Sujet Précédent Sujet Suivant

Virus jé poster mon log.txt pour votr analyse

Shingo -  
loloetseb Messages postés 5684 Statut Membre -
Bonjour,

J'ai des virus sur mon pc j'ai scan avec mon Symantec antivirus et j'ai balayé pas mal de truc mais il reste toujours le virus Packed.Generic.203 qui veut pas partir et peut d'autre cochonnerie. aidez moi please :) merci

Logfile of random's system information tool 1.05 (written by random/random)
Run by Administrateur at 2009-02-14 20:35:06
Microsoft Windows XP Professionnel Service Pack 2
System drive F: has 1 GB (11%) free of 10 GB
Total RAM: 511 MB (20% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:35:39, on 14/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\csrss.exe
F:\WINDOWS\SYSTEM32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\system32\ZoneLabs\vsmon.exe
F:\WINDOWS\Explorer.EXE
F:\WINDOWS\system32\spoolsv.exe
F:\WINDOWS\system32\svchost.exe
G:\Program Files\Symantec AntiVirus\Rtvscan.exe
F:\WINDOWS\system32\inetsrv\inetinfo.exe
G:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
G:\PROGRA~1\SYMANT~1\VPTray.exe
G:\Program Files\Java\jre1.6.0_04\bin\jusched.exe
G:\Program Files\SuperCopier2\SuperCopier2.exe
G:\Program Files\MSN Messenger\msnmsgr.exe
G:\Program Files\MSN Messenger\usnsvc.exe
G:\Program Files\Outlook Express\msimn.exe
G:\Firefox\firefox.exe
F:\WINDOWS\SYSTEM32\rundll32.exe
G:\PROGRA~1\WINDOW~2\ACCESS~1\WORDPAD.EXE
F:\Poker\Poker 770\casino.exe
F:\Documents and Settings\Administrateur\Bureau\RSIT.exe
F:\WINDOWS\system32\wbem\wmiprvse.exe
G:\Program Files\trend micro\Administrateur.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.free.fr:3128
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - G:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {6D794CB4-C7CD-4c6f-BFDC-9B77AFBDC02C} - F:\WINDOWS\system32\ssqPgHaA.dll
O2 - BHO: SSVHelper Class - {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - G:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O2 - BHO: D - {76DD7F8B-C147-3981-A5DB-44329A803962} - F:\WINDOWS\system32\gl69732.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Alcohol Toolbar Helper - {8126A4A5-BFD3-46FE-BBDF-BFB5CF78E489} - G:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll (file missing)
O2 - BHO: IeCatch2 Class - {A5366673-E8CA-11D3-9CD9-0090271D075B} - G:\PROGRA~1\FlashGet\jccatch.dll
O2 - BHO: (no name) - {CF900AD8-1BE8-4020-8E41-BFF273680EE9} - F:\WINDOWS\system32\urqQiHxV.dll (file missing)
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - G:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - G:\PROGRA~1\FlashGet\fgiebar.dll
O3 - Toolbar: Alcohol Toolbar - {ED4BD629-C1B6-4399-8A34-02CCAA921DC9} - G:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll (file missing)
O4 - HKLM\..\Run: [ZoneAlarm Client] "G:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [vptray] G:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "G:\Program Files\Java\jre1.6.0_04\bin\jusched.exe"
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [ccApp] "G:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKCU\..\Run: [SuperCopier2.exe] G:\Program Files\SuperCopier2\SuperCopier2.exe
O4 - HKCU\..\Run: [msnmsgr] "G:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [msiexec.exe] msiconf.exe
O4 - HKCU\..\Run: [AnVir Task Manager] "G:\Program Files\AnVir Task Manager\AnVir.exe" Minimized
O8 - Extra context menu item: E&xport to Microsoft Excel - res://G:\PROGRA~1\MICROS~2\OFFICE12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://G:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Télécharger avec FlashGet - G:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: Télécharger tout avec FlashGet - G:\Program Files\FlashGet\jc_all.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - G:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - G:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - G:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - G:\Program Files\WinHTTrack\WinHTTrackIEBar.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - G:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Doyles Room Poker - {725E77D3-B919-4eef-8EEE-D09DE618B6C1} - C:\Microgaming\Poker\DoylesRoomMPP\MPPoker.exe (file missing)
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - G:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: UltimateBet - {94148DB5-B42D-4915-95DA-2CBB4F7095BF} - G:\Program Files\UltimateBet\UltimateBet.exe
O9 - Extra 'Tools' menuitem: UltimateBet - {94148DB5-B42D-4915-95DA-2CBB4F7095BF} - G:\Program Files\UltimateBet\UltimateBet.exe
O9 - Extra button: CDPoker - {A68FC757-51CF-4f3c-B13A-BFB8CA69BB99} - F:\Poker\CDPoker\casino.exe (file missing)
O9 - Extra 'Tools' menuitem: CDPoker - {A68FC757-51CF-4f3c-B13A-BFB8CA69BB99} - F:\Poker\CDPoker\casino.exe (file missing)
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - G:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - G:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - G:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - G:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: Golden Riviera - {00000000-0000-0000-0000-000000000000} - G:\MicroGaming\Poker\goldenrivieraMPP\MPPoker.exe (HKCU)
O9 - Extra button: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - F:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Absolute Poker\Absolute Poker.lnk (file missing) (HKCU)
O9 - Extra 'Tools' menuitem: Absolute Poker - {13C1DBF6-7535-495c-91F6-8C13714ED485} - F:\Documents and Settings\Administrateur\Menu Démarrer\Programmes\Absolute Poker\Absolute Poker.lnk (file missing) (HKCU)
O9 - Extra button: Poker.com - {6FDD5236-C9F0-49ef-935D-385F5E21991A} - F:\WINDOWS\system32\shdocvw.dll (HKCU)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su2/CTL_V02002/ocx/15030/CTPID.cab
O20 - Winlogon Notify: ssqPgHaA - F:\WINDOWS\SYSTEM32\ssqPgHaA.dll
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - G:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - G:\Program Files\Fichiers communs\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - G:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Unknown owner - G:\Program Files\iPod\bin\iPodService.exe (file missing)
O23 - Service: SAVRoam (SavRoam) - symantec - G:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - G:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - F:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Windows Firewall - Unknown owner - F:\WINDOWS\system32\SVCH0ST.EXE (file missing)
A voir également:

