TheGoo

pour les supports ils sont tous branchés en permanence quasiment

C'est bizarre j'avais fait la Màj pourtant :/ Bon je refais le topo et je reposterais un log sur ce message. PS : c'est màj, BTW, la dernière version est la 6061 J'arrive pas bien a comprendre leur système de maj, j'ai du màj MBAM deux fois, avec deux installation et deux redémarrage et la, après le 2è reboot, il me propose de màj ma DB parcequ'elle est périmée depuis 84jours :/

Voila : Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Version de la base de données: 4052 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 14/03/2011 13:59:27 mbam-log-2011-03-14 (13-59-27).txt Type d'examen: Examen complet (C:\|D:\|L:\|) Elément(s) analysé(s): 373635 Temps écoulé: 2 heure(s), 9 minute(s), 4 seconde(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 0 Clé(s) du Registre infectée(s): 0 Valeur(s) du Registre infectée(s): 0 Elément(s) de données du Registre infecté(s): 0 Dossier(s) infecté(s): 0 Fichier(s) infecté(s): 3 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): (Aucun élément nuisible détecté) Clé(s) du Registre infectée(s): (Aucun élément nuisible détecté) Valeur(s) du Registre infectée(s): (Aucun élément nuisible détecté) Elément(s) de données du Registre infecté(s): (Aucun élément nuisible détecté) Dossier(s) infecté(s): (Aucun élément nuisible détecté) Fichier(s) infecté(s): C:\Documents and Settings\Hugo\Local Settings\temp\xxxyyyzzz.dat (Malware.Trace) -> Quarantined and deleted successfully. C:\Documents and Settings\Hugo\Local Settings\temp\MSN.abc (Malware.Trace) -> Quarantined and deleted successfully. C:\Documents and Settings\All Users\Application Data\sysReserve.ini (Malware.Trace) -> Quarantined and deleted successfully.

Merci pour le déplacement Peut-on m'aider à éradiquer ces saloperies de ma machine ?

Merci beaucoup

voila le ZHPdiag : Cijoint.fr - Service gratuit de dépôt de fichiers* Juste pour savoir, quelle est la ligne du dropper ? Est-ce "O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k" ?

Bonjour, voila le descriptif des dumps : signature : BCCode : 100000d1 BCP1 : 00000000 BCP2 : 00000002 BCP3 : 00000000 BCP4 : 00000000 OSVer : 5_1_2600 SP : 3_0 Product : 768_1 Loc C:\DOCUME~1\****\LOCALS~1\Temp\WER9bef.dir00\Mini031111-01.dmp C:\DOCUME~1\****\LOCALS~1\Temp\WER9bef.dir00\sysdata.xml Sauriez vous l'analyser ? J'ai récemment changé de carte graphique (8600 GT => GTX 460) et j'ai eut quelques problème avec les drivers, est-ce que cela est lié ? Merci d'avance. Maj : voila le HiJackThis : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:20:33, on 11/03/2011 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Tablet\Pen\Pen_TouchService.exe C:\Program Files\Tall Emu\Online Armor\OAcat.exe C:\Program Files\Tall Emu\Online Armor\oasrv.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\LogMeIn Hamachi\hamachi-2.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\Packard Bell\Software Suite\PowerSave\PSPBSSS.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Tablet\Pen\Pen_Tablet.exe C:\Program Files\Tablet\Pen\Pen_TouchUser.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\vsnp2std.exe C:\Program Files\CyberSnipa\Intelliscope Mouse\Panel.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\Program Files\Tall Emu\Online Armor\oaui.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Tablet\Pen\Pen_TabletUser.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Tall Emu\Online Armor\OAhlp.exe C:\Program Files\Tablet\Pen\Pen_Tablet.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\amcap.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Documents and Settings\Hugo\Mes documents\Téléchargements\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157'>http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896'>http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Go!Zilla IE Helper - {E1FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GoZilla\GozCatch.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: (no name) - {35065594-9169-4A34-B167-FC4865038E53} - (no file) O4 - HKLM\..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [intelliScope] "C:\Program Files\CyberSnipa\Intelliscope Mouse\Panel.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [@OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe" O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear O4 - HKLM\..\Policies\Explorer\Run: [Policies] C:\System32\wl32.exe O4 - HKCU\..\Policies\Explorer\Run: [Policies] C:\System32\wl32.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Download with Go!Zilla - file://C:\Program Files\Go!Zilla\download-with-gozilla.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Open PDF in Word - res://C:\Program Files\ScanSoft\PDF Converter\IEShellExt.dll /100 O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{831377C8-2D5B-4075-849E-8B1014751AF1}: NameServer = 212.27.53.252,212.27.54.252 O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Online Armor Helper Service (OAcat) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\OAcat.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PowerSave Service (PowerSave) - Packard Bell Services - C:\Program Files\Packard Bell\Software Suite\PowerSave\PSPBSSS.exe O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_Tablet.exe O23 - Service: Wacom Consumer Touch Service (TouchServicePen) - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_TouchService.exe O23 - Service: wampapache - Unknown owner - c:\wamp\bin\apache\apache2.2.6\bin\httpd.exe (file missing) O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.45\bin\mysqld-nt.exe (file missing) -- End of file - 8990 bytes

Up ! Personne n'a rencontré de problèmes similaires ?

Bonjour Zébulonien, je me trouve face à un problème plutôt étrange et je m'explique : Ce matin mon frangin vient me voir en me disant "Salut fréro, je crois que je me suis fait Hacké tout a l'heure, lol !", il m'explique alors qu'il est parti faire une course laissant son PC (portable je précise) allumé sur la table et qu'à son retour, il y avait une fenêtre d'erreur sans détail avec juste un bouton "ok", après avoir cliqué dessus, le PC reboot, et après le loading de windaube, BSoD pendant 0.5s, redémarrage et re-belotte à l'infini (même après 1h30) on a essayé le mode sans-échec mais en vain, même résultat, du coup mes espoirs d'installer un Rkill et de vous envoyer un rapport Hijackthis s'éffondrent ... J'en appelle donc a vos archives et connaissances afin de savoir si vous n'auriez pas entendu parler d'un problème similaire au nôtre ! Merci d'avance !

Merci pour les infos ! Pour l'instant je n'ai eu le problème qu'une fois, peut-être que c'était du a un petit plantage ... Si cela se renouvelle je mettrais en pratique tes conseils ;D

Bonjour, J'allais commencer une partie de LoL en 3v3 (je ne sais pas si certains connaissent ...) et juste avant que le jeu se lance après que tout le monde soit prêt, j'ai eu un joli BSoD suivi d'un reboot, je vous fais suivre l'erreur en espérant que vous pourrez y voir quelque chose Fichiers mis en causes : C:\DOCUME~1\****\LOCALS~1\Temp\WER6946.dir00\Mini101110-01.dmp C:\DOCUME~1\****\LOCALS~1\Temp\WER6946.dir00\sysdata.xml Signature de l'erreur : BCCode : 1000008e BCP1 : C0000005 BCP2 : 8057059F BCP3 : B200DA9C BCP4 : 00000000 OSVer : 5_1_2600 SP : 3_0 Product : 768_1 Voila, merci d'avance ! A bientôt !

Oui il y en avait un :/ Bon ben tant pis je m'y réinteresserait plus tard, merci pour vos conseils ;D

Alors j'ai mis : - 2 barrettes de 512Mb 1Rx8 PC2 - MoBo GA-T671MG (d'origine) - DD WD1600 160Go - CPU Genuine Intel 1.6GHZ ( d'origine) L'erreur : STOP : 0x0000007B (0xF7C4D528, 0XC0000034, 0X00000000, 0X00000000) J'ai aussi un message qui me dit : " Press escape to cancel loading of d347bus.sys " avant que ça plante précédé du load de drivers.

Ya du neuf ! En fait, la machine tourne a l'extrême ralenti, tout a l'heure j'ai allumé le PC pour voir si en laissant tourner ça changeait quelque chose ... Alors j'allume, j'appuie sur F8 pour le boot menu, je vais manger et quand je reviens j'ai enfin accedé au menu, miracle ! Je peux démarrer le PC, seulement maintenant, quand il boot il me met un BSoD avec une erreur, et cette erreur revient MEME en mode sans echec, je sais pas quoi faire, je pense que je vais tout remettre dans l'ancien boitier ...

Bonjour j'ai récemment remonté un PC a partir d'un PC de récup et du vieux PC de mes parents pour qu'il en ait un qui tourne comme il faut, j'ai donc mis le DD et 2 512Mb dans la nouvelle carcasse mais lorsque je lance la machine, il reste bloqué sur l'écran Packard Bell avec les indications des F2,F3 et F8 (boot menu) mais lorsque j'essaie d'acceder a ce dernier, je n'ai droit qu'à un bip carte mère : / Est-ce que quelqu'un a eu un problème simillaire ? J'ai déja revérifié si j'avais tout bien branché, j'ai écouté le DD et il a l'air de bien tourner, les ventilo tourne nickel, mais le PC ne boote pas :s Merci d'avance !

Oki dok ! Merci encore pour toutes les infos et bonne soirée

j'ai viré les deux intrus avec HJT et le PC tourne bien Pour les crack je peux les supprimer juste via corbeille sans rien avoir a faire d'autre ? Je surf essentiellement avec Firefox mais il faut quand même faire les MAJ pour IE ? Ca voudrait dire que FF utilise IE ? Merci encore pour tous les programmes et pour le fix ^^, est-ce que je peux retrouver une actualité des logiciels de protection sur Zebulon ?

Bon bah un reboot de la freebox a réglé le problème ^^' voila le log : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:49:08, on 28/12/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\Packard Bell\Software Suite\PowerSave\PSPBSSS.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\vsnp2std.exe C:\Program Files\CyberSnipa\Intelliscope Mouse\Panel.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Hugo\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - Default URLSearchHook is missing O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files\Easy Gif Animator Extension\v3.2.0.0\EasyGifAnimator_Toolbar.dll (file missing) O2 - BHO: Go!Zilla IE Helper - {E1FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GoZilla\GozCatch.dll O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files\Easy Gif Animator Extension\v3.2.0.0\EasyGifAnimator_Toolbar.dll (file missing) O4 - HKLM\..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [intelliScope] "C:\Program Files\CyberSnipa\Intelliscope Mouse\Panel.exe" O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Download with Go!Zilla - file://C:\Program Files\Go!Zilla\download-with-gozilla.html O8 - Extra context menu item: Open PDF in Word - res://C:\Program Files\ScanSoft\PDF Converter\IEShellExt.dll /100 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{831377C8-2D5B-4075-849E-8B1014751AF1}: NameServer = 212.27.53.252,212.27.54.252 O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PowerSave Service (PowerSave) - Packard Bell Services - C:\Program Files\Packard Bell\Software Suite\PowerSave\PSPBSSS.exe O23 - Service: wampapache - Unknown owner - c:\wamp\bin\apache\apache2.2.6\bin\httpd.exe (file missing) O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.45\bin\mysqld-nt.exe (file missing) -- End of file - 6508 bytes

Oui je sais bien ^^' mais pour jouer en LAN avec les copains c'est plus pratique Je te fais ça dès que j'ai récupéré le net sur mon PC (mon wi-fi a planté, il est connecté mais ne peut pas faire la liaison avec internet : / ...)

