Pub intenpestive (résolu ) et merci a angeldark ; )
Forum Sécurité - Virus : Pub intenpestive (résolu ) et merci a angeldark ; )
bonjour depuis que je suis rentré de vacance depuis vendredi mon ordi a sans arrêt des pub et des lien vers des anti virus qui ne serve a rien qui s'affiche comme quoi mon ordi serai infecté et comme j'ai déjà eu a faire a cet sorte de virus ben j'aimerais bien m'en débarrassé de nouveau ...
j'ai fait un scan avec hijackthis :
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:44:08, on 11/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
C:\documents and settings\user\local settings\application data\wosyuqek.exe
C:\Program Files\AOL 9.0 VR\waol.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\AOL\ACS\AOLAcsd.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\AOL 9.0 VR\shellmon.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\User\Bureau\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ads.eorezo.com/cgi-bin/adve [...] &x_dp_id=9
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ads.eorezo.com/cgi-bin/adve [...] &x_dp_id=9
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb126\SearchSettings.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: EWPBrowseObject Class - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb126\Dealio.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb126\SearchSettings.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb126\Dealio.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [TopDesk] C:\Program Files\TopDesk Trial\topdesk.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [au] C:\Program Files\Dealio\DealioAU.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [ItsTV] "C:\Program Files\ItsLabel\ItsTV.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKCU\..\Run: [wosyuqek] c:\documents and settings\user\local settings\application data\wosyuqek.exe wosyuqek
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\AOL 9.0 VR\AOL.EXE" -b
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 4.0\resources\fr-FR\local\search.html
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Documents and Settings\User\Application Data\Dealio\kb126\res\DealioSearch.html
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb126\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb126\Dealio.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Fichiers communs\AOL\ACS\AOLAcsd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: License Management Service ESD - element5 - C:\Program Files\Fichiers communs\element5 Shared\Service\Licence Manager ESD.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
--
End of file - 12181 bytes
merci de bien vouloir m'aider
Message édité par legui31 le 13-06-2008 à 15:48:51
faut til poster un autre rapport ?
Bonjour,
Merci de patienter 
Télécharge Navilog1.exe (IL-MAFIOSO)
Enregistre-le sur ton Bureau.
Lance l'installation en double cliquant sur navilog.exe.
Une fois l'installation terminée, l'utilitaire s'exécutera automatiquement.
(Si ce n'est pas le cas, double clique sur le raccourci présent sur le Bureau)
Laisse-toi guider par l'utilitaire. Choisis l'option 4 puis valide.
Il va te demander de saisir le nom de fichier. Saisie ce qui est en gras ci-dessous et rien d'autre puis valide :
wosyuqek
Retape le nom de fichier quand cela te sera demandé.
L'utilitaire va t'informer qu'il va redémarrer l'ordinateur.
**Ferme toutes les fenêtres ouvertes et enregistre tes documents personnels ouverts**
Appuie maintenant sur une touche, comme demandé.
(si ton PC ne redémarre pas automatiquement, fais-le manuellement)
Patiente jusqu'à l'apparition de ce message :
"*** Nettoyage Termine le ..... ***"
Le Bloc-notes va s'ouvrir.
Sauvegarde le rapport de manière à le retrouver.
Referme le Bloc-notes. Ton bureau va maintenant réapparaître.
NOTE : Si ton Bureau ne réapparait pas, appuie simultanément sur Ctrl+Alt+Suppr pour ouvrir le Gestionnaire des tâches.
Rends-toi sur l'onglet "Processus". Clique en haut à gauche sur Fichier et choisis "Exécuter..."
Tape explorer puis valide.
Poste le rapport sauvegardé auparavant (C:\cleannavi.txt)
Ainsi qu'un nouveau rapport Hijackthis.
Répondre à Angeldark
Clean Navipromo version 3.5.8 commencé le 11/06/2008 à 13:11:15,70
Outil exécuté depuis C:\Program Files\navilog1
Session actuelle : "User"
Mise à jour le 06.06.2008 à 18h00 par IL-MAFIOSO
Microsoft Windows XP [version 5.1.2600]
Internet Explorer : 7.0.5730.11
Système de fichiers : NTFS
Mode suppression par méthode manuelle
Nom du fichier saisi : wosyuqek
Nettoyage exécuté au redémarrage de l'ordinateur
*** Recherche, création sauvegardes et suppression ***
* Suppression dans "C:\WINDOWS\system32" *
C:\WINDOWS\prefetch\wosyuqek*.pf trouvé !
Copie C:\WINDOWS\prefetch\wosyuqek*.pf réalisée avec succès !
C:\WINDOWS\prefetch\wosyuqek*.pf supprimé !
* Suppression dans "C:\Documents and Settings\User\locals~1\applic~1" *
wosyuqek.exe trouvé !
Copie wosyuqek.exe réalisée avec succès !
wosyuqek.exe supprimé !
wosyuqek.dat trouvé !
Copie wosyuqek.dat réalisée avec succès !
wosyuqek.dat supprimé !
wosyuqek_nav.dat trouvé !
Copie wosyuqek_nav.dat réalisée avec succès !
wosyuqek_nav.dat supprimé !
wosyuqek_navps.dat trouvé !
Copie wosyuqek_navps.dat réalisée avec succès !
wosyuqek_navps.dat supprimé !
* Suppression dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *
*** Suppression dossiers dans "C:\WINDOWS" ***
*** Suppression dossiers dans "C:\Program Files" ***
*** Suppression dossiers dans "c:\docume~1\alluse~1\applic~1" ***
*** Suppression dossiers dans "c:\docume~1\alluse~1\menudm~1\progra~1" ***
*** Suppression dossiers dans "C:\Documents and Settings\User\applic~1" ***
*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\applic~1" ***
*** Suppression dossiers dans "C:\Documents and Settings\User\locals~1\applic~1" ***
*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" ***
*** Suppression dossiers dans "C:\Documents and Settings\User\menudm~1\progra~1" ***
*** Suppression dossiers dans "C:\DOCUME~1\ADMINI~1\menudm~1\progra~1" ***
*** Suppression fichiers ***
*** Suppression fichiers temporaires ***
Nettoyage contenu C:\WINDOWS\Temp effectué !
Nettoyage contenu C:\Documents and Settings\User\locals~1\Temp effectué !
*** Traitement Recherche complémentaire ***
(Recherche fichiers spécifiques)
1)Suppression avec sauvegardes nouveaux fichiers Instant Access :
2)Recherche, création sauvegardes et suppression Heuristique :
* Dans "C:\WINDOWS\system32" *
* Dans "C:\Documents and Settings\User\locals~1\applic~1" *
* Dans "C:\DOCUME~1\ADMINI~1\locals~1\applic~1" *
*** Sauvegarde du Registre vers dossier Safebackup ***
sauvegarde du Registre réalisée avec succès !
*** Nettoyage Registre ***
Nettoyage Registre Ok
*** Certificats ***
Certificat Egroup supprimé !
Certificat Electronic-Group supprimé !
Certificat OOO-Favorit supprimé !
Certificat Sunny-Day-Design-Ltdt absent !
*** Nettoyage terminé le 11/06/2008 à 13:14:24,76 ***
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:17:10, on 11/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\AOL\ACS\AOLAcsd.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Search Settings\SearchSettings.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
C:\Program Files\AOL 9.0 VR\waol.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\AOL 9.0 VR\shellmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\User\Bureau\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ads.eorezo.com/cgi-bin/adve [...] &x_dp_id=9
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ads.eorezo.com/cgi-bin/adve [...] &x_dp_id=9
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
R3 - URLSearchHook: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb126\SearchSettings.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: EWPBrowseObject Class - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb126\Dealio.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: SearchSettings Class - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - C:\Program Files\Search Settings\kb126\SearchSettings.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb126\Dealio.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [TopDesk] C:\Program Files\TopDesk Trial\topdesk.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [au] C:\Program Files\Dealio\DealioAU.exe
O4 - HKLM\..\Run: [SearchSettings] C:\Program Files\Search Settings\SearchSettings.exe
O4 - HKLM\..\Run: [ItsTV] "C:\Program Files\ItsLabel\ItsTV.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [SweetIM] C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\AOL 9.0 VR\AOL.EXE" -b
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 4.0\resources\fr-FR\local\search.html
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Documents and Settings\User\Application Data\Dealio\kb126\res\DealioSearch.html
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb126\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb126\Dealio.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Fichiers communs\AOL\ACS\AOLAcsd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: License Management Service ESD - element5 - C:\Program Files\Fichiers communs\element5 Shared\Service\Licence Manager ESD.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
--
End of file - 12053 bytes
voila les 2 rapports
Re,
Désactive tes protections résidentes (antivirus, Spybot-S&D, etc.) !
- Télécharge ComboFix (sUBs) sur ton Bureau.
- Double clique sur ComboFix.exe (le .exe n'est pas forcément visible) afin de le lancer.
- Lorsque la recherche sera terminée, un rapport apparaîtra. Poste ce rapport (C:\combofix.txt*) dans ta prochaine réponse.
AIDE : Un guide et un tutoriel sur l'utilisation de ComboFix
* le nom de la partition peut changer
Répondre à Angeldark
ComboFix 08-06-10.3 - User 2008-06-11 13:52:44.1 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.579 [GMT 2:00]
Endroit: C:\Documents and Settings\User\Bureau\ComboFix.exe
* Création d'un nouveau point de restauration
[color=red]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/color]
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_FMTR
((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-05-11 to 2008-06-11 ))))))))))))))))))))))))))))))))))))
.
2008-06-11 13:06 . 2008-06-11 13:14 <REP> d-------- C:\Program Files\Navilog1
2008-06-06 10:01 . 2008-06-08 09:49 <REP> d-------- C:\Program Files\Avanquest update
2008-06-06 10:01 . 2008-06-06 10:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\BVRP Software
2008-06-06 10:01 . 2007-06-25 11:43 108,456 --a------ C:\WINDOWS\system32\drivers\s117mdm.sys
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Program Files\Sony Ericsson
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Documents and Settings\User\Application Data\InstallShield
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
2008-05-22 21:33 . 2008-05-23 11:31 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Fashion Solitaire 1.2
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-11 11:58 --------- d-----w C:\Program Files\ItsLabel
2008-06-11 11:58 --------- d-----w C:\Documents and Settings\User\Application Data\OpenOffice.org2
2008-06-10 21:26 --------- d-----w C:\Program Files\eMule
2008-06-06 08:25 --------- d-----w C:\Program Files\Zylom Games
2008-06-06 08:01 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-27 08:46 --------- d-----w C:\Documents and Settings\User\Application Data\Zylom
2008-05-27 07:53 --------- d-----w C:\Program Files\Dawn of Telperion
2008-05-01 08:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\JollyBear
2008-04-30 20:32 --------- d-----w C:\Documents and Settings\User\Application Data\iWin
2008-04-30 20:07 --------- d-----w C:\Documents and Settings\User\Application Data\AdobeUM
2008-04-30 20:02 --------- d-----w C:\Documents and Settings\All Users\Application Data\Gogii
2008-04-27 09:27 --------- d-----w C:\Program Files\Free Easy Burner
2008-04-19 15:57 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sandlot Games
2008-04-19 13:26 --------- d-----w C:\Documents and Settings\User\Application Data\Dealio
2008-04-18 20:24 --------- d-----w C:\Program Files\Red Kawa
2008-04-15 12:01 --------- d-----w C:\Documents and Settings\User\Application Data\Gamelab
2008-04-15 08:07 --------- d-----w C:\Program Files\Dofus
2008-04-13 13:50 --------- d-----w C:\Program Files\EoRezo
2008-04-13 13:50 --------- d-----w C:\Documents and Settings\User\Application Data\EoRezo
2008-04-13 07:23 --------- d-----w C:\Documents and Settings\User\Application Data\ItsLabel
2008-04-12 18:01 230,432 ----a-w C:\StiImg.dat
2008-04-12 15:23 --------- d-----w C:\Program Files\Common Files
2008-04-12 15:23 --------- d-----w C:\Program Files\CamStudio
2008-01-18 10:00 102,769 ----a-w C:\Documents and Settings\User\last_report.dat
2007-10-15 19:24 168 --sh--r C:\WINDOWS\system32\745A587F8C.sys
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E312764E-7706-43F1-8DAB-FCDD2B1E416D}]
2008-02-06 18:47 1160544 --a------ C:\Program Files\Search Settings\kb126\SearchSettings.dll
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{73FB038C-943C-47EC-A324-635635F796D2}"= C:\Program Files\100% Free Five Hundred Toolbar\v3.2.0.0\100%_Free_Five_Hundred_Toolbar.dll [ ]
"{C4DFA6F3-1245-41E5-8E60-7D31427F01B3}"= C:\Program Files\Video Add-on\ictmdl.dll [ ]
[HKEY_CLASSES_ROOT\clsid\{73fb038c-943c-47ec-a324-635635f796d2}]
[HKEY_CLASSES_ROOT\clsid\{c4dfa6f3-1245-41e5-8e60-7d31427f01b3}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 12:34 5724184]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-28 13:15 68856]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2006-03-02 14:00 15360]
"MsgCenterExe"="C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" [ ]
"SweetIM"="C:\Program Files\Macrogaming\SweetIM\SweetIM.exe" [2007-10-14 19:09 103712]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" [2007-08-02 15:54 348160]
"AOL Fast Start"="C:\Program Files\AOL 9.0 VR\AOL.exe" [2007-06-21 13:44 50480]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2004-11-15 12:20 77824 C:\WINDOWS\SOUNDMAN.EXE]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 11:50 155648]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-07-21 18:01 98304]
"Corel Photo Downloader"="C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe" [2006-10-31 11:10 478800]
"Easy-PrintToolBox"="C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.exe" [2006-10-17 03:20 398944]
"HostManager"="C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe" [2006-09-26 02:52 50736]
"EoEngine"="" []
"EoWeather"="" []
"TopDesk"="C:\Program Files\TopDesk Trial\topdesk.exe" [2006-03-01 19:02 462848]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [ ]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-04-23 19:05 262401]
"RealTray"="C:\Program Files\Real\RealPlayer\RealPlay.exe" [ ]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 05:25 144784]
"au"="C:\Program Files\Dealio\DealioAU.exe" [2008-02-08 14:11 546144]
"SearchSettings"="C:\Program Files\Search Settings\SearchSettings.exe" [2008-02-06 18:47 1036640]
"ItsTV"="C:\Program Files\ItsLabel\ItsTV.exe" [2007-04-26 16:19 2908160]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2006-03-02 14:00 15360]
"Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [2007-10-23 23:18 443968]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.mpng"= C:\Program Files\t@b\0.957\686\tabdec.dll
"vidc.mvjp"= C:\Program Files\t@b\0.957\686\tabdec.dll
"vidc.444p"= C:\Program Files\t@b\0.957\686\tabdec.dll
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\eMule\\emule.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\acs\\AOLDial.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\acs\\AOLacsd.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\1186962922\\ee\\aolsoftware.exe"=
"C:\\Program Files\\AOL 9.0 VR\\waol.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
R3 PAC207;Trust WB-1400T Webcam;C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-02-24 12:29]
S3 EMSUSB2;EMSUSB2;C:\WINDOWS\system32\Drivers\EMSUSB2.SYS [2008-01-16 15:53]
S3 LwAdiHid;Périphériques numériques WingMan Logitech (détection automatique);C:\WINDOWS\system32\DRIVERS\LwAdiHid.sys [2004-08-03 23:39]
S3 PCASp50;PCASp50 NDIS Protocol Driver;C:\WINDOWS\system32\Drivers\PCASp50.sys [2005-11-19 03:13]
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-11 13:58:58
Windows 5.1.2600 Service Pack 2 NTFS
Balayage processus cach‚s ...
Balayage cach‚ autostart entries ...
Balayage des fichiers cach‚s ...
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\_toolbar_tmp_2988_3176_6.html
Scan termin‚ avec succŠs
Les fichiers cach‚s: 1
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\AOL\acs\AOLacsd.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\PAStiSvc.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\AOL 9.0 VR\waol.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.bin
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\AOL 9.0 VR\shellmon.exe
.
**************************************************************************
.
