Sujet Précédent Sujet Suivant

Infection virus

Fermé
spery Messages postés 1 Date d'inscription vendredi 11 mai 2007 Statut Membre Dernière intervention 11 mai 2007 - 11 mai 2007 à 22:39
 clio - 1 juil. 2007 à 22:22
bonsoir à tous,

j'ai besoin d'aide pour supprimer un virus sur mon ordi que kaspersky ne peut nettoyer.

puis je avoir de l'aide ? ci joint le rapport

Logfile of HijackThis v1.99.1
Scan saved at 22:24:54, on 11/05/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\NMSAccessU.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\retadpu2000373.exe
D:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
D:\PROGRA~1\MICROS~3\wcescomm.exe
D:\Program Files\Ipwindows\ipwins.exe
C:\WINDOWS\system32\ICROSO~1.NET\csrss.exe
C:\WINDOWS\F?nts\wuauclt.exe
D:\PROGRA~1\MICROS~3\rapimgr.exe
D:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
D:\Program Files\802.11 Wireless LAN\802.11g Wireless Cardbus & PCI Adapter HW.21 V1.30\WlanCU.exe
D:\Program Files\MSN Messenger\msnmsgr.exe
D:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\kamel\Bureau\HijackThis.exe
C:\WINDOWS\system32\net.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = c:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = c:\WINDOWS\PCHealth\HelpCtr\System\panels\blank.htm
O4 - HKLM\..\Run: [HP Software Update] D:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [runner1] C:\WINDOWS\retadpu2000373.exe 61A847B5BBF72810329B385575FA01F0B3E35B6638993F4661AA4EBD86D67C56389B284534F310F3D1DC7E4638E8323A15806F97BDE4417E70CE7C0726B954E1C2832211359826033AAC01F09DDF7618419154310B87659CA5E04E5067DF690232BC13E3C283211531856D1E27
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [WindowsUpdate] rundll32.exe "C:\WINDOWS\system32\jklucfox.dll",realset
O4 - HKCU\..\Run: [ccleaner] "D:\CCleaner\ccleaner.exe" /AUTO
O4 - HKCU\..\Run: [H/PC Connection Agent] "D:\PROGRA~1\MICROS~3\wcescomm.exe"
O4 - HKCU\..\Run: [IpWins] D:\Program Files\Ipwindows\ipwins.exe
O4 - HKCU\..\Run: [Dsao] "C:\WINDOWS\system32\ICROSO~1.NET\csrss.exe" -vt yazb
O4 - HKCU\..\Run: [Jqjpikd] C:\WINDOWS\F?nts\wuauclt.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = D:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Wireless Configuration Utility.lnk = D:\Program Files\802.11 Wireless LAN\802.11g Wireless Cardbus & PCI Adapter HW.21 V1.30\WlanCU.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scieplugin.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - D:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra 'Tools' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - D:\PROGRA~1\MICROS~3\INetRepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab
O16 - DPF: {A1F2F2CE-06AF-483C-9F12-D3BAA72477D6} (BatchDownloader Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/DigWXMSN.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - D:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: pushow32.dll,,D:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Workstation NetLogon Service ( 11Fßä#·ºÄÖ`I) - - (no file)
O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Unknown owner - D:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" -r (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\Fichiers communs\NMSAccessU.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
A voir également:

2 réponses

Réponse 1 / 2
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
11 mai 2007 à 22:48
bonsoir,

Télécharge ComboFix (par sUBs) d'un de ces liens sur ton bureau:

http://www.techsupportforum.com/sectools/combofix.exe

http://download.bleepingcomputer.com/sUBs/ComboFix.exe


Double clique combofix.exe et suis les invites

Poste le rapport!

a+
0
Réponse 2 / 2
clio
1 juil. 2007 à 22:22
Bonjour même probleme ,je poste mon rapport ,merci de me dire si il y a un probleme


ComboFix 07-06-18.2 - C:\Documents and Settings\jose\Bureau\ComboFix.exe
"jose" - 2007-07-01 20:40:45 - Service Pack 2 NTFS


((((((((((((((((((((((((( Files Created from 2007-06-01 to 2007-07-01 )))))))))))))))))))))))))))))))


