Sujet Précédent Sujet Suivant

Explrere.exe

donya -  
jlpjlp Messages postés 52399 Statut Contributeur sécurité -
Bonjour,
jai un gro souci c ke a chaque fois que je veux ouvir un dossier ke sa soit mes document ou la corbeillele pc affice un msg d'erreure et me dis ke le programme doit fermé
et o demérage il ya un mess me disant ke acer edata security n es pa installé correctement jarrive pa a linstalle
qq un peu maider svp g fai hijackThis

voila ceu ke sa me donne

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:03:23, on 17/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\cidaemon.exe
C:\WINDOWS\system32\cidaemon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\FaDiA ToUnSia\Bureau\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww17.ads.eorezo.com/cgi-bin/advert/getads.cgi?x_format=redirect&x_dp_id=9
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDOWS\system32\% %%%^^ ^^^%%% % %%%^ ^.exe
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O2 - BHO: Absolutist Games Toolbar - {631ac2d4-57b3-42b0-a148-da33b462c1a3} - C:\Program Files\Absolutist_Games\tbAbs0.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: (no name) - {CD21E22F-6752-4B8E-8C6A-21730D96899B} - C:\WINDOWS\system32\ddccb.dll (file missing)
O2 - BHO: (no name) - {DC192567-65F9-4AB6-ADB7-E13575F81726} - C:\WINDOWS\system32\mljgfdb.dll (file missing)
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Absolutist Games Toolbar - {631ac2d4-57b3-42b0-a148-da33b462c1a3} - C:\Program Files\Absolutist_Games\tbAbs0.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [surfup] C:\DOCUME~1\FADIAT~1\APPLIC~1\REGSDE~1\obj proc ping.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0828A042-A2E7-40FF-A91F-2D8F66616669}: NameServer = 86.64.145.145 84.103.237.145
O17 - HKLM\System\CS1\Services\Tcpip\..\{0828A042-A2E7-40FF-A91F-2D8F66616669}: NameServer = 86.64.145.145 84.103.237.145
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O20 - Winlogon Notify: ddccb - C:\WINDOWS\system32\ddccb.dll (file missing)
O20 - Winlogon Notify: mljgfdb - mljgfdb.dll (file missing)
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

10 réponses

Réponse 1 / 10
donya
 
merci bcp pr la rapidité de la reponse alor jarrive pa a telecharger msndfix et sdfix ne fonctionne pa met le 3e lien fonctionne voici le rapport

--------------------\\ Lop S&D 4.2.4-3 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4200+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : FaDiA ToUnSia ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080917-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 113 Go Free : 82 Go
D:\ (Local Disk) - FAT32 - Total : 113 Go Free : 113 Go
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\Lop SD" ( MAJ : 14-09-2008|22:40 )
Option : [1] ( 17/09/2008|22:54 )

--------------------\\ Listing des dossiers dans APPLIC~1

[11/10/2006|23:29] C:\DOCUME~1\ADMINI~1\APPLIC~1\Identities
[11/10/2006|23:29] C:\DOCUME~1\ADMINI~1\APPLIC~1\Macromedia
[01/05/2008|18:07] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft

[12/09/2008|01:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[19/10/2007|20:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AOL
[30/09/2007|16:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[26/08/2008|14:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/05/2008|18:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg8
[27/07/2008|10:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[29/12/2006|19:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\CyberLink
[12/09/2008|01:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FLEXnet
[02/05/2008|13:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[17/09/2008|21:23] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[23/12/2007|13:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\heck nurb trans joy
[30/03/2008|11:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\mail grey balm inter
[28/08/2007|22:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Meow stop four mail
[06/07/2007|12:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[03/09/2008|13:25] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/07/2007|23:31] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Mozilla
[10/03/2007|15:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NtiDvdCopy
[17/02/2007|22:59] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[25/02/2007|11:54] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[20/01/2008|16:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sandlot Games
[11/04/2007|09:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[13/04/2008|17:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[18/06/2008|12:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TomTom
[30/12/2006|21:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Viewpoint
[04/03/2007|13:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[25/02/2007|15:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[05/07/2007|17:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WindowsLiveInstaller
[18/05/2008|17:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[18/04/2008|23:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion

[11/10/2006|23:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[11/10/2006|23:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Macromedia
[11/10/2006|23:29] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft

[31/12/2007|19:40] C:\DOCUME~1\FADIAL~1\APPLIC~1\Adobe
[18/02/2007|16:10] C:\DOCUME~1\FADIAL~1\APPLIC~1\AOL
[30/09/2007|17:00] C:\DOCUME~1\FADIAL~1\APPLIC~1\Apple Computer
[09/04/2007|21:47] C:\DOCUME~1\FADIAL~1\APPLIC~1\AVSMedia
[01/01/2007|01:18] C:\DOCUME~1\FADIAL~1\APPLIC~1\CyberLink
[25/02/2008|22:57] C:\DOCUME~1\FADIAL~1\APPLIC~1\DivX
[23/03/2007|18:20] C:\DOCUME~1\FADIAL~1\APPLIC~1\Google
[28/12/2006|22:38] C:\DOCUME~1\FADIAL~1\APPLIC~1\Help
[11/10/2006|23:29] C:\DOCUME~1\FADIAL~1\APPLIC~1\Identities
[11/10/2006|23:29] C:\DOCUME~1\FADIAL~1\APPLIC~1\Macromedia
[22/04/2008|11:59] C:\DOCUME~1\FADIAL~1\APPLIC~1\MEGAUPLOADTOOLBAR
[29/02/2008|23:45] C:\DOCUME~1\FADIAL~1\APPLIC~1\Microsoft
[12/07/2007|16:39] C:\DOCUME~1\FADIAL~1\APPLIC~1\Mozilla
[20/04/2008|13:00] C:\DOCUME~1\FADIAL~1\APPLIC~1\regs delete fast
[25/03/2007|12:46] C:\DOCUME~1\FADIAL~1\APPLIC~1\Sun
[20/04/2008|14:56] C:\DOCUME~1\FADIAL~1\APPLIC~1\vmntoolbar
[21/10/2007|13:51] C:\DOCUME~1\FADIAL~1\APPLIC~1\Windows Desktop Search
[30/12/2006|21:45] C:\DOCUME~1\FADIAL~1\APPLIC~1\You've Got Pictures Screensaver

[11/10/2006|23:29] C:\DOCUME~1\FADIAL~1.ACE\APPLIC~1\Identities
[11/10/2006|23:29] C:\DOCUME~1\FADIAL~1.ACE\APPLIC~1\Macromedia
[17/07/2008|00:32] C:\DOCUME~1\FADIAL~1.ACE\APPLIC~1\Microsoft
[02/05/2008|00:19] C:\DOCUME~1\FADIAL~1.ACE\APPLIC~1\Mozilla
[02/05/2008|00:20] C:\DOCUME~1\FADIAL~1.ACE\APPLIC~1\VMNTOOLBAR
[02/05/2008|00:19] C:\DOCUME~1\FADIAL~1.ACE\APPLIC~1\Windows Desktop Search

[14/09/2008|20:36] C:\DOCUME~1\FADIAT~1\APPLIC~1\Adobe
[26/08/2008|16:33] C:\DOCUME~1\FADIAT~1\APPLIC~1\Apple Computer
[01/05/2008|18:05] C:\DOCUME~1\FADIAT~1\APPLIC~1\AVGTOOLBAR
[03/09/2008|14:05] C:\DOCUME~1\FADIAT~1\APPLIC~1\CyberLink
[04/09/2008|21:06] C:\DOCUME~1\FADIAT~1\APPLIC~1\DivX
[13/06/2008|11:55] C:\DOCUME~1\FADIAT~1\APPLIC~1\D-Jix Media
[02/05/2008|12:59] C:\DOCUME~1\FADIAT~1\APPLIC~1\EoRezo
[20/04/2008|15:38] C:\DOCUME~1\FADIAT~1\APPLIC~1\Google
[11/10/2006|23:29] C:\DOCUME~1\FADIAT~1\APPLIC~1\Identities
[02/05/2008|12:53] C:\DOCUME~1\FADIAT~1\APPLIC~1\ItsLabel
[11/10/2006|23:29] C:\DOCUME~1\FADIAT~1\APPLIC~1\Macromedia
[13/06/2008|17:51] C:\DOCUME~1\FADIAT~1\APPLIC~1\Microsoft
[18/06/2008|12:04] C:\DOCUME~1\FADIAT~1\APPLIC~1\Mozilla
[14/09/2008|16:59] C:\DOCUME~1\FADIAT~1\APPLIC~1\regs delete fast
[17/09/2008|22:20] C:\DOCUME~1\FADIAT~1\APPLIC~1\Shareaza
[23/04/2008|23:39] C:\DOCUME~1\FADIAT~1\APPLIC~1\Sun
[18/06/2008|12:04] C:\DOCUME~1\FADIAT~1\APPLIC~1\TomTom
[18/06/2008|18:19] C:\DOCUME~1\FADIAT~1\APPLIC~1\Viewpoint
[16/09/2008|22:40] C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNTOOLBAR
[20/04/2008|15:28] C:\DOCUME~1\FADIAT~1\APPLIC~1\Windows Desktop Search