6 réponses

Réponse 1 / 6
loloetseb Messages postés 5684 Statut Membre 174
 
Télécharge de AD-Remover de Cyrildu17 / C_XX) sur ton Bureau.

http://sd-1.archive-host.com/membres/up/16506160323759868/AD-R.exe

/!\ Déconnecte-toi et ferme toutes applications en cours /!\

- Double-clique sur le programme d'installation, installe-le dans son emplacement par défaut (C:\Program files).
- Double-clique sur l'icône Ad-remover située sur ton Bureau.
- Au menu principal, choisis l'option "A".
- Poste le rapport qui apparaît à la fin.

(Le rapport est sauvegardé aussi sous C:\Ad-report(date).log)

(CTRL+A pour tout sélectionner, CTRL+C pour copier et CTRL+V pour coller)

Note :

"Process.exe", une composante de l'outil, est détectée par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
0
Réponse 2 / 6
Shingo
 
------- LOGFILE OF AD-REMOVER 1.1.1.2 | ONLY XP/VISTA -------

Updated by C_XX on 14/02/2009 at 13:40

Start at: 20:56:06 | Sam 14/02/2009 | Boot mode: Normal Boot
Option: SCAN | Executed from: G:\Program Files\Ad-remover\Ad-remover.bat
Operating System: Microsoft® Windows XP™ Service Pack 2 (version 5.1.2600)
Computer Name: TITANIUM
Current User: Administrateur - Administrator
Drive(s):
- C:\ (File System: NTFS)
- D:\ (File System: NTFS)
- E:\ (File System: NTFS)
- F:\ (File System: NTFS)
- G:\ (File System: NTFS)
- H:\ (File System: NTFS)
- I:\ (File System: NTFS)
System Drive: F:\
Windows Directory: F:\WINDOWS\
System Directory: F:\WINDOWS\System32\

--- Running Processes: 25

+--------------------| Boonty/Boonty Games Elements Found:

.
.

