Votre question

Problèmes de suppression de cheval de troyes

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
11 Août 2009 12:33:34

Bonjour,

Mon antivirus (sécurité Internet 2009 ) a récemment détecté un cheval de Troyes Backdoor.Win32.Prorat.bj
sur le fichier :
C:\Windows\System32\winkey.dll

Et un autre Backdoor.Win32.Prorat.ae sur le fichier :

C:\Windows\System32\reginv.dll


Mon antivirus me propose de les supprimer mais il me dit qu'il les supprimera au redémarrage de l'ordinateur, cependant je l'ai redémarrer plusieurs fois mais a chaque redémarrage du pc les virus sont toujours là et Kaspersky me demande de les supprimer et à nouveau il me dit qu'ils seront supprimés au redémarrage de l'ordinateur... Bref ça fait deux jours que l'histoire se répète et je ne sais pas quoi faire. Aidez moi SVP

Merci d'avance

Autres pages sur : problemes suppression cheval troyes

11 Août 2009 13:22:29

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:16:31, on 11/08/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Acer\Empowering Technology\admServ.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Canal\Canal Widget\VOD\CanalPlus.VOD.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.exe
C:\WINDOWS\services.exe
C:\Documents and Settings\adrien\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Free Download Manager\fdm.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe
C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Micro Application\Securite Internet 2009\avp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.orange.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://global.acer.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {0579B4B6-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\system32\fservice.exe
O2 - BHO: Ask Search Assistant BHO - {0579B4B1-0293-4d73-B02D-5EBB0BA0F0A2} - C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: (no name) - {60270dc7-9ea0-472f-9b77-66652c06246e} - (no file)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\EoRezo\EoAdv\EOREZO~1.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: EoBHO - {C7B76B90-3455-4AE6-A752-EAC4D19689E5} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Burn4Free Toolbar Helper - {D187A56B-A33F-4CBE-9D77-459FC0BAE012} - C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
O3 - Toolbar: Burn4Free Toolbar - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [ePower_DMC] C:\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Micro Application\Securite Internet 2009\avp.exe"
O4 - HKLM\..\Run: [SoftwareHelper] C:\Documents and Settings\adrien\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun
O4 - HKLM\..\Policies\Explorer\Run: [DirectX For Microsoft® Windows] C:\WINDOWS\system32\fservice.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User '?')
O4 - HKUS\S-1-5-21-1463518061-3188787217-3908941862-1007\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User '?')
O4 - HKUS\S-1-5-21-1463518061-3188787217-3908941862-1007\..\Run: [Free Download Manager] "C:\Program Files\Free Download Manager\fdm.exe" -autorun (User '?')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'Default user')
O4 - S-1-5-21-1463518061-3188787217-3908941862-1007 Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe (User '?')
O4 - Startup: OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: Picture Package VCD Maker.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Applications\Residence.exe
O4 - Global Startup: Picture Package Menu.lnk = C:\Program Files\Sony Corporation\Picture Package\Picture Package Menu\SonyTray.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Tout télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Télécharger avec Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O8 - Extra context menu item: Télécharger la sélection avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Télécharger la vidéo avec Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Micro Application\Securite Internet 2009\SCIEPlgn.dll
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986....
O16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - http://messenger.zone.msn.com/binary/MJSS.cab69309.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.ca...
O16 - DPF: {87AF076E-D86D-4E87-ADDD-F05804E1F150} (VirginMega DownloadManager) - https://www.virginmega.fr/DownloadManager/Release/Prod/...
O16 - DPF: {B79A53C0-1DAC-4636-BACE-FD086A7A79BF} (AdSignerLCContrl Class) - https://static.impots.gouv.fr/tdir/static/adpform/AdSig...
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.ca...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPACl...
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/fl...
O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll
O20 - AppInit_DLLs: C:\PROGRA~1\MICROA~1\SECURI~2\adialhk.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Securite Internet 2009 (AVP) - Micro Application - C:\Program Files\Micro Application\Securite Internet 2009\avp.exe
O23 - Service: AdminWorks Agent X6 (AWService) - Avocent Inc. - C:\Acer\Empowering Technology\admServ.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CanalPlus.VOD - Canal+ Active - C:\Program Files\Canal\Canal Widget\VOD\CanalPlus.VOD.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe

--
End of file - 14844 bytes
Contenus similaires
11 Août 2009 15:04:53

Re,

* Télécharge ToolBar-S&D (merci Team Idn) : http://eric.71.mespages.googlepages.com/ToolBarSD.exe

* Double-clique sur ToolBar-SD afin de lancer l' installation, un raccourci sera ajouté sur le Bureau
* Double-clique dessus pour démarrer l' outil et choisis la langue.
* Tape 1 puis sur la touche [Entrée] afin de lancer la recherche.
* Patiente jusqu' à la fin de celle-ci, le rapport s' ouvrira dans le Bloc-notes
* Poste le rapport (se trouvant également C:\TB.txt).
11 Août 2009 15:16:30


-----------\\ ToolBar S&D 1.2.8 XP/Vista

( : )
USER : adrien ( Administrator )
Antivirus : Sécurité Internet 2009 7.0.1.325 (Not Activated)
Firewall : Sécurité Internet 2009 7.0.1.325 (Activated)

"C:\ToolBar SD" ( MAJ : 21-12-2008|20:47 )
Option : [1] ( 11/08/2009|15:10 )

-----------\\ Recherche de Fichiers / Dossiers ...

C:\Program Files\AskSBar
C:\Program Files\AskSBar\bar
C:\Program Files\AskSBar\SrchAstt
C:\Program Files\AskSBar\bar\1.bin
C:\Program Files\AskSBar\bar\Cache
C:\Program Files\AskSBar\bar\History
C:\Program Files\AskSBar\bar\Settings
C:\Program Files\AskSBar\bar\1.bin\A2FFXTBR.JAR
C:\Program Files\AskSBar\bar\1.bin\A2FFXTBR.MANIFEST
C:\Program Files\AskSBar\bar\1.bin\A2HIGHIN.EXE
C:\Program Files\AskSBar\bar\1.bin\A2NTSTBR.JAR
C:\Program Files\AskSBar\bar\1.bin\A2NTSTBR.MANIFEST
C:\Program Files\AskSBar\bar\1.bin\A2PLUGIN.DLL
C:\Program Files\AskSBar\bar\1.bin\ASKSBAR.DLL
C:\Program Files\AskSBar\bar\1.bin\NPASKSBR.DLL
C:\Program Files\AskSBar\bar\Cache\files.ini
C:\Program Files\AskSBar\bar\Cache\024BCC51.bin
C:\Program Files\AskSBar\bar\Cache\024BD9CE.bin
C:\Program Files\AskSBar\bar\Cache\024BE102.bin
C:\Program Files\AskSBar\bar\Cache\007666F9
C:\Program Files\AskSBar\bar\History\search2
C:\Program Files\AskSBar\bar\Settings\prevcfg2.htm
C:\Program Files\AskSBar\SrchAstt\1.bin
C:\Program Files\AskSBar\SrchAstt\1.bin\A2SRCHAS.DLL
C:\Program Files\Burn4Free
C:\Program Files\Burn4Free\license.txt
C:\Program Files\Burn4Free\bass.dll
C:\Program Files\Burn4Free\basscd.dll
C:\Program Files\Burn4Free\bassflac.dll
C:\Program Files\Burn4Free\basswma.dll
C:\Program Files\Burn4Free\bass_wv.dll
C:\Program Files\Burn4Free\bass_mpc.dll
C:\Program Files\Burn4Free\uninstall.exe
C:\Program Files\Burn4Free\temp
C:\Program Files\Burn4Free\queue
C:\Program Files\Burn4Free\languages
C:\Program Files\Burn4Free\BURN4FREE.CFG
C:\Program Files\Burn4Free\wav
C:\Program Files\Burn4Free\Burn4Free.exe
C:\Program Files\Burn4Free\basswv.dll
C:\Program Files\Burn4Free\bass_ape.dll
C:\Program Files\Burn4Free\languages\ENGLISH.INI
C:\Program Files\Burn4Free\languages\CATALAN.INI
C:\Program Files\Burn4Free\languages\CHINESEBIG5.INI
C:\Program Files\Burn4Free\languages\DUTCH.INI
C:\Program Files\Burn4Free\languages\GERMAN.INI
C:\Program Files\Burn4Free\languages\HEBREW.INI
C:\Program Files\Burn4Free\languages\JAPANESE.INI
C:\Program Files\Burn4Free\languages\MACEDONIAN.INI
C:\Program Files\Burn4Free\languages\MAGYAR.INI
C:\Program Files\Burn4Free\languages\NORSK.INI
C:\Program Files\Burn4Free\languages\PORTUGUESE.INI
C:\Program Files\Burn4Free\languages\RUSSIAN.INI
C:\Program Files\Burn4Free\languages\SLOVAK.INI
C:\Program Files\Burn4Free\languages\SLOVENIAN.INI
C:\Program Files\Burn4Free\languages\SPANISH.INI
C:\Program Files\Burn4Free\languages\SUOMI.INI
C:\Program Files\Burn4Free\languages\ROMANA.INI
C:\Program Files\Burn4Free\languages\UKRAINIAN.INI
C:\Program Files\Burn4Free\languages\SERBIAN.INI
C:\Program Files\Burn4Free\languages\SVENSKA.INI
C:\Program Files\Burn4Free\languages\FRENCH.INI
C:\Program Files\Burn4Free\languages\POLISH.INI
C:\Program Files\Burn4Free\languages\BELARUSSIAN.INI
C:\Program Files\Burn4Free\languages\ARABIC.INI
C:\Program Files\Burn4Free\languages\CZECH.INI
C:\Program Files\Burn4Free\languages\CROATIAN_FUN.INI
C:\Program Files\Burn4Free\languages\TURKISH.INI
C:\Program Files\Burn4Free\languages\GALEGO.INI
C:\Program Files\Burn4Free\languages\HELLENIC.INI
C:\Program Files\Burn4Free\languages\KOREAN.INI
C:\Program Files\Burn4Free\languages\RUSSIAN_2.INI
C:\Program Files\Burn4Free\languages\ITALIANO.INI
C:\Program Files\Burn4Free\languages\VALENCIAN.INI
C:\Program Files\Burn4Free\languages\CHINESEGB.INI
C:\Program Files\Burn4Free\languages\GERMAN_2.INI
C:\Program Files\Burn4Free\languages\LITHUANIAN.INI
C:\DOCUME~1\ALLUSE~1\Bureau\Burn4Free.lnk
C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1\Burn4Free CD and DVD
C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1\Burn4Free Toolbar
C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1\Burn4Free CD and DVD
C:\Program Files\Burn4Free Toolbar
C:\Program Files\Burn4Free Toolbar\v3.3.0.1
C:\Program Files\Burn4Free Toolbar\settings.dat
C:\Program Files\Burn4Free Toolbar\uninstall.txt
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\installer.ico
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Burn4Free_Toolbar.dll
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\intro
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\checkmark.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\configure.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\configure_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\cookies.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\cookies_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\favorites.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\favorites_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\find.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\find_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\go1.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\go1_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\go2.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\go2_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\help.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\help_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\highlight.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\highlight_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\history.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\history_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\images.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\images_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\mag.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\magnifying_glass.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\magnifying_glass_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\multi_home_page.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\multi_home_page_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\panic.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\panic_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\popup_blocker_off.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\popup_blocker_on.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\radiodot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\run_application.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\run_application_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\save_web_pages_urls.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\save_web_pages_urls_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\searchbg.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\source.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\source_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\temporary_internet_files.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\temporary_internet_files_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\Toolbar.js
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\toolbar_logo.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\Toolbar4Free.exe
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\typed_urls.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\typed_urls_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\zoom_in.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\zoom_in_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\zoom_out.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\zoom_out_hot.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\Thumbs.db
