Sujet Précédent Sujet Suivant

Delta search

Fermé
Wizz2010 Messages postés 6 Date d'inscription lundi 30 septembre 2013 Statut Membre Dernière intervention 1 octobre 2013 - 30 sept. 2013 à 19:31
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 - 1 oct. 2013 à 16:42
Bonsoir,

Windows 8, google chrome.

Mon ordinateur a été infecté par delta-search, j'ai lancé Spybot et cela semble avoir éradiqué le problème. J'ai aussi procédé à la plupart des manipulations pour remettre une nouvelle page d'accueil sur google chrome, mais mon navigateur s'ouvre obstinément sur delta-homes.com, alors que dans les paramètres, partout où il est possible et indiqué de supprimer delta-homes, je l'ai fait.

Je ne sais comment résoudre ce problème,

Merci de votre aide.

François
A voir également:

9 réponses

Réponse 1 / 9
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 662
30 sept. 2013 à 19:32
Salut,

Tu as des adwares sur ton PC.
Passe ces deux programmes dans l'ordre.
Lis bien les instructions, clics sur les liens et lis bien aussi.
Prends ton temps.

Télécharge et installe Malwarebyte : https://www.malekal.com/tutoriel-malwarebyte-anti-malware/
Mets le à jour, fais un scan rapide, supprime tout et poste le rapport ici.
!!! Malwarebyte doit être à jour avant de faire le scan !!!
Coche tout en faisant un clic droit / cocher tout
puis bouton supprimer sélection pour tout supprimer.

puis :

Télécharge https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= AdwCleaner ( d'Xplode ) sur ton bureau.
Sur la page d'AdwCleaner, à droite, clic sur la disquette grise avec la flèche verte pour lancer le téléchargement.
Lance AdwCleaner, clique sur [Scanner].
Le scan peux durer plusieurs minutes, patienter.
Une fois le scan terminé, clique sur [Nettoyer]

Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.

Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt


0
Réponse 2 / 9
Wizz2010 Messages postés 6 Date d'inscription lundi 30 septembre 2013 Statut Membre Dernière intervention 1 octobre 2013
30 sept. 2013 à 19:34
Je te remercie, mais j'ai déjà fait tout ça. La seule manip qu'il me reste à faire, c'est de reparamétrer la page d'accueil de google chrome.
0
Réponse 3 / 9
Wizz2010 Messages postés 6 Date d'inscription lundi 30 septembre 2013 Statut Membre Dernière intervention 1 octobre 2013
30 sept. 2013 à 19:35
Voici le rapport de Spybot

Search results from Spybot - Search & Destroy

30.09.2013 16:52:23
Scan took 01:21:10.
90 items found.

Babylon.Toolbar: [SBI $DEB52F26] Program directory (Directory, nothing done)
C:\ProgramData\Babylon\

Babylon.Toolbar: [SBI $DEB52F26] Program directory (Directory, nothing done)
C:\Users\Admin\AppData\Roaming\Babylon\
Directory.subfile=C:\Users\Admin\AppData\Roaming\Babylon\log_file.txt
Directory.subfile.size=6305
Directory.subfile.md5=776AFBAB9611C38820B39C324294F09B
Directory.subfile.filedate=1380181074
Directory.subfile.filedatetext=2013-09-26 09:37:53

Babylon.Toolbar: [SBI $0C3B54D0] Program directory (Directory, nothing done)
C:\Users\Admin\AppData\Local\Babylon\
Directory.subfile=C:\Users\Admin\AppData\Local\Babylon\Setup\bab098.claroico.zpb
Directory.subfile.size=953
Directory.subfile.md5=4D86B379CE2451BE0B96CD9E8761F4C2
Directory.subfile.filedate=1380181031
Directory.subfile.filedatetext=2013-09-26 09:37:11
Directory.subfile=C:\Users\Admin\AppData\Local\Babylon\Setup\bab138.deltatb_dmn.zpb
Directory.subfile.size=250
Directory.subfile.md5=E3F94911F62443BB76C2A71BFF1B5D5B
Directory.subfile.filedate=1380181031
Directory.subfile.filedatetext=2013-09-26 09:37:10
Directory.subfile=C:\Users\Admin\AppData\Local\Babylon\Setup\bab149.spreg.zpb
Directory.subfile.size=299
Directory.subfile.md5=57DB174831D94469C02C82964D6512F4
Directory.subfile.filedate=1380181031
Directory.subfile.filedatetext=2013-09-26 09:37:11
Directory.subfile=C:\Users\Admin\AppData\Local\Babylon\Setup\bab457.TB_NewWay.dat
Directory.subfile.size=173
Directory.subfile.md5=16ABCACBDC0476A21299C697CA66AE90
Directory.subfile.filedate=1380181031
Directory.subfile.filedatetext=2013-09-26 09:37:10
Directory.subfile=C:\Users\Admin\AppData\Local\Babylon\Setup\BUsolution_vt.zpb
Directory.subfile.size=199480
Directory.subfile.md5=48A9BB985DE97EDEC9CB0536FE80A204
Directory.subfile.filedate=1380181033
Directory.subfile.filedatetext=2013-09-26 09:37:13
Directory.subfile=C:\Users\Admin\AppData\Local\Babylon\Setup\GUninstaller_cat.zpb
Directory.subfile.size=8192
Directory.subfile.md5=58152EC9407C504348AFBD01EE5F490E
Directory.subfile.filedate=1380181064
Directory.subfile.filedatetext=2013-09-26 09:37:43
Directory.subfile=C:\Users\Admin\AppData\Local\Babylon\Setup\latest.zpb
Directory.subfile.size=361398
Directory.subfile.md5=E6F2BE96E7308C5DC48B9E7B65146424
Directory.subfile.filedate=1380181027
Directory.subfile.filedatetext=2013-09-26 09:37:07

Delta.Toolbar: [SBI $C87F6C5D] Data (File, nothing done)
C:\Users\Admin\AppData\Roaming\Babylon\log_file.txt
Properties.size=6305
Properties.md5=776AFBAB9611C38820B39C324294F09B
Properties.filedate=1380181074
Properties.filedatetext=2013-09-26 09:37:53

Delta.Toolbar: [SBI $85F92549] User settings (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\BabSolution

Delta.Toolbar: [SBI $4FE1D2EF] User settings (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}

Delta.Toolbar: [SBI $1E0125E9] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Delta

Pricepeep: [SBI $7B1A2903] Program directory (Directory, nothing done)
C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb\
Directory.subfile=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb\2.2.0.3_0\background.html
Directory.subfile.size=784
Directory.subfile.md5=BA82642D3A033B95C4D7F324D84ED104
Directory.subfile.filedate=1350059368
Directory.subfile.filedatetext=2012-10-12 18:29:28
Directory.subfile=C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\licjnkifamhpbaefhdpacpmihicfbomb\2.2.0.3_0\manifest.json
Directory.subfile.size=824
Directory.subfile.md5=1B864E2A2F5C2E224BCEAD091501977C
Directory.subfile.filedate=1377894700
Directory.subfile.filedatetext=2013-08-30 22:31:40

WebCake.BHO: [SBI $FDE5A161] Class ID (Registry Key, nothing done)
HKEY_CLASSES_ROOT\CLSID\{DF84E609-C3A4-49CB-A160-61767DAF8899}

WebCake.BHO: [SBI $3F53FBE0] Class ID (Registry Key, nothing done)
HKEY_CLASSES_ROOT\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}

WebCake.BHO: [SBI $8048C96E] Interface (Registry Key, nothing done)
HKEY_CLASSES_ROOT\Interface\{0AFD55C8-ADF8-4A33-A6E1-DEDB7A36AEB4}

WebCake.BHO: [SBI $7BEA5F33] Interface (Registry Key, nothing done)
HKEY_CLASSES_ROOT\Interface\{DF84E609-C3A4-49CB-A160-61767DAF8899}

WebCake.BHO: [SBI $5B966508] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\WebCakeUpdaterService

WebCake.BHO: [SBI $5B966508] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\WebCakeUpdaterService