+--------------------| Eorezo Elements Found:

.

+--------------------| Infected Poker Softwares Elements Found:

HKCU\Software\Grand Virtual
HKCU\Software\MGS\Thumper\Casino\GoldenRiviera
HKCU\Software\pacificpoker
HKCU\Software\PartyGaming
HKCU\Software\Poker 770
HKCU\Software\pokerinstaller
HKCU\Software\Titan Poker
HKLM\Software\Poker 770
HKLM\Software\Titan Poker
HKLM\Software\Microsoft\Internet Explorer\Extensions\{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pacific Poker
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Poker 770
HKU\S-1-5-21-1177238915-1614895754-1801674531-500\Software\Titan Poker
.
F:\Poker\Poker 770
F:\Poker\Poker 770\data
F:\Poker\Poker 770\History
F:\Poker\Poker 770\data\blackjack
F:\Poker\Poker 770\data\casinowar
F:\Poker\Poker 770\data\craps
F:\Poker\Poker 770\data\keno
F:\Poker\Poker 770\data\lobby
F:\Poker\Poker 770\data\poker_caribbean
F:\Poker\Poker 770\data\poker_holdem
F:\Poker\Poker 770\data\roulette
F:\Poker\Poker 770\data\shared
F:\Poker\Poker 770\data\slots_bonusbears25line
F:\Poker\Poker 770\data\slots_cinerama5reel
F:\Poker\Poker 770\data\slots_desert20line
F:\Poker\Poker 770\data\slots_forestofwonders25line
F:\Poker\Poker 770\data\slots_gold8line
F:\Poker\Poker 770\data\slots_lotto20line
F:\Poker\Poker 770\data\slots_lovemore20line
F:\Poker\Poker 770\data\slots_silentsamurai9line
F:\Poker\Poker 770\data\slots_wildspirit20line
F:\Poker\Poker 770\data\table
F:\Poker\Poker 770\data\videopoker_4aces
F:\Poker\Poker 770\data\videopoker_4jacks
F:\Poker\Poker 770\data\videopoker_jacks
F:\Poker\Poker 770\data\videopoker_joker
F:\Poker\Poker 770\data\craps\3d
F:\Poker\Poker 770\data\keno\3d
F:\Poker\Poker 770\data\keno\buttons
F:\Poker\Poker 770\data\keno\sounds
F:\Poker\Poker 770\data\lobby\buttons
F:\Poker\Poker 770\data\lobby\dialogs
F:\Poker\Poker 770\data\lobby\login
F:\Poker\Poker 770\data\lobby\sidegames
F:\Poker\Poker 770\data\lobby\tables
F:\Poker\Poker 770\data\lobby\waitinglist
F:\Poker\Poker 770\data\roulette\3d
F:\Poker\Poker 770\data\roulette\buttons
F:\Poker\Poker 770\data\roulette\sounds
F:\Poker\Poker 770\data\roulette\zoom
F:\Poker\Poker 770\data\shared\3d
F:\Poker\Poker 770\data\shared\9line
F:\Poker\Poker 770\data\shared\blackjack
F:\Poker\Poker 770\data\shared\buttons
F:\Poker\Poker 770\data\shared\cards
F:\Poker\Poker 770\data\shared\coins
F:\Poker\Poker 770\data\shared\dollarball
F:\Poker\Poker 770\data\shared\doublescreen
F:\Poker\Poker 770\data\shared\fonts
F:\Poker\Poker 770\data\shared\history
F:\Poker\Poker 770\data\shared\html
F:\Poker\Poker 770\data\shared\interface
F:\Poker\Poker 770\data\shared\options
F:\Poker\Poker 770\data\shared\slots
F:\Poker\Poker 770\data\shared\sounds
F:\Poker\Poker 770\data\shared\tablegames
F:\Poker\Poker 770\data\shared\tablesigns
F:\Poker\Poker 770\data\shared\ui
F:\Poker\Poker 770\data\shared\videopoker_4line
F:\Poker\Poker 770\data\shared\videopoker_jacks
F:\Poker\Poker 770\data\shared\cards\poker
F:\Poker\Poker 770\data\shared\cards\textures
F:\Poker\Poker 770\data\shared\coins\tablecoins
F:\Poker\Poker 770\data\shared\dollarball\sounds
F:\Poker\Poker 770\data\shared\history\cards
F:\Poker\Poker 770\data\shared\html\chat
F:\Poker\Poker 770\data\shared\html\chat\emoticons
F:\Poker\Poker 770\data\shared\interface\chat
F:\Poker\Poker 770\data\shared\slots\lines
F:\Poker\Poker 770\data\shared\sounds\dealervoices
F:\Poker\Poker 770\data\shared\sounds\playersounds
F:\Poker\Poker 770\data\shared\sounds\dealervoices\numbers
F:\Poker\Poker 770\data\shared\sounds\playersounds\baseballer
F:\Poker\Poker 770\data\shared\sounds\playersounds\blackdude
F:\Poker\Poker 770\data\shared\sounds\playersounds\bond
F:\Poker\Poker 770\data\shared\sounds\playersounds\cowboy
F:\Poker\Poker 770\data\shared\sounds\playersounds\frenchgirl
F:\Poker\Poker 770\data\shared\sounds\playersounds\frenchman
F:\Poker\Poker 770\data\shared\sounds\playersounds\mafiaguy
F:\Poker\Poker 770\data\shared\sounds\playersounds\olderbusinesswoman
F:\Poker\Poker 770\data\shared\sounds\playersounds\oldtourist
F:\Poker\Poker 770\data\shared\sounds\playersounds\valleygirl
F:\Poker\Poker 770\data\shared\tablegames\gold_dark
F:\Poker\Poker 770\data\shared\videopoker_4line\buttons
F:\Poker\Poker 770\data\slots_bonusbears25line\sounds
F:\Poker\Poker 770\data\slots_cinerama5reel\bonus
F:\Poker\Poker 770\data\slots_cinerama5reel\bonus2
F:\Poker\Poker 770\data\slots_cinerama5reel\sounds
F:\Poker\Poker 770\data\slots_cinerama5reel\wintable
F:\Poker\Poker 770\data\slots_cinerama5reel\bonus\select
F:\Poker\Poker 770\data\slots_cinerama5reel\bonus2\select
F:\Poker\Poker 770\data\slots_desert20line\bonusgame
F:\Poker\Poker 770\data\slots_desert20line\sounds
F:\Poker\Poker 770\data\slots_desert20line\wintable
F:\Poker\Poker 770\data\slots_forestofwonders25line\bonus
F:\Poker\Poker 770\data\slots_forestofwonders25line\sounds
F:\Poker\Poker 770\data\slots_forestofwonders25line\wintable
F:\Poker\Poker 770\data\slots_gold8line\bonus
F:\Poker\Poker 770\data\slots_gold8line\fonts
F:\Poker\Poker 770\data\slots_gold8line\sounds
F:\Poker\Poker 770\data\slots_gold8line\wintable
F:\Poker\Poker 770\data\slots_gold8line\bonus\screen
F:\Poker\Poker 770\data\slots_lotto20line\animation
F:\Poker\Poker 770\data\slots_lotto20line\bonusgame
F:\Poker\Poker 770\data\slots_lotto20line\fonts
F:\Poker\Poker 770\data\slots_lotto20line\sounds
F:\Poker\Poker 770\data\slots_lotto20line\wintable
F:\Poker\Poker 770\data\slots_lovemore20line\dollarball
F:\Poker\Poker 770\data\slots_lovemore20line\sounds
F:\Poker\Poker 770\data\slots_lovemore20line\wintable
F:\Poker\Poker 770\data\slots_silentsamurai9line\bonus
F:\Poker\Poker 770\data\slots_silentsamurai9line\buttons
F:\Poker\Poker 770\data\slots_silentsamurai9line\doubleup
F:\Poker\Poker 770\data\slots_silentsamurai9line\info
F:\Poker\Poker 770\data\slots_silentsamurai9line\sounds
F:\Poker\Poker 770\data\slots_silentsamurai9line\bonus\intro_txt
F:\Poker\Poker 770\data\slots_silentsamurai9line\bonus\ninjas
F:\Poker\Poker 770\data\slots_silentsamurai9line\sounds\bonus
F:\Poker\Poker 770\data\slots_silentsamurai9line\sounds\doubleup
F:\Poker\Poker 770\data\slots_silentsamurai9line\sounds\reelspins
F:\Poker\Poker 770\data\slots_silentsamurai9line\sounds\symbols
F:\Poker\Poker 770\data\slots_wildspirit20line\bonus
F:\Poker\Poker 770\data\slots_wildspirit20line\buttons
F:\Poker\Poker 770\data\slots_wildspirit20line\doubleup
F:\Poker\Poker 770\data\slots_wildspirit20line\info
F:\Poker\Poker 770\data\slots_wildspirit20line\sounds
