Antiviris XP pro = virus
Fermé
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
-
17 mars 2009 à 19:35
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 24 mars 2009 à 12:03
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 24 mars 2009 à 12:03
A voir également:
- Antiviris XP pro = virus
- Cle windows xp - Guide
- Telecharger windows xp - Télécharger - Systèmes d'exploitation
- I14 pro max - Accueil - Guide téléphones
- Ccleaner pro gratuit - Télécharger - Optimisation
- Iptv smarters pro avis - Forum Box et Streaming vidéo
67 réponses
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
20 mars 2009 à 18:59
20 mars 2009 à 18:59
j'avais mis un scan rapide ....
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
20 mars 2009 à 19:01
20 mars 2009 à 19:01
voilà un scan mais j'ai quand même fais scan rapide et c'est long !! voilà l'autre !!
############################## [ FindyKill V4.720 ]
# User : R‚mi (Utilisateurs) # NOM-2D74BF4DA8B
# Update on 19/03/09 by Chiquitine29
# Start at: 18:59:49 | 20/03/2009
# AMD Athlon(tm) 64 Processor 3500+
# Microsoft Windows XP dition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.11
# Windows Firewall Status : Disabled
# AV : avast! antivirus 4.8.1229 [VPS 080731-0] 4.8.1229 [ Enabled | (!) Outdated ]
# C:\ # Disque fixe local # 232,88 Go (163,82 Go free) [445174] # NTFS
# E:\ # Disque amovible
# F:\ # Disque amovible
# G:\ # Disque amovible
# H:\ # Disque amovible
# I:\ # Disque CD-ROM # 3,05 Go (0 Mo free) [Champion Rider] # CDFS
# J:\ # Disque amovible
############################## [ Processus actifs ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\frmwrk32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\msdtc.exe
C:\WINDOWS\system32\dllhost.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## [ Fichiers / Dossiers infectieux C:\ ]
################## [ C:\WINDOWS ]
################## [ C:\WINDOWS\system32 ]
################## [ C:\WINDOWS\system32\drivers ]
################## [ C:\.. Application Data ... ]
################## [ Registre / Clés infectieuses ]
################## [ Recherche dans supports amovibles]
# Contenu de l'autorun : I:\autorun.inf
[autorun]
open=Launch.exe
# Presence des fichiers :
Found ! [29/08/2008 15:10][-r-------] - I:\autorun.inf
################## [ Registre / Mountpoint2 ]
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35dc3c2b-30f2-11db-90f7-0015f2585dd2}\Shell\AutoRun\command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d3df40cc-959a-11db-91c4-0015f2585dd2}\Shell\AutoRun\command
################## [ ! Fin du rapport # FindyKill V4.720 ! ]
############################## [ FindyKill V4.720 ]
# User : R‚mi (Utilisateurs) # NOM-2D74BF4DA8B
# Update on 19/03/09 by Chiquitine29
# Start at: 18:59:49 | 20/03/2009
# AMD Athlon(tm) 64 Processor 3500+
# Microsoft Windows XP dition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.11
# Windows Firewall Status : Disabled
# AV : avast! antivirus 4.8.1229 [VPS 080731-0] 4.8.1229 [ Enabled | (!) Outdated ]
# C:\ # Disque fixe local # 232,88 Go (163,82 Go free) [445174] # NTFS
# E:\ # Disque amovible
# F:\ # Disque amovible
# G:\ # Disque amovible
# H:\ # Disque amovible
# I:\ # Disque CD-ROM # 3,05 Go (0 Mo free) [Champion Rider] # CDFS
# J:\ # Disque amovible
############################## [ Processus actifs ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\frmwrk32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\msdtc.exe
C:\WINDOWS\system32\dllhost.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## [ Fichiers / Dossiers infectieux C:\ ]
################## [ C:\WINDOWS ]
################## [ C:\WINDOWS\system32 ]
################## [ C:\WINDOWS\system32\drivers ]
################## [ C:\.. Application Data ... ]
################## [ Registre / Clés infectieuses ]
################## [ Recherche dans supports amovibles]
# Contenu de l'autorun : I:\autorun.inf
[autorun]
open=Launch.exe
# Presence des fichiers :
Found ! [29/08/2008 15:10][-r-------] - I:\autorun.inf
################## [ Registre / Mountpoint2 ]
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{35dc3c2b-30f2-11db-90f7-0015f2585dd2}\Shell\AutoRun\command
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d3df40cc-959a-11db-91c4-0015f2585dd2}\Shell\AutoRun\command
################## [ ! Fin du rapport # FindyKill V4.720 ! ]
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
20 mars 2009 à 19:02
20 mars 2009 à 19:02
ok après le rapport malwarebyte:
Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir
--> Double clic sur le raccourci FindyKill sur ton bureau
--> Au menu principal,choisi l option 2 (Suppression)
/!\ il y aura 2 redémarrage, laisse travailler l outils jusqu a l apparition du message "nettoyage effectué"
/!\ Ne te sert pas du pc durant la suppression , ton bureau ne sera pas accessible c est normal !
-------> ensuite post le rapport FindyKill.txt
Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
Note : Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides
Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) suceptible d avoir été infectés sans les ouvrir
--> Double clic sur le raccourci FindyKill sur ton bureau
--> Au menu principal,choisi l option 2 (Suppression)
/!\ il y aura 2 redémarrage, laisse travailler l outils jusqu a l apparition du message "nettoyage effectué"
/!\ Ne te sert pas du pc durant la suppression , ton bureau ne sera pas accessible c est normal !
-------> ensuite post le rapport FindyKill.txt
Note : le rapport FindyKill.txt est sauvegardé a la racine du disque
Note : Si le Bureau ne réapparait pas presse Ctrl + Alt + Suppr , Onglet "Fichier" , "Nouvelle tâche" , tapes explorer.exe et valides
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
20 mars 2009 à 19:38
20 mars 2009 à 19:38
il y a toujours le rapport
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
20 mars 2009 à 19:42
20 mars 2009 à 19:42
ok j'attendrai
il doit etre plein ton disque dur!!!
et ensuite tu fera findykill option 2 comme indiqué au dessus
il doit etre plein ton disque dur!!!
et ensuite tu fera findykill option 2 comme indiqué au dessus
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
20 mars 2009 à 19:44
20 mars 2009 à 19:44
lol il reste 163 giga alors tu vois
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
20 mars 2009 à 19:45
20 mars 2009 à 19:45
:)
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
20 mars 2009 à 19:52
20 mars 2009 à 19:52
c'est con je vais devoir partir
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
20 mars 2009 à 20:12
20 mars 2009 à 20:12
on verra demain sinon
pour la suite!
tu mettra le rapport malwarebyte, findykill et un nouveau rsit (dans l'ordre)
pour la suite!
tu mettra le rapport malwarebyte, findykill et un nouveau rsit (dans l'ordre)
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
22 mars 2009 à 11:35
22 mars 2009 à 11:35
tout est résolu !! merci bcp ya plus de virus : seulement je peux plus changer mon fond d'écran car ça bugg donc il en reste un de virus snif
je fais comment ?
je fais comment ?
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
22 mars 2009 à 11:36
22 mars 2009 à 11:36
un autre truc je ne peux plus marquer les pages(favoris sur firefox) j'ai tout essayé
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
22 mars 2009 à 11:54
22 mars 2009 à 11:54
tu me colle les rapports demandés ...
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
22 mars 2009 à 15:48
22 mars 2009 à 15:48
malwarebyte : c'est trop long donc laisse tombé a chaque fois qu'il analyse la session de mon père et ses truc dans local settings /tempory internet files ça met plus d'une heure !! et ça en ai à 35 000 fichiers testé et ça rame et il y a quatre éléments infectés.