2007-07-01 16:30 <REP> dr------- C:\WINDOWS\Prefetch
2007-07-01 16:23 <REP> d-------- C:\Program Files\Services en ligne
2007-07-01 16:22 11,264 --a------ C:\WINDOWS\system32\atrace.dll
2007-07-01 16:11 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll
2007-07-01 16:11 13,312 --a------ C:\WINDOWS\system32\irclass.dll
2007-07-01 16:11 <REP> d-------- C:\WINDOWS\LastGood
2007-07-01 15:59 <REP> d-------- C:\WINDOWS\setup.pss
2007-07-01 15:23 <REP> d-------- C:\WINDOWS\LastGood.Tmp
2007-07-01 13:41 49,152 --a------ C:\WINDOWS\nircmd.exe
2007-06-29 21:33 53,248 --a------ C:\WINDOWS\system32\Process.exe
2007-06-29 21:33 51,200 --a------ C:\WINDOWS\system32\dumphive.exe
2007-06-29 21:33 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe
2007-06-23 21:32 <REP> d-------- C:\Program Files\MSN Messenger
2007-06-23 21:29 <REP> d-------- C:\WINDOWS\SxsCaPendDel
2007-06-23 21:29 <REP> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
2007-06-20 15:11 53,248 --a------ C:\WINDOWS\ap561.exe
2007-06-20 15:11 119,798 -ra------ C:\WINDOWS\system32\drivers\SPCA561.SYS
2007-06-20 15:11 118,784 --a------ C:\WINDOWS\ShowBmp.exe
2007-06-20 15:11 <REP> d-------- C:\WINDOWS\Setup2K
2007-06-18 10:03 315,392 --a------ C:\WINDOWS\alcupd.exe
2007-06-18 10:03 217,088 --a------ C:\WINDOWS\Alcrmv.exe
2007-06-18 10:03 <REP> d-------- C:\Program Files\Realtek AC97
2007-06-18 09:46 <REP> d-------- C:\Intel
2007-06-04 08:35 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2007-06-04 08:35 208,248 --a------ C:\WINDOWS\system32\muweb.dll
2007-06-03 21:44 <REP> d-------- C:\Program Files\Windows Live
2007-06-02 13:54 3,426,072 --a------ C:\WINDOWS\system32\d3dx9_32.dll
2007-06-02 13:54 251,672 --a------ C:\WINDOWS\system32\xactengine2_5.dll
2007-06-02 13:53 68,888 --a------ C:\WINDOWS\system32\xinput1_3.dll
2007-06-02 13:53 62,744 --a------ C:\WINDOWS\system32\xinput1_2.dll
2007-06-02 13:53 237,848 --a------ C:\WINDOWS\system32\xactengine2_4.dll
2007-06-02 13:53 236,824 --a------ C:\WINDOWS\system32\xactengine2_3.dll
2007-06-02 13:53 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll
2007-06-02 13:53 2,297,552 --a------ C:\WINDOWS\system32\d3dx9_26.dll
2007-06-02 13:53 15,128 --a------ C:\WINDOWS\system32\x3daudio1_1.dll