Voila le log : -----------\\ ToolBar S&D 1.2.9 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : AMD Athlon 64 X2 Dual Core Processor 4800+ ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Hugo ( Administrator ) BOOT : Normal boot Antivirus : AntiVir Desktop 9.0.1.32 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:146 Go (Free:57 Go) D:\ (Local Disk) - NTFS - Total:151 Go (Free:50 Go) E:\ (CD or DVD) - UDF - Total:0 Go (Free:0 Go) F:\ (CD or DVD) H:\ (USB) I:\ (USB) J:\ (USB) K:\ (USB) L:\ (Local Disk) - FAT32 - Total:931 Go (Free:886 Go) "C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 ) Option : [2] ( 28/12/2009|14:47 ) -----------\\ SUPPRESSION Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\Dealio\res Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\Dealio\temp Supprime! - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll Supprime! - C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT Supprime! - C:\Program Files\DAEMON Tools Toolbar\Resources Supprime! - C:\Program Files\DAEMON Tools Toolbar\uninst.exe Supprime! - C:\Program Files\DAEMON Tools Toolbar\_DTLite.xml Supprime! - C:\WINDOWS\Prefetch\SEARCHSETTINGS.EXE-253CB611.pf Supprime! - C:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\Search Settings\kb128 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\1px_dark.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\1px_green.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\1px_white.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\234x60storage-dropdownEN.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\4x4 Rally.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\a.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\add_en.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Air Dodge.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\air hockey.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\alias.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Alien.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Alpha Bravo Charlie.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\an.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\arrow_down.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\arrow_red.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\arrow_red2.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\arrow_up.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\autofill.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\avstate.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\b.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\background2.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Balloony.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Battle Tanks.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bgmeteo_results.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_300px.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_cityweather.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_games3.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_games4.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_pub.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_story.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_tblresults.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_ttl.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Black Jack.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bomber bob.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Bowling.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\btn_close.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\btn_minus.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\btn_moreforecast.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Bubble Bobble The Revival.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\c.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\cn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\COMBOSEARCH.acs Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Connect 2.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Cowboy Bullet.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\cubeez.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\curve ball.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\d.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\dictionary.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\dn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\dropdown.css Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\ErrorLog.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\f.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\fish eat fish.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_argentine.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_australia.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_brazil.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_canada.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_china.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_france.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_germany.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_greece.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_hongkong.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_india.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_indonesia.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_italy.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_japan.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_korea.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_mexico.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_netherlands.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_spain.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_sweeden.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_taiwan.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_uk.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_usa.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Flashludo.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Fly plane.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Flyplane.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\fn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\forest challenge 2.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\g.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\galaxians.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\games.js Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\games.xml Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\games1_5.cfg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\gamesmenu.html Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\game_placeholder.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\gaming.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\gn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\gograph.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\gold diggers.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred0.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred0_5.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred1.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred1_5.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred2.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred2_5.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred3.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred3_5.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred4.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred4_5.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred5.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\hideremove.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\highlight.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\hn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Hungry Space.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_aquarius.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_aries.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_cancer.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_capricorn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_gemini.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_leo.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_libra.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_pisces.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_sagittarius.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_scorpio.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_taurus.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_virgo.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\i.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\icotemp_placeholder.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\img_games1_5.cfg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\in.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\indiana jones.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\ipsearch.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\j.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\jn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\k.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\keep ups 2.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\kn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\l.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\ln.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\loading.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\login.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\logo.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\ma balls.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Memory Trial.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\micro tanks.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\mini nitros.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\mini pool 2.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\mini pool.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\mini putt 3.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\minipool2.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Muay Thai.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\n.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\naval gun.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt12612437 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt13027468 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt1444750 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt14527125 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt160406 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt172359 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt174453 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt185468 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt18747140 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt19358703 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt2070718 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt2456859 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt24654796 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt25115250 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt265156 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt28466140 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt28554000 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt2972234 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt32828531 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt34983171 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt3682546 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt36918921 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt38012593 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt39580625 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt39814000 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt41698078 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt429531 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt460468 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt4745328 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt479859 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt667703 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt7462531 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt8772906 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt92546 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\new02.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\NewCfg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\news.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\news.html Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\nn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\o.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Office Paintball v2.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\on.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\overlord.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\p.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\pestscanimg.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\pig wars.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\pn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\popup_off.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\popup_on.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\pubplaceholder.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\q.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\qn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\r.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Raidenx.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\relatedlinks.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\report.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rss.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rss.xsl Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rss1.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rsslib.js Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rssmenu1_5b.zip Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rssmenu1_5b.zip124375 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rssmenu1_5b.zip172187 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rssmenu1_5b.zip187453 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\s.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_dictionnary.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_domain.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_ency.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_ency.bmp3481109 Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_graphic.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_images.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_music.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_news.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_people.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_products.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_software.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_stocks.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_video.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\security.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\show jumping.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo1.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo10.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo11.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo12.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo13.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo14.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo15.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo16.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo17.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo18.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo19.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo2.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo20.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo3.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo4.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo5.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo6.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo7.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo8.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo9.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\siteinfo.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\slider.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\sn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Space explorer.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\spacer.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\stars-red1.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\stars-red2.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\stars-red3.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\stars-red4.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\stars-red5.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Stone Breaker.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\storage.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\sweet tooth.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\t.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\table tennis.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Tanks.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\tetris.JPG Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\thes_search.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\tn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\tools.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Tower Defence.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\toy cars.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\translate.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\u.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\un.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\upgrade.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\userbadsites.txt Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\v.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\virtual cop.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\vmlib.js Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\vmntoolbartb1403.cfg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\vmntoolbartb1500.cfg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\vn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\w.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\war games.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\web.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\wn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\worm.jpg Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\x.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\xp_close_small.gif Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\yahoo.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\z.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\zn.bmp Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\zoom.bmp Supprime! - C:\Program Files\VMNToolbar\install.ico Supprime! - C:\Program Files\VMNToolbar\Thumbs.db Supprime! - C:\Program Files\VMNToolbar\toolbar.ini Supprime! - C:\Program Files\VMNToolbar\uninstall.exe Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\Dealio Supprime! - C:\Program Files\DAEMON Tools Toolbar Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\Search Settings Supprime! - C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar Supprime! - C:\Program Files\VMNToolbar -----------\\ Recherche de Fichiers / Dossiers ... -----------\\ Extensions (Hugo) - {1280606b-2510-4fe0-97ef-9b5a22eafe41} => fission (Hugo) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://google.fr/" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.msn.com/" --------------------\\ Recherche d'autres infections --------------------\\ Cracks & Keygens .. C:\DOCUME~1\Hugo\Application Data\BitTorrent\Call of Duty Modern Warfare 2 STEAM ENGLISH CRACK.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\Call-Of-Duty-Modern-Warfare-2-Keygen-STEAM-Patch-WORKING.torrent.1.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\Call-Of-Duty-Modern-Warfare-2-Keygen-STEAM-Patch-WORKING.torrent.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\CoD6 CRACK $T3@M - blackraz0r -.rar.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\keygen.zip.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\Left_4_Dead_2-Razor1911_REPACK (working crack).torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\Modern Warfare 2 Steam Crack.zip.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\MW2 Clone DVD Crack Guide.torrent C:\DOCUME~1\Hugo\Application Data\LimeWire\.AppSpecialShare\Call.Of.Duty.4.Modern.Warfare.(v1.5).Single.&.Multiplayer.Crack.Incl.KeyGen-XiNiTHAOUS.rar.torrent C:\DOCUME~1\Hugo\Bureau\Torrents\Left 4 Dead 2 + CRACK + FIX RAZOR1911-TORRENTZAP.torrent C:\DOCUME~1\Hugo\Bureau\Torrents\torrentdownloads net Call Of Duty Modern Warfare 2 PROPER CRACK only -SKIDROW 5156373 TPB.torrent C:\DOCUME~1\Hugo\Incomplete\UFJF5AZCECXM3XJZLBTUDWCR2DSXGPOU\.datCall.Of.Duty.4.Modern.Warfare.(v1.5).Single.&.Multiplayer.Crack.Incl.KeyGen-XiNiTHAOUS.rar C:\DOCUME~1\Hugo\Incomplete\UFJF5AZCECXM3XJZLBTUDWCR2DSXGPOU\Call.Of.Duty.4.Modern.Warfare.(v1.5).Single.&.Multiplayer.Crack.Incl.KeyGen-XiNiTHAOUS.rar C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚ C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\Lizez-mwa ! (By AluCarD).txt C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\Patchs C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\QTracker C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\SP & MP crack‚s C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\Patchs\call_of_duty_4_modern_warfare_patch_fr_1_4.exe C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\Patchs\CoD4MW-1.4-1.5MP-PatchSetup.exe C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\QTracker\call_of_duty_4_servers_incl_inactive.txt C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\QTracker\Qtracker 1.bmp C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\QTracker\Qtracker 2.bmp C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\QTracker\Qtracker 3.bmp C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\QTracker\Qtracker471.exe C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\QTracker\Se connecter … un serveur.bmp C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\QTracker\servercache.dat C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\SP & MP crack‚s\iw3mp.exe C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\SP & MP crack‚s\iw3sp.exe C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_bridge C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_cmm C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_desert_ghost_town C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_hillside C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_matroska_beta1 C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_modern_mice C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_pval C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_scrap C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_bridge\mp_bridge.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_bridge\mp_bridge_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_cmm\mp_cmm.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_cmm\mp_cmm_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_desert_ghost_town\mp_desert_ghost_town.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_desert_ghost_town\mp_desert_ghost_town_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_hillside\mp_hillside.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_hillside\mp_hillside_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_matroska_beta1\mp_matroska_beta1.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_matroska_beta1\mp_matroska_beta1_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_modern_mice\mp_modern_mice.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_modern_mice\mp_modern_mice_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_pval\mp_pval.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_pval\mp_pval_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_scrap\mp_scrap.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Crack‚\usermaps\mp_scrap\mp_scrap_load.ff C:\DOCUME~1\Hugo\Recent\Call of Duty Modern Warfare 2 STEAM ENGLISH CRACK.lnk C:\DOCUME~1\Hugo\Recent\Call%20Of%20Duty%20Modern%20Warfare%202%20%20CRACK%20ONLY-SKIDROW.lnk C:\DOCUME~1\Hugo\Recent\Call.of.Duty.6.-.Modern.Warfare.2.ONLINE.STEAM.CRACK._.BLACKRAZ0.lnk C:\DOCUME~1\Hugo\Recent\Call.of.Duty.6_.Modern.Warfare.2.KeyGen.lnk C:\DOCUME~1\Hugo\Recent\Call.of.Duty.Modern.Warfare.2.Multiplayer.Crack-eFx.lnk C:\DOCUME~1\Hugo\Recent\Call.of.Duty.Modern.Warfare.2.STEAM.ENGLISH.READNFO-Crack.lnk C:\DOCUME~1\Hugo\Recent\Left_4_Dead_2-Razor1911_REPACK_(working_crack).5192400.TPB.lnk C:\DOCUME~1\Hugo\Recent\Left_4_Dead_2___Crack___Launcher.5181890.TPB.lnk C:\DOCUME~1\Hugo\Recent\Modern.Warfare.2.Steam.Crack.lnk C:\DOCUME~1\Hugo\Recent\MW2 Clone DVD Crack Guide.lnk C:\DOCUME~1\Hugo\Recent\torrentdownloads net Call of Duty_ Modern Warfare 2 Multiplayer Crack ( Net).lnk 1 - "C:\ToolBar SD\TB_1.txt" - 28/12/2009|12:18 - Option : [1] 2 - "C:\ToolBar SD\TB_2.txt" - 28/12/2009|14:49 - Option : [2] -----------\\ Fin du rapport a 14:49:42,78

