright 2006 Nero AG and its licensors - Uninstaller.) -- [949.55 Ko] -- C:\WINDOWS\UNNeroBackItUp.exe -> (1.4.1010.0)
[MD5.FC5CB8D10838176AF858EDC17A140285] -- [28/02/2008 16:38:48] -- (.Copyright 2006 Nero AG and its licensors - Uninstaller.) -- [949.29 Ko] -- C:\WINDOWS\UNNeroMediaHome.exe -> (1.4.1010.0)
[MD5.DD8CA91D93914A1049F5C7D34E2602A2] -- [28/02/2007 14:41:02] -- (.Copyright 2006 Nero AG and its licensors - Uninstaller.) -- [949.55 Ko] -- C:\WINDOWS\UNNeroShowTime.exe -> (1.4.1010.0)
[MD5.9204E810752C9B5C391D90733499D676] -- [21/03/2007 19:02:12] -- (.Copyright 2006 Nero AG and its licensors - Uninstaller.) -- [949.55 Ko] -- C:\WINDOWS\UNNeroVision.exe -> (1.4.1010.0)
[MD5.6B62118DA05F6CB49D56C0C195071749] -- [20/03/2008 15:56:18] -- (.Copyright 2006 Nero AG and its licensors - Uninstaller.) -- [949.29 Ko] -- C:\WINDOWS\UNRecode.exe -> (1.4.1010.0)
[MD5.CA58911052C5C3A02DBB93F53F98E8A8] -- [15/08/2009 20:12:38] -- (.(c) Realtek.  - Sony Noise Canceling.) -- [284 Ko] -- C:\WINDOWS\vncutil.exe -> (1.0.0.23)
[MD5.7C4B58AB5E03F86998B3ECCEC84CE56C] -- [16/08/2009 04:34:09] -- (.Copyright © Microsoft Corp. 1991-1992 - Fichier application du moteur d'aide de Windows.) -- [250.75 Ko] -- C:\WINDOWS\winhelp.exe -> (3.10.0.425)
[MD5.6DB80B8F9DD83096FABAC437B59457F6] -- [16/08/2009 04:34:09] -- (.© Microsoft Corporation. - Aide Microsoft®.) -- [281.5 Ko] -- C:\WINDOWS\winhlp32.exe -> (5.1.2600.5512)

fanfan2012 · Answer

¤¤¤¤¤¤¤¤¤¤ | Systemroot\System

[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\AVICAP.DLL
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\AVIFILE.DLL
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\COMMDLG.DLL
[06/10/2011 16:01:30] -- |A| -- C:\WINDOWS\System\ddykypy
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\KEYBOARD.DRV
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\LZEXPAND.DLL
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\MCIAVI.DRV
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\MCISEQ.DRV
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\MCIWAVE.DRV
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\MMSYSTEM.DLL
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\MMTASK.TSK
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\MOUSE.DRV
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\MSVIDEO.DLL
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\OLECLI.DLL
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\OLESVR.DLL
[16/08/2009 04:34:04] -- |A| -- C:\WINDOWS\System\setup.inf
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\SHELL.DLL
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\SOUND.DRV
[16/08/2009 04:34:06] -- |A| -- C:\WINDOWS\System\stdole.tlb
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\SYSTEM.DRV
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\TAPI.DLL
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\TIMER.DRV
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\VER.DLL
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\VGA.DRV
[15/08/2009 20:48:00] -- |A| -- C:\WINDOWS\System\WFWNET.DRV
[15/08/2009 20:47:59] -- |A| -- C:\WINDOWS\System\WINSPOOL.DRV

¤¤¤¤¤¤¤¤¤¤ | Systemroot\Installer

[15/08/2009 20:34:42] - C:\WINDOWS\Installer\{01523985-2098-43AF-9C97-12B07BE02A9B}\IconWlc.exe
[15/08/2009 20:32:08] - C:\WINDOWS\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\gtngstrtd.ico
[15/08/2009 20:32:08] - C:\WINDOWS\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\MSWorks.exe
[15/08/2009 20:32:08] - C:\WINDOWS\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\WkBoLink.exe
[15/08/2009 20:32:08] - C:\WINDOWS\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\WksCal.exe
[15/08/2009 20:32:08] - C:\WINDOWS\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\wksdb.exe
[15/08/2009 20:32:08] - C:\WINDOWS\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\WksSb.exe
[15/08/2009 20:32:08] - C:\WINDOWS\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\wksss.exe
[15/08/2009 20:32:08] - C:\WINDOWS\Installer\{0214A441-A4AB-43A8-8DEF-2F73C5364673}\WksWP.exe
[03/09/2012 18:54:06] - C:\WINDOWS\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C9.url
[03/09/2012 18:54:06] - C:\WINDOWS\Installer\{048298C9-A4D3-490B-9FF9-AB023A9238F3}\Icon048298C91.exe
[26/06/2011 08:54:51] - C:\WINDOWS\Installer\{05653DE1-6567-40C6-B930-39D399B64369}\soffice.ico
[15/08/2009 20:35:21] - C:\WINDOWS\Installer\{059C042E-796A-4ACC-A81A-ECC2010BB78C}\MsblIco.Exe
[15/08/2009 20:34:48] - C:\WINDOWS\Installer\{205C6BDD-7B73-42DE-8505-9A093F35A238}\RichUpload.ico
[15/08/2009 20:36:36] - C:\WINDOWS\Installer\{2231CE39-B963-4B9D-823A-F412ECA637B1}\ApplicationIcon.ico
[15/03/2012 20:49:41] - C:\WINDOWS\Installer\{26A24AE4-039D-4CA4-87B4-2F83216031FF}\sp1036.MST
[25/06/2011 23:59:38] - C:\WINDOWS\Installer\{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}\1036.mst
[25/06/2011 23:59:38] - C:\WINDOWS\Installer\{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}\ARPPRODUCTICON.exe
[15/08/2009 19:57:14] - C:\WINDOWS\Installer\{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}\places.exe
[15/08/2009 20:36:28] - C:\WINDOWS\Installer\{43563ACB-371B-4C58-8979-B192B390424C}\WLXPhotoGalleryIcon.exe
[26/06/2011 00:07:29] - C:\WINDOWS\Installer\{5C1BF3AC-B19D-4C26-B0A0-90833A521036}\1036.mst
[15/08/2009 20:35:37] - C:\WINDOWS\Installer\{63DC2DA0-2A6C-4C38-9249-B75395458657}\wlmail.exe
[15/08/2009 20:36:05] - C:\WINDOWS\Installer\{67D0313C-4F15-437D-9A2D-C1564088A26A}\FolderShare48x48.ico
[15/08/2009 20:08:25] - C:\WINDOWS\Installer\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}\1036.MST
[15/08/2009 20:08:25] - C:\WINDOWS\Installer\{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}\ARPPRODUCTICON.exe
[29/08/2012 02:03:39] - C:\WINDOWS\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe
[15/08/2009 20:32:29] - C:\WINDOWS\Installer\{90120000-0020-040C-0000-0000000FF1CE}\O12ConvIcon.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\graph.ico
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\GrooveIcon.ico
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\ShellUI.MST
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe
[26/06/2011 09:12:29] - C:\WINDOWS\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe
[26/06/2011 09:03:14] - C:\WINDOWS\Installer\{90120000-006E-040C-0000-0000000FF1CE}\misc.exe
[15/08/2009 19:58:41] - C:\WINDOWS\Installer\{9A394342-4A68-4EBA-85A6-55B559F4E700}
dpsetup.ico
[15/08/2009 20:39:49] - C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A90000000001}\APIFile_8.ico
[15/08/2009 20:39:49] - C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A90000000001}\FDFFile_8.ico
[15/08/2009 20:39:49] - C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A90000000001}\PDFFile_8.ico
[15/08/2009 20:39:49] - C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A90000000001}\PDXFile_8.ico
[15/08/2009 20:39:49] - C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A90000000001}\RMFFile_8.ico
[15/08/2009 20:39:49] - C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A90000000001}\SC_Reader.exe
[15/08/2009 20:39:49] - C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A90000000001}\SecStoreFile.ico
[15/08/2009 20:39:49] - C:\WINDOWS\Installer\{AC76BA86-7AD7-1036-7B44-A90000000001}\XDPFile_8.ico
[15/08/2009 20:34:54] - C:\WINDOWS\Installer\{D6E592B3-67DA-4BBB-9783-E1838FB253A2}\prodicon.ico
[15/08/2009 20:35:50] - C:\WINDOWS\Installer\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}\ProductIcon
[29/08/2012 02:02:37] - C:\WINDOWS\Installer\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}\icon.exe

¤¤¤¤¤¤¤¤¤¤ | %System%\*.ini

[15/08/2009 19:51:29] -- |A| -- C:\WINDOWS\System32\desktop.ini
[16/08/2009 04:33:52] -- |A| -- C:\WINDOWS\System32\esentprf.ini
[15/08/2009 19:50:12] -- |A| -- C:\WINDOWS\System32\fxsperf.ini
[15/08/2009 19:50:12] -- |A| -- C:\WINDOWS\System32\msdtcprf.ini
[15/08/2009 19:56:57] -- |A| -- C:\WINDOWS\System32\oeminfo.ini
[16/08/2009 04:34:00] -- |A| -- C:\WINDOWS\System32\perfci.ini
[16/08/2009 04:34:00] -- |A| -- C:\WINDOWS\System32\perffilt.ini
[15/08/2009 20:48:11] -- |A| -- C:\WINDOWS\System32\PerfStringBackup.INI
[16/08/2009 04:34:01] -- |A| -- C:\WINDOWS\System32\perfwci.ini
[16/08/2009 04:34:01] -- |A| -- C:\WINDOWS\System32\prodspec.ini
[16/08/2009 04:34:01] -- |A| -- C:\WINDOWS\System32\pschdprf.ini
[16/08/2009 04:34:03] -- |A| -- C:\WINDOWS\System32asctrs.ini
[16/08/2009 04:34:03] -- |A| -- C:\WINDOWS\System32svp.ini
[16/08/2009 04:34:07] -- |A| -- C:\WINDOWS\System32	cpmon.ini
[15/08/2009 19:50:12] -- |A| -- C:\WINDOWS\System32	slabels.ini

¤¤¤¤¤¤¤¤¤¤ | AppData

[26/06/2011 10:42:10] -- |D| -- C:\Documents and settings\Administrateur\Application Data\Adobe
[26/06/2011 10:42:12] -- |ASH| -- C:\Documents and settings\Administrateur\Application Data\desktop.ini
[26/06/2011 10:42:10] -- |D| -- C:\Documents and settings\Administrateur\Application Data\Identities
[26/06/2011 10:42:10] -- |D| -- C:\Documents and settings\Administrateur\Application Data\Macromedia
[24/04/2012 15:03:38] -- |D| -- C:\Documents and settings\Administrateur\Application Data\Malwarebytes
[26/06/2011 10:42:10] -- |SD| -- C:\Documents and settings\Administrateur\Application Data\Microsoft

¤¤¤¤¤¤¤¤¤¤ | CommonAppData

[15/08/2009 20:26:08] -- |D| -- C:\Documents and settings\All Users\Application Data\Adobe
[15/08/2009 20:10:16] -- |D| -- C:\Documents and settings\All Users\Application Data\Atheros
[26/06/2011 09:16:10] -- |D| -- C:\Documents and settings\All Users\Application Data\AVAST Software
[30/12/2011 16:24:04] -- |D| -- C:\Documents and settings\All Users\Application Data\AVG2012
[04/01/2012 22:36:29] -- |D| -- C:\Documents and settings\All Users\Application Data\Babylon
[31/12/2011 14:28:54] -- |HD| -- C:\Documents and settings\All Users\Application Data\CanonBJ
[31/12/2011 14:50:27] -- |HD| -- C:\Documents and settings\All Users\Application Data\CanonEPP
[17/01/2012 19:43:33] -- |D| -- C:\Documents and settings\All Users\Application Data\CanonIJ
[31/12/2011 14:50:27] -- |HD| -- C:\Documents and settings\All Users\Application Data\CanonIJEPPEX2
[31/12/2011 14:48:23] -- |HD| -- C:\Documents and settings\All Users\Application Data\CanonIJFAX
[31/12/2011 14:50:20] -- |HD| -- C:\Documents and settings\All Users\Application Data\CanonIJMyPrinter
[31/12/2011 14:49:32] -- |D| -- C:\Documents and settings\All Users\Application Data\CanonIJPLM
[18/01/2012 23:19:49] -- |HD| -- C:\Documents and settings\All Users\Application Data\CanonIJScan
[31/12/2011 14:50:29] -- |HD| -- C:\Documents and settings\All Users\Application Data\CanonIJSolutionMenuEX
[31/12/2011 14:34:39] -- |D| -- C:\Documents and settings\All Users\Application Data\CanonIJWSpt
[30/12/2011 16:25:36] -- |HD| -- C:\Documents and settings\All Users\Application Data\Common Files
[01/07/2011 17:37:24] -- |D| -- C:\Documents and settings\All Users\Application Data\CyberLink
[15/08/2009 20:47:50] -- |ASH| -- C:\Documents and settings\All Users\Application Data\desktop.ini
[26/06/2011 00:11:25] -- |D| -- C:\Documents and settings\All Users\Application Data\Google
[26/06/2011 10:03:28] -- |D| -- C:\Documents and settings\All Users\Application Data\Malwarebytes
[30/12/2011 16:20:22] -- |D| -- C:\Documents and settings\All Users\Application Data\MFAData
[15/08/2009 20:47:33] -- |SD| -- C:\Documents and settings\All Users\Application Data\Microsoft
[15/08/2009 20:15:11] -- |D| -- C:\Documents and settings\All Users\Application Data\Microsoft Help
[04/06/2012 23:10:05] -- |D| -- C:\Documents and settings\All Users\Application Data\Mozilla
[26/06/2011 00:05:53] -- |D| -- C:\Documents and settings\All Users\Application Data\Nero
[15/08/2009 20:40:54] -- |D| -- C:\Documents and settings\All Users\Application Data\Norton
[15/08/2009 20:40:23] -- |D| -- C:\Documents and settings\All Users\Application Data\NortonInstaller
[21/08/2011 11:18:20] -- |D| -- C:\Documents and settings\All Users\Application Data\Sports Interactive
[26/06/2011 08:53:40] -- |D| -- C:\Documents and settings\All Users\Application Data\Sun
[25/06/2011 23:58:37] -- |D| -- C:\Documents and settings\All Users\Application Data\Temp

¤¤¤¤¤¤¤¤¤¤ | LocalAppData

[26/06/2011 10:42:10] -- |D| -- C:\Documents and settings\Administrateur\Local Settings\Application Data\ApplicationHistory
[26/06/2011 10:42:12] -- |A| -- C:\Documents and settings\Administrateur\Local Settings\Application Data\fusioncache.dat
[26/06/2011 10:42:12] -- |A| -- C:\Documents and settings\Administrateur\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[26/06/2011 10:42:10] -- |D| -- C:\Documents and settings\Administrateur\Local Settings\Application Data\Google
[26/06/2011 10:42:12] -- |AH| -- C:\Documents and settings\Administrateur\Local Settings\Application Data\IconCache.db
[26/06/2011 10:42:10] -- |D| -- C:\Documents and settings\Administrateur\Local Settings\Application Data\Microsoft
[26/06/2011 10:42:10] -- |D| -- C:\Documents and settings\Administrateur\Local Settings\Application Data\Microsoft Help
[26/06/2011 10:42:10] -- |D| -- C:\Documents and settings\Administrateur\Local Settings\Application Data\Packard Bell
[25/06/2011 23:54:25] -- |D| -- C:\Documents and settings\Default User\Local Settings\Application Data\ApplicationHistory
[25/06/2011 23:54:27] -- |A| -- C:\Documents and settings\Default User\Local Settings\Application Data\fusioncache.dat
[25/06/2011 23:54:27] -- |A| -- C:\Documents and settings\Default User\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[25/06/2011 23:54:25] -- |D| -- C:\Documents and settings\Default User\Local Settings\Application Data\Google
[25/06/2011 23:54:27] -- |AH| -- C:\Documents and settings\Default User\Local Settings\Application Data\IconCache.db
[15/08/2009 19:53:04] -- |D| -- C:\Documents and settings\Default User\Local Settings\Application Data\Microsoft
[25/06/2011 23:54:25] -- |D| -- C:\Documents and settings\Default User\Local Settings\Application Data\Microsoft Help
[25/06/2011 23:54:25] -- |D| -- C:\Documents and settings\Default User\Local Settings\Application Data\Packard Bell
[01/07/2011 20:40:46] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Adobe
[26/06/2011 00:09:59] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Ahead
[25/06/2011 23:55:36] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\ApplicationHistory
[04/01/2012 22:36:29] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Babylon
[22/04/2012 19:29:38] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Conduit
[22/04/2012 19:30:03] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\CRE
[01/07/2011 17:19:10] -- |A| -- C:\Documents and settings\Francois\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[25/06/2011 23:55:38] -- |A| -- C:\Documents and settings\Francois\Local Settings\Application Data\fusioncache.dat
[25/06/2011 23:55:38] -- |A| -- C:\Documents and settings\Francois\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[25/06/2011 23:55:36] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Google
[25/06/2011 23:55:38] -- |AH| -- C:\Documents and settings\Francois\Local Settings\Application Data\IconCache.db
[22/02/2012 17:59:52] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Identities
[25/06/2011 23:55:36] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Microsoft
[25/06/2011 23:55:36] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Microsoft Help
[26/06/2011 08:44:31] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Mozilla
[25/06/2011 23:55:36] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Packard Bell
[28/08/2011 16:53:46] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Spotify
[26/08/2011 12:57:58] -- |D| -- C:\Documents and settings\Francois\Local Settings\Application Data\Temp
[26/06/2011 08:36:42] -- |D| -- C:\Documents and settings\LocalService\Local Settings\Application Data\Google
[15/08/2009 19:56:44] -- |D| -- C:\Documents and settings\LocalService\Local Settings\Application Data\Microsoft
[26/06/2011 07:45:24] -- |D| -- C:\Documents and settings\NetworkService\Local Settings\Application Data\Google
[15/08/2009 19:56:43] -- |D| -- C:\Documents and settings\NetworkService\Local Settings\Application Data\Microsoft

¤¤¤¤¤¤¤¤¤¤ | Start Menu

[26/06/2011 10:42:10] -- |ASH| -- C:\Documents and settings\Administrateur\Menu Démarrer\desktop.ini
[26/06/2011 10:42:10] -- |RD| -- C:\Documents and settings\Administrateur\Menu Démarrer\Programmes
[15/08/2009 19:53:13] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Catalogue Windows.lnk
[15/08/2009 19:53:13] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Configurer les programmes par défaut.lnk
[15/08/2009 20:47:50] -- |ASH| -- C:\Documents and settings\All Users\Menu Démarrer\desktop.ini
[26/06/2011 09:12:40] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Nouveau document Microsoft Office.lnk
[26/06/2011 09:12:40] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Ouvrir un document Microsoft Office.lnk
[08/04/2012 19:14:49] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\PokerStars.fr.lnk
[15/08/2009 20:47:50] -- |RD| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes
[15/08/2009 19:53:13] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Windows Update.lnk
[15/08/2009 20:47:50] -- |ASH| -- C:\Documents and settings\Default User\Menu Démarrer\desktop.ini
[15/08/2009 20:47:50] -- |RD| -- C:\Documents and settings\Default User\Menu Démarrer\Programmes
[25/06/2011 23:55:36] -- |ASH| -- C:\Documents and settings\Francois\Menu Démarrer\desktop.ini
[25/06/2011 23:55:35] -- |RD| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes

¤¤¤¤¤¤¤¤¤¤ | Start Menu\Programs

[26/06/2011 10:42:10] -- |RD| -- C:\Documents and settings\Administrateur\Menu Démarrer\Programmes\Accessoires
[26/06/2011 10:42:10] -- |A| -- C:\Documents and settings\Administrateur\Menu Démarrer\Programmes\Assistance à distance.lnk
[26/06/2011 10:42:10] -- |ASH| -- C:\Documents and settings\Administrateur\Menu Démarrer\Programmes\desktop.ini
[26/06/2011 10:42:10] -- |RD| -- C:\Documents and settings\Administrateur\Menu Démarrer\Programmes\Démarrage
[26/06/2011 10:42:10] -- |A| -- C:\Documents and settings\Administrateur\Menu Démarrer\Programmes\Internet Explorer.lnk
[26/06/2011 10:42:10] -- |A| -- C:\Documents and settings\Administrateur\Menu Démarrer\Programmes\Outlook Express.lnk
[15/08/2009 19:49:54] -- |RD| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Accessoires
[15/08/2009 20:28:23] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Adobe Photoshop Elements 6.0.lnk
[15/08/2009 20:39:36] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Adobe Reader 9.lnk
[11/09/2012 10:47:54] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\AVG
[10/05/2012 09:50:45] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\AVG PC Tuneup 2011
[31/12/2011 14:28:15] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Canon MX410 series
[31/12/2011 14:30:04] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Canon MX410 series Manual
[31/12/2011 14:31:07] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Canon Utilities
[15/08/2009 20:47:50] -- |ASH| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\desktop.ini
[15/08/2009 20:47:50] -- |RD| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Démarrage
[18/07/2012 18:07:19] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\eMule
[31/12/2011 14:36:04] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Enregistrement utilisateur de Canon MX410 series
[15/08/2009 20:24:15] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Google Desktop
[28/05/2012 21:04:59] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Grand Prix 2
[13/05/2012 13:31:25] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Grand Prix Manager 2
[15/08/2009 19:50:29] -- |RD| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Jeux
[01/07/2011 17:40:56] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\K-Lite Codec Pack
[15/08/2009 20:32:02] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Lanceur de tâches Microsoft Works.lnk
[26/06/2011 10:03:29] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Malwarebytes' Anti-Malware
[26/06/2011 09:12:40] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Microsoft Office
[26/06/2011 09:04:24] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Microsoft Visual Studio 2005
[15/08/2009 20:32:02] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Microsoft Works
[18/03/2012 15:23:02] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Mozilla Firefox.lnk
[15/08/2009 19:50:29] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\MSN.lnk
[26/06/2011 00:09:48] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Nero 8
[10/07/2012 16:50:10] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Nobilis
[15/08/2009 20:08:40] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\NVIDIA Corporation
[26/06/2011 08:54:45] -- |SD| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\OpenOffice.org 3.3
[15/08/2009 19:51:03] -- |RD| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Outils d'administration
[15/08/2009 20:30:13] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Packard Bell - Divertissement & Loisirs
[15/08/2009 20:45:21] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Packard Bell - Internet
[15/08/2009 20:31:02] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Packard Bell - Sécurité & Support
[08/04/2012 19:14:43] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\PokerStars.FR
[01/07/2011 20:57:58] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Pro Cycling Manager - Season 2009
[03/09/2012 18:54:02] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Steam
[10/07/2012 17:46:31] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Strategy First
[23/12/2011 19:09:32] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Tropico
[14/07/2012 17:51:59] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Ubisoft
[15/08/2009 20:34:41] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Windows Live
[15/08/2009 19:50:30] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Windows Messenger.lnk
[15/08/2009 19:51:40] -- |A| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Windows Movie Maker.lnk
[02/07/2011 08:12:20] -- |D| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\WinRAR
[15/08/2009 19:51:39] -- |RD| -- C:\Documents and settings\Default User\Menu Démarrer\Programmes\Accessoires
[15/08/2009 19:53:13] -- |A| -- C:\Documents and settings\Default User\Menu Démarrer\Programmes\Assistance à distance.lnk
[15/08/2009 20:47:50] -- |ASH| -- C:\Documents and settings\Default User\Menu Démarrer\Programmes\desktop.ini
[15/08/2009 20:47:50] -- |RD| -- C:\Documents and settings\Default User\Menu Démarrer\Programmes\Démarrage
[25/06/2011 23:54:26] -- |A| -- C:\Documents and settings\Default User\Menu Démarrer\Programmes\Internet Explorer.lnk
[25/06/2011 23:54:26] -- |A| -- C:\Documents and settings\Default User\Menu Démarrer\Programmes\Outlook Express.lnk
[25/06/2011 23:55:35] -- |RD| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Accessoires
[25/06/2011 23:55:36] -- |A| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Assistance à distance.lnk
[01/07/2011 21:03:20] -- |D| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Cyanide
[22/09/2012 23:23:05] -- |D| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\CyberLink PowerDVD 8
[25/06/2011 23:55:36] -- |ASH| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\desktop.ini
[25/06/2011 23:55:35] -- |RD| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Démarrage
[19/03/2012 11:08:43] -- |D| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Google Chrome
[25/06/2011 23:55:36] -- |A| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Internet Explorer.lnk
[25/06/2011 23:55:36] -- |A| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Lecteur Windows Media.lnk
[01/07/2011 20:19:47] -- |D| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Mount&Blade Warband
[25/06/2011 23:55:36] -- |A| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Outlook Express.lnk
[08/10/2011 13:58:38] -- |D| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Sports Interactive
[28/08/2011 16:53:36] -- |A| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Spotify.lnk
[02/07/2011 08:12:20] -- |D| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\WinRAR

¤¤¤¤¤¤¤¤¤¤ | Start Menu\Programs\Startup

[26/06/2011 10:42:10] -- |ASH| -- C:\Documents and settings\Administrateur\Menu Démarrer\Programmes\Démarrage\desktop.ini
[15/08/2009 20:47:50] -- |ASH| -- C:\Documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\desktop.ini
[15/08/2009 20:47:50] -- |ASH| -- C:\Documents and settings\Default User\Menu Démarrer\Programmes\Démarrage\desktop.ini
[25/06/2011 23:55:36] -- |ASH| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Démarrage\desktop.ini
[31/01/2012 00:21:05] -- |A| -- C:\Documents and settings\Francois\Menu Démarrer\Programmes\Démarrage\OneNote 2007 - Capture d'écran et lancement.lnk