(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-07-01 14:25:11 -------- d-----w C:\Program Files\Windows Media Connect 2
2007-07-01 14:22:29 -------- d-----w C:\Program Files\Movie Maker
2007-07-01 14:21:48 76,574 ----a-w C:\WINDOWS\system32\perfc00C.dat
2007-07-01 14:21:48 54,210 ----a-w C:\WINDOWS\system32\perfc040.dat
2007-07-01 14:21:48 470,376 ----a-w C:\WINDOWS\system32\perfh00C.dat
2007-07-01 14:21:48 414,786 ----a-w C:\WINDOWS\system32\perfh040.dat
2007-07-01 14:21:36 23,660 ----a-w C:\WINDOWS\system32\emptyregdb.dat
2007-07-01 14:20:56 -------- d-----w C:\Program Files\Windows NT
2007-07-01 09:14:51 -------- d-----w C:\DOCUME~1\jose\APPLIC~1\Skype
2007-06-24 07:11:39 -------- d-----w C:\Program Files\MessengerPlus! 3
2007-06-20 13:46:36 -------- d-----w C:\Program Files\WinTV
2007-06-20 13:11:46 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-06-18 08:12:18 -------- d-----w C:\DOCUME~1\jose\APPLIC~1\ATI
2007-06-18 08:03:40 -------- d-----w C:\Program Files\ATI Technologies
2007-06-18 07:45:52 93 ----a-w C:\WINDOWS\vmreg32.dll
2007-06-14 11:29:52 -------- d-----w C:\Program Files\FlashGet
2007-06-11 14:32:10 -------- d-----r C:\Program Files\eMule
2007-05-24 20:33:50 3,625 ----a-w C:\WINDOWS\mozver.dat
2007-05-18 01:58:58 339,968 ----a-w C:\WINDOWS\system32\ATIDEMGX.dll
2007-05-18 01:58:04 307,200 ----a-w C:\WINDOWS\system32\atiiiexx.dll
2007-05-18 01:57:53 268,288 ----a-w C:\WINDOWS\system32\ati2dvag.dll
2007-05-18 01:57:53 268,288 ----a-w C:\WINDOWS\system32\ati2dvag(3).dll
2007-05-18 01:57:34 2,164,736 ----a-w C:\WINDOWS\system32\drivers\ati2mtag.sys
2007-05-18 01:51:01 139,264 ----a-w C:\WINDOWS\system32\atipdlxx.dll
2007-05-18 01:50:52 26,112 ----a-w C:\WINDOWS\system32\Ati2mdxx.exe
2007-05-18 01:50:46 42,496 ----a-w C:\WINDOWS\system32\ati2edxx.dll
2007-05-18 01:50:34 118,784 ----a-w C:\WINDOWS\system32\ati2evxx.dll
2007-05-18 01:50:34 118,784 ----a-w C:\WINDOWS\system32\ati2evxx(4).dll
2007-05-18 01:49:14 479,232 ----a-w C:\WINDOWS\system32\ati2evxx.exe
2007-05-18 01:48:26 53,248 ----a-w C:\WINDOWS\system32\ATIDDC.DLL
2007-05-18 01:41:03 2,922,144 ----a-w C:\WINDOWS\system32\ati3duag.dll
2007-05-18 01:41:03 2,922,144 ----a-w C:\WINDOWS\system32\ati3duag(3).dll
2007-05-18 01:39:54 7,610,368 ----a-w C:\WINDOWS\system32\atioglx2.dll
2007-05-18 01:30:58 1,512,960 ----a-w C:\WINDOWS\system32\ativvaxx.dll
2007-05-18 01:30:58 1,512,960 ----a-w C:\WINDOWS\system32\ativvaxx(3).dll
2007-05-18 01:30:41 972,072 ----a-w C:\WINDOWS\system32\ativva6x.dat
2007-05-18 01:30:41 3,107,788 ----a-w C:\WINDOWS\system32\ativva5x.dat
2007-05-18 01:19:50 5,431,296 ----a-w C:\WINDOWS\system32\atioglxx.dll
2007-05-18 01:17:27 262,144 ----a-w C:\WINDOWS\system32\atikvmag.dll
2007-05-18 01:17:27 262,144 ----a-w C:\WINDOWS\system32\atikvmag(3).dll
2007-05-18 01:16:04 17,408 ----a-w C:\WINDOWS\system32\atitvo32.dll
2007-05-18 01:14:21 46,592 ----a-w C:\WINDOWS\system32\atiok3x2.dll
2007-05-18 01:10:21 368,640 ----a-w C:\WINDOWS\system32\ati2cqag.dll
2007-05-18 01:10:21 368,640 ----a-w C:\WINDOWS\system32\ati2cqag(3).dll
2007-05-17 19:05:00 520,192 ----a-w C:\WINDOWS\system32\ati2sgag.exe
2007-05-05 13:47:44 -------- d-----w C:\DOCUME~1\jose\APPLIC~1\Micro Application
2007-05-05 13:41:25 -------- d-----w C:\Program Files\QuickTime
2007-05-05 13:23:15 -------- d-----w C:\Program Files\Micro Application
2007-04-25 14:22:35 144,896 ----a-w C:\WINDOWS\system32\schannel(3).dll
2007-04-18 16:14:18 2,854,400 ----a-w C:\WINDOWS\system32\msi(3).dll
2007-04-18 12:44:43 669,696 ----a-w C:\WINDOWS\system32\wininet(3).dll
2007-04-18 12:44:43 619,008 ----a-w C:\WINDOWS\system32\urlmon(3).dll
2007-04-18 12:44:42 474,624 ----a-w C:\WINDOWS\system32\shlwapi(3).dll
2007-04-18 12:44:42 1,498,624 ----a-w C:\WINDOWS\system32\shdocvw(3).dll
2007-04-16 20:45:20 43,352 -c--a-w C:\WINDOWS\system32\wups2.dll
2007-04-16 20:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2(2).dll
2007-04-16 15:53:11 1,049,600 ----a-w C:\WINDOWS\system32\kernel32(3).dll
2007-04-16 13:28:22 577,536 ----a-w C:\WINDOWS\soundman.exe
2007-04-05 18:15:55 144,357 ----a-w C:\WINDOWS\system32\atiicdxx.dat