Je viens de faire une analyse Spybot S&D (Avant TB S&D) dont voila les resultat : et voila le log ToolBar S&D -----------\\ ToolBar S&D 1.2.9 XP/Vista Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3 X86-based PC ( Multiprocessor Free : AMD Athlon 64 X2 Dual Core Processor 4800+ ) BIOS : Phoenix - AwardBIOS v6.00PG USER : Hugo ( Administrator ) BOOT : Normal boot Antivirus : AntiVir Desktop 9.0.1.32 (Activated) A:\ (USB) C:\ (Local Disk) - NTFS - Total:146 Go (Free:58 Go) D:\ (Local Disk) - NTFS - Total:151 Go (Free:50 Go) E:\ (CD or DVD) - UDF - Total:0 Go (Free:0 Go) H:\ (USB) I:\ (USB) J:\ (USB) K:\ (USB) L:\ (Local Disk) - FAT32 - Total:931 Go (Free:886 Go) "C:\ToolBar SD" ( MAJ : 22-08-2009|18:42 ) Option : [1] ( 28/12/2009|12:17 ) -----------\\ Recherche de Fichiers / Dossiers ... C:\DOCUME~1\Hugo\APPLIC~1\Dealio C:\DOCUME~1\Hugo\APPLIC~1\Dealio\res C:\DOCUME~1\Hugo\APPLIC~1\Dealio\temp C:\DOCUME~1\Hugo\APPLIC~1\Dealio\temp\http___www_dealio_com_rss_coupons-deals_dotd_.xml C:\DOCUME~1\Hugo\APPLIC~1\Dealio\temp\WTFF-14606.log C:\Program Files\DAEMON Tools Toolbar C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT C:\Program Files\DAEMON Tools Toolbar\Resources C:\Program Files\DAEMON Tools Toolbar\uninst.exe C:\Program Files\DAEMON Tools Toolbar\_DTLite.xml C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\chrome C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\chrome.manifest C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\components C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\install.rdf C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\chrome\dttoolbar.jar C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\components\DTToolbarFF.dll C:\Program Files\DAEMON Tools Toolbar\FirefoxDTT\components\DTToolbarFF.xpt C:\Program Files\DAEMON Tools Toolbar\Resources\about.ico C:\Program Files\DAEMON Tools Toolbar\Resources\AboutWindow.ico C:\Program Files\DAEMON Tools Toolbar\Resources\accept.ico C:\Program Files\DAEMON Tools Toolbar\Resources\AddRadioStation.ico C:\Program Files\DAEMON Tools Toolbar\Resources\as.ico C:\Program Files\DAEMON Tools Toolbar\Resources\as.png C:\Program Files\DAEMON Tools Toolbar\Resources\astro.ico C:\Program Files\DAEMON Tools Toolbar\Resources\astroburn_site.ico C:\Program Files\DAEMON Tools Toolbar\Resources\astroLite_16.ico C:\Program Files\DAEMON Tools Toolbar\Resources\astro_buy.ico C:\Program Files\DAEMON Tools Toolbar\Resources\astro_download.ico C:\Program Files\DAEMON Tools Toolbar\Resources\astro_feedback.ico C:\Program Files\DAEMON Tools Toolbar\Resources\astro_forum.ico C:\Program Files\DAEMON Tools Toolbar\Resources\astro_home.ico C:\Program Files\DAEMON Tools Toolbar\Resources\astro_lite.ico C:\Program Files\DAEMON Tools Toolbar\Resources\az.ico C:\Program Files\DAEMON Tools Toolbar\Resources\b1.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\b1.png C:\Program Files\DAEMON Tools Toolbar\Resources\BurnImage.ico C:\Program Files\DAEMON Tools Toolbar\Resources\burn_files.ico C:\Program Files\DAEMON Tools Toolbar\Resources\burn_image.ico C:\Program Files\DAEMON Tools Toolbar\Resources\burn_imgs.ico C:\Program Files\DAEMON Tools Toolbar\Resources\buy.ico C:\Program Files\DAEMON Tools Toolbar\Resources\cond000.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond001.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond003.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond004.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond005.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond006.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond007.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond008.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond009.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond010.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond011.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond019.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond020.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond021.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond022.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond023.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond024.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond025.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond026.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond037.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond038.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond039.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond040.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond041.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond046.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond048.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond050.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond051.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond052.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond053.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond054.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond055.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond056.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond057.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond058.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond059.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond060.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond061.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond062.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond063.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond064.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond065.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond066.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond067.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond068.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond069.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond075.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond076.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond077.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond078.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond079.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond080.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond084.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond085.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond086.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond087.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond088.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond089.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond090.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond091.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond092.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond093.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond094.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond095.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond108.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond109.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond110.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond111.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond112.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond113.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond120.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond121.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond122.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond126.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond127.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond128.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond129.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond130.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond131.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond132.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond133.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond134.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond135.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond136.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond137.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond138.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond140.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond141.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond142.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond143.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond148.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond149.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond152.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond154.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond155.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond156.gif C:\Program Files\DAEMON Tools Toolbar\Resources\cond157.gif C:\Program Files\DAEMON Tools Toolbar\Resources\Config.ico C:\Program Files\DAEMON Tools Toolbar\Resources\d.ico C:\Program Files\DAEMON Tools Toolbar\Resources\d2.ico C:\Program Files\DAEMON Tools Toolbar\Resources\daemon.ico C:\Program Files\DAEMON Tools Toolbar\Resources\daemon_search.ico C:\Program Files\DAEMON Tools Toolbar\Resources\daemon_search_site.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dot_disabled.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\dot_enabled.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\dot_on_over.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\download.ico C:\Program Files\DAEMON Tools Toolbar\Resources\ds.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dsearch.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt-home.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt.ico C:\Program Files\DAEMON Tools Toolbar\Resources\DTPro.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dtt16.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dtt32.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt_about.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt_buy.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt_download.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt_faq.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt_feedback.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt_forum.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt_line.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt_lite.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt_manual.ico C:\Program Files\DAEMON Tools Toolbar\Resources\dt_pro.ico C:\Program Files\DAEMON Tools Toolbar\Resources\Dwnl.ico C:\Program Files\DAEMON Tools Toolbar\Resources\emulation.ico C:\Program Files\DAEMON Tools Toolbar\Resources\favicon.ico C:\Program Files\DAEMON Tools Toolbar\Resources\features.ico C:\Program Files\DAEMON Tools Toolbar\Resources\feedback.ico C:\Program Files\DAEMON Tools Toolbar\Resources\forum.ico C:\Program Files\DAEMON Tools Toolbar\Resources\GameCentrix.ico C:\Program Files\DAEMON Tools Toolbar\Resources\GameCentrixCristals.ico C:\Program Files\DAEMON Tools Toolbar\Resources\GameCentrixDownload.ico C:\Program Files\DAEMON Tools Toolbar\Resources\GameCentrixPlayOnline.ico C:\Program Files\DAEMON Tools Toolbar\Resources\GameCentrixTop.ico C:\Program Files\DAEMON Tools Toolbar\Resources\GameS.ico C:\Program Files\DAEMON Tools Toolbar\Resources\GameSA.ico C:\Program Files\DAEMON Tools Toolbar\Resources\games_search.ico C:\Program Files\DAEMON Tools Toolbar\Resources\games_search_SA.ico C:\Program Files\DAEMON Tools Toolbar\Resources\gct16.ico C:\Program Files\DAEMON Tools Toolbar\Resources\gd.ico C:\Program Files\DAEMON Tools Toolbar\Resources\genre.xml C:\Program Files\DAEMON Tools Toolbar\Resources\globe.ico C:\Program Files\DAEMON Tools Toolbar\Resources\GrabImage.ico C:\Program Files\DAEMON Tools Toolbar\Resources\hb.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\hb.ico C:\Program Files\DAEMON Tools Toolbar\Resources\help.ico C:\Program Files\DAEMON Tools Toolbar\Resources\hide.ico C:\Program Files\DAEMON Tools Toolbar\Resources\home.ico C:\Program Files\DAEMON Tools Toolbar\Resources\ImageS.ico C:\Program Files\DAEMON Tools Toolbar\Resources\ImageSA.ico C:\Program Files\DAEMON Tools Toolbar\Resources\image_search.ico C:\Program Files\DAEMON Tools Toolbar\Resources\image_search_SA.ico C:\Program Files\DAEMON Tools Toolbar\Resources\ip.ico C:\Program Files\DAEMON Tools Toolbar\Resources\lang.xml C:\Program Files\DAEMON Tools Toolbar\Resources\lingvo.ico C:\Program Files\DAEMON Tools Toolbar\Resources\m.ico C:\Program Files\DAEMON Tools Toolbar\Resources\mail.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\mailc.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\mailc_disable.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\mailc_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\mailc_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\mailc_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\mail_disable.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\mail_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\mail_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\mail_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\MenuRadioConfig.ico C:\Program Files\DAEMON Tools Toolbar\Resources\MenuRadioStation.ico C:\Program Files\DAEMON Tools Toolbar\Resources\MenuRSCur.ico C:\Program Files\DAEMON Tools Toolbar\Resources\MenuTr.ico C:\Program Files\DAEMON Tools Toolbar\Resources\mount.ico C:\Program Files\DAEMON Tools Toolbar\Resources\mount_n_drive.ico C:\Program Files\DAEMON Tools Toolbar\Resources\next.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\next_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\next_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\next_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\none.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\none_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\noW.gif C:\Program Files\DAEMON Tools Toolbar\Resources\op.ico C:\Program Files\DAEMON Tools Toolbar\Resources\play.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\play.ico C:\Program Files\DAEMON Tools Toolbar\Resources\play_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\play_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\play_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\pragma.ico C:\Program Files\DAEMON Tools Toolbar\Resources\prev.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\prev_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\prev_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\prev_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\prod.ico C:\Program Files\DAEMON Tools Toolbar\Resources\Radio.ico C:\Program Files\DAEMON Tools Toolbar\Resources\RadioBg.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioBg.ico C:\Program Files\DAEMON Tools Toolbar\Resources\RadioBgMask.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDisp.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDisp_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDown.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDown.ico C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDown_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDown_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioDown_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioE.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioG.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioL.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioLDotMask.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioLeft.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioLeftMask.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioLM.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioM.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioN.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioR.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioR.ico C:\Program Files\DAEMON Tools Toolbar\Resources\RadioRM.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioRU.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioVolume.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioVolume_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioVolume_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioVolume_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\RadioW.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\rbcheck.ico C:\Program Files\DAEMON Tools Toolbar\Resources\rbtxt.ico C:\Program Files\DAEMON Tools Toolbar\Resources\refresh.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\refresh_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\refresh_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\refresh_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\Rss.ico C:\Program Files\DAEMON Tools Toolbar\Resources\Rss1.ico C:\Program Files\DAEMON Tools Toolbar\Resources\RssA.ico C:\Program Files\DAEMON Tools Toolbar\Resources\RssA1.ico C:\Program Files\DAEMON Tools Toolbar\Resources\rssClose.ico C:\Program Files\DAEMON Tools Toolbar\Resources\rssL.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\rssOpen.ico C:\Program Files\DAEMON Tools Toolbar\Resources\RssRefresh.ico C:\Program Files\DAEMON Tools Toolbar\Resources\s2.ico C:\Program Files\DAEMON Tools Toolbar\Resources\show.ico C:\Program Files\DAEMON Tools Toolbar\Resources\size.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\size_lr.ico C:\Program Files\DAEMON Tools Toolbar\Resources\size_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\size_rl.ico C:\Program Files\DAEMON Tools Toolbar\Resources\skins.ico C:\Program Files\DAEMON Tools Toolbar\Resources\spt.ico C:\Program Files\DAEMON Tools Toolbar\Resources\stop.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\stop.ico C:\Program Files\DAEMON Tools Toolbar\Resources\stop_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\stop_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\stop_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\style.ico C:\Program Files\DAEMON Tools Toolbar\Resources\SupportRequest.ico C:\Program Files\DAEMON Tools Toolbar\Resources\time.ico C:\Program Files\DAEMON Tools Toolbar\Resources\timer.ico C:\Program Files\DAEMON Tools Toolbar\Resources\TitleIcon.ico C:\Program Files\DAEMON Tools Toolbar\Resources\toolbar.xml C:\Program Files\DAEMON Tools Toolbar\Resources\trans.ico C:\Program Files\DAEMON Tools Toolbar\Resources\Trash.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\Trash_disable.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\Trash_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\Trash_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\Trash_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\u.ico C:\Program Files\DAEMON Tools Toolbar\Resources\unmount-all.ico C:\Program Files\DAEMON Tools Toolbar\Resources\vol.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\vol.ico C:\Program Files\DAEMON Tools Toolbar\Resources\vol_back.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\vol_dott.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\vol_dott_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\vol_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\vol_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\vol_mute.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\vol_mute_check.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\vol_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\wb.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\wBtClose.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\wBtClose_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\wBtClose_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\wBtClose_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\wBtText.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\wBtText_down.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\wBtText_m.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\wBtText_under.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\Weather_m42.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\Weather_m43.bmp C:\Program Files\DAEMON Tools Toolbar\Resources\WebS.ico C:\Program Files\DAEMON Tools Toolbar\Resources\WebSa.ico C:\Program Files\DAEMON Tools Toolbar\Resources\web_resources.ico C:\Program Files\DAEMON Tools Toolbar\Resources\web_search.ico C:\Program Files\DAEMON Tools Toolbar\Resources\web_search_SA.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi0.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi1.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi10.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi11.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi12.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi13.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi14.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi2.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi3.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi4.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi5.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi6.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi7.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi8.ico C:\Program Files\DAEMON Tools Toolbar\Resources\wi9.ico C:\WINDOWS\Prefetch\SEARCHSETTINGS.EXE-253CB611.pf C:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com C:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com\CHROME\CONTENT\searchsettingsplugin.js C:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com\CHROME\CONTENT\searchsettingsplugin.xul C:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com\CHROME\LOCALE\EN-US\searchsettingsplugin.dtd C:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com\CHROME\LOCALE\EN-US\searchsettingsplugin.properties C:\Program Files\Mozilla Firefox\extensions\search@searchsettings.com\COMPONENTS\SearchSettingsFF.dll C:\DOCUME~1\Hugo\APPLIC~1\Search Settings C:\DOCUME~1\Hugo\APPLIC~1\Search Settings\kb128 C:\DOCUME~1\Hugo\APPLIC~1\Search Settings\kb128\temp C:\DOCUME~1\Hugo\APPLIC~1\Search Settings\kb128\temp\ws-14602.log C:\DOCUME~1\Hugo\APPLIC~1\Search Settings\kb128\temp\ws-14604.log C:\DOCUME~1\Hugo\APPLIC~1\Search Settings\kb128\temp\ws-14605.log C:\DOCUME~1\Hugo\APPLIC~1\Search Settings\kb128\temp\ws-14606.log C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\1px_dark.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\1px_green.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\1px_white.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\234x60storage-dropdownEN.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\4x4 Rally.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\a.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\add_en.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Air Dodge.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\air hockey.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\alias.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Alien.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Alpha Bravo Charlie.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\an.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\arrow_down.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\arrow_red.