¤¤¤¤¤¤¤¤¤¤ | Tasks

[24/04/2012 17:09:30] -- |A| -- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
[16/08/2009 04:33:58] -- |RAH| -- C:\WINDOWS\Tasks\desktop.ini
[26/06/2011 08:36:36] -- |A| -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
[26/06/2011 08:36:36] -- |A| -- C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
[19/03/2012 11:07:36] -- |A| -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2802022764-2121953277-338115081-1006Core.job
[19/03/2012 11:07:36] -- |A| -- C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2802022764-2121953277-338115081-1006UA.job
[15/08/2009 19:56:45] -- |AH| -- C:\WINDOWS\Tasks\SA.DAT


¤¤¤¤¤¤¤¤¤¤ | Legacy

[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AAVMKER4] - (LegacyDriver) : Aavmker4 -> avast! Asynchronous Virus Monitor
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ABP480N5] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ADOBEACTIVEFILEMONITOR6.0] - (LegacyDriver) : AdobeActiveFileMonitor6.0 -> Adobe Active File Monitor V6
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ADOBEFLASHPLAYERUPDATESVC] - (LegacyDriver) : AdobeFlashPlayerUpdateSvc -> Adobe Flash Player Update Service
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ADPU160M] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AFD] - (LegacyDriver) : AFD -> AFD
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AGP440] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AGPCPQ] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AHA154X] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AIC78U2] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AIC78XX] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ALG] - (LegacyDriver) : ALG -> Service de la passerelle de la couche Application
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ALIIDE] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ALIM1541] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AMDAGP] - (LegacyDriver) : amdagp -> Pilote de filtre du bus AMD AGP
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AMSINT] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_APPDRV01] - (LegacyDriver) : appdrv01 -> Application Driver (01)
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_APPDRV01.FS.{A7E56839-0B44-4261-8167-6DCA58E79946}] - (LegacyDriver) : appdrv01.fs.{A7E56839-0B44-4261-8167-6DCA58E79946} -> appdrv01.fs.{A7E56839-0B44-4261-8167-6DCA58E79946}
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_APPDRVREM01] - (LegacyDriver) : appdrvrem01 -> Application Driver Auto Removal Service (01)
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_APPMGMT] - (LegacyDriver) : AppMgmt -> Gestion d'applications
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASC] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASC3350P] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASC3550] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWFSBLK] - (LegacyDriver) : aswFsBlk -> aswFsBlk
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMON2] - (LegacyDriver) : aswMon2 -> aswMon2
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWRDR] - (LegacyDriver) : aswRdr -> aswRdr
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSNX] - (LegacyDriver) : aswSnx -> aswSnx
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWSP] - (LegacyDriver) : aswSP -> aswSP
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWTDI] - (LegacyDriver) : aswTdi -> avast! Network Shield Support
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ATAPI] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AUDIOSRV] - (LegacyDriver) : AudioSrv -> Audio Windows
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSAGENT] - (LegacyDriver) : AVGIDSAgent -> AVGIDSAgent
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSDRIVER] - (LegacyDriver) : AVGIDSDriver -> AVGIDSDriver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSEH] - (LegacyDriver) : AVGIDSEH -> AVGIDSEH
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSFILTER] - (LegacyDriver) : AVGIDSFilter -> AVGIDSFilter
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSHX] - (LegacyDriver) : AVGIDSHX -> AVGIDSHX
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGIDSSHIM] - (LegacyDriver) : AVGIDSShim -> AVGIDSShim
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGLDX86] - (LegacyDriver) : Avgldx86 -> AVG AVI Loader Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGMFX86] - (LegacyDriver) : Avgmfx86 -> AVG Mini-Filter Resident Anti-Virus Shield
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGRKX86] - (LegacyDriver) : Avgrkx86 -> AVG Anti-Rootkit Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGTDIX] - (LegacyDriver) : Avgtdix -> AVG TDI Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_AVGWD] - (LegacyDriver) : avgwd -> AVG WatchDog
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BEEP] - (LegacyDriver) : Beep -> Beep
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BHDRVX86] - (LegacyDriver) : BHDrvx86 -> Symantec Heuristics Driver
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BITS] - (LegacyDriver) : BITS -> Service de transfert intelligent en arrière-plan
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_BROWSER] - (LegacyDriver) : Browser -> Explorateur d'ordinateur
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CBIDF] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CCHP] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CD2RNT] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CDFS] - (LegacyDriver) : cdfs -> cdfs
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CLR_OPTIMIZATION_V2.0.50727_32] - (LegacyDriver) : clr_optimization_v2.0.50727_32 -> .NET Runtime Optimization Service v2.0.50727_X86
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CMDIDE] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_COMSYSAPP] - (LegacyDriver) : COMSysApp -> Application système COM+
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CPQARRAY] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_CRYPTSVC] - (LegacyDriver) : CryptSvc -> Services de cryptographie
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DAC2W2K] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DAC960NT] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DCOMLAUNCH] - (LegacyDriver) : DcomLaunch -> Lanceur de processus serveur DCOM
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DHCP] - (LegacyDriver) : Dhcp -> Client DHCP
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DMADMIN] - (LegacyDriver) : dmadmin -> Service d'administration du Gestionnaire de disque logique
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DMBOOT] - (LegacyDriver) : dmboot -> dmboot
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DMLOAD] - (LegacyDriver) : dmload -> dmload
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DMSERVER] - (LegacyDriver) : dmserver -> Gestionnaire de disque logique
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DNSCACHE] - (LegacyDriver) : Dnscache -> Client DNS
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_DPTI2O] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ERSVC] - (LegacyDriver) : ERSvc -> Service de rapport d'erreurs
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_EVENTSYSTEM] - (LegacyDriver) : EventSystem -> Système d'événements de COM+
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FASTFAT] - (LegacyDriver) : fastfat -> fastfat
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FASTUSERSWITCHINGCOMPATIBILITY] - (LegacyDriver) : FastUserSwitchingCompatibility -> Compatibilité avec le Changement rapide d'utilisateur
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FAX] - (LegacyDriver) : Fax -> Fax
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FIPS] - (LegacyDriver) : Fips -> Fips
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FLTMGR] - (LegacyDriver) : FltMgr -> FltMgr
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FONTCACHE3.0.0.0] - (LegacyDriver) : FontCache3.0.0.0 -> Windows Presentation Foundation Font Cache 3.0.0.0
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FORCEWARE_INTELLIGENT_APPLICATION_MANAGER_(IAM)] - (LegacyDriver) : ForceWare Intelligent Application Manager (IAM) -> ForceWare Intelligent Application Manager (IAM)
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_FS_REC] - (LegacyDriver) : Fs_Rec -> Fs_Rec
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_GOOGLEDESKTOPMANAGER-080708-050100] - (LegacyDriver) : GoogleDesktopManager-080708-050100 -> Google Desktop Manager 5.7.808.7150
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_GPC] - (LegacyDriver) : Gpc -> Classificateur de paquets générique
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_GUPDATE] - (LegacyDriver) : gupdate -> Service Google Update (gupdate)
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_GUPDATEM] - (LegacyDriver) : gupdatem -> Service Google Update (gupdatem)
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_GUSVC] - (LegacyDriver) : gusvc -> Google Software Updater
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HELPSVC] - (LegacyDriver) : helpsvc -> Aide et support
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HIDSERV] - (LegacyDriver) : HidServ -> HID Input Service
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HPN] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HTTP] - (LegacyDriver) : HTTP -> HTTP
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_HTTPFILTER] - (LegacyDriver) : HTTPFilter -> HTTP SSL
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_I2OMGMT] - (LegacyDriver) : i2omgmt -> i2omgmt
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_I2OMP] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_IDSXPX86] - (LegacyDriver) : IDSxpx86 -> IDSxpx86
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_IJPLMSVC] - (LegacyDriver) : IJPLMSVC -> Canon Inkjet Printer/Scanner/Fax Extended Survey Program
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_IMAPISERVICE] - (LegacyDriver) : ImapiService -> Service COM de gravage de CD IMAPI
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_INI910U] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_INTELIDE] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_IPNAT] - (LegacyDriver) : IpNat -> Traducteur d'adresses réseau IP
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_IPSEC] - (LegacyDriver) : IPSec -> Pilote IPSEC
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_JAVAQUICKSTARTERSERVICE] - (LegacyDriver) : JavaQuickStarterService -> Java Quick Starter
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_KSECDD] - (LegacyDriver) : ksecdd -> ksecdd
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_LANMANSERVER] - (LegacyDriver) : LanmanServer -> Serveur
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_LANMANWORKSTATION] - (LegacyDriver) : LanmanWorkstation -> Station de travail
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_LMHOSTS] - (LegacyDriver) : LmHosts -> Assistance TCP/IP NetBIOS
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MDM] - (LegacyDriver) : MDM -> Machine Debug Manager
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MNMDD] - (LegacyDriver) : mnmdd -> mnmdd
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MOUNTMGR] - (LegacyDriver) : mountmgr -> mountmgr
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MRAID35X] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MRXDAV] - (LegacyDriver) : MRxDAV -> Redirecteur client WebDav
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MRXSMB] - (LegacyDriver) : MRxSmb -> MRXSMB
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MSDTC] - (LegacyDriver) : MSDTC -> Distributed Transaction Coordinator
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MSFS] - (LegacyDriver) : Msfs -> Msfs
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MSISERVER] - (LegacyDriver) : MSIServer -> Windows Installer
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MUP] - (LegacyDriver) : Mup -> Mup
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NAVENG] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NAVEX15] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NDIS] - (LegacyDriver) : NDIS -> Pilote système NDIS
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NDISTAPI] - (LegacyDriver) : NdisTapi -> Pilote TAPI NDIS d'accès distant
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NDISUIO] - (LegacyDriver) : Ndisuio -> NDIS mode utilisateur E/S Protocole
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NDPROXY] - (LegacyDriver) : NDProxy -> NDProxy
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETBIOS] - (LegacyDriver) : NetBIOS -> Interface NetBIOS
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETBT] - (LegacyDriver) : NetBT -> NetBIOS sur TCP/IP
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NETMAN] - (LegacyDriver) : Netman -> Connexions réseau
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NLA] - (LegacyDriver) : Nla -> NLA (Network Location Awareness)
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NMINDEXINGSERVICE] - (LegacyDriver) : NMIndexingService -> NMIndexingService
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NPFS] - (LegacyDriver) : Npfs -> Npfs
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NSVCIP] - (LegacyDriver) : nSvcIp -> ForceWare IP service
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NTFS] - (LegacyDriver) : ntfs -> ntfs
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NULL] - (LegacyDriver) : Null -> Null
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_NVSVC] - (LegacyDriver) : nvsvc -> NVIDIA Display Driver Service
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PARPORT] - (LegacyDriver) : Parport -> Parport
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PARTMGR] - (LegacyDriver) : PartMgr -> PartMgr
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PARVDM] - (LegacyDriver) : ParVdm -> ParVdm
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PCIIDE] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PERC2] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PERC2HIB] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PLFLASH_DEVICEIOCONTROL_SERVICE] - (LegacyDriver) : PLFlash DeviceIoControl Service -> PLFlash DeviceIoControl Service
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_POLICYAGENT] - (LegacyDriver) : PolicyAgent -> Services IPSEC
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_PROTECTEDSTORAGE] - (LegacyDriver) : ProtectedStorage -> Emplacement protégé
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_QL1080] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_QL10WNT] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_QL12160] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_QL1240] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_QL1280] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RASACD] - (LegacyDriver) : RasAcd -> Pilote de connexion automatique d'accès distant
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RASMAN] - (LegacyDriver) : RasMan -> Gestionnaire de connexions d'accès distant
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RDBSS] - (LegacyDriver) : Rdbss -> Rdbss
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RDPCDD] - (LegacyDriver) : RDPCDD -> RDPCDD
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RDPNP] - (LegacyDriver) : RDPNP -> RDPNP
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_RPCSS] - (LegacyDriver) : RpcSs -> Appel de procédure distante (RPC)
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SAMSS] - (LegacyDriver) : SamSs -> Gestionnaire de comptes de sécurité
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SCHEDULE] - (LegacyDriver) : Schedule -> Planificateur de tâches
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SECDRV] - (LegacyDriver) : Secdrv -> Secdrv
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SECLOGON] - (LegacyDriver) : seclogon -> Connexion secondaire
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SENS] - (LegacyDriver) : SENS -> Notification d'événement système
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SERIAL] - (LegacyDriver) : Serial -> Serial
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SHAREDACCESS] - (LegacyDriver) : SharedAccess -> Pare-feu Windows / Partage de connexion Internet
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SHELLHWDETECTION] - (LegacyDriver) : ShellHWDetection -> Détection matériel noyau
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SISAGP] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPARROW] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SPOOLER] - (LegacyDriver) : Spooler -> Spouleur d'impression
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SR] - (LegacyDriver) : sr -> Pilote de filtre de restauration système
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SRSERVICE] - (LegacyDriver) : srservice -> Service de restauration système
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SRTSP] - (LegacyDriver) : SRTSP -> SRTSP
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SRTSPX] - (LegacyDriver) : SRTSPX -> SRTSPX
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SRV] - (LegacyDriver) : Srv -> Srv
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SSDPSRV] - (LegacyDriver) : SSDPSRV -> Service de découvertes SSDP
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_STISVC] - (LegacyDriver) : stisvc -> Acquisition d'image Windows (WIA)
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMC810] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMC8XX] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMDNS] - (LegacyDriver) : SYMDNS -> SYMDNS
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMEFA] - (LegacyDriver) : SymEFA -> Symantec Extended File Attributes
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMEVENT] - (LegacyDriver) : SymEvent -> SymEvent
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMFW] - (LegacyDriver) : SYMFW -> SYMFW
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMIDS] - (LegacyDriver) : SYMIDS -> SYMIDS
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMNDIS] - (LegacyDriver) : SYMNDIS -> SYMNDIS
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMREDRV] - (LegacyDriver) : SYMREDRV -> SYMREDRV
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYMTDI] - (LegacyDriver) : SYMTDI -> SYMTDI
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYM_HI] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SYM_U3] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TAPISRV] - (LegacyDriver) : TapiSrv -> Téléphonie
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TCPIP] - (LegacyDriver) : Tcpip -> Pilote du protocole TCP/IP
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TERMSERVICE] - (LegacyDriver) : TermService -> Services Terminal Server
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_THEMES] - (LegacyDriver) : Themes -> Thèmes
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TOSIDE] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_TRKWKS] - (LegacyDriver) : TrkWks -> Client de suivi de lien distribué
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_UDFS] - (LegacyDriver) : Udfs -> Udfs
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ULTRA] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_UMWDF] - (LegacyDriver) : UMWdf -> Windows User Mode Driver Framework
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_UPNPHOST] - (LegacyDriver) : upnphost -> Hôte de périphérique universel Plug-and-Play
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VGA] - (LegacyDriver) : vga -> vga
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VGASAVE] - (LegacyDriver) : VgaSave -> VgaSave
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VIAAGP] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VIAIDE] - () :  -> 
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_VOLSNAP] - (LegacyDriver) : VolSnap -> VolSnap
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_W32TIME] - (LegacyDriver) : W32Time -> Horloge Windows
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WANARP] - (LegacyDriver) : Wanarp -> Pilote ARP IP d'accès distant
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WEBCLIENT] - (LegacyDriver) : WebClient -> WebClient
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WINMGMT] - (LegacyDriver) : winmgmt -> Infrastructure de gestion Windows
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WMIAPSRV] - (LegacyDriver) : WmiApSrv -> Carte de performance WMI
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WS2IFSL] - (LegacyDriver) : WS2IFSL -> Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WUAUSERV] - (LegacyDriver) : wuauserv -> Mises à jour automatiques
[HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_WZCSVC] - (LegacyDriver) : WZCSVC -> Configuration automatique sans fil

¤¤¤¤¤¤¤¤¤¤ | System Files

[MD5.6ABB91494FE6C59089B9336452AB2EA3] - [15/08/2009 21:00:07] - (.© Advanced System Products, Inc. 1998 - AdvanSys SCSI Controller Driver.) - [23 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\ABP480N5.SYS
[MD5.E5E6DBFC41EA8AAD005CB9A57A96B43B] - [13/04/2008 19:52:44] - (.© Microsoft Corporation. - Pilote ACPI pour NT.) - [184.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\acpi.sys
[MD5.E4ABC1212B70BB03D35E60681C447210] - [23/08/2001 17:57:26] - (.© Microsoft Corporation. - Pilote de contrôleur intégré ACPI.) - [11.75 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\acpiec.sys
[MD5.9A11864873DA202C996558B2106B0BBC] - [15/08/2009 20:57:35] - (.Copyright © Adaptec, Inc. 2000 - Adaptec Ultra160 SCSI miniport.) - [99.5 Ko] - (5.1.2484.0) - C:\WINDOWS\System32\Drivers\adpu160m.sys
[MD5.8BED39E3C35D6A489438B8141717A557] - [15/08/2009 20:11:30] - (.© Microsoft Corporation. - Microsoft Acoustic Echo Canceller.) - [139.25 Ko] - (5.1.2601.3142) - C:\WINDOWS\System32\Drivers\aec.sys
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [135.25 Ko] - (5.1.2600.6142) - C:\WINDOWS\System32\Drivers\afd.sys
[MD5.08FD04AA961BDC77FB983F328334E3D7] - [15/08/2009 20:53:02] - (.© Microsoft Corporation. - 440 NT AGP Filter.) - [41.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\AGP440.SYS
[MD5.03A7E0922ACFE1B07D5DB2EEB0773063] - [15/08/2009 20:55:56] - (.© Microsoft Corporation. - CompatNT AGP Filter.) - [43.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\AGPCPQ.SYS
[MD5.C23EA9B5F46C7F7910DB3EAB648FF013] - [15/08/2009 20:57:22] - (.Copyright (C) Adaptec, Inc. 1998 - Adaptec AHA-154x series SCSI miniport.) - [12.5 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\aha154x.sys
[MD5.19DD0FB48B0C18892F70E2E7D61A1529] - [15/08/2009 20:57:40] - (.Copyright © Adaptec, Inc. 2000 - Adaptec Ultra2 SCSI miniport.) - [53.88 Ko] - (5.1.2474.0) - C:\WINDOWS\System32\Drivers\aic78u2.sys
[MD5.B7FE594A7468AA0132DEB03FB8E34326] - [15/08/2009 20:57:43] - (.Copyright © Adaptec, Inc. 2000 - Adaptec Ultra SCSI miniport.) - [55.63 Ko] - (5.1.2474.0) - C:\WINDOWS\System32\Drivers\aic78xx.sys
[MD5.1140AB9938809700B46BB88E46D72A96] - [15/08/2009 21:00:59] - (.Copyright (C) Acer Laboratories Inc.  2000  - ALi mini IDE Driver.) - [5.13 Ko] - (1.2.0.0) - C:\WINDOWS\System32\Drivers\aliide.sys
[MD5.CB08AED0DE2DD889A8A820CD8082D83C] - [15/08/2009 20:51:52] - (.© Microsoft Corporation. - ALi M1541 NT AGP Filter.) - [41.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\ALIM1541.SYS
[MD5.F6AF59D6EEE5E1C304F7F73706AD11D8] - [15/08/2009 20:12:34] - (.Copyright © 2008 Creative - Creative WDM 3D Audio Driver.) - [1645.25 Ko] - (5.10.0.4240) - C:\WINDOWS\System32\Drivers\Ambfilt.sys
[MD5.95B4FB835E28AA1336CEEB07FD5B9398] - [15/08/2009 20:51:56] - (.© Microsoft Corporation. - AMD Win2000 AGP Filter.) - [42 Ko] - (5.2.2.2195) - C:\WINDOWS\System32\Drivers\AMDAGP.SYS
[MD5.C6C0F974AB7E825813F8E6B4E5581750] - [13/04/2008 19:54:30] - (.© Microsoft Corporation. - Pilote de périphérique processeur.) - [40.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\amdk6.sys
[MD5.D3DABC57BE6D456DFD4BC026CFA582FF] - [13/04/2008 19:54:30] - (.© Microsoft Corporation. - Pilote de périphérique processeur.) - [40.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\amdk7.sys
[MD5.79F5ADD8D24BD6893F2903A3E2F3FAD6] - [15/08/2009 21:00:08] - (.© Microsoft Corporation. - AMD SCSI/NET Controller.) - [11.75 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\amsint.sys
[MD5.9B42F11D2C7DF60EA07726C5BEDD66D9] - [01/07/2011 23:03:24] - (.(c) Protection Technology - Application Driver (01).) - [2962.61 Ko] - (5.70.2.7) - C:\WINDOWS\System32\Drivers\appdrv01.sys
[MD5.B5B8A80875C1DEDEDA8B02765642C32F] - [13/04/2008 12:51:26] - (.© Microsoft Corporation. - IP/1394 Arp Client.) - [59.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\arp1394.sys
[MD5.62D318E9A0C8FC9B780008E724283707] - [15/08/2009 21:00:04] - (.© Advanced System Products, Inc. 1998 - AdvanSys SCSI Controller Driver.) - [25.88 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\asc.sys
[MD5.69EB0CC7714B32896CCBFD5EDCBEA447] - [15/08/2009 21:00:07] - (.(C) 1998 Advanced System Products, Inc./RATOC Systems,Inc. - AdvanSys SCSI Card Driver.) - [21.88 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\asc3350p.sys
[MD5.5D8DE112AA0254B907861E9E9C31D597] - [15/08/2009 21:00:03] - (.© Advanced System Products, Inc. 1998 - AdvanSys Ultra-Wide PCI SCSI Driver.) - [14.5 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\asc3550.sys
[MD5.B153AFFAC761E7F5FCFA822B9C4E97BC] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - MS Remote Access serial network driver.) - [14 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\asyncmac.sys
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - [13/04/2008 12:40:32] - (.© Microsoft Corporation. - IDE/ATAPI Port Driver.) - [94.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\atapi.sys
[MD5.9916C1225104BA14794209CFA8012159] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - IP/ATM Arp Client.) - [58.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\atmarpc.sys
[MD5.39A0A59180F19946374275745B21AEBA] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - ATM Ethernet Encapsulation Intermediate Driver.) - [30.63 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\atmepvc.sys
[MD5.AE76348A2605FB197FA8FF1D6F547836] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - ATM Lan Emulation Driver.) - [54.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\atmlane.sys
[MD5.E7EF69B38D17BA01F914AE8F66216A38] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - ATM UNI Call Manager.) - [344 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\atmuni.sys
[MD5.D9F724AA26C010A217C97606B160ED68] - [15/08/2009 20:49:39] - (.© Microsoft Corporation. - AudStub Driver.) - [3 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\audstub.sys
[MD5.1074F787080068C71303B61FAE7E7CA4] - [23/12/2011 12:32:00] - (.Copyright © 2008-2011 AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Driver..) - [136.58 Ko] - (12.0.0.2076) - C:\WINDOWS\System32\Drivers\avgidsdriverx.sys
[MD5.61A7E0B02F82CFF3DB2445BBE50B3589] - [23/12/2011 12:32:06] - (.Copyright © 2008-2011 AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Filter Driver..) - [23.58 Ko] - (12.0.0.2076) - C:\WINDOWS\System32\Drivers\avgidsfilterx.sys
[MD5.D63D83659EEDF60B3A3E620281A888E5] - [19/04/2012 03:50:26] - (.Copyright © 2008-2012 AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Helper Driver..) - [24.31 Ko] - (12.0.0.2165) - C:\WINDOWS\System32\Drivers\avgidshx.sys
[MD5.BAF975B72062F53D327788E99D64197E] - [23/12/2011 12:32:08] - (.Copyright © 2008-2011 AVG Technologies CZ, s.r.o. - IDS Application Activity Monitor Loader Driver..) - [16.83 Ko] - (12.0.0.2076) - C:\WINDOWS\System32\Drivers\avgidsshimx.sys
[MD5.DCB09125C8B4766A88C86914B65487C1] - [07/10/2011 06:23:48] - (.Copyright © 2012 AVG Technologies CZ, s.r.o. - AVG AVI Loader Driver.) - [231.84 Ko] - (12.0.0.2210) - C:\WINDOWS\System32\Drivers\avgldx86.sys
[MD5.CCDD61545AAEA265977E4B1EFDC74E8C] - [08/08/2011 06:08:58] - (.Copyright © 2011 AVG Technologies CZ, s.r.o. - AVG Resident Shield Minifilter Driver.) - [40.08 Ko] - (12.0.0.2076) - C:\WINDOWS\System32\Drivers\avgmfx86.sys
[MD5.1FD90B28D2C3100BF4500199C8AD6358] - [13/09/2011 06:30:10] - (.Copyright © 2012 AVG Technologies CZ, s.r.o. - AVG Anti-Rootkit Driver.) - [31.2 Ko] - (12.0.0.2096) - C:\WINDOWS\System32\Drivers\avgrkx86.sys
[MD5.C0BC3B2E3FD625E7F55E1FF863E94592] - [11/07/2011 01:14:38] - (.Copyright © 2012 AVG Technologies CZ, s.r.o. - AVG Network connection watcher.) - [294.84 Ko] - (12.0.0.2219) - C:\WINDOWS\System32\Drivers\avgtdix.sys
[MD5.61F8F3126D39A7EB2775FB1505469EE3] - [03/09/2012 20:04:56] - (.© Microsoft Corporation. - Microsoft BDA Driver Support Library.) - [11.13 Ko] - (5.3.0.900) - C:\WINDOWS\System32\Drivers\bdasup.sys
[MD5.DA1F27D85E0D1525F6621372E7B685E9] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - BEEP Driver.) - [4.13 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\beep.sys
[MD5.F934D1B230F84E1D19DD00AC5A7A83ED] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - MAC Bridge Driver.) - [69.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\bridge.sys
[MD5.EF26202FEE56F7607C6B794059DF347A] - [29/08/2012 00:53:03] - (.© Microsoft Corporation. - Pilote de bus Bluetooth.) - [266.38 Ko] - (5.1.2600.5620) - C:\WINDOWS\System32\Drivers\bthport.sys
[MD5.90A673FC8E12A79AFBED2576F6A7AAF9] - [17/08/2001 22:52:08] - (.© Microsoft Corporation. - CardBus/PCMCIA IDE Miniport Driver.) - [13.63 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\cbidf2k.sys
[MD5.FDC06E2ADA8C468EBB161624E03976CF] - [03/09/2012 20:04:56] - (.© Microsoft Corporation. - WDM Closed Caption VBI Codec.) - [16 Ko] - (5.3.0.900) - C:\WINDOWS\System32\Drivers\ccdecode.sys
[MD5.F3EC03299634490E97BBCE94CD2954C7] - [15/08/2009 20:59:41] - (.Copyright (C) IBM Corp. 1996, 1999 - IBM Portable CD-ROM Drive Miniport.) - [7.5 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\cd2rnt.sys
[MD5.C1B486A7658353D33A10CC15211A873B] - [17/08/2001 22:52:30] - (.© Microsoft Corporation. - CD-ROM Audio Filter Driver.) - [18.25 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\cdaudio.sys
[MD5.C885B02847F5D2FD45A24E219ED93B32] - [16/08/2009 04:33:48] - (.© Microsoft Corporation. - CD-ROM File System Driver.) - [62.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\cdfs.sys
[MD5.837EEF65AF62D4E8A37C41D3879F7274] - [15/08/2009 20:26:01] - (.Copyright (c) 1994-2005 Sonic Solutions - CDR4 CD and DVD Place Holder Driver (see PxHelp).) - [9.12 Ko] - (8.0.0.212) - C:\WINDOWS\System32\Drivers\cdr4_xp.sys
[MD5.579DA2F9F5401F55DAE2CF8779D61DFC] - [15/08/2009 20:26:01] - (.Copyright (c) 1994-2005 Sonic Solutions - CDRAL Place Holder Driver (see PxHelp).) - [9.24 Ko] - (8.0.0.212) - C:\WINDOWS\System32\Drivers\cdralw2k.sys
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - [15/08/2009 20:06:19] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [61.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\cdrom.sys
[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - [23/08/2001 18:04:06] - (.Copyright 1999 RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) - [256.38 Ko] - (5.0.0.93) - C:\WINDOWS\System32\Drivers\cinemst2.sys
[MD5.FE47DD8FE6D7768FF94EBEC6C74B2719] - [16/08/2009 04:33:48] - (.© Microsoft Corporation. - SCSI Class System Dll.) - [48.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\classpnp.sys
[MD5.E3726AD522D0BDAE090671048C991AB3] - [15/08/2009 21:01:03] - (.Copyright (C) CMD Technology, Inc. 1999-2000 - Pilote de bus PCI IDE CMD.) - [6.5 Ko] - (2.0.7.0) - C:\WINDOWS\System32\Drivers\cmdide.sys
[MD5.3EE529119EED34CD212A215E8C40D4B6] - [15/08/2009 20:58:34] - (.© Microsoft Corporation. - Compaq Drive Array Controllers SCSI Miniport Driver.) - [14.63 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\cpqarray.sys
[MD5.9624293E55AD405415862B504CA95B73] - [17/08/2001 22:24:38] - (.Copyright  2000 - Compaq PA-1 Player Driver.) - [11.5 Ko] - (1.0.0.4) - C:\WINDOWS\System32\Drivers\cpqdap01.sys
[MD5.D68AE021109A74E491B83F3F69FB92CD] - [13/04/2008 20:02:48] - (.© Microsoft Corporation. - Pilote de périphérique processeur.) - [40 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\crusoe.sys
[MD5.E550E7418984B65A78299D248F0A7F36] - [15/08/2009 20:59:53] - (.Copyright © Mylex Corp. 1994-2000 - Mylex Disk Array Controller Driver.) - [175.38 Ko] - (6.0.21.0) - C:\WINDOWS\System32\Drivers\dac2w2k.sys
[MD5.683789CAA3864EB46125AE86FF677D34] - [15/08/2009 20:59:58] - (.© Microsoft Corporation. - Mylex Disk Array Controller Driver.) - [14.38 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\dac960nt.sys
[MD5.044452051F3E02E7963599FC8F4F3E25] - [13/04/2008 12:40:48] - (.© Microsoft Corporation. - PnP Disk Driver.) - [35.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\disk.sys
[MD5.E65E2353A5D74EA89971CB918EEEB2F6] - [16/08/2009 04:33:49] - (.© Microsoft Corporation. - Crash Dump Disk Driver.) - [13.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\diskdump.sys
[MD5.F5DEADD42335FB33EDCA74ECB2F36CBA] - [16/08/2009 04:33:49] - (.Copyright © 1985-2000 Microsoft Corporation.  
Portions Copyright © 1997-2000 Veritas Software.  - Pilote de démarrage du gestionnaire de disque NT.) - [781.5 Ko] - (2600.5512.503.0) - C:\WINDOWS\System32\Drivers\dmboot.sys
[MD5.5A7C47C9B3F9FB92A66410A7509F0C71] - [16/08/2009 04:33:49] - (.Copyright © 1985-2000 Microsoft Corporation.  
Portions Copyright © 1997-2000 Veritas Software.  - Pilote E/S du Gestionnaire de disques NT.) - [150.88 Ko] - (2600.5512.503.0) - C:\WINDOWS\System32\Drivers\dmio.sys
[MD5.E9317282A63CA4D188C0DF5E09C6AC5F] - [16/08/2009 04:33:49] - (.Copyright© 1985-2000 Microsoft Corporation.  
Portions Copyright © 1997-2000 Veritas Software.  - NT Disk Manager Startup Driver.) - [5.75 Ko] - (2600.0.503.0) - C:\WINDOWS\System32\Drivers\dmload.sys
[MD5.8A208DFCF89792A484E76C40E5F50B45] - [15/08/2009 20:11:34] - (.© Microsoft Corporation. - Microsoft Kernel DLS Synthesizer.) - [51.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\DMusic.sys
[MD5.40F3B93B4E5B0126F2F5C0A7A5E22660] - [15/08/2009 20:57:57] - (.Copyright © Adaptec, Inc. 2001 - DPT SmartRAID miniport.) - [19.72 Ko] - (5.1.2462.0) - C:\WINDOWS\System32\Drivers\dpti2o.sys
[MD5.6CB08593487F5701D2D2254E693EAFCE] - [15/08/2009 20:11:16] - (.© Microsoft Corporation. - Microsoft Kernel DRM Descrambler Filter.) - [58.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\drmk.sys
[MD5.8F5FCFF8E8848AFAC920905FBD9D33C8] - [15/08/2009 20:11:28] - (.© Microsoft Corporation. - Microsoft Kernel DRM Audio Descrambler Filter.) - [2.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\drmkaud.sys
[MD5.FE97D0343ACFDEBDD578FC67CC91FA87] - [16/08/2009 04:33:52] - (.© Microsoft Corporation. - DirectX API Driver.) - [10.25 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\dxapi.sys
[MD5.AC7280566A7BB85CB3291F04DDC1198E] - [13/04/2008 12:38:30] - (.© Microsoft Corporation. - DirectX Graphics Driver.) - [69.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\dxg.sys
[MD5.A73F5D6705B1D820C19B18782E176EFD] - [16/08/2009 04:33:52] - (.© Microsoft Corporation. - DirectX Graphics Driver Thunk.) - [3.25 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\dxgthk.sys
[MD5.38D332A6D56AF32635675F132548343E] - [16/08/2009 04:33:52] - (.© Microsoft Corporation. - Fast FAT File System Driver.) - [140.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\fastfat.sys
[MD5.92CDD60B6730B9F50F6A1A0C1F8

