Wisewise3

Re j'attendais ta réponse avant de selectionner l'une des deux options proposées. Comme jai vu ta réponse, j'ai cliqué sur la croix et là j'ai eu le message d'accueil qui me dit "la version de combo....." à laquelle j'ai répondu oui et là le combo est en exécution, je laisse faire je suppose? Il me dit quil doit redémarrer pour terminer certaines choses, ce que je fais.

J'ai tléchargé ComboFix et renommé en Combot-Fix sur ma clé j'ai copié celui-ci sur le bureau du pc infecté. J'ai exécuté celui-ci sur le bureau en temps qu'administrateur mais je n'ai rien qui apparait... pas de fenêtre Pop Qui m'averti... J4ai eu une barre de progression et ensuite plus rien... Ici j'ai une fenêtre windows qui est apparue après longtemps "Utilitaire (QGREP) de recherche de chaines de caractères a cessé de fonctionner.... LEs propositions : Rechercher ultérieurement une solution en ligne et fermer le programme ou Fermer le programme Normal? lui faut il un certain temps avat de sexécuté ou est il déjà annulé? PS: je dois exécuter quelque chose sur ma clé aussi?

oki pour la clé USB j'ai regardé il met à chaque fois un fichier sous le nom nideiect.com. Vicieux qd même de mettre çà sous un autorun.inf... Voici les rapports --------------------\\ Lop S&D 4.2.4-5 XP/Vista Microsoft« Windows VistaÖ ╔dition Familiale Basique ( v6.0.6001 ) Service Pack 1 X86-based PC ( Multiprocessor Free : AMD Athlon 64 X2 Dual-Core Processor TK-55 ) BIOS : Default System BIOS USER : matthieu ( Not Administrator ! ) BOOT : Normal boot Antivirus : Windows Live OneCare 1.0.0 (Activated) Firewall : Pare-feu Windows Live OneCare 1.0.0 (Activated) C:\ (Local Disk) - NTFS - Total : 103 Go Free : 58 Go D:\ (CD or DVD) "C:\Lop SD" ( MAJ : 02-10-2008|23:42 ) Option : [2] ( 05/10/2008|13:12 ) [ UAC => 1 ] \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION Supprime! - C:\Users\matthieu\AppData\Roaming\MICROS~1\Windows\Cookies\matthieu@advertising[2].txt Supprime! - C:\ProgramData\Bike mags mags.5dfz2 Supprime! - C:\ProgramData\Bike mags mags.ezulw Supprime! - C:\ProgramData\Bike mags mags.k96sp Supprime! - C:\ProgramData\Bike mags mags.wnpwi Supprime! - C:\ProgramData\bat nurb pop.er7pf0 Supprime! - C:\ProgramData\Bike mags mags.nrayjw Supprime! - C:\ProgramData\Bike mags mags.7jfxdz5 Supprime! - C:\ProgramData\Bike mags mags.ofu6au7 Supprime! - C:\ProgramData\beep axis mode free Supprime! - C:\Program Files\Circle Developement - [ Fichier Hosts ] .. Restaure! \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing des dossiers dans Local [17/06/2008|00:29] C:\Users\matthieu\AppData\Local\Adobe [04/08/2008|00:23] C:\Users\matthieu\AppData\Local\Ahead [20/04/2008|16:18] C:\Users\matthieu\AppData\Local\Application Data [30/04/2008|02:22] C:\Users\matthieu\AppData\Local\ATI [21/07/2008|23:02] C:\Users\matthieu\AppData\Local\d3d8caps.dat [01/06/2008|08:02] C:\Users\matthieu\AppData\Local\d3d9caps.dat [01/10/2008|10:01] C:\Users\matthieu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [27/07/2008|13:15] C:\Users\matthieu\AppData\Local\DNA [05/08/2008|10:09] C:\Users\matthieu\AppData\Local\eMule [12/06/2008|12:14] C:\Users\matthieu\AppData\Local\GDIPFONTCACHEV1.DAT [19/09/2008|15:42] C:\Users\matthieu\AppData\Local\Google [20/04/2008|16:18] C:\Users\matthieu\AppData\Local\Historique [05/10/2008|12:33] C:\Users\matthieu\AppData\Local\IconCache.db [04/10/2008|15:02] C:\Users\matthieu\AppData\Local\Microsoft [30/04/2008|00:34] C:\Users\matthieu\AppData\Local\Microsoft Games [01/10/2008|10:05] C:\Users\matthieu\AppData\Local\MigWiz [12/07/2008|16:35] C:\Users\matthieu\AppData\Local\Shareaza [05/10/2008|13:12] C:\Users\matthieu\AppData\Local\Temp [20/04/2008|16:18] C:\Users\matthieu\AppData\Local\Temporary Internet Files [29/05/2008|16:21] C:\Users\matthieu\AppData\Local\VirtualStore [29/09/2008|22:22] C:\Users\matthieu\AppData\Local\Windows Live Writer --------------------\\ TÔches planifiÚes dans C:\Windows\tasks [20/04/2008 16:55][--a------] C:\Windows\tasks\Vérifier les mises à jour de Windows Live Toolbar.job [05/10/2008 12:43][--ah-----] C:\Windows\tasks\SA.DAT [04/10/2008 17:07][--a------] C:\Windows\tasks\SCHEDLGU.TXT --------------------\\ Listing des dossiers dans C:\ProgramData [15/05/2008|17:12] C:\ProgramData\Adobe [29/09/2008|12:14] C:\ProgramData\Apowersoft [29/05/2008|10:59] C:\ProgramData\Apple Computer [02/11/2006|14:59] C:\ProgramData\Application Data [20/04/2008|16:37] C:\ProgramData\Atheros [04/10/2008|12:47] C:\ProgramData\Avira [29/05/2008|13:24] C:\ProgramData\AVS4YOU [20/04/2008|16:16] C:\ProgramData\Bureau [02/11/2006|14:59] C:\ProgramData\Desktop [02/11/2006|14:59] C:\ProgramData\Documents [22/04/2008|01:00] C:\ProgramData\Downloaded Installations [05/08/2008|10:09] C:\ProgramData\eMule [30/04/2008|01:27] C:\ProgramData\eSellerate [20/04/2008|16:16] C:\ProgramData\Favoris [02/11/2006|14:59] C:\ProgramData\Favorites [19/09/2008|15:32] C:\ProgramData\Google [16/09/2008|15:17] C:\ProgramData\Installations [27/04/2008|16:24] C:\ProgramData\ITCHSIXTHWMA [29/05/2008|13:36] C:\ProgramData\LauncherAccess.dt [09/06/2008|13:49] C:\ProgramData\Logishrd [07/05/2008|10:48] C:\ProgramData\Logitech [20/04/2008|16:16] C:\ProgramData\Menu Démarrer [09/06/2008|19:59] C:\ProgramData\Messenger Plus! [04/10/2008|15:02] C:\ProgramData\Microsoft [20/04/2008|16:16] C:\ProgramData\Modèles [04/08/2008|11:21] C:\ProgramData\Nero [18/09/2008|09:58] C:\ProgramData\PC Suite [02/11/2006|14:59] C:\ProgramData\Start Menu [02/11/2006|14:59] C:\ProgramData\Templates [25/09/2008|07:06] C:\ProgramData\WindowsSearch [22/05/2008|00:53] C:\ProgramData\WLInstaller --------------------\\ Listing des dossiers dans C:\Program Files [07/05/2008|14:47] C:\Program Files\Acro Software [30/06/2008|12:28] C:\Program Files\Adobe [30/06/2008|11:00] C:\Program Files\Antadis [29/09/2008|12:11] C:\Program Files\Apowersoft [01/10/2008|22:36] C:\Program Files\AskTBar [30/04/2008|02:15] C:\Program Files\ATI [30/04/2008|02:16] C:\Program Files\ATI Technologies [01/10/2008|12:16] C:\Program Files\ATK Hotkey [04/10/2008|12:47] C:\Program Files\Avira [29/05/2008|16:02] C:\Program Files\AVS4YOU [27/07/2008|14:04] C:\Program Files\BitComet [27/07/2008|13:15] C:\Program Files\BitTorrent [02/07/2008|13:39] C:\Program Files\CFacile [26/09/2008|20:57] C:\Program Files\Common Files [01/10/2008|22:36] C:\Program Files\Conduit [16/09/2008|15:24] C:\Program Files\DIFX [27/07/2008|13:15] C:\Program Files\DNA [05/08/2008|10:09] C:\Program Files\eMule [20/04/2008|16:16] C:\Program Files\Fichiers communs [C:\Program Files\Common Files] [01/10/2008|21:14] C:\Program Files\Free Easy Burner [07/05/2008|14:48] C:\Program Files\GPLGS [01/10/2008|21:14] C:\Program Files\InstallShield Installation Information [02/07/2008|12:06] C:\Program Files\Internet Explorer [10/06/2008|13:26] C:\Program Files\K-Lite Codec Pack [09/06/2008|13:49] C:\Program Files\Logitech [08/09/2008|09:13] C:\Program Files\Messenger Plus! Live [30/04/2008|11:04] C:\Program Files\Microsoft CAPICOM 2.1.0.2 [02/11/2006|14:35] C:\Program Files\Microsoft Games [12/06/2008|14:57] C:\Program Files\Microsoft Office [20/04/2008|16:55] C:\Program Files\Microsoft SQL Server Compact Edition [05/10/2008|12:48] C:\Program Files\Microsoft Windows OneCare Live [02/07/2008|12:06] C:\Program Files\Movie Maker [24/09/2008|17:13] C:\Program Files\Mozilla Firefox [02/11/2006|14:35] C:\Program Files\MSBuild [07/05/2008|03:01] C:\Program Files\MSXML 4.0 [03/08/2008|23:48] C:\Program Files\Nero [16/09/2008|15:22] C:\Program Files\PC Connectivity Solution [01/10/2008|21:14] C:\Program Files\PhotoFiltre [16/05/2008|01:34] C:\Program Files\Picasa2 [29/05/2008|15:54] C:\Program Files\QuickTime [02/11/2006|14:35] C:\Program Files\Reference Assemblies [07/05/2008|11:42] C:\Program Files\Samsung [05/05/2008|15:25] C:\Program Files\Search Settings [12/07/2008|16:36] C:\Program Files\Shareaza [30/09/2008|16:00] C:\Program Files\Support.com [01/10/2008|23:18] C:\Program Files\Synaptics [12/06/2008|16:45] C:\Program Files\Tracker Software [02/11/2006|14:58] C:\Program Files\Uninstall Information [22/04/2008|01:00] C:\Program Files\VirginMega [02/07/2008|12:06] C:\Program Files\Windows Calendar [02/07/2008|12:06] C:\Program Files\Windows Collaboration [02/07/2008|12:05] C:\Program Files\Windows Defender [22/04/2008|01:28] C:\Program Files\Windows Live [20/04/2008|16:55] C:\Program Files\Windows Live Favorites [20/04/2008|16:55] C:\Program Files\Windows Live Toolbar [02/07/2008|12:06] C:\Program Files\Windows Mail [01/10/2008|21:14] C:\Program Files\Windows Media Player [20/04/2008|16:16] C:\Program Files\Windows NT [02/07/2008|12:06] C:\Program Files\Windows Photo Gallery [02/07/2008|12:06] C:\Program Files\Windows Sidebar [05/05/2008|13:02] C:\Program Files\WinRAR [29/05/2008|15:53] C:\Program Files\Xilisoft [01/10/2008|22:27] C:\Program Files\Yahoo! --------------------\\ Listing des dossiers dans C:\Program Files\Common Files [15/05/2008|17:12] C:\Program Files\Common Files\Adobe [29/05/2008|16:02] C:\Program Files\Common Files\AVSMedia [18/09/2008|10:00] C:\Program Files\Common Files\InstallShield [09/06/2008|13:50] C:\Program Files\Common Files\LogiShrd [12/06/2008|14:57] C:\Program Files\Common Files\microsoft shared [18/09/2008|09:59] C:\Program Files\Common Files\PX Storage Engine [02/11/2006|13:18] C:\Program Files\Common Files\Services [02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines [02/07/2008|12:05] C:\Program Files\Common Files\System [20/04/2008|16:50] C:\Program Files\Common Files\WindowsLiveInstaller --------------------\\ Process ( 55 Processes ) ... OK ! --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvÚ ! --------------------\\ Recherche de Fichiers / Dossiers Lop Aucun fichier / dossier Lop trouvÚ ! --------------------\\ Verification du Registre ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme --------------------\\ Recherche d'autres infections --------------------\\ ROOTKIT !! Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\srosa] --------------------\\ Cracks & Keygens .. C:\Users\matthieu\AppData\Roaming\BitTorrent\Ma 6-t Va Crack-er.avi.torrent C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\key nero8 no serial(crack).lnk C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\Ma 6-t Va Crack-er.lnk C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\Nero 8 Fr + Keygen.lnk C:\Users\matthieu\Documents\Downloads\Ma 6-t Va Crack-er.avi C:\Users\matthieu\Videos\QuickCam\Ma 6-t Va Crack-er.3gp [F:372][D:71]-> C:\Users\matthieu\AppData\Local\Temp [F:68][D:0]-> C:\Users\matthieu\AppData\Roaming\MICROS~1\Windows\Cookies [F:1793][D:15]-> C:\Users\matthieu\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5 [F:72][D:9]-> C:\$Recycle.Bin 1 - "C:\Lop SD\LopR_1.txt" - 05/10/2008|12:50 - Option : [1] 2 - "C:\Lop SD\LopR_2.txt" - 05/10/2008|13:14 - Option : [2] --------------------\\ Fin du rapport a 13:14:23 [ UAC => 1 ] -----------\\ ToolBar S&D 1.2.2 XP/Vista Microsoft« Windows VistaÖ ╔dition Familiale Basique ( v6.0.6001 ) Service Pack 1 X86-based PC ( Multiprocessor Free : AMD Athlon 64 X2 Dual-Core Processor TK-55 ) BIOS : Default System BIOS USER : matthieu ( Not Administrator ! ) BOOT : Normal boot Antivirus : Windows Live OneCare 1.0.0 (Activated) Firewall : Pare-feu Windows Live OneCare 1.0.0 (Activated) C:\ (Local Disk) - NTFS - Total : 103 Go Free : 58 Go D:\ (CD or DVD) E:\ (USB) - FAT - Total : 955 Mo Free : 0 Go "C:\ToolBar SD" ( MAJ : 04-10-2008|21:00 ) Option : [2] ( 05/10/2008|13:15 ) [ UAC => 1 ] -----------\\ SUPPRESSION Supprime! - C:\Program Files\AskTBar\bar Supprime! - C:\Program Files\AskTBar\PopSwatr Supprime! - C:\Users\matthieu\AppData\Roaming\MICROS~1\Windows\Cookies\matthieu@dealio[2].txt Supprime! - C:\Users\matthieu\AppData\Roaming\MICROS~1\Windows\Cookies\matthieu@mysearch[1].txt Supprime! - C:\Program Files\Search Settings\kb127 Supprime! - C:\Program Files\Search Settings\SearchSettings.exe Supprime! - C:\Program Files\AskTBar Supprime! - C:\Program Files\Search Settings -----------\\ Recherche de Fichiers / Dossiers ... -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\Windows\\system32\\blank.htm" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie"'>http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" "Start Page"="http://www.google.be/" "Url"="http://go.microsoft.com/fwlink/?LinkId=75720" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/" "Default_Page_URL"="http://fr.yahoo.com" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" --------------------\\ Recherche d'autres infections --------------------\\ ROOTKIT !! Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\srosa] --------------------\\ Cracks & Keygens .. C:\Users\matthieu\AppData\Roaming\BitTorrent\Ma 6-t Va Crack-er.avi.torrent C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\key nero8 no serial(crack).lnk C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\Ma 6-t Va Crack-er.lnk C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\Nero 8 Fr + Keygen.lnk C:\Users\matthieu\Documents\Downloads\Ma 6-t Va Crack-er.avi C:\Users\matthieu\Videos\QuickCam\Ma 6-t Va Crack-er.3gp [ UAC => 1 ] 1 - "C:\ToolBar SD\TB_1.txt" - 05/10/2008|12:53 - Option : [1] 2 - "C:\ToolBar SD\TB_2.txt" - 05/10/2008|13:17 - Option : [2] -----------\\ Fin du rapport a 13:17:35,09