WebCake.BHO: [SBI $2698E3E6] Program directory (Directory, nothing done)
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\
Directory.subfile=C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat
Directory.subfile.size=56017
Directory.subfile.md5=711EF3CDC4EB735A562F4E277328EB0B
Directory.subfile.filedate=1372843124
Directory.subfile.filedatetext=2013-07-03 11:18:43
Directory.subfile=C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe
Directory.subfile.size=227984
Directory.subfile.md5=5A8222C703B4A34F2227A652A49A2827
Directory.subfile.filedate=1299814153
Directory.subfile.filedatetext=2011-03-11 05:29:12
Directory.subfile=C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico
Directory.subfile.size=4846
Directory.subfile.md5=60E3EF9326E8C3F574A2C7B5A31FD895
Directory.subfile.filedate=1258611124
Directory.subfile.filedatetext=2009-11-19 08:12:03
Directory.subfile=C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll
Directory.subfile.size=531968
Directory.subfile.md5=E1416C9C40FD81557795D4195FB48E8D
Directory.subfile.filedate=1368563125
Directory.subfile.filedatetext=2013-05-14 22:25:25
Directory.subfile=C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll
Directory.subfile.size=273408
Directory.subfile.md5=4C05D85B6C1E2E9AEF5784F0A43B5C3A
Directory.subfile.filedate=1368563125
Directory.subfile.filedatetext=2013-05-14 22:25:24

WebCake.BHO: [SBI $885FF297] Library (File, nothing done)
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setup.dll
Properties.size=531968
Properties.md5=E1416C9C40FD81557795D4195FB48E8D
Properties.filedate=1368563125
Properties.filedatetext=2013-05-14 22:25:25

WebCake.BHO: [SBI $0A5B161A] Library (File, nothing done)
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll
Properties.size=273408
Properties.md5=4C05D85B6C1E2E9AEF5784F0A43B5C3A
Properties.filedate=1368563125
Properties.filedatetext=2013-05-14 22:25:24

WebCake.BHO: [SBI $1107F102] Data (File, nothing done)
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.dat
Properties.size=56017
Properties.md5=711EF3CDC4EB735A562F4E277328EB0B
Properties.filedate=1372843124
Properties.filedatetext=2013-07-03 11:18:43

WebCake.BHO: [SBI $E98B8D0E] Executable (File, nothing done)
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.exe
Properties.size=227984
Properties.md5=5A8222C703B4A34F2227A652A49A2827
Properties.filedate=1299814153
Properties.filedatetext=2011-03-11 05:29:12

WebCake.BHO: [SBI $370B837B] Picture (File, nothing done)
C:\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\Setup.ico
Properties.size=4846
Properties.md5=60E3EF9326E8C3F574A2C7B5A31FD895
Properties.filedate=1258611124
Properties.filedatetext=2009-11-19 08:12:03

Win32.Agent.qvo: [SBI $C32FED7D] Settings (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

Win32.Agent.qvo: [SBI $37F0341B] Settings (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Internet Explorer\SearchScopes\DefaultScope

Banyan.eSafe: [SBI $320096C0] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\eSafeSecControl

Banyan.eSafe: [SBI $5CB84A12] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\eSafeSvc

Banyan.eSafe: [SBI $5CB84A12] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\eSafeSvc

Banyan.eSafe: [SBI $043C19FB] Program directory (Directory, nothing done)
C:\ProgramData\eSafe\
Directory.subfile=C:\ProgramData\eSafe\temp_000.exe
Directory.subfile.size=178176
Directory.subfile.md5=1BAAF5819FD346B34E21056B33EA8D18
Directory.subfile.filedate=1380272657
Directory.subfile.filedatetext=2013-09-27 11:04:17
Directory.subfile=C:\ProgramData\eSafe\log\eGdpSvc.LOG
Directory.subfile.size=287982
Directory.subfile.md5=DB6184A472CB8111008214E170C0640A
Directory.subfile.filedate=1380540428
Directory.subfile.filedatetext=2013-09-30 13:27:07
Directory.subfile=C:\ProgramData\eSafe\log\eSafeSvc.LOG
Directory.subfile.size=73172
Directory.subfile.md5=8442FA73416C352FCE12DC22220944B8
Directory.subfile.filedate=1377350508
Directory.subfile.filedatetext=2013-08-24 15:21:48

Banyan.eSafe: [SBI $F482B9B1] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\WsysSvc

Banyan.eSafe: [SBI $F482B9B1] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\WsysSvc

Banyan.eSafe: [SBI $E00BC7C6] Program directory (Directory, nothing done)
C:\Users\Admin\AppData\Roaming\eIntaller\
Directory.subfile=C:\Users\Admin\AppData\Roaming\eIntaller\E40331053389440eBD20093A786092E3\Config.ini
Directory.subfile.size=220
Directory.subfile.md5=02C84EFB774471CB8BA8B60487266AF6
Directory.subfile.filedate=1372843126
Directory.subfile.filedatetext=2013-07-03 11:18:45
Directory.subfile=C:\Users\Admin\AppData\Roaming\eIntaller\E40331053389440eBD20093A786092E3\Desk365.exe
Directory.subfile.size=4356176
Directory.subfile.md5=EE1A1AA7D1E5190FBF4C6618A47A0D3C
Directory.subfile.filedate=1369820333
Directory.subfile.filedatetext=2013-05-29 11:38:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\eIntaller\E40331053389440eBD20093A786092E3\eGdpSvc.exe
Directory.subfile.size=361536
Directory.subfile.md5=7D8DD3520A5B113A248B4867492E7DFE
Directory.subfile.filedate=1372843115
Directory.subfile.filedatetext=2013-07-03 11:18:34
Directory.subfile=C:\Users\Admin\AppData\Roaming\eIntaller\E40331053389440eBD20093A786092E3\eXQ.exe
Directory.subfile.size=718392
Directory.subfile.md5=6ACD8F5D3D77F51DDC05E0888349BFC0
Directory.subfile.filedate=1372843116
Directory.subfile.filedatetext=2013-07-03 11:18:35

Banyan.eSafe: [SBI $F391D360] Executable (File, nothing done)
C:\Users\Admin\AppData\Roaming\eIntaller\E40331053389440eBD20093A786092E3\eGdpSvc.exe
Properties.size=361536
Properties.md5=7D8DD3520A5B113A248B4867492E7DFE
Properties.filedate=1372843115
Properties.filedatetext=2013-07-03 11:18:34

Banyan.eSafe: [SBI $5C7F4E30] Executable (File, nothing done)
C:\Users\Admin\AppData\Roaming\eIntaller\E40331053389440eBD20093A786092E3\eXQ.exe
Properties.size=718392
Properties.md5=6ACD8F5D3D77F51DDC05E0888349BFC0
Properties.filedate=1372843116
Properties.filedatetext=2013-07-03 11:18:35

Elex.Desk365: [SBI $C6008D91] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\deskSvc

Elex.Desk365: [SBI $487B5F3A] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\V9

Elex.Desk365: [SBI $C8478A32] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\desksvc

Elex.Desk365: [SBI $C8478A32] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Eventlog\Application\desksvc

Elex.Desk365: [SBI $1BFEF581] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc

Elex.Desk365: [SBI $1BFEF581] Settings (Registry Key, nothing done)
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Eventlog\Application\desksvc