fanfan2012 · Answer

[MD5.92CDD60B6730B9F50F6A1A0C1F8CDC81] - [13/04/2008 12:40:26] - (.© Microsoft Corporation. - Floppy Disk Controller Driver.) - [26.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\fdc.sys
[MD5.31F923EB2170FC172C81ABDA0045D18C] - [16/08/2009 04:33:52] - (.© Microsoft Corporation. - Pilote de cryptographie FIPS.) - [43.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\fips.sys
[MD5.9D27E7B80BFCDF1CDD9B555862D5E7F0] - [13/04/2008 12:40:26] - (.© Microsoft Corporation. - Floppy Driver.) - [20 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\flpydisk.sys
[MD5.B2CF4B0786F8212CB92ED2B50C6DB6B0] - [15/08/2009 19:51:15] - (.© Microsoft Corporation. - Microsoft Filesystem Filter Manager.) - [126.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\fltMgr.sys
[MD5.B71A69BB9CC88803F455341BD3992E0C] - [23/08/2001 18:17:30] - (.© Microsoft Corporation. - Pilote vidéo plein écran.) - [12.13 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\fsvga.sys
[MD5.3E1E2BD4F39B0E2B7DC4F4D2BCC2779A] - [16/08/2009 04:33:53] - (.© Microsoft Corporation. - File System Recognizer Driver.) - [7.75 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\fs_rec.sys
[MD5.A86859B77B908C18C2657F284AA29FE3] - [23/08/2001 18:17:30] - (.© Microsoft Corporation. - Pilote de disque à FT.) - [123.13 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\ftdisk.sys
[MD5.E6D35F3AA51A65EB35C1F2340154A25E] - [06/10/2011 16:01:30] - (. - .) - [52.75 Ko] - (0.0.0.0) - C:\WINDOWS\System32\Drivers\gbju.sys
[MD5.573C7D0A32852B48F3058CFD8026F511] - [13/04/2008 10:36:06] - (.© Microsoft Corporation. - High Definition Audio Bus Driver v1.0a.) - [141 Ko] - (5.10.1.5013) - C:\WINDOWS\System32\Drivers\hdaudbus.sys
[MD5.1AF592532532A402ED7C060F6954004F] - [13/04/2008 12:45:28] - (.© Microsoft Corporation. - Hid Class Library.) - [36 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\hidclass.sys
[MD5.96ECCF28FDBF1B2CC12725818A63628D] - [13/04/2008 12:45:24] - (.© Microsoft Corporation. - Hid Parsing Library.) - [24.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\hidparse.sys
[MD5.CCF82C5EC8A7326C3066DE870C06DAF1] - [25/06/2011 23:52:08] - (.© Microsoft Corporation. - USB Miniport Driver for Input Devices.) - [10.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\hidusb.sys
[MD5.B028377DEA0546A5FCFBA928A8AEFAE0] - [15/08/2009 20:58:53] - (.© Microsoft Corporation. - NetRAID-4M Miniport Driver.) - [25.34 Ko] - (5.1.2467.0) - C:\WINDOWS\System32\Drivers\hpn.sys
[MD5.F80A415EF82CD06FFAF0D971528EAD38] - [13/04/2008 12:53:54] - (.© Microsoft Corporation. - HTTP Protocol Stack.) - [259.5 Ko] - (5.1.2600.5891) - C:\WINDOWS\System32\Drivers\http.sys
[MD5.9368670BD426EBEA5E8B18A62416EC28] - [15/08/2009 20:59:21] - (.© Microsoft Corporation. - I2O Utility Filter.) - [8.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\i2omgmt.sys
[MD5.F10863BF1CCC290BABD1A09188AE49E0] - [15/08/2009 20:59:20] - (.© Microsoft Corporation. - I2O Miniport Driver.) - [18.13 Ko] - (1.0.0.6) - C:\WINDOWS\System32\Drivers\i2omp.sys
[MD5.A09BDC4ED10E3B2E0EC27BB94AF32516] - [13/04/2008 20:00:54] - (.© Microsoft Corporation. - Pilote de port i8042.) - [52.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\i8042prt.sys
[MD5.083A052659F5310DD8B6A6CB05EDCF8E] - [13/04/2008 12:41:00] - (.© Microsoft Corporation. - IMAPI Kernel Driver.) - [41.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\imapi.sys
[MD5.4A40E045FAEE58631FD8D91AFC620719] - [15/08/2009 21:00:10] - (.Copyright (C) Initio corp. 1994-1999 - INITIO ini910u SCSI miniport.) - [15.63 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\ini910u.sys
[MD5.4B6DA2F0A4095857A9E3F3697399D575] - [15/08/2009 21:01:08] - (.© Microsoft Corporation. - Pilote IDE Intel PCI.) - [5.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\intelide.sys
[MD5.AD340800C35A42D4DE1641A37FEEA34C] - [13/04/2008 20:03:28] - (.© Microsoft Corporation. - Pilote de périphérique processeur.) - [39.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\intelppm.sys
[MD5.3BB22519A194418D5FEC05D800A19AD0] - [16/08/2009 04:33:54] - (.© Microsoft Corporation. - IPv6 Windows Firewall Driver.) - [35.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\ip6fw.sys
[MD5.731F22BA402EE4B62748ADAF6363C182] - [16/08/2009 04:33:54] - (.© Microsoft Corporation. - IP FILTER DRIVER.) - [32.13 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\ipfltdrv.sys
[MD5.B87AB476DCF76E72010632B5550955F5] - [16/08/2009 04:33:54] - (.© Microsoft Corporation. - IP in IP Encapsulation Driver.) - [20.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\ipinip.sys
[MD5.CC748EA12C6EFFDE940EE98098BF96BB] - [16/08/2009 04:33:54] - (.© Microsoft Corporation. - IP Network Address Translator.) - [149.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\ipnat.sys
[MD5.23C74D75E36E7158768DD63D92789A91] - [16/08/2009 04:33:54] - (.© Microsoft Corporation. - IPSec Driver.) - [73.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\ipsec.sys
[MD5.C93C9FF7B04D772627A3646D89F7BF89] - [15/08/2009 20:47:59] - (.© Microsoft Corporation. - Infra-Red Bus Enumerator.) - [11 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\irenum.sys
[MD5.355836975A67B6554BCA60328CD6CB74] - [13/04/2008 20:04:36] - (.© Microsoft Corporation. - Pilote de bus PNP ISA.) - [36.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\isapnp.sys
[MD5.16813155807C6881F4BFBF6657424659] - [13/04/2008 20:05:16] - (.© Microsoft Corporation. - Pilote de la classe Clavier.) - [24.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\kbdclass.sys
[MD5.94C59CB884BA010C063687C3A50DCE8E] - [25/06/2011 23:52:09] - (.© Microsoft Corporation. - Pilote de filtre souris HID.) - [14.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\kbdhid.sys
[MD5.692BCF44383D056AED41B045A323D378] - [15/08/2009 20:11:28] - (.© Microsoft Corporation. - Kernel Mode Audio Mixer.) - [168.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\kmixer.sys
[MD5.0753515F78DF7F271A5E61C20BCD36A1] - [13/04/2008 13:16:38] - (.© Microsoft Corporation. - Kernel CSA Library.) - [137.75 Ko] - (5.3.2600.5512) - C:\WINDOWS\System32\Drivers\ks.sys
[MD5.B467646C54CC746128904E1654C750C1] - [16/08/2009 04:33:55] - (.© Microsoft Corporation. - Kernel Security Support Provider Interface.) - [90.75 Ko] - (5.1.2600.5834) - C:\WINDOWS\System32\Drivers\ksecdd.sys
[MD5.6DFE7F2E8E8A337263AA5C92A215F161] - [26/06/2011 10:03:24] - (.© Malwarebytes Corporation. - Malwarebytes Anti-Malware.) - [21.82 Ko] - (1.60.2.0) - C:\WINDOWS\System32\Drivers\mbam.sys
[MD5.D1F8BE91ED4DDB671D42E473E3FE71AB] - [16/08/2009 04:33:55] - (.© Microsoft Corporation. - Medium changer class driver.) - [7.5 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\mcd.sys
[MD5.A7DA20AB18A1BDAE28B0F349E57DA0D1] - [13/04/2008 12:36:42] - (.© Microsoft Corporation. - Multifunction Enumerator.) - [62.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\mf.sys
[MD5.4AE068242760A1FB6E1A44BF4E16AFA6] - [16/08/2009 04:34:16] - (.© Microsoft Corporation. - Frame buffer simulator.) - [4.13 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\mnmdd.sys
[MD5.510ADE9327FE84C10254E1902697E25F] - [13/04/2008 19:53:06] - (.© Microsoft Corporation. - Pilote de périphérique modem.) - [29.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\modem.sys
[MD5.9FA7207D1B1ADEAD88AE8EED9CDBBAA5] - [15/08/2009 20:12:35] - (.Copyright © Creative Technology Ltd.2005 - Creative WDM Audio Driver (32-bit).) - [1356.5 Ko] - (5.10.0.4112) - C:\WINDOWS\System32\Drivers\Monfilt.sys
[MD5.027C01BD7EF3349AAEBC883D8A799EFB] - [15/08/2009 19:50:23] - (.© Microsoft Corporation. - Pilote de la classe Souris.) - [23.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\mouclass.sys
[MD5.124D6846040C79B9C997F78EF4B2A4E5] - [25/06/2011 23:52:10] - (.© Microsoft Corporation. - Pilote de filtre souris HID.) - [12 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\mouhid.sys
[MD5.A80B9A0BAD1B73637DBCBBA7DF72D3FD] - [16/08/2009 04:33:56] - (.© Microsoft Corporation. - Mount Manager.) - [41.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\mountmgr.sys
[MD5.83EFF7B976AE24F1A496CA94A8A19919] - [03/09/2012 20:04:56] - (.© Microsoft Corporation. - Microsoft MPE to IP Filter.) - [14.75 Ko] - (5.3.0.900) - C:\WINDOWS\System32\Drivers\mpe.sys
[MD5.3F4BB95E5A44F3BE34824E8E7CAF0737] - [15/08/2009 20:58:39] - (.Copyright © American Megatrends Inc.          - MegaRAID RAID Controller Driver for Windows Whistler 32.) - [16.88 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\mraid35x.sys
[MD5.11D42BB6206F33FBB3BA0288D3EF81BD] - [16/08/2009 04:33:56] - (.© Microsoft Corporation. - Windows NT WebDav Minirdr.) - [176.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\mrxdav.sys
[MD5.7D304A5EB4344EBEEAB53A2FE3FFB9F0] - [16/08/2009 04:33:57] - (.© Microsoft Corporation. - Windows NT SMB Minirdr.) - [445.63 Ko] - (5.1.2600.6133) - C:\WINDOWS\System32\Drivers\mrxsmb.sys
[MD5.8575D788395C4D6378D98D1ED7CDADB9] - [03/09/2012 20:04:56] - (.© Microsoft Corporation. - Microsoft DV Camera and VCR Driver.) - [50.88 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\msdv.sys
[MD5.C941EA2454BA8350021D774DAF0F1027] - [16/08/2009 04:33:57] - (.© Microsoft Corporation. - Mailslot driver.) - [18.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\msfs.sys
[MD5.0A02C63C8B144BD8C86B103DEE7C86A2] - [16/08/2009 04:33:57] - (.© Microsoft Corporation. - MS General Packet Classifier.) - [34.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\msgpc.sys
[MD5.D1575E71568F4D9E14CA56B7B0453BF1] - [15/08/2009 20:11:24] - (.© Microsoft Corporation. - MS KS Server.) - [7.38 Ko] - (5.3.2600.5512) - C:\WINDOWS\System32\Drivers\MSKSSRV.sys
[MD5.325BB26842FC7CCC1FCCE2C457317F3E] - [15/08/2009 20:11:21] - (.© Microsoft Corporation. - MS Proxy Clock.) - [5.25 Ko] - (5.3.2600.5512) - C:\WINDOWS\System32\Drivers\MSPCLOCK.sys
[MD5.BAD59648BA099DA4A17680B39730CB3D] - [15/08/2009 20:11:23] - (.© Microsoft Corporation. - MS Proxy Quality Manager.) - [4.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\MSPQM.sys
[MD5.AF5F4F3F14A8EA2C26DE30F7A1E17136] - [13/04/2008 12:36:48] - (.© Microsoft Corporation. - System Management BIOS Driver.) - [15.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\mssmbios.sys
[MD5.D5059366B361F0E1124753447AF08AA2] - [03/09/2012 20:04:56] - (.© Microsoft Corporation. - WDM Tee/Communication Transform Filter .) - [5.38 Ko] - (5.3.0.900) - C:\WINDOWS\System32\Drivers\mstee.sys
[MD5.DE6A75F5C270E756C5508D94B6CF68F5] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - Multiple UNC Provider driver.) - [103 Ko] - (5.1.2600.6103) - C:\WINDOWS\System32\Drivers\mup.sys
[MD5.AC31B352CE5E92704056D409834BEB74] - [03/09/2012 20:04:57] - (.© Microsoft Corporation. - WDM NABTS/FEC VBI Codec.) - [82 Ko] - (5.3.0.900) - C:\WINDOWS\System32\Drivers
abtsfec.sys
[MD5.1DF7F42665C94B825322FAE71721130D] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - NDIS 5.1 wrapper driver.) - [178.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers
dis.sys
[MD5.ABD7629CF2796250F315C1DD0B6CF7A0] - [03/09/2012 20:04:57] - (.© Microsoft Corporation. - Microsoft IP Driver.) - [9.88 Ko] - (5.3.0.900) - C:\WINDOWS\System32\Drivers
disip.sys
[MD5.0109C4F3850DFBAB279542515386AE22] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - NDIS 3.0 connection wrapper driver.) - [10.25 Ko] - (5.1.2600.6132) - C:\WINDOWS\System32\Drivers
distapi.sys
[MD5.F927A4434C5028758A842943EF1A3849] - [13/04/2008 12:56:00] - (.© Microsoft Corporation. - NDIS User mode I/O Driver.) - [14.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers
disuio.sys
[MD5.EDC1531A49C80614B2CFDA43CA8659AB] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - MS PPP Framing Driver (Strong Encryption).) - [89.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers
diswan.sys
[MD5.9282BD12DFB069D3889EB3FCC1000A9B] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - NDIS Proxy.) - [40 Ko] - (5.1.2600.6048) - C:\WINDOWS\System32\Drivers
dproxy.sys
[MD5.5D81CF9A2F1A3A756B66CF684911CDF0] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - NetBIOS interface driver.) - [33.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers
etbios.sys
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - MBT Transport driver.) - [159 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers
etbt.sys
[MD5.E9E47CFB2D461FA0FC75B7A74C6383EA] - [13/04/2008 12:51:26] - (.© Microsoft Corporation. - IEEE1394 Ndis Miniport and Call Manager.) - [60.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers
ic1394.sys
[MD5.BE984D604D91C217355CDD3737AAD25D] - [17/08/2001 22:24:44] - (.Coyright (C) S3/Diamond Multimedia Systems 2000 - NikeDrv Usb Driver.) - [11.75 Ko] - (1.1.0.0) - C:\WINDOWS\System32\Drivers
ikedrv.sys
[MD5.1E421A6BCF2203CC61B821ADA9DE878B] - [16/08/2009 04:33:59] - (.© Microsoft Corporation. - Netmon NT Driver.) - [39.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers
mnt.sys
[MD5.3182D64AE053D6FB034F44B6DEF8034A] - [16/08/2009 04:33:59] - (.© Microsoft Corporation. - NPFS Driver.) - [30.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers
pfs.sys
[MD5.78A08DD6A8D65E697C18E1DB01C5CDCA] - [16/08/2009 04:33:59] - (.© Microsoft Corporation. - NT File System Driver.) - [561.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers
tfs.sys
[MD5.73C1E1F395918BC2C6DD67AF7591A3AD] - [16/08/2009 04:33:59] - (.© Microsoft Corporation. - NULL Driver.) - [2.88 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers
ull.sys
[MD5.E2FACCAA3D194245ACDA43C531460B71] - [16/08/2009 04:35:23] - (.(C) NVIDIA Corporation. - NVIDIA Compatible Windows 2000 Miniport Driver, Version 185.99 .) - [7897.78 Ko] - (6.14.11.8599) - C:\WINDOWS\System32\Drivers
v4_mini.sys
[MD5.7D275ECDA4628318912F6C945D5CF963] - [16/08/2009 04:35:22] - (.Copyright © 2001-2008 NVIDIA Corporation - NVIDIA Networking Function Driver..) - [53.5 Ko] - (1.0.2.6789) - C:\WINDOWS\System32\Drivers\NVENETFD.sys
[MD5.75E2E77C5497F34E60491D27BF03F1CB] - [16/08/2009 04:34:22] - (.Copyright(C) 2001-2008 NVIDIA Corporation - NVIDIA® nForce(TM) Sata Performance Driver.) - [142.53 Ko] - (10.3.0.46) - C:\WINDOWS\System32\Drivers
vgts.sys
[MD5.422BBE63A70950440E1DB5FE7A9557A7] - [16/08/2009 04:35:23] - (.(C) NVIDIA Corporation. - NVIDIA HDMI Audio Driver.) - [45.66 Ko] - (1.0.0.42) - C:\WINDOWS\System32\Drivers
vhda32.sys
[MD5.B64AACEFAD2BE5BFF5353FE681253C67] - [16/08/2009 04:35:22] - (.Copyright © 2001-2008 NVIDIA Corporation - NVIDIA Networking Bus Driver..) - [21.5 Ko] - (1.0.1.6789) - C:\WINDOWS\System32\Drivers
vnetbus.sys
[MD5.C5A2952901DC5E1CC33014E809296D30] - [16/08/2009 04:35:22] - (.Copyright © 2001-2008 NVIDIA Corporation - NVIDIA Network Resource Manager..) - [933.13 Ko] - (1.0.2.6789) - C:\WINDOWS\System32\Drivers
vnrm.sys
[MD5.2A085AEC3AB2B1211611D2A7B9E22456] - [16/08/2009 04:35:23] - (.Copyright(C) 2001-2008 NVIDIA Corporation - NVIDIA nForce(TM) SMU Microcontroller Driver.) - [13.88 Ko] - (5.10.2600.161) - C:\WINDOWS\System32\Drivers
vsmu.sys
[MD5.B305F3FAD35083837EF46A0BBCE2FC57] - [16/08/2009 04:33:59] - (.© Microsoft Corporation. - NWLINK2 Traffic Filter Driver.) - [12.13 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers
wlnkflt.sys
[MD5.C99B3415198D1AAB7227F2C88FD664B9] - [16/08/2009 04:33:59] - (.© Microsoft Corporation. - NWLINK2 Forwarder Driver.) - [31.75 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers
wlnkfwd.sys
[MD5.8B8B1BE2DBA4025DA6786C645F77F123] - [16/08/2009 04:33:59] - (.© Microsoft Corporation. - NWLINK2 IPX Protocol Driver.) - [86.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers
wlnkipx.sys
[MD5.56D34A67C05E94E16377C60609741FF8] - [16/08/2009 04:33:59] - (.© Microsoft Corporation. - NWLINK2 IPX Netbios Protocol Driver.) - [61.75 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers
wlnknb.sys
[MD5.C0BB7D1615E1ACBDC99757F6CEAF8CF0] - [16/08/2009 04:33:59] - (.© Microsoft Corporation. - NWLINK2 SPX Protocol Driver.) - [54.63 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers
wlnkspx.sys
[MD5.4BB30DDC53EBC76895E38694580CDFE9] - [17/08/2001 22:57:56] - (.© Microsoft Corporation. - ACPI Operation Registration Driver.) - [3.38 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\oprghdlr.sys
[MD5.CECB679633523AC5EB7EB85F92DCD806] - [13/04/2008 20:09:38] - (.© Microsoft Corporation. - Pilote de périphérique processeur.) - [45.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\p3.sys
[MD5.8FD0BDBEA875D06CCF6C945CA9ABAF75] - [13/04/2008 20:09:42] - (.© Microsoft Corporation. - Pilote de port parallèle.) - [78.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\parport.sys
[MD5.BEB3BA25197665D82EC7065B724171C6] - [16/08/2009 04:34:00] - (.© Microsoft Corporation. - Partition Manager.) - [19.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\partmgr.sys
[MD5.9575C5630DB8FB804649A6959737154C] - [16/08/2009 04:34:00] - (.© Microsoft Corporation. - Pilote parallèle VDM.) - [6.75 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\parvdm.sys
[MD5.043410877BDA580C528F45165F7125BC] - [13/04/2008 20:09:48] - (.© Microsoft Corporation. - Énumérateur Plug-and-Play PCI pour NT.) - [67 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\pci.sys
[MD5.F4BFDE7209C14A07AAA61E4D6AE69EAC] - [15/08/2009 21:00:18] - (.© Microsoft Corporation. - Pilote de bus générique PCI IDE.) - [3.25 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\pciide.sys
[MD5.52E60F29221D0D1AC16737E8DBF7C3E9] - [13/04/2008 12:40:30] - (.© Microsoft Corporation. - PCI IDE Bus Driver Extension.) - [24.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\pciidex.sys
[MD5.F0406CBC60BDB0394A0E17FFB04CDD3D] - [13/04/2008 20:09:54] - (.© Microsoft Corporation. - Pilote de bus PCMCIA.) - [117.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\pcmcia.sys
[MD5.6C14B9C19BA84F73D3A86DBA11133101] - [15/08/2009 20:58:46] - (.© Microsoft Corporation. - PERC 2 Miniport Driver.) - [26.66 Ko] - (5.1.2467.0) - C:\WINDOWS\System32\Drivers\perc2.sys
[MD5.F50F7C27F131AFE7BEBA13E14A3B9416] - [15/08/2009 20:58:48] - (.© Microsoft Corporation. - PERC 2 Hibernate Driver.) - [5.38 Ko] - (5.1.2467.0) - C:\WINDOWS\System32\Drivers\perc2hib.sys
[MD5.E82A496C3961EFC6828B508C310CE98F] - [15/08/2009 20:11:16] - (.© Microsoft Corporation. - Port Class (Class Driver for Port/Miniport Devices).) - [142.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\portcls.sys
[MD5.E19C9632AC828F6F214391E2BDDA11CB] - [13/04/2008 19:55:32] - (.© Microsoft Corporation. - Pilote de périphérique processeur.) - [39.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\processr.sys
[MD5.09298EC810B07E5D582CB3A3F9255424] - [16/08/2009 04:34:01] - (.© Microsoft Corporation. - MS QoS Packet Scheduler.) - [67.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\psched.sys