Bonjour, J'ai téléchargé les programmes demandés par "MON" pc et là je constate que dès que j'ai inséré ma clé usb que j'avais mis dans le PC infecté, Antivir me signale la présence d'un trojan dans un fichier "autorun.inf sous le nom de TR/PSW.Nilage.bvl.1 - çà donnera peut etre une piste.... Voici les rapports demandés: --------------------\\ Lop S&D 4.2.4-5 XP/Vista Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6001 ) Service Pack 1 X86-based PC ( Multiprocessor Free : AMD Athlon 64 X2 Dual-Core Processor TK-55 ) BIOS : Default System BIOS USER : matthieu ( Not Administrator ! ) BOOT : Normal boot Antivirus : Windows Live OneCare 1.0.0 (Activated) Firewall : Pare-feu Windows Live OneCare 1.0.0 (Activated) C:\ (Local Disk) - NTFS - Total : 103 Go Free : 58 Go D:\ (CD or DVD) E:\ (USB) - FAT - Total : 955 Mo Free : 0 Go "C:\Lop SD" ( MAJ : 02-10-2008|23:42 ) Option : [1] ( 05/10/2008|12:47 ) [ UAC => 0 ] --------------------\\ Listing des dossiers dans Local [17/06/2008|00:29] C:\Users\matthieu\AppData\Local\Adobe [04/08/2008|00:23] C:\Users\matthieu\AppData\Local\Ahead [20/04/2008|16:18] C:\Users\matthieu\AppData\Local\Application Data [30/04/2008|02:22] C:\Users\matthieu\AppData\Local\ATI [21/07/2008|23:02] C:\Users\matthieu\AppData\Local\d3d8caps.dat [01/06/2008|08:02] C:\Users\matthieu\AppData\Local\d3d9caps.dat [01/10/2008|10:01] C:\Users\matthieu\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [27/07/2008|13:15] C:\Users\matthieu\AppData\Local\DNA [05/08/2008|10:09] C:\Users\matthieu\AppData\Local\eMule [12/06/2008|12:14] C:\Users\matthieu\AppData\Local\GDIPFONTCACHEV1.DAT [19/09/2008|15:42] C:\Users\matthieu\AppData\Local\Google [20/04/2008|16:18] C:\Users\matthieu\AppData\Local\Historique [05/10/2008|12:33] C:\Users\matthieu\AppData\Local\IconCache.db [04/10/2008|15:02] C:\Users\matthieu\AppData\Local\Microsoft [30/04/2008|00:34] C:\Users\matthieu\AppData\Local\Microsoft Games [01/10/2008|10:05] C:\Users\matthieu\AppData\Local\MigWiz [12/07/2008|16:35] C:\Users\matthieu\AppData\Local\Shareaza [05/10/2008|12:44] C:\Users\matthieu\AppData\Local\Temp [20/04/2008|16:18] C:\Users\matthieu\AppData\Local\Temporary Internet Files [29/05/2008|16:21] C:\Users\matthieu\AppData\Local\VirtualStore [29/09/2008|22:22] C:\Users\matthieu\AppData\Local\Windows Live Writer --------------------\\ Tâches planifiées dans C:\Windows\tasks [20/04/2008 16:55][--a------] C:\Windows\tasks\V‚rifier les mises … jour de Windows Live Toolbar.job [05/10/2008 12:43][--ah-----] C:\Windows\tasks\SA.DAT [04/10/2008 17:07][--a------] C:\Windows\tasks\SCHEDLGU.TXT --------------------\\ Listing des dossiers dans C:\ProgramData [15/05/2008|17:12] C:\ProgramData\Adobe [29/09/2008|12:14] C:\ProgramData\Apowersoft [29/05/2008|10:59] C:\ProgramData\Apple Computer [02/11/2006|14:59] C:\ProgramData\Application Data [20/04/2008|16:37] C:\ProgramData\Atheros [04/10/2008|12:47] C:\ProgramData\Avira [29/05/2008|13:24] C:\ProgramData\AVS4YOU [27/04/2008|16:24] C:\ProgramData\bat nurb pop.er7pf0 [11/05/2008|11:19] C:\ProgramData\beep axis mode free [11/05/2008|02:13] C:\ProgramData\Bike mags mags.5dfz2 [21/04/2008|01:49] C:\ProgramData\Bike mags mags.7jfxdz5 [27/04/2008|16:24] C:\ProgramData\Bike mags mags.ezulw [27/04/2008|16:24] C:\ProgramData\Bike mags mags.k96sp [11/05/2008|11:18] C:\ProgramData\Bike mags mags.nrayjw [11/05/2008|01:29] C:\ProgramData\Bike mags mags.ofu6au7 [11/05/2008|01:51] C:\ProgramData\Bike mags mags.wnpwi [20/04/2008|16:16] C:\ProgramData\Bureau [02/11/2006|14:59] C:\ProgramData\Desktop [02/11/2006|14:59] C:\ProgramData\Documents [22/04/2008|01:00] C:\ProgramData\Downloaded Installations [05/08/2008|10:09] C:\ProgramData\eMule [30/04/2008|01:27] C:\ProgramData\eSellerate [20/04/2008|16:16] C:\ProgramData\Favoris [02/11/2006|14:59] C:\ProgramData\Favorites [19/09/2008|15:32] C:\ProgramData\Google [16/09/2008|15:17] C:\ProgramData\Installations [27/04/2008|16:24] C:\ProgramData\ITCHSIXTHWMA [29/05/2008|13:36] C:\ProgramData\LauncherAccess.dt [09/06/2008|13:49] C:\ProgramData\Logishrd [07/05/2008|10:48] C:\ProgramData\Logitech [20/04/2008|16:16] C:\ProgramData\Menu D‚marrer [09/06/2008|19:59] C:\ProgramData\Messenger Plus! [04/10/2008|15:02] C:\ProgramData\Microsoft [20/04/2008|16:16] C:\ProgramData\ModŠles [04/08/2008|11:21] C:\ProgramData\Nero [18/09/2008|09:58] C:\ProgramData\PC Suite [02/11/2006|14:59] C:\ProgramData\Start Menu [02/11/2006|14:59] C:\ProgramData\Templates [25/09/2008|07:06] C:\ProgramData\WindowsSearch [22/05/2008|00:53] C:\ProgramData\WLInstaller --------------------\\ Listing des dossiers dans C:\Program Files [07/05/2008|14:47] C:\Program Files\Acro Software [30/06/2008|12:28] C:\Program Files\Adobe [30/06/2008|11:00] C:\Program Files\Antadis [29/09/2008|12:11] C:\Program Files\Apowersoft [01/10/2008|22:36] C:\Program Files\AskTBar [30/04/2008|02:15] C:\Program Files\ATI [30/04/2008|02:16] C:\Program Files\ATI Technologies [01/10/2008|12:16] C:\Program Files\ATK Hotkey [04/10/2008|12:47] C:\Program Files\Avira [29/05/2008|16:02] C:\Program Files\AVS4YOU [27/07/2008|14:04] C:\Program Files\BitComet [27/07/2008|13:15] C:\Program Files\BitTorrent [02/07/2008|13:39] C:\Program Files\CFacile [21/04/2008|01:48] C:\Program Files\Circle Developement [26/09/2008|20:57] C:\Program Files\Common Files [01/10/2008|22:36] C:\Program Files\Conduit [16/09/2008|15:24] C:\Program Files\DIFX [27/07/2008|13:15] C:\Program Files\DNA [05/08/2008|10:09] C:\Program Files\eMule [20/04/2008|16:16] C:\Program Files\Fichiers communs [C:\Program Files\Common Files] [01/10/2008|21:14] C:\Program Files\Free Easy Burner [07/05/2008|14:48] C:\Program Files\GPLGS [01/10/2008|21:14] C:\Program Files\InstallShield Installation Information [02/07/2008|12:06] C:\Program Files\Internet Explorer [10/06/2008|13:26] C:\Program Files\K-Lite Codec Pack [09/06/2008|13:49] C:\Program Files\Logitech [08/09/2008|09:13] C:\Program Files\Messenger Plus! Live [30/04/2008|11:04] C:\Program Files\Microsoft CAPICOM 2.1.0.2 [02/11/2006|14:35] C:\Program Files\Microsoft Games [12/06/2008|14:57] C:\Program Files\Microsoft Office [20/04/2008|16:55] C:\Program Files\Microsoft SQL Server Compact Edition [05/10/2008|12:48] C:\Program Files\Microsoft Windows OneCare Live [02/07/2008|12:06] C:\Program Files\Movie Maker [24/09/2008|17:13] C:\Program Files\Mozilla Firefox [02/11/2006|14:35] C:\Program Files\MSBuild [07/05/2008|03:01] C:\Program Files\MSXML 4.0 [03/08/2008|23:48] C:\Program Files\Nero [16/09/2008|15:22] C:\Program Files\PC Connectivity Solution [01/10/2008|21:14] C:\Program Files\PhotoFiltre [16/05/2008|01:34] C:\Program Files\Picasa2 [29/05/2008|15:54] C:\Program Files\QuickTime [02/11/2006|14:35] C:\Program Files\Reference Assemblies [07/05/2008|11:42] C:\Program Files\Samsung [05/05/2008|15:25] C:\Program Files\Search Settings [12/07/2008|16:36] C:\Program Files\Shareaza [30/09/2008|16:00] C:\Program Files\Support.com [01/10/2008|23:18] C:\Program Files\Synaptics [12/06/2008|16:45] C:\Program Files\Tracker Software [02/11/2006|14:58] C:\Program Files\Uninstall Information [22/04/2008|01:00] C:\Program Files\VirginMega [02/07/2008|12:06] C:\Program Files\Windows Calendar [02/07/2008|12:06] C:\Program Files\Windows Collaboration [02/07/2008|12:05] C:\Program Files\Windows Defender [22/04/2008|01:28] C:\Program Files\Windows Live [20/04/2008|16:55] C:\Program Files\Windows Live Favorites [20/04/2008|16:55] C:\Program Files\Windows Live Toolbar [02/07/2008|12:06] C:\Program Files\Windows Mail [01/10/2008|21:14] C:\Program Files\Windows Media Player [20/04/2008|16:16] C:\Program Files\Windows NT [02/07/2008|12:06] C:\Program Files\Windows Photo Gallery [02/07/2008|12:06] C:\Program Files\Windows Sidebar [05/05/2008|13:02] C:\Program Files\WinRAR [29/05/2008|15:53] C:\Program Files\Xilisoft [01/10/2008|22:27] C:\Program Files\Yahoo! --------------------\\ Listing des dossiers dans C:\Program Files\Common Files [15/05/2008|17:12] C:\Program Files\Common Files\Adobe [29/05/2008|16:02] C:\Program Files\Common Files\AVSMedia [18/09/2008|10:00] C:\Program Files\Common Files\InstallShield [09/06/2008|13:50] C:\Program Files\Common Files\LogiShrd [12/06/2008|14:57] C:\Program Files\Common Files\microsoft shared [18/09/2008|09:59] C:\Program Files\Common Files\PX Storage Engine [02/11/2006|13:18] C:\Program Files\Common Files\Services [02/11/2006|13:18] C:\Program Files\Common Files\SpeechEngines [02/07/2008|12:05] C:\Program Files\Common Files\System [20/04/2008|16:50] C:\Program Files\Common Files\WindowsLiveInstaller --------------------\\ Process ( 56 Processes ) ... OK ! --------------------\\ Recherche avec S_Lop C:\ProgramData\Bike mags mags.5dfz2 C:\ProgramData\Bike mags mags.ezulw C:\ProgramData\Bike mags mags.k96sp C:\ProgramData\Bike mags mags.wnpwi C:\ProgramData\bat nurb pop.er7pf0 C:\ProgramData\Bike mags mags.nrayjw C:\ProgramData\Bike mags mags.7jfxdz5 C:\ProgramData\Bike mags mags.ofu6au7 --------------------\\ Recherche de Fichiers / Dossiers Lop C:\ProgramData\beep axis mode free C:\Program Files\Circle Developement C:\Users\matthieu\AppData\Roaming\MICROS~1\Windows\Cookies\matthieu@advertising[2].txt --------------------\\ Verification du Registre [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "soapdog"="\"C:\\ProgramData\\Bike mags mags.nrayjw\"" "MODE FREE BIRD SURF"="\"C:\\ProgramData\\bat nurb pop.er7pf0\"" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme --------------------\\ Recherche d'autres infections --------------------\\ ROOTKIT !! Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\srosa] --------------------\\ Cracks & Keygens .. C:\Users\matthieu\AppData\Roaming\BitTorrent\Ma 6-t Va Crack-er.avi.torrent C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\key nero8 no serial(crack).lnk C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\Ma 6-t Va Crack-er.lnk C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\Nero 8 Fr + Keygen.lnk C:\Users\matthieu\Documents\Downloads\Ma 6-t Va Crack-er.avi C:\Users\matthieu\Videos\QuickCam\Ma 6-t Va Crack-er.3gp [F:372][D:71]-> C:\Users\matthieu\AppData\Local\Temp [F:69][D:0]-> C:\Users\matthieu\AppData\Roaming\MICROS~1\Windows\Cookies [F:1793][D:15]-> C:\Users\matthieu\AppData\Local\MICROS~1\Windows\TEMPOR~1\content.IE5 [F:72][D:9]-> C:\$Recycle.Bin 1 - "C:\Lop SD\LopR_1.txt" - 05/10/2008|12:50 - Option : [1] --------------------\\ Fin du rapport a 12:50:16 [ UAC => 1 ] -----------\\ ToolBar S&D 1.2.2 XP/Vista Microsoft® Windows Vista™ Édition Familiale Basique ( v6.0.6001 ) Service Pack 1 X86-based PC ( Multiprocessor Free : AMD Athlon 64 X2 Dual-Core Processor TK-55 ) BIOS : Default System BIOS USER : matthieu ( Not Administrator ! ) BOOT : Normal boot Antivirus : Windows Live OneCare 1.0.0 (Activated) Firewall : Pare-feu Windows Live OneCare 1.0.0 (Activated) C:\ (Local Disk) - NTFS - Total : 103 Go Free : 58 Go D:\ (CD or DVD) E:\ (USB) - FAT - Total : 955 Mo Free : 0 Go "C:\ToolBar SD" ( MAJ : 04-10-2008|21:00 ) Option : [1] ( 05/10/2008|12:52 ) [ UAC => 1 ] -----------\\ Recherche de Fichiers / Dossiers ... C:\Program Files\AskTBar C:\Program Files\AskTBar\bar C:\Program Files\AskTBar\PopSwatr C:\Users\matthieu\AppData\Roaming\MICROS~1\Windows\Cookies\matthieu@dealio[2].txt C:\Users\matthieu\AppData\Roaming\MICROS~1\Windows\Cookies\matthieu@mysearch[1].txt C:\Program Files\Search Settings C:\Program Files\Search Settings\kb127 C:\Program Files\Search Settings\SearchSettings.exe -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\Windows\\system32\\blank.htm" "Search Page"="http://www.google.com" "Search Bar"="http://www.google.com/ie"'>http://www.google.com/ie" "Default_Search_URL"="http://www.google.com/ie" "Start Page"="http://www.google.be/" "Url"="http://go.microsoft.com/fwlink/?LinkId=75720" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://fr.yahoo.com"'>http://fr.yahoo.com" "Default_Page_URL"="http://fr.yahoo.com" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" --------------------\\ Recherche d'autres infections --------------------\\ ROOTKIT !! Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\CurrentControlSet\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet001\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet002\Enum\Root\srosa] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\LEGACY_SROSA] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\rosa] Rootkit Bagle ! .. [HKLM\..\ControlSet003\Enum\Root\srosa] --------------------\\ Cracks & Keygens .. C:\Users\matthieu\AppData\Roaming\BitTorrent\Ma 6-t Va Crack-er.avi.torrent C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\key nero8 no serial(crack).lnk C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\Ma 6-t Va Crack-er.lnk C:\Users\matthieu\AppData\Roaming\Microsoft\Windows\Recent\Nero 8 Fr + Keygen.lnk C:\Users\matthieu\Documents\Downloads\Ma 6-t Va Crack-er.avi C:\Users\matthieu\Videos\QuickCam\Ma 6-t Va Crack-er.3gp [ UAC => 1 ] 1 - "C:\ToolBar SD\TB_1.txt" - 05/10/2008|12:53 - Option : [1] -----------\\ Fin du rapport a 12:53:49,55

En allant sur le site de Hijack, j'ai renommé encore une fois Hijack par coucou et réussi à vite avoir le rapport. Aussitôt celui ci ouvert j'ai fait un copier et dès que j'ai fait çà il s'est fermé. Mais voici le rapport... Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:20:50, on 05/10/2008 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18000) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Search Settings\SearchSettings.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Windows\System32\mobsync.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Picasa2\PicasaMediaDetector.exe C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Windows Live Toolbar\msn_sl.exe C:\Users\matthieu\Desktop\coucou.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.yahoo.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.yahoo.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll O1 - Hosts: ::1 localhost O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll (file missing) O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O2 - BHO: PDF-XChange Viewer IE-Plugin - {C5D07EB6-BBCE-4DAE-ACBB-D13A8D28CB1F} - C:\Program Files\Tracker Software\PDF-XChange Viewer\pdf-viewer\PDFXCviewIEPlugin.dll O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb127\SearchSettings.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll (file missing) O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKLM\..\Run: [searchSettings] C:\Program Files\Search Settings\SearchSettings.exe O4 - HKLM\..\Run: [OneCareUI] "C:\Program Files\Microsoft Windows OneCare Live\winssnotify.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [soapdog] "C:\ProgramData\Bike mags mags.nrayjw" O4 - HKCU\..\Run: [MODE FREE BIRD SURF] "C:\ProgramData\bat nurb pop.er7pf0" O4 - HKCU\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU') O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O13 - Gopher Prefix: O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing) O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- End of file - 6458 bytes

Bonjour, une personne m'a passé son portable car il me dit qu'il n'arrivait plus à utiliser sa carte réseau Wifi. Malgré mes tentatives d'installer les pilotes etc. Tout a l'air ok mais pas moyen de trouver un reseau Wifi. Il y a vait également des écrans bleus aléatoires. afd.sys, Etc... J'ai voulu vérifier si pas de virus par l'install d'antivir et là un dll ne pouvait se décompresser: avarkt.dll Suite à une recherche dans google je tombe sur des personnes qui parlent de virus "Bagle".... J'ai utilisé msn fix qui a mis TRES longtmps pour s'exécuter. Il avait trouvé la présence d'une infection. J4ai également exéctuer Combo fix mais sans pouvoir faire quoi que ce soit, au redémarrage, Vista a lancé une récup system et tous les fichiers téléchargés précédemment ont été enlevés... Quand j'ai voulu télécharger Hijack, il ne disait que je n'avais pas le droit... j'ai renommé avec un autre nom pour le faire... MAlgré cela, il ouvre hijack et quand j lance il ferme hijack, je sais même pas poster un rapport La connexion par la carte réseau elle fonctionne... Bien à vous et MERCI pour votre aide. WiseWise3

Bonjour, désolé si je suis resté sans donner de nouvelles, mais le client a changé de PC entre temps. En tout cas, il n'y avait plus de fenêtres intempestives et encore MERCI. Bien à vous, WiseWise3

oki... JE lui dis mais bien sur il est pas devant le pc ... grrr.... merci, je reviens à toi dès que c'est fait sinon je vais sur place fin de semaine. A bientôt, WiseWise3

Re, la partie Pour PDF c'est fait mais pour Java. JE n'arrive pas il me met un mess d'erreur erreur lors de la lecture du fichier http://javadl-esd.sun.com/update/1.6.0/sp-...0_07/sp1036.mst verifier que ce chemin existe et que vous êtes autorisé à y accéder... JE ne peux me mettre le pc hors ligne car je prends le pc à distance.... Y a til une solution?

re, non plus de pubs qui arrivent .... merci voici rapport... puis je enlever tout ce qui a été mis pour nettoyer? Merci encore Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:18:31, on 24/08/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\LogMeIn\x86\RaMaint.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\tcpsvcs.exe C:\WINDOWS\System32\snmp.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\HP\HP Software Update\HPWuSchd.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\vsnpstd.exe C:\Program Files\Softwin\BitDefender10\bdmcon.exe C:\Program Files\Softwin\BitDefender10\bdagent.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Softwin\BitDefender10\vsserv.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\system32\cidaemon.exe C:\Documents and Settings\Perso\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O2 - BHO: XBTP02634 - {F97DA966-F09D-4cab-BF29-75A0026986EA} - C:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll (file missing) O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe" O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe O4 - HKLM\..\Run: [bDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg O4 - HKLM\..\Run: [bDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} (Photodex Presenter AX control) - http://www.photodex.com/pxplay.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe -- End of file - 9049 bytes

Re Bonjour, voilà, quelques tools bar désinstallées... voici le rapport demandé: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:54:26, on 24/08/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\LogMeIn\x86\RaMaint.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\tcpsvcs.exe C:\WINDOWS\System32\snmp.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\HP\HP Software Update\HPWuSchd.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\vsnpstd.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Softwin\BitDefender10\bdmcon.exe C:\Program Files\Softwin\BitDefender10\bdagent.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\system32\cidaemon.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe C:\Program Files\Softwin\BitDefender10\vsserv.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\WINDOWS\system32\msiexec.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\Perso\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - (no file) O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O2 - BHO: XBTP02634 - {F97DA966-F09D-4cab-BF29-75A0026986EA} - C:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll (file missing) O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe" O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [bDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg O4 - HKLM\..\Run: [bDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [AnyDVD] C:\Documents and Settings\Perso\Mes documents\My Pictures\Mes vidéos\AnyDVD\AnyDVD.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} (Photodex Presenter AX control) - http://www.photodex.com/pxplay.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe -- End of file - 9493 bytes

Bonjour Apollo.01, désolé d'avoir mis autant de temps pour poursuivre mais pas eu l'occasion de prendre en main plus tôt le pc à distance. J'espère qu'une infection ne sais pas étendue depuis. Voici donc les rapports demandés: Voic le rapport MBAM: Malwarebytes' Anti-Malware 1.25 Version de la base de données: 1078 Windows 5.1.2600 Service Pack 2 8:32:19 24/08/2008 mbam-log-08-24-2008 (08-32-19).txt Type de recherche: Examen complet (C:\|E:\|F:\|) Eléments examinés: 175263 Temps écoulé: 3 hour(s), 53 minute(s), 19 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 3 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 2 Fichier(s) infecté(s): 6 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\spyware-secure (Rogue.Spyware-Secure) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Spyware-Secure (Rogue.Spyware-Secure) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Spyware-Secure (Rogue.Spyware-Secure) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): C:\Program Files\MessengerSkinner (Adware.EGDAccess) -> Delete on reboot. C:\Program Files\Spyware-Secure (Rogue.Spyware-Secure) -> Delete on reboot. Fichier(s) infecté(s): C:\Program Files\MessengerSkinner\uninst.exe (Adware.EGDAccess) -> Delete on reboot. C:\Program Files\Spyware-Secure\language (Rogue.Spyware-Secure) -> Quarantined and deleted successfully. C:\Program Files\Spyware-Secure\Spyware-Secure.url (Rogue.Spyware-Secure) -> Quarantined and deleted successfully. C:\Program Files\Spyware-Secure\sqlite3.dll (Rogue.Spyware-Secure) -> Quarantined and deleted successfully. C:\Program Files\Spyware-Secure\uninst.exe (Rogue.Spyware-Secure) -> Delete on reboot. C:\Program Files\Spyware-Secure\unrar.dll (Rogue.Spyware-Secure) -> Delete on reboot. Et voici le rapport de Hijack Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 8:43:28, on 24/08/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\LogMeIn\x86\RaMaint.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\tcpsvcs.exe C:\WINDOWS\System32\snmp.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe C:\Program Files\Softwin\BitDefender10\vsserv.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\HP\HP Software Update\HPWuSchd.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\vsnpstd.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Softwin\BitDefender10\bdmcon.exe C:\Program Files\Softwin\BitDefender10\bdagent.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Documents and Settings\Perso\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O2 - BHO: XBTP02634 - {F97DA966-F09D-4cab-BF29-75A0026986EA} - C:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll (file missing) O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe" O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [bDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg O4 - HKLM\..\Run: [bDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe" O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [AnyDVD] C:\Documents and Settings\Perso\Mes documents\My Pictures\Mes vidéos\AnyDVD\AnyDVD.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} (Photodex Presenter AX control) - http://www.photodex.com/pxplay.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe -- End of file - 10260 bytes Merci

Bonsoir Apollo.01, j'exécute tout çà dès que je peux chez la personne a qui appartient le pc. Surement demain soir ou au matin A bientôt, WiseWise3. Ici c'est moi qui ai un prob sur mon pc

Bonjour, cette fois c'est MON pc qui a un prob. J'ai mon espace C qui diminue à vue d'oeil. jusque finalement atteidre la capacité maximum. Qd il arrive à saturation, il revient à plus ou moins 180 Mo de libre et continue sont décompte... Qd je désactive le reseau et donc internet, le décompte arrete, il s'agit de téléchargement constant par le reseau alors.... mais rien qui tourne pour pomper... J'avais il me semble 700 800Mo de libre sur la partition C, et là les méga coninue de diminuer... Je ne vois dans le gestionnaire de tache qui m'indique quel prog est en train de pomper... voyez vous quelque chose d'étrange dans le log hijack ? Merci pour vos réponse. WiseWise3 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 22:37:41, on 21/08/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16705) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\sched.exe C:\WINDOWS\system32\RunDll32.exe C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\QuickTime\qttask.exe F:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe F:\Program Files\TomTom HOME\TomTomHOME.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\avgnt.exe C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe C:\Program Files\Microsoft ActiveSync\Wcescomm.exe C:\PROGRA~1\FICHIE~1\Nokia\MPAPI\MPAPI3s.exe C:\PROGRA~1\MI3AA1~1\rapimgr.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\avguard.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\avesvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\FolderSize\FolderSizeSvc.exe C:\Program Files\LogMeIn\x86\RaMaint.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\VIA\RAID\raid_tool.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE f:\Program Files\Rocon Software\myDynIPPro\myDynIPPro.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\RealVNC\VNC4\WinVNC4.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\avmailc.exe C:\Program Files\Avira\AntiVir PersonalEdition Premium\AVWEBGRD.EXE C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\CCleaner\ccleaner.exe C:\wincmd\WINCMD32.EXE C:\Documents and Settings\Wise\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1;*.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - F:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - F:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "F:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" O4 - HKLM\..\Run: [NSLauncher] C:\Program Files\Nokia\Nokia Software Launcher\NSLauncher.exe /startup O4 - HKLM\..\Run: [TomTomHOME.exe] "f:\Program Files\TomTom HOME\TomTomHOME.exe" -s O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Premium\avgnt.exe" /min O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [PcSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\Wcescomm.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ? O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe O8 - Extra context menu item: Convert link target to Adobe PDF - res://F:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://F:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://F:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://F:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://F:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://F:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://F:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert to existing PDF - res://F:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Download &Flash Movies - C:\Program Files\Flash2X\Flash Hunter\save.htm O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Envoyer à &Bluetooth - C:\Program Files\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MI3AA1~1\INetRepl.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Flash2X Flash Hunter - {77B563A5-2A35-4E6B-BFC8-F4B6BB65D5DF} - C:\Program Files\Flash2X\Flash Hunter\save.htm (HKCU) O9 - Extra 'Tools' menuitem: &Launch Flash Hunter - {77B563A5-2A35-4E6B-BFC8-F4B6BB65D5DF} - C:\Program Files\Flash2X\Flash Hunter\save.htm (HKCU) O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {1DB93715-3B60-43EE-93E6-279BB3E1DF76} (OCXDownloadChecker Control) - http://81.242.249.7/cab/OCXChecker_6110.cab O16 - DPF: {1FE5F6CD-7490-4428-9E79-830E8CC55B8B} - O16 - DPF: {210D0CBC-8B17-48D1-B294-1A338DD2EB3A} (VatCtrl Class) - http://aldex.safe100.net:81/VatDec.cab O16 - DPF: {254AA86E-5655-4518-AA87-185D7CC41801} (LogMeIn Rescue Technician Console) - https://secure.logmeinrescue.com/TechConsol...scueControl.cab O16 - DPF: {361E6B79-4A69-4376-B0F2-3D1EBEE9D7E2} (RtspVaPgCtrl Class) - O16 - DPF: {3CA6DFF6-C6B0-11D4-8035-0050BF0BA18C} (BMSPX Control) - http://www.brans.com/cab/Brans/bmspx.cab O16 - DPF: {5AA580AE-A3E9-4A9C-9C49-7EC814C8E2ED} - O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://colruyt.fujiprint.be/Colruyt/UserCo...geUploader4.cab O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} - http://fichiers.touslesdrivers.com/fichier...ion_3_0_2_0.cab O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD44/JSCDL/jd...ows-i586-jc.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - O16 - DPF: {9059F30F-4EB1-4BD2-9FDC-36F43A218F4A} (Microsoft RDP Client Control (redist)) - http://braspoel.dipmap.com/cab/msrdp.cab O16 - DPF: {92E7E45A-D8C8-480E-AF99-176E43997CAA} (Aurigma Image Uploader 3.5 Combo Control) - http://www.pixdiscount.com/clients/ImageUploader3.cab O16 - DPF: {93F796E1-6BF7-4E22-958E-4E969E88F69D} (WebClient Control) - http://dvr.dyndns.info/WebClient.cab O16 - DPF: {96816368-C1E3-414D-A193-63C3CC921990} (MJPEGRender Control) - http://demo.remotemanager.co.uk/common/act...MJPEGRender.ocx O16 - DPF: {A6024F78-620D-42F2-B561-F1E4E581416A} (Bmsschedule Control) - http://211.232.23.23/bmspschedule.cab O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://belgacom.extrafilm.be/ImageUploader4.cab O16 - DPF: {A93B47FD-9BF6-4DA8-97FC-9270B9D64A6C} (VaPgCtrl Class) - http://192.168.1.2/plugin/h263ctrl.cab O16 - DPF: {ADACAA8F-3595-47FE-9C31-9C7471B9BEC7} (OCXDownloadChecker Control) - http://webcam.geovision.com.tw/cab/OCXChecker_8120.cab O16 - DPF: {B0E1526D-A0C8-417E-9F8D-E8D11ADFAFC6} - http://192.168.1.81:81/img/IPCamActiveX_Setup.exe O16 - DPF: {B930E47F-B1DB-4BA9-9BFE-9521F043FA39} (CT4OCX Class) - http://www.livedarshan.com/test/ChakraView_CT4_OCX.cab O16 - DPF: {BE30D547-EE96-4D6B-B9A3-57777E9F0A9C} (ActiveFormX Element) - http://127.0.0.1/pryysfje/activex/common/b...o1984Viewer.ocx O16 - DPF: {C3D526DB-6593-4595-9162-10CC3F566EF9} (BMSPRX Control) - http://211.232.23.23/bmsprx.cab O16 - DPF: {CAFEEFAC-0015-0000-0001-ABCDEFFEDCBA} (Java Plug-in 1.5.0_01) - O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} (Java Plug-in 1.5.0_06) - O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://www.pixdiscount.be/clients/uploader_v2.1.0.56.cab O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - http://a532.g.akamai.net/f/532/6712/5m/vir...l/installer.exe O16 - DPF: {DBAFE6AD-DC14-45DF-A3F7-F8832289A1CD} (DownloadFile Control) - http://webcam.geovision.com.tw/cab/DownloadFile_8110.cab O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - http://207.59.215.18/activex/AMC.cab O16 - DPF: {E76AE961-79F2-4421-8275-EAF2AD85880E} (WebDvrClient Control) - http://193.251.182.45:8080/Cab/WebDvr.CAB O16 - DPF: {F9BF64A0-5A65-43E0-ACDB-B223E7F9DDD9} (WebWatch2 Control) - http://82.230.4.178:4200/WEBWATCH2.cab O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100 O17 - HKLM\System\CCS\Services\Tcpip\..\{A655BD28-9770-43BF-9C0F-22A2A8CBA101}: NameServer = 195.238.2.21,195.238.2.22 O20 - Winlogon Notify: avgwlntf - C:\WINDOWS\SYSTEM32\avgwlntf.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Avira AntiVir Premium MailGuard (AntiVirMailService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avmailc.exe O23 - Service: Avira AntiVir Premium Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\sched.exe O23 - Service: Avira AntiVir Premium Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avguard.exe O23 - Service: Avira AntiVir Premium WebGuard (antivirwebservice) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\AVWEBGRD.EXE O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: Avira AntiVir Premium MailGuard helper service (AVEService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Premium\avesvc.exe O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Folder Size (FolderSize) - Brio - C:\Program Files\FolderSize\FolderSizeSvc.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe O23 - Service: Macromedia Licensing Service - Macromedia - C:\Program Files\Fichiers communs\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: myDynIPPro - Rocon Software Ltd - f:\Program Files\Rocon Software\myDynIPPro\myDynIPPro.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\Fichiers communs\PCSuite\Services\ServiceLayer.exe O23 - Service: VNC Server Version 4 (WinVNC4) - RealVNC Ltd. - C:\Program Files\RealVNC\VNC4\WinVNC4.exe -- End of file - 17396 bytes