Elex.Desk365: [SBI $5898CD7C] Program directory (Directory, nothing done)
C:\Users\Admin\AppData\Roaming\Desk 365\
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\accelerate
Directory.subfile.size=0
Directory.subfile.md5=D41D8CD98F00B204E9800998ECF8427E
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\desk_bkg_list.xml
Directory.subfile.size=1434
Directory.subfile.md5=292ECDA960D994D90A33A5E7C3EA9F81
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\desk_list.xml
Directory.subfile.size=17864
Directory.subfile.md5=8FE5F08FC542B868EDB34E79E4F148EF
Directory.subfile.filedate=1372852378
Directory.subfile.filedatetext=2013-07-03 13:52:58
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\desk_settings.ini
Directory.subfile.size=82
Directory.subfile.md5=88D6F5361B4990FFF5192E7FEBAD7143
Directory.subfile.filedate=1372852299
Directory.subfile.filedatetext=2013-07-03 13:51:39
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\process_mgr.xml
Directory.subfile.size=220
Directory.subfile.md5=0FBAFD0F852466354337E54EEF679AC2
Directory.subfile.filedate=1372852456
Directory.subfile.filedatetext=2013-07-03 13:54:15
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote.xml
Directory.subfile.size=5926
Directory.subfile.md5=B4D81B2192BB4FF7AC68105E338DF78D
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\components\libcef_1.1364_wallpaper.exe
Directory.subfile.size=10434864
Directory.subfile.md5=8E390845A88CB1E0406CE350F570CF4B
Directory.subfile.filedate=1375536902
Directory.subfile.filedatetext=2013-08-03 15:35:02
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_1.png
Directory.subfile.size=79965
Directory.subfile.md5=39CB48E50C1687943D9D8243534A978C
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_2.png
Directory.subfile.size=262007
Directory.subfile.md5=600C71AC313C6D8CB86C8DBF97808CB2
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_3.png
Directory.subfile.size=109761
Directory.subfile.md5=35361BC157F356FA8B05238790C70C1E
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_4.png
Directory.subfile.size=311068
Directory.subfile.md5=472564D9BE514897A479679A16AF6295
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_5.png
Directory.subfile.size=201084
Directory.subfile.md5=7BA3473A9526CDB3680E823C3823AA0C
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\desk_bkg\desk_bkg_default.png
Directory.subfile.size=2031
Directory.subfile.md5=F5B39121E867C9936CCB6268837A1894
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\337_7c9140b13c049fd26989f7fa25b77cb1_48_48.png
Directory.subfile.size=3290
Directory.subfile.md5=1FFB97EEB780E007976D68A7F5686DC9
Directory.subfile.filedate=1372843180
Directory.subfile.filedatetext=2013-07-03 11:19:39
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\angrybirds_00ff92c12703baaf0130d6aec427d047_48_48.png
Directory.subfile.size=3497
Directory.subfile.md5=0CF32AB908FB25D8B4E6FE6C70B75AF4
Directory.subfile.filedate=1372843170
Directory.subfile.filedatetext=2013-07-03 11:19:30
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\Barbie_00a67ff4ef657679a6c88553135d62ad_48_48.png
Directory.subfile.size=6461
Directory.subfile.md5=9BC9C146C55E228248D47D1F57E82A19
Directory.subfile.filedate=1372843181
Directory.subfile.filedatetext=2013-07-03 11:19:40
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\BigFarm_de933b0e5218a4db24bebe3d55ed3558_48_48.png
Directory.subfile.size=6249
Directory.subfile.md5=8760281CEE9AA98F2C35BAE2B5A573E9
Directory.subfile.filedate=1372843172
Directory.subfile.filedatetext=2013-07-03 11:19:31
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\chrome_14ad2675c879c2db03ac308a0051e866.ico
Directory.subfile.size=55773
Directory.subfile.md5=C8C9AFE271500BBD9B5C29E86DB8EF66
Directory.subfile.filedate=1372843162
Directory.subfile.filedatetext=2013-07-03 11:19:22
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\chrome_14ad2675c879c2db03ac308a0051e866_48_48.png
Directory.subfile.size=3862
Directory.subfile.md5=0945506ECF06B297C1E1BB878CFAE522
Directory.subfile.filedate=1372843162
Directory.subfile.filedatetext=2013-07-03 11:19:22
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\Empire_22b42f57d1c467841280810e218d5510_48_48.png
Directory.subfile.size=4447
Directory.subfile.md5=5168E91605FEC4DB1278876CF6756E2E
Directory.subfile.filedate=1372843173
Directory.subfile.filedatetext=2013-07-03 11:19:33
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\ESPN_a7b078f5f5f5b87efcef66ab5783cf9d_48_48.png
Directory.subfile.size=1684
Directory.subfile.md5=0DAE331466C7319B010839EC73D1EC53
Directory.subfile.filedate=1372843176
Directory.subfile.filedatetext=2013-07-03 11:19:36
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\Facebook_aab07bc79cf599b25c0110f32d46a3ef_48_48.png
Directory.subfile.size=2953
Directory.subfile.md5=17025BF4A3A47BD39A43116D4EF7184C
Directory.subfile.filedate=1372843181
Directory.subfile.filedatetext=2013-07-03 11:19:40
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\gcalendar_50b3e3c5fc202f0cfcae8032b2465c1b_48_48.png
Directory.subfile.size=1680
Directory.subfile.md5=B25C97B3D39D2495822D4C6E018654CA
Directory.subfile.filedate=1372843177
Directory.subfile.filedatetext=2013-07-03 11:19:37
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\Gmail_731b6d011bd9f67463a916a496775935_48_48.png
Directory.subfile.size=1648
Directory.subfile.md5=E541CE7DF52E638E155AC01E7B9FD208
Directory.subfile.filedate=1372843174
Directory.subfile.filedatetext=2013-07-03 11:19:34
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\Google_60d75cb277f0c452fa60dba8350caf65_48_48.png
Directory.subfile.size=5533
Directory.subfile.md5=2535026BCE2154C641326114F5AE9030
Directory.subfile.filedate=1372843182
Directory.subfile.filedatetext=2013-07-03 11:19:41
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\iexplore_65b6db66de06cd7dd6503f314d75a431.ico
Directory.subfile.size=82151
Directory.subfile.md5=12CE4FAE05C5CC52955D83002528FD53
Directory.subfile.filedate=1372843162
Directory.subfile.filedatetext=2013-07-03 11:19:22
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\iexplore_65b6db66de06cd7dd6503f314d75a431_16_16.png
Directory.subfile.size=1022
Directory.subfile.md5=CEAD53A3CF9401B25986A3134ABCDB25
Directory.subfile.filedate=1372852378
Directory.subfile.filedatetext=2013-07-03 13:52:58
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\iexplore_65b6db66de06cd7dd6503f314d75a431_48_48.png
Directory.subfile.size=5017
Directory.subfile.md5=BD2620F7B9CEDC486EA7EFC2F7213259
Directory.subfile.filedate=1372843162
Directory.subfile.filedatetext=2013-07-03 11:19:22
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\Mario_52934d81761dc31187a93a3a0be7fecc_48_48.png
Directory.subfile.size=7408
Directory.subfile.md5=7D347C69736BC249D0ADBAF0D0125910
Directory.subfile.filedate=1372843180
Directory.subfile.filedatetext=2013-07-03 11:19:40
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\Outlook_6f817b67fa6af1a9c8abfa3813a8595c_48_48.png
Directory.subfile.size=996
Directory.subfile.md5=656E676249500A92897729EB7B70C356
Directory.subfile.filedate=1372843175
Directory.subfile.filedatetext=2013-07-03 11:19:35
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\pulse_b5a242da04cc06eacd02b1ca41e3583c_48_48.png
Directory.subfile.size=1520
Directory.subfile.md5=7A32F8A7144F199235F14363BD02F945
Directory.subfile.filedate=1372843179
Directory.subfile.filedatetext=2013-07-03 11:19:38
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\sys_computer_20_20.png
Directory.subfile.size=1038
Directory.subfile.md5=EFF0ED9BC240BAB196054F0D483B83A5
Directory.subfile.filedate=1372852299
Directory.subfile.filedatetext=2013-07-03 13:51:39
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\sys_computer_48_48.png
Directory.subfile.size=4991
Directory.subfile.md5=9F708E9B2ACF92AA17B24AE420D2FC54
Directory.subfile.filedate=1372843162
Directory.subfile.filedatetext=2013-07-03 11:19:22
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\sys_control_panel_20_20.png
Directory.subfile.size=1186
Directory.subfile.md5=93DCE65B5F7C0B56E853ACCA19420160
Directory.subfile.filedate=1372852299
Directory.subfile.filedatetext=2013-07-03 13:51:39
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\sys_control_panel_48_48.png
Directory.subfile.size=4391
Directory.subfile.md5=2B2A6EA0D1C20B414BDD0C64016CFBA9
Directory.subfile.filedate=1372843163
Directory.subfile.filedatetext=2013-07-03 11:19:22
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\sys_downloads_20_20.png
Directory.subfile.size=1232
Directory.subfile.md5=1DF9CFE13710E20768B1F595420248C8
Directory.subfile.filedate=1372852299
Directory.subfile.filedatetext=2013-07-03 13:51:39
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\sys_my_documents_20_20.png
Directory.subfile.size=1039
Directory.subfile.md5=FFBF4646D56E393DC4555B34F67E30BF
Directory.subfile.filedate=1372852299
Directory.subfile.filedatetext=2013-07-03 13:51:39
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\sys_my_documents_48_48.png
Directory.subfile.size=3942
Directory.subfile.md5=5F52AC5DA5722CC7F770D5D6BA036B4D
Directory.subfile.filedate=1372843163
Directory.subfile.filedatetext=2013-07-03 11:19:22
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\Twitter_ebddd85ec04b7b94a2b2e97b73a90a4a_48_48.png
Directory.subfile.size=3627
Directory.subfile.md5=6D0D3DB3615E9C65A500AF0459E85576
Directory.subfile.filedate=1372843181
Directory.subfile.filedatetext=2013-07-03 11:19:41
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\icons\Youtube_bf18fdfc4aefd6417a8bacae4be5b415_48_48.png
Directory.subfile.size=4445
Directory.subfile.md5=B8A981866E83CE33B3142FF25988AB5F
Directory.subfile.filedate=1372843182
Directory.subfile.filedatetext=2013-07-03 11:19:41
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\337.ico
Directory.subfile.size=15086
Directory.subfile.md5=761DD2166214981120FAD0FF9F43C479
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\337_7c9140b13c049fd26989f7fa25b77cb1.ico
Directory.subfile.size=15086
Directory.subfile.md5=761DD2166214981120FAD0FF9F43C479
Directory.subfile.filedate=1372843180