[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - [16/08/2009 04:34:01] - (.Copyright (C) Parallel Technologies 1995-1997 - Parallel Technologies DirectParallel IO Library.) - [17.38 Ko] - (1.1.0.0) - C:\WINDOWS\System32\Drivers\ptilink.sys
[MD5.D86B4A68565E444D76457F14172C875A] - [15/08/2009 20:26:01] - (.Copyright © Sonic Solutions - Px Engine Device Driver for Windows 2000/XP.) - [42.51 Ko] - (3.0.56.0) - C:\WINDOWS\System32\Drivers\PxHelp20.sys
[MD5.0A63FB54039EB5662433CABA3B26DBA7] - [15/08/2009 20:59:14] - (.Copyright © QLogic Corporation 1994-1998 - Miniport Driver for QLogic ISP PCI Adapters.) - [39.38 Ko] - (3.4.0.0) - C:\WINDOWS\System32\Drivers\ql1080.sys
[MD5.6503449E1D43A0FF0201AD5CB1B8C706] - [15/08/2009 20:59:13] - (.Copyright © QLogic Corporation 1994-1996 - Miniport Driver for QLogic ISP PCI Adapters.) - [32.38 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\ql10wnt.sys
[MD5.156ED0EF20C15114CA097A34A30D8A01] - [15/08/2009 20:59:17] - (.Copyright © QLogic Corporation 1994-2000 - Miniport Driver for QLogic ISP PCI Adapters.) - [44.25 Ko] - (7.13.2.0) - C:\WINDOWS\System32\Drivers\ql12160.sys
[MD5.70F016BEBDE6D29E864C1230A07CC5E6] - [15/08/2009 20:59:15] - (.© Microsoft Corporation. - QLogic ISP PCI Adapters.) - [39.5 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\ql1240.sys
[MD5.907F0AEEA6BC451011611E732BD31FCF] - [15/08/2009 20:59:16] - (.Copyright © QLogic Corporation 1994-2000 - Miniport Driver for QLogic ISP PCI Adapters.) - [47.88 Ko] - (7.13.1.0) - C:\WINDOWS\System32\Drivers\ql1280.sys
[MD5.FE0D99D6F31E4FAD8159F690D68DED9C] - [16/08/2009 04:34:02] - (.© Microsoft Corporation. - RAS Automatic Connection Driver.) - [8.63 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Driversasacd.sys
[MD5.11B4A627BC9614B885C4969BFA5FF8A6] - [16/08/2009 04:34:03] - (.© Microsoft Corporation. - RAS L2TP mini-port/call-manager driver.) - [50.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Driversasl2tp.sys
[MD5.5BC962F2654137C9909C3D4603587DEE] - [16/08/2009 04:34:03] - (.© Microsoft Corporation. - RAS PPPoE mini-port/call-manager driver.) - [40.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Driversaspppoe.sys
[MD5.EFEEC01B1D3CF84F16DDD24D9D9D8F99] - [16/08/2009 04:34:03] - (.© Microsoft Corporation. - Peer-to-Peer Tunneling Protocol.) - [47.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Driversaspptp.sys
[MD5.FDBB1D60066FCFBB7452FD8F9829B242] - [16/08/2009 04:34:03] - (.© Microsoft Corporation. - PTI DirectParallel(R) mini-port/call-manager driver.) - [16.13 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Driversaspti.sys
[MD5.01524CD237223B18ADBB48F70083F101] - [16/08/2009 04:34:03] - (.© Microsoft Corporation. - Raw WAN Transport.) - [33.63 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Driversawwan.sys
[MD5.7AD224AD1A1437FE28D89CF22B17780A] - [16/08/2009 04:34:03] - (.© Microsoft Corporation. - Redirected Drive Buffering SubSystem Driver.) - [171.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Driversdbss.sys
[MD5.4912D5B403614CE99C28420F75353332] - [16/08/2009 04:34:03] - (.© Microsoft Corporation. - RDP Miniport.) - [4.13 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Driversdpcdd.sys
[MD5.15CABD0F7C00C47C70124907916AF3F1] - [15/08/2009 19:50:01] - (.© Microsoft Corporation. - Microsoft RDP Device redirector.) - [191.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Driversdpdr.sys
[MD5.43AF5212BD8FB5BA6EED9754358BD8F7] - [15/08/2009 19:50:07] - (.© Microsoft Corporation. - RDP Terminal Stack Driver (US/Canada Only, Not for Export).) - [136.51 Ko] - (5.1.2600.6258) - C:\WINDOWS\System32\Driversdpwd.sys
[MD5.D8EB2A7904DB6C916EB5361878DDCBAE] - [25/06/2011 23:52:08] - (.© Microsoft Corporation. - Pilote de filtre audio Livre rouge.) - [57.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Driversedbook.sys
[MD5.A56FE08EC7473E8580A390BB1081CDD7] - [17/08/2001 22:24:46] - (.Coyright (C) S3/Diamond Multimedia Systems 2000 - Rio8Drv.sys Usb Driver.) - [11.75 Ko] - (1.1.0.0) - C:\WINDOWS\System32\Driversio8drv.sys
[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - [17/08/2001 22:24:46] - (.Coyright (C) S3/Diamond Multimedia Systems 1999 - RioDrv Usb Driver.) - [11.75 Ko] - (1.1.0.0) - C:\WINDOWS\System32\Driversiodrv.sys
[MD5.96F7A9A7BF0C9C0440A967440065D33C] - [16/08/2009 04:34:03] - (.© Microsoft Corporation. - Reliable Multicast Transport.) - [198.38 Ko] - (5.1.2600.5598) - C:\WINDOWS\System32\Driversmcast.sys
[MD5.601844CBCF617FF8C868130CA5B2039D] - [16/08/2009 04:34:03] - (.© Microsoft Corporation. - Remote NDIS Miniport.) - [29.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Driversndismp.sys
[MD5.D8B0B4ADE32574B2D9C5CC34DC0DBBE7] - [16/08/2009 04:34:03] - (.© Microsoft Corporation. - Legacy Non-Pnp Modem Device Driver.) - [5.75 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Driversootmdm.sys
[MD5.0CACDCBBC8E6F11E2865C47BFC509848] - [15/08/2009 20:12:37] - (.Copyright (c) Realtek Semiconductor Corp.1998-2008 - Realtek(r) High Definition Audio Function Driver.) - [4963.5 Ko] - (5.10.0.5859) - C:\WINDOWS\System32\Drivers\RtkHDAud.sys
[MD5.76C465F570E90C28942D52CCB2580A10] - [13/04/2008 12:40:32] - (.© Microsoft Corporation. - SCSI Port Driver.) - [94.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\scsiport.sys
[MD5.8D04819A3CE51B9EB47E5689B44D43C4] - [13/04/2008 12:36:46] - (.© Microsoft Corporation. - SecureDigital Bus Driver.) - [77.38 Ko] - (6.0.4069.5512) - C:\WINDOWS\System32\Drivers\sdbus.sys
[MD5.90A3935D05B494A5A39D37E71F09A677] - [16/08/2009 04:34:03] - (.© 2006 Macrovision Corporation  - Macrovision SECURITY Driver.) - [20 Ko] - (4.3.86.0) - C:\WINDOWS\System32\Drivers\secdrv.sys
[MD5.0F29512CCD6BEAD730039FB4BD2C85CE] - [13/04/2008 12:40:14] - (.© Microsoft Corporation. - Serial Port Enumerator.) - [15.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\serenum.sys
[MD5.93D313C31F7AD9EA2B75F26075413C7C] - [13/04/2008 20:00:10] - (.© Microsoft Corporation. - Pilote de périphérique série.) - [64.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\serial.sys
[MD5.0FA803C64DF0914B41F807EA276BF2A6] - [13/04/2008 12:40:48] - (.© Microsoft Corporation. - Small Form Factor Disk Driver.) - [11.63 Ko] - (6.0.4069.5512) - C:\WINDOWS\System32\Drivers\sffdisk.sys
[MD5.D66D22D76878BF3483A6BE30183FB648] - [13/04/2008 12:40:50] - (.© Microsoft Corporation. - Small Form Factor MMC Protocol Driver.) - [10 Ko] - (6.0.4069.5512) - C:\WINDOWS\System32\Drivers\sffp_mmc.sys
[MD5.C17C331E435ED8737525C86A7557B3AC] - [13/04/2008 12:40:48] - (.© Microsoft Corporation. - Small Form Factor SD Protocol Driver.) - [10.75 Ko] - (6.0.4069.5512) - C:\WINDOWS\System32\Drivers\sffp_sd.sys
[MD5.8E6B8C671615D126FDC553D1E2DE5562] - [13/04/2008 12:40:50] - (.© Microsoft Corporation. - SCSI Floppy Driver.) - [11.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\sfloppy.sys
[MD5.6B33D0EBD30DB32E27D1D78FE946A754] - [15/08/2009 20:56:13] - (.Copyright (C) Silion Integrated Systems Corp. 1999-2000 - SiS NT AGP Filter.) - [40 Ko] - (5.12.1.2010) - C:\WINDOWS\System32\Drivers\SISAGP.SYS
[MD5.1FFC44D6787EC1EA9A2B1440A90FA5C1] - [03/09/2012 20:04:57] - (.© Microsoft Corporation. - Microsoft Slip Deframing Filter Minidriver.) - [10.63 Ko] - (5.3.0.900) - C:\WINDOWS\System32\Drivers\slip.sys
[MD5.017DAECF0ED3AA731313433601EC40FA] - [16/08/2009 04:34:04] - (.© Microsoft Corporation. - Smard Card Driver Library.) - [14.25 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\smclib.sys
[MD5.489703624DAC94ED943C2ABDA022A1CD] - [13/04/2008 12:46:08] - (.© Microsoft Corporation. - 1394 Desktop Camera Driver.) - [24.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\sonydcam.sys
[MD5.83C0F71F86D3BDAF915685F3D568B20E] - [15/08/2009 20:57:24] - (.Copyright (c) Adaptec, Inc. 1993-1999 - Adaptec AIC-6x60 series SCSI miniport.) - [18.63 Ko] - (5.1.2409.1) - C:\WINDOWS\System32\Drivers\sparrow.sys
[MD5.AB8B92451ECB048A4D1DE7C3FFCB4A9F] - [15/08/2009 20:11:38] - (.© Microsoft Corporation. - Microsoft Kernel Audio Splitter.) - [6.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\splitter.sys
[MD5.39626E6DC1FB39434EC40C42722B660A] - [15/08/2009 19:51:15] - (.© Microsoft Corporation. - Pilote de filtre de système de fichiers pour la restauration du système.) - [71.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\sr.sys
[MD5.47DDFC2F003F7F9F0592C6874962A2E7] - [16/08/2009 04:34:05] - (.© Microsoft Corporation. - Server driver.) - [349.5 Ko] - (5.1.2600.6082) - C:\WINDOWS\System32\Drivers\srv.sys
[MD5.3E5D89099DED9E86E5639F411693218F] - [13/04/2008 12:45:16] - (.© Microsoft Corporation. - WDM CODEC Class Device Driver 2.0.) - [48.25 Ko] - (5.3.2600.5512) - C:\WINDOWS\System32\Drivers\stream.sys
[MD5.A9F9FD0212E572B84EDB9EB661F6BC04] - [03/09/2012 20:04:57] - (.© Microsoft Corporation. - Microsoft IP Driver.) - [14.63 Ko] - (5.3.0.900) - C:\WINDOWS\System32\Drivers\streamip.sys
[MD5.3941D127AEF12E93ADDF6FE6EE027E0F] - [13/04/2008 12:39:54] - (.© Microsoft Corporation. - Plug and Play Software Device Enumerator.) - [4.25 Ko] - (5.3.2600.5512) - C:\WINDOWS\System32\Drivers\swenum.sys
[MD5.8CE882BCC6CF8A62F2B2323D95CB3D01] - [15/08/2009 20:11:32] - (.© Microsoft Corporation. - Microsoft GS Wavetable Synthesizer.) - [55.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\swmidi.sys
[MD5.1FF3217614018630D0A6758630FC698C] - [15/08/2009 20:59:06] - (.Copyright © Symbios Logic Inc. 1992-1998 - Symbios Logic Inc. SCSI Miniport Driver.) - [15.88 Ko] - (5.1.2409.1) - C:\WINDOWS\System32\Drivers\symc810.sys
[MD5.070E001D95CF725186EF8B20335F933C] - [15/08/2009 20:59:00] - (.Copyright © LSI Logic 2000 - Symbios 8XX SCSI Miniport Driver.) - [31.88 Ko] - (5.1.2409.1) - C:\WINDOWS\System32\Drivers\symc8xx.sys
[MD5.80AC1C4ABBE2DF3B738BF15517A51F2C] - [15/08/2009 20:58:35] - (.Copyright © LSI Logic 2000 - Symbios Hi-Perf SCSI Miniport Driver.) - [27.72 Ko] - (5.1.2462.0) - C:\WINDOWS\System32\Drivers\sym_hi.sys
[MD5.BF4FAB949A382A8E105F46EBB4937058] - [15/08/2009 20:59:04] - (.Copyright © LSI Logic 2000 - Symbios Ultra3 SCSI Miniport Driver.) - [29.97 Ko] - (5.1.2462.0) - C:\WINDOWS\System32\Drivers\sym_u3.sys
[MD5.8B83F3ED0F1688B4958F77CD6D2BF290] - [15/08/2009 20:11:26] - (.© Microsoft Corporation. - System Audio WDM Filter.) - [59.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\sysaudio.sys
[MD5.FD6093E3DECD925F1CFFC8A0DD539D72] - [16/08/2009 04:34:07] - (.© Microsoft Corporation. - SCSI Tape Class Driver.) - [14.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers	ape.sys
[MD5.9AEFA14BD6B182D61E3119FA5F436D3D] - [16/08/2009 04:34:07] - (.© Microsoft Corporation. - TCP/IP Protocol Driver.) - [353.13 Ko] - (5.1.2600.5625) - C:\WINDOWS\System32\Drivers	cpip.sys
[MD5.4E53BBCC4BE37D7A4BD6EF1098C89FF7] - [16/08/2009 04:34:07] - (.© Microsoft Corporation. - IPv6 driver.) - [221.56 Ko] - (5.1.2600.5935) - C:\WINDOWS\System32\Drivers	cpip6.sys
[MD5.0539D5E53587F82D1B4FD74C5BE205CF] - [16/08/2009 04:34:07] - (.© Microsoft Corporation. - TDI Wrapper.) - [18.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers	di.sys
[MD5.6471A66807F5E104E4885F5B67349397] - [15/08/2009 19:50:07] - (.© Microsoft Corporation. - Named Pipe Transport Driver.) - [11.76 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers	dpipe.sys
[MD5.C56B6D0402371CF3700EB322EF3AAF61] - [15/08/2009 19:50:07] - (.© Microsoft Corporation. - TCP Transport Driver.) - [21.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers	dtcp.sys
[MD5.88155247177638048422893737429D9E] - [15/08/2009 19:50:01] - (.© Microsoft Corporation. - Terminal Server Driver.) - [39.88 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers	ermdd.sys
[MD5.699450901C5CCFD82357CBC531CEDD23] - [17/08/2001 23:01:34] - (.© Microsoft Corporation. - TOSHIBA DVD Stream Minidriver.) - [50.5 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers	osdvd.sys
[MD5.B411668322C3BF4E690888706B999679] - [15/08/2009 21:02:12] - (.Copyritht (C) Toshiba Corp. 1999-2000 - Contrôleur IDE PCI Toshiba.) - [4.88 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers	oside.sys
[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - [17/08/2001 23:06:22] - (.Copyright (C) Toshiba Corp. 1998 - WDM Toshiba Tecra Video Capture Driver.) - [20.88 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers	sbvcap.sys
[MD5.8F861EDA21C05857EB8197300A92501C] - [13/04/2008 12:56:02] - (.© Microsoft Corporation. - Microsoft Tunnel Interface Driver.) - [12 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers	unmp.sys
[MD5.5787B80C2E3C5E2F56C2A233D91FA2C9] - [16/08/2009 04:34:07] - (.© Microsoft Corporation. - UDF File System Driver.) - [64.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\udfs.sys
[MD5.1B698A51CD528D8DA4FFAED66DFC51B9] - [15/08/2009 21:00:15] - (.Copyright©1988-98 Promise Technology, Inc. - Gestionnaire de miniport ULTRA66 de Promise.) - [35.88 Ko] - (1.0.0.1) - C:\WINDOWS\System32\Drivers\ultra.sys
[MD5.402DDC88356B1BAC0EE3DD1580C76A31] - [16/08/2009 04:34:17] - (.© Microsoft Corporation. - Update Driver.) - [375.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\update.sys
[MD5.BEE793D4A059CAEA55D6AC20E19B3A8F] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Remote NDIS USB Driver.) - [12.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usb8023.sys
[MD5.1C1A47B40C23358245AA8D0443B6935E] - [13/04/2008 12:45:42] - (.© Microsoft Corporation. - Universal Serial Bus Camera Driver.) - [25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usbcamd.sys
[MD5.CE97845D2E3F0D274B8BAC1ED07C6149] - [13/04/2008 12:45:42] - (.© Microsoft Corporation. - Universal Serial Bus Camera Driver.) - [25.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usbcamd2.sys
[MD5.173F317CE0DB8E21322E71B7E60A27E8] - [25/06/2011 23:52:02] - (.© Microsoft Corporation. - USB Common Class Generic Parent Driver.) - [31.38 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usbccgp.sys
[MD5.596EB39B50D6EBD9B734DC4AE0544693] - [17/08/2001 23:03:02] - (.© Microsoft Corporation. - Universal Serial Bus Driver.) - [4.63 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\usbd.sys
[MD5.65DCF09D0E37D4C6B11B5B0B76D470A7] - [13/04/2008 12:45:36] - (.© Microsoft Corporation. - EHCI eUSB Miniport Driver.) - [29.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usbehci.sys
[MD5.1AB3CDDE553B6E064D2E754EFE20285C] - [13/04/2008 12:45:38] - (.© Microsoft Corporation. - Default Hub Driver for USB.) - [58.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usbhub.sys
[MD5.290913DC4F1125E5A82DE52579A44C43] - [13/04/2008 12:45:44] - (.Copyright (C) 2000 Intel Corporation - Universal Serial Bus Camera Driver.) - [15.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usbintel.sys
[MD5.0DAECCE65366EA32B162F85F07C6753B] - [13/04/2008 12:45:36] - (.© Microsoft Corporation. - OHCI USB Miniport Driver.) - [16.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usbohci.sys
[MD5.791912E524CC2CC6F50B5F2B52D1EB71] - [13/04/2008 12:45:38] - (.© Microsoft Corporation. - USB 1.1 & 2.0 Port Driver.) - [140.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usbport.sys
[MD5.A717C8721046828520C9EDF31288FC00] - [31/12/2011 14:47:35] - (.© Microsoft Corporation. - USB Printer driver.) - [25.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usbprint.sys
[MD5.A0B8CF9DEB1184FBDD20784A58FA75D4] - [31/12/2011 14:47:21] - (.© Microsoft Corporation. - USB Scanner Driver.) - [14.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\usbscan.sys
[MD5.A32426D9B14A089EAA1D922E0C5801A9] - [25/06/2011 23:52:02] - (.© Microsoft Corporation. - USB Mass Storage Class Driver.) - [25.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\USBSTOR.SYS
[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - [17/08/2001 23:02:14] - (.Copyright 1999 RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) - [56.75 Ko] - (5.0.0.74) - C:\WINDOWS\System32\Drivers\vdmindvd.sys
[MD5.0D3A8FAFCEACD8B7625CD549757A7DF1] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - VGA/Super VGA Video Driver.) - [20.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\vga.sys
[MD5.754292CE5848B3738281B4F3607EAEF4] - [15/08/2009 20:57:07] - (.© Microsoft Corporation. - VIA NT AGP Filter.) - [41.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\VIAAGP.SYS
[MD5.3B3EFCDA263B8AC14FDF9CBDD0791B2E] - [15/08/2009 21:01:40] - (.Copyright (C) VIA Technologies, Inc. 2000 - Generic PCI IDE Bus Driver.) - [5.25 Ko] - (1.0.1.1) - C:\WINDOWS\System32\Drivers\viaide.sys
[MD5.E28726B72C46821A28830E077D39A55B] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Video Port Driver.) - [79.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\videoprt.sys
[MD5.46DE1126684369BACE4849E4FC8C43CA] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Pilote de cliché instantané du volume.) - [52.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\volsnap.sys
[MD5.E20B95BAEDB550F32DD489265C1DA1F6] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - MS Remote Access and Routing ARP Driver.) - [33.75 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\wanarp.sys
[MD5.6768ACF64B18196494413695F0C3A00F] - [15/08/2009 20:11:36] - (.© Microsoft Corporation. - MMSYSTEM Wave/Midi API mapper.) - [81.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\wdmaud.sys
[MD5.C42584FD66CE9E17403AEBCA199F7BDB] - [15/08/2009 20:49:19] - (.© Microsoft Corporation. - Windows Management Interface for ACPI.) - [8.63 Ko] - (5.1.2600.5512) - C:\WINDOWS\System32\Drivers\wmiacpi.sys
[MD5.2F31B7F954BED437F2C75026C65CAF7B] - [16/08/2009 04:34:09] - (.© Microsoft Corporation. - WMILIB WMI support library Dll.) - [4.25 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\wmilib.sys
[MD5.1385E5AA9C9821790D33A9563B8D2DD0] - [28/01/2005 13:44:28] - (.© Microsoft Corporation. - WPD USB Driver.) - [18.5 Ko] - (5.2.3802.3802) - C:\WINDOWS\System32\Drivers\wpdusb.sys
[MD5.6ABE6E225ADB5A751622A9CC3BC19CE8] - [16/08/2009 04:34:09] - (.© Microsoft Corporation. - Winsock2 IFS Layer.) - [11.75 Ko] - (5.1.2600.0) - C:\WINDOWS\System32\Drivers\ws2ifsl.sys
[MD5.233CDD1C06942115802EB7CE6669E099] - [03/09/2012 20:04:57] - (.Copyright (C) Philips Semiconductors. 1981-1999 - WDM WST Codec Driver.) - [18.25 Ko] - (5.3.0.900) - C:\WINDOWS\System32\Drivers\wstcodec.sys
[MD5.E6D35F3AA51A65EB35C1F2340154A25E] - [17/12/2011 21:41:59] - (. - .) - [52.75 Ko] - (0.0.0.0) - C:\WINDOWS\System32\Drivers\xavwaffa.sys

06:42:33

¤¤¤¤¤¤¤¤¤¤ | Partitions control

 Disk: 0   Size=153G
 Pos MBRndx Type/Name  Size Active Hide Start Sector   Sectors
 --- ------ ---------- ---- ------ ---- ------------ ------------
  0    0    12-DIAG     15G   No    No         2,048   30,720,000
  1    1    07-NTFS     69G   Yes   No    30,722,048  140,978,176
  2    2    07-NTFS     69G   No    No   171,700,224  140,877,824

Fin : 06:42:34

¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤

g3n-h@ckm@n · Answer

j'aurais aimé avoir le lien cjoint car là pour lire c'est galère....

