Je ne sais pas si le rapport est complet car mon ordi a planté après un mess d'erreur que je n'ai pas eu le tps de lire. Obligée de faire un reset ...
.
======= RAPPORT D'AD-REMOVER 1.1.4.6_B | UNIQUEMENT XP/VISTA/7 =======
.
Mit à jour par C_XX le 06.11.2009 à 18:11
Contact: AdRemover.contact@gmail.com
Site web:
http://pagesperso-orange.fr/NosTools/ad_remover.html
.
Lancé à: 11:18:38, 07/11/2009 | Mode Normal | Option: CLEAN
Exécuté de: C:\Program Files\Ad-Remover\
Système d'exploitation: Microsoft® Windows XP™ Service Pack 3 v5.1.2600
Nom du PC: PC14 | Utilisateur actuel: MYRIAM
.
============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
.
HKCU\Software\EoRezo
HKCU\Software\Microsoft\Internet Explorer\LowRegistry\Search Settings
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\SearchSettings.BHO
HKLM\Software\Classes\SearchSettings.BHO.1
HKLM\Software\Classes\TypeLib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\ItsLabel
HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\EoEngine
HKLM\Software\Microsoft\shared tools\msconfig\startupreg\EoNet
HKLM\Software\pdfforge
HKLM\Software\Classes\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKLM\Software\Classes\TypeLib\{CD082CCA-086F-4FD8-8FD7-247A0DBBD1CC}
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\76DA9915C36F3D742951F63351CF5C97
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\9B0B0584E80456A4FB98DA3973B1EB3F
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A89F1E0FE544529429C8BF82FE74CE39
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\C9667115F6A9CE340B31B63B680FF26F
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\EFB70E89C3D6D354596520DE424F89D6
HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\F49A213B5069AC348994D03F81B56C19
.
C:\DOCUME~1\MYRIAM\APPLIC~1\EoRezo
C:\Program Files\pdfforge Toolbar
Merci pour ton aide.
Voici le rapport
List'em by g3n-h@ckm@n 1.0.5.0
Thx to Chiquitine29.....
User : MYRIAM (Administrateurs) # PC14
Update on 05/11/2009 by g3n-h@ckm@n ::::: 19.00
Start at: 00:33:46 | 07/11/2009
Contact : g3n-h@ckm@n sur CCM
Intel(R) Celeron(R) CPU 2.40GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 7.0.5730.13
Windows Firewall Status : Disabled
AV : AntiVir Desktop 9.0.1.32 [ (!) Disabled | Updated ]
A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local | 31,97 Go (10,44 Go free) | FAT32
D:\ -> Disque CD-ROM
E:\ -> Disque fixe local | 19,53 Go (4,05 Go free) [divers & sauvegardes] | NTFS
F:\ -> Disque fixe local | 18,74 Go (14,37 Go free) [divers & sauvegardes] | NTFS
G:\ -> Disque CD-ROM
H:\ -> Disque fixe local | 117,05 Go (88,96 Go free) [DATA] | NTFS
I:\ -> Disque amovible
K:\ -> Disque fixe local | 335,27 Go (237,05 Go free) [IOMEGA_HDD] | FAT32
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processus en cours
C:\WINDOWXP\System32\smss.exe 476
C:\WINDOWXP\system32\csrss.exe 540
C:\WINDOWXP\system32\winlogon.exe 564
C:\WINDOWXP\system32\services.exe 608
C:\WINDOWXP\system32\lsass.exe 620
C:\WINDOWXP\system32\svchost.exe 796
C:\WINDOWXP\system32\svchost.exe 844
C:\WINDOWXP\System32\svchost.exe 948
C:\WINDOWXP\system32\svchost.exe 1004
C:\WINDOWXP\System32\svchost.exe 1136
C:\WINDOWXP\System32\svchost.exe 1220