((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-01-12 20:38]
{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}=C:\Program Files\FlashGet\jccatch.dll [2007-01-29 11:46]
{53707962-6F74-2D53-2644-206D7942484F}=C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2005-05-31 02:04]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll [2006-12-15 04:23]
{AA58ED58-01DD-4d91-8333-CF10577473F7}=c:\program files\google\googletoolbar3.dll [2007-01-20 00:56]
{AE7CD045-E861-484f-8273-0445EE161910}=C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll [2005-09-24 07:41]
{F156768E-81EF-470C-9057-481BA8380DBA}=C:\Program Files\FlashGet\getflash.dll [2007-01-15 05:40]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"="C:\Program Files\Google\Gmail Notifier\gnotify.exe" [2005-07-15 23:48]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 15:28 C:\WINDOWS\soundman.exe]
"Ptipbmf"="ptipbmf.dll" [2003-06-20 09:06 C:\WINDOWS\system32\ptipbmf.dll]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2006-07-19 13:03 C:\WINDOWS\KHALMNPR.Exe]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SuperCopier.exe"="C:\Program Files\SuperCopier\SuperCopier.exe" [2003-04-25 00:03]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2007-02-07 14:58]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"tscuninstall"=%systemroot%\system32\tscupgrd.exe
"nlpo_01"=rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Srchasst"
"nlpo_02"=rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\msagent"
"nlpo_03"=rundll32 advpack.dll,DelNodeRunDLL32 "C:\WINDOWS\Help\Tours"
"nlpo_04"=cmd.exe /c md "%USERPROFILE%\Local Settings\Temp"
"nlpo_05"=cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll"
"nlpo_06"=rundll32 advpack.dll,LaunchINFSection nlite.inf,nLiteReg
"nlpo_07"=rundll32 advpack.dll,LaunchINFSection nlite.inf,S

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"SynchronousMachineGroupPolicy"=0 (0x0)
"SynchronousUserGroupPolicy"=0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoRemoteRecursiveEvents"=1 (0x1)
"ForceClassicControlPanel"=1 (0x1)
"NoSimpleStartMenu"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStrCmpLogical"=1 (0x1)
"NoTrayItemsDisplay"=0 (0x0)
"NoToolbarsOnTaskbar"=0 (0x0)
"NoResolveTrack"=0 (0x0)
"NoResolveSearch"=0 (0x0)
"NoNetworkConnections"=0 (0x0)
"NoSMHelp"=0 (0x0)
"NoRecentDocsMenu"=0 (0x0)
"NoSMMyPictures"=0 (0x0)
"NoRecentDocsHistory"=0 (0x0)
"NoStartMenuMFUprogramsList"=0 (0x0)
"NoUserNameInStartMenu"=0 (0x0)
"NoStartMenuMorePrograms"=0 (0x0)
"ClearRecentDocsOnExit"=0 (0x0)
"MaxRecentDocs"=15 (0xf)
"NoInstrumentation"=0 (0x0)
"MemCheckBoxInRunDlg"=1 (0x1)
"NoSMBalloonTip"=0 (0x0)
"DisallowCpl"=1 (0x1)
"NoLowDiskSpaceChecks"=1 (0x1)
"NoStartBanner"=01000000
"NoDesktopCleanupWizard"=1 (0x1)
"NoWelcomeScreen"=1 (0x1)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\DisallowCpl]
"1"=Polices