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\arrow_red2.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\arrow_up.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\autofill.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\avstate.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\b.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\background2.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Balloony.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Battle Tanks.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bgmeteo_results.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_300px.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_cityweather.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_games3.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_games4.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_pub.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_story.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_tblresults.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bg_ttl.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Black Jack.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\bomber bob.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Bowling.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\btn_close.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\btn_minus.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\btn_moreforecast.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Bubble Bobble The Revival.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\c.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\cn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\COMBOSEARCH.acs C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Connect 2.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Cowboy Bullet.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\cubeez.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\curve ball.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\d.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\dictionary.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\dn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\dropdown.css C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\ErrorLog.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\f.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\fish eat fish.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_argentine.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_australia.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_brazil.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_canada.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_china.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_france.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_germany.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_greece.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_hongkong.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_india.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_indonesia.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_italy.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_japan.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_korea.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_mexico.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_netherlands.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_spain.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_sweeden.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_taiwan.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_uk.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\flag_usa.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Flashludo.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Fly plane.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Flyplane.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\fn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\forest challenge 2.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\g.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\galaxians.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\games.js C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\games.xml C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\games1_5.cfg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\gamesmenu.html C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\game_placeholder.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\gaming.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\gn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\gograph.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\gold diggers.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred0.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred0_5.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred1.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred1_5.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred2.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred2_5.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred3.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred3_5.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred4.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred4_5.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\graphred5.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\hideremove.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\highlight.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\hn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Hungry Space.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_aquarius.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_aries.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_cancer.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_capricorn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_gemini.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_leo.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_libra.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_pisces.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_sagittarius.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_scorpio.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_taurus.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\h_virgo.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\i.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\icotemp_placeholder.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\img_games1_5.cfg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\in.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\indiana jones.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\ipsearch.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\j.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\jn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\k.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\keep ups 2.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\kn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\l.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\ln.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\loading.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\login.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\logo.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\ma balls.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Memory Trial.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\micro tanks.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\mini nitros.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\mini pool 2.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\mini pool.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\mini putt 3.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\minipool2.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Muay Thai.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\n.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\naval gun.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt12612437 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt13027468 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt1444750 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt14527125 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt160406 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt172359 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt174453 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt185468 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt18747140 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt19358703 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt2070718 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt2456859 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt24654796 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt25115250 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt265156 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt28466140 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt28554000 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt2972234 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt32828531 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt34983171 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt3682546 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt36918921 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt38012593 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt39580625 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt39814000 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt41698078 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt429531 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt460468 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt4745328 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt479859 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt667703 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt7462531 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt8772906 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\New York_NY_weather.txt92546 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\new02.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\NewCfg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\news.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\news.html C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\nn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\o.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Office Paintball v2.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\on.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\overlord.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\p.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\pestscanimg.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\pig wars.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\pn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\popup_off.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\popup_on.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\pubplaceholder.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\q.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\qn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\r.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Raidenx.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\relatedlinks.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\report.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rss.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rss.xsl C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rss1.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rsslib.js C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rssmenu1_5b.zip C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rssmenu1_5b.zip124375 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rssmenu1_5b.zip172187 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\rssmenu1_5b.zip187453 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\s.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_dictionnary.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_domain.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_ency.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_ency.bmp3481109 C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_graphic.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_images.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_music.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_news.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_people.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_products.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_software.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_stocks.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\search_video.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\security.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\show jumping.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo1.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo10.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo11.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo12.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo13.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo14.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo15.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo16.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo17.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo18.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo19.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo2.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo20.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo3.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo4.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo5.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo6.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo7.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo8.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Sinfo9.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\siteinfo.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\slider.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\sn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Space explorer.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\spacer.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\stars-red1.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\stars-red2.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\stars-red3.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\stars-red4.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\stars-red5.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Stone Breaker.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\storage.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\sweet tooth.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\t.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\table tennis.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Tanks.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\tetris.JPG C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\thes_search.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\tn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\tools.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\Tower Defence.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\toy cars.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\translate.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\u.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\un.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\upgrade.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\userbadsites.txt C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\v.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\virtual cop.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\vmlib.js C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\vmntoolbartb1403.cfg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\vmntoolbartb1500.cfg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\vn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\w.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\war games.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\web.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\wn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\worm.jpg C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\x.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\xp_close_small.gif C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\yahoo.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\z.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\zn.bmp C:\DOCUME~1\Hugo\APPLIC~1\VMNToolbar\zoom.bmp C:\Program Files\VMNToolbar C:\Program Files\VMNToolbar\install.ico C:\Program Files\VMNToolbar\Thumbs.db C:\Program Files\VMNToolbar\toolbar.ini C:\Program Files\VMNToolbar\uninstall.exe -----------\\ Extensions (Hugo) - {1280606b-2510-4fe0-97ef-9b5a22eafe41} => fission (Hugo) - {3112ca9c-de6d-4884-a869-9855de68056c} => google-toolbar -----------\\ [..\Internet Explorer\Main] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Local Page"="C:\\WINDOWS\\system32\\blank.htm" "Start Page"="http://google.fr/" "Search Page"="http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157" "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"'>http://go.microsoft.com/fwlink/?LinkId=54896" "Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896" "Start Page"="http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home" --------------------\\ Recherche d'autres infections --------------------\\ Cracks & Keygens .. C:\DOCUME~1\Hugo\Application Data\BitTorrent\Call of Duty Modern Warfare 2 STEAM ENGLISH CRACK.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\Call-Of-Duty-Modern-Warfare-2-Keygen-STEAM-Patch-WORKING.torrent.1.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\Call-Of-Duty-Modern-Warfare-2-Keygen-STEAM-Patch-WORKING.torrent.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\CoD6 CRACK $T3@M - blackraz0r -.rar.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\keygen.zip.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\Left_4_Dead_2-Razor1911_REPACK (working crack).torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\Modern Warfare 2 Steam Crack.zip.torrent C:\DOCUME~1\Hugo\Application Data\BitTorrent\MW2 Clone DVD Crack Guide.torrent C:\DOCUME~1\Hugo\Application Data\LimeWire\.AppSpecialShare\Call.Of.Duty.4.Modern.Warfare.(v1.5).Single.&.Multiplayer.Crack.Incl.KeyGen-XiNiTHAOUS.rar.torrent C:\DOCUME~1\Hugo\Bureau\Torrents\Left 4 Dead 2 + CRACK + FIX RAZOR1911-TORRENTZAP.torrent C:\DOCUME~1\Hugo\Bureau\Torrents\torrentdownloads net Call Of Duty Modern Warfare 2 PROPER CRACK only -SKIDROW 5156373 TPB.torrent C:\DOCUME~1\Hugo\Incomplete\UFJF5AZCECXM3XJZLBTUDWCR2DSXGPOU\.datCall.Of.Duty.4.Modern.Warfare.(v1.5).Single.&.Multiplayer.Crack.Incl.KeyGen-XiNiTHAOUS.rar C:\DOCUME~1\Hugo\Incomplete\UFJF5AZCECXM3XJZLBTUDWCR2DSXGPOU\Call.Of.Duty.4.Modern.Warfare.(v1.5).Single.&.Multiplayer.Crack.Incl.KeyGen-XiNiTHAOUS.rar C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\Lizez-mwa ! (By AluCarD).txt C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\Patchs C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\QTracker C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\SP & MP crackés C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\Patchs\call_of_duty_4_modern_warfare_patch_fr_1_4.exe C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\Patchs\CoD4MW-1.4-1.5MP-PatchSetup.exe C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\QTracker\call_of_duty_4_servers_incl_inactive.txt C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\QTracker\Qtracker 1.bmp C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\QTracker\Qtracker 2.bmp C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\QTracker\Qtracker 3.bmp C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\QTracker\Qtracker471.exe C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\QTracker\Se connecter à un serveur.bmp C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\QTracker\servercache.dat C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\SP & MP crackés\iw3mp.exe C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\SP & MP crackés\iw3sp.exe C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_bridge C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_cmm C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_desert_ghost_town C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_hillside C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_matroska_beta1 C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_modern_mice C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_pval C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_scrap C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_bridge\mp_bridge.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_bridge\mp_bridge_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_cmm\mp_cmm.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_cmm\mp_cmm_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_desert_ghost_town\mp_desert_ghost_town.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_desert_ghost_town\mp_desert_ghost_town_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_hillside\mp_hillside.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_hillside\mp_hillside_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_matroska_beta1\mp_matroska_beta1.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_matroska_beta1\mp_matroska_beta1_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_modern_mice\mp_modern_mice.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_modern_mice\mp_modern_mice_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_pval\mp_pval.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_pval\mp_pval_load.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_scrap\mp_scrap.ff C:\DOCUME~1\Hugo\Local Settings\Application Data\Microsoft\Messenger\Clad_92@hotmail.com\Sharing Folders\alanlonguet@hotmail.fr\CoD 4 Cracké\usermaps\mp_scrap\mp_scrap_load.ff C:\DOCUME~1\Hugo\Recent\Call of Duty Modern Warfare 2 STEAM ENGLISH CRACK.lnk C:\DOCUME~1\Hugo\Recent\Call%20Of%20Duty%20Modern%20Warfare%202%20%20CRACK%20ONLY-SKIDROW.lnk C:\DOCUME~1\Hugo\Recent\Call.of.Duty.6.-.Modern.Warfare.2.ONLINE.STEAM.CRACK._.BLACKRAZ0.lnk C:\DOCUME~1\Hugo\Recent\Call.of.Duty.6_.Modern.Warfare.2.KeyGen.lnk C:\DOCUME~1\Hugo\Recent\Call.of.Duty.Modern.Warfare.2.Multiplayer.Crack-eFx.lnk C:\DOCUME~1\Hugo\Recent\Call.of.Duty.Modern.Warfare.2.STEAM.ENGLISH.READNFO-Crack.lnk C:\DOCUME~1\Hugo\Recent\Left_4_Dead_2-Razor1911_REPACK_(working_crack).5192400.TPB.lnk C:\DOCUME~1\Hugo\Recent\Left_4_Dead_2___Crack___Launcher.5181890.TPB.lnk C:\DOCUME~1\Hugo\Recent\Modern.Warfare.2.Steam.Crack.lnk C:\DOCUME~1\Hugo\Recent\MW2 Clone DVD Crack Guide.lnk C:\DOCUME~1\Hugo\Recent\torrentdownloads net Call of Duty_ Modern Warfare 2 Multiplayer Crack ( Net).lnk 1 - "C:\ToolBar SD\TB_1.txt" - 28/12/2009|12:18 - Option : [1] -----------\\ Fin du rapport a 12:18:21,01