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\bin
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\css
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\images
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\dropdown.htm
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\models.sm
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\preferences.htm
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\bin\CSA.dll
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\css\main.css
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\images\cancel.png
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\images\compare.png
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\images\dollar1.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\images\dollar2.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\images\dollar3.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\images\empty.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\images\gradient.jpg
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\images\prontologo.png
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\csa\images\update.png
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\intro\intro_bg.png
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\intro\intro_feature_bracket.gif
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\intro\intro_logo.gif
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\intro\intro_search_bracket.gif
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\intro\intro_star_bullet.png
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\intro\intro_toolbar.png
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\intro\toolbar_intro.htm
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\intro\Thumbs.db
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\accuweather.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\amazon.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\dictionary.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\ebay.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\flickr.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\google_groups.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\google_images.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\google_maps.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\google_news.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\shopping.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\technorati.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\wikipedia.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\yahoo.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\yahoo_answers.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\youtube.bmp
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\resources\search\Thumbs.db
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\chrome
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\chrome.manifest
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\install.rdf
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\chrome\content
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\chrome\skin
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\chrome\content\toolbar.js
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\chrome\content\toolbar.xul
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\chrome\skin\go.GIF
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\chrome\skin\overlay.css
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\chrome\skin\Thumbs.db
C:\Program Files\Burn4Free Toolbar\v3.3.0.1\Firefox\chrome\skin\toolbar_logo.bmp
C:\DOCUME~1\ALLUSE~1\MENUDÉ~1\PROGRA~1\Burn4Free Toolbar
C:\DOCUME~1\phil\APPLIC~1\Platrium
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\WeatherDPA
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\WeatherStartup.xml
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\Weather_XML
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\WeatherDPA\Weather_XML
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\WeatherDPA\WeatherPreferences
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\WeatherDPA\Links
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\WeatherDPA\Weather_XML\Loading
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\WeatherDPA\Weather_XML\screen2
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\WeatherDPA\Weather_XML\Display
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\Weather_XML\General
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\Weather_XML\Genera1
C:\DOCUME~1\phil\APPLIC~1\Platrium\Weather\Weather_XML\Default
C:\DOCUME~1\fati\APPLIC~1\Platrium
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\WeatherDPA
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\WeatherStartup.xml
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\Weather_XML
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\WeatherDPA\Weather_XML
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\WeatherDPA\WeatherPreferences
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\WeatherDPA\Links
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\WeatherDPA\Weather_XML\Loading
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\WeatherDPA\Weather_XML\screen2
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\WeatherDPA\Weather_XML\Display
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\Weather_XML\General
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\Weather_XML\Genera1
C:\DOCUME~1\fati\APPLIC~1\Platrium\Weather\Weather_XML\Default
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\---Yahoo.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\01net.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\1px_dark.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\1px_green.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\1px_white.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\DownloadCOM.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\ErrorPageTemplate.css
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\YouTube.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\a.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\amazon.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\an.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\arrowB.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\arrowT.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\arrow_down.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\arrow_red.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\arrow_red2.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\arrow_up.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\autofill.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\avstate.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\b.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\background2.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\bg_pub.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\bg_ttl.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\bgmeteo_results.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\bn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\btn_close.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\btn_minus.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\btn_moreforecast.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\c.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\canalblog.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\cn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\d.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\dictionary2.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\dn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\dropdown.css
