ComboFix 09-01-16.03 - Administrateur 2009-01-17 11:37:58.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.511.287 [GMT 1:00]
Lancé depuis: c:\documents and settings\Administrateur\Bureau\COlaF.exe
AV: avast! antivirus 4.8.1229 [VPS 080923-0] *On-access scanning disabled* (Outdated)
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\Administrateur\Application Data\Seekmo
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\1.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\1386779.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\2829938.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\3741804.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\3748274.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\3755917.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\3783121.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\3786197.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\3893199.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\3894099.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\442905.sdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\domains.txt
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000003674
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000021505
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000023901
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000024721
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000025211
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000025311
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000025650
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026088
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026495
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026566
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000026567
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027037
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027269
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027598
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027805
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027929
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000027969
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000028063
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000032945
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000033024
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000033079
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000037257
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000044868
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000051994
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052615
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000052703
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000055075
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000055539
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000062903
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000064073
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000079045
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000082072
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\1000090886
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\12457
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\133619
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\13546
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15039
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\15737
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\166651
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\17025
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\186757
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\199413
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\26335
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\269926
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\278243
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\302699
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\304155
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\3338
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\33912
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\3405
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\34374
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\39228
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\39917
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\41499
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\42871
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\43128
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\4382
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\451453
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\459509
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\471027
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\51880
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\528757
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\54189
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\5777
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\57904
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\639057
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\63930
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64364
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\64737
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\650283
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\652325
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\696893
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\697059
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705022
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705140
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\705206
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\733622
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\745435
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753017
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753224
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\753553
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\76113
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\78600
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\79989
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\82011
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\8282
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85381
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\85878
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\87151
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\89885
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\93845
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\93910
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\93921
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\TooltipXML\99739
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\dynamic\ustat\3786.dat
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\btntrans.idx
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\btntrans1.dat
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\buttondir.txt
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\components.cdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\cursors.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_1000.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_2000.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_3000.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_bar.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_bbar1.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_logos.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_buttons_other.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\d_icons_weather.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\default.cdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_511745-514279.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_categorize.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_comparison.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_explorer-Mails.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_explorer-people.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_favorites.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Games.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Hide.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_hotbarcom.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Hotmail.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_hsskin.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_Mails.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_new.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_premium.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_searchfor.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_searchgo.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_weather.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Default_yellowpages.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\email-def-511724-548964.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\email-def-511724-9595.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\email-t1-bg.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\icons2.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\ie_games_icon.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\ie_video.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\keywords.idx