Utilisateur anonyme · Answer

bonjour,

fais un copier colle du lien de rapport sur le forum  :D

fanfan2012 · Answer

Salut,
lorsque je fais ça, tout ne passe pas, il est trop long... je ne peux l'envoyer que en plusieurs parties

fanfan2012 · Answer

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan_PE | 2.0919 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ 

¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤ 

~ Update on 19/09/2012 | 16.25.10 by g3n-h@ckm@n 
~ Informations | Evolution : https://gen-hackman.kanak.fr/ 
~ Informations for the switches Pre_Script : https://gen-hackman.kanak.fr/ 
~ Feedback Pre_scan : https://gen-hackman.kanak.fr/#505 
~ Thx to C_XX , Slyk & Saachaa for their help for the evolution of the tool 

~ Ordinateur : MININT-C8O17D5 

~ Système d'exploitation : Microsoft Windows XP :   
~ Enregistré sous : Francois 
~ Processeur : Intel(R) Atom(TM) CPU  230   @ 1.60GHz 
~ Identification : x86 Family 6 Model 28 Stepping 2 
Internet Explorer : 8.0.6001.18702 
Mozilla Firefox : 15.0.1 (fr) 

C:\ -> [Fixed]|[[OS]|[Total] : 68840 Mo | Free : 4290 Mo -> NTFS 
d:\ -> [Fixed]|[[DATA]|[Total] : 68790 Mo | Free : 17070 Mo -> NTFS 
e:\ -> [CDROM]|[[Win7PE_x86]|[Total] : 330 Mo | Free : 0 Mo -> CDFS 
x:\ -> [Fixed]|[[Boot]|[Total] : 250 Mo | Free : 250 Mo -> NTFS 

¤¤¤¤¤¤¤¤¤¤ | Boot's scripts 



¤¤¤¤¤¤¤¤¤¤ | Frameworks 

[15/08/2009 19:57:36] - C:\WINDOWS\Microsoft.net\Framework\v1.0.3705 
[15/08/2009 19:57:31] - C:\WINDOWS\Microsoft.net\Framework\v1.1.4322 
[15/08/2009 19:59:59] - C:\WINDOWS\Microsoft.net\Framework\v2.0.50727 
[30/08/2012 03:16:46] - C:\WINDOWS\Microsoft.net\Framework\v3.0 
[30/08/2012 03:18:24] - C:\WINDOWS\Microsoft.net\Framework\v3.5 

¤¤¤¤¤¤¤¤¤¤ | Windows Updates 

Last(s) détection(s) : 2012-09-21 10:14:02 
Last(s) download(s) : 2012-09-12 08:39:35 
Last(s) installation(s) : 2012-09-12 22:33:38 
Next search : 2012-09-22 20:48:07 


copie saine d'Explorer.exe trouvée et remplacée 


¤¤¤¤¤¤¤¤¤¤ | Contrôle MD5 

[MD5.F2317622D29F9FF0F88AEECD5F60F0DD] - [16/08/2009 04:33:52] - (.© Microsoft Corporation. - Explorateur Windows.) - [1013.5 Ko] - (6.0.2900.5512) - C:\WINDOWS\Explorer.exe 
[MD5.E0E8A531CFCE1C2E5D79F683282C10C3] - [16/08/2009 04:33:49] - (.© Microsoft Corporation. - Client Server Runtime Process.) - [6 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\csrss.exe 
[MD5.E0E8A531CFCE1C2E5D79F683282C10C3] - [16/08/2009 04:33:49] - (.© Microsoft Corporation. - Client Server Runtime Process.) - [6 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\csrss.exe 
[MD5.48E430297DA757F5CC2793CCFACAD5E7] - [16/08/2009 04:34:04] - (.© Microsoft Corporation. - Gestionnaire de session Windows NT.) - [49.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\smss.exe 
[MD5.48E430297DA757F5CC2793CCFACAD5E7] - [16/08/2009 04:34:04] - (.© Microsoft Corporation. - Gestionnaire de session Windows NT.) - [49.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\smss.exe 
[MD5.E74DDB12188C2FF57A78624DBF7332FC] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [26 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\userinit.exe 
[MD5.E74DDB12188C2FF57A78624DBF7332FC] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Application d'ouverture de session Userinit.) - [26 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\userinit.exe 
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - [16/08/2009 04:34:09] - (.© Microsoft Corporation. - Application d'ouverture de session Windows NT.) - [500 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\winlogon.exe 
[MD5.DD73D6B9F6B4CB630CF35B438B540174] - [16/08/2009 04:34:09] - (.© Microsoft Corporation. - Application d'ouverture de session Windows NT.) - [500 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\winlogon.exe 
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [135.25 Ko] - (5.1.2600.6142) - C:\WINDOWS\system32\dllcache\afd.sys 
[MD5.1E44BC1E83D8FD2305F8D452DB109CF9] - [16/08/2009 04:33:47] - (.© Microsoft Corporation. - Ancillary Function Driver for WinSock.) - [135.25 Ko] - (5.1.2600.6142) - C:\WINDOWS\system32\drivers\afd.sys 
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - [13/04/2008 12:40:32] - (.© Microsoft Corporation. - IDE/ATAPI Port Driver.) - [94.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\atapi.sys 
[MD5.9F3A2F5AA6875C72BF062C712CFA2674] - [13/04/2008 12:40:32] - (.© Microsoft Corporation. - IDE/ATAPI Port Driver.) - [94.25 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\drivers\atapi.sys 
[MD5.1F4260CC5B42272D71F79E570A27A4FE] - [15/08/2009 20:06:19] - (.© Microsoft Corporation. - SCSI CD-ROM Driver.) - [61.5 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\drivers\cdrom.sys 
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - MBT Transport driver.) - [159 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache
etbt.sys 
[MD5.74B2B2F5BEA5E9A3DC021D685551BD3D] - [16/08/2009 04:33:58] - (.© Microsoft Corporation. - MBT Transport driver.) - [159 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\drivers
etbt.sys 
[MD5.46DE1126684369BACE4849E4FC8C43CA] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Pilote de cliché instantané du volume.) - [52.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\dllcache\volsnap.sys 
[MD5.46DE1126684369BACE4849E4FC8C43CA] - [16/08/2009 04:34:08] - (.© Microsoft Corporation. - Pilote de cliché instantané du volume.) - [52.13 Ko] - (5.1.2600.5512) - C:\WINDOWS\system32\drivers\volsnap.sys 

05:09:29 

¤¤¤¤¤¤¤¤¤¤ | HKCR\Applications 

[HKCR\Applications\EXCEL.EXE\Shell\open\command] : "C:\Program Files\Microsoft Office\Office12\EXCEL.EXE" /e 
[HKCR\Applications\firefox.exe\Shell\open\command] : "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" 
[HKCR\Applications\iexplore.exe\Shell\open\command] : "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 
[HKCR\Applications\mpc-hc.exe\Shell\open\command] : "C:\Program Files\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe" "%1" 
[HKCR\Applications\MSOXMLED.EXE\Shell\open\command] : "C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLED.EXE" /verb open "%1" 
[HKCR\Applications
ero.exe\Shell\open\command] : "C:\Program Files\Nero\Nero8\Nero Burning Rom
ero.exe" "%1" 
[HKCR\Applications
otepad.exe\Shell\open\command] : %SystemRoot%\system32\NOTEPAD.EXE %1 
[HKCR\Applications\ois.exe\Shell\open\command] : C:\PROGRA~1\MICROS~2\Office12\OIS.EXE /shellOpen "%1" 
[HKCR\Applications\PhotoshopElementsEditor.exe\Shell\open\command] : "C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsEditor.exe" "%1" 
[HKCR\Applications\PowerDVD8.exe\Shell\open\command] : "C:\Program Files\CyberLink\PowerDVD8\PowerDVD8.exe" "%L" 
[HKCR\Applications\shimgvw.dll\Shell\open\command] : rundll32.exe %SystemRoot%\system32\shimgvw.dll,ImageView_Fullscreen %1 
[HKCR\Applications\swriter.exe\Shell\open\command] : "C:\Program Files\OpenOffice.org 3\program\swriter.exe" -o "%1" 
[HKCR\Applications\VSLauncher.exe\Shell\open\command] : "C:\Program Files\Fichiers communs\Microsoft Shared\MSEnv\VSLauncher.exe" "%1" 
[HKCR\Applications\vsta.exe\Shell\open\command] : "C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\vsta.exe" "%1" 
[HKCR\Applications\WinRAR.exe\Shell\open\command] : "C:\Program Files\WinRAR\WinRAR.exe" "%1" 
[HKCR\Applications\wksss.exe\Shell\open\command] : C:\PROGRA~1\MICROS~3\wksss.exe "%1" 
[HKCR\Applications\wkswp.exe\Shell\open\command] : C:\PROGRA~1\MICROS~3\WksWP.exe "%1" 
[HKCR\Applications\WLXPhotoGallery.exe\Shell\open\command] : C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe /LaunchPhotoViewer /v "%1" 
[HKCR\Applications\WLXPhotoViewer.dll\Shell\open\command] : C:\Program Files\Windows Live\Photo Gallery\WLXPhotoGallery.exe /LaunchPhotoViewer /v "%1" 
[HKCR\Applications\wmplayer.exe\Shell\open\command] : C:\Program Files\Windows Media Player\wmplayer.exe /Open "%L" 
[HKCR\Applications\wordpad.exe\Shell\open\command] : "%ProgramFiles%\Windows NT\Accessoires\WORDPAD.EXE" "%1" 

¤¤¤¤¤¤¤¤¤¤ | Windows 

[HKLM | Session Manager\SubSystems]|[Windows] : winsrv : %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16 


[HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] 
"AppInit_DLLS"=C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL 
"LoadAppInit_DLLs"=1 

¤¤¤¤¤¤¤¤¤¤ | Svchost - Netsvc 

Audiov 
Tapiv 

¤¤¤¤¤¤¤¤¤¤ | Winlogon 

[HKU\Francois_ON_C | Winlogon]|[Shell] :  -> () 

¤ 

[HKLM | Winlogon]|[Shell] : Explorer.exe 
[HKLM | Winlogon]|[userinit] : C:\WINDOWS\system32\userinit.exe, 
[HKLM | Winlogon]|[PowerDownAfterShutdown] : 0 -> 1 
[HKLM | Winlogon]|[System] :  
[HKLM | Winlogon]|[Taskman] :  

¤¤¤¤¤¤¤¤¤¤ | Associations 

[.exe] : exefile 
[exefile | command] : "%1" %* 
[.com] : comfile 
[comfile | command] : "%1" %* 
[.reg] : regfile 
[regfile | command] : regedit.exe "%1" 
[.scr] : scrfile 
[scrfile | command] : "%1" /S 
[.bat] : batfile 
[batfile | command] : "%1" %* 
[.cmd] : cmdfile 
[cmdfile | command] : "%1" %* 
[.pif] : piffile 
[piffile | command] : "%1" %* 
[.url] : InternetShortcut 
[InternetShortcut | command] : "C:\WINDOWS\system32undll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l 
[Application.Manifest | command] : rundll32.exe dfshim.dll,ShOpenVerbApplication %1 
[Application.Reference | command] : rundll32.exe dfshim.dll,ShOpenVerbShortcut %1|%2 
[Folder | command] : %SystemRoot%\Explorer.exe /idlist,%I,%L -> C:\WINDOWS\explorer.exe 

¤ 


¤ 

[Firefox | Command] : D:\Mozilla Firefox\firefox.exe -> "C:\Program Files\Mozilla Firefox\Firefox.exe" 
[Firefox - Safemode | Command] : "D:\Mozilla Firefox\firefox.exe" -safe-mode -> "C:\Program Files\Mozilla Firefox\Firefox.exe" -safe-mode 
[IE | Command] : C:\Program Files\Internet Explorer\iexplore.exe -> "C:\Program Files\Internet Explorer\iexplore.exe" 
[Applications | IE | Command] : "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 
[Assoc | Applications] : http://shell.windows.com/fileassoc/%04x/xml/redir.aspExt=%s 

¤¤¤¤¤¤¤¤¤¤ | Corrections diverses 

[HKU\S-1-5-18 | HideDesktopIcons\ClassicStartMenu]|[{F02C1A0D-BE21-4350-88B0-7367FC96EF3C}] : 0 
[HKU\S-1-5-18 | HideDesktopIcons\ClassicStartMenu]|[{59031a47-3f72-44a7-89c5-5595fe6b30ee}] : 0 
[HKLM | HideDesktopIcons\NewStartPanel]|[{20D04FE0-3AEA-1069-A2D8-08002B30309D}] : 1 -> 0 
[HKLM | HideDesktopIcons\NewStartPanel]|[{208D2C60-3AEA-1069-A2D7-08002B30309D}] : 1 -> 0 
[HKLM | HideDesktopIcons\NewStartPanel]|[{871C5380-42A0-1069-A2EA-08002B30309D}] : 0 
[HKLM | Advanced\Folder\Hidden\SHOWALL]|[CheckedValue] : 1 
[HKU\S-1-5-18 | Explorer\Advanced]|[Start_ShowUser] : 1 
[HKU\S-1-5-18 | Explorer\Advanced]|[Start_ShowHelp] : 0 -> 1 
[HKU\S-1-5-18 | Explorer\Advanced]|[Start_EnableDragDrop] : 1 
[HKU\Francois_ON_C | Explorer\Advanced]|[Hidden] : 2 -> 0 
[HKU\LocalService_ON_C | Explorer\Advanced]|[Hidden] :  -> 0 
[HKU\NetworkService_ON_C | Explorer\Advanced]|[Hidden] :  -> 0 
[HKU\S-1-5-19 | Explorer\Advanced]|[Hidden] :  -> 0 
[HKU\S-1-5-20 | Explorer\Advanced]|[Hidden] :  -> 0 
[HKU\systemprofile_ON_C | Explorer\Advanced]|[Hidden] :  -> 0 
[HKU\S-1-5-18 | Explorer\Advanced]|[Hidden] : 1 -> 0 
[HKU\Francois_ON_C | Policies\Explorer]|[NoDriveTypeAutoRun] : 91000000 -> 1 
[HKU\LocalService_ON_C | Policies\Explorer]|[NoDriveTypeAutoRun] : 145 
[HKU\NetworkService_ON_C | Policies\Explorer]|[NoDriveTypeAutoRun] : 145 
[HKU\S-1-5-18 | Policies\Explorer]|[NoDriveTypeAutoRun] : 145 

05:09:34 


¤¤¤¤¤¤¤¤¤¤ | Security Center 

[HKLM | Security Center]|[FirstRunDisabled] : 1 
[HKLM | Security Center]|[AntiVirusDisableNotify] : 0 
[HKLM | Security Center]|[AntiVirusOverride] : 1 -> 0 
[HKLM | Security Center]|[FirewallDisableNotify] : 0 
[HKLM | Security Center]|[FirewallOverride] : 0 
[HKLM | Security Center]|[UpdatesDisableNotify] : 0 



[HKLM | FirewallPolicy\StandardProfile]|[DisableNotifications] : 0 

¤¤¤¤¤¤¤¤¤¤ | Services 

[RPCSS] : 2 
[srService] : 2 
[Ndisuio] : 3 
[PlugPlay] : 2 
[Parvdm] : 2 
[NVSvc] : 2 
[lmhosts] : 2 
[LanmanWorkstation] : 2 
[LanmanServer] : 2 
[agp440] : 4 -> 2 
[Audiosrv] : 2 
[ERSvc] : 2 
[Bits] : 3 -> 2 
[CryptSvc] : 2 
[EapHost] : 3 -> 2 
[SharedAccess] : 2 
[wuauserv] : 2 
[WerSvc] :  -> 2 
[wscsvc] :  -> 2 
[wzcsvc] : 2 

05:09:34 

¤¤¤¤¤¤¤¤¤¤ | Internet Explorer 

[HKU\Francois_ON_C | Main]|[Start Page] : http://kurs.ru/index5 -> https://www.google.com/?gws_rd=ssl 
[HKU\S-1-5-18 | Main]|[Start Page] : https://www.google.com/?gws_rd=ssl 
[HKU\Francois_ON_C | Main]|[Local Page] : C:\WINDOWS\system32\blank.htm 
[HKU\S-1-5-18 | Main]|[Local Page] : X:\windows\system32\blank.htm -> C:\WINDOWS\system32\blank.htm 
[HKU\Francois_ON_C | Main]|[Search Page] : http://www.microsoft.com/isapi/redir.dllprd=ie&ar=iesearch 
[HKU\S-1-5-18 | Main]|[Search Page] : http://go.microsoft.com/fwlink/LinkId=54896 -> http://www.microsoft.com/isapi/redir.dllprd=ie&ar=iesearch 

[HKLM | Search]|[SearchAssistant] : https://www.bing.com/?toHttps=1&redig=8F3F334EA60E4B1CB4D040DCFE393A89{SUB_RFC1766}/srchasst/srchasst.htm -> http://www.google.com/toolbar/ie8/sidebar.html 
[HKLM | Main]|[Start Page] : http://go.microsoft.com/fwlink/LinkId=69157 
[HKLM | Main]|[Local Page] : C:\WINDOWS\system32\blank.htm 
[HKLM | Main]|[Default_Search_URL] : http://go.microsoft.com/fwlink/LinkId=54896 
[HKLM | Main]|[Default_Page_URL] : http://go.microsoft.com/fwlink/LinkId=69157 
[HKLM | Main]|[Search Page] : http://go.microsoft.com/fwlink/LinkId=54896 
[HKLM | AboutURLs]|[Tabs] : http://webplayersearch.com/ -> res://ieframe.dll/tabswelcome.htm 

¤ 

[HKU\Francois_ON_C | PhishingFilter]|[Enabled] : 0 -> 2 
[HKU\Francois_ON_C | PhishingFilter]|[EnabledV8] : 0 -> 1 
[HKU\S-1-5-18 | PhishingFilter]|[EnabledV8] : 1 
[HKU\Francois_ON_C | Internet settings]|[EnableHttp1_1] : 1 
[HKU\S-1-5-18 | Internet settings]|[EnableHttp1_1] : 1 
[HKU\Francois_ON_C | Internet settings]|[MigrateProxy] : 1 
[HKU\LocalService_ON_C | Internet settings]|[MigrateProxy] : 0 -> 1 
[HKU\NetworkService_ON_C | Internet settings]|[MigrateProxy] : 0 -> 1 
[HKU\Francois_ON_C | Internet settings]|[WarnonBadCertRecving] : 1 
[HKU\Francois_ON_C | Internet settings]|[WarnonZoneCrossing] : 0 -> 1 
[HKU\S-1-5-18 | Internet settings]|[WarnonZoneCrossing] : 0 -> 1 
[HKU\Francois_ON_C | Internet settings]|[AutoConfigProxy] : wininet.dll 
[HKU\S-1-5-18 | Internet settings]|[AutoConfigProxy] : wininet.dll 

¤¤¤¤¤¤¤¤¤¤ | DNS 

[HKLM\SYSTEM\CCS | Tcpip\Parameters]|[DhcpNameServer] : 89.2.0.1 89.2.0.2 
[HKLM\SYSTEM\ControlSet001 | Interfaces\{E0BA3BA4-704F-436E-8618-3CA4221680DA}]|[DhcpNameServer] : 89.2.0.1 89.2.0.2 
[HKLM\SYSTEM\ControlSet003 | Interfaces\{E0BA3BA4-704F-436E-8618-3CA4221680DA}]|[DhcpNameServer] : 89.2.0.1 89.2.0.2 
[HKLM\SYSTEM\ControlSet004 | Interfaces\{E0BA3BA4-704F-436E-8618-3CA4221680DA}]|[DhcpNameServer] : 89.2.0.1 89.2.0.2 

05:09:35 

¤¤¤¤¤¤¤¤¤¤ | Traitement Files | Folders | Registre 

Quarantined and deleted successfully : C:\Recycler\S-1-5-21-2802022764-2121953277-338115081-1006\desktop.ini 
Quarantined and deleted successfully : C:\Recycler\S-1-5-21-2802022764-2121953277-338115081-1006\INFO2 
Key deleted : [HKLM | Microsoft\RFC1156Agent] 