Re, je ferai part du message au proprio du pc comm quoi la cause de ses lenteurs et fenêtres de pub provienne de Messenger Skinner et Plus... 1) Voici le premier rapport, je mets celui de cleannavi.txt je pense à la place de fixnavi.txt - s'il faut fixnavi.txt c'est le même que ds la réponse précédente je pense: Clean Navipromo version 3.6.4 commencé le jeu. 21/08/2008 à 0:11:55,68 Outil exécuté depuis C:\Program Files\navilog1 Session actuelle : "Perso" Mise à jour le 16.08.2008 à 22h00 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 6.0.2900.2180 Système de fichiers : NTFS Mode suppression automatique avec prise en charge résultats Catchme et GNS Nettoyage exécuté au redémarrage de l'ordinateur *** fsbl1.txt non trouvé *** (Assurez-vous que Catchme n'avait rien trouvé lors de la recherche) *** Suppression avec sauvegardes résultats GenericNaviSearch *** * Suppression dans "C:\WINDOWS\System32" * acxntb.exe trouvé ! Copie acxntb.exe réalisée avec succès ! acxntb.exe supprimé ! bhbzegfqy.exe trouvé ! Copie bhbzegfqy.exe réalisée avec succès ! bhbzegfqy.exe supprimé ! brctqbc.exe trouvé ! Copie brctqbc.exe réalisée avec succès ! brctqbc.exe supprimé ! buivkybn.exe trouvé ! Copie buivkybn.exe réalisée avec succès ! buivkybn.exe supprimé ! * Suppression dans "C:\Documents and Settings\Perso\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\audrey\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\INVIT~1.PER\locals~1\applic~1" * *** Suppression dossiers dans "C:\WINDOWS" *** *** Suppression dossiers dans "C:\Program Files" *** ...\MessengerSkinner ...suppression... ...\MessengerSkinner *** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1" *** *** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Perso\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\audrey\applic~1" *** ...\MessengerSkinner ...suppression... ...\MessengerSkinner supprimé ! *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1.PER\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Perso\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\audrey\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1.PER\locals~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Perso\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\DOCUME~1\audrey\menudm~1\progra~1" *** ...\MessengerSkinner ...suppression... ...\MessengerSkinner supprimé ! *** Suppression dossiers dans "C:\DOCUME~1\INVIT~1.PER\menudm~1\progra~1" *** *** Suppression fichiers *** C:\WINDOWS\system32\nvs2.inf supprimé ! *** Suppression fichiers temporaires *** Nettoyage contenu C:\WINDOWS\Temp effectué ! Nettoyage contenu C:\Documents and Settings\Perso\locals~1\Temp effectué ! *** Traitement Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Suppression avec sauvegardes nouveaux fichiers Instant Access : 2)Recherche, création sauvegardes et suppression Heuristique : * Dans "C:\WINDOWS\system32" * geosrwth.exe trouvé ! Copie geosrwth.exe réalisée avec succès ! geosrwth.exe supprimé ! mftijuj.exe trouvé ! Copie mftijuj.exe réalisée avec succès ! mftijuj.exe supprimé ! qrucnn.dat trouvé ! Copie qrucnn.dat réalisée avec succès ! qrucnn.dat supprimé ! qrucnn_nav.dat trouvé ! Copie qrucnn_nav.dat réalisée avec succès ! qrucnn_nav.dat supprimé ! qrucnn_navps.dat trouvé ! Copie qrucnn_navps.dat réalisée avec succès ! qrucnn_navps.dat supprimé ! szrmtd.exe trouvé ! Copie szrmtd.exe réalisée avec succès ! szrmtd.exe supprimé ! yqgky.exe trouvé ! Copie yqgky.exe réalisée avec succès ! yqgky.exe supprimé ! yqgky.dat trouvé ! Copie yqgky.dat réalisée avec succès ! yqgky.dat supprimé ! yqgky_nav.dat trouvé ! Copie yqgky_nav.dat réalisée avec succès ! yqgky_nav.dat supprimé ! yqgky_navps.dat trouvé ! Copie yqgky_navps.dat réalisée avec succès ! yqgky_navps.dat supprimé ! yqgky_navup.dat trouvé ! Copie yqgky_navup.dat réalisée avec succès ! yqgky_navup.dat supprimé ! uymhged_navtmp.dat trouvé ! Copie uymhged_navtmp.dat réalisée avec succès ! uymhged_navtmp.dat supprimé ! * Dans "C:\Documents and Settings\Perso\locals~1\applic~1" * * Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Dans "C:\DOCUME~1\audrey\locals~1\applic~1" * * Dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" * * Dans "C:\DOCUME~1\INVIT~1.PER\locals~1\applic~1" * *** Sauvegarde du Registre vers dossier Safebackup *** sauvegarde du Registre réalisée avec succès ! *** Nettoyage Registre *** Nettoyage Registre Ok *** Certificats *** Certificat Egroup supprimé ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltdt absent ! *** Clés RUN orphelines Navipromo *** !! Résultats temporairement non pris en charge !! !! Les clés trouvées ne sont pas forcément infectées !! Clés trouvés : [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ntaqlhpp"="c:\\windows\\system32\\ntaqlhpp.exe ntaqlhpp" *** Nettoyage terminé le jeu. 21/08/2008 à 0:26:50,17 *** 2)Voici lopR.txt: --------------------\\ Lop S&D 4.2.3-2 XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2 X86-based PC ( Uniprocessor Free : AMD Sempron Processor 3100+ ) Default System BIOS USER : pascal ( Administrator ) BOOT : Normal boot "C:\Lop SD" ( MAJ : 20-08-2008|10:54 ) Option : [2] ( jeu. 21/08/2008| 0:35 ) \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\internet wave.exe Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\Pile Play.exe Supprime! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\STOP SECOND.exe Supprime! - C:\DOCUME~1\Perso\Cookies\perso@adserver.advertstream[1].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@advertstream[2].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@www.adserver5[2].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@adultfriendfinder[2].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@advertising[1].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@adin.bigpoint[2].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@bigpoint[2].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@fr1.seafight.bigpoint[1].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@banner.cotedazurpalace[2].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@cotedazurpalace[1].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@adopt.euroclick[2].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@fr.partypoker[1].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@partypoker[2].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@32vegas[1].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@banner.32vegas[2].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@www.lop[1].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@888[1].txt Supprime! - C:\DOCUME~1\Perso\Cookies\perso@888[2].txt Supprime! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\Aim mags.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\byte soap draw bash.exe Supprime! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\fafycfst.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\hfikjxwv.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\lhmqucxv.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\peak memo 64.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\ugrdugmg.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\vtwrvxda.exe Supprime! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\xophduad.exe Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site Supprime! - C:\Program Files\Adverts Supprime! - C:\Program Files\Circle Developement Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1 Supprime! - C:\Program Files\FRAGJO~1 - [ Fichier Hosts ] .. Restaure! \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ DEUXIEME PASSAGE Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\Pile Play.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\byte soap draw bash.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\hfikjxwv.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\lhmqucxv.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\peak memo 64.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\ugrdugmg.exe Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\vtwrvxda.exe Echec ! - C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site Echec ! - C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1 \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ --------------------\\ Listing des dossiers dans APPLIC~1 [31/05/2006|22:28] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini [17/08/2007|17:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft [31/05/2006|21:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [31/05/2006|21:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead [28/05/2007|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aimflawblahpart [17/03/2007|10:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [17/08/2007|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7 [08/09/2007|09:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender [16/06/2006|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY [21/08/2008|00:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\bpr1.tmp [31/05/2006|22:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [24/08/2006|12:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink [04/02/2008|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [21/08/2008|00:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site [17/08/2007|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft [12/06/2006|18:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log [07/05/2008|21:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LogiShrd [26/12/2007|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech [20/08/2008|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LogMeIn [01/07/2006|22:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [17/08/2007|17:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [12/08/2006|19:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir [12/08/2006|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles [01/04/2007|20:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache [10/01/2008|17:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [15/06/2008|13:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [07/05/2008|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion [19/10/2006|16:31] C:\DOCUME~1\audrey\APPLIC~1\Adobe [19/10/2006|16:31] C:\DOCUME~1\audrey\APPLIC~1\AdobeUM [17/03/2007|11:02] C:\DOCUME~1\audrey\APPLIC~1\Apple Computer [26/06/2006|12:24] C:\DOCUME~1\audrey\APPLIC~1\AVG7 [23/03/2008|11:02] C:\DOCUME~1\audrey\APPLIC~1\BearShare [08/09/2007|10:19] C:\DOCUME~1\audrey\APPLIC~1\Bitdefender [31/05/2006|22:28] C:\DOCUME~1\audrey\APPLIC~1\desktop.ini [21/08/2008|00:36] C:\DOCUME~1\audrey\APPLIC~1\frag joy [02/02/2008|16:09] C:\DOCUME~1\audrey\APPLIC~1\Google [13/06/2007|08:43] C:\DOCUME~1\audrey\APPLIC~1\Grisoft [26/06/2006|12:23] C:\DOCUME~1\audrey\APPLIC~1\Identities [19/10/2006|12:14] C:\DOCUME~1\audrey\APPLIC~1\Lavasoft [26/12/2007|20:38] C:\DOCUME~1\audrey\APPLIC~1\Logitech [26/06/2006|12:25] C:\DOCUME~1\audrey\APPLIC~1\Macromedia [17/08/2007|17:33] C:\DOCUME~1\audrey\APPLIC~1\Microsoft [12/11/2006|15:55] C:\DOCUME~1\audrey\APPLIC~1\MSNInstaller [16/05/2008|19:49] C:\DOCUME~1\audrey\APPLIC~1\Yahoo! [31/05/2006|22:28] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [31/05/2006|20:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [07/06/2006|22:46] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft [23/06/2006|11:35] C:\DOCUME~1\INVIT~1.PER\APPLIC~1\AVG7 [31/05/2006|22:28] C:\DOCUME~1\INVIT~1.PER\APPLIC~1\desktop.ini [23/06/2006|11:34] C:\DOCUME~1\INVIT~1.PER\APPLIC~1\Identities [17/08/2007|17:33] C:\DOCUME~1\INVIT~1.PER\APPLIC~1\Microsoft [17/08/2007|17:33] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7 [17/08/2007|17:33] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [17/08/2007|17:33] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [12/11/2006|16:57] C:\DOCUME~1\Perso\APPLIC~1\.zreglib [05/01/2007|17:37] C:\DOCUME~1\Perso\APPLIC~1\Adobe [15/08/2008|08:02] C:\DOCUME~1\Perso\APPLIC~1\AdobeUM [12/11/2006|17:28] C:\DOCUME~1\Perso\APPLIC~1\Ahead [15/11/2006|21:59] C:\DOCUME~1\Perso\APPLIC~1\Apple Computer [13/06/2006|20:57] C:\DOCUME~1\Perso\APPLIC~1\ArcSoft [17/08/2007|17:33] C:\DOCUME~1\Perso\APPLIC~1\AVG7 [07/04/2008|11:11] C:\DOCUME~1\Perso\APPLIC~1\BearShare [08/09/2007|09:03] C:\DOCUME~1\Perso\APPLIC~1\Bitdefender [14/06/2006|14:19] C:\DOCUME~1\Perso\APPLIC~1\Common Files [31/05/2006|22:28] C:\DOCUME~1\Perso\APPLIC~1\desktop.ini [08/03/2008|18:45] C:\DOCUME~1\Perso\APPLIC~1\dvdcss [13/08/2008|20:36] C:\DOCUME~1\Perso\APPLIC~1\frag joy [01/02/2008|20:09] C:\DOCUME~1\Perso\APPLIC~1\Google [04/08/2006|11:50] C:\DOCUME~1\Perso\APPLIC~1\Help [26/09/2007|18:54] C:\DOCUME~1\Perso\APPLIC~1\Hemera [14/06/2006|12:28] C:\DOCUME~1\Perso\APPLIC~1\HP [15/06/2006|16:50] C:\DOCUME~1\Perso\APPLIC~1\Identities [07/05/2008|20:45] C:\DOCUME~1\Perso\APPLIC~1\InstallShield [17/08/2007|17:30] C:\DOCUME~1\Perso\APPLIC~1\Lavasoft [26/12/2007|18:21] C:\DOCUME~1\Perso\APPLIC~1\Logitech [01/06/2006|17:48] C:\DOCUME~1\Perso\APPLIC~1\Macromedia [09/04/2008|07:22] C:\DOCUME~1\Perso\APPLIC~1\Microsoft [01/12/2007|12:46] C:\DOCUME~1\Perso\APPLIC~1\Mozilla [28/02/2007|22:29] C:\DOCUME~1\Perso\APPLIC~1\MSN6 [05/06/2006|08:15] C:\DOCUME~1\Perso\APPLIC~1\MSNInstaller [01/12/2007|12:46] C:\DOCUME~1\Perso\APPLIC~1\Netscape [24/08/2006|14:10] C:\DOCUME~1\Perso\APPLIC~1\SlySoft [19/11/2006|15:23] C:\DOCUME~1\Perso\APPLIC~1\vlc [07/05/2008|20:56] C:\DOCUME~1\Perso\APPLIC~1\Yahoo! --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [13/01/2008 15:33][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [20/08/2008 18:50][--a------] C:\WINDOWS\tasks\WebReg 20060606185011.job [21/08/2008 00:16][--ah-----] C:\WINDOWS\tasks\SA.DAT [07/09/2002 02:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ MsgPlus SPONSOR INSTALLED ! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin] "SponsorInstalled"=dword:00000000 --------------------\\ Listing des dossiers dans C:\Program Files [26/10/2006|15:50] C:\Program Files\Adobe [31/05/2006|21:50] C:\Program Files\Ahead [31/05/2006|21:33] C:\Program Files\AMD [29/11/2006|13:49] C:\Program Files\Anti-Leech [17/03/2007|10:57] C:\Program Files\Apple Software Update [11/06/2006|20:08] C:\Program Files\ArcSoft [31/05/2006|21:29] C:\Program Files\AvRack [24/08/2006|15:52] C:\Program Files\Barbie [24/03/2007|18:10] C:\Program Files\BearShare Applications [16/06/2006|19:38] C:\Program Files\BoontyGames [07/05/2008|20:59] C:\Program Files\Common Files [31/05/2006|20:37] C:\Program Files\ComPlus Applications [25/08/2006|13:47] C:\Program Files\DVD Shrink [07/08/2008|12:28] C:\Program Files\eMule [07/05/2008|20:46] C:\Program Files\Fichiers communs [05/02/2008|15:02] C:\Program Files\Google [19/03/2007|20:42] C:\Program Files\GrabIt [17/08/2007|18:17] C:\Program Files\Grisoft [31/05/2006|21:00] C:\Program Files\HP [14/10/2006|20:33] C:\Program Files\Ihsv [07/05/2008|20:46] C:\Program Files\InstallShield Installation Information [15/08/2008|09:04] C:\Program Files\Internet Explorer [17/03/2007|11:01] C:\Program Files\iPod [17/03/2007|11:01] C:\Program Files\iTunes [01/04/2007|09:39] C:\Program Files\Java [10/01/2008|14:57] C:\Program Files\LimeWire [26/12/2007|18:19] C:\Program Files\Logitech [21/08/2008|00:15] C:\Program Files\LogMeIn [08/02/2008|19:53] C:\Program Files\Macrogaming [11/08/2006|18:12] C:\Program Files\Mes Jeux T‚l‚charg‚s [15/08/2008|09:13] C:\Program Files\Messenger [06/04/2008|10:53] C:\Program Files\Messenger Plus! Live [01/07/2006|22:48] C:\Program Files\MessengerPlus! 3 [21/08/2008|00:18] C:\Program Files\MessengerSkinner [27/12/2007|17:39] C:\Program Files\Micro Application [31/05/2006|20:41] C:\Program Files\microsoft frontpage [31/05/2006|21:42] C:\Program Files\Microsoft Office [31/05/2006|21:42] C:\Program Files\Microsoft Visual Studio [31/05/2006|21:42] C:\Program Files\Microsoft Works [31/05/2006|21:42] C:\Program Files\Microsoft.NET [12/11/2006|19:01] C:\Program Files\Movie Maker [28/02/2007|22:24] C:\Program Files\MSN [31/05/2006|22:06] C:\Program Files\MSN Apps [31/05/2006|20:36] C:\Program Files\MSN Gaming Zone [20/06/2008|19:14] C:\Program Files\MSN Messenger [18/11/2006|11:07] C:\Program Files\MSXML 4.0 [06/08/2007|16:49] C:\Program Files\MUSICMATCH [21/08/2008|00:26] C:\Program Files\Navilog1 [31/05/2006|20:38] C:\Program Files\NetMeeting [31/05/2006|20:37] C:\Program Files\Online Services [04/08/2008|17:11] C:\Program Files\Outlook Express [01/12/2007|12:46] C:\Program Files\Photodex Presenter [26/06/2006|13:47] C:\Program Files\PhotoFiltre [16/06/2006|13:23] C:\Program Files\Picasa2 [03/01/2007|19:09] C:\Program Files\Pochette Express 2 [17/03/2007|11:00] C:\Program Files\QuickTime [31/05/2006|21:29] C:\Program Files\Realtek AC97 [31/05/2006|21:29] C:\Program Files\Realtek Sound Manager [31/05/2006|20:39] C:\Program Files\Services en ligne [24/08/2006|11:54] C:\Program Files\ShrinkTo5Basic [12/08/2007|17:35] C:\Program Files\SM [08/09/2007|08:37] C:\Program Files\Softwin [28/08/2007|21:46] C:\Program Files\Spyware-Secure [31/05/2006|19:46] C:\Program Files\Thomson [31/05/2006|21:15] C:\Program Files\Uninstall Information [05/04/2008|21:18] C:\Program Files\Windows Live [26/06/2006|12:23] C:\Program Files\Windows Media Player [31/05/2006|20:36] C:\Program Files\Windows NT [31/05/2006|20:39] C:\Program Files\WindowsUpdate [15/06/2006|17:17] C:\Program Files\WinRAR [31/05/2006|20:41] C:\Program Files\xerox [07/05/2008|20:59] C:\Program Files\Yahoo! --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [31/05/2006|21:57] C:\Program Files\Fichiers communs\Adobe [31/05/2006|21:47] C:\Program Files\Fichiers communs\Ahead [16/06/2006|19:38] C:\Program Files\Fichiers communs\BOONTY Shared [31/05/2006|21:42] C:\Program Files\Fichiers communs\DESIGNER [31/05/2006|21:00] C:\Program Files\Fichiers communs\Hewlett-Packard [31/05/2006|20:57] C:\Program Files\Fichiers communs\HP [15/11/2006|21:47] C:\Program Files\Fichiers communs\InstallShield [01/04/2007|09:36] C:\Program Files\Fichiers communs\Java [07/05/2008|20:47] C:\Program Files\Fichiers communs\Logishrd [07/05/2008|20:47] C:\Program Files\Fichiers communs\Logitech [26/09/2007|18:41] C:\Program Files\Fichiers communs\Micro Application Shared [15/06/2008|13:51] C:\Program Files\Fichiers communs\Microsoft Shared [31/05/2006|20:38] C:\Program Files\Fichiers communs\MSSoap [31/05/2006|22:28] C:\Program Files\Fichiers communs\ODBC [31/05/2006|20:38] C:\Program Files\Fichiers communs\Services [08/09/2007|08:37] C:\Program Files\Fichiers communs\Softwin [31/05/2006|22:28] C:\Program Files\Fichiers communs\SpeechEngines [12/08/2006|20:08] C:\Program Files\Fichiers communs\SWF Studio [13/06/2007|11:09] C:\Program Files\Fichiers communs\System [05/04/2008|21:19] C:\Program Files\Fichiers communs\WindowsLiveInstaller --------------------\\ Process ( 59 Processus ) ... OK ! --------------------\\ Recherche avec S_Lop Aucun fichier / dossier Lop trouvé ! --------------------\\ Recherche de Fichiers / Dossiers Lop C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\Pile Play.exe --------------------\\ Verification du Registre [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] ..... OK ! --------------------\\ Verification du fichier Hosts Fichier Hosts PROPRE --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-08-21 00:45:18 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 1 --------------------\\ Recherche d'autres infections [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ntaqlhpp"="c:\\windows\\system32\\ntaqlhpp.exe ntaqlhpp" C:\Program Files\MessengerSkinner C:\Program Files\MessengerSkinner\uninst.exe ==> EGDACCESS <== [F:14][D:1]-> C:\DOCUME~1\Perso\LOCALS~1\Temp [F:2423][D:0]-> C:\DOCUME~1\Perso\Cookies [F:20132][D:20]-> C:\DOCUME~1\Perso\LOCALS~1\TEMPOR~1\content.IE5 --------------------\\ Fin du rapport a 1:23:42 3) et enfin Rapport Hijack: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 1:34:50, on 21/08/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\LogMeIn\x86\RaMaint.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\tcpsvcs.exe C:\WINDOWS\System32\snmp.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\system32\rundll32.exe C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\HP\HP Software Update\HPWuSchd.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\vsnpstd.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Softwin\BitDefender10\bdagent.exe C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe C:\Documents and Settings\Perso\Bureau\Picasa2\PicasaMediaDetector.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Macrogaming\SweetIM\SweetIM.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\WINDOWS\explorer.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe C:\Program Files\Softwin\BitDefender10\vsserv.exe C:\DOCUME~1\Perso\Bureau\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file) R3 - URLSearchHook: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O2 - BHO: XBTP02634 - {F97DA966-F09D-4cab-BF29-75A0026986EA} - C:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll (file missing) O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe" O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe O4 - HKLM\..\Run: [blahpartdatafour] C:\Documents and Settings\All Users\Application Data\Aimflawblahpart\bleh flaw.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [ntaqlhpp] c:\windows\system32\ntaqlhpp.exe ntaqlhpp O4 - HKLM\..\Run: [bDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg O4 - HKLM\..\Run: [bDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe" O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [Picasa Media Detector] C:\Documents and Settings\Perso\Bureau\Picasa2\PicasaMediaDetector.exe O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [sweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe O4 - HKCU\..\Run: [AnyDVD] C:\Documents and Settings\Perso\Mes documents\My Pictures\Mes vidéos\AnyDVD\AnyDVD.exe O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} (Photodex Presenter AX control) - http://www.photodex.com/pxplay.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe -- End of file - 11610 bytes Merci