C:\WINDOWXP\system32\spoolsv.exe 1328
C:\Program Files\Avira\AntiVir Desktop\sched.exe 1364
C:\WINDOWXP\System32\svchost.exe 1472
F:\Program Files\a-squared Free\a2service.exe 1912
C:\Program Files\Avira\AntiVir Desktop\avguard.exe 120
C:\Program Files\Java\jre6\bin\jqs.exe 240
C:\WINDOWXP\system32\nvsvc32.exe 348
C:\WINDOWXP\system32\HPZipm12.exe 384
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 428
C:\WINDOWXP\System32\svchost.exe 916
H:\Program Files\TomTom HOME 2\TomTomHOMEService.exe 1120
C:\WINDOWXP\Explorer.EXE 1128
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSVC.EXE 1440
C:\WINDOWXP\system32\SearchIndexer.exe 1684
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLIDSvcM.exe 1964
F:\Program Files\HP\HP Software Update\HPWuSchd2.exe 2256
C:\Program Files\Java\jre6\bin\jusched.exe 2304
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 2316
C:\WINDOWXP\system32\RUNDLL32.EXE 2340
C:\WINDOWXP\system32\ctfmon.exe 2364
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe 2388
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe 2396
H:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe 2404
C:\Program Files\Microsoft ActiveSync\wcescomm.exe 2416
C:\Program Files\e-Carte Bleue La Banque Postale\ecbl-lbp.exe 2444
C:\Program Files\Windows Desktop Search\WindowsSearch.exe 2528
C:\PROGRA~1\MICROS~3\rapimgr.exe 2552
C:\Program Files\OpenOffice.org 3\program\soffice.exe 2896
C:\Program Files\OpenOffice.org 3\program\soffice.bin 3220
C:\WINDOWXP\System32\alg.exe 3416
C:\Program Files\Microsoft ActiveSync\WCESMgr.exe 3572
F:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe 3620
C:\WINDOWXP\System32\wbem\wmiapsrv.exe 456
C:\WINDOWXP\System32\svchost.exe 1744
C:\Program Files\Microsoft Office\Office10\OUTLOOK.EXE 2632
C:\Program Files\Java\jre6\bin\jucheck.exe 288
C:\Program Files\Internet Explorer\iexplore.exe 660
C:\Program Files\Windows Live\Toolbar\wltuser.exe 2484
C:\WINDOWXP\system32\wscntfy.exe 1676
C:\Documents and Settings\MYRIAM\Bureau\List_Killem.exe 2452
C:\WINDOWXP\system32\cmd.exe 3004
C:\WINDOWXP\system32\wbem\wmiprvse.exe 696
C:\Documents and Settings\MYRIAM\Local Settings\Temp\1A.tmp\pv.exe 996
======================
Cles de demarrage "Run"
======================
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\\WINDOWXP\\system32\\ctfmon.exe"
"msnmsgr"="\"C:\\Program Files\\Windows Live\\Messenger\\MsnMsgr.Exe\" /background"
"Skype"="\"I:\\Program Files\\Skype\\Phone\\Skype.exe\" /nosplash /minimized"
"SpybotSD TeaTimer"="C:\\Program Files\\Spybot - Search & Destroy\\TeaTimer.exe"
"TomTomHOME.exe"="\"H:\\Program Files\\TomTom HOME 2\\TomTomHOMERunner.exe\""
"H/PC Connection Agent"="\"C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe\""
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Cmaudio"="RunDll32 cmicnfg.cpl,CMICtrlWnd"
"HP Software Update"="F:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe"
"Adobe Reader Speed Launcher"="\"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\""
"NvCplDaemon"="RUNDLL32.EXE C:\\WINDOWXP\\system32\\NvCpl.dll,NvStartup"
@=""
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre6\\bin\\jusched.exe\""