Temps d'accomplissement: 2008-06-11 14:03:03 - machine was rebooted
ComboFix-quarantined-files.txt 2008-06-11 12:03:00
Pre-Run: 106,490,494,976 octets libres
Post-Run: 106,713,018,368 octets libres
149 --- E O F --- 2008-05-28 21:18:51
et voila le rapport de combofix
par contre mon anti virus ce réactive a chaque fois que mon ordi redémarre
Re,
Copie (Ctrl+C) le texte se situant dans le cadre ci-dessous :
Folder::
|
Ouvre le Bloc-Notes puis colle (Ctrl+V) le texte précedemment copié.
Sauvegarde ce fichier sous le nom de CFScript.txt.
Glisse maintenant le fichier CFScript.txt dans Combofix.exe comme ci-dessous :
Cela va relancer Combofix, tape sur 1 puis valide. Après redémarrage, poste le contenu du rapport Combofix.txt accompagné d'un rapport Hijackthis.
NOTE : S'il n'y a pas de rédémarrage, poste quand même les rapports demandés.
Répondre à Angeldark
ComboFix 08-06-10.3 - User 2008-06-11 23:35:10.2 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.467 [GMT 2:00]
Endroit: C:\Documents and Settings\User\Bureau\ComboFix.exe
Command switches used :: C:\Documents and Settings\User\Bureau\CFScript.txt..txt
* Création d'un nouveau point de restauration
[color=red]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/color]
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\User\Application Data\ItsLabel
C:\Documents and Settings\User\Application Data\ItsLabel\ItsTV\itsTV.xml
C:\Program Files\EoRezo
C:\Program Files\EoRezo\EoAdv\eoAdv.url
C:\Program Files\EoRezo\EoAdv\tmp\eoRezoBho.dll.7483
C:\Program Files\ItsLabel
C:\Program Files\ItsLabel\ItsTV.exe
C:\Program Files\ItsLabel\ItsTV.url
C:\Program Files\ItsLabel\ItsTV.xml
C:\Program Files\ItsLabel\Loading.swf
C:\Program Files\ItsLabel\unins000.dat
C:\Program Files\ItsLabel\unins000.exe
C:\Program Files\Search Settings
C:\Program Files\Search Settings\kb126\SearchSettings.dll
C:\Program Files\Search Settings\SearchSettings.exe
.
((((((((((((((((((((((((((((( Fichiers créés 2008-05-11 to 2008-06-11 ))))))))))))))))))))))))))))))))))))
.
2008-06-11 13:06 . 2008-06-11 13:14 <REP> d-------- C:\Program Files\Navilog1
2008-06-06 10:01 . 2008-06-08 09:49 <REP> d-------- C:\Program Files\Avanquest update
2008-06-06 10:01 . 2008-06-06 10:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\BVRP Software
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Program Files\Sony Ericsson
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Documents and Settings\User\Application Data\InstallShield
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
2008-05-22 21:33 . 2008-05-23 11:31 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Fashion Solitaire 1.2
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-11 20:41 --------- d-----w C:\Program Files\eMule
2008-06-11 16:45 --------- d-----w C:\Documents and Settings\User\Application Data\OpenOffice.org2
2008-06-06 08:25 --------- d-----w C:\Program Files\Zylom Games
2008-06-06 08:01 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-27 08:46 --------- d-----w C:\Documents and Settings\User\Application Data\Zylom
2008-05-27 07:53 --------- d-----w C:\Program Files\Dawn of Telperion
2008-05-01 08:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\JollyBear
2008-04-30 20:32 --------- d-----w C:\Documents and Settings\User\Application Data\iWin
2008-04-30 20:07 --------- d-----w C:\Documents and Settings\User\Application Data\AdobeUM
2008-04-30 20:02 --------- d-----w C:\Documents and Settings\All Users\Application Data\Gogii
2008-04-27 09:27 --------- d-----w C:\Program Files\Free Easy Burner
2008-04-19 15:57 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sandlot Games
2008-04-19 13:26 --------- d-----w C:\Documents and Settings\User\Application Data\Dealio
2008-04-18 20:24 --------- d-----w C:\Program Files\Red Kawa
2008-04-15 12:01 --------- d-----w C:\Documents and Settings\User\Application Data\Gamelab
2008-04-15 08:07 --------- d-----w C:\Program Files\Dofus
2008-04-13 13:50 --------- d-----w C:\Documents and Settings\User\Application Data\EoRezo
2008-04-12 18:01 230,432 ----a-w C:\StiImg.dat
2008-04-12 15:23 --------- d-----w C:\Program Files\Common Files
2008-04-12 15:23 --------- d-----w C:\Program Files\CamStudio
2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll
2008-03-25 04:51 194,144 ----a-w C:\WINDOWS\system32\msjint40.dll
2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys
2008-03-13 20:13 3,350 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
2008-01-18 10:00 102,769 ----a-w C:\Documents and Settings\User\last_report.dat
2007-10-15 19:24 168 --sh--r C:\WINDOWS\system32\745A587F8C.sys
.
((((((((((((((((((((((((((((( snapshot@2008-06-11_14.02.51.14 )))))))))))))))))))))))))))))))))))))))))
.
- 2008-06-11 11:58:08 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-06-11 16:45:38 2,048 --s-a-w C:\WINDOWS\bootstat.dat
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 12:34 5724184]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-28 13:15 68856]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2006-03-02 14:00 15360]
"MsgCenterExe"="C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" [ ]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" [2007-08-02 15:54 348160]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2004-11-15 12:20 77824 C:\WINDOWS\SOUNDMAN.EXE]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 11:50 155648]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-07-21 18:01 98304]
"Corel Photo Downloader"="C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe" [2006-10-31 11:10 478800]
"Easy-PrintToolBox"="C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.exe" [2006-10-17 03:20 398944]
"HostManager"="C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe" [2006-09-26 02:52 50736]
"TopDesk"="C:\Program Files\TopDesk Trial\topdesk.exe" [2006-03-01 19:02 462848]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [ ]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-04-23 19:05 262401]
"RealTray"="C:\Program Files\Real\RealPlayer\RealPlay.exe" [ ]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 05:25 144784]
"au"="C:\Program Files\Dealio\DealioAU.exe" [2008-02-08 14:11 546144]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2006-03-02 14:00 15360]
"Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [2007-10-23 23:18 443968]
C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
VIA RAID TOOL.lnk - C:\Program Files\VIA\RAID\raid_tool.exe [2007-07-19 16:56:35 565248]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.mpng"= C:\Program Files\t@b\0.957\686\tabdec.dll
"vidc.mvjp"= C:\Program Files\t@b\0.957\686\tabdec.dll
"vidc.444p"= C:\Program Files\t@b\0.957\686\tabdec.dll
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\eMule\\emule.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\acs\\AOLDial.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\acs\\AOLacsd.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\1186962922\\ee\\aolsoftware.exe"=
"C:\\Program Files\\AOL 9.0 VR\\waol.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
R3 PAC207;Trust WB-1400T Webcam;C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-02-24 12:29]
S3 EMSUSB2;EMSUSB2;C:\WINDOWS\system32\Drivers\EMSUSB2.SYS [2008-01-16 15:53]
S3 LwAdiHid;Périphériques numériques WingMan Logitech (détection automatique);C:\WINDOWS\system32\DRIVERS\LwAdiHid.sys [2004-08-03 23:39]
S3 PCASp50;PCASp50 NDIS Protocol Driver;C:\WINDOWS\system32\Drivers\PCASp50.sys [2005-11-19 03:13]
*Newly Created Service* - CATCHME
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-11 23:37:43
Windows 5.1.2600 Service Pack 2 NTFS
Balayage processus cachés ...
Balayage caché autostart entries ...
Balayage des fichiers cachés ...
Scan terminé avec succès
Les fichiers cachés: 0
**************************************************************************
.
Temps d'accomplissement: 2008-06-11 23:39:23
ComboFix-quarantined-files.txt 2008-06-11 21:39:19
ComboFix2.txt 2008-06-11 12:03:04
Pre-Run: 104,332,279,808 octets libres
Post-Run: 104,322,449,408 octets libres
140 --- E O F --- 2008-05-28 21:18:51
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:41:33, on 11/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\AOL\ACS\AOLAcsd.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\notepad.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\User\Bureau\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ads.eorezo.com/cgi-bin/adve [...] &x_dp_id=9
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ads.eorezo.com/cgi-bin/adve [...] &x_dp_id=9
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - (no file)
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
R3 - URLSearchHook: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
R3 - URLSearchHook: (no name) - {E312764E-7706-43F1-8DAB-FCDD2B1E416D} - (no file)
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: SWEETIE - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: EWPBrowseObject Class - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - C:\Program Files\Dealio\kb126\Dealio.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - C:\Program Files\Dealio\kb126\Dealio.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [TopDesk] C:\Program Files\TopDesk Trial\topdesk.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [au] C:\Program Files\Dealio\DealioAU.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 4.0\resources\fr-FR\local\search.html
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Documents and Settings\User\Application Data\Dealio\kb126\res\DealioSearch.html
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb126\Dealio.dll
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb126\Dealio.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Fichiers communs\AOL\ACS\AOLAcsd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: License Management Service ESD - element5 - C:\Program Files\Fichiers communs\element5 Shared\Service\Licence Manager ESD.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
--
End of file - 11415 bytes
pour linstant je nai plus rien qui saffiche comme pub ou autre anti virus mais il ya a til toujours des risques
Re,
Recommence avec ce script :
Folder::
|
&
Fix les lignes dans le cadre ci-dessous avec HijackThis : AIDE EN IMAGES
R3 - URLSearchHook: (no name) - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - (no file)
|
Répondre à Angeldark
ComboFix 08-06-10.3 - User 2008-06-12 23:34:05.3 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.580 [GMT 2:00]
Endroit: C:\Documents and Settings\User\Bureau\la star\Nétoyage\ComboFix.exe
Command switches used :: C:\Documents and Settings\User\Bureau\CFScript.txt
* Création d'un nouveau point de restauration
[color=red]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/color]
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\User\Application Data\Dealio
C:\Documents and Settings\User\Application Data\Dealio\dinstallhelper.31CF7211E2E94400A23C2DAF63940B0D.dll
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\chevron-small.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\deal_report.jpg
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\DealioSearch.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\deals-leftcap.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\ebay_login.jpg
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\err_mainwindow.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\err_toolbar.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\global_scripts.js
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\headerbgthin.jpg
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\highlight-bg.png
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\logo.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\logo_over.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\man_toolbar.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\man_toolbar.js
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\post-this-deal.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\post-this-deal_over.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\scripts.js
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\scroller.js
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\search-chevron.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\search-chevron_over.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\search_bg_blink.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\separator.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\settings.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\settings_over.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\yahoo-search.png
C:\Documents and Settings\User\Application Data\Dealio\kb126\resFF\deal_report.jpg
C:\Documents and Settings\User\Application Data\Dealio\kb126\resFF\ebay_login.jpg
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\index.76.35
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.10.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.109.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.110.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.12.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.13.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.130.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.135.50
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.153.44
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.155.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.156.49
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.16.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.161.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.178.66
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.184.55
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.188.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.189.45
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.196.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.198.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.199.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.200.53
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.201.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.202.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.203.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.205.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.213.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.214.49
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.215.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.216.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.217.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.218.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.219.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.220.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.221.57
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.222.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.223.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.226.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.227.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.228.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.229.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.23.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.239.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.24.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.240.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.241.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.242.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.243.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.244.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.245.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.247.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.248.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.249.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.250.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.251.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.252.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.253.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.254.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.255.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.256.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.257.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.279.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.28.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.282.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.283.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.284.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.289.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.290.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.291.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.296.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.297.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.304.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.307.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.308.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.31.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.310.46
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.311.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.315.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.316.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.317.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.318.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.319.49
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.32.48
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.334.44
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.335.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.336.44
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.337.44
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.338.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.339.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.34.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.340.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.341.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.349.50
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.35.48
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.350.50
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.351.51
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.352.54
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.353.51
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.354.51
