mon ordi ronfle en permanence...

Concerne vos problèmes de virus, troyens, Hijacks, barres de recherche, analyse de log HijackThis et logiciels de sécurité (parefeu, antivirus ...).
Seules les personnes habilitées par l'administration peuvent aider et participer aux réponses dans ce forum.

Modérateurs: Marie, Super Modérateur

Règles du forum
.
Merci de consulter la charte du forum avant de poster.
Rappel : Le langage SMS n'est pas toléré sur ce forum. Les demandes d'aide écrites en SMS ou formulées dans un français trop approximatif ne seront pas traitées.

Seuls MoJac, Marie, TopXM et jjcojax sont autorisés à répondre sur ce forum.
Répondre

Messagede MoJac » 05 Jan 2009, 14:37

Re:

Bon on récapitule: à l'origine pb de bruit provoqué par le ventilateur de la machine qui sous entendait une "sur activité" du processeur d'origine inconnue.

- Afin de ne pas passer à coté d'un éventuel pb infectieux scan avec MBAM qui détecte et met en quarantaine 3 problèmes (adware mywebsearch, et 2 faux utilitaires:Ascentiveperformance, PCSpeedscan,)...

- Antivir détecte et met en quarantaine 3 occurrences de HIDDENEXT.crypted lors du scan MBAM...

- La suppression des clés de démarrage automatique de 2 programmes d'utilité douteuse :no-spy et XoftSpy n'ont pas apporté d'amélioration. :mala:

On continue donc à chercher:

:ss) Regarde dans le panneau de configuration si tu as XoftSpy et désinstalle le. (il n'est plus lancé mais existe toujours) si non on l'effacera à la main.

:ss) Fait un scan complet avec Antivir (après mise à jour) en veillant dans les options de scan à bien valider la recherche de rootkits.

:ss) ->Télécharge random's system information tool (RSIT) (de random/random) sur ton Bureau.
[list]
[*] Double-clique sur RSIT.exe .
[*] Clique Continue à l'écran "Disclaimer".
[*] Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
[*] Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (qui sera affiché)
et celui de info.txt (qui sera réduit dans la Barre des Tâches).
[*] Ces 2 rapports sont aussi sauvegardés dans le dossier C:\rsit[list]

3 rapports sont donc attendus. Antivir et les 2 de RSIT.

A suivre.
- Suivez les instructions qui vous sont données.
- Si vous ne comprenez pas: redemandez des explications.

Image
Avatar de l’utilisateur
MoJac
Super Modérateur
Super Modérateur
 
Messages: 1414
Inscription: 01 Déc 2008, 18:27
Localisation: Puy de Dôme
Haut

Publicité

Messagede scloob » 05 Jan 2009, 16:18

re,

j'ai un gros problème....
lorsque j'essaye de coller le rapport ici d'antivir ou bien des deux autres rapports de RSIT (log.txt et info.txt), ça se met à beuguer.
je ne peux donc pas te les envoyer ou alors je ne sais pas comment...

je les conserve pour le moment mais cela sous entend que je ne peux éteindre l'ordi car je ne peux les enregistrer nulle part, dès que je fais un copier coller, tout plante...

sinon, antivir n'avait rien trouvé.

de plus, je n'ai pas trouvé dans le panneau de configuration XoftSpy.
scloob
Forumeur débutant
Forumeur débutant
 
Messages: 42
Inscription: 12 Juin 2008, 17:43
Haut

Messagede scloob » 05 Jan 2009, 16:21

voici le info.txt, j'ai enfin réussi à l'envoyer :