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Contrôleur d’état.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Contrôleur d’état.lnk
backup=C:\WINDOWS\pss\Contrôleur d’état.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Acrobat.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Acrobat.lnk
backup=C:\WINDOWS\pss\Lancement rapide d'Adobe Acrobat.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Logitech SetPoint.lnk]
path=C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\Logitech SetPoint.lnk
backup=C:\WINDOWS\pss\Logitech SetPoint.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^jose^Menu Démarrer^Programmes^Démarrage^Rapidown.lnk]
path=C:\Documents and Settings\jose\Menu Démarrer\Programmes\Démarrage\Rapidown.lnk
backup=C:\WINDOWS\pss\Rapidown.lnkStartup


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 7.0]
"C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATICCC]
"C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIModeChange]
Ati2mdxx.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"C:\Program Files\Fichiers communs\Ahead\Lib\NMBgMonitor.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenter2.0]
C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DriverMagicLogon]
"C:\Program Files\SymplisIT\DriverMagic\dmschedule.exe" /boot

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gestionnaire Antidote.exe]
C:\Program Files\Druide\Antidote\Antidote\Gestionnaire Antidote.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Nero\Nero 7\InCD\InCD.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch]
C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Kernel and Hardware Abstraction Layer]
KHALMNPR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Hardware Abstraction Layer]
"C:\Program Files\Fichiers communs\Logitech\khalshared\KHALMNPR.EXE"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MessengerPlus3]
"C:\Program Files\MessengerPlus! 3\MsgPlus.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nero PhotoShow Media Manager]
C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Fichiers communs\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD]
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ptipbmf]
rundll32.exe ptipbmf.dll,SetWriteCacheMode

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SecurDisc]
C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SetDefPrt]
C:\Program Files\Brother\Brmfl05a\BrStDvPt.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
"C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
SOUNDMAN.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
"C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StartCCC]
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
"C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{1d2d73c8-e696-11db-8bcc-000ea6c80c77}]
AutoRun\command- G:\wd_windows_tools\setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4bbf7368-9b62-11db-a78a-000ea6c80c77}]
AutoRun\command- G:\LaunchU3.exe -a

*Newly Created Service* - MSISERVER

**************************************************************************

catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-07-01 20:41:39
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

