Sujet Précédent Sujet Suivant

Not-a-virus:AdWare.Win32.Virtumonde.gen

Fermé
did42 - 5 févr. 2008 à 21:14
 did42 - 10 févr. 2008 à 21:42
Bonjour à tous,

j'ai depuis quelques temps des problèmes de pop-up sur mon PC, je pensais qu' avast fonctionnait mal, et j'ai installé kapersky.
j'ai toujours des problèmes de pop-up et il détecte not-a-virus:AdWare.Win32.Virtumonde.gen sans pouvoir le supprimer, il réapparait toujours au redémarrage, que dois-je faire ? Si quelqu'un pouvait m'aider ce serait très sympa car je suis relativement novice en informatique.
Merci d'avance.

16 réponses

Réponse 1 / 16
O VertigO Messages postés 862 Date d'inscription mercredi 8 août 2007 Statut Membre Dernière intervention 10 février 2008 32
5 févr. 2008 à 21:44
Salut,

On va résoudre ton problème. Fais la manipulation suivante:

* Enregistres HiJackThis de Merijn sur ton bureau: http://www.trendsecure.com/portal/en-US/_download/HiJackThis.exe
* Renommes le fichier HiJackThis.exe en Scanner.exe (l'extension .exe peut ne pas apparaitre).
* Doubles Cliques sur le fichier que tu viens de renommer.
* Cliques ensuite sur Do a System Scan and Save a LogFile.
* Le fichier HiJackThis.log va alors s'ouvrir... (s'il ne s'ouvre pas, il se trouve sur ton bureau).
* Sélectionne l'entièreté du fichier texte et colle-le dans ta prochaine réponse.
0
Réponse 2 / 16
did42
5 févr. 2008 à 23:27
Merci de m'avoir répondu, voici ce que j'obtient :


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:24:26, on 05/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Winamp\winampa.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Hotbar\bin\10.0.357.0\OEAddOn.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\windows\system32\irgodc.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\IEPro\MiniDM.exe
C:\Documents and Settings\Admin\Mes documents\My Downloads\HiJackThis(1).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.fr/toolbar/ie8/sidebar.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer avec Club-Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Hotbar /fleok=1D8A83A5C2E6107C91A475760EA83FA5EF80752B9499803B2A2303766A - {07AA283A-43D7-4CBE-A064-32A21112D94D} - C:\Program Files\Hotbar\bin\10.0.357.0\HostIE.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {3E0D76AC-3E8C-40D4-9431-7F4361F36863} - C:\WINDOWS\system32\pmkhg.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: FoxyTunes Toolbar Helper - {784D8FBC-4165-4D88-90FB-62907ACDD045} - C:\Program Files\FoxyTunes\ForInternetExplorer\components\IE\FoxyTunesForIE.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: InlineSearchHandleHotKey - {B6FFE2AE-4D12-451F-B457-FE6125FFB1CF} - C:\Program Files\IEForge\Inline Search\InlineSearch.dll
O2 - BHO: GooglePreviewIE Toolbar Helper - {D476B977-AF6C-481A-8472-2ABAB5E89F20} - C:\Program Files\GooglePreviewIE Toolbar\v3.2.0.0\GooglePreviewIE_Toolbar.dll
O2 - BHO: (no name) - {D818B374-B044-4307-B4E7-AF75CBE744E1} - C:\WINDOWS\system32\geede.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: GooglePreviewIE Toolbar - {AEC32322-9D72-4C55-A108-33875F07BC03} - C:\Program Files\GooglePreviewIE Toolbar\v3.2.0.0\GooglePreviewIE_Toolbar.dll
O3 - Toolbar: FoxyTunes Toolbar - {1D1901C3-F72A-46f3-9DBB-0AAA0DEEF6DF} - C:\Program Files\FoxyTunes\ForInternetExplorer\components\IE\FoxyTunesForIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HotbarOE] C:\Program Files\Hotbar\bin\10.0.357.0\OEAddOn.exe
O4 - HKLM\..\Run: [HotbarSA] "C:\Program Files\Hotbar\bin\10.0.357.0\HotbarSA.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [irgodc] c:\windows\system32\irgodc.exe irgodc
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Le Petit Robert Hyperappel] C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\__c008FCE9.dat,C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O20 - Winlogon Notify: ljjijjg - C:\WINDOWS\
O20 - Winlogon Notify: pmkhf - C:\WINDOWS\system32\pmkhf.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
0
Réponse 3 / 16
O VertigO Messages postés 862 Date d'inscription mercredi 8 août 2007 Statut Membre Dernière intervention 10 février 2008 32
6 févr. 2008 à 11:11
Salut,

Tu as deux infections sur ton PC. On va les traiter toutes les deux avec un seul outil :

Télécharge Combofix de sUBs : http://download.bleepingcomputer.com/sUBs/ComboFix.exe
et sauvegarde le sur ton bureau et pas ailleurs!

Double-clic sur combofix, Il va te poser une question, réponds par la touche 1 et entrée pour valider.
Attends que combofix ait terminé, un rapport sera créé. Poste le rapport.

Copie/colle un nouveau rapport HiJackThis avec.
0
Réponse 4 / 16
did42
6 févr. 2008 à 22:14
Désolé de n'avoir pu répondre avant, voilà ce que cela donne avec ComboFix :

ComboFix 08-02.05.3 - Admin 2008-02-06 21:40:09.1 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.606 [GMT 1:00]
Endroit: C:\Documents and Settings\Admin\Bureau\ComboFix.exe
* Création d'un nouveau point de restauration

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Admin\Application Data\DriveCleaner 2006 Free
C:\Documents and Settings\Admin\Application Data\DriveCleaner 2006 Free\Logs\update.log
C:\Documents and Settings\Admin\Application Data\Hotbar
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]20104_bgh33_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]20104_bgh33_st.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]20105_anikf1_img.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]20105_anikf1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]40106na3_em.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]40106na3_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]50103love_window_love_img.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]50103love_window_love_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]50105_emya80_em.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]50105_emya80_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]60103love015_img.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]60103love015_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]70106ya15_em.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]70106ya15_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]70106ya4_em.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]70106ya4_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]80107ta16_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]80107ta16_ta.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]90107na2_em.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\[u]0[/u]90107na2_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\100103kiss_img.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\100103kiss_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_1_h.jpg
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_1_prv.jpg
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_1_st.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_1_st.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_10_h.jpg
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_10_prv.jpg
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_11_h.jpg
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_11_prv.jpg
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_12_h.jpg
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_12_prv.jpg
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_13.xipl
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_13_h.jpg
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\110103us_sunset_13_prv.jpg
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\120105ya32_em.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\120105ya32_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\FileManager.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\love__beating_heart_3_img.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\love__beating_heart_3_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\love__heart_2_img.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\love__heart_2_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\love__mixer_img.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\eskin\love__mixer_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]30104_emte10_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]30104_emte11_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]30104_emte12_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]30104_emte13_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]30104_emte14_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]30104_emte19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]30104_emte20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]30104_emte21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]30104_emte9_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]30203lib_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102angel_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102bigluf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102bigsmile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102birthday_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102cheers_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102flo_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102good_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102jump_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102king_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102lough_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102luf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102smile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102smiled_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102sor_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102thanx_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]33102uhu_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]40103ahh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]40103wow_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]40104_emi2_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]42102_1134_112_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]50103big_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]50103gig_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]50103hm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]50103nomail_emoti_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]50103norm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema15_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema16_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema17_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema18_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema24_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema25_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema26_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema30_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema33_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]60104_ema34_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]62802hippi_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]62802jumpie_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]80402argh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]80402oops_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]80402ouch_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]82502no_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\[u]0[/u]82502yes_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_boring1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_confused_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_crying_ugly_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_fantastic_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_feel_better_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_gimme_break_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_heehee_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_hlopaet_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_ign_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_lol_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_no_comment_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_peace_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_smashing_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\110103_talk2thehand_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\block_sm.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\block_sm2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\block_smli.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\block_smli2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\blocked.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\blocked2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\btn_add-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\btn_back-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\btn_left_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\btn_left_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\btn_left_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\btn_middle_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\btn_middle_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\btn_right_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\btn_right_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\btn_right_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\business_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\buttondir.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\components.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\css_cattree.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\css_flashpreview.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\css2_main.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\css2_pagingmodule.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\css2_topbuttons.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\delete.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\edit_clear_sound.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\edit_fs.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\edit_select.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-511745-514279.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-backgrounds.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-bcards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-ecards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-edit.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-emoticons.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-estationery.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-funny.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-help.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-images.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-info.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-more.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-my.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-people.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-photo.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-tell.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-temp.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-temp_OI.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-text.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def-email-voice.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-def.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-premium-email-premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-premium-email-premium_OI.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-t1-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\email-temp-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\estatationery.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\flashpatch.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\flashpreview.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\fs3.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\hotbar_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_checked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_close_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_close_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_edit_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_edit_send.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_flash_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_recently_used.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_remove_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_remove_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_sand-clock2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_tell_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_tell_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_tree_null.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_unchecked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\icon_unchecked_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\img_barlayout.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\img_barlayout2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\img_barlayout4.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\img_corner_left.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\img_local_logo.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\js2_basetemplate.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\js2_hbgroups.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\js2_hbobject3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\js2_hbobjectset3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\js2_hotbarwrapper.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\js2_iteratorsandreaders3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\js2_pagingmoduleobj3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\js2_texts3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\js2_xmltree3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\layout.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\n.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\nav_b_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\nav_bb_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\nav_f_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\nav_ff_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\searchbtn.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\submit.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tab_bg.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tab_bga.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tab_bgia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tab_l.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tab_la.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tab_lia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tab_r.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tab_ra.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tab_ria.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tree_dots.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tree_minus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\tree_plus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_animations.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_backgrounds.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_ecards.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_emoticons.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_notifiers.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\1\treedata_text.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]30104_emte10_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]30104_emte11_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]30104_emte12_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]30104_emte13_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]30104_emte14_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]30104_emte19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]30104_emte20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]30104_emte21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]30104_emte9_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]30203lib_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102angel_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102bigluf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102bigsmile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102birthday_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102cheers_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102flo_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102good_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102jump_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102king_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102lough_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102luf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102smile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102smiled_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102sor_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102thanx_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]33102uhu_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]40103ahh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]40103wow_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]40104_emi2_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]42102_1134_112_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]50103big_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]50103gig_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]50103hm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]50103nomail_emoti_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]50103norm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema15_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema16_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema17_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema18_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema24_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema25_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema26_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema30_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema33_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]60104_ema34_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]62802hippi_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]62802jumpie_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]80402argh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]80402oops_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]80402ouch_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]82502no_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\[u]0[/u]82502yes_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_boring1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_confused_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_crying_ugly_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_fantastic_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_feel_better_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_gimme_break_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_heehee_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_hlopaet_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_ign_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_lol_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_no_comment_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_peace_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_smashing_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\110103_talk2thehand_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\block_sm.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\block_sm2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\block_smli.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\block_smli2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\blocked.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\blocked2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\btn_add-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\btn_back-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\btn_left_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\btn_left_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\btn_left_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\btn_middle_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\btn_middle_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\btn_right_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\btn_right_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\btn_right_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\business_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\buttondir.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\components.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\css_cattree.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\css_flashpreview.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\css2_main.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\css2_pagingmodule.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\css2_topbuttons.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\delete.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\edit_clear_sound.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\edit_fs.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\edit_select.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-511745-514279.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-backgrounds.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-bcards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-ecards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-edit.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-emoticons.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-estationery.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-funny.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-help.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-images.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-info.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-more.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-my.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-people.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-photo.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-tell.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-temp.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-temp_OI.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-text.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def-email-voice.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-def.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-premium-email-premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-premium-email-premium_OI.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-t1-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\email-temp-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\estatationery.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\flashpatch.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\flashpreview.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\fs3.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\hotbar_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_checked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_close_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_close_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_edit_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_edit_send.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_flash_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_recently_used.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_remove_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_remove_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_sand-clock2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_tell_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_tell_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_tree_null.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_unchecked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\icon_unchecked_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\img_barlayout.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\img_barlayout2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\img_barlayout4.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\img_corner_left.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\img_local_logo.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\js2_basetemplate.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\js2_hbgroups.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\js2_hbobject3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\js2_hbobjectset3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\js2_hotbarwrapper.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\js2_iteratorsandreaders3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\js2_pagingmoduleobj3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\js2_texts3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\js2_xmltree3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\layout.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\n.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\nav_b_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\nav_bb_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\nav_f_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\nav_ff_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\searchbtn.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\submit.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tab_bg.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tab_bga.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tab_bgia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tab_l.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tab_la.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tab_lia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tab_r.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tab_ra.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tab_ria.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tree_dots.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tree_minus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\tree_plus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\treedata_animations.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\treedata_backgrounds.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\treedata_ecards.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\treedata_emoticons.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\treedata_notifiers.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\2\treedata_text.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\business_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\buttondir.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\code.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\email-def.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\email-t1-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\email-temp-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\hotbar_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\images.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\layout.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\linkpathlegal.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\localcontent.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\more.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\progress.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOI\static\DownLoad\treexml.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]30104_emte10_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]30104_emte11_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]30104_emte12_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]30104_emte13_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]30104_emte14_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]30104_emte19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]30104_emte20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]30104_emte21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]30104_emte9_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]30203lib_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102angel_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102bigluf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102bigsmile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102birthday_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102cheers_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102flo_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102good_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102jump_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102king_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102lough_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102luf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102smile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102smiled_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102sor_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102thanx_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]33102uhu_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]40103ahh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]40103wow_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]40104_emi2_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]42102_1134_112_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]50103big_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]50103gig_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]50103hm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]50103nomail_emoti_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]50103norm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema15_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema16_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema17_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema18_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema24_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema25_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema26_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema30_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema33_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]60104_ema34_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]62802hippi_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]62802jumpie_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]80402argh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]80402oops_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]80402ouch_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]82502no_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\[u]0[/u]82502yes_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_boring1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_confused_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_crying_ugly_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_fantastic_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_feel_better_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_gimme_break_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_heehee_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_hlopaet_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_ign_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_lol_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_no_comment_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_peace_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_smashing_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\110103_talk2thehand_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\block_sm.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\block_sm2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\block_smli.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\block_smli2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\blocked.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\blocked2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\btn_add-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\btn_back-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\btn_left_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\btn_left_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\btn_left_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\btn_middle_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\btn_middle_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\btn_right_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\btn_right_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\btn_right_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\business_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\buttondir.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\components.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\css_cattree.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\css_flashpreview.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\css2_main.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\css2_pagingmodule.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\css2_topbuttons.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\delete.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\edit_clear_sound.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\edit_fs.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\edit_select.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-511724-543450.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-511724-548964.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-511724-589306.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-511724-591943.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-511724-592579.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-511724-598579.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-511724-603763.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-511724-9595.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-511724-9696.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-511745-514279.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-backgrounds.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-bcards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-ecards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-emoticons.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-estationery.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-funny.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-help.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-images.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-info.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-more.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-my.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-new.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-new2.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-options.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-people.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-photo.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-tell.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-temp.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-text.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def-email-voice.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-def.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-premium-email-premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-t1-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\email-temp-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\estatationery.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\flashpatch.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\flashpreview.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\fs3.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\hotbar_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_checked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_close_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_close_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_edit_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_edit_send.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_flash_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_recently_used.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_remove_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_remove_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_sand-clock2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_tell_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_tell_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_tree_null.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_unchecked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\icon_unchecked_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\img_barlayout.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\img_barlayout2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\img_barlayout4.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\img_corner_left.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\img_local_logo.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\js2_basetemplate.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\js2_hbgroups.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\js2_hbobject3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\js2_hbobjectset3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\js2_hotbarwrapper.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\js2_iteratorsandreaders3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\js2_pagingmoduleobj3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\js2_texts3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\js2_xmltree3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\layout.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\stati
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 16
O VertigO Messages postés 862 Date d'inscription mercredi 8 août 2007 Statut Membre Dernière intervention 10 février 2008 32
7 févr. 2008 à 18:32
Salut,