[01/05/2008|18:06] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft

[21/10/2007|11:44] C:\DOCUME~1\NETWOR~1\APPLIC~1\Identities
[01/05/2008|18:07] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[13/09/2008 13:05][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[12/09/2008 15:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[17/09/2008 22:30][--a------] C:\WINDOWS\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job
[17/09/2008 22:49][--ah-----] C:\WINDOWS\tasks\SA.DAT
[10/08/2004 22:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[04/09/2008|21:59] C:\Program Files\[webwiz]
[30/03/2008|13:51] C:\Program Files\Absolutist_Games
[11/10/2006|23:30] C:\Program Files\Acer WLAN 11g USB Dongle
[12/09/2008|01:15] C:\Program Files\Adobe
[26/07/2008|09:25] C:\Program Files\Advanced Font Viewer
[29/02/2008|23:51] C:\Program Files\Adverts
[28/12/2006|22:37] C:\Program Files\Agfa
[01/12/2007|15:05] C:\Program Files\Alwil Software
[26/08/2008|14:22] C:\Program Files\Apple Software Update
[20/04/2008|13:05] C:\Program Files\a-squared Free
[06/09/2008|13:39] C:\Program Files\AVS4YOU
[09/04/2007|18:08] C:\Program Files\AVSMedia
[22/04/2008|19:31] C:\Program Files\AxBx
[19/02/2007|16:19] C:\Program Files\BeWAN ADSL V1.7.0.5
[26/08/2008|14:23] C:\Program Files\Bonjour
[18/04/2008|23:10] C:\Program Files\CCleaner
[14/09/2008|16:56] C:\Program Files\Circle Developement
[11/10/2006|23:30] C:\Program Files\commercial
[11/10/2006|23:30] C:\Program Files\CyberLink
[11/10/2006|23:30] C:\Program Files\DIFX
[01/09/2008|06:13] C:\Program Files\DivX
[13/06/2008|11:55] C:\Program Files\D-Jix
[02/05/2008|12:59] C:\Program Files\EoRezo
[12/09/2008|01:08] C:\Program Files\Fichiers communs
[17/05/2007|16:46] C:\Program Files\fond-ecran-wallpaper
[23/06/2008|18:11] C:\Program Files\FrenchOtto
[20/01/2008|16:33] C:\Program Files\Gamenext
[23/06/2008|18:11] C:\Program Files\GemMasterFrench
[02/05/2008|13:00] C:\Program Files\Google
[22/04/2008|19:30] C:\Program Files\InstallShield Installation Information
[17/09/2008|22:23] C:\Program Files\InterActual
[14/08/2008|03:02] C:\Program Files\Internet Explorer
[26/08/2008|14:24] C:\Program Files\iPod
[26/08/2008|14:24] C:\Program Files\iTunes
[15/03/2008|21:25] C:\Program Files\Java
[30/12/2006|21:45] C:\Program Files\Learn2.com
[23/06/2008|18:11] C:\Program Files\Livre Album Fuji Photo
[28/12/2006|23:02] C:\Program Files\Logitech
[18/04/2008|22:01] C:\Program Files\M6 Jeux
[20/04/2008|13:08] C:\Program Files\Macrogaming
[14/08/2008|03:05] C:\Program Files\Messenger
[14/09/2008|16:56] C:\Program Files\Messenger Plus! Live
[12/05/2007|23:45] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[11/10/2006|23:31] C:\Program Files\microsoft frontpage
[29/12/2006|21:31] C:\Program Files\Microsoft Money
[29/12/2006|21:31] C:\Program Files\Microsoft Office
[23/06/2008|18:11] C:\Program Files\Microsoft Picture It! 7
[21/10/2007|11:44] C:\Program Files\Microsoft SQL Server Compact Edition
[23/06/2008|18:11] C:\Program Files\Microsoft Works
[29/12/2006|21:23] C:\Program Files\Microsoft Works Suite 2003
[23/06/2008|18:11] C:\Program Files\Movie Maker
[17/09/2008|22:51] C:\Program Files\Mozilla Firefox
[28/12/2006|22:22] C:\Program Files\MSN
[09/03/2008|18:42] C:\Program Files\MSN Games
[11/10/2006|23:31] C:\Program Files\MSN Gaming Zone
[05/07/2007|17:11] C:\Program Files\MSN Messenger
[11/10/2006|23:31] C:\Program Files\NetMeeting
[25/07/2007|13:56] C:\Program Files\Neuf
[11/10/2006|23:31] C:\Program Files\NewTech Infosystems
[01/03/2008|23:04] C:\Program Files\Norton Security Scan
[11/10/2006|23:31] C:\Program Files\Oca History Tool
[11/10/2006|23:31] C:\Program Files\Online Services
[15/06/2007|00:19] C:\Program Files\Outlook Express
[06/04/2007|20:52] C:\Program Files\Photobie
[26/08/2008|14:23] C:\Program Files\QuickTime
[30/12/2006|22:52] C:\Program Files\Real
[11/10/2006|23:31] C:\Program Files\Realtek
[14/09/2008|16:57] C:\Program Files\regs delete fast
[30/12/2006|21:41] C:\Program Files\Securitoo
[11/10/2006|23:31] C:\Program Files\Services en ligne
[08/01/2008|20:45] C:\Program Files\Shareaza Applications
[01/05/2008|17:13] C:\Program Files\Thomson
[18/06/2008|11:58] C:\Program Files\TomTom DesktopSuite
[18/06/2008|12:04] C:\Program Files\TomTom HOME 2
[20/04/2008|15:27] C:\Program Files\Uninstall Information
[21/10/2007|14:00] C:\Program Files\Veoh Networks
[30/12/2006|21:45] C:\Program Files\Viewpoint
[23/06/2008|18:11] C:\Program Files\vmntoolbar
[11/02/2007|14:55] C:\Program Files\Wanadoo
[21/10/2007|11:43] C:\Program Files\Windows Desktop Search
[28/02/2008|00:38] C:\Program Files\Windows Live
[23/06/2008|18:11] C:\Program Files\Windows Live Toolbar
[20/04/2008|15:27] C:\Program Files\Windows Media Player
[11/10/2006|23:31] C:\Program Files\Windows NT
[11/10/2006|23:31] C:\Program Files\Windows Plus
[01/12/2007|21:35] C:\Program Files\WinTouch
[11/10/2006|23:31] C:\Program Files\xerox
[18/04/2008|23:10] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[12/09/2008|01:18] C:\Program Files\Fichiers communs\Adobe
[12/11/2007|12:38] C:\Program Files\Fichiers communs\AOL
[30/12/2006|21:45] C:\Program Files\Fichiers communs\aolback
[30/09/2007|16:58] C:\Program Files\Fichiers communs\Apple
[06/09/2008|13:38] C:\Program Files\Fichiers communs\AVSMedia
[29/12/2006|21:13] C:\Program Files\Fichiers communs\Designer
[11/10/2006|23:30] C:\Program Files\Fichiers communs\InstallShield
[28/12/2006|19:06] C:\Program Files\Fichiers communs\Java
[11/10/2006|23:30] C:\Program Files\Fichiers communs\LightScribe
[28/12/2006|23:03] C:\Program Files\Fichiers communs\Logitech
[12/09/2008|01:08] C:\Program Files\Fichiers communs\Macrovision Shared
[01/05/2008|18:04] C:\Program Files\Fichiers communs\Microsoft Shared
[11/10/2006|23:31] C:\Program Files\Fichiers communs\MSSoap
[11/10/2006|23:31] C:\Program Files\Fichiers communs\muvee Technologies
[11/10/2006|23:31] C:\Program Files\Fichiers communs\NewTech Infosystems
[30/12/2006|21:45] C:\Program Files\Fichiers communs\Nullsoft
[04/09/2008|21:06] C:\Program Files\Fichiers communs\ODBC
[30/12/2006|22:52] C:\Program Files\Fichiers communs\Real
[11/10/2006|23:31] C:\Program Files\Fichiers communs\Services
[11/10/2006|23:31] C:\Program Files\Fichiers communs\SpeechEngines
[11/07/2007|19:28] C:\Program Files\Fichiers communs\Symantec Shared
[15/06/2007|00:19] C:\Program Files\Fichiers communs\System
[14/04/2008|16:22] C:\Program Files\Fichiers communs\WindowsLiveInstaller

--------------------\\ Process

( 60 Processes )

IEXPLORE.EXE ~ [PID:2956]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\Program Files\Adverts
C:\Program Files\Circle Developement
C:\Program Files\Circle Developement\Uninstall.exe

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts MODIFIE

127.0.0.1 bin.errorprotector.com ## added by CiD
127.0.0.1 br.errorsafe.com ## added by CiD
127.0.0.1 br.winantivirus.com ## added by CiD
127.0.0.1 br.winfixer.com ## added by CiD
127.0.0.1 cdn.drivecleaner.com ## added by CiD
127.0.0.1 cdn.errorsafe.com ## added by CiD
127.0.0.1 cdn.winsoftware.com ## added by CiD
127.0.0.1 de.errorsafe.com ## added by CiD
127.0.0.1 de.winantivirus.com ## added by CiD
127.0.0.1 download.cdn.drivecleaner.com ## added by CiD
127.0.0.1 download.cdn.errorsafe.com ## added by CiD
127.0.0.1 download.cdn.winsoftware.com ## added by CiD
127.0.0.1 download.errorsafe.com ## added by CiD
127.0.0.1 download.systemdoctor.com ## added by CiD
127.0.0.1 download.winantispyware.com ## added by CiD
127.0.0.1 download.windrivecleaner.com ## added by CiD
127.0.0.1 download.winfixer.com ## added by CiD
127.0.0.1 drivecleaner.com ## added by CiD
127.0.0.1 dynamique.drivecleaner.com ## added by CiD
127.0.0.1 errorprotector.com ## added by CiD
127.0.0.1 errorsafe.com ## added by CiD
127.0.0.1 es.winantivirus.com ## added by CiD
127.0.0.1 fr.winantivirus.com ## added by CiD
127.0.0.1 fr.winfixer.com ## added by CiD
127.0.0.1 go.drivecleaner.com ## added by CiD
127.0.0.1 go.errorsafe.com ## added by CiD
127.0.0.1 go.winantispyware.com ## added by CiD
127.0.0.1 go.winantivirus.com ## added by CiD
127.0.0.1 hk.winantivirus.com ## added by CiD
127.0.0.1 instlog.errorsafe.com ## added by CiD
127.0.0.1 instlog.winantivirus.com ## added by CiD
127.0.0.1 instlog.winfixer.com ## added by CiD
127.0.0.1 jsp.drivecleaner.com ## added by CiD
127.0.0.1 kb.errorsafe.com ## added by CiD
127.0.0.1 kb.winantivirus.com ## added by CiD
127.0.0.1 nl.errorsafe.com ## added by CiD
127.0.0.1 se.errorsafe.com ## added by CiD
127.0.0.1 secure.drivecleaner.com ## added by CiD
127.0.0.1 secure.errorsafe.com ## added by CiD
127.0.0.1 secure.winantispam.com ## added by CiD
127.0.0.1 secure.winantispy.com ## added by CiD
127.0.0.1 secure.winantivirus.com ## added by CiD
127.0.0.1 support.winantivirus.com ## added by CiD
127.0.0.1 trial.updates.winsoftware.com ## added by CiD
127.0.0.1 ulog.winantivirus.com ## added by CiD
127.0.0.1 utils.errorsafe.com ## added by CiD
127.0.0.1 utils.winantivirus.com ## added by CiD
127.0.0.1 utils.winfixer.com ## added by CiD
127.0.0.1 winantispyware.com ## added by CiD
127.0.0.1 winantivirus.com ## added by CiD
127.0.0.1 winfixer.com ## added by CiD
127.0.0.1 winfixer2006.com ## added by CiD
127.0.0.1 winsoftware.com ## added by CiD
127.0.0.1 [i]ww/iw.drivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.errorprotector.com ## added by CiD
127.0.0.1 [i]ww/iw.errorsafe.com ## added by CiD
127.0.0.1 [i]ww/iw.systemdoctor.com ## added by CiD
127.0.0.1 [i]ww/iw.utils.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.win-anti-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.win-virus-pro.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispam.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispy.com ## added by CiD
127.0.0.1 [i]ww/iw.winantispyware.com ## added by CiD
127.0.0.1 [i]ww/iw.winantivirus.com ## added by CiD
127.0.0.1 [i]ww/iw.winantiviruspro.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivecleaner.com ## added by CiD
127.0.0.1 [i]ww/iw.windrivesafe.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer.com ## added by CiD
127.0.0.1 [i]ww/iw.winfixer2006.com ## added by CiD
127.0.0.1 [i]ww/iw.winsoftware.com ## added by CiD

-> 72 [ 70 ## added by CiD ]

--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-17 22:56:05
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 36

--------------------\\ Recherche d'autres infections

C:\WINDOWS\system32\bccdd.bak1
C:\WINDOWS\system32\bccdd.bak2
C:\WINDOWS\system32\bccdd.ini
C:\WINDOWS\system32\bccdd.ini2
C:\WINDOWS\system32\bccdd.tmp
C:\WINDOWS\system32\kadesjtd.ini
C:\WINDOWS\system32\kadesjtd.ini2
C:\WINDOWS\system32\kadesjtd.tmp
[b]==> VUNDO <==/b

--------------------\\ Suspect ..