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\f.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_argentine.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_australia.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_brazil.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_canada.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_china.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_france.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_germany.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_greece.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_hongkong.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_india.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_indonesia.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_italy.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_japan.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_korea.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_mexico.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_netherlands.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_spain.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_sweeden.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_taiwan.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_uk.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\flag_usa.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\fn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\g.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\gaming.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\gn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\gograph.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred0.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred0_5.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred1.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred1_5.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred2.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred2_5.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred3.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred3_5.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred4.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred4_5.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\graphred5.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_aquarius.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_aries.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_cancer.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_capricorn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_gemini.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_leo.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_libra.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_pisces.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_sagittarius.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_scorpio.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_taurus.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\h_virgo.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\help.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\hideremove.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\highlight.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\hn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\i.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\icotemp_placeholder.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\in.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\ipsearch.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\j.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\jn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\k.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\kn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\l.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\ln.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\loading.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\login.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\logo.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\n.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\new02.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\news.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\news.html
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\nn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\o.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\on.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\p.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\p_yahoo.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\pestscanimg.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\pn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\popup_off.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\popup_on.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\popup_ona.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\q.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\qn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\r.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\relatedlinks.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\report.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\rn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\rss.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\rss.xsl
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\rss1.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\rsslib.js
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\s.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\security.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\siteinfo.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\slider.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\sn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\spacer.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\stars-red1.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\stars-red2.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\stars-red3.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\stars-red4.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\stars-red5.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\storage.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\t.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\tab_icon.png
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\tablib.js
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\tabwelcome_en.html
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\tabwelcome_fr.html
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\technorati.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\thes_search.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\tn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\tools.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\translate.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\u.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\un.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\v.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\vmlib.js
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\vn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\w.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\web.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\web_fr.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\wikipedia.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\wn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\x.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\xp_close_small.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\yahoo.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\yahoo_search.gif
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\z.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\zn.bmp
C:\DOCUME~1\adrien\APPLIC~1\VMNToolbar\zoom.bmp
C:\Program Files\VMNToolbar
C:\Program Files\VMNToolbar\tbuninstall.exe
C:\Program Files\VMNToolbar\toolbar.ini
C:\Program Files\VMNToolbar\install.ico
C:\Program Files\VMNToolbar\uninstall.exe
C:\WINDOWS\Burn4Free_Toolbar_Uninstaller_6750.exe
C:\WINDOWS\Burn4Free_Toolbar_Uninstaller_6968.exe
C:\WINDOWS\System32\b4fm.dll
C:\Program Files\Mozilla Firefox\plugins\NPAskSBr.dll
C:\DOCUME~1\adrien\APPLIC~1\Microsoft\Internet Explorer\Quick Launch\Burn4Free.lnk
C:\DOCUME~1\ALLUSE~1\Bureau\Burn4Free.lnk