Le rapport est incomplet, poste la suite dans un prochain message.
0
Réponse 6 / 16
did42
7 févr. 2008 à 19:11
Suite 1 :
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\n.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_b_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_bb_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_f_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_ff_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\pro_hb_fo_word.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\sales_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\searchbtn.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\submit.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_bg.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_bga.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_bgia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_l.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_la.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_lia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_r.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_ra.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_ria.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tree_dots.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tree_minus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tree_plus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_animations.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_backgrounds.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_ecards.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_emoticons.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_notifiers.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_text.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte10_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte11_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte12_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte13_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte14_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte9_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30203lib_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102angel_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102bigluf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102bigsmile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102birthday_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102cheers_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102flo_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102good_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102jump_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102king_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102lough_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102luf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102smile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102smiled_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102sor_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102thanx_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102uhu_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u40103ahh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u40103wow_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u40104_emi2_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u42102_1134_112_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103big_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103gig_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103hm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103nomail_emoti_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103norm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema15_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema16_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema17_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema18_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema24_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema25_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema26_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema30_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema33_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema34_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u62802hippi_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u62802jumpie_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u80402argh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u80402oops_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u80402ouch_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u82502no_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u82502yes_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_boring1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_confused_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_crying_ugly_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_fantastic_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_feel_better_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_gimme_break_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_heehee_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_hlopaet_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_ign_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_lol_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_no_comment_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_peace_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_smashing_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_talk2thehand_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_sm.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_sm2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_smli.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_smli2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\blocked.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\blocked2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_add-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_back-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_left_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_left_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_left_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_middle_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_middle_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_right_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_right_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_right_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\business_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\buttondir.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\components.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css_cattree.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css_flashpreview.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css2_main.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css2_pagingmodule.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css2_topbuttons.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\delete.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\edit_clear_sound.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\edit_fs.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\edit_select.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-543450.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-548964.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-589306.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-591943.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-592579.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-598579.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-603763.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-9595.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-9696.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511745-514279.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-backgrounds.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-bcards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-ecards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-emoticons.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-estationery.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-funny.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-help.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-images.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-info.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-more.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-my.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-new.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-new2.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-options.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-people.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-photo.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-tell.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-temp.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-text.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-voice.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-premium-email-premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-t1-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-temp-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\estatationery.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\flashpatch.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\flashpreview.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\fs3.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\hotbar_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_checked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_close_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_close_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_edit_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_edit_send.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_flash_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_recently_used.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_remove_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_remove_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_sand-clock2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_tell_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_tell_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_tree_null.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_unchecked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_unchecked_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_barlayout.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_barlayout2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_barlayout4.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_corner_left.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_local_logo.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_basetemplate.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hbgroups.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hbobject3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hbobjectset3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hotbarwrapper.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_iteratorsandreaders3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_pagingmoduleobj3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_texts3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_xmltree3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\layout.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\n.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_b_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_bb_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_f_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_ff_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\pro_hb_fo_word.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\sales_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\searchbtn.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\submit.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_bg.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_bga.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_bgia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_l.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_la.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_lia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_r.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_ra.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_ria.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tree_dots.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tree_minus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tree_plus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_animations.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_backgrounds.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_ecards.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_emoticons.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_notifiers.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_text.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\business_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\buttondir.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\code.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\email-def.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\email-t1-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\email-temp-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\hotbar_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\images.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\layout.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\linkpathlegal.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\localcontent.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\more.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\pro_hb_fo_word.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\progress.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\sales_buttons.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\treexml.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\1.sdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\566217.sdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\803618.sdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\domains.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\1000063686
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\1000078304
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\12457
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\186757
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\28437
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\29115
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\4382
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\44228
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\598613
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\705140
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\705151
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\710839
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\99795
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\ustat\35d3.dat
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\ads.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\btntrans.idx
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\btntrans1.dat
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\business_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\buttondir.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\components.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\cursors.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_1000.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_2000.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_3000.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bar.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar1.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_logos.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_other.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_weather.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\default.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_511745-514279.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz1.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz10.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz11.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz12.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz13.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz14.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz15.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz16.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz17.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz18.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz19.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz2.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz20.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz3.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz4.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz5.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz6.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz7.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz8.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz9.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_categorize.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_comparison.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_em_PROFL_CA_flow_b_IEB.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_explorer-Mails.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_explorer-people.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_favorites.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Games.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Hide.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_hotbarcom.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Hotmail.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_hsskin.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jemster.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jemsterie.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jemsteruk.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jobsearch.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Mails.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_new.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_reun.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_ringtones.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_SearchBoxTrapper.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_searchfor.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_searchgo.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_weather.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_yellowpages.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\email-def-511724-548964.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\email-def-511724-9595.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\email-t1-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\gamesmenu.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\gamesMenu.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hb_ie_menu.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar-premium-hotbar-premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar-premium.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\icons2.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\ie_games_icon.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\ie_video.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords.idx
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords1.dat
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\layout.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\new_games.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\s_icons_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\sales_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\t2_bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\theweb.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\top7.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Top7_theweb.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\tsd_bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\weathericon.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ads.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\BtnTrans.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\BtnTrans1.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\business_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\buttondir.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\cursors.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_1000.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_2000.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_3000.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bar.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar1.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_logos.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_other.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_weather.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\default.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\email-t1-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\gamesmenu.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hb_ie_menu.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar-premium.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\icons2.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ie_games_icon.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ie_video.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords1.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\layout.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\linkpathlegal.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\more.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\progress.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\s_icons_buttons.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\sales_buttons.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\t2_bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\top7.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\tsd_bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\weathericon.xip
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons\meetic.ico
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons\Registryrepair.ico
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons\wallpapere1.ico
C:\Documents and Settings\Admin\Application Data\ShoppingReport
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\Config.xml
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\db\Aliases.dbs
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\db\Sites.dbs
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\dwld\WhiteList.xip
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\report\aggr_storage.xml
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\report\send_storage.xml
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\res2\WhiteList.dbs
C:\Documents and Settings\Admin\Bureau\Free PC Wallpapers.lnk
C:\Documents and Settings\Admin\err.log
C:\Documents and Settings\All Users\Application Data\HotbarSA
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSA.dat
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSA_kyf.dat
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSAAbout.mht
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSAau.dat
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSAEula.mht
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2006
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2006\AVScheduler.dat
C:\Documents and Settings\Enfants\err.log
C:\Documents and Settings\Stéphanie\Application Data\DriveCleaner 2006 Free
C:\Documents and Settings\Stéphanie\Application Data\DriveCleaner 2006 Free\Logs\update.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\Logs\update.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\Logs\wa6Support.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\Logs\winav.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\PGE.dat
C:\Documents and Settings\Stéphanie\err.log
C:\Program Files\Hotbar
C:\Program Files\Hotbar\bin\10.0.357.0\arrow.ico
C:\Program Files\Hotbar\bin\10.0.357.0\Cml.exe
C:\Program Files\Hotbar\bin\10.0.357.0\copyright.txt
C:\Program Files\Hotbar\bin\10.0.357.0\CoreSrv.dll
C:\Program Files\Hotbar\bin\10.0.357.0\dBenderC.dll
C:\Program Files\Hotbar\bin\10.0.357.0\firefox\extensions\components\npclntax.xpt
C:\Program Files\Hotbar\bin\10.0.357.0\firefox\extensions\install.rdf
C:\Program Files\Hotbar\bin\10.0.357.0\firefox\extensions\plugins\npclntax_HotbarSA.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HostIE.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HostOE.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HostOL.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HotbarSAAX.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HotbarSADF.exe
C:\Program Files\Hotbar\bin\10.0.357.0\HotbarSAHook.dll
C:\Program Files\Hotbar\bin\10.0.357.0\InstIE.dll
C:\Program Files\Hotbar\bin\10.0.357.0\link.ico
C:\Program Files\Hotbar\bin\10.0.357.0\OEAddOn.exe
C:\Program Files\Hotbar\bin\10.0.357.0\Srv.exe
C:\Program Files\Hotbar\bin\10.0.357.0\Toolbar.dll
C:\Program Files\Hotbar\bin\10.0.357.0\Wallpaper.dll
C:\Program Files\Hotbar\bin\10.0.357.0\Weather.exe
C:\Program Files\Hotbar\bin\10.0.357.0\WeSkin.dll
C:\Program Files\hottvplayer
C:\Program Files\hottvplayer\hottv.ico
C:\Program Files\hottvplayer\Ogg\ogg.dll
C:\Program Files\hottvplayer\Ogg\ogg_demux.dll
C:\Program Files\hottvplayer\Ogg\theora_decoder.dll
C:\Program Files\hottvplayer\Ogg\vorbis.dll
C:\Program Files\hottvplayer\Ogg\vorbis_decoder.dll
C:\Program Files\ShoppingReport
C:\Program Files\ShoppingReport\Uninst.exe
C:\WINDOWS\cookies.ini
C:\WINDOWS\pack.epk
C:\WINDOWS\system32\bkhfqnqj.ini
C:\WINDOWS\system32\ewgiwutw.ini
C:\WINDOWS\system32\ghkmp.ini
C:\WINDOWS\system32\ghkmp.ini2
c:\WINDOWS\system32\irgodc.dat
c:\windows\system32\irgodc.exe
C:\WINDOWS\system32\irgodc_nav.dat
c:\WINDOWS\system32\irgodc_navps.dat
C:\WINDOWS\system32\jdpielkg.dll
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\mlxkhsap.ini
C:\WINDOWS\system32\muhomqkx.dll
C:\WINDOWS\system32\npqss.bak1
C:\WINDOWS\system32\npqss.bak2
C:\WINDOWS\system32\npqss.ini
C:\WINDOWS\system32\nvs2.inf
C:\WINDOWS\system32\pmkhg.dll
C:\WINDOWS\system32\pxkmdcny.ini
C:\WINDOWS\system32\stera.job
C:\WINDOWS\system32\stera.log
C:\WINDOWS\system32\UpMedia
C:\WINDOWS\system32\vgfsjxkf.dll

.
((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-01-06 to 2008-02-06 ))))))))))))))))))))))))))))))))))))
.