Voila le log combofix Je n'ai pas pu mettre la console de récup car il n'a pas voulu se connecter a internet (je suis en wifi il n'a pas du pouvoir lancer la connexion :s) Et j'ia eu des ptits problème avec Avira :/ ComboFix 09-12-27.03 - Hugo 28/12/2009 11:52:58.1.2 - x86 Microsoft Windows XP Édition familiale 5.1.2600.3.1252.33.1036.18.2046.1587 [GMT 1:00] Lancé depuis: c:\documents and settings\Hugo\Bureau\ComboFix.exe AV: AntiVir Desktop *On-access scanning enabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7} AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !! . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\LOG.TXT c:\program files\Dealio Toolbar c:\program files\Dealio Toolbar\config.ini c:\program files\Dealio Toolbar\DealioToolbarIE.dll c:\program files\Dealio Toolbar\Res\amazon.gif c:\program files\Dealio Toolbar\Res\apple.gif c:\program files\Dealio Toolbar\Res\barnes.gif c:\program files\Dealio Toolbar\Res\bestbuy.gif c:\program files\Dealio Toolbar\Res\dealio_logo.gif c:\program files\Dealio Toolbar\Res\dealio_logo_hover.gif c:\program files\Dealio Toolbar\Res\ebay.gif c:\program files\Dealio Toolbar\Res\icon_settings.gif c:\program files\Dealio Toolbar\Res\macys.gif c:\program files\Dealio Toolbar\Res\newegg.gif c:\program files\Dealio Toolbar\Res\overstock.gif c:\program files\Dealio Toolbar\Res\search-button-hover.gif c:\program files\Dealio Toolbar\Res\search-button.gif c:\program files\Dealio Toolbar\Res\search-chevron-hover.gif c:\program files\Dealio Toolbar\Res\search-chevron.gif c:\program files\Dealio Toolbar\Res\search_amazon.gif c:\program files\Dealio Toolbar\Res\search_dealio.gif c:\program files\Dealio Toolbar\Res\search_ebay.gif c:\program files\Dealio Toolbar\Res\search_yahoo.gif c:\program files\Dealio Toolbar\Res\separator.gif c:\program files\Dealio Toolbar\Res\target.gif c:\program files\Dealio Toolbar\Res\walmart.gif c:\program files\Dealio Toolbar\Res\widgets.xml c:\program files\Dealio Toolbar\SearchSettingsKit.exe c:\program files\Dealio Toolbar\WidgiHelper.exe c:\program files\Search Settings c:\program files\Search Settings\kb128\SeARchsettings.dll c:\program files\Search Settings\kb128\SearchSettingsRes409.dll c:\program files\Search Settings\SearchSettings.exe c:\recycler\S-1-5-21-2052111302-1935655697-839522115-1003 c:\windows\desktop c:\windows\desktop\world_of_warcraft_patch_v2.1.0_francais_37227.exe.FDPART c:\windows\system32\5322648.dll c:\windows\system32\drivers\H8SRTxmyyxrhxoc.sys c:\windows\system32\H8SRTkbebdjbpjd.dll c:\windows\system32\H8SRTkeldijjqit.dll c:\windows\system32\H8SRTulkmovygvo.dat c:\windows\system32\krl32mainweq.dll c:\windows\system32\srcr.dat . ((((((((((((((((((((((((((((( Fichiers créés du 2009-11-28 au 2009-12-28 )))))))))))))))))))))))))))))))))))) . 2009-12-27 21:48 . 2009-12-27 21:48 -------- d-----w- c:\documents and settings\Hugo\Application Data\Malwarebytes 2009-12-27 21:48 . 2009-12-03 15:14 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-27 21:48 . 2009-12-27 21:48 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-27 21:48 . 2009-12-27 21:48 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-12-27 21:48 . 2009-12-03 15:13 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-12-23 10:48 . 2009-12-23 10:49 -------- d-----w- c:\documents and settings\Hugo\Local Settings\Application Data\Packard Bell 2009-12-23 10:48 . 2009-12-23 10:48 -------- d-----w- c:\program files\Packard Bell 2009-12-23 10:47 . 2009-12-23 10:48 -------- d-----w- c:\program files\Packard Bell External HDD 2009-12-21 21:15 . 2009-12-16 13:42 43008 ----a-w- c:\documents and settings\Hugo\Application Data\Mozilla\Firefox\Profiles\avtj5yzp.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll 2009-12-21 21:15 . 2009-12-16 13:42 340480 ----a-w- c:\documents and settings\Hugo\Application Data\Mozilla\Firefox\Profiles\avtj5yzp.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff2.dll 2009-12-21 21:15 . 2009-12-16 13:41 346624 ----a-w- c:\documents and settings\Hugo\Application Data\Mozilla\Firefox\Profiles\avtj5yzp.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff3.dll 2009-12-21 21:15 . 2009-12-16 13:42 872960 ----a-w- c:\documents and settings\Hugo\Application Data\Mozilla\Firefox\Profiles\avtj5yzp.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll 2009-12-06 18:13 . 2009-12-06 18:13 -------- d-----w- c:\documents and settings\Hugo\Application Data\Search Settings 2009-12-06 18:13 . 2009-12-06 18:13 -------- d-----w- c:\documents and settings\Hugo\Application Data\Dealio 2009-12-06 18:06 . 2005-03-11 17:37 1986560 ----a-w- c:\windows\system32\AudFile.dll 2009-12-06 18:06 . 2005-03-10 16:00 454656 ----a-w- c:\windows\system32\AudioRecord.dll 2009-12-06 18:06 . 2005-02-24 15:21 458752 ----a-w- c:\windows\system32\AudPlayer.dll 2009-12-06 18:06 . 2005-02-24 12:11 479232 ----a-w- c:\windows\system32\AudioVisu.dll 2009-12-06 18:06 . 2005-02-24 12:11 1212416 ----a-w- c:\windows\system32\AudioInfos.dll 2009-12-06 18:06 . 2005-02-24 12:10 417792 ----a-w- c:\windows\system32\AudDisplay.dll 2009-12-06 18:06 . 2005-02-24 11:51 348160 ----a-w- c:\windows\system32\WMAFile.dll 2009-12-06 18:06 . 2008-09-24 20:33 484352 ----a-w- c:\windows\system32\lame_enc.dll 2009-12-06 18:06 . 2005-02-24 12:10 2084864 ----a-w- c:\windows\system32\AudDesign.dll 2009-12-06 17:17 . 2009-12-06 17:17 -------- d-----w- c:\program files\Audacity 2009-12-05 17:19 . 2009-12-05 17:22 -------- d-----w- C:\temp 2009-12-05 16:45 . 2009-12-21 17:51 -------- d-----w- c:\program files\Steam 2009-11-29 16:10 . 2009-11-29 16:10 -------- d-----w- c:\documents and settings\All Users\Application Data\NVIDIA Corporation 2009-11-29 16:10 . 2009-11-29 16:12 -------- d-----w- c:\program files\NVIDIA Corporation 2009-11-29 16:08 . 2009-11-21 02:34 69632 ----a-w- c:\windows\system32\OpenCL.dll 2009-11-29 16:08 . 2009-11-21 02:34 2259560 ----a-w- c:\windows\system32\nvcuvid.dll 2009-11-29 16:08 . 2009-11-21 02:34 1989224 ----a-w- c:\windows\system32\nvcuvenc.dll 2009-11-29 16:08 . 2009-11-21 02:34 11374592 ----a-w- c:\windows\system32\nvcompiler.dll 2009-11-29 16:08 . 2009-11-21 02:34 2293286 ----a-w- c:\windows\system32\nvdata.bin 2009-11-29 15:41 . 2009-11-29 15:41 290816 ----a-w- c:\documents and settings\Hugo\Application Data\SystemRequirementsLab\SRLProxy_nvd_4.dll 2009-11-29 15:41 . 2009-11-29 15:41 290816 ----a-w- c:\documents and settings\Hugo\Application Data\SystemRequirementsLab\SRLProxy_nvd_3.dll 2009-11-29 15:41 . 2009-11-29 15:41 290816 ----a-w- c:\documents and settings\Hugo\Application Data\SystemRequirementsLab\SRLProxy_nvd_2.dll 2009-11-29 15:41 . 2009-11-29 15:41 290816 ----a-w- c:\documents and settings\Hugo\Application Data\SystemRequirementsLab\SRLProxy_nvd_1.dll . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2009-12-27 23:32 . 2008-06-14 18:28 1 ----a-w- c:\documents and settings\Hugo\Application Data\OpenOffice.org2\user\uno_packages\cache\stamp.sys 2009-12-27 23:31 . 2008-06-14 18:27 -------- d-----w- c:\documents and settings\Hugo\Application Data\OpenOffice.org2 2009-12-27 23:27 . 2007-02-12 16:29 -------- d-----w- c:\program files\Spybot - Search & Destroy 2009-12-27 22:31 . 2009-10-03 18:18 -------- d-----w- c:\documents and settings\Hugo\Application Data\vlc 2009-12-27 22:08 . 2008-06-30 11:08 -------- d-----w- c:\documents and settings\Hugo\Application Data\dvdcss 2009-12-27 15:44 . 2008-04-13 06:48 22328 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2009-12-27 15:44 . 2008-04-13 06:48 103736 ----a-w- c:\windows\system32\PnkBstrB.exe 2009-12-27 15:41 . 2007-03-07 08:36 -------- d-----w- c:\program files\Warcraft III 2009-12-19 22:48 . 2009-03-27 20:55 -------- d-----w- c:\documents and settings\Hugo\Application Data\BitTorrent 2009-12-12 12:13 . 2008-06-30 16:03 210504 ----a-w- c:\windows\War3Unin.dat 2009-12-11 16:19 . 2009-09-27 17:39 56816 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2009-12-06 18:06 . 2007-11-10 21:23 -------- d-----w- c:\program files\Free Audio Pack 2009-12-06 17:45 . 2009-06-22 19:34 -------- d-----w- c:\documents and settings\Hugo\Application Data\Audacity 2009-12-05 11:21 . 2009-09-18 18:44 -------- d-----w- c:\program files\Activision 2009-12-05 11:06 . 2008-12-25 15:43 -------- d-----w- c:\documents and settings\Hugo\Application Data\DAEMON Tools Lite 2009-12-05 11:03 . 2008-12-25 15:45 -------- d-----w- c:\program files\DAEMON Tools Lite 2009-12-05 11:01 . 2008-12-25 15:45 -------- d-----w- c:\program files\DAEMON Tools Toolbar 2009-12-05 11:00 . 2008-12-25 15:43 691696 ----a-w- c:\windows\system32\drivers\sptd.sys 2009-12-05 10:59 . 2008-12-25 15:45 -------- d-----w- c:\documents and settings\All Users\Application Data\DAEMON Tools Lite 2009-11-29 16:11 . 2008-09-27 09:03 -------- d-----w- c:\program files\Fichiers communs\Wise Installation Wizard 2009-11-29 16:11 . 2009-01-17 13:32 -------- d-----w- c:\program files\AGEIA Technologies 2009-11-29 15:41 . 2009-01-16 20:06 -------- d-----w- c:\program files\SystemRequirementsLab 2009-11-29 15:41 . 2009-01-16 20:06 -------- d-----w- c:\documents and settings\Hugo\Application Data\SystemRequirementsLab 2009-11-24 15:39 . 2009-11-24 15:39 1093064 ----a-w- c:\documents and settings\Hugo\Application Data\Mozilla\Firefox\Profiles\avtj5yzp.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll 2009-11-22 14:39 . 2007-05-11 16:13 -------- d-----w- c:\program files\Messenger Plus! Live 2009-11-21 02:34 . 2008-12-25 23:08 4038656 ----a-w- c:\windows\system32\nvcuda.dll 2009-11-21 02:34 . 2006-06-01 09:22 6282752 ----a-w- c:\windows\system32\nv4_disp.dll 2009-11-21 02:34 . 2006-06-01 09:22 182888 ----a-w- c:\windows\system32\nvcodins.dll 2009-11-21 02:34 . 2006-06-01 09:22 182888 ----a-w- c:\windows\system32\nvcod.dll 2009-11-21 02:34 . 2006-06-01 09:22 13602816 ----a-w- c:\windows\system32\nvoglnt.dll 2009-11-21 02:34 . 2006-06-01 09:22 1056768 ----a-w- c:\windows\system32\nvapi.dll 2009-11-21 02:34 . 2006-06-01 09:22 10235968 ----a-w- c:\windows\system32\drivers\nv4_mini.sys 2009-11-21 02:34 . 2003-01-01 01:06 592488 ----a-w- c:\windows\system32\nvudisp.exe 2009-11-19 20:42 . 2003-01-01 01:05 592488 ----a-w- c:\windows\system32\NVUNINST.EXE 2009-11-15 16:00 . 2007-02-12 16:29 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2009-11-07 11:40 . 2003-03-08 03:19 61336 ----a-w- c:\documents and settings\Hugo\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-11-07 11:40 . 2007-06-17 14:37 -------- d-----w- c:\program files\Windows Live 2009-11-07 11:39 . 2009-11-07 11:39 -------- d-----w- c:\program files\Microsoft 2009-11-07 11:39 . 2009-11-07 11:39 -------- d-----w- c:\program files\Windows Live SkyDrive 2009-11-07 11:34 . 2009-11-07 11:34 -------- d-----w- c:\program files\Fichiers communs\Windows Live 2009-11-04 09:14 . 