F:\Poker\Poker 770\data\slots_wildspirit20line\sounds\bonus
F:\Poker\Poker 770\data\slots_wildspirit20line\sounds\doubleup
F:\Poker\Poker 770\data\slots_wildspirit20line\sounds\reelspins
F:\Poker\Poker 770\data\slots_wildspirit20line\sounds\symbols
F:\Poker\Poker 770\data\table\3d
F:\Poker\Poker 770\data\table\anim
F:\Poker\Poker 770\data\table\chat
F:\Poker\Poker 770\data\table\smallview
F:\Poker\Poker 770\data\table\topview
F:\Poker\Poker 770\data\table\chat\cards
F:\Poker\Poker 770\data\table\smallview\anim
F:\Poker\Poker 770\data\table\smallview\buttons
F:\Poker\Poker 770\data\table\smallview\chat
F:\Poker\Poker 770\data\table\smallview\coins
F:\Poker\Poker 770\data\table\smallview\chat\chat_bottom
F:\Poker\Poker 770\data\table\topview\anim
F:\Poker\Poker 770\data\table\topview\avatars
F:\Poker\Poker 770\data\table\topview\buttons
F:\Poker\Poker 770\data\table\topview\cards
F:\Poker\Poker 770\data\table\topview\chat
F:\Poker\Poker 770\data\table\topview\coins
F:\Poker\Poker 770\data\table\topview\dialogs
F:\Poker\Poker 770\data\table\topview\history
F:\Poker\Poker 770\data\table\topview\chat\chat_bottom
F:\Poker\Poker 770\data\table\topview\chat\chat_side
F:\Poker\Poker 770\data\videopoker_joker\animation
F:\Poker\Poker 770\History\PSR53244852
F:\Poker\Poker 770\History\PSR53244852\Table
F:\Poker\Poker 770\History\PSR53244852\Tournament
G:\Program Files\PacificPoker
G:\Program Files\PacificPoker\bin
G:\Program Files\PacificPoker\bin\casinopoker
G:\Program Files\PacificPoker\bin\casinopoker\bin
F:\Documents and Settings\Administrateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Pacific Poker.lnk
F:\Documents and Settings\Administrateur\Application Data\PacificPoker
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Cash
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Chat
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Config
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\GameHist
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Help_Support
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Localization
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Login
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\NoFlash
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Pokerex
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\PokerLobby
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Settings
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Update
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Utils
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Cash\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Baccarat
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Bj
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\CaribPoker
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Cash
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Craps
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\FlashGames
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\keno
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Login
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Logs
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PGP
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\roulette
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Update
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Utils
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena\ArCommon
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena\bj
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena\Favorite
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena\FlashGamesArena
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena\lobby
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena\slot
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena\TableAndCard
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena\vp
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena\vs
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Arena\Favorite\FavPick
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Baccarat\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Bj\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Bj\media\Crazy
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\CaribPoker\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Cash\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Craps\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\FlashGames\001FG
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\FlashGames\002FG
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\depCash
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\PowerPokerRes
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS\007
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS\008
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS\009
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS\010
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS\011
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS\012
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS\014
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS\015
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS\016
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\GameHist\media\VS\017
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\keno\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Login\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\Login\media\ChatPage
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\media\AutoPlay
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\media\Caption
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\media\FieldBox
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\media\GoTo
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\media\Limit
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\media\NoShock
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\media\SoundsEx
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\media\Toolbar
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PGP\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPAcesAndFaces
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPArena
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPBonusPoker
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPCommon
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPDeucesWild
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPJackOrBetter
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPJokerWild
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPMachine2