Directory.subfile.filedatetext=2013-07-03 11:19:39
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\barbie.ico
Directory.subfile.size=15086
Directory.subfile.md5=690F18A933D2602125041B2613992063
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\Barbie_00a67ff4ef657679a6c88553135d62ad.ico
Directory.subfile.size=15086
Directory.subfile.md5=690F18A933D2602125041B2613992063
Directory.subfile.filedate=1372843181
Directory.subfile.filedatetext=2013-07-03 11:19:40
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\facebook.ico
Directory.subfile.size=13942
Directory.subfile.md5=6BF7864D2BC71231FF1E9B22DAE7F627
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\Facebook_aab07bc79cf599b25c0110f32d46a3ef.ico
Directory.subfile.size=13942
Directory.subfile.md5=6BF7864D2BC71231FF1E9B22DAE7F627
Directory.subfile.filedate=1372843181
Directory.subfile.filedatetext=2013-07-03 11:19:40
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\GameCenter.ico
Directory.subfile.size=13942
Directory.subfile.md5=C43C4159B62E4EAED3C7677902627806
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\google.ico
Directory.subfile.size=13942
Directory.subfile.md5=638D1346BB53FCF63CA208A6A566528E
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\Google_60d75cb277f0c452fa60dba8350caf65.ico
Directory.subfile.size=13942
Directory.subfile.md5=638D1346BB53FCF63CA208A6A566528E
Directory.subfile.filedate=1372843182
Directory.subfile.filedatetext=2013-07-03 11:19:41
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\mario.ico
Directory.subfile.size=15086
Directory.subfile.md5=2A35CB9031362A53D31436247DB07EBA
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\Mario_52934d81761dc31187a93a3a0be7fecc.ico
Directory.subfile.size=15086
Directory.subfile.md5=2A35CB9031362A53D31436247DB07EBA
Directory.subfile.filedate=1372843180
Directory.subfile.filedatetext=2013-07-03 11:19:40
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\twitter.ico
Directory.subfile.size=13942
Directory.subfile.md5=E559051E49401DADC174EB19B59C7CA7
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\Twitter_ebddd85ec04b7b94a2b2e97b73a90a4a.ico
Directory.subfile.size=13942
Directory.subfile.md5=E559051E49401DADC174EB19B59C7CA7
Directory.subfile.filedate=1372843181
Directory.subfile.filedatetext=2013-07-03 11:19:41
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\v9.ico
Directory.subfile.size=13942
Directory.subfile.md5=BD31640E318030A99D4E7A1228D9FC1F
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\youtube.ico
Directory.subfile.size=13942
Directory.subfile.md5=71DA62EE593F47DB9D9560E680989B9D
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\promote\Youtube_bf18fdfc4aefd6417a8bacae4be5b415.ico
Directory.subfile.size=13942
Directory.subfile.md5=71DA62EE593F47DB9D9560E680989B9D
Directory.subfile.filedate=1372843182
Directory.subfile.filedatetext=2013-07-03 11:19:41
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\sysicons\imageres.dll_104.ico
Directory.subfile.size=99567
Directory.subfile.md5=AA7F7C9CA7C2A3E8B33C99338E0020D3
Directory.subfile.filedate=1372843162
Directory.subfile.filedatetext=2013-07-03 11:19:22
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\sysicons\imageres.dll_107.ico
Directory.subfile.size=79781
Directory.subfile.md5=F0CFA464CDD86350DAE8E1AC6E3A25C3
Directory.subfile.filedate=1372843163
Directory.subfile.filedatetext=2013-07-03 11:19:22
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\sysicons\imageres.dll_175.ico
Directory.subfile.size=67173
Directory.subfile.md5=C99AAEDA16CD6524F2C26BCBDC93E4B3
Directory.subfile.filedate=1372852299
Directory.subfile.filedatetext=2013-07-03 13:51:39
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\sysicons\shell32.dll_21.ico
Directory.subfile.size=69998
Directory.subfile.md5=31136B37FF3DBBA78520FC3B258AD009
Directory.subfile.filedate=1372843163
Directory.subfile.filedatetext=2013-07-03 11:19:22
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\wp\r0.jpg
Directory.subfile.size=99071
Directory.subfile.md5=15C2EA420C382259DEE6FFE667C4CDFB
Directory.subfile.filedate=1372843164
Directory.subfile.filedatetext=2013-07-03 11:19:23
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\wp\r1.jpg
Directory.subfile.size=243668
Directory.subfile.md5=4BD08157F258A8A75AF71C14813A9086
Directory.subfile.filedate=1372843167
Directory.subfile.filedatetext=2013-07-03 11:19:27
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\wp\r2.jpg
Directory.subfile.size=260964
Directory.subfile.md5=076AAFD7232144885A3534225ADCDCFB
Directory.subfile.filedate=1372843165
Directory.subfile.filedatetext=2013-07-03 11:19:24
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\wp\r3.jpg
Directory.subfile.size=172184
Directory.subfile.md5=6FBE69DA6CABA36B5FDD460C249F841B
Directory.subfile.filedate=1372843171
Directory.subfile.filedatetext=2013-07-03 11:19:31
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\wp\r4.jpg
Directory.subfile.size=318950
Directory.subfile.md5=9D738AF8B31FDD8A4AB3B40E45E72499
Directory.subfile.filedate=1372843166
Directory.subfile.filedatetext=2013-07-03 11:19:25
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\wp\r5.jpg
Directory.subfile.size=291623
Directory.subfile.md5=CD8D2E43E865FB2E3DB840D955DAC545
Directory.subfile.filedate=1372843169
Directory.subfile.filedatetext=2013-07-03 11:19:28
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\wp\r6.jpg
Directory.subfile.size=280712
Directory.subfile.md5=C964E70AA09130459124EA9E9C22D6B3
Directory.subfile.filedate=1372843171
Directory.subfile.filedatetext=2013-07-03 11:19:31
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\wp\r7.jpg
Directory.subfile.size=242358
Directory.subfile.md5=6AE22A47C48A0A68B5A6AFBCC78B5FB7
Directory.subfile.filedate=1372843170
Directory.subfile.filedatetext=2013-07-03 11:19:29
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\wp\r8.jpg
Directory.subfile.size=256804
Directory.subfile.md5=1E2FC86580DA26DBBA3B8D5508F9AA9C
Directory.subfile.filedate=1372843167
Directory.subfile.filedatetext=2013-07-03 11:19:26
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\wp\r9.jpg
Directory.subfile.size=284621
Directory.subfile.md5=C35ACE7A53644846A2B8207F3337A5D3
Directory.subfile.filedate=1372843173
Directory.subfile.filedatetext=2013-07-03 11:19:32
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\1\angrybirds.db
Directory.subfile.size=994
Directory.subfile.md5=563B20129235DC021C75E63DC423AF8C
Directory.subfile.filedate=1372843170
Directory.subfile.filedatetext=2013-07-03 11:19:30
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\1\angrybirds.ico
Directory.subfile.size=15086
Directory.subfile.md5=04678F375785D80A9E22FF477C5417EF
Directory.subfile.filedate=1372843169
Directory.subfile.filedatetext=2013-07-03 11:19:28
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\3\BigFarm.db
Directory.subfile.size=890
Directory.subfile.md5=FEA225420438A0F53528FAE05E16A9E0
Directory.subfile.filedate=1372843172
Directory.subfile.filedatetext=2013-07-03 11:19:31
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\3\BigFarm.ico
Directory.subfile.size=82726
Directory.subfile.md5=91E58CABF6C3C530189E2B1031BEED59
Directory.subfile.filedate=1372843171
Directory.subfile.filedatetext=2013-07-03 11:19:31
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\35\Gmail.db
Directory.subfile.size=778
Directory.subfile.md5=8D16FFFB1992D48E3CB4D8404C518723
Directory.subfile.filedate=1372843174
Directory.subfile.filedatetext=2013-07-03 11:19:34
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\35\Gmail.ico
Directory.subfile.size=13262
Directory.subfile.md5=43E266FA15B8F01B425D381211A8791C
Directory.subfile.filedate=1372843174
Directory.subfile.filedatetext=2013-07-03 11:19:33
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\36\Outlook.db
Directory.subfile.size=796
Directory.subfile.md5=8DE87696714794E2552896C853386EE7
Directory.subfile.filedate=1372843175
Directory.subfile.filedatetext=2013-07-03 11:19:35
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\36\Outlook.ico
Directory.subfile.size=13262
Directory.subfile.md5=F8CCECACF455195E9FF5067D20A9CB06
Directory.subfile.filedate=1372843175
Directory.subfile.filedatetext=2013-07-03 11:19:35
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\39\ESPN.db
Directory.subfile.size=920
Directory.subfile.md5=9C78DF11E968D9DD10247231BE2CC2C7
Directory.subfile.filedate=1372843176
Directory.subfile.filedatetext=2013-07-03 11:19:36
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\39\ESPN.ico
Directory.subfile.size=15086
Directory.subfile.md5=9E44300746A04FC221381900153EFE3F
Directory.subfile.filedate=1372843176
Directory.subfile.filedatetext=2013-07-03 11:19:35
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\4\Empire.db
Directory.subfile.size=872
Directory.subfile.md5=21E8C7928D43A3B85ECBD4E1460EFF26
Directory.subfile.filedate=1372843173
Directory.subfile.filedatetext=2013-07-03 11:19:33
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\4\Empire.ico
Directory.subfile.size=82726
Directory.subfile.md5=5B186EA99E25E888A95A1D3931512287
Directory.subfile.filedate=1372843173
Directory.subfile.filedatetext=2013-07-03 11:19:32
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\41\gcalendar.db
Directory.subfile.size=858
Directory.subfile.md5=D94EFA5A58CF16DB847E542F69FD50E2
Directory.subfile.filedate=1372843177
Directory.subfile.filedatetext=2013-07-03 11:19:37
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\41\gcalendar.ico
Directory.subfile.size=15086
Directory.subfile.md5=03CD38BE20AF6CB71874DAC6EE7A821C
Directory.subfile.filedate=1372843177
Directory.subfile.filedatetext=2013-07-03 11:19:36
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\42\pulse.db
Directory.subfile.size=764
Directory.subfile.md5=10E74A23CA1F759991A6EDF3859BC717
Directory.subfile.filedate=1372843179
Directory.subfile.filedatetext=2013-07-03 11:19:38
Directory.subfile=C:\Users\Admin\AppData\Roaming\Desk 365\app\config\42\pulse.ico
Directory.subfile.size=15086
Directory.subfile.md5=CCBD925EF735C7946F36FE67E63C17B3
Directory.subfile.filedate=1372843178
Directory.subfile.filedatetext=2013-07-03 11:19:38