2009-11-04 09:14 -------- d-----w- c:\program files\Avira 2009-11-04 09:14 . 2009-11-04 09:14 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira 2009-11-03 13:37 . 2009-11-03 13:37 -------- d-----w- c:\program files\Alwil Software 2009-10-25 09:22 . 2004-08-05 12:00 85248 ----a-w- c:\windows\system32\perfc00C.dat 2009-10-25 09:22 . 2004-08-05 12:00 510284 ----a-w- c:\windows\system32\perfh00C.dat 2009-05-01 21:02 . 2009-05-01 21:02 1044480 ----a-w- c:\program files\mozilla firefox\plugins\libdivx.dll 2009-05-01 21:02 . 2009-05-01 21:02 200704 ----a-w- c:\program files\mozilla firefox\plugins\ssldivx.dll 2008-12-25 15:50 . 2008-12-25 15:48 24 --sha-w- c:\windows\S56E7CBC3.tmp . ((((((((((((((((((((((((((((((((( Points de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "D-Link AirPlus G"="c:\program files\D-Link\AirPlus G\AirGCFG.exe" [2005-11-23 1544192] "snp2std"="c:\windows\vsnp2std.exe" [2006-09-15 675840] "IntelliScope"="c:\program files\CyberSnipa\Intelliscope Mouse\Panel.exe" [2007-11-29 282208] "amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2009-03-02 209153] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-11-20 12669544] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-11-20 110184] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon] "UIHost"="c:\documents and settings\Hugo\Bureau\Mes Dossiers\Zindoz Tuning\Logon\original logon\logonui.exe" [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Reader Synchronizer.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Adobe Reader Synchronizer.lnk backup=c:\windows\pss\Adobe Reader Synchronizer.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Acrobat.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Acrobat.lnk backup=c:\windows\pss\Lancement rapide d'Adobe Acrobat.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Lancement rapide d'Adobe Reader.lnk] path=c:\documents and settings\All Users\Menu Démarrer\Programmes\Démarrage\Lancement rapide d'Adobe Reader.lnk backup=c:\windows\pss\Lancement rapide d'Adobe Reader.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^Hugo^Menu Démarrer^Programmes^Démarrage^OpenOffice.org 2.4.lnk] path=c:\documents and settings\Hugo\Menu Démarrer\Programmes\Démarrage\OpenOffice.org 2.4.lnk backup=c:\windows\pss\OpenOffice.org 2.4.lnkStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2009-02-27 15:10 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ANIWZCS2Service] 2005-10-19 16:19 49152 ----a-w- c:\program files\ANI\ANIWZCS2 Service\WZCSLDR2.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier] 2009-03-26 13:11 177472 ----a-w- c:\program files\Fichiers communs\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent DNA] 2009-03-27 20:55 321344 ----a-w- c:\program files\DNA\btdna.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CurseClient] 2009-06-08 14:51 1934336 ----a-w- c:\program files\Curse\CurseClient.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] 2009-10-30 11:57 369200 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] 2009-04-02 14:11 342312 ----a-w- c:\program files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] 2009-07-26 15:44 3883856 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck] 2001-07-09 09:50 155648 ----a-r- c:\windows\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Octoshape Streaming Services] 2008-05-22 13:59 156944 ----a-w- c:\program files\Octoshape Streaming Services\Hugo\OctoshapeClient.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Packard Bell Software Suite] 2009-04-10 07:07 2901024 ----a-w- c:\program files\Packard Bell\Software Suite\PBSoftSuite.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDF Converter Registry Controller] 2003-09-09 09:25 102400 ----a-w- c:\program files\ScanSoft\PDF Converter\RegistryController.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-01-05 14:18 413696 ----a-w- c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL] 2007-04-12 09:33 16132608 ------r- c:\windows\RTHDCPL.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer] 2009-03-05 14:07 2260480 --sha-r- c:\program files\Spybot - Search & Destroy\TeaTimer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam] 2009-12-05 16:45 1217808 ----a-w- c:\program files\Steam\Steam.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2008-02-22 02:25 144784 ----a-w- c:\program files\Java\jre1.6.0_05\bin\jusched.exe [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Go!Zilla"="c:\program files\Go!Zilla\gozilla.exe" /tray [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "AliceSAV"=c:\program files\TechCity Solutions\AliceSAV\AliceAgent.exe "Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions "tsnp2std"=c:\windows\tsnp2std.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Xfire\\xfire.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\Mozilla Firefox\\firefox.exe"= "c:\\Diablo\\diablo.exe"= "c:\\Program Files\\Warcraft III\\Warcraft III.exe"= "c:\\WINDOWS\\system32\\dpnsvr.exe"= "c:\\WINDOWS\\system32\\PnkBstrA.exe"= "c:\\WINDOWS\\system32\\PnkBstrB.exe"= "c:\\Program Files\\Qtracker\\qtracker.exe"= "c:\\Documents and Settings\\Hugo\\Local Settings\\Application Data\\Dyyno Receiver\\DPPM.exe"= "c:\\Program Files\\xchat\\xchat.exe"= "c:\\Program Files\\Octoshape Streaming Services\\Hugo\\OctoshapeClient.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\DNA\\btdna.exe"= "c:\\Program Files\\BitTorrent\\bittorrent.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\Microsoft Games\\Age of Mythology\\aom.exe"= "c:\\Program Files\\Curse\\CurseClient.exe"= "c:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Activision\\Modern Warfare 2\\iw4mp.exe"= "c:\\Program Files\\Steam\\Steam.exe"= "c:\\Program Files\\Activision\\Modern Warfare 2\\iw4mp_crack3d.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3724:TCP"= 3724:TCP:Blizzard Dowloader "6112:TCP"= 6112:TCP:Blizzard Downloader "1024:UDP"= 1024:UDP:DOW2 "5000:UDP"= 5000:UDP:DOW2 "88:UDP"= 88:UDP:DOW2 "3074:UDP"= 3074:UDP:DOW2 "3074:TCP"= 3074:TCP:DOW2 "1119:UDP"= 1119:UDP:Wow "6881:TCP"= 6881:TCP:WoW "6882:TCP"= 6882:TCP:WoW "6883:TCP"= 6883:TCP:WoW "6884:TCP"= 6884:TCP:WoW "6885:TCP"= 6885:TCP:WoW R2 AntiVirSchedulerService;Avira AntiVir Planificateur;c:\program files\Avira\AntiVir Desktop\sched.exe [04/11/2009 10:14 108289] R2 PowerSave;PowerSave Service;c:\program files\Packard Bell\Software Suite\PowerSave\PSPBSSS.exe [06/04/2009 10:35 1002016] R3 GMFilter Filter;GMFilter Filter;c:\windows\system32\drivers\GMFilter.sys [10/04/2009 13:22 27648] S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [25/12/2008 16:43 691696] S3 maconfservice;Ma-Config Service;c:\program files\ma-config.com\maconfservice.exe [29/05/2009 16:13 234864] S3 USB_RNDIS_51;Broadcom USB Remote NDIS Device Driver;c:\windows\system32\drivers\usb8023.sys [05/08/2004 13:00 12800] . ------- Examen supplémentaire ------- . uStart Page = hxxp://google.fr/ uInternet Settings,ProxyOverride = *.local IE: Convertir les liens sélectionnés en fichier Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html IE: Download with Go!Zilla - file://c:\program files\Go!Zilla\download-with-gozilla.html IE: Open PDF in Word - c:\program files\ScanSoft\PDF Converter\IEShellExt.dll /100 TCP: {831377C8-2D5B-4075-849E-8B1014751AF1} = 212.27.53.252,212.27.54.252 FF - ProfilePath - c:\documents and settings\Hugo\Application Data\Mozilla\Firefox\Profiles\avtj5yzp.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q= FF - prefs.js: browser.search.selectedEngine - Yahoo FF - prefs.js: browser.startup.homepage - hxxp://www.deezer.com FF - prefs.js: keyword.URL - hxxp://fr.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&type=867034&p= FF - component: c:\documents and settings\Hugo\Application Data\Mozilla\Firefox\Profiles\avtj5yzp.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll FF - component: c:\program files\Mozilla Firefox\extensions\{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C}\components\DealioToolbarFF.dll FF - component: c:\program files\Mozilla Firefox\extensions\search@searchsettings.com\components\SearchSettingsFF.dll FF - plugin: c:\documents and settings\Hugo\Application Data\Mozilla\plugins\npoctoshape.dll FF - plugin: c:\program files\ma-config.com\nphardwaredetection.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npbittorrent.dll FF - plugin: c:\program files\Octoshape Streaming Services\Hugo\octoprogram-L03-NMS0810164_SUA_000\npoctoshape.dll ---- PARAMETRES FIREFOX ---- FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: content.max.tokenizing.time - 1800000 FF - user.js: content.notify.interval - 600000 FF - user.js: content.switch.threshold - 1000000 FF - user.js: nglayout.initialpaint.delay - 600 . - - - - ORPHELINS SUPPRIMES - - - - BHO-{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - c:\program files\Dealio Toolbar\DealioToolbarIE.dll Toolbar-{01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - c:\program files\Dealio Toolbar\DealioToolbarIE.dll HKLM-Run-nwiz - nwiz.exe HKLM-Run-SearchSettings - c:\program files\Search Settings\SearchSettings.exe Notify-WgaLogon - (no file) MSConfigStartUp-Acrobat Assistant 8 - c:\program files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe MSConfigStartUp-Adobe_ID0EYTHM - c:\progra~1\FICHIE~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE MSConfigStartUp-PortableDeviceManager - c:\documents and settings\Hugo\Local Settings\Temp\mw2-loader.exe MSConfigStartUp-vspdfprsrv - c:\program files\Visagesoft\eXPert PDF\vspdfprsrv.exe MSConfigStartUp-Windows Live Communications service - c:\windows\wlcomm.exe AddRemove-Audio Edit Magic_is1 - c:\program files\Audio Edit Magic\unins000.exe AddRemove-Call of Duty Modern Warfare 2_is1 - c:\program files\Activision\Modern Warfare 2\unins000.exe AddRemove-Hamachi - c:\program files\Hamachi\uninstall.exe AddRemove-NVIDIA Display Control Panel - c:\program files\NVIDIA Corporation\Uninstall\nvuninst.exe AddRemove-ShockwaveFlash - c:\windows\system32\Macromed\Flash\FlashUtil9c.exe AddRemove-Urban Terror_is1 - c:\program files\UrbanTerror\unins000.exe AddRemove-Warhammer Online - Age of Reckoning_is1 - c:\warhammer online - age of reckoning\unins000.exe AddRemove-WinGimp-2.0_is1 - c:\program files\GIMP-2.0\setup\unins000.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2009-12-28 11:59 Windows 5.1.2600 Service Pack 3 NTFS Recherche de processus cachés ... Recherche d'éléments en démarrage automatique cachés ... Recherche de fichiers cachés ... Scan terminé avec succès Fichiers cachés: 0 ************************************************************************** . Heure de fin: 2009-12-28 12:01:10 ComboFix-quarantined-files.txt 2009-12-28 11:01 Avant-CF: 52 721 868 800 octets libres Après-CF: 62 294 462 464 octets libres - - End Of File - - 20A21FE004126CA6352AA518332DFF6F