info.txt logfile of random's system information tool 1.05 2009-01-05 15:10:12

======Uninstall list======

-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->C:\WINDOWS\IsUn040c.exe -fC:\WINDOWS\orun32.isu
-->C:\WINDOWS\system32\\MSIEXEC.EXE /I {09DA4F91-2A09-4232-AB8C-6BC740096DE3} REMOVE=UpdateMgrFeature
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {9541FED0-327F-4df0-8B96-EF57EF622F19}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Ad-Aware SE Personal-->C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
Adobe Acrobat 5.0-->C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Fichiers communs\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 8.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81300000003}
Agere Systems AC'97 Modem-->agrsmdel
Alcohol Toolbar-->"C:\WINDOWS\Alcohol_Toolbar_Uninstaller_1390.exe" _?=C:\Program Files\Alcohol Toolbar
Archiveur WinRAR-->C:\Program Files\WinRAR\uninstall.exe
Athlon 64 Processor Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe" -l0x40c
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir PersonalEdition Classic\SETUP.EXE /REMOVE
BitLord 1.1-->C:\Program Files\BitLord\uninst.exe
BoontyBox-->"C:\Program Files\Boonty\BoontyBox\unins000.exe"
Broadcom 802.11 Driver-->C:\WINDOWS\system32\BCMWLU00.exe verbose /rootkey=Software\Broadcom\802.11\UninstallInfo
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
CleanUp!-->C:\Program Files\CleanUp!\uninstall.exe
CodeStuff Starter-->"C:\Program Files\CodeStuff\Starter\unStarter.exe"
Connexion Facile à Internet-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{8105684D-8CA6-440D-8F58-7E5FD67A499D} /l1036
Correctif pour Lecteur Windows Media 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Correctif pour Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
dBpowerAMP Musepack Codec-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpowerAMP Musepack Codec.dat
dBpowerAMP Music Converter-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpowerAMP Music Converter.dat
dBpowerAMP Ogg Vorbis Codec-->"C:\WINDOWS\system32\SpoonUninstall.exe" <uninstall>C:\WINDOWS\system32\SpoonUninstall-dBpowerAMP Ogg Vorbis Codec.dat
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Driver fr-->"C:\Program Files\BoontyGames\Driver\unins000.exe"
e-Carte Bleue LCL-->"C:\Program Files\InstallShield Installation Information\{3D6B54EF-65E4-4624-8709-03A3BBE2C240}\setup.exe" -runfromtemp -l0x040c -removeonly
eMule-->"C:\Program Files\eMule\Uninstall.exe"
Favorit-->"c:\documents and settings\raphael\local settings\application data\uioekxf.exe" -uninstall
Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
HijackThis 2.0.2-->"C:\Program Files\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
InterVideo WinDVD-->"C:\Program Files\InstallShield Installation Information\{98E8A2EF-4EAE-43B8-A172-74842B764777}\setup.exe" REMOVEALL
iTunes-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{54C0D94A-F467-4ABC-9D02-6E58748668D4} /l1036
J2SE Runtime Environment 5.0 Update 10-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150100}
J2SE Runtime Environment 5.0 Update 11-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150110}
J2SE Runtime Environment 5.0 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150020}
J2SE Runtime Environment 5.0 Update 4-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150040}
J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
J2SE Runtime Environment 5.0 Update 9-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150090}
Java 2 Runtime Environment, SE v1.4.2_05-->MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142050}
Java(TM) 6 Update 2-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Java(TM) 6 Update 5-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
Java(TM) SE Runtime Environment 6 Update 1-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}
KOUP-KOUP-->C:\Koup-Koup\Uninstal.exe
Lavasoft VX2 Cleaner-->C:\PROGRA~1\Lavasoft\AD-AWA~1\Plugins\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\Plugins\INSTALL.LOG
Lecteur Windows Media 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Lemmings for Windows 95-->C:\Program Files\WinLemm\wlvsun10.exe uninstall
Macromedia Fireworks 4-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A8833100-1481-11D4-9731-00C04F8EEB39}\Setup.exe" UNINSTALL
Macromedia Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
mail_fr-->C:\PROGRA~1\Show\mail_fr\UNWISE.EXE C:\PROGRA~1\Show\mail_fr\INSTALL.LOG
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Meegos Creator-->C:\Program Files\Meegos Creator\Uninstal.exe
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft User-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWudf01005$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Works-->MsiExec.exe /I{A059DE09-1B49-4450-B340-7AE097EC3F04}
Mihov Image Resizer (remove only)-->"C:\Program Files\Mihov Image Resizer\Uninstall.exe"
Mise à jour de sécurité pour Lecteur Windows Media (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)-->"C:\WINDOWS\$NtUninstallKB917734_WMP10$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)-->"C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB928090)-->"C:\WINDOWS\ie7updates\KB928090-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB929969)-->"C:\WINDOWS\ie7updates\KB929969\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB931768)-->"C:\WINDOWS\ie7updates\KB931768-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB933566)-->"C:\WINDOWS\ie7updates\KB933566-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Mise à jour de sécurité pour Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Mise à jour pour Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Mozilla Firefox (3.0.5)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSVC80_x86-->MsiExec.exe /I{212748BB-0DA5-46DE-82A1-403736DC9F27}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Neuf - Kit de connexion-->C:\Program Files\Neuf\Kit\uninstall.exe
Nokia Connectivity Cable Driver-->MsiExec.exe /X{B3164E9E-BE08-4F3B-94BC-C6D09C0205E1}
Nokia Flashing Cable Driver-->MsiExec.exe /X{A4E0CA0F-1903-440A-9B98-FEA6CB049999}
Nokia PC Suite-->C:\Documents and Settings\All Users\Application Data\Installations\{D5577624-0626-4C4B-87AA-D966DA1739D6}\Nokia_PC_Suite_rel_7_0_9_2_fre.exe
Nokia PC Suite-->MsiExec.exe /I{D5577624-0626-4C4B-87AA-D966DA1739D6}
Nokia Software Updater-->MsiExec.exe /X{5D19E730-D3C6-47F4-AE4B-DCB26EC2D905}
NVIDIA nForce Drivers-->C:\WINDOWS\system32\nvuninst.exe Uninstall C:\WINDOWS\system32\NVU001.nvu,NVIDIA nForce Drivers
NVIDIA Windows 2000/XP Display Drivers-->rundll32.exe C:\WINDOWS\system32\nvinstnt.dll,NvUninstallNT4 nvcp.inf
Outil de mise à jour Google-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
Package de pilotes Windows - Nokia Modem (03/05/2008 3.7)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokia_blue_635B28EFCFA9395123BB1C251595CB16129E2560\nokia_bluetooth.inf
Package de pilotes Windows - Nokia Modem (03/13/2008 6.86.0.1)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokbtmdm_28F2EAC406838DA65AFF6C6886FE9FE96AEF5186\nokbtmdm.inf
Package de pilotes Windows - Nokia Modem (05/22/2008 3.8)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokia_blue_6F90B0F4A73A2F780A1010B5D6CB5DDFB098181E\nokia_bluetooth.inf
Package de pilotes Windows - Nokia Modem (05/22/2008 7.00.0.1)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokbtmdm_E68D50F7E25BFE399D47C864C3B52557346242A9\nokbtmdm.inf
Package de pilotes Windows - Nokia pccsmcfd (10/12/2007 6.85.4.0)-->C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccsmcfd_4A1E30386F4D0DEC8F5DF262CFBD8845EEBAB175\pccsmcfd.inf
PC Connectivity Solution-->MsiExec.exe /I{1A524CFE-DF85-4555-8BC2-0C89DBD8BC2C}
PCI 1620 Cardbus Controller and Software-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{97355297-21C8-40CD-96D3-48E58037A9B8} /l1036
Photo Loader 2.3F-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{70B45586-B51E-4947-A258-A895596C5CED}\Setup.exe" -uninst
Photohands 1.0F-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{544FB392-069D-4BA5-9DC7-FFD47230AEE5}\Setup.exe"
Quick Launch Buttons 5.00 C1-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{CEB326EC-8F40-47B2-BA22-BB092565D66F}\setup.exe" -l0x40c -uninst
QuickTime-->C:\PROGRA~1\FICHIE~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{C21D5524-A970-42FA-AC8A-59B8C7CDCA31} /l1036
Realtek RTL8139/810x Fast Ethernet NIC Driver Setup-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{97AA0C55-AFAD-4126-B21C-F1318FB6DADA}\setup.exe" -l0x40c REMOVE
SafeCast Shared Components-->C:\Program Files\Fichiers communs\Macrovision Shared\SafeCast\Install\CDAC13BA.EXE /uninstall
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Skype™ 3.6-->MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
Sonic RecordNow!-->MsiExec.exe /I{9541FED0-327F-4DF0-8B96-EF57EF622F19}
Sonic Update Manager-->MsiExec.exe /I{09DA4F91-2A09-4232-AB8C-6BC740096DE3}
Sony Sound Forge 7.0-->MsiExec.exe /I{0712667C-A171-49AE-A098-4ACDA28625F8}
SoulSeek Client 156c-->"C:\Program Files\Soulseek\uninstall.exe"
SoundMAX-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe"
Spybot - Search & Destroy 1.5.2.20-->"C:\WINDOWS\unins000.exe"
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins001.exe"
Sunbelt Personal Firewall-->MsiExec.exe /X{F61A549E-9C8A-4859-8BFE-2A4A018BBA4A}
SUPERAntiSpyware Free Edition-->MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
Ulead Movie Wizard SE VCD-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4F1DA6BF-3614-48A1-9970-9E90F646789E}\setup.exe" -l0x40c
Visionneuse Journal Windows Microsoft-->MsiExec.exe /X{43DCF766-6838-4F9A-8C91-D92DA586DFA8}
VX6-->C:\Program Files\InstallShield Installation Information\{ECD03DA7-5952-406A-8156-5F0C93618D1F}\setup.exe -runfromtemp -l0x040c -removeonly
Windows Defender-->MsiExec.exe /I{A06275F4-324B-4E85-95E6-87B2CD729401}
Windows Live Messenger-->MsiExec.exe /I{F6326B60-1B1D-4ABF-BFCD-7B7404F44411}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