C:\WINDOWS\NAVIGMA.INI:KAVICHS 36 bytes hidden from API
C:\WINDOWS\NeroDigital.ini:KAVICHS 228 bytes hidden from API
C:\WINDOWS\nircmd.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\notepad.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\ODBC.INI:KAVICHS 36 bytes hidden from API
C:\WINDOWS\ODBCINST.INI:KAVICHS 36 bytes hidden from API
C:\WINDOWS\PhotoSnapViewer.INI:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Setup8a.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\setupact.log:KAVICHS 68 bytes hidden from API
C:\WINDOWS\setupapi.old:KAVICHS 36 bytes hidden from API
C:\WINDOWS\ShowBmp.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\soundman.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\Eudcedit.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\explorer.exe:KAVICHS 132 bytes hidden from API
C:\WINDOWS\explorer.scf:KAVICHS 36 bytes hidden from API
C:\WINDOWS\gotouninstall.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\hh.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\IsUninst.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\vbaddin.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\vmmreg32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\vmreg32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\wiadebug.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\wiaservc.log:KAVICHS 164 bytes hidden from API
C:\WINDOWS\win.ini:KAVICHS 132 bytes hidden from API
C:\WINDOWS\WindowsUpdate.log:KAVICHS 228 bytes hidden from API
C:\WINDOWS\winhelp.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\winhlp32.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\WININIT.INI:KAVICHS 68 bytes hidden from API
C:\WINDOWS\X64.d3c:KAVICHS 36 bytes hidden from API
C:\WINDOWS\_default.pif:KAVICHS 68 bytes hidden from API
C:\WINDOWS\_MSRSTRT.EXE:KAVICHS 36 bytes hidden from API
C:\WINDOWS\atiogl.xml:KAVICHS 68 bytes hidden from API
C:\WINDOWS\bootstat.dat:KAVICHS 68 bytes hidden from API
C:\WINDOWS\BRPP2KA.INI:KAVICHS 36 bytes hidden from API
C:\WINDOWS\brunin03.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\BRWMARK.INI:KAVICHS 36 bytes hidden from API
C:\WINDOWS\catchme.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\CVRPAGE.bmp:KAVICHS 68 bytes hidden from API
C:\WINDOWS\diagerr.xml:KAVICHS 36 bytes hidden from API
C:\WINDOWS\diagwrn.xml:KAVICHS 36 bytes hidden from API
C:\WINDOWS\vb.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\twain_32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\twunk_16.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\twunk_32.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\unin040c.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroBackItUp.cfg:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroBackItUp.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroMediaHome.cfg:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroMediaHome.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroShowTime.cfg:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroShowTime.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroVision.cfg:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNNeroVision.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNRecode.cfg:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UNRecode.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\unvise32qt.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\UPGRADE.TXT:KAVICHS 36 bytes hidden from API
C:\WINDOWS\KHALMNPR.Exe:KAVICHS 100 bytes hidden from API
C:\WINDOWS\maxlink.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Model.txt:KAVICHS 36 bytes hidden from API
C:\WINDOWS\mozver.dat:KAVICHS 36 bytes hidden from API
C:\WINDOWS\ALCFDRTM.EXE:KAVICHS 68 bytes hidden from API
C:\WINDOWS\ALCFDRTM.VER:KAVICHS 68 bytes hidden from API
C:\WINDOWS\Alcrmv.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\alcupd.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Antidote.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\ap561.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Ascd_tmp.ini:KAVICHS 68 bytes hidden from API
C:\WINDOWS\regedit.exe:KAVICHS 100 bytes hidden from API
C:\WINDOWS\REGLOCS.OLD:KAVICHS 68 bytes hidden from API
C:\WINDOWS\RegMagik.INI:KAVICHS 100 bytes hidden from API
C:\WINDOWS\SchedLgU.Txt:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system.ini:KAVICHS 68 bytes hidden from API
C:\WINDOWS\TASKMAN.EXE:KAVICHS 68 bytes hidden from API
C:\WINDOWS\Tw561a.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\Tw561a.src:KAVICHS 36 bytes hidden from API
C:\WINDOWS\twain.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\$winnt$.inf:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\12520437.cpx:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\12520850.cpx:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\3D Windows XP.scr:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\6to4svc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\CONFIG.NT:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\CONFIG.TMP:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\confmsp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\conime.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\console.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\control.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\convert.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\corpol.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\country.sys:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\credui(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\credui(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\credui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\crtdll.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\crypt32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\crypt32(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\crypt32(4).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\crypt32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\adsnt.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\adsnw.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\advapi32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\advapi32(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\advapi32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\advpack.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ahui.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\Alerte.mp3:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\alg(2).exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\alg(3).exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\alg.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\alrsvc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\alsndmgr.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\alsndmgr.wav:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\amstream.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ansi.sys:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dhcpcsvc(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dhcpcsvc(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dhcpcsvc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dhcpmon.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dhcpsapi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\DHTMLEd.ocx:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\diactfrm.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\diantz.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\digest.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\DigList.lst:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\DigNames.lst:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\dimap.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dinput.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dinput8.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\diskcomp.com:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\diskcopy.com:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\diskcopy.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\diskpart.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\diskperf.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dispex.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cabview.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cacls.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\calc.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\camocx.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\capesnpn.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cards.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\catsrv(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\catsrv.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\catsrvps.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\catsrvut(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\catsrvut.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ccfgnt.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cdfview.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cdm.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cdmodem.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cdosys.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_21866.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_28591.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_28592.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_28593.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\C_28594.NLS:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\C_28595.NLS:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\C_28597.NLS:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_28598.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_28599.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_28603.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_28605.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_437.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\c_500.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_737.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_775.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_850.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_852.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_855.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_857.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_860.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_861.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_863.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_865.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_866.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_869.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_874.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_875.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_932.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_936.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_949.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_950.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\a3d.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\adsnds.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\apcups.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\asycfilt.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ati2evxx(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\atmfd.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\avicap32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\bitsprx2.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\brsvc01a.bsi:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\cic.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cmdow.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\comctl32.ocx:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\cryptui(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\csrss(3).exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\c_20905.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\d3d8.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpvacm.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\docprop.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\docprop2.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\doskey.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dosx.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpcdll.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dplay.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dplaysvr.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dplayx.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpmodemx.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpnaddr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpnet.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpnhpast.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpnhupnp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpnlobby.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpnmodem.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpnsvr.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpnwsock.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\dpserial.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\encapi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\encdec.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\EqnClass.Dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ersvc(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ersvc(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ersvc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\es(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\es(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\es(4).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\es.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\esent(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\esent(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\esent.