Bonsoir Apollo.01, tout d'abord, merci pour l'aide rapide. Voici les rapports demandés: 1) Search Navipromo version 3.6.4 commencé le mer. 20/08/2008 à 21:42:26,07 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Postez ce rapport sur le forum pour le faire analyser !!! !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!! Outil exécuté depuis C:\Program Files\navilog1 Session actuelle : "Perso" Mise à jour le 16.08.2008 à 22h00 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 6.0.2900.2180 Système de fichiers : NTFS Recherche executé en mode normal *** Recherche Programmes installés *** MessengerSkinner *** Recherche dossiers dans "C:\WINDOWS" *** *** Recherche dossiers dans "C:\Program Files" *** ...\MessengerSkinner trouvé ! *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" *** *** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Perso\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\audrey\applic~1" *** ...\MessengerSkinner trouvé ! *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1.PER\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Perso\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\audrey\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1.PER\locals~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Perso\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\DOCUME~1\audrey\menudm~1\progra~1" *** ...\MessengerSkinner trouvé ! *** Recherche dossiers dans "C:\DOCUME~1\INVIT~1.PER\menudm~1\progra~1" *** *** Recherche avec Catchme-rootkit/stealth malware detector par gmer *** pour + d'infos : http://www.gmer.net *** Recherche avec GenericNaviSearch *** !!! Tous ces résultats peuvent révéler des fichiers légitimes !!! !!! A vérifier impérativement avant toute suppression manuelle !!! * Recherche dans "C:\WINDOWS\system32" * Fichiers trouvés : acxntb.exe trouvé ! bhbzegfqy.exe trouvé ! brctqbc.exe trouvé ! buivkybn.exe trouvé ! * Recherche dans "C:\Documents and Settings\Perso\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\audrey\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\INVIT~1.PER\locals~1\applic~1" * *** Recherche fichiers *** C:\WINDOWS\system32\nvs2.inf trouvé ! *** Recherche clés spécifiques dans le Registre *** HKEY_CURRENT_USER\Software\Lanconfig trouvé ! *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche nouveaux fichiers Instant Access : 2)Recherche Heuristique : * Dans "C:\WINDOWS\system32" : geosrwth.exe trouvé ! mftijuj.exe trouvé ! qrucnn.dat trouvé ! qrucnn_nav.dat trouvé ! qrucnn_navps.dat trouvé ! szrmtd.exe trouvé ! uymhged_navtmp.dat trouvé ! yqgky.dat trouvé ! yqgky.exe trouvé ! yqgky_nav.dat trouvé ! yqgky_navup.dat trouvé ! yqgky_navps.dat trouvé ! * Dans "C:\Documents and Settings\Perso\locals~1\applic~1" : * Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" : * Dans "C:\DOCUME~1\audrey\locals~1\applic~1" : * Dans "C:\DOCUME~1\INVIT~1\locals~1\applic~1" : * Dans "C:\DOCUME~1\INVIT~1.PER\locals~1\applic~1" : 3)Recherche Certificats : Certificat Egroup trouvé ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit absent ! Certificat Sunny-Day-Design-Ltd absent ! 4)Recherche fichiers connus : *** Analyse terminée le mer. 20/08/2008 à 22:20:59,26 *** 2) Le deuixème rapport --------------------\\ Lop S&D 4.2.3-2 XP/Vista Microsoft Windows XP Professionnel ( v5.1.2600 ) Service Pack 2 X86-based PC ( Uniprocessor Free : AMD Sempron Processor 3100+ ) Default System BIOS USER : pascal ( Administrator ) BOOT : Normal boot "C:\Lop SD" ( MAJ : 20-08-2008|10:54 ) Option : [1] ( mer. 20/08/2008|22:46 ) --------------------\\ Listing des dossiers dans APPLIC~1 [31/05/2006|22:28] C:\DOCUME~1\ADMINI~1\APPLIC~1\desktop.ini [17/08/2007|17:33] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft [31/05/2006|21:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe [31/05/2006|21:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ahead [28/05/2007|11:02] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Aimflawblahpart [17/03/2007|10:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer [17/08/2007|17:34] C:\DOCUME~1\ALLUSE~1\APPLIC~1\avg7 [08/09/2007|09:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BitDefender [16/06/2006|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY [31/05/2006|22:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\desktop.ini [24/08/2006|12:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DVD Shrink [04/02/2008|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google [19/08/2008|10:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site [17/08/2007|17:33] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft [12/06/2006|18:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpzinstall.log [07/05/2008|21:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LogiShrd [26/12/2007|18:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Logitech [20/08/2008|19:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\LogMeIn [01/07/2006|22:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus! [17/08/2007|17:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft [12/08/2006|19:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MSScanAppDataDir [12/08/2006|19:28] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles [01/04/2007|20:16] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QTSBandwidthCache [10/01/2008|17:29] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage [15/06/2008|13:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller [07/05/2008|20:56] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion [19/10/2006|16:31] C:\DOCUME~1\audrey\APPLIC~1\Adobe [19/10/2006|16:31] C:\DOCUME~1\audrey\APPLIC~1\AdobeUM [17/03/2007|11:02] C:\DOCUME~1\audrey\APPLIC~1\Apple Computer [26/06/2006|12:24] C:\DOCUME~1\audrey\APPLIC~1\AVG7 [23/03/2008|11:02] C:\DOCUME~1\audrey\APPLIC~1\BearShare [08/09/2007|10:19] C:\DOCUME~1\audrey\APPLIC~1\Bitdefender [31/05/2006|22:28] C:\DOCUME~1\audrey\APPLIC~1\desktop.ini [19/08/2008|10:11] C:\DOCUME~1\audrey\APPLIC~1\frag joy [02/02/2008|16:09] C:\DOCUME~1\audrey\APPLIC~1\Google [13/06/2007|08:43] C:\DOCUME~1\audrey\APPLIC~1\Grisoft [26/06/2006|12:23] C:\DOCUME~1\audrey\APPLIC~1\Identities [19/10/2006|12:14] C:\DOCUME~1\audrey\APPLIC~1\Lavasoft [26/12/2007|20:38] C:\DOCUME~1\audrey\APPLIC~1\Logitech [26/06/2006|12:25] C:\DOCUME~1\audrey\APPLIC~1\Macromedia [15/04/2007|10:01] C:\DOCUME~1\audrey\APPLIC~1\MessengerSkinner [17/08/2007|17:33] C:\DOCUME~1\audrey\APPLIC~1\Microsoft [12/11/2006|15:55] C:\DOCUME~1\audrey\APPLIC~1\MSNInstaller [16/05/2008|19:49] C:\DOCUME~1\audrey\APPLIC~1\Yahoo! [31/05/2006|22:28] C:\DOCUME~1\DEFAUL~1\APPLIC~1\desktop.ini [31/05/2006|20:40] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft [07/06/2006|22:46] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft [23/06/2006|11:35] C:\DOCUME~1\INVIT~1.PER\APPLIC~1\AVG7 [31/05/2006|22:28] C:\DOCUME~1\INVIT~1.PER\APPLIC~1\desktop.ini [23/06/2006|11:34] C:\DOCUME~1\INVIT~1.PER\APPLIC~1\Identities [17/08/2007|17:33] C:\DOCUME~1\INVIT~1.PER\APPLIC~1\Microsoft [17/08/2007|17:33] C:\DOCUME~1\LOCALS~1\APPLIC~1\AVG7 [17/08/2007|17:33] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft [17/08/2007|17:33] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft [12/11/2006|16:57] C:\DOCUME~1\Perso\APPLIC~1\.zreglib [05/01/2007|17:37] C:\DOCUME~1\Perso\APPLIC~1\Adobe [15/08/2008|08:02] C:\DOCUME~1\Perso\APPLIC~1\AdobeUM [12/11/2006|17:28] C:\DOCUME~1\Perso\APPLIC~1\Ahead [15/11/2006|21:59] C:\DOCUME~1\Perso\APPLIC~1\Apple Computer [13/06/2006|20:57] C:\DOCUME~1\Perso\APPLIC~1\ArcSoft [17/08/2007|17:33] C:\DOCUME~1\Perso\APPLIC~1\AVG7 [07/04/2008|11:11] C:\DOCUME~1\Perso\APPLIC~1\BearShare [08/09/2007|09:03] C:\DOCUME~1\Perso\APPLIC~1\Bitdefender [14/06/2006|14:19] C:\DOCUME~1\Perso\APPLIC~1\Common Files [31/05/2006|22:28] C:\DOCUME~1\Perso\APPLIC~1\desktop.ini [08/03/2008|18:45] C:\DOCUME~1\Perso\APPLIC~1\dvdcss [13/08/2008|20:36] C:\DOCUME~1\Perso\APPLIC~1\frag joy [01/02/2008|20:09] C:\DOCUME~1\Perso\APPLIC~1\Google [04/08/2006|11:50] C:\DOCUME~1\Perso\APPLIC~1\Help [26/09/2007|18:54] C:\DOCUME~1\Perso\APPLIC~1\Hemera [14/06/2006|12:28] C:\DOCUME~1\Perso\APPLIC~1\HP [15/06/2006|16:50] C:\DOCUME~1\Perso\APPLIC~1\Identities [07/05/2008|20:45] C:\DOCUME~1\Perso\APPLIC~1\InstallShield [17/08/2007|17:30] C:\DOCUME~1\Perso\APPLIC~1\Lavasoft [26/12/2007|18:21] C:\DOCUME~1\Perso\APPLIC~1\Logitech [01/06/2006|17:48] C:\DOCUME~1\Perso\APPLIC~1\Macromedia [09/04/2008|07:22] C:\DOCUME~1\Perso\APPLIC~1\Microsoft [01/12/2007|12:46] C:\DOCUME~1\Perso\APPLIC~1\Mozilla [28/02/2007|22:29] C:\DOCUME~1\Perso\APPLIC~1\MSN6 [05/06/2006|08:15] C:\DOCUME~1\Perso\APPLIC~1\MSNInstaller [01/12/2007|12:46] C:\DOCUME~1\Perso\APPLIC~1\Netscape [24/08/2006|14:10] C:\DOCUME~1\Perso\APPLIC~1\SlySoft [19/11/2006|15:23] C:\DOCUME~1\Perso\APPLIC~1\vlc [07/05/2008|20:56] C:\DOCUME~1\Perso\APPLIC~1\Yahoo! --------------------\\ Tâches planifiées dans C:\WINDOWS\tasks [13/01/2008 15:33][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job [20/08/2008 18:50][--a------] C:\WINDOWS\tasks\WebReg 20060606185011.job [20/08/2008 17:05][--ah-----] C:\WINDOWS\tasks\SA.DAT [07/09/2002 02:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini --------------------\\ MsgPlus SPONSOR INSTALLED ! [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MsgPlus! Plugin] "DisplayName"="Messenger Plus! 3 & Sponsor" "SponsorInstalled"=dword:00000000 --------------------\\ Listing des dossiers dans C:\Program Files [26/10/2006|15:50] C:\Program Files\Adobe [17/08/2007|18:03] C:\Program Files\Adverts [31/05/2006|21:50] C:\Program Files\Ahead [31/05/2006|21:33] C:\Program Files\AMD [29/11/2006|13:49] C:\Program Files\Anti-Leech [17/03/2007|10:57] C:\Program Files\Apple Software Update [11/06/2006|20:08] C:\Program Files\ArcSoft [31/05/2006|21:29] C:\Program Files\AvRack [24/08/2006|15:52] C:\Program Files\Barbie [24/03/2007|18:10] C:\Program Files\BearShare Applications [16/06/2006|19:38] C:\Program Files\BoontyGames [06/04/2008|10:55] C:\Program Files\Circle Developement [07/05/2008|20:59] C:\Program Files\Common Files [31/05/2006|20:37] C:\Program Files\ComPlus Applications [25/08/2006|13:47] C:\Program Files\DVD Shrink [07/08/2008|12:28] C:\Program Files\eMule [07/05/2008|20:46] C:\Program Files\Fichiers communs [19/08/2008|10:10] C:\Program Files\frag joy [05/02/2008|15:02] C:\Program Files\Google [19/03/2007|20:42] C:\Program Files\GrabIt [17/08/2007|18:17] C:\Program Files\Grisoft [31/05/2006|21:00] C:\Program Files\HP [14/10/2006|20:33] C:\Program Files\Ihsv [07/05/2008|20:46] C:\Program Files\InstallShield Installation Information [15/08/2008|09:04] C:\Program Files\Internet Explorer [17/03/2007|11:01] C:\Program Files\iPod [17/03/2007|11:01] C:\Program Files\iTunes [01/04/2007|09:39] C:\Program Files\Java [10/01/2008|14:57] C:\Program Files\LimeWire [26/12/2007|18:19] C:\Program Files\Logitech [20/08/2008|19:19] C:\Program Files\LogMeIn [08/02/2008|19:53] C:\Program Files\Macrogaming [11/08/2006|18:12] C:\Program Files\Mes Jeux T‚l‚charg‚s [15/08/2008|09:13] C:\Program Files\Messenger [06/04/2008|10:53] C:\Program Files\Messenger Plus! Live [01/07/2006|22:48] C:\Program Files\MessengerPlus! 3 [24/12/2007|16:19] C:\Program Files\MessengerSkinner [27/12/2007|17:39] C:\Program Files\Micro Application [31/05/2006|20:41] C:\Program Files\microsoft frontpage [31/05/2006|21:42] C:\Program Files\Microsoft Office [31/05/2006|21:42] C:\Program Files\Microsoft Visual Studio [31/05/2006|21:42] C:\Program Files\Microsoft Works [31/05/2006|21:42] C:\Program Files\Microsoft.NET [12/11/2006|19:01] C:\Program Files\Movie Maker [28/02/2007|22:24] C:\Program Files\MSN [31/05/2006|22:06] C:\Program Files\MSN Apps [31/05/2006|20:36] C:\Program Files\MSN Gaming Zone [20/06/2008|19:14] C:\Program Files\MSN Messenger [18/11/2006|11:07] C:\Program Files\MSXML 4.0 [06/08/2007|16:49] C:\Program Files\MUSICMATCH [20/08/2008|22:43] C:\Program Files\Navilog1 [31/05/2006|20:38] C:\Program Files\NetMeeting [31/05/2006|20:37] C:\Program Files\Online Services [04/08/2008|17:11] C:\Program Files\Outlook Express [01/12/2007|12:46] C:\Program Files\Photodex Presenter [26/06/2006|13:47] C:\Program Files\PhotoFiltre [16/06/2006|13:23] C:\Program Files\Picasa2 [03/01/2007|19:09] C:\Program Files\Pochette Express 2 [17/03/2007|11:00] C:\Program Files\QuickTime [31/05/2006|21:29] C:\Program Files\Realtek AC97 [31/05/2006|21:29] C:\Program Files\Realtek Sound Manager [31/05/2006|20:39] C:\Program Files\Services en ligne [24/08/2006|11:54] C:\Program Files\ShrinkTo5Basic [12/08/2007|17:35] C:\Program Files\SM [08/09/2007|08:37] C:\Program Files\Softwin [28/08/2007|21:46] C:\Program Files\Spyware-Secure [31/05/2006|19:46] C:\Program Files\Thomson [31/05/2006|21:15] C:\Program Files\Uninstall Information [05/04/2008|21:18] C:\Program Files\Windows Live [26/06/2006|12:23] C:\Program Files\Windows Media Player [31/05/2006|20:36] C:\Program Files\Windows NT [31/05/2006|20:39] C:\Program Files\WindowsUpdate [15/06/2006|17:17] C:\Program Files\WinRAR [31/05/2006|20:41] C:\Program Files\xerox [07/05/2008|20:59] C:\Program Files\Yahoo! --------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs [31/05/2006|21:57] C:\Program Files\Fichiers communs\Adobe [31/05/2006|21:47] C:\Program Files\Fichiers communs\Ahead [16/06/2006|19:38] C:\Program Files\Fichiers communs\BOONTY Shared [31/05/2006|21:42] C:\Program Files\Fichiers communs\DESIGNER [31/05/2006|21:00] C:\Program Files\Fichiers communs\Hewlett-Packard [31/05/2006|20:57] C:\Program Files\Fichiers communs\HP [15/11/2006|21:47] C:\Program Files\Fichiers communs\InstallShield [01/04/2007|09:36] C:\Program Files\Fichiers communs\Java [07/05/2008|20:47] C:\Program Files\Fichiers communs\Logishrd [07/05/2008|20:47] C:\Program Files\Fichiers communs\Logitech [26/09/2007|18:41] C:\Program Files\Fichiers communs\Micro Application Shared [15/06/2008|13:51] C:\Program Files\Fichiers communs\Microsoft Shared [31/05/2006|20:38] C:\Program Files\Fichiers communs\MSSoap [31/05/2006|22:28] C:\Program Files\Fichiers communs\ODBC [31/05/2006|20:38] C:\Program Files\Fichiers communs\Services [08/09/2007|08:37] C:\Program Files\Fichiers communs\Softwin [31/05/2006|22:28] C:\Program Files\Fichiers communs\SpeechEngines [12/08/2006|20:08] C:\Program Files\Fichiers communs\SWF Studio [13/06/2007|11:09] C:\Program Files\Fichiers communs\System [05/04/2008|21:19] C:\Program Files\Fichiers communs\WindowsLiveInstaller --------------------\\ Process ( 65 Processus ) IEXPLORE.EXE ~ [PID:3816] ~ [Threads:3] IEXPLORE.EXE ~ [PID:560] ~ [Threads:12] IEXPLORE.EXE ~ [PID:3052] ~ [Threads:27] IEXPLORE.EXE ~ [PID:5164] ~ [Threads:24] --------------------\\ Recherche avec S_Lop C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1 C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\Aim mags.exe C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\byte soap draw bash.exe C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\fafycfst.exe C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\hfikjxwv.exe C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\lhmqucxv.exe C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\peak memo 64.exe C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\ugrdugmg.exe C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\vtwrvxda.exe C:\DOCUME~1\audrey\APPLIC~1\FRAGJO~1\xophduad.exe --------------------\\ Recherche de Fichiers / Dossiers Lop C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\internet wave.exe C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\Pile Play.exe C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grid Blue Memo Site\STOP SECOND.exe C:\Program Files\Adverts C:\Program Files\Circle Developement C:\DOCUME~1\Perso\Cookies\perso@adserver.advertstream[1].txt C:\DOCUME~1\Perso\Cookies\perso@advertstream[2].txt C:\DOCUME~1\Perso\Cookies\perso@www.adserver5[2].txt C:\DOCUME~1\Perso\Cookies\perso@adultfriendfinder[2].txt C:\DOCUME~1\Perso\Cookies\perso@advertising[1].txt C:\DOCUME~1\Perso\Cookies\perso@adin.bigpoint[2].txt C:\DOCUME~1\Perso\Cookies\perso@bigpoint[2].txt C:\DOCUME~1\Perso\Cookies\perso@fr1.seafight.bigpoint[1].txt C:\DOCUME~1\Perso\Cookies\perso@banner.cotedazurpalace[2].txt C:\DOCUME~1\Perso\Cookies\perso@cotedazurpalace[1].txt C:\DOCUME~1\Perso\Cookies\perso@adopt.euroclick[2].txt C:\DOCUME~1\Perso\Cookies\perso@fr.partypoker[1].txt C:\DOCUME~1\Perso\Cookies\perso@partypoker[2].txt C:\DOCUME~1\Perso\Cookies\perso@fr1.seafight.bigpoint[1].txt C:\DOCUME~1\Perso\Cookies\perso@32vegas[1].txt C:\DOCUME~1\Perso\Cookies\perso@banner.32vegas[2].txt C:\DOCUME~1\Perso\Cookies\perso@www.lop[1].txt C:\DOCUME~1\Perso\Cookies\perso@888[1].txt C:\DOCUME~1\Perso\Cookies\perso@888[2].txt --------------------\\ Verification du Registre [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\2 shim debug] "DisplayName"="CiD Help" "UninstallString"="C:\\DOCUME~1\\Perso\\APPLIC~1\\FRAGJO~1\\Aim mags.exe -uninstall" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "dale ball"="C:\\DOCUME~1\\Perso\\APPLIC~1\\FRAGJO~1\\Aim mags.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] --------------------\\ Verification du fichier Hosts Fichier Hosts MODIFIE 127.0.0.1 bin.errorprotector.com ## added by CiD 127.0.0.1 br.errorsafe.com ## added by CiD 127.0.0.1 br.winantivirus.com ## added by CiD 127.0.0.1 br.winfixer.com ## added by CiD 127.0.0.1 de.errorsafe.com ## added by CiD 127.0.0.1 de.winantivirus.com ## added by CiD 127.0.0.1 download.cdn.winsoftware.com ## added by CiD 127.0.0.1 download.errorsafe.com ## added by CiD 127.0.0.1 download.systemdoctor.com ## added by CiD 127.0.0.1 download.winantispyware.com ## added by CiD 127.0.0.1 download.windrivecleaner.com ## added by CiD 127.0.0.1 download.winfixer.com ## added by CiD 127.0.0.1 drivecleaner.com ## added by CiD 127.0.0.1 dynamique.drivecleaner.com ## added by CiD 127.0.0.1 errorprotector.com ## added by CiD 127.0.0.1 errorsafe.com ## added by CiD 127.0.0.1 es.winantivirus.com ## added by CiD 127.0.0.1 fr.winantivirus.com ## added by CiD 127.0.0.1 fr.winfixer.com ## added by CiD 127.0.0.1 go.drivecleaner.com ## added by CiD 127.0.0.1 go.errorsafe.com ## added by CiD 127.0.0.1 go.winantispyware.com ## added by CiD 127.0.0.1 go.winantivirus.com ## added by CiD 127.0.0.1 hk.winantivirus.com ## added by CiD 127.0.0.1 instlog.errorsafe.com ## added by CiD 127.0.0.1 instlog.winantivirus.com ## added by CiD 127.0.0.1 jsp.drivecleaner.com ## added by CiD 127.0.0.1 kb.errorsafe.com ## added by CiD 127.0.0.1 kb.winantivirus.com ## added by CiD 127.0.0.1 nl.errorsafe.com ## added by CiD 127.0.0.1 se.errorsafe.com ## added by CiD 127.0.0.1 secure.drivecleaner.com ## added by CiD 127.0.0.1 secure.errorsafe.com ## added by CiD 127.0.0.1 secure.winantispam.com ## added by CiD 127.0.0.1 secure.winantispy.com ## added by CiD 127.0.0.1 secure.winantivirus.com ## added by CiD 127.0.0.1 support.winantivirus.com ## added by CiD 127.0.0.1 ulog.winantivirus.com ## added by CiD 127.0.0.1 utils.errorsafe.com ## added by CiD 127.0.0.1 utils.winantivirus.com ## added by CiD 127.0.0.1 winantispyware.com ## added by CiD 127.0.0.1 winantivirus.com ## added by CiD 127.0.0.1 winfixer.com ## added by CiD 127.0.0.1 www.drivecleaner.com ## added by CiD 127.0.0.1 www.errorprotector.com ## added by CiD 127.0.0.1 www.errorsafe.com ## added by CiD 127.0.0.1 www.systemdoctor.com ## added by CiD 127.0.0.1 www.win-anti-virus-pro.com ## added by CiD 127.0.0.1 www.win-virus-pro.com ## added by CiD 127.0.0.1 www.winantispam.com ## added by CiD 127.0.0.1 www.winantispy.com ## added by CiD 127.0.0.1 www.winantispyware.com ## added by CiD 127.0.0.1 www.winantivirus.com ## added by CiD 127.0.0.1 www.winantiviruspro.com ## added by CiD 127.0.0.1 www.windrivecleaner.com ## added by CiD 127.0.0.1 www.windrivesafe.com ## added by CiD 127.0.0.1 www.winfixer.com ## added by CiD 127.0.0.1 cdn.drivecleaner.com ## added by CiD 127.0.0.1 cdn.errorsafe.com ## added by CiD 127.0.0.1 cdn.winsoftware.com ## added by CiD 127.0.0.1 download.cdn.drivecleaner.com ## added by CiD 127.0.0.1 download.cdn.errorsafe.com ## added by CiD 127.0.0.1 instlog.winfixer.com ## added by CiD 127.0.0.1 trial.updates.winsoftware.com ## added by CiD 127.0.0.1 utils.winfixer.com ## added by CiD 127.0.0.1 winfixer2006.com ## added by CiD 127.0.0.1 winsoftware.com ## added by CiD 127.0.0.1 www.utils.winfixer.com ## added by CiD 127.0.0.1 www.winfixer2006.com ## added by CiD 127.0.0.1 www.winsoftware.com ## added by CiD -> 72 [ 70 ## added by CiD ] --------------------\\ Recherche de fichiers avec Catchme catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-08-20 23:10:45 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden processes ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden files: 1 --------------------\\ Recherche d'autres infections [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ntaqlhpp"="c:\\windows\\system32\\ntaqlhpp.exe ntaqlhpp" C:\Program Files\MessengerSkinner C:\Program Files\MessengerSkinner\download C:\Program Files\MessengerSkinner\MessengerSkinner.url C:\Program Files\MessengerSkinner\resources C:\Program Files\MessengerSkinner\uninst.exe C:\Program Files\MessengerSkinner\updates C:\WINDOWS\System32\nvs2.inf C:\WINDOWS\System32\qrucnn.dat C:\WINDOWS\System32\qrucnn_nav.dat C:\WINDOWS\System32\qrucnn_navps.dat C:\WINDOWS\System32\uymhged_navtmp.dat C:\WINDOWS\System32\yqgky.dat C:\WINDOWS\System32\yqgky.exe C:\WINDOWS\System32\yqgky_nav.dat C:\WINDOWS\System32\yqgky_navps.dat C:\WINDOWS\System32\yqgky_navup.dat ==> EGDACCESS <== [F:5543][D:75]-> C:\DOCUME~1\Perso\LOCALS~1\Temp [F:2441][D:0]-> C:\DOCUME~1\Perso\Cookies [F:20135][D:20]-> C:\DOCUME~1\Perso\LOCALS~1\TEMPOR~1\content.IE5 --------------------\\ Fin du rapport a 23:35:34