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPRoyalDiamondJP
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPAcesAndFaces\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPBonusPoker\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPCommon\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPCommon\media\CounterStripes
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPCommon\media\Sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPDeucesWild\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPJackOrBetter\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPJokerWild\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPMachine2\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\PVP\PVPRoyalDiamondJP\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\roulette\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\10TimesWild
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\2TimesExtraWild
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\2TimesWild
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\5TimesWild
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\GoldAndGreen
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\Knockout
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\lying slot
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\MegaGoldAndGreen
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\MillionaireMaker
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\OleGlory
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\Pachislo
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\PyramidsTreasure
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\Shared
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\SlotsAhoy
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\Slots_Arena
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\standing slot
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\SuperThundering888
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\Thundering888
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\TreasureTwirl
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\WildSpider
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\Pachislo\results
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\Shared\results
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\TreasureTwirl\Lying_spins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\SlotsMedia\TreasureTwirl\Standing_spins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\001VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\002VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\003VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\004VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\005VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\006VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\007VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\008VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\009VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\010VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\011VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\012VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\014VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\015VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\016VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\017VS
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\001VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\001VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\001VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\001VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\001VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\001VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\001VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\002VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\002VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\002VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\002VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\002VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\002VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\002VS\bg\TakeOrDrop
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\002VS\bg\X_OF_Many
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\003VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\003VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\003VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\003VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\003VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\003VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\003VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\004VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\004VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\004VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\004VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\004VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\004VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\005VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\005VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\005VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\005VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\005VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\005VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\005VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\006VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\006VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\006VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\006VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\006VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\006VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\006VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\007VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\007VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\007VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\007VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\007VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\007VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\007VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\008VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\008VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\008VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\008VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