"avgnt"="\"C:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe\" /min"
"nwiz"="nwiz.exe /install"
"NvMediaCenter"="RUNDLL32.EXE C:\\WINDOWXP\\system32\\NvMcTray.dll,NvTaskbarInit"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]
@=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL]
"Installed"="1"
@=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI]
"NoChange"="1"
"Installed"="1"
@=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS]
"Installed"="1"
@=""
=====================
cles additionnelles
=====================
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
===============
Windows Registry Editor Version 5.00
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
===============
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
===============
======
BHO :
======
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\NoExplorer]
@=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
@="AcroIEHelperStub"
"NoExplorer"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
@="WormRadar.com IESiteBlocker.NavFilter"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
@=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
@="Search Helper"
"NoExplorer"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
"NoExplorer"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
"NoExplorer"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
"NoExplorer"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
@="JQSIEStartDetectorImpl"
"NoExplorer"=dword:00000001
==========================
===============
Path : C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live;C:\WINDOWXP\system32;C:\WINDOWXP;C:\WINDOWXP\System32\Wbem;C:\Program Files\Fichiers communs\Teleca Shared;C:\WINDOWXP\Microsoft.NET\Framework\v2.0.50727;C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live
===============
¤¤¤¤¤¤¤¤¤¤ Fichiers et dossiers presents :
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat
C:\WINDOWXP\bwUnin-7.2.0.137-8876480SL.exe
C:\WINDOWXP\system32\404Fix.exe
C:\WINDOWXP\System32\drivers\etc\hosts.msn
C:\WINDOWXP\system32\dumphive.exe
C:\WINDOWXP\system32\IEDFix.exe
C:\WINDOWXP\system32\Process.exe
C:\WINDOWXP\System32\SET24.tmp
C:\WINDOWXP\System32\SET26.tmp
C:\WINDOWXP\System32\SET31.tmp
C:\WINDOWXP\System32\SET35.tmp
C:\WINDOWXP\System32\SET36.tmp
C:\WINDOWXP\System32\SET37.tmp
C:\WINDOWXP\System32\SET3A.tmp
C:\WINDOWXP\System32\SET59.tmp
C:\WINDOWXP\System32\SET65.tmp
C:\WINDOWXP\system32\SrchSTS.exe
C:\WINDOWXP\system32\tmp.reg
C:\WINDOWXP\system32\VACFix.exe
C:\WINDOWXP\system32\VCCLSID.exe
C:\WINDOWXP\system32\WS2Fix.exe
¤¤¤¤¤¤¤¤¤¤ Clés de registre Presentes :
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\EoEngine"
"HKLM\SOFTWARE\Microsoft\shared tools\msconfig\startupreg\EoNet"
HKCR\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKCR\interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKCR\SearchSettings.BHO
HKCR\SearchSettings.BHO.1
HKCR\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKCU\SOFTWARE\EoRezo
HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64F56FC1-1272-44CD-BA6E-39723696E350}
HKLM\Software\Classes\CLSID\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}
HKLM\Software\Classes\Interface\{B0D071A1-36B3-4757-A126-14C89C56013A}