2008-02-06 21:35 . 2008-02-06 21:35 0 --a------ C:\temp00
2008-02-05 22:15 . 2008-02-05 22:22 91,700 --a------ C:\WINDOWS\system32\drivers\klin.dat
2008-02-05 22:15 . 2008-02-05 22:15 85,860 --a------ C:\WINDOWS\system32\drivers\klick.dat
2008-02-05 22:14 . 2008-02-05 22:14 <REP> d-------- C:\Program Files\Kaspersky Lab
2008-02-05 22:14 . 2008-02-06 22:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-02-05 22:14 . 2008-02-06 22:00 1,213,216 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-02-05 22:14 . 2008-02-06 22:00 17,952 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
2008-02-05 22:14 . 2008-02-06 21:58 16,868 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-02-05 22:14 . 2008-02-06 21:58 2,708 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx
2008-02-05 20:40 . 2008-02-05 20:40 <REP> d-------- C:\VundoFix Backups
2008-02-05 20:09 . 2008-02-05 20:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-01-31 14:27 . 2008-01-31 14:27 <REP> d-------- C:\Program Files\Fichiers communs\ODBC
2008-01-31 10:00 . 2008-01-31 10:00 <REP> d-------- C:\AVIONE~1
2008-01-24 23:04 . 2008-01-24 23:11 82 --a------ C:\WINDOWS\PR1V2.INI
2008-01-22 00:09 . 2008-01-22 00:09 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-01-21 19:14 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-01-21 19:14 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-01-21 19:14 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-01-19 23:40 . 2008-01-19 23:40 172 --ah----- C:\sqmnoopt02.sqm
2008-01-19 23:40 . 2008-01-19 23:40 172 --ah----- C:\sqmdata02.sqm
2008-01-19 20:38 . 2008-01-19 20:38 268 --ah----- C:\sqmdata01.sqm
2008-01-19 20:38 . 2008-01-19 20:38 244 --ah----- C:\sqmnoopt01.sqm
2008-01-19 17:58 . 2008-01-19 17:58 <REP> d-------- C:\Documents and Settings\Admin\Contacts
2008-01-19 17:48 . 2008-01-19 18:01 <REP> d-------- C:\Program Files\Windows Live
2008-01-19 17:48 . 2008-01-19 17:51 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-01-19 17:48 . 2008-01-19 17:48 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-01-08 23:39 . 2008-01-08 23:39 <REP> d-------- C:\Program Files\FoxyTunes
2008-01-08 23:39 . 2008-01-08 23:39 <REP> d-------- C:\Documents and Settings\Admin\Application Data\FoxyTunes
2008-01-08 23:36 . 2008-01-08 23:44 <REP> d-------- C:\Program Files\IEMate
2008-01-08 23:29 . 2008-01-08 23:31 <REP> d-------- C:\Documents and Settings\Admin\Application Data\MiniDm
2008-01-08 22:11 . 2008-01-08 22:11 <REP> d-------- C:\Program Files\GooglePreviewIE Toolbar
2008-01-08 22:11 . 2008-01-08 22:11 231,558 --a------ C:\WINDOWS\GooglePreviewIE_Toolbar_Uninstaller_3875.exe
2008-01-08 22:09 . 2008-01-08 22:09 <REP> d-------- C:\Program Files\IEForge
2008-01-08 22:07 . 2008-01-08 23:31 <REP> d-------- C:\Program Files\IEPro
2008-01-08 22:07 . 2008-01-11 23:14 <REP> d-------- C:\Documents and Settings\Admin\Application Data\IEPro

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-03 20:56 --------- d-----w C:\Documents and Settings\Admin\Application Data\LimeWire
2008-01-01 20:20 --------- d-----w C:\Program Files\Dofus
2008-01-01 14:10 --------- d-----w C:\Documents and Settings\All Users\Application Data\BVRP Software
2008-01-01 14:09 92,064 ----a-w C:\Documents and Settings\Admin\mqdmmdm.sys
2008-01-01 14:09 9,232 ----a-w C:\Documents and Settings\Admin\mqdmmdfl.sys
2008-01-01 14:09 79,328 ----a-w C:\Documents and Settings\Admin\mqdmserd.sys
2008-01-01 14:09 66,656 ----a-w C:\Documents and Settings\Admin\mqdmbus.sys
2008-01-01 14:09 6,208 ----a-w C:\Documents and Settings\Admin\mqdmcmnt.sys
2008-01-01 14:09 5,936 ----a-w C:\Documents and Settings\Admin\mqdmwhnt.sys
2008-01-01 14:09 4,048 ----a-w C:\Documents and Settings\Admin\mqdmcr.sys
2008-01-01 14:09 25,600 ----a-w C:\Documents and Settings\Admin\usbsermptxp.sys
2008-01-01 14:09 22,768 ----a-w C:\Documents and Settings\Admin\usbsermpt.sys
2008-01-01 14:09 --------- d-----w C:\Program Files\Motorola Phone Tools
2008-01-01 14:08 --------- d-----w C:\Program Files\Avanquest update
2008-01-01 14:08 --------- d-----w C:\Documents and Settings\Admin\Application Data\InstallShield
2008-01-01 14:07 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-01 14:05 25,600 ----a-w C:\WINDOWS\system32\drivers\usbsermptxp.sys
2007-12-26 07:47 --------- d-----w C:\Program Files\Fichiers communs\xing shared
2007-12-26 07:47 --------- d-----w C:\Program Files\Fichiers communs\Real
2007-12-26 07:46 --------- d-----w C:\Program Files\Real
2007-12-17 23:43 23,396 ----a-w C:\WINDOWS\system32\drivers\klopp.dat
2007-12-14 18:09 --------- d-----w C:\Program Files\Conjugaison
2007-12-13 12:28 24,592 ----a-w C:\WINDOWS\system32\drivers\klim5.sys
2007-12-06 18:13 --------- d-----w C:\Documents and Settings\Admin\Application Data\Skype
2007-09-25 17:24 19,504 ----a-w C:\Documents and Settings\Admin\Application Data\GDIPFONTCACHEV1.DAT
1998-09-29 11:56 10,000 ----a-w C:\WINDOWS\inf\unregpn.exe
2007-09-29 06:48 6,440 --sh--w C:\WINDOWS\system32\fhkmp.bak1
2007-09-28 20:33 6,440 --sh--w C:\WINDOWS\system32\gjllm.bak1
2007-09-30 07:13 6,440 --sh--w C:\WINDOWS\system32\qqtwa.bak1
.

((((((((((((((((((((((((((((((((((((((((((((( AWF ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
----a-w 21,024 2001-08-12 18:35:00 C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\bak\prhyper.exe
----a-w 21,024 2001-08-12 18:35:00 C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe

.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D818B374-B044-4307-B4E7-AF75CBE744E1}]
C:\WINDOWS\system32\geede.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2006-02-06 12:49 19490344]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [2005-11-24 15:38 94208]
"IncrediMail"="C:\Program Files\IncrediMail\bin\IncMail.exe" [2007-08-21 10:44 208946]
"Magentic"="C:\PROGRA~1\Magentic\bin\Magentic.exe" [2007-09-03 14:25 475180]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-03 23:54 15360]
"Le Petit Robert Hyperappel"="C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe" [2001-08-12 19:35 21024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-06-16 02:20 6803456]
"nwiz"="nwiz.exe" [2005-06-16 02:20 1519616 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-06-16 02:20 86016]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2005-11-15 20:31 33792]
"StandardInstall"="" []
"OpwareSE2"="C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 10:00 49152]
"Motive SmartBridge"="C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe" [ ]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"SSBkgdUpdate"="C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-09-29 23:14 155648]
"OpwareSE4"="C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-03-21 12:19 69632]
"SoundMan"="SOUNDMAN.EXE" [2005-06-20 14:42 77824 C:\WINDOWS\SOUNDMAN.EXE]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 19:51 39792]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-12-26 08:46 185896]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2007-12-18 00:43 227856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Config"="C:\WINDOWS\system32\run.cmd" [2005-08-23 10:24 341]
"nlsf"="cmd.exe" [2004-08-03 23:54 400896 C:\WINDOWS\system32\cmd.exe]
"tscuninstall"="C:\WINDOWS\system32\tscupgrd.exe" [2004-08-19 14:52 44544]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ljjijjg]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\pmkhf]
C:\WINDOWS\system32\pmkhf.dll 2007-09-29 07:48 283232 C:\WINDOWS\system32\pmkhf.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\WINDOWS\system32\__c008FCE9.dat,C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll

R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [2007-12-13 13:28]
S0 viasraid;viasraid;C:\WINDOWS\system32\drivers\viasraid.sys [2005-12-20 10:57]
S3 USB_RNDIS_51;Broadcom USB Remote NDIS Device Driver;C:\WINDOWS\system32\DRIVERS\usb8023.sys [2004-08-03 22:04]

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-06 22:00:29
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cach‚s ...

Balayage cach‚ autostart entries ...

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Le Petit Robert Hyperappel = C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe??|????8????%??(H??????~??????????????????????????????????????|J??|??(?(H??g???????4??????????|p??|????m??|J??|????????(H??????????W??|????(H??t?r?u?e?????? ????????????(???????(?? ??

Balayage des fichiers cach‚s ...

Scan termin‚ avec succŠs
Les fichiers cach‚s: 0

**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
.
**************************************************************************
.
Temps d'accomplissement: 2008-02-06 22:06:37 - machine was rebooted
ComboFix-quarantined-files.txt 2008-02-06 21:05:06
.
2008-01-24 20:20:43 --- E O F ---
0
Réponse 7 / 16
did42
7 févr. 2008 à 19:12
Suite 1 :
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\n.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_b_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_bb_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_f_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_ff_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\pro_hb_fo_word.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\sales_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\searchbtn.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\submit.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_bg.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_bga.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_bgia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_l.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_la.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_lia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_r.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_ra.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_ria.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tree_dots.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tree_minus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tree_plus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_animations.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_backgrounds.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_ecards.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_emoticons.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_notifiers.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_text.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte10_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte11_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte12_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte13_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte14_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte9_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30203lib_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102angel_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102bigluf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102bigsmile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102birthday_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102cheers_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102flo_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102good_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102jump_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102king_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102lough_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102luf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102smile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102smiled_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102sor_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102thanx_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102uhu_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u40103ahh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u40103wow_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u40104_emi2_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u42102_1134_112_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103big_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103gig_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103hm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103nomail_emoti_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103norm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema15_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema16_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema17_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema18_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema24_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema25_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema26_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema30_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema33_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema34_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u62802hippi_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u62802jumpie_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u80402argh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u80402oops_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u80402ouch_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u82502no_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u82502yes_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_boring1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_confused_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_crying_ugly_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_fantastic_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_feel_better_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_gimme_break_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_heehee_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_hlopaet_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_ign_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_lol_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_no_comment_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_peace_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_smashing_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_talk2thehand_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_sm.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_sm2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_smli.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_smli2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\blocked.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\blocked2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_add-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_back-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_left_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_left_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_left_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_middle_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_middle_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_right_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_right_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_right_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\business_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\buttondir.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\components.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css_cattree.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css_flashpreview.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css2_main.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css2_pagingmodule.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css2_topbuttons.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\delete.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\edit_clear_sound.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\edit_fs.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\edit_select.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-543450.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-548964.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-589306.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-591943.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-592579.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-598579.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-603763.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-9595.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-9696.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511745-514279.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-backgrounds.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-bcards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-ecards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-emoticons.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-estationery.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-funny.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-help.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-images.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-info.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-more.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-my.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-new.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-new2.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-options.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-people.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-photo.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-tell.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-temp.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-text.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-voice.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-premium-email-premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-t1-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-temp-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\estatationery.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\flashpatch.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\flashpreview.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\fs3.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\hotbar_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_checked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_close_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_close_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_edit_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_edit_send.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_flash_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_recently_used.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_remove_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_remove_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_sand-clock2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_tell_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_tell_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_tree_null.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_unchecked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_unchecked_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_barlayout.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_barlayout2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_barlayout4.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_corner_left.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_local_logo.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_basetemplate.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hbgroups.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hbobject3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hbobjectset3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hotbarwrapper.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_iteratorsandreaders3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_pagingmoduleobj3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_texts3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_xmltree3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\layout.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\n.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_b_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_bb_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_f_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_ff_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\pro_hb_fo_word.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\sales_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\searchbtn.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\submit.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_bg.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_bga.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_bgia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_l.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_la.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_lia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_r.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_ra.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_ria.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tree_dots.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tree_minus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tree_plus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_animations.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_backgrounds.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_ecards.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_emoticons.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_notifiers.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_text.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\business_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\buttondir.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\code.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\email-def.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\email-t1-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\email-temp-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\hotbar_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\images.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\layout.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\linkpathlegal.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\localcontent.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\more.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\pro_hb_fo_word.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\progress.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\sales_buttons.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\treexml.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\1.sdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\566217.sdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\803618.sdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\domains.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\1000063686
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\1000078304
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\12457
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\186757
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\28437
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\29115
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\4382
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\44228
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\598613
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\705140
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\705151
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\710839
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\99795
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\ustat\35d3.dat
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\ads.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\btntrans.idx
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\btntrans1.dat
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\business_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\buttondir.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\components.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\cursors.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_1000.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_2000.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_3000.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bar.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar1.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_logos.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_other.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_weather.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\default.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_511745-514279.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz1.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz10.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz11.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz12.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz13.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz14.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz15.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz16.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz17.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz18.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz19.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz2.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz20.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz3.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz4.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz5.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz6.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz7.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz8.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz9.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_categorize.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_comparison.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_em_PROFL_CA_flow_b_IEB.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_explorer-Mails.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_explorer-people.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_favorites.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Games.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Hide.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_hotbarcom.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Hotmail.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_hsskin.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jemster.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jemsterie.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jemsteruk.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jobsearch.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Mails.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_new.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_reun.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_ringtones.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_SearchBoxTrapper.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_searchfor.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_searchgo.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_weather.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_yellowpages.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\email-def-511724-548964.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\email-def-511724-9595.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\email-t1-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\gamesmenu.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\gamesMenu.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hb_ie_menu.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar-premium-hotbar-premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar-premium.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\icons2.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\ie_games_icon.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\ie_video.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords.idx
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords1.dat
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\layout.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\new_games.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\s_icons_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\sales_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\t2_bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\theweb.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\top7.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Top7_theweb.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\tsd_bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\weathericon.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ads.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\BtnTrans.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\BtnTrans1.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\business_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\buttondir.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\cursors.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_1000.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_2000.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_3000.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bar.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar1.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_logos.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_other.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_weather.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\default.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\email-t1-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\gamesmenu.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hb_ie_menu.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar-premium.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\icons2.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ie_games_icon.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ie_video.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords1.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\layout.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\linkpathlegal.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\more.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\progress.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\s_icons_buttons.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\sales_buttons.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\t2_bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\top7.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\tsd_bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\weathericon.xip
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons\meetic.ico
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons\Registryrepair.ico
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons\wallpapere1.ico
C:\Documents and Settings\Admin\Application Data\ShoppingReport
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\Config.xml
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\db\Aliases.dbs
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\db\Sites.dbs
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\dwld\WhiteList.xip
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\report\aggr_storage.xml
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\report\send_storage.xml
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\res2\WhiteList.dbs
C:\Documents and Settings\Admin\Bureau\Free PC Wallpapers.lnk
C:\Documents and Settings\Admin\err.log
C:\Documents and Settings\All Users\Application Data\HotbarSA
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSA.dat
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSA_kyf.dat
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSAAbout.mht
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSAau.dat
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSAEula.mht
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2006
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2006\AVScheduler.dat
C:\Documents and Settings\Enfants\err.log
C:\Documents and Settings\Stéphanie\Application Data\DriveCleaner 2006 Free
C:\Documents and Settings\Stéphanie\Application Data\DriveCleaner 2006 Free\Logs\update.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\Logs\update.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\Logs\wa6Support.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\Logs\winav.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\PGE.dat
C:\Documents and Settings\Stéphanie\err.log
C:\Program Files\Hotbar
C:\Program Files\Hotbar\bin\10.0.357.0\arrow.ico
C:\Program Files\Hotbar\bin\10.0.357.0\Cml.exe
C:\Program Files\Hotbar\bin\10.0.357.0\copyright.txt
C:\Program Files\Hotbar\bin\10.0.357.0\CoreSrv.dll
C:\Program Files\Hotbar\bin\10.0.357.0\dBenderC.dll
C:\Program Files\Hotbar\bin\10.0.357.0\firefox\extensions\components\npclntax.xpt
C:\Program Files\Hotbar\bin\10.0.357.0\firefox\extensions\install.rdf
C:\Program Files\Hotbar\bin\10.0.357.0\firefox\extensions\plugins\npclntax_HotbarSA.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HostIE.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HostOE.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HostOL.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HotbarSAAX.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HotbarSADF.exe
C:\Program Files\Hotbar\bin\10.0.357.0\HotbarSAHook.dll
C:\Program Files\Hotbar\bin\10.0.357.0\InstIE.dll
C:\Program Files\Hotbar\bin\10.0.357.0\link.ico
C:\Program Files\Hotbar\bin\10.0.357.0\OEAddOn.exe
C:\Program Files\Hotbar\bin\10.0.357.0\Srv.exe
C:\Program Files\Hotbar\bin\10.0.357.0\Toolbar.dll
C:\Program Files\Hotbar\bin\10.0.357.0\Wallpaper.dll
C:\Program Files\Hotbar\bin\10.0.357.0\Weather.exe
C:\Program Files\Hotbar\bin\10.0.357.0\WeSkin.dll
C:\Program Files\hottvplayer
C:\Program Files\hottvplayer\hottv.ico
C:\Program Files\hottvplayer\Ogg\ogg.dll
C:\Program Files\hottvplayer\Ogg\ogg_demux.dll
C:\Program Files\hottvplayer\Ogg\theora_decoder.dll
C:\Program Files\hottvplayer\Ogg\vorbis.dll
C:\Program Files\hottvplayer\Ogg\vorbis_decoder.dll
C:\Program Files\ShoppingReport
C:\Program Files\ShoppingReport\Uninst.exe
C:\WINDOWS\cookies.ini
C:\WINDOWS\pack.epk
C:\WINDOWS\system32\bkhfqnqj.ini
C:\WINDOWS\system32\ewgiwutw.ini
C:\WINDOWS\system32\ghkmp.ini
C:\WINDOWS\system32\ghkmp.ini2
c:\WINDOWS\system32\irgodc.dat
c:\windows\system32\irgodc.exe
C:\WINDOWS\system32\irgodc_nav.dat
c:\WINDOWS\system32\irgodc_navps.dat
C:\WINDOWS\system32\jdpielkg.dll
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\mlxkhsap.ini
C:\WINDOWS\system32\muhomqkx.dll
C:\WINDOWS\system32\npqss.bak1
C:\WINDOWS\system32\npqss.bak2
C:\WINDOWS\system32\npqss.ini
C:\WINDOWS\system32\nvs2.inf
C:\WINDOWS\system32\pmkhg.dll
C:\WINDOWS\system32\pxkmdcny.ini
C:\WINDOWS\system32\stera.job
C:\WINDOWS\system32\stera.log
C:\WINDOWS\system32\UpMedia
C:\WINDOWS\system32\vgfsjxkf.dll