############################## [ FindyKill V4.720 ]
# User : R‚mi (Utilisateurs) # NOM-2D74BF4DA8B
# Update on 19/03/09 by Chiquitine29
# Start at: 15:37:21 | 22/03/2009
# AMD Athlon(tm) 64 Processor 3500+
# Microsoft Windows XP dition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.11
# Windows Firewall Status : Enabled
# AV : avast! antivirus 4.8.1229 [VPS 080731-0] 4.8.1229 [ Enabled | (!) Outdated ]
# C:\ # Disque fixe local # 232,88 Go (162,73 Go free) [445174] # NTFS
# E:\ # Disque amovible
# F:\ # Disque amovible
# G:\ # Disque amovible
# H:\ # Disque amovible
# I:\ # Disque CD-ROM # 3,05 Go (0 Mo free) [Champion Rider] # CDFS
# J:\ # Disque amovible
############################## [ Processus actifs ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## [ Fichiers / Dossiers infectieux C:\ ]
################## [ C:\WINDOWS ]
################## [ C:\WINDOWS\system32 ]
################## [ C:\WINDOWS\system32\drivers ]
################## [ C:\.. Application Data ... ]
################## [ Registre / Clés infectieuses ]
################## [ Recherche dans supports amovibles]
# Contenu de l'autorun : I:\autorun.inf
[autorun]
open=Launch.exe
# Presence des fichiers :
Found ! [29/08/2008 15:10][-r-------] - I:\autorun.inf
################## [ Registre / Mountpoint2 ]
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d3df40cc-959a-11db-91c4-0015f2585dd2}\Shell\AutoRun\command
################## [ ! Fin du rapport # FindyKill V4.720 ! ]
Logfile of random's system information tool 1.05 (written by random/random)
Run by Rémi at 2009-03-22 15:45:57
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 167 GB (70%) free of 238 GB
Total RAM: 1023 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:46:09, on 22/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\Rémi\Bureau\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Rémi.exe
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Nxuyagogagimogo] rundll32.exe "C:\WINDOWS\Plaheb.dll",e
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 3.79\AMVConverter\grab.html
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 3.79\MediaManager\grab.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab55762.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{C06439F4-A9EC-433E-A511-08C6186E6ADE}: NameServer = 212.30.96.108,213.203.124.146
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Update Service (gupdate1c98b9abbe953e8) (gupdate1c98b9abbe953e8) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.30\bin\mysqld.exe
############################## [ FindyKill V4.720 ]
# User : R‚mi (Utilisateurs) # NOM-2D74BF4DA8B
# Update on 19/03/09 by Chiquitine29
# Start at: 15:37:21 | 22/03/2009
# AMD Athlon(tm) 64 Processor 3500+
# Microsoft Windows XP dition familiale (5.1.2600 32-bit) # Service Pack 3
# Internet Explorer 7.0.5730.11
# Windows Firewall Status : Enabled
# AV : avast! antivirus 4.8.1229 [VPS 080731-0] 4.8.1229 [ Enabled | (!) Outdated ]
# C:\ # Disque fixe local # 232,88 Go (162,73 Go free) [445174] # NTFS
# E:\ # Disque amovible
# F:\ # Disque amovible
# G:\ # Disque amovible
# H:\ # Disque amovible
# I:\ # Disque CD-ROM # 3,05 Go (0 Mo free) [Champion Rider] # CDFS
# J:\ # Disque amovible
############################## [ Processus actifs ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## [ Fichiers / Dossiers infectieux C:\ ]
################## [ C:\WINDOWS ]
################## [ C:\WINDOWS\system32 ]
################## [ C:\WINDOWS\system32\drivers ]
################## [ C:\.. Application Data ... ]
################## [ Registre / Clés infectieuses ]
################## [ Recherche dans supports amovibles]
# Contenu de l'autorun : I:\autorun.inf
[autorun]
open=Launch.exe
# Presence des fichiers :
Found ! [29/08/2008 15:10][-r-------] - I:\autorun.inf
################## [ Registre / Mountpoint2 ]
Found ! - HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d3df40cc-959a-11db-91c4-0015f2585dd2}\Shell\AutoRun\command
################## [ ! Fin du rapport # FindyKill V4.720 ! ]
Logfile of random's system information tool 1.05 (written by random/random)
Run by Rémi at 2009-03-22 15:45:57
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 167 GB (70%) free of 238 GB
Total RAM: 1023 MB (49% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:46:09, on 22/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\Rémi\Bureau\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Rémi.exe
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.0.926.3450\swg.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Nxuyagogagimogo] rundll32.exe "C:\WINDOWS\Plaheb.dll",e
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 3.79\AMVConverter\grab.html
O8 - Extra context menu item: Add to Windows &Live Favorites - https://onedrive.live.com/?id=favorites
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 3.79\MediaManager\grab.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/7/1540/52/20061205/qtinstall.info.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab55762.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{C06439F4-A9EC-433E-A511-08C6186E6ADE}: NameServer = 212.30.96.108,213.203.124.146
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: Google Update Service (gupdate1c98b9abbe953e8) (gupdate1c98b9abbe953e8) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.30\bin\mysqld.exe
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
22 mars 2009 à 17:48
22 mars 2009 à 17:48
analyse ces 3 fichiers sur virus total et colle les rapports: https://www.virustotal.com/gui/
C:\WINDOWS\Plaheb.dll
C:\WINDOWS\system32\senekanmfveovr.dll
C:\WINDOWS\system32\senekajkdksqcw.dll
__________________
pour findykill j'avais dis option 2 et non 1!
__________________
utilise pour supprimer tes traces
CCLEANER: (lance un nettoyage et répare 3 fois le registre) sans installer la barre yahoo
(dans les options puis avancé :désactive la case: effacer les fichiers de plus de 48 heures)
https://www.malekal.com/tutoriel-ccleaner/
https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
_________________
a plus
je me mets ceci de coté
D:\AdobeR.exe e
C:\found.000
C:\WINDOWS\Plaheb.dll
C:\WINDOWS\system32\KuzSmall.exe
C:\WINDOWS\system32\ntdll64.exe
C:\WINDOWS\system32\frmwrk32.exe
C:\WINDOWS\system32\303369.exe
C:\WINDOWS\system32\senekanmfveovr.dll
C:\WINDOWS\system32\senekajkdksqcw.dll
C:\WINDOWS\system32\senekaybwrtudp.dll
C:\WINDOWS\fxsteller.exe
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Nxuyagogagimogo"=-
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{35dc3c2b-30f2-11db-90f7-0015f2585dd2}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d3df40cc-959a-11db-91c4-0015f2585dd2}]
C:\WINDOWS\Plaheb.dll
C:\WINDOWS\system32\senekanmfveovr.dll
C:\WINDOWS\system32\senekajkdksqcw.dll
__________________
pour findykill j'avais dis option 2 et non 1!
__________________
utilise pour supprimer tes traces
CCLEANER: (lance un nettoyage et répare 3 fois le registre) sans installer la barre yahoo
(dans les options puis avancé :désactive la case: effacer les fichiers de plus de 48 heures)
https://www.malekal.com/tutoriel-ccleaner/
https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
_________________
a plus
je me mets ceci de coté
D:\AdobeR.exe e
C:\found.000
C:\WINDOWS\Plaheb.dll
C:\WINDOWS\system32\KuzSmall.exe
C:\WINDOWS\system32\ntdll64.exe
C:\WINDOWS\system32\frmwrk32.exe
C:\WINDOWS\system32\303369.exe
C:\WINDOWS\system32\senekanmfveovr.dll
C:\WINDOWS\system32\senekajkdksqcw.dll