Bonsoir Gof, merci au nom du propriétaire du pc et moi-même pour ton aide et conseils précieux. A bientôt WiseWise3

Bonjour, pouvez vous analyser ce rapport s'il vous plait et m'indiquer la marche à suivre pour éradiquer les anomalies. La personne a qui appartient le pc a Bit Defender en Officiel. Je ne sais donc pas si je pourrai installer antivir pour faire un premier nettoyage. Merci pour vos réponse. Bien à vous, WiseWise3. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:41:54, on 20/08/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\cisvc.exe C:\WINDOWS\system32\inetsrv\inetinfo.exe C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\tcpsvcs.exe C:\WINDOWS\System32\snmp.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe C:\Program Files\HP\HP Software Update\HPWuSchd.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\vsnpstd.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Softwin\BitDefender10\bdmcon.exe C:\Program Files\Softwin\BitDefender10\bdagent.exe C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe C:\Documents and Settings\Perso\Bureau\Picasa2\PicasaMediaDetector.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Macrogaming\SweetIM\SweetIM.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe C:\Program Files\HP\hpcoretech\comp\hptskmgr.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Fichiers communs\Logishrd\KHAL2\KHALMNPR.EXE C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\WINDOWS\system32\cidaemon.exe C:\WINDOWS\system32\cidaemon.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Documents and Settings\Perso\Bureau\Picasa2\Picasa2.exe C:\WINDOWS\system32\HPZipm12.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\LogMeIn\x86\RaMaint.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe C:\Program Files\Softwin\BitDefender10\vsserv.exe C:\Documents and Settings\Perso\Bureau\HiJackThis.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: (no name) - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file) R3 - URLSearchHook: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareIEHelper.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O2 - BHO: XBTP02634 - {F97DA966-F09D-4cab-BF29-75A0026986EA} - C:\PROGRA~1\BEARSH~1\BEARSH~2\MediaBar.dll (file missing) O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\fr-be\msntb.dll O3 - Toolbar: BearShare MediaBar - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - C:\Program Files\BearShare Applications\BearShare MediaBar\BearShareMediaBar.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [speedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe" O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe O4 - HKLM\..\Run: [snpstd] C:\WINDOWS\vsnpstd.exe O4 - HKLM\..\Run: [blahpartdatafour] C:\Documents and Settings\All Users\Application Data\Aimflawblahpart\bleh flaw.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [ntaqlhpp] c:\windows\system32\ntaqlhpp.exe ntaqlhpp O4 - HKLM\..\Run: [bDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg O4 - HKLM\..\Run: [bDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe" O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [Picasa Media Detector] C:\Documents and Settings\Perso\Bureau\Picasa2\PicasaMediaDetector.exe O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [sweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe O4 - HKCU\..\Run: [AnyDVD] C:\Documents and Settings\Perso\Mes documents\My Pictures\Mes vidéos\AnyDVD\AnyDVD.exe O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe" /WinStart O4 - HKCU\..\Run: [dale ball] C:\DOCUME~1\Perso\APPLIC~1\FRAGJO~1\Aim mags.exe O4 - HKCU\..\Run: [msnmsgr] ~"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab31267.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-BE/a-UNO1/GAME_UNO1.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab31267.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O16 - DPF: {CB50428B-657F-47DF-9B32-671F82AA73F7} (Photodex Presenter AX control) - http://www.photodex.com/pxplay.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineS...er.cab56986.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/Solit...wn.cab31267.cab O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Fichiers communs\Logitech\Bluetooth\LBTServ.exe O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Fichiers communs\Softwin\BitDefender Update Service\livesrv.exe O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe O23 - Service: BitDefender Communicator (XCOMM) - SOFTWIN S.R.L - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe -- End of file - 12074 bytes

Bonjour Gof, tu as vu juste pour le prob d'ouverture d'internet Explorer. Il s'agit bien des toolbar. J'ai upgrader en IE7 et là plus de prob... Je te remercie pour ton aide précieuse. Dois-je indiquer [résolu] dans le sujet? Autre chose existe t il un tool pour nettoyer tout ce que j'ai installé? Merci encore en tout cas. Bien à toi, WiseWise3

Après plusieurs minutes d'attentes, il n'y a effectivement plus de iexplore qui apparaissent d'eux même dans le gestionnaire de tache. PAr contre qd je ferme toutes les fenetre internet explorer et que je relance, le premier iexplore apparait et arriveà plus ou moins 16 Mo de mémoire utilisée, si je reclique sur internet explorer un deuxième avec toutjours plus ou moins 16 Mega et cela peut aller jueque plusieurs Iexplore qui apparaissent dans le geztionnaire de tache mais n'affiche pas de fenetre. et puis tout d'un coup une fenetre s'ouvre et celle là a plus ou moins 95 mega d'utiliser... Bisard non?

voici le rapport demandé. J'attends un peu et vois si des IExplore apparaissent de nouveau. MErci en tout cas Clean Navipromo version 3.6.4 commencé le 2008-08-18 à 22:06:18.81 Outil exécuté depuis C:\Program Files\navilog1 Session actuelle : "Me Beauraind" Mise à jour le 16.08.2008 à 22h00 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 6.0.2900.5512 Système de fichiers : NTFS Mode suppression automatique avec prise en charge résultats Catchme et GNS Nettoyage exécuté au redémarrage de l'ordinateur *** fsbl1.txt non trouvé *** (Assurez-vous que Catchme n'avait rien trouvé lors de la recherche) *** Suppression avec sauvegardes résultats GenericNaviSearch *** * Suppression dans "C:\WINDOWS\System32" * * Suppression dans "C:\Documents and Settings\Me Beauraind\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Suppression dans "C:\DOCUME~1\LOGMEI~1\locals~1\applic~1" * *** Suppression dossiers dans "C:\WINDOWS" *** *** Suppression dossiers dans "C:\Program Files" *** *** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\Documents and Settings\All Users\menudm~1" *** *** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Me Beauraind\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\LOGMEI~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Me Beauraind\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *** *** Suppression dossiers dans "C:\DOCUME~1\LOGMEI~1\locals~1\applic~1" *** *** Suppression dossiers dans "C:\Documents and Settings\Me Beauraind\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\menudm~1\progra~1" *** *** Suppression dossiers dans "C:\DOCUME~1\LOGMEI~1\menudm~1\progra~1" *** *** Suppression fichiers *** *** Suppression fichiers temporaires *** Nettoyage contenu C:\WINDOWS\Temp effectué ! Nettoyage contenu C:\Documents and Settings\Me Beauraind\locals~1\Temp effectué ! *** Traitement Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Suppression avec sauvegardes nouveaux fichiers Instant Access : 2)Recherche, création sauvegardes et suppression Heuristique : * Dans "C:\WINDOWS\system32" * * Dans "C:\Documents and Settings\Me Beauraind\locals~1\applic~1" * * Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Dans "C:\DOCUME~1\LOGMEI~1\locals~1\applic~1" * *** Sauvegarde du Registre vers dossier Safebackup *** sauvegarde du Registre réalisée avec succès ! *** Nettoyage Registre *** Nettoyage Registre Ok *** Certificats *** Certificat Egroup absent ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit supprimé ! Certificat Sunny-Day-Design-Ltdt absent ! *** Nettoyage terminé le 2008-08-18 à 22:10:28.54 ***

Re Gof Une fois en mode normal j'ai réessayé d'ouvrir une fenetre internet et là il fonctionnait... voici le rapport demandé: Search Navipromo version 3.6.4 commencé le 2008-08-18 à 21:49:50.18 !!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!! !!! Postez ce rapport sur le forum pour le faire analyser !!! !!! Ne lancez pas la partie désinfection sans l'avis d'un spécialiste !!! Outil exécuté depuis C:\Program Files\navilog1 Session actuelle : "Me Beauraind" Mise à jour le 16.08.2008 à 22h00 par IL-MAFIOSO Microsoft Windows XP [version 5.1.2600] Internet Explorer : 6.0.2900.5512 Système de fichiers : NTFS Recherche executé en mode normal *** Recherche Programmes installés *** *** Recherche dossiers dans "C:\WINDOWS" *** *** Recherche dossiers dans "C:\Program Files" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\Documents and Settings\All Users\menudm~1" *** *** Recherche dossiers dans "c:\docume~1\alluse~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Me Beauraind\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\LOGMEI~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Me Beauraind\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *** *** Recherche dossiers dans "C:\DOCUME~1\LOGMEI~1\locals~1\applic~1" *** *** Recherche dossiers dans "C:\Documents and Settings\Me Beauraind\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\DOCUME~1\ADMINI~1\menudm~1\progra~1" *** *** Recherche dossiers dans "C:\DOCUME~1\LOGMEI~1\menudm~1\progra~1" *** *** Recherche avec Catchme-rootkit/stealth malware detector par gmer *** pour + d'infos : http://www.gmer.net *** Recherche avec GenericNaviSearch *** !!! Tous ces résultats peuvent révéler des fichiers légitimes !!! !!! A vérifier impérativement avant toute suppression manuelle !!! * Recherche dans "C:\WINDOWS\system32" * * Recherche dans "C:\Documents and Settings\Me Beauraind\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" * * Recherche dans "C:\DOCUME~1\LOGMEI~1\locals~1\applic~1" * *** Recherche fichiers *** *** Recherche clés spécifiques dans le Registre *** *** Module de Recherche complémentaire *** (Recherche fichiers spécifiques) 1)Recherche nouveaux fichiers Instant Access : 2)Recherche Heuristique : * Dans "C:\WINDOWS\system32" : * Dans "C:\Documents and Settings\Me Beauraind\locals~1\applic~1" : * Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" : * Dans "C:\DOCUME~1\LOGMEI~1\locals~1\applic~1" : 3)Recherche Certificats : Certificat Egroup absent ! Certificat Electronic-Group absent ! Certificat Montorgueil absent ! Certificat OOO-Favorit trouvé ! Certificat Sunny-Day-Design-Ltd absent ! 4)Recherche fichiers connus : *** Analyse terminée le 2008-08-18 à 21:58:51.51 ***

Re gof, j'avais modifié certaines choses dans le msconfig mais il ya longtemps... mais rien par le hijack car je ne connais rien Plus moyen d'ouvrir une fenetre internet explorer. A chaque tentative d'ouverture, il apparait dans le gestionnaire de processus mais pas de fenetre qui s'ouvre. Je viens de relancer en mode sans echec avec prise en charge reseau, j'ai téléchargé Navilog1. Je relance en mode normal et l'exécute.

Re Gof, l'utilisateur joue beaucoup aux jeux en ligne... Pour Combo Fix c'est ce que j'avais mis pour voir si IExplore disparait... voici le rapport. J'espère qu'il est complet sinon je le relance si tu veux. Pour les pubs, c'est parce que tu me demandais s'il y avait des pubs qui arrivaient encore... ComboFix 08-08-16.01 - Me Beauraind 2008-08-17 12:07:06.1 - NTFSx86 Endroit: C:\Documents and Settings\Me Beauraind\Bureau\ComboFix.exe * Création d'un nouveau point de restauration . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\Administrateur\Application Data\Microsoft\SystemCertificates\My C:\Documents and Settings\LocalService\Application Data\Microsoft\SystemCertificates\My C:\Documents and Settings\LogMeInRemoteUser\Application Data\Microsoft\SystemCertificates\My C:\Documents and Settings\Me Beauraind\Application Data\macromedia\Flash Player\#SharedObjects\A2T8ENT6\interclick.com C:\Documents and Settings\Me Beauraind\Application Data\macromedia\Flash Player\#SharedObjects\A2T8ENT6\interclick.com\ud.sol C:\Documents and Settings\Me Beauraind\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#interclick.com C:\Documents and Settings\Me Beauraind\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#interclick.com\settings.sol C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@adnext[2].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@edt02[2].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@ems6[2].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@fr.netlog[1].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@hotbar[2].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@promobenef[1].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@revsci[2].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@skynet[3].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@symantecstore[2].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@web2.checkm8[1].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@www.incredijeux[2].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@www.willemsefrance[2].txt C:\Documents and Settings\Me Beauraind\Cookies\me beauraind@zylom[1].txt C:\Documents and Settings\Me Beauraind\Menu Démarrer\Programmes\InternetGameBox C:\Documents and Settings\Me Beauraind\Menu Démarrer\Programmes\InternetGameBox\InternetGameBox.lnk C:\Documents and Settings\Me Beauraind\Menu Démarrer\Programmes\InternetGameBox\Uninstall.lnk C:\Documents and Settings\Me Beauraind\Menu Démarrer\Programmes\InternetGameBox\Website.lnk C:\Documents and Settings\NetworkService\Application Data\Microsoft\SystemCertificates\My C:\Program Files\internetgamebox C:\Program Files\internetgamebox\InternetGameBox.url C:\Program Files\internetgamebox\ressources\AttenteOff.html C:\Program Files\internetgamebox\ressources\AttenteOn.html C:\Program Files\internetgamebox\ressources\config_fr.xml C:\Program Files\internetgamebox\ressources\favoris\default.swf C:\Program Files\internetgamebox\skins\default.skn C:\Program Files\internetgamebox\uninst.exe C:\WINDOWS\Downloaded Program Files\egauth.inf C:\WINDOWS\Downloaded Program Files\egdaccess.inf C:\WINDOWS\Downloaded Program Files\egdaccess_aspiv4.inf C:\WINDOWS\Downloaded Program Files\netslv32.inf C:\WINDOWS\Downloaded Program Files\sysiasvc32.inf C:\WINDOWS\Downloaded Program Files\sysinetsvc32.inf C:\WINDOWS\Downloaded Program Files\sysnetsvc32.inf C:\WINDOWS\Downloaded Program Files\syswbsvc32.inf C:\WINDOWS\pack.epk C:\WINDOWS\system32\MabryObj.dll C:\WINDOWS\tmlpcert2007 . ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-07-17 to 2008-08-17 )))))))))))))))))))))))))))))))))))) . 2008-08-17 12:14 . 2008-08-17 12:14 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-08-17 12:14 . 2008-08-17 12:14 1,409 --a------ C:\WINDOWS\QTFont.for 2008-08-13 03:27 . 2008-04-11 21:05 691,712 --------- C:\WINDOWS\system32\dllcache\inetcomm.dll 2008-08-13 03:27 . 2008-05-01 16:36 331,776 --------- C:\WINDOWS\system32\dllcache\msadce.dll 2008-08-08 12:15 . 2001-08-23 17:04 12,288 --a------ C:\WINDOWS\system32\drivers\mouhid.sys 2008-08-08 12:15 . 2001-08-23 17:04 12,288 --a------ C:\WINDOWS\system32\dllcache\mouhid.sys 2008-08-03 10:44 . 2008-08-03 10:56 <REP> d-------- C:\Program Files\ubi.com 2008-08-03 10:44 . 2008-08-03 10:44 <REP> d-------- C:\Program Files\Fichiers communs\PocketSoft 2008-08-03 10:44 . 2008-08-03 10:44 <REP> d-------- C:\Documents and Settings\Me Beauraind\Application Data\ubi.com 2008-08-03 10:44 . 2001-07-30 18:03 185,344 --a------ C:\WINDOWS\patchw32.dll 2008-08-03 10:41 . 2008-08-03 10:41 <REP> d-------- C:\Program Files\UBISOFT 2008-08-03 10:32 . 2008-08-03 10:33 <REP> d-------- C:\Program Files\DAEMON Tools Toolbar 2008-08-03 10:32 . 2008-08-03 10:33 <REP> d-------- C:\Program Files\DAEMON Tools Lite 2008-08-03 10:17 . 2008-08-03 10:17 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys 2008-08-03 10:16 . 2008-08-03 10:16 <REP> d-------- C:\Documents and Settings\Me Beauraind\Application Data\DAEMON Tools 2008-08-02 11:23 . 2008-08-02 11:23 <REP> d-------- C:\Program Files\NeroInstall.bak 2008-08-02 11:13 . 2008-08-02 11:13 <REP> d-------- C:\Program Files\Nero 2008-08-02 08:57 . 2008-08-02 08:57 <REP> d-------- C:\WINDOWS\system32\fr-fr 2008-08-02 08:57 . 2008-08-02 08:57 <REP> d-------- C:\WINDOWS\system32\fr 2008-08-02 08:57 . 2008-08-02 08:57 <REP> d-------- C:\WINDOWS\l2schemas 2008-08-02 08:35 . 2008-04-14 04:33 1,306,624 --------- C:\WINDOWS\system32\msxml6.dll 2008-08-02 08:34 . 2008-04-14 04:33 651,264 --------- C:\WINDOWS\system32\dot3ui.dll 2008-07-31 08:52 . 2008-07-31 08:52 <REP> d-------- C:\Program Files\MSXML 4.0 2008-07-31 08:19 . 2008-06-24 13:45 1,414,440 --a------ C:\WINDOWS\system32\ShellManager310E2D762.dll 2008-07-31 08:19 . 2008-06-23 17:36 773,120 --a------ C:\WINDOWS\system32\NEROINSTAEC43759.DB 2008-07-30 10:08 . 2008-07-30 10:09 <REP> d-------- C:\Program Files\Spybot - Search & Destroy 2008-07-30 10:08 . 2008-07-30 11:02 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-07-30 09:59 . 2008-07-30 09:59 <REP> d-------- C:\Documents and Settings\Me Beauraind\Application Data\Nero 2008-07-30 09:54 . 2008-08-02 11:16 <REP> d-------- C:\Program Files\Fichiers communs\Nero 2008-07-30 09:54 . 2008-08-02 11:13 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Nero 2008-07-25 17:39 . 2004-06-23 00:38 <REP> d-------- C:\Documents and Settings\LogMeInRemoteUser\WINDOWS 2008-07-25 17:39 . 2004-06-23 00:38 <REP> d--h----- C:\Documents and Settings\LogMeInRemoteUser\Voisinage r‚seau 2008-07-25 17:39 . 2004-06-23 00:38 <REP> d--h----- C:\Documents and Settings\LogMeInRemoteUser\Voisinage d'impression 2008-07-25 17:39 . 2004-06-23 00:38 <REP> d--h----- C:\Documents and Settings\LogMeInRemoteUser\ModŠles 2008-07-25 17:39 . 2004-06-23 00:38 <REP> dr------- C:\Documents and Settings\LogMeInRemoteUser\Mes documents 2008-07-25 17:39 . 2004-06-23 00:38 <REP> dr------- C:\Documents and Settings\LogMeInRemoteUser\Menu D‚marrer 2008-07-25 17:39 . 2004-06-23 00:38 <REP> dr------- C:\Documents and Settings\LogMeInRemoteUser\Favoris 2008-07-25 17:39 . 2004-06-23 00:38 <REP> dr------- C:\Documents and Settings\LogMeInRemoteUser\Bureau 2008-07-25 17:39 . 2008-08-11 19:48 <REP> d-------- C:\Documents and Settings\LogMeInRemoteUser 2008-07-25 17:33 . 2008-07-25 17:33 <REP> d-------- C:\Documents and Settings\All Users\Application Data\LogMeIn 2008-07-25 17:32 . 2008-05-28 12:32 87,352 --a------ C:\WINDOWS\system32\LMIinit.dll 2008-07-25 17:32 . 2008-05-28 12:33 83,288 --a------ C:\WINDOWS\system32\LMIRfsClientNP.dll 2008-07-25 17:32 . 2008-03-07 13:39 45,848 --a------ C:\WINDOWS\system32\drivers\LMIRfsDriver.sys 2008-07-25 17:32 . 2008-05-28 12:33 24,608 --a------ C:\WINDOWS\system32\LMIport.dll 2008-07-25 17:32 . 2008-07-25 17:32 1,024 --a------ C:\.rnd 2008-07-25 17:31 . 2008-08-17 06:40 <REP> d-------- C:\Program Files\LogMeIn 2008-07-20 17:36 . 2008-07-20 17:36 <REP> d-------- C:\Documents and Settings\Me Beauraind\Application Data\Friday's games 2008-07-20 12:00 . 2008-07-20 16:08 <REP> d-------- C:\Documents and Settings\Me Beauraind\Application Data\ForgottenRiddles2 2008-07-19 15:45 . 2008-07-19 15:45 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Absolutist . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-08-17 10:17 --------- d-----w C:\Program Files\Fichiers communs\Symantec Shared 2008-08-17 08:52 --------- d-----w C:\Program Files\Big Kahuna Reef 2008-08-13 15:29 --------- d-----w C:\Program Files\Incredijeux 2008-08-13 15:28 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP 2008-08-10 11:07 --------- d-----w C:\Program Files\Magic Solitaire 2008-08-09 04:43 --------- d-----w C:\Program Files\Zylom Games 2008-08-05 15:04 --------- d-----w C:\Program Files\Alawar 2008-08-05 07:42 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec 2008-08-04 15:12 --------- d-----w C:\Documents and Settings\Me Beauraind\Application Data\Zylom 2008-08-03 08:44 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-08-03 08:40 --------- d-----w C:\Program Files\Fichiers communs\InstallShield 2008-08-02 07:18 --------- d-----w C:\Program Files\MSN Messenger 2008-08-02 05:24 --------- d-----w C:\Program Files\Google 2008-07-30 15:42 23,888 ----a-w C:\WINDOWS\system32\drivers\COH_Mon.sys 2008-07-30 15:28 706 ----a-w C:\WINDOWS\system32\drivers\COH_Mon.inf 2008-07-30 15:28 10,537 ----a-w C:\WINDOWS\system32\drivers\coh_mon.cat 2008-07-29 16:57 --------- d-----w C:\Documents and Settings\All Users\Application Data\AlawarGameBox 2008-07-16 13:53 --------- d-----w C:\Documents and Settings\Me Beauraind\Application Data\SulusGames 2008-07-06 13:46 --------- d-----w C:\Documents and Settings\Me Beauraind\Application Data\Gaijin Ent 2008-07-04 15:47 --------- d-----w C:\Documents and Settings\Me Beauraind\Application Data\Meridian93 2008-07-01 14:38 --------- d-----w C:\Documents and Settings\Me Beauraind\Application Data\PlayFirst 2008-07-01 14:38 --------- d-----w C:\Documents and Settings\All Users\Application Data\PlayFirst 2008-07-01 09:51 --------- d-----w C:\Program Files\Norton 360 2008-06-29 05:39 --------- d-----w C:\Program Files\BoontyGames 2008-06-27 16:49 --------- d-----w C:\Program Files\Mes Jeux Téléchargés 2008-06-27 16:49 --------- d-----w C:\Program Files\Cafe Games 2008-06-25 15:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\BigFish 2008-06-25 15:08 --------- d-----w C:\Documents and Settings\Me Beauraind\Application Data\BigFish 2008-06-22 10:35 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sandlot Games 2008-06-20 16:43 --------- d-----w C:\Documents and Settings\All Users\Application Data\Oberon Games 2008-06-20 16:21 --------- d-----w C:\Documents and Settings\All Users\Application Data\VirtualFarm 2008-06-20 11:51 361,600 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys 2008-06-20 11:40 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys 2008-06-20 11:08 225,856 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys 2008-06-20 06:43 805 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.INF 2008-06-20 06:43 123,952 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.SYS 2008-06-20 06:43 10,671 ----a-w C:\WINDOWS\system32\drivers\SYMEVENT.CAT 2008-06-20 06:43 --------- d-----w C:\Program Files\Symantec 2008-02-27 16:03 0 ----a-w C:\Program Files\temp01 2006-06-08 09:56 320 ----a-w C:\Documents and Settings\Me Beauraind\Application Data\bbbconfig.dat .

