Plus de bureau depuis comboFix
Fermé
coucky
-
21 nov. 2008 à 14:45
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 26 nov. 2008 à 20:46
jlpjlp Messages postés 51580 Date d'inscription vendredi 18 mai 2007 Statut Contributeur sécurité Dernière intervention 3 mai 2022 - 26 nov. 2008 à 20:46
A voir également:
- Plus de bureau depuis comboFix
- Bureau virtuel windows 10 - Guide
- Rachid a créé un raccourci (alias ou lien) du fichier expositions sur son bureau. quel est le numéro de l'icône correspondant à ce raccourci ? ✓ - Forum Logiciels
- Carte sim prépayée bureau de tabac - Forum Opérateurs & Réseaux mobiles
- Icone bureau - Guide
- Où trouver des carte sim prépayées ? ✓ - Forum Mobile
29 réponses
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 14:49
21 nov. 2008 à 14:49
slt
repare windows avec zeb restore:
http://telechargement.zebulon.fr/zeb-restore.html
si cela persiste: repare windows:
https://www.pcastuces.com/pratique/windows/xp/default.htm
ou
http://www.informatruc.com/reparer-windows-xp/
si cela persiste:
restaure ton ordi avant l'utilisation de combofix:
http://www.infoprat.net/astuces/windows2k_xp/astuces/divers_004.php
repare windows avec zeb restore:
http://telechargement.zebulon.fr/zeb-restore.html
si cela persiste: repare windows:
https://www.pcastuces.com/pratique/windows/xp/default.htm
ou
http://www.informatruc.com/reparer-windows-xp/
si cela persiste:
restaure ton ordi avant l'utilisation de combofix:
http://www.infoprat.net/astuces/windows2k_xp/astuces/divers_004.php
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 15:17
21 nov. 2008 à 15:17
demarre en mode sans echec puis restaure
https://www.wekyo.com/demarrer-le-pc-en-mode-sans-echec-windows-7-et-8/
ou repare windows
https://www.wekyo.com/demarrer-le-pc-en-mode-sans-echec-windows-7-et-8/
ou repare windows
Encore moi
j'ai demarré en mode sans echec mais je me retrouve avec un ecran noir , où il est écrit aux 4 coins, mode sans echec (apres ouverture de sessio) puis rien, je fais comment pour restaurer? Il n'y a rien d'autre d'écrit. Aussi, je sais qu'il y a 3 semaines j'ai nettoyé l'ordi (pdt 3 jours, tellement je suis douée) et à l'issu, on m'a fait faire un point de restauration, mais je ne sais pas non plus ou tout cela se trouve
Merci de votre patience
j'ai demarré en mode sans echec mais je me retrouve avec un ecran noir , où il est écrit aux 4 coins, mode sans echec (apres ouverture de sessio) puis rien, je fais comment pour restaurer? Il n'y a rien d'autre d'écrit. Aussi, je sais qu'il y a 3 semaines j'ai nettoyé l'ordi (pdt 3 jours, tellement je suis douée) et à l'issu, on m'a fait faire un point de restauration, mais je ne sais pas non plus ou tout cela se trouve
Merci de votre patience
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 15:56
21 nov. 2008 à 15:56
pareil dans demarrer puis ...
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 16:05
21 nov. 2008 à 16:05
alors fais ceci:
http://www.informatruc.com/reparer-windows-xp/
http://www.informatruc.com/reparer-windows-xp/
apparement, il faut le cdXP, je ne sais pas du tout ou les enfants l'ont mis. Sinon ,j'ai refait demarrer, programmes, accessoires mais apres on ne me propose que outils systeme ou il y a juste ecrit internet explorer, sans modules complementaires et si je clique tout revient à 0.
Bref, j'ai l'impression que je ne vais pas y arriver, quelle galère alors que tout marchait bien et que juste combofix a tout déréglé.
Bref, j'ai l'impression que je ne vais pas y arriver, quelle galère alors que tout marchait bien et que juste combofix a tout déréglé.
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 16:36
21 nov. 2008 à 16:36
oui vas dans outils systeme puis tu restaure ton ordi
sinon il va falloir le cd de windows...
sinon il va falloir le cd de windows...
quand je clique sur outils systeme, tout revient à zero sur la page de gestionnaire de tache. Je ne peux pas arriver autrement a cette restauration, style programes files, documents and setting etc... car on ne me propose que ce genre de choses. D'ailleurs, le menu demarrer je l'ai trouvé sur documents and setting
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 16:53
21 nov. 2008 à 16:53
tu as fais zeb restore? sinon il faudra reparer windows avec le cd
repare windows avec zeb restore:
http://telechargement.zebulon.fr/zeb-restore.html
si cela persiste: repare windows:
https://www.pcastuces.com/pratique/windows/xp/default.htm
ou
http://www.informatruc.com/reparer-windows-xp/
repare windows avec zeb restore:
http://telechargement.zebulon.fr/zeb-restore.html
si cela persiste: repare windows:
https://www.pcastuces.com/pratique/windows/xp/default.htm
ou
http://www.informatruc.com/reparer-windows-xp/
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 17:23
21 nov. 2008 à 17:23
non tu peux
tu as le rapport combofix que tu avais fais
puis
Télécharge ici :
http://images.malwareremoval.com/random/RSIT.exe
random's system information tool (RSIT) par andom/random et sauvegarde-le sur le Bureau.
Double-clique sur RSIT.exe afin de lancer RSIT.
Clique Continue à l'écran Disclaimer.
Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.
Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).
NB : Les rapports sont sauvegardés dans le dossier C:\rsit
tu as le rapport combofix que tu avais fais
puis
Télécharge ici :
http://images.malwareremoval.com/random/RSIT.exe
random's system information tool (RSIT) par andom/random et sauvegarde-le sur le Bureau.
Double-clique sur RSIT.exe afin de lancer RSIT.
Clique Continue à l'écran Disclaimer.
Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront.
Poste le contenu de log.txt (<<qui sera affiché)
ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).
NB : Les rapports sont sauvegardés dans le dossier C:\rsit
en cliquant sur le lien ci dessus j'ai eu ce rapport
Logfile of random's system information tool 1.04 (written by random/random)
Run by Nathalie at 2008-11-21 17:27:58
Microsoft Windows XP Édition familiale Service Pack 2
System drive C: has 105 GB (69%) free of 153 GB
Total RAM: 958 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:28:03, on 21/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Nathalie\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Nathalie.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Flag Owns Live Grim] C:\Documents and Settings\All Users\Application Data\Software rule flag owns\Support Real.exe
O4 - HKLM\..\RunOnce: [GrpConv] grpconv -o
O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [QUAD Scheduler] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe
O4 - HKCU\..\Run: [QUAD Windows service] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Registry Cleaner.exe -h
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O20 - AppInit_DLLs: xdcppd.dll
O21 - SSODL: pkMXrrFog - {5C0434E1-F6AE-9E4B-A8B3-229277981D42} - C:\WINDOWS\system32\mmuod.dll
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: OneStepSearch Service - Unknown owner - C:\Program Files\OneStep\onestep.exe (file missing)
Logfile of random's system information tool 1.04 (written by random/random)
Run by Nathalie at 2008-11-21 17:27:58
Microsoft Windows XP Édition familiale Service Pack 2
System drive C: has 105 GB (69%) free of 153 GB
Total RAM: 958 MB (67% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:28:03, on 21/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\devldr32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Nathalie\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Nathalie.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [Flag Owns Live Grim] C:\Documents and Settings\All Users\Application Data\Software rule flag owns\Support Real.exe
O4 - HKLM\..\RunOnce: [GrpConv] grpconv -o
O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [QUAD Scheduler] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe
O4 - HKCU\..\Run: [QUAD Windows service] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Registry Cleaner.exe -h
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O20 - AppInit_DLLs: xdcppd.dll
O21 - SSODL: pkMXrrFog - {5C0434E1-F6AE-9E4B-A8B3-229277981D42} - C:\WINDOWS\system32\mmuod.dll
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: OneStepSearch Service - Unknown owner - C:\Program Files\OneStep\onestep.exe (file missing)
puis ça
info.txt logfile of random's system information tool 1.04 2008-11-21 17:28:06
======Uninstall list======
-->C:\Program Files\Creative\SBLive2k\Program\Upddrv2k.EXE
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\News\CTNews.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\AudioHQ.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\Diagnose.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\Launcher\Launcher.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\Midi.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\PlayCenter2\Player2.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\Recorder\Recorder.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\Restore.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\SBLiveXP.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\SoundFont.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\SurMixer.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\WaveStudio\Wstudio.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\Uninstall\Installer.isu"
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Absolutist Games Toolbar-->C:\PROGRA~1\ABSOLU~1\UNWISE.EXE C:\PROGRA~1\ABSOLU~1\INSTALL.LOG
Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Age of Empires III-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{485775E8-AEB8-46BD-922B-242879E03DD5}
All Converter 6.0.3-->"C:\Program Files\1stbenison\All Converter\unins000.exe"
All To MP3 Converter 2.15-->"C:\Program Files\LitexMedia\All To MP3 Converter\unins000.exe"
aMSN 0.97-->C:\Program Files\aMSN\uninstall.exe
Anno 1701-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A2433A63-5F5D-40E5-B529-9123C2B3E734}\Setup.exe" -l0x40c -removeonly
Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
Ask Toolbar-->rundll32 C:\PROGRA~1\AskSBar\bar\1.bin\AskSBar.dll,O
Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
Azureus Vuze-->C:\Program Files\Azureus\uninstall.exe
Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
Bubble Shooter Premium-->"C:\Program Files\absolutist.com\Bubble Shooter Premium\unins000.exe"
Correctif pour Windows XP (KB914440)-->"C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif Windows XP - KB885884-->C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
Cossacks - The Art of War-->C:\WINDOWS\unasetup.exe
Dance eJay 7 Demo-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0D74C204-0451-463E-8B8E-F2E11504A675}\setup.exe" -l0x40c -removeonly
DDD Pool-->"C:\Program Files\DDD Pool\ReflexiveArcade\unins000.exe"
Désinstaller Raveille-->"C:\Program Files\Raveille\unins000.exe"
DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DJ Pofessionnel 2008 7.3.1.17-->"C:\djp\unins000.exe"
Dofus 1.25.0-->C:\Program Files\Dofus\uninstall.exe
Dofus-Arena-->C:\Program Files\Dofus-Arena beta 2\uninstall.exe
Elf Bowling fr-->"C:\Program Files\BoontyGames\Elf Bowling\unins000.exe"
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Escape from Paradise-->"C:\Program Files\Gamenext\Escape from Paradise\Uninstall.exe" "C:\Program Files\Gamenext\Escape from Paradise\install.log"
Farm Frenzy 2 fr-->"C:\Program Files\BoontyGames\Farm Frenzy 2\unins000.exe"
Favorit-->"c:\documents and settings\nathalie\local settings\application data\ckggiim.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\csucw.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\gyuyqae.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\omokcii.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\qyswyoc.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\wsaag.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\wyggw.exe" -uninstall
Fishdom fr-->"C:\Program Files\BoontyGames\Fishdom\unins000.exe"
FrostWire 4.13.5-->C:\Program Files\FrostWire\Uninstall.exe
Galerie de photos Windows Live-->MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
GTK+ 2.4.14 runtime environment-->"C:\Program Files\Fichiers communs\GTK\2.0\unins000.exe"
Guitar Pro 5.0-->"C:\Program Files\Guitar Pro 5\unins000.exe"
Hawaiian Explorer 2 Lost Island fr-->"C:\Program Files\BoontyGames\Hawaiian Explorer 2 Lost Island\unins000.exe"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
I Love Cats fr-->"C:\Program Files\BoontyGames\I Love Cats\unins000.exe"
iMesh-->C:\Program Files\iMesh Applications\iMesh\UninstallSurvey.exe C:\PROGRA~1\IMESHA~1\iMesh\UNWISE.EXE C:\PROGRA~1\IMESHA~1\iMesh\INSTALL.LOG
IsoBuster 1.8-->"C:\Program Files\Smart Projects\IsoBuster\Uninst\unins000.exe"
iTunes-->MsiExec.exe /I{EF6C4600-306D-4F6A-A119-C2A877D25B4A}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Jennys Fish Shop fr-->"C:\Program Files\BoontyGames\Jennys Fish Shop\unins000.exe"
jibberish deluxe beta version-->"C:\Program Files\jibberish deluxe beta\unins000.exe"
Kazaa 3.2.7-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EC8923CA-D7F5-46E4-98BB-E083E6E1C40D}\Setup.exe" -l0x9 --AddRemove
LAVA! Player-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\LAVA Player\LAVA25.isu"
L'Entraîneur 2006-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A7A66CF3-3DB6-4150-87B1-D380869B8807}\Setup.exe" -l0x40c -removeonly
LimeWire 4.16.6-->"C:\Program Files\LimeWire\uninstall.exe"
Live Billiards-->"C:\Program Files\Live Billiards\ReflexiveArcade\unins000.exe"
livebox-->C:\Program Files\InstallShield Installation Information\{17342E3B-0818-4A6F-BFF8-99476605ADD6}\Setup.exe -runfromtemp -l0x040c -removeonly
MagicBall fr-->"C:\Program Files\BoontyGames\MagicBall\unins000.exe"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
Microsoft Office Word Viewer 2003-->MsiExec.exe /I{9085040C-6000-11D3-8CFE-0150048383C9}
Microsoft Office XP Professional avec FrontPage-->MsiExec.exe /I{9028040C-6000-11D3-8CFE-0050048383C9}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)-->MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A}
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953155)-->"C:\WINDOWS\$NtUninstallKB953155$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB904942)-->"C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mozilla Firefox (2.0.0.13)-->C:\PROGRA~1\Mozilla Firefox\uninstall\helper.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nathalie Brooks Secrets of Treasure House fr-->"C:\Program Files\BoontyGames\Nathalie Brooks Secrets of Treasure House\unins000.exe"
Navigateur Orange-->C:\Program Files\Orange HSS\Uninstall\Browser\Shell.exe MainUninstall.shl
Navilog1 3.6.9-->"C:\Program Files\Navilog1\unins000.exe"
Nero - Burning Rom-->MsiExec.exe /X{A4D7B764-4140-11D4-88EB-0050DA3579C0}
Norton™ Security Scan-->MsiExec.exe /I{DA15D535-5E1D-4076-B520-8571346D6238}
OpenOffice.org 2.4-->MsiExec.exe /I{B6694BAA-7604-46AA-A41F-B5F1E6DADE7A}
Orange - Logiciels Internet-->C:\Program Files\Orange HSS\installation\core\Installgui.exe -u
P2P Networking-->C:\WINDOWS\system32\P2P Networking\P2P Networking.exe /UNINSTALL
PDF-to-Word 2.5 Demo-->C:\PROGRA~1\BLUESQ~1\demos\UNWISE.EXE /U C:\PROGRA~1\BLUESQ~1\demos\pdf2word.log
Pin High Country Club Golf-->C:\PROGRA~1\GAMEHO~1\PINHIG~1\UNWISE.EXE /U C:\PROGRA~1\GAMEHO~1\PINHIG~1\INSTALL.LOG
QUAD Registry Cleaner v.1.5.43-->C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\uninst.exe
QuickTime-->MsiExec.exe /I{08CA9554-B5FE-4313-938F-D4A417B81175}
Righteous Kill fr-->"C:\Program Files\BoontyGames\Righteous Kill\unins000.exe"
Safari-->MsiExec.exe /I{0AFC9710-5DD6-4C6A-BA52-91AE992B2C9D}
SecondLife (remove only)-->"C:\Program Files\SecondLife\uninst.exe" /P="SecondLife"
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update pour Microsoft .NET Framework 2.0 (KB928365)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {8056AC9E-49C5-4375-9ADE-B2F862C9DF51} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Shareaza version 2.2.5.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
skiStunt-->C:\Program Files\skiStunt\Uninstall.EXE /u:"Ski Stunt Simulator"
Sony ACID Pro 6.0-->MsiExec.exe /X{2956585F-DB2F-45C2-9363-F8CB0BB4F2A7}
Sony Media Manager 2.2-->MsiExec.exe /X{2B5A75F0-FD85-4094-AB00-94902398D192}
Sound Blaster Live! Value-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\SBLive.isu"
Sound Blaster Live!-->C:\Program Files\Creative\Uninstall\CTUNINST.EXE /U:UNINST1.INI
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Téléchargeur de FlatOut fr-->"C:\Program Files\Téléchargeur de FlatOut\unins000.exe"
Téléchargeur de Yetisports World Tour fr-->"C:\Program Files\Téléchargeur de Yetisports World Tour\unins000.exe"
The Count of Monte Cristo fr-->"C:\Program Files\BoontyGames\The Count of Monte Cristo\unins000.exe"
The Sims SnapCity fr-->"C:\Program Files\BoontyGames\The Sims SnapCity\unins000.exe"
UsbFix-->C:\Program Files\UsbFix\Uninstal.exe
VideoLAN VLC media player 0.8.6d-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Vista 8.5 Béta-->C:\Program Files\windows live\messenger\Uninstal.exe
Winferno Registry Power Cleaner-->"C:\Program Files\Winferno\RegistryPowerCleaner\unins000.exe"
WinZip 11.1-->MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5}
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Toolbar avec bloqueur de fenêtres pop-up-->C:\PROGRA~1\Yahoo!\Common\unyt.exe
YesMessenger 2.2.04-->"C:\Program Files\YesMessenger\unins000.exe"
======Security center information======
AV: Avira AntiVir PersonalEdition
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\Microsoft SQL Server\80\Tools\Binn;C:\Program Files\Fichiers communs\GTK\2.0\bin;C:\Program Files\QuickTime\QTSystem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.04 2008-11-21 17:28:06
======Uninstall list======
-->C:\Program Files\Creative\SBLive2k\Program\Upddrv2k.EXE
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\News\CTNews.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\AudioHQ.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\Diagnose.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\Launcher\Launcher.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\Midi.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\PlayCenter2\Player2.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\Recorder\Recorder.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\Restore.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\SBLiveXP.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\SoundFont.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\SurMixer.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\WaveStudio\Wstudio.isu"
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\Uninstall\Installer.isu"
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Absolutist Games Toolbar-->C:\PROGRA~1\ABSOLU~1\UNWISE.EXE C:\PROGRA~1\ABSOLU~1\INSTALL.LOG
Adobe Acrobat 5.0-->C:\WINDOWS\ISUN040C.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Age of Empires III-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{485775E8-AEB8-46BD-922B-242879E03DD5}
All Converter 6.0.3-->"C:\Program Files\1stbenison\All Converter\unins000.exe"
All To MP3 Converter 2.15-->"C:\Program Files\LitexMedia\All To MP3 Converter\unins000.exe"
aMSN 0.97-->C:\Program Files\aMSN\uninstall.exe
Anno 1701-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A2433A63-5F5D-40E5-B529-9123C2B3E734}\Setup.exe" -l0x40c -removeonly
Apple Software Update-->MsiExec.exe /I{02DFF6B1-1654-411C-8D7B-FD6052EF016F}
Ask Toolbar-->rundll32 C:\PROGRA~1\AskSBar\bar\1.bin\AskSBar.dll,O
Assistant de connexion Windows Live-->MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
Azureus Vuze-->C:\Program Files\Azureus\uninstall.exe
Bonjour-->MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}
Bubble Shooter Premium-->"C:\Program Files\absolutist.com\Bubble Shooter Premium\unins000.exe"
Correctif pour Windows XP (KB914440)-->"C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Correctif Windows XP - KB885884-->C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
Cossacks - The Art of War-->C:\WINDOWS\unasetup.exe
Dance eJay 7 Demo-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0D74C204-0451-463E-8B8E-F2E11504A675}\setup.exe" -l0x40c -removeonly
DDD Pool-->"C:\Program Files\DDD Pool\ReflexiveArcade\unins000.exe"
Désinstaller Raveille-->"C:\Program Files\Raveille\unins000.exe"
DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DJ Pofessionnel 2008 7.3.1.17-->"C:\djp\unins000.exe"
Dofus 1.25.0-->C:\Program Files\Dofus\uninstall.exe
Dofus-Arena-->C:\Program Files\Dofus-Arena beta 2\uninstall.exe
Elf Bowling fr-->"C:\Program Files\BoontyGames\Elf Bowling\unins000.exe"
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Escape from Paradise-->"C:\Program Files\Gamenext\Escape from Paradise\Uninstall.exe" "C:\Program Files\Gamenext\Escape from Paradise\install.log"
Farm Frenzy 2 fr-->"C:\Program Files\BoontyGames\Farm Frenzy 2\unins000.exe"
Favorit-->"c:\documents and settings\nathalie\local settings\application data\ckggiim.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\csucw.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\gyuyqae.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\omokcii.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\qyswyoc.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\wsaag.exe" -uninstall
Favorit-->"c:\documents and settings\nathalie\local settings\application data\wyggw.exe" -uninstall
Fishdom fr-->"C:\Program Files\BoontyGames\Fishdom\unins000.exe"
FrostWire 4.13.5-->C:\Program Files\FrostWire\Uninstall.exe
Galerie de photos Windows Live-->MsiExec.exe /X{A70FA218-6598-4AC9-813D-63597C5DD068}
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
GTK+ 2.4.14 runtime environment-->"C:\Program Files\Fichiers communs\GTK\2.0\unins000.exe"
Guitar Pro 5.0-->"C:\Program Files\Guitar Pro 5\unins000.exe"
Hawaiian Explorer 2 Lost Island fr-->"C:\Program Files\BoontyGames\Hawaiian Explorer 2 Lost Island\unins000.exe"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
I Love Cats fr-->"C:\Program Files\BoontyGames\I Love Cats\unins000.exe"
iMesh-->C:\Program Files\iMesh Applications\iMesh\UninstallSurvey.exe C:\PROGRA~1\IMESHA~1\iMesh\UNWISE.EXE C:\PROGRA~1\IMESHA~1\iMesh\INSTALL.LOG
IsoBuster 1.8-->"C:\Program Files\Smart Projects\IsoBuster\Uninst\unins000.exe"
iTunes-->MsiExec.exe /I{EF6C4600-306D-4F6A-A119-C2A877D25B4A}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Jennys Fish Shop fr-->"C:\Program Files\BoontyGames\Jennys Fish Shop\unins000.exe"
jibberish deluxe beta version-->"C:\Program Files\jibberish deluxe beta\unins000.exe"
Kazaa 3.2.7-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EC8923CA-D7F5-46E4-98BB-E083E6E1C40D}\Setup.exe" -l0x9 --AddRemove
LAVA! Player-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\LAVA Player\LAVA25.isu"
L'Entraîneur 2006-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A7A66CF3-3DB6-4150-87B1-D380869B8807}\Setup.exe" -l0x40c -removeonly
LimeWire 4.16.6-->"C:\Program Files\LimeWire\uninstall.exe"
Live Billiards-->"C:\Program Files\Live Billiards\ReflexiveArcade\unins000.exe"
livebox-->C:\Program Files\InstallShield Installation Information\{17342E3B-0818-4A6F-BFF8-99476605ADD6}\Setup.exe -runfromtemp -l0x040c -removeonly
MagicBall fr-->"C:\Program Files\BoontyGames\MagicBall\unins000.exe"
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Messenger Plus! Live & Sponsor (CiD)-->"C:\Program Files\Messenger Plus! Live\Uninstall.exe"
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{9011040C-6000-11D3-8CFE-0150048383C9}
Microsoft Office Word Viewer 2003-->MsiExec.exe /I{9085040C-6000-11D3-8CFE-0150048383C9}
Microsoft Office XP Professional avec FrontPage-->MsiExec.exe /I{9028040C-6000-11D3-8CFE-0050048383C9}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)-->MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A}
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953155)-->"C:\WINDOWS\$NtUninstallKB953155$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB904942)-->"C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mozilla Firefox (2.0.0.13)-->C:\PROGRA~1\Mozilla Firefox\uninstall\helper.exe
MSN-->C:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nathalie Brooks Secrets of Treasure House fr-->"C:\Program Files\BoontyGames\Nathalie Brooks Secrets of Treasure House\unins000.exe"
Navigateur Orange-->C:\Program Files\Orange HSS\Uninstall\Browser\Shell.exe MainUninstall.shl
Navilog1 3.6.9-->"C:\Program Files\Navilog1\unins000.exe"
Nero - Burning Rom-->MsiExec.exe /X{A4D7B764-4140-11D4-88EB-0050DA3579C0}
Norton™ Security Scan-->MsiExec.exe /I{DA15D535-5E1D-4076-B520-8571346D6238}
OpenOffice.org 2.4-->MsiExec.exe /I{B6694BAA-7604-46AA-A41F-B5F1E6DADE7A}
Orange - Logiciels Internet-->C:\Program Files\Orange HSS\installation\core\Installgui.exe -u
P2P Networking-->C:\WINDOWS\system32\P2P Networking\P2P Networking.exe /UNINSTALL
PDF-to-Word 2.5 Demo-->C:\PROGRA~1\BLUESQ~1\demos\UNWISE.EXE /U C:\PROGRA~1\BLUESQ~1\demos\pdf2word.log
Pin High Country Club Golf-->C:\PROGRA~1\GAMEHO~1\PINHIG~1\UNWISE.EXE /U C:\PROGRA~1\GAMEHO~1\PINHIG~1\INSTALL.LOG
QUAD Registry Cleaner v.1.5.43-->C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\uninst.exe
QuickTime-->MsiExec.exe /I{08CA9554-B5FE-4313-938F-D4A417B81175}
Righteous Kill fr-->"C:\Program Files\BoontyGames\Righteous Kill\unins000.exe"
Safari-->MsiExec.exe /I{0AFC9710-5DD6-4C6A-BA52-91AE992B2C9D}
SecondLife (remove only)-->"C:\Program Files\SecondLife\uninst.exe" /P="SecondLife"
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update pour Microsoft .NET Framework 2.0 (KB928365)-->C:\WINDOWS\system32\msiexec.exe /promptrestart /uninstall {8056AC9E-49C5-4375-9ADE-B2F862C9DF51} /package {7131646D-CD3C-40F4-97B9-CD9E4E6262EF}
Shareaza version 2.2.5.0-->"C:\Program Files\Shareaza\Uninstall\unins000.exe"
skiStunt-->C:\Program Files\skiStunt\Uninstall.EXE /u:"Ski Stunt Simulator"
Sony ACID Pro 6.0-->MsiExec.exe /X{2956585F-DB2F-45C2-9363-F8CB0BB4F2A7}
Sony Media Manager 2.2-->MsiExec.exe /X{2B5A75F0-FD85-4094-AB00-94902398D192}
Sound Blaster Live! Value-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\Creative\SBLive2k\SBLive.isu"
Sound Blaster Live!-->C:\Program Files\Creative\Uninstall\CTUNINST.EXE /U:UNINST1.INI
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins000.exe"
Téléchargeur de FlatOut fr-->"C:\Program Files\Téléchargeur de FlatOut\unins000.exe"
Téléchargeur de Yetisports World Tour fr-->"C:\Program Files\Téléchargeur de Yetisports World Tour\unins000.exe"
The Count of Monte Cristo fr-->"C:\Program Files\BoontyGames\The Count of Monte Cristo\unins000.exe"
The Sims SnapCity fr-->"C:\Program Files\BoontyGames\The Sims SnapCity\unins000.exe"
UsbFix-->C:\Program Files\UsbFix\Uninstal.exe
VideoLAN VLC media player 0.8.6d-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
Windows Live installer-->MsiExec.exe /X{FD44E544-E7D0-4DBA-9FA0-8AE1A1300390}
Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}
Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}
Windows Live OneCare safety scanner-->RunDll32.exe "C:\Program Files\Windows Live Safety Center\wlscCore.dll",UninstallFunction WLSC_SCANNER_PRODUCT
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Vista 8.5 Béta-->C:\Program Files\windows live\messenger\Uninstal.exe
Winferno Registry Power Cleaner-->"C:\Program Files\Winferno\RegistryPowerCleaner\unins000.exe"
WinZip 11.1-->MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5}
Yahoo! Install Manager-->C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Toolbar avec bloqueur de fenêtres pop-up-->C:\PROGRA~1\Yahoo!\Common\unyt.exe
YesMessenger 2.2.04-->"C:\Program Files\YesMessenger\unins000.exe"
======Security center information======
AV: Avira AntiVir PersonalEdition
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\Microsoft SQL Server\80\Tools\Binn;C:\Program Files\Fichiers communs\GTK\2.0\bin;C:\Program Files\QuickTime\QTSystem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 47 Stepping 2, AuthenticAMD
"PROCESSOR_REVISION"=2f02
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
-----------------EOF-----------------
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 17:48
21 nov. 2008 à 17:48
ok
tu es infecté!
analyse ces 2 fichiers sur virus total et colle les rapports
C:\WINDOWS\system32\mmuod.dll
c:\windows\system32\xdcppd.dll
___________
puis
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
tu es infecté!
analyse ces 2 fichiers sur virus total et colle les rapports
C:\WINDOWS\system32\mmuod.dll
c:\windows\system32\xdcppd.dll
___________
puis
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 18:06
21 nov. 2008 à 18:06
ok fais ceci:
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
tu télécharge Lop S&D.exe sur ton Bureau.https://77b4795d-a-62cb3a1a-s-sites.googlegroups.com/site/eric71mespages/LopSD.exe?attachauth=ANoY7co3ntqUavpZ3q1BG-h4pc13vqDZmhcNeEPChtsyrgAykRbhE8bZzhk979EfQD4AgwtQUHCaQ7ZQwNYMo3_0kA8htAspckDJtu2K5t6J9z6dLW4fpZyH4FpFL1tVMBZ8H-KnN7afZ5vt-WxZRpnynk-a0XmV_Y0C0q6DxGEDKie1TnPT7gFoZnoCnspzBmbW6ZzxA4fNr3oEDlbelNZON-LjF8nOmQ%3D%3D&attredirects=2
* Double-clique dessus pour lancer l'installation
* Puis double-clique sur le raccourci Lop S&D présent sur ton Bureau
* Séléctionne la langue souhaitée , puis choisis l'option 1 (Recherche)
* Patiente jusqu'à la fin du scan
* Poste le rapport généré (C:\lopR.txt)
ouf ça marche, voici
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : Nathalie ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:102 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( 21/11/2008|18:14 )
--------------------\\ Listing des dossiers dans APPLIC~1
[02/11/2008|00:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/09/2008|16:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Absolutist
[10/10/2007|18:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[10/10/2007|18:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[04/11/2008|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[05/04/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[01/10/2007|20:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[16/12/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Escape From Paradise
[01/10/2008|14:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FarmFrenzy2
[24/09/2007|12:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[02/02/2008|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[18/09/2008|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[11/03/2008|22:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[08/11/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/10/2008|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[17/11/2008|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns
[04/01/2008|17:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[27/01/2008|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[15/03/2008|12:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[07/10/2007|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[10/10/2007|16:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winferno
[02/02/2008|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[02/11/2008|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[10/10/2007|16:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[24/09/2007|12:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[25/05/2008|13:10] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[25/05/2008|13:50] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[25/05/2008|13:10] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[25/05/2008|13:50] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[25/05/2008|13:09] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[24/09/2007|12:15] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[20/09/2008|10:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla
[02/02/2008|12:05] C:\DOCUME~1\mario\APPLIC~1\Adobe
[30/03/2008|16:22] C:\DOCUME~1\mario\APPLIC~1\Apple Computer
[24/09/2007|12:37] C:\DOCUME~1\mario\APPLIC~1\Google
[24/09/2007|12:22] C:\DOCUME~1\mario\APPLIC~1\Identities
[08/11/2007|16:35] C:\DOCUME~1\mario\APPLIC~1\InstallShield
[17/03/2008|18:48] C:\DOCUME~1\mario\APPLIC~1\LimeWire
[16/12/2007|19:40] C:\DOCUME~1\mario\APPLIC~1\Macromedia
[07/10/2007|17:14] C:\DOCUME~1\mario\APPLIC~1\Microsoft
[29/02/2008|19:04] C:\DOCUME~1\mario\APPLIC~1\Mozilla
[04/01/2008|17:56] C:\DOCUME~1\mario\APPLIC~1\Sony
[04/01/2008|17:20] C:\DOCUME~1\mario\APPLIC~1\Sony Setup
[22/12/2007|16:27] C:\DOCUME~1\mario\APPLIC~1\Sun
[23/07/2008|13:44] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Adobe
[04/10/2008|08:42] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Alawar
[23/08/2008|19:37] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Apple Computer
[16/06/2008|14:34] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Google
[16/06/2008|14:32] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Identities
[11/10/2008|17:00] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\LimeWire
[16/06/2008|14:35] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Macromedia
[23/09/2008|09:31] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Malwarebytes
[11/10/2008|17:32] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Microsoft
[04/10/2008|08:46] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Playrix Entertainment
[04/10/2008|08:46] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Righteous Kill
[27/07/2008|22:26] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Sun
[30/07/2008|23:49] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\vlc
[22/11/2007|16:11] C:\DOCUME~1\Nathalie\APPLIC~1\Adobe
[03/10/2008|17:36] C:\DOCUME~1\Nathalie\APPLIC~1\Alawar
[26/10/2008|19:23] C:\DOCUME~1\Nathalie\APPLIC~1\Apple Computer
[03/10/2008|18:09] C:\DOCUME~1\Nathalie\APPLIC~1\cerasus.media
[27/09/2008|18:18] C:\DOCUME~1\Nathalie\APPLIC~1\Friday's games
[17/11/2007|17:18] C:\DOCUME~1\Nathalie\APPLIC~1\Google
[18/03/2008|19:48] C:\DOCUME~1\Nathalie\APPLIC~1\Help
[25/09/2008|09:09] C:\DOCUME~1\Nathalie\APPLIC~1\HP
[17/11/2007|17:17] C:\DOCUME~1\Nathalie\APPLIC~1\Identities
[28/04/2008|05:22] C:\DOCUME~1\Nathalie\APPLIC~1\iMesh
[31/08/2008|13:15] C:\DOCUME~1\Nathalie\APPLIC~1\InstallShield
[22/11/2007|16:11] C:\DOCUME~1\Nathalie\APPLIC~1\InterTrust
[16/11/2008|11:18] C:\DOCUME~1\Nathalie\APPLIC~1\LimeWire
[17/11/2007|17:18] C:\DOCUME~1\Nathalie\APPLIC~1\Macromedia
[18/09/2008|18:22] C:\DOCUME~1\Nathalie\APPLIC~1\Malwarebytes
[30/09/2008|10:58] C:\DOCUME~1\Nathalie\APPLIC~1\Microsoft
[18/03/2008|14:12] C:\DOCUME~1\Nathalie\APPLIC~1\Mozilla
[03/10/2008|18:33] C:\DOCUME~1\Nathalie\APPLIC~1\Playrix Entertainment
[03/10/2008|18:08] C:\DOCUME~1\Nathalie\APPLIC~1\SecuROM
[20/05/2008|08:12] C:\DOCUME~1\Nathalie\APPLIC~1\Sun
[24/09/2007|12:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[21/11/2008 18:00][--ah-----] C:\WINDOWS\tasks\B030E27C93AF998C.job
[15/11/2008 17:41][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[26/05/2008 18:04][--ah-----] C:\WINDOWS\tasks\Microsoft_Hardware_Launch_vVX1000_exe.job
[12/11/2008 09:00][--a------] C:\WINDOWS\tasks\rpc.job
[21/11/2008 15:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[21/11/2008 16:18][--ah-----] C:\WINDOWS\tasks\SA.DAT
[02/03/2006 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( B030E27C93AF998C.job )=( c:\docume~1\yoshur~1\applic~1\admina~1\vcshowcamp.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[15/03/2008|12:21] C:\Program Files\1stbenison
[25/09/2008|16:25] C:\Program Files\absolutist.com
[30/09/2008|13:48] C:\Program Files\Absolutist_Games
[17/11/2008|18:41] C:\Program Files\ADMIN AMEN FILE
[22/11/2007|16:11] C:\Program Files\Adobe
[20/02/2008|15:27] C:\Program Files\Ahead
[31/10/2008|13:29] C:\Program Files\Alwil Software
[27/02/2008|00:21] C:\Program Files\aMSN
[12/10/2007|18:31] C:\Program Files\Anno 1701
[16/07/2008|19:18] C:\Program Files\Apple Software Update
[04/11/2008|19:12] C:\Program Files\Avira
[05/04/2008|22:19] C:\Program Files\Azureus
[16/11/2007|20:56] C:\Program Files\BlueSquad
[24/05/2008|11:28] C:\Program Files\Bonjour
[01/10/2007|20:41] C:\Program Files\Boonty
[05/10/2008|18:15] C:\Program Files\BoontyGames
[14/11/2008|20:37] C:\Program Files\Circle Developement
[24/09/2007|12:12] C:\Program Files\ComPlus Applications
[12/11/2008|13:52] C:\Program Files\Cossacks - The Art Of War
[08/10/2007|20:19] C:\Program Files\Creative
[29/09/2007|17:19] C:\Program Files\DDD Pool
[10/01/2008|19:58] C:\Program Files\DivX
[16/11/2008|12:15] C:\Program Files\Dofus
[29/09/2007|12:11] C:\Program Files\Dofus-Arena beta 2
[05/04/2008|22:50] C:\Program Files\eMule
[18/11/2008|18:53] C:\Program Files\Fichiers communs
[18/09/2008|09:19] C:\Program Files\FlashGet
[28/01/2008|20:08] C:\Program Files\Free Offers from Freeze.com
[10/10/2007|16:07] C:\Program Files\Freeze.com
[17/08/2008|23:26] C:\Program Files\FrostWire
[29/09/2007|13:07] C:\Program Files\GameHouse
[16/12/2007|19:35] C:\Program Files\Gamenext
[24/09/2007|12:36] C:\Program Files\Google
[07/10/2008|10:13] C:\Program Files\Guitar Pro 5
[05/04/2008|22:23] C:\Program Files\iMesh Applications
[12/03/2008|13:27] C:\Program Files\IMVU
[27/09/2008|16:35] C:\Program Files\InstallShield Installation Information
[08/11/2008|19:23] C:\Program Files\Internet Explorer
[16/07/2008|19:45] C:\Program Files\iPod
[16/07/2008|19:46] C:\Program Files\iTunes
[01/10/2008|19:17] C:\Program Files\Java
[11/01/2008|10:11] C:\Program Files\jibberish deluxe beta
[10/10/2007|18:26] C:\Program Files\L'EntraŒneur 2006
[28/07/2008|17:00] C:\Program Files\LimeWire
[05/02/2008|23:54] C:\Program Files\LitexMedia
[13/10/2007|22:32] C:\Program Files\Live Billiards
[09/11/2008|18:35] C:\Program Files\Malwarebytes' Anti-Malware
[03/11/2008|18:25] C:\Program Files\Messenger
[03/09/2008|11:06] C:\Program Files\Messenger Plus! Live
[03/11/2008|18:23] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[24/09/2007|12:16] C:\Program Files\microsoft frontpage
[26/08/2008|18:20] C:\Program Files\Microsoft Games
[19/09/2008|14:59] C:\Program Files\Microsoft Office
[06/01/2008|15:52] C:\Program Files\Microsoft SQL Server
[02/02/2008|18:23] C:\Program Files\Microsoft SQL Server Compact Edition
[19/09/2008|14:58] C:\Program Files\Microsoft.NET
[14/09/2008|12:58] C:\Program Files\Movie Maker
[19/11/2008|12:54] C:\Program Files\Mozilla Firefox
[04/12/2007|14:52] C:\Program Files\MSN
[24/09/2007|12:12] C:\Program Files\MSN Gaming Zone
[04/10/2008|08:48] C:\Program Files\MSN Messenger
[03/11/2008|17:25] C:\Program Files\MSXML 4.0
[18/11/2008|16:50] C:\Program Files\Navilog1
[24/09/2007|12:13] C:\Program Files\NetMeeting
[29/02/2008|15:00] C:\Program Files\Norton Security Scan
[24/09/2007|12:12] C:\Program Files\Online Services
[13/09/2008|11:11] C:\Program Files\OpenOffice.org 2.4
[26/05/2008|19:36] C:\Program Files\Orange HSS
[26/05/2008|17:54] C:\Program Files\Outlook Express
[21/11/2008|17:11] C:\Program Files\QUAD Utilities
[16/07/2008|19:38] C:\Program Files\QuickTime
[27/04/2008|03:52] C:\Program Files\Raveille
[29/09/2007|12:42] C:\Program Files\ReflexiveArcade
[14/11/2008|20:50] C:\Program Files\Safari
[26/01/2008|18:15] C:\Program Files\SAGEM
[12/05/2008|11:10] C:\Program Files\SecondLife
[25/05/2008|18:56] C:\Program Files\Securitoo
[24/09/2007|12:14] C:\Program Files\Services en ligne
[04/12/2007|22:56] C:\Program Files\Shareaza
[14/08/2008|12:03] C:\Program Files\skiStunt
[01/10/2007|21:23] C:\Program Files\Smart Projects
[04/01/2008|17:48] C:\Program Files\Sony
[04/01/2008|17:19] C:\Program Files\Sony Setup
[27/01/2008|12:50] C:\Program Files\Spybot - Search & Destroy
[01/10/2007|20:44] C:\Program Files\T‚l‚chargeur de FlatOut
[04/10/2008|15:50] C:\Program Files\T‚l‚chargeur de Yetisports World Tour
[18/11/2008|15:49] C:\Program Files\Trend Micro
[24/09/2007|12:22] C:\Program Files\Uninstall Information
[05/01/2008|19:40] C:\Program Files\VideoLAN
[27/08/2008|13:39] C:\Program Files\VirtualDJ
[04/01/2008|17:49] C:\Program Files\Vstplugins
[03/11/2008|18:22] C:\Program Files\Windows Live
[21/08/2008|19:26] C:\Program Files\Windows Live Safety Center
[26/05/2008|17:54] C:\Program Files\Windows Media Player
[24/09/2007|12:11] C:\Program Files\Windows NT
[24/09/2007|12:14] C:\Program Files\WindowsUpdate
[10/10/2007|16:08] C:\Program Files\Winferno
[01/10/2007|20:55] C:\Program Files\WinZip
[02/02/2008|18:49] C:\Program Files\WinZip22
[24/09/2007|12:16] C:\Program Files\xerox
[10/10/2007|16:06] C:\Program Files\Yahoo!
[25/11/2007|19:24] C:\Program Files\YesMessenger
[01/05/2008|11:37] C:\Program Files\?icrosoft.NET
[29/08/2008|14:01] C:\Program Files\??crosoft
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[22/11/2007|16:11] C:\Program Files\Fichiers communs\Adobe
[01/10/2007|20:42] C:\Program Files\Fichiers communs\BOONTY Shared
[15/09/2008|15:12] C:\Program Files\Fichiers communs\Designer
[08/11/2007|16:23] C:\Program Files\Fichiers communs\France Telecom
[27/04/2008|03:54] C:\Program Files\Fichiers communs\GTK
[24/09/2007|19:14] C:\Program Files\Fichiers communs\i4j_jres
[25/05/2008|18:57] C:\Program Files\Fichiers communs\InstallShield
[02/02/2008|18:52] C:\Program Files\Fichiers communs\InstallShield Shared
[09/10/2007|05:28] C:\Program Files\Fichiers communs\Java
[03/11/2008|18:20] C:\Program Files\Fichiers communs\Microsoft Shared
[24/09/2007|12:13] C:\Program Files\Fichiers communs\MSSoap
[16/12/2007|19:35] C:\Program Files\Fichiers communs\Oberon Media
[24/09/2007|13:49] C:\Program Files\Fichiers communs\ODBC
[24/09/2007|12:13] C:\Program Files\Fichiers communs\Services
[24/09/2007|13:49] C:\Program Files\Fichiers communs\SpeechEngines
[01/03/2008|17:48] C:\Program Files\Fichiers communs\Symantec Shared
[19/09/2008|14:58] C:\Program Files\Fichiers communs\System
[02/02/2008|18:16] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 29 Processes )
iexplore.exe ~ [PID:3888]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\Support Real.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\THUNK ABOUT.exe
C:\Program Files\admina~1
C:\Program Files\Circle Developement
C:\DOCUME~1\Nathalie\Cookies\nathalie@advertstream[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.adserver5[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@adultfriendfinder[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@advertising[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@advertising[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@advertising[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@game-advertising-online[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@adin.bigpoint[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@bigpoint[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@es.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@es.bigpoint[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@es.bigpoint[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@es.bigpoint[4].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.seafight.bigpoint[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.thepimps.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.xblaster.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr1.darkorbit.bigpoint[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr1.seafight.bigpoint[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.bigpoint[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@banner.cotedazurpalace[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@cotedazurpalace[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@cotedazurpalace[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@cotedazurpalace[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.cotedazurpalace[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@adopt.euroclick[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@pacificpoker[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@partygaming.122.2o7[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@partypoker[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@partypoker[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.seafight.bigpoint[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr1.seafight.bigpoint[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@32vegas[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@banner.32vegas[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@cachewww.32vegas[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@vegas-millions[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.vegas-millions[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.vegasaffiliates[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@2xmoinscher[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@cc.2xmoinscher[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.2xmoinscher[1].txt
C:\WINDOWS\Tasks\B030E27C93AF998C.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Flag Owns Live Grim"="C:\\Documents and Settings\\All Users\\Application Data\\Software rule flag owns\\Support Real.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-21 18:15:05
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:9][D:2]-> C:\DOCUME~1\Nathalie\LOCALS~1\Temp
[F:1661][D:0]-> C:\DOCUME~1\Nathalie\Cookies
[F:2671][D:6]-> C:\DOCUME~1\Nathalie\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 21/11/2008|18:16 - Option : [1]
--------------------\\ Fin du rapport a 18:16:05
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : Nathalie ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:102 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [1] ( 21/11/2008|18:14 )
--------------------\\ Listing des dossiers dans APPLIC~1
[02/11/2008|00:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/09/2008|16:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Absolutist
[10/10/2007|18:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[10/10/2007|18:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[04/11/2008|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[05/04/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[01/10/2007|20:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[16/12/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Escape From Paradise
[01/10/2008|14:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FarmFrenzy2
[24/09/2007|12:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[02/02/2008|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[18/09/2008|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[11/03/2008|22:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[08/11/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/10/2008|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[17/11/2008|18:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns
[04/01/2008|17:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[27/01/2008|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[15/03/2008|12:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[07/10/2007|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[10/10/2007|16:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winferno
[02/02/2008|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[02/11/2008|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[10/10/2007|16:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[24/09/2007|12:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[25/05/2008|13:10] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[25/05/2008|13:50] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[25/05/2008|13:10] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[25/05/2008|13:50] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[25/05/2008|13:09] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[24/09/2007|12:15] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[20/09/2008|10:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla
[02/02/2008|12:05] C:\DOCUME~1\mario\APPLIC~1\Adobe
[30/03/2008|16:22] C:\DOCUME~1\mario\APPLIC~1\Apple Computer
[24/09/2007|12:37] C:\DOCUME~1\mario\APPLIC~1\Google
[24/09/2007|12:22] C:\DOCUME~1\mario\APPLIC~1\Identities
[08/11/2007|16:35] C:\DOCUME~1\mario\APPLIC~1\InstallShield
[17/03/2008|18:48] C:\DOCUME~1\mario\APPLIC~1\LimeWire
[16/12/2007|19:40] C:\DOCUME~1\mario\APPLIC~1\Macromedia
[07/10/2007|17:14] C:\DOCUME~1\mario\APPLIC~1\Microsoft
[29/02/2008|19:04] C:\DOCUME~1\mario\APPLIC~1\Mozilla
[04/01/2008|17:56] C:\DOCUME~1\mario\APPLIC~1\Sony
[04/01/2008|17:20] C:\DOCUME~1\mario\APPLIC~1\Sony Setup
[22/12/2007|16:27] C:\DOCUME~1\mario\APPLIC~1\Sun
[23/07/2008|13:44] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Adobe
[04/10/2008|08:42] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Alawar
[23/08/2008|19:37] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Apple Computer
[16/06/2008|14:34] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Google
[16/06/2008|14:32] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Identities
[11/10/2008|17:00] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\LimeWire
[16/06/2008|14:35] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Macromedia
[23/09/2008|09:31] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Malwarebytes
[11/10/2008|17:32] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Microsoft
[04/10/2008|08:46] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Playrix Entertainment
[04/10/2008|08:46] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Righteous Kill
[27/07/2008|22:26] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Sun
[30/07/2008|23:49] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\vlc
[22/11/2007|16:11] C:\DOCUME~1\Nathalie\APPLIC~1\Adobe
[03/10/2008|17:36] C:\DOCUME~1\Nathalie\APPLIC~1\Alawar
[26/10/2008|19:23] C:\DOCUME~1\Nathalie\APPLIC~1\Apple Computer
[03/10/2008|18:09] C:\DOCUME~1\Nathalie\APPLIC~1\cerasus.media
[27/09/2008|18:18] C:\DOCUME~1\Nathalie\APPLIC~1\Friday's games
[17/11/2007|17:18] C:\DOCUME~1\Nathalie\APPLIC~1\Google
[18/03/2008|19:48] C:\DOCUME~1\Nathalie\APPLIC~1\Help
[25/09/2008|09:09] C:\DOCUME~1\Nathalie\APPLIC~1\HP
[17/11/2007|17:17] C:\DOCUME~1\Nathalie\APPLIC~1\Identities
[28/04/2008|05:22] C:\DOCUME~1\Nathalie\APPLIC~1\iMesh
[31/08/2008|13:15] C:\DOCUME~1\Nathalie\APPLIC~1\InstallShield
[22/11/2007|16:11] C:\DOCUME~1\Nathalie\APPLIC~1\InterTrust
[16/11/2008|11:18] C:\DOCUME~1\Nathalie\APPLIC~1\LimeWire
[17/11/2007|17:18] C:\DOCUME~1\Nathalie\APPLIC~1\Macromedia
[18/09/2008|18:22] C:\DOCUME~1\Nathalie\APPLIC~1\Malwarebytes
[30/09/2008|10:58] C:\DOCUME~1\Nathalie\APPLIC~1\Microsoft
[18/03/2008|14:12] C:\DOCUME~1\Nathalie\APPLIC~1\Mozilla
[03/10/2008|18:33] C:\DOCUME~1\Nathalie\APPLIC~1\Playrix Entertainment
[03/10/2008|18:08] C:\DOCUME~1\Nathalie\APPLIC~1\SecuROM
[20/05/2008|08:12] C:\DOCUME~1\Nathalie\APPLIC~1\Sun
[24/09/2007|12:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[21/11/2008 18:00][--ah-----] C:\WINDOWS\tasks\B030E27C93AF998C.job
[15/11/2008 17:41][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[26/05/2008 18:04][--ah-----] C:\WINDOWS\tasks\Microsoft_Hardware_Launch_vVX1000_exe.job
[12/11/2008 09:00][--a------] C:\WINDOWS\tasks\rpc.job
[21/11/2008 15:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[21/11/2008 16:18][--ah-----] C:\WINDOWS\tasks\SA.DAT
[02/03/2006 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
( B030E27C93AF998C.job )=( c:\docume~1\yoshur~1\applic~1\admina~1\vcshowcamp.exe )
--------------------\\ Listing des dossiers dans C:\Program Files
[15/03/2008|12:21] C:\Program Files\1stbenison
[25/09/2008|16:25] C:\Program Files\absolutist.com
[30/09/2008|13:48] C:\Program Files\Absolutist_Games
[17/11/2008|18:41] C:\Program Files\ADMIN AMEN FILE
[22/11/2007|16:11] C:\Program Files\Adobe
[20/02/2008|15:27] C:\Program Files\Ahead
[31/10/2008|13:29] C:\Program Files\Alwil Software
[27/02/2008|00:21] C:\Program Files\aMSN
[12/10/2007|18:31] C:\Program Files\Anno 1701
[16/07/2008|19:18] C:\Program Files\Apple Software Update
[04/11/2008|19:12] C:\Program Files\Avira
[05/04/2008|22:19] C:\Program Files\Azureus
[16/11/2007|20:56] C:\Program Files\BlueSquad
[24/05/2008|11:28] C:\Program Files\Bonjour
[01/10/2007|20:41] C:\Program Files\Boonty
[05/10/2008|18:15] C:\Program Files\BoontyGames
[14/11/2008|20:37] C:\Program Files\Circle Developement
[24/09/2007|12:12] C:\Program Files\ComPlus Applications
[12/11/2008|13:52] C:\Program Files\Cossacks - The Art Of War
[08/10/2007|20:19] C:\Program Files\Creative
[29/09/2007|17:19] C:\Program Files\DDD Pool
[10/01/2008|19:58] C:\Program Files\DivX
[16/11/2008|12:15] C:\Program Files\Dofus
[29/09/2007|12:11] C:\Program Files\Dofus-Arena beta 2
[05/04/2008|22:50] C:\Program Files\eMule
[18/11/2008|18:53] C:\Program Files\Fichiers communs
[18/09/2008|09:19] C:\Program Files\FlashGet
[28/01/2008|20:08] C:\Program Files\Free Offers from Freeze.com
[10/10/2007|16:07] C:\Program Files\Freeze.com
[17/08/2008|23:26] C:\Program Files\FrostWire
[29/09/2007|13:07] C:\Program Files\GameHouse
[16/12/2007|19:35] C:\Program Files\Gamenext
[24/09/2007|12:36] C:\Program Files\Google
[07/10/2008|10:13] C:\Program Files\Guitar Pro 5
[05/04/2008|22:23] C:\Program Files\iMesh Applications
[12/03/2008|13:27] C:\Program Files\IMVU
[27/09/2008|16:35] C:\Program Files\InstallShield Installation Information
[08/11/2008|19:23] C:\Program Files\Internet Explorer
[16/07/2008|19:45] C:\Program Files\iPod
[16/07/2008|19:46] C:\Program Files\iTunes
[01/10/2008|19:17] C:\Program Files\Java
[11/01/2008|10:11] C:\Program Files\jibberish deluxe beta
[10/10/2007|18:26] C:\Program Files\L'EntraŒneur 2006
[28/07/2008|17:00] C:\Program Files\LimeWire
[05/02/2008|23:54] C:\Program Files\LitexMedia
[13/10/2007|22:32] C:\Program Files\Live Billiards
[09/11/2008|18:35] C:\Program Files\Malwarebytes' Anti-Malware
[03/11/2008|18:25] C:\Program Files\Messenger
[03/09/2008|11:06] C:\Program Files\Messenger Plus! Live
[03/11/2008|18:23] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[24/09/2007|12:16] C:\Program Files\microsoft frontpage
[26/08/2008|18:20] C:\Program Files\Microsoft Games
[19/09/2008|14:59] C:\Program Files\Microsoft Office
[06/01/2008|15:52] C:\Program Files\Microsoft SQL Server
[02/02/2008|18:23] C:\Program Files\Microsoft SQL Server Compact Edition
[19/09/2008|14:58] C:\Program Files\Microsoft.NET
[14/09/2008|12:58] C:\Program Files\Movie Maker
[19/11/2008|12:54] C:\Program Files\Mozilla Firefox
[04/12/2007|14:52] C:\Program Files\MSN
[24/09/2007|12:12] C:\Program Files\MSN Gaming Zone
[04/10/2008|08:48] C:\Program Files\MSN Messenger
[03/11/2008|17:25] C:\Program Files\MSXML 4.0
[18/11/2008|16:50] C:\Program Files\Navilog1
[24/09/2007|12:13] C:\Program Files\NetMeeting
[29/02/2008|15:00] C:\Program Files\Norton Security Scan
[24/09/2007|12:12] C:\Program Files\Online Services
[13/09/2008|11:11] C:\Program Files\OpenOffice.org 2.4
[26/05/2008|19:36] C:\Program Files\Orange HSS
[26/05/2008|17:54] C:\Program Files\Outlook Express
[21/11/2008|17:11] C:\Program Files\QUAD Utilities
[16/07/2008|19:38] C:\Program Files\QuickTime
[27/04/2008|03:52] C:\Program Files\Raveille
[29/09/2007|12:42] C:\Program Files\ReflexiveArcade
[14/11/2008|20:50] C:\Program Files\Safari
[26/01/2008|18:15] C:\Program Files\SAGEM
[12/05/2008|11:10] C:\Program Files\SecondLife
[25/05/2008|18:56] C:\Program Files\Securitoo
[24/09/2007|12:14] C:\Program Files\Services en ligne
[04/12/2007|22:56] C:\Program Files\Shareaza
[14/08/2008|12:03] C:\Program Files\skiStunt
[01/10/2007|21:23] C:\Program Files\Smart Projects
[04/01/2008|17:48] C:\Program Files\Sony
[04/01/2008|17:19] C:\Program Files\Sony Setup
[27/01/2008|12:50] C:\Program Files\Spybot - Search & Destroy
[01/10/2007|20:44] C:\Program Files\T‚l‚chargeur de FlatOut
[04/10/2008|15:50] C:\Program Files\T‚l‚chargeur de Yetisports World Tour
[18/11/2008|15:49] C:\Program Files\Trend Micro
[24/09/2007|12:22] C:\Program Files\Uninstall Information
[05/01/2008|19:40] C:\Program Files\VideoLAN
[27/08/2008|13:39] C:\Program Files\VirtualDJ
[04/01/2008|17:49] C:\Program Files\Vstplugins
[03/11/2008|18:22] C:\Program Files\Windows Live
[21/08/2008|19:26] C:\Program Files\Windows Live Safety Center
[26/05/2008|17:54] C:\Program Files\Windows Media Player
[24/09/2007|12:11] C:\Program Files\Windows NT
[24/09/2007|12:14] C:\Program Files\WindowsUpdate
[10/10/2007|16:08] C:\Program Files\Winferno
[01/10/2007|20:55] C:\Program Files\WinZip
[02/02/2008|18:49] C:\Program Files\WinZip22
[24/09/2007|12:16] C:\Program Files\xerox
[10/10/2007|16:06] C:\Program Files\Yahoo!
[25/11/2007|19:24] C:\Program Files\YesMessenger
[01/05/2008|11:37] C:\Program Files\?icrosoft.NET
[29/08/2008|14:01] C:\Program Files\??crosoft
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[22/11/2007|16:11] C:\Program Files\Fichiers communs\Adobe
[01/10/2007|20:42] C:\Program Files\Fichiers communs\BOONTY Shared
[15/09/2008|15:12] C:\Program Files\Fichiers communs\Designer
[08/11/2007|16:23] C:\Program Files\Fichiers communs\France Telecom
[27/04/2008|03:54] C:\Program Files\Fichiers communs\GTK
[24/09/2007|19:14] C:\Program Files\Fichiers communs\i4j_jres
[25/05/2008|18:57] C:\Program Files\Fichiers communs\InstallShield
[02/02/2008|18:52] C:\Program Files\Fichiers communs\InstallShield Shared
[09/10/2007|05:28] C:\Program Files\Fichiers communs\Java
[03/11/2008|18:20] C:\Program Files\Fichiers communs\Microsoft Shared
[24/09/2007|12:13] C:\Program Files\Fichiers communs\MSSoap
[16/12/2007|19:35] C:\Program Files\Fichiers communs\Oberon Media
[24/09/2007|13:49] C:\Program Files\Fichiers communs\ODBC
[24/09/2007|12:13] C:\Program Files\Fichiers communs\Services
[24/09/2007|13:49] C:\Program Files\Fichiers communs\SpeechEngines
[01/03/2008|17:48] C:\Program Files\Fichiers communs\Symantec Shared
[19/09/2008|14:58] C:\Program Files\Fichiers communs\System
[02/02/2008|18:16] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 29 Processes )
iexplore.exe ~ [PID:3888]
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\Support Real.exe
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Software rule flag owns\THUNK ABOUT.exe
C:\Program Files\admina~1
C:\Program Files\Circle Developement
C:\DOCUME~1\Nathalie\Cookies\nathalie@advertstream[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.adserver5[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@adultfriendfinder[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@advertising[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@advertising[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@advertising[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@game-advertising-online[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@adin.bigpoint[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@bigpoint[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@es.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@es.bigpoint[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@es.bigpoint[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@es.bigpoint[4].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.seafight.bigpoint[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.thepimps.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.xblaster.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr1.darkorbit.bigpoint[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr1.seafight.bigpoint[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.bigpoint[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@banner.cotedazurpalace[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@cotedazurpalace[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@cotedazurpalace[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@cotedazurpalace[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.cotedazurpalace[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@adopt.euroclick[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@pacificpoker[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@partygaming.122.2o7[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@partypoker[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@partypoker[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.seafight.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr.seafight.bigpoint[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr1.seafight.bigpoint[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@fr1.seafight.bigpoint[3].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@32vegas[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@banner.32vegas[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@cachewww.32vegas[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@vegas-millions[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.vegas-millions[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.vegasaffiliates[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@2xmoinscher[1].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@cc.2xmoinscher[2].txt
C:\DOCUME~1\Nathalie\Cookies\nathalie@www.2xmoinscher[1].txt
C:\WINDOWS\Tasks\B030E27C93AF998C.job
--------------------\\ Verification du Registre
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Flag Owns Live Grim"="C:\\Documents and Settings\\All Users\\Application Data\\Software rule flag owns\\Support Real.exe"
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-21 18:15:05
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:9][D:2]-> C:\DOCUME~1\Nathalie\LOCALS~1\Temp
[F:1661][D:0]-> C:\DOCUME~1\Nathalie\Cookies
[F:2671][D:6]-> C:\DOCUME~1\Nathalie\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 21/11/2008|18:16 - Option : [1]
--------------------\\ Fin du rapport a 18:16:05
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 18:24
21 nov. 2008 à 18:24
lop sd
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
__________________
smit fraud fix (colle le rapport)
1/ telecharger :
http://siri.urz.free.fr/Fix/SmitfraudFix.php
2/ double clique sur smitfraudfix. puis sélectionne 1 et appuyer sur entrée afin de créer le rapport des infection présentes.
* Choisis cette fois ci l'Option 2 (Suppression)
* Ne ferme pas la fenêtre lors de la suppression !
* Poste le rapport généré (C:\lopR.txt)
__________________
smit fraud fix (colle le rapport)
1/ telecharger :
http://siri.urz.free.fr/Fix/SmitfraudFix.php
2/ double clique sur smitfraudfix. puis sélectionne 1 et appuyer sur entrée afin de créer le rapport des infection présentes.
lop -2-
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : Nathalie ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:102 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [2] ( 21/11/2008|18:34 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\Nathalie\Cookies\nathalie@advertising[1].txt
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[02/11/2008|00:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/09/2008|16:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Absolutist
[10/10/2007|18:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[10/10/2007|18:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[04/11/2008|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[05/04/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[01/10/2007|20:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[16/12/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Escape From Paradise
[01/10/2008|14:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FarmFrenzy2
[24/09/2007|12:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[02/02/2008|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[18/09/2008|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[11/03/2008|22:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[08/11/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/10/2008|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[04/01/2008|17:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[27/01/2008|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[15/03/2008|12:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[07/10/2007|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[10/10/2007|16:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winferno
[02/02/2008|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[02/11/2008|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[10/10/2007|16:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[24/09/2007|12:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[25/05/2008|13:10] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[25/05/2008|13:50] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[25/05/2008|13:10] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[25/05/2008|13:50] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[25/05/2008|13:09] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[24/09/2007|12:15] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[20/09/2008|10:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla
[02/02/2008|12:05] C:\DOCUME~1\mario\APPLIC~1\Adobe
[30/03/2008|16:22] C:\DOCUME~1\mario\APPLIC~1\Apple Computer
[24/09/2007|12:37] C:\DOCUME~1\mario\APPLIC~1\Google
[24/09/2007|12:22] C:\DOCUME~1\mario\APPLIC~1\Identities
[08/11/2007|16:35] C:\DOCUME~1\mario\APPLIC~1\InstallShield
[17/03/2008|18:48] C:\DOCUME~1\mario\APPLIC~1\LimeWire
[16/12/2007|19:40] C:\DOCUME~1\mario\APPLIC~1\Macromedia
[07/10/2007|17:14] C:\DOCUME~1\mario\APPLIC~1\Microsoft
[29/02/2008|19:04] C:\DOCUME~1\mario\APPLIC~1\Mozilla
[04/01/2008|17:56] C:\DOCUME~1\mario\APPLIC~1\Sony
[04/01/2008|17:20] C:\DOCUME~1\mario\APPLIC~1\Sony Setup
[22/12/2007|16:27] C:\DOCUME~1\mario\APPLIC~1\Sun
[23/07/2008|13:44] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Adobe
[04/10/2008|08:42] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Alawar
[23/08/2008|19:37] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Apple Computer
[16/06/2008|14:34] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Google
[16/06/2008|14:32] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Identities
[11/10/2008|17:00] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\LimeWire
[16/06/2008|14:35] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Macromedia
[23/09/2008|09:31] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Malwarebytes
[11/10/2008|17:32] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Microsoft
[04/10/2008|08:46] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Playrix Entertainment
[04/10/2008|08:46] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Righteous Kill
[27/07/2008|22:26] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Sun
[30/07/2008|23:49] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\vlc
[22/11/2007|16:11] C:\DOCUME~1\Nathalie\APPLIC~1\Adobe
[03/10/2008|17:36] C:\DOCUME~1\Nathalie\APPLIC~1\Alawar
[26/10/2008|19:23] C:\DOCUME~1\Nathalie\APPLIC~1\Apple Computer
[03/10/2008|18:09] C:\DOCUME~1\Nathalie\APPLIC~1\cerasus.media
[27/09/2008|18:18] C:\DOCUME~1\Nathalie\APPLIC~1\Friday's games
[17/11/2007|17:18] C:\DOCUME~1\Nathalie\APPLIC~1\Google
[18/03/2008|19:48] C:\DOCUME~1\Nathalie\APPLIC~1\Help
[25/09/2008|09:09] C:\DOCUME~1\Nathalie\APPLIC~1\HP
[17/11/2007|17:17] C:\DOCUME~1\Nathalie\APPLIC~1\Identities
[28/04/2008|05:22] C:\DOCUME~1\Nathalie\APPLIC~1\iMesh
[31/08/2008|13:15] C:\DOCUME~1\Nathalie\APPLIC~1\InstallShield
[22/11/2007|16:11] C:\DOCUME~1\Nathalie\APPLIC~1\InterTrust
[16/11/2008|11:18] C:\DOCUME~1\Nathalie\APPLIC~1\LimeWire
[17/11/2007|17:18] C:\DOCUME~1\Nathalie\APPLIC~1\Macromedia
[18/09/2008|18:22] C:\DOCUME~1\Nathalie\APPLIC~1\Malwarebytes
[30/09/2008|10:58] C:\DOCUME~1\Nathalie\APPLIC~1\Microsoft
[18/03/2008|14:12] C:\DOCUME~1\Nathalie\APPLIC~1\Mozilla
[03/10/2008|18:33] C:\DOCUME~1\Nathalie\APPLIC~1\Playrix Entertainment
[03/10/2008|18:08] C:\DOCUME~1\Nathalie\APPLIC~1\SecuROM
[20/05/2008|08:12] C:\DOCUME~1\Nathalie\APPLIC~1\Sun
[24/09/2007|12:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[15/11/2008 17:41][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[26/05/2008 18:04][--ah-----] C:\WINDOWS\tasks\Microsoft_Hardware_Launch_vVX1000_exe.job
[12/11/2008 09:00][--a------] C:\WINDOWS\tasks\rpc.job
[21/11/2008 15:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[21/11/2008 16:18][--ah-----] C:\WINDOWS\tasks\SA.DAT
[02/03/2006 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[15/03/2008|12:21] C:\Program Files\1stbenison
[25/09/2008|16:25] C:\Program Files\absolutist.com
[30/09/2008|13:48] C:\Program Files\Absolutist_Games
[22/11/2007|16:11] C:\Program Files\Adobe
[20/02/2008|15:27] C:\Program Files\Ahead
[31/10/2008|13:29] C:\Program Files\Alwil Software
[27/02/2008|00:21] C:\Program Files\aMSN
[12/10/2007|18:31] C:\Program Files\Anno 1701
[16/07/2008|19:18] C:\Program Files\Apple Software Update
[04/11/2008|19:12] C:\Program Files\Avira
[05/04/2008|22:19] C:\Program Files\Azureus
[16/11/2007|20:56] C:\Program Files\BlueSquad
[24/05/2008|11:28] C:\Program Files\Bonjour
[01/10/2007|20:41] C:\Program Files\Boonty
[05/10/2008|18:15] C:\Program Files\BoontyGames
[24/09/2007|12:12] C:\Program Files\ComPlus Applications
[12/11/2008|13:52] C:\Program Files\Cossacks - The Art Of War
[08/10/2007|20:19] C:\Program Files\Creative
[29/09/2007|17:19] C:\Program Files\DDD Pool
[10/01/2008|19:58] C:\Program Files\DivX
[16/11/2008|12:15] C:\Program Files\Dofus
[29/09/2007|12:11] C:\Program Files\Dofus-Arena beta 2
[05/04/2008|22:50] C:\Program Files\eMule
[18/11/2008|18:53] C:\Program Files\Fichiers communs
[18/09/2008|09:19] C:\Program Files\FlashGet
[28/01/2008|20:08] C:\Program Files\Free Offers from Freeze.com
[10/10/2007|16:07] C:\Program Files\Freeze.com
[17/08/2008|23:26] C:\Program Files\FrostWire
[29/09/2007|13:07] C:\Program Files\GameHouse
[16/12/2007|19:35] C:\Program Files\Gamenext
[24/09/2007|12:36] C:\Program Files\Google
[07/10/2008|10:13] C:\Program Files\Guitar Pro 5
[05/04/2008|22:23] C:\Program Files\iMesh Applications
[12/03/2008|13:27] C:\Program Files\IMVU
[27/09/2008|16:35] C:\Program Files\InstallShield Installation Information
[08/11/2008|19:23] C:\Program Files\Internet Explorer
[16/07/2008|19:45] C:\Program Files\iPod
[16/07/2008|19:46] C:\Program Files\iTunes
[01/10/2008|19:17] C:\Program Files\Java
[11/01/2008|10:11] C:\Program Files\jibberish deluxe beta
[10/10/2007|18:26] C:\Program Files\L'EntraŒneur 2006
[28/07/2008|17:00] C:\Program Files\LimeWire
[05/02/2008|23:54] C:\Program Files\LitexMedia
[13/10/2007|22:32] C:\Program Files\Live Billiards
[09/11/2008|18:35] C:\Program Files\Malwarebytes' Anti-Malware
[03/11/2008|18:25] C:\Program Files\Messenger
[03/09/2008|11:06] C:\Program Files\Messenger Plus! Live
[03/11/2008|18:23] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[24/09/2007|12:16] C:\Program Files\microsoft frontpage
[26/08/2008|18:20] C:\Program Files\Microsoft Games
[19/09/2008|14:59] C:\Program Files\Microsoft Office
[06/01/2008|15:52] C:\Program Files\Microsoft SQL Server
[02/02/2008|18:23] C:\Program Files\Microsoft SQL Server Compact Edition
[19/09/2008|14:58] C:\Program Files\Microsoft.NET
[14/09/2008|12:58] C:\Program Files\Movie Maker
[19/11/2008|12:54] C:\Program Files\Mozilla Firefox
[04/12/2007|14:52] C:\Program Files\MSN
[24/09/2007|12:12] C:\Program Files\MSN Gaming Zone
[04/10/2008|08:48] C:\Program Files\MSN Messenger
[03/11/2008|17:25] C:\Program Files\MSXML 4.0
[18/11/2008|16:50] C:\Program Files\Navilog1
[24/09/2007|12:13] C:\Program Files\NetMeeting
[29/02/2008|15:00] C:\Program Files\Norton Security Scan
[24/09/2007|12:12] C:\Program Files\Online Services
[13/09/2008|11:11] C:\Program Files\OpenOffice.org 2.4
[26/05/2008|19:36] C:\Program Files\Orange HSS
[26/05/2008|17:54] C:\Program Files\Outlook Express
[21/11/2008|17:11] C:\Program Files\QUAD Utilities
[16/07/2008|19:38] C:\Program Files\QuickTime
[27/04/2008|03:52] C:\Program Files\Raveille
[29/09/2007|12:42] C:\Program Files\ReflexiveArcade
[14/11/2008|20:50] C:\Program Files\Safari
[26/01/2008|18:15] C:\Program Files\SAGEM
[12/05/2008|11:10] C:\Program Files\SecondLife
[25/05/2008|18:56] C:\Program Files\Securitoo
[24/09/2007|12:14] C:\Program Files\Services en ligne
[04/12/2007|22:56] C:\Program Files\Shareaza
[14/08/2008|12:03] C:\Program Files\skiStunt
[01/10/2007|21:23] C:\Program Files\Smart Projects
[04/01/2008|17:48] C:\Program Files\Sony
[04/01/2008|17:19] C:\Program Files\Sony Setup
[27/01/2008|12:50] C:\Program Files\Spybot - Search & Destroy
[01/10/2007|20:44] C:\Program Files\T‚l‚chargeur de FlatOut
[04/10/2008|15:50] C:\Program Files\T‚l‚chargeur de Yetisports World Tour
[18/11/2008|15:49] C:\Program Files\Trend Micro
[24/09/2007|12:22] C:\Program Files\Uninstall Information
[05/01/2008|19:40] C:\Program Files\VideoLAN
[27/08/2008|13:39] C:\Program Files\VirtualDJ
[04/01/2008|17:49] C:\Program Files\Vstplugins
[03/11/2008|18:22] C:\Program Files\Windows Live
[21/08/2008|19:26] C:\Program Files\Windows Live Safety Center
[26/05/2008|17:54] C:\Program Files\Windows Media Player
[24/09/2007|12:11] C:\Program Files\Windows NT
[24/09/2007|12:14] C:\Program Files\WindowsUpdate
[10/10/2007|16:08] C:\Program Files\Winferno
[01/10/2007|20:55] C:\Program Files\WinZip
[02/02/2008|18:49] C:\Program Files\WinZip22
[24/09/2007|12:16] C:\Program Files\xerox
[10/10/2007|16:06] C:\Program Files\Yahoo!
[25/11/2007|19:24] C:\Program Files\YesMessenger
[01/05/2008|11:37] C:\Program Files\?icrosoft.NET
[29/08/2008|14:01] C:\Program Files\??crosoft
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[22/11/2007|16:11] C:\Program Files\Fichiers communs\Adobe
[01/10/2007|20:42] C:\Program Files\Fichiers communs\BOONTY Shared
[15/09/2008|15:12] C:\Program Files\Fichiers communs\Designer
[08/11/2007|16:23] C:\Program Files\Fichiers communs\France Telecom
[27/04/2008|03:54] C:\Program Files\Fichiers communs\GTK
[24/09/2007|19:14] C:\Program Files\Fichiers communs\i4j_jres
[25/05/2008|18:57] C:\Program Files\Fichiers communs\InstallShield
[02/02/2008|18:52] C:\Program Files\Fichiers communs\InstallShield Shared
[09/10/2007|05:28] C:\Program Files\Fichiers communs\Java
[03/11/2008|18:20] C:\Program Files\Fichiers communs\Microsoft Shared
[24/09/2007|12:13] C:\Program Files\Fichiers communs\MSSoap
[16/12/2007|19:35] C:\Program Files\Fichiers communs\Oberon Media
[24/09/2007|13:49] C:\Program Files\Fichiers communs\ODBC
[24/09/2007|12:13] C:\Program Files\Fichiers communs\Services
[24/09/2007|13:49] C:\Program Files\Fichiers communs\SpeechEngines
[01/03/2008|17:48] C:\Program Files\Fichiers communs\Symantec Shared
[19/09/2008|14:58] C:\Program Files\Fichiers communs\System
[02/02/2008|18:16] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 28 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-21 18:36:06
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:9][D:2]-> C:\DOCUME~1\Nathalie\LOCALS~1\Temp
[F:1619][D:0]-> C:\DOCUME~1\Nathalie\Cookies
[F:2839][D:6]-> C:\DOCUME~1\Nathalie\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 21/11/2008|18:16 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 21/11/2008|18:32 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 21/11/2008|18:36 - Option : [2]
--------------------\\ Fin du rapport a 18:36:58
puis smitfraudfix -1-
SmitFraudFix v2.376
Rapport fait à 18:39:41,43, 21/11/2008
Executé à partir de C:\Documents and Settings\Nathalie\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal
»»»»»»»»»»»»»»»»»»»»»»»» Process
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\system32\cmd.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Nathalie\Bureau\SmitfraudFix\Policies.exe
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\wuauclt.exe
»»»»»»»»»»»»»»»»»»»»»»»» hosts
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Nathalie
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Nathalie\LOCALS~1\Temp
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Nathalie\Application Data
»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Nathalie\Favoris
»»»»»»»»»»»»»»»»»»»»»»»» Bureau
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
C:\Program Files\Google\googletoolbar1.dll PRESENT !
»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues
»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau
»»»»»»»»»»»»»»»»»»»»»»»» o4Patch
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
o4Patch
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» VACFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="xdcppd.dll"
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» RK
»»»»»»»»»»»»»»»»»»»»»»»» DNS
Description: Carte réseau Fast Ethernet PCI Realtek RTL8139 Family - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
--------------------\\ Lop S&D 4.2.4-9c XP/Vista
Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 2
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3200+ )
BIOS : Phoenix - Award BIOS v6.00PG
USER : Nathalie ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Activated)
C:\ (Local Disk) - NTFS - Total:149 Go (Free:102 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)
F:\ (USB)
G:\ (USB)
H:\ (USB)
J:\ (USB)
"C:\Lop SD" ( MAJ : 01-11-2008|16:30 )
Option : [2] ( 21/11/2008|18:34 )
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION
Supprime! - C:\DOCUME~1\Nathalie\Cookies\nathalie@advertising[1].txt
\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
--------------------\\ Listing des dossiers dans APPLIC~1
[02/11/2008|00:14] C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft
[25/09/2008|16:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Absolutist
[10/10/2007|18:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[10/10/2007|18:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[04/11/2008|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[05/04/2008|22:21] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Azureus
[01/10/2007|20:42] C:\DOCUME~1\ALLUSE~1\APPLIC~1\BOONTY
[16/12/2007|19:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Escape From Paradise
[01/10/2008|14:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\FarmFrenzy2
[24/09/2007|12:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[02/02/2008|18:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[18/09/2008|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[11/03/2008|22:04] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Messenger Plus!
[08/11/2008|19:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[03/10/2008|18:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MumboJumbo
[04/01/2008|17:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
[27/01/2008|17:47] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[15/03/2008|12:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[07/10/2007|17:17] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[10/10/2007|16:10] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winferno
[02/02/2008|18:50] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WinZip
[02/11/2008|19:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[10/10/2007|16:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Yahoo! Companion
[24/09/2007|12:15] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[25/05/2008|13:10] C:\DOCUME~1\INVIT~1\APPLIC~1\Adobe
[25/05/2008|13:50] C:\DOCUME~1\INVIT~1\APPLIC~1\Google
[25/05/2008|13:10] C:\DOCUME~1\INVIT~1\APPLIC~1\Identities
[25/05/2008|13:50] C:\DOCUME~1\INVIT~1\APPLIC~1\Macromedia
[25/05/2008|13:09] C:\DOCUME~1\INVIT~1\APPLIC~1\Microsoft
[24/09/2007|12:15] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[20/09/2008|10:35] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla
[02/02/2008|12:05] C:\DOCUME~1\mario\APPLIC~1\Adobe
[30/03/2008|16:22] C:\DOCUME~1\mario\APPLIC~1\Apple Computer
[24/09/2007|12:37] C:\DOCUME~1\mario\APPLIC~1\Google
[24/09/2007|12:22] C:\DOCUME~1\mario\APPLIC~1\Identities
[08/11/2007|16:35] C:\DOCUME~1\mario\APPLIC~1\InstallShield
[17/03/2008|18:48] C:\DOCUME~1\mario\APPLIC~1\LimeWire
[16/12/2007|19:40] C:\DOCUME~1\mario\APPLIC~1\Macromedia
[07/10/2007|17:14] C:\DOCUME~1\mario\APPLIC~1\Microsoft
[29/02/2008|19:04] C:\DOCUME~1\mario\APPLIC~1\Mozilla
[04/01/2008|17:56] C:\DOCUME~1\mario\APPLIC~1\Sony
[04/01/2008|17:20] C:\DOCUME~1\mario\APPLIC~1\Sony Setup
[22/12/2007|16:27] C:\DOCUME~1\mario\APPLIC~1\Sun
[23/07/2008|13:44] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Adobe
[04/10/2008|08:42] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Alawar
[23/08/2008|19:37] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Apple Computer
[16/06/2008|14:34] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Google
[16/06/2008|14:32] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Identities
[11/10/2008|17:00] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\LimeWire
[16/06/2008|14:35] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Macromedia
[23/09/2008|09:31] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Malwarebytes
[11/10/2008|17:32] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Microsoft
[04/10/2008|08:46] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Playrix Entertainment
[04/10/2008|08:46] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Righteous Kill
[27/07/2008|22:26] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\Sun
[30/07/2008|23:49] C:\DOCUME~1\MARIO~1.HUR\APPLIC~1\vlc
[22/11/2007|16:11] C:\DOCUME~1\Nathalie\APPLIC~1\Adobe
[03/10/2008|17:36] C:\DOCUME~1\Nathalie\APPLIC~1\Alawar
[26/10/2008|19:23] C:\DOCUME~1\Nathalie\APPLIC~1\Apple Computer
[03/10/2008|18:09] C:\DOCUME~1\Nathalie\APPLIC~1\cerasus.media
[27/09/2008|18:18] C:\DOCUME~1\Nathalie\APPLIC~1\Friday's games
[17/11/2007|17:18] C:\DOCUME~1\Nathalie\APPLIC~1\Google
[18/03/2008|19:48] C:\DOCUME~1\Nathalie\APPLIC~1\Help
[25/09/2008|09:09] C:\DOCUME~1\Nathalie\APPLIC~1\HP
[17/11/2007|17:17] C:\DOCUME~1\Nathalie\APPLIC~1\Identities
[28/04/2008|05:22] C:\DOCUME~1\Nathalie\APPLIC~1\iMesh
[31/08/2008|13:15] C:\DOCUME~1\Nathalie\APPLIC~1\InstallShield
[22/11/2007|16:11] C:\DOCUME~1\Nathalie\APPLIC~1\InterTrust
[16/11/2008|11:18] C:\DOCUME~1\Nathalie\APPLIC~1\LimeWire
[17/11/2007|17:18] C:\DOCUME~1\Nathalie\APPLIC~1\Macromedia
[18/09/2008|18:22] C:\DOCUME~1\Nathalie\APPLIC~1\Malwarebytes
[30/09/2008|10:58] C:\DOCUME~1\Nathalie\APPLIC~1\Microsoft
[18/03/2008|14:12] C:\DOCUME~1\Nathalie\APPLIC~1\Mozilla
[03/10/2008|18:33] C:\DOCUME~1\Nathalie\APPLIC~1\Playrix Entertainment
[03/10/2008|18:08] C:\DOCUME~1\Nathalie\APPLIC~1\SecuROM
[20/05/2008|08:12] C:\DOCUME~1\Nathalie\APPLIC~1\Sun
[24/09/2007|12:15] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks
[15/11/2008 17:41][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[26/05/2008 18:04][--ah-----] C:\WINDOWS\tasks\Microsoft_Hardware_Launch_vVX1000_exe.job
[12/11/2008 09:00][--a------] C:\WINDOWS\tasks\rpc.job
[21/11/2008 15:00][--a------] C:\WINDOWS\tasks\Norton Security Scan.job
[21/11/2008 16:18][--ah-----] C:\WINDOWS\tasks\SA.DAT
[02/03/2006 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing des dossiers dans C:\Program Files
[15/03/2008|12:21] C:\Program Files\1stbenison
[25/09/2008|16:25] C:\Program Files\absolutist.com
[30/09/2008|13:48] C:\Program Files\Absolutist_Games
[22/11/2007|16:11] C:\Program Files\Adobe
[20/02/2008|15:27] C:\Program Files\Ahead
[31/10/2008|13:29] C:\Program Files\Alwil Software
[27/02/2008|00:21] C:\Program Files\aMSN
[12/10/2007|18:31] C:\Program Files\Anno 1701
[16/07/2008|19:18] C:\Program Files\Apple Software Update
[04/11/2008|19:12] C:\Program Files\Avira
[05/04/2008|22:19] C:\Program Files\Azureus
[16/11/2007|20:56] C:\Program Files\BlueSquad
[24/05/2008|11:28] C:\Program Files\Bonjour
[01/10/2007|20:41] C:\Program Files\Boonty
[05/10/2008|18:15] C:\Program Files\BoontyGames
[24/09/2007|12:12] C:\Program Files\ComPlus Applications
[12/11/2008|13:52] C:\Program Files\Cossacks - The Art Of War
[08/10/2007|20:19] C:\Program Files\Creative
[29/09/2007|17:19] C:\Program Files\DDD Pool
[10/01/2008|19:58] C:\Program Files\DivX
[16/11/2008|12:15] C:\Program Files\Dofus
[29/09/2007|12:11] C:\Program Files\Dofus-Arena beta 2
[05/04/2008|22:50] C:\Program Files\eMule
[18/11/2008|18:53] C:\Program Files\Fichiers communs
[18/09/2008|09:19] C:\Program Files\FlashGet
[28/01/2008|20:08] C:\Program Files\Free Offers from Freeze.com
[10/10/2007|16:07] C:\Program Files\Freeze.com
[17/08/2008|23:26] C:\Program Files\FrostWire
[29/09/2007|13:07] C:\Program Files\GameHouse
[16/12/2007|19:35] C:\Program Files\Gamenext
[24/09/2007|12:36] C:\Program Files\Google
[07/10/2008|10:13] C:\Program Files\Guitar Pro 5
[05/04/2008|22:23] C:\Program Files\iMesh Applications
[12/03/2008|13:27] C:\Program Files\IMVU
[27/09/2008|16:35] C:\Program Files\InstallShield Installation Information
[08/11/2008|19:23] C:\Program Files\Internet Explorer
[16/07/2008|19:45] C:\Program Files\iPod
[16/07/2008|19:46] C:\Program Files\iTunes
[01/10/2008|19:17] C:\Program Files\Java
[11/01/2008|10:11] C:\Program Files\jibberish deluxe beta
[10/10/2007|18:26] C:\Program Files\L'EntraŒneur 2006
[28/07/2008|17:00] C:\Program Files\LimeWire
[05/02/2008|23:54] C:\Program Files\LitexMedia
[13/10/2007|22:32] C:\Program Files\Live Billiards
[09/11/2008|18:35] C:\Program Files\Malwarebytes' Anti-Malware
[03/11/2008|18:25] C:\Program Files\Messenger
[03/09/2008|11:06] C:\Program Files\Messenger Plus! Live
[03/11/2008|18:23] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[24/09/2007|12:16] C:\Program Files\microsoft frontpage
[26/08/2008|18:20] C:\Program Files\Microsoft Games
[19/09/2008|14:59] C:\Program Files\Microsoft Office
[06/01/2008|15:52] C:\Program Files\Microsoft SQL Server
[02/02/2008|18:23] C:\Program Files\Microsoft SQL Server Compact Edition
[19/09/2008|14:58] C:\Program Files\Microsoft.NET
[14/09/2008|12:58] C:\Program Files\Movie Maker
[19/11/2008|12:54] C:\Program Files\Mozilla Firefox
[04/12/2007|14:52] C:\Program Files\MSN
[24/09/2007|12:12] C:\Program Files\MSN Gaming Zone
[04/10/2008|08:48] C:\Program Files\MSN Messenger
[03/11/2008|17:25] C:\Program Files\MSXML 4.0
[18/11/2008|16:50] C:\Program Files\Navilog1
[24/09/2007|12:13] C:\Program Files\NetMeeting
[29/02/2008|15:00] C:\Program Files\Norton Security Scan
[24/09/2007|12:12] C:\Program Files\Online Services
[13/09/2008|11:11] C:\Program Files\OpenOffice.org 2.4
[26/05/2008|19:36] C:\Program Files\Orange HSS
[26/05/2008|17:54] C:\Program Files\Outlook Express
[21/11/2008|17:11] C:\Program Files\QUAD Utilities
[16/07/2008|19:38] C:\Program Files\QuickTime
[27/04/2008|03:52] C:\Program Files\Raveille
[29/09/2007|12:42] C:\Program Files\ReflexiveArcade
[14/11/2008|20:50] C:\Program Files\Safari
[26/01/2008|18:15] C:\Program Files\SAGEM
[12/05/2008|11:10] C:\Program Files\SecondLife
[25/05/2008|18:56] C:\Program Files\Securitoo
[24/09/2007|12:14] C:\Program Files\Services en ligne
[04/12/2007|22:56] C:\Program Files\Shareaza
[14/08/2008|12:03] C:\Program Files\skiStunt
[01/10/2007|21:23] C:\Program Files\Smart Projects
[04/01/2008|17:48] C:\Program Files\Sony
[04/01/2008|17:19] C:\Program Files\Sony Setup
[27/01/2008|12:50] C:\Program Files\Spybot - Search & Destroy
[01/10/2007|20:44] C:\Program Files\T‚l‚chargeur de FlatOut
[04/10/2008|15:50] C:\Program Files\T‚l‚chargeur de Yetisports World Tour
[18/11/2008|15:49] C:\Program Files\Trend Micro
[24/09/2007|12:22] C:\Program Files\Uninstall Information
[05/01/2008|19:40] C:\Program Files\VideoLAN
[27/08/2008|13:39] C:\Program Files\VirtualDJ
[04/01/2008|17:49] C:\Program Files\Vstplugins
[03/11/2008|18:22] C:\Program Files\Windows Live
[21/08/2008|19:26] C:\Program Files\Windows Live Safety Center
[26/05/2008|17:54] C:\Program Files\Windows Media Player
[24/09/2007|12:11] C:\Program Files\Windows NT
[24/09/2007|12:14] C:\Program Files\WindowsUpdate
[10/10/2007|16:08] C:\Program Files\Winferno
[01/10/2007|20:55] C:\Program Files\WinZip
[02/02/2008|18:49] C:\Program Files\WinZip22
[24/09/2007|12:16] C:\Program Files\xerox
[10/10/2007|16:06] C:\Program Files\Yahoo!
[25/11/2007|19:24] C:\Program Files\YesMessenger
[01/05/2008|11:37] C:\Program Files\?icrosoft.NET
[29/08/2008|14:01] C:\Program Files\??crosoft
--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs
[22/11/2007|16:11] C:\Program Files\Fichiers communs\Adobe
[01/10/2007|20:42] C:\Program Files\Fichiers communs\BOONTY Shared
[15/09/2008|15:12] C:\Program Files\Fichiers communs\Designer
[08/11/2007|16:23] C:\Program Files\Fichiers communs\France Telecom
[27/04/2008|03:54] C:\Program Files\Fichiers communs\GTK
[24/09/2007|19:14] C:\Program Files\Fichiers communs\i4j_jres
[25/05/2008|18:57] C:\Program Files\Fichiers communs\InstallShield
[02/02/2008|18:52] C:\Program Files\Fichiers communs\InstallShield Shared
[09/10/2007|05:28] C:\Program Files\Fichiers communs\Java
[03/11/2008|18:20] C:\Program Files\Fichiers communs\Microsoft Shared
[24/09/2007|12:13] C:\Program Files\Fichiers communs\MSSoap
[16/12/2007|19:35] C:\Program Files\Fichiers communs\Oberon Media
[24/09/2007|13:49] C:\Program Files\Fichiers communs\ODBC
[24/09/2007|12:13] C:\Program Files\Fichiers communs\Services
[24/09/2007|13:49] C:\Program Files\Fichiers communs\SpeechEngines
[01/03/2008|17:48] C:\Program Files\Fichiers communs\Symantec Shared
[19/09/2008|14:58] C:\Program Files\Fichiers communs\System
[02/02/2008|18:16] C:\Program Files\Fichiers communs\WindowsLiveInstaller
--------------------\\ Process
( 28 Processes )
... OK !
--------------------\\ Recherche avec S_Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Recherche de Fichiers / Dossiers Lop
Aucun fichier / dossier Lop trouvé !
--------------------\\ Verification du Registre
..... OK !
--------------------\\ Verification du fichier Hosts
Fichier Hosts PROPRE
--------------------\\ Recherche de fichiers avec Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-21 18:36:06
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0
--------------------\\ Recherche d'autres infections
Aucune autre infection trouvée !
[F:9][D:2]-> C:\DOCUME~1\Nathalie\LOCALS~1\Temp
[F:1619][D:0]-> C:\DOCUME~1\Nathalie\Cookies
[F:2839][D:6]-> C:\DOCUME~1\Nathalie\LOCALS~1\TEMPOR~1\content.IE5
1 - "C:\Lop SD\LopR_1.txt" - 21/11/2008|18:16 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 21/11/2008|18:32 - Option : [2]
3 - "C:\Lop SD\LopR_3.txt" - 21/11/2008|18:36 - Option : [2]
--------------------\\ Fin du rapport a 18:36:58
puis smitfraudfix -1-
SmitFraudFix v2.376
Rapport fait à 18:39:41,43, 21/11/2008
Executé à partir de C:\Documents and Settings\Nathalie\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal
»»»»»»»»»»»»»»»»»»»»»»»» Process
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\system32\cmd.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Nathalie\Bureau\SmitfraudFix\Policies.exe
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\wuauclt.exe
»»»»»»»»»»»»»»»»»»»»»»»» hosts
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Nathalie
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Nathalie\LOCALS~1\Temp
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Nathalie\Application Data
»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Nathalie\Favoris
»»»»»»»»»»»»»»»»»»»»»»»» Bureau
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
C:\Program Files\Google\googletoolbar1.dll PRESENT !
»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues
»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau
»»»»»»»»»»»»»»»»»»»»»»»» o4Patch
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
o4Patch
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» VACFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="xdcppd.dll"
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» RK
»»»»»»»»»»»»»»»»»»»»»»»» DNS
Description: Carte réseau Fast Ethernet PCI Realtek RTL8139 Family - Miniport d'ordonnancement de paquets
DNS Server Search Order: 192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 18:43
21 nov. 2008 à 18:43
redémarre en mode sans échec (en appuyant sur F8 ou suppr, ou F5 au démarrage en général) puis lance smitfraudfix , sélectionne l'option 2 et appuyer sur entrée pour commencer la désinfection. lorsque le programme demande si tu veut nettoyer le registre mets oui en tapant 0 et entrée (colle le rapport dans ton prochain message)
______________
puis remets un rapport rsit et dis tes soucis
______________
puis remets un rapport rsit et dis tes soucis
Excuses pour le temps, je suis tombé en panne de souris.
Mon plus gros souci reste le même qu'au début, je n'ai toujours aucun icones sur le bureau et suis obligée de faire le gestionnaire de tache pour ouvrir une fenetre.
Sinon, voici rapport smitfraudfix, nettoyage puis Rsit
SmitFraudFix v2.376
Rapport fait à 18:54:17,67, 21/11/2008
Executé à partir de C:\Documents and Settings\Nathalie\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus
»»»»»»»»»»»»»»»»»»»»»»»» hosts
127.0.0.1 localhost
»»»»»»»»»»»»»»»»»»»»»»»» VACFix
VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix
S!Ri's WS2Fix: LSP not Found.
»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix
GenericRenosFix by S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés
C:\Program Files\Google\googletoolbar1.dll supprimé
»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» RK
»»»»»»»»»»»»»»»»»»»»»»»» DNS
HKLM\SYSTEM\CCS\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre
Nettoyage terminé.
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
Logfile of random's system information tool 1.04 (written by random/random)
Run by Nathalie at 2008-11-21 19:04:49
Microsoft Windows XP Édition familiale Service Pack 2
System drive C: has 105 GB (69%) free of 153 GB
Total RAM: 958 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:05:00, on 21/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Safe mode
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\Nathalie\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Nathalie.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\RunOnce: [GrpConv] grpconv -o
O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [QUAD Scheduler] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe
O4 - HKCU\..\Run: [QUAD Windows service] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Registry Cleaner.exe -h
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O20 - AppInit_DLLs: xdcppd.dll
O21 - SSODL: pkMXrrFog - {5C0434E1-F6AE-9E4B-A8B3-229277981D42} - C:\WINDOWS\system32\mmuod.dll
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: OneStepSearch Service - Unknown owner - C:\Program Files\OneStep\onestep.exe (file missing)
Mon plus gros souci reste le même qu'au début, je n'ai toujours aucun icones sur le bureau et suis obligée de faire le gestionnaire de tache pour ouvrir une fenetre.
Sinon, voici rapport smitfraudfix, nettoyage puis Rsit
SmitFraudFix v2.376
Rapport fait à 18:54:17,67, 21/11/2008
Executé à partir de C:\Documents and Settings\Nathalie\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus
»»»»»»»»»»»»»»»»»»»»»»»» hosts
127.0.0.1 localhost
»»»»»»»»»»»»»»»»»»»»»»»» VACFix
VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix
S!Ri's WS2Fix: LSP not Found.
»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix
GenericRenosFix by S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés
C:\Program Files\Google\googletoolbar1.dll supprimé
»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» 404Fix
404Fix
Credits: Malware Analysis & Diagnostic
Code: S!Ri
»»»»»»»»»»»»»»»»»»»»»»»» RK
»»»»»»»»»»»»»»»»»»»»»»»» DNS
HKLM\SYSTEM\CCS\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\..\{99EF983E-10C5-4E95-BD1F-C10F40F64943}: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre
Nettoyage terminé.
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
Logfile of random's system information tool 1.04 (written by random/random)
Run by Nathalie at 2008-11-21 19:04:49
Microsoft Windows XP Édition familiale Service Pack 2
System drive C: has 105 GB (69%) free of 153 GB
Total RAM: 958 MB (76% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:05:00, on 21/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Safe mode
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\Nathalie\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Nathalie.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\Orange HSS\SearchURLHook\SearchPageURL.dll
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\RunOnce: [GrpConv] grpconv -o
O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [QUAD Scheduler] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Scheduler.exe
O4 - HKCU\..\Run: [QUAD Windows service] C:\Program Files\QUAD Utilities\QUAD Registry Cleaner\QUAD Registry Cleaner.exe -h
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
O20 - AppInit_DLLs: xdcppd.dll
O21 - SSODL: pkMXrrFog - {5C0434E1-F6AE-9E4B-A8B3-229277981D42} - C:\WINDOWS\system32\mmuod.dll
O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: InstallShield Licensing Service - Macrovision - C:\Program Files\Fichiers communs\InstallShield Shared\Service\InstallShield Licensing Service.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: OneStepSearch Service - Unknown owner - C:\Program Files\OneStep\onestep.exe (file missing)
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 20:36
21 nov. 2008 à 20:36
c'est toi ici???
http://www.commentcamarche.net/forum/affich 9200753 rond rouge avc une croix dedans?page=3§ion=faq
________________
utilise pour supprimer tes traces
CCLEANER: (lance un nettoyage et répare 3 fois le registre) sans installer la barre yahoo
(dans les options puis avancé :désactive la case: effacer les fichiers de plus de 48 heures)
https://www.malekal.com/tutoriel-ccleaner/
https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
___________________
refais navilog pour voir:
Fais un clic droit sur ce lien : (IL-MAFIOSO)
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).
Laisse-toi guider. Au menu principal, choisis 1 et valides.
(ne fais pas le choix 2,3 ou 4 sans notre avis/accord)
Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche comme demandé, le blocnote va s'ouvrir.
Copie-colle l'intégralité dans une réponse. Referme le blocnote.
Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)
http://www.commentcamarche.net/forum/affich 9200753 rond rouge avc une croix dedans?page=3§ion=faq
________________
utilise pour supprimer tes traces
CCLEANER: (lance un nettoyage et répare 3 fois le registre) sans installer la barre yahoo
(dans les options puis avancé :désactive la case: effacer les fichiers de plus de 48 heures)
https://www.malekal.com/tutoriel-ccleaner/
https://www.01net.com/telecharger/windows/Utilitaire/nettoyeurs_et_installeurs/fiches/32599.html
___________________
refais navilog pour voir:
Fais un clic droit sur ce lien : (IL-MAFIOSO)
http://perso.orange.fr/il.mafioso/Navifix/Navilog1.exe
Enregistrer la cible (du lien) sous... et enregistre-le sur ton bureau.
Ensuite double clique sur navilog1.exe pour lancer l'installation.
Une fois l'installation terminée, le fix s'exécutera automatiquement.
(Si ce n'est pas le cas, double-clique sur le raccourci Navilog1 présent sur le bureau).
Laisse-toi guider. Au menu principal, choisis 1 et valides.
(ne fais pas le choix 2,3 ou 4 sans notre avis/accord)
Patiente jusqu'au message :
*** Analyse Termine le ..... ***
Appuie sur une touche comme demandé, le blocnote va s'ouvrir.
Copie-colle l'intégralité dans une réponse. Referme le blocnote.
Le rapport est en outre sauvegardé à la racine du disque (fixnavi.txt)
oui c'est bien moi, le rond rouge avec 1 croix dedans. Après tout allait bien je n'avais plus cette alerte et une dizaine de jours après j'ai eu de la pub (pas beaucoup) et une fenetre incessante pour telecharger un antihameçonnage donc je suis retournée sur le site (cf coucky le 18/11 à 17h45) puis on m'a fait faire combofix et c'est a ce moment qu'en redemarrant je n'ai plus rien eu.
CCLeaner ; j'ai fait un nettoyage mais je n'ai pas trouvé "effacer les fichiers ...", les options avancé étaient éteintes et je n'ai pas eu de rapport.
Sinon voici celui de navilog
CCLeaner ; j'ai fait un nettoyage mais je n'ai pas trouvé "effacer les fichiers ...", les options avancé étaient éteintes et je n'ai pas eu de rapport.
Sinon voici celui de navilog
oui c'est bien moi, le rond rouge avec 1 croix dedans. Après tout allait bien je n'avais plus cette alerte et une dizaine de jours après j'ai eu de la pub (pas beaucoup) et une fenetre incessante pour telecharger un antihameçonnage donc je suis retournée sur le site (cf coucky le 18/11 à 17h45) puis on m'a fait faire combofix et c'est a ce moment qu'en redemarrant je n'ai plus rien eu.
CCLeaner ; j'ai fait un nettoyage mais je n'ai pas trouvé "effacer les fichiers ...", les options avancé étaient éteintes et je n'ai pas eu de rapport.
Sinon voici celui de navilog
CCLeaner ; j'ai fait un nettoyage mais je n'ai pas trouvé "effacer les fichiers ...", les options avancé étaient éteintes et je n'ai pas eu de rapport.
Sinon voici celui de navilog
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
21 nov. 2008 à 21:10
21 nov. 2008 à 21:10
il est ou le rapport navilog?
excuses, navilog n'est pas terminé, j'ai voulu anticiper sur le forum et donc j'attend le rapport (je mange) et puis je te l'envoie
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
22 nov. 2008 à 14:50
22 nov. 2008 à 14:50
lance ce logiciel:
http://download.iobit.com/AWCSetup.exe
________________
1/Dans gestionnaire des taches (appuyer sur CONTROLE + ALT + SUPPR) vous allez dans processus et trouver le fichier nommé " Sysu.exe " sélectionnez le et faites terminer le processus.
2/Une fois que vous retrouvez votre bureau n'oubliez pas de supprimer ce fichier (ceci est un programme mais pas un virus)
3/Dans msconfig (demarrer puis executer et tape msconfig) aller dans l'onglet Démarage et désélectionner le fichier qui devrais s'appeler " Msbb " appliquer et redémarrer votre pc...
____________________
analyse ces 6 fichiers sur virus total et colle les rapports https://www.virustotal.com/gui/
c:\windows\system32\dtiljwvi.dll
c:\windows\system32\tylpagxp.dll
c:\windows\system32\lcropmci.exe
c:\windows\system32\CA.tmp
c:\windows\system32\B1.tmp
c:\windows\system32\A9.tmp
________________
je me mets ceci de coté:
c:\windows\system32\imglpkoy.exe
c:\windows\system32\dtiljwvi.dll
c:\windows\system32\tylpagxp.dll
c:\windows\system32\lcropmci.exe
c:\documents and settings\All Users\Application Data\Software rule flag owns
c:\program files\BoontyGames
c:\program files\OneStep
c:\windows\system32\CA.tmp
c:\windows\system32\B1.tmp
c:\windows\system32\A9.tmp
c:\windows\system32\B3.tmp
c:\windows\system32\97.tmp
c:\windows\system32\3B.tmp
c:\windows\system32\29.tmp
c:\windows\system32\139.tmp
c:\windows\system32\27.tmp
c:\windows\system32\xcfmvd.dll
c:\windows\system32\cedeajec.dll
http://download.iobit.com/AWCSetup.exe
________________
1/Dans gestionnaire des taches (appuyer sur CONTROLE + ALT + SUPPR) vous allez dans processus et trouver le fichier nommé " Sysu.exe " sélectionnez le et faites terminer le processus.
2/Une fois que vous retrouvez votre bureau n'oubliez pas de supprimer ce fichier (ceci est un programme mais pas un virus)
3/Dans msconfig (demarrer puis executer et tape msconfig) aller dans l'onglet Démarage et désélectionner le fichier qui devrais s'appeler " Msbb " appliquer et redémarrer votre pc...
____________________
analyse ces 6 fichiers sur virus total et colle les rapports https://www.virustotal.com/gui/
c:\windows\system32\dtiljwvi.dll
c:\windows\system32\tylpagxp.dll
c:\windows\system32\lcropmci.exe
c:\windows\system32\CA.tmp
c:\windows\system32\B1.tmp
c:\windows\system32\A9.tmp
________________
je me mets ceci de coté:
c:\windows\system32\imglpkoy.exe
c:\windows\system32\dtiljwvi.dll
c:\windows\system32\tylpagxp.dll
c:\windows\system32\lcropmci.exe
c:\documents and settings\All Users\Application Data\Software rule flag owns
c:\program files\BoontyGames
c:\program files\OneStep
c:\windows\system32\CA.tmp
c:\windows\system32\B1.tmp
c:\windows\system32\A9.tmp
c:\windows\system32\B3.tmp
c:\windows\system32\97.tmp
c:\windows\system32\3B.tmp
c:\windows\system32\29.tmp
c:\windows\system32\139.tmp
c:\windows\system32\27.tmp
c:\windows\system32\xcfmvd.dll
c:\windows\system32\cedeajec.dll
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
22 nov. 2008 à 19:44
22 nov. 2008 à 19:44
Télécharges AD-Remover ( de Cyrildu17 / C_XX ) sur ton bureau :
http://sd-1.archive-host.com/membres/up/16506160323759868/AD-R.exe
/!\ Déconnectes toi et fermes toutes applications en cours
● Double clique sur le programme d'installation , et installe le dans son emplacement par défaut. ( C:\Program files )
● Double clique sur l'icône Ad-removersituée sur ton bureau
● Au menu principal choisi l'option "A"
● Postes le rapport qui apparait à la fin .
( le rapport est sauvegardé aussi sous C:\Ad-report(date).log )
(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
Note :
"Process.exe", une composante de l'outil, est détecté par certains antivirus (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.
Mis entre de mauvaises mains, cet utilitaire pourrait arrêter des logiciels de sécurité (Antivirus, Firewall...) d'où l'alerte émise par ces antivirus.
________________
analyse ces 6 fichiers sur virus total et colle les rapports https://www.virustotal.com/gui/
c:\windows\system32\dtiljwvi.dll
c:\windows\system32\tylpagxp.dll
c:\windows\system32\lcropmci.exe
c:\windows\system32\CA.tmp
c:\windows\system32\B1.tmp
c:\windows\system32\A9.tmp
j'en ai que 3 trouvé
ca
Suomi | ihMdI | | עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español | English
Virustotal est un service qui analyse les fichiers suspects et facilite la détection rapide des virus, vers, chevaux de Troie et toutes sortes de malwares détectés par les moteurs antivirus. Plus d'informations...
Fichier A9.tmp reçu le 2008.11.19 17:11:45 (CET)
Situation actuelle: terminé
Résultat: 21/36 (58.33%)
Formaté Impression des résultats
Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 - - -
AntiVir - - JOKE/BSOD.B
Authentium - - W32/Joke.XO
Avast - - Win32:Trojan-gen {Other}
AVG - - -
BitDefender - - -
CAT-QuickHeal - - -
ClamAV - - -
DrWeb - - -
eSafe - - Suspicious File
eTrust-Vet - - Win32/Bugnraw.IT
Ewido - - -
F-Prot - - W32/Joke.XO
F-Secure - - Rogue:W32/XPAntivirus.GHL
Fortinet - - Joke/Bluescreen
GData - - Win32:Trojan-gen {Other}
Ikarus - - -
K7AntiVirus - - Trojan.Win32.Malware.1
Kaspersky - - -
McAfee - - Generic FakeAlert.a
Microsoft - - -
NOD32 - - Win32/Joke.Bluescreen.C
Norman - - W32/Bluescreen.A
Panda - - -
PCTools - - Application.BluSOD
Prevx1 - - -
Rising - - -
SecureWeb-Gateway - - Joke.BSOD.B
Sophos - - Troj/FakeAle-FY
Sunbelt - - Porn-Dialer.Win32.CapreDeam.BL (vf)
Symantec - - Joke.Blusod
TheHacker - - Adware/Fakealert
TrendMicro - - -
VBA32 - - -
ViRobot - - Joke.Bluescreen.60928
VirusBuster - - Joke.Bluescreen.A
Information additionnelle
MD5: 538f9ead95eba12134d95b4fe7082331
SHA1: 527c50b92b5cededdd5b7e3edda71cb13d108dac
SHA256: a416bab39037854c14540edaaf80cff7b5f2e9db31eee235527574e8dedd54e6
SHA512: 4631ff7cf868348585ee0e26591b95be3ee8b232c7980f5013f4464f285b0fbdef41794c44cb8653d6fb6dc815c0c0a9f4af780bfeb9b23d2f4c3bdc62bf4581
ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.
VirusTotal © Hispasec Sistemas - Blog - Contact: info@virustotal.com - Terms of Service & Privacy Policy
b1
Suomi | ihMdI | | עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español | English
Virustotal est un service qui analyse les fichiers suspects et facilite la détection rapide des virus, vers, chevaux de Troie et toutes sortes de malwares détectés par les moteurs antivirus. Plus d'informations...
Fichier A9.tmp reçu le 2008.11.19 17:11:45 (CET)
Situation actuelle: terminé
Résultat: 21/36 (58.33%)
Formaté Impression des résultats
Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 - - -
AntiVir - - JOKE/BSOD.B
Authentium - - W32/Joke.XO
Avast - - Win32:Trojan-gen {Other}
AVG - - -
BitDefender - - -
CAT-QuickHeal - - -
ClamAV - - -
DrWeb - - -
eSafe - - Suspicious File
eTrust-Vet - - Win32/Bugnraw.IT
Ewido - - -
F-Prot - - W32/Joke.XO
F-Secure - - Rogue:W32/XPAntivirus.GHL
Fortinet - - Joke/Bluescreen
GData - - Win32:Trojan-gen {Other}
Ikarus - - -
K7AntiVirus - - Trojan.Win32.Malware.1
Kaspersky - - -
McAfee - - Generic FakeAlert.a
Microsoft - - -
NOD32 - - Win32/Joke.Bluescreen.C
Norman - - W32/Bluescreen.A
Panda - - -
PCTools - - Application.BluSOD
Prevx1 - - -
Rising - - -
SecureWeb-Gateway - - Joke.BSOD.B
Sophos - - Troj/FakeAle-FY
Sunbelt - - Porn-Dialer.Win32.CapreDeam.BL (vf)
Symantec - - Joke.Blusod
TheHacker - - Adware/Fakealert
TrendMicro - - -
VBA32 - - -
ViRobot - - Joke.Bluescreen.60928
VirusBuster - - Joke.Bluescreen.A
Information additionnelle
MD5: 538f9ead95eba12134d95b4fe7082331
SHA1: 527c50b92b5cededdd5b7e3edda71cb13d108dac
SHA256: a416bab39037854c14540edaaf80cff7b5f2e9db31eee235527574e8dedd54e6
SHA512: 4631ff7cf868348585ee0e26591b95be3ee8b232c7980f5013f4464f285b0fbdef41794c44cb8653d6fb6dc815c0c0a9f4af780bfeb9b23d2f4c3bdc62bf4581
ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.
VirusTotal © Hispasec Sistemas - Blog - Contact: info@virustotal.com - Terms of Service & Privacy Policy
a9
Suomi | ihMdI | | עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español | English
Virustotal est un service qui analyse les fichiers suspects et facilite la détection rapide des virus, vers, chevaux de Troie et toutes sortes de malwares détectés par les moteurs antivirus. Plus d'informations...
Fichier A9.tmp reçu le 2008.11.19 17:11:45 (CET)
Situation actuelle: terminé
Résultat: 21/36 (58.33%)
Formaté Impression des résultats
Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 - - -
AntiVir - - JOKE/BSOD.B
Authentium - - W32/Joke.XO
Avast - - Win32:Trojan-gen {Other}
AVG - - -
BitDefender - - -
CAT-QuickHeal - - -
ClamAV - - -
DrWeb - - -
eSafe - - Suspicious File
eTrust-Vet - - Win32/Bugnraw.IT
Ewido - - -
F-Prot - - W32/Joke.XO
F-Secure - - Rogue:W32/XPAntivirus.GHL
Fortinet - - Joke/Bluescreen
GData - - Win32:Trojan-gen {Other}
Ikarus - - -
K7AntiVirus - - Trojan.Win32.Malware.1
Kaspersky - - -
McAfee - - Generic FakeAlert.a
Microsoft - - -
NOD32 - - Win32/Joke.Bluescreen.C
Norman - - W32/Bluescreen.A
Panda - - -
PCTools - - Application.BluSOD
Prevx1 - - -
Rising - - -
SecureWeb-Gateway - - Joke.BSOD.B
Sophos - - Troj/FakeAle-FY
Sunbelt - - Porn-Dialer.Win32.CapreDeam.BL (vf)
Symantec - - Joke.Blusod
TheHacker - - Adware/Fakealert
TrendMicro - - -
VBA32 - - -
ViRobot - - Joke.Bluescreen.60928
VirusBuster - - Joke.Bluescreen.A
Information additionnelle
MD5: 538f9ead95eba12134d95b4fe7082331
SHA1: 527c50b92b5cededdd5b7e3edda71cb13d108dac
SHA256: a416bab39037854c14540edaaf80cff7b5f2e9db31eee235527574e8dedd54e6
SHA512: 4631ff7cf868348585ee0e26591b95be3ee8b232c7980f5013f4464f285b0fbdef41794c44cb8653d6fb6dc815c0c0a9f4af780bfeb9b23d2f4c3bdc62bf4581
ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.
VirusTotal © Hispasec Sistemas - Blog - Contact: info@virustotal.com - Terms of Service & Privacy Policy
ca
Suomi | ihMdI | | עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español | English
Virustotal est un service qui analyse les fichiers suspects et facilite la détection rapide des virus, vers, chevaux de Troie et toutes sortes de malwares détectés par les moteurs antivirus. Plus d'informations...
Fichier A9.tmp reçu le 2008.11.19 17:11:45 (CET)
Situation actuelle: terminé
Résultat: 21/36 (58.33%)
Formaté Impression des résultats
Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 - - -
AntiVir - - JOKE/BSOD.B
Authentium - - W32/Joke.XO
Avast - - Win32:Trojan-gen {Other}
AVG - - -
BitDefender - - -
CAT-QuickHeal - - -
ClamAV - - -
DrWeb - - -
eSafe - - Suspicious File
eTrust-Vet - - Win32/Bugnraw.IT
Ewido - - -
F-Prot - - W32/Joke.XO
F-Secure - - Rogue:W32/XPAntivirus.GHL
Fortinet - - Joke/Bluescreen
GData - - Win32:Trojan-gen {Other}
Ikarus - - -
K7AntiVirus - - Trojan.Win32.Malware.1
Kaspersky - - -
McAfee - - Generic FakeAlert.a
Microsoft - - -
NOD32 - - Win32/Joke.Bluescreen.C
Norman - - W32/Bluescreen.A
Panda - - -
PCTools - - Application.BluSOD
Prevx1 - - -
Rising - - -
SecureWeb-Gateway - - Joke.BSOD.B
Sophos - - Troj/FakeAle-FY
Sunbelt - - Porn-Dialer.Win32.CapreDeam.BL (vf)
Symantec - - Joke.Blusod
TheHacker - - Adware/Fakealert
TrendMicro - - -
VBA32 - - -
ViRobot - - Joke.Bluescreen.60928
VirusBuster - - Joke.Bluescreen.A
Information additionnelle
MD5: 538f9ead95eba12134d95b4fe7082331
SHA1: 527c50b92b5cededdd5b7e3edda71cb13d108dac
SHA256: a416bab39037854c14540edaaf80cff7b5f2e9db31eee235527574e8dedd54e6
SHA512: 4631ff7cf868348585ee0e26591b95be3ee8b232c7980f5013f4464f285b0fbdef41794c44cb8653d6fb6dc815c0c0a9f4af780bfeb9b23d2f4c3bdc62bf4581
ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.
VirusTotal © Hispasec Sistemas - Blog - Contact: info@virustotal.com - Terms of Service & Privacy Policy
b1
Suomi | ihMdI | | עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español | English
Virustotal est un service qui analyse les fichiers suspects et facilite la détection rapide des virus, vers, chevaux de Troie et toutes sortes de malwares détectés par les moteurs antivirus. Plus d'informations...
Fichier A9.tmp reçu le 2008.11.19 17:11:45 (CET)
Situation actuelle: terminé
Résultat: 21/36 (58.33%)
Formaté Impression des résultats
Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 - - -
AntiVir - - JOKE/BSOD.B
Authentium - - W32/Joke.XO
Avast - - Win32:Trojan-gen {Other}
AVG - - -
BitDefender - - -
CAT-QuickHeal - - -
ClamAV - - -
DrWeb - - -
eSafe - - Suspicious File
eTrust-Vet - - Win32/Bugnraw.IT
Ewido - - -
F-Prot - - W32/Joke.XO
F-Secure - - Rogue:W32/XPAntivirus.GHL
Fortinet - - Joke/Bluescreen
GData - - Win32:Trojan-gen {Other}
Ikarus - - -
K7AntiVirus - - Trojan.Win32.Malware.1
Kaspersky - - -
McAfee - - Generic FakeAlert.a
Microsoft - - -
NOD32 - - Win32/Joke.Bluescreen.C
Norman - - W32/Bluescreen.A
Panda - - -
PCTools - - Application.BluSOD
Prevx1 - - -
Rising - - -
SecureWeb-Gateway - - Joke.BSOD.B
Sophos - - Troj/FakeAle-FY
Sunbelt - - Porn-Dialer.Win32.CapreDeam.BL (vf)
Symantec - - Joke.Blusod
TheHacker - - Adware/Fakealert
TrendMicro - - -
VBA32 - - -
ViRobot - - Joke.Bluescreen.60928
VirusBuster - - Joke.Bluescreen.A
Information additionnelle
MD5: 538f9ead95eba12134d95b4fe7082331
SHA1: 527c50b92b5cededdd5b7e3edda71cb13d108dac
SHA256: a416bab39037854c14540edaaf80cff7b5f2e9db31eee235527574e8dedd54e6
SHA512: 4631ff7cf868348585ee0e26591b95be3ee8b232c7980f5013f4464f285b0fbdef41794c44cb8653d6fb6dc815c0c0a9f4af780bfeb9b23d2f4c3bdc62bf4581
ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.
VirusTotal © Hispasec Sistemas - Blog - Contact: info@virustotal.com - Terms of Service & Privacy Policy
a9
Suomi | ihMdI | | עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español | English
Virustotal est un service qui analyse les fichiers suspects et facilite la détection rapide des virus, vers, chevaux de Troie et toutes sortes de malwares détectés par les moteurs antivirus. Plus d'informations...
Fichier A9.tmp reçu le 2008.11.19 17:11:45 (CET)
Situation actuelle: terminé
Résultat: 21/36 (58.33%)
Formaté Impression des résultats
Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 - - -
AntiVir - - JOKE/BSOD.B
Authentium - - W32/Joke.XO
Avast - - Win32:Trojan-gen {Other}
AVG - - -
BitDefender - - -
CAT-QuickHeal - - -
ClamAV - - -
DrWeb - - -
eSafe - - Suspicious File
eTrust-Vet - - Win32/Bugnraw.IT
Ewido - - -
F-Prot - - W32/Joke.XO
F-Secure - - Rogue:W32/XPAntivirus.GHL
Fortinet - - Joke/Bluescreen
GData - - Win32:Trojan-gen {Other}
Ikarus - - -
K7AntiVirus - - Trojan.Win32.Malware.1
Kaspersky - - -
McAfee - - Generic FakeAlert.a
Microsoft - - -
NOD32 - - Win32/Joke.Bluescreen.C
Norman - - W32/Bluescreen.A
Panda - - -
PCTools - - Application.BluSOD
Prevx1 - - -
Rising - - -
SecureWeb-Gateway - - Joke.BSOD.B
Sophos - - Troj/FakeAle-FY
Sunbelt - - Porn-Dialer.Win32.CapreDeam.BL (vf)
Symantec - - Joke.Blusod
TheHacker - - Adware/Fakealert
TrendMicro - - -
VBA32 - - -
ViRobot - - Joke.Bluescreen.60928
VirusBuster - - Joke.Bluescreen.A
Information additionnelle
MD5: 538f9ead95eba12134d95b4fe7082331
SHA1: 527c50b92b5cededdd5b7e3edda71cb13d108dac
SHA256: a416bab39037854c14540edaaf80cff7b5f2e9db31eee235527574e8dedd54e6
SHA512: 4631ff7cf868348585ee0e26591b95be3ee8b232c7980f5013f4464f285b0fbdef41794c44cb8653d6fb6dc815c0c0a9f4af780bfeb9b23d2f4c3bdc62bf4581
ATTENTION: VirusTotal est un service gratuit offert par Hispasec Sistemas. Il n'y a aucune garantie quant à la disponibilité et la continuité de ce service. Bien que le taux de détection permis par l'utilisation de multiples moteurs antivirus soit bien supérieur à celui offert par seulement un produit, ces résultats NE garantissent PAS qu'un fichier est sans danger. Il n'y a actuellement aucune solution qui offre un taux d'efficacité de 100% pour la détection des virus et malwares.
VirusTotal © Hispasec Sistemas - Blog - Contact: info@virustotal.com - Terms of Service & Privacy Policy
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
22 nov. 2008 à 20:50
22 nov. 2008 à 20:50
télécharge OTMoveIt
http://oldtimer.geekstogo.com/OTMoveIt3.exe (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste instruction for items to be moved.
(bien mettre :files )
:files
c:\windows\system32\imglpkoy.exe
c:\windows\system32\dtiljwvi.dll
c:\windows\system32\tylpagxp.dll
c:\windows\system32\lcropmci.exe
c:\documents and settings\All Users\Application Data\Software rule flag owns
c:\program files\BoontyGames
c:\program files\OneStep
c:\windows\system32\CA.tmp
c:\windows\system32\B1.tmp
c:\windows\system32\A9.tmp
c:\windows\system32\B3.tmp
c:\windows\system32\97.tmp
c:\windows\system32\3B.tmp
c:\windows\system32\29.tmp
c:\windows\system32\139.tmp
c:\windows\system32\27.tmp
c:\windows\system32\xcfmvd.dll
c:\windows\system32\cedeajec.dll
clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.
il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.
http://oldtimer.geekstogo.com/OTMoveIt3.exe (de Old_Timer) sur ton Bureau.
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste instruction for items to be moved.
(bien mettre :files )
:files
c:\windows\system32\imglpkoy.exe
c:\windows\system32\dtiljwvi.dll
c:\windows\system32\tylpagxp.dll
c:\windows\system32\lcropmci.exe
c:\documents and settings\All Users\Application Data\Software rule flag owns
c:\program files\BoontyGames
c:\program files\OneStep
c:\windows\system32\CA.tmp
c:\windows\system32\B1.tmp
c:\windows\system32\A9.tmp
c:\windows\system32\B3.tmp
c:\windows\system32\97.tmp
c:\windows\system32\3B.tmp
c:\windows\system32\29.tmp
c:\windows\system32\139.tmp
c:\windows\system32\27.tmp
c:\windows\system32\xcfmvd.dll
c:\windows\system32\cedeajec.dll
clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.
il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.
ou ça
========== FILES ==========
File/Folder c:\windows\system32\imglpkoy.exe not found.
File/Folder c:\windows\system32\dtiljwvi.dll not found.
File/Folder c:\windows\system32\tylpagxp.dll not found.
File/Folder c:\windows\system32\lcropmci.exe not found.
File/Folder c:\documents and settings\All Users\Application Data\Software rule flag owns not found.
File/Folder c:\program files\BoontyGames not found.
File/Folder c:\program files\OneStep not found.
File/Folder c:\windows\system32\CA.tmp not found.
File/Folder c:\windows\system32\B1.tmp not found.
File/Folder c:\windows\system32\A9.tmp not found.
File/Folder c:\windows\system32\B3.tmp not found.
File/Folder c:\windows\system32\97.tmp not found.
File/Folder c:\windows\system32\3B.tmp not found.
File/Folder c:\windows\system32\29.tmp not found.
File/Folder c:\windows\system32\139.tmp not found.
File/Folder c:\windows\system32\27.tmp not found.
File/Folder c:\windows\system32\xcfmvd.dll not found.
File/Folder c:\windows\system32\cedeajec.dll not found.
OTMoveIt3 by OldTimer - Version 1.0.7.1 log created on 11222008_223122
========== FILES ==========
File/Folder c:\windows\system32\imglpkoy.exe not found.
File/Folder c:\windows\system32\dtiljwvi.dll not found.
File/Folder c:\windows\system32\tylpagxp.dll not found.
File/Folder c:\windows\system32\lcropmci.exe not found.
File/Folder c:\documents and settings\All Users\Application Data\Software rule flag owns not found.
File/Folder c:\program files\BoontyGames not found.
File/Folder c:\program files\OneStep not found.
File/Folder c:\windows\system32\CA.tmp not found.
File/Folder c:\windows\system32\B1.tmp not found.
File/Folder c:\windows\system32\A9.tmp not found.
File/Folder c:\windows\system32\B3.tmp not found.
File/Folder c:\windows\system32\97.tmp not found.
File/Folder c:\windows\system32\3B.tmp not found.
File/Folder c:\windows\system32\29.tmp not found.
File/Folder c:\windows\system32\139.tmp not found.
File/Folder c:\windows\system32\27.tmp not found.
File/Folder c:\windows\system32\xcfmvd.dll not found.
File/Folder c:\windows\system32\cedeajec.dll not found.
OTMoveIt3 by OldTimer - Version 1.0.7.1 log created on 11222008_223122
========== FILES ==========
File/Folder c:\windows\system32\imglpkoy.exe not found.
File/Folder c:\windows\system32\dtiljwvi.dll not found.
File/Folder c:\windows\system32\tylpagxp.dll not found.
File/Folder c:\windows\system32\lcropmci.exe not found.
File/Folder c:\documents and settings\All Users\Application Data\Software rule flag owns not found.
c:\program files\BoontyGames\The Sims SnapCity\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\Shapes moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\UI moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\menu moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\disasters moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\countermeasures moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\Buildings\Special moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\Buildings moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\abilities moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\Music moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\Levels moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Water moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\UI\infocard_icons moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\UI moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Tutorial moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Screen\MainMenu moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Screen\HowToPlay moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Screen moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Roads moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Metamap moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\HUD moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Effects\Buildings moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Effects moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Disasters moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Cursors moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Buildings\Special moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Buildings\Basic moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Buildings moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\fonts moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\exever moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\autoload moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\ArtSets moved successfully.
c:\program files\BoontyGames\The Sims SnapCity moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\Sounds moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\Music moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\Data\Images moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\Data moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo moved successfully.
c:\program files\BoontyGames\Righteous Kill\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Righteous Kill\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Righteous Kill\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Righteous Kill\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 9 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 8 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 7 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 6 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 5 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 4 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 15 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 14 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 13 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 12 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 11 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 10 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\Level 1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\subway moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\steps moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\misc moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\interier moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\clocks moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\ambience moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\properties moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\particles moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Music moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\terrys_apartment\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\terrys_apartment moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\subway_train\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\subway_train moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Police_desk\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Police_desk moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\park\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\park moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\laundry\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\laundry moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\hospital_room\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\hospital_room moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\firing_range\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\firing_range moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Evidence_Room\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Evidence_Room moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\east_river\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\east_river moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\crime_scene\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\crime_scene moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\courtroom\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\courtroom moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Construction_Site\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Construction_Site moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Building_rooftop\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Building_rooftop moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\brooklyn_house\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\brooklyn_house moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Backstreet\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Backstreet moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Abandoned_Building\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Abandoned_Building moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\level_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\Level_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\Level_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\Button\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\Button\Menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\Button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15\Solving\ter moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15\Solving\Button\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15\Solving\Button\Menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15\Solving\Button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15\Solving moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Level_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Level_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Level_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Button\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Button\Menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui\Over moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui\Hints moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui\Button\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui\Button\Menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui\Button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_3\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_2\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_1\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\q_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\q_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\q_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\p_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\p_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\p_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\count moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\Button\Restart_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\Button\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\Button\Menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\Button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\rename_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list\Profile_5 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list\Profile_4 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list\Profile_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list\Profile_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list\profile_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Ok_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\New_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Delete_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 9 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 8 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 7 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 6 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 5 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 4 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 15 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 14 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 13 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 12 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 11 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 10 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Windowed_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Scroll_slider3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Scroll_slider2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Scroll_slider moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Return_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Main_menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Fullscreen_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\terrys_apartment moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\subway_train moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\police_desk moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\park moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\laundry moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\hospital_room moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\firing_range moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\evidence_room moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\east_river moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\crime_scene moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\courtroom moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\construction_site moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\building_rooftop moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\brooklyn_house moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\backstreet moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\Abandoned_building moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Mainmenu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Profile_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Play_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Exit_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Credits_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Continue_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\About_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\loading_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Play_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Mainmenu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 9 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 8 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 7 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 6 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 5 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 4 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 15 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 14 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 13 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 12 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 11 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 10 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\flash_screen\Replay_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\flash_screen\Play_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\flash_screen moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\exit_menu\Yes_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\exit_menu\No_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\exit_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\ending_scene\button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\ending_scene moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\credits\button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\credits moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Case_screen moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\about_movie\Ok_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\about_movie moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard\interface\Pause_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard\interface\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard\interface\Map_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard\interface\Flashlight moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard\interface moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\BUttons\Blank moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\BUttons moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\fonts moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Flash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA moved successfully.
c:\program files\BoontyGames\Righteous Kill moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\splash\gui\windows\logo_window moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\splash\gui\windows moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\splash\gui moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\splash moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House moved successfully.
c:\program files\BoontyGames\MagicBall\Sounds moved successfully.
c:\program files\BoontyGames\MagicBall\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\MagicBall\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\MagicBall\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\MagicBall\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\MagicBall\Music moved successfully.
c:\program files\BoontyGames\MagicBall\Meshes moved successfully.
c:\program files\BoontyGames\MagicBall\Langs moved successfully.
c:\program files\BoontyGames\MagicBall moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Sounds moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Musics moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Pets moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\MiniGame moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Menu moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Locations moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Jenny moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Intro moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\GUI moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Glow moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Fishes moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Aquariums moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Fonts moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Data moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop moved successfully.
c:\program files\BoontyGames\I Love Cats\Xtras\PrintOMatic MX (Win32) moved successfully.
c:\program files\BoontyGames\I Love Cats\Xtras moved successfully.
c:\program files\BoontyGames\I Love Cats\ui\style moved successfully.
c:\program files\BoontyGames\I Love Cats\ui\specific moved successfully.
c:\program files\BoontyGames\I Love Cats\ui\help moved successfully.
c:\program files\BoontyGames\I Love Cats\ui\gamedata moved successfully.
c:\program files\BoontyGames\I Love Cats\ui\announce moved successfully.
c:\program files\BoontyGames\I Love Cats\ui moved successfully.
c:\program files\BoontyGames\I Love Cats\Components moved successfully.
c:\program files\BoontyGames\I Love Cats moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\Data\txt moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\Data\sounds moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\Data\imgs moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\Data\assets moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\Data moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island moved successfully.
c:\program files\BoontyGames\Fishdom\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Fishdom\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Fishdom\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Fishdom\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Fishdom\screenbranding moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\tutorial moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\won_cup moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\move moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\icons moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\hint moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\dialogs moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\arrows moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\screensaver_options moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\players moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\pl\editor moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\pl\Chips moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\pl moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\particles moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\options moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\main_screen moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\main_menu\fishdom moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\main_menu\exit moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\main_menu moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\loading moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\intro moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\help moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\game_field\menu moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\game_field\interface moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\game_field\background moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\game_field moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\common moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\comfort\3 moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\comfort\2 moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\comfort\1 moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\comfort moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\choose_tank moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\bottom_items\icons moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\bottom_items moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures moved successfully.
c:\program files\BoontyGames\Fishdom\base\sound\Music moved successfully.
c:\program files\BoontyGames\Fishdom\base\sound moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\tutorial moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\shop\won_cup moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\shop\move moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\shop\icons moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\shop\dialogs moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\shop moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\screensaver_options moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\players moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\pl moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\particles moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\options moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\main_screen moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\main_menu\exit moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\main_menu moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\loading moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\help moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\game_field\menu moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\game_field\interface moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\game_field moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\common moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\choose_tank moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures moved successfully.
c:\program files\BoontyGames\Fishdom\base\local moved successfully.
c:\program files\BoontyGames\Fishdom\base\fonts moved successfully.
c:\program files\BoontyGames\Fishdom\base\effects moved successfully.
c:\program files\BoontyGames\Fishdom\base\animations\waste_basket\cover moved successfully.
c:\program files\BoontyGames\Fishdom\base\animations\waste_basket moved successfully.
c:\program files\BoontyGames\Fishdom\base\animations\caustic_move moved successfully.
c:\program files\BoontyGames\Fishdom\base\animations moved successfully.
c:\program files\BoontyGames\Fishdom\base moved successfully.
c:\program files\BoontyGames\Fishdom moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2\Data moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2 moved successfully.
c:\program files\BoontyGames\Elf Bowling\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Elf Bowling\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Elf Bowling\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Elf Bowling\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Elf Bowling\sfx\tracks moved successfully.
c:\program files\BoontyGames\Elf Bowling\sfx\sounds\elf moved successfully.
c:\program files\BoontyGames\Elf Bowling\sfx\sounds moved successfully.
c:\program files\BoontyGames\Elf Bowling\sfx moved successfully.
c:\program files\BoontyGames\Elf Bowling\gfx\logo moved successfully.
c:\program files\BoontyGames\Elf Bowling\gfx moved successfully.
c:\program files\BoontyGames\Elf Bowling moved successfully.
c:\program files\BoontyGames\Components moved successfully.
c:\program files\BoontyGames moved successfully.
File/Folder c:\program files\OneStep not found.
c:\windows\system32\CA.tmp moved successfully.
c:\windows\system32\B1.tmp moved successfully.
c:\windows\system32\A9.tmp moved successfully.
c:\windows\system32\B3.tmp moved successfully.
c:\windows\system32\97.tmp moved successfully.
c:\windows\system32\3B.tmp moved successfully.
c:\windows\system32\29.tmp moved successfully.
c:\windows\system32\139.tmp moved successfully.
File/Folder c:\windows\system32\27.tmp not found.
File/Folder c:\windows\system32\xcfmvd.dll not found.
File/Folder c:\windows\system32\cedeajec.dll not found.
OTMoveIt3 by OldTimer - Version 1.0.7.1 log created on 11222008_210353
File/Folder c:\windows\system32\imglpkoy.exe not found.
File/Folder c:\windows\system32\dtiljwvi.dll not found.
File/Folder c:\windows\system32\tylpagxp.dll not found.
File/Folder c:\windows\system32\lcropmci.exe not found.
File/Folder c:\documents and settings\All Users\Application Data\Software rule flag owns not found.
c:\program files\BoontyGames\The Sims SnapCity\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\Shapes moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\UI moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\menu moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\disasters moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\countermeasures moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\Buildings\Special moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\Buildings moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX\abilities moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\SFX moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\Music moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\Levels moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Water moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\UI\infocard_icons moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\UI moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Tutorial moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Screen\MainMenu moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Screen\HowToPlay moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Screen moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Roads moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Metamap moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\HUD moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Effects\Buildings moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Effects moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Disasters moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Cursors moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Buildings\Special moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Buildings\Basic moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images\Buildings moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\images moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\fonts moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\exever moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\autoload moved successfully.
c:\program files\BoontyGames\The Sims SnapCity\ArtSets moved successfully.
c:\program files\BoontyGames\The Sims SnapCity moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\Sounds moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\Music moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\Data\Images moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo\Data moved successfully.
c:\program files\BoontyGames\The Count of Monte Cristo moved successfully.
c:\program files\BoontyGames\Righteous Kill\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Righteous Kill\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Righteous Kill\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Righteous Kill\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 9 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 8 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 7 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 6 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 5 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 4 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 15 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 14 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 13 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 12 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 11 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\level 10 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice\Level 1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\voice moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\subway moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\steps moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\misc moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\interier moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\clocks moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound\ambience moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Sound moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\properties moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\particles moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Music moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\terrys_apartment\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\terrys_apartment moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\subway_train\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\subway_train moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Police_desk\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Police_desk moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\park\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\park moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\laundry\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\laundry moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\hospital_room\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\hospital_room moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\firing_range\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\firing_range moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Evidence_Room\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Evidence_Room moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\east_river\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\east_river moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\crime_scene\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\crime_scene moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\courtroom\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\courtroom moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Construction_Site\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Construction_Site moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Building_rooftop\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Building_rooftop moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\brooklyn_house\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\brooklyn_house moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Backstreet\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Backstreet moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Abandoned_Building\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels\Abandoned_Building moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Levels moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\level_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\Level_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\Level_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\Button\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\Button\Menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo\Button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3\photo moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15\Solving\ter moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15\Solving\Button\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15\Solving\Button\Menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15\Solving\Button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15\Solving moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG15 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Level_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Level_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Level_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Button\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Button\Menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection\Button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13\conection moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG13 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui\Over moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui\Hints moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui\Button\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui\Button\Menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui\Button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_ui moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_3\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_2\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_1\Trash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12\camera_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG12 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\q_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\q_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\q_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\p_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\p_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\p_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\count moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\Button\Restart_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\Button\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\Button\Menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting\Button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11\dusting moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\MG11 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\rename_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list\Profile_5 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list\Profile_4 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list\Profile_3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list\Profile_2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list\profile_1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Profiles_list moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Ok_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\New_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Delete_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 9 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 8 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 7 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 6 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 5 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 4 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 15 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 14 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 13 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 12 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 11 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 10 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu\Case 1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\profiles_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Windowed_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Scroll_slider3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Scroll_slider2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Scroll_slider moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Return_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Main_menu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu\Fullscreen_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\options_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\terrys_apartment moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\subway_train moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\police_desk moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\park moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\laundry moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\hospital_room moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\firing_range moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\evidence_room moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\east_river moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\crime_scene moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\courtroom moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\construction_site moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\building_rooftop moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\brooklyn_house moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\backstreet moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps\Abandoned_building moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Maps moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu\Mainmenu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\map_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Profile_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Play_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Exit_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Credits_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\Continue_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu\About_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\main_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\loading_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Play_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Mainmenu_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 9 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 8 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 7 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 6 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 5 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 4 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 3 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 2 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 15 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 14 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 13 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 12 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 11 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 10 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels\Case 1 moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Levels moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\flash_screen\Replay_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\flash_screen\Play_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\flash_screen moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\exit_menu\Yes_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\exit_menu\No_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\exit_menu moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\ending_scene\button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\ending_scene moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\credits\button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\credits moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\Case_screen moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\about_movie\Ok_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE\about_movie moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\INTERFACE moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard\interface\Pause_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard\interface\Options_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard\interface\Map_button moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard\interface\Flashlight moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard\interface moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\GameBoard moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\BUttons\Blank moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES\BUttons moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\IMAGES moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\fonts moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA\Flash moved successfully.
c:\program files\BoontyGames\Righteous Kill\DATA moved successfully.
c:\program files\BoontyGames\Righteous Kill moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\splash\gui\windows\logo_window moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\splash\gui\windows moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\splash\gui moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\splash moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Nathalie Brooks Secrets of Treasure House moved successfully.
c:\program files\BoontyGames\MagicBall\Sounds moved successfully.
c:\program files\BoontyGames\MagicBall\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\MagicBall\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\MagicBall\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\MagicBall\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\MagicBall\Music moved successfully.
c:\program files\BoontyGames\MagicBall\Meshes moved successfully.
c:\program files\BoontyGames\MagicBall\Langs moved successfully.
c:\program files\BoontyGames\MagicBall moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Sounds moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Musics moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Pets moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\MiniGame moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Menu moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Locations moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Jenny moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Intro moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\GUI moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Glow moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Fishes moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images\Aquariums moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Images moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Fonts moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources\Data moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop\Resources moved successfully.
c:\program files\BoontyGames\Jennys Fish Shop moved successfully.
c:\program files\BoontyGames\I Love Cats\Xtras\PrintOMatic MX (Win32) moved successfully.
c:\program files\BoontyGames\I Love Cats\Xtras moved successfully.
c:\program files\BoontyGames\I Love Cats\ui\style moved successfully.
c:\program files\BoontyGames\I Love Cats\ui\specific moved successfully.
c:\program files\BoontyGames\I Love Cats\ui\help moved successfully.
c:\program files\BoontyGames\I Love Cats\ui\gamedata moved successfully.
c:\program files\BoontyGames\I Love Cats\ui\announce moved successfully.
c:\program files\BoontyGames\I Love Cats\ui moved successfully.
c:\program files\BoontyGames\I Love Cats\Components moved successfully.
c:\program files\BoontyGames\I Love Cats moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\Data\txt moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\Data\sounds moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\Data\imgs moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\Data\assets moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island\Data moved successfully.
c:\program files\BoontyGames\Hawaiian Explorer 2 Lost Island moved successfully.
c:\program files\BoontyGames\Fishdom\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Fishdom\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Fishdom\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Fishdom\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Fishdom\screenbranding moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\tutorial moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\won_cup moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\move moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\icons moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\hint moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\dialogs moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop\arrows moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\shop moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\screensaver_options moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\players moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\pl\editor moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\pl\Chips moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\pl moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\particles moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\options moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\main_screen moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\main_menu\fishdom moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\main_menu\exit moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\main_menu moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\loading moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\intro moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\help moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\game_field\menu moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\game_field\interface moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\game_field\background moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\game_field moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\common moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\comfort\3 moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\comfort\2 moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\comfort\1 moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\comfort moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\choose_tank moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\bottom_items\icons moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures\bottom_items moved successfully.
c:\program files\BoontyGames\Fishdom\base\textures moved successfully.
c:\program files\BoontyGames\Fishdom\base\sound\Music moved successfully.
c:\program files\BoontyGames\Fishdom\base\sound moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\tutorial moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\shop\won_cup moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\shop\move moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\shop\icons moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\shop\dialogs moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\shop moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\screensaver_options moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\players moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\pl moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\particles moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\options moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\main_screen moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\main_menu\exit moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\main_menu moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\loading moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\help moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\game_field\menu moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\game_field\interface moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\game_field moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\common moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures\choose_tank moved successfully.
c:\program files\BoontyGames\Fishdom\base\local\textures moved successfully.
c:\program files\BoontyGames\Fishdom\base\local moved successfully.
c:\program files\BoontyGames\Fishdom\base\fonts moved successfully.
c:\program files\BoontyGames\Fishdom\base\effects moved successfully.
c:\program files\BoontyGames\Fishdom\base\animations\waste_basket\cover moved successfully.
c:\program files\BoontyGames\Fishdom\base\animations\waste_basket moved successfully.
c:\program files\BoontyGames\Fishdom\base\animations\caustic_move moved successfully.
c:\program files\BoontyGames\Fishdom\base\animations moved successfully.
c:\program files\BoontyGames\Fishdom\base moved successfully.
c:\program files\BoontyGames\Fishdom moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2\Data moved successfully.
c:\program files\BoontyGames\Farm Frenzy 2 moved successfully.
c:\program files\BoontyGames\Elf Bowling\SHELL_DEFAULT_HTML\js moved successfully.
c:\program files\BoontyGames\Elf Bowling\SHELL_DEFAULT_HTML\Images moved successfully.
c:\program files\BoontyGames\Elf Bowling\SHELL_DEFAULT_HTML\css moved successfully.
c:\program files\BoontyGames\Elf Bowling\SHELL_DEFAULT_HTML moved successfully.
c:\program files\BoontyGames\Elf Bowling\sfx\tracks moved successfully.
c:\program files\BoontyGames\Elf Bowling\sfx\sounds\elf moved successfully.
c:\program files\BoontyGames\Elf Bowling\sfx\sounds moved successfully.
c:\program files\BoontyGames\Elf Bowling\sfx moved successfully.
c:\program files\BoontyGames\Elf Bowling\gfx\logo moved successfully.
c:\program files\BoontyGames\Elf Bowling\gfx moved successfully.
c:\program files\BoontyGames\Elf Bowling moved successfully.
c:\program files\BoontyGames\Components moved successfully.
c:\program files\BoontyGames moved successfully.
File/Folder c:\program files\OneStep not found.
c:\windows\system32\CA.tmp moved successfully.
c:\windows\system32\B1.tmp moved successfully.
c:\windows\system32\A9.tmp moved successfully.
c:\windows\system32\B3.tmp moved successfully.
c:\windows\system32\97.tmp moved successfully.
c:\windows\system32\3B.tmp moved successfully.
c:\windows\system32\29.tmp moved successfully.
c:\windows\system32\139.tmp moved successfully.
File/Folder c:\windows\system32\27.tmp not found.
File/Folder c:\windows\system32\xcfmvd.dll not found.
File/Folder c:\windows\system32\cedeajec.dll not found.
OTMoveIt3 by OldTimer - Version 1.0.7.1 log created on 11222008_210353
jlpjlp
Messages postés
51580
Date d'inscription
vendredi 18 mai 2007
Statut
Contributeur sécurité
Dernière intervention
3 mai 2022
5 040
23 nov. 2008 à 08:54
23 nov. 2008 à 08:54
oui
A)- Effectuer un eScan Antivirus Toolkit < https://www.malekal.com/tutorial-escan-antivirus-toolkit/ >
À exécuter en mode sans échec (< http://www.coupdepoucepc.com/modules/news/article.php?storyid=253 > ) et restauration système désactivée (< http://www.libellules.ch/desactiver_restauration.php > afin de pouvoir effectuer un nettoyage complet.
Étape 1:
Télécharge eScan Antivirus Toolkit ici:
http://www.spywareinfo.dk/download/mwav.exe
Sauvegarde-le sur ton Bureau.
Avant de lancer le programme, il faut le mettre à jour tel qu'indiqué à l'étape 2.
Étape 2:
Voici comment mettre l'outil à jour :
1.) Double-clique le fichier mwav.exe qui se trouve sur le Bureau > puis [Exécuter]
Dézippe les fichiers dans le nouveau dossier suggéré (C:\Kaspersky)
< https://www.hiboox.com >
Le programme va se lancer, et tu dois le quitter (clique sur "Exit" puis "Exit").
< https://www.hiboox.com >
2.) Double-clique sur le Poste de travail, puis double-clique sur le lecteur principal (habituellement C:\), double-clique sur le dossier "Kaspersky" ; ensuite, double-clique sur le fichier kavupd.exe.
< https://www.hiboox.com >
Tu verras maintenant une fenêtre DOS apparaître, et la mise à jour se complètera en quelques minutes
3.) Lorsque la mise à jour sera complétée, tu verras "Press any key to continue" ; tape sur une clé pour continuer. Deux nouveaux répertoires (dossiers) ont été créés lors de la mise à jour (C:\Bases et C:\Downloads).
4.) Sélectionne/copie tous les fichiers présents dans le dossier C:\Downloads, puis colle-les dans le dossier C:\Kaspersky. Accepte à l'invite de remplacer les fichiers existants.
Ne pas lancer le scan tout de suite !
Étape 3:
•- Désactive la restauration système :
"Démarrer"> clic droit sur "Poste de Travail"> "Propriétés système"> onglet "Restauration du système"> cocher la case "Désactiver la Restauration du système" > [Appliquer] >OK
Pour la suite, tu n’auras pas accès à Internet, ni donc à CCM ; copie ou imprime donc la procédure suivante pour ne rien oublier .
•- Redémarre en mode Sans Échec :
1) Redémarre ton ordi
2) Tapote la touche F8 immédiatement, juste après le "Bip"
3) Tu verras un écran avec options de démarrage apparaître
4) Choisi la première option : Sans Échec, et valide avec "Entrée"
5) Choisi ton compte régulier, et non Administrateur
Étape 4:
Du mode Sans Échec, voici comment utiliser le programme :
1.) Pour lancer "eScan Antivirus Toolkit", trouve le fichier « mwavscan.com » situé dans le dossier C:\Kaspersky
2.) Double-clique sur « mwavscan.com » ; l'interface d'eScan va apparaître à l'écran.
3.) Coche les options comme indiquées sur cette page < https://www.malekal.com/fichiers/eScan/eScan3.png > ; c’est-à-dire:
- Il est très important de bien cocher ces boîtes sous Scan Option : Memory, Registry, Startup Folders, System Folders, Services.
4.) Coche la boîte Drive, ce qui donne accès à une nouvelle boîte Drive (bouton rond) juste dessous ; coche ce bouton "Drive" (très important..), et tu verras une nouvelle boîte de navigation apparaître à la droite. Clique sur la petite flèche de cette boîte and choisi la lettre de ton disque dur, habituellement C:\.
5.) Juste au-dessous, assure-toi que Scan All Files est coché, (et non "Program Files").
6.) Puis en bas à droite, clic sur « Scan Clean » et laisse l’outil vérifier tout le disque dur (ça peut être long..). Lorsque terminé, tu verras « Scan Completed ». Ne pas quitter tout de suite !
7.) Ouvre un nouveau fichier Bloc notes (clique sur "Démarrer" >> "Programmes" >>"Accessoires" >> "Bloc notes"), puis copie/colle tout le contenu de la fenêtre « Virus Log Information » (la deuxième, au bas) dans le fichier texte, et sauvegarde-le sur le bureau ( pour le retrouver facilement – donne-lui un nom, par ex KAS -).
(eScan génère également un rapport complet dans le dossier C:\Kaspersky (nommé mwav.log), mais il est trop lourd pour poster sur le forum).
Ferme le programme.
Redémarre ton PC en mode Normal.
Ensuite réactive ta restauration système
Clic droit sur « Poste de travail », puis sur « Propriétés »,
Vas sur l’onglet « Restauration système »
Tu décoches la case « Désactiver la restauration »
Termine par [Appliquer] [OK]
Poste (copie/colle) le rapport que tu as sauvegardé dans ta prochaine réponse.
A)- Effectuer un eScan Antivirus Toolkit < https://www.malekal.com/tutorial-escan-antivirus-toolkit/ >
À exécuter en mode sans échec (< http://www.coupdepoucepc.com/modules/news/article.php?storyid=253 > ) et restauration système désactivée (< http://www.libellules.ch/desactiver_restauration.php > afin de pouvoir effectuer un nettoyage complet.
Étape 1:
Télécharge eScan Antivirus Toolkit ici:
http://www.spywareinfo.dk/download/mwav.exe
Sauvegarde-le sur ton Bureau.
Avant de lancer le programme, il faut le mettre à jour tel qu'indiqué à l'étape 2.
Étape 2:
Voici comment mettre l'outil à jour :
1.) Double-clique le fichier mwav.exe qui se trouve sur le Bureau > puis [Exécuter]
Dézippe les fichiers dans le nouveau dossier suggéré (C:\Kaspersky)
< https://www.hiboox.com >
Le programme va se lancer, et tu dois le quitter (clique sur "Exit" puis "Exit").
< https://www.hiboox.com >
2.) Double-clique sur le Poste de travail, puis double-clique sur le lecteur principal (habituellement C:\), double-clique sur le dossier "Kaspersky" ; ensuite, double-clique sur le fichier kavupd.exe.
< https://www.hiboox.com >
Tu verras maintenant une fenêtre DOS apparaître, et la mise à jour se complètera en quelques minutes
3.) Lorsque la mise à jour sera complétée, tu verras "Press any key to continue" ; tape sur une clé pour continuer. Deux nouveaux répertoires (dossiers) ont été créés lors de la mise à jour (C:\Bases et C:\Downloads).
4.) Sélectionne/copie tous les fichiers présents dans le dossier C:\Downloads, puis colle-les dans le dossier C:\Kaspersky. Accepte à l'invite de remplacer les fichiers existants.
Ne pas lancer le scan tout de suite !
Étape 3:
•- Désactive la restauration système :
"Démarrer"> clic droit sur "Poste de Travail"> "Propriétés système"> onglet "Restauration du système"> cocher la case "Désactiver la Restauration du système" > [Appliquer] >OK
Pour la suite, tu n’auras pas accès à Internet, ni donc à CCM ; copie ou imprime donc la procédure suivante pour ne rien oublier .
•- Redémarre en mode Sans Échec :
1) Redémarre ton ordi
2) Tapote la touche F8 immédiatement, juste après le "Bip"
3) Tu verras un écran avec options de démarrage apparaître
4) Choisi la première option : Sans Échec, et valide avec "Entrée"
5) Choisi ton compte régulier, et non Administrateur
Étape 4:
Du mode Sans Échec, voici comment utiliser le programme :
1.) Pour lancer "eScan Antivirus Toolkit", trouve le fichier « mwavscan.com » situé dans le dossier C:\Kaspersky
2.) Double-clique sur « mwavscan.com » ; l'interface d'eScan va apparaître à l'écran.
3.) Coche les options comme indiquées sur cette page < https://www.malekal.com/fichiers/eScan/eScan3.png > ; c’est-à-dire:
- Il est très important de bien cocher ces boîtes sous Scan Option : Memory, Registry, Startup Folders, System Folders, Services.
4.) Coche la boîte Drive, ce qui donne accès à une nouvelle boîte Drive (bouton rond) juste dessous ; coche ce bouton "Drive" (très important..), et tu verras une nouvelle boîte de navigation apparaître à la droite. Clique sur la petite flèche de cette boîte and choisi la lettre de ton disque dur, habituellement C:\.
5.) Juste au-dessous, assure-toi que Scan All Files est coché, (et non "Program Files").
6.) Puis en bas à droite, clic sur « Scan Clean » et laisse l’outil vérifier tout le disque dur (ça peut être long..). Lorsque terminé, tu verras « Scan Completed ». Ne pas quitter tout de suite !
7.) Ouvre un nouveau fichier Bloc notes (clique sur "Démarrer" >> "Programmes" >>"Accessoires" >> "Bloc notes"), puis copie/colle tout le contenu de la fenêtre « Virus Log Information » (la deuxième, au bas) dans le fichier texte, et sauvegarde-le sur le bureau ( pour le retrouver facilement – donne-lui un nom, par ex KAS -).
(eScan génère également un rapport complet dans le dossier C:\Kaspersky (nommé mwav.log), mais il est trop lourd pour poster sur le forum).
Ferme le programme.
Redémarre ton PC en mode Normal.
Ensuite réactive ta restauration système
Clic droit sur « Poste de travail », puis sur « Propriétés »,
Vas sur l’onglet « Restauration système »
Tu décoches la case « Désactiver la restauration »
Termine par [Appliquer] [OK]
Poste (copie/colle) le rapport que tu as sauvegardé dans ta prochaine réponse.
21 nov. 2008 à 15:12
En fait j'ai telechargé quad cleaner, mais je ne parviens pas à l'executer (une fenetre antivir ne cessede se mettre devant et puis apres j'ai le cadre envoyer un rapport ou ne pas envoyer et ça éteint tout. J'ai essayer les autres mais pour restaurer on me dit d'aller dans accessoires etc... mais je ne trouve pas outils etc... en fait par le gestionnaire de tache j'arrive à C, menu demarrer etc... puis plus rien, je suis perdue