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\esent97.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\esentprf.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\esentutl.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\eudcedit.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\eventcls.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\eventcreate.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\eventlog(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\eventlog(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\eventlog.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\eventquery.vbs:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\findstr.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\finger.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\firewall.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\fixmapi.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\fldrclnr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\fltlib.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\fltMc.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\Flurry.scr:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FlushCode.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20CHS.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20CHT.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20DEU.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20ENU.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20ESN.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20FRA.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20ITA.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20KOR.DLL:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\FM20NLD.DLL:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\grpconv.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\h323.tsp:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\h323msp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\hal.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\hccoin.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\Hcwchan.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\Hcwdlace.ax:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\hcwfread.ax:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\hcwhook.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\hcwi2c32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\hcwpnp32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\Hcwsnap.ax:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\hcwsnbd9.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\hcwsplit.ax:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\Hcwtvdlg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\igmpagnt.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\iissuba.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ils.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\imaadp32.acm:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\imagehlp(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\imagehlp(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\imagehlp.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\imagX7.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\imagXpr7.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\imagXR7.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\imagXRA7.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\imapi.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\imeshare.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\imgutil.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\imm32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\imm32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\imsins.BAK:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\inetcfg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\inetcomm.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\inetcpl.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\inetcplc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\inetmib1.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\inetpp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\inetppui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\inetres.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\infosoft.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\initpki.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\inked.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\InnovaDSXP.ocx:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\input.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\inseng.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jgaw400.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jgdw400.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jgmd400.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jgpl400.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jgsd400.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jgsh400.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jobexec.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\joy.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jpicpl32.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jrview.chm:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jrview.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jrview_lng.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jscript.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\jsfr.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\jsproxy.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jupdate-1.5.0_07-b03.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\jupdate-1.5.0_11-b03.log:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdfr.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\kbdgae.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdgr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdgr1.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdic.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdinbe1.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdinben.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdinmal.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdir.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdit.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdit142.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdla.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdmac.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdmaori.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdmlt47.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdusl.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdusr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kbdusx.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kd1394.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kdcom.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\kemutb.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\KemUtil.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\KemWnd.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\KemXML.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\kerberos(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kerberos(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kerberos.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kernel32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kernel32(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\kernel32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\key01.sys:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\keyboard.drv:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\keyboard.sys:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\keymgr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\lzexpand.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\l_except.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\l_intl.nls:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\magnify.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mag_hook.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\main.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\makecab.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mapi32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mapistub.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mcastmib.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mcd32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mcdsrv32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mchgrcoi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciavi.drv:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciavi32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mcicda.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciole16.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciole32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciqtz32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciseq.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciseq.drv:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciwave.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mciwave.drv:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mdhcp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mdimon.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mdminst.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mdwmdmsp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mem.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mf3216.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mfc40loc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mfc40u.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mfc42.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\MFC42FRA.DLL:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mfc42loc.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mfc42u.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\MFC71.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\MFC71u.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\mfcsubs(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mfcsubs.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mprdim.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mprmsg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mprui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqad.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqbkup.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqcertui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqdscli.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqgentr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqise.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqlogmgr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqoa.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqoa.tlb:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqoa10.tlb:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqoa20.tlb:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqperf.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqqm.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mqrt.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msg.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msg711.acm:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msg723.acm:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msgina(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msgina(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msgina.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\msgsm32.acm:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msgsvc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msh261.drv:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msh263.drv:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mshearts.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mshta.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mshtml.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mshtml.tlb:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mshtmled.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\mshtmler.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msi(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msi(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msi.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msident.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msidle(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msidle(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msidle.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msidntld.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msieftp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msiexec.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\msihnd.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msimg32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msimg32(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\msimg32.dll:KAVICHS 132 bytes hidden from API