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\keywords1.dat
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\layout.cdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\linkpathlegal.txt
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\progress.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\s_icons_buttons.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\sales_buttons.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\seekmo.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\seekmo_ie_menu.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\t2_bg.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\theweb.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\top7.cdf
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\Top7_theweb.mnu
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\1\tsd_bg.res
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\BtnTrans.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\BtnTrans1.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\buttondir.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\cursors.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_1000.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_2000.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_3000.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_bar.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_bbar1.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_logos.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_buttons_other.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\d_icons_weather.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\default.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\email-t1-bg.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\icons2.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\ie_games_icon.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\ie_video.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\keywords.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\keywords1.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\layout.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\linkpathlegal.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\progress.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\s_icons_buttons.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\sales_buttons.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\samplegroups2.txt
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\samplegroups2.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\seekmo.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\seekmo_ie_menu.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\t2_bg.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\top7.xip
c:\documents and settings\Administrateur\Application Data\Seekmo\v3.0\Seekmo\static\DownLoad\tsd_bg.xip
c:\documents and settings\Administrateur\Application Data\ShoppingReport
c:\documents and settings\Administrateur\Application Data\ShoppingReport\cs\Config.xml
c:\documents and settings\Administrateur\Application Data\ShoppingReport\cs\db\Aliases.dbs
c:\documents and settings\Administrateur\Application Data\ShoppingReport\cs\db\Sites.dbs
c:\documents and settings\Administrateur\Application Data\ShoppingReport\cs\dwld\WhiteList.xip
c:\documents and settings\Administrateur\Application Data\ShoppingReport\cs\report\aggr_storage.xml
c:\documents and settings\Administrateur\Application Data\ShoppingReport\cs\report\send_storage.xml
c:\documents and settings\Administrateur\Application Data\ShoppingReport\cs\res1\WhiteList.dbs
c:\documents and settings\Administrateur\Local Settings\Application Data\gssaege.dat
c:\documents and settings\Administrateur\Local Settings\Application Data\gssaege.exe
c:\documents and settings\Administrateur\Local Settings\Application Data\gssaege_nav.dat
c:\documents and settings\Administrateur\Local Settings\Application Data\gssaege_navps.dat
c:\documents and settings\All Users\Application Data\CrucialSoft Ltd
c:\documents and settings\All Users\Application Data\Microsoft\Internet Explorer\DLLs\c.cgm
c:\documents and settings\All Users\Application Data\Microsoft\Internet Explorer\DLLs\ieModule.dll
c:\documents and settings\All Users\Application Data\Microsoft\Internet Explorer\DLLs\nqytqqqren.dll
c:\documents and settings\All Users\Application Data\Microsoft\Protect\svhost.exe
c:\documents and settings\All Users\Application Data\Microsoft\Protect\track.sys
c:\documents and settings\All Users\Application Data\SeekmoSA
c:\documents and settings\All Users\Application Data\SeekmoSA\SeekmoSA.dat
c:\documents and settings\All Users\Application Data\SeekmoSA\SeekmoSA_kyf.dat
c:\documents and settings\All Users\Application Data\SeekmoSA\SeekmoSAAbout.mht
c:\documents and settings\All Users\Application Data\SeekmoSA\SeekmoSAau.dat
c:\documents and settings\All Users\Application Data\SeekmoSA\SeekmoSAEULA.mht
c:\documents and settings\All Users\Application Data\svhost.exe
c:\install\install.exe
c:\program files\seekmo
c:\program files\seekmo\bin\10.0.431.0\copyright.txt
c:\program files\seekmo\bin\10.0.431.0\firefox\extensions\components\npclntax.xpt
c:\program files\seekmo\bin\10.0.431.0\firefox\extensions\install.rdf
c:\program files\Spyware Guard 2009
c:\program files\Spyware Guard 2009\conf.cfg
c:\program files\Spyware Guard 2009\mbase.vdb
c:\program files\Spyware Guard 2009\quarantine.vdb
c:\program files\Spyware Guard 2009\queue.vdb
c:\program files\Spyware Guard 2009\spywareguard.exe
c:\program files\Spyware Guard 2009\uninstall.exe
c:\program files\Spyware Guard 2009\vbase.vdb
c:\windows\accesss.exe
c:\windows\astctl32.ocx
c:\windows\avpcc.dll
c:\windows\clrssn.exe
c:\windows\cpan.dll
c:\windows\mtwirl32.dll
c:\windows\notepad32.exe
c:\windows\olehelp.exe
c:\windows\reged.exe
c:\windows\spoolsystem.exe
c:\windows\sys.com
c:\windows\syscert.exe
c:\windows\sysexplorer.exe
c:\windows\systeem.exe
c:\windows\system32\404Fix.exe
c:\windows\system32\ace16win.dll
c:\windows\system32\Agent.OMZ.Fix.exe
c:\windows\system32\drivers\TDSSpqlt.sys
c:\windows\system32\dumphive.exe
c:\windows\system32\IEDFix.C.exe
c:\windows\system32\IEDFix.exe
c:\windows\system32\kernels64.exe
c:\windows\system32\naproeqmtwjw.dll
c:\windows\system32\o4Patch.exe
c:\windows\system32\Process.exe
c:\windows\system32\SrchSTS.exe
c:\windows\system32\stfv.bin
c:\windows\system32\TDSSbrsr.dll
c:\windows\system32\TDSSlxwp.dll
c:\windows\system32\TDSSnmxh.log
c:\windows\system32\TDSSoiqh.dll
c:\windows\system32\TDSSosvd.dat
c:\windows\system32\TDSSrhym.log
c:\windows\system32\TDSSriqp.dll
c:\windows\system32\TDSSsihc.dll
c:\windows\system32\TDSStkdu.log
c:\windows\system32\TDSSxfum.dll
c:\windows\system32\tmp.reg
c:\windows\system32\VACFix.exe
c:\windows\system32\VCCLSID.exe
c:\windows\system32\winscenter.exe
c:\windows\system32\WS2Fix.exe
c:\windows\systemcritical.exe
c:\windows\time.exe
c:\windows\users32.exe
c:\windows\vmreg.dll
c:\windows\waol.exe
c:\windows\win32e.exe
c:\windows\win64.exe
c:\windows\winajbm.dll
c:\windows\window.exe
c:\windows\winmgnt.exe
c:\windows\x.exe
c:\windows\xplugin.dll
c:\windows\xxxvideo.hta
c:\windows\y.exe
.