revoici le tout. J4ai réexécuté le prog: DiagHelp version v1.4 - http://www.malekal.com excute le 2008-08-18 à 19:26:38.70 Liste des derniers fichies modifies/crees dans windir\system32 et prefetch C:\WINDOWS\prefetch\CHCP.COM-17EDBDC9.pf -->2008-08-18 19:26:37 C:\WINDOWS\prefetch\NOTEPAD.EXE-2F2D61E1.pf -->2008-08-18 19:26:12 C:\WINDOWS\prefetch\VERCLSID.EXE-28F52AD2.pf -->2008-08-18 19:25:31 C:\WINDOWS\prefetch\USNSVC.EXE-0114DAF6.pf -->2008-08-18 19:25:29 C:\WINDOWS\prefetch\LMIGUARDIAN.EXE-2A17B6A3.pf -->2008-08-18 19:25:27 C:\WINDOWS\prefetch\LOGMEIN.EXE-158F625C.pf -->2008-08-18 19:25:25 C:\WINDOWS\prefetch\WUAUCLT.EXE-1360D60A.pf -->2008-08-18 19:25:24 C:\WINDOWS\prefetch\IMNOTFY.EXE-04E43A6F.pf -->2008-08-18 19:25:24 C:\WINDOWS\prefetch\WMIPRVSE.EXE-0D449B4F.pf -->2008-08-18 19:25:21 C:\WINDOWS\prefetch\OSA.EXE-28494AD2.pf -->2008-08-18 19:25:21 C:\WINDOWS\System32\drivers\sptd.sys -->2008-08-03 10:17:06 C:\WINDOWS\System32\drivers\COH_Mon.sys -->2008-07-30 17:42:12 C:\WINDOWS\System32\drivers\COH_Mon.inf -->2008-07-30 17:28:04 C:\WINDOWS\System32\drivers\coh_mon.cat -->2008-07-30 17:28:04 C:\WINDOWS\System32\drivers\tcpip.sys -->2008-06-20 13:51:12 C:\WINDOWS\System32\drivers\afd.sys -->2008-06-20 13:40:08 C:\WINDOWS\System32\drivers\tcpip6.sys -->2008-06-20 13:08:27 C:\WINDOWS\System32\wpa.dbl -->2008-08-18 19:24:16 C:\WINDOWS\System32\TZLog.log -->2008-08-13 07:18:23 C:\WINDOWS\System32\MRT.exe -->2008-08-05 20:11:01 C:\WINDOWS\System32\MsiExec.exe.log -->2008-08-02 11:23:40 C:\WINDOWS\System32\perfh00C.dat -->2008-08-02 09:13:39 C:\WINDOWS\System32\perfh009.dat -->2008-08-02 09:13:39 C:\WINDOWS\System32\perfc00C.dat -->2008-08-02 09:13:39 C:\WINDOWS\System32\perfc009.dat -->2008-08-02 09:13:39 C:\WINDOWS\System32\PerfStringBackup.INI -->2008-08-02 09:13:38 C:\WINDOWS\System32\spupdwxp.log -->2008-08-02 09:10:39 C:\WINDOWS\System32\FNTCACHE.DAT -->2008-08-02 09:09:03 C:\WINDOWS\System32\tzchange.exe -->2008-07-11 14:42:28 C:\WINDOWS\System32\es.dll -->2008-07-07 22:28:20 C:\WINDOWS\System32\d3d9caps.dat -->2008-07-04 18:15:12 C:\WINDOWS\System32\tmp1B76F.FOT -->2008-06-28 16:13:47 C:\WINDOWS\System32\tmp8866F.FOT -->2008-06-28 16:13:46 C:\WINDOWS\System32\tmp7C66F.FOT -->2008-06-28 16:13:46 C:\WINDOWS\System32\tmp5076F.FOT -->2008-06-28 16:13:46 C:\WINDOWS\System32\tmp4476F.FOT -->2008-06-28 16:13:46 C:\WINDOWS\System32\tmp2876F.FOT -->2008-06-28 16:13:46 C:\WINDOWS\System32\urlmon.dll -->2008-06-26 10:13:32 C:\WINDOWS\System32\shdocvw.dll -->2008-06-26 10:13:32 C:\WINDOWS\System32\mscms.dll -->2008-06-24 18:44:02 C:\WINDOWS\System32\ShellManager310E2D762.dll -->2008-06-24 13:45:14 C:\WINDOWS\System32\NEROINSTAEC43759.DB -->2008-06-23 17:36:24 C:\WINDOWS\QTFont.qfn -->2008-08-18 19:24:10 C:\WINDOWS\0.log -->2008-08-18 19:23:46 C:\WINDOWS\WindowsUpdate.log -->2008-08-18 19:23:45 C:\WINDOWS\wiadebug.log -->2008-08-18 19:23:44 C:\WINDOWS\wiaservc.log -->2008-08-18 19:23:41 C:\WINDOWS\bootstat.dat -->2008-08-18 19:23:12 C:\WINDOWS\SchedLgU.Txt -->2008-08-18 18:18:42 C:\WINDOWS\QTFont.for -->2008-08-18 16:06:26 C:\WINDOWS\Kyor.ini -->2008-08-17 15:02:58 C:\WINDOWS\system.ini -->2008-08-17 12:17:30 C:\WINDOWS\PSEXESVC.EXE -->2008-08-17 12:14:30 C:\WINDOWS\tsoc.log -->2008-08-13 07:20:37 C:\WINDOWS\setupapi.log -->2008-08-13 07:20:37 C:\WINDOWS\ocmsn.log -->2008-08-13 07:20:37 C:\WINDOWS\ocgen.log -->2008-08-13 07:20:37 winlogon.exe Verified: Signed svchost.exe Verified: Signed ws2_32.dll Verified: Signed user32.dll Verified: Signed tcpip.sys Verified: Signed ndis.sys Verified: Signed null.sys Verified: Signed ListDLLs v2.25 - DLL lister for Win9x/NT Copyright © 1997-2004 Mark Russinovich Sysinternals - www.sysinternals.com ------------------------------------------------------------------------------ explorer.exe pid: 1900 Command line: C:\WINDOWS\Explorer.EXE Base Size Version Path 0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll 0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll 0x76610000 0x84000 5.131.2600.5512 C:\WINDOWS\system32\CRYPTUI.dll 0x76be0000 0x2e000 5.131.2600.5512 C:\WINDOWS\system32\WINTRUST.dll 0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll 0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL 0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll 0x6ed90000 0x8e000 1.00.0000.0382 C:\Program Files\Fichiers communs\Symantec Shared\Backup\buShell.dll 0x78130000 0x9b000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll 0x6b170000 0x9a000 107.00.0005.0005 C:\Program Files\Fichiers communs\Symantec Shared\ccL70U.dll 0x7c420000 0x87000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCP80.dll 0x6bc30000 0x21000 107.00.0005.0005 C:\Program Files\Fichiers communs\Symantec Shared\ccVrTrst.dll 0x6ba00000 0x1f000 107.00.0005.0005 C:\Program Files\Fichiers communs\Symantec Shared\ccSet.dll 0x6b0a0000 0x28000 107.00.0005.0005 C:\Program Files\Fichiers communs\Symantec Shared\ccIPC.dll 0x6fb60000 0x47000 2.00.0000.0079 C:\Program Files\Fichiers communs\Symantec Shared\AppCore\AppMgr32.dll 0x76ac0000 0x11000 3.05.2284.0001 C:\WINDOWS\system32\ATL.DLL 0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll 0x7d200000 0x2bc000 3.01.4001.5512 C:\WINDOWS\system32\msi.dll 0x10000000 0x14000 2.01.0003.0000 C:\WINDOWS\system32\LMIRfsClientNP.dll 0x00ba0000 0x13000 3.00.0000.1524 C:\PROGRA~1\INCRED~1\bin\ImHook.dll 0x023b0000 0x40000 3.05.0001.0000 C:\Program Files\Nero\Nero8\Nero BackItUp\NBShell.dll 0x782e0000 0x10f000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\MFC80U.DLL 0x5d360000 0xf000 8.00.50727.0762 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\MFC80FRA.DLL 0x01790000 0x2e000 C:\Program Files\WinRAR\rarext.dll 0x6a8d0000 0x8c000 2.00.0000.0242 C:\PROGRA~1\NORTON~1\tpShell.dll 0x02f70000 0x187000 1.06.0000.0012 C:\PROGRA~1\SPYBOT~1\SDHelper.dll 0x74730000 0x3d000 3.525.1132.0000 C:\WINDOWS\system32\ODBC32.dll 0x1f840000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll 0x00bc0000 0xb000 6.00.0000.0878 C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll 0x60990000 0x7000 3.01.4001.5512 C:\WINDOWS\system32\MSISIP.DLL 0x7e6a0000 0x16000 5.07.0000.18066 C:\WINDOWS\System32\wshext.dll 0x365a0000 0x15000 10.00.2625.0000 C:\PROGRA~1\MICROS~2\Office10\MCPS.DLL ListDLLs v2.25 - DLL lister for Win9x/NT Copyright © 1997-2004 Mark Russinovich Sysinternals - www.sysinternals.com ------------------------------------------------------------------------------ winlogon.exe pid: 892 Command line: winlogon.exe Base Size Version Path 0x01000000 0x82000 \??\C:\WINDOWS\system32\winlogon.exe 0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll 0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll 0x76be0000 0x2e000 5.131.2600.5512 C:\WINDOWS\system32\WINTRUST.dll 0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\COMCTL32.dll 0x74730000 0x3d000 3.525.1132.0000 C:\WINDOWS\system32\ODBC32.dll 0x1f840000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll 0x10000000 0x15000 4.00.0000.0734 C:\WINDOWS\system32\LMIinit.dll 0x01390000 0x3b000 1.07.0018.0005 C:\WINDOWS\system32\WgaLogon.dll 0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL 0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll 0x011c0000 0x14000 2.01.0003.0000 C:\WINDOWS\system32\LMIRfsClientNP.dll Le volume dans le lecteur C s'appelle HDD Le numéro de série du volume est 2083-8F38 Répertoire de C:\WINDOWS\system 1995-01-18 23:04 60,992 PLAYER.EXE 1995-01-18 23:04 4,128 QTNOTIFY.EXE 2 fichier(s) 65,120 octets 0 Rép(s) 132,711,895,040 octets libres Le volume dans le lecteur C s'appelle HDD Le numéro de série du volume est 2083-8F38 Répertoire de C:\WINDOWS\system32 2008-04-14 04:33 6,144 csrss.exe 1 fichier(s) 6,144 octets 0 Rép(s) 132,711,895,040 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C s'appelle HDD Le numéro de série du volume est 2083-8F38 Répertoire de C:\WINDOWS\Downloaded Program Files 2008-08-17 12:08 <REP> . 2008-08-17 12:08 <REP> .. 2007-03-28 11:06 541 ca.pub 2008-01-03 13:57 138,430 daas.log 2007-05-07 17:38 500,120 daas_s.dll 2002-09-30 13:03 65 desktop.ini 1997-10-14 18:52 697 DirectAnimation Java Classes.osd 2007-11-20 17:04 1,523,536 FP_AX_CAB_INSTALLER.exe 2007-05-07 17:39 192,920 fsauc.dll 2007-05-07 17:39 254,360 fscax.dll 2007-04-13 16:52 482 fscax.inf 2004-07-21 13:35 73,728 ghdlctl.dll 2004-07-21 13:34 227 ghdlctl.inf 2008-02-28 15:30 71,248 LMIProxyHelper.exe 2000-01-20 15:25 1,162 Microsoft XML Parser for Java.osd 2005-03-14 13:39 227 MsnMessengerSetupDownloader.inf 2005-03-17 14:48 113,152 MsnMessengerSetupDownloader.ocx 2008-05-19 14:57 2,774,344 RACtrl.dll 2008-05-19 14:52 663 RACtrl.inf 2007-11-20 16:50 247 swflash.inf 2006-12-06 09:11 224,768 symdlmgr.dll 2006-12-06 09:10 350 symdlmgr.inf 2008-02-28 15:33 245,408 unicows.dll 2004-10-28 17:59 147,456 zylomgamesplayer.dll 2004-10-26 10:09 244 ZylomGamesPlayer.inf 2004-06-15 09:52 221,184 zylomloader.dll 2004-05-18 12:40 229 zylomloader.inf 25 fichier(s) 6,485,788 octets Total des fichiers listés : 25 fichier(s) 6,485,788 octets 2 Rép(s) 132,711,895,040 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Export des clefs sensibles.. Liste des fichiers en exception sur le pare-feu XP SP2 "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger" "C:\\Program Files\\PopCap Games\\Zuma Deluxe\\Zuma.exe"="C:\\Program Files\\PopCap Games\\Zuma Deluxe\\Zuma.exe:*:Disabled:Zuma" "C:\\Program Files\\GameBubbles\\Brave Dwarves 2\\BraveDwarves2.exe"="C:\\Program Files\\GameBubbles\\Brave Dwarves 2\\BraveDwarves2.exe:*:Disabled:BraveDwarves2" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" Export de la clef SharedTaskScheduler [sharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" exports des policies REGEDIT4 [system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 "DisableRegistryTools"=dword:00000000 "HideLegacyLogonScripts"=dword:00000000 "HideLogoffScripts"=dword:00000000 "RunLogonScriptSync"=dword:00000001 "RunStartupScriptSync"=dword:00000000 "HideStartupScripts"=dword:00000000 Export des clefs sensibles.. Rechercher adresses sensibles dans le fichier HOSTS... catchme 0.3.1351 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-08-18 19:27:02 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] "s1"=dword:2df9c43f "s2"=dword:110480d0 "h0"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "p0"="C:\Program Files\DAEMON Tools Lite\" "h0"=dword:00000000 "khjeh"=hex:5c,33,bf,33,a8,6d,14,32,03,ff,36,0e,11,89,7b,d2,85,b1,8d,a7,83,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,3c,9b,90,ff,0c,ca,a3,13,d4,14,b9,1e,20,f9,51,9a,52,.. "khjeh"=hex:0e,92,32,1c,63,79,08,22,5c,bb,1c,8e,d9,44,db,eb,8d,8c,cb,51,81,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:de,4b,a2,9d,bf,41,4a,81,30,79,b5,7d,14,74,3a,9f,07,bb,6a,34,f6,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "p0"="C:\Program Files\DAEMON Tools Lite\" "h0"=dword:00000000 "khjeh"=hex:5c,33,bf,33,a8,6d,14,32,03,ff,36,0e,11,89,7b,d2,85,b1,8d,a7,83,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,3c,9b,90,ff,0c,ca,a3,13,d4,14,b9,1e,20,f9,51,9a,52,.. "khjeh"=hex:0e,92,32,1c,63,79,08,22,5c,bb,1c,8e,d9,44,db,eb,8d,8c,cb,51,81,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:de,4b,a2,9d,bf,41,4a,81,30,79,b5,7d,14,74,3a,9f,07,bb,6a,34,f6,.. scanning hidden registry entries ... [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"="" "DeviceNotSelectedTimeout"="15" "GDIProcessHandleQuota"=dword:00002710 "Spooler"="yes" "swapdisk"="" "TransmissionRetryTimeout"="90" "USERProcessHandleQuota"=dword:00002710 scanning hidden files ... scan completed successfully hidden services: 0 hidden files: 0 KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Error loading kernel support driver! Make sure you are running this as Administrator. KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Driver/Module list by traversal of PsLoadedModuleList 804D7000 - \WINDOWS\system32\ntoskrnl.exe 806EE000 - \WINDOWS\system32\hal.dll F899F000 - \WINDOWS\system32\KDCOM.DLL F88AF000 - \WINDOWS\system32\BOOTVID.dll F837E000 - spbv.sys F89A1000 - \WINDOWS\System32\Drivers\WMILIB.SYS F8366000 - \WINDOWS\System32\Drivers\SCSIPORT.SYS F8337000 - ACPI.sys F8326000 - pci.sys F849F000 - isapnp.sys F8A67000 - pciide.sys F871F000 - \WINDOWS\System32\DRIVERS\PCIIDEX.SYS F89A3000 - aliide.sys F89A5000 - cmdide.sys F89A7000 - toside.sys F89A9000 - viaide.sys F89AB000 - intelide.sys F84AF000 - MountMgr.sys F8307000 - ftdisk.sys F8727000 - PartMgr.sys F84BF000 - VolSnap.sys F88B3000 - cpqarray.sys F82EF000 - atapi.sys F88B7000 - aha154x.sys F872F000 - sparrow.sys F88BB000 - symc810.sys F84CF000 - aic78xx.sys F88BF000 - dac960nt.sys F84DF000 - ql10wnt.sys F88C3000 - amsint.sys F8737000 - asc.sys F88C7000 - asc3550.sys F873F000 - mraid35x.sys F8747000 - i2omp.sys F88CB000 - ini910u.sys F84EF000 - ql1240.sys F84FF000 - aic78u2.sys F874F000 - symc8xx.sys F8757000 - sym_hi.sys F875F000 - sym_u3.sys F8767000 - ABP480N5.SYS F876F000 - asc3350p.sys F89AD000 - cd20xrnt.sys F850F000 - ultra.sys F82D6000 - adpu160m.sys F8777000 - dpti2o.sys F851F000 - ql1080.sys F852F000 - ql1280.sys F853F000 - ql12160.sys F877F000 - perc2.sys F89AF000 - perc2hib.sys F8787000 - hpn.sys F88CF000 - cbidf2k.sys F82AA000 - dac2w2k.sys F854F000 - disk.sys F855F000 - \WINDOWS\System32\DRIVERS\CLASSPNP.SYS F828A000 - fltmgr.sys F8278000 - sr.sys F878F000 - PxHelp20.sys F8261000 - KSecDD.sys F81D4000 - Ntfs.sys F81A7000 - NDIS.sys F856F000 - sisagp.sys F857F000 - viaagp.sys F8797000 - viaagp1.sys F818D000 - Mup.sys F858F000 - alim1541.sys F859F000 - amdagp.sys F85AF000 - agp440.sys F85BF000 - agpCPQ.sys F86CF000 - \SystemRoot\System32\DRIVERS\amdk7.sys F777F000 - \SystemRoot\System32\DRIVERS\ati2mtag.sys F776B000 - \SystemRoot\System32\DRIVERS\VIDEOPRT.SYS F87D7000 - \SystemRoot\System32\DRIVERS\usbuhci.sys F7747000 - \SystemRoot\System32\DRIVERS\USBPORT.SYS F87DF000 - \SystemRoot\System32\DRIVERS\usbehci.sys F86DF000 - \SystemRoot\System32\DRIVERS\cdrom.sys F86EF000 - \SystemRoot\System32\DRIVERS\redbook.sys F7724000 - \SystemRoot\System32\DRIVERS\ks.sys F87E7000 - \SystemRoot\System32\Drivers\Asapi.SYS F86FF000 - \SystemRoot\System32\DRIVERS\imapi.sys F7691000 - \SystemRoot\system32\drivers\ALCXWDM.SYS F766D000 - \SystemRoot\system32\drivers\portcls.sys F870F000 - \SystemRoot\system32\drivers\drmk.sys F760B000 - \SystemRoot\system32\drivers\ALCXSENS.SYS F8135000 - \SystemRoot\System32\DRIVERS\fetnd5b.sys F75D4000 - \SystemRoot\System32\Drivers\axoq4qya.SYS F884F000 - \SystemRoot\System32\DRIVERS\fdc.sys F75C3000 - \SystemRoot\System32\DRIVERS\serial.sys F7FBD000 - \SystemRoot\System32\DRIVERS\serenum.sys F75AF000 - \SystemRoot\System32\DRIVERS\parport.sys F8125000 - \SystemRoot\System32\DRIVERS\i8042prt.sys F8857000 - \SystemRoot\System32\DRIVERS\kbdclass.sys F8BC5000 - \SystemRoot\system32\DRIVERS\lmimirr.sys F8BC6000 - \SystemRoot\System32\DRIVERS\audstub.sys F8115000 - \SystemRoot\System32\DRIVERS\rasl2tp.sys F7FB9000 - \SystemRoot\System32\DRIVERS\ndistapi.sys F7598000 - \SystemRoot\System32\DRIVERS\ndiswan.sys F8105000 - \SystemRoot\System32\DRIVERS\raspppoe.sys F80F5000 - \SystemRoot\System32\DRIVERS\raspptp.sys F885F000 - \SystemRoot\System32\DRIVERS\TDI.SYS F7587000 - \SystemRoot\System32\DRIVERS\psched.sys F80E5000 - \SystemRoot\System32\DRIVERS\msgpc.sys F8867000 - \SystemRoot\System32\DRIVERS\ptilink.sys F886F000 - \SystemRoot\System32\DRIVERS\raspti.sys F78AF000 - \SystemRoot\System32\DRIVERS\termdd.sys F8877000 - \SystemRoot\System32\DRIVERS\mouclass.sys F887F000 - \SystemRoot\system32\DRIVERS\SymIM.sys F8A09000 - \SystemRoot\System32\DRIVERS\swenum.sys F7529000 - \SystemRoot\System32\DRIVERS\update.sys F7FA9000 - \SystemRoot\System32\DRIVERS\mssmbios.sys F80B5000 - \SystemRoot\System32\Drivers\NDProxy.SYS F78BF000 - \SystemRoot\System32\DRIVERS\usbhub.sys F8A0B000 - \SystemRoot\System32\DRIVERS\USBD.SYS F897F000 - \SystemRoot\System32\Drivers\i2omgmt.SYS F8983000 - \SystemRoot\System32\DRIVERS\hidusb.sys F786F000 - \SystemRoot\System32\DRIVERS\HIDCLASS.SYS F888F000 - \SystemRoot\System32\DRIVERS\HIDPARSE.SYS F8897000 - \SystemRoot\System32\DRIVERS\USBSTOR.SYS F8A0D000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS F8B71000 - \SystemRoot\System32\Drivers\Null.SYS F8A0F000 - \SystemRoot\System32\Drivers\Beep.SYS F88A7000 - \SystemRoot\System32\drivers\vga.sys F8A11000 - \SystemRoot\System32\Drivers\mnmdd.SYS F8A13000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys F87B7000 - \SystemRoot\System32\Drivers\Msfs.SYS F87BF000 - \SystemRoot\System32\Drivers\Npfs.SYS F898F000 - \SystemRoot\System32\DRIVERS\rasacd.sys B2DE9000 - \SystemRoot\System32\DRIVERS\ipsec.sys B2D90000 - \SystemRoot\System32\DRIVERS\tcpip.sys B2D64000 - \SystemRoot\System32\Drivers\SYMTDI.SYS B2D3F000 - \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS F8993000 - \SystemRoot\System32\Drivers\SYMREDRV.SYS F8A15000 - \SystemRoot\System32\Drivers\SYMDNS.SYS F87C7000 - \SystemRoot\System32\Drivers\SYMNDIS.SYS B2D29000 - \SystemRoot\System32\Drivers\SYMFW.SYS F87CF000 - \SystemRoot\System32\Drivers\SYMIDS.SYS B2CEB000 - \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\SymcData\ipsdefs\20080813.001\SymIDSCo.sys B2CC3000 - \SystemRoot\System32\DRIVERS\netbt.sys B2CA1000 - \SystemRoot\System32\drivers\afd.sys F784F000 - \SystemRoot\System32\DRIVERS\netbios.sys F782F000 - \SystemRoot\System32\Drivers\SRTSPX.SYS B2C31000 - \??\C:\Program Files\Fichiers communs\Symantec Shared\SPBBC\SPBBCDrv.sys B2C0B000 - \SystemRoot\System32\DRIVERS\ipnat.sys F860F000 - \SystemRoot\System32\DRIVERS\wanarp.sys F8169000 - \SystemRoot\System32\DRIVERS\mouhid.sys B2BB8000 - \SystemRoot\System32\DRIVERS\rdbss.sys B2B48000 - \SystemRoot\System32\DRIVERS\mrxsmb.sys F863F000 - \SystemRoot\System32\Drivers\Fips.SYS B2AEA000 - \??\C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\eeCtrl.sys B2ACE000 - \??\C:\Program Files\Fichiers communs\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys F867F000 - \SystemRoot\System32\Drivers\Cdfs.SYS B2AB6000 - \SystemRoot\System32\Drivers\dump_atapi.sys F8A45000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS BF800000 - \SystemRoot\System32\win32k.sys B2C03000 - \SystemRoot\System32\drivers\Dxapi.sys B2E64000 - \SystemRoot\System32\watchdog.sys BF9C3000 - \SystemRoot\System32\drivers\dxg.sys F8A6A000 - \SystemRoot\System32\drivers\dxgthk.sys BF9D5000 - \SystemRoot\System32\ati2dvag.dll BFA34000 - \SystemRoot\System32\ati3d2ag.dll B2982000 - \SystemRoot\System32\DRIVERS\ndisuio.sys F8837000 - \??\C:\WINDOWS\system32\drivers\CO_Mon.sys B24D9000 - \SystemRoot\system32\drivers\wdmaud.sys B27BE000 - \SystemRoot\system32\drivers\sysaudio.sys B2396000 - \SystemRoot\System32\DRIVERS\mrxdav.sys F89FF000 - \SystemRoot\System32\Drivers\ParVdm.SYS B24FA000 - \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS F8A35000 - \??\C:\Program Files\LogMeIn\x86\RaInfo.sys B2596000 - \??\C:\WINDOWS\system32\drivers\LMIRfsDriver.sys B222C000 - \SystemRoot\System32\DRIVERS\srv.sys B279E000 - \SystemRoot\System32\DRIVERS\secdrv.sys B2E2C000 - \??\C:\WINDOWS\system32\drivers\symlcbrd.sys B1F13000 - \SystemRoot\System32\Drivers\SRTSP.SYS B1E1B000 - \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20080817.023\NAVEX15.SYS B1D66000 - \??\C:\PROGRA~1\FICHIE~1\SYMANT~1\VIRUSD~1\20080817.023\NAVENG.SYS B1C85000 - \SystemRoot\System32\Drivers\HTTP.sys BFFA0000 - \SystemRoot\System32\ATMFD.DLL BFB34000 - \SystemRoot\System32\lmimirr.dll BFB39000 - \SystemRoot\System32\lmimirr2.dll B158D000 - \SystemRoot\System32\Drivers\GEARAspiWDM.sys B13EA000 - \SystemRoot\system32\drivers\kmixer.sys F8B27000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys Total number of drivers = 183 Liste des programmes installes Adobe Acrobat Reader 3.01 Adobe Flash Player ActiveX Adobe Reader 6.0 - Français Adventure Inlay Adventure Inlay Deluxe Adventure Inlay fr Alawar Game Box Aloha Solitaire Deluxe AppCore Archiveur WinRAR Backup Barre d'outils MSN Big Fish Games Client Big Kahuna Reef BoontyBox 2.1 ccCommon CCleaner (remove only) Corel Applications Correctif pour Windows XP (KB952287) DAEMON Tools Toolbar GearDrvs Google Toolbar for Internet Explorer Hidden Relics HijackThis 2.0.2 Jeux d'Arcade - Les Best Jewel Quest (remove only) Jewel Quest 2 Deluxe Jewel Quest Deluxe Jewel Quest fr LiveUpdate (Symantec Corporation) LiveUpdate (Symantec Corporation) LiveUpdate 3.0 (Symantec Corporation) LiveUpdate Notice (Symantec Corporation) LogMeIn Macromedia Flash Player 8 Macromedia Shockwave Player Magic Inlay Magic Inlay (remove only) Magic Inlay bfr Magic Inlay Deluxe Magic Inlay yfr Micro Application - Patiences et Réussites Micro Application - Super Jeux de Lettres Microsoft Data Access Components KB870669 Microsoft Office XP Professional avec FrontPage Microsoft Visual C++ 2005 Redistributable Microsoft Web Publishing Wizard 1.52 Microsoft Word 2002 Microsoft Word 2002 Mise à jour de sécurité pour Lecteur Windows Media (KB911564) Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) Mise à jour de sécurité pour Lecteur Windows Media 9 (KB911565) Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734) Mise à jour de sécurité pour Lecteur Windows Media 9 (KB936782) Mise à jour de sécurité pour Step by Step Interactive Training (KB898458) Mise à jour de sécurité pour Step by Step Interactive Training (KB923723) Mise à jour de sécurité pour Windows XP (KB923689) Mise à jour de sécurité pour Windows XP (KB941569) Mise à jour de sécurité pour Windows XP (KB946648) Mise à jour de sécurité pour Windows XP (KB950759) Mise à jour de sécurité pour Windows XP (KB950760) Mise à jour de sécurité pour Windows XP (KB950762) Mise à jour de sécurité pour Windows XP (KB950974) Mise à jour de sécurité pour Windows XP (KB951066) Mise à jour de sécurité pour Windows XP (KB951376-v2) Mise à jour de sécurité pour Windows XP (KB951376) Mise à jour de sécurité pour Windows XP (KB951698) Mise à jour de sécurité pour Windows XP (KB951748) Mise à jour de sécurité pour Windows XP (KB952954) Mise à jour de sécurité pour Windows XP (KB953838) Mise à jour de sécurité pour Windows XP (KB953839) Mise à jour pour Windows XP (KB951072-v2) Mise à jour pour Windows XP (KB951978) MSXML 4.0 SP2 (KB936181) Neko Bot v1.0 Nero 8 neroxml Norton 360 Norton 360 Norton 360 (Symantec Corporation) Norton 360 HTMLHelp Norton Confidential Core Packard Bell Companion PrintMaster® Deluxe 8.0 RealArcade SafeCast Shared Components Sandlot Games Client Services SCRABBLE® 2005 EDITION Security Update for CAPICOM (KB931906) Security Update for CAPICOM (KB931906) Serif DrawPlus 3.0 Solitaire Poker fr Sonic RecordNow! SPBBC 32bit Spybot - Search & Destroy Symantec Real Time Storage Protection Component Symantec Technical Support Controls SymNet Terayon DOCSIS Modem ubi.com Uninstall Magic Solitaire WebFldrs XP Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool (KB892130) Windows Genuine Advantage Validation Tool (KB892130) Windows Live installer Windows Live Messenger Windows Live Sign-in Assistant Windows Media Format Runtime Windows XP Service Pack 3 Le volume dans le lecteur C s'appelle HDD Le numéro de série du volume est 2083-8F38 Répertoire de C:\Program Files 2008-08-18 17:41 <REP> . 2008-08-18 17:41 <REP> .. 2008-01-24 13:41 <REP> 2004 Mahjongg Lite 3r 2005-02-24 18:53 <REP> 3D Magic Mahjongg 2004-06-23 00:39 <REP> Adobe 2008-01-23 17:26 <REP> Adventure Inlay 2008-08-05 17:04 <REP> Alawar 2005-11-16 18:47 <REP> Ancient TriJong 2006-11-27 17:32 <REP> Aveyond 2006-01-26 11:24 <REP> BFG 2008-06-09 13:32 <REP> bfgclient 2005-03-17 19:18 <REP> Big Fish Games 2008-08-17 16:47 <REP> Big Kahuna Reef 2008-03-03 17:45 <REP> BigFishGames 2006-07-14 17:37 <REP> Boonty 2008-06-29 07:39 <REP> BoontyGames 2004-07-01 17:19 <REP> Borland 2004-06-23 15:33 <REP> Broderbund 2008-06-27 18:49 <REP> Cafe Games 2008-01-08 21:55 <REP> CCleaner 2004-06-23 08:59 <REP> Common Files 2004-06-23 00:39 <REP> ComPlus Applications 2005-03-22 18:16 <REP> Cosmic Bugs 2005-11-09 16:55 <REP> Crystal Path 2005-03-04 15:58 <REP> Cubis Gold 2004-06-23 00:39 <REP> CyberLink 2004-06-29 18:54 <REP> CycleMan 2008-08-03 10:33 <REP> DAEMON Tools Lite 2008-08-03 10:33 <REP> DAEMON Tools Toolbar 2005-02-13 16:59 <REP> Dekovir 2008-01-17 18:12 <REP> Delicious Deluxe 2006-11-30 17:58 <REP> Diner Dash 2 2005-10-25 17:11 <REP> Electrotank 2005-03-01 18:00 <REP> Emperor's Mahjong 2008-01-22 18:19 <REP> Encore 2008-08-17 12:11 <REP> Fichiers communs 2005-06-16 16:18 <REP> GameBubbles 2008-01-25 20:09 <REP> GameHouse 2005-03-01 17:59 <REP> Gekko Mahjongg 2008-08-02 07:24 <REP> Google 2004-06-22 23:17 <REP> Hewlett-Packard 2004-06-22 23:21 <REP> ImageServer 2008-08-13 17:29 <REP> Incredijeux 2004-06-23 09:00 <REP> IncrediMail 2008-08-18 18:08 <REP> Internet Explorer 2008-04-13 13:44 <REP> iWin 2007-07-13 14:12 <REP> Jewel Quest 2006-07-31 15:23 <REP> kedamonoware 2005-02-13 17:00 <REP> Kyodai Mahjongg 2008-08-18 08:48 <REP> LogMeIn 2005-09-07 15:34 <REP> Magic Inlay 2008-08-10 13:07 <REP> Magic Solitaire 2005-11-09 16:54 <REP> Mah Jong Quest 2008-06-27 18:49 <REP> Mes Jeux Téléchargés 2008-08-13 07:20 <REP> Messenger 2004-06-27 11:59 <REP> Micro Application 2008-05-07 18:13 <REP> Microsoft CAPICOM 2.1.0.2 2004-06-23 00:39 <REP> microsoft frontpage 2004-06-23 00:40 <REP> microsoft office 2004-06-23 00:40 <REP> Microsoft Visual Studio 2008-08-02 08:57 <REP> Movie Maker 2005-12-10 12:44 <REP> MSN 2005-04-08 13:58 <REP> MSN Apps 2004-06-23 00:40 <REP> MSN Gaming Zone 2008-08-02 09:18 <REP> MSN Messenger 2008-07-31 08:52 <REP> MSXML 4.0 2008-08-02 11:13 <REP> Nero 2008-08-02 11:23 <REP> NeroInstall.bak 2008-08-02 08:52 <REP> NetMeeting 2008-07-01 11:51 <REP> Norton 360 2008-02-05 17:37 <REP> Oberon Media 2008-08-02 08:52 <REP> Outlook Express 2008-06-08 17:00 <REP> PlayFirst 2005-03-10 17:53 <REP> PopCap Games 2005-02-28 17:09 <REP> Puzzle Railway 2008-02-07 17:43 <REP> Q-bert 2004-06-23 00:40 <REP> QuickTime 2005-10-27 12:32 <REP> Real 2005-02-03 16:03 <REP> ReflexiveArcade 2004-06-23 15:35 <REP> Serif 2004-06-23 00:40 <REP> Services en ligne 2007-12-05 09:36 <REP> Six-Trix 2004-06-23 00:40 <REP> Sonic 2008-07-30 10:09 <REP> Spybot - Search & Destroy 2008-06-20 08:43 <REP> Symantec 2008-02-27 18:03 0 temp01 2004-06-22 22:08 <REP> Terayon 2004-06-29 14:51 <REP> TFC 2005-02-24 18:34 <REP> TryMedia 2008-08-03 10:56 <REP> ubi.com 2008-08-03 10:41 <REP> UBISOFT 2004-06-23 00:40 <REP> Virtual CD v4 SDK 2004-06-23 10:55 <REP> Web Publish 2008-05-06 18:11 <REP> Windows Live 2008-08-02 08:58 <REP> Windows Media Player 2008-08-02 08:52 <REP> Windows NT 2008-06-15 09:12 <REP> Windows Sidebar 2008-07-30 09:42 <REP> WinRAR 2004-06-23 00:40 <REP> xerox 2004-09-30 09:52 <REP> Yahoo! 2008-08-09 06:43 <REP> Zylom Games 1 fichier(s) 0 octets 100 Rép(s) 132,761,899,008 octets libres Le volume dans le lecteur C s'appelle HDD Le numéro de série du volume est 2083-8F38 Répertoire de C:\Program Files\fichiers communs 2008-08-17 12:11 <REP> . 2008-08-17 12:11 <REP> .. 2004-06-22 22:02 <REP> Adobe 2005-05-03 16:14 <REP> BOONTY Shared 2004-06-23 00:39 <REP> Designer 2008-08-03 10:40 <REP> InstallShield 2004-06-22 23:21 <REP> Kodak 2004-11-11 13:07 <REP> Macrovision Shared 2008-06-13 16:36 <REP> Microsoft Shared 2004-06-23 00:39 <REP> MSSoap 2008-08-02 11:16 <REP> Nero 2008-05-04 12:29 <REP> Oberon Media 2004-06-23 00:39 <REP> ODBC 2008-08-03 10:44 <REP> PocketSoft 2005-10-27 12:32 <REP> Real 2006-03-31 17:06 <REP> Sandlot Shared 2005-04-09 13:39 <REP> scanner 2004-06-23 00:39 <REP> Services 2004-06-23 00:39 <REP> SpeechEngines 2004-06-23 00:39 <REP> SureThing Shared 2008-08-18 19:23 <REP> Symantec Shared 2008-08-02 08:52 <REP> System 2004-06-23 00:39 <REP> TVNavigTechnologies Shared 2004-06-23 00:39 <REP> xing shared 0 fichier(s) 0 octets 24 Rép(s) 132,761,894,912 octets libres Le volume dans le lecteur C s'appelle HDD Le numéro de série du volume est 2083-8F38 Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 2004-06-23 00:03 <REP> . 2004-06-23 00:03 <REP> .. 2004-06-23 00:39 <REP> 1033 2004-06-23 00:39 <REP> 1036 2004-06-22 21:58 <REP> 1043 2001-02-15 05:45 1,318,912 MSONSEXT.DLL 2001-02-13 08:23 58,784 MSOSV.DLL 1999-06-03 14:09 122,937 MSOWS409.DLL 2001-03-07 09:00 127,033 MSOWS40c.DLL 2000-08-06 09:04 401,462 MSVCP60.DLL 2001-01-22 03:25 69,632 PKMAXCTL.DLL 2001-01-22 03:25 872,448 PKMCDO.DLL 2001-01-22 03:25 159,744 PKMCORE.DLL 2001-02-07 09:59 106,496 PKMFORMS.DLL 2001-02-12 04:03 684,032 PKMRES.DLL 2001-01-22 03:25 28,672 PKMSSTLB.DLL 2001-01-22 03:25 40,960 PKMTEMPL.DLL 2001-01-22 03:25 24,576 PKMTRACE.DLL 2001-01-22 03:25 86,016 PKMWS.DLL 2001-01-22 03:25 237,568 PROMDEMO.DLL 2001-01-22 03:25 184,320 SECMGR.DLL 2001-01-22 03:25 323,584 VAIDDMGR.DLL 2001-01-22 03:25 32,768 VAIMEM.DLL 18 fichier(s) 4,879,944 octets 5 Rép(s) 132,761,894,912 octets libres Le volume dans le lecteur C s'appelle HDD Le numéro de série du volume est 2083-8F38 Répertoire de C:\Program Files\common files 2004-06-23 08:59 <REP> . 2004-06-23 08:59 <REP> .. 