\008VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\008VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\008VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\009VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\009VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\009VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\009VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\009VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\009VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\010VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\010VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\010VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\010VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\010VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\010VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\010VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\011VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\011VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\011VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\011VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\011VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\011VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\012VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\012VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\012VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\012VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\012VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\012VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\012VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\014VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\014VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\014VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\014VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\014VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\014VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\014VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\015VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\015VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\015VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\015VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\015VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\015VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\015VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\016VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\016VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\016VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\016VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\016VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\016VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\016VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\017VS\bg
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\017VS\buttons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\017VS\Freespins
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\017VS\Icons
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\017VS\payLine
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\017VS\payTable
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VideoSlot\017VS\sounds
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPAcesAndFaces
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPBonusPoker
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPCommon
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPDeucesWild
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPJackOrBetter
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPJokerWild
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPMachine1
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPMachine2
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPRoyalDiamondJP
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPAcesAndFaces\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPBonusPoker\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPCommon\Arena
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPCommon\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPDeucesWild\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPJackOrBetter\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPJokerWild\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPMachine1\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPMachine2\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\casinopoker\VP\VPRoyalDiamondJP\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\GameHist\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Help_Support\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Login\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\OldMedia
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\media\Chips
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\media\Chips\0
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\media\Chips\1
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\media\Chips\2
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\media\Chips\3
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\media\Chips\4
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\media\Chips\5
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\media\Chips\6
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\OldMedia\Chips
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\OldMedia\Chips\0
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\OldMedia\Chips\1
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\OldMedia\Chips\2
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\OldMedia\Chips\3
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\OldMedia\Chips\4
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\OldMedia\Chips\5
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Poker\OldMedia\Chips\6
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Pokerex\media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\PokerLobby\Media
F:\Documents and Settings\Administrateur\Application Data\PacificPoker\Settings\Media
F:\Documents and Settings\Administrateur\Menudm~1\Progra~1\Pacific Poker
F:\Documents and Settings\Administrateur\Menudm~1\Pacific Poker.lnk
F:\Documents and Settings\All Users\Menudm~1\Progra~1\Everest Poker
F:\Documents and Settings\All Users\Menudm~1\Progra~1\Poker 770
F:\WINDOWS\Prefetch\CASINO.EXE-0C091E89.pf
F:\WINDOWS\Prefetch\CASINO.EXE-35848DE8.pf