Voila c'est fini, j'ai eu un démarrage a peu près normal (un doublé en fait) et j'ai une petite erreur windows - no disk dontg voixi le code : "Exception Processing Message c0000013 Parameters 75afbf7c 4 75afbf7c 75afbf7c" Voila le log : Logfile of The Avenger Version 2.0, © by Swandog46 http://swandog46.geekstogo.com Platform: Windows XP ******************* Script file opened successfully. Script file read successfully. Backups directory opened successfully at C:\Avenger ******************* Beginning to process script file: Rootkit scan active. Hidden driver "H8SRTd.sys" found! ImagePath: \systemroot\system32\drivers\H8SRTxmyyxrhxoc.sys Start Type: 4 (Disabled) Rootkit scan completed. Driver "H8SRTd.sys" disabled successfully. Driver "H8SRTd.sys" deleted successfully. Completed script processing. ******************* Finished! Terminate.

J'ai téléchargé Rkill (et c'est d'ailleurs grace a lui que j'ai pu retourner sur ma session sans planter) et l'ai lancé mais lorsque je fias de même avec ComboFix il ne se passe strictement rien ^^' j'ai juste le warning avec "executer" ou "annuler" mais après rien ne se passe : /

Nettoyage avec MBAM : Malwarebytes' Anti-Malware 1.42 Version de la base de données: 3441 Windows 5.1.2600 Service Pack 3 Internet Explorer 6.0.2900.5512 27/12/2009 23:31:15 mbam-log-2009-12-27 (23-31-15).txt Type de recherche: Examen complet (C:\|D:\|L:\|) Eléments examinés: 335088 Temps écoulé: 36 minute(s), 40 second(s) Processus mémoire infecté(s): 0 Module(s) mémoire infecté(s): 1 Clé(s) du Registre infectée(s): 2 Valeur(s) du Registre infectée(s): 1 Elément(s) de données du Registre infecté(s): 1 Dossier(s) infecté(s): 1 Fichier(s) infecté(s): 8 Processus mémoire infecté(s): (Aucun élément nuisible détecté) Module(s) mémoire infecté(s): \\?\globalroot\systemroot\system32\H8SRTkeldijjqit.dll (Trojan.FakeAlert) -> Delete on reboot. Clé(s) du Registre infectée(s): HKEY_LOCAL_MACHINE\SOFTWARE\Malware Defense (Rogue.MalwareDefense) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\H8SRT (Rootkit.TDSS) -> Quarantined and deleted successfully. Valeur(s) du Registre infectée(s): HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\malware defense (Rogue.MalwareDefense) -> Quarantined and deleted successfully. Elément(s) de données du Registre infecté(s): HKEY_CLASSES_ROOT\regfile\shell\open\command\(default) (Broken.OpenCommand) -> Bad: ("regedit.exe" "%1") Good: (regedit.exe "%1") -> Quarantined and deleted successfully. Dossier(s) infecté(s): C:\Program Files\malware Defense (Rogue.MalwareDefense) -> Quarantined and deleted successfully. Fichier(s) infecté(s): \\?\globalroot\systemroot\system32\H8SRTkeldijjqit.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully. C:\Documents and Settings\Hugo\Local Settings\Temp\settdebugx.exe (Rogue.Installer) -> Quarantined and deleted successfully. C:\Documents and Settings\Hugo\Local Settings\Temp\Installer.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. C:\Documents and Settings\Hugo\Local Settings\Temp\wscsvc32.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. C:\Program Files\Malware Defense\mdext.dll (Trojan.FakeAlert) -> Quarantined and deleted successfully. C:\Program Files\Malware Defense\uninstall.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. C:\Program Files\malware Defense\md.db (Rogue.MalwareDefense) -> Quarantined and deleted successfully. C:\WINDOWS\system32\krl32mainweq.dll (Trojan.DNSChanger) -> Quarantined and deleted successfully. SCAN HJT Post-MBAM : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:40:39, on 27/12/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\PnkBstrA.exe C:\Program Files\Packard Bell\Software Suite\PowerSave\PSPBSSS.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\vsnp2std.exe C:\Program Files\CyberSnipa\Intelliscope Mouse\Panel.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Avira\AntiVir Desktop\avscan.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\Hugo\Bureau\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.fr/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings.dll O2 - BHO: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Easy Gif Animator Toolbar Helper - {96372AB6-15EB-4316-B497-71C741BC548C} - C:\Program Files\Easy Gif Animator Extension\v3.2.0.0\EasyGifAnimator_Toolbar.dll (file missing) O2 - BHO: Go!Zilla IE Helper - {E1FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GoZilla\GozCatch.dll O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb128\SearchSettings.dll O3 - Toolbar: VMN Toolbar - {4E7BD74F-2B8D-469E-8DA9-FD60BB9AAE33} - (no file) O3 - Toolbar: Easy Gif Animator Toolbar - {35065594-9169-4A34-B167-FC4865038E53} - C:\Program Files\Easy Gif Animator Extension\v3.2.0.0\EasyGifAnimator_Toolbar.dll (file missing) O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll O3 - Toolbar: Dealio Toolbar - {01398B87-61AF-4FFB-9AB5-1A1C5FB39A9C} - C:\Program Files\Dealio Toolbar\DealioToolbarIE.dll O4 - HKLM\..\Run: [D-Link AirPlus G] C:\Program Files\D-Link\AirPlus G\AirGCFG.exe O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe O4 - HKLM\..\Run: [intelliScope] "C:\Program Files\CyberSnipa\Intelliscope Mouse\Panel.exe" O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [searchSettings] C:\Program Files\Search Settings\SearchSettings.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [settdebugx.exe] C:\DOCUME~1\Hugo\LOCALS~1\Temp\settdebugx.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Download with Go!Zilla - file://C:\Program Files\Go!Zilla\download-with-gozilla.html O8 - Extra context menu item: Open PDF in Word - res://C:\Program Files\ScanSoft\PDF Converter\IEShellExt.dll /100 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O17 - HKLM\System\CCS\Services\Tcpip\..\{831377C8-2D5B-4075-849E-8B1014751AF1}: NameServer = 212.27.53.252,212.27.54.252 O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Alpha Networks Inc. - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PowerSave Service (PowerSave) - Packard Bell Services - C:\Program Files\Packard Bell\Software Suite\PowerSave\PSPBSSS.exe O23 - Service: wampapache - Unknown owner - c:\wamp\bin\apache\apache2.2.6\bin\httpd.exe (file missing) O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.0.45\bin\mysqld-nt.exe (file missing) -- End of file - 7454 bytes GMER POST-MBAM : GMER 1.0.15.15281 - http://www.gmer.net Rootkit scan 2009-12-27 23:45:18 Windows 5.1.2600 Service Pack 3 Running: x9kwrbsj.exe; Driver: C:\DOCUME~1\Hugo\LOCALS~1\Temp\kgloypod.sys ---- System - GMER 1.0.15 ---- INT 0x62 ? 8AA22BF8 INT 0x73 ? 8A8B8BF8 INT 0x73 ? 