06:13:03 

Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Application Data\InstallShield 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Application Data\InstallShield 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Application Data\InstallShield 
Quarantined and deleted successfully : C:\Program Files\LP 
Quarantined and deleted successfully : C:\WINDOWS\Thumbs.db 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local Settings\Application Data\dt.dat 
Quarantined and deleted successfully : C:\Temp\devcon.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR10.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR11.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR12.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR14.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR17.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR19.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1B.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1E.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1F.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR20.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR25.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR26.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR5.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR7.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR8.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR9.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURC.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURD.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURE.exe 
Quarantined and deleted successfully : C:\WINDOWS\Temp\140.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\1A0.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\1EF.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\92.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-007b5c02-dc34-461f-823d-a361eb22635a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0432a95f-d2b1-490e-9cbf-d815905a8b7f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-045e4030-cf1c-4b14-b79a-5245f6b74e39.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-04d9d24a-ca12-4328-9afd-ec77ffa7777c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-05234a71-6ea8-467e-a091-d37d274dff32.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-059ce734-db40-426c-8b12-6e7c4ce23f28.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-073f2c4b-7570-4751-a23b-2b6671d50d5f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-07a4f60b-714a-4a68-a52d-e11d5e75bd72.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0c3f1672-a9ed-4e15-8958-c849cfcc6a55.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0d01c25f-bbee-4d6f-bb4c-49734c145149.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-0f4bc92c-ef3a-4f28-b4e2-b86a90bf8d2b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-104d0117-63ee-4836-86bd-5a010dc26b65.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-10e5c738-60f6-4c14-831c-bc03b3a57d7d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-11025533-7f21-4e06-989a-f44c0321912a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-111d4e27-fc7a-441a-8ffc-ce7ce2642913.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-123c9a6f-74c0-4555-9df8-f97a07287360.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12476b3b-fbce-4118-82b1-a145a852657b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12735876-af9f-4428-a052-e63b52d0f078.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12a1016e-d6ef-4609-a6ec-353b286b7b13.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-12b00507-67ae-4562-8fb2-2d53ebb5ab7b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-141a1f06-c8f6-452c-aa54-127f381bf817.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-16de9b70-0b43-4c15-817f-5e1d9b32e97c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1717dd36-1f76-4c28-b066-3e39657dc76c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-18f0c84a-d177-430c-b04b-515ec53b0300.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1b9b7214-1316-421d-92f3-3b7e81dec231.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1c554221-437f-480d-ad50-497843cdaa24.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1e29c23e-5e7e-4241-abb7-3c4856137261.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-1f874f19-963d-4049-a8e8-ef5b9f9f381c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-214ad94a-e12e-4833-b7ed-c46663c95e14.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-219a7776-9dca-4009-9546-870e9a92837c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-22beb53c-c20f-4718-a93f-f07042754619.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2449f543-9a33-4102-9790-68287c477c49.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-24967750-cafe-442b-994a-3e7c692e0277.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-24c61011-4440-4d2b-9671-38609b1b5653.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-267cba08-1fce-4e37-9d69-816e6ab26d7d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-27134d56-5850-4b3c-afa4-af1009656204.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-293b9419-2e83-4a7a-835c-dd0894e8791c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-29c29f0f-4a9b-4525-83d8-fa6157be2104.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2b9d441f-e7af-475e-af3c-605bdfbf2d29.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2cf3bd31-269e-4f42-907a-e7081af09d31.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-2d23ea2d-de8d-431f-8230-4e675d1af307.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-31c8df34-58b6-4363-86d3-992b72328c14.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-34485209-eace-4d0a-ae57-d20d2635ac7b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-354e6f3d-ecff-4b20-9552-fc4674386e23.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-358c2904-cacb-4e51-ae10-471a26505529.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3768c30e-2a7e-470f-9abf-f826a9795621.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3ba7ee77-f877-4867-816b-954755270a1c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3cb3d460-3fc8-462d-8d45-565ca8c0225c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3d5a1942-1c47-4a1d-800a-b35246a01267.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3dd20716-67e6-4745-8f3b-31529e70195e.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3e8afd5d-3339-4d0b-89af-20020facc00e.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3e9fba12-7d0c-4905-b0e0-df04b8f3d14c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-3f211b7c-9495-4110-beff-ba449920e41b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-40149003-625e-427b-8cc9-763c60d38911.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-420cba68-d980-4c6d-9596-126b0c317d14.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4387036a-d805-4800-958c-d9592d16681b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-44e81066-98ab-4502-8c45-eb32456f4271.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-47be1273-9434-4b37-add9-1f60087b3a77.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-48694517-bbbc-4a44-b9e4-b840aaa43a54.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4b23e84e-4463-445b-a496-4e5761031704.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4c52307e-069c-4e63-870d-7042e558424a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4cddab1c-f929-4d01-bf48-76300a72cb57.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4d64ab13-e5f6-476f-92b2-84675f774909.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4eb15874-325a-4d23-85de-ff6e2a10d32c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4f4c2052-9bfe-4f40-9765-fb00717f3505.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-4fa97456-8c98-4b11-a439-d44904a7a364.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-507cdc2e-5d0f-440d-a31f-772e2edbc323.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-50821119-9029-4e57-af36-a647a2fc2c11.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-524f7e0c-ec7c-473b-a137-58282141ba6a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-529c8643-134a-4179-85fc-da059759ac3b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-52dfe221-0958-4c16-ad68-f041fdbd6e7c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5356e704-6abf-4876-8dbc-d327f0a5084c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53573c41-309d-441e-b379-cf4ccd409b33.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53630c44-fdd7-4b2c-b783-8f6dbefc2229.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53694b40-4aca-483f-b232-895e8289db7f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-53d43f50-e357-4607-8eb2-8a68b60fcc0a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5620a313-65db-4376-8dc8-1e791fdf3571.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-575ccb00-814b-4123-ab39-d41b9ce2243f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-57e52148-7fb9-4454-bcd5-b45e0de84944.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-592f9311-6be0-4b03-aaf6-7934f8edaf73.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5af56438-42c2-4b34-a62e-0d2e6ce64c5f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5c2bea06-aae0-4e66-a70c-8a5e6fb7a17b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5ce63447-2162-4202-a48f-2623fb27fc49.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5d0f705a-f13e-4d13-b2ae-b52467e5053a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5db3e275-ad20-4445-9335-6a744d29e81a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5edeac05-a8cd-4501-bdaf-01586a52b06e.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-5f4d8e20-f5c4-497f-b90c-3869dbefa351.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6121913a-58b2-4144-92b7-8d1d0c30e23d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6123d273-da15-4130-b5b4-0a217adad246.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-616ddf1f-5a8f-4a17-a016-fe019dca8d1b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-61fec331-b466-4d56-b823-6d6fa5f61f3c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-62e78001-6b5d-4850-b2eb-c138c83b1b38.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-63185210-ceca-4678-954e-787e2ef58b22.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-635de220-b9a0-4826-8ec2-7717cc220415.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-63a8dd06-7438-4b5c-89ad-3a7233b2417e.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-64bb866b-7cda-4a58-892d-ad674c70ac39.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-65097e03-9bae-4719-baeb-46049b721b1f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-68efe35a-7c74-4004-a3dd-a371c5549038.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-69888316-da01-4c62-aafd-862ee7ea8534.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6b630d46-2484-4341-aa22-2537f83f3264.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6ce1d243-5e0f-4258-ba9f-1b3789ad636a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6d45c24d-deaa-4b63-8a01-176883309d42.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6e305f58-46e7-442f-9bc9-d71ee308e51f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6fad0d14-ecd0-4123-8638-8632fa896f57.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-6fbd240c-f708-4b40-8b4b-e46ddd00454c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7207d15e-c6bd-491f-8ee9-e061b819847b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-720f7e5f-1a2b-4d35-8be9-4605dd2cca5c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-729c1f24-3fa9-411f-b054-403b45e8981d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-72c39d68-9dc2-4f2c-b14c-da520659ce62.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7440bd58-1c78-4918-a157-d412ad9a3923.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-76006e65-48fd-4d55-87d3-8752db50532b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7619c91b-ef49-4a3a-a7e6-5b2c5c00aa4e.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-76b83d76-3283-4546-9d24-c33eb8309203.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-76d66a47-d9a2-441e-9d3a-191e32df6267.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-77126155-33d4-4f17-9502-2b5b8ce0521a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-77355865-e9fa-4104-ba7d-05034ae86132.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-78f34215-06ee-4a2a-8a46-067ad6017b1b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7d83c559-5f6b-472c-aaae-d264dc8c4d4c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-7de4d56e-3087-4635-92f9-9e157aad390a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-80537868-24c5-4142-a8e5-ce784fa31049.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-80cd6223-76d9-4923-b6a8-bf6a4e708f26.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-8177c73e-4df4-4a2a-a4fd-6658c2620d5f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-81b48b38-d3da-4d33-9f36-493a35d2f520.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-82004f47-6a42-473c-b491-7b09b1595951.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-827ff65d-a111-4c4f-a1a9-5d412b70af7b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-83037b26-0dab-4c40-a1ce-1874015bf976.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-8338ac68-318c-4209-b31c-4d4916616700.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-83c7a350-fdcd-4a48-8e6a-be6b7d65f220.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-83ff1d51-cda7-4725-800e-041f4abec01f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-86047630-11db-433d-8a17-4353bda1e350.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-86e46c4b-2ea8-4655-9909-a2153a7dce27.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-87729956-ff22-4434-a559-174ee0bf2a3a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-87975802-7039-411b-8ff3-7a79f386a12c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-88cd4227-06bf-443f-8043-46620ceeab3b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-89ea4e73-048b-4f3e-8e54-0523a393b10a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-8d19651c-f198-446b-91d3-1f1a8329926e.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-934fb635-f637-4c78-bb0b-2a511c2f541d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9416990e-70aa-422a-9d86-2749f3bb9472.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9485e241-46d3-426d-9384-e3252602d740.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9630460d-cb93-4c4f-a588-3c62ef84fe14.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9676f02d-2ff6-4931-81ee-ad3c15b6af50.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9682080d-1c61-4373-92e1-fe5b9698df44.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-96c88330-3564-462b-99aa-f41098bc381e.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-975b9f28-bec1-4832-ac04-e81010d1e425.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-986cd753-63ea-410b-9e2f-671511800a3e.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-989c783a-5db9-4f5d-9c60-2a24b053837b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-99da9a43-fd44-4954-9fa6-313cb1ea7b0f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9a1cc27f-7597-4b4b-bfdd-7d58ad837d0f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9a2a923b-ffc8-4b46-bc68-f8643802382a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9abe5411-ca5b-4d78-b4ff-7850e7eefb49.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9dba740c-088e-463e-9539-cf1d58a37465.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9e13342b-d99b-4a1a-acee-637f7e893958.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9ef5ba49-800a-4402-935c-4e525587090b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9f8bd01b-289b-430a-aaf4-597c7560031d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-9f93581f-e3a2-4600-a214-1e57963abe36.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a026f72b-d6d4-4d6e-a152-b73ad08dd455.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a05b3b19-d1f8-4917-b55a-586ed279b51f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a0a48f76-7057-4b14-a522-c058ee0a073c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a0a9704a-e42c-4142-8356-21137c98c519.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a0f6564f-576a-4435-b596-8951d9d3ac66.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a1a70b73-963e-4102-b71a-1941662bd83c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a40df321-8128-466f-a5c1-1c55397fd676.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a4b2841f-1fd8-4f50-ae7b-837951f24824.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a6982720-c29b-4a43-8846-b33c50dc3535.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a7bb857a-2f8d-4f42-83d5-ad5fd343c438.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a7d4972d-08d2-4d3e-a046-c52ad688cb53.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a8ece178-9547-455a-a337-7c5f6fb4041d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-a90eae56-c942-415c-98cc-e2433ffff57b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aa343c26-be01-402c-ab1b-571f6ae2c475.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aa357b60-4a5b-4427-93c1-c437cf6df774.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aa6cdb6f-6eec-4519-bf9d-7001a6475410.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ab084e5e-2e21-4e42-a6dc-304d34015419.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ab56b466-d3e4-4752-a77b-154a559eb93d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ac3f0178-e8c3-473b-8b3a-eb52ee78dd51.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ace1dc1e-1069-4b7b-9968-6a0564c69b04.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ad074030-0aa5-466d-b0db-fc51206a8560.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ad22d206-bb72-4628-90f1-5750d1d9c42d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ad7d1e5c-614c-4962-9d65-e94e4d412014.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-addaec04-2afe-4c57-a3ce-214e16777640.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ae1aa25f-7da4-4578-ade7-0f5d4f02f76f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-aec94f4b-ea98-4e0c-aab3-0b0401410e54.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-afc57d07-35e8-4d3e-a1a0-6a3b4a02b97e.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b0ba2125-470c-4d1e-8f02-3b6082cb976e.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b406a13b-b1d7-4921-b438-cd34bf24cb57.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b458b139-752b-4439-add4-310fa5c89443.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b7091b0e-c923-4a0b-8f0d-6942599e9625.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b74c304b-3d02-4130-af32-cd5cdca78a6c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-b75b9f09-cd50-4d2b-aeac-70537810f16b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ba0bca5f-6c63-4115-976c-216036623967.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bb236563-f602-4d72-bd7d-88094f1b0e63.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bb25133c-ad35-4d43-9593-3b0ae8479943.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bb50a87d-901b-4e5e-b3ec-6d01d7a21e3f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bc02401e-c48b-4312-aecf-af2c4b7a587d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-bff27721-b39a-4e3f-a62e-7b6100469e2b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c016f44b-abd6-432b-8ccd-c738827f073b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c133df15-5c37-4b70-893e-190c192bd506.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c136665a-e51a-417b-a02d-ad6c6683807b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c3f69324-ba73-4633-baa8-202f5d7d0159.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c6759b1a-bde2-4c15-a9fe-686b9357da78.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c6930965-e708-4a61-9548-1f1f9dc50a57.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c6d09269-e773-4301-bab9-bb47c5935046.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c7472654-bf9f-4762-bcac-0150809a3978.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-c7deda6b-21cf-4e10-ba7c-0906002d2057.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-cc20381b-c7cf-462a-beca-b1525f551e0b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-cc80bf7d-79dc-4059-927a-d93aa9d6c62f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-cfa73e1a-806e-4723-b624-5f5120aa6062.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d0a79e3c-1b52-4f34-897e-555cd163bf3f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d21b616e-ecd9-4945-920e-3f475b0f1544.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d2df223d-1588-4755-ad8e-de5b8fc48514.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d5d36042-83be-4a05-bf38-3571a8666b01.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d5fc283d-6a4e-4d6b-8b1a-2714604bb67b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d790ad72-a0cc-406a-a9df-50159af33f5f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d828f565-6dad-480f-b181-4c6d549b9f48.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-d95f0f42-ac7a-4b36-8504-fe6b7696dd5a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-da9be369-aa39-4414-b7ad-207891159b7d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-dade0961-88f0-420e-a729-b35edb6b2401.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-dd03cc40-3120-4664-927b-ba481e37fa3b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-dd0f4370-538d-4403-8ee1-0544fb48e332.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-deb52001-3a76-4422-b838-9c736eaa7f2b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-df5d9b45-43ab-4b0e-bb0f-96145752d04a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-df6bfb3d-1092-4756-8b02-7468035c835b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e1becf74-f794-4d68-b48b-bd210ee0b757.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e69d9a3c-5025-454d-987c-4b258877f967.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e6f44c35-984a-4b64-bf04-f449e8cd067f.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e7b7aa30-ab53-4e1f-9ca2-0969992b9e3a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e98d763a-60e7-4073-ad20-1c5fafda2104.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e9947708-b66a-4c3d-b8a2-88436e4afa5c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e9c08b46-3518-4d5f-8e9b-de542252ee68.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-e9fa3e08-94f8-4872-94c8-196d8625295d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ea6ddf7f-90a9-4535-8101-235c315f157c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-eab69e54-7946-4564-bc28-370d31d0c14a.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ed40d013-6ce8-4754-b7b0-74602720524c.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ef4de707-06c9-4418-bd91-7b74a6795902.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ef5d747c-fbe9-4069-878a-e2405445760d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f190300e-c4c2-4332-9810-c21cb1e67a6d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f2a8955d-767f-4454-a942-657319492271.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f2da6a63-7055-4a3d-8985-cf347b81404b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f4ca626a-f2c2-4125-8f3f-2921327af621.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f51f777e-e12f-480e-a51c-ce369f517947.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f6431d77-50d3-4f70-8e00-ca3341393e62.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f733aa5e-3b31-4e6b-a320-7a44c61f5f2d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f8187a54-2e68-4856-b1d8-070d89fa8c3d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-f9412141-c174-493b-b7f5-626f1cca8a09.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-fa15082b-04e9-4f0a-a547-3232fc7b020d.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-fa20585b-27cb-401f-afd3-4405ced6c755.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-fc12e279-c004-4968-9c03-965120089a68.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ff2fd70c-dabb-4138-aaee-ef47c51feb64.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ff924c78-eb7a-4c23-b92c-fe7b67c6ae37.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\avg-ffec5200-face-4011-a05c-36790b9f0c0b.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR10.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR11.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR12.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR13.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR14.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR15.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR16.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR17.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR18.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR19.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1A.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1B.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1C.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1D.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1E.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR1F.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR20.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR21.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR22.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR23.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR24.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR25.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR26.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR27.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR28.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR29.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2A.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2B.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2C.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2D.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2E.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR2F.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR3.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR30.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR31.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR32.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR33.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR34.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR35.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR36.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR37.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR38.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR4.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR5.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR6.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR7.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR8.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GUR9.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURA.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURB.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURC.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURD.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURE.tmp 
Quarantined and deleted successfully : C:\WINDOWS\Temp\GURF.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\7za.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\conduitinstaller.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jre-6u31-windows-i586-iftw-rv.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\Kreapixel_addonAcPro.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\MSETUP4.EXE 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\MyBabylonTB.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\ose00000.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\push.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\Setup.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\SpotifyUpgrader.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\webplayer.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\_te25F.exe 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\colorpicker.htm 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\eula.html 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jscontainer.htm 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp	abs.htm 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\gd34D.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\is483.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~357.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF10D0.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF1432.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF168A.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF240F.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF26C3.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF2F0C.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5AA7.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5B43.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5C76.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF5E7F.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF845C.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF9423.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF94F7.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DF9A8C.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFA771.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFAAC.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFE188.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFEBA.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Administrateur\Local settings\Temp\~DFF815.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\gd34D.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\is483.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~357.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF10D0.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF1432.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF240F.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF26C3.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF2F0C.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5AA7.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5B43.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5C76.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF5E7F.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF845C.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF9423.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DF94F7.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DFA771.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DFE188.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Default User\Local settings\Temp\~DFF815.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\.cleanup.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\001171.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\1.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\14.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\155196.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\1D.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2A.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2E.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\2F.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\3.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\31.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\34.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\4.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\466586.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\5.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\6.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\615097.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\6ux369.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\7.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS2A.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS50.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS589.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS67.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\7zS675.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\8.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\9.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\A9R42E2.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\B.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\bb435E.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\C.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD3B.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD3D.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD41.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD46.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\cabD48.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\CR_35B40.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\E.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\fla44.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\fla45.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\fla48.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\gd34D.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\IEC355.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\IEC358.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\is483.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\is5.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\j2gC0A.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache2868914835437258098.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache54703525118611025.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache7230730419412166458.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache7389933369740089577.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\jar_cache8422748116928208792.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
ero.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
ps.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
sc35F.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
sg363.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
si1C5.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
so1A3.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp
so1BA.tmp 
Deleted :  C:\Documents and settings\Francois\Local settings\Temp\NSS1C4.TMP 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp
sz356.tmp 
Quarantined and deleted successfully : C:\Documents and settings\Francois\Local settings\Temp\set357.tmp 
Quarantined and deleted successfully :

Bizzyboy · Answer

Salut fanfan2012,

voici une astuce qui pourrait t'aider: https://www.commentcamarche.net/faq/33278-trojan-winlock-virus-gendarmerie-anssi-police-interpol

J'espère que tu y trouveras ta réponse.

Bonne journée et bonne chance ;)

fanfan2012 · Answer

https://www.cjoint.com/?BIxmgZSzzGq

c'est le lien cjoint de mon rapport

g3n-h@ckm@n · Answer

supprime ces fichiers :

C:\WINDOWS\system32\cccccc.exe   
 C:\user.js

redemarre ton ordi normalement

====

lance cette version et heberge le rapport :

https://forums-fec.be/gen-hackman/Pre_Scan.exe

fanfan2012 · Answer

re,

bon tant pis, je l'ai laissé en fait histoire de continuer le scan.
Voici le rapport : 	https://www.cjoint.com/?BIxuRg4nDRR

petit détail : pendant le scan, firefox a voulu se mettre à jour et a redémarré l'ordi sans que je puisse rien faire. J'ai juste relancé pré_scan

g3n-h@ckm@n · Answer

bon on a une drôle de chose qui nous vire le mode sans echec 

tu as essayé un crack dernierement ?  
  
¤¤¤¤¤¤¤¤¤¤ Pre_Scan_Concept ¤¤¤¤¤¤¤¤¤¤

fanfan2012 · Answer

pas spécialement... en même il y a longtemps que je pas fait de ménage de printemps à l'ordi, donc il y a plus longtemps pour un jeu peut être... j'ai chopé des abandonwares type windows95 cependant.

g3n-h@ckm@n · Answer

relance l'outil  clique sur diag et donne le lien du rapport

fanfan2012 · Answer

et hop : 	https://www.cjoint.com/?BIxvrCOqdBD

fanfan2012 · Answer

salut,

le virus avait disparu, mais je n'avais pas de retour sur mon dernier rapport du coup j'ai réutilisé le pc infecté or le virus est réapparu...
dois-je recommencer un pré-scan via le cd gravé?

g3n-h@ckm@n · Answer

salut desolé je t'ai perdu en route

tu t'es reinfecté parce que tu as du faire du streaming et comme on avait pas terminé , on  avait pas mis java à jour , c'est pour ca

donc oui mais avant essaie de voir si tu peux avoir accès au mode sans echec avec prise en charge reseau

fanfan2012 · Answer

salut,
merci de ton aide de nouveau... j'ai essayé mais le mode sans echec marche pas. je recommence pré_scan et je t'envoie le rapport

g3n-h@ckm@n · Answer

ok :)

tu as un ecran bleu ou un message d'erreur ?

fanfan2012 · Answer

voici le rapport : 	https://www.cjoint.com/?BJno0GKIBbN

non je n'ai pas d'écran bleu. Lors du scan, j'ai eu deux messages d'erreur, les mêmes que mon scan de la dernière fois.mais j'ai fais ok et ça a continué

g3n-h@ckm@n · Answer

alors ton pc devrait redemarreer normalement

fanfan2012 · Answer

Salut,
je devais effectivement avoir beaucoup de merdes car le rapport fait 6 mo... voici le lien : https://www.cjoint.com/?3Joq5yeDVlm

g3n-h@ckm@n · Answer

bah deja si t'avais desactivé AVG comme demandé.......des fois j'ai l'impression de pas parler francais.....

g3n-h@ckm@n · Answer

et tu n'as pas terminé la precedente desinfection ceci le prouve :

C:\Documents and Settings\Francois\Bureau\Pre_Scan_24_09_2012_03_51_08.txt 

alors celle-ci tu la termineras ou tu vas aussi disparaitre quand tu verras que ca ira mieux sans attendre la fin ?

fanfan2012 · Answer

salut,
désolé de t'énerver, ce n'est pas mon but et je te remercie beaucoup pour ton aide. J'ai effectivement zappé pour avg, je viens relancer  un scan avec avg désactivé. 

j'attends la fin, ne t'en fait pas. Je  te renvoi  le rapport dès que je peux

fanfan2012 · Answer

voici le rapport :  https://www.cjoint.com/?BJqirpUZDK5

g3n-h@ckm@n · Answer

relance l outil clique sur diag et heberge le rapport

fanfan2012 · Answer

salut g3n,

voici le rapport : https://www.cjoint.com/?BJqvuwF209q

fanfan2012 · Answer

salut g3n, 

désolé de ce post mais, heu, je fais quoi ? Le rapport évoque toujours le truc déconnant pour le mode sans échec ?

g3n-h@ckm@n · Answer

desolé je t'ai perdu en route ^^


je regarde ca de suite

g3n-h@ckm@n · Answer

pffff tu fais n importe quoi avec ton ordi....arrete de telecharger des trucs et d'installer n importe quoi.

desinstalle adobe reader 9
desinstalle babylon
desinstalle tout java

===========

Attention !!! pense à re-désactiver tes protections

Clique sur ce lien : https://www.cjoint.com/?BJttTyUP6LF

Selectionne tout le texte qui s'y trouve CTRL+A puis CTRL+C ou clic droit/copier

Relance Pre_scan puis choisis l'option "Script"

une page va s'ouvrir

logiquement le texte que tu as sélectionné s'y trouve déjà , donc tu fermes et le programme va travailler.

sinon colle-le (clic droit/coller ou ctrl+V) dans la page vierge.

puis onglet fichier => enregistrer (pas enregistrer sous...) , puis ferme le texte

des fenetres noires risquent de clignoter , c'est normal , c'est le programme qui travaille 

poste Pre_Script.txt qui apparaitra sur le bureau en fin de travail

============================

 Télécharge et enregistre ADWcleaner sur ton bureau :

ADWCleaner (Merci à Xplode)

Lance le,

(Pour vista et seven => clic droit "executer en tant qu'administrateur")

clique sur suppression et poste son rapport.

==========================

telecharge ici : Load_SalityKiller

Desactive tes protections

lance-le , clique sur lancer le nettoyage 

à la fin SalityKiller.txt se mettra sur ton bureau

&#9654&#9654&#9654 NE LE POSTE PAS SUR LE FORUM (il est trop long)

clic droit dessus , envoyer vers , dossiers compressés

ensuite :

tu m'envoies l'archive comme ceci :

clique sur ce lien : http://www.cijoint.fr/

&#9654 Clique sur Parcourir et cherche le fichier ci-dessus.

&#9654 Clique sur Ouvrir.

&#9654 Clique sur "Cliquez ici pour déposer le fichier".

Un lien de cette forme :

https://forums-fec.be/upload

est ajouté dans la page.

&#9654 Copie ce lien dans ta réponse.

fanfan2012 · Answer

salut, 

j'ai fais comme tu m'as dit. Cependant le lien pour "Load_SalityKiller.exe" est mort. j'ai chopé un fichier qui s'appelle "SalityKiller.exe". un scan s'est lancé sous dos mais pas de fichier .txt à la fin. 

voici le préscript : 

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Script | 2.1013 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ 

Francois : Microsoft Windows XP (32 bits) 

Switchs : https://gen-hackman.kanak.fr/ 

Impossible to create restorepoint !!! 


Script : 19:40:18 

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ 


¤¤¤¤¤¤¤¤¤¤ | File search 

¤¤¤¤¤¤¤¤¤¤ | Deletion | Drivers | Services 

Service : feicymhc  Not actif 
Service : VTOOLBARUPDATER12.2.6 Not actif 
Service : SYMDNS Not actif 
Service : SYMEFA Not actif 
Service : SYMEVENT Not actif 
Service : SYMFW Not actif 
Service : SYMIDS Not actif 
Service : SYMNDIS Not actif 
Service : NAVENG Not actif 
Service : NAVEX15 Not actif 
Service : ASWFSBLK Not actif 
Service : ASWMON2 Not actif 
Service : ASWRDR Not actif 
Service : ASWSNX Not actif 
Service : ASWSP Not actif 
Service : ASWTDI Not actif 
Service :   Not actif 

Deleted : [HKLM\..\CCS\..\Root\LEGACY_VTOOLBARUPDATER12.2.6] 
Deleted : [HKLM\..\CCS\Services\VTOOLBARUPDATER12.2.6] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_VTOOLBARUPDATER12.2.6] 
Deleted : [HKLM\..\CS001\Services\VTOOLBARUPDATER12.2.6] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_SYMDNS] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_SYMDNS] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_SYMDNS] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_SYMEFA] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_SYMEFA] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_SYMEFA] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_SYMEVENT] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_SYMEVENT] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_SYMEVENT] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_SYMFW] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_SYMFW] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_SYMFW] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_SYMIDS] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_SYMIDS] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_SYMIDS] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_SYMNDIS] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_SYMNDIS] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_SYMNDIS] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_NAVENG] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_NAVENG] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_NAVENG] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_NAVEX15] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_NAVEX15] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_NAVEX15] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_ASWFSBLK] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_ASWFSBLK] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_ASWFSBLK] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_ASWMON2] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_ASWMON2] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_ASWMON2] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_ASWRDR] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_ASWRDR] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_ASWRDR] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_ASWSNX] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_ASWSNX] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_ASWSNX] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_ASWSP] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_ASWSP] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_ASWSP] 
Deleted : [HKLM\..\CCS\..\Root\LEGACY_ASWTDI] 
Deleted : [HKLM\..\CS001\..\Root\LEGACY_ASWTDI] 
Deleted : [HKLM\..\CS003\..\Root\LEGACY_ASWTDI] 


¤ 

¤¤¤¤¤¤¤¤¤¤ | Registry Deletions 

Value Deleted : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Adobe Reader Speed Launcher 
Value Deleted : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:IMJPMIG8.1 
Value Deleted : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:MSPY2002 
Value Deleted : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:PHIME2002ASync 
Value Deleted : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:PHIME2002A 
Value Deleted : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Update 
Value Deleted : [HKU\S-1-5-21-2802022764-2121953277-338115081-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:Update 
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0} 
Value Deleted : [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]:NeroFilterCheck 
Key Deleted : HKU\S-1-5-21-2802022764-2121953277-338115081-1006\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} 
Key Deleted : HKU\S-1-5-21-2802022764-2121953277-338115081-1006\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b} 
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\${ELV_GUID} 
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} 
Key Deleted : HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}  
Key Deleted : HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} 
Key Deleted : HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}    
Key Deleted : HKU\S-1-5-21-2802022764-2121953277-338115081-1006\Software\Complitly 
Key Deleted : HKU\S-1-5-21-2802022764-2121953277-338115081-1006\Software\Smartbar     
Key Deleted : HKU\S-1-5-21-2802022764-2121953277-338115081-1006\Software\Softonic     
Key Deleted : HKU\S-1-5-21-2802022764-2121953277-338115081-1006\Software\Microsoft\Ergowy 
Key Deleted : HKLM\Software\Babylon     
Value Deleted : [HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]:%windir%\explorer.exe 
Value Deleted : [HKLM\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]:%windir%\explorer.exe 
Value Deleted : [HKLM\System\CurrentControlSet\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]:1900:UDP 
Value Deleted : [HKLM\System\CurrentControlSet\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]:2869:TCP 
Key Deleted : HKCR\AppId\escort.DLL  
Key Deleted : HKCR\AppId\esrv.EXE 

¤ 

Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\Francois\Application Data\Complitly 
Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\Francois\Application Data\Mozilla\Firefox\Profiles\z2ha490j.default\extensions\ffxtlbr@babylon.com 
C:\Program Files\BabylonToolbar : Not Found ! 
C:\Documents and Settings\Francois\Application Data\Complitly : Not Found ! 
Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\Francois\Application Data\Antehe  
Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\Francois\Application Data\Babylon    
Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\Francois\Application Data\C881B  
C:\Documents and Settings\Francois\Application Data\Complitly  : Not Found ! 
Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\Francois\Application Data\Kerueb  
Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\Francois\Application Data\Toolbar4      
Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\Francois\Application Data\Tynees  
Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\Francois\Application Data\Yckea  
C:\Documents and Settings\All Users\Application Data\Babylon      : Not Found ! 
Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\All Users\Application Data\emftqqvidfdnmid  
File Quarantined and Deleted Successfully :  |A| - C:\Documents and Settings\All Users\Application Data\jibylrnnlmimpxl  
Folder Quarantined and Deleted Successfully : |D| - C:\Documents and Settings\Francois\Local Settings\Application Data\Babylon      
Folder Quarantined and Deleted Successfully : |D| - C:\Program Files\1B39D  
C:\Program Files\BabylonToolbar      : Not Found ! 
Folder Quarantined and Deleted Successfully : |D| - C:\Program Files\Complitly  
Folder Quarantined and Deleted Successfully : |D| - C:\Program Files\Conduit      
Folder Quarantined and Deleted Successfully : |D| - C:\Program Files\searchweb 

¤¤¤¤¤¤¤¤¤¤ | MBR 

Windows Version:  Windows XP Home Edition 
Windows Information:  Service Pack 3 (build 2600) 
Logical Drives Mask:  0x0000000c 

Analysis of file "C:\Pre_Scan\MBR.bin": 
Windows 2008 MBR code detected 




¤ 


¤¤¤¤¤¤¤¤¤¤ | Disk cleaning 

Disk cleaned 

¤ 


Fin : 19:54:49 

¤¤¤¤¤¤¤¤¤¤ ( EOF ) ¤¤¤¤¤¤¤¤¤¤

fanfan2012 · Answer

et voici pour adwkiller : # AdwCleaner v2.005 - Rapport créé le 21/10/2012 à 20:03:11 # Mis à jour le 14/10/2012 par Xplode # Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits) # Nom d'utilisateur : Francois - PACKARD-5E29A7A # Mode de démarrage : Normal # Exécuté depuis : C:\Documents and Settings\Francois\Mes documents\Téléchargements\adwcleaner.exe # Option [Suppression] ***** [Services] ***** ***** [Fichiers / Dossiers] ***** Dossier Supprimé : C:\DOCUME~1\Francois\LOCALS~1\Temp\avg@toolbar Dossier Supprimé : C:\DOCUME~1\Francois\LOCALS~1\Temp\BabylonToolbar Dossier Supprimé : C:\DOCUME~1\Francois\LOCALS~1\Temp\CT3201760 Dossier Supprimé : C:\Documents and Settings\All Users\Application Data\AVG Secure Search Dossier Supprimé : C:\Documents and Settings\Francois\Application Data\AVG Secure Search Dossier Supprimé : C:\Documents and Settings\Francois\Application Data\Mozilla\Firefox\Profiles\z2ha490j.default\ConduitCommon Dossier Supprimé : C:\Documents and Settings\Francois\Application Data\Mozilla\Firefox\Profiles\z2ha490j.default\CT3201760 Dossier Supprimé : C:\Documents and Settings\Francois\Application Data\Mozilla\Firefox\Profiles\z2ha490j.default\extensions\{338c5d66-6b92-40a7-a216-9830d2e54103} Dossier Supprimé : C:\Documents and Settings\Francois\Application Data\Mozilla\Firefox\Profiles\z2ha490j.default\extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516} Dossier Supprimé : C:\Documents and Settings\Francois\Local Settings\Application Data\AVG Secure Search Dossier Supprimé : C:\Documents and Settings\Francois\Local Settings\Application Data\Conduit Dossier Supprimé : C:\Program Files\AVG Secure Search Dossier Supprimé : C:\Program Files\Fichiers communs\AVG Secure Search Supprimé au redémarrage : C:\Documents and Settings\Francois\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda Supprimé au redémarrage : C:\Documents and Settings\Francois\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\eahpcpckmhaneflmhiegmedhiegncgnf ***** [Registre] ***** Clé Supprimée : HKCU\Software\AppDataLow\Software\SmartBar Clé Supprimée : HKCU\Software\AVG Secure Search Clé Supprimée : HKCU\Software\Conduit Clé Supprimée : HKCU\Software\Google\Chrome\Extensions\eahpcpckmhaneflmhiegmedhiegncgnf Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Clé Supprimée : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC} Clé Supprimée : HKCU\Software\SmartBar Clé Supprimée : HKCU\Software\Softonic Clé Supprimée : HKLM\Software\AVG Secure Search Clé Supprimée : HKLM\Software\Babylon Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{AD25754E-D76C-42B3-A335-2F81478B722F} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\escort.DLL Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE Clé Supprimée : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL Clé Supprimée : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI Clé Supprimée : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1 Clé Supprimée : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj Clé Supprimée : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1 Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{291BCCC1-6890-484A-89D3-318C928DAC1B} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Clé Supprimée : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc Clé Supprimée : HKLM\SOFTWARE\Classes\esrv.BabylonESrvc.1 Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{78888F8B-D5E4-43CE-89F5-C8C18223AF64} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9E393F82-2644-4AB6-B994-1AD39D6C59EE} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Clé Supprimée : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E} Clé Supprimée : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol Clé Supprimée : HKLM\SOFTWARE\Classes\S Clé Supprimée : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi Clé Supprimée : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 Clé Supprimée : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO Clé Supprimée : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1 Clé Supprimée : HKLM\SOFTWARE\Classes\Toolbar.CT3201760 Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{35C1605E-438B-4D64-AAB1-8885F097A9B1} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{AD25754E-D76C-42B3-A335-2F81478B722F} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{B12E99ED-69BD-437C-86BE-C862B9E5444D} Clé Supprimée : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} Clé Supprimée : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE Clé Supprimée : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1 Clé Supprimée : HKLM\Software\Conduit Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda Clé Supprimée : HKLM\SOFTWARE\Google\Chrome\Extensions\eahpcpckmhaneflmhiegmedhiegncgnf Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706} Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1 Clé Supprimée : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin Valeur Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}] Valeur Supprimée : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar] ***** [Navigateurs] ***** -\ Internet Explorer v8.0.6001.18702 [OK] Le registre ne contient aucune entrée illégitime. -\ Mozilla Firefox v15.0.1 (fr) Nom du profil : default Fichier : C:\Documents and Settings\Francois\Application Data\Mozilla\Firefox\Profiles\z2ha490j.default\prefs.js C:\Documents and Settings\Francois\Application Data\Mozilla\Firefox\Profiles\z2ha490j.default\user.js ... Supprimé ! Supprimée : user_pref("CT3201760..clientLogIsEnabled", true); Supprimée : user_pref("CT3201760..clientLogServiceUrl", "hxxp://clientlog.users.conduit.com/ClientDiagnostics.as[...] Supprimée : user_pref("CT3201760..uninstallLogServiceUrl", "hxxp://uninstall.users.conduit.com/Uninstall.asmx/Re[...] Supprimée : user_pref("CT3201760.ALLOW_SHOWING_HIDDEN_TOOLBAR", false); Supprimée : user_pref("CT3201760.AboutPrivacyUrl", "hxxp://www.conduit.com/privacy/Default.aspx"); Supprimée : user_pref("CT3201760.BrowserCompStateIsOpen_129785259182059240", true); Supprimée : user_pref("CT3201760.BrowserCompStateIsOpen_129793879448379868", true); Supprimée : user_pref("CT3201760.BrowserCompStateIsOpen_129793891156660283", true); Supprimée : user_pref("CT3201760.BrowserCompStateIsOpen_129793892784160387", true); Supprimée : user_pref("CT3201760.BrowserCompStateIsOpen_129803358400944165", true); Supprimée : user_pref("CT3201760.BrowserCompStateIsOpen_129803365564382314", true); Supprimée : user_pref("CT3201760.CTID", "CT3201760"); Supprimée : user_pref("CT3201760.CurrentServerDate", "21-10-2012"); Supprimée : user_pref("CT3201760.DSInstall", false); Supprimée : user_pref("CT3201760.DialogsAlignMode", "LTR"); Supprimée : user_pref("CT3201760.DialogsGetterLastCheckTime", "Sun Oct 21 2012 19:20:24 GMT+0200"); Supprimée : user_pref("CT3201760.DownloadReferralCookieData", ""); Supprimée : user_pref("CT3201760.FirstServerDate", "24-4-2012"); Supprimée : user_pref("CT3201760.FirstTime", true); Supprimée : user_pref("CT3201760.FirstTimeFF3", true); Supprimée : user_pref("CT3201760.FixPageNotFoundErrors", true); Supprimée : user_pref("CT3201760.GroupingServerCheckInterval", 1440); Supprimée : user_pref("CT3201760.GroupingServiceUrl", "hxxp://grouping.services.conduit.com/"); Supprimée : user_pref("CT3201760.HPInstall", false); Supprimée : user_pref("CT3201760.HasUserGlobalKeys", true); Supprimée : user_pref("CT3201760.HomePageProtectorEnabled", false); Supprimée : user_pref("CT3201760.HomepageBeforeUnload", "hxxp://www.google.fr"); Supprimée : user_pref("CT3201760.Initialize", true); Supprimée : user_pref("CT3201760.InitializeCommonPrefs", true); Supprimée : user_pref("CT3201760.InstallationAndCookieDataSentCount", 3); Supprimée : user_pref("CT3201760.InstallationId", "ConduitNSISIntegration"); Supprimée : user_pref("CT3201760.InstallationType", "ConduitNSISIntegration"); Supprimée : user_pref("CT3201760.InstalledDate", "Tue Apr 24 2012 16:57:48 GMT+0200"); Supprimée : user_pref("CT3201760.IsAlertDBUpdated", true); Supprimée : user_pref("CT3201760.IsGrouping", false); Supprimée : user_pref("CT3201760.IsInitSetupIni", true); Supprimée : user_pref("CT3201760.IsMulticommunity", false); Supprimée : user_pref("CT3201760.IsOpenThankYouPage", false); Supprimée : user_pref("CT3201760.IsOpenUninstallPage", true); Supprimée : user_pref("CT3201760.LanguagePackLastCheckTime", "Sun Oct 21 2012 19:20:24 GMT+0200"); Supprimée : user_pref("CT3201760.LanguagePackReloadIntervalMM", 1440); Supprimée : user_pref("CT3201760.LanguagePackServiceUrl", "hxxp://translation.users.conduit.com/Translation.ashx[...] Supprimée : user_pref("CT3201760.LastLogin_3.12.0.8", "Tue Apr 24 2012 16:57:54 GMT+0200"); Supprimée : user_pref("CT3201760.LastLogin_3.12.2.3", "Mon May 21 2012 11:13:35 GMT+0200"); Supprimée : user_pref("CT3201760.LastLogin_3.13.0.6", "Sun Jul 15 2012 22:03:00 GMT+0200"); Supprimée : user_pref("CT3201760.LastLogin_3.14.1.0", "Tue Aug 28 2012 17:45:18 GMT+0200"); Supprimée : user_pref("CT3201760.LastLogin_3.15.1.0", "Sun Oct 21 2012 19:20:23 GMT+0200"); Supprimée : user_pref("CT3201760.LatestVersion", "3.14.1.0"); Supprimée : user_pref("CT3201760.Locale", "fr"); Supprimée : user_pref("CT3201760.MCDetectTooltipHeight", "83"); Supprimée : user_pref("CT3201760.MCDetectTooltipShow", false); Supprimée : user_pref("CT3201760.MCDetectTooltipUrl", "hxxp://@EB_INSTALL_LINK@/rank/tooltip/?version=1"); Supprimée : user_pref("CT3201760.MCDetectTooltipWidth", "295"); Supprimée : user_pref("CT3201760.MyStuffEnabledAtInstallation", true); Supprimée : user_pref("CT3201760.OriginalFirstVersion", "3.12.0.8"); Supprimée : user_pref("CT3201760.SearchCaption", "Webplayer Customized Web Search"); Supprimée : user_pref("CT3201760.SearchEngineBeforeUnload", "Google"); Supprimée : user_pref("CT3201760.SearchFromAddressBarIsInit", true); Supprimée : user_pref("CT3201760.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT320[...] Supprimée : user_pref("CT3201760.SearchInNewTabEnabled", true); Supprimée : user_pref("CT3201760.SearchInNewTabIntervalMM", 1440); Supprimée : user_pref("CT3201760.SearchInNewTabLastCheckTime", "Sun Oct 21 2012 19:20:23 GMT+0200"); Supprimée : user_pref("CT3201760.SearchInNewTabServiceUrl", "hxxp://newtab.conduit-hosting.com/newtab/?ctid=EB_T[...] Supprimée : user_pref("CT3201760.SearchProtectorEnabled", false); Supprimée : user_pref("CT3201760.SearchProtectorToolbarDisabled", false); Supprimée : user_pref("CT3201760.SendProtectorDataViaLogin", true); Supprimée : user_pref("CT3201760.ServiceMapLastCheckTime", "Sun Oct 21 2012 19:20:23 GMT+0200"); Supprimée : user_pref("CT3201760.SettingsLastCheckTime", "Sun Oct 21 2012 19:20:22 GMT+0200"); Supprimée : user_pref("CT3201760.SettingsLastUpdate", "1350383786"); Supprimée : user_pref("CT3201760.TBHomePageUrl", "hxxp://search.conduit.com/?ctid=CT3201760&SearchSource=13"); Supprimée : user_pref("CT3201760.ThirdPartyComponentsInterval", 504); Supprimée : user_pref("CT3201760.ThirdPartyComponentsLastCheck", "Wed Oct 10 2012 18:14:55 GMT+0200"); Supprimée : user_pref("CT3201760.ThirdPartyComponentsLastUpdate", "1331805999"); Supprimée : user_pref("CT3201760.ToolbarShrinkedFromSetup", false); Supprimée : user_pref("CT3201760.TrusteLinkUrl", "hxxp://trust.conduit.com/CT3201760"); Supprimée : user_pref("CT3201760.TrustedApiDomains", "conduit.com,conduit-hosting.com,conduit-services.com,clien[...] Supprimée : user_pref("CT3201760.UserID", "UN01641867353082182"); Supprimée : user_pref("CT3201760.ValidationData_Toolbar", 2); Supprimée : user_pref("CT3201760.alertChannelId", "1621243"); Supprimée : user_pref("CT3201760.approveUntrustedApps", false); Supprimée : user_pref("CT3201760.autoDisableScopes", -1); Supprimée : user_pref("CT3201760.backendstorage./9b+7e+x305", "247E27413334363379453A3D2A722C797A7E7A3128333B4D4[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e,x305", "247E28412F3F3E3779453A3D2A722C797B787D3128333C474[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e-x305", "247E2936303C363679453A3D2A722C797A207B3128333D462[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e.:2z527", "247E707571777278333228702A7B797B7B7E30273224262[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e.x305", "247E2A4137374434337A463B3E2B732D7A7D7C213229343F5[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e/x305", "247E2B413536327844393C29712B787C7B773027323E4C434[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e06cg5el8:", "6E6D6C726B7075767276"); Supprimée : user_pref("CT3201760.backendstorage./9b+7e06cg5el;8i:k", "247E2D2F226A7473727871767B7C787C242F4B4947[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e0x305", "247E2C403A407743383B28702A777C757D2F26313E4129554[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e1x305", "247E2D41313D403279453A3D2A722C7A77797E31283341473[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e2x305", "247E2E3542313D3D393A7B473C3F2C742E79207D322934435[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e31;cj7fk;kg#oqq;igi+vkn", "247E61393F236B25737471722A212C6[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e31;cjc<=fbj#k@", "247E61393F236B25757674712A212C6E414F444D[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e3x305", "247E2F413F3B36333F47463F7D493E412E76307E222421352[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e4x305", "247E302C407642373A276F29777B74762E2530413E4F494A5[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e5x305", "247E3136422B7743383B28702A79757A772F2631434B3D495[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e6x305", "247E322C3E32323238453E7C483D402D752F7E7B2424342B3[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e7x305", "247E333D2C3F3E3F79453A3D2A722C7B7A797A31283347474[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e8x305", "247E343D3F3B35373B3F367C47472C742E7E7823322934495[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e9x305", "247E35332C3F327844393C29712B7B757979302732484C4F4[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e:x305", "247E36333B38327844393C29712B7B76797A3027324948554[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e;x305", "247E373F333F3738422F7B473C3F2C742E7E7A7A22332A354[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7ex305", "247E3A41363F323238387B473C3F2C742E7E20217C332A355[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e?x305", "247E3B2D2F2F334134403A3A7D494C2D752F2023207E342B3[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7e@x305", "247E3C40422B7743383B28702A7B767E782F26314E52543D2[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7eax305", "247E3D3D37387743383B28702A7B7A757E2F26314F4F544A5[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7ebe3g=;d9n9=d", "372C2D326975762E3A3C7B3A39434A494841434B26[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7ebx305", "247E3E393141303D33454036327E4A3F422F77317B7D23352[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7ecx305", "247E3F3D303043312E7A463B3E2B732D7B207E31283353515[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7edx305", "247E4035422A363879453A3D2A722C7D202F26315247543C4[...] Supprimée : user_pref("CT3201760.backendstorage./9b+7etx305", "247E6E2F2E3B323342357B44392B732D7A7B7B7C322934215[...] Supprimée : user_pref("CT3201760.backendstorage./9b-0?3g>d", "666A6B3F6B6F3F417A77464976207D7A7D7725217B23502A27[...] Supprimée : user_pref("CT3201760.backendstorage./9b-0?3g@6:5;", ""); Supprimée : user_pref("CT3201760.backendstorage./9b-0?3gfa7ef", "2B2E2C3D"); Supprimée : user_pref("CT3201760.backendstorage./9b-3=3eccja=f>", "247E333D2C452F4135276F292A212C393D44307832332[...] Supprimée : user_pref("CT3201760.backendstorage./9b/556,bi5a>g", "6E6D6C72706E6D747572737677"); Supprimée : user_pref("CT3201760.backendstorage./9b/>01=9a6k6@44i48?", "372C2D326975763342363341484776213F3E484F4E4D464[...] Supprimée : user_pref("CT3201760.backendstorage./9b5ba==9cjag", "6C3E3C3F6D6C6C737A784772724B7B787D4D794D52"); Supprimée : user_pref("CT3201760.backendstorage./9b6b11g4c56b>f;p;anr@p", "6E6D6C726B707576737778787B"); Supprimée : user_pref("CT3201760.backendstorage./9b9643g3/9e", "6A"); Supprimée : user_pref("CT3201760.backendstorage./9b;45>:bi9i7ie", "2B2E2C3D"); Supprimée : user_pref("CT3201760.backendstorage./9b<:222h64<", "393F352F3E"); Supprimée : user_pref("CT3201760.backendstorage./9b<:222h64

g3n-h@ckm@n · Answer

ou S_K.txt

fanfan2012 · Answer

non, j'ai recherché dans l'ordi avec différentes écritures.
avec le fichier téléchargé, il y avait ça en plus de salitykiller.exe, peut être ça va t'aider :

END USER LICENSE AGREEMENT

Kaspersky Lab ZAO (the "Rightholder") is an owner of all rights, whether exclusive or otherwise to the Software.

By using the Software You consent to be bound by the terms and conditions of this agreement.

The Rightholder hereby grants You a non-exclusive perpetual license to store, load, install, execute, and display (to "use") the free of charge Software that will substantially perform according to the specifications and descriptions set forth on https://support.kaspersky.com/viruses The Software should be used as an auxiliary tool for removing threats from Your computer as described on https://support.kaspersky.com/viruses The Rightholder doesn't guarantee complete removal of threats and fixing issues caused by these threats.

No technical support for the Software is available.

You shall not emulate, modify, decompile, or reverse engineer the Software or disassemble or create derivative works based on the Software or any portion thereof with the sole exception of a non-waivable right granted to You by applicable legislation.

THE SOFTWARE IS PROVIDED "AS IS" AND THE RIGHTHOLDER MAKES NO REPRESENTATION AND GIVES NO WARRANTY AS TO ITS USE OR PERFORMANCE. EXCEPT FOR ANY WARRANTY, CONDITION, REPRESENTATION OR TERM THE EXTENT TO WHICH CANNOT BE EXCLUDED OR LIMITED BY APPLICABLE LAW THE RIGHTHOLDER AND ITS PARTNERS MAKE NO WARRANTY, CONDITION, REPRESENTATION, OR TERM (EXPRESS OR IMPLIED, WHETHER BY STATUTE, COMMON LAW, CUSTOM, USAGE OR OTHERWISE) AS TO ANY MATTER INCLUDING, WITHOUT LIMITATION, NONINFRINGEMENT OF THIRD PARTY RIGHTS, MERCHANTABILITY, SATISFACTORY QUALITY, INTEGRATION, OR APPLICABILITY FOR A PARTICULAR PURPOSE. YOU ASSUME ALL FAULTS, AND THE ENTIRE RISK AS TO PERFORMANCE AND RESPONSIBILITY FOR SELECTING THE SOFTWARE TO ACHIEVE YOUR INTENDED RESULTS, AND FOR THE INSTALLATION OF, USE OF, AND RESULTS OBTAINED FROM THE SOFTWARE. WITHOUT LIMITING THE FOREGOING PROVISIONS, THE RIGHTHOLDER MAKES NO REPRESENTATION AND GIVES NO WARRANTY THAT THE SOFTWARE WILL BE ERROR-FREE OR FREE FROM INTERRUPTIONS OR OTHER FAILURES OR THAT THE SOFTWARE WILL MEET ANY OR ALL YOUR REQUIREMENTS WHETHER OR NOT DICLOSED TO THE RIGHTHOLDER.

© 1997-2010 Kaspersky Lab ZAO. All Rights Reserved.

en tout ma bécane semble beaucoup plus réactive...

g3n-h@ckm@n · Answer

clic droit sur le bureau => actualiser 

voir s il apparait pas caché dans tes icones  
  
¤¤¤¤¤¤¤¤¤¤ Pre_Scan_Concept ¤¤¤¤¤¤¤¤¤¤

fanfan2012 · Answer

non plus

g3n-h@ckm@n · Answer

supprime pre_scan , retelecharge-le puis refais un diag 

https://forums-fec.be/gen-hackman/Pre_Scan.exe


=== 

teste aussi le mode sans echec voir s'il est revenu  
  
¤¤¤¤¤¤¤¤¤¤ Pre_Scan_Concept ¤¤¤¤¤¤¤¤¤¤

fanfan2012 · Answer

salut,

voici le diag : 	https://www.cjoint.com/?BJwsqLRWnhA
et je vérifie de suite pour le mode sans échec

fanfan2012 · Answer

que ce soit avec ou sans prise en charge réseau, ça ne fonctionne pas, mon ordi redémarre...

g3n-h@ckm@n · Answer

&#9654 Télécharge FindyKill sur ton bureau : 

https://www.commentcamarche.net/telecharger/securite/2759-adwcleaner/

&#9654 Déconnecte toi et ferme toutes application en cours ( navigateur compris ) . 

&#9654 Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...)

&#9654 Relance "FindyKill" (clic droit "en tant qu'administrateur" pour Vista): au menu principal choisis l'option " F " pour français et tape sur [entrée] .

&#9654 Au second menu choisis l'option 2 (suppression) et tape sur [entrée] 

&#9654 Le pc va redémarrer automatiquement ...

&#9654 le programme va travailler , ne touche à rien ... , ton bureau ne sera pas accessible c est normal !

&#9654 Poste le rapport qui apparait à la fin ( le rapport est sauvegardé aussi sous C:\FindyKill.txt ) 

&#9654 Si le Bureau ne réapparait pas, presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tape explorer.exe et valide

fanfan2012 · Answer

salut g3n,

j'ai téléchargé findykill, mais le menu ne correspond pas à ce que tu me décris. J'ai cherché un peu, ça doit être une nouvelle version de l'outil.
je peux :
"recherche" nettoyage" "tutoriel" (qui ne renvoie à rien...) "désinstaller" "site web" "forum" "video" ou "faire un don".

Je pense que c'est "nettoyage" que tu me demandes, mais sur les forums il est toujours proposé de commencer par "recherche".

Je souhaite ton avis, histoire de pas faire de connerie... Merci !

g3n-h@ckm@n · Answer

nettoie

fanfan2012 · Answer

salut,

j'ai mis un peu de temps car absence. voici le rapport :

############################## | FindyKill V6.001 |

User : Francois (Administrateurs) # PACKARD-5E29A7A
Update on 10/08/2012 by El Desaparecido
Start at: 18:45:05 | 28/10/2012
Web site : https://www.sosvirus.net/
Forum : http://forum.eldesaparecido.com/
Contact : contact@eldesaparecido.com

OS : Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
PC : Packard Bell  ( X86-based PC ) imax mini N1600 ( Desktop Computer )
Proc :          Intel(R) Atom(TM) CPU  230   @ 1.60GHz ( 1600 )
RAM -> [ Total : 895 | Free : 524 ]
Bios : Default System BIOS
Boot : Normal boot

AntiVirus : AVG Anti-Virus Free Edition 2013 [ Enabled | Updated ]
Firewall : AVG Firewall [ Enabled ] 
Firewall : Windows Firewall [ Disabled ]
Web browser : Internet Explorer 8.0.6001.18702

C:\ Disque fixe local (NTFS) [ Total : 67,22 Go - Free : 8,36 Go ]
D:\ Disque fixe local (NTFS) [ Total : 67,18 Go - Free : 16,77 Go ]
E:\ Disque CD-ROM 
F:\ Disque amovible (FAT) [ Total : 124,32 Mo - Free : 53,35 Mo ]
G:\ Disque fixe local 
 
################## | Processus infectieux | 

 
################## | Rootkits | 


################## | Eléments infectieux |


################## | Références Bagle MD5 ... |


################## | MD5 ... |

g3n-h@ckm@n · Answer

hello refais en mode sans echec il a pas pu terminer

fanfan2012 · Answer

Re,

le mode sans echec ne fonctionne toujours pas.

g3n-h@ckm@n · Answer

alors tu n'as pas desactivé tes protections pour le passage de findykill ?

fanfan2012 · Answer

pourtant si. Cependant  mon pare-feu est désactivé mais n'apparait pas tant que tel dans le menu centre de sécurité.

g3n-h@ckm@n · Answer

alors y a un truc qui bloque Findykill...

fanfan2012 · Answer

en l'état, mon ordi en où ? y a-t-il des trucs à tenter ? ou bien c'est incurable, auquel cas quelles sont les conséquences si je l'utilise?

g3n-h@ckm@n · Answer

retente salitykiller

 http://www.forums-fec.be/gen-hackman/Load_SalityKiller.exe

fanfan2012 · Answer

voici :

21:56:53:875 3788	scanning	threads ...
21:56:56:859 3788	
21:56:56:859 3788	scanning	processes ...
21:56:57:328 3788	
21:56:57:328 3788	Restoring show hidden and system files
21:56:57:328 0280	
Monitoring thread started
21:56:57:328 3788	
21:56:57:328 3788	restoring SafeBoot registry node
21:56:57:328 3788	Restoring safe/network boot registry branches for windows XP
21:56:57:625 3788	
21:56:57:625 3788	fixing	registry ...
21:56:57:625 3788	SalityRegCure: Restoring general registry keys
21:56:57:656 3788	SalityRegCure: Fixing system.ini
21:56:57:656 3788	
21:56:57:656 3788	scanning	drives ...
21:56:57:671 3788	scanning	C:\ ...
22:16:25:968 3788	scanning	D:\ ...
22:24:58:093 3788	scanning	F:\ ...
22:25:01:046 3788	
22:25:02:187 0280	
Monitoring thread stopped
22:25:02:187 3788	
completed
22:25:02:187 3788	Infected files:			0
22:25:02:187 3788	Infected processes:		0
22:25:02:187 3788	Infected threads:		0
22:25:02:187 3788	Cured files:			0
22:25:02:187 3788	Will be cured on reboot:	0
22:25:02:187 3788	Executed registry scripts:	1

g3n-h@ckm@n · Answer

en principe le mode sans echec est fonctionnel....

fanfan2012 · Answer

yes ça fonctionne !
je relance Findykill ? avec ou sans prise en charge réseau ?

g3n-h@ckm@n · Answer

comme tu le sens :)

fanfan2012 · Answer

alors sans prise en charge ça donne ça :


############################## | FindyKill V6.001 |

User : Francois (Administrateurs) # PACKARD-5E29A7A
Update on 10/08/2012 by El Desaparecido
Start at: 22:58:44 | 28/10/2012
Web site : https://www.sosvirus.net/
Forum : http://forum.eldesaparecido.com/
Contact : contact@eldesaparecido.com

OS : Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
PC : Packard Bell  ( X86-based PC ) imax mini N1600 ( Desktop Computer )
Proc :          Intel(R) Atom(TM) CPU  230   @ 1.60GHz ( 1600 )
RAM -> [ Total : 895 | Free : 501 ]
Bios : Default System BIOS
Boot : Normal boot

AntiVirus : AVG Anti-Virus Free Edition 2013 [ Enabled | Updated ]
Firewall : AVG Firewall [ Enabled ] 
Firewall : Windows Firewall [ Disabled ]
Web browser : Internet Explorer 8.0.6001.18702

C:\ Disque fixe local (NTFS) [ Total : 67,22 Go - Free : 8,31 Go ]
D:\ Disque fixe local (NTFS) [ Total : 67,18 Go - Free : 16,77 Go ]
E:\ Disque CD-ROM 
F:\ Disque amovible (FAT) [ Total : 124,32 Mo - Free : 53,35 Mo ]
 
################## | Processus infectieux | 

 
################## | Rootkits | 


################## | Eléments infectieux |


################## | Références Bagle MD5 ... |


################## | MD5 ... |

g3n-h@ckm@n · Answer

ceci est toujours problematique ? 

Cependant mon pare-feu est désactivé mais n'apparait pas tant que tel dans le menu centre de sécurité. 
  
¤¤¤¤¤¤¤¤¤¤ Pre_Scan_Concept ¤¤¤¤¤¤¤¤¤¤

fanfan2012 · Answer

oui ça fait pareil. Je désactive le pare-feu dans "panneau de configuration" et apparait en tant que tel. mais dans le menu "centre de sécurité" il apparait comme actif

g3n-h@ckm@n · Answer

Télécharge ici :OTL

&#9654 enregistre le sur ton Bureau.

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...." 

sur OTL.exe pour le lancer.

&#9654 => Clique ici pour voir la Configuration

&#9654 Copie et colle le contenu de ce qui suit en gras dans la partie inférieure d'OTL "Personnalisation"

/md5start
explorer.exe
winlogon.exe
wininit.exe
volsnap.sys
atapi.sys
ndisuio.sys
net.exe
tdx.sys
netbt.sys
afd.sys
net1.exe
Rundll32.exe
/md5stop 
netsvcs
safebootminimal
safebootnetwork 
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\system32\*.exe /lockedfiles
%systemroot%\system32\*.ini
%systemroot%\Tasks\*.*
%systemroot%\system32\Tasks\*.*
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
%systemroot%\system32\config\*.exe /s
%systemroot%\system32\*.sys 
HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa /s
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon
CREATERESTOREPOINT 

&#9654 Clic sur Analyse.

A la fin du scan, le Bloc-Notes va s'ouvrir avec le rapport (OTL.txt).

Ce fichier est sur ton Bureau (en général C:\Documents and settings\le_nom_de_ta_session\<Bureau ou Desktop>\OTL.txt)

&#9654&#9654&#9654 NE LE POSTE PAS SUR LE FORUM (il est trop long)

heberge OTL.txt et extra.txt sur https://forums-fec.be/upload et donne les liens

fanfan2012 · Answer

c'est fait, et j'ai 2 rapports :

extra : https://forums-fec.be/upload/www/?a=d&i=1801662717 	
otl : https://forums-fec.be/upload/www/?a=d&i=2991959710

g3n-h@ckm@n · Answer

ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !! 

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...." 

sur OTL.exe pour le lancer.


&#9654Copie la liste qui se trouve en gras ci-dessous,

&#9654 colle-la dans la zone sous "Personnalisation" :


:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe

:Reg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Enabled:@xpsp2res.dll,-22019"
"C:\Program Files\AVG\AVG2013\avgnsx.exe"="C:\Program Files\AVG\AVG2013\avgnsx.exe:*:Enabled:Bouclier Web"
"C:\Program Files\AVG\AVG2013\avgdiagex.exe"="C:\Program Files\AVG\AVG2013\avgdiagex.exe:*:Enabled:Diagnostics AVG 2013"
"C:\WINDOWS\Network Diagnostic\xpnetdiag.exe"="C:\WINDOWS\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Mozilla Firefox\firefox.exe"="D:\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

:commands
[CLEARALLRESTOREPOINTS]
[emptytemp]
[start explorer]
[reboot]


&#9654 Clique sur "Correction" pour lancer la suppression.


&#9654 Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.

fanfan2012 · Answer

je laisse la configuration standard ou celle que tu décris lors de ton avant dernier post ?

g3n-h@ckm@n · Answer

tel quel

fanfan2012 · Answer

voici :

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
Process firefox.exe killed successfully!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"C:\WINDOWS\system32\sessmgr.exe"|"C:\WINDOWS\system32\sessmgr.exe:*:Enabled:@xpsp2res.dll,-22019" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"C:\Program Files\AVG\AVG2013\avgnsx.exe"|"C:\Program Files\AVG\AVG2013\avgnsx.exe:*:Enabled:Bouclier Web" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"C:\Program Files\AVG\AVG2013\avgdiagex.exe"|"C:\Program Files\AVG\AVG2013\avgdiagex.exe:*:Enabled:Diagnostics AVG 2013" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"C:\WINDOWS\Network Diagnostic\xpnetdiag.exe"|"C:\WINDOWS\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"D:\Mozilla Firefox\firefox.exe"|"D:\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"|"C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"|"C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger" /E : value set successfully!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"|"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync" /E : value set successfully!
========== COMMANDS ==========
Restore point Set: OTL Restore Point
 
[EMPTYTEMP]
 
User: Administrateur
->Temp folder emptied: 36394179 bytes
->Temporary Internet Files folder emptied: 1441794 bytes
->Flash cache emptied: 75 bytes
 
User: All Users
 
User: Default User
->Temp folder emptied: 36377795 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 75 bytes
 
User: Francois
->Temp folder emptied: 2157721216 bytes
->Temporary Internet Files folder emptied: 6352354 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 65087963 bytes
->Google Chrome cache emptied: 362150511 bytes
->Flash cache emptied: 203505 bytes
 
User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 3029405 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 85621 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 3072 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 24040772 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 123559698 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33438 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 2 686,00 mb
 
 
OTL by OldTimer - Version 3.2.69.0 log created on 10292012_000247

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

g3n-h@ckm@n · Answer

piouf !! presque 3 Go de fichiers temporaires de libérés....tu fais quoi avec le pc ????

fanfan2012 · Answer

je télécharge des conneries, et quand des potes passent ils font pareil... pis surtout je fais pas de scan régulier... mais j'essaie de changer!

alors quelle est la suite du programme ? tu m'épates avec ta connaissance de tous ces logiciels dont j'avais entendu parler...

g3n-h@ckm@n · Answer

t'as oublié "jamais" ^^

====

Fais analyser le(s) fichier(s) suivants sur Virustotal :

Virus Total

    clique sur "Parcourir" et trouve puis selectionne ce(s) fichier(s) :

 C:\Windows\System32\drivers\axiacec.sys

    * Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
    * Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
    * Lorsque l'analyse est terminée colle le lien de(s)( la) page(s)  dans ta prochaine réponse.

fanfan2012 · Answer

C:\Windows\System32\drivers\axiacec.sys n'existe pas

g3n-h@ckm@n · Answer

meme en affichant les fichiers cachés et les fichiers systeme ?

fanfan2012 · Answer

en cherchant manuellement je le trouve pas.

"meme en affichant les fichiers cachés et les fichiers systeme ?" : comment faire ?

g3n-h@ckm@n · Answer

panneau de configuration => option des dossiers => affichage 

cocher "afficher les fichiers et dossiers cachés"
décocher "masquer les fichiers protegs du systeme d'exploitation"

puis ok

fanfan2012 · Answer

merci pour le tutoriel.
j'ai fais mais il n'apparait toujours pas

g3n-h@ckm@n · Answer

ok encore des devoirs :

Fais analyser le(s) fichier(s) suivants sur Virustotal :

Virus Total

    clique sur "Parcourir" et trouve puis selectionne ce(s) fichier(s) :

C:\WINDOWS\System32\drivers\xavwaffa.sys 
C:\WINDOWS\System32\drivers\gbju.sys 


    * Clique maintenant sur Envoyer le fichier. et laisse travailler tant que "Situation actuelle : en cours d'analyse" est affiché.
    * Il est possible que le fichier soit mis en file d'attente en raison d'un grand nombre de demandes d'analyses. En ce cas, il te faudra patienter sans actualiser la page.
    * Lorsque l'analyse est terminée colle le lien de(s)( la) page(s)  dans ta prochaine réponse.

================================

ATTENTION !!! : Script personnalisé pour cette machine uniquement , ne pas reproduire !! 

si tu as XP => double clique
si tu as Vista ou windows 7 => clic droit "executer en tant que...." 

sur OTL.exe pour le lancer.


&#9654Copie la liste qui se trouve en gras ci-dessous,

&#9654 colle-la dans la zone sous "Personnalisation" :


:processes
explorer.exe
iexplore.exe
firefox.exe
msnmsgr.exe
Teatimer.exe

:Services
feicymhc

:OTL
IE - HKLM\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-21-2802022764-2121953277-338115081-1006\..\SearchScopes,DefaultScope = 
IE - HKU\S-1-5-21-2802022764-2121953277-338115081-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1 
FF - prefs.js..browser.search.defaulturl: "http://www.gigabase.ru/search?clid=1&q=" 
FF - prefs.js..network.proxy.http: "127.0.0.1" 
FF - prefs.js..network.proxy.http_port: 61798 
FF - user.js - File not found
O7 - HKU\S-1-5-21-2802022764-2121953277-338115081-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run: Cyanide = C:\Documents and Settings\Francois\Application Data\69F69B.exe 
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] 

:Reg
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] 
""="%SystemRoot%\system32\shell32.dll"

:commands
[CLEARALLRESTOREPOINTS]
[emptytemp]
[start explorer]
[reboot]


&#9654 Clique sur "Correction" pour lancer la suppression.


&#9654 Poste le rapport qui logiquement s'ouvrira tout seul en fin de travail appres le redemarrage.

fanfan2012 · Answer

C:\WINDOWS\System32\drivers\xavwaffa.sys :
https://www.virustotal.com/gui/file/3da4f51682e7d42c5569f1fb1adc6295182962e36f748219e1d0c8f2389ba516

C:\WINDOWS\System32\drivers\gbju.sys 
https://www.virustotal.com/gui/file/3da4f51682e7d42c5569f1fb1adc6295182962e36f748219e1d0c8f2389ba516

voici pour otl :

All processes killed
========== PROCESSES ==========
No active process named explorer.exe was found!
No active process named iexplore.exe was found!
No active process named firefox.exe was found!
No active process named msnmsgr.exe was found!
No active process named Teatimer.exe was found!
========== SERVICES/DRIVERS ==========
Service feicymhc stopped successfully!
Service feicymhc deleted successfully!
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\DefaultScope| /E : value set successfully!
HKEY_USERS\S-1-5-21-2802022764-2121953277-338115081-1006\Software\Microsoft\Internet Explorer\SearchScopes\DefaultScope| /E : value set successfully!
HKU\S-1-5-21-2802022764-2121953277-338115081-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyEnable|dword:0 /E : value set successfully!
Prefs.js: "http://www.gigabase.ru/search?clid=1&q=" removed from browser.search.defaulturl
Prefs.js: "127.0.0.1" removed from network.proxy.http
Prefs.js: 61798 removed from network.proxy.http_port
Registry value HKEY_USERS\S-1-5-21-2802022764-2121953277-338115081-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\Cyanide deleted successfully.
File/Folder C:\WINDOWS\System32\*.tmp not found.
========== REGISTRY ==========
HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32\""|"%SystemRoot%\system32\shell32.dll" /E : value set successfully!
========== COMMANDS ==========
Restore point Set: OTL Restore Point
 
[EMPTYTEMP]
 
User: Administrateur
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: All Users
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: Francois
->Temp folder emptied: 930334 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 24400589 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 24,00 mb
 
 
OTL by OldTimer - Version 3.2.69.0 log created on 10292012_011724

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

g3n-h@ckm@n · Answer

supprime les deux fichiers que je t'ai fait analyser sur virus total

fanfan2012 · Answer

et hop à la poubelle

g3n-h@ckm@n · Answer

ok redemarre le pc

fanfan2012 · Answer

salut,

pc redémarré

g3n-h@ckm@n · Answer

encore des soucis ?

fanfan2012 · Answer

je sais pas trop, j'attendais que tu conclues... je fais mes mises à jour et c'est "résolu"?

g3n-h@ckm@n · Answer

fais le menage

https://gen-hackman.kanak.fr/

fanfan2012 · Answer

salut,

voici le rapport delfix :

# DelFix v9.0 - Rapport créé le 30/10/2012 à 00:14:30
# Mis à jour le 23/09/12 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : Francois - PACKARD-5E29A7A (Administrateur)
# Exécuté depuis : C:\Documents and Settings\Francois\Mes documents\Téléchargements\delfix.exe
# Option [Suppression]


~~~~~~ Dossiers(s) ~~~~~~

Supprimé : C:\FyK
Supprimé : C:\_OTL
Supprimé : C:\pre_scan

~~~~~~ Fichier(s) ~~~~~~


~~~~~~ Registre ~~~~~~

Clé Supprimée : HKCU\Software\g3n-h@ckm@n
Clé Supprimée : HKLM\SOFTWARE\OldTimer Tools
Clé Supprimée : HKLM\SOFTWARE\AdwCleaner

~~~~~~ Autres ~~~~~~

-> Prefetch Vidé

*************************

DelFix[S1].txt - [713 octets] - [30/10/2012 00:14:30]

########## EOF - C:\DelFix[S1].txt - [836 octets] ##########

fanfan2012 · Answer

le rapport purera :

RaProducts' PureRa v1.7
Log created at 00:16 on 30/10/2012 (Francois)

C:\Config.MSI emptied.
C:\Documents and Settings\Francois\Application Data\Microsoft\CryptNetURLCache\Content emptied.
C:\Documents and Settings\Francois\Application Data\Microsoft\CryptNetURLCache\MetaData emptied.
C:\WINDOWS\system32\FNTCACHE.DAT <- Successfully deleted.
Recycle bin emptied.
C:\WINDOWS\SoftwareDistribution\DataStore\Logs emptied.
C:\WINDOWS\SoftwareDistribution\Download emptied.
C:\WINDOWS\SoftwareDistribution\SelfUpdate\Default emptied.
C:\WINDOWS\SoftwareDistribution\WuRedir emptied.
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log <- Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. 
C:\DOCUME~1\Francois\LOCALS~1\Temp emptied.
C:\WINDOWS\TEMP emptied.
C:\ACER\Preload\Autorun\APP\Setup My PC\pic\Thumbs.db <- Successfully deleted.
C:\ACER\Preload\Autorun\AutorunX\HowToUse\Images\Thumbs.db <- Successfully deleted.
C:\ACER\Preload\Autorun\AutorunX\PB Logo\Thumbs.db <- Successfully deleted.
C:\Book\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\IconCache.db <- Successfully deleted.
C:\Documents and Settings\Administrateur\Local Settings\Application Data\Microsoft\Windows Live\SqmApi\SqmData720896_00.sqm <- Successfully deleted.
C:\Documents and Settings\All Users\Documents\Mes images\Échantillons d'images\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Default User\Local Settings\Application Data\IconCache.db <- Successfully deleted.
C:\Documents and Settings\Default User\Local Settings\Application Data\Microsoft\Windows Live\SqmApi\SqmData720896_00.sqm <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\2004-12-08 - Alvira - Postcard from St. Petersburg\2004-12-08 - Alvira - Postcard from St. Petersburg\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\Claire\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\EmilyAndElla\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\forum\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\hx\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\hx\1317\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\hx\ALA-Melissa_02\ALA-Melissa 02\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\hx\ALA-Melissa_09\ALA-Melissa 09\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\hx\ALA-Melissa_15\ALA-Melissa 15\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\hx\almejaPELADA!\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\hx\britt1\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\hx\britt1\dotchan\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\hx\he\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\MollyAndPaige\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\videos\Nouveau dossier (2)\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\videos\voyage au bout de la nuit\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\videos\webcam\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Bureau\Hotmail\videos\webcam\Kayleyyyy\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\dwhelper\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Local Settings\Application Data\IconCache.db <- Successfully deleted.
C:\Documents and Settings\Francois\Local Settings\Application Data\Microsoft\Windows Live\SqmApi\SqmData720896_00.sqm <- Successfully deleted.
C:\Documents and Settings\Francois\Local Settings\Application Data\Microsoft\Windows Live Photo Gallery	humbcache_1024.db <- Successfully deleted.
C:\Documents and Settings\Francois\Local Settings\Application Data\Microsoft\Windows Live Photo Gallery	humbcache_256.db <- Successfully deleted.
C:\Documents and Settings\Francois\Local Settings\Application Data\Microsoft\Windows Live Photo Gallery	humbcache_32.db <- Successfully deleted.
C:\Documents and Settings\Francois\Local Settings\Application Data\Microsoft\Windows Live Photo Gallery	humbcache_96.db <- Successfully deleted.
C:\Documents and Settings\Francois\Local Settings\Application Data\Microsoft\Windows Live Photo Gallery	humbcache_idx.db <- Successfully deleted.
C:\Documents and Settings\Francois\Local Settings\Application Data\Microsoft\Windows Live Photo Gallery	humbcache_sr.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\Downloads\Nouveau dossier\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\Mes images\MP Navigator EX\2012_01_18\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\Mes images\MP Navigator EX\2012_02_07\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\Mes images\MP Navigator EX\2012_04_10\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\Mes images\MP Navigator EX\2012_04_12\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\Mes images\MP Navigator EX\2012_05_05\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\Nouveau dossier\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\outdoorgf\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\outdoorgfandalltv-outdoorgf\Thumbs.db <- Successfully deleted.
C:\Documents and Settings\Francois\Mes documents\Téléchargements\Thumbs.db <- Successfully deleted.
C:\Program Files\K-Lite Codec Pack\Icons\Thumbs.db <- Successfully deleted.
C:\Program Files\Packard Bell\Identity Card\PIC\Thumbs.db <- Successfully deleted.
C:\Program Files\Packard Bell\metaboli\Thumbs.db <- Successfully deleted.
C:\Program Files\Packard Bell\metaboli\img\Thumbs.db <- Successfully deleted.
C:\Program Files\Packard Bell\SetUpMyPC\pbcare\images\Thumbs.db <- Successfully deleted.
C:\Program Files\Packard Bell\SetUpMyPC\pic\Thumbs.db <- Successfully deleted.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\IconCache.db <- Successfully deleted.
C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft\Windows Live\SqmApi\SqmData720896_00.sqm <- Successfully deleted.

Total space cleaned: 84.33 MB

-=E.O.F=-

g3n-h@ckm@n · Answer

comment ca se fait qu'il a viré que ca delfix comme outils ?

fanfan2012 · Answer

aucunes idées... peut-être que je l'ai mal manipulé, mais ça m'étonne. je le relance  pour voir ce qu'il raconte. 
sinon j'ai fait ccleaner, le nettoyage et verifs des disques. reste la défragmentation

g3n-h@ckm@n · Answer

faut voir si tu les avais bien mis sur le bureau ou.....

fanfan2012 · Answer

salut,

bon là sûr delfix était sur le bureau mais la suppression était très rapide :

# DelFix v9.0 - Rapport créé le 01/11/2012 à 11:19:08
# Mis à jour le 23/09/12 par Xplode
# Système d'exploitation : Microsoft Windows XP Service Pack 3 (32 bits)
# Nom d'utilisateur : Francois - PACKARD-5E29A7A (Administrateur)
# Exécuté depuis : C:\Documents and Settings\Francois\Bureau\delfix.exe
# Option [Suppression]


~~~~~~ Dossiers(s) ~~~~~~


~~~~~~ Fichier(s) ~~~~~~


~~~~~~ Registre ~~~~~~


~~~~~~ Autres ~~~~~~

-> Prefetch Vidé

*************************

DelFix[S1].txt - [832 octets] - [30/10/2012 00:14:30]
DelFix[S2].txt - [551 octets] - [01/11/2012 11:19:08]

########## EOF - C:\DelFix[S2].txt - [674 octets] ##########

fanfan2012 · Answer

est-ce qu'un logiciel pourrait empêcher son action ?

g3n-h@ckm@n · Answer

nan ben je sais pas...

laisse tomber et si tu en trouves un ben tu le suppprimes

fanfan2012 · Answer

Du coup j'ai fini la procédure. Fini  ?

g3n-h@ckm@n · Answer

v i ^^

fanfan2012 · Answer

merci g3n ! De ta patience, du temps que tu m'as consacré. J'espère ne pas avoir à te solliciter de sitôt ! pis je vais essayer de prendre soin de ma machine.
bonne continuation à toi !

VIRUS police et gendarmerie nationale

147 réponses

Discussions similaires

Newsletters