+--------------------| FunWebProducts/MyWay/MyWebSearch/MyGlobalSearch Elements Found:

.
.

+--------------------| It's TV Elements Found:

.

+--------------------| Sweetim Elements Found:

.

+--------------------| Added Scan:

---- Mozilla FireFox Version 3.0.6 ----

ProfilePath: rvkokl53.default
.
.
.
.
.
.

---- Internet Explorer Version 6.0.2900.2180 ----

+-[HKEY_CURRENT_USER\..\Internet Explorer\Main]

Search bar: hxxp://www.google.com/ie
Search Page: hxxp://www.google.com
Start page: hxxp:blank

+-[HKEY_USERS\S-1-5-21-1177238915-1614895754-1801674531-500\..\Internet Explorer\Main]

Search bar: hxxp://www.google.com/ie
Search Page: hxxp://www.google.com
Start page: hxxp:blank

+-[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start page: hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home

+-[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]

+---------------------------------------------------------------------------+

[~40838 Bytes] - "F:\Ad-Report-Scan-14.02.2009.log"
-

End at: 20:58:53 | 14/02/2009
.
+--------------------| E.O.F - 533 Lines
.
0
Réponse 3 / 6
loloetseb Messages postés 5684 Statut Membre 174
 
Relances Ad remover,puis B,puis 3,puis S et postes moi le rapport.
0
Réponse 4 / 6
loloetseb Messages postés 5684 Statut Membre 174
 
Ensuite

1/Télécharge MalwareByte's :
http://www.malwarebytes.org/mbam.php ou ici :
http://www.malwarebytes.org/mbam/program/mbam-setup.exe

* Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .

(NB : S'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : https://www.malekal.com/tutorial-aboutbuster/ )

* Potasse le tuto pour te familiariser avec le prg :
https://forum.pcastuces.com/sujet.asp?f=31&s=3
( cela dis, il est très simple d'utilisation ).

relance malwarebytes en suivant scrupuleusement ces consignes :

! Déconnecte toi et ferme toutes applications en cours !

* Lance Malwarebyte's .

Fais un examen dit "Complet" .

--> Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
--> à la fin tu cliques sur "résultat" .
--> Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !

Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)

2/Repostes moi un Rsit (supprimes les anciens rapports avant de lancer le scan

Télécharge Random's System Information Tool (RSIT) de random/random et enregistre l'exécutable sur ton Bureau.

-> http://images.malwareremoval.com/random/RSIT.exe

! Déconnecte toi et ferme toutes tes applications en cours !

Double-clique sur " RSIT.exe " pour le lancer .

-> Une première fenêtre s'ouvre avec en titre : " Disclaimer of warranty " .

* Devant l'option "List files/folders created ..." , tu choisis : 2 months

* clique ensuite sur " Continue " pour lancer l'analyse ...

-> laisse faire le scan et ne touche pas au PC ...

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront (probablement avec le bloc-note).

Poste le contenu de " log.txt " (c'est celui qui apparait à l'écran), ainsi que de " info.txt " (que tu verras dans la barre des tâches), pour analyse et attends la suite ...