8A8B8BF8 INT 0x82 ? 8AA22BF8 INT 0x83 ? 8AA22BF8 INT 0x83 ? 8AA22BF8 INT 0x83 ? 8AA22BF8 INT 0xA4 ? 8A8B8BF8 INT 0xB4 ? 8A8B8BF8 Code 8A7277E8 ZwEnumerateKey Code 8A743D30 ZwFlushInstructionCache Code 8A7070D6 IofCallDriver Code 8A61718E IofCompleteRequest ---- Devices - GMER 1.0.15 ---- Device \FileSystem\Ntfs \Ntfs 8AA211F8 Device \FileSystem\Fastfat \FatCdrom 89E9C1F8 Device \FileSystem\Udfs \UdfsCdRom 8A6F0500 Device \FileSystem\Udfs \UdfsDisk 8A6F0500 Device \Driver\PCI_PNP2414 \Device\00000050 spqs.sys Device \Driver\usbohci \Device\USBPDO-0 8A7DB1F8 Device \Driver\usbohci \Device\USBPDO-1 8A7DB1F8 Device \Driver\usbohci \Device\USBPDO-2 8A7DB1F8 Device \Driver\usbohci \Device\USBPDO-3 8A7DB1F8 Device \Driver\usbohci \Device\USBPDO-4 8A7DB1F8 Device \Driver\usbehci \Device\USBPDO-5 8A8721F8 Device \Driver\Ftdisk \Device\HarddiskVolume1 8AA951F8 Device \Driver\Ftdisk \Device\HarddiskVolume2 8AA951F8 Device \Driver\Cdrom \Device\CdRom0 8A8B2500 Device \Driver\Ftdisk \Device\HarddiskVolume3 8AA951F8 Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 [b7E2EB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\atapi \Device\Ide\IdePort0 [b7E2EB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\atapi \Device\Ide\IdePort1 [b7E2EB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\atapi \Device\Ide\IdePort2 [b7E2EB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\atapi \Device\Ide\IdePort3 [b7E2EB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-12 [b7E2EB40] atapi.sys[unknown section] {MOV EDX, [ESP+0x8]; LEA ECX, [ESP+0x4]; PUSH EAX; MOV EAX, ESP; PUSH EAX} Device \Driver\USBSTOR \Device\00000081 8A704500 Device \Driver\USBSTOR \Device\00000082 8A704500 Device \Driver\USBSTOR \Device\00000083 8A704500 Device \Driver\NetBT \Device\NetBt_Wins_Export 89E5B1F8 Device \Driver\USBSTOR \Device\00000084 8A704500 Device \Driver\USBSTOR \Device\00000085 8A704500 Device \Driver\NetBT \Device\NetbiosSmb 89E5B1F8 Device \Driver\NetBT \Device\NetBT_Tcpip_{41A2FDCF-DA03-42E0-959E-432EEEA9BEA9} 89E5B1F8 Device \Driver\NetBT \Device\NetBT_Tcpip_{A8C3FB9B-C672-4361-BCD7-121578038B34} 89E5B1F8 Device \Driver\sptd \Device\2082118664 spqs.sys Device \Driver\usbohci \Device\USBFDO-0 8A7DB1F8 Device \Driver\usbohci \Device\USBFDO-1 8A7DB1F8 Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver 89E4D1F8 Device \Driver\usbohci \Device\USBFDO-2 8A7DB1F8 Device \FileSystem\MRxSmb \Device\LanmanRedirector 89E4D1F8 Device \Driver\usbohci \Device\USBFDO-3 8A7DB1F8 Device \Driver\usbohci \Device\USBFDO-4 8A7DB1F8 Device \Driver\Ftdisk \Device\FtControl 8AA951F8 Device \Driver\USBSTOR \Device\0000007e 8A704500 Device \Driver\usbehci \Device\USBFDO-5 8A8721F8 Device \Driver\USBSTOR \Device\0000007f 8A704500 Device \Driver\ay4nwake \Device\Scsi\ay4nwake1Port4Path0Target0Lun0 8A8631F8 Device \Driver\ay4nwake \Device\Scsi\ay4nwake1 8A8631F8 Device \FileSystem\Fastfat \Fat 89E9C1F8 AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) Device \FileSystem\Cdfs \Cdfs 8923E1F8 Device \FileSystem\Cdfs \Cdfs B30AEBCE ---- Processes - GMER 1.0.15 ---- Library \\?\globalroot\systemroot\system32\H8SRTkeldijjqit.dll (*** hidden *** ) @ C:\WINDOWS\system32\svchost.exe [1156] 0x00E40000 ---- Services - GMER 1.0.15 ---- Service C:\WINDOWS\system32\drivers\H8SRTxmyyxrhxoc.sys (*** hidden *** ) [sYSTEM] H8SRTd.sys <-- ROOTKIT !!! ---- Registry - GMER 1.0.15 ---- Reg HKLM\SYSTEM\CurrentControlSet\Services\H8SRTd.sys Reg HKLM\SYSTEM\CurrentControlSet\Services\H8SRTd.sys@start 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\H8SRTd.sys@type 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\H8SRTd.sys@imagepath \systemroot\system32\drivers\H8SRTxmyyxrhxoc.sys Reg HKLM\SYSTEM\CurrentControlSet\Services\H8SRTd.sys@group file system Reg HKLM\SYSTEM\CurrentControlSet\Services\H8SRTd.sys\modules Reg HKLM\SYSTEM\CurrentControlSet\Services\H8SRTd.sys\modules@H8SRTd \\?\globalroot\systemroot\system32\drivers\H8SRTxmyyxrhxoc.sys Reg HKLM\SYSTEM\CurrentControlSet\Services\H8SRTd.sys\modules@H8SRTc \\?\globalroot\systemroot\system32\H8SRTkbebdjbpjd.dll Reg HKLM\SYSTEM\CurrentControlSet\Services\H8SRTd.sys\modules@H8SRTsrcr \\?\globalroot\systemroot\system32\H8SRTulkmovygvo.dat Reg HKLM\SYSTEM\CurrentControlSet\Services\H8SRTd.sys\modules@h8srtserf \\?\globalroot\systemroot\system32\H8SRTkeldijjqit.dll Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x68 0x14 0x4D 0x60 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xEB 0x35 0x18 0xEA ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x98 0xEC 0x21 0x95 ... Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0 Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x47 0x91 0x4C 0xE6 ... Reg HKLM\SYSTEM\ControlSet002\Services\H8SRTd.sys (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\H8SRTd.sys@start 1 Reg HKLM\SYSTEM\ControlSet002\Services\H8SRTd.sys@type 1 Reg HKLM\SYSTEM\ControlSet002\Services\H8SRTd.sys@imagepath \systemroot\system32\drivers\H8SRTxmyyxrhxoc.sys Reg HKLM\SYSTEM\ControlSet002\Services\H8SRTd.sys@group file system Reg HKLM\SYSTEM\ControlSet002\Services\H8SRTd.sys\modules (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\H8SRTd.sys\modules@H8SRTd \\?\globalroot\systemroot\system32\drivers\H8SRTxmyyxrhxoc.sys Reg HKLM\SYSTEM\ControlSet002\Services\H8SRTd.sys\modules@H8SRTc \\?\globalroot\systemroot\system32\H8SRTkbebdjbpjd.dll Reg HKLM\SYSTEM\ControlSet002\Services\H8SRTd.sys\modules@H8SRTsrcr \\?\globalroot\systemroot\system32\H8SRTulkmovygvo.dat Reg HKLM\SYSTEM\ControlSet002\Services\H8SRTd.sys\modules@h8srtserf \\?\globalroot\systemroot\system32\H8SRTkeldijjqit.dll Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@p0 C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@u0 0xD4 0xC3 0x97 0x02 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@h0 1 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC@hdf12 0x68 0x14 0x4D 0x60 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@a0 0x20 0x01 0x00 0x00 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001@hdf12 0xEB 0x35 0x18 0xEA ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001\gdq0@hdf12 0x98 0xEC 0x21 0x95 ... Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@h0 0 Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4@khjeh 0x47 0x91 0x4C 0xE6 ... ---- EOF - GMER 1.0.15 ---- J'ai encore sur H8SRT, je pense qu'il me reste des résidus de l'infection, est-ce que quelqu'un pourrait vérifier et me dire comment les enlever ? Je peux toutefois retourner sur ma session sans planter, j'effectue actuellement un scan AVIRA mais mon spybot ne fonctionne toujours pas :s