.
((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-01-06 to 2008-02-06 ))))))))))))))))))))))))))))))))))))
.

2008-02-06 21:35 . 2008-02-06 21:35 0 --a------ C:\temp00
2008-02-05 22:15 . 2008-02-05 22:22 91,700 --a------ C:\WINDOWS\system32\drivers\klin.dat
2008-02-05 22:15 . 2008-02-05 22:15 85,860 --a------ C:\WINDOWS\system32\drivers\klick.dat
2008-02-05 22:14 . 2008-02-05 22:14 <REP> d-------- C:\Program Files\Kaspersky Lab
2008-02-05 22:14 . 2008-02-06 22:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-02-05 22:14 . 2008-02-06 22:00 1,213,216 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-02-05 22:14 . 2008-02-06 22:00 17,952 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
2008-02-05 22:14 . 2008-02-06 21:58 16,868 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-02-05 22:14 . 2008-02-06 21:58 2,708 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx
2008-02-05 20:40 . 2008-02-05 20:40 <REP> d-------- C:\VundoFix Backups
2008-02-05 20:09 . 2008-02-05 20:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-01-31 14:27 . 2008-01-31 14:27 <REP> d-------- C:\Program Files\Fichiers communs\ODBC
2008-01-31 10:00 . 2008-01-31 10:00 <REP> d-------- C:\AVIONE~1
2008-01-24 23:04 . 2008-01-24 23:11 82 --a------ C:\WINDOWS\PR1V2.INI
2008-01-22 00:09 . 2008-01-22 00:09 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-01-21 19:14 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-01-21 19:14 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-01-21 19:14 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-01-19 23:40 . 2008-01-19 23:40 172 --ah----- C:\sqmnoopt02.sqm
2008-01-19 23:40 . 2008-01-19 23:40 172 --ah----- C:\sqmdata02.sqm
2008-01-19 20:38 . 2008-01-19 20:38 268 --ah----- C:\sqmdata01.sqm
2008-01-19 20:38 . 2008-01-19 20:38 244 --ah----- C:\sqmnoopt01.sqm
2008-01-19 17:58 . 2008-01-19 17:58 <REP> d-------- C:\Documents and Settings\Admin\Contacts
2008-01-19 17:48 . 2008-01-19 18:01 <REP> d-------- C:\Program Files\Windows Live
2008-01-19 17:48 . 2008-01-19 17:51 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-01-19 17:48 . 2008-01-19 17:48 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-01-08 23:39 . 2008-01-08 23:39 <REP> d-------- C:\Program Files\FoxyTunes
2008-01-08 23:39 . 2008-01-08 23:39 <REP> d-------- C:\Documents and Settings\Admin\Application Data\FoxyTunes
2008-01-08 23:36 . 2008-01-08 23:44 <REP> d-------- C:\Program Files\IEMate
2008-01-08 23:29 . 2008-01-08 23:31 <REP> d-------- C:\Documents and Settings\Admin\Application Data\MiniDm
2008-01-08 22:11 . 2008-01-08 22:11 <REP> d-------- C:\Program Files\GooglePreviewIE Toolbar
2008-01-08 22:11 . 2008-01-08 22:11 231,558 --a------ C:\WINDOWS\GooglePreviewIE_Toolbar_Uninstaller_3875.exe
2008-01-08 22:09 . 2008-01-08 22:09 <REP> d-------- C:\Program Files\IEForge
2008-01-08 22:07 . 2008-01-08 23:31 <REP> d-------- C:\Program Files\IEPro
2008-01-08 22:07 . 2008-01-11 23:14 <REP> d-------- C:\Documents and Settings\Admin\Application Data\IEPro

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-03 20:56 --------- d-----w C:\Documents and Settings\Admin\Application Data\LimeWire
2008-01-01 20:20 --------- d-----w C:\Program Files\Dofus
2008-01-01 14:10 --------- d-----w C:\Documents and Settings\All Users\Application Data\BVRP Software
2008-01-01 14:09 92,064 ----a-w C:\Documents and Settings\Admin\mqdmmdm.sys
2008-01-01 14:09 9,232 ----a-w C:\Documents and Settings\Admin\mqdmmdfl.sys
2008-01-01 14:09 79,328 ----a-w C:\Documents and Settings\Admin\mqdmserd.sys
2008-01-01 14:09 66,656 ----a-w C:\Documents and Settings\Admin\mqdmbus.sys
2008-01-01 14:09 6,208 ----a-w C:\Documents and Settings\Admin\mqdmcmnt.sys
2008-01-01 14:09 5,936 ----a-w C:\Documents and Settings\Admin\mqdmwhnt.sys
2008-01-01 14:09 4,048 ----a-w C:\Documents and Settings\Admin\mqdmcr.sys
2008-01-01 14:09 25,600 ----a-w C:\Documents and Settings\Admin\usbsermptxp.sys
2008-01-01 14:09 22,768 ----a-w C:\Documents and Settings\Admin\usbsermpt.sys
2008-01-01 14:09 --------- d-----w C:\Program Files\Motorola Phone Tools
2008-01-01 14:08 --------- d-----w C:\Program Files\Avanquest update
2008-01-01 14:08 --------- d-----w C:\Documents and Settings\Admin\Application Data\InstallShield
2008-01-01 14:07 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-01 14:05 25,600 ----a-w C:\WINDOWS\system32\drivers\usbsermptxp.sys
2007-12-26 07:47 --------- d-----w C:\Program Files\Fichiers communs\xing shared
2007-12-26 07:47 --------- d-----w C:\Program Files\Fichiers communs\Real
2007-12-26 07:46 --------- d-----w C:\Program Files\Real
2007-12-17 23:43 23,396 ----a-w C:\WINDOWS\system32\drivers\klopp.dat
2007-12-14 18:09 --------- d-----w C:\Program Files\Conjugaison
2007-12-13 12:28 24,592 ----a-w C:\WINDOWS\system32\drivers\klim5.sys
2007-12-06 18:13 --------- d-----w C:\Documents and Settings\Admin\Application Data\Skype
2007-09-25 17:24 19,504 ----a-w C:\Documents and Settings\Admin\Application Data\GDIPFONTCACHEV1.DAT
1998-09-29 11:56 10,000 ----a-w C:\WINDOWS\inf\unregpn.exe
2007-09-29 06:48 6,440 --sh--w C:\WINDOWS\system32\fhkmp.bak1
2007-09-28 20:33 6,440 --sh--w C:\WINDOWS\system32\gjllm.bak1
2007-09-30 07:13 6,440 --sh--w C:\WINDOWS\system32\qqtwa.bak1
.

((((((((((((((((((((((((((((((((((((((((((((( AWF ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
----a-w 21,024 2001-08-12 18:35:00 C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\bak\prhyper.exe
----a-w 21,024 2001-08-12 18:35:00 C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe

.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D818B374-B044-4307-B4E7-AF75CBE744E1}]
C:\WINDOWS\system32\geede.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2006-02-06 12:49 19490344]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [2005-11-24 15:38 94208]
"IncrediMail"="C:\Program Files\IncrediMail\bin\IncMail.exe" [2007-08-21 10:44 208946]
"Magentic"="C:\PROGRA~1\Magentic\bin\Magentic.exe" [2007-09-03 14:25 475180]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-03 23:54 15360]
"Le Petit Robert Hyperappel"="C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe" [2001-08-12 19:35 21024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-06-16 02:20 6803456]
"nwiz"="nwiz.exe" [2005-06-16 02:20 1519616 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-06-16 02:20 86016]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2005-11-15 20:31 33792]
"StandardInstall"="" []
"OpwareSE2"="C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 10:00 49152]
"Motive SmartBridge"="C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe" [ ]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"SSBkgdUpdate"="C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-09-29 23:14 155648]
"OpwareSE4"="C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-03-21 12:19 69632]
"SoundMan"="SOUNDMAN.EXE" [2005-06-20 14:42 77824 C:\WINDOWS\SOUNDMAN.EXE]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 19:51 39792]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-12-26 08:46 185896]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2007-12-18 00:43 227856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Config"="C:\WINDOWS\system32\run.cmd" [2005-08-23 10:24 341]
"nlsf"="cmd.exe" [2004-08-03 23:54 400896 C:\WINDOWS\system32\cmd.exe]
"tscuninstall"="C:\WINDOWS\system32\tscupgrd.exe" [2004-08-19 14:52 44544]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ljjijjg]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\pmkhf]
C:\WINDOWS\system32\pmkhf.dll 2007-09-29 07:48 283232 C:\WINDOWS\system32\pmkhf.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\WINDOWS\system32\__c008FCE9.dat,C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll

R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [2007-12-13 13:28]
S0 viasraid;viasraid;C:\WINDOWS\system32\drivers\viasraid.sys [2005-12-20 10:57]
S3 USB_RNDIS_51;Broadcom USB Remote NDIS Device Driver;C:\WINDOWS\system32\DRIVERS\usb8023.sys [2004-08-03 22:04]

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-06 22:00:29
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cach‚s ...

Balayage cach‚ autostart entries ...

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Le Petit Robert Hyperappel = C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe??|????8????%??(H??????~??????????????????????????????????????|J??|??(?(H??g???????4??????????|p??|????m??|J??|????????(H??????????W??|????(H??t?r?u?e?????? ????????????(???????(?? ??

Balayage des fichiers cach‚s ...

Scan termin‚ avec succŠs
Les fichiers cach‚s: 0

**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
.
**************************************************************************
.
Temps d'accomplissement: 2008-02-06 22:06:37 - machine was rebooted
ComboFix-quarantined-files.txt 2008-02-06 21:05:06
.
2008-01-24 20:20:43 --- E O F ---
0
Réponse 8 / 16
did42
7 févr. 2008 à 19:12
Suite 1 :
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\n.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_b_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_bb_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_f_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\nav_ff_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\pro_hb_fo_word.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\sales_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\searchbtn.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\submit.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_bg.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_bga.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_bgia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_l.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_la.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_lia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_r.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_ra.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tab_ria.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tree_dots.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tree_minus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\tree_plus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_animations.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_backgrounds.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_ecards.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_emoticons.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_notifiers.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\1\treedata_text.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte10_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte11_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte12_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte13_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte14_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30104_emte9_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u30203lib_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102angel_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102bigluf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102bigsmile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102birthday_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102cheers_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102flo_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102good_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102jump_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102king_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102lough_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102luf_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102smile_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102smiled_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102sor_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102thanx_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u33102uhu_1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u40103ahh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u40103wow_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u40104_emi2_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u42102_1134_112_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103big_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103gig_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103hm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103nomail_emoti_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u50103norm_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema15_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema16_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema17_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema18_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema19_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema20_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema21_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema24_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema25_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema26_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema30_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema33_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u60104_ema34_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u62802hippi_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u62802jumpie_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u80402argh_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u80402oops_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u80402ouch_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u82502no_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\[u]0/u82502yes_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_boring1_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_confused_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_crying_ugly_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_fantastic_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_feel_better_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_gimme_break_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_heehee_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_hlopaet_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_ign_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_lol_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_no_comment_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_peace_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_smashing_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\110103_talk2thehand_prv.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_sm.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_sm2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_smli.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\block_smli2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\blocked.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\blocked2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_add-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_back-but.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_left_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_left_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_left_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_middle_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_middle_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_right_cut_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_right_enabled_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\btn_right_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\business_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\buttondir.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\components.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css_cattree.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css_flashpreview.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css2_main.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css2_pagingmodule.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\css2_topbuttons.css
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\delete.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\edit_clear_sound.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\edit_fs.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\edit_select.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-543450.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-548964.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-589306.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-591943.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-592579.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-598579.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-603763.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-9595.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511724-9696.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-511745-514279.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-backgrounds.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-bcards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-ecards.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-emoticons.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-estationery.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-funny.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-help.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-images.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-info.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-more.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-my.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-new.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-new2.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-options.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-people.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-photo.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-tell.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-temp.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-text.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def-email-voice.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-def.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-premium-email-premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-t1-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\email-temp-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\estatationery.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\flashpatch.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\flashpreview.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\fs3.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\hotbar_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_checked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_close_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_close_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_edit_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_edit_send.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_flash_preview.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_recently_used.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_remove_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_remove_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_sand-clock2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_tell_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_tell_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_tree_null.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_unchecked_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\icon_unchecked_pressed_1.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_barlayout.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_barlayout2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_barlayout4.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_corner_left.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\img_local_logo.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_basetemplate.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hbgroups.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hbobject3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hbobjectset3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_hotbarwrapper.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_iteratorsandreaders3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_pagingmoduleobj3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_texts3.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\js2_xmltree3nf.js
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\layout.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\n.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_b_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_bb_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_f_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\nav_ff_2.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\pro_hb_fo_word.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\sales_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\searchbtn.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\submit.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_bg.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_bga.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_bgia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_l.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_la.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_lia.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_r.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_ra.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tab_ria.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tree_dots.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tree_minus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\tree_plus.gif
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_animations.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_backgrounds.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_ecards.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_emoticons.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_notifiers.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\2\treedata_text.xml
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\business_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\buttondir.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\code.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\email-def.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\email-t1-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\email-temp-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\hotbar_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\images.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\layout.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\linkpathlegal.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\localcontent.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\more.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\pro_hb_fo_word.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\progress.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\sales_buttons.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\HostOL\static\DownLoad\treexml.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\1.sdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\566217.sdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\803618.sdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\domains.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\1000063686
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\1000078304
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\12457
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\186757
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\28437
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\29115
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\4382
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\44228
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\598613
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\705140
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\705151
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\710839
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\TooltipXML\99795
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\dynamic\ustat\35d3.dat
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\ads.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\btntrans.idx
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\btntrans1.dat
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\business_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\buttondir.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\components.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\cursors.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_1000.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_2000.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_3000.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bar.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_bbar1.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_logos.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_buttons_other.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\d_icons_weather.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\default.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_511745-514279.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz1.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz10.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz11.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz12.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz13.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz14.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz15.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz16.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz17.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz18.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz19.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz2.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz20.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz3.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz4.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz5.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz6.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz7.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz8.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_bidz9.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_categorize.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_comparison.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_em_PROFL_CA_flow_b_IEB.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_explorer-Mails.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_explorer-people.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_favorites.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Games.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Hide.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_hotbarcom.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Hotmail.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_hsskin.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jemster.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jemsterie.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jemsteruk.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_jobsearch.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_Mails.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_new.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_reun.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_ringtones.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_SearchBoxTrapper.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_searchfor.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_searchgo.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_weather.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Default_yellowpages.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\email-def-511724-548964.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\email-def-511724-9595.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\email-t1-bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\gamesmenu.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\gamesMenu.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hb_ie_menu.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar-premium-hotbar-premium.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar-premium.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\hotbar_promo.htm
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\icons2.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\ie_games_icon.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\ie_video.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords.idx
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\keywords1.dat
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\layout.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\linkpathlegal.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\more.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\new_games.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\progress.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\s_icons_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\sales_buttons.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\t2_bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\theweb.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\top7.cdf
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\Top7_theweb.mnu
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\tsd_bg.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\2\weathericon.res
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ads.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\BtnTrans.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\BtnTrans1.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\business_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\buttondir.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\cursors.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_1000.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_2000.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_3000.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bar.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_bbar1.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_logos.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_buttons_other.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\d_icons_weather.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\default.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\email-t1-bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\gamesmenu.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hb_ie_menu.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar-premium.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\hotbar_promo.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\icons2.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ie_games_icon.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\ie_video.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\keywords1.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\layout.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\linkpathlegal.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\more.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\progress.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\s_icons_buttons.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\sales_buttons.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.txt
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\samplegroups2.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\t2_bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\top7.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\tsd_bg.xip
C:\Documents and Settings\Admin\Application Data\Hotbar\v3.0\Hotbar\static\DownLoad\weathericon.xip
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons\meetic.ico
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons\Registryrepair.ico
C:\Documents and Settings\Admin\Application Data\Hotbar_Icons\wallpapere1.ico
C:\Documents and Settings\Admin\Application Data\ShoppingReport
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\Config.xml
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\db\Aliases.dbs
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\db\Sites.dbs
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\dwld\WhiteList.xip
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\report\aggr_storage.xml
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\report\send_storage.xml
C:\Documents and Settings\Admin\Application Data\ShoppingReport\cs\res2\WhiteList.dbs
C:\Documents and Settings\Admin\Bureau\Free PC Wallpapers.lnk
C:\Documents and Settings\Admin\err.log
C:\Documents and Settings\All Users\Application Data\HotbarSA
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSA.dat
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSA_kyf.dat
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSAAbout.mht
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSAau.dat
C:\Documents and Settings\All Users\Application Data\HotbarSA\HotbarSAEula.mht
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2006
C:\Documents and Settings\All Users\Application Data\WinAntiVirus Pro 2006\AVScheduler.dat
C:\Documents and Settings\Enfants\err.log
C:\Documents and Settings\Stéphanie\Application Data\DriveCleaner 2006 Free
C:\Documents and Settings\Stéphanie\Application Data\DriveCleaner 2006 Free\Logs\update.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\Logs\update.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\Logs\wa6Support.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\Logs\winav.log
C:\Documents and Settings\Stéphanie\Application Data\WinAntiVirus Pro 2006\PGE.dat
C:\Documents and Settings\Stéphanie\err.log
C:\Program Files\Hotbar
C:\Program Files\Hotbar\bin\10.0.357.0\arrow.ico
C:\Program Files\Hotbar\bin\10.0.357.0\Cml.exe
C:\Program Files\Hotbar\bin\10.0.357.0\copyright.txt
C:\Program Files\Hotbar\bin\10.0.357.0\CoreSrv.dll
C:\Program Files\Hotbar\bin\10.0.357.0\dBenderC.dll
C:\Program Files\Hotbar\bin\10.0.357.0\firefox\extensions\components\npclntax.xpt
C:\Program Files\Hotbar\bin\10.0.357.0\firefox\extensions\install.rdf
C:\Program Files\Hotbar\bin\10.0.357.0\firefox\extensions\plugins\npclntax_HotbarSA.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HostIE.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HostOE.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HostOL.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HotbarSAAX.dll
C:\Program Files\Hotbar\bin\10.0.357.0\HotbarSADF.exe
C:\Program Files\Hotbar\bin\10.0.357.0\HotbarSAHook.dll
C:\Program Files\Hotbar\bin\10.0.357.0\InstIE.dll
C:\Program Files\Hotbar\bin\10.0.357.0\link.ico
C:\Program Files\Hotbar\bin\10.0.357.0\OEAddOn.exe
C:\Program Files\Hotbar\bin\10.0.357.0\Srv.exe
C:\Program Files\Hotbar\bin\10.0.357.0\Toolbar.dll
C:\Program Files\Hotbar\bin\10.0.357.0\Wallpaper.dll
C:\Program Files\Hotbar\bin\10.0.357.0\Weather.exe
C:\Program Files\Hotbar\bin\10.0.357.0\WeSkin.dll
C:\Program Files\hottvplayer
C:\Program Files\hottvplayer\hottv.ico
C:\Program Files\hottvplayer\Ogg\ogg.dll
C:\Program Files\hottvplayer\Ogg\ogg_demux.dll
C:\Program Files\hottvplayer\Ogg\theora_decoder.dll
C:\Program Files\hottvplayer\Ogg\vorbis.dll
C:\Program Files\hottvplayer\Ogg\vorbis_decoder.dll
C:\Program Files\ShoppingReport
C:\Program Files\ShoppingReport\Uninst.exe
C:\WINDOWS\cookies.ini
C:\WINDOWS\pack.epk
C:\WINDOWS\system32\bkhfqnqj.ini
C:\WINDOWS\system32\ewgiwutw.ini
C:\WINDOWS\system32\ghkmp.ini
C:\WINDOWS\system32\ghkmp.ini2
c:\WINDOWS\system32\irgodc.dat
c:\windows\system32\irgodc.exe
C:\WINDOWS\system32\irgodc_nav.dat
c:\WINDOWS\system32\irgodc_navps.dat
C:\WINDOWS\system32\jdpielkg.dll
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\mlxkhsap.ini
C:\WINDOWS\system32\muhomqkx.dll
C:\WINDOWS\system32\npqss.bak1
C:\WINDOWS\system32\npqss.bak2
C:\WINDOWS\system32\npqss.ini
C:\WINDOWS\system32\nvs2.inf
C:\WINDOWS\system32\pmkhg.dll
C:\WINDOWS\system32\pxkmdcny.ini
C:\WINDOWS\system32\stera.job
C:\WINDOWS\system32\stera.log
C:\WINDOWS\system32\UpMedia
C:\WINDOWS\system32\vgfsjxkf.dll

.
((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-01-06 to 2008-02-06 ))))))))))))))))))))))))))))))))))))
.

2008-02-06 21:35 . 2008-02-06 21:35 0 --a------ C:\temp00
2008-02-05 22:15 . 2008-02-05 22:22 91,700 --a------ C:\WINDOWS\system32\drivers\klin.dat
2008-02-05 22:15 . 2008-02-05 22:15 85,860 --a------ C:\WINDOWS\system32\drivers\klick.dat
2008-02-05 22:14 . 2008-02-05 22:14 <REP> d-------- C:\Program Files\Kaspersky Lab
2008-02-05 22:14 . 2008-02-06 22:00 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-02-05 22:14 . 2008-02-06 22:00 1,213,216 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-02-05 22:14 . 2008-02-06 22:00 17,952 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
2008-02-05 22:14 . 2008-02-06 21:58 16,868 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-02-05 22:14 . 2008-02-06 21:58 2,708 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx
2008-02-05 20:40 . 2008-02-05 20:40 <REP> d-------- C:\VundoFix Backups
2008-02-05 20:09 . 2008-02-05 20:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-01-31 14:27 . 2008-01-31 14:27 <REP> d-------- C:\Program Files\Fichiers communs\ODBC
2008-01-31 10:00 . 2008-01-31 10:00 <REP> d-------- C:\AVIONE~1
2008-01-24 23:04 . 2008-01-24 23:11 82 --a------ C:\WINDOWS\PR1V2.INI
2008-01-22 00:09 . 2008-01-22 00:09 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-01-21 19:14 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-01-21 19:14 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-01-21 19:14 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-01-19 23:40 . 2008-01-19 23:40 172 --ah----- C:\sqmnoopt02.sqm
2008-01-19 23:40 . 2008-01-19 23:40 172 --ah----- C:\sqmdata02.sqm
2008-01-19 20:38 . 2008-01-19 20:38 268 --ah----- C:\sqmdata01.sqm
2008-01-19 20:38 . 2008-01-19 20:38 244 --ah----- C:\sqmnoopt01.sqm
2008-01-19 17:58 . 2008-01-19 17:58 <REP> d-------- C:\Documents and Settings\Admin\Contacts
2008-01-19 17:48 . 2008-01-19 18:01 <REP> d-------- C:\Program Files\Windows Live
2008-01-19 17:48 . 2008-01-19 17:51 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-01-19 17:48 . 2008-01-19 17:48 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-01-08 23:39 . 2008-01-08 23:39 <REP> d-------- C:\Program Files\FoxyTunes
2008-01-08 23:39 . 2008-01-08 23:39 <REP> d-------- C:\Documents and Settings\Admin\Application Data\FoxyTunes
2008-01-08 23:36 . 2008-01-08 23:44 <REP> d-------- C:\Program Files\IEMate
2008-01-08 23:29 . 2008-01-08 23:31 <REP> d-------- C:\Documents and Settings\Admin\Application Data\MiniDm
2008-01-08 22:11 . 2008-01-08 22:11 <REP> d-------- C:\Program Files\GooglePreviewIE Toolbar
2008-01-08 22:11 . 2008-01-08 22:11 231,558 --a------ C:\WINDOWS\GooglePreviewIE_Toolbar_Uninstaller_3875.exe
2008-01-08 22:09 . 2008-01-08 22:09 <REP> d-------- C:\Program Files\IEForge
2008-01-08 22:07 . 2008-01-08 23:31 <REP> d-------- C:\Program Files\IEPro
2008-01-08 22:07 . 2008-01-11 23:14 <REP> d-------- C:\Documents and Settings\Admin\Application Data\IEPro

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-03 20:56 --------- d-----w C:\Documents and Settings\Admin\Application Data\LimeWire
2008-01-01 20:20 --------- d-----w C:\Program Files\Dofus
2008-01-01 14:10 --------- d-----w C:\Documents and Settings\All Users\Application Data\BVRP Software
2008-01-01 14:09 92,064 ----a-w C:\Documents and Settings\Admin\mqdmmdm.sys
2008-01-01 14:09 9,232 ----a-w C:\Documents and Settings\Admin\mqdmmdfl.sys
2008-01-01 14:09 79,328 ----a-w C:\Documents and Settings\Admin\mqdmserd.sys
2008-01-01 14:09 66,656 ----a-w C:\Documents and Settings\Admin\mqdmbus.sys
2008-01-01 14:09 6,208 ----a-w C:\Documents and Settings\Admin\mqdmcmnt.sys
2008-01-01 14:09 5,936 ----a-w C:\Documents and Settings\Admin\mqdmwhnt.sys
2008-01-01 14:09 4,048 ----a-w C:\Documents and Settings\Admin\mqdmcr.sys
2008-01-01 14:09 25,600 ----a-w C:\Documents and Settings\Admin\usbsermptxp.sys
2008-01-01 14:09 22,768 ----a-w C:\Documents and Settings\Admin\usbsermpt.sys
2008-01-01 14:09 --------- d-----w C:\Program Files\Motorola Phone Tools
2008-01-01 14:08 --------- d-----w C:\Program Files\Avanquest update
2008-01-01 14:08 --------- d-----w C:\Documents and Settings\Admin\Application Data\InstallShield
2008-01-01 14:07 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-01 14:05 25,600 ----a-w C:\WINDOWS\system32\drivers\usbsermptxp.sys
2007-12-26 07:47 --------- d-----w C:\Program Files\Fichiers communs\xing shared
2007-12-26 07:47 --------- d-----w C:\Program Files\Fichiers communs\Real
2007-12-26 07:46 --------- d-----w C:\Program Files\Real
2007-12-17 23:43 23,396 ----a-w C:\WINDOWS\system32\drivers\klopp.dat
2007-12-14 18:09 --------- d-----w C:\Program Files\Conjugaison
2007-12-13 12:28 24,592 ----a-w C:\WINDOWS\system32\drivers\klim5.sys
2007-12-06 18:13 --------- d-----w C:\Documents and Settings\Admin\Application Data\Skype
2007-09-25 17:24 19,504 ----a-w C:\Documents and Settings\Admin\Application Data\GDIPFONTCACHEV1.DAT
1998-09-29 11:56 10,000 ----a-w C:\WINDOWS\inf\unregpn.exe
2007-09-29 06:48 6,440 --sh--w C:\WINDOWS\system32\fhkmp.bak1
2007-09-28 20:33 6,440 --sh--w C:\WINDOWS\system32\gjllm.bak1
2007-09-30 07:13 6,440 --sh--w C:\WINDOWS\system32\qqtwa.bak1
.

((((((((((((((((((((((((((((((((((((((((((((( AWF ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
----a-w 21,024 2001-08-12 18:35:00 C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\bak\prhyper.exe
----a-w 21,024 2001-08-12 18:35:00 C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe

.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D818B374-B044-4307-B4E7-AF75CBE744E1}]
C:\WINDOWS\system32\geede.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2006-02-06 12:49 19490344]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [2005-11-24 15:38 94208]
"IncrediMail"="C:\Program Files\IncrediMail\bin\IncMail.exe" [2007-08-21 10:44 208946]
"Magentic"="C:\PROGRA~1\Magentic\bin\Magentic.exe" [2007-09-03 14:25 475180]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-03 23:54 15360]
"Le Petit Robert Hyperappel"="C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe" [2001-08-12 19:35 21024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-06-16 02:20 6803456]
"nwiz"="nwiz.exe" [2005-06-16 02:20 1519616 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-06-16 02:20 86016]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2005-11-15 20:31 33792]
"StandardInstall"="" []
"OpwareSE2"="C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 10:00 49152]
"Motive SmartBridge"="C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe" [ ]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"SSBkgdUpdate"="C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-09-29 23:14 155648]
"OpwareSE4"="C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-03-21 12:19 69632]
"SoundMan"="SOUNDMAN.EXE" [2005-06-20 14:42 77824 C:\WINDOWS\SOUNDMAN.EXE]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 19:51 39792]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-12-26 08:46 185896]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2007-12-18 00:43 227856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Config"="C:\WINDOWS\system32\run.cmd" [2005-08-23 10:24 341]
"nlsf"="cmd.exe" [2004-08-03 23:54 400896 C:\WINDOWS\system32\cmd.exe]
"tscuninstall"="C:\WINDOWS\system32\tscupgrd.exe" [2004-08-19 14:52 44544]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ljjijjg]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\pmkhf]
C:\WINDOWS\system32\pmkhf.dll 2007-09-29 07:48 283232 C:\WINDOWS\system32\pmkhf.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\WINDOWS\system32\__c008FCE9.dat,C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll

R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [2007-12-13 13:28]
S0 viasraid;viasraid;C:\WINDOWS\system32\drivers\viasraid.sys [2005-12-20 10:57]
S3 USB_RNDIS_51;Broadcom USB Remote NDIS Device Driver;C:\WINDOWS\system32\DRIVERS\usb8023.sys [2004-08-03 22:04]

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-06 22:00:29
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cach‚s ...

Balayage cach‚ autostart entries ...

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Le Petit Robert Hyperappel = C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe??|????8????%??(H??????~??????????????????????????????????????|J??|??(?(H??g???????4??????????|p??|????m??|J??|????????(H??????????W??|????(H??t?r?u?e?????? ????????????(???????(?? ??

Balayage des fichiers cach‚s ...

Scan termin‚ avec succŠs
Les fichiers cach‚s: 0

**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
.
**************************************************************************
.
Temps d'accomplissement: 2008-02-06 22:06:37 - machine was rebooted
ComboFix-quarantined-files.txt 2008-02-06 21:05:06
.
2008-01-24 20:20:43 --- E O F ---
0
Réponse 9 / 16
did42
7 févr. 2008 à 19:15
Suite 2 : et avec HiJackThis :Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:11:37, on 06/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Admin\Bureau\Scanner.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: FoxyTunes Toolbar Helper - {784D8FBC-4165-4D88-90FB-62907ACDD045} - C:\Program Files\FoxyTunes\ForInternetExplorer\components\IE\FoxyTunesForIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: InlineSearchHandleHotKey - {B6FFE2AE-4D12-451F-B457-FE6125FFB1CF} - C:\Program Files\IEForge\Inline Search\InlineSearch.dll
O2 - BHO: GooglePreviewIE Toolbar Helper - {D476B977-AF6C-481A-8472-2ABAB5E89F20} - C:\Program Files\GooglePreviewIE Toolbar\v3.2.0.0\GooglePreviewIE_Toolbar.dll
O2 - BHO: (no name) - {D818B374-B044-4307-B4E7-AF75CBE744E1} - C:\WINDOWS\system32\geede.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: GooglePreviewIE Toolbar - {AEC32322-9D72-4C55-A108-33875F07BC03} - C:\Program Files\GooglePreviewIE Toolbar\v3.2.0.0\GooglePreviewIE_Toolbar.dll
O3 - Toolbar: FoxyTunes Toolbar - {1D1901C3-F72A-46f3-9DBB-0AAA0DEEF6DF} - C:\Program Files\FoxyTunes\ForInternetExplorer\components\IE\FoxyTunesForIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Le Petit Robert Hyperappel] C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\__c008FCE9.dat,C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O20 - Winlogon Notify: ljjijjg - C:\WINDOWS\
O20 - Winlogon Notify: pmkhf - C:\WINDOWS\system32\pmkhf.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
0
Réponse 10 / 16
did42
7 févr. 2008 à 19:15
Suite 2 : et avec HiJackThis :Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:11:37, on 06/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Admin\Bureau\Scanner.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: FoxyTunes Toolbar Helper - {784D8FBC-4165-4D88-90FB-62907ACDD045} - C:\Program Files\FoxyTunes\ForInternetExplorer\components\IE\FoxyTunesForIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: InlineSearchHandleHotKey - {B6FFE2AE-4D12-451F-B457-FE6125FFB1CF} - C:\Program Files\IEForge\Inline Search\InlineSearch.dll
O2 - BHO: GooglePreviewIE Toolbar Helper - {D476B977-AF6C-481A-8472-2ABAB5E89F20} - C:\Program Files\GooglePreviewIE Toolbar\v3.2.0.0\GooglePreviewIE_Toolbar.dll
O2 - BHO: (no name) - {D818B374-B044-4307-B4E7-AF75CBE744E1} - C:\WINDOWS\system32\geede.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: GooglePreviewIE Toolbar - {AEC32322-9D72-4C55-A108-33875F07BC03} - C:\Program Files\GooglePreviewIE Toolbar\v3.2.0.0\GooglePreviewIE_Toolbar.dll
O3 - Toolbar: FoxyTunes Toolbar - {1D1901C3-F72A-46f3-9DBB-0AAA0DEEF6DF} - C:\Program Files\FoxyTunes\ForInternetExplorer\components\IE\FoxyTunesForIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Le Petit Robert Hyperappel] C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\__c008FCE9.dat,C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O20 - Winlogon Notify: ljjijjg - C:\WINDOWS\
O20 - Winlogon Notify: pmkhf - C:\WINDOWS\system32\pmkhf.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
0
Réponse 11 / 16
O VertigO Messages postés 862 Date d'inscription mercredi 8 août 2007 Statut Membre Dernière intervention 10 février 2008 32
7 févr. 2008 à 20:03
Re,

Oula je crois que tu as cliquer trop de fois sur "Ajouter" :o)


Crée un nouveau document texte : clic droit de souris sur le bureau > Nouveau > Document Texte, et copie dedans les lignes suivantes : 

File::
C:\WINDOWS\system32\pmkhf.dll
C:\WINDOWS\system32\ljjijjg.dll
C:\WINDOWS\system32\__c008FCE9.dat
C:\WINDOWS\system32\geede.dll
C:\WINDOWS\system32\fhkmp.bak1 
C:\WINDOWS\system32\gjllm.bak1 
C:\WINDOWS\system32\qqtwa.bak1

Folder::
C:\VundoFix Backups

Registry::
[-HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ljjijjg] 
[-HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\pmkhf]


Enregistre ce fichier sous le nom CFScript

* Fait un glisser/déposer de ce fichier CFScript sur le fichier ComboFix.exe
* Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.
* Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!
* Ne touche à rien tant que le scan n'est pas terminé.
* Une fois le scan achevé, un rapport va s'afficher: poste son contenu, en précisant où en sont tes soucis
* Si le fichier ne s'ouvre pas, il se trouve ici >> C:\ComboFix.txt
* Copie/Colle un nouveau rapport HiJackThis
0
Réponse 12 / 16
did42
7 févr. 2008 à 21:27
Je ne sais pas dire où sont les soucis, merci de m'aider :

ComboFix 08-02.05.3 - Admin 2008-02-07 20:50:18.2 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.540 [GMT 1:00]
Endroit: C:\Documents and Settings\Admin\Bureau\ComboFix.exe
Command switches used :: C:\Documents and Settings\Admin\Bureau\CFScript.txt
* Création d'un nouveau point de restauration

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]

FILE
C:\WINDOWS\system32\__c008FCE9.dat
C:\WINDOWS\system32\fhkmp.bak1
C:\WINDOWS\system32\geede.dll
C:\WINDOWS\system32\gjllm.bak1
C:\WINDOWS\system32\ljjijjg.dll
C:\WINDOWS\system32\pmkhf.dll
C:\WINDOWS\system32\qqtwa.bak1
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\VundoFix Backups
C:\VundoFix Backups\addmorefiles.txt
C:\VundoFix Backups\awtsq.dll.bad
C:\VundoFix Backups\awtss.dll.bad
C:\VundoFix Backups\awtst.dll.bad
C:\VundoFix Backups\hgjlm.bak1.bad
C:\VundoFix Backups\hgjlm.ini.bad
C:\VundoFix Backups\mljgh.dll.bad
C:\VundoFix Backups\mlljg.dll.bad
C:\VundoFix Backups\qstwa.bak1.bad
C:\VundoFix Backups\qstwa.ini.bad
C:\VundoFix Backups\sstwa.bak1.bad
C:\VundoFix Backups\sstwa.bak2.bad
C:\VundoFix Backups\sstwa.ini.bad
C:\VundoFix Backups\tstwa.bak1.bad
C:\VundoFix Backups\tstwa.ini.bad
C:\WINDOWS\system32\fhkmp.bak1
C:\WINDOWS\system32\gjllm.bak1
C:\WINDOWS\system32\pmkhf.dll
C:\WINDOWS\system32\qqtwa.bak1

.
((((((((((((((((((((((((((((( Fichiers créés 2008-01-07 to 2008-02-07 ))))))))))))))))))))))))))))))))))))
.

2008-02-06 21:35 . 2008-02-06 21:35 0 --a------ C:\temp00
2008-02-06 21:34 . 2004-08-03 23:54 400,896 --a------ C:\kmd.exe
2008-02-05 22:15 . 2008-02-05 22:22 91,700 --a------ C:\WINDOWS\system32\drivers\klin.dat
2008-02-05 22:15 . 2008-02-05 22:15 85,860 --a------ C:\WINDOWS\system32\drivers\klick.dat
2008-02-05 22:14 . 2008-02-05 22:14 <REP> d-------- C:\Program Files\Kaspersky Lab
2008-02-05 22:14 . 2008-02-07 18:58 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-02-05 22:14 . 2008-02-07 21:06 2,295,584 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-02-05 22:14 . 2008-02-06 23:58 29,636 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-02-05 22:14 . 2008-02-07 21:06 26,912 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
2008-02-05 22:14 . 2008-02-06 23:58 3,164 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx
2008-02-05 20:09 . 2008-02-05 20:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-01-31 14:27 . 2008-01-31 14:27 <REP> d-------- C:\Program Files\Fichiers communs\ODBC
2008-01-31 10:00 . 2008-01-31 10:00 <REP> d-------- C:\AVIONE~1
2008-01-24 23:04 . 2008-01-24 23:11 82 --a------ C:\WINDOWS\PR1V2.INI
2008-01-22 00:09 . 2008-01-22 00:09 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-01-21 19:14 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-01-21 19:14 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-01-21 19:14 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-01-19 23:40 . 2008-01-19 23:40 172 --ah----- C:\sqmnoopt02.sqm
2008-01-19 23:40 . 2008-01-19 23:40 172 --ah----- C:\sqmdata02.sqm
2008-01-19 20:38 . 2008-01-19 20:38 268 --ah----- C:\sqmdata01.sqm
2008-01-19 20:38 . 2008-01-19 20:38 244 --ah----- C:\sqmnoopt01.sqm
2008-01-19 17:58 . 2008-01-19 17:58 <REP> d-------- C:\Documents and Settings\Admin\Contacts
2008-01-19 17:48 . 2008-01-19 18:01 <REP> d-------- C:\Program Files\Windows Live
2008-01-19 17:48 . 2008-01-19 17:51 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-01-19 17:48 . 2008-01-19 17:48 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-01-08 23:39 . 2008-01-08 23:39 <REP> d-------- C:\Program Files\FoxyTunes
2008-01-08 23:39 . 2008-01-08 23:39 <REP> d-------- C:\Documents and Settings\Admin\Application Data\FoxyTunes
2008-01-08 23:36 . 2008-01-08 23:44 <REP> d-------- C:\Program Files\IEMate
2008-01-08 23:29 . 2008-01-08 23:31 <REP> d-------- C:\Documents and Settings\Admin\Application Data\MiniDm
2008-01-08 22:11 . 2008-01-08 22:11 <REP> d-------- C:\Program Files\GooglePreviewIE Toolbar
2008-01-08 22:11 . 2008-01-08 22:11 231,558 --a------ C:\WINDOWS\GooglePreviewIE_Toolbar_Uninstaller_3875.exe
2008-01-08 22:09 . 2008-01-08 22:09 <REP> d-------- C:\Program Files\IEForge
2008-01-08 22:07 . 2008-01-08 23:31 <REP> d-------- C:\Program Files\IEPro
2008-01-08 22:07 . 2008-01-11 23:14 <REP> d-------- C:\Documents and Settings\Admin\Application Data\IEPro

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-03 20:56 --------- d-----w C:\Documents and Settings\Admin\Application Data\LimeWire
2008-01-01 20:20 --------- d-----w C:\Program Files\Dofus
2008-01-01 14:10 --------- d-----w C:\Documents and Settings\All Users\Application Data\BVRP Software
2008-01-01 14:09 92,064 ----a-w C:\Documents and Settings\Admin\mqdmmdm.sys
2008-01-01 14:09 9,232 ----a-w C:\Documents and Settings\Admin\mqdmmdfl.sys
2008-01-01 14:09 79,328 ----a-w C:\Documents and Settings\Admin\mqdmserd.sys
2008-01-01 14:09 66,656 ----a-w C:\Documents and Settings\Admin\mqdmbus.sys
2008-01-01 14:09 6,208 ----a-w C:\Documents and Settings\Admin\mqdmcmnt.sys
2008-01-01 14:09 5,936 ----a-w C:\Documents and Settings\Admin\mqdmwhnt.sys
2008-01-01 14:09 4,048 ----a-w C:\Documents and Settings\Admin\mqdmcr.sys
2008-01-01 14:09 25,600 ----a-w C:\Documents and Settings\Admin\usbsermptxp.sys
2008-01-01 14:09 22,768 ----a-w C:\Documents and Settings\Admin\usbsermpt.sys
2008-01-01 14:09 --------- d-----w C:\Program Files\Motorola Phone Tools
2008-01-01 14:08 --------- d-----w C:\Program Files\Avanquest update
2008-01-01 14:08 --------- d-----w C:\Documents and Settings\Admin\Application Data\InstallShield
2008-01-01 14:07 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-01 14:05 25,600 ----a-w C:\WINDOWS\system32\drivers\usbsermptxp.sys
2007-12-26 07:47 --------- d-----w C:\Program Files\Fichiers communs\xing shared
2007-12-26 07:47 --------- d-----w C:\Program Files\Fichiers communs\Real
2007-12-26 07:46 --------- d-----w C:\Program Files\Real
2007-12-21 07:03 21,840 ----atw C:\WINDOWS\system32\SIntfNT.dll
2007-12-21 07:03 17,212 ----atw C:\WINDOWS\system32\SIntf32.dll
2007-12-21 07:03 12,067 ----atw C:\WINDOWS\system32\SIntf16.dll
2007-12-17 23:44 219,664 ----a-w C:\WINDOWS\system32\klogon.dll
2007-12-17 23:43 23,396 ----a-w C:\WINDOWS\system32\drivers\klopp.dat
2007-12-14 18:09 --------- d-----w C:\Program Files\Conjugaison
2007-12-13 12:28 24,592 ----a-w C:\WINDOWS\system32\drivers\klim5.sys
2007-11-07 09:28 728,576 ----a-w C:\WINDOWS\system32\lsasrv.dll
2007-09-25 17:24 19,504 ----a-w C:\Documents and Settings\Admin\Application Data\GDIPFONTCACHEV1.DAT
2006-11-29 20:26 17,144 ----a-w C:\Documents and Settings\Stéphanie\Application Data\GDIPFONTCACHEV1.DAT
1998-09-29 11:56 10,000 ----a-w C:\WINDOWS\inf\unregpn.exe
.

((((((((((((((((((((((((((((((((((((((((((((( AWF ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
----a-w 21,024 2001-08-12 18:35:00 C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\bak\prhyper.exe
----a-w 21,024 2001-08-12 18:35:00 C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe

.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D818B374-B044-4307-B4E7-AF75CBE744E1}]
C:\WINDOWS\system32\geede.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2006-02-06 12:49 19490344]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [2005-11-24 15:38 94208]
"IncrediMail"="C:\Program Files\IncrediMail\bin\IncMail.exe" [2007-08-21 10:44 208946]
"Magentic"="C:\PROGRA~1\Magentic\bin\Magentic.exe" [2007-09-03 14:25 475180]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-03 23:54 15360]
"Le Petit Robert Hyperappel"="C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe" [2001-08-12 19:35 21024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-06-16 02:20 6803456]
"nwiz"="nwiz.exe" [2005-06-16 02:20 1519616 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-06-16 02:20 86016]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2005-11-15 20:31 33792]
"StandardInstall"="" []
"OpwareSE2"="C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 10:00 49152]
"Motive SmartBridge"="C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe" [ ]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"SSBkgdUpdate"="C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-09-29 23:14 155648]
"OpwareSE4"="C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-03-21 12:19 69632]
"SoundMan"="SOUNDMAN.EXE" [2005-06-20 14:42 77824 C:\WINDOWS\SOUNDMAN.EXE]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 19:51 39792]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-12-26 08:46 185896]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2007-12-18 00:43 227856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Config"="C:\WINDOWS\system32\run.cmd" [2005-08-23 10:24 341]
"nlsf"="cmd.exe" [2004-08-03 23:54 400896 C:\WINDOWS\system32\cmd.exe]
"tscuninstall"="C:\WINDOWS\system32\tscupgrd.exe" [2004-08-19 14:52 44544]

C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Adobe Gamma Loader.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe [2006-03-20 03:38:59 113664]
LE COMPAGNON CLUB.lnk - C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe [2007-06-22 18:07:12 217088]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [2001-02-13 08:01:04 83360]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\WINDOWS\system32\__c008FCE9.dat,C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll

R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [2007-12-13 13:28]
S0 viasraid;viasraid;C:\WINDOWS\system32\drivers\viasraid.sys [2005-12-20 10:57]
S3 USB_RNDIS_51;Broadcom USB Remote NDIS Device Driver;C:\WINDOWS\system32\DRIVERS\usb8023.sys [2004-08-03 22:04]

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-07 21:06:32
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Le Petit Robert Hyperappel = C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe??|????8????%??(H??????~??????????????????????????????????????|J??|??(?(H??g???????4??????????|p??|????m??|J??|????????(H??????????W??|????(H??t?r?u?e?????? ????????????(???????(?? ??

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-02-07 21:07:55
ComboFix-quarantined-files.txt 2008-02-07 20:07:52
ComboFix2.txt 2008-02-06 21:06:37
.
2008-01-24 20:20:43 --- E O F ---

**************************************************************************
+++++++++++++++++++++++++++++++++++++++++++++++++++++++
=======================================================

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:25:59, on 07/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Admin\Bureau\Scanner.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: FoxyTunes Toolbar Helper - {784D8FBC-4165-4D88-90FB-62907ACDD045} - C:\Program Files\FoxyTunes\ForInternetExplorer\components\IE\FoxyTunesForIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: InlineSearchHandleHotKey - {B6FFE2AE-4D12-451F-B457-FE6125FFB1CF} - C:\Program Files\IEForge\Inline Search\InlineSearch.dll
O2 - BHO: GooglePreviewIE Toolbar Helper - {D476B977-AF6C-481A-8472-2ABAB5E89F20} - C:\Program Files\GooglePreviewIE Toolbar\v3.2.0.0\GooglePreviewIE_Toolbar.dll
O2 - BHO: (no name) - {D818B374-B044-4307-B4E7-AF75CBE744E1} - C:\WINDOWS\system32\geede.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: GooglePreviewIE Toolbar - {AEC32322-9D72-4C55-A108-33875F07BC03} - C:\Program Files\GooglePreviewIE Toolbar\v3.2.0.0\GooglePreviewIE_Toolbar.dll
O3 - Toolbar: FoxyTunes Toolbar - {1D1901C3-F72A-46f3-9DBB-0AAA0DEEF6DF} - C:\Program Files\FoxyTunes\ForInternetExplorer\components\IE\FoxyTunesForIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Le Petit Robert Hyperappel] C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O20 - AppInit_DLLs: C:\WINDOWS\system32\__c008FCE9.dat,C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
0
Réponse 13 / 16
O VertigO Messages postés 862 Date d'inscription mercredi 8 août 2007 Statut Membre Dernière intervention 10 février 2008 32
8 févr. 2008 à 12:03
Bonjour,

Peux tu vérifier si ce fichier existe sur ton disque dur: C:\WINDOWS\system32\__c008FCE9.dat ? Pour ce faire:

- Ouvre le poste de travail.
- Outils / Options des dossiers / Affichage.
- Coches "Afficher les fichiers et dossiers cachés.
- Décoches "Masquer les fichiers protégés du système d'exploitation".
- Cliques sur OK.

Après, deux méthodes possibles:

1) Explorateur:
- Retourne dans le poste de travail, et parcours ton disque dur en suivant ce chemin: C:\WINDOWS\system32\
- Cherche le fichier __c008FCE9.dat en faisant bien attention à son nom ! Il y a deux underscores " _ " au début. Dis moi si tu le trouves.

2) Recherche:
- Cliques sur Démarrer / Rechercher
- Tous les fichiers / tous les dossiers
- Rechercher dans / cliques sur parcourir. Choisis C:\WINDOWS\system32\
- Entre comme nom de fichier suivant, dans son entièreté: __c008FCE9.dat
- Dis moi si la recherche le trouve.
0
Réponse 14 / 16
did42
9 févr. 2008 à 15:31
Bonjour,

Je n'ai pas pu répondre hier, mais après avoir effectuer la recherche je n'ai pas trouvé le fichier.
Merci pour la précision des indications fournies.

Did42
0
Réponse 15 / 16
O VertigO Messages postés 862 Date d'inscription mercredi 8 août 2007 Statut Membre Dernière intervention 10 février 2008 32
10 févr. 2008 à 16:10
Salut,

Je réponds aussi assez tard, je pensais que tu ne reviendrais plus.

Supprime le fichier CFScript que tu avais créé auparavant sur ton bureau.

Crée un nouveau document texte : clic droit de souris sur le bureau > Nouveau > Document Texte, et copie dedans les lignes suivantes : 

Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"="C:\\PROGRA~1\\KASPER~1\\KASPER~1.0\\adialhk.dll"


Enregistre ce fichier sous le nom CFScript

* Fait un glisser/déposer de ce fichier CFScript sur le fichier ComboFix.exe
* Une fenêtre bleue va apparaître: au message qui apparaît ( Type 1 to continue, or 2 to abort) , tape 1 puis valide.
* Patiente le temps du scan.Le bureau va disparaître à plusieurs reprises: c'est normal!
* Ne touche à rien tant que le scan n'est pas terminé.
* Une fois le scan achevé, un rapport va s'afficher: poste son contenu, en précisant où en sont tes soucis
* Si le fichier ne s'ouvre pas, il se trouve ici >> C:\ComboFix.txt
* Copie/Colle un nouveau rapport HiJackThis
0
Réponse 16 / 16
did42
10 févr. 2008 à 21:42
Merci de me suivre, je ne sais pas où peuvent se cacher mais problèmes dans tout ça !


ComboFix 08-02.05.3 - Admin 2008-02-10 20:58:58.3 - NTFSx86
Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.445 [GMT 1:00]
Endroit: C:\Documents and Settings\Admin\Bureau\ComboFix.exe
Command switches used :: C:\Documents and Settings\Admin\Bureau\CFScript.txt
* Création d'un nouveau point de restauration

[color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color]
.

((((((((((((((((((((((((((((( Fichiers créés 2008-01-10 to 2008-02-10 ))))))))))))))))))))))))))))))))))))
.

2008-02-07 20:48 . 2004-08-03 23:54 400,896 --a------ C:\kmd.exe
2008-02-06 21:35 . 2008-02-06 21:35 0 --a------ C:\temp00
2008-02-05 22:15 . 2008-02-05 22:22 91,700 --a------ C:\WINDOWS\system32\drivers\klin.dat
2008-02-05 22:15 . 2008-02-05 22:15 85,860 --a------ C:\WINDOWS\system32\drivers\klick.dat
2008-02-05 22:14 . 2008-02-05 22:14 <REP> d-------- C:\Program Files\Kaspersky Lab
2008-02-05 22:14 . 2008-02-10 10:49 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-02-05 22:14 . 2008-02-10 21:08 3,282,976 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-02-05 22:14 . 2008-02-10 21:08 48,416 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
2008-02-05 22:14 . 2008-02-09 18:51 42,764 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-02-05 22:14 . 2008-02-09 18:51 4,916 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx
2008-02-05 20:09 . 2008-02-05 20:09 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab Setup Files
2008-01-31 14:27 . 2008-01-31 14:27 <REP> d-------- C:\Program Files\Fichiers communs\ODBC
2008-01-31 10:00 . 2008-01-31 10:00 <REP> d-------- C:\AVIONE~1
2008-01-24 23:04 . 2008-01-24 23:11 82 --a------ C:\WINDOWS\PR1V2.INI
2008-01-22 00:09 . 2008-01-22 00:09 <REP> d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-01-21 19:14 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-01-21 19:14 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-01-21 19:14 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-01-19 23:40 . 2008-01-19 23:40 172 --ah----- C:\sqmnoopt02.sqm
2008-01-19 23:40 . 2008-01-19 23:40 172 --ah----- C:\sqmdata02.sqm
2008-01-19 20:38 . 2008-01-19 20:38 268 --ah----- C:\sqmdata01.sqm
2008-01-19 20:38 . 2008-01-19 20:38 244 --ah----- C:\sqmnoopt01.sqm
2008-01-19 17:58 . 2008-01-19 17:58 <REP> d-------- C:\Documents and Settings\Admin\Contacts
2008-01-19 17:48 . 2008-01-19 18:01 <REP> d-------- C:\Program Files\Windows Live
2008-01-19 17:48 . 2008-01-19 17:51 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller
2008-01-19 17:48 . 2008-01-19 17:48 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-03 20:56 --------- d-----w C:\Documents and Settings\Admin\Application Data\LimeWire
2008-01-11 22:14 --------- d-----w C:\Documents and Settings\Admin\Application Data\IEPro
2008-01-08 22:44 --------- d-----w C:\Program Files\IEMate
2008-01-08 22:39 --------- d-----w C:\Program Files\FoxyTunes
2008-01-08 22:39 --------- d-----w C:\Documents and Settings\Admin\Application Data\FoxyTunes
2008-01-08 22:31 --------- d-----w C:\Program Files\IEPro
2008-01-08 22:31 --------- d-----w C:\Documents and Settings\Admin\Application Data\MiniDm
2008-01-08 21:11 231,558 ----a-w C:\WINDOWS\GooglePreviewIE_Toolbar_Uninstaller_3875.exe
2008-01-08 21:11 --------- d-----w C:\Program Files\GooglePreviewIE Toolbar
2008-01-08 21:09 --------- d-----w C:\Program Files\IEForge
2008-01-01 20:20 --------- d-----w C:\Program Files\Dofus
2008-01-01 14:10 --------- d-----w C:\Documents and Settings\All Users\Application Data\BVRP Software
2008-01-01 14:09 92,064 ----a-w C:\Documents and Settings\Admin\mqdmmdm.sys
2008-01-01 14:09 9,232 ----a-w C:\Documents and Settings\Admin\mqdmmdfl.sys
2008-01-01 14:09 79,328 ----a-w C:\Documents and Settings\Admin\mqdmserd.sys
2008-01-01 14:09 66,656 ----a-w C:\Documents and Settings\Admin\mqdmbus.sys
2008-01-01 14:09 6,208 ----a-w C:\Documents and Settings\Admin\mqdmcmnt.sys
2008-01-01 14:09 5,936 ----a-w C:\Documents and Settings\Admin\mqdmwhnt.sys
2008-01-01 14:09 4,048 ----a-w C:\Documents and Settings\Admin\mqdmcr.sys
2008-01-01 14:09 25,600 ----a-w C:\Documents and Settings\Admin\usbsermptxp.sys
2008-01-01 14:09 22,768 ----a-w C:\Documents and Settings\Admin\usbsermpt.sys
2008-01-01 14:09 --------- d-----w C:\Program Files\Motorola Phone Tools
2008-01-01 14:08 --------- d-----w C:\Program Files\Avanquest update
2008-01-01 14:08 --------- d-----w C:\Documents and Settings\Admin\Application Data\InstallShield
2008-01-01 14:07 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-01 14:05 25,600 ----a-w C:\WINDOWS\system32\drivers\usbsermptxp.sys
2007-12-26 07:47 --------- d-----w C:\Program Files\Fichiers communs\xing shared
2007-12-26 07:47 --------- d-----w C:\Program Files\Fichiers communs\Real
2007-12-26 07:46 --------- d-----w C:\Program Files\Real
2007-12-21 07:03 21,840 ----atw C:\WINDOWS\system32\SIntfNT.dll
2007-12-21 07:03 17,212 ----atw C:\WINDOWS\system32\SIntf32.dll
2007-12-21 07:03 12,067 ----atw C:\WINDOWS\system32\SIntf16.dll
2007-12-17 23:44 219,664 ----a-w C:\WINDOWS\system32\klogon.dll
2007-12-17 23:43 23,396 ----a-w C:\WINDOWS\system32\drivers\klopp.dat
2007-12-14 18:09 --------- d-----w C:\Program Files\Conjugaison
2007-12-13 12:28 24,592 ----a-w C:\WINDOWS\system32\drivers\klim5.sys
2007-09-25 17:24 19,504 ----a-w C:\Documents and Settings\Admin\Application Data\GDIPFONTCACHEV1.DAT
2006-11-29 20:26 17,144 ----a-w C:\Documents and Settings\Stéphanie\Application Data\GDIPFONTCACHEV1.DAT
1998-09-29 11:56 10,000 ----a-w C:\WINDOWS\inf\unregpn.exe
.

((((((((((((((((((((((((((((((((((((((((((((( AWF ))))))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D818B374-B044-4307-B4E7-AF75CBE744E1}]
C:\WINDOWS\system32\geede.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2006-02-06 12:49 19490344]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" [2005-11-24 15:38 94208]
"IncrediMail"="C:\Program Files\IncrediMail\bin\IncMail.exe" [2007-08-21 10:44 208946]
"Magentic"="C:\PROGRA~1\Magentic\bin\Magentic.exe" [2007-09-03 14:25 475180]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-03 23:54 15360]
"Le Petit Robert Hyperappel"="C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe" [2001-08-12 19:35 21024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2005-06-16 02:20 6803456]
"nwiz"="nwiz.exe" [2005-06-16 02:20 1519616 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2005-06-16 02:20 86016]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50 155648]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2005-11-15 20:31 33792]
"StandardInstall"="" []
"OpwareSE2"="C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" [2003-05-08 10:00 49152]
"Motive SmartBridge"="C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe" [ ]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11 132496]
"SSBkgdUpdate"="C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2003-09-29 23:14 155648]
"OpwareSE4"="C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-03-21 12:19 69632]
"SoundMan"="SOUNDMAN.EXE" [2005-06-20 14:42 77824 C:\WINDOWS\SOUNDMAN.EXE]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 19:51 39792]
"TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-12-26 08:46 185896]
"AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe" [2007-12-18 00:43 227856]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Config"="C:\WINDOWS\system32\run.cmd" [2005-08-23 10:24 341]
"nlsf"="cmd.exe" [2004-08-03 23:54 400896 C:\WINDOWS\system32\cmd.exe]
"tscuninstall"="C:\WINDOWS\system32\tscupgrd.exe" [2004-08-19 14:52 44544]

C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Adobe Gamma Loader.lnk - C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe [2006-03-20 03:38:59 113664]
LE COMPAGNON CLUB.lnk - C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe [2007-06-22 18:07:12 217088]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [2001-02-13 08:01:04 83360]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMHelp"= 1 (0x1)
"MemCheckBoxInRunDlg"= 1 (0x1)
"NoSMBalloonTip"= 1 (0x1)
"NoDesktopCleanupWizard"= 1 (0x1)
"NoWelcomeScreen"= 1 (0x1)
"NoAutoUpdate"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll

R3 klim5;Kaspersky Anti-Virus NDIS Filter;C:\WINDOWS\system32\DRIVERS\klim5.sys [2007-12-13 13:28]
S0 viasraid;viasraid;C:\WINDOWS\system32\drivers\viasraid.sys [2005-12-20 10:57]
S3 USB_RNDIS_51;Broadcom USB Remote NDIS Device Driver;C:\WINDOWS\system32\DRIVERS\usb8023.sys [2004-08-03 22:04]

.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-10 21:08:48
Windows 5.1.2600 Service Pack 2 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Le Petit Robert Hyperappel = C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe??|????8????%??(H??????~??????????????????????????????????????|J??|??(?(H??g???????4??????????|p??|????m??|J??|????????(H??????????W??|????(H??t?r?u?e?????? ????????????(???????(?? ??

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-02-10 21:09:47
ComboFix-quarantined-files.txt 2008-02-10 20:09:43
ComboFix2.txt 2008-02-07 20:07:56
ComboFix3.txt 2008-02-06 21:06:37
.
2008-01-24 20:20:43 --- E O F ---
**************************************************************************
++++++++++++++++++++++++++++++++++++++++++++++++++++++++
**************************************************************************
++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:12:47, on 10/02/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Club-Internet\Lanceur\lanceur.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\PROGRA~1\Magentic\bin\MgApp.exe
C:\Program Files\IEPro\MiniDM.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Admin\Bureau\Scanner.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.fr/keyword/%s
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - SOFTWARE - (no file)
O2 - BHO: IE7Pro - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: FoxyTunes Toolbar Helper - {784D8FBC-4165-4D88-90FB-62907ACDD045} - C:\Program Files\FoxyTunes\ForInternetExplorer\components\IE\FoxyTunesForIE.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: InlineSearchHandleHotKey - {B6FFE2AE-4D12-451F-B457-FE6125FFB1CF} - C:\Program Files\IEForge\Inline Search\InlineSearch.dll
O2 - BHO: GooglePreviewIE Toolbar Helper - {D476B977-AF6C-481A-8472-2ABAB5E89F20} - C:\Program Files\GooglePreviewIE Toolbar\v3.2.0.0\GooglePreviewIE_Toolbar.dll
O2 - BHO: (no name) - {D818B374-B044-4307-B4E7-AF75CBE744E1} - C:\WINDOWS\system32\geede.dll (file missing)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: GooglePreviewIE Toolbar - {AEC32322-9D72-4C55-A108-33875F07BC03} - C:\Program Files\GooglePreviewIE Toolbar\v3.2.0.0\GooglePreviewIE_Toolbar.dll
O3 - Toolbar: FoxyTunes Toolbar - {1D1901C3-F72A-46f3-9DBB-0AAA0DEEF6DF} - C:\Program Files\FoxyTunes\ForInternetExplorer\components\IE\FoxyTunesForIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\CLUB-I~1\LECOMP~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [Magentic] C:\PROGRA~1\Magentic\bin\Magentic.exe /c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Le Petit Robert Hyperappel] C:\Documents and Settings\Admin\Mes documents\Le Petit Robert\prhyper.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [nlsf] cmd.exe /C move /Y "%SystemRoot%\System32\syssetub.dll" "%SystemRoot%\System32\syssetup.dll" (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [Config] %systemroot%\system32\run.cmd (User 'Default user')
O4 - Startup: Club Internet.lnk = C:\Program Files\Club-Internet\Lanceur\lanceur.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: LE COMPAGNON CLUB.lnk = C:\Program Files\Club-Internet\Le Compagnon Club\bin\matcli.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: Ajouter à Kaspersky Anti-Bannière - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Statistiques d’Anti-Virus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\SCIEPlgn.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Kaspersky Internet Security 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 7.0\avp.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
comment donner les droits sur fichier partage
ch'ti du 57 -
fil1958 -

2 réponses
Comment savoir si j'ai attrapé un virus sur mon téléphone ?
Infolock -
bell -

66 réponses
Virtual box ne lance pas la machine
GidasGael -
Yellox -

1 réponse
comment envoyer un virus ?
willva -
BeFaX -

1 réponse