C:\WINDOWS\system32\muweb.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\muzika.xm:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mycomput.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\mydocs.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\narrator.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\narrhook.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\nbtstat.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ncobjapi(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ncobjapi(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ncobjapi.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ncpa.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ncxpnt.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\noise.fra:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\noise.ita:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\noise.nld:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\noise.sve:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\noise.tha:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\Nostalgic.scr:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\notepad.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\npptools.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\nslookup.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntbackup.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntdll(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntdll(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntdll.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ntdos.sys:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntdos404.sys:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntdos411.sys:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntdos412.sys:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntdos804.sys:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntdsapi(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntdsapi(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntdsapi.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ntoskrnl.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ntprint.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntsd.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntsdexts.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntshrui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ntvdm.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olecli.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olecli32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olecli32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olecnv32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olecnv32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\oledlg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\oleprn.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olepro32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\olesvr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olesvr32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olesvr32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olethk32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\olethk32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\oodag.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\oodagmg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\oodagrs.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\oodbs.exe:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\OODBS.lor:KAVICHS 228 bytes hidden from API
C:\WINDOWS\system32\oodbsrs.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\ootmapi.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\openfiles.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\opengl32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\osk.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\osuninst.dll:KAVICHS 132 bytes hidden from API
C:\WINDOWS\system32\osuninst.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\p2p.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\p2pgasvc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\p2pgraph.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\perfh009.dat:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\perfh00C.dat:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\perfh040.dat:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\perfmon.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\perfnet.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\perfnw.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\perfos.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\perfproc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\perfts.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\pernille.ini:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\Pernille.scr:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\print.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\printui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\prncnfg.vbs:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\prndrvr.vbs:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\prnjobs.vbs:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\prnmngr.vbs:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\prnport.vbs:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\prnqctl.vbs:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\Process.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\proctexe.ocx:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\profmap(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\profmap(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\profmap.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\progman.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\proquota.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\proxycfg.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\psapi(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\psapi(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\psapi.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\psbase(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\psbase(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\psbase.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\pschdprf.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasdial.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasdlg(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasdlg(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasdlg.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rasman(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasman(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasman.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasmans.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasmontr.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasmxs.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasphone.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasppp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasrad.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rassapi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rasser.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rastapi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rastls.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rcbdyctl.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rcimlby.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rcp.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rdchost.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsfsaps.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsh.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rshx32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsm.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsmps.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsmsink.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsmui.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsnotify.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsopprov.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsvp.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rsvpmsg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsvpperf.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rsvpsp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rtipxmib.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\RtlCPAPI.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\RTLCPL.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\rtm.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rtutils(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rtutils(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\rtutils.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sdhcinst.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sdpblb.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\secedit.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\seclogon(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\seclogon(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\seclogon.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\secupd.dat:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\secupd.sig:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\secur32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\secur32(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\secur32(4).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\secur32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\security(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\security.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sendcmsg.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sendmail.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sol.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sort.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sortkey.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\sorttbls.nls:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\sound.drv:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\spider.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\spiisupd.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\spmsg.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\spnike.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\spnpinst.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\spoolss.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\spoolsv.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\sprestrt.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sprio600.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sprio800.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\spupdsvc.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\spxcoins.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sysdm.cpl:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sysedit.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sysinv.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\syskey.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sysmon.ocx:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\sysocmgr.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\syssetup.dll:KAVICHS 132 bytes hidden from API
C:\WINDOWS\system32\system.drv:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\systeminfo.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\systray.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\t2embed.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\TABCTFR.DLL:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\TABCTL32.OCX:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tapi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tapi3.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tapi32(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tapi32(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tapi32.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\tapiperf.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tapisrv.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tapiui.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tracert.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tracert6.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\traffic.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tree.com:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\triedit.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\trkwks(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\trkwks(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\trkwks.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tsappcmp.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tsbyuv.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\tscfgwmi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tscon.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tscupgrd.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\tsd32.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tsddd.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tsdiscon.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\tskill.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\vcdex.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\vdmdbg.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\vdmredir.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\VEN2232.OLB:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\ver.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\verclsid.exe:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\verifier.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\verifier.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\version(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\version(3).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\version.dll:KAVICHS 100 bytes hidden from API
C:\WINDOWS\system32\vfind.exe:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\vfpodbc.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\vfwwdm32.dll:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\vga(2).dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\vga.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\vga.drv:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\vga256.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\vga64k.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\vidcap.ax:KAVICHS 68 bytes hidden from API
C:\WINDOWS\system32\Vista Aurora.scr:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\Vista Bubbles.scr:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbdbase.ita:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wbdbase.sve:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wdfapi.dll:KAVICHS 36 bytes hidden from API
C:\WINDOWS\system32\wdfmgr.
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
Virus détecté
Koony -
MisteryBean -

6 réponses
problême Opéra est ce un virus??
sand2504 -
sand2504 -

85 réponses