C:\WINDOWS\photos.zip

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\ALLUSE~1\Documents\Shareaza Downloads\11-rim-k-pilotes_crack_musik_feat _hamza.mp3

[F:171][D:4]-> C:\DOCUME~1\FADIAT~1\LOCALS~1\Temp
[F:20][D:0]-> C:\DOCUME~1\FADIAT~1\Cookies
[F:47][D:4]-> C:\DOCUME~1\FADIAT~1\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 17/09/2008|22:57 - Option : [1]

--------------------\\ Fin du rapport a 22:57:53

voila mercci bcp de maiderr
0
Réponse 2 / 10
donya
 
bonjour merci encore pr votre aide alor ci decu

le raport de malwarebyte

Malwarebytes' Anti-Malware 1.28
Version de la base de données: 1166
Windows 5.1.2600 Service Pack 2

18/09/2008 16:11:16
mbam-log-2008-09-18 (16-11-16).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 186103
Temps écoulé: 1 hour(s), 55 minute(s), 31 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 12
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 71

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{cd21e22f-6752-4b8e-8c6a-21730d96899b} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ddccb (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{cd21e22f-6752-4b8e-8c6a-21730d96899b} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{dc192567-65f9-4ab6-adb7-e13575f81726} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\mljgfdb (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{dc192567-65f9-4ab6-adb7-e13575f81726} (Trojan.Vundo.H) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{1f6581d5-aa53-4b73-a6f9-41420c6b61f1} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\WR (Malware.Trace) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Juan (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\FCOVM (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\aoprndtws (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DomainService (Trojan.Agent) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\system32\ddccb.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mljgfdb.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\acoywycw.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wcywyoca.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bexjsojp.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pjosjxeb.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bhemecib.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bicemehb.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\bhylqrnk.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\knrqlyhb.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\canhqekp.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pkeqhnac.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ceeedbiy.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yibdeeec.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\digvnlkf.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\fklnvgid.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\doydakam.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\makadyod.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\evyyknaq.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qankyyve.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ijywuscw.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wcsuwyji.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\iwgbhfkx.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\xkfhbgwi.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kcacpnml.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\lmnpcack.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ksufsaib.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\biasfusk.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mqfvmwce.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ecwmvfqm.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\nbhoafli.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ilfaohbn.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\ojsktuio.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\oiutksjo.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\opblparm.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mraplbpo.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\opykbexk.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kxebkypo.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\pyiulvct.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tcvluiyp.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qkddqxpe.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\epxqddkq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\qtmssmou.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\uomssmtq.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\rkddrdjk.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\kjdrddkr.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\rwembjmv.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\vmjbmewr.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tacikqno.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\onqkicat.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tjxxgyjm.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\mjygxxjt.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tleoquww.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\wwuqoelt.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tlrqgray.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\yargqrlt.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\tyldnvpr.dll (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\rpvndlyt.ini (Trojan.Vundo.H) -> Quarantined and deleted successfully.
C:\Program Files\Absolutist_Games\tbAbs1.dll (Adware.Shopper) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{B89CEA26-ECB5-40D8-BB54-F267A162670D}\RP386\A0261759.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\System Volume Information\_restore{B89CEA26-ECB5-40D8-BB54-F267A162670D}\RP386\A0261761.exe (Adware.SoftMate) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\geyibx.exe (Trojan.Agent) -> Delete on reboot.
C:\WINDOWS\system32\gztvlo.exe (Trojan.Agent) -> Delete on reboot.
C:\WINDOWS\system32\ihpwmq.exe (Trojan.Agent) -> Delete on reboot.
C:\WINDOWS\system32\mcrh.tmp (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\wr.txt (Malware.Trace) -> Quarantined and deleted successfully.
C:\WINDOWS\photos.zip (Backdoor.Bot) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fadia la Tounsia\Local Settings\Temp\afe8_appcompat.txt (Trojan.Extension.Exploit) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fadia la Tounsia\Local Settings\Temp\b82c_appcompat.txt (Trojan.Extension.Exploit) -> Quarantined and deleted successfully.
C:\Documents and Settings\Fadia la Tounsia\Local Settings\Temp\LastScan.txt (Trojan.Extension.Exploit) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\drivers\core.cache.dsk (Rootkit.Agent) -> Quarantined and deleted successfully.


le rapport de combofix

ComboFix 08-09-16.05 - FaDiA ToUnSia 2008-09-18 16:19:27.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.400 [GMT 2:00]
Lancé depuis: C:\Documents and Settings\FaDiA ToUnSia\Bureau\ComboFix.exe
* Un nouveau point de restauration a été créé

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !!/b/color
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Fadia la Tounsia\real.txt
C:\Documents and Settings\FaDiA ToUnSia\real.txt
C:\Program Files\wintouch
C:\Program Files\wintouch\config.cfg.dfd6e0b25fe0fa1b8c88be9d7ead333d
C:\Program Files\wintouch\wintouch.cfg
C:\Program Files\wintouch\WTUninstaller.exe
C:\WINDOWS\sstem~1
C:\WINDOWS\system32\ajooiwgc.ini
C:\WINDOWS\system32\bccdd.bak1
C:\WINDOWS\system32\bccdd.bak2
C:\WINDOWS\system32\bccdd.ini
C:\WINDOWS\system32\bccdd.ini2
C:\WINDOWS\system32\bccdd.tmp
C:\WINDOWS\system32\Cache
C:\WINDOWS\system32\cnuqorxq.ini
C:\WINDOWS\system32\dxohhuyo.ini
C:\WINDOWS\system32\iapovyeo.ini
C:\WINDOWS\system32\jcetwqlb.ini
C:\WINDOWS\system32\kadesjtd.ini
C:\WINDOWS\system32\kadesjtd.ini2
C:\WINDOWS\system32\kadesjtd.tmp
C:\WINDOWS\system32\pxpijoqq.ini
C:\WINDOWS\system32\real.txt
C:\WINDOWS\system32\rtocixda.ini
C:\WINDOWS\system32\rwcmmqpg.ini
C:\WINDOWS\system32\sxwlspsl.ini
C:\WINDOWS\system32\vgcqkcdj.ini
C:\WINDOWS\system32\winticom32.exe
C:\WINDOWS\system32\wmghgkhh.ini

.
((((((((((((((((((((((((((((( Fichiers cr‚‚s du 2008-08-18 au 2008-09-18 ))))))))))))))))))))))))))))))))))))
.

2008-09-18 14:13 . 2008-09-18 14:13 <REP> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-09-18 14:13 . 2008-09-18 14:13 <REP> d-------- C:\Documents and Settings\FaDiA ToUnSia\Application Data\Malwarebytes
2008-09-18 14:13 . 2008-09-18 14:13 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-09-18 14:13 . 2008-09-10 00:04 38,528 --a------ C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-09-18 14:13 . 2008-09-10 00:03 17,200 --a------ C:\WINDOWS\system32\drivers\mbam.sys
2008-09-18 00:50 . 2004-05-14 16:53 462,848 --a------ C:\WINDOWS\system32\ltkrn13n.dll
2008-09-18 00:50 . 2004-05-14 16:53 450,560 --a------ C:\WINDOWS\system32\ltimg13n.dll
2008-09-18 00:50 . 2004-05-14 16:53 401,408 --a------ C:\WINDOWS\system32\lfcmp13n.dll
2008-09-18 00:50 . 2004-05-14 16:53 299,008 --a------ C:\WINDOWS\system32\ltdis13n.dll
2008-09-18 00:50 . 2004-01-12 02:09 206,336 --a------ C:\WINDOWS\system32\ltefx13n.dll
2008-09-18 00:50 . 2004-05-14 16:53 163,840 --a------ C:\WINDOWS\system32\ltfil13n.dll
2008-09-18 00:50 . 2003-11-04 15:11 159,744 --a------ C:\WINDOWS\system32\lfpng13n.dll
2008-09-18 00:50 . 2003-11-04 15:10 69,632 --a------ C:\WINDOWS\system32\lfgif13n.dll
2008-09-18 00:50 . 2004-05-14 16:53 57,344 --a------ C:\WINDOWS\system32\lfbmp13n.dll
2008-09-17 22:54 . 2008-09-17 22:57 <REP> d-------- C:\Lop SD
2008-09-17 22:51 . 2008-09-16 17:42 <REP> d-------- C:\SDFix
2008-09-14 16:57 . 2008-09-14 16:57 <REP> d-------- C:\Program Files\regs delete fast
2008-09-14 16:57 . 2008-09-14 16:59 <REP> d-------- C:\Documents and Settings\FaDiA ToUnSia\Application Data\regs delete fast
2008-09-12 01:23 . 2008-09-12 01:23 <REP> d-------- C:\Documents and Settings\All Users\Application Data\FLEXnet
2008-09-12 01:08 . 2008-09-12 01:08 <REP> d-------- C:\Program Files\Fichiers communs\Macrovision Shared
2008-09-08 20:40 . 2008-09-17 22:20 <REP> d-------- C:\Documents and Settings\FaDiA ToUnSia\Application Data\Shareaza
2008-09-04 21:06 . 2008-09-04 21:59 <REP> d-------- C:\Program Files\[webwiz]
2008-09-04 21:06 . 2008-09-04 21:06 <REP> d-------- C:\Documents and Settings\FaDiA ToUnSia\Application Data\DivX
2008-09-03 14:05 . 2008-09-03 14:05 <REP> d-------- C:\Documents and Settings\FaDiA ToUnSia\Application Data\CyberLink
2008-08-26 14:24 . 2008-08-26 14:24 <REP> d-------- C:\Program Files\iTunes
2008-08-26 14:24 . 2008-08-26 14:24 <REP> d-------- C:\Program Files\iPod
2008-08-26 14:24 . 2008-08-26 16:33 <REP> d-------- C:\Documents and Settings\FaDiA ToUnSia\Application Data\Apple Computer
2008-08-26 14:23 . 2008-08-26 14:23 <REP> d-------- C:\Program Files\QuickTime
2008-08-26 14:23 . 2008-08-26 14:23 <REP> d-------- C:\Program Files\Bonjour
2008-08-26 14:22 . 2008-08-26 14:22 <REP> d-------- C:\Program Files\Apple Software Update
2008-08-26 04:09 . 2008-08-26 04:09 268 --ah----- C:\sqmdata15.sqm
2008-08-26 04:09 . 2008-08-26 04:09 172 --ah----- C:\sqmnoopt15.sqm

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-18 14:11 --------- d-----w C:\Program Files\Absolutist_Games
2008-09-17 22:48 --------- d-----w C:\Documents and Settings\FaDiA ToUnSia\Application Data\VMNTOOLBAR
2008-09-17 20:23 --------- d-----w C:\Program Files\InterActual
2008-09-17 19:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater
2008-09-14 14:56 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-09-14 14:56 --------- d-----w C:\Program Files\Circle Developement
2008-09-11 23:18 --------- d-----w C:\Program Files\Fichiers communs\Adobe
2008-09-06 11:39 --------- d-----w C:\Program Files\AVS4YOU
2008-09-06 11:38 --------- d-----w C:\Program Files\Fichiers communs\AVSMedia
2008-09-04 19:58 2,560 -c--a-w C:\WINDOWS\_MSRSTRT.EXE
2008-09-01 04:13 --------- d-----w C:\Program Files\DivX
2008-08-26 12:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-07-27 08:37 --------- d-----w C:\Documents and Settings\All Users\Application Data\AVS4YOU
2008-07-26 07:25 --------- d-----w C:\Program Files\Advanced Font Viewer
2008-07-22 18:32 32,000 ----a-w C:\WINDOWS\system32\drivers\usbaapl.sys
2008-07-18 18:39 587,264 ----a-w C:\WINDOWS\WLXPGSS.SCR
2007-02-25 09:38 56 --sh--r C:\WINDOWS\system32\3202C87582.sys
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{631ac2d4-57b3-42b0-a148-da33b462c1a3}]
2008-03-30 13:51 1470488 --a------ C:\Program Files\Absolutist_Games\tbAbs0.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{631ac2d4-57b3-42b0-a148-da33b462c1a3}"= "C:\Program Files\Absolutist_Games\tbAbs0.dll" [2008-03-30 1470488]

[HKEY_CLASSES_ROOT\clsid\{631ac2d4-57b3-42b0-a148-da33b462c1a3}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{631AC2D4-57B3-42B0-A148-DA33B462C1A3}"= "C:\Program Files\Absolutist_Games\tbAbs0.dll" [2008-03-30 1470488]

[HKEY_CLASSES_ROOT\clsid\{631ac2d4-57b3-42b0-a148-da33b462c1a3}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-10 15360]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 1694208]
"TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\HOMERunner.exe" [2008-05-06 202088]
"Veoh"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" [2008-08-28 3660848]
"surfup"="C:\DOCUME~1\FADIAT~1\APPLIC~1\REGSDE~1\obj proc ping.exe" [2008-09-14 463360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2006-07-12 7626752]
"RealTray"="C:\Program Files\Real\RealPlayer\RealPlay.exe" [2006-12-30 26112]
"AppleSyncNotifier"="C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2008-07-22 116040]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-05-27 413696]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-07-30 289064]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-10 15360]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2007-02-05 294400]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLAcsd.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\ACS\\AOLDial.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\MSN Messenger\\msnmgr.exe"=
"C:\\WINDOWS\\system32\\dpvsetup.exe"=
"C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=

R1 aswSP;avast! Self Protection;C:\WINDOWS\system32\drivers\aswSP.sys [2008-07-19 78416]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\DRIVERS\aswFsBlk.sys [2008-07-19 20560]
R3 alcan5ln;SpeedTouch(tm) USB ADSL RFC1483 Networking Driver (NDIS);C:\WINDOWS\system32\DRIVERS\alcan5ln.sys [2003-12-08 36256]
S3 int15.sys;int15.sys;C:\Acer\Empowering Technology\eRecovery\int15.sys [2005-01-13 69632]
S3 ZD1211BU(ZyDAS);ZyDAS ZD1211B IEEE 802.11 b+g Wireless LAN Driver (USB)(ZyDAS);C:\WINDOWS\system32\DRIVERS\zd1211Bu.sys [2005-10-28 402432]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{60c00157-3865-11dd-99a2-000e50239479}]
\Shell\AutoRun\command - J:\InstallTomTomHOME.exe

*Newly Created Service* - UBHELPER
.
Contenu du dossier 'Tƒches planifi‚es'
.
- - - - ORPHELINS SUPPRIMES - - - -

HKLM-Run-[webwiz] - (no file)

.
------- Examen suppl‚mentaire -------
.
FireFox -: Profile - C:\Documents and Settings\FaDiA ToUnSia\Application Data\Mozilla\Firefox\Profiles\jctlydap.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FF -: plugin - C:\Program Files\DivX\DivX Content Uploader\npUpload.dll
FF -: plugin - C:\Program Files\Google\Google Updater\2.2.1111.1511\npCIDetect11.dll
FF -: plugin - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
FF -: plugin - C:\Program Files\Veoh Networks\Veoh\Plugins\noreg\NPVeohVersion.dll
FF -: plugin - C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
FF -: plugin - C:\Program Files\Yahoo!\common\npyaxmpb.dll
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-18 16:25:55
Windows 5.1.2600 Service Pack 2 NTFS

Recherche de processus cach‚s ...

Recherche d'‚l‚ments en d‚marrage automatique cach‚s ...

Recherche de fichiers cach‚s ...

Scan termin‚ avec succŠs
Fichiers cach‚s: 0

**************************************************************************
.
------------------------ Autres processus actifs ------------------------
.
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\ehome\ehrecvr.exe
C:\WINDOWS\ehome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\snmp.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\system32\searchindexer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\WINDOWS\system32\searchprotocolhost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\searchfilterhost.exe
C:\ComboFix\pv.cfexe
.
**************************************************************************
.
Heure de fin: 2008-09-18 16:31:37 - La machine a red‚marr‚
ComboFix-quarantined-files.txt 2008-09-18 14:31:30

Avant-CF: 87,918,125,056 octets libres
AprŠs-CF: 87,859,191,808 octets libres

215 --- E O F --- 2008-09-10 22:42:05

et pr finir le raport de hijack

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:35:50, on 18/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\FaDiA ToUnSia\Bureau\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ww17.ads.eorezo.com/cgi-bin/advert/getads.cgi?x_format=redirect&x_dp_id=9
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O2 - BHO: Absolutist Games Toolbar - {631ac2d4-57b3-42b0-a148-da33b462c1a3} - C:\Program Files\Absolutist_Games\tbAbs0.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - C:\PROGRA~1\VMNTOO~1\VMNTOO~1.DLL
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Absolutist Games Toolbar - {631ac2d4-57b3-42b0-a148-da33b462c1a3} - C:\Program Files\Absolutist_Games\tbAbs0.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [surfup] C:\DOCUME~1\FADIAT~1\APPLIC~1\REGSDE~1\obj proc ping.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0828A042-A2E7-40FF-A91F-2D8F66616669}: NameServer = 84.103.237.146 86.64.145.146
O17 - HKLM\System\CS1\Services\Tcpip\..\{0828A042-A2E7-40FF-A91F-2D8F66616669}: NameServer = 84.103.237.146 86.64.145.146
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
0
Réponse 3 / 10
donya
 
je narrive pa a telecharger msn clenear

# Rapport Lopxp fait le 19/09/2008 à 13:13:26
# Exécuté dans : C:\Program Files\Lopxp
# Version 3.10 - Maj du 11/04/2008

Killing 'iexplore.exe'
"C:\Program Files\Internet Explorer\iexplore.exe" (3676)

========== Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

2006-10-11 à 21:29:54 - Identities
2006-10-11 à 21:29:54 - Macromedia
2008-05-01 à 16:07:18 - Microsoft

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

2006-10-11 à 21:29:55 - ApplicationHistory
2008-05-01 à 16:07:19 - Microsoft

+- C:\Documents and Settings\All Users\Application Data

2008-09-11 à 23:19:06 - Adobe
2007-10-19 à 18:45:32 - AOL
2007-09-30 à 14:58:14 - Apple
2008-08-26 à 12:23:08 - Apple Computer
2008-05-01 à 16:07:05 - avg8
2008-07-27 à 08:37:07 - AVS4YOU
2006-12-29 à 17:53:03 - CyberLink
2008-09-11 à 23:23:36 - FLEXnet
2008-05-02 à 11:00:11 - Google
2008-09-18 à 20:23:43 - Google Updater
2007-12-23 à 11:34:50 - heck nurb trans joy
2008-03-30 à 09:11:37 - mail grey balm inter
2008-09-18 à 12:13:36 - Malwarebytes
2007-08-28 à 20:42:27 - Meow stop four mail
2007-07-06 à 10:37:28 - Messenger Plus!
2008-09-03 à 11:25:26 - Microsoft
2007-07-03 à 21:31:23 - Mozilla
2007-03-10 à 13:11:19 - NtiDvdCopy
2007-02-17 à 20:59:52 - NVIDIA
2007-02-25 à 09:54:23 - QuickTime
2008-01-20 à 14:28:35 - Sandlot Games
2008-09-18 à 15:43:17 - Spybot - Search & Destroy
2007-04-11 à 07:34:20 - Symantec
2008-04-13 à 15:06:24 - TEMP
2008-06-18 à 10:04:58 - TomTom
2006-12-30 à 19:45:41 - Viewpoint
2007-03-04 à 11:04:19 - Windows Genuine Advantage
2007-02-25 à 13:14:18 - Windows Live Toolbar
2007-07-05 à 15:11:15 - WindowsLiveInstaller
2008-05-18 à 15:56:51 - WLInstaller
2008-04-18 à 21:13:45 - Yahoo! Companion

+- C:\Documents and Settings\Fadia la Tounsia\Application Data

2007-12-31 à 17:40:26 - Adobe
2007-02-18 à 14:10:48 - AOL
2007-09-30 à 15:00:13 - Apple Computer
2007-04-09 à 19:47:11 - AVSMedia
2006-12-31 à 23:18:34 - CyberLink
2008-02-25 à 20:57:50 - DivX
2007-03-23 à 16:20:06 - Google
2006-12-28 à 20:38:52 - Help
2006-10-11 à 21:29:54 - Identities
2006-10-11 à 21:29:54 - Macromedia
2008-04-22 à 09:59:45 - MEGAUPLOADTOOLBAR
2008-02-29 à 21:45:38 - Microsoft
2007-07-12 à 14:39:30 - Mozilla
2008-04-20 à 11:00:35 - regs delete fast
2007-03-25 à 10:46:14 - Sun
2008-04-20 à 12:56:22 - vmntoolbar
2007-10-21 à 11:51:27 - Windows Desktop Search
2006-12-30 à 19:45:45 - You've Got Pictures Screensaver

+- C:\Documents and Settings\Fadia la Tounsia\Local Settings\Application Data

2008-01-20 à 12:39:32 - Absolutist_Games
2007-12-31 à 17:51:13 - Adobe
2007-02-22 à 22:09:54 - AOL
2007-09-30 à 14:58:43 - Apple
2007-09-30 à 15:00:13 - Apple Computer
2008-04-19 à 20:47:11 - ApplicationHistory
2007-04-09 à 15:05:44 - cdrtfe
2007-08-29 à 20:14:43 - Google
2006-12-28 à 20:38:52 - Help
2007-10-21 à 11:52:55 - Identities
2008-04-18 à 11:47:12 - Microsoft
2007-02-23 à 08:37:12 - Mozilla
2007-08-30 à 13:26:41 - PCHealth
2007-02-25 à 10:30:19 - Shareaza
2007-04-09 à 11:08:58 - SM
2006-12-28 à 17:06:21 - {3248F0A6-6813-11D6-A77B-00B0D0150060}

+- C:\Documents and Settings\Fadia la Tounsia.ACER-7989E0343A\Application Data

2006-10-11 à 21:29:54 - Identities
2006-10-11 à 21:29:54 - Macromedia
2008-07-16 à 22:32:22 - Microsoft
2008-05-01 à 22:19:16 - Mozilla
2008-05-01 à 22:20:08 - VMNTOOLBAR
2008-05-01 à 22:19:11 - Windows Desktop Search

+- C:\Documents and Settings\Fadia la Tounsia.ACER-7989E0343A\Local Settings\Application Data

2008-05-01 à 22:20:13 - Absolutist_Games
2007-08-31 à 13:30:26 - Adobe
2008-08-28 à 00:50:44 - Apple Computer
2008-05-01 à 22:19:08 - ApplicationHistory
2008-05-01 à 22:19:04 - Google
2008-05-01 à 22:19:12 - Identities
2008-05-01 à 22:19:15 - Microsoft
2008-05-01 à 22:19:16 - Mozilla

+- C:\Documents and Settings\FaDiA ToUnSia\Application Data

2008-09-14 à 18:36:26 - Adobe
2008-09-18 à 16:58:34 - Apple Computer
2008-05-01 à 16:05:11 - AVGTOOLBAR
2008-09-03 à 12:05:19 - CyberLink
2008-06-13 à 09:55:32 - D-Jix Media
2008-09-04 à 19:06:24 - DivX
2008-05-02 à 10:59:54 - EoRezo
2008-04-20 à 13:38:14 - Google
2006-10-11 à 21:29:54 - Identities
2008-05-02 à 10:53:38 - ItsLabel
2006-10-11 à 21:29:54 - Macromedia
2008-09-18 à 12:13:40 - Malwarebytes
2008-09-18 à 14:50:05 - Microsoft
2008-06-18 à 10:04:55 - Mozilla
2008-09-14 à 14:59:31 - regs delete fast
2008-09-17 à 20:20:15 - Shareaza
2008-04-23 à 21:39:45 - Sun
2008-06-18 à 10:04:52 - TomTom
2008-06-18 à 16:19:43 - Viewpoint
2008-09-18 à 19:00:42 - VMNTOOLBAR
2008-04-20 à 13:28:21 - Windows Desktop Search

+- C:\Documents and Settings\FaDiA ToUnSia\Local Settings\Application Data

2008-04-20 à 13:29:10 - Absolutist_Games
2008-09-17 à 16:38:07 - Adobe
2008-08-26 à 12:22:56 - Apple
2008-08-27 à 18:19:47 - Apple Computer
2008-09-18 à 14:55:27 - ApplicationHistory
2008-04-20 à 13:38:14 - Google
2008-04-20 à 13:28:22 - Identities
2008-08-20 à 14:43:03 - Microsoft
2008-04-20 à 13:38:45 - Mozilla
2008-05-25 à 15:54:01 - Shareaza
2008-06-18 à 10:04:52 - TomTom
2008-04-21 à 20:56:02 - WMTools Downloaded Files

========== Listing du dossier Program Files

+- C:\Program Files

2008-04-20 à 11:05:44 - a-squared Free
2008-09-18 à 14:11:16 - Absolutist_Games
2006-10-11 à 21:30:50 - Acer WLAN 11g USB Dongle
2008-09-11 à 23:15:14 - Adobe
2008-07-26 à 07:25:45 - Advanced Font Viewer
2008-02-29 à 21:51:18 - Adverts
2006-12-28 à 20:37:45 - Agfa
2007-12-01 à 13:05:41 - Alwil Software
2008-08-26 à 12:22:53 - Apple Software Update
2008-09-06 à 11:39:20 - AVS4YOU
2007-04-09 à 16:08:46 - AVSMedia
2008-04-22 à 17:31:13 - AxBx
2007-02-19 à 14:19:20 - BeWAN ADSL V1.7.0.5
2008-09-18 à 14:49:11 - Bonjour
2008-04-18 à 21:10:48 - CCleaner
2008-09-14 à 14:56:53 - Circle Developement
2006-10-11 à 21:30:54 - commercial
2006-10-11 à 21:30:58 - CyberLink
2006-10-11 à 21:30:58 - DIFX
2008-09-01 à 04:13:47 - DivX
2008-05-02 à 10:59:54 - EoRezo
2008-09-18 à 14:21:56 - Fichiers communs
2007-05-17 à 14:46:33 - fond-ecran-wallpaper
2008-06-23 à 16:11:48 - FrenchOtto
2008-01-20 à 14:33:05 - Gamenext
2008-06-23 à 16:11:48 - GemMasterFrench
2008-05-02 à 11:00:13 - Google
2008-09-18 à 14:48:54 - InstallShield Installation Information
2008-09-17 à 20:23:23 - InterActual
2008-09-18 à 17:41:11 - Internet Explorer
2008-08-26 à 12:24:05 - iPod
2008-08-26 à 12:24:18 - iTunes
2008-03-15 à 19:25:13 - Java
2006-12-30 à 19:45:45 - Learn2.com
2008-06-23 à 16:11:48 - Livre Album Fuji Photo
2006-12-28 à 21:02:25 - Logitech
2008-09-19 à 11:13:30 - Lopxp
2008-04-18 à 20:01:11 - M6 Jeux
2008-04-20 à 11:08:32 - Macrogaming
2008-09-18 à 12:13:39 - Malwarebytes' Anti-Malware
2008-08-14 à 01:05:30 - Messenger
2008-09-14 à 14:56:51 - Messenger Plus! Live
2007-05-12 à 21:45:49 - Microsoft CAPICOM 2.1.0.2
2006-10-11 à 21:31:06 - microsoft frontpage
2006-12-29 à 19:31:32 - Microsoft Money
2006-12-29 à 19:31:03 - Microsoft Office
2008-06-23 à 16:11:49 - Microsoft Picture It! 7
2007-10-21 à 09:44:03 - Microsoft SQL Server Compact Edition
2008-06-23 à 16:11:50 - Microsoft Works
2006-12-29 à 19:23:19 - Microsoft Works Suite 2003
2008-06-23 à 16:11:50 - Movie Maker
2008-09-19 à 10:20:01 - Mozilla Firefox
2006-12-28 à 20:22:33 - MSN
2008-03-09 à 16:42:19 - MSN Games
2006-10-11 à 21:31:08 - MSN Gaming Zone
2007-07-05 à 15:11:53 - MSN Messenger
2006-10-11 à 21:31:09 - NetMeeting
2007-07-25 à 11:56:25 - Neuf
2006-10-11 à 21:31:11 - NewTech Infosystems
2008-03-01 à 21:04:29 - Norton Security Scan
2006-10-11 à 21:31:22 - Oca History Tool
2006-10-11 à 21:31:22 - Online Services
2007-06-14 à 22:19:04 - Outlook Express
2007-04-06 à 18:52:59 - Photobie
2008-08-26 à 12:23:38 - QuickTime
2006-12-30 à 20:52:12 - Real
2006-10-11 à 21:31:22 - Realtek
2008-09-14 à 14:57:37 - regs delete fast
2006-12-30 à 19:41:06 - Securitoo
2006-10-11 à 21:31:23 - Services en ligne
2008-09-18 à 15:07:23 - Spybot - Search & Destroy
2008-05-01 à 15:13:29 - Thomson
2008-06-18 à 09:58:38 - TomTom DesktopSuite
2008-06-18 à 10:04:08 - TomTom HOME 2
2008-04-20 à 13:27:07 - Uninstall Information
2007-10-21 à 12:00:50 - Veoh Networks
2006-12-30 à 19:45:41 - Viewpoint
2008-06-23 à 16:11:51 - vmntoolbar
2007-02-11 à 12:55:26 - Wanadoo
2007-10-21 à 09:43:43 - Windows Desktop Search
2008-02-27 à 22:38:52 - Windows Live
2008-06-23 à 16:11:51 - Windows Live Toolbar
2008-04-20 à 13:27:13 - Windows Media Player
2006-10-11 à 21:31:24 - Windows NT
2006-10-11 à 21:31:25 - Windows Plus
2006-10-11 à 21:31:26 - xerox
2008-04-18 à 21:10:41 - Yahoo!
2008-09-04 à 19:59:20 - [webwiz]

========== Tâches planifiées

AppleSoftwareUpdate.job: C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task
Norton Security Scan.job: C:\Program Files\Norton Security Scan\Nss.exe /scan-full /scheduled
Vérifier les mises à jour de Windows Live Toolbar.job: C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE

========== Clés registre

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"surfup"="C:\DOCUME~1\FADIAT~1\APPLIC~1\REGSDE~1\obj proc ping.exe"

========== Bloqueur popups Internet Explorer

PopupMgr

========== Suggestion ( /!\ Nécessite une interprétation.) ==========

C:\Documents and Settings\All Users\Application Data\heck nurb trans joy
C:\Documents and Settings\All Users\Application Data\mail grey balm inter
C:\Documents and Settings\All Users\Application Data\Meow stop four mail
C:\Documents and Settings\Fadia la Tounsia\Application Data\regs delete fast
C:\Documents and Settings\FaDiA ToUnSia\Application Data\regs delete fast
C:\Program Files\Adverts
C:\Program Files\Circle Developement
C:\Program Files\regs delete fast

+- Registre:

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"surfup"=-

- Fin du rapport -

-----------\\ ToolBar S&D 1.2.0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4200+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : FaDiA ToUnSia ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080918-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 113 Go Free : 82 Go
D:\ (Local Disk) - FAT32 - Total : 113 Go Free : 113 Go
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\ToolBar SD" ( MAJ : 14-09-2008|23:30 )
Option : [1] ( 19/09/2008|13:16 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\---Yahoo.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\01net.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\1
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\1px_dark.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\1px_green.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\1px_white.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\a.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\amazon.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\an.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrowB.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrowT.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrow_down.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrow_red.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrow_red2.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrow_up.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\autofill.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\avstate.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\b.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\background2.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\bgmeteo_results.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\bg_pub.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\bg_ttl.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\bn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\btn_close.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\btn_minus.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\btn_moreforecast.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\c.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\canalblog.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\cn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\COMBOSEARCH.acs
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\d.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\dictionary2.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\dn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\downfile
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\DownloadCOM.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\dropdown.css
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\ErrorLog.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\ErrorPageTemplate.css
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\f.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_argentine.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_australia.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_brazil.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_canada.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_china.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_france.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_germany.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_greece.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_hongkong.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_india.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_indonesia.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_italy.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_japan.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_korea.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_mexico.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_netherlands.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_spain.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_sweeden.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_taiwan.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_uk.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_usa.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\fn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\g.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\gaming.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\gn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\gograph.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred0.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred0_5.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred1.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred1_5.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred2.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred2_5.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred3.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred3_5.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred4.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred4_5.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred5.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\help.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\hideremove.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\highlight.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\hn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_aquarius.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_aries.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_cancer.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_capricorn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_gemini.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_leo.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_libra.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_pisces.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_sagittarius.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_scorpio.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_taurus.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_virgo.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\i.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\icotemp_placeholder.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\IEtab.zip
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\IEtab1_7.zip
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\IEtab1_7b.zip
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\img1_6.cfg
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\in.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\ipsearch.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\j.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\jn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\k.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\kn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\l.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\ln.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\loading.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\login.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\logo.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\n.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1029187
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1090265
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt11171437
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1128359
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1179765
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt12051656
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt12285281
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt13203921
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt136265
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt13982468
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt14953890
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1499312
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt152562
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1584015
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1615250
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt16155953
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1663125
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt166328
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt17666656
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1798437
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1903500
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt20065296
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2095828
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2161671
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2223156
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2242906
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2387656
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2407875
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt249968
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2504140
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2640062
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2802343
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2903718
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2919000
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt3163890
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt33166984
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt3318093
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt3395531
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt34054265
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt34473609
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt3571875
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt366281
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt435109
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt436203
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt449609
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt4594250
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt6142875
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt615828
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt6438421
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt687062
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt6978015
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt732562
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt751015
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt7598968
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt776125
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt781578
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt800531
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt848625
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt856921
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt937953
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt975687
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt978250
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\new02.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\NewCfg
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\news.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\news.html
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\nn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\o.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\on.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\p.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\pestscanimg.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\pixsy.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\pn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\popup_off.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\popup_on.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\popup_ona.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\p_yahoo.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\p_yahoo_fr.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\q.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\qn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\r.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\relatedlinks.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\report.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rss.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rss.xsl
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rss1.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rsslib.js
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rssmenu1_6.zip
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rssmenu1_6a.zip
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\s.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\security.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo1.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo10.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo11.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo12.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo13.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo14.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo15.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo16.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo17.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo18.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo19.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo2.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo20.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo3.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo4.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo5.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo6.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo7.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo8.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo9.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\siteinfo.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\slider.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\sn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\spacer.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\stars-red1.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\stars-red2.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\stars-red3.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\stars-red4.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\stars-red5.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\storage.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\t.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tabdata.js
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tablib.js
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tabwelcome_en.html
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tabwelcome_fr.html
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tab_icon.png
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\technorati.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\thes_search.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Thumbs.db
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tools.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\translate.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\u.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\un.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\userbadsites.txt
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\utf8.js
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\v.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\vmlib.js
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\vmntoolbartb1500.cfg
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\vn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\w.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\web.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\wikipedia.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\wn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\x.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\xp_close_small.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\yahoo.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\yahoo_search.gif
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\YouTube.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\z.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\zn.bmp
C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\zoom.bmp
C:\DOCUME~1\FADIAL~1.ACE\APPLIC~1\VMNToolbar
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\---Yahoo.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\0
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\01net.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\a.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\amazon.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\an.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\arrowB.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\arrowT.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\arrow_down.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\arrow_up.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\autofill.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\avstate.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\b.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\bg_pub.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\bg_ttl.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\bn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\c.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\canalblog.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\cn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\COMBOSEARCH.acs
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\d.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\dictionary2.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\dn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\downfile
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\DownloadCOM.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\dropdown.css
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\ErrorLog.txt
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\ErrorPageTemplate.css
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\f.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_argentine.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_australia.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_brazil.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_canada.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_china.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_france.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_germany.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_greece.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_hongkong.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_india.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_indonesia.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_italy.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_japan.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_korea.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_mexico.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_netherlands.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_spain.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_sweeden.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_taiwan.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_uk.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_usa.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\fn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\g.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\gaming.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\gn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\gograph.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred0.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred0_5.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred1.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred1_5.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred2.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred2_5.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred3.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred3_5.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred4.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred4_5.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred5.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\help.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\hideremove.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\highlight.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\hn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\hororank.xml
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_aquarius.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_aries.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_cancer.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_capricorn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_gemini.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_leo.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_libra.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_pisces.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_sagittarius.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_scorpio.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_taurus.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_virgo.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\i.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\IEtab1_7b.zip
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\in.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\ipsearch.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\j.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\jn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\k.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\kn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\l.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\ln.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\loading.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\login.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\logo.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\n.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt12858453
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt19713484
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt24083640
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt295218
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt34761953
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt3512921
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt9151703
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\new02.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\NewCfg
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\news.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\news.html
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\nn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\o.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\on.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\p.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\pestscanimg.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\pixsy.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\pn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\popup_off.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\popup_on.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\popup_ona.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\p_yahoo.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\p_yahoo_fr.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\q.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\qn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\r.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\relatedlinks.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\report.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rss.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rss.xsl
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rss1.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rsslib.js
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rssmenu1_6a.zip
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\s.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\security.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\Sinfo.txt
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\siteinfo.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\slider.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\sn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\spacer.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\stars-red1.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\stars-red2.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\stars-red3.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\stars-red4.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\stars-red5.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\storage.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\t.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tabdata.js
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tablib.js
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tabwelcome_en.html
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tabwelcome_fr.html
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tab_icon.png
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\technorati.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\thes_search.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tools.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\translate.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\u.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\un.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\utf8.js
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\v.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\vmlib.js
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\vmntoolbartb0500.cfg
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\vn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\w.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\web.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\wikipedia.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\wn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\x.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\xp_close_small.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\Yahoo.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\yahoo_search.gif
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\YouTube.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\z.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\zn.bmp
C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\zoom.bmp
C:\Program Files\VMNToolbar
C:\Program Files\VMNToolbar\install.ico
C:\Program Files\VMNToolbar\toolbar.ini
C:\Program Files\VMNToolbar\uninstall.exe
C:\Program Files\VMNToolbar\vmntoolbar.dll

-----------\\ Extensions

(All Users) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

(Fadia la Tounsia) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Fadia la Tounsia) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar

(FaDiA ToUnSia) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(FaDiA ToUnSia) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.google.com/?gws_rd=ssl"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchMigratedDefaultURL"="https://search.yahoo.com/web{searchTerms}&ei=utf-8&fr=b1ie7"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.01net.com/telecharger/"
"Default_Search_URL"="https://actus.sfr.fr"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.01net.com/telecharger/"

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

1 - "C:\ToolBar SD\TB_1.txt" - 19/09/2008|13:18 - Option : [1]

-----------\\ Fin du rapport a 13:18:00,70
0
Réponse 4 / 10
donya
 
# Rapport Lopxp fait le 19/09/2008 à 21:33:36
# Exécuté dans : C:\Program Files\Lopxp
# Version 3.10 - Maj du 11/04/2008

========== FixLog ==========

+- C:\Documents and Settings\All Users\Application Data\heck nurb trans joy
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Documents and Settings\All Users\Application Data\mail grey balm inter
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Documents and Settings\All Users\Application Data\Meow stop four mail
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Documents and Settings\Fadia la Tounsia\Application Data\regs delete fast
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Documents and Settings\FaDiA ToUnSia\Application Data\regs delete fast
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Program Files\Adverts
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Program Files\Circle Developement
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- C:\Program Files\regs delete fast
Choix utilisateur : Suppression acceptée.
Déplacé avec succès.

+- Registre :
Nettoyage effectué.

+- Fichiers temporaires :
Nettoyage effectué.

========== Listing des dossiers Application Data

+- C:\Documents and Settings\Administrateur\Application Data

2006-10-11 à 21:29:54 - Identities
2006-10-11 à 21:29:54 - Macromedia
2008-05-01 à 16:07:18 - Microsoft

+- C:\Documents and Settings\Administrateur\Local Settings\Application Data

2006-10-11 à 21:29:55 - ApplicationHistory
2008-05-01 à 16:07:19 - Microsoft

+- C:\Documents and Settings\All Users\Application Data

2008-09-11 à 23:19:06 - Adobe
2007-10-19 à 18:45:32 - AOL
2007-09-30 à 14:58:14 - Apple
2008-08-26 à 12:23:08 - Apple Computer
2008-05-01 à 16:07:05 - avg8
2008-07-27 à 08:37:07 - AVS4YOU
2006-12-29 à 17:53:03 - CyberLink
2008-09-11 à 23:23:36 - FLEXnet
2008-05-02 à 11:00:11 - Google
2008-09-18 à 20:23:43 - Google Updater
2008-09-18 à 12:13:36 - Malwarebytes
2007-07-06 à 10:37:28 - Messenger Plus!
2008-09-03 à 11:25:26 - Microsoft
2007-07-03 à 21:31:23 - Mozilla
2007-03-10 à 13:11:19 - NtiDvdCopy
2007-02-17 à 20:59:52 - NVIDIA
2007-02-25 à 09:54:23 - QuickTime
2008-01-20 à 14:28:35 - Sandlot Games
2008-09-18 à 15:43:17 - Spybot - Search & Destroy
2007-04-11 à 07:34:20 - Symantec
2008-04-13 à 15:06:24 - TEMP
2008-06-18 à 10:04:58 - TomTom
2006-12-30 à 19:45:41 - Viewpoint
2007-03-04 à 11:04:19 - Windows Genuine Advantage
2007-02-25 à 13:14:18 - Windows Live Toolbar
2007-07-05 à 15:11:15 - WindowsLiveInstaller
2008-05-18 à 15:56:51 - WLInstaller
2008-04-18 à 21:13:45 - Yahoo! Companion

+- C:\Documents and Settings\Fadia la Tounsia\Application Data

2007-12-31 à 17:40:26 - Adobe
2007-02-18 à 14:10:48 - AOL
2007-09-30 à 15:00:13 - Apple Computer
2007-04-09 à 19:47:11 - AVSMedia
2006-12-31 à 23:18:34 - CyberLink
2008-02-25 à 20:57:50 - DivX
2007-03-23 à 16:20:06 - Google
2006-12-28 à 20:38:52 - Help
2006-10-11 à 21:29:54 - Identities
2006-10-11 à 21:29:54 - Macromedia
2008-04-22 à 09:59:45 - MEGAUPLOADTOOLBAR
2008-02-29 à 21:45:38 - Microsoft
2007-07-12 à 14:39:30 - Mozilla
2007-03-25 à 10:46:14 - Sun
2008-04-20 à 12:56:22 - vmntoolbar
2007-10-21 à 11:51:27 - Windows Desktop Search
2006-12-30 à 19:45:45 - You've Got Pictures Screensaver

+- C:\Documents and Settings\Fadia la Tounsia\Local Settings\Application Data

2008-01-20 à 12:39:32 - Absolutist_Games
2007-12-31 à 17:51:13 - Adobe
2007-02-22 à 22:09:54 - AOL
2007-09-30 à 14:58:43 - Apple
2007-09-30 à 15:00:13 - Apple Computer
2008-04-19 à 20:47:11 - ApplicationHistory
2007-04-09 à 15:05:44 - cdrtfe
2007-08-29 à 20:14:43 - Google
2006-12-28 à 20:38:52 - Help
2007-10-21 à 11:52:55 - Identities
2008-04-18 à 11:47:12 - Microsoft
2007-02-23 à 08:37:12 - Mozilla
2007-08-30 à 13:26:41 - PCHealth
2007-02-25 à 10:30:19 - Shareaza
2007-04-09 à 11:08:58 - SM
2006-12-28 à 17:06:21 - {3248F0A6-6813-11D6-A77B-00B0D0150060}

+- C:\Documents and Settings\Fadia la Tounsia.ACER-7989E0343A\Application Data

2006-10-11 à 21:29:54 - Identities
2006-10-11 à 21:29:54 - Macromedia
2008-07-16 à 22:32:22 - Microsoft
2008-05-01 à 22:19:16 - Mozilla
2008-05-01 à 22:20:08 - VMNTOOLBAR
2008-05-01 à 22:19:11 - Windows Desktop Search

+- C:\Documents and Settings\Fadia la Tounsia.ACER-7989E0343A\Local Settings\Application Data

2008-05-01 à 22:20:13 - Absolutist_Games
2007-08-31 à 13:30:26 - Adobe
2008-08-28 à 00:50:44 - Apple Computer
2008-05-01 à 22:19:08 - ApplicationHistory
2008-05-01 à 22:19:04 - Google
2008-05-01 à 22:19:12 - Identities
2008-05-01 à 22:19:15 - Microsoft
2008-05-01 à 22:19:16 - Mozilla

+- C:\Documents and Settings\FaDiA ToUnSia\Application Data

2008-09-14 à 18:36:26 - Adobe
2008-09-18 à 16:58:34 - Apple Computer
2008-05-01 à 16:05:11 - AVGTOOLBAR
2008-09-03 à 12:05:19 - CyberLink
2008-06-13 à 09:55:32 - D-Jix Media
2008-09-04 à 19:06:24 - DivX
2008-05-02 à 10:59:54 - EoRezo
2008-04-20 à 13:38:14 - Google
2006-10-11 à 21:29:54 - Identities
2008-05-02 à 10:53:38 - ItsLabel
2006-10-11 à 21:29:54 - Macromedia
2008-09-18 à 12:13:40 - Malwarebytes
2008-09-18 à 14:50:05 - Microsoft
2008-06-18 à 10:04:55 - Mozilla
2008-09-17 à 20:20:15 - Shareaza
2008-04-23 à 21:39:45 - Sun
2008-06-18 à 10:04:52 - TomTom
2008-06-18 à 16:19:43 - Viewpoint
2008-09-19 à 11:24:52 - VMNTOOLBAR
2008-04-20 à 13:28:21 - Windows Desktop Search