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.357.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.358.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.359.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.360.53
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.361.54
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.362.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.363.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.364.54
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.365.53
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.367.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.368.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.369.55
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.370.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.371.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.372.57
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.373.55
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.375.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.376.57
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.377.55
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.378.65
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.384.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.386.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.387.59
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.388.59
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.389.59
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.390.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.391.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.392.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.393.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.394.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.396.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.397.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.398.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.399.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.403.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.404.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.405.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.406.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.407.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.408.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.409.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.412.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.413.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.414.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.415.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.416.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.417.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.418.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.419.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.420.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.421.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.423.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.424.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.425.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.426.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.427.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.428.65
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.429.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.430.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.432.65
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.433.64
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.434.65
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.435.64
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.436.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.437.64
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.438.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.439.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.440.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.442.73
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.443.73
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.444.73
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.445.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.446.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.450.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.451.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.452.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.453.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.454.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.456.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.457.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.458.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.459.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.460.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.462.74
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.463.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.464.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.465.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.468.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.469.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.470.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.471.73
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.472.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.478.74
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.479.73
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.480.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.481.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.482.74
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.49.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.50.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.500.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.501.74
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.502.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.51.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.52.72
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.520.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.521.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.522.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.53.51
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.531.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.532.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.534.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.54.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.55.45
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.56.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.57.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.58.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.593.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.595.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.63.57
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.66.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.70.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.71.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\index.3.67.22
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.109.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.178.66
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.198.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.245.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.247.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.279.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.283.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.284.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.289.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.290.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.297.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.315.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.319.49
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.335.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.337.44
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.340.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.360.53
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.386.59
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.388.59
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.391.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.398.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.399.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.403.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.404.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.405.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.406.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.407.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.408.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.409.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.412.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.413.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.414.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.415.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.416.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.417.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.418.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.419.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.420.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.421.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.424.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.427.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.432.65
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.49.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.51.46
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.52.57
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.53.51
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.54.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.57.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.58.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\_toolbar_tmp_1208_2768_5.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\_toolbar_tmp_3892_2384_5.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\_toolbar_tmp_3892_3016_10.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\dealio-14039.log
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\dealio-14040.log
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\dealio-14041.log
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\dealio-14042.log
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\dod_cache.xml
C:\Program Files\Dealio
C:\Program Files\Dealio\DealioAU.exe
C:\Program Files\Dealio\kb126\Dealio Deskbar.exe
C:\Program Files\Dealio\kb126\Dealio.dll
C:\Program Files\Dealio\kb126\res\chevron-small.gif
C:\Program Files\Dealio\kb126\res\deal_report.jpg
C:\Program Files\Dealio\kb126\res\DealioSearch.html
C:\Program Files\Dealio\kb126\res\deals-leftcap.gif
C:\Program Files\Dealio\kb126\res\ebay_login.jpg
C:\Program Files\Dealio\kb126\res\err_mainwindow.html
C:\Program Files\Dealio\kb126\res\err_toolbar.html
C:\Program Files\Dealio\kb126\res\global_scripts.js
C:\Program Files\Dealio\kb126\res\headerbgthin.jpg
C:\Program Files\Dealio\kb126\res\highlight-bg.png
C:\Program Files\Dealio\kb126\res\logo.gif
C:\Program Files\Dealio\kb126\res\logo_over.gif
C:\Program Files\Dealio\kb126\res\man_toolbar.html
C:\Program Files\Dealio\kb126\res\man_toolbar.js
C:\Program Files\Dealio\kb126\res\post-this-deal.gif
C:\Program Files\Dealio\kb126\res\post-this-deal_over.gif
C:\Program Files\Dealio\kb126\res\scripts.js
C:\Program Files\Dealio\kb126\res\scroller.js
C:\Program Files\Dealio\kb126\res\search-chevron.gif
C:\Program Files\Dealio\kb126\res\search-chevron_over.gif
C:\Program Files\Dealio\kb126\res\search_bg_blink.gif
C:\Program Files\Dealio\kb126\res\separator.gif
C:\Program Files\Dealio\kb126\res\settings.gif
C:\Program Files\Dealio\kb126\res\settings_over.gif
C:\Program Files\Dealio\kb126\res\yahoo-search.png
C:\Program Files\Dealio\kb126\resFF\deal_report.jpg
C:\Program Files\Dealio\kb126\resFF\ebay_login.jpg
C:\Program Files\Dealio\kb126\rules\index.76.35
C:\Program Files\Dealio\kb126\rules\rules.1.10.76
C:\Program Files\Dealio\kb126\rules\rules.1.109.43
C:\Program Files\Dealio\kb126\rules\rules.1.110.43
C:\Program Files\Dealio\kb126\rules\rules.1.12.52
C:\Program Files\Dealio\kb126\rules\rules.1.13.58
C:\Program Files\Dealio\kb126\rules\rules.1.130.58
C:\Program Files\Dealio\kb126\rules\rules.1.135.50
C:\Program Files\Dealio\kb126\rules\rules.1.153.44
C:\Program Files\Dealio\kb126\rules\rules.1.155.43
C:\Program Files\Dealio\kb126\rules\rules.1.156.49
C:\Program Files\Dealio\kb126\rules\rules.1.16.60
C:\Program Files\Dealio\kb126\rules\rules.1.161.52
C:\Program Files\Dealio\kb126\rules\rules.1.178.66
C:\Program Files\Dealio\kb126\rules\rules.1.184.55
C:\Program Files\Dealio\kb126\rules\rules.1.188.52
C:\Program Files\Dealio\kb126\rules\rules.1.189.45
C:\Program Files\Dealio\kb126\rules\rules.1.196.43
C:\Program Files\Dealio\kb126\rules\rules.1.198.56
C:\Program Files\Dealio\kb126\rules\rules.1.199.43
C:\Program Files\Dealio\kb126\rules\rules.1.200.53
C:\Program Files\Dealio\kb126\rules\rules.1.201.43
C:\Program Files\Dealio\kb126\rules\rules.1.202.43
C:\Program Files\Dealio\kb126\rules\rules.1.203.71
C:\Program Files\Dealio\kb126\rules\rules.1.205.62
C:\Program Files\Dealio\kb126\rules\rules.1.213.71
C:\Program Files\Dealio\kb126\rules\rules.1.214.49
C:\Program Files\Dealio\kb126\rules\rules.1.215.43
C:\Program Files\Dealio\kb126\rules\rules.1.216.67
C:\Program Files\Dealio\kb126\rules\rules.1.217.67
C:\Program Files\Dealio\kb126\rules\rules.1.218.52
C:\Program Files\Dealio\kb126\rules\rules.1.219.43
C:\Program Files\Dealio\kb126\rules\rules.1.220.43
C:\Program Files\Dealio\kb126\rules\rules.1.221.57
C:\Program Files\Dealio\kb126\rules\rules.1.222.43
C:\Program Files\Dealio\kb126\rules\rules.1.223.68
C:\Program Files\Dealio\kb126\rules\rules.1.226.68
C:\Program Files\Dealio\kb126\rules\rules.1.227.43
C:\Program Files\Dealio\kb126\rules\rules.1.228.62
C:\Program Files\Dealio\kb126\rules\rules.1.229.76
C:\Program Files\Dealio\kb126\rules\rules.1.23.63
C:\Program Files\Dealio\kb126\rules\rules.1.239.43
C:\Program Files\Dealio\kb126\rules\rules.1.24.43
C:\Program Files\Dealio\kb126\rules\rules.1.240.43
C:\Program Files\Dealio\kb126\rules\rules.1.241.43
C:\Program Files\Dealio\kb126\rules\rules.1.242.43
C:\Program Files\Dealio\kb126\rules\rules.1.243.43
C:\Program Files\Dealio\kb126\rules\rules.1.244.63
C:\Program Files\Dealio\kb126\rules\rules.1.245.43
C:\Program Files\Dealio\kb126\rules\rules.1.247.43
C:\Program Files\Dealio\kb126\rules\rules.1.248.43
C:\Program Files\Dealio\kb126\rules\rules.1.249.43
C:\Program Files\Dealio\kb126\rules\rules.1.250.43
C:\Program Files\Dealio\kb126\rules\rules.1.251.43
C:\Program Files\Dealio\kb126\rules\rules.1.252.43
C:\Program Files\Dealio\kb126\rules\rules.1.253.43
C:\Program Files\Dealio\kb126\rules\rules.1.254.43
C:\Program Files\Dealio\kb126\rules\rules.1.255.43
C:\Program Files\Dealio\kb126\rules\rules.1.256.43
C:\Program Files\Dealio\kb126\rules\rules.1.257.43
C:\Program Files\Dealio\kb126\rules\rules.1.279.43
C:\Program Files\Dealio\kb126\rules\rules.1.28.58
C:\Program Files\Dealio\kb126\rules\rules.1.282.75
C:\Program Files\Dealio\kb126\rules\rules.1.283.43
C:\Program Files\Dealio\kb126\rules\rules.1.284.43
C:\Program Files\Dealio\kb126\rules\rules.1.289.67
C:\Program Files\Dealio\kb126\rules\rules.1.290.62
C:\Program Files\Dealio\kb126\rules\rules.1.291.61
C:\Program Files\Dealio\kb126\rules\rules.1.296.43
C:\Program Files\Dealio\kb126\rules\rules.1.297.43
C:\Program Files\Dealio\kb126\rules\rules.1.304.43
C:\Program Files\Dealio\kb126\rules\rules.1.307.43
C:\Program Files\Dealio\kb126\rules\rules.1.308.75
C:\Program Files\Dealio\kb126\rules\rules.1.31.47
C:\Program Files\Dealio\kb126\rules\rules.1.310.46
C:\Program Files\Dealio\kb126\rules\rules.1.311.43
C:\Program Files\Dealio\kb126\rules\rules.1.315.43
C:\Program Files\Dealio\kb126\rules\rules.1.316.43
C:\Program Files\Dealio\kb126\rules\rules.1.317.43
C:\Program Files\Dealio\kb126\rules\rules.1.318.43
C:\Program Files\Dealio\kb126\rules\rules.1.319.49
C:\Program Files\Dealio\kb126\rules\rules.1.32.48
C:\Program Files\Dealio\kb126\rules\rules.1.334.44
C:\Program Files\Dealio\kb126\rules\rules.1.335.60
C:\Program Files\Dealio\kb126\rules\rules.1.336.44
C:\Program Files\Dealio\kb126\rules\rules.1.337.44
C:\Program Files\Dealio\kb126\rules\rules.1.338.75
C:\Program Files\Dealio\kb126\rules\rules.1.339.47
C:\Program Files\Dealio\kb126\rules\rules.1.34.43
C:\Program Files\Dealio\kb126\rules\rules.1.340.47
C:\Program Files\Dealio\kb126\rules\rules.1.341.47
C:\Program Files\Dealio\kb126\rules\rules.1.349.50
C:\Program Files\Dealio\kb126\rules\rules.1.35.48
C:\Program Files\Dealio\kb126\rules\rules.1.350.50
C:\Program Files\Dealio\kb126\rules\rules.1.351.51
C:\Program Files\Dealio\kb126\rules\rules.1.352.54
C:\Program Files\Dealio\kb126\rules\rules.1.353.51
C:\Program Files\Dealio\kb126\rules\rules.1.354.51
C:\Program Files\Dealio\kb126\rules\rules.1.357.62
C:\Program Files\Dealio\kb126\rules\rules.1.358.52
C:\Program Files\Dealio\kb126\rules\rules.1.359.52
C:\Program Files\Dealio\kb126\rules\rules.1.360.53
C:\Program Files\Dealio\kb126\rules\rules.1.361.54
C:\Program Files\Dealio\kb126\rules\rules.1.362.68
C:\Program Files\Dealio\kb126\rules\rules.1.363.58
C:\Program Files\Dealio\kb126\rules\rules.1.364.54
C:\Program Files\Dealio\kb126\rules\rules.1.365.53
C:\Program Files\Dealio\kb126\rules\rules.1.367.56
C:\Program Files\Dealio\kb126\rules\rules.1.368.58
C:\Program Files\Dealio\kb126\rules\rules.1.369.55
C:\Program Files\Dealio\kb126\rules\rules.1.370.56
C:\Program Files\Dealio\kb126\rules\rules.1.371.56
C:\Program Files\Dealio\kb126\rules\rules.1.372.57
C:\Program Files\Dealio\kb126\rules\rules.1.373.55
C:\Program Files\Dealio\kb126\rules\rules.1.375.56
C:\Program Files\Dealio\kb126\rules\rules.1.376.57
C:\Program Files\Dealio\kb126\rules\rules.1.377.55
C:\Program Files\Dealio\kb126\rules\rules.1.378.65
C:\Program Files\Dealio\kb126\rules\rules.1.384.58
C:\Program Files\Dealio\kb126\rules\rules.1.386.71
C:\Program Files\Dealio\kb126\rules\rules.1.387.59
C:\Program Files\Dealio\kb126\rules\rules.1.388.59
C:\Program Files\Dealio\kb126\rules\rules.1.389.59
C:\Program Files\Dealio\kb126\rules\rules.1.390.60
C:\Program Files\Dealio\kb126\rules\rules.1.391.60
C:\Program Files\Dealio\kb126\rules\rules.1.392.60
C:\Program Files\Dealio\kb126\rules\rules.1.393.60
C:\Program Files\Dealio\kb126\rules\rules.1.394.60
C:\Program Files\Dealio\kb126\rules\rules.1.396.61
C:\Program Files\Dealio\kb126\rules\rules.1.397.61
C:\Program Files\Dealio\kb126\rules\rules.1.398.60
C:\Program Files\Dealio\kb126\rules\rules.1.399.60
C:\Program Files\Dealio\kb126\rules\rules.1.403.61
C:\Program Files\Dealio\kb126\rules\rules.1.404.63
C:\Program Files\Dealio\kb126\rules\rules.1.405.61
C:\Program Files\Dealio\kb126\rules\rules.1.406.61
C:\Program Files\Dealio\kb126\rules\rules.1.407.76
C:\Program Files\Dealio\kb126\rules\rules.1.408.63
C:\Program Files\Dealio\kb126\rules\rules.1.409.61
C:\Program Files\Dealio\kb126\rules\rules.1.412.62
C:\Program Files\Dealio\kb126\rules\rules.1.413.62
C:\Program Files\Dealio\kb126\rules\rules.1.414.62
C:\Program Files\Dealio\kb126\rules\rules.1.415.62
C:\Program Files\Dealio\kb126\rules\rules.1.416.62
C:\Program Files\Dealio\kb126\rules\rules.1.417.62
C:\Program Files\Dealio\kb126\rules\rules.1.418.62
C:\Program Files\Dealio\kb126\rules\rules.1.419.62
C:\Program Files\Dealio\kb126\rules\rules.1.420.62
C:\Program Files\Dealio\kb126\rules\rules.1.421.62
C:\Program Files\Dealio\kb126\rules\rules.1.423.63
C:\Program Files\Dealio\kb126\rules\rules.1.424.63
C:\Program Files\Dealio\kb126\rules\rules.1.425.63
C:\Program Files\Dealio\kb126\rules\rules.1.426.63
C:\Program Files\Dealio\kb126\rules\rules.1.427.63
C:\Program Files\Dealio\kb126\rules\rules.1.428.65
C:\Program Files\Dealio\kb126\rules\rules.1.429.63
C:\Program Files\Dealio\kb126\rules\rules.1.430.63
C:\Program Files\Dealio\kb126\rules\rules.1.432.65
C:\Program Files\Dealio\kb126\rules\rules.1.433.64
C:\Program Files\Dealio\kb126\rules\rules.1.434.65
C:\Program Files\Dealio\kb126\rules\rules.1.435.64
C:\Program Files\Dealio\kb126\rules\rules.1.436.76
C:\Program Files\Dealio\kb126\rules\rules.1.437.64
C:\Program Files\Dealio\kb126\rules\rules.1.438.71
C:\Program Files\Dealio\kb126\rules\rules.1.439.71
C:\Program Files\Dealio\kb126\rules\rules.1.440.75
C:\Program Files\Dealio\kb126\rules\rules.1.442.73
C:\Program Files\Dealio\kb126\rules\rules.1.443.73
C:\Program Files\Dealio\kb126\rules\rules.1.444.73
C:\Program Files\Dealio\kb126\rules\rules.1.445.68
C:\Program Files\Dealio\kb126\rules\rules.1.446.69
C:\Program Files\Dealio\kb126\rules\rules.1.450.67
C:\Program Files\Dealio\kb126\rules\rules.1.451.67
C:\Program Files\Dealio\kb126\rules\rules.1.452.68
C:\Program Files\Dealio\kb126\rules\rules.1.453.68
C:\Program Files\Dealio\kb126\rules\rules.1.454.69
C:\Program Files\Dealio\kb126\rules\rules.1.456.69
C:\Program Files\Dealio\kb126\rules\rules.1.457.75
C:\Program Files\Dealio\kb126\rules\rules.1.458.70
C:\Program Files\Dealio\kb126\rules\rules.1.459.70
C:\Program Files\Dealio\kb126\rules\rules.1.460.69
C:\Program Files\Dealio\kb126\rules\rules.1.462.74
C:\Program Files\Dealio\kb126\rules\rules.1.463.69
C:\Program Files\Dealio\kb126\rules\rules.1.464.70
C:\Program Files\Dealio\kb126\rules\rules.1.465.68
C:\Program Files\Dealio\kb126\rules\rules.1.468.70
C:\Program Files\Dealio\kb126\rules\rules.1.469.70
C:\Program Files\Dealio\kb126\rules\rules.1.470.70
C:\Program Files\Dealio\kb126\rules\rules.1.471.73
C:\Program Files\Dealio\kb126\rules\rules.1.472.70
C:\Program Files\Dealio\kb126\rules\rules.1.478.74
C:\Program Files\Dealio\kb126\rules\rules.1.479.73
C:\Program Files\Dealio\kb126\rules\rules.1.480.68
C:\Program Files\Dealio\kb126\rules\rules.1.481.71
C:\Program Files\Dealio\kb126\rules\rules.1.482.74
C:\Program Files\Dealio\kb126\rules\rules.1.49.67
C:\Program Files\Dealio\kb126\rules\rules.1.50.43
C:\Program Files\Dealio\kb126\rules\rules.1.500.71
C:\Program Files\Dealio\kb126\rules\rules.1.501.74
C:\Program Files\Dealio\kb126\rules\rules.1.502.71
C:\Program Files\Dealio\kb126\rules\rules.1.51.69
C:\Program Files\Dealio\kb126\rules\rules.1.52.72
C:\Program Files\Dealio\kb126\rules\rules.1.520.76
C:\Program Files\Dealio\kb126\rules\rules.1.521.76
C:\Program Files\Dealio\kb126\rules\rules.1.522.76
C:\Program Files\Dealio\kb126\rules\rules.1.53.51
C:\Program Files\Dealio\kb126\rules\rules.1.531.76
C:\Program Files\Dealio\kb126\rules\rules.1.532.75
C:\Program Files\Dealio\kb126\rules\rules.1.534.75
C:\Program Files\Dealio\kb126\rules\rules.1.54.47
C:\Program Files\Dealio\kb126\rules\rules.1.55.45
C:\Program Files\Dealio\kb126\rules\rules.1.56.69
C:\Program Files\Dealio\kb126\rules\rules.1.57.43
C:\Program Files\Dealio\kb126\rules\rules.1.58.47
C:\Program Files\Dealio\kb126\rules\rules.1.593.76
C:\Program Files\Dealio\kb126\rules\rules.1.595.76
C:\Program Files\Dealio\kb126\rules\rules.1.63.57
C:\Program Files\Dealio\kb126\rules\rules.1.66.47
C:\Program Files\Dealio\kb126\rules\rules.1.70.75
C:\Program Files\Dealio\kb126\rules\rules.1.71.43
C:\Program Files\Dealio\kb126\rulesFF\index.3.67.22
C:\Program Files\Dealio\kb126\rulesFF\rules.3.109.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.178.66
C:\Program Files\Dealio\kb126\rulesFF\rules.3.198.56
C:\Program Files\Dealio\kb126\rulesFF\rules.3.245.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.247.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.279.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.283.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.284.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.289.67
C:\Program Files\Dealio\kb126\rulesFF\rules.3.290.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.297.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.315.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.319.49
C:\Program Files\Dealio\kb126\rulesFF\rules.3.335.60
C:\Program Files\Dealio\kb126\rulesFF\rules.3.337.44
C:\Program Files\Dealio\kb126\rulesFF\rules.3.340.47
C:\Program Files\Dealio\kb126\rulesFF\rules.3.360.53
C:\Program Files\Dealio\kb126\rulesFF\rules.3.386.59
C:\Program Files\Dealio\kb126\rulesFF\rules.3.388.59
C:\Program Files\Dealio\kb126\rulesFF\rules.3.391.60
C:\Program Files\Dealio\kb126\rulesFF\rules.3.398.60
C:\Program Files\Dealio\kb126\rulesFF\rules.3.399.60
C:\Program Files\Dealio\kb126\rulesFF\rules.3.403.61
C:\Program Files\Dealio\kb126\rulesFF\rules.3.404.63
C:\Program Files\Dealio\kb126\rulesFF\rules.3.405.61
C:\Program Files\Dealio\kb126\rulesFF\rules.3.406.61
C:\Program Files\Dealio\kb126\rulesFF\rules.3.407.61
C:\Program Files\Dealio\kb126\rulesFF\rules.3.408.63
C:\Program Files\Dealio\kb126\rulesFF\rules.3.409.61
C:\Program Files\Dealio\kb126\rulesFF\rules.3.412.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.413.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.414.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.415.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.416.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.417.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.418.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.419.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.420.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.421.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.424.63
C:\Program Files\Dealio\kb126\rulesFF\rules.3.427.63
C:\Program Files\Dealio\kb126\rulesFF\rules.3.432.65
C:\Program Files\Dealio\kb126\rulesFF\rules.3.49.67
C:\Program Files\Dealio\kb126\rulesFF\rules.3.51.46
C:\Program Files\Dealio\kb126\rulesFF\rules.3.52.57
C:\Program Files\Dealio\kb126\rulesFF\rules.3.53.51
C:\Program Files\Dealio\kb126\rulesFF\rules.3.54.47
C:\Program Files\Dealio\kb126\rulesFF\rules.3.57.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.58.47
C:\Program Files\Dealio\SearchSettingsKit.exe
C:\Program Files\Macrogaming
C:\Program Files\Macrogaming\SweetIM\conf\adapter.xml
C:\Program Files\Macrogaming\SweetIM\conf\autoupdate.xml
C:\Program Files\Macrogaming\SweetIM\conf\logger.xml
C:\Program Files\Macrogaming\SweetIM\conf\messages.xml
C:\Program Files\Macrogaming\SweetIM\conf\sweetim.xml
C:\Program Files\Macrogaming\SweetIM\conf\sweetimapp.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\baz-art-de-vie074@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\baz-art-de-vie074@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\benji_31_s@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\benji_31_s@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\legui31@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\legui31@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\loub_31@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\loub_31@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\main_user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\nenevik@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\nenevik@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\redou31@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\redou31@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\souricette82@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\souricette82@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\tit.melou@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\tit.melou@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\vincelabelette@aol.com\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\vincelabelette@aol.com\lastuse_SpecialFX.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\vincelabelette@aol.com\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\xxlola-chaudexx@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\xxlola-chaudexx@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\yannickistres@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\yannickistres@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00010857.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00010859.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\0001085D.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00010898.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000108BA.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000108C4.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000108CD.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\0002006C.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00020077.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00030063.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000400C4.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00050004.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00050005.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00050007.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000600DA.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\010108A7.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\01050001.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\01050002.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\01050007.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\cache_indx.dat
C:\Program Files\Macrogaming\SweetIM\default.xml
C:\Program Files\Macrogaming\SweetIM\mgAdaptersProxy.dll
C:\Program Files\Macrogaming\SweetIM\mgAIMAuto.dll
C:\Program Files\Macrogaming\SweetIM\mgAIMMessengerAdapter.dll
C:\Program Files\Macrogaming\SweetIM\mgArchive.dll
C:\Program Files\Macrogaming\SweetIM\mgcommon.dll
C:\Program Files\Macrogaming\SweetIM\mgcommunication.dll
C:\Program Files\Macrogaming\SweetIM\mgconfig.dll
C:\Program Files\Macrogaming\SweetIM\mgFlashPlayer.dll
C:\Program Files\Macrogaming\SweetIM\mghooking.dll
C:\Program Files\Macrogaming\SweetIM\mgIEPlayer.dll
C:\Program Files\Macrogaming\SweetIM\mglogger.dll
C:\Program Files\Macrogaming\SweetIM\mgMediaPlayer.dll
C:\Program Files\Macrogaming\SweetIM\mgMsnAuto.dll
C:\Program Files\Macrogaming\SweetIM\mgMsnMessengerAdapter.dll
C:\Program Files\Macrogaming\SweetIM\mgSweetIM.dll
C:\Program Files\Macrogaming\SweetIM\mgUpdateSupport.dll
C:\Program Files\Macrogaming\SweetIM\mgxml_wrapper.dll
C:\Program Files\Macrogaming\SweetIM\mgYahooAuto.dll
C:\Program Files\Macrogaming\SweetIM\mgYahooMessengerAdapter.dll
C:\Program Files\Macrogaming\SweetIM\msvcp71.dll
C:\Program Files\Macrogaming\SweetIM\msvcr71.dll
C:\Program Files\Macrogaming\SweetIM\resources\images\AudibleButton.png
C:\Program Files\Macrogaming\SweetIM\resources\images\DisplayPicturesButton.png
C:\Program Files\Macrogaming\SweetIM\resources\images\EmoticonButton.png
C:\Program Files\Macrogaming\SweetIM\resources\images\NudgeButton.png
C:\Program Files\Macrogaming\SweetIM\resources\images\SoundFxButton.png
C:\Program Files\Macrogaming\SweetIM\resources\images\WinksButton.png
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\Macrogaming\SweetIMBarForIE\affid.dat
C:\Program Files\Macrogaming\SweetIMBarForIE\basis.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\Bookmarks_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Cache\cd2005c66fba47ff715ecc444d3bc1fb.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\Email_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Games_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Greetingcards_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Mobile_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Music_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\News_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Shoping_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\SmileySmile.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\SmileyWink.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\sweetimicons.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.crc
C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\version.txt
.
((((((((((((((((((((((((((((( Fichiers créés 2008-05-12 to 2008-06-12 ))))))))))))))))))))))))))))))))))))
.
2008-06-11 13:06 . 2008-06-11 13:14 <REP> d-------- C:\Program Files\Navilog1
2008-06-11 11:35 . 2008-04-14 17:52 272,768 --------- C:\WINDOWS\system32\drivers\bthport.sys
2008-06-11 11:35 . 2008-04-14 17:52 272,768 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys
2008-06-06 10:01 . 2008-06-08 09:49 <REP> d-------- C:\Program Files\Avanquest update
2008-06-06 10:01 . 2008-06-06 10:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\BVRP Software
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Program Files\Sony Ericsson
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Documents and Settings\User\Application Data\InstallShield
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
2008-05-22 21:33 . 2008-05-23 11:31 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Fashion Solitaire 1.2
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-12 21:12 --------- d-----w C:\Documents and Settings\User\Application Data\OpenOffice.org2
2008-06-12 13:45 --------- d-----w C:\Program Files\eMule
2008-06-06 08:25 --------- d-----w C:\Program Files\Zylom Games
2008-06-06 08:01 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-27 08:46 --------- d-----w C:\Documents and Settings\User\Application Data\Zylom
2008-05-27 07:53 --------- d-----w C:\Program Files\Dawn of Telperion
2008-05-08 12:28 202,752 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys
2008-05-07 05:15 1,293,824 ----a-w C:\WINDOWS\system32\quartz.dll
2008-05-01 08:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\JollyBear
2008-04-30 20:32 --------- d-----w C:\Documents and Settings\User\Application Data\iWin
2008-04-30 20:07 --------- d-----w C:\Documents and Settings\User\Application Data\AdobeUM
2008-04-30 20:02 --------- d-----w C:\Documents and Settings\All Users\Application Data\Gogii
2008-04-27 09:27 --------- d-----w C:\Program Files\Free Easy Burner
2008-04-23 04:16 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-04-19 15:57 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sandlot Games
2008-04-18 20:24 --------- d-----w C:\Program Files\Red Kawa
2008-04-15 12:01 --------- d-----w C:\Documents and Settings\User\Application Data\Gamelab
2008-04-15 08:07 --------- d-----w C:\Program Files\Dofus
2008-04-13 13:50 --------- d-----w C:\Documents and Settings\User\Application Data\EoRezo
2008-04-12 18:01 230,432 ----a-w C:\StiImg.dat
2008-04-12 15:23 --------- d-----w C:\Program Files\Common Files
2008-04-12 15:23 --------- d-----w C:\Program Files\CamStudio
2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll
2008-03-25 04:51 194,144 ----a-w C:\WINDOWS\system32\msjint40.dll
2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys
2008-03-13 20:13 3,350 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
2008-01-18 10:00 102,769 ----a-w C:\Documents and Settings\User\last_report.dat
2007-10-15 19:24 168 --sh--r C:\WINDOWS\system32\745A587F8C.sys
.
((((((((((((((((((((((((((((( snapshot@2008-06-11_14.02.51.14 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-05-07 04:55:47 1,294,336 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP2QFE\quartz.dll
+ 2008-05-07 05:11:24 1,294,336 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP3GDR\quartz.dll
+ 2008-05-07 05:04:59 1,294,336 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP3QFE\quartz.dll
+ 2007-11-30 11:19:06 18,296 ----a-w C:\WINDOWS\$hf_mig$\KB951698\spmsg.dll
+ 2007-11-30 11:19:06 234,872 ----a-w C:\WINDOWS\$hf_mig$\KB951698\spuninst.exe
+ 2007-11-30 11:19:06 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\spcustom.dll
+ 2007-11-30 12:39:29 767,352 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\update.exe
+ 2007-11-30 12:39:31 406,392 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\updspapi.dll
- 2008-06-11 11:58:08 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-06-12 21:12:16 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-04-14 15:52:45 272,768 ------w C:\WINDOWS\Driver Cache\i386\bthport.sys
+ 2008-03-01 12:58:06 124,928 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\advpack.dll
+ 2008-03-01 12:58:06 347,136 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\dxtmsft.dll
+ 2008-03-01 12:58:06 214,528 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\dxtrans.dll
+ 2008-03-01 12:58:06 133,120 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\extmgr.dll
+ 2008-03-01 12:58:06 63,488 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\icardie.dll
+ 2008-02-29 08:56:41 70,656 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ie4uinit.exe
+ 2008-03-01 12:58:06 153,088 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieakeng.dll
+ 2008-03-01 12:58:06 230,400 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieaksie.dll
+ 2008-02-15 05:44:25 161,792 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieakui.dll
+ 2008-03-01 12:58:07 383,488 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieapfltr.dll
+ 2008-03-01 12:58:07 384,512 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\iedkcs32.dll
+ 2008-03-01 12:58:08 6,066,176 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieframe.dll
+ 2008-03-01 12:58:08 44,544 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\iernonce.dll
+ 2008-03-01 12:58:08 267,776 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\iertutil.dll
+ 2008-02-22 10:00:51 13,824 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieudinit.exe
+ 2008-02-29 08:57:05 625,664 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\iexplore.exe
+ 2008-03-01 12:58:08 27,648 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\jsproxy.dll
+ 2008-03-01 12:58:08 459,264 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\msfeeds.dll
+ 2008-03-01 12:58:08 52,224 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\msfeedsbs.dll
+ 2008-03-01 16:28:10 3,591,680 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\mshtml.dll
+ 2008-03-01 12:58:09 478,208 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\mshtmled.dll
+ 2008-03-01 12:58:10 193,024 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\msrating.dll
+ 2008-03-01 12:58:10 671,232 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\mstime.dll
+ 2008-03-01 12:58:10 102,912 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\occache.dll
+ 2008-03-01 12:58:10 44,544 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\pngfilt.dll
+ 2007-03-06 01:34:38 216,800 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:35:48 394,976 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\updspapi.dll
+ 2008-03-01 12:58:10 105,984 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\url.dll
+ 2008-03-01 12:58:10 1,159,680 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\urlmon.dll
+ 2008-03-01 12:58:11 233,472 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\webcheck.dll
+ 2008-03-01 12:58:11 826,368 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\wininet.dll
- 2008-03-01 12:58:06 124,928 ----a-w C:\WINDOWS\system32\advpack.dll
+ 2008-04-23 04:16:39 124,928 ----a-w C:\WINDOWS\system32\advpack.dll
- 2008-03-01 12:58:06 124,928 -c--a-w C:\WINDOWS\system32\dllcache\advpack.dll
+ 2008-04-23 04:16:39 124,928 -c--a-w C:\WINDOWS\system32\dllcache\advpack.dll
- 2008-03-01 12:58:06 347,136 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
+ 2008-04-23 04:16:39 347,136 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
- 2008-03-01 12:58:06 214,528 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
+ 2008-04-23 04:16:39 214,528 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
- 2008-03-01 12:58:06 133,120 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll
+ 2008-04-23 04:16:39 133,120 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll
- 2008-03-01 12:58:06 63,488 -c----w C:\WINDOWS\system32\dllcache\icardie.dll
+ 2008-04-23 04:16:39 63,488 -c----w C:\WINDOWS\system32\dllcache\icardie.dll
- 2008-02-29 08:56:41 70,656 -c--a-w C:\WINDOWS\system32\dllcache\ie4uinit.exe
+ 2008-04-22 07:41:08 70,656 -c--a-w C:\WINDOWS\system32\dllcache\ie4uinit.exe
- 2008-03-01 12:58:06 153,088 -c--a-w C:\WINDOWS\system32\dllcache\ieakeng.dll
+ 2008-04-23 04:16:39 153,088 -c--a-w C:\WINDOWS\system32\dllcache\ieakeng.dll
- 2008-03-01 12:58:06 230,400 -c--a-w C:\WINDOWS\system32\dllcache\ieaksie.dll
+ 2008-04-23 04:16:39 230,400 -c--a-w C:\WINDOWS\system32\dllcache\ieaksie.dll
- 2008-02-15 05:44:25 161,792 -c--a-w C:\WINDOWS\system32\dllcache\ieakui.dll
+ 2008-04-20 05:07:51 161,792 -c--a-w C:\WINDOWS\system32\dllcache\ieakui.dll
- 2008-03-01 12:58:07 383,488 -c----w C:\WINDOWS\system32\dllcache\ieapfltr.dll
+ 2008-04-23 04:16:39 383,488 -c----w C:\WINDOWS\system32\dllcache\ieapfltr.dll
- 2008-03-01 12:58:07 384,512 -c--a-w C:\WINDOWS\system32\dllcache\iedkcs32.dll
+ 2008-04-23 04:16:39 384,512 -c--a-w C:\WINDOWS\system32\dllcache\iedkcs32.dll
- 2008-03-01 12:58:08 6,066,176 -c----w C:\WINDOWS\system32\dllcache\ieframe.dll
+ 2008-04-23 04:16:39 6,066,176 -c----w C:\WINDOWS\system32\dllcache\ieframe.dll
- 2008-03-01 12:58:08 44,544 -c--a-w C:\WINDOWS\system32\dllcache\iernonce.dll
+ 2008-04-23 04:16:39 44,544 -c--a-w C:\WINDOWS\system32\dllcache\iernonce.dll
- 2008-03-01 12:58:08 267,776 -c----w C:\WINDOWS\system32\dllcache\iertutil.dll
+ 2008-04-23 04:16:39 267,776 -c----w C:\WINDOWS\system32\dllcache\iertutil.dll
- 2008-02-22 10:00:51 13,824 -c----w C:\WINDOWS\system32\dllcache\ieudinit.exe
+ 2008-04-22 07:39:58 13,824 -c----w C:\WINDOWS\system32\dllcache\ieudinit.exe
- 2008-02-29 08:57:05 625,664 -c--a-w C:\WINDOWS\system32\dllcache\iexplore.exe
+ 2008-04-22 07:41:30 625,664 -c--a-w C:\WINDOWS\system32\dllcache\iexplore.exe
- 2008-03-01 12:58:08 27,648 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
+ 2008-04-23 04:16:40 27,648 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
- 2008-03-01 12:58:08 459,264 -c----w C:\WINDOWS\system32\dllcache\msfeeds.dll
+ 2008-04-23 04:16:40 459,264 -c----w C:\WINDOWS\system32\dllcache\msfeeds.dll
- 2008-03-01 12:58:08 52,224 -c----w C:\WINDOWS\system32\dllcache\msfeedsbs.dll
+ 2008-04-23 04:16:40 52,224 -c----w C:\WINDOWS\system32\dllcache\msfeedsbs.dll
- 2008-03-01 16:28:10 3,591,680 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll
+ 2008-04-23 20:16:42 3,591,680 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll
- 2008-03-01 12:58:09 478,208 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
+ 2008-04-23 04:16:40 478,208 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
- 2008-03-01 12:58:10 193,024 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll
+ 2008-04-23 04:16:40 193,024 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll
- 2008-03-01 12:58:10 671,232 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll
+ 2008-04-23 04:16:40 671,232 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll
- 2008-03-01 12:58:10 102,912 -c--a-w C:\WINDOWS\system32\dllcache\occache.dll
+ 2008-04-23 04:16:40 102,912 -c--a-w C:\WINDOWS\system32\dllcache\occache.dll
- 2008-03-01 12:58:10 44,544 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
+ 2008-04-23 04:16:40 44,544 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
- 2007-10-29 22:43:32 1,293,824 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll
+ 2008-05-07 05:15:36 1,293,824 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll
- 2006-07-13 08:48:58 202,240 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys
+ 2008-05-08 12:28:49 202,752 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys
- 2008-03-01 12:58:10 105,984 -c--a-w C:\WINDOWS\system32\dllcache\url.dll
+ 2008-04-23 04:16:40 105,984 -c--a-w C:\WINDOWS\system32\dllcache\url.dll
- 2008-03-01 12:58:10 1,159,680 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll
+ 2008-04-23 04:16:40 1,159,680 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll
- 2008-03-01 12:58:11 233,472 -c--a-w C:\WINDOWS\system32\dllcache\webcheck.dll
+ 2008-04-23 04:16:40 233,472 -c--a-w C:\WINDOWS\system32\dllcache\webcheck.dll
- 2008-03-01 12:58:11 826,368 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll
+ 2008-04-23 04:16:40 826,368 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll
- 2008-03-01 12:58:06 347,136 ----a-w C:\WINDOWS\system32\dxtmsft.dll
+ 2008-04-23 04:16:39 347,136 ----a-w C:\WINDOWS\system32\dxtmsft.dll
- 2008-03-01 12:58:06 214,528 ----a-w C:\WINDOWS\system32\dxtrans.dll
+ 2008-04-23 04:16:39 214,528 ----a-w C:\WINDOWS\system32\dxtrans.dll
- 2008-03-01 12:58:06 133,120 ----a-w C:\WINDOWS\system32\extmgr.dll
+ 2008-04-23 04:16:39 133,120 ----a-w C:\WINDOWS\system32\extmgr.dll
- 2008-03-01 12:58:06 63,488 ----a-w C:\WINDOWS\system32\icardie.dll
+ 2008-04-23 04:16:39 63,488 ----a-w C:\WINDOWS\system32\icardie.dll
- 2008-02-29 08:56:41 70,656 ----a-w C:\WINDOWS\system32\ie4uinit.exe
+ 2008-04-22 07:41:08 70,656 ----a-w C:\WINDOWS\system32\ie4uinit.exe
- 2008-03-01 12:58:06 153,088 ----a-w C:\WINDOWS\system32\ieakeng.dll
+ 2008-04-23 04:16:39 153,088 ----a-w C:\WINDOWS\system32\ieakeng.dll
- 2008-03-01 12:58:06 230,400 ----a-w C:\WINDOWS\system32\ieaksie.dll
+ 2008-04-23 04:16:39 230,400 ----a-w C:\WINDOWS\system32\ieaksie.dll
- 2008-02-15 05:44:25 161,792 ----a-w C:\WINDOWS\system32\ieakui.dll
+ 2008-04-20 05:07:51 161,792 ----a-w C:\WINDOWS\system32\ieakui.dll
- 2008-03-01 12:58:07 383,488 ----a-w C:\WINDOWS\system32\ieapfltr.dll
+ 2008-04-23 04:16:39 383,488 ----a-w C:\WINDOWS\system32\ieapfltr.dll
- 2008-03-01 12:58:07 384,512 ----a-w C:\WINDOWS\system32\iedkcs32.dll
+ 2008-04-23 04:16:39 384,512 ----a-w C:\WINDOWS\system32\iedkcs32.dll
- 2008-03-01 12:58:08 6,066,176 ----a-w C:\WINDOWS\system32\ieframe.dll
+ 2008-04-23 04:16:39 6,066,176 ----a-w C:\WINDOWS\system32\ieframe.dll
- 2008-03-01 12:58:08 44,544 ----a-w C:\WINDOWS\system32\iernonce.dll
+ 2008-04-23 04:16:39 44,544 ----a-w C:\WINDOWS\system32\iernonce.dll
- 2008-03-01 12:58:08 267,776 ----a-w C:\WINDOWS\system32\iertutil.dll
+ 2008-04-23 04:16:39 267,776 ----a-w C:\WINDOWS\system32\iertutil.dll
- 2008-02-22 10:00:51 13,824 ----a-w C:\WINDOWS\system32\ieudinit.exe
+ 2008-04-22 07:39:58 13,824 ----a-w C:\WINDOWS\system32\ieudinit.exe
- 2008-03-01 12:58:08 27,648 ----a-w C:\WINDOWS\system32\jsproxy.dll
+ 2008-04-23 04:16:40 27,648 ----a-w C:\WINDOWS\system32\jsproxy.dll
- 2008-05-09 21:35:04 16,863,864 ----a-w C:\WINDOWS\system32\MRT.exe
+ 2008-05-29 23:35:11 17,486,968 ----a-w C:\WINDOWS\system32\MRT.exe
- 2008-03-01 12:58:08 459,264 ----a-w C:\WINDOWS\system32\msfeeds.dll
+ 2008-04-23 04:16:40 459,264 ----a-w C:\WINDOWS\system32\msfeeds.dll
- 2008-03-01 12:58:08 52,224 ----a-w C:\WINDOWS\system32\msfeedsbs.dll
+ 2008-04-23 04:16:40 52,224 ----a-w C:\WINDOWS\system32\msfeedsbs.dll
- 2008-03-01 16:28:10 3,591,680 ----a-w C:\WINDOWS\system32\mshtml.dll
+ 2008-04-23 20:16:42 3,591,680 ----a-w C:\WINDOWS\system32\mshtml.dll
- 2008-03-01 12:58:09 478,208 ----a-w C:\WINDOWS\system32\mshtmled.dll
+ 2008-04-23 04:16:40 478,208 ----a-w C:\WINDOWS\system32\mshtmled.dll
- 2008-03-01 12:58:10 193,024 ----a-w C:\WINDOWS\system32\msrating.dll
+ 2008-04-23 04:16:40 193,024 ----a-w C:\WINDOWS\system32\msrating.dll
- 2008-03-01 12:58:10 671,232 ----a-w C:\WINDOWS\system32\mstime.dll
+ 2008-04-23 04:16:40 671,232 ----a-w C:\WINDOWS\system32\mstime.dll
- 2008-03-01 12:58:10 102,912 ----a-w C:\WINDOWS\system32\occache.dll
+ 2008-04-23 04:16:40 102,912 ----a-w C:\WINDOWS\system32\occache.dll
- 2008-03-01 12:58:10 44,544 ----a-w C:\WINDOWS\system32\pngfilt.dll
+ 2008-04-23 04:16:40 44,544 ----a-w C:\WINDOWS\system32\pngfilt.dll
- 2006-10-16 15:10:58 14,640 ------w C:\WINDOWS\system32\spmsg.dll
+ 2007-11-30 11:19:06 18,296 ------w C:\WINDOWS\system32\spmsg.dll
- 2008-03-01 12:58:10 105,984 ----a-w C:\WINDOWS\system32\url.dll
+ 2008-04-23 04:16:40 105,984 ----a-w C:\WINDOWS\system32\url.dll
- 2008-03-01 12:58:10 1,159,680 ------w C:\WINDOWS\system32\urlmon.dll
+ 2008-04-23 04:16:40 1,159,680 ----a-w C:\WINDOWS\system32\urlmon.dll
- 2008-03-01 12:58:11 233,472 ----a-w C:\WINDOWS\system32\webcheck.dll
+ 2008-04-23 04:16:40 233,472 ----a-w C:\WINDOWS\system32\webcheck.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 12:34 5724184]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-28 13:15 68856]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2006-03-02 14:00 15360]
"MsgCenterExe"="C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" [ ]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.e
ComboFix 08-06-10.3 - User 2008-06-12 23:34:05.3 - NTFSx86
Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.580 [GMT 2:00]
Endroit: C:\Documents and Settings\User\Bureau\la star\Nétoyage\ComboFix.exe
Command switches used :: C:\Documents and Settings\User\Bureau\CFScript.txt
* Création d'un nouveau point de restauration
[color=red]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/color]
.
(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\User\Application Data\Dealio
C:\Documents and Settings\User\Application Data\Dealio\dinstallhelper.31CF7211E2E94400A23C2DAF63940B0D.dll
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\chevron-small.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\deal_report.jpg
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\DealioSearch.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\deals-leftcap.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\ebay_login.jpg
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\err_mainwindow.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\err_toolbar.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\global_scripts.js
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\headerbgthin.jpg
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\highlight-bg.png
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\logo.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\logo_over.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\man_toolbar.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\man_toolbar.js
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\post-this-deal.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\post-this-deal_over.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\scripts.js
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\scroller.js
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\search-chevron.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\search-chevron_over.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\search_bg_blink.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\separator.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\settings.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\settings_over.gif
C:\Documents and Settings\User\Application Data\Dealio\kb126\res\yahoo-search.png
C:\Documents and Settings\User\Application Data\Dealio\kb126\resFF\deal_report.jpg
C:\Documents and Settings\User\Application Data\Dealio\kb126\resFF\ebay_login.jpg
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\index.76.35
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.10.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.109.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.110.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.12.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.13.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.130.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.135.50
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.153.44
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.155.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.156.49
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.16.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.161.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.178.66
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.184.55
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.188.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.189.45
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.196.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.198.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.199.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.200.53
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.201.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.202.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.203.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.205.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.213.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.214.49
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.215.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.216.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.217.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.218.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.219.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.220.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.221.57
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.222.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.223.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.226.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.227.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.228.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.229.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.23.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.239.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.24.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.240.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.241.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.242.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.243.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.244.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.245.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.247.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.248.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.249.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.250.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.251.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.252.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.253.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.254.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.255.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.256.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.257.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.279.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.28.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.282.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.283.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.284.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.289.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.290.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.291.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.296.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.297.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.304.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.307.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.308.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.31.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.310.46
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.311.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.315.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.316.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.317.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.318.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.319.49
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.32.48
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.334.44