=====HijackThis Backups=====

O2 - BHO: (no name) - {C6801317-9393-5A49-F600-2B0C2DDF1526} - C:\DOCUME~1\raphael\APPLIC~1\planpure\Dumbdale.exe (file missing)
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\eoRezo\EoAdv\EoRezobho.dll (file missing)
O2 - BHO: e-Carte Bleue Browser Helper Object - {2E03C0FD-4C48-43A7-9A54-00240C70FF16} - C:\WINDOWS\system32\BhoECart.dll (file missing)
O16 - DPF: {86EEF11E-FF16-48CE-B1A2-474B663041A9} - http://11731.kit.carpediem.fr/FanMarjolaine.exe
O4 - HKCU\..\Run: [uioekxf] c:\documents and settings\raphael\local settings\application data\uioekxf.exe uioekxf
O4 - HKLM\..\Run: [stnospy] C:\Program Files\SinEspias\no-spy.exe /autorun
O4 - HKLM\..\Run: [XoftSpy] C:\Program Files\XoftSpy\XoftSpy.exe -s

======Hosts File======

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com

======Security center information======

AV: Avira AntiVir PersonalEdition
FW: Sunbelt Personal Firewall

System event log

Computer Name: RAF
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service Messenger Sharing Folders USN Journal Reader.

Record Number: 54531
Source Name: Service Control Manager
Time Written: 20081119191039.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: RAF
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l'état : arrêté.

Record Number: 54530
Source Name: Service Control Manager
Time Written: 20081119190612.000000+060
Event Type: Informations
User:

Computer Name: RAF
Event Code: 7036
Message: Le service Service de la passerelle de la couche Application est entré dans l'état : en cours d'exécution.

Record Number: 54529
Source Name: Service Control Manager
Time Written: 20081119190607.000000+060
Event Type: Informations
User:

Computer Name: RAF
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service Service de la passerelle de la couche Application.

Record Number: 54528
Source Name: Service Control Manager
Time Written: 20081119190607.000000+060
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: RAF
Event Code: 7036
Message: Le service Service de découvertes SSDP est entré dans l'état : en cours d'exécution.

Record Number: 54527
Source Name: Service Control Manager
Time Written: 20081119190606.000000+060
Event Type: Informations
User:

Application event log

Computer Name: RAF
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 19259
Source Name: SecurityCenter
Time Written: 20080908163906.000000+120
Event Type: Informations
User:

Computer Name: RAF
Event Code: 4096
Message:
Record Number: 19258
Source Name: Avira AntiVir
Time Written: 20080908163858.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM

Computer Name: RAF
Event Code: 0
Message:
Record Number: 19257
Source Name: gusvc
Time Written: 20080908163853.000000+120
Event Type: Informations
User:

Computer Name: RAF
Event Code: 302
Message: msnmsgr (3236) \\.\C:\Documents and Settings\raphael\Local Settings\Application Data\Microsoft\Messenger\scloob@hotmail.fr\SharingMetadata\Working\database_73F0_F538_76_10C6\dfsr.db: Le moteur de base de données a exécuté la procédure de récupération avec succès.

Record Number: 19256
Source Name: ESENT
Time Written: 20080908125652.000000+120
Event Type: Informations
User:

Computer Name: RAF
Event Code: 301
Message: msnmsgr (3236) \\.\C:\Documents and Settings\raphael\Local Settings\Application Data\Microsoft\Messenger\scloob@hotmail.fr\SharingMetadata\Working\database_73F0_F538_76_10C6\dfsr.db: Le moteur de base de données commence la relecture du fichier journal \\.\C:\Documents and Settings\raphael\Local Settings\Application Data\Microsoft\Messenger\scloob@hotmail.fr\SharingMetadata\Working\database_73F0_F538_76_10C6\fsr.log.

Record Number: 19255
Source Name: ESENT
Time Written: 20080908125652.000000+120
Event Type: Informations
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\PC Connectivity Solution\;%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\PC Connectivity Solution;C:\Program Files\Fichiers communs\Ulead Systems\MPEG;C:\Program Files\QuickTime\QTSystem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 4 Stepping 10, AuthenticAMD
"PROCESSOR_REVISION"=040a
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"CLASSPATH"=.;C:\Program Files\Java\jre1.5.0_06\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.5.0_06\lib\ext\QTJava.zip

-----------------EOF-----------------



j'essaye d'envoyer le second :


Logfile of random's system information tool 1.05 (written by random/random)
Run by raphael at 2009-01-05 15:09:39
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 23 GB (30%) free of 76 GB
Total RAM: 511 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:10:05, on 05/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\tsnpstd3.exe
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\System32\svchost.exe
c:\program files\avira\antivir personaledition classic\avcenter.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avscan.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\raphael\Bureau\RSIT.exe
C:\Program Files\Trend Micro\monjack\raphael.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Alcohol Toolbar Helper - {52D06F97-5511-43FA-8FDA-C481864FD26E} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O3 - Toolbar: Alcohol Toolbar - {4C4E7CDB-5BFC-4D74-83E2-8AE659B7EDA2} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll (file missing)
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [Sin Espias] C:\Program Files\SinEspias\No-Spy.exe /autorun
O4 - HKLM\..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=Q105&bd=presario&pf=laptop
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid= ... lcid=0x409
O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/A ... ngctrl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by1fd.bay1.hotmail.msn.com/resou ... nPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnme ... loader.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 10061 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\ADA0237A911BD6DE.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\XoftSpy.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{52D06F97-5511-43FA-8FDA-C481864FD26E}]
Alcohol Toolbar Helper - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll [2008-10-06 652784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4C4E7CDB-5BFC-4D74-83E2-8AE659B7EDA2} - Alcohol Toolbar - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2003-10-08 159744]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2004-03-01 200766]
"UpdateManager"=C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe [2003-08-19 110592]
"eabconfg.cpl"=C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe [2004-08-19 290816]
"AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2004-09-03 88363]
"Sin Espias"=C:\Program Files\SinEspias\No-Spy.exe /autorun []
"EoEngine"= []
"EoWeather"= []
"tsnpstd3"=C:\WINDOWS\tsnpstd3.exe [2006-11-29 262144]
"snpstd3"=C:\WINDOWS\vsnpstd3.exe [2006-09-19 827392]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2004-04-07 4730880]
"nwiz"=nwiz.exe /install []
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-07-22 266497]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2006-09-11 282624]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sonic RecordNow!"= []
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe []
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-06-13 68856]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2008-10-02 1124352]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2008-09-16 352256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

======File associations======

.reg - open - regedit.exe "%1" %*
.scr - open - "%1" %*

======List of files/folders created in the last 1 months======

2009-01-05 15:09:39 ----D---- C:\rsit
2008-12-30 16:45:18 ----A---- C:\WINDOWS\system32\tmp.txt
2008-12-30 16:45:02 ----A---- C:\rapport.txt
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\WS2Fix.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\VCCLSID.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\VACFix.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\swxcacls.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\swsc.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\swreg.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\SrchSTS.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\Process.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\o4Patch.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\IEDFix.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\dumphive.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\404Fix.exe
2008-12-30 15:21:51 ----A---- C:\Program Files\CleanUp40.exe
2008-12-30 15:06:49 ----D---- C:\Program Files\MSN Messenger
2008-12-30 15:03:25 ----SHD---- C:\Config.Msi
2008-12-30 14:52:16 ----D---- C:\Documents and Settings\raphael\Application Data\MSNInstaller
2008-12-25 14:48:37 ----N---- C:\WINDOWS\system32\spmsg.dll
2008-12-22 12:44:39 ----D---- C:\Program Files\e-Carte Bleue LCL
2008-12-17 14:19:06 ----D---- C:\Program Files\Microsoft Silverlight
2008-12-17 14:12:07 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2008-12-17 14:09:57 ----D---- C:\Program Files\Microsoft
2008-12-17 14:00:56 ----D---- C:\Program Files\Fichiers communs\Windows Live
2008-12-16 22:41:38 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2008-12-16 22:38:58 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2008-12-16 22:38:51 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2008-12-16 22:38:36 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$

======List of files/folders modified in the last 1 months======

2009-01-05 15:09:32 ----D---- C:\WINDOWS\Prefetch
2009-01-05 14:52:14 ----D---- C:\WINDOWS\Temp
2009-01-05 12:59:31 ----D---- C:\Program Files\Mozilla Firefox
2009-01-05 11:58:48 ----SD---- C:\WINDOWS\Tasks
2009-01-05 11:53:14 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-01-04 20:35:24 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2009-01-04 20:27:46 ----D---- C:\WINDOWS
2008-12-31 12:00:18 ----A---- C:\WINDOWS\wininit.ini
2008-12-31 11:03:44 ----RD---- C:\Program Files
2008-12-30 19:21:03 ----D---- C:\WINDOWS\system32
2008-12-30 19:08:19 ----D---- C:\WINDOWS\system32\CatRoot2
2008-12-30 17:58:05 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-12-30 17:58:03 ----D---- C:\WINDOWS\system32\drivers
2008-12-30 16:29:26 ----D---- C:\WINDOWS\WinSxS
2008-12-30 16:23:09 ----D---- C:\WINDOWS\system32\usmt
2008-12-30 16:23:09 ----D---- C:\WINDOWS\system32\URTTemp
2008-12-30 16:22:32 ----RSHD---- C:\WINDOWS\system32\dllcache
2008-12-30 16:21:51 ----D---- C:\WINDOWS\repair
2008-12-30 16:21:23 ----SHD---- C:\WINDOWS\Installer
2008-12-30 16:20:01 ----D---- C:\Program Files\Windows Media Player
2008-12-30 16:19:30 ----D---- C:\Program Files\eMule
2008-12-30 15:41:24 ----D---- C:\WINDOWS\Microsoft.NET
2008-12-30 15:24:36 ----D---- C:\Program Files\CleanUp!
2008-12-30 15:04:23 ----D---- C:\Program Files\Windows Live
2008-12-30 15:01:42 ----RSD---- C:\WINDOWS\