+- C:\Documents and Settings\FaDiA ToUnSia\Local Settings\Application Data

2008-04-20 à 13:29:10 - Absolutist_Games
2008-09-17 à 16:38:07 - Adobe
2008-08-26 à 12:22:56 - Apple
2008-08-27 à 18:19:47 - Apple Computer
2008-09-18 à 14:55:27 - ApplicationHistory
2008-04-20 à 13:38:14 - Google
2008-04-20 à 13:28:22 - Identities
2008-08-20 à 14:43:03 - Microsoft
2008-04-20 à 13:38:45 - Mozilla
2008-05-25 à 15:54:01 - Shareaza
2008-06-18 à 10:04:52 - TomTom
2008-04-21 à 20:56:02 - WMTools Downloaded Files

========== Listing du dossier Program Files

+- C:\Program Files

2008-04-20 à 11:05:44 - a-squared Free
2008-09-18 à 14:11:16 - Absolutist_Games
2006-10-11 à 21:30:50 - Acer WLAN 11g USB Dongle
2008-09-11 à 23:15:14 - Adobe
2008-07-26 à 07:25:45 - Advanced Font Viewer
2006-12-28 à 20:37:45 - Agfa
2007-12-01 à 13:05:41 - Alwil Software
2008-08-26 à 12:22:53 - Apple Software Update
2008-09-06 à 11:39:20 - AVS4YOU
2007-04-09 à 16:08:46 - AVSMedia
2008-04-22 à 17:31:13 - AxBx
2007-02-19 à 14:19:20 - BeWAN ADSL V1.7.0.5
2008-09-18 à 14:49:11 - Bonjour
2008-04-18 à 21:10:48 - CCleaner
2006-10-11 à 21:30:54 - commercial
2006-10-11 à 21:30:58 - CyberLink
2006-10-11 à 21:30:58 - DIFX
2008-09-01 à 04:13:47 - DivX
2008-05-02 à 10:59:54 - EoRezo
2008-09-18 à 14:21:56 - Fichiers communs
2007-05-17 à 14:46:33 - fond-ecran-wallpaper
2008-06-23 à 16:11:48 - FrenchOtto
2008-01-20 à 14:33:05 - Gamenext
2008-06-23 à 16:11:48 - GemMasterFrench
2008-05-02 à 11:00:13 - Google
2008-09-18 à 14:48:54 - InstallShield Installation Information
2008-09-17 à 20:23:23 - InterActual
2008-09-18 à 17:41:11 - Internet Explorer
2008-08-26 à 12:24:05 - iPod
2008-08-26 à 12:24:18 - iTunes
2008-03-15 à 19:25:13 - Java
2006-12-30 à 19:45:45 - Learn2.com
2008-06-23 à 16:11:48 - Livre Album Fuji Photo
2006-12-28 à 21:02:25 - Logitech
2008-09-19 à 19:34:51 - Lopxp
2008-04-18 à 20:01:11 - M6 Jeux
2008-04-20 à 11:08:32 - Macrogaming
2008-09-18 à 12:13:39 - Malwarebytes' Anti-Malware
2008-08-14 à 01:05:30 - Messenger
2008-09-14 à 14:56:51 - Messenger Plus! Live
2007-05-12 à 21:45:49 - Microsoft CAPICOM 2.1.0.2
2006-10-11 à 21:31:06 - microsoft frontpage
2006-12-29 à 19:31:32 - Microsoft Money
2006-12-29 à 19:31:03 - Microsoft Office
2008-06-23 à 16:11:49 - Microsoft Picture It! 7
2007-10-21 à 09:44:03 - Microsoft SQL Server Compact Edition
2008-06-23 à 16:11:50 - Microsoft Works
2006-12-29 à 19:23:19 - Microsoft Works Suite 2003
2008-06-23 à 16:11:50 - Movie Maker
2008-09-19 à 19:31:56 - Mozilla Firefox
2006-12-28 à 20:22:33 - MSN
2008-03-09 à 16:42:19 - MSN Games
2006-10-11 à 21:31:08 - MSN Gaming Zone
2007-07-05 à 15:11:53 - MSN Messenger
2006-10-11 à 21:31:09 - NetMeeting
2007-07-25 à 11:56:25 - Neuf
2006-10-11 à 21:31:11 - NewTech Infosystems
2008-03-01 à 21:04:29 - Norton Security Scan
2006-10-11 à 21:31:22 - Oca History Tool
2006-10-11 à 21:31:22 - Online Services
2007-06-14 à 22:19:04 - Outlook Express
2007-04-06 à 18:52:59 - Photobie
2008-08-26 à 12:23:38 - QuickTime
2006-12-30 à 20:52:12 - Real
2006-10-11 à 21:31:22 - Realtek
2006-12-30 à 19:41:06 - Securitoo
2006-10-11 à 21:31:23 - Services en ligne
2008-09-18 à 15:07:23 - Spybot - Search & Destroy
2008-05-01 à 15:13:29 - Thomson
2008-06-18 à 09:58:38 - TomTom DesktopSuite
2008-06-18 à 10:04:08 - TomTom HOME 2
2008-04-20 à 13:27:07 - Uninstall Information
2007-10-21 à 12:00:50 - Veoh Networks
2006-12-30 à 19:45:41 - Viewpoint
2008-06-23 à 16:11:51 - vmntoolbar
2007-02-11 à 12:55:26 - Wanadoo
2007-10-21 à 09:43:43 - Windows Desktop Search
2008-02-27 à 22:38:52 - Windows Live
2008-06-23 à 16:11:51 - Windows Live Toolbar
2008-04-20 à 13:27:13 - Windows Media Player
2006-10-11 à 21:31:24 - Windows NT
2006-10-11 à 21:31:25 - Windows Plus
2006-10-11 à 21:31:26 - xerox
2008-04-18 à 21:10:41 - Yahoo!
2008-09-04 à 19:59:20 - [webwiz]

========== Tâches planifiées

AppleSoftwareUpdate.job: C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task
Norton Security Scan.job: C:\Program Files\Norton Security Scan\Nss.exe /scan-full /scheduled
Vérifier les mises à jour de Windows Live Toolbar.job: C:\Program Files\Windows Live Toolbar\MSNTBUP.EXE

========== Clés registre

========== Bloqueur popups Internet Explorer

PopupMgr

========== Suggestion ( /!\ Nécessite une interprétation.) ==========

+- Dossiers\Fichiers : Aucune suggestion.

+- Registre : Aucune suggestion.

- Fin du rapport -

-----------\\ ToolBar S&D 1.2.0 XP/Vista

Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2
X86-based PC ( Multiprocessor Free : AMD Athlon(tm) 64 X2 Dual Core Processor 4200+ )
BIOS : )Phoenix - Award WorkstationBIOS v6.00PG
USER : FaDiA ToUnSia ( Administrator )
BOOT : Normal boot
Antivirus : avast! antivirus 4.8.1229 [VPS 080919-0] 4.8.1229 (Activated)
C:\ (Local Disk) - NTFS - Total : 113 Go Free : 82 Go
D:\ (Local Disk) - FAT32 - Total : 113 Go Free : 113 Go
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (USB)

"C:\ToolBar SD" ( MAJ : 14-09-2008|23:30 )
Option : [2] ( 19/09/2008|21:36 )

-----------\\ SUPPRESSION

Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\---Yahoo.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\01net.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\1
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\1px_dark.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\1px_green.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\1px_white.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\a.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\amazon.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\an.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrowB.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrowT.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrow_down.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrow_red.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrow_red2.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\arrow_up.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\autofill.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\avstate.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\b.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\background2.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\bgmeteo_results.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\bg_pub.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\bg_ttl.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\bn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\btn_close.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\btn_minus.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\btn_moreforecast.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\c.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\canalblog.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\cn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\COMBOSEARCH.acs
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\d.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\dictionary2.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\dn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\downfile
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\DownloadCOM.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\dropdown.css
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\ErrorLog.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\ErrorPageTemplate.css
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\f.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_argentine.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_australia.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_brazil.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_canada.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_china.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_france.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_germany.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_greece.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_hongkong.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_india.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_indonesia.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_italy.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_japan.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_korea.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_mexico.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_netherlands.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_spain.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_sweeden.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_taiwan.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_uk.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\flag_usa.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\fn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\g.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\gaming.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\gn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\gograph.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred0.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred0_5.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred1.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred1_5.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred2.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred2_5.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred3.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred3_5.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred4.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred4_5.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\graphred5.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\help.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\hideremove.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\highlight.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\hn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_aquarius.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_aries.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_cancer.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_capricorn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_gemini.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_leo.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_libra.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_pisces.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_sagittarius.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_scorpio.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_taurus.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\h_virgo.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\i.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\icotemp_placeholder.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\IEtab.zip
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\IEtab1_7.zip
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\IEtab1_7b.zip
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\img1_6.cfg
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\in.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\ipsearch.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\j.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\jn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\k.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\kn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\l.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\ln.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\loading.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\login.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\logo.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\n.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1029187
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1090265
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt11171437
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1128359
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1179765
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt12051656
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt12285281
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt13203921
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt136265
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt13982468
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt14953890
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1499312
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt152562
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1584015
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1615250
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt16155953
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1663125
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt166328
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt17666656
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1798437
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt1903500
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt20065296
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2095828
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2161671
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2223156
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2242906
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2387656
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2407875
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt249968
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2504140
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2640062
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2802343
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2903718
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt2919000
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt3163890
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt33166984
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt3318093
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt3395531
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt34054265
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt34473609
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt3571875
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt366281
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt435109
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt436203
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt449609
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt4594250
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt6142875
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt615828
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt6438421
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt687062
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt6978015
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt732562
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt751015
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt7598968
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt776125
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt781578
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt800531
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt848625
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt856921
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt937953
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt975687
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt978250
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\new02.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\NewCfg
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\news.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\news.html
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\nn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\o.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\on.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\p.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\pestscanimg.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\pixsy.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\pn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\popup_off.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\popup_on.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\popup_ona.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\p_yahoo.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\p_yahoo_fr.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\q.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\qn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\r.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\relatedlinks.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\report.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rss.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rss.xsl
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rss1.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rsslib.js
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rssmenu1_6.zip
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\rssmenu1_6a.zip
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\s.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\security.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo1.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo10.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo11.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo12.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo13.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo14.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo15.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo16.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo17.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo18.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo19.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo2.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo20.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo3.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo4.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo5.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo6.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo7.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo8.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Sinfo9.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\siteinfo.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\slider.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\sn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\spacer.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\stars-red1.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\stars-red2.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\stars-red3.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\stars-red4.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\stars-red5.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\storage.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\t.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tabdata.js
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tablib.js
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tabwelcome_en.html
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tabwelcome_fr.html
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tab_icon.png
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\technorati.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\thes_search.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\Thumbs.db
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\tools.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\translate.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\u.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\un.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\userbadsites.txt
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\utf8.js
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\v.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\vmlib.js
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\vmntoolbartb1500.cfg
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\vn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\w.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\web.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\wikipedia.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\wn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\x.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\xp_close_small.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\yahoo.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\yahoo_search.gif
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\YouTube.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\z.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\zn.bmp
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar\zoom.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\---Yahoo.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\0
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\01net.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\a.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\amazon.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\an.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\arrowB.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\arrowT.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\arrow_down.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\arrow_up.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\autofill.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\avstate.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\b.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\bg_pub.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\bg_ttl.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\bn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\c.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\canalblog.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\cn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\COMBOSEARCH.acs
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\d.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\dictionary2.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\dn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\downfile
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\DownloadCOM.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\dropdown.css
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\ErrorLog.txt
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\ErrorPageTemplate.css
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\f.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_argentine.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_australia.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_brazil.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_canada.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_china.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_france.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_germany.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_greece.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_hongkong.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_india.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_indonesia.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_italy.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_japan.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_korea.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_mexico.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_netherlands.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_spain.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_sweeden.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_taiwan.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_uk.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\flag_usa.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\fn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\g.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\gaming.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\gn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\gograph.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred0.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred0_5.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred1.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred1_5.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred2.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred2_5.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred3.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred3_5.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred4.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred4_5.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\graphred5.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\help.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\hideremove.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\highlight.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\hn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\hororank.xml
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_aquarius.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_aries.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_cancer.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_capricorn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_gemini.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_leo.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_libra.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_pisces.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_sagittarius.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_scorpio.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_taurus.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\h_virgo.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\i.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\IEtab1_7b.zip
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\in.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\ipsearch.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\j.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\jn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\k.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\kn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\l.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\ln.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\loading.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\login.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\logo.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\n.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt12858453
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt19713484
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt24083640
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt295218
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt34761953
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt3512921
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\New York_NY_weather.txt9151703
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\new02.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\NewCfg
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\news.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\news.html
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\nn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\o.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\on.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\p.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\pestscanimg.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\pixsy.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\pn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\popup_off.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\popup_on.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\popup_ona.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\p_yahoo.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\p_yahoo_fr.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\q.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\qn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\r.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\relatedlinks.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\report.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rss.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rss.xsl
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rss1.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rsslib.js
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\rssmenu1_6a.zip
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\s.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\security.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\Sinfo.txt
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\siteinfo.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\slider.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\sn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\spacer.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\stars-red1.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\stars-red2.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\stars-red3.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\stars-red4.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\stars-red5.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\storage.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\t.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tabdata.js
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tablib.js
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tabwelcome_en.html
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tabwelcome_fr.html
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tab_icon.png
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\technorati.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\thes_search.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\tools.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\translate.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\u.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\un.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\utf8.js
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\v.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\vmlib.js
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\vmntoolbartb0500.cfg
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\vn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\w.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\web.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\wikipedia.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\wn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\x.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\xp_close_small.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\Yahoo.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\yahoo_search.gif
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\YouTube.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\z.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\zn.bmp
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar\zoom.bmp
Supprime! - C:\Program Files\VMNToolbar\install.ico
Supprime! - C:\Program Files\VMNToolbar\toolbar.ini
Supprime! - C:\Program Files\VMNToolbar\uninstall.exe
Supprime! - C:\Program Files\VMNToolbar\vmntoolbar.dll
Supprime! - C:\DOCUME~1\FADIAL~1\APPLIC~1\VMNToolbar
Supprime! - C:\DOCUME~1\FADIAL~1.ACE\APPLIC~1\VMNToolbar
Supprime! - C:\DOCUME~1\FADIAT~1\APPLIC~1\VMNToolbar
Supprime! - C:\Program Files\VMNToolbar