HKLM\Software\Classes\SearchSettings.BHO
HKLM\Software\Classes\SearchSettings.BHO.1
HKLM\Software\Classes\Typelib\{B4C656C9-F2E9-4E77-B3F4-443DF2BD778F}
HKLM\Software\Classes\TypeLib\{CD082CCA-086F-4FD8-8FD7-247A0DBBD1CC}
HKLM\SOFTWARE\ItsLabel
¤¤¤¤¤¤¤¤¤¤ C:\WINDOWXP\Prefetch :
NTOSBOOT-B00DFAAD.pf
RUNDLL32.EXE-5B1692EC.pf
USERINIT.EXE-1FF58BCC.pf
RUNDLL32.EXE-368EC932.pf
GOOGLECRASHHANDLER.EXE-200975B6.pf
MSMSGS.EXE-2B6052DE.pf
WGATRAY.EXE-1A264ED9.pf
AVGNT.EXE-200FEF40.pf
WINWORD.EXE-29F5CB89.pf
LOGONUI.EXE-1644EC43.pf
WUAUCLT.EXE-2E47CB86.pf
WMIPRVSE.EXE-014FDAED.pf
EXPLORER.EXE-017FA19D.pf
RUNDLL32.EXE-24948D97.pf
CTFMON.EXE-0C8F9E89.pf
HPWUSCHD2.EXE-36E5CBBA.pf
MSNMSGR.EXE-030AB647.pf
QUICKSTART.EXE-24C38DA1.pf
SOFFICE.EXE-358D937C.pf
JUCHECK.EXE-395165C8.pf
SPRITEDOCK.EXE-356C4C15.pf
VERCLSID.EXE-060BEEEE.pf
WLCOMM.EXE-04AE9009.pf
JUSCHED.EXE-25206883.pf
WCESMGR.EXE-2FB86E92.pf
SVCHOST.EXE-04E8EF57.pf
HPQTHB08.EXE-33CECF81.pf
ACRORD32.EXE-3A1F13AE.pf
MMC.EXE-5C083DC7.pf
JAVA.EXE-0C263507.pf
SOFFICE.BIN-01E25E9C.pf
DFRGFAT.EXE-07796A69.pf
READER_SL.EXE-2B4EA1CB.pf
MSIEXEC.EXE-3ADD4F9A.pf
IMAPI.EXE-001CD978.pf
HPQIMZONE.EXE-1220236B.pf
PF-SETUP[1].EXE-0D472D25.pf
CSRSS.EXE-06A21A57.pf
HPRBLOG.EXE-3AE2C7A6.pf
WINLOGON.EXE-19914232.pf
UPDATE.EXE-2577D203.pf
SERVICES.EXE-0D307926.pf
IEXPLORE.EXE-27122324.pf
LSASS.EXE-14C752FF.pf
A2SERVICE.EXE-037971C8.pf
AVGUARD.EXE-27095CE7.pf
JQS.EXE-1D781F77.pf
AVWSC.EXE-0283F9DD.pf
NVSVC32.EXE-223DF1E7.pf
HPZIPM12.EXE-251A68DD.pf
TOMTOMHOMESERVICE.EXE-3846E650.pf
WLIDSVC.EXE-360F8CA3.pf
SEARCHINDEXER.EXE-0F6FAC17.pf
WLIDSVCM.EXE-20CBAE73.pf
Layout.ini
TEATIMER.EXE-1F57E47A.pf
TOMTOMHOMERUNNER.EXE-338BE728.pf
OSA.EXE-2CD63980.pf
WINDOWSSEARCH.EXE-20C0F767.pf
ALG.EXE-39AA8E26.pf
RAPIMGR.EXE-04A8BC13.pf
ECBL-LBP.EXE-06E3579C.pf
WMIAPSRV.EXE-0C206BF1.pf
PF-SETUP.EXE-2CB63492.pf
PHOTOFILTRE.EXE-00101112.pf
SPRITEUNDOCK.EXE-09EBD941.pf
OUTLOOK.EXE-1E64345B.pf
RUNDLL32.EXE-53DECEBD.pf
JAVAW.EXE-2DC32ABC.pf
ACRORD32INFO.EXE-242CE4AA.pf
JAVAWS.EXE-021AC9A9.pf
RUNDLL32.EXE-570C9A8A.pf
DFRGNTFS.EXE-15DA4498.pf
RUNDLL32.EXE-55DBB834.pf
AVCENTER.EXE-1A970FA0.pf
RUNDLL32.EXE-3D08B463.pf
MMC.EXE-2BCF00AA.pf
RUNDLL32.EXE-574D9A3D.pf
SYSOCMGR.EXE-205AA6E0.pf
SEARCHPROTOCOLHOST.EXE-0E9A80D1.pf
SEARCHFILTERHOST.EXE-1409ED43.pf
NVUDISP.EXE-1836F0AE.pf
93.71_FORCEWARE_WINXP2K_INTER-035B3816.pf
NVUNINST.EXE-0861E16A.pf
SETUP.EXE-084A4B6C.pf
NVUDISP.EXE-20CD12A4.pf
RUNDLL32.EXE-5CA7938E.pf
RUNDLL32.EXE-3B50B0F9.pf
RUNDLL32.EXE-4B7A6776.pf
RUNDLL32.EXE-51B55C70.pf
RUNONCE.EXE-1CB12FAB.pf
RUNDLL32.EXE-5C4F88F2.pf
SSMYPICS.SCR-3AAD8C53.pf
RUNDLL32.EXE-451E4753.pf
WLTUSER.EXE-05A5B196.pf
RUNDLL32.EXE-421D03B9.pf
RUNDLL32.EXE-4BC82639.pf
NWIZ.EXE-16EB5018.pf
RUNDLL32.EXE-4D096ED1.pf
AVNOTIFY.EXE-05ED5FD8.pf
AVSCAN.EXE-07FC469C.pf
WSCNTFY.EXE-0FD232FF.pf
RUNDLL32.EXE-407FBC63.pf
CONTROL.EXE-0A150337.pf
GOOGLEUPDATE.EXE-1E123D86.pf
RUNDLL32.EXE-5345DB78.pf
OFFICELIVESIGNIN.EXE-042374FE.pf
HELPCTR.EXE-099BF301.pf
HELPSVC.EXE-318ACA5C.pf
MODE.COM-12929426.pf
LIST_KILLEM.EXE-1025F14B.pf
CMD.EXE-221BC7A5.pf
CSCRIPT.EXE-2AC774E7.pf
REG.EXE-1D6C71AF.pf
PV.EXE-2C0B3379.pf
¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