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.335.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.336.44
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.337.44
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.338.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.339.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.34.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.340.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.341.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.349.50
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.35.48
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.350.50
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.351.51
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.352.54
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.353.51
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.354.51
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.357.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.358.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.359.52
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.360.53
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.361.54
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.362.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.363.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.364.54
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.365.53
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.367.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.368.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.369.55
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.370.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.371.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.372.57
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.373.55
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.375.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.376.57
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.377.55
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.378.65
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.384.58
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.386.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.387.59
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.388.59
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.389.59
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.390.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.391.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.392.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.393.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.394.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.396.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.397.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.398.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.399.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.403.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.404.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.405.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.406.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.407.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.408.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.409.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.412.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.413.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.414.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.415.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.416.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.417.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.418.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.419.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.420.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.421.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.423.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.424.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.425.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.426.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.427.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.428.65
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.429.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.430.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.432.65
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.433.64
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.434.65
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.435.64
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.436.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.437.64
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.438.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.439.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.440.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.442.73
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.443.73
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.444.73
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.445.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.446.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.450.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.451.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.452.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.453.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.454.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.456.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.457.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.458.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.459.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.460.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.462.74
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.463.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.464.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.465.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.468.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.469.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.470.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.471.73
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.472.70
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.478.74
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.479.73
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.480.68
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.481.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.482.74
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.49.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.50.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.500.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.501.74
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.502.71
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.51.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.52.72
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.520.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.521.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.522.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.53.51
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.531.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.532.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.534.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.54.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.55.45
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.56.69
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.57.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.58.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.593.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.595.76
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.63.57
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.66.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.70.75
C:\Documents and Settings\User\Application Data\Dealio\kb126\rules\rules.1.71.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\index.3.67.22
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.109.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.178.66
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.198.56
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.245.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.247.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.279.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.283.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.284.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.289.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.290.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.297.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.315.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.319.49
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.335.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.337.44
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.340.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.360.53
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.386.59
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.388.59
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.391.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.398.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.399.60
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.403.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.404.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.405.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.406.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.407.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.408.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.409.61
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.412.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.413.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.414.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.415.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.416.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.417.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.418.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.419.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.420.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.421.62
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.424.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.427.63
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.432.65
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.49.67
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.51.46
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.52.57
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.53.51
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.54.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.57.43
C:\Documents and Settings\User\Application Data\Dealio\kb126\rulesFF\rules.3.58.47
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\_toolbar_tmp_1208_2768_5.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\_toolbar_tmp_3892_2384_5.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\_toolbar_tmp_3892_3016_10.html
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\dealio-14039.log
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\dealio-14040.log
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\dealio-14041.log
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\dealio-14042.log
C:\Documents and Settings\User\Application Data\Dealio\kb126\temp\dod_cache.xml
C:\Program Files\Dealio
C:\Program Files\Dealio\DealioAU.exe
C:\Program Files\Dealio\kb126\Dealio Deskbar.exe
C:\Program Files\Dealio\kb126\Dealio.dll
C:\Program Files\Dealio\kb126\res\chevron-small.gif
C:\Program Files\Dealio\kb126\res\deal_report.jpg
C:\Program Files\Dealio\kb126\res\DealioSearch.html
C:\Program Files\Dealio\kb126\res\deals-leftcap.gif
C:\Program Files\Dealio\kb126\res\ebay_login.jpg
C:\Program Files\Dealio\kb126\res\err_mainwindow.html
C:\Program Files\Dealio\kb126\res\err_toolbar.html
C:\Program Files\Dealio\kb126\res\global_scripts.js
C:\Program Files\Dealio\kb126\res\headerbgthin.jpg
C:\Program Files\Dealio\kb126\res\highlight-bg.png
C:\Program Files\Dealio\kb126\res\logo.gif
C:\Program Files\Dealio\kb126\res\logo_over.gif
C:\Program Files\Dealio\kb126\res\man_toolbar.html
C:\Program Files\Dealio\kb126\res\man_toolbar.js
C:\Program Files\Dealio\kb126\res\post-this-deal.gif
C:\Program Files\Dealio\kb126\res\post-this-deal_over.gif
C:\Program Files\Dealio\kb126\res\scripts.js
C:\Program Files\Dealio\kb126\res\scroller.js
C:\Program Files\Dealio\kb126\res\search-chevron.gif
C:\Program Files\Dealio\kb126\res\search-chevron_over.gif
C:\Program Files\Dealio\kb126\res\search_bg_blink.gif
C:\Program Files\Dealio\kb126\res\separator.gif
C:\Program Files\Dealio\kb126\res\settings.gif
C:\Program Files\Dealio\kb126\res\settings_over.gif
C:\Program Files\Dealio\kb126\res\yahoo-search.png
C:\Program Files\Dealio\kb126\resFF\deal_report.jpg
C:\Program Files\Dealio\kb126\resFF\ebay_login.jpg
C:\Program Files\Dealio\kb126\rules\index.76.35
C:\Program Files\Dealio\kb126\rules\rules.1.10.76
C:\Program Files\Dealio\kb126\rules\rules.1.109.43
C:\Program Files\Dealio\kb126\rules\rules.1.110.43
C:\Program Files\Dealio\kb126\rules\rules.1.12.52
C:\Program Files\Dealio\kb126\rules\rules.1.13.58
C:\Program Files\Dealio\kb126\rules\rules.1.130.58
C:\Program Files\Dealio\kb126\rules\rules.1.135.50
C:\Program Files\Dealio\kb126\rules\rules.1.153.44
C:\Program Files\Dealio\kb126\rules\rules.1.155.43
C:\Program Files\Dealio\kb126\rules\rules.1.156.49
C:\Program Files\Dealio\kb126\rules\rules.1.16.60
C:\Program Files\Dealio\kb126\rules\rules.1.161.52
C:\Program Files\Dealio\kb126\rules\rules.1.178.66
C:\Program Files\Dealio\kb126\rules\rules.1.184.55
C:\Program Files\Dealio\kb126\rules\rules.1.188.52
C:\Program Files\Dealio\kb126\rules\rules.1.189.45
C:\Program Files\Dealio\kb126\rules\rules.1.196.43
C:\Program Files\Dealio\kb126\rules\rules.1.198.56
C:\Program Files\Dealio\kb126\rules\rules.1.199.43
C:\Program Files\Dealio\kb126\rules\rules.1.200.53
C:\Program Files\Dealio\kb126\rules\rules.1.201.43
C:\Program Files\Dealio\kb126\rules\rules.1.202.43
C:\Program Files\Dealio\kb126\rules\rules.1.203.71
C:\Program Files\Dealio\kb126\rules\rules.1.205.62
C:\Program Files\Dealio\kb126\rules\rules.1.213.71
C:\Program Files\Dealio\kb126\rules\rules.1.214.49
C:\Program Files\Dealio\kb126\rules\rules.1.215.43
C:\Program Files\Dealio\kb126\rules\rules.1.216.67
C:\Program Files\Dealio\kb126\rules\rules.1.217.67
C:\Program Files\Dealio\kb126\rules\rules.1.218.52
C:\Program Files\Dealio\kb126\rules\rules.1.219.43
C:\Program Files\Dealio\kb126\rules\rules.1.220.43
C:\Program Files\Dealio\kb126\rules\rules.1.221.57
C:\Program Files\Dealio\kb126\rules\rules.1.222.43
C:\Program Files\Dealio\kb126\rules\rules.1.223.68
C:\Program Files\Dealio\kb126\rules\rules.1.226.68
C:\Program Files\Dealio\kb126\rules\rules.1.227.43
C:\Program Files\Dealio\kb126\rules\rules.1.228.62
C:\Program Files\Dealio\kb126\rules\rules.1.229.76
C:\Program Files\Dealio\kb126\rules\rules.1.23.63
C:\Program Files\Dealio\kb126\rules\rules.1.239.43
C:\Program Files\Dealio\kb126\rules\rules.1.24.43
C:\Program Files\Dealio\kb126\rules\rules.1.240.43
C:\Program Files\Dealio\kb126\rules\rules.1.241.43
C:\Program Files\Dealio\kb126\rules\rules.1.242.43
C:\Program Files\Dealio\kb126\rules\rules.1.243.43
C:\Program Files\Dealio\kb126\rules\rules.1.244.63
C:\Program Files\Dealio\kb126\rules\rules.1.245.43
C:\Program Files\Dealio\kb126\rules\rules.1.247.43
C:\Program Files\Dealio\kb126\rules\rules.1.248.43
C:\Program Files\Dealio\kb126\rules\rules.1.249.43
C:\Program Files\Dealio\kb126\rules\rules.1.250.43
C:\Program Files\Dealio\kb126\rules\rules.1.251.43
C:\Program Files\Dealio\kb126\rules\rules.1.252.43
C:\Program Files\Dealio\kb126\rules\rules.1.253.43
C:\Program Files\Dealio\kb126\rules\rules.1.254.43
C:\Program Files\Dealio\kb126\rules\rules.1.255.43
C:\Program Files\Dealio\kb126\rules\rules.1.256.43
C:\Program Files\Dealio\kb126\rules\rules.1.257.43
C:\Program Files\Dealio\kb126\rules\rules.1.279.43
C:\Program Files\Dealio\kb126\rules\rules.1.28.58
C:\Program Files\Dealio\kb126\rules\rules.1.282.75
C:\Program Files\Dealio\kb126\rules\rules.1.283.43
C:\Program Files\Dealio\kb126\rules\rules.1.284.43
C:\Program Files\Dealio\kb126\rules\rules.1.289.67
C:\Program Files\Dealio\kb126\rules\rules.1.290.62
C:\Program Files\Dealio\kb126\rules\rules.1.291.61
C:\Program Files\Dealio\kb126\rules\rules.1.296.43
C:\Program Files\Dealio\kb126\rules\rules.1.297.43
C:\Program Files\Dealio\kb126\rules\rules.1.304.43
C:\Program Files\Dealio\kb126\rules\rules.1.307.43
C:\Program Files\Dealio\kb126\rules\rules.1.308.75
C:\Program Files\Dealio\kb126\rules\rules.1.31.47
C:\Program Files\Dealio\kb126\rules\rules.1.310.46
C:\Program Files\Dealio\kb126\rules\rules.1.311.43
C:\Program Files\Dealio\kb126\rules\rules.1.315.43
C:\Program Files\Dealio\kb126\rules\rules.1.316.43
C:\Program Files\Dealio\kb126\rules\rules.1.317.43
C:\Program Files\Dealio\kb126\rules\rules.1.318.43
C:\Program Files\Dealio\kb126\rules\rules.1.319.49
C:\Program Files\Dealio\kb126\rules\rules.1.32.48
C:\Program Files\Dealio\kb126\rules\rules.1.334.44
C:\Program Files\Dealio\kb126\rules\rules.1.335.60
C:\Program Files\Dealio\kb126\rules\rules.1.336.44
C:\Program Files\Dealio\kb126\rules\rules.1.337.44
C:\Program Files\Dealio\kb126\rules\rules.1.338.75
C:\Program Files\Dealio\kb126\rules\rules.1.339.47
C:\Program Files\Dealio\kb126\rules\rules.1.34.43
C:\Program Files\Dealio\kb126\rules\rules.1.340.47
C:\Program Files\Dealio\kb126\rules\rules.1.341.47
C:\Program Files\Dealio\kb126\rules\rules.1.349.50
C:\Program Files\Dealio\kb126\rules\rules.1.35.48
C:\Program Files\Dealio\kb126\rules\rules.1.350.50
C:\Program Files\Dealio\kb126\rules\rules.1.351.51
C:\Program Files\Dealio\kb126\rules\rules.1.352.54
C:\Program Files\Dealio\kb126\rules\rules.1.353.51
C:\Program Files\Dealio\kb126\rules\rules.1.354.51
C:\Program Files\Dealio\kb126\rules\rules.1.357.62
C:\Program Files\Dealio\kb126\rules\rules.1.358.52
C:\Program Files\Dealio\kb126\rules\rules.1.359.52
C:\Program Files\Dealio\kb126\rules\rules.1.360.53
C:\Program Files\Dealio\kb126\rules\rules.1.361.54
C:\Program Files\Dealio\kb126\rules\rules.1.362.68
C:\Program Files\Dealio\kb126\rules\rules.1.363.58
C:\Program Files\Dealio\kb126\rules\rules.1.364.54
C:\Program Files\Dealio\kb126\rules\rules.1.365.53
C:\Program Files\Dealio\kb126\rules\rules.1.367.56