((((((((((((((((((((((((((((((((((((((( Pilotes/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Service_TDSSserv.sys
-------\Legacy_TDSSserv.sys
-------\Legacy_BOONTY_GAMES
-------\Service_Boonty Games
((((((((((((((((((((((((((((( Fichiers créés du 2008-12-17 au 2009-01-17 ))))))))))))))))))))))))))))))))))))
.
2009-01-17 08:45 . 2009-01-17 08:45 538 --a------ c:\windows\Raccourci vers $NtUninstallMSCompPackV1$.lnk
2009-01-15 18:25 . 2009-01-16 16:31 <REP> d-------- c:\program files\FindyKill
2009-01-15 16:39 . 2009-01-15 16:39 102,172 --a------ c:\windows\system32\cont_offersfortoday-remove.exe
2009-01-15 15:28 . 2009-01-14 16:11 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-01-15 15:28 . 2009-01-14 16:11 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-01-15 15:27 . 2009-01-15 15:27 <REP> d-------- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-01-14 21:35 . 2009-01-15 15:28 <REP> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-01-14 08:54 . 2009-01-14 08:54 <REP> d-------- c:\program files\Alwil Software
2009-01-14 08:52 . 2009-01-14 08:52 <REP> d-------- c:\program files\EoRezo
2009-01-14 08:52 . 2009-01-17 11:43 <REP> d-------- c:\documents and settings\Administrateur\Application Data\EoRezo
2009-01-09 09:24 . 2004-05-14 16:53 462,848 --a------ c:\windows\system32\ltkrn13n.dll
2009-01-09 09:24 . 2004-05-14 16:53 450,560 --a------ c:\windows\system32\ltimg13n.dll
2009-01-09 09:24 . 2004-05-14 16:53 401,408 --a------ c:\windows\system32\lfcmp13n.dll
2009-01-09 09:24 . 2004-05-14 16:53 299,008 --a------ c:\windows\system32\ltdis13n.dll
2009-01-09 09:24 . 2004-01-12 02:09 206,336 --a------ c:\windows\system32\ltefx13n.dll
2009-01-09 09:24 . 2004-05-14 16:53 163,840 --a------ c:\windows\system32\ltfil13n.dll
2009-01-09 09:24 . 2003-11-04 15:10 69,632 --a------ c:\windows\system32\lfgif13n.dll
2009-01-09 09:24 . 2004-05-14 16:53 57,344 --a------ c:\windows\system32\lfbmp13n.dll
2008-12-22 13:31 . 2009-01-15 16:41 47,587 --a------ c:\windows\system32\ewhasivitts.exe
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-01-17 08:34 --------- d-----w c:\program files\InstantTouch
2009-01-14 09:16 --------- d-----w c:\program files\eChanblard
2009-01-14 07:49 --------- d-----w c:\program files\Fichiers communs\Symantec Shared
2009-01-14 07:44 --------- d-----w c:\documents and settings\All Users\Application Data\Symantec
2009-01-13 16:55 --------- d-----w c:\program files\Windows Media Connect 2
2008-12-22 13:18 --------- d--h--w c:\program files\InstallShield Installation Information
2008-12-11 11:57 333,184 ----a-w c:\windows\system32\drivers\srv.sys
2007-10-16 10:30 27,336 ----a-w c:\documents and settings\Administrateur\Application Data\GDIPFONTCACHEV1.DAT
2007-03-29 12:08 2,072,985 ----a-w c:\documents and settings\Administrateur\aresregular208_installer.exe
2007-02-10 10:37 2,374,384 ----a-w c:\program files\AiRoboForm.exe
2007-02-10 10:36 1,540,293 ----a-w c:\program files\aaw6.exe
.
((((((((((((((((((((((((((((((((( Points de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
REGEDIT4
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C7B76B90-3455-4AE6-A752-EAC4D19689E5}]
2008-11-18 15:15 42792 --a------ c:\program files\EoRezo\EoAdv\EoRezoBHO.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]
"MsnMsgr"="c:\program files\MSN Messenger\MsnMsgr.Exe" [2007-01-19 5674352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2003-09-12 335872]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2003-02-07 114741]
"StorageGuard"="c:\program files\Fichiers communs\Sonic\Update Manager\sgtray.exe" [2003-02-13 155648]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 132496]
"Share-to-Web Namespace Daemon"="c:\program files\HP Share-to-Web\hpgs2wnd.exe" [2002-04-11 69632]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2008-02-19 385024]
"EoEngine"="c:\program files\EoRezo\EoEngine.exe" [2008-11-25 472872]
"SoftwareHelper"="c:\documents and settings\Administrateur\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe" [2008-12-09 368224]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-07-19 78008]
c:\documents and settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-02-13 83360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.l3acm"= l3codecp.acm
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\eChanblard\\emule.exe"=
"c:\\Program Files\\InstantTouch\\bin\\CmCenterV2.exe"=
"c:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"c:\\Program Files\\MSN Messenger\\livecall.exe"=
"c:\\Program Files\\Hercules\\Classic Silver\\Station2.exe"=
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-01-14 78416]
R3 camfilt2;camfilt2;c:\windows\system32\drivers\camfilt2.sys [2008-11-08 94720]
R4 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-01-14 20560]
.
- - - - ORPHELINS SUPPRIMES - - - -
BHO-{00110011-4b0b-44d5-9718-90c88817369b} - (no file)
BHO-{02508C0C-3C34-6749-EA04-9FAD402250D6} - c:\windows\system32\naproeqmtwjw.dll
BHO-{086ae192-23a6-48d6-96ec-715f53797e85} - (no file)
BHO-{11904ce8-632a-4856-a7cc-00b33fe71bd8} - (no file)
BHO-{150fa160-130d-451f-b863-b655061432ba} - (no file)
BHO-{15ACE85C-0BB1-42d1-9E32-07EB0506675A} - (no file)
BHO-{17da0c9e-4a27-4ac5-bb75-5d24b8cdb972} - (no file)
BHO-{1b68470c-2def-493b-8a4a-8e2d81be4ea5} - (no file)
BHO-{1c4da27d-4d52-4465-a089-98e01bb725ca} - (no file)
BHO-{1f48aa48-c53a-4e21-85e7-ac7cc6b5ffb1} - (no file)
BHO-{1f48aa48-c53a-4e21-85e7-ac7cc6b5ffb2} - (no file)
BHO-{202a961f-23ae-42b1-9505-ffe3c818d717} - (no file)
BHO-{2d38a51a-23c9-48a1-a33c-48675aa2b494} - (no file)
BHO-{2e246fae-8420-11d9-870d-000c2917de7f} - (no file)
BHO-{2e9caff6-30c7-4208-8807-e79d4ec6f806} - (no file)
BHO-{479fd0cf-5be9-4c63-8cda-b6d371c67bd5} - (no file)
BHO-{5753791b-f607-48ca-814e-91c14d081f9e} - (no file)
BHO-{7070a8f9-08a4-ca47-0ab0-1eb9e4ee1f3b} - (no file)
BHO-{746455fe-d059-47e7-af0e-140e03f5a447} - (no file)
BHO-{7a7e6d97-b492-4884-9abb-c31281dcc4f2} - (no file)
BHO-{860c2f6b-ca82-4282-9187-beccbb66f0af} - (no file)
BHO-{87185e78-a61b-4db3-965a-3235bbd7a622} - (no file)