Elex.Desk365: [SBI $9BC51D3A] Configuration file (File, nothing done)
C:\Users\Admin\AppData\Roaming\Desk 365\desk_bkg_list.xml
Properties.size=1434
Properties.md5=292ECDA960D994D90A33A5E7C3EA9F81
Properties.filedate=1372843133
Properties.filedatetext=2013-07-03 11:18:53

Elex.Desk365: [SBI $8D473845] Configuration file (File, nothing done)
C:\Users\Admin\AppData\Roaming\Desk 365\desk_list.xml
Properties.size=17864
Properties.md5=8FE5F08FC542B868EDB34E79E4F148EF
Properties.filedate=1372852378
Properties.filedatetext=2013-07-03 13:52:58

Elex.Desk365: [SBI $C29E5543] Configuration file (File, nothing done)
C:\Users\Admin\AppData\Roaming\Desk 365\desk_settings.ini
Properties.size=82
Properties.md5=88D6F5361B4990FFF5192E7FEBAD7143
Properties.filedate=1372852299
Properties.filedatetext=2013-07-03 13:51:39

Elex.Desk365: [SBI $3C87FAD7] Configuration file (File, nothing done)
C:\Users\Admin\AppData\Roaming\Desk 365\process_mgr.xml
Properties.size=220
Properties.md5=0FBAFD0F852466354337E54EEF679AC2
Properties.filedate=1372852456
Properties.filedatetext=2013-07-03 13:54:15

Elex.Desk365: [SBI $DF805F27] Configuration file (File, nothing done)
C:\Users\Admin\AppData\Roaming\Desk 365\promote.xml
Properties.size=5926
Properties.md5=B4D81B2192BB4FF7AC68105E338DF78D
Properties.filedate=1372843133
Properties.filedatetext=2013-07-03 11:18:53

Elex.Desk365: [SBI $9E0CDB3D] Program directory (Directory, nothing done)
C:\Program Files (x86)\Desk 365\
Directory.subfile=C:\Program Files (x86)\Desk 365\desk_bkg_list.xml
Directory.subfile.size=1434
Directory.subfile.md5=292ECDA960D994D90A33A5E7C3EA9F81
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Program Files (x86)\Desk 365\desk_list.xml
Directory.subfile.size=312
Directory.subfile.md5=59F9E2248D06B0E2F98514F3181AA08C
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Program Files (x86)\Desk 365\desk_settings.ini
Directory.subfile.size=80
Directory.subfile.md5=6E8ECBF4B96757DFC8B42989C7B4C0BA
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Program Files (x86)\Desk 365\process_mgr.xml
Directory.subfile.size=220
Directory.subfile.md5=0FBAFD0F852466354337E54EEF679AC2
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Program Files (x86)\Desk 365\promote.xml
Directory.subfile.size=5926
Directory.subfile.md5=B4D81B2192BB4FF7AC68105E338DF78D
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53
Directory.subfile=C:\Program Files (x86)\Desk 365\recent.xml
Directory.subfile.size=200
Directory.subfile.md5=4B021AF446161B9B0696D14C0A94A321
Directory.subfile.filedate=1372843133
Directory.subfile.filedatetext=2013-07-03 11:18:53

Elex.Desk365: [SBI $9673464D] Configuration file (File, nothing done)
C:\Program Files (x86)\Desk 365\desk_bkg_list.xml
Properties.size=1434
Properties.md5=292ECDA960D994D90A33A5E7C3EA9F81
Properties.filedate=1372843133
Properties.filedatetext=2013-07-03 11:18:53

Elex.Desk365: [SBI $CD3F2E88] Configuration file (File, nothing done)
C:\Program Files (x86)\Desk 365\desk_list.xml
Properties.size=312
Properties.md5=59F9E2248D06B0E2F98514F3181AA08C
Properties.filedate=1372843133
Properties.filedatetext=2013-07-03 11:18:53

Elex.Desk365: [SBI $CF280E34] Configuration file (File, nothing done)
C:\Program Files (x86)\Desk 365\desk_settings.ini
Properties.size=80
Properties.md5=6E8ECBF4B96757DFC8B42989C7B4C0BA
Properties.filedate=1372843133
Properties.filedatetext=2013-07-03 11:18:53

Elex.Desk365: [SBI $B607A6FD] Configuration file (File, nothing done)
C:\Program Files (x86)\Desk 365\process_mgr.xml
Properties.size=220
Properties.md5=0FBAFD0F852466354337E54EEF679AC2
Properties.filedate=1372843133
Properties.filedatetext=2013-07-03 11:18:53

Elex.Desk365: [SBI $A50DD4C3] Configuration file (File, nothing done)
C:\Program Files (x86)\Desk 365\promote.xml
Properties.size=5926
Properties.md5=B4D81B2192BB4FF7AC68105E338DF78D
Properties.filedate=1372843133
Properties.filedatetext=2013-07-03 11:18:53

Elex.Desk365: [SBI $55641D0D] Configuration file (File, nothing done)
C:\Program Files (x86)\Desk 365\recent.xml
Properties.size=200
Properties.md5=4B021AF446161B9B0696D14C0A94A321
Properties.filedate=1372843133
Properties.filedatetext=2013-07-03 11:18:53

Elex.Desk365: [SBI $C12C031F] Program directory (Directory, nothing done)
C:\Program Files (x86)\Common Files\337\
Directory.subfile=C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\icudt.dll
Directory.subfile.size=9962568
Directory.subfile.md5=3C9DBA4666B11E993AAEC89064340310
Directory.subfile.filedate=1365477135
Directory.subfile.filedatetext=2013-04-09 05:12:15
Directory.subfile=C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\libcef.dll
Directory.subfile.size=24984648
Directory.subfile.md5=BD1ADEAB6F31A4FCF3279A6D9BD89278
Directory.subfile.filedate=1365477137
Directory.subfile.filedatetext=2013-04-09 05:12:17
Directory.subfile=C:\Program Files (x86)\Common Files\337\libcef\1.1364.1123\locales\en-US.pak
Directory.subfile.size=2898
Directory.subfile.md5=D171F4787659D87D3B354270F2CCF3FD
Directory.subfile.filedate=1365473635
Directory.subfile.filedatetext=2013-04-09 04:13:54