C:\Program Files\Dealio\kb126\rules\rules.1.368.58
C:\Program Files\Dealio\kb126\rules\rules.1.369.55
C:\Program Files\Dealio\kb126\rules\rules.1.370.56
C:\Program Files\Dealio\kb126\rules\rules.1.371.56
C:\Program Files\Dealio\kb126\rules\rules.1.372.57
C:\Program Files\Dealio\kb126\rules\rules.1.373.55
C:\Program Files\Dealio\kb126\rules\rules.1.375.56
C:\Program Files\Dealio\kb126\rules\rules.1.376.57
C:\Program Files\Dealio\kb126\rules\rules.1.377.55
C:\Program Files\Dealio\kb126\rules\rules.1.378.65
C:\Program Files\Dealio\kb126\rules\rules.1.384.58
C:\Program Files\Dealio\kb126\rules\rules.1.386.71
C:\Program Files\Dealio\kb126\rules\rules.1.387.59
C:\Program Files\Dealio\kb126\rules\rules.1.388.59
C:\Program Files\Dealio\kb126\rules\rules.1.389.59
C:\Program Files\Dealio\kb126\rules\rules.1.390.60
C:\Program Files\Dealio\kb126\rules\rules.1.391.60
C:\Program Files\Dealio\kb126\rules\rules.1.392.60
C:\Program Files\Dealio\kb126\rules\rules.1.393.60
C:\Program Files\Dealio\kb126\rules\rules.1.394.60
C:\Program Files\Dealio\kb126\rules\rules.1.396.61
C:\Program Files\Dealio\kb126\rules\rules.1.397.61
C:\Program Files\Dealio\kb126\rules\rules.1.398.60
C:\Program Files\Dealio\kb126\rules\rules.1.399.60
C:\Program Files\Dealio\kb126\rules\rules.1.403.61
C:\Program Files\Dealio\kb126\rules\rules.1.404.63
C:\Program Files\Dealio\kb126\rules\rules.1.405.61
C:\Program Files\Dealio\kb126\rules\rules.1.406.61
C:\Program Files\Dealio\kb126\rules\rules.1.407.76
C:\Program Files\Dealio\kb126\rules\rules.1.408.63
C:\Program Files\Dealio\kb126\rules\rules.1.409.61
C:\Program Files\Dealio\kb126\rules\rules.1.412.62
C:\Program Files\Dealio\kb126\rules\rules.1.413.62
C:\Program Files\Dealio\kb126\rules\rules.1.414.62
C:\Program Files\Dealio\kb126\rules\rules.1.415.62
C:\Program Files\Dealio\kb126\rules\rules.1.416.62
C:\Program Files\Dealio\kb126\rules\rules.1.417.62
C:\Program Files\Dealio\kb126\rules\rules.1.418.62
C:\Program Files\Dealio\kb126\rules\rules.1.419.62
C:\Program Files\Dealio\kb126\rules\rules.1.420.62
C:\Program Files\Dealio\kb126\rules\rules.1.421.62
C:\Program Files\Dealio\kb126\rules\rules.1.423.63
C:\Program Files\Dealio\kb126\rules\rules.1.424.63
C:\Program Files\Dealio\kb126\rules\rules.1.425.63
C:\Program Files\Dealio\kb126\rules\rules.1.426.63
C:\Program Files\Dealio\kb126\rules\rules.1.427.63
C:\Program Files\Dealio\kb126\rules\rules.1.428.65
C:\Program Files\Dealio\kb126\rules\rules.1.429.63
C:\Program Files\Dealio\kb126\rules\rules.1.430.63
C:\Program Files\Dealio\kb126\rules\rules.1.432.65
C:\Program Files\Dealio\kb126\rules\rules.1.433.64
C:\Program Files\Dealio\kb126\rules\rules.1.434.65
C:\Program Files\Dealio\kb126\rules\rules.1.435.64
C:\Program Files\Dealio\kb126\rules\rules.1.436.76
C:\Program Files\Dealio\kb126\rules\rules.1.437.64
C:\Program Files\Dealio\kb126\rules\rules.1.438.71
C:\Program Files\Dealio\kb126\rules\rules.1.439.71
C:\Program Files\Dealio\kb126\rules\rules.1.440.75
C:\Program Files\Dealio\kb126\rules\rules.1.442.73
C:\Program Files\Dealio\kb126\rules\rules.1.443.73
C:\Program Files\Dealio\kb126\rules\rules.1.444.73
C:\Program Files\Dealio\kb126\rules\rules.1.445.68
C:\Program Files\Dealio\kb126\rules\rules.1.446.69
C:\Program Files\Dealio\kb126\rules\rules.1.450.67
C:\Program Files\Dealio\kb126\rules\rules.1.451.67
C:\Program Files\Dealio\kb126\rules\rules.1.452.68
C:\Program Files\Dealio\kb126\rules\rules.1.453.68
C:\Program Files\Dealio\kb126\rules\rules.1.454.69
C:\Program Files\Dealio\kb126\rules\rules.1.456.69
C:\Program Files\Dealio\kb126\rules\rules.1.457.75
C:\Program Files\Dealio\kb126\rules\rules.1.458.70
C:\Program Files\Dealio\kb126\rules\rules.1.459.70
C:\Program Files\Dealio\kb126\rules\rules.1.460.69
C:\Program Files\Dealio\kb126\rules\rules.1.462.74
C:\Program Files\Dealio\kb126\rules\rules.1.463.69
C:\Program Files\Dealio\kb126\rules\rules.1.464.70
C:\Program Files\Dealio\kb126\rules\rules.1.465.68
C:\Program Files\Dealio\kb126\rules\rules.1.468.70
C:\Program Files\Dealio\kb126\rules\rules.1.469.70
C:\Program Files\Dealio\kb126\rules\rules.1.470.70
C:\Program Files\Dealio\kb126\rules\rules.1.471.73
C:\Program Files\Dealio\kb126\rules\rules.1.472.70
C:\Program Files\Dealio\kb126\rules\rules.1.478.74
C:\Program Files\Dealio\kb126\rules\rules.1.479.73
C:\Program Files\Dealio\kb126\rules\rules.1.480.68
C:\Program Files\Dealio\kb126\rules\rules.1.481.71
C:\Program Files\Dealio\kb126\rules\rules.1.482.74
C:\Program Files\Dealio\kb126\rules\rules.1.49.67
C:\Program Files\Dealio\kb126\rules\rules.1.50.43
C:\Program Files\Dealio\kb126\rules\rules.1.500.71
C:\Program Files\Dealio\kb126\rules\rules.1.501.74
C:\Program Files\Dealio\kb126\rules\rules.1.502.71
C:\Program Files\Dealio\kb126\rules\rules.1.51.69
C:\Program Files\Dealio\kb126\rules\rules.1.52.72
C:\Program Files\Dealio\kb126\rules\rules.1.520.76
C:\Program Files\Dealio\kb126\rules\rules.1.521.76
C:\Program Files\Dealio\kb126\rules\rules.1.522.76
C:\Program Files\Dealio\kb126\rules\rules.1.53.51
C:\Program Files\Dealio\kb126\rules\rules.1.531.76
C:\Program Files\Dealio\kb126\rules\rules.1.532.75
C:\Program Files\Dealio\kb126\rules\rules.1.534.75
C:\Program Files\Dealio\kb126\rules\rules.1.54.47
C:\Program Files\Dealio\kb126\rules\rules.1.55.45
C:\Program Files\Dealio\kb126\rules\rules.1.56.69
C:\Program Files\Dealio\kb126\rules\rules.1.57.43
C:\Program Files\Dealio\kb126\rules\rules.1.58.47
C:\Program Files\Dealio\kb126\rules\rules.1.593.76
C:\Program Files\Dealio\kb126\rules\rules.1.595.76
C:\Program Files\Dealio\kb126\rules\rules.1.63.57
C:\Program Files\Dealio\kb126\rules\rules.1.66.47
C:\Program Files\Dealio\kb126\rules\rules.1.70.75
C:\Program Files\Dealio\kb126\rules\rules.1.71.43
C:\Program Files\Dealio\kb126\rulesFF\index.3.67.22
C:\Program Files\Dealio\kb126\rulesFF\rules.3.109.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.178.66
C:\Program Files\Dealio\kb126\rulesFF\rules.3.198.56
C:\Program Files\Dealio\kb126\rulesFF\rules.3.245.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.247.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.279.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.283.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.284.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.289.67
C:\Program Files\Dealio\kb126\rulesFF\rules.3.290.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.297.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.315.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.319.49
C:\Program Files\Dealio\kb126\rulesFF\rules.3.335.60
C:\Program Files\Dealio\kb126\rulesFF\rules.3.337.44
C:\Program Files\Dealio\kb126\rulesFF\rules.3.340.47
C:\Program Files\Dealio\kb126\rulesFF\rules.3.360.53
C:\Program Files\Dealio\kb126\rulesFF\rules.3.386.59
C:\Program Files\Dealio\kb126\rulesFF\rules.3.388.59
C:\Program Files\Dealio\kb126\rulesFF\rules.3.391.60
C:\Program Files\Dealio\kb126\rulesFF\rules.3.398.60
C:\Program Files\Dealio\kb126\rulesFF\rules.3.399.60
C:\Program Files\Dealio\kb126\rulesFF\rules.3.403.61
C:\Program Files\Dealio\kb126\rulesFF\rules.3.404.63
C:\Program Files\Dealio\kb126\rulesFF\rules.3.405.61
C:\Program Files\Dealio\kb126\rulesFF\rules.3.406.61
C:\Program Files\Dealio\kb126\rulesFF\rules.3.407.61
C:\Program Files\Dealio\kb126\rulesFF\rules.3.408.63
C:\Program Files\Dealio\kb126\rulesFF\rules.3.409.61
C:\Program Files\Dealio\kb126\rulesFF\rules.3.412.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.413.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.414.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.415.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.416.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.417.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.418.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.419.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.420.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.421.62
C:\Program Files\Dealio\kb126\rulesFF\rules.3.424.63
C:\Program Files\Dealio\kb126\rulesFF\rules.3.427.63
C:\Program Files\Dealio\kb126\rulesFF\rules.3.432.65
C:\Program Files\Dealio\kb126\rulesFF\rules.3.49.67
C:\Program Files\Dealio\kb126\rulesFF\rules.3.51.46
C:\Program Files\Dealio\kb126\rulesFF\rules.3.52.57
C:\Program Files\Dealio\kb126\rulesFF\rules.3.53.51
C:\Program Files\Dealio\kb126\rulesFF\rules.3.54.47
C:\Program Files\Dealio\kb126\rulesFF\rules.3.57.43
C:\Program Files\Dealio\kb126\rulesFF\rules.3.58.47
C:\Program Files\Dealio\SearchSettingsKit.exe
C:\Program Files\Macrogaming
C:\Program Files\Macrogaming\SweetIM\conf\adapter.xml
C:\Program Files\Macrogaming\SweetIM\conf\autoupdate.xml
C:\Program Files\Macrogaming\SweetIM\conf\logger.xml
C:\Program Files\Macrogaming\SweetIM\conf\messages.xml
C:\Program Files\Macrogaming\SweetIM\conf\sweetim.xml
C:\Program Files\Macrogaming\SweetIM\conf\sweetimapp.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\baz-art-de-vie074@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\baz-art-de-vie074@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\benji_31_s@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\benji_31_s@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\legui31@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\legui31@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\loub_31@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\loub_31@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\main_user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\nenevik@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\nenevik@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\redou31@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\redou31@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\souricette82@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\souricette82@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\tit.melou@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\tit.melou@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\vincelabelette@aol.com\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\vincelabelette@aol.com\lastuse_SpecialFX.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\vincelabelette@aol.com\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\xxlola-chaudexx@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\xxlola-chaudexx@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\yannickistres@hotmail.fr\emoticons_shortcut.xml
C:\Program Files\Macrogaming\SweetIM\conf\users\yannickistres@hotmail.fr\user_config.xml
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00010857.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00010859.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\0001085D.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00010898.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000108BA.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000108C4.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000108CD.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\0002006C.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00020077.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00030063.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000400C4.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00050004.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00050005.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\00050007.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\000600DA.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\010108A7.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\01050001.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\01050002.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\01050007.dat
C:\Program Files\Macrogaming\SweetIM\data\contentdb\cache_indx.dat
C:\Program Files\Macrogaming\SweetIM\default.xml
C:\Program Files\Macrogaming\SweetIM\mgAdaptersProxy.dll
C:\Program Files\Macrogaming\SweetIM\mgAIMAuto.dll
C:\Program Files\Macrogaming\SweetIM\mgAIMMessengerAdapter.dll
C:\Program Files\Macrogaming\SweetIM\mgArchive.dll
C:\Program Files\Macrogaming\SweetIM\mgcommon.dll
C:\Program Files\Macrogaming\SweetIM\mgcommunication.dll
C:\Program Files\Macrogaming\SweetIM\mgconfig.dll
C:\Program Files\Macrogaming\SweetIM\mgFlashPlayer.dll
C:\Program Files\Macrogaming\SweetIM\mghooking.dll
C:\Program Files\Macrogaming\SweetIM\mgIEPlayer.dll
C:\Program Files\Macrogaming\SweetIM\mglogger.dll
C:\Program Files\Macrogaming\SweetIM\mgMediaPlayer.dll
C:\Program Files\Macrogaming\SweetIM\mgMsnAuto.dll
C:\Program Files\Macrogaming\SweetIM\mgMsnMessengerAdapter.dll
C:\Program Files\Macrogaming\SweetIM\mgSweetIM.dll
C:\Program Files\Macrogaming\SweetIM\mgUpdateSupport.dll
C:\Program Files\Macrogaming\SweetIM\mgxml_wrapper.dll
C:\Program Files\Macrogaming\SweetIM\mgYahooAuto.dll
C:\Program Files\Macrogaming\SweetIM\mgYahooMessengerAdapter.dll
C:\Program Files\Macrogaming\SweetIM\msvcp71.dll
C:\Program Files\Macrogaming\SweetIM\msvcr71.dll
C:\Program Files\Macrogaming\SweetIM\resources\images\AudibleButton.png
C:\Program Files\Macrogaming\SweetIM\resources\images\DisplayPicturesButton.png
C:\Program Files\Macrogaming\SweetIM\resources\images\EmoticonButton.png
C:\Program Files\Macrogaming\SweetIM\resources\images\NudgeButton.png
C:\Program Files\Macrogaming\SweetIM\resources\images\SoundFxButton.png
C:\Program Files\Macrogaming\SweetIM\resources\images\WinksButton.png
C:\Program Files\Macrogaming\SweetIM\SweetIM.exe
C:\Program Files\Macrogaming\SweetIMBarForIE\affid.dat
C:\Program Files\Macrogaming\SweetIMBarForIE\basis.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\Bookmarks_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Cache\cd2005c66fba47ff715ecc444d3bc1fb.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\Email_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Games_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Greetingcards_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Mobile_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Music_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\News_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\Shoping_23x18.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\SmileySmile.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\SmileyWink.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\sweetimicons.bmp
C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.crc
C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll
C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.xml
C:\Program Files\Macrogaming\SweetIMBarForIE\version.txt
.
((((((((((((((((((((((((((((( Fichiers créés 2008-05-12 to 2008-06-12 ))))))))))))))))))))))))))))))))))))
.
2008-06-11 13:06 . 2008-06-11 13:14 <REP> d-------- C:\Program Files\Navilog1
2008-06-11 11:35 . 2008-04-14 17:52 272,768 --------- C:\WINDOWS\system32\drivers\bthport.sys
2008-06-11 11:35 . 2008-04-14 17:52 272,768 -----c--- C:\WINDOWS\system32\dllcache\bthport.sys
2008-06-06 10:01 . 2008-06-08 09:49 <REP> d-------- C:\Program Files\Avanquest update
2008-06-06 10:01 . 2008-06-06 10:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\BVRP Software
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Program Files\Sony Ericsson
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Documents and Settings\User\Application Data\InstallShield
2008-06-06 10:00 . 2008-06-06 10:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
2008-05-22 21:33 . 2008-05-23 11:31 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Fashion Solitaire 1.2
.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-06-12 21:12 --------- d-----w C:\Documents and Settings\User\Application Data\OpenOffice.org2
2008-06-12 13:45 --------- d-----w C:\Program Files\eMule
2008-06-06 08:25 --------- d-----w C:\Program Files\Zylom Games
2008-06-06 08:01 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-27 08:46 --------- d-----w C:\Documents and Settings\User\Application Data\Zylom
2008-05-27 07:53 --------- d-----w C:\Program Files\Dawn of Telperion
2008-05-08 12:28 202,752 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys
2008-05-07 05:15 1,293,824 ----a-w C:\WINDOWS\system32\quartz.dll
2008-05-01 08:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\JollyBear
2008-04-30 20:32 --------- d-----w C:\Documents and Settings\User\Application Data\iWin
2008-04-30 20:07 --------- d-----w C:\Documents and Settings\User\Application Data\AdobeUM
2008-04-30 20:02 --------- d-----w C:\Documents and Settings\All Users\Application Data\Gogii
2008-04-27 09:27 --------- d-----w C:\Program Files\Free Easy Burner
2008-04-23 04:16 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-04-19 15:57 --------- d-----w C:\Documents and Settings\All Users\Application Data\Sandlot Games
2008-04-18 20:24 --------- d-----w C:\Program Files\Red Kawa
2008-04-15 12:01 --------- d-----w C:\Documents and Settings\User\Application Data\Gamelab
2008-04-15 08:07 --------- d-----w C:\Program Files\Dofus
2008-04-13 13:50 --------- d-----w C:\Documents and Settings\User\Application Data\EoRezo
2008-04-12 18:01 230,432 ----a-w C:\StiImg.dat
2008-04-12 15:23 --------- d-----w C:\Program Files\Common Files
2008-04-12 15:23 --------- d-----w C:\Program Files\CamStudio
2008-03-25 04:51 621,344 ----a-w C:\WINDOWS\system32\mswstr10.dll
2008-03-25 04:51 194,144 ----a-w C:\WINDOWS\system32\msjint40.dll
2008-03-20 08:09 1,845,376 ----a-w C:\WINDOWS\system32\win32k.sys
2008-03-13 20:13 3,350 --sha-w C:\WINDOWS\system32\KGyGaAvL.sys
2008-01-18 10:00 102,769 ----a-w C:\Documents and Settings\User\last_report.dat
2007-10-15 19:24 168 --sh--r C:\WINDOWS\system32\745A587F8C.sys
.
((((((((((((((((((((((((((((( snapshot@2008-06-11_14.02.51.14 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-05-07 04:55:47 1,294,336 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP2QFE\quartz.dll
+ 2008-05-07 05:11:24 1,294,336 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP3GDR\quartz.dll
+ 2008-05-07 05:04:59 1,294,336 ----a-w C:\WINDOWS\$hf_mig$\KB951698\SP3QFE\quartz.dll
+ 2007-11-30 11:19:06 18,296 ----a-w C:\WINDOWS\$hf_mig$\KB951698\spmsg.dll
+ 2007-11-30 11:19:06 234,872 ----a-w C:\WINDOWS\$hf_mig$\KB951698\spuninst.exe
+ 2007-11-30 11:19:06 26,488 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\spcustom.dll
+ 2007-11-30 12:39:29 767,352 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\update.exe
+ 2007-11-30 12:39:31 406,392 ----a-w C:\WINDOWS\$hf_mig$\KB951698\update\updspapi.dll
- 2008-06-11 11:58:08 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-06-12 21:12:16 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-04-14 15:52:45 272,768 ------w C:\WINDOWS\Driver Cache\i386\bthport.sys