-----------\\ Recherche de Fichiers / Dossiers ...

-----------\\ Extensions

(All Users) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar

(Fadia la Tounsia) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(Fadia la Tounsia) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar

(FaDiA ToUnSia) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar
(FaDiA ToUnSia) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar

-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="https://www.google.com/?gws_rd=ssl"
"Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch"
"SearchMigratedDefaultURL"="https://search.yahoo.com/web{searchTerms}&ei=utf-8&fr=b1ie7"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="https://www.01net.com/telecharger/"
"Default_Search_URL"="https://actus.sfr.fr"
"Search Page"="https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF"
"Start Page"="https://www.msn.com/fr-fr/"

--------------------\\ Recherche d'autres infections

Aucune autre infection trouvée !

1 - "C:\ToolBar SD\TB_1.txt" - 19/09/2008|13:18 - Option : [1]
2 - "C:\ToolBar SD\TB_2.txt" - 19/09/2008|21:46 - Option : [2]

-----------\\ Fin du rapport a 21:46:25,93

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:47:27, on 19/09/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\a-squared Free\a2service.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\iTunes\iTunes.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceHelper.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\distnoted.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\FaDiA ToUnSia\Bureau\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://actus.sfr.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = https://actus.sfr.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - C:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Absolutist Games Toolbar - {631ac2d4-57b3-42b0-a148-da33b462c1a3} - C:\Program Files\Absolutist_Games\tbAbs0.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Absolutist Games Toolbar - {631ac2d4-57b3-42b0-a148-da33b462c1a3} - C:\Program Files\Absolutist_Games\tbAbs0.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe"
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Outil de mise à jour Google.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0828A042-A2E7-40FF-A91F-2D8F66616669}: NameServer = 86.64.145.143 84.103.237.143
O17 - HKLM\System\CS1\Services\Tcpip\..\{0828A042-A2E7-40FF-A91F-2D8F66616669}: NameServer = 86.64.145.143 84.103.237.143
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 10
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
slt,

tu es infécté!

Télécharge MSNFix de Laurent
http://sosvirus.changelog.fr/MSNFix.zip

Décompresse-le et double clic sur le fichier MSNFix.bat.
- Exécute l'option R.
--Si l'infection est détectée, exécute l'option N
- Sauvegarde ce rapport puis fais un copier/coller de ce rapport sur le forum.

Note :
Si une erreur de suppression est détectée un message s'affichera demandant de redémarrer l'ordinateur afin de terminer les opérations. Dans ce cas il suffit de redémarrer l'ordinateur en mode normal
Sauvegarder et fermer le rapport pour que Windows termine de se lancer normalement.

envoyer le fichier [b] C:\DOCUME~1\florian\Bureau\Upload_Me.zip [/b] sur http://upload.changelog.fr pour faire evoluer msnfix

----------------------

Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau.
http://downloads.andymanchesta.com/RemovalTools/SDFix.exe
Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :
• Redémarre ton ordinateur
• Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
• A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
• Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
• Choisis ton compte.
Déroule la liste des instructions ci-dessous :
• Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
• Appuie sur Y pour commencer le processus de nettoyage.
• Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
• Appuie sur une touche pour redémarrer le PC.
• Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
• Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
• Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
• Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
• Enfin, copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum

-------------------------------------

tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2

* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
-1
Réponse 6 / 10
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
ok il y a du boulot tu as plein d'infections!!!

________
vire ce crack:

C:\DOCUME~1\ALLUSE~1\Documents\Shareaza Downloads\11-rim-k-pilotes_crack_musik_feat _hamza.mp3

_________

désactive tes protection et retente de faire msnfix

______________

Télécharge MsnCleaner.zip de ElPiedra et décompresse le sur ton bureau. (Clic droit sur le fichier .zip puis Extraire tout).
Copier l’adresse suivante dans ton lien :
https://forospyware.com
· Redémarre le PC en Mode sans échec et connecte toi sous ton nom d'utilisateur habituel.Pour démarrer en mode sans échec.
· Double-clique sur MsnCleaner.exe pour le lancer.
· Sous Language, clique sur la petite flèche et choisis French.
· Clique sur le bouton Analyse.
· A la fin du scan un rapport va être créé.
· Si l'outil trouve une infection, clique sur le bouton Supprimer.
· Redémarre en mode normal.
· Poste le rapport C:\MsnCleaner.txt dans ta prochaine réponse..
_________________

scan ton ordi avec malwarebyte (examen complet) et colles le rapport et vire ce qui est trouvé:

https://www.malekal.com/tutoriel-malwarebyte-anti-malware/

_________________

télécharge combofix (par sUBs) ici :

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

et enregistre le sur le bureau.

déconnecte toi d'internet et ferme toutes tes applications.

désactive tes protections (antivirus, parefeu, garde en temps réel de l'antispyware)

double-clique sur combofix.exe et suis les instructions

à la fin, il va produire un rapport C:\ComboFix.txt

réactive ton parefeu, ton antivirus, la garde de ton antispyware

copie/colle le rapport C:\ComboFix.txt dans ta prochaine réponse.

Attention, n'utilise pas ta souris ni ton clavier (ni un autre système de pointage) pendant que le programme tourne. Cela pourrait figer l'ordi.

Tu as un tutoriel complet ici :

https://www.bleepingcomputer.com/combofix/fr/comment-utiliser-combofix

________________________
remets un rapport hijakchtis et dis tes soucis
-1
Réponse 7 / 10
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
ok il en reste . Explique tes soucis actuels . As tu fais msn cleaner? Si oui colle le rapport . Colle moi un rapport avec le logiciel lopxp .
-1
Réponse 8 / 10
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
Télécharge ceci: (by Moe) :

http://sosvirus.changelog.fr/Green_day/Lopxpsetup.exe

Double clic sur Lopxpsetup.exe pour lancer l'installation
Au menu, choisir l'option 1
Patienter jusqu'à que l'on demande d'appuyer sur une touche, appuyer !
Une rapport sera alors crée, à copie/colle en entier sur le forum.

___________________

Télécharge Toolbar-S&D (Team IDN) sur ton Bureau.
https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/ToolBarSD.exe?attachauth=ANoY7cqJWPphpudyTqv7TRo5RQ3nm_Sx8JluVMO59X5E9cyE3j3LqKlmStIqiDqJdIgMJLi7MXn2nKVajQfoWuVvZZ2wIx_vkqO4k4P0K9jh-ra9jaKPXdZcoaVF2UqJZNH8ubL_42uIwh6f35xJ2GJMuzddVj2Qth1DgZ839lxEIFGkgWz3TdfvNMy-YtxfA3gqBUrj4U4LFeAPiWr3ClmjIP0t_Xs5PQ%3D%3D&attredirects=2

* Lance l'installation du programme en exécutant le fichier téléchargé.
* Double-clique maintenant sur le raccourci de Toolbar-S&D.
* Sélectionne la langue souhaitée en tapant la lettre de ton choix puis en validant avec la touche Entrée.
* Choisis maintenant l'option 1 (Recherche). Patiente jusqu'à la fin de la recherche.
* Poste le rapport généré. (C:\TB.txt)
-1
Réponse 9 / 10
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
va dans : Démarrer > Exécuter puis copie/colle la ligne suivante :

"%programfiles%\Lopxp\Lopxp.bat" /Fixme

puis valide, accepte toutes les demandes de suppression et poste le rapport stp

______________

refais tools bar sd
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)

(Si le Bureau ne réapparaît pas, presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide)

_____________

recolles un hijakchtis et dis tes soucis
-1
Réponse 10 / 10
jlpjlp Messages postés 52399 Statut Contributeur sécurité 5 040
 
colle le rapport d'un scan en ligne
avec un des suivants:

bitdefender en ligne :
http://www.bitdefender.fr/scan_fr/scan8/ie.html

Panda en ligne :
http://pandasoftware.fr

Kaspersky en ligne
https://www.kaspersky.fr/?domain=webscanner.kaspersky.fr
-1