Systweak.RegCleanPro: [SBI $A53DF47E] Program directory (Directory, nothing done)
C:\Users\Admin\AppData\Roaming\Systweak\RegClean Pro\
Directory.subfile=C:\Users\Admin\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\French_rcp.dat
Directory.subfile.size=50140
Directory.subfile.md5=95F3E130BFA356E7E0E77C0B60435B20
Directory.subfile.filedate=1380181133
Directory.subfile.filedatetext=2013-09-26 09:38:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_09-26-2013.log
Directory.subfile.size=18710
Directory.subfile.md5=FA1EB211E8217432ACCC29B031D42FAC
Directory.subfile.filedate=1380181133
Directory.subfile.filedatetext=2013-09-26 09:38:53

Systweak.RegCleanPro: [SBI $80041D24] Program directory (Directory, nothing done)
C:\Users\Admin\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\
Directory.subfile=C:\Users\Admin\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\French_rcp.dat
Directory.subfile.size=50140
Directory.subfile.md5=95F3E130BFA356E7E0E77C0B60435B20
Directory.subfile.filedate=1380181133
Directory.subfile.filedatetext=2013-09-26 09:38:53
Directory.subfile=C:\Users\Admin\AppData\Roaming\Systweak\RegClean Pro\Version 6.1\log_09-26-2013.log
Directory.subfile.size=18710
Directory.subfile.md5=FA1EB211E8217432ACCC29B031D42FAC
Directory.subfile.filedate=1380181133
Directory.subfile.filedatetext=2013-09-26 09:38:53

Systweak.RegCleanPro: [SBI $B5F5AABB] Program directory (Directory, nothing done)
C:\Program Files (x86)\RegClean Pro\
Directory.subfile=C:\Program Files (x86)\RegClean Pro\install_left_image.bmp
Directory.subfile.size=156296
Directory.subfile.md5=78BAF9FF8AA0F67D1BAEBB292D8429FE
Directory.subfile.filedate=1347881266
Directory.subfile.filedatetext=2012-09-17 13:27:46
Directory.subfile=C:\Program Files (x86)\RegClean Pro\unins000.dat
Directory.subfile.size=60863
Directory.subfile.md5=509990D0870F5ECAB867B068E96A1755
Directory.subfile.filedate=1380181018
Directory.subfile.filedatetext=2013-09-26 09:36:58
Directory.subfile=C:\Program Files (x86)\RegClean Pro\unins000.msg
Directory.subfile.size=28783
Directory.subfile.md5=5EB9758F0F53EDF4FCACDD2BD31F7AE6
Directory.subfile.filedate=1380181018
Directory.subfile.filedatetext=2013-09-26 09:36:57

myPCBackup: [SBI $BE3057E0] Program directory (Directory, nothing done)
C:\Program Files (x86)\MyPC Backup\
Directory.subfile=C:\Program Files (x86)\MyPC Backup\aff.conf
Directory.subfile.size=102
Directory.subfile.md5=9F4C693F76335096E0578ED13D4CDC1A
Directory.subfile.filedate=1363086208
Directory.subfile.filedatetext=2013-03-12 13:03:28
Directory.subfile=C:\Program Files (x86)\MyPC Backup\de_DE.mo
Directory.subfile.size=44491
Directory.subfile.md5=DBDEC3376419EB64DE27333DA2297458
Directory.subfile.filedate=1379629950
Directory.subfile.filedatetext=2013-09-20 00:32:30
Directory.subfile=C:\Program Files (x86)\MyPC Backup\es_ES.mo
Directory.subfile.size=44977
Directory.subfile.md5=6B3615B8CED981B75652112F70FCF342
Directory.subfile.filedate=1379629950
Directory.subfile.filedatetext=2013-09-20 00:32:30
Directory.subfile=C:\Program Files (x86)\MyPC Backup\fr_FR.mo
Directory.subfile.size=45483
Directory.subfile.md5=BC313E08C18B049684DDB423F7EB6596
Directory.subfile.filedate=1379629950
Directory.subfile.filedatetext=2013-09-20 00:32:30
Directory.subfile=C:\Program Files (x86)\MyPC Backup\it_IT.mo
Directory.subfile.size=43717
Directory.subfile.md5=7779773C211CE2D1636B3A42244E9C6E
Directory.subfile.filedate=1379629950
Directory.subfile.filedatetext=2013-09-20 00:32:30
Directory.subfile=C:\Program Files (x86)\MyPC Backup\pt_PT.mo
Directory.subfile.size=39751
Directory.subfile.md5=046E5ECAEA6D79DBBB952BDE37BF4F37
Directory.subfile.filedate=1379629950
Directory.subfile.filedatetext=2013-09-20 00:32:30
Directory.subfile=C:\Program Files (x86)\MyPC Backup\Database\mpcb_backup_conf.db
Directory.subfile.size=16384
Directory.subfile.md5=60FF608113FE7F661FF40DC274E2F662
Directory.subfile.filedate=1379629954
Directory.subfile.filedatetext=2013-09-20 00:32:34
Directory.subfile=C:\Program Files (x86)\MyPC Backup\Database\mpcb_file_cache.db
Directory.subfile.size=7168
Directory.subfile.md5=DDEE58D9FF66DF70415E0FC80BD34AE3
Directory.subfile.filedate=1379629954
Directory.subfile.filedatetext=2013-09-20 00:32:34
Directory.subfile=C:\Program Files (x86)\MyPC Backup\Database\mpcb_queues.db
Directory.subfile.size=13312
Directory.subfile.md5=3BE52D1F03ADF742E6109ED33D5A2D90
Directory.subfile.filedate=1379629954
Directory.subfile.filedatetext=2013-09-20 00:32:34
Directory.subfile=C:\Program Files (x86)\MyPC Backup\Database\mpcb_settings.db
Directory.subfile.size=9216
Directory.subfile.md5=46831E52CAB92AF50258C8F1F3E74BDA
Directory.subfile.filedate=1380181150
Directory.subfile.filedatetext=2013-09-26 09:39:10
Directory.subfile=C:\Program Files (x86)\MyPC Backup\Database\mpcb_sig_cache.db
Directory.subfile.size=6144
Directory.subfile.md5=1042BD894D67281E7EC0E1E73B9214D8
Directory.subfile.filedate=1379629954
Directory.subfile.filedatetext=2013-09-20 00:32:34

myPCBackup: [SBI $6F31F5C9] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\aff.conf
Properties.size=102
Properties.md5=9F4C693F76335096E0578ED13D4CDC1A
Properties.filedate=1363086208
Properties.filedatetext=2013-03-12 13:03:28

myPCBackup: [SBI $81109B34] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\de_DE.mo
Properties.size=44491
Properties.md5=DBDEC3376419EB64DE27333DA2297458
Properties.filedate=1379629950
Properties.filedatetext=2013-09-20 00:32:30

myPCBackup: [SBI $0843065C] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\es_ES.mo
Properties.size=44977
Properties.md5=6B3615B8CED981B75652112F70FCF342
Properties.filedate=1379629950
Properties.filedatetext=2013-09-20 00:32:30

myPCBackup: [SBI $46906119] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\fr_FR.mo
Properties.size=45483
Properties.md5=BC313E08C18B049684DDB423F7EB6596
Properties.filedate=1379629950
Properties.filedatetext=2013-09-20 00:32:30

myPCBackup: [SBI $2150E03A] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\it_IT.mo
Properties.size=43717
Properties.md5=7779773C211CE2D1636B3A42244E9C6E
Properties.filedate=1379629950
Properties.filedatetext=2013-09-20 00:32:30

myPCBackup: [SBI $05EA4743] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\pt_PT.mo
Properties.size=39751
Properties.md5=046E5ECAEA6D79DBBB952BDE37BF4F37
Properties.filedate=1379629950
Properties.filedatetext=2013-09-20 00:32:30

myPCBackup: [SBI $5C7A6B4B] Program directory (Directory, nothing done)
C:\Program Files (x86)\MyPC Backup\Database\
Directory.subfile=C:\Program Files (x86)\MyPC Backup\Database\mpcb_backup_conf.db
Directory.subfile.size=16384
Directory.subfile.md5=60FF608113FE7F661FF40DC274E2F662
Directory.subfile.filedate=1379629954
Directory.subfile.filedatetext=2013-09-20 00:32:34
Directory.subfile=C:\Program Files (x86)\MyPC Backup\Database\mpcb_file_cache.db
Directory.subfile.size=7168
Directory.subfile.md5=DDEE58D9FF66DF70415E0FC80BD34AE3
Directory.subfile.filedate=1379629954
Directory.subfile.filedatetext=2013-09-20 00:32:34
Directory.subfile=C:\Program Files (x86)\MyPC Backup\Database\mpcb_queues.db
Directory.subfile.size=13312
Directory.subfile.md5=3BE52D1F03ADF742E6109ED33D5A2D90
Directory.subfile.filedate=1379629954
Directory.subfile.filedatetext=2013-09-20 00:32:34
Directory.subfile=C:\Program Files (x86)\MyPC Backup\Database\mpcb_settings.db
Directory.subfile.size=9216
Directory.subfile.md5=46831E52CAB92AF50258C8F1F3E74BDA
Directory.subfile.filedate=1380181150
Directory.subfile.filedatetext=2013-09-26 09:39:10
Directory.subfile=C:\Program Files (x86)\MyPC Backup\Database\mpcb_sig_cache.db
Directory.subfile.size=6144
Directory.subfile.md5=1042BD894D67281E7EC0E1E73B9214D8
Directory.subfile.filedate=1379629954
Directory.subfile.filedatetext=2013-09-20 00:32:34

myPCBackup: [SBI $AD6AB843] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\Database\mpcb_backup_conf.db
Properties.size=16384
Properties.md5=60FF608113FE7F661FF40DC274E2F662
Properties.filedate=1379629954
Properties.filedatetext=2013-09-20 00:32:34

myPCBackup: [SBI $559CAEF6] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\Database\mpcb_file_cache.db
Properties.size=7168
Properties.md5=DDEE58D9FF66DF70415E0FC80BD34AE3
Properties.filedate=1379629954
Properties.filedatetext=2013-09-20 00:32:34

myPCBackup: [SBI $B1463116] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\Database\mpcb_queues.db
Properties.size=13312
Properties.md5=3BE52D1F03ADF742E6109ED33D5A2D90
Properties.filedate=1379629954
Properties.filedatetext=2013-09-20 00:32:34

myPCBackup: [SBI $1D0A14D4] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\Database\mpcb_settings.db
Properties.size=9216
Properties.md5=46831E52CAB92AF50258C8F1F3E74BDA
Properties.filedate=1380181150
Properties.filedatetext=2013-09-26 09:39:10

myPCBackup: [SBI $FD4C0913] Data (File, nothing done)
C:\Program Files (x86)\MyPC Backup\Database\mpcb_sig_cache.db
Properties.size=6144
Properties.md5=1042BD894D67281E7EC0E1E73B9214D8
Properties.filedate=1379629954
Properties.filedatetext=2013-09-20 00:32:34

Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\Admin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\85L5CX8Z\images-na.ssl-images-amazon.com\mercury.sol
Properties.size=69
Properties.md5=3FED42C2834BAB590DAEB7B6522AF1FC
Properties.filedate=1374068724
Properties.filedatetext=2013-07-17 15:45:24

Macromedia.FlashPlayer.Cookies: [SBI $6AA61750] Text file (File, nothing done)
C:\Users\Admin\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\85L5CX8Z\localhost\FLVMediaPlayer.sol
Properties.size=259
Properties.md5=9DE666B62A0824E3E87819B9B8E5237E
Properties.filedate=1375807595
Properties.filedatetext=2013-08-06 18:46:34

Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Internet Explorer\TypedURLs

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent

MS Management Console: [SBI $ECD50EAD] Recent command list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Microsoft Management Console\Recent File List

MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name

MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name

MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id

MS Paint: [SBI $07867C39] Recent file list (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Paint\Recent File List

Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources

Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources

Windows.OpenWith: [SBI $F7204896] Open with list - .AVI extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList

Windows.OpenWith: [SBI $ECC28BDF] Open with list - .CSV extension (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CSV\OpenWithList

Windows Explorer: [SBI $AA0766B5] Stream history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU

Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs

Windows Media SDK: [SBI $37AAEDE6] Computer name (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Windows Media\WMSDK\General\ComputerName

Windows Media SDK: [SBI $CAA58B6E] Unique ID (Registry Change, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Windows Media\WMSDK\General\UniqueID

Windows Media SDK: [SBI $BACCD0DA] Volume serial number (Registry Value, nothing done)
HKEY_USERS\S-1-5-21-2532004680-2950962693-2701275448-1001\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber

Cookie: [SBI $49804B54] Browser: Cookie (34) (Browser: Cookie, nothing done)


Cache: [SBI $49804B54] Browser: Cache (1231) (Browser: Cache, nothing done)


Historique: [SBI $49804B54] Browser: History (572) (Browser: History, nothing done)



--- Spybot - Search & Destroy version: 2.1.18.131 DLL (build: 20130516) ---

2013-05-16 blindman.exe (2.1.18.151)
2013-05-16 explorer.exe (2.1.18.177)
2013-05-16 SDBootCD.exe (2.1.18.109)
2013-05-16 SDCleaner.exe (2.1.18.110)
2013-05-16 SDDelFile.exe (2.1.18.94)
2013-06-18 SDDisableProxy.exe
2013-05-16 SDFiles.exe (2.1.18.135)
2013-03-20 SDFileScanHelper.exe (2.1.16.1)
2013-05-16 SDFSSvc.exe (2.1.18.208)
2013-05-16 SDHookHelper.exe (2.1.18.2)
2013-05-16 SDHookInst32.exe (2.1.18.2)
2013-05-16 SDHookInst64.exe (2.1.18.2)
2013-05-16 SDImmunize.exe (2.1.18.130)
2013-05-16 SDLogReport.exe (2.1.18.107)
2013-05-16 SDOnAccess.exe (2.1.18.4)
2013-05-16 SDPESetup.exe (2.1.18.3)
2013-05-16 SDPEStart.exe (2.1.18.86)
2013-05-16 SDPhoneScan.exe (2.1.18.28)
2013-05-16 SDPRE.exe (2.1.18.22)
2013-05-16 SDPrepPos.exe (2.1.18.10)
2013-05-16 SDQuarantine.exe (2.1.18.103)
2013-05-16 SDRootAlyzer.exe (2.1.18.116)
2013-05-16 SDSBIEdit.exe (2.1.18.39)
2013-05-16 SDScan.exe (2.1.18.177)
2013-05-16 SDScript.exe (2.1.18.53)
2013-05-16 SDSettings.exe (2.1.18.136)
2013-05-16 SDShell.exe (2.1.18.2)
2013-05-16 SDShred.exe (2.1.18.107)
2013-05-16 SDSysRepair.exe (2.1.18.101)
2013-05-16 SDTools.exe (2.1.18.150)
2013-05-16 SDTray.exe (2.1.18.127)
2013-05-16 SDUpdate.exe (2.1.18.91)
2013-05-16 SDUpdSvc.exe (2.1.18.76)
2013-05-16 SDWelcome.exe (2.1.18.129)
2013-05-15 SDWSCSvc.exe (2.1.18.2)
2013-06-19 spybotsd2-translation-frx.exe
2013-09-30 unins000.exe (51.1052.0.0)
1999-12-02 xcacls.exe
2012-08-23 borlndmm.dll (10.0.2288.42451)
2012-09-05 DelZip190.dll (1.9.0.107)
2012-09-10 libeay32.dll (1.0.0.4)
2012-09-10 libssl32.dll (1.
0
Réponse 4 / 9
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 662
30 sept. 2013 à 19:53
Désinstalle Spybot, il est dépassé et inefficace.
Fais ce qui est demandé plus haut.
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 9
Wizz2010 Messages postés 6 Date d'inscription lundi 30 septembre 2013 Statut Membre Dernière intervention 1 octobre 2013
1 oct. 2013 à 10:28
Voici les résultats de Malware

Malwarebytes Anti-Malware (Essai) 1.75.0.1300
www.malwarebytes.org

Version de la base de données: v2013.10.01.02

Windows 8 x64 NTFS
Internet Explorer 10.0.9200.16688
Admin :: FRANCOIS [administrateur]

Protection: Désactivé

01.10.2013 10:07:19
MBAM-log-2013-10-01 (10-27-19).txt

Type d'examen: Examen rapide
Options d'examen activées: Mémoire | Démarrage | Registre | Système de fichiers | Heuristique/Extra | Heuristique/Shuriken | PUP | PUM
Options d'examen désactivées: P2P
Elément(s) analysé(s): 201835
Temps écoulé: 16 minute(s), 42 seconde(s)

Processus mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Module(s) mémoire détecté(s): 0
(Aucun élément nuisible détecté)

Clé(s) du Registre détectée(s): 5
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> Aucune action effectuée.
HKCR\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17} (PUP.Optional.Wajam.A) -> Aucune action effectuée.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C} (PUP.Optional.Wajam) -> Aucune action effectuée.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{AF6B0594-6008-4327-93E5-608AD710A6FA} (PUP.Optional.WebCake.A) -> Aucune action effectuée.
HKLM\SOFTWARE\Google\Chrome\Extensions\ifohbjbgfchkkfhphahclmkpgejiplfo (PUP.Optional.Elex.A) -> Aucune action effectuée.

Valeur(s) du Registre détectée(s): 0
(Aucun élément nuisible détecté)

Elément(s) de données du Registre détecté(s): 0
(Aucun élément nuisible détecté)

Dossier(s) détecté(s): 2
C:\ProgramData\Tarma Installer (PUP.Optional.Tarma.A) -> Aucune action effectuée.
C:\Users\Admin\AppData\Local\Temp\ct2504091 (PUP.Optional.Conduit.A) -> Aucune action effectuée.

Fichier(s) détecté(s): 1
C:\Users\Admin\AppData\Roaming\Omiga Plus\wallpaper_components.exe (PUP.Optional.Desk365.A) -> Aucune action effectuée.

(fin)
0
Réponse 6 / 9
Wizz2010 Messages postés 6 Date d'inscription lundi 30 septembre 2013 Statut Membre Dernière intervention 1 octobre 2013
1 oct. 2013 à 10:46
Et voici le rapport d'ADwcleaner

# AdwCleaner v3.006 - Rapport créé le 01/10/2013 à 10:42:35
# Mis à jour le 01/10/2013 par Xplode
# Système d'exploitation : Windows 8 (64 bits)
# Nom d'utilisateur : Admin - FRANCOIS
# Exécuté depuis : C:\Users\Admin\Downloads\adwcleaner.exe
# Option : Nettoyer

***** [ Services ] *****

Service Supprimé : omigaplussvc
Service Supprimé : winzipersvc

***** [ Fichiers / Dossiers ] *****

Dossier Supprimé : C:\ProgramData\BasicServe
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Omiga Plus
Dossier Supprimé : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
Dossier Supprimé : C:\Program Files (x86)\BasicServe
Dossier Supprimé : C:\Program Files (x86)\Omiga Plus
Dossier Supprimé : C:\Program Files (x86)\WinZip Registry Optimizer
Dossier Supprimé : C:\Program Files (x86)\WinZipper
Dossier Supprimé : C:\Program Files (x86)\tuto4pc_fr_59
Dossier Supprimé : C:\Users\Admin\AppData\Local\PackageAware
Dossier Supprimé : C:\Users\Admin\AppData\Local\tuto4pc_fr_59
Dossier Supprimé : C:\Users\Admin\AppData\Local\Temp\eIntaller
Dossier Supprimé : C:\Users\Admin\AppData\Roaming\337
Dossier Supprimé : C:\Users\Admin\AppData\Roaming\Advanced System Protector
Dossier Supprimé : C:\Users\Admin\AppData\Roaming\Omiga Plus
Dossier Supprimé : C:\Users\Admin\AppData\Roaming\pdfforge
Dossier Supprimé : C:\Users\Admin\AppData\Roaming\Systweak
Dossier Supprimé : C:\Users\Admin\AppData\Roaming\WinZipper
Fichier Supprimé : C:\Windows\System32\roboot64.exe
Fichier Supprimé : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage
Fichier Supprimé : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www1.delta-search.com_0.localstorage-journal
Fichier Supprimé : C:\Windows\System32\Tasks\Omiga Plus RunAsStdUser

***** [ Raccourcis ] *****

Raccourci Désinfecté : C:\Users\Public\Desktop\Google Chrome.lnk
Raccourci Désinfecté : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk
Raccourci Désinfecté : C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
Raccourci Désinfecté : C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
Raccourci Désinfecté : C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
Raccourci Désinfecté : C:\Users\Admin\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk

***** [ Registre ] *****

Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\grusskartencenter.com
Clé Supprimée : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\grusskartencenter.com
Clé Supprimée : HKLM\SOFTWARE\Classes\Prod.cap
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Clé Supprimée : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
Clé Supprimée : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Donnée Restaurée : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Donnée Restaurée : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\Google Chrome\shell\open\command
Clé Supprimée : HKCU\Software\Conduit
Clé Supprimée : HKCU\Software\Delta
Clé Supprimée : HKCU\Software\IGearSettings
Clé Supprimée : HKCU\Software\powerpack
Clé Supprimée : HKCU\Software\AppDataLow\Software\PriceGong
Clé Supprimée : HKLM\Software\BasicServe
Clé Supprimée : HKLM\Software\Delta
Clé Supprimée : HKLM\Software\delta-homesSoftware
Clé Supprimée : HKLM\Software\omigaplusSvc
Clé Supprimée : HKLM\Software\portaldositesSoftware
Clé Supprimée : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Clé Supprimée : [x64] HKLM\SOFTWARE\Tarma Installer

***** [ Navigateurs ] *****

-\\ Internet Explorer v10.0.9200.16688

Paramètre Restauré : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Paramètre Restauré : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Paramètre Restauré : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Paramètre Restauré : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Google Chrome v29.0.1547.76

[ Fichier : C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [7532 octets] - [01/10/2013 10:41:30]
AdwCleaner[S0].txt - [4909 octets] - [01/10/2013 10:42:35]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [4969 octets] ##########
0
Réponse 7 / 9
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 662
1 oct. 2013 à 10:48
Faire un scan OTL pour diagnostiquer les programmes qui tournent et déceler des infections - Le programme va générer deux rapports OTL.txt et Extras.txt
Fournir les deux rapports :

Tu peux suivre les indications de cette page pour t'aider : https://www.malekal.com/tutorial-otl/

* Télécharge http://www.geekstogo.com/forum/files/file/398-otl-oldtimers-list-it/ sur ton bureau.
(Sous Vista/Win7, il faut cliquer droit sur OTL et choisir Exécuter en tant qu'administrateur)

Dans le cas d'Avast!, ne pas lancer le programme dans la Sandbox (voir lien d'aide ci-dessus).

* Lance OTL
* En haut à droite de Analyse rapide, coche "tous les utilisateurs"
* Sur OTL, sous Personnalisation, copie-colle le script ci-dessous :



netsvcs
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%ALLUSERSPROFILE%\Application Data\*.
%ALLUSERSPROFILE%\Application Data\*.exe /s
%APPDATA%\*.
%APPDATA%\*.exe /s
%temp%\*.exe /s
%SYSTEMDRIVE%\*.exe
%systemroot%\*. /mp /s
%systemroot%\system32\consrv.dll
%systemroot%\system32\*.dll /lockedfiles
%windir%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
%systemroot%\System32\config\*.sav
/md5start
explorer.exe
winlogon.exe
services.exe
wininit.exe
/md5stop
HKEY_CLASSES_ROOT\CLSID\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InprocServer32 /s
HKEY_LOCAL_MACHINE\SYSTEM\SYSTEM\CurrentControlSet\Services\lanmanserver\parameters /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems /s
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\AppCertDlls /s
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList /s
HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor /s
HKEY_CURRENT_USER\Software\Microsoft\Command Processor /s
CREATERESTOREPOINT
nslookup https://www.google.fr/?gws_rd=ssl /c
SAVEMBR:0
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs



* Clique sur le bouton Analyse.

* Quand le scan est fini, utilise le site http://pjjoint.malekal.com/ pour envoyer le rapport OTL.txt (et Extra.txt si présent).
Donne le ou les liens pjjoint qui pointent vers ces rapports ici dans une réponse.
Je répète : donne le lien du rapport pjjoint ici en réponse.

NE PAS COPIER/COLLER LE RAPPORT ICI - DONNER LE LIEN PJJOINT DANS UN NOUVEAU MESSAGE


0
Réponse 8 / 9
Wizz2010 Messages postés 6 Date d'inscription lundi 30 septembre 2013 Statut Membre Dernière intervention 1 octobre 2013
1 oct. 2013 à 16:03
Voici les liens

https://pjjoint.malekal.com/files.php?id=20131001_r7c7c8v11c8

https://pjjoint.malekal.com/files.php?id=20131001_p7f14o14d9j14

A disposition
0
Réponse 9 / 9
Malekal_morte- Messages postés 180304 Date d'inscription mercredi 17 mai 2006 Statut Modérateur, Contributeur sécurité Dernière intervention 15 décembre 2020 24 662
1 oct. 2013 à 16:42
Plus de delta?
0

Discussions similaires

search engine
joja4950 -
Malekal_morte- -

3 réponses
Freebox delta bloquée à l'étape 6
Kayla5635 -
Kayla5635 -

4 réponses
Clé Wi-fi freebox delta s
bma -
Pierr10 -

1 réponse
processus searchfilterhost
sisylphe -
Xblade -

4 réponses
Norton Safe Search
greg35 -
gugu01 -

1 réponse