Important : poste un rapport, puis l'autre dans la réponse suivante
Si tu essaies de poster les deux en même temps, cela risque d'être trop long pour le forum

( Note : les rapports seront en outre sauvegardés dans ce dossier -> C:\rsit )
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 6
Shingo
 
------- LOGFILE OF AD-REMOVER 1.1.1.2 | ONLY XP/VISTA -------

Updated by C_XX on 14/02/2009 at 13:40

*** LIMITED TO ***

Infected Poker Softwares

******************

Start at: 21:19:52 | Sam 14/02/2009 | Boot mode: Normal Boot
Option: CLEAN | Executed from: G:\Program Files\Ad-remover\Ad-remover.bat
Operating System: Microsoft® Windows XP™ Service Pack 2 (version 5.1.2600)
Computer Name: TITANIUM
Current User: Administrateur - Administrator
Drive(s):
- C:\ (File System: NTFS)
- D:\ (File System: NTFS)
- E:\ (File System: NTFS)
- F:\ (File System: NTFS)
- G:\ (File System: NTFS)
- H:\ (File System: NTFS)
- I:\ (File System: NTFS)
System Drive: F:\
Windows Directory: F:\WINDOWS\
System Directory: F:\WINDOWS\System32\

--- Running Processes: 31

(!) ---- IE start pages/Tabs reset

+--------------------| Infected Poker Softwares Elements Deleted :

HKCU\Software\Grand Virtual
HKCU\Software\MGS\Thumper\Casino\GoldenRiviera
HKCU\Software\pacificpoker
HKCU\Software\PartyGaming
HKCU\Software\Poker 770
HKCU\Software\pokerinstaller
HKCU\Software\Titan Poker
HKLM\Software\Poker 770
HKLM\Software\Titan Poker
HKLM\Software\Microsoft\Internet Explorer\Extensions\{B7FE5D70-9AA2-40F1-9C6B-12A255F085E1}
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pacific Poker
HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\Poker 770
.
F:\Poker\Poker 770
G:\Program Files\PacificPoker
F:\Documents and Settings\Administrateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Pacific Poker.lnk
F:\Documents and Settings\Administrateur\Application Data\PacificPoker
F:\Documents and Settings\Administrateur\Menudm~1\Progra~1\Pacific Poker
F:\Documents and Settings\Administrateur\Menudm~1\Pacific Poker.lnk
F:\Documents and Settings\All Users\Menudm~1\Progra~1\Everest Poker
F:\Documents and Settings\All Users\Menudm~1\Progra~1\Poker 770
F:\WINDOWS\Prefetch\CASINO.EXE-0C091E89.pf
F:\WINDOWS\Prefetch\CASINO.EXE-35848DE8.pf

(!) ---- Temp files deleted.
(!) ---- Recycle bin emptied in all drives.

+--------------------| Added Scan :

---- Mozilla FireFox Version 3.0.6 ----

ProfilePath: rvkokl53.default
.
.
.
.
.
.

---- Internet Explorer Version 6.0.2900.2180 ----

+-[HKEY_CURRENT_USER\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://www.google.com
Start page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

+-[HKEY_USERS\S-1-5-21-1177238915-1614895754-1801674531-500\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896
Search Page: hxxp://www.google.com
Start page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome

+-[HKEY_LOCAL_MACHINE\..\Internet Explorer\Main]

Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Search bar: hxxp://search.msn.com/spbasic.htm
Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Start page: hxxp://fr.msn.com/

+-[HKEY_LOCAL_MACHINE\..\Internet Explorer\ABOUTURLS]

Tabs: hxxp://ieframe.dll/tabswelcome.htm

+---------------------------------------------------------------------------+

[~3657 Bytes] - "F:\Ad-Report-Clean-14.02.2009.log"
[~40975 Bytes] - "F:\Ad-Report-Scan-14.02.2009.log"
-
G:\Program Files\Ad-remover\TOOLS\BACKUP\14.02.2009 - Prefs.js

End at: 21:45:10 | 14/02/2009
.
+--------------------| E.O.F - 80 Lines
.
0
Réponse 6 / 6
loloetseb Messages postés 5684 Statut Membre 174
 
Ok,tu peux faire malwarebytes et ensuite Rsit
0

Discussions similaires

Google Chrome "  Échec de l'analyse antivirus "
jmpower -
RBmoon -

18 réponses
Huawei P8 Lite "nouveau tag ajouté"
ArianeKathleen -
Mn -

25 réponses
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Nouveau tag ajouté - Utilité
Eerfers -
madmyke -

1 réponse
" Échec de l'analyse antivirus " la solution.
bazfile -
bazfile -

0 réponse