-----------\\ Extensions

(adrien) - {635abd67-4fe9-1b23-4f01-e679fa7484c1} => ytoolbar
(adrien) - {b9db16a4-6edc-47ec-a1f4-b86292ed211d} => dwhelper


-----------\\ [..\Internet Explorer\Main]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Search Page"="http://g.msn.fr/0SEFRFR/SAOS01?FORM=TOOLBR"
"SearchMigratedDefaultURL"="http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7"
"Start Page"="http://www.orange.fr"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Local Page"="C:\\WINDOWS\\system32\\blank.htm"
"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"


--------------------\\ Recherche d'autres infections

C:\WINDOWS\System32\nvs2.inf
==> EGDACCESS <==

--------------------\\ ROGUES ..

C:\DOCUME~1\adrien\MENUD~1\PROGRA~1\Spyware-Secure




1 - "C:\ToolBar SD\TB_1.txt" - 11/08/2009|15:15 - Option : [1]

-----------\\ Fin du rapport a 15:15:20,13

11 Août 2009 21:12:37

Double-clique sur le raccourci de ToolBar-S&D présent sur ton Bureau

* Tape 2 et valide par la touche [Entrée]

/!\ Ne ferme pas la fenêtre lors de la suppression /!\

* Un rapport sera généré.
* Poste le rapport.

Note : Si ton bureau ne réapparaît pas, fais CTRL>ALT>SUPP pour ouvrir le Gestionnaire de tâches

* Rends-toi à l' onglet Processus, clique en haut à gauche sur Fichiers et choisis Exécuter
* Tape : explorer et valide. Cela le fera réapparaître.
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS