bonjour je pense etre infecter suite a des analyses en ligne ils me dis que j suis infecter
voila le raport hijacthis
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:00:47, on 27/05/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
c:\apps\Powercinema\Kernel\TV\CLCapSvc.exe
c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe
c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLService.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
c:\apps\Powercinema\Kernel\TV\CLSched.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
C:\WINDOWS\Explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\DOCUME~1\home\LOCALS~1\Temp\fsonlinescanner.exe
D:\DOCUME~1\home\LOCALS~1\Temp\OnlineScanner\Anti-Virus\fsgk32.exe
D:\DOCUME~1\home\LOCALS~1\Temp\OnlineScanner\Anti-Virus\fssm32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe
D:\Documents and Settings\home\Bureau\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.neufportail.fr…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com…
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: Aide pour le lien d’Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: RoboForm - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Programme d’aide de l’Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM…\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM…\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Cammaestro 4.2GU build 1105
O4 - HKLM…\Run: [PAC7302_Monitor] C:\WINDOWS\PixArt\PAC7302\Monitor.exe
O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM…\Run: [Adobe Photo Downloader] “C:\Program Files\Adobe\Photoshop Album Edition Découverte\3.2\Apps\apdproxy.exe”
O4 - HKLM…\Run: [Adobe Reader Speed Launcher] “C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe”
O4 - HKLM…\Run: [SSBkgdUpdate] “C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe” -Embedding -boot
O4 - HKLM…\Run: [ISUSPM Startup] C:\PROGRA~1\FICHIE~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM…\Run: [ISUSScheduler] “C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe” -start
O4 - HKLM…\Run: [DNS7reminder] “C:\Program Files\Nuance\NaturallySpeaking9\Ereg\Ereg.exe” -r "D:\Documents and Settings\All Users\Application Data\Nuance\NaturallySpeaking9\Ereg.ini
O4 - HKCU…\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe” /background
O4 - HKCU…\Run: [RocketDock] “C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe”
O4 - HKCU…\Run: [RoboForm] “C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe”
O4 - HKCU…\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU…\Run: [AlcoholAutomount] “C:\Program Files\Alcohol Soft\Alcohol 52\axcmd.exe” /automount
O4 - Startup: RocketDock.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\RocketDock\RocketDock.exe
O4 - Startup: TransBar.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\TransBar\TransBar.exe
O4 - Startup: UberIcon.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\UberIcon\UberIcon Manager.exe
O4 - Startup: Y’z Shadow.lnk = C:\WINDOWS\BricoPacks\Vista Inspirat 2\YzShadow\YzShadow.exe
O8 - Extra context menu item: Barre RoboForm - [C:\Program…](file://C:\Program) Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Enregistrer le formulaire - [C:\Program…](file://C:\Program) Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Personnaliser le menu - [C:\Program…](file://C:\Program) Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Remplir le formulaire - [C:\Program…](file://C:\Program) Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra ‘Tools’ menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - [C:\Program…](file://C:\Program) Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra ‘Tools’ menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - [C:\Program…](file://C:\Program) Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - [C:\Program…](file://C:\Program) Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra ‘Tools’ menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - [C:\Program…](file://C:\Program) Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - [C:\Program…](file://C:\Program) Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra ‘Tools’ menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - [C:\Program…](file://C:\Program) Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra ‘Tools’ menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra ‘Tools’ menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\WINDOWS\system32\shdocvw.dll
O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\fr.htm
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - webscanner.kaspersky.fr…
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - messenger.zone.msn.com…
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - gfx1.hotmail.com…
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - messenger.zone.msn.com…
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - download.bitdefender.com…
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - security.symantec.com…
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - download.eset.com…
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (a-squared Scanner) - ax.emsisoft.com…
O16 - DPF: {C237A80A-4C55-4C68-BAA9-CBE4408D12B2} (F-Secure Online Scanner 4.0 Launcher) - download.sp.f-secure.com…
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - messenger.zone.msn.com…
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - fpdownload2.macromedia.com…
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - messenger.zone.msn.com…
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\apps\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\apps\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe (file missing)
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Fichiers communs\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
–
End of file - 11934 bytes
;la c ets le raport d activescan *
ANALYSIS: 2009-05-27 10:23:36
PROTECTIONS: 1
MALWARE: 4
SUSPECTS: 2
;***********************************************************************************************************************************************************************************
PROTECTIONS
Description Version Active Updated
;===================================================================================================================================================================================
avast! antivirus 4.8.1335 [VPS 090526-0] 4.8.1335 Yes Yes
;===================================================================================================================================================================================
MALWARE
Id Description Type Active Severity Disinfectable Disinfected Location
;===================================================================================================================================================================================
00013869 adware/cydoor Adware No 0 Yes No c:\windows\cdmxtras
00287187 rootkit/mhook HackTools No 0 Yes No hkey_local_machine\system\currentcontrolset\services\m_hook
00366244 Application/NirCmd.A HackTools No 0 Yes No C:\fixwareout\FindT\nircmd.exe
00590315 Rootkit/Agent.LNB HackTools No 0 Yes No C:\System Volume Information_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP1042\A0347652.sys
;===================================================================================================================================================================================
SUSPECTS
Sent Location
;===================================================================================================================================================================================
Yes C:\System Volume Information_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP1025\A0341811.msi[unk_0071][hprbuires.dll12]
Yes C:\System Volume Information_restore{751238CC-FEB5-4605-9EA9-B441EBD3D66D}\RP1061\A0351016.exe
;===================================================================================================================================================================================
VULNERABILITIES
Id Severity Description
;===================================================================================================================================================================================
;===================================================================================================================================================================================
la c est celui de findykill
############################## [ FindyKill V4.730 ]
User : home (Administrateurs) # SN115002420319
Update on 25/05/09 by Chiquitine29
Start at: 11:12:34 | 27/05/2009
Website : pagesperso-orange.fr…
Intel® Pentium® 4 CPU 3.06GHz
Microsoft Windows XP Édition familiale (5.1.2600 32-bit) # Service Pack 3
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Enabled
AV : avast! antivirus 4.8.1335 [VPS 090526-0] 4.8.1335 [ Enabled | Updated ]
C:\ # Disque fixe local # 37,8 Go (1,35 Go free) [HDD] # NTFS
D:\ # Disque fixe local # 195,08 Go (72,82 Go free) [DATA] # NTFS
E:\ # Disque CD-ROM
F:\ # Disque amovible
G:\ # Disque amovible
H:\ # Disque amovible
I:\ # Disque amovible
J:\ # Disque CD-ROM
############################## [ Active Processes ]
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\WINDOWS\system32\logonui.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\setup\avast.setup
C:\WINDOWS\system32\svchost.exe
c:\apps\Powercinema\Kernel\TV\CLCapSvc.exe
c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe
c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLService.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
c:\apps\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
################## [ Infected Files \ Folders ]
Deleted ! C:\WINDOWS\Prefetch\PATCH.EXE-35C66B6B.pf
################## [ Infected Temp Files ]
################## [ Registry / Infected keys ]
Deleted ! HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SROSA
Deleted ! HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_SK9OU0S
Deleted ! HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Enum\Root\LEGACY_SK9OU0S
Deleted ! HKEY_USERS\S-1-5-21-2191374459-2331453074-770814102-1008\Software\MuleAppData
################## [ Cleaning Removable drives ]
Deleted ! C:\InfoSat.txt
Deleted ! D:\Avenger
################## [ Registry / Mountpoint2 ]
-> Not found !
################## [ States / Restarting of services ]
Services : [ Auto=2 / Request=3 / Disable=4 ]
Ndisuio -> # Type of startup =3
EapHost -> # Type of startup =2
Ip6Fw -> # Type of startup =2
SharedAccess -> # Type of startup =2
wuauserv -> # Type of startup =2
wscsvc -> # Type of startup =2
################## [ Searching Other Infections ]
Références de comparaison Bagle MD5 :
File … : D:\Avenger\winupgro.exe
CRC32 … : 1437e8d7
MD5 … : aa3cbe678c8b66069a82c644dd6fd33d
-> Nothing found.
################## [ Corrupted files # Re-Installation required ]
C:\Program Files\Fichiers communs\PAC7302\Monitor.exe
C:\Program Files\Fichiers communs\PAC7302\PXIINST32\Remover.exe
C:\Program Files\Fichiers communs\PAC7302\PXIINST64\Remover.exe
C:\Program Files\Fichiers communs\Ulead Systems\AutoDetector\Monitor.exe
C:\Program Files\Mozilla Firefox\uninstall\helper.exe
C:\Program Files\Samsung\Samsung PC Studio 3\LiveUpdate.exe
C:\Program Files\Samsung\Samsung PC Studio 3\Update\LiveUpdate.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Ubisoft\Register\register.exe
C:\WINDOWS$hf_mig$\KB873339\update\update.exe
C:\WINDOWS$hf_mig$\KB885250\update\update.exe
C:\WINDOWS$hf_mig$\KB885835\update\update.exe
C:\WINDOWS$hf_mig$\KB885836\update\update.exe
C:\WINDOWS$hf_mig$\KB886185\update\update.exe
C:\WINDOWS$hf_mig$\KB887472\update\update.exe
C:\WINDOWS$hf_mig$\KB887742\update\update.exe
C:\WINDOWS$hf_mig$\KB888113\update\update.exe
C:\WINDOWS$hf_mig$\KB888302\update\update.exe
C:\WINDOWS$hf_mig$\KB890046\update\update.exe
C:\WINDOWS$hf_mig$\KB890859\update\update.exe
C:\WINDOWS$hf_mig$\KB891781\update\update.exe
C:\WINDOWS$hf_mig$\KB893066\update\update.exe
C:\WINDOWS$hf_mig$\KB893756\update\update.exe
C:\WINDOWS$hf_mig$\KB894391\update\update.exe
C:\WINDOWS$hf_mig$\KB896358\update\update.exe
C:\WINDOWS$hf_mig$\KB896422\update\update.exe
C:\WINDOWS$hf_mig$\KB896423\update\update.exe
C:\WINDOWS$hf_mig$\KB896424\update\update.exe
C:\WINDOWS$hf_mig$\KB896428\update\update.exe
C:\WINDOWS$hf_mig$\KB898461\update\update.exe
C:\WINDOWS$hf_mig$\KB899587\update\update.exe
C:\WINDOWS$hf_mig$\KB899591\update\update.exe
C:\WINDOWS$hf_mig$\KB900485\update\update.exe
C:\WINDOWS$hf_mig$\KB900725\update\update.exe
C:\WINDOWS$hf_mig$\KB901017\update\update.exe
C:\WINDOWS$hf_mig$\KB901190\update\update.exe
C:\WINDOWS$hf_mig$\KB901214\update\update.exe
C:\WINDOWS$hf_mig$\KB902400\update\update.exe
C:\WINDOWS$hf_mig$\KB904706\update\update.exe
C:\WINDOWS$hf_mig$\KB904942\update\update.exe
C:\WINDOWS$hf_mig$\KB905414\update\update.exe
C:\WINDOWS$hf_mig$\KB905749\update\update.exe
C:\WINDOWS$hf_mig$\KB905915\update\update.exe
C:\WINDOWS$hf_mig$\KB908519\update\update.exe
C:\WINDOWS$hf_mig$\KB908531\update\update.exe
C:\WINDOWS$hf_mig$\KB910437\update\update.exe
C:\WINDOWS$hf_mig$\KB911280\update\update.exe
C:\WINDOWS$hf_mig$\KB911562\update\update.exe
C:\WINDOWS$hf_mig$\KB911927\update\update.exe
C:\WINDOWS$hf_mig$\KB912919\update\update.exe
C:\WINDOWS$hf_mig$\KB913580\update\update.exe
C:\WINDOWS$hf_mig$\KB914388\update\update.exe
C:\WINDOWS$hf_mig$\KB914389\update\update.exe
C:\WINDOWS$hf_mig$\KB915865\update\update.exe
C:\WINDOWS$hf_mig$\KB916595\update\update.exe
C:\WINDOWS$hf_mig$\KB917344\update\update.exe
C:\WINDOWS$hf_mig$\KB917422\update\update.exe
C:\WINDOWS$hf_mig$\KB917953\update\update.exe
C:\WINDOWS$hf_mig$\KB918118\update\update.exe
C:\WINDOWS$hf_mig$\KB918439\update\update.exe
C:\WINDOWS$hf_mig$\KB919007\update\update.exe
C:\WINDOWS$hf_mig$\KB920213\update\update.exe
C:\WINDOWS$hf_mig$\KB920670\update\update.exe
C:\WINDOWS$hf_mig$\KB920683\update\update.exe
C:\WINDOWS$hf_mig$\KB920685\update\update.exe
C:\WINDOWS$hf_mig$\KB920872\update\update.exe
C:\WINDOWS$hf_mig$\KB921398\update\update.exe
C:\WINDOWS$hf_mig$\KB921503\update\update.exe
C:\WINDOWS$hf_mig$\KB922582\update\update.exe
C:\WINDOWS$hf_mig$\KB922616\update\update.exe
C:\WINDOWS$hf_mig$\KB922819\update\update.exe
C:\WINDOWS$hf_mig$\KB923414\update\update.exe
C:\WINDOWS$hf_mig$\KB923561\update\update.exe
C:\WINDOWS$hf_mig$\KB923694\update\update.exe
C:\WINDOWS$hf_mig$\KB923980\update\update.exe
C:\WINDOWS$hf_mig$\KB924191\update\update.exe
C:\WINDOWS$hf_mig$\KB924270\update\update.exe
C:\WINDOWS$hf_mig$\KB924496\update\update.exe
C:\WINDOWS$hf_mig$\KB925454\update\update.exe
C:\WINDOWS$hf_mig$\KB925486\update\update.exe
C:\WINDOWS$hf_mig$\KB925902\update\update.exe
C:\WINDOWS$hf_mig$\KB926255\update\update.exe
C:\WINDOWS$hf_mig$\KB926436\update\update.exe
C:\WINDOWS$hf_mig$\KB927779\update\update.exe
C:\WINDOWS$hf_mig$\KB927802\update\update.exe
C:\WINDOWS$hf_mig$\KB927891\update\update.exe
C:\WINDOWS$hf_mig$\KB928255\update\update.exe
C:\WINDOWS$hf_mig$\KB928843\update\update.exe
C:\WINDOWS$hf_mig$\KB929123\update\update.exe
C:\WINDOWS$hf_mig$\KB929969\update\update.exe
C:\WINDOWS$hf_mig$\KB930178\update\update.exe
C:\WINDOWS$hf_mig$\KB930916\update\update.exe
C:\WINDOWS$hf_mig$\KB931261\update\update.exe
C:\WINDOWS$hf_mig$\KB931768-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB931836\update\update.exe
C:\WINDOWS$hf_mig$\KB932823-v3\update\update.exe
C:\WINDOWS$hf_mig$\KB933360\update\update.exe
C:\WINDOWS$hf_mig$\KB935448\update\update.exe
C:\WINDOWS$hf_mig$\KB935839\update\update.exe
C:\WINDOWS$hf_mig$\KB935840\update\update.exe
C:\WINDOWS$hf_mig$\KB936021\update\update.exe
C:\WINDOWS$hf_mig$\KB936357\update\update.exe
C:\WINDOWS$hf_mig$\KB938127-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB938828\update\update.exe
C:\WINDOWS$hf_mig$\KB938829\update\update.exe
C:\WINDOWS$hf_mig$\KB939653-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB941202\update\update.exe
C:\WINDOWS$hf_mig$\KB941568\update\update.exe
C:\WINDOWS$hf_mig$\KB941644\update\update.exe
C:\WINDOWS$hf_mig$\KB941693\update\update.exe
C:\WINDOWS$hf_mig$\KB942615-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB942763\update\update.exe
C:\WINDOWS$hf_mig$\KB943055\update\update.exe
C:\WINDOWS$hf_mig$\KB943485\update\update.exe
C:\WINDOWS$hf_mig$\KB944533-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB944653\update\update.exe
C:\WINDOWS$hf_mig$\KB945553\update\update.exe
C:\WINDOWS$hf_mig$\KB946026\update\update.exe
C:\WINDOWS$hf_mig$\KB946648\update\update.exe
C:\WINDOWS$hf_mig$\KB947864-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB948590\update\update.exe
C:\WINDOWS$hf_mig$\KB948881\update\update.exe
C:\WINDOWS$hf_mig$\KB950749\update\update.exe
C:\WINDOWS$hf_mig$\KB950759-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB950760\update\update.exe
C:\WINDOWS$hf_mig$\KB950762\update\update.exe
C:\WINDOWS$hf_mig$\KB950974\update\update.exe
C:\WINDOWS$hf_mig$\KB951066\update\update.exe
C:\WINDOWS$hf_mig$\KB951072-v2\update\update.exe
C:\WINDOWS$hf_mig$\KB951376\update\update.exe
C:\WINDOWS$hf_mig$\KB951376-v2\update\update.exe
C:\WINDOWS$hf_mig$\KB951698\update\update.exe
C:\WINDOWS$hf_mig$\KB951748\update\update.exe
C:\WINDOWS$hf_mig$\KB951978\update\update.exe
C:\WINDOWS$hf_mig$\KB952004\update\update.exe
C:\WINDOWS$hf_mig$\KB952287\update\update.exe
C:\WINDOWS$hf_mig$\KB952954\update\update.exe
C:\WINDOWS$hf_mig$\KB953838-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB953839\update\update.exe
C:\WINDOWS$hf_mig$\KB954211\update\update.exe
C:\WINDOWS$hf_mig$\KB954459\update\update.exe
C:\WINDOWS$hf_mig$\KB954600\update\update.exe
C:\WINDOWS$hf_mig$\KB955069\update\update.exe
C:\WINDOWS$hf_mig$\KB955839\update\update.exe
C:\WINDOWS$hf_mig$\KB956390-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB956391\update\update.exe
C:\WINDOWS$hf_mig$\KB956572\update\update.exe
C:\WINDOWS$hf_mig$\KB956802\update\update.exe
C:\WINDOWS$hf_mig$\KB956803\update\update.exe
C:\WINDOWS$hf_mig$\KB956841\update\update.exe
C:\WINDOWS$hf_mig$\KB957095\update\update.exe
C:\WINDOWS$hf_mig$\KB957097\update\update.exe
C:\WINDOWS$hf_mig$\KB958215-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB958644\update\update.exe
C:\WINDOWS$hf_mig$\KB958687\update\update.exe
C:\WINDOWS$hf_mig$\KB958690\update\update.exe
C:\WINDOWS$hf_mig$\KB959426\update\update.exe
C:\WINDOWS$hf_mig$\KB960225\update\update.exe
C:\WINDOWS$hf_mig$\KB960714-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB960715\update\update.exe
C:\WINDOWS$hf_mig$\KB960803\update\update.exe
C:\WINDOWS$hf_mig$\KB961260-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB961373\update\update.exe
C:\WINDOWS$hf_mig$\KB963027-IE7\update\update.exe
C:\WINDOWS$hf_mig$\KB967715\update\update.exe
C:\WINDOWS\BricoPacks\Vista Inspirat 2\Update.exe
C:\WINDOWS\PixArt\PAC7302\Monitor.exe
C:\WINDOWS\SoftwareDistribution\Download\011cdeb527c0ded3735dde8070aaf659\update\update.exe
C:\WINDOWS\SoftwareDistribution\Download\550530d3b934e720deb3ca1851e75ba0\update\update.exe
################################### [ Cracks / Keygens / Serials ]
-> Nothing found !
################## [ ! End of Report # FindyKill V4.730 ! ]
merci de me dire ce que je dois faire car apres toutes ses manipulation je n m en sors pas
quel ligne dois je supprimer d hijacthis