C:\WINDOWS\system32\senekaybwrtudp.dll
C:\WINDOWS\fxsteller.exe
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Nxuyagogagimogo"=-
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{35dc3c2b-30f2-11db-90f7-0015f2585dd2}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d3df40cc-959a-11db-91c4-0015f2585dd2}]
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
23 mars 2009 à 12:13
23 mars 2009 à 12:13
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.03.22 Trojan-Dropper.Agent!IK
AhnLab-V3 5.0.0.2 2009.03.22 Win-Trojan/Downloader.40448.DZ
AntiVir 7.9.0.120 2009.03.21 TR/Dldr.Agent.bmhl
Authentium 5.1.2.4 2009.03.21 -
Avast 4.8.1335.0 2009.03.21 Win32:Trojan-gen {Other}
AVG 8.5.0.283 2009.03.21 SHeur2.WQC
BitDefender 7.2 2009.03.22 -
CAT-QuickHeal 10.00 2009.03.21 TrojanDownloader.Agent.bmhl
ClamAV 0.94.1 2009.03.22 -
Comodo 1080 2009.03.22 -
DrWeb 4.44.0.09170 2009.03.22 Trojan.DownLoad.28462
eSafe 7.0.17.0 2009.03.19 -
eTrust-Vet 31.6.6409 2009.03.20 -
F-Prot 4.4.4.56 2009.03.21 -
F-Secure 8.0.14470.0 2009.03.22 Trojan-Downloader.Win32.Agent.bmqs
Fortinet 3.117.0.0 2009.03.22 W32/Agent.BMQS!tr.dldr
GData 19 2009.03.22 Win32:Trojan-gen {Other}
Ikarus T3.1.1.48.0 2009.03.22 Trojan-Dropper.Agent
K7AntiVirus 7.10.678 2009.03.21 Trojan.Win32.Malware.1
Kaspersky 7.0.0.125 2009.03.22 Trojan-Downloader.Win32.Agent.bmqs
McAfee 5561 2009.03.22 Generic Downloader.x
McAfee+Artemis 5561 2009.03.22 Generic Downloader.x
McAfee-GW-Edition 6.7.6 2009.03.21 Trojan.Dldr.Agent.bmhl
Microsoft 1.4502 2009.03.22 Trojan:Win32/Hiloti.gen!A
NOD32 3953 2009.03.21 Win32/TrojanDownloader.Small.OHD
Norman 6.00.06 2009.03.20 -
nProtect 2009.1.8.0 2009.03.22 -
Panda 10.0.0.10 2009.03.22 Trj/CI.A
PCTools 4.4.2.0 2009.03.22 -
Prevx1 V2 2009.03.22 High Risk Fraudulent Security Program
Rising 21.21.62.00 2009.03.22 -
Sophos 4.39.0 2009.03.22 Mal/Behav-172
Sunbelt 3.2.1858.2 2009.03.21 Trojan-Downloader.Win32.Agent.bmqs
Symantec 1.4.4.12 2009.03.22 Downloader
TheHacker 6.3.3.3.287 2009.03.22 Trojan/Downloader.Agent.bmhl
TrendMicro 8.700.0.1004 2009.03.22 -
VBA32 3.12.10.1 2009.03.22 -
ViRobot 2009.3.20.1658 2009.03.20 -
VirusBuster 4.6.5.0 2009.03.22 Trojan.DL.Agent.HNDF
Information additionnelle
File size: 40448 bytes
MD5...: bd9874e636dab2aa57c684d2f9c93b46
SHA1..: d286da3acca01abaffa0efa18db638d4f9e7a5c1
SHA256: 5f9b6d4515a7a4dd39df60c1ffa2bfc9731cc00841934e49a5e389bd9fd06c19
SHA512: e90f2cc4ae156d2e633fe4bfbde41187a8812bd4284dfdf699f197123338d9bd
2c2df2def7f3eda5f47fff61b709cd49b03e3a6dabf7b19862f1c04eba58e547
ssdeep: 768:JBkL5zF5Q0FYHl0qwHYHSyPC9Bb/34yZCnCaTnQJdLfTQ:J+iFYHL/o20XbQ
JdL0
PEiD..: -
TrID..: File type identification
Win64 Executable Generic (80.9%)
Win32 Executable Generic (8.0%)
Win32 Dynamic Link Library (generic) (7.1%)
Generic Win/DOS Executable (1.8%)
DOS Executable Generic (1.8%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x6234
timedatestamp.....: 0x48e67649 (Fri Oct 03 19:45:13 2008)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x7000 0x6e00 7.58 1692230c196822e00f35c1ba4ec989e2
.data 0x8000 0x2000 0x1a00 6.19 28495e94a450f3b7ed4db53dfdd1111a
.rsrc 0xa000 0x1000 0x400 2.81 efe904ebbc2c5d20f4bf28ec043e052e
.reloc 0xb000 0x1000 0x200 3.39 6e454f76320f17b547a7ac9c3dc9243b
( 5 imports )
> KERNEL32.dll: ExitProcess, ExitThread, GetVersion, HeapAlloc, HeapCreate, LockResource
> msvcrt.dll: strpbrk, vswprintf, wcscat, sscanf, __p__fmode, _exit, exit, fwprintf, printf, wcscmp
> user32.dll: SetWindowTextA, UnionRect, PostQuitMessage, InflateRect, GetDlgItem, GetClassLongA, DefWindowProcA, RedrawWindow
> OLEAUT32.dll: -, -
> SHLWAPI.dll: ChrCmpIA, SHDeleteKeyA
( 0 exports )
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.03.23 Trojan.Win32.Monder!IK
AhnLab-V3 5.0.0.2 2009.03.23 Win-Trojan/TDSS.22016
AntiVir 7.9.0.120 2009.03.23 TR/Crypt.XPACK.Gen
Authentium 5.1.2.4 2009.03.23 -
Avast 4.8.1335.0 2009.03.23 Win32:Sudiet
AVG 8.5.0.283 2009.03.23 Generic12.CCGV
BitDefender 7.2 2009.03.23 Trojan.TDss.BG
CAT-QuickHeal 10.00 2009.03.23 Trojan.Monder.gen
ClamAV 0.94.1 2009.03.23 -
Comodo 1080 2009.03.22 -
DrWeb 4.44.0.09170 2009.03.23 -
eSafe 7.0.17.0 2009.03.19 Win32.TRCrypt.XPACK
eTrust-Vet 31.6.6412 2009.03.23 Win32/Vundo.CJJ
F-Prot 4.4.4.56 2009.03.23 -
F-Secure 8.0.14470.0 2009.03.23 Trojan.Win32.Monder.gen
Fortinet 3.117.0.0 2009.03.23 W32/Monder!tr
GData 19 2009.03.23 Trojan.TDss.BG
Ikarus T3.1.1.48.0 2009.03.23 Trojan.Win32.Monder
K7AntiVirus 7.10.678 2009.03.21 Trojan.Win32.Monder.gen
Kaspersky 7.0.0.125 2009.03.23 Trojan.Win32.Monder.gen
McAfee 5561 2009.03.22 Vundo
McAfee+Artemis 5561 2009.03.22 Vundo
McAfee-GW-Edition 6.7.6 2009.03.23 Trojan.Crypt.XPACK.Gen
Microsoft 1.4502 2009.03.23 Trojan:Win32/Alureon.BJ
NOD32 3953 2009.03.21 a variant of Win32/Adware.Virtumonde.NCB
Norman 6.00.06 2009.03.20 W32/Vundo.GUE
nProtect 2009.1.8.0 2009.03.23 Trojan/W32.Monder.22016
Panda 10.0.0.10 2009.03.22 Spyware/Virtumonde
PCTools 4.4.2.0 2009.03.22 Trojan.Monder!sd6
Prevx1 V2 2009.03.23 Low Risk Adware
Rising 21.22.02.00 2009.03.23 -
Sophos 4.39.0 2009.03.23 Troj/Virtum-Gen
Sunbelt 3.2.1858.2 2009.03.22 Trojan.Win32.Monder.gen
Symantec 1.4.4.12 2009.03.23 Adware.VirtuMonde
TheHacker 6.3.3.4.287 2009.03.23 Trojan/Monder.gen
TrendMicro 8.700.0.1004 2009.03.23 -
VBA32 3.12.10.1 2009.03.23 Trojan.Win32.Monder.gen
ViRobot 2009.3.23.1659 2009.03.23 Spyware.Monder.22016
VirusBuster 4.6.5.0 2009.03.22 Trojan.Monder.KOO
Information additionnelle
File size: 22016 bytes
MD5...: 2c38f283dd051ff9cdfcb9487d01f3f2
SHA1..: f57f01a71aff47fd1cb3c802982407e72048f132
SHA256: da04861b43568b3f74ad0888285506a5c3818a8dfc78bfee7734be63ae743a48
SHA512: 81b350e589782847e56e2ff38b0f226eb0e854958884d978f81d4f41bb63e05d
3f3bd1f6f958bdec1d84318f6de363233e13f209c09e0021768fba39d42fd5a9
ssdeep: 384:UKi6niz9tzNfnJZhL5ju41lDgXlHFIiFRUef/kBKCZOOt:/i6iBDxH95N+lw
eEcm
PEiD..: -
TrID..: File type identification
Win32 Dynamic Link Library (generic) (65.4%)
Generic Win/DOS Executable (17.2%)
DOS Executable Generic (17.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x1000
timedatestamp.....: 0x499a6bc1 (Tue Feb 17 07:48:17 2009)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x1224 0x1400 5.95 0fc5e6a1e125933347734164aa146902
.rdata 0x3000 0x17f5 0x1800 7.76 5fe7fabc6fa18169668a6af0a7c4c41c
.data 0x5000 0x23fb 0x2400 7.98 d9469805fe992690517570735bf218c0
.reloc 0x8000 0x64 0x200 3.47 ae0efc5369224fc005870d4a0b5e2a63
( 4 imports )
> kernel32.dll: WideCharToMultiByte, GetLocaleInfoW, SetUnhandledExceptionFilter, VirtualAlloc, WaitForMultipleObjects, lstrcatW, lstrcmpiA, GetNumberFormatA, FormatMessageA, GetNumberFormatW, CreateSemaphoreA, CreateWaitableTimerA, GlobalLock, InitializeCriticalSection
> kernel32.dll: SetEnvironmentVariableA, HeapAlloc, CloseHandle, lstrcmp, lstrcmpiA, PulseEvent
> user32.dll: CharUpperA, UnregisterClassA, QuerySendMessage, PeekMessageA, LoadIconA, CheckDlgButton, SendMessageCallbackA, LoadStringA, GetDlgItemTextA, GetWindowTextA, InvalidateRgn, AppendMenuA
> gdi32.dll: ColorCorrectPalette, CombineRgn, GetNearestColor, Arc, EngBitBlt, SetTextColor, CreateRoundRectRgn, SelectFontLocal, SetBkColor, AnimatePalette
( 0 exports )
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=8D579F410075F182561C00D542EC2500A221B922' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=8D579F410075F182561C00D542EC2500A221B922</a>
CWSandbox info: <a href='http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=2c38f283dd051ff9cdfcb9487d01f3f2' target='_blank'>http://research.sunbelt-software.com/...
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.03.23 Trojan.Win32.Monder!IK
AhnLab-V3 5.0.0.2 2009.03.23 -
AntiVir 7.9.0.120 2009.03.23 TR/Crypt.XPACK.Gen
Authentium 5.1.2.4 2009.03.23 -
Avast 4.8.1335.0 2009.03.23 Win32:Sudiet
AVG 8.5.0.283 2009.03.23 Generic13.AOJ
BitDefender 7.2 2009.03.23 Trojan.TDss.BG
CAT-QuickHeal 10.00 2009.03.23 -
ClamAV 0.94.1 2009.03.23 -
Comodo 1080 2009.03.22 -
DrWeb 4.44.0.09170 2009.03.23 -
eSafe 7.0.17.0 2009.03.19 Suspicious File
eTrust-Vet 31.6.6412 2009.03.23 Win32/Vundo.CJJ
F-Prot 4.4.4.56 2009.03.23 -
F-Secure 8.0.14470.0 2009.03.23 Trojan.Win32.Monder.gen
Fortinet 3.117.0.0 2009.03.23 W32/Monder!tr
GData 19 2009.03.23 Trojan.TDss.BG
Ikarus T3.1.1.48.0 2009.03.23 Trojan.Win32.Monder
K7AntiVirus 7.10.678 2009.03.21 Trojan.Win32.Monder.gen
Kaspersky 7.0.0.125 2009.03.23 Trojan.Win32.Monder.gen
McAfee 5561 2009.03.22 -
McAfee+Artemis 5561 2009.03.22 -
McAfee-GW-Edition 6.7.6 2009.03.23 Trojan.Crypt.XPACK.Gen
Microsoft 1.4502 2009.03.23 -
NOD32 3953 2009.03.21 a variant of Win32/Adware.Virtumonde.NDO
Norman 6.00.06 2009.03.20 W32/Smalltroj.MHQD
nProtect 2009.1.8.0 2009.03.23 -
Panda 10.0.0.10 2009.03.22 Spyware/Virtumonde
PCTools 4.4.2.0 2009.03.22 Trojan.Monder!sd6
Prevx1 V2 2009.03.23 Medium Risk Malware
Rising 21.22.02.00 2009.03.23 -
Sophos 4.39.0 2009.03.23 Mal/EncPk-GU
Sunbelt 3.2.1858.2 2009.03.22 -
Symantec 1.4.4.12 2009.03.23 -
TheHacker 6.3.3.4.287 2009.03.23 -
TrendMicro 8.700.0.1004 2009.03.23 -
VBA32 3.12.10.1 2009.03.23 -
ViRobot 2009.3.23.1659 2009.03.23 -
VirusBuster 4.6.5.0 2009.03.22 Trojan.Monder.KOM
Information additionnelle
File size: 22528 bytes
MD5...: 589c17243dc58e92cc7842e565ff3677
SHA1..: 81df2a484c198b122239c6bfa8f24b06f1fa68fe
SHA256: 0374a2a21a1d25ec18ce796a0ff367c3681df9e1608c7eae0d5281a00e97d090
SHA512: e09f2440a0f7a1b94855e6a97601e59c9534e67efc102ffc7205447c453e3f00
fc7bb93286ef33ebc08f5ac6fb4ff02669fbaf69a2d1409a878db630e7739ac8
ssdeep: 384:5F/5iIsTQ+2lM1Lo/9Maf7EDpi9US3rycGVapPB2j+6W4XIVy6:5FxirTOa1
LMf7EV2MVo213XIVy
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x113b
timedatestamp.....: 0x499a6488 (Tue Feb 17 07:17:28 2009)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x12d4 0x1400 6.16 9e59a15af061f7d75e32b1dc56d56e10
.rdata 0x3000 0x1e5e 0x2000 7.68 9af79b0778b87f2e4c821ba0fa7a2864
.data 0x5000 0x1ce4 0x1e00 7.89 e3c2a4f3c3bffedfce7d789d937b4994
.reloc 0x7000 0x60 0x200 3.42 69daec48ebd6b63f27a50c447844a4d5
( 3 imports )
> kernel32.dll: lstrcmpiA, PulseEvent, CreateEventA, lstrcpyn, GetTickCount
> kernel32.dll: SetProcessWorkingSetSize, GetLastError, WaitForMultipleObjects, GlobalFree, LocalReAlloc, GetEnvironmentVariableA, GetEnvironmentStringsW
> gdi32.dll: ArcTo, PolyBezier, RemoveFontResourceA, EngDeletePalette, RoundRect, GetTextFaceA, SelectPalette, EqualRgn, CancelDC, CreateEllipticRgnIndirect
( 0 exports )
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=A559221700BF992A582000F0372F9F00E14E9AAA' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=A559221700BF992A582000F0372F9F00E14E9AAA</a>
je peux tojours pas changer mon fond d'écran et ya plein du bugg !!
a-squared 4.0.0.101 2009.03.22 Trojan-Dropper.Agent!IK
AhnLab-V3 5.0.0.2 2009.03.22 Win-Trojan/Downloader.40448.DZ
AntiVir 7.9.0.120 2009.03.21 TR/Dldr.Agent.bmhl
Authentium 5.1.2.4 2009.03.21 -
Avast 4.8.1335.0 2009.03.21 Win32:Trojan-gen {Other}
AVG 8.5.0.283 2009.03.21 SHeur2.WQC
BitDefender 7.2 2009.03.22 -
CAT-QuickHeal 10.00 2009.03.21 TrojanDownloader.Agent.bmhl
ClamAV 0.94.1 2009.03.22 -
Comodo 1080 2009.03.22 -
DrWeb 4.44.0.09170 2009.03.22 Trojan.DownLoad.28462
eSafe 7.0.17.0 2009.03.19 -
eTrust-Vet 31.6.6409 2009.03.20 -
F-Prot 4.4.4.56 2009.03.21 -
F-Secure 8.0.14470.0 2009.03.22 Trojan-Downloader.Win32.Agent.bmqs
Fortinet 3.117.0.0 2009.03.22 W32/Agent.BMQS!tr.dldr
GData 19 2009.03.22 Win32:Trojan-gen {Other}
Ikarus T3.1.1.48.0 2009.03.22 Trojan-Dropper.Agent
K7AntiVirus 7.10.678 2009.03.21 Trojan.Win32.Malware.1
Kaspersky 7.0.0.125 2009.03.22 Trojan-Downloader.Win32.Agent.bmqs
McAfee 5561 2009.03.22 Generic Downloader.x
McAfee+Artemis 5561 2009.03.22 Generic Downloader.x
McAfee-GW-Edition 6.7.6 2009.03.21 Trojan.Dldr.Agent.bmhl
Microsoft 1.4502 2009.03.22 Trojan:Win32/Hiloti.gen!A
NOD32 3953 2009.03.21 Win32/TrojanDownloader.Small.OHD
Norman 6.00.06 2009.03.20 -
nProtect 2009.1.8.0 2009.03.22 -
Panda 10.0.0.10 2009.03.22 Trj/CI.A
PCTools 4.4.2.0 2009.03.22 -
Prevx1 V2 2009.03.22 High Risk Fraudulent Security Program
Rising 21.21.62.00 2009.03.22 -
Sophos 4.39.0 2009.03.22 Mal/Behav-172
Sunbelt 3.2.1858.2 2009.03.21 Trojan-Downloader.Win32.Agent.bmqs
Symantec 1.4.4.12 2009.03.22 Downloader
TheHacker 6.3.3.3.287 2009.03.22 Trojan/Downloader.Agent.bmhl
TrendMicro 8.700.0.1004 2009.03.22 -
VBA32 3.12.10.1 2009.03.22 -
ViRobot 2009.3.20.1658 2009.03.20 -
VirusBuster 4.6.5.0 2009.03.22 Trojan.DL.Agent.HNDF
Information additionnelle
File size: 40448 bytes
MD5...: bd9874e636dab2aa57c684d2f9c93b46
SHA1..: d286da3acca01abaffa0efa18db638d4f9e7a5c1
SHA256: 5f9b6d4515a7a4dd39df60c1ffa2bfc9731cc00841934e49a5e389bd9fd06c19
SHA512: e90f2cc4ae156d2e633fe4bfbde41187a8812bd4284dfdf699f197123338d9bd
2c2df2def7f3eda5f47fff61b709cd49b03e3a6dabf7b19862f1c04eba58e547
ssdeep: 768:JBkL5zF5Q0FYHl0qwHYHSyPC9Bb/34yZCnCaTnQJdLfTQ:J+iFYHL/o20XbQ
JdL0
PEiD..: -
TrID..: File type identification
Win64 Executable Generic (80.9%)
Win32 Executable Generic (8.0%)
Win32 Dynamic Link Library (generic) (7.1%)
Generic Win/DOS Executable (1.8%)
DOS Executable Generic (1.8%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x6234
timedatestamp.....: 0x48e67649 (Fri Oct 03 19:45:13 2008)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x7000 0x6e00 7.58 1692230c196822e00f35c1ba4ec989e2
.data 0x8000 0x2000 0x1a00 6.19 28495e94a450f3b7ed4db53dfdd1111a
.rsrc 0xa000 0x1000 0x400 2.81 efe904ebbc2c5d20f4bf28ec043e052e
.reloc 0xb000 0x1000 0x200 3.39 6e454f76320f17b547a7ac9c3dc9243b
( 5 imports )
> KERNEL32.dll: ExitProcess, ExitThread, GetVersion, HeapAlloc, HeapCreate, LockResource
> msvcrt.dll: strpbrk, vswprintf, wcscat, sscanf, __p__fmode, _exit, exit, fwprintf, printf, wcscmp
> user32.dll: SetWindowTextA, UnionRect, PostQuitMessage, InflateRect, GetDlgItem, GetClassLongA, DefWindowProcA, RedrawWindow
> OLEAUT32.dll: -, -
> SHLWAPI.dll: ChrCmpIA, SHDeleteKeyA
( 0 exports )
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.03.23 Trojan.Win32.Monder!IK
AhnLab-V3 5.0.0.2 2009.03.23 Win-Trojan/TDSS.22016
AntiVir 7.9.0.120 2009.03.23 TR/Crypt.XPACK.Gen
Authentium 5.1.2.4 2009.03.23 -
Avast 4.8.1335.0 2009.03.23 Win32:Sudiet
AVG 8.5.0.283 2009.03.23 Generic12.CCGV
BitDefender 7.2 2009.03.23 Trojan.TDss.BG
CAT-QuickHeal 10.00 2009.03.23 Trojan.Monder.gen
ClamAV 0.94.1 2009.03.23 -
Comodo 1080 2009.03.22 -
DrWeb 4.44.0.09170 2009.03.23 -
eSafe 7.0.17.0 2009.03.19 Win32.TRCrypt.XPACK
eTrust-Vet 31.6.6412 2009.03.23 Win32/Vundo.CJJ
F-Prot 4.4.4.56 2009.03.23 -
F-Secure 8.0.14470.0 2009.03.23 Trojan.Win32.Monder.gen
Fortinet 3.117.0.0 2009.03.23 W32/Monder!tr
GData 19 2009.03.23 Trojan.TDss.BG
Ikarus T3.1.1.48.0 2009.03.23 Trojan.Win32.Monder
K7AntiVirus 7.10.678 2009.03.21 Trojan.Win32.Monder.gen
Kaspersky 7.0.0.125 2009.03.23 Trojan.Win32.Monder.gen
McAfee 5561 2009.03.22 Vundo
McAfee+Artemis 5561 2009.03.22 Vundo
McAfee-GW-Edition 6.7.6 2009.03.23 Trojan.Crypt.XPACK.Gen
Microsoft 1.4502 2009.03.23 Trojan:Win32/Alureon.BJ
NOD32 3953 2009.03.21 a variant of Win32/Adware.Virtumonde.NCB
Norman 6.00.06 2009.03.20 W32/Vundo.GUE
nProtect 2009.1.8.0 2009.03.23 Trojan/W32.Monder.22016
Panda 10.0.0.10 2009.03.22 Spyware/Virtumonde
PCTools 4.4.2.0 2009.03.22 Trojan.Monder!sd6
Prevx1 V2 2009.03.23 Low Risk Adware
Rising 21.22.02.00 2009.03.23 -
Sophos 4.39.0 2009.03.23 Troj/Virtum-Gen
Sunbelt 3.2.1858.2 2009.03.22 Trojan.Win32.Monder.gen
Symantec 1.4.4.12 2009.03.23 Adware.VirtuMonde
TheHacker 6.3.3.4.287 2009.03.23 Trojan/Monder.gen
TrendMicro 8.700.0.1004 2009.03.23 -
VBA32 3.12.10.1 2009.03.23 Trojan.Win32.Monder.gen
ViRobot 2009.3.23.1659 2009.03.23 Spyware.Monder.22016
VirusBuster 4.6.5.0 2009.03.22 Trojan.Monder.KOO
Information additionnelle
File size: 22016 bytes
MD5...: 2c38f283dd051ff9cdfcb9487d01f3f2
SHA1..: f57f01a71aff47fd1cb3c802982407e72048f132
SHA256: da04861b43568b3f74ad0888285506a5c3818a8dfc78bfee7734be63ae743a48
SHA512: 81b350e589782847e56e2ff38b0f226eb0e854958884d978f81d4f41bb63e05d
3f3bd1f6f958bdec1d84318f6de363233e13f209c09e0021768fba39d42fd5a9
ssdeep: 384:UKi6niz9tzNfnJZhL5ju41lDgXlHFIiFRUef/kBKCZOOt:/i6iBDxH95N+lw
eEcm
PEiD..: -
TrID..: File type identification
Win32 Dynamic Link Library (generic) (65.4%)
Generic Win/DOS Executable (17.2%)
DOS Executable Generic (17.2%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x1000
timedatestamp.....: 0x499a6bc1 (Tue Feb 17 07:48:17 2009)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x1224 0x1400 5.95 0fc5e6a1e125933347734164aa146902
.rdata 0x3000 0x17f5 0x1800 7.76 5fe7fabc6fa18169668a6af0a7c4c41c
.data 0x5000 0x23fb 0x2400 7.98 d9469805fe992690517570735bf218c0
.reloc 0x8000 0x64 0x200 3.47 ae0efc5369224fc005870d4a0b5e2a63
( 4 imports )
> kernel32.dll: WideCharToMultiByte, GetLocaleInfoW, SetUnhandledExceptionFilter, VirtualAlloc, WaitForMultipleObjects, lstrcatW, lstrcmpiA, GetNumberFormatA, FormatMessageA, GetNumberFormatW, CreateSemaphoreA, CreateWaitableTimerA, GlobalLock, InitializeCriticalSection
> kernel32.dll: SetEnvironmentVariableA, HeapAlloc, CloseHandle, lstrcmp, lstrcmpiA, PulseEvent
> user32.dll: CharUpperA, UnregisterClassA, QuerySendMessage, PeekMessageA, LoadIconA, CheckDlgButton, SendMessageCallbackA, LoadStringA, GetDlgItemTextA, GetWindowTextA, InvalidateRgn, AppendMenuA
> gdi32.dll: ColorCorrectPalette, CombineRgn, GetNearestColor, Arc, EngBitBlt, SetTextColor, CreateRoundRectRgn, SelectFontLocal, SetBkColor, AnimatePalette
( 0 exports )
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=8D579F410075F182561C00D542EC2500A221B922' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=8D579F410075F182561C00D542EC2500A221B922</a>
CWSandbox info: <a href='http://research.sunbelt-software.com/partnerresource/MD5.aspx?md5=2c38f283dd051ff9cdfcb9487d01f3f2' target='_blank'>http://research.sunbelt-software.com/...
Antivirus Version Dernière mise à jour Résultat
a-squared 4.0.0.101 2009.03.23 Trojan.Win32.Monder!IK
AhnLab-V3 5.0.0.2 2009.03.23 -
AntiVir 7.9.0.120 2009.03.23 TR/Crypt.XPACK.Gen
Authentium 5.1.2.4 2009.03.23 -
Avast 4.8.1335.0 2009.03.23 Win32:Sudiet
AVG 8.5.0.283 2009.03.23 Generic13.AOJ
BitDefender 7.2 2009.03.23 Trojan.TDss.BG
CAT-QuickHeal 10.00 2009.03.23 -
ClamAV 0.94.1 2009.03.23 -
Comodo 1080 2009.03.22 -
DrWeb 4.44.0.09170 2009.03.23 -
eSafe 7.0.17.0 2009.03.19 Suspicious File
eTrust-Vet 31.6.6412 2009.03.23 Win32/Vundo.CJJ
F-Prot 4.4.4.56 2009.03.23 -
F-Secure 8.0.14470.0 2009.03.23 Trojan.Win32.Monder.gen
Fortinet 3.117.0.0 2009.03.23 W32/Monder!tr
GData 19 2009.03.23 Trojan.TDss.BG
Ikarus T3.1.1.48.0 2009.03.23 Trojan.Win32.Monder
K7AntiVirus 7.10.678 2009.03.21 Trojan.Win32.Monder.gen
Kaspersky 7.0.0.125 2009.03.23 Trojan.Win32.Monder.gen
McAfee 5561 2009.03.22 -
McAfee+Artemis 5561 2009.03.22 -
McAfee-GW-Edition 6.7.6 2009.03.23 Trojan.Crypt.XPACK.Gen
Microsoft 1.4502 2009.03.23 -
NOD32 3953 2009.03.21 a variant of Win32/Adware.Virtumonde.NDO
Norman 6.00.06 2009.03.20 W32/Smalltroj.MHQD
nProtect 2009.1.8.0 2009.03.23 -
Panda 10.0.0.10 2009.03.22 Spyware/Virtumonde
PCTools 4.4.2.0 2009.03.22 Trojan.Monder!sd6
Prevx1 V2 2009.03.23 Medium Risk Malware
Rising 21.22.02.00 2009.03.23 -
Sophos 4.39.0 2009.03.23 Mal/EncPk-GU
Sunbelt 3.2.1858.2 2009.03.22 -
Symantec 1.4.4.12 2009.03.23 -
TheHacker 6.3.3.4.287 2009.03.23 -
TrendMicro 8.700.0.1004 2009.03.23 -
VBA32 3.12.10.1 2009.03.23 -
ViRobot 2009.3.23.1659 2009.03.23 -
VirusBuster 4.6.5.0 2009.03.22 Trojan.Monder.KOM
Information additionnelle
File size: 22528 bytes
MD5...: 589c17243dc58e92cc7842e565ff3677
SHA1..: 81df2a484c198b122239c6bfa8f24b06f1fa68fe
SHA256: 0374a2a21a1d25ec18ce796a0ff367c3681df9e1608c7eae0d5281a00e97d090
SHA512: e09f2440a0f7a1b94855e6a97601e59c9534e67efc102ffc7205447c453e3f00
fc7bb93286ef33ebc08f5ac6fb4ff02669fbaf69a2d1409a878db630e7739ac8
ssdeep: 384:5F/5iIsTQ+2lM1Lo/9Maf7EDpi9US3rycGVapPB2j+6W4XIVy6:5FxirTOa1
LMf7EV2MVo213XIVy
PEiD..: -
TrID..: File type identification
Win32 Executable Generic (42.3%)
Win32 Dynamic Link Library (generic) (37.6%)
Generic Win/DOS Executable (9.9%)
DOS Executable Generic (9.9%)
Autodesk FLIC Image File (extensions: flc, fli, cel) (0.0%)
PEInfo: PE Structure information
( base data )
entrypointaddress.: 0x113b
timedatestamp.....: 0x499a6488 (Tue Feb 17 07:17:28 2009)
machinetype.......: 0x14c (I386)
( 4 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x12d4 0x1400 6.16 9e59a15af061f7d75e32b1dc56d56e10
.rdata 0x3000 0x1e5e 0x2000 7.68 9af79b0778b87f2e4c821ba0fa7a2864
.data 0x5000 0x1ce4 0x1e00 7.89 e3c2a4f3c3bffedfce7d789d937b4994
.reloc 0x7000 0x60 0x200 3.42 69daec48ebd6b63f27a50c447844a4d5
( 3 imports )
> kernel32.dll: lstrcmpiA, PulseEvent, CreateEventA, lstrcpyn, GetTickCount
> kernel32.dll: SetProcessWorkingSetSize, GetLastError, WaitForMultipleObjects, GlobalFree, LocalReAlloc, GetEnvironmentVariableA, GetEnvironmentStringsW
> gdi32.dll: ArcTo, PolyBezier, RemoveFontResourceA, EngDeletePalette, RoundRect, GetTextFaceA, SelectPalette, EqualRgn, CancelDC, CreateEllipticRgnIndirect
( 0 exports )
Prevx info: <a href='http://info.prevx.com/aboutprogramtext.asp?PX5=A559221700BF992A582000F0372F9F00E14E9AAA' target='_blank'>http://info.prevx.com/aboutprogramtext.asp?PX5=A559221700BF992A582000F0372F9F00E14E9AAA</a>
je peux tojours pas changer mon fond d'écran et ya plein du bugg !!
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
23 mars 2009 à 12:27
23 mars 2009 à 12:27
pour findykill j'avais dis option 2 et non 1!
__________________
utilise pour supprimer tes traces
CCLEANER: (lance un nettoyage et répare 3 fois le registre) sans installer la barre yahoo
(dans les options puis avancé :désactive la case: effacer les fichiers de plus de 48 heures)
https://www.malekal.com/tutoriel-ccleaner/
https://www.01net.com/
_________________
Pour fusionner:
http://img.photobucket.com/albums/v666/sUBs/CFScript.gif
_______________
telecharge combofix:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Sauvegarde le sur ton bureau et pas ailleurs !
_________________
Ferme tous tes navigateurs (donc copie ou imprime les instructions avant)
Crée un nouveau document texte : clic droit de souris sur le bureau > Nouveau > Document Texte, et copie dedans les lignes suivantes :
File::
D:\AdobeR.exe e
C:\found.000
C:\WINDOWS\Plaheb.dll
C:\WINDOWS\system32\KuzSmall.exe
C:\WINDOWS\system32\ntdll64.exe
C:\WINDOWS\system32\frmwrk32.exe
C:\WINDOWS\system32\303369.exe
C:\WINDOWS\system32\senekanmfveovr.dll
C:\WINDOWS\system32\senekajkdksqcw.dll
C:\WINDOWS\system32\senekaybwrtudp.dll
C:\WINDOWS\fxsteller.exe
Registry::
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Nxuyagogagimogo"=-
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{35dc3c2b-30f2-11db-90f7-0015f2585dd2}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d3df40cc-959a-11db-91c4-0015f2585dd2}]
Enregistre ce fichier sous le nom CFscript
Fait un glisser/déposer de ce fichier CFscrïpt sur le fichier ComboFix.exe
Clique sur le fichier CFScript, maintient le doigt enfoncé et glisse la souris pour que l'icône du CFScript vienne recouvrir l'icône de Combofix. Relache la souris. Combofix va démarrer.
Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.
Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!
Ne touche à rien tant que le scan n'est pas terminé.
Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt
_______________________
fais un scan rapide jusq'au bout de malwarebyte antimalaware et colle le rapport
__________________
utilise pour supprimer tes traces
CCLEANER: (lance un nettoyage et répare 3 fois le registre) sans installer la barre yahoo
(dans les options puis avancé :désactive la case: effacer les fichiers de plus de 48 heures)
https://www.malekal.com/tutoriel-ccleaner/
https://www.01net.com/
_________________
Pour fusionner:
http://img.photobucket.com/albums/v666/sUBs/CFScript.gif
_______________
telecharge combofix:
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Sauvegarde le sur ton bureau et pas ailleurs !
_________________
Ferme tous tes navigateurs (donc copie ou imprime les instructions avant)
Crée un nouveau document texte : clic droit de souris sur le bureau > Nouveau > Document Texte, et copie dedans les lignes suivantes :
File::
D:\AdobeR.exe e
C:\found.000
C:\WINDOWS\Plaheb.dll
C:\WINDOWS\system32\KuzSmall.exe
C:\WINDOWS\system32\ntdll64.exe
C:\WINDOWS\system32\frmwrk32.exe
C:\WINDOWS\system32\303369.exe
C:\WINDOWS\system32\senekanmfveovr.dll
C:\WINDOWS\system32\senekajkdksqcw.dll
C:\WINDOWS\system32\senekaybwrtudp.dll
C:\WINDOWS\fxsteller.exe
Registry::
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Nxuyagogagimogo"=-
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{35dc3c2b-30f2-11db-90f7-0015f2585dd2}]
[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d3df40cc-959a-11db-91c4-0015f2585dd2}]
Enregistre ce fichier sous le nom CFscript
Fait un glisser/déposer de ce fichier CFscrïpt sur le fichier ComboFix.exe
Clique sur le fichier CFScript, maintient le doigt enfoncé et glisse la souris pour que l'icône du CFScript vienne recouvrir l'icône de Combofix. Relache la souris. Combofix va démarrer.
Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.
Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!
Ne touche à rien tant que le scan n'est pas terminé.
Une fois le scan achevé, un rapport va s'afficher: poste son contenu.
Si le fichier ne s'ouvre pas, il se trouve ici > C:\ComboFix.txt
_______________________
fais un scan rapide jusq'au bout de malwarebyte antimalaware et colle le rapport
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
23 mars 2009 à 15:02
23 mars 2009 à 15:02
ça fait longtemps que le rapport de ComboFix ne s'affiche pas ils disent rapport en cours de préparaation et rien ne se passe, je fais quoi ? et puis je peux de nouveau changer mon fond d'écran
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
23 mars 2009 à 15:04
23 mars 2009 à 15:04
ComboFix 09-03-22.01 - Rémi 2009-03-23 14:44:02.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.1023.555 [GMT 1:00]
Lancé depuis: c:\documents and settings\Rémi\Bureau\ComboFix.exe
Commutateurs utilisés :: c:\documents and settings\Rémi\Bureau\CFscript.txt
AV: avast! antivirus 4.8.1229 [VPS 080731-0] *On-access scanning disabled* (Outdated)
* Un nouveau point de restauration a été créé
FILE ::
C:\found.000
c:\windows\fxsteller.exe
c:\windows\Plaheb.dll
c:\windows\system32\303369.exe
c:\windows\system32\frmwrk32.exe
c:\windows\system32\KuzSmall.exe
c:\windows\system32\ntdll64.exe
c:\windows\system32\senekajkdksqcw.dll
c:\windows\system32\senekanmfveovr.dll
c:\windows\system32\senekaybwrtudp.dll
D:\AdobeR.exe e
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Laurane\Application Data\HbTools
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1056315.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1070524.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1383356.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1391819.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1438752.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\2228792.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\2884418.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\2896152.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\3248915.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\3756243.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\3786177.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\487695.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\559684.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\637599.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\737371.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\737654.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\761357.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\900436.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\934538.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\ASPL1.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\domains.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\hstat\3401.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000003674
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024580
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024848
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025199
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025314
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025780
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025781
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025784
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025790
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025802
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025806
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025975
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026076
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026401
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026578
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026693
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026705
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026712
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026803
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026952
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000027598
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028861
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\10110
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1058
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\10807
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\11891
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\13546
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1491
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\17025
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\182864
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\18991
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\20478
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\20516
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\223130
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\25043
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\251053
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\25708
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\27414
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\27503
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\281638
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\306
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\32242
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\32639
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\35015
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\371239
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\41364
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\4142
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\41980
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\42915
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\43358
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\43638
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\44228
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\44293
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\49587
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\50299
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\52253
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\54118
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\580789
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\59283
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\59827
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\633788
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641647
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641659
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641666
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\64414
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\64429
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\65843
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\67226
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\68040
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\69201
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\704974
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\704983
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705021
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705032
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705060
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705071
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705133
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705139
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705395
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705396
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705431
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\707856
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\708401
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\709652
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\709682
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\71602
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\742066
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\75013
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\7518
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\7521
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\75436
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\7598
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\79079
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\79141
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\80193
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\80639
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\86379
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\87439
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\87978
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\93921
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\95825
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\99795
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\ustat\3401.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\ads.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\btntrans.idx
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\btntrans1.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\business_promo.htm
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\buttondir.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\components.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_1000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_2000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_3000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_bar.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_bbar1.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_logos.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_other.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_weather.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\default.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_511745-514279.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz1.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz10.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz11.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz12.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz13.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz14.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz15.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz16.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz17.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz18.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz19.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz2.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz20.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz3.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz4.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz5.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz6.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz7.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz8.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz9.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_categorize.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_comparison.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_em_PROFL_CA_flow_b_IEB.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_explorer-Mails.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_explorer-people.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_favorites.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_Games.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_Hide.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_hotbarcom.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_Hotmail.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_hsskin.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_jemster.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_jemsterie.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_jemsteruk.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_jobsearch.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_Mails.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_new.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_premium.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_reun.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_ringtones.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_SearchBoxTrapper.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_searchfor.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_searchgo.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_weather.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_yellowpages.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\email-def-511724-548964.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\email-def-511724-9595.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\email-t1-bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\hotbar-premium-hotbar-premium.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\hotbar-premium.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\hotbar_promo.htm
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\icons2.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\keywords.idx
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\keywords1.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\layout.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\linkpathlegal.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\progress.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\s_icons_buttons.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\sales_buttons.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\t2_bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\theweb.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\top7.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Top7_theweb.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\tsd_bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\ads.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\btntrans.idx
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\btntrans1.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\business_promo.htm
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\buttondir.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\components.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_1000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_2000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_3000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_bar.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_bbar1.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_logos.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_other.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_weather.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\default.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_511745-514279.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz1.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz10.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz11.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz12.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz13.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz14.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz15.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz16.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz17.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz18.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz19.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz2.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz20.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz3.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz4.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz5.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz6.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz7.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz8.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz9.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_categorize.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_comparison.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_em_PROFL_CA_flow_b_IEB.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_explorer-Mails.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_explorer-people.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_favorites.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_Games.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_Hide.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_hotbarcom.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_Hotmail.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_hsskin.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_jemster.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_jemsterie.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_jemsteruk.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_jobsearch.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_Mails.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_new.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_premium.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_reun.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_ringtones.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_SearchBoxTrapper.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_searchfor.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_searchgo.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_weather.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_yellowpages.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\email-def-511724-548964.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\email-def-511724-9595.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\email-t1-bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\hotbar-premium-hotbar-premium.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\hotbar-premium.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\hotbar_promo.htm
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\icons2.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\keywords.idx
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\keywords1.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\layout.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\linkpathlegal.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\progress.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\s_icons_buttons.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\sales_buttons.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\t2_bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\theweb.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\top7.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Top7_theweb.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\tsd_bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\ads.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\BtnTrans.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\BtnTrans1.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\business_promo.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\buttondir.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_1000.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_2000.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_3000.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_bar.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_bbar1.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_logos.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_other.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_weather.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\default.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\email-t1-bg.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\hotbar-premium.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\hotbar_promo.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\icons2.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\keywords.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\keywords1.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\layout.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\linkpathlegal.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\progress.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\s_icons_buttons.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\sales_buttons.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\samplegroups2.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\samplegroups2.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\t2_bg.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\top7.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\tsd_bg.xip
c:\documents and settings\Laurane\ravmonlog
c:\documents and settings\Rémi\Application Data\HbTools
c:\documents and settings\Rémi\Application Data\HbTools\eskin\empty_bg_st.htm
c:\documents and settings\Rémi\Application Data\HbTools\eskin\FileManager.txt
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1043399.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1055531.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1057642.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1065003.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1383356.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1386771.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1386779.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1386963.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1388730.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1394575.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1399469.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1405886.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1412143.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1438752.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2065581.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2209085.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\236312.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2871817.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2885069.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2896152.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2899650.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3251993.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3751912.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3781353.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3783116.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3786197.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3786291.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\475389.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\499863.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\526143.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\566217.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\575811.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\600583.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\620139.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\751088.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\758683.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\868678.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\991767.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\ASPL1.dat
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\domains.txt
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\hstat\3401.dat
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000003030
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000003674
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000012243
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000021497
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000023749
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000023763
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024237
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024268
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024320
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024470
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024615
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024708
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024848
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024917
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024991
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025015
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025311
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025722
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025776
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025790
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026075
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026076
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026083
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026133
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026235
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026367
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026401
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026427
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026560
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026566
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026567
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026624
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026693
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026705
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026952
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000027598
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000027874
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000027936
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028825
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028841
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028861
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028868
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028869
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000029204
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000029227
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1058
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\11213
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\130921
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\13546
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\14837
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\15643
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\17025
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\182864
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\19650
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\20478
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\20516
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\20935
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\223130
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\23901
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\244692
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\25043
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\25063
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\251438
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\251549
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\26256
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\26479
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\2672
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\26852
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\273769
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\27414
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\27503
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\27515
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\297253
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\30301
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\30455
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\306
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\31409
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\32639
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\33137
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\3338
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\33697
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\33912
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\33915
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\33916
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\34174
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\345209
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\35006
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\35012
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\35015
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\37122
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\371239
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\37602
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\396771
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\400633
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\4142
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\41641
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\41980
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\42915
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\4382
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\44228
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\44306
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\4442
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\479505
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\48166
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\4899
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\49609
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\528235
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\52968
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\534945
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\55004
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\57904
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\57973
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\580789
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\59283
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\598613
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\60176
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\611476
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\611492
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\621313
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\628262
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\6292
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641647
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641659
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641666
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\64763
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\655884
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\658742
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\660114
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\66274
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\663714
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\66851
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\67226
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\68040
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\68055
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\68098
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\683048
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\688368
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\68942
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\69201
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\69626
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\69940
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\703600
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\704983
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\704984
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705021
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705060
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705076
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705124
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705125
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705127
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705129
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705133
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705139
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705140
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705142
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705143
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705150
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705153
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705156
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705170
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705226
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705232
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705234
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705238
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705239
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705259
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705260
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705314
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705343
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705378
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705395
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705396
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705431
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705438
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705461
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\706812
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\706852
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\707408
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\707856
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\707890
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\708401
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\708496
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\708643
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\709652
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\710726
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\710839
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\711372
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\711415
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\711772
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\72123
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\742066
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\75436
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\79079
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\79977
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\79986
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\80639
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\80670
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\82011
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\86379
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\87978
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\90300
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\91207
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\93910
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\93921
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\94272
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\95798
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\99293
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\99795
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\99961
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\ustat\3401.dat
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\ads.cdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\btntrans.idx
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\btntrans1.dat
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\business_promo.htm
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\buttondir.txt
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\components.cdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_1000.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_2000.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_3000.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_bar.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_bbar1.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_logos.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_other.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_weather.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\default.cdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_511745-514279.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz1.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz10.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz11.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz12.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz13.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz14.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz15.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz16.mnu
c:\documents and se
Microsoft Windows XP Édition familiale 5.1.2600.3.1252.1.1036.18.1023.555 [GMT 1:00]
Lancé depuis: c:\documents and settings\Rémi\Bureau\ComboFix.exe
Commutateurs utilisés :: c:\documents and settings\Rémi\Bureau\CFscript.txt
AV: avast! antivirus 4.8.1229 [VPS 080731-0] *On-access scanning disabled* (Outdated)
* Un nouveau point de restauration a été créé
FILE ::
C:\found.000
c:\windows\fxsteller.exe
c:\windows\Plaheb.dll
c:\windows\system32\303369.exe
c:\windows\system32\frmwrk32.exe
c:\windows\system32\KuzSmall.exe
c:\windows\system32\ntdll64.exe
c:\windows\system32\senekajkdksqcw.dll
c:\windows\system32\senekanmfveovr.dll
c:\windows\system32\senekaybwrtudp.dll
D:\AdobeR.exe e
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Laurane\Application Data\HbTools
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1056315.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1070524.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1383356.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1391819.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\1438752.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\2228792.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\2884418.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\2896152.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\3248915.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\3756243.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\3786177.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\487695.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\559684.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\637599.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\737371.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\737654.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\761357.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\900436.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\934538.sdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\ASPL1.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\domains.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\hstat\3401.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000003674
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024580
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024848
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025199
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025314
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025780
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025781
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025784
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025790
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025802
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025806
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025975
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026076
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026401
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026578
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026693
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026705
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026712
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026803
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026952
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000027598
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028861
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\10110
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1058
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\10807
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\11891
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\13546
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1491
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\17025
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\182864
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\18991
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\20478
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\20516
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\223130
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\25043
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\251053
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\25708
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\27414
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\27503
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\281638
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\306
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\32242
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\32639
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\35015
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\371239
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\41364
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\4142
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\41980
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\42915
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\43358
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\43638
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\44228
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\44293
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\49587
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\50299
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\52253
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\54118
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\580789
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\59283
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\59827
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\633788
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641647
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641659
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641666
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\64414
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\64429
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\65843
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\67226
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\68040
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\69201
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\704974
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\704983
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705021
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705032
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705060
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705071
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705133
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705139
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705395
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705396
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705431
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\707856
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\708401
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\709652
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\709682
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\71602
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\742066
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\75013
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\7518
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\7521
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\75436
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\7598
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\79079
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\79141
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\80193
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\80639
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\86379
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\87439
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\87978
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\93921
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\95825
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\99795
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\dynamic\ustat\3401.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\ads.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\btntrans.idx
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\btntrans1.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\business_promo.htm
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\buttondir.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\components.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_1000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_2000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_3000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_bar.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_bbar1.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_logos.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_other.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_weather.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\default.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_511745-514279.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz1.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz10.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz11.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz12.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz13.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz14.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz15.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz16.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz17.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz18.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz19.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz2.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz20.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz3.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz4.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz5.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz6.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz7.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz8.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz9.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_categorize.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_comparison.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_em_PROFL_CA_flow_b_IEB.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_explorer-Mails.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_explorer-people.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_favorites.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_Games.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_Hide.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_hotbarcom.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_Hotmail.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_hsskin.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_jemster.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_jemsterie.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_jemsteruk.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_jobsearch.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_Mails.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_new.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_premium.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_reun.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_ringtones.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_SearchBoxTrapper.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_searchfor.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_searchgo.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_weather.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Default_yellowpages.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\email-def-511724-548964.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\email-def-511724-9595.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\email-t1-bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\hotbar-premium-hotbar-premium.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\hotbar-premium.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\hotbar_promo.htm
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\icons2.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\keywords.idx
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\keywords1.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\layout.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\linkpathlegal.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\progress.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\s_icons_buttons.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\sales_buttons.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\t2_bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\theweb.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\top7.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\Top7_theweb.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\1\tsd_bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\ads.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\btntrans.idx