+ 2008-03-01 12:58:06 124,928 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\advpack.dll
+ 2008-03-01 12:58:06 347,136 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\dxtmsft.dll
+ 2008-03-01 12:58:06 214,528 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\dxtrans.dll
+ 2008-03-01 12:58:06 133,120 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\extmgr.dll
+ 2008-03-01 12:58:06 63,488 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\icardie.dll
+ 2008-02-29 08:56:41 70,656 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ie4uinit.exe
+ 2008-03-01 12:58:06 153,088 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieakeng.dll
+ 2008-03-01 12:58:06 230,400 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieaksie.dll
+ 2008-02-15 05:44:25 161,792 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieakui.dll
+ 2008-03-01 12:58:07 383,488 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieapfltr.dll
+ 2008-03-01 12:58:07 384,512 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\iedkcs32.dll
+ 2008-03-01 12:58:08 6,066,176 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieframe.dll
+ 2008-03-01 12:58:08 44,544 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\iernonce.dll
+ 2008-03-01 12:58:08 267,776 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\iertutil.dll
+ 2008-02-22 10:00:51 13,824 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\ieudinit.exe
+ 2008-02-29 08:57:05 625,664 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\iexplore.exe
+ 2008-03-01 12:58:08 27,648 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\jsproxy.dll
+ 2008-03-01 12:58:08 459,264 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\msfeeds.dll
+ 2008-03-01 12:58:08 52,224 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\msfeedsbs.dll
+ 2008-03-01 16:28:10 3,591,680 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\mshtml.dll
+ 2008-03-01 12:58:09 478,208 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\mshtmled.dll
+ 2008-03-01 12:58:10 193,024 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\msrating.dll
+ 2008-03-01 12:58:10 671,232 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\mstime.dll
+ 2008-03-01 12:58:10 102,912 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\occache.dll
+ 2008-03-01 12:58:10 44,544 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\pngfilt.dll
+ 2007-03-06 01:34:38 216,800 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe
+ 2007-03-06 01:35:48 394,976 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\updspapi.dll
+ 2008-03-01 12:58:10 105,984 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\url.dll
+ 2008-03-01 12:58:10 1,159,680 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\urlmon.dll
+ 2008-03-01 12:58:11 233,472 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\webcheck.dll
+ 2008-03-01 12:58:11 826,368 -c----w C:\WINDOWS\ie7updates\KB950759-IE7\wininet.dll
- 2008-03-01 12:58:06 124,928 ----a-w C:\WINDOWS\system32\advpack.dll
+ 2008-04-23 04:16:39 124,928 ----a-w C:\WINDOWS\system32\advpack.dll
- 2008-03-01 12:58:06 124,928 -c--a-w C:\WINDOWS\system32\dllcache\advpack.dll
+ 2008-04-23 04:16:39 124,928 -c--a-w C:\WINDOWS\system32\dllcache\advpack.dll
- 2008-03-01 12:58:06 347,136 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
+ 2008-04-23 04:16:39 347,136 -c--a-w C:\WINDOWS\system32\dllcache\dxtmsft.dll
- 2008-03-01 12:58:06 214,528 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
+ 2008-04-23 04:16:39 214,528 -c--a-w C:\WINDOWS\system32\dllcache\dxtrans.dll
- 2008-03-01 12:58:06 133,120 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll
+ 2008-04-23 04:16:39 133,120 -c--a-w C:\WINDOWS\system32\dllcache\extmgr.dll
- 2008-03-01 12:58:06 63,488 -c----w C:\WINDOWS\system32\dllcache\icardie.dll
+ 2008-04-23 04:16:39 63,488 -c----w C:\WINDOWS\system32\dllcache\icardie.dll
- 2008-02-29 08:56:41 70,656 -c--a-w C:\WINDOWS\system32\dllcache\ie4uinit.exe
+ 2008-04-22 07:41:08 70,656 -c--a-w C:\WINDOWS\system32\dllcache\ie4uinit.exe
- 2008-03-01 12:58:06 153,088 -c--a-w C:\WINDOWS\system32\dllcache\ieakeng.dll
+ 2008-04-23 04:16:39 153,088 -c--a-w C:\WINDOWS\system32\dllcache\ieakeng.dll
- 2008-03-01 12:58:06 230,400 -c--a-w C:\WINDOWS\system32\dllcache\ieaksie.dll
+ 2008-04-23 04:16:39 230,400 -c--a-w C:\WINDOWS\system32\dllcache\ieaksie.dll
- 2008-02-15 05:44:25 161,792 -c--a-w C:\WINDOWS\system32\dllcache\ieakui.dll
+ 2008-04-20 05:07:51 161,792 -c--a-w C:\WINDOWS\system32\dllcache\ieakui.dll
- 2008-03-01 12:58:07 383,488 -c----w C:\WINDOWS\system32\dllcache\ieapfltr.dll
+ 2008-04-23 04:16:39 383,488 -c----w C:\WINDOWS\system32\dllcache\ieapfltr.dll
- 2008-03-01 12:58:07 384,512 -c--a-w C:\WINDOWS\system32\dllcache\iedkcs32.dll
+ 2008-04-23 04:16:39 384,512 -c--a-w C:\WINDOWS\system32\dllcache\iedkcs32.dll
- 2008-03-01 12:58:08 6,066,176 -c----w C:\WINDOWS\system32\dllcache\ieframe.dll
+ 2008-04-23 04:16:39 6,066,176 -c----w C:\WINDOWS\system32\dllcache\ieframe.dll
- 2008-03-01 12:58:08 44,544 -c--a-w C:\WINDOWS\system32\dllcache\iernonce.dll
+ 2008-04-23 04:16:39 44,544 -c--a-w C:\WINDOWS\system32\dllcache\iernonce.dll
- 2008-03-01 12:58:08 267,776 -c----w C:\WINDOWS\system32\dllcache\iertutil.dll
+ 2008-04-23 04:16:39 267,776 -c----w C:\WINDOWS\system32\dllcache\iertutil.dll
- 2008-02-22 10:00:51 13,824 -c----w C:\WINDOWS\system32\dllcache\ieudinit.exe
+ 2008-04-22 07:39:58 13,824 -c----w C:\WINDOWS\system32\dllcache\ieudinit.exe
- 2008-02-29 08:57:05 625,664 -c--a-w C:\WINDOWS\system32\dllcache\iexplore.exe
+ 2008-04-22 07:41:30 625,664 -c--a-w C:\WINDOWS\system32\dllcache\iexplore.exe
- 2008-03-01 12:58:08 27,648 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
+ 2008-04-23 04:16:40 27,648 -c--a-w C:\WINDOWS\system32\dllcache\jsproxy.dll
- 2008-03-01 12:58:08 459,264 -c----w C:\WINDOWS\system32\dllcache\msfeeds.dll
+ 2008-04-23 04:16:40 459,264 -c----w C:\WINDOWS\system32\dllcache\msfeeds.dll
- 2008-03-01 12:58:08 52,224 -c----w C:\WINDOWS\system32\dllcache\msfeedsbs.dll
+ 2008-04-23 04:16:40 52,224 -c----w C:\WINDOWS\system32\dllcache\msfeedsbs.dll
- 2008-03-01 16:28:10 3,591,680 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll
+ 2008-04-23 20:16:42 3,591,680 -c--a-w C:\WINDOWS\system32\dllcache\mshtml.dll
- 2008-03-01 12:58:09 478,208 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
+ 2008-04-23 04:16:40 478,208 -c--a-w C:\WINDOWS\system32\dllcache\mshtmled.dll
- 2008-03-01 12:58:10 193,024 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll
+ 2008-04-23 04:16:40 193,024 -c--a-w C:\WINDOWS\system32\dllcache\msrating.dll
- 2008-03-01 12:58:10 671,232 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll
+ 2008-04-23 04:16:40 671,232 -c--a-w C:\WINDOWS\system32\dllcache\mstime.dll
- 2008-03-01 12:58:10 102,912 -c--a-w C:\WINDOWS\system32\dllcache\occache.dll
+ 2008-04-23 04:16:40 102,912 -c--a-w C:\WINDOWS\system32\dllcache\occache.dll
- 2008-03-01 12:58:10 44,544 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
+ 2008-04-23 04:16:40 44,544 -c--a-w C:\WINDOWS\system32\dllcache\pngfilt.dll
- 2007-10-29 22:43:32 1,293,824 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll
+ 2008-05-07 05:15:36 1,293,824 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll
- 2006-07-13 08:48:58 202,240 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys
+ 2008-05-08 12:28:49 202,752 -c--a-w C:\WINDOWS\system32\dllcache\rmcast.sys
- 2008-03-01 12:58:10 105,984 -c--a-w C:\WINDOWS\system32\dllcache\url.dll
+ 2008-04-23 04:16:40 105,984 -c--a-w C:\WINDOWS\system32\dllcache\url.dll
- 2008-03-01 12:58:10 1,159,680 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll
+ 2008-04-23 04:16:40 1,159,680 -c--a-w C:\WINDOWS\system32\dllcache\urlmon.dll
- 2008-03-01 12:58:11 233,472 -c--a-w C:\WINDOWS\system32\dllcache\webcheck.dll
+ 2008-04-23 04:16:40 233,472 -c--a-w C:\WINDOWS\system32\dllcache\webcheck.dll
- 2008-03-01 12:58:11 826,368 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll
+ 2008-04-23 04:16:40 826,368 -c--a-w C:\WINDOWS\system32\dllcache\wininet.dll
- 2008-03-01 12:58:06 347,136 ----a-w C:\WINDOWS\system32\dxtmsft.dll
+ 2008-04-23 04:16:39 347,136 ----a-w C:\WINDOWS\system32\dxtmsft.dll
- 2008-03-01 12:58:06 214,528 ----a-w C:\WINDOWS\system32\dxtrans.dll
+ 2008-04-23 04:16:39 214,528 ----a-w C:\WINDOWS\system32\dxtrans.dll
- 2008-03-01 12:58:06 133,120 ----a-w C:\WINDOWS\system32\extmgr.dll
+ 2008-04-23 04:16:39 133,120 ----a-w C:\WINDOWS\system32\extmgr.dll
- 2008-03-01 12:58:06 63,488 ----a-w C:\WINDOWS\system32\icardie.dll
+ 2008-04-23 04:16:39 63,488 ----a-w C:\WINDOWS\system32\icardie.dll
- 2008-02-29 08:56:41 70,656 ----a-w C:\WINDOWS\system32\ie4uinit.exe
+ 2008-04-22 07:41:08 70,656 ----a-w C:\WINDOWS\system32\ie4uinit.exe
- 2008-03-01 12:58:06 153,088 ----a-w C:\WINDOWS\system32\ieakeng.dll
+ 2008-04-23 04:16:39 153,088 ----a-w C:\WINDOWS\system32\ieakeng.dll
- 2008-03-01 12:58:06 230,400 ----a-w C:\WINDOWS\system32\ieaksie.dll
+ 2008-04-23 04:16:39 230,400 ----a-w C:\WINDOWS\system32\ieaksie.dll
- 2008-02-15 05:44:25 161,792 ----a-w C:\WINDOWS\system32\ieakui.dll
+ 2008-04-20 05:07:51 161,792 ----a-w C:\WINDOWS\system32\ieakui.dll
- 2008-03-01 12:58:07 383,488 ----a-w C:\WINDOWS\system32\ieapfltr.dll
+ 2008-04-23 04:16:39 383,488 ----a-w C:\WINDOWS\system32\ieapfltr.dll
- 2008-03-01 12:58:07 384,512 ----a-w C:\WINDOWS\system32\iedkcs32.dll
+ 2008-04-23 04:16:39 384,512 ----a-w C:\WINDOWS\system32\iedkcs32.dll
- 2008-03-01 12:58:08 6,066,176 ----a-w C:\WINDOWS\system32\ieframe.dll
+ 2008-04-23 04:16:39 6,066,176 ----a-w C:\WINDOWS\system32\ieframe.dll
- 2008-03-01 12:58:08 44,544 ----a-w C:\WINDOWS\system32\iernonce.dll
+ 2008-04-23 04:16:39 44,544 ----a-w C:\WINDOWS\system32\iernonce.dll
- 2008-03-01 12:58:08 267,776 ----a-w C:\WINDOWS\system32\iertutil.dll
+ 2008-04-23 04:16:39 267,776 ----a-w C:\WINDOWS\system32\iertutil.dll
- 2008-02-22 10:00:51 13,824 ----a-w C:\WINDOWS\system32\ieudinit.exe
+ 2008-04-22 07:39:58 13,824 ----a-w C:\WINDOWS\system32\ieudinit.exe
- 2008-03-01 12:58:08 27,648 ----a-w C:\WINDOWS\system32\jsproxy.dll
+ 2008-04-23 04:16:40 27,648 ----a-w C:\WINDOWS\system32\jsproxy.dll
- 2008-05-09 21:35:04 16,863,864 ----a-w C:\WINDOWS\system32\MRT.exe
+ 2008-05-29 23:35:11 17,486,968 ----a-w C:\WINDOWS\system32\MRT.exe
- 2008-03-01 12:58:08 459,264 ----a-w C:\WINDOWS\system32\msfeeds.dll
+ 2008-04-23 04:16:40 459,264 ----a-w C:\WINDOWS\system32\msfeeds.dll
- 2008-03-01 12:58:08 52,224 ----a-w C:\WINDOWS\system32\msfeedsbs.dll
+ 2008-04-23 04:16:40 52,224 ----a-w C:\WINDOWS\system32\msfeedsbs.dll
- 2008-03-01 16:28:10 3,591,680 ----a-w C:\WINDOWS\system32\mshtml.dll
+ 2008-04-23 20:16:42 3,591,680 ----a-w C:\WINDOWS\system32\mshtml.dll
- 2008-03-01 12:58:09 478,208 ----a-w C:\WINDOWS\system32\mshtmled.dll
+ 2008-04-23 04:16:40 478,208 ----a-w C:\WINDOWS\system32\mshtmled.dll
- 2008-03-01 12:58:10 193,024 ----a-w C:\WINDOWS\system32\msrating.dll
+ 2008-04-23 04:16:40 193,024 ----a-w C:\WINDOWS\system32\msrating.dll
- 2008-03-01 12:58:10 671,232 ----a-w C:\WINDOWS\system32\mstime.dll
+ 2008-04-23 04:16:40 671,232 ----a-w C:\WINDOWS\system32\mstime.dll
- 2008-03-01 12:58:10 102,912 ----a-w C:\WINDOWS\system32\occache.dll
+ 2008-04-23 04:16:40 102,912 ----a-w C:\WINDOWS\system32\occache.dll
- 2008-03-01 12:58:10 44,544 ----a-w C:\WINDOWS\system32\pngfilt.dll
+ 2008-04-23 04:16:40 44,544 ----a-w C:\WINDOWS\system32\pngfilt.dll
- 2006-10-16 15:10:58 14,640 ------w C:\WINDOWS\system32\spmsg.dll
+ 2007-11-30 11:19:06 18,296 ------w C:\WINDOWS\system32\spmsg.dll
- 2008-03-01 12:58:10 105,984 ----a-w C:\WINDOWS\system32\url.dll
+ 2008-04-23 04:16:40 105,984 ----a-w C:\WINDOWS\system32\url.dll
- 2008-03-01 12:58:10 1,159,680 ------w C:\WINDOWS\system32\urlmon.dll
+ 2008-04-23 04:16:40 1,159,680 ----a-w C:\WINDOWS\system32\urlmon.dll
- 2008-03-01 12:58:11 233,472 ----a-w C:\WINDOWS\system32\webcheck.dll
+ 2008-04-23 04:16:40 233,472 ----a-w C:\WINDOWS\system32\webcheck.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 12:34 5724184]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-28 13:15 68856]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2006-03-02 14:00 15360]
"MsgCenterExe"="C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" [ ]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.e
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2004-11-15 12:20 77824 C:\WINDOWS\SOUNDMAN.EXE]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 11:50 155648]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-07-21 18:01 98304]
"Corel Photo Downloader"="C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe" [2006-10-31 11:10 478800]
"Easy-PrintToolBox"="C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.exe" [2006-10-17 03:20 398944]
"HostManager"="C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe" [2006-09-26 02:52 50736]
"TopDesk"="C:\Program Files\TopDesk Trial\topdesk.exe" [2006-03-01 19:02 462848]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [ ]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-04-23 19:05 262401]
"RealTray"="C:\Program Files\Real\RealPlayer\RealPlay.exe" [ ]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 05:25 144784]
"au"="C:\Program Files\Dealio\DealioAU.exe" [ ]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2006-03-02 14:00 15360]
"Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [2007-10-23 23:18 443968]
C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
VIA RAID TOOL.lnk - C:\Program Files\VIA\RAID\raid_tool.exe [2007-07-19 16:56:35 565248]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.mpng"= C:\Program Files\t@b\0.957\686\tabdec.dll
"vidc.mvjp"= C:\Program Files\t@b\0.957\686\tabdec.dll
"vidc.444p"= C:\Program Files\t@b\0.957\686\tabdec.dll
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\eMule\\emule.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\acs\\AOLDial.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\acs\\AOLacsd.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\1186962922\\ee\\aolsoftware.exe"=
"C:\\Program Files\\AOL 9.0 VR\\waol.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\Loader\\aolload.exe"=
"C:\\Program Files\\Fichiers communs\\AOL\\System Information\\sinf.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
R3 PAC207;Trust WB-1400T Webcam;C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-02-24 12:29]
S3 EMSUSB2;EMSUSB2;C:\WINDOWS\system32\Drivers\EMSUSB2.SYS [2008-01-16 15:53]
S3 LwAdiHid;Périphériques numériques WingMan Logitech (détection automatique);C:\WINDOWS\system32\DRIVERS\LwAdiHid.sys [2004-08-03 23:39]
S3 PCASp50;PCASp50 NDIS Protocol Driver;C:\WINDOWS\system32\Drivers\PCASp50.sys [2005-11-19 03:13]
.
**************************************************************************
catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-12 23:37:39
Windows 5.1.2600 Service Pack 2 NTFS
Balayage processus cachés ...
Balayage caché autostart entries ...
Balayage des fichiers cachés ...
Scan terminé avec succès
Les fichiers cachés: 0
**************************************************************************
.
Temps d'accomplissement: 2008-06-12 23:39:08
ComboFix-quarantined-files.txt 2008-06-12 21:38:58
ComboFix2.txt 2008-06-11 21:39:24
ComboFix3.txt 2008-06-11 12:03:04
Pre-Run: 105,222,639,616 octets libres
Post-Run: 105,230,024,704 octets libres
998 --- E O F --- 2008-06-11 22:59:08
voila la seconde partie du raport
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:54:09, on 12/06/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Fichiers communs\AOL\ACS\AOLAcsd.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe
C:\Program Files\VIA\RAID\raid_tool.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.exe
C:\Program Files\OpenOffice.org 2.3\program\soffice.BIN
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\User\Bureau\Bureau\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ads.eorezo.com/cgi-bin/adve [...] &x_dp_id=9
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ads.eorezo.com/cgi-bin/adve [...] &x_dp_id=9
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: EWPBrowseObject Class - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Corel Photo Downloader] C:\Program Files\Corel\Corel Snapfire\Corel Photo Downloader.exe
O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Fichiers communs\AOL\1186962922\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [TopDesk] C:\Program Files\TopDesk Trial\topdesk.exe
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [au] C:\Program Files\Dealio\DealioAU.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsgCenterExe] "C:\Program Files\Fichiers communs\Real\Update_OB\RealOneMessageCenter.exe" -osboot
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Anti-Pub.lnk = C:\Program Files\Antipub\antipub.exe
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Global Startup: VIA RAID TOOL.lnk = C:\Program Files\VIA\RAID\raid_tool.exe
O8 - Extra context menu item: &Recherche AOL Toolbar - c:\program files\aol\aol toolbar 4.0\resources\fr-FR\local\search.html
O8 - Extra context menu item: Compare Prices with &Dealio - C:\Documents and Settings\User\Application Data\Dealio\kb126\res\DealioSearch.html
O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 4.0\aoltb.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb126\Dealio.dll (file missing)
O9 - Extra 'Tools' menuitem: Dealio - {E908B145-C847-4e85-B315-07E2E70DECF8} - C:\Program Files\Dealio\kb126\Dealio.dll (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/bina [...] b56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-F [...] E_UNO1.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/bina [...] b56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/bina [...] b56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ [...] wflash.cab
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Fichiers communs\AOL\ACS\AOLAcsd.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: License Management Service ESD - element5 - C:\Program Files\Fichiers communs\element5 Shared\Service\Licence Manager ESD.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
--
End of file - 10393 bytes
et voila le rapport hijackthis
Même problème ?
Répondre à Angeldark
non la c'est bon je n'ai plus rien , je met résolu entre parenthèse dans mon titre ?
Ouaip 
Répondre à Angeldark
ok ben merci pour tout et qui sait peut etre a une prochaine fois
Bon surf
Répondre à Angeldark
Il y a 393 utilisateurs connus et inconnus. Pour voir la liste des connectés connus, cliquez ici.