2004-06-23 08:59 <REP> Microsoft Shared 2004-07-31 11:54 <REP> System 0 fichier(s) 0 octets 4 Rép(s) 132,761,894,912 octets libres c:\Compaq\Documents partagés\AirXonix\AirXonixKeygen1_36.exe c:\Compaq\Documents partagés\AirXonix\houseofcardssetup.exe c:\Compaq\Documents partagés\AirXonix\va65d51.exe c:\Compaq\Documents partagés\Break Out 2000\3029\BREAKOUT.EXE c:\Compaq\Documents partagés\Break Out 2000\3029\Breakout2000.exe c:\Compaq\Documents partagés\Break Out 2000\3029\LEVEDIT.EXE c:\Compaq\Documents partagés\Break Out 2000\3029\LevelEditor.exe c:\Documents and Settings\Administrateur\Bureau\Drivers\viahyperion4in1448v.exe c:\Documents and Settings\Administrateur\Bureau\Drivers\WTRemover.exe c:\Documents and Settings\Administrateur\Bureau\MSNFix\incl\catchme.exe c:\Documents and Settings\Administrateur\Bureau\MSNFix\incl\MD5File.exe c:\Documents and Settings\Administrateur\Bureau\MSNFix\incl\Process.exe c:\Documents and Settings\Administrateur\Bureau\MSNFix\incl\setpath.exe c:\Documents and Settings\Administrateur\Bureau\MSNFix\incl\swreg.exe c:\Documents and Settings\Administrateur\Bureau\MSNFix\incl\zip.exe c:\Documents and Settings\All Users\Application Data\AlawarGameBox\update\AAUpdater.exe c:\Documents and Settings\All Users\Application Data\BigFishGamesCache\Upgrade\first-class-flurry-game_s1_l1_gF2484T1L1_d228384856[1].exe c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ddfotg\fr-FR\ddfotg.exe c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\dinerdash2\fr-FR\dinerdash2.exe c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\dreamchronicles\fr-FR\dreamchronicles.exe c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\dreamchronicles\fr-FR\ZylomHost.exe c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\piratepoppers\fr-FR\piratepoppers.exe c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\sweetopia\fr-FR\sweetopia.exe c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\trijinx\fr-FR\TriJinx.exe c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ZylomExtension\HardwareTest.exe c:\Documents and Settings\All Users\Symantec Temporary Files\N360S200FR.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Setup.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Stub.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\FWCfg.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH32\COH32.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH64\COH64.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\MainStub.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\NSWRedir.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\osCheck.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\ScanStub.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpNetMap.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\WSCStub.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\HSLoader.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\isUAC.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\npcLULdr.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\npcLUStb.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\cltUAC.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\SSAutoRN.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\SYMCUW.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\IDS\IdsInst.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\SecHist\MCUI32.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN\comHost.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN64\comHost.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\OPC\SSAutoRN.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\pifCrawl.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\PIFSvc.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SEVINST\Sevntx64.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\buDump.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccApp.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccEvtMgr.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccLgView.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccSetMgr.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccSEUPDT.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccSvcHst.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\ALUNOTIF.EXE c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\ALUSDSVC.EXE c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\AUPDATE.EXE c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\LSETUP.EXE c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\LUALL.EXE c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\LUCBPRXY.EXE c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\LUCheck.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\LUCOMSVR.EXE c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\LuConfig.EXE c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\NotifyHA.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\MSI\wiupdate.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\COExport.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coVisPrx.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\SYMSHARE\COL\COLUpdtr.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Remover\Remover.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Reporter\Reporter.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SEVINST\SEVINST.EXE c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SPBBC\SPBBC32\SYMSHARE\SPBBC\UpdMgr.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SymLnch\SymLnch.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\VCRedist\redist32.exe c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\VCRedist\redist64.exe c:\Documents and Settings\Me Beauraind\Application Data\ubi.com\Core\cabarc.exe c:\Documents and Settings\Me Beauraind\Application Data\ubi.com\Core\GLPatcher2.exe c:\Documents and Settings\Me Beauraind\Bureau\AdventureInlaySetup1.exe c:\Documents and Settings\Me Beauraind\Bureau\bigkahunareef_installer.exe c:\Documents and Settings\Me Beauraind\Bureau\ComboFix.exe c:\Documents and Settings\Me Beauraind\Bureau\fsbl.exe c:\Documents and Settings\Me Beauraind\Bureau\HiJackThis.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\catchme.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\diff.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\dumphive.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\find2.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\Fport.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\grep.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\gzip.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\KProcCheck.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\LFiles.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\LISTDLLS.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\md5sums.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\pslist.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\sigcheck.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\streams.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\swreg.exe c:\Documents and Settings\Me Beauraind\Bureau\DiagHelp\tar.exe c:\Documents and Settings\Me Beauraind\Bureau\Drivers\daemon-tools_daemon_tools_4.30.1_francais_10729.exe c:\Documents and Settings\Me Beauraind\Bureau\Drivers\spybotsd160.exe c:\Documents and Settings\Me Beauraind\Bureau\Drivers\viahyperion4in1448v.exe c:\Documents and Settings\Me Beauraind\Bureau\Drivers\winrar_winrar_3.71_francais_9632.exe c:\Documents and Settings\Me Beauraind\Bureau\Drivers\WTRemover.exe c:\Documents and Settings\Me Beauraind\Bureau\Drivers\Nero 8321 Fr + serial\keygen Nero-8.3.2.1.exe c:\Documents and Settings\Me Beauraind\Bureau\Drivers\Nero 8321 Fr + serial\Nero-8.3.2.1_fra_update.exe c:\Documents and Settings\Me Beauraind\Bureau\Jeux\Dream Chronicles 2\DreamChronicles2Setup.exe c:\Documents and Settings\Me Beauraind\Bureau\Jeux\Dream Chronicles 2\crack dream chronicles 2\dream2.exe c:\Documents and Settings\Me Beauraind\Bureau\Jeux\Scrabble2005\scrabble2005_v1.01_fr.exe c:\Documents and Settings\Me Beauraind\Mes documents\Mes images\Divers\en_alohasolitaire_inst.exe c:\Documents and Settings\Me Beauraind\Mes documents\Mes images\Divers\en_charmsolitaire_inst.exe c:\Documents and Settings\Me Beauraind\Mes documents\Mes images\Divers\shape_solitaire-setup.exe c:\Documents and Settings\Me Beauraind\Mes documents\Mes images\Divers\SnowyLunchRush_1660.exe c:\Documents and Settings\Me Beauraind\Mes documents\Mes images\Nouveau dossier\Nouveau dossier (2)\Divers\en_alohasolitaire_inst.exe c:\Documents and Settings\Me Beauraind\Mes documents\Mes images\Nouveau dossier\Nouveau dossier (2)\Divers\en_charmsolitaire_inst.exe c:\Documents and Settings\Me Beauraind\Mes documents\Mes images\Nouveau dossier\Nouveau dossier (2)\Divers\shape_solitaire-setup.exe c:\Documents and Settings\Me Beauraind\Mes documents\Mes images\Nouveau dossier\Nouveau dossier (2)\Divers\SnowyLunchRush_1660.exe c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll c:\Documents and Settings\All Users\Application Data\Nero\DrWeb\Drweb32.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\AppLU.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\AVLUReg.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\ccCmnLuM.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\ccMSLLuM.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\ccResLuM.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\ccRtkLuM.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\ccSEDLuM.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\CFLUReg.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\COH32LUR.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\COL32LU.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\CW20.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\decluman.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\DRMLUReg.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\FWLUReg.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\hnlureg.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\IV20.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\LUBBReg.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\LUShdsRg.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\LUTPReg.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\NCO20.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\SymLTLRM.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\tpLU32.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\uiLUReg.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\VALUReg.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\WA20.dll c:\Documents and Settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\WP20.dll c:\Documents and Settings\All Users\Application Data\Symantec\SyKnAppS\patch25.dll c:\Documents and Settings\All Users\Application Data\Symantec\SyKnAppS\SyKnAppS.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylomgamesplayer.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\AcesSquare\fr-FR\AcesSquare.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\AcesSquare\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Babel\babel.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Babel\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Babel\fr-FR\babel.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Babel\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\BCASFWeb\fr-FR\bass.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\BCASFWeb\fr-FR\BCASFWeb.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\BCASydWeb\fr-FR\bass.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\BCASydWeb\fr-FR\BCASydWeb.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\bejeweled2\fr-FR\Bejeweled2.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\BigIslandBlends\fr-FR\BigIslandBlends.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\BunnyBounce\fr-FR\bunnybounce.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\BunnyBounce\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Caramba\fr-FR\Caramba.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Caramba\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\chainz2.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\core.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\file.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\gfx2d.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\gfx2d_dd7.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\imglib.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\jpeg.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\logger.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\msvcr71.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\snd3d.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\snd3d_fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chainz2\fr-FR\ui2.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\chuzzle\fr-FR\Chuzzle.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Delicious\fr-FR\delicious.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Delicious\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\delicious2\fr-FR\Delicious2.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\delicious2\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\deliciouswinteredition\fr-FR\deliciouswinteredition.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\deliciouswinteredition\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\dreamchronicles\fr-FR\ZylomAdapter.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ElDorado\fr-FR\Eldorado.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ElDorado\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\FeedingFrenzy\fr-FR\FeedingFrenzy.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\GenericGameExtension\GenericGameExtension.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\hammerheads\fr-FR\hammerheads.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\hotelmahjong\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\hotelmahjong\fr-FR\HotelMahjong.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\insaniquarium\fr-FR\insaniquarium.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\core.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\file.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\gfx2d.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\gfx2d_dd7.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\imglib.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\jpeg.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\logger.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\luxor.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\msvcr71.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\snd3d.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\snd3d_fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\luxor\fr-FR\ui2.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\mahjongescape\fr-FR\bass.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\mahjongescape\fr-FR\mahjongescape.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\mahjongescape\fr-FR\Resource.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\mahjongescapeaj\fr-FR\bass.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\mahjongescapeaj\fr-FR\mahjongescapeaj.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\mahjongescapeaj\fr-FR\Resource.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MahjongFortuna2\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MahjongFortuna2\fr-FR\mahjongfortuna2.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MindMedley\fr-FR\MindMedley.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MumboJumboExtension\MumboJumboExtension.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MysterySolitaireSIWeb\fr-FR\bass.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MysterySolitaireSIWeb\fr-FR\MysterySolitaireSIWeb.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MysterySolitaireSIWeb\fr-FR\Resources.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\MyZylomExtension\MyZylomExtension.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PastimePuzzles\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PastimePuzzles\fr-FR\PastimePuzzles.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PastryPassion\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PastryPassion\fr-FR\PastryPassion.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PharaohsSolitaire\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PharaohsSolitaire\PharaohsSolitaire.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PharaohsSolitaire\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PharaohsSolitaire\fr-FR\PharaohsSolitaire.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\pixelus\fr-FR\Pixelus.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PlayfirstExtension\PlayfirstExtension.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PlaytimeExtension\PlaytimeExtension.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\PopcapExtension\PopcapExtension.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\rainforestadventure\fr-FR\rainforestadventure.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Ribiba\fr-FR\ribiba.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\SafariIsland\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\SafariIsland\fr-FR\SafariIsland.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ShangriLa\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ShangriLa\shangrila.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ShangriLa\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ShangriLa\fr-FR\shangrila.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ShangriLa2\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ShangriLa2\fr-FR\Shangrila2.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\SproutExtension\SproutExtension.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\sunsetstudio\fr-FR\sunsetstudio.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\textexpress2\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\textexpress2\fr-FR\textexpress2.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\TrivialPursuit\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\TrivialPursuit\fr-FR\msvcr71d.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\TrivialPursuit\fr-FR\trivialpursuit.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\TwoOfAKind\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\TwoOfAKind\fr-FR\TwoOfAKind.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Yahtzee\fr-FR\fmod.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Yahtzee\fr-FR\yahtzee.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\Zuma\fr-FR\Zuma.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ZylomDeluxeInstaller\ZylomDeluxeInstaller.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ZylomExtension\ZylomExtension.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\zylom\ZylomSupportExtension\ZylomSupportExtension.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomLoader\zylom\astropop\astropop.dll c:\Documents and Settings\All Users\Application Data\Zylom\ZylomLoader\zylom\Zuma\Zuma.dll c:\Documents and Settings\Me Beauraind\Application Data\AlawarGameBox\temp\rollback\HTMLayout.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-098L-22G2KN550VVG}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-12ET-241L598QQVVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-12ET-241L598QQVVH}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-12ET-241L598QQVVQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-1KFV-23O5NTEJMVRF}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-1KFV-23O5NTEJMVRN}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-1KFV-23O5NTEJMVRU}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-1KFV-23O5NTEJMVSG}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-1KFV-23O5NTEJMVTP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-1KFV-23O5NTEJMVU6}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-1KFV-23O5NTEJMVUJ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0000278T-TT9K-T8DU-1KFV-23O5NTEJMVVF}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVG5}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVGB}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVGP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVHT}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVIP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVK3}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVKA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVKH}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVKO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00009BV5-V6E6-N99D-O8SF-9VRP3OLUMVL6}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-6KK2-254E2EDG6VV2}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-6KK2-254E2EDG6VVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-9MH3-21DVPJ9FCVV6}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-9MH3-26R8QGLT2VVN}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-DNSL-22H2BN66GVVO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-FGJ8-221FGM0UOK3G}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-LCDK-256UOEQ6SVVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-MTNQ-25MJ2E7T6VUM}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-MTNQ-25MJ2E7T6VV0}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-OT7U-252VEQ1T6VVJ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-QFBF-21L0MSNVAVVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-QFBF-21L0MSNVAVVH}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{00013KEU-UKQE-K6V0-QFBF-26K1JL6KQVVK}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{0004LVIV-J73B-KKMS-SCN7-214P13NHIVVG}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-0C15-24GTSFND4VV1}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-0C15-24GTSFND4VVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-79JF-24IHS7M88VVQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-79JF-254CM94A2VVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-7LLS-22TDACKJ0VSO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-7LLS-22TDACKJ0VTN}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-7LLS-22TDACKJ0VU0}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-7LLS-22TDACKJ0VUA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-7LLS-22TDACKJ0VUB}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-7LLS-22TDACKJ0VVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-83VE-238SHC0H2VVH}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-97R9-24PV6P1ROVVC}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-FP6A-215DM52C4VUV}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-FP6A-215DM52C4VV9}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-FP6A-248DTTL0QVVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-IB2C-219EDFQMGVVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-KIUK-2350HRC7OVVQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-LJA7-23N68QP08VVO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-NAAD-26H9E00R0VVL}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-RTNH-21IOLNPESVV9}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-T8BJ-22LI948QUVVG}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-UOH6-232NI3D9QVV1}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG1-UOH6-232NI3D9QVVQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-117O-24P094HPUVVL}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-5MGN-224B6D89UVV7}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-5MGN-224B6D89UVVE}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-5MGN-224B6D89UVVL}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-BTPP-21HGNJ8AQVVQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-C4D7-2608OHPQ6VUF}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-C4D7-2608OHPQ6VV3}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-CB1H-264U84BSAVVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-CB1H-264U84BSAVVI}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-EN9P-222HU02J2VVI}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-FTST-22EV6QAI2VV1}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-KROM-21O9DJL1KVV2}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-LJ35-231UUOKHKVVO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-LS5J-229F8D9V0VVC}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-LS5J-229F8D9V0VVQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-Q64S-2675H2E5QVUC}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-Q64S-2675H2E5QVUL}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-Q64S-2675H2E5QVV0}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-V08M-26E8LC4K2VVE}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG2-V08M-26E8LC4K2VVN}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-2N9K-25RNCPIUKVV9}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-2N9K-25RNCPIUKVVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-4A90-24BL1LF8IVV6}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-4A90-24BL1LF8IVVD}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-4CGG-25UBCLN2KVV1}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-4CGG-25UBCLN2KVVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-7U7M-25RTB0DMEVVM}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-7U7M-26FBSL48IVV5}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-7U7M-26FBSL48IVVF}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-7U7M-26FBSL48IVVN}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-8AT4-258NF6K78VRG}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-8AT4-258NF6K78VSP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-8AT4-258NF6K78VUA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-8AT4-258NF6K78VV2}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-8AT4-258NF6K78VVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-90CN-262FTCDKSVU8}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-90CN-262FTCDKSVUT}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-90CN-262FTCDKSVVF}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-LM58-24TAN8K5GVVI}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-M7KB-24AAHNHOQVVE}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-M7KB-24AAHNHOQVVM}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-NGIN-25I8KVHMGVVG}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-NGIN-25I8KVHMGVVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-NSEA-256L3V7L2VVM}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-RD83-23EFBBCPGVVC}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-RD83-24N1V86BSVVI}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-S3LR-26AMVD9UQVVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-USK1-22JKKIT3EVU9}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-USK1-22JKKIT3EVV2}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-USK1-22JKKIT3EVVD}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-VK8A-25GG67KOIVUJ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-VK8A-25GG67KOIVUS}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-VK8A-25GG67KOIVV3}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG3-VK8A-25GG67KOIVVO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-0ANJ-25JQU97JCVVK}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-7162-239Q3NAHCVU8}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-7162-239Q3NAHCVUJ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-7162-239Q3NAHCVUU}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-7162-239Q3NAHCVVC}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-9VJM-21SJ3RB1CVVM}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-D1JD-22NQ5L514VV4}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-HE44-22Q2HFA54VUU}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-HE44-22Q2HFA54VV7}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-HF34-22MR26IMSVVN}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-JM9C-24JLMUCREVUJ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-KTDR-26GG92B50VVK}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVRV}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVT8}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVTH}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVU2}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVUD}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVV0}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-MO09-24UF17SCEVVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-OIBL-25SSVB6LMVV7}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-QNSB-2186AUNB4VVQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-SA0C-22B8SP58AVUA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-SA0C-22B8SP58AVV3}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-TF4V-26LLBLDDMVVH}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-US8E-26I