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\btntrans1.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\business_promo.htm
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\buttondir.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\components.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_1000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_2000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_3000.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_bar.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_bbar1.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_logos.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_buttons_other.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\d_icons_weather.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\default.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_511745-514279.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz1.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz10.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz11.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz12.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz13.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz14.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz15.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz16.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz17.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz18.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz19.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz2.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz20.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz3.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz4.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz5.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz6.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz7.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz8.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_bidz9.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_categorize.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_comparison.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_em_PROFL_CA_flow_b_IEB.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_explorer-Mails.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_explorer-people.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_favorites.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_Games.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_Hide.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_hotbarcom.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_Hotmail.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_hsskin.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_jemster.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_jemsterie.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_jemsteruk.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_jobsearch.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_Mails.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_new.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_premium.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_reun.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_ringtones.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_SearchBoxTrapper.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_searchfor.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_searchgo.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_weather.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Default_yellowpages.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\email-def-511724-548964.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\email-def-511724-9595.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\email-t1-bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\hotbar-premium-hotbar-premium.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\hotbar-premium.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\hotbar_promo.htm
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\icons2.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\keywords.idx
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\keywords1.dat
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\layout.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\linkpathlegal.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\progress.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\s_icons_buttons.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\sales_buttons.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\t2_bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\theweb.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\top7.cdf
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\Top7_theweb.mnu
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\2\tsd_bg.res
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\ads.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\BtnTrans.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\BtnTrans1.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\business_promo.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\buttondir.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_1000.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_2000.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_3000.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_bar.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_bbar1.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_logos.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_buttons_other.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\d_icons_weather.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\default.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\email-t1-bg.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\hotbar-premium.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\hotbar_promo.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\icons2.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\keywords.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\keywords1.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\layout.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\linkpathlegal.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\progress.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\s_icons_buttons.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\sales_buttons.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\samplegroups2.txt
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\samplegroups2.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\t2_bg.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\top7.xip
c:\documents and settings\Laurane\Application Data\HbTools\v3.0\HbTools\static\DownLoad\tsd_bg.xip
c:\documents and settings\Laurane\ravmonlog
c:\documents and settings\Rémi\Application Data\HbTools
c:\documents and settings\Rémi\Application Data\HbTools\eskin\empty_bg_st.htm
c:\documents and settings\Rémi\Application Data\HbTools\eskin\FileManager.txt
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1043399.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1055531.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1057642.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1065003.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1383356.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1386771.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1386779.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1386963.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1388730.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1394575.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1399469.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1405886.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1412143.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\1438752.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2065581.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2209085.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\236312.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2871817.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2885069.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2896152.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\2899650.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3251993.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3751912.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3781353.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3783116.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3786197.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\3786291.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\475389.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\499863.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\526143.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\566217.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\575811.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\600583.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\620139.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\751088.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\758683.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\868678.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\991767.sdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\ASPL1.dat
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\domains.txt
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\hstat\3401.dat
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000003030
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000003674
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000012243
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000021497
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000023749
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000023763
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024237
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024268
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024320
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024470
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024615
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024708
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024848
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024917
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000024991
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025015
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025311
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025722
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025776
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000025790
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026075
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026076
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026083
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026133
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026235
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026367
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026401
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026427
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026560
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026566
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026567
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026624
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026693
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026705
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000026952
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000027598
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000027874
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000027936
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028825
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028841
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028861
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028868
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000028869
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000029204
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1000029227
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\1058
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\11213
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\130921
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\13546
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\14837
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\15643
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\17025
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\182864
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\19650
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\20478
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\20516
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\20935
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\223130
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\23901
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\244692
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\25043
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\25063
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\251438
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\251549
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\26256
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\26479
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\2672
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\26852
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\273769
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\27414
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\27503
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\27515
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\297253
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\30301
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\30455
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\306
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\31409
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\32639
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\33137
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\3338
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\33697
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\33912
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\33915
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\33916
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\34174
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\345209
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\35006
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\35012
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\35015
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\37122
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\371239
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\37602
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\396771
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\400633
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\4142
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\41641
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\41980
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\42915
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\4382
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\44228
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\44306
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\4442
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\479505
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\48166
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\4899
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\49609
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\528235
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\52968
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\534945
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\55004
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\57904
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\57973
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\580789
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\59283
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\598613
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\60176
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\611476
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\611492
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\621313
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\628262
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\6292
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641647
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641659
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\641666
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\64763
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\655884
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\658742
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\660114
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\66274
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\663714
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\66851
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\67226
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\68040
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\68055
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\68098
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\683048
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\688368
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\68942
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\69201
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\69626
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\69940
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\703600
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\704983
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\704984
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705021
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705060
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705076
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705124
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705125
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705127
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705129
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705133
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705139
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705140
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705142
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705143
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705150
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705153
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705156
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705170
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705226
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705232
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705234
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705238
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705239
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705259
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705260
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705314
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705343
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705378
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705395
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705396
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705431
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705438
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\705461
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\706812
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\706852
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\707408
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\707856
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\707890
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\708401
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\708496
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\708643
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\709652
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\710726
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\710839
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\711372
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\711415
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\711772
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\72123
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\742066
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\75436
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\79079
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\79977
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\79986
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\80639
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\80670
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\82011
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\86379
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\87978
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\90300
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\91207
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\93910
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\93921
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\94272
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\95798
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\99293
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\99795
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\TooltipXML\99961
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\dynamic\ustat\3401.dat
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\ads.cdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\btntrans.idx
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\btntrans1.dat
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\business_promo.htm
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\buttondir.txt
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\components.cdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_1000.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_2000.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_3000.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_bar.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_bbar1.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_logos.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_buttons_other.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\d_icons_weather.res
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\default.cdf
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_511745-514279.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz1.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz10.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz11.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz12.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz13.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz14.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz15.mnu
c:\documents and settings\Rémi\Application Data\HbTools\v3.0\HbTools\static\1\Default_bidz16.mnu
c:\documents and se
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
23 mars 2009 à 15:06
23 mars 2009 à 15:06
ok
mais il manque une partie du rapport!!!!
____________________
fais un scan rapide jusq'au bout de malwarebyte antimalaware et colle le rapport
__________________
remets un rapport RSIt
a plus
mais il manque une partie du rapport!!!!
____________________
fais un scan rapide jusq'au bout de malwarebyte antimalaware et colle le rapport
__________________
remets un rapport RSIt
a plus
remi3211
Messages postés
478
Date d'inscription
dimanche 15 juin 2008
Statut
Membre
Dernière intervention
21 novembre 2015
54
23 mars 2009 à 15:12
23 mars 2009 à 15:12
Le RSIT :
Logfile of random's system information tool 1.05 (written by random/random)
Run by Rémi at 2009-03-23 15:09:46
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 171 GB (72%) free of 238 GB
Total RAM: 1023 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:09:54, on 23/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\Rémi\Bureau\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Rémi.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Java S1] \\?\globalroot\systemroot\system32\mschr.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 3.79\AMVConverter\grab.html
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 3.79\MediaManager\grab.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab55762.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{C06439F4-A9EC-433E-A511-08C6186E6ADE}: NameServer = 212.30.96.108,213.203.124.146
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update Service (gupdate1c98b9abbe953e8) (gupdate1c98b9abbe953e8) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.30\bin\mysqld.exe
Logfile of random's system information tool 1.05 (written by random/random)
Run by Rémi at 2009-03-23 15:09:46
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 171 GB (72%) free of 238 GB
Total RAM: 1023 MB (43% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:09:54, on 23/03/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\Rémi\Bureau\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\trend micro\Rémi.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~1\tools\iesdsg.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: BHO pour Compagnon Web Encarta - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_219B3E1547538286.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Compagnon Web Encarta - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Web Companion\ENCWCBAR.DLL
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Java S1] \\?\globalroot\systemroot\system32\mschr.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to AMV Convert Tool... - C:\Program Files\MP3 Player Utilities 3.79\AMVConverter\grab.html
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: MediaManager tool grab multimedia file - C:\Program Files\MP3 Player Utilities 3.79\MediaManager\grab.html
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~1\tools\iesdpb.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing)
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akamai.net/...
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab31267.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypixmania.com/importer/MypixUploader.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/...
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab55762.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{C06439F4-A9EC-433E-A511-08C6186E6ADE}: NameServer = 212.30.96.108,213.203.124.146
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Update Service (gupdate1c98b9abbe953e8) (gupdate1c98b9abbe953e8) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.1.30\bin\mysqld.exe