BHO-{8dc8f96d-34f7-1501-a2a4-631341aa3ac1} - (no file)
BHO-{9c5875b8-93f3-429d-ff34-660b206d897a} - (no file)
BHO-{a2595f37-48d0-46a1-9b51-478591a97764} - (no file)
BHO-{a6f42cad-2559-48df-af30-89e480af5dfa} - (no file)
BHO-{b212d577-05b7-4963-911e-4a8588160dfa} - (no file)
BHO-{CA0E28FA-1AFD-4C21-A8DC-70EB5BE2F076} - (no file)
BHO-{cf021f40-3e14-23a5-cba2-717765721306} - (no file)
BHO-{d1ac752e-883f-4ed8-8828-b618c3a72152} - (no file)
BHO-{e2b2b5a1-b48c-4886-a318-723916a01024} - (no file)
BHO-{e2ddf680-9905-4dee-8c64-0a5de7fe133c} - (no file)
BHO-{e3eebbe8-9cab-4c76-b26a-747e25ebb4c6} - (no file)
BHO-{e6d5237d-a6c7-4c83-a67f-f9f15586fa62} - (no file)
BHO-{e7afff2a-1b57-49c7-bf6b-e5123394c970} - (no file)
BHO-{FA5B9933-1AE8-4A8D-9822-B20A6CA2B5EC} - c:\windows\system32\asgp32.dll
BHO-{fd9bc004-8331-4457-b830-4759ff704c22} - (no file)
BHO-{fe2d25c1-c1db-4b5e-9390-af1cb5302f32} - (no file)
BHO-{ff1bf4c7-4e08-4a28-a43f-9d60a9f7a880} - (no file)
BHO-{FFFFFFFF-FFFF-FFFF-FFFF-FFFFFFFFFFFF} - (no file)
HKCU-Run-ares - c:\program files\Ares\Ares.exe
HKCU-Run-smqqime - c:\documents and settings\administrateur\local settings\application data\smqqime.exe
HKLM-Run-spywareguard - c:\program files\Spyware Guard 2009\spywareguard.exe
.
------- Examen supplémentaire -------
.
uStart Page = hxxp://www.neufportail.fr/
mStart Page = hxxp://www.ustart.org
IE: E&xporter vers Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
c:\windows\Downloaded Program Files\npwwg.dll - O16 -: {084DAC27-6FA3-4F55-9005-033F2F102F5C}
hxxp://data.jeuxclassiques.com/npwwg.cab
c:\windows\Downloaded Program Files\npwwg.inf
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-17 11:43:09
Windows 5.1.2600 Service Pack 2 NTFS
Recherche de processus cachés ...
Recherche d'éléments en démarrage automatique cachés ...
Recherche de fichiers cachés ...
Scan terminé avec succès
Fichiers cachés: 0
**************************************************************************
.
--------------------- DLLs chargées dans les processus actifs ---------------------
- - - - - - - > 'winlogon.exe'(652)
c:\windows\system32\Ati2evxx.dll
.
------------------------ Autres processus actifs ------------------------
.
c:\windows\system32\ati2evxx.exe
c:\program files\Alwil Software\Avast4\aswUpdSv.exe
c:\program files\Alwil Software\Avast4\ashServ.exe
c:\windows\system32\ati2evxx.exe
c:\program files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
c:\program files\Alwil Software\Avast4\ashDisp.exe
c:\program files\HP Share-to-Web\hpgs2wnf.exe
c:\program files\Alwil Software\Avast4\ashMaiSv.exe
c:\program files\Alwil Software\Avast4\ashWebSv.exe
c:\program files\Alwil Software\Avast4\Setup\avast.setup
.
**************************************************************************
.
Heure de fin: 2009-01-17 11:46:00 - La machine a redémarré
ComboFix-quarantined-files.txt 2009-01-17 10:45:18
Avant-CF: 275,258,167,296 octets libres
Après-CF: 275,282,427,904 octets libres
WindowsXP-KB310994-SP2-Pro-BootDisk-FRA.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professionnel" /noexecute=optin /fastdetect
467 --- E O F --- 2009-01-14 11:37:36