93FV2MVV0}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG4-US8E-26I93FV2MVVO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-17FO-23BO70OD4VTG}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-17FO-23BO70OD4VUC}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-17FO-23BO70OD4VV8}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-49D7-2630EVQ4IVUQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-49D7-2630EVQ4IVVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-49D7-2630EVQ4IVVI}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-7TJU-26ARF8EJAVVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-BPAV-24QJBB1JIVUR}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-CHL5-24516UNKQ782}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-EF3Q-2491NM57EVVN}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-EG1B-25KGP2UCCVU0}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-EG1B-25KGP2UCCVUB}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-F0KD-22FOQAMAQVVS}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-G5S4-21U70LNBQVVG}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-KO19-25DIJFDG6VUK}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG5-V0BI-21QH2RV14VVR}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-18S6-24RHV5SBEVUU}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-3908-21M0T2ILSVVM}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-3908-221FAN1FOO3H}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-3908-221FAN1FOOEH}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-4GPR-24EQO8A66VVQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-5I21-21UMR3484VVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-5I21-21UMR3484VVO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-6A02-218K72HHIVVO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-7EUN-25M9PALU0VVG}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-7EUN-25M9PALU0VVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-I9DG-237E1S0U4VVI}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-IDVP-227RSBD9QVV0}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-IDVP-227RSBD9QVVD}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-L514-25CJ6NICMVUR}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-LH31-23G9CBQV6VRU}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-LH31-23G9CBQV6VSL}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-LH31-23G9CBQV6VTT}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-LH31-23G9CBQV6VUC}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-LH31-23G9CBQV6VUQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-LH31-23G9CBQV6VVM}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-NHPR-247TGT4QGVVN}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-OIK7-230KFTJUEVVO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-OKQM-24KG7RVO4VTV}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-OKQM-24KG7RVO4VUM}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-OKQM-24KG7RVO4VVE}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-P289-26CQEH5GMVVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-P289-26CQEH5GMVVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-S7TH-22P2K55U4VUU}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG6-S8NN-21QHH63O6VVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG7-7R56-23RS4QKC0VUD}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG7-7R56-23RS4QKC0VUL}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG7-7R56-23RS4QKC0VUV}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG7-7R56-23RS4QKC0VV8}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG7-7R56-23RS4QKC0VVF}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG7-9568-243JELPN2VVD}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG7-9568-243JELPN2VVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG7-DNQC-2205T8IBOVV8}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG7-DNQC-2205T8IBOVVG}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{000HQ7FF-AD7A-3FG7-DNQC-2227NIQAQVVA}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE1-03ON-20KI38S0QVVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE1-51HL-20PR0G666VVQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE1-QCPB-20UAQDUJCVVD}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE1-QCPB-20UAQDUJCVVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE2-C4D7-20FIOB39GVVQ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE3-SM6K-20DE4GEHCVVJ}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE3-TSDC-20R4VMK5UVVP}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE4-NC3L-20GMCIJ2SVVO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE4-QA67-20IOCV7P6VVE}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE5-BDB1-205DPQMIMVVK}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE5-INQH-20B2D80EAVVO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE5-JC3H-20RPQAN08VVL}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE5-RUNH-200OMT85IVUO}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Identities\{002AVPFP-JHLQ-ABE5-RUNH-200OMT85IVVL}\xmlparse.dll c:\Documents and Settings\Me Beauraind\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\DefUtDCD.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\SAUpdt.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\SymHTML.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\SymTheme.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\avCFReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\avCmpCtl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\AVDefMgr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\AVExclu.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\AVifc.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\AVLUReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\AVMail.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\AVModule.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\AVScan.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\cfEPack.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\cfLUCbk.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\CFLUReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\cfV2Pack.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\cuEng.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\cuIEPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\cuMRUPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\cuNSPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\cuTFPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\DRMLUReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\FWAgent.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\FwALEIO.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\FWCFReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\FWCmpCtl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\FWHelper.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\FWLUReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\FwRuleIO.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\FWRulMtn.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\FWSetup.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\HNCmpCtl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\hncore.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\hndisco.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\hnlureg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\ICFMgr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\netmap.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\nnmgr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\patch25.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\PEP2.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\PEP2S.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\QBackup.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Qdcsint2.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SyKnAppS.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SymLTLRM.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SymXML.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\tpLU32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\tpLU64.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\uiLUReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\VALUReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\CF\cltCFRg8.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\CFMan\cfReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH32\AHS.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH32\COH32LUR.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH32\COHClean.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH32\sesHlp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH32\sh0000.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH64\AHS.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH64\COH64LUR.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH64\COHClean.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH64\sesHlp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\COH64\sh0000.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\AVSubmit.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\CfWizCmp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\CLTVault.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\DefUDply.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\DiagRpt.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\IDSUI.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\jwAV.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\jwLU.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\jwNCU.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\jwRC.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\jwVA.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\jwWDF.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\muis.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\NcoUICB.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\NisLVPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\nisopts.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\NTPFW.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\patch25d.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\PgmCtl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\PtchInst.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\RScan.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\RuleUI.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\SetEvtHp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\SNLog.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\SymHTML.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\symlctnk.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpAlert.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpBTPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpBTPlgS.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpCED.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpCntnr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpDataCl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpDataSv.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpEvent.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpIUAMgr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpLUNag.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpMainUI.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpMCPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpPlgXML.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpPrdCtl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpShell.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\tpSvcAV.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\IDSDefs\IDS9xx86.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\IDSDefs\IDSxpx86.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\IDSDefs\Scxpx86.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\IDSDefs\SymIDSI.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\Norton\app\VERDAT\SWPlugin.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\DataPvdr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\Gadget.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\hsui.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\npcLU.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\npcLuCbk.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\npcLUEng.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\PEPEvnt.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\suphtml.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\uiAlert.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\UICntnr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\uiDataCl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\uiGadCtl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\uiHost.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\NPC\uiLicPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\ActComp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\clt06PIN.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\cltBTPgS.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\cltBTPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\cltEndPt.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\cltPIPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\CLTSComp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\CUWUtils.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\EULAComp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\LcPlgXml.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\LicPlug.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\SubComp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\SubStats.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\SymLCUI.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\SymLTCOM.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\SymSubWz.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\OPC\SymUIHlp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMHTML\shtmbase.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMHTML\SymHTML.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SymSC\WSCHlpr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\ISArbit.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\SymSHAx.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\tpCFReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\CCPD-LC\unicows.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\CF\CFMan\VACFReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\FF\FFPrefs.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\MANIFEST\HNCFReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\SecHist\MCMGR32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN\SAM.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN\VACmpCtl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN\VACtrl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN\VAEngn.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN\VAEngnPS.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN\VAMngr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN\VAMngrPS.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN\VAScanPS.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN64\SAM.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN64\VAEngn.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN64\VAEnPS64.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN64\VAMngr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN64\VAMnPS64.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMSHARE\VASCAN64\VAScanPS.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMTHM\sthmbase.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\Setup\SYMTHM\SymTheme.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\CF\ObwCFReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\OPC\CCNComp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\OPC\CLTNetCN.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\OPC\ewoc.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\OPC\ObawPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\OPC\SymHost.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\AlertEng.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\AlertUi.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\dcGlobal.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\dcmhSvar.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\dcProd.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\mhDSA.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\mhSched.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\mhUpgr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\PifEng.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\PifPep06.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\PifPep07.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\PollMgr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\N360\SymLT\PIF_96E2\SymHTML.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\ccCommon\ccCmn64\ccInst64.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\ccCommon\ccCmn64\ccIPC.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\ccCommon\ccCmn64\ccL70U.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\ccCommon\ccCmn64\ccSet.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\ccCommon\ccCmn64\ccSvc.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\ccCommon\ccCmn64\ccVrTrst.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SPBBC\SPBBC64\LUpdate\LUMfests\LUBB64Rg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SPBBC\SPBBC64\LUpdate\LUMfests\LUSh64Rg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SPBBC\SPBBC64\LUpdate\LUMfests\LUTPReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SPBBC\SPBBC64\SYMSHARE\SPBBC\ccTrstPc.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SPBBC\SPBBC64\SYMSHARE\SPBBC\TProcPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SRTSP\SRTSPx64\SYMSHARE\SRTSP\SavRT32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SRTSP\SRTSPx64\SYMSHARE\SRTSP\Srtsp32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SRTSP\SRTSPx64\SYMSHARE\SRTSP\srtUnin.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SymNet\SND_x64\SNDSvc.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SymNet\SND_x64\SNDunin.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SymNet\SND_x64\SymNeti.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Supp64\SymNet\SND_x64\SymRedir.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AppCore\AppCore\AppJMS32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AppCore\AppCore\AppJob32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AppCore\AppCore\AppLU.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AppCore\AppCore\AppMgr32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AppCore\AppCore\AppPlg32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AppCore\AppCore\AppReg32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AppCore\AppCore\AppSet32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AppCore\AppCore\AppTrc32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AV\patch25.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AV\VirusD64\CCERASER.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AV\VirusD64\ECMSVR32.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AV\VirusD64\NAVENG32.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AV\VirusD64\NAVEX32A.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AV\VirusDef\CCERASER.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AV\VirusDef\ECMSVR32.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AV\VirusDef\NAVENG32.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\AV\VirusDef\NAVEX32A.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\buCFReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\buCmpCtl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\buComm.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\buDataCl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\BuEng.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\buIOPart.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\buProv.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\buShell.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\buSvc.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\buUI.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\gearaw32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\gwlangen.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Backup\Backup\gwrks32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccALEng.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccAlert.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccAppPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccCmnLuM.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccEmlPxy.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccErrDsp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccEvtCli.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccEvtPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccInst.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccIPC.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccL70.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccL70U.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccMSLLuM.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccProd.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccProSub.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccResLuM.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccRkSn.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccRtkLuM.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccScanW.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccSEBind.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccSEDLuM.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccSet.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccSetEvt.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccSetPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccSubEng.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccSvc.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccVrTrst.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ccWebWnd.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\dec_abi.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\decluman.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\DefUtDCD.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\ecmldr32.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\msl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\0c01\rcAlert.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\0c01\rcApp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\0c01\rcEmlPxy.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\0c01\rcErrDsp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\0c01\rcLgView.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\ccCommon\ccCommon\0c01\rcSvcHst.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\Help\Help\NRTHelp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\LuccMUI.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\LUCOMPS.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\LUinsDll.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\LuPreCon.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\NETDTCRL.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\PRCCOMPS.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\PRCPS64.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\PRCRGCOM.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\S32LIVE1.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\S32LUIS1.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\S32LUWI1.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\UNRAR.DLL c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\LUpdate\WLUEX\SYSTEM32\capicom.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\coDataPr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\CW20.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\IV20.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\NCO20.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\patch25.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\SyKnAppS.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\WA20.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\WP20.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\AcctMgr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coAcctSv.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coCoreFW.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coCWPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coFFPlgn.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coFSPCtl.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coFSPReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\CoIEPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coParse.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coRegMon.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coSubmit.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coSubXLT.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coUICtlr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coWbAuth.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\coWCID.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\CWBB.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\CWCon.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\CWWLMgr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\DSMigrat.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\IVPlugin.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\NPPCCWkr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\NPPDSMgr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\nppw.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\nppwff.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\PackMgr.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\Patch25d.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\rf.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\rfpxy.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\rfpxy3.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\APP\WALuCbk.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\Symantec\LUREGMAN\COL32LU.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\SYMSHARE\auCOLPwd.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\SYMSHARE\CWBlkLst.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\SYMSHARE\NCOItf.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\SYMSHARE\COL\BBIF.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\NCO\NCO\SYMSHARE\COL\sesHlp.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\PreScan\AvPreScn.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\PreScan\DefInst.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\PreScan\InteScan.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\PreScan\Produnst.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SPBBC\SPBBC32\LUpdate\LUMfests\LUBBReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SPBBC\SPBBC32\LUpdate\LUMfests\LUShdsRg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SPBBC\SPBBC32\LUpdate\LUMfests\LUTPReg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SPBBC\SPBBC32\SYMSHARE\SPBBC\bbRGen.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SPBBC\SPBBC32\SYMSHARE\SPBBC\ccTrstPc.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SPBBC\SPBBC32\SYMSHARE\SPBBC\SPBBCCli.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SPBBC\SPBBC32\SYMSHARE\SPBBC\SPBBCEvt.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SPBBC\SPBBC32\SYMSHARE\SPBBC\TProcPlg.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SRTSP\SRTSP\SYMSHARE\SRTSP\SavRT32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SRTSP\SRTSP\SYMSHARE\SRTSP\Srtsp32.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SRTSP\SRTSP\SYMSHARE\SRTSP\srtUnin.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SymMCEAI\SymMCEAI\SYMSHARE\MceEULA.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SymMCEAI\SymMCEAI\SYMSHARE\SymAdLog.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SymMCEAI\SymMCEAI\SYMSHARE\SymMcCmd.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SymMCEAI\SymMCEAI\SYMSHARE\Vista\SymAddIn.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SymMCEAI\SymMCEAI\SYMSHARE\XP\SymAddIn.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SymNet\SymNet\SNDSvc.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SymNet\SymNet\SNDunin.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SymNet\SymNet\SymNeti.dll c:\Documents and Settings\Me Beauraind\Application Data\Symantec\Layouts\Norton 360\2.0\English\0E743DD31FF89B86DBEBF1C48C5BAFF874A5B132\20080103\Support\SymNet\SymNet\SymRedir.dll c:\Documents and Settings\Me Beauraind\Application Data\ubi.com\Core\artpclnt.dll c:\Documents and Settings\Me Beauraind\Application Data\ubi.com\Core\Patchw32.dll ****** Fin du rapport DiagHelp Veuillez svp envoyer le fichier C:\upload_moi_SN301981140007.tar.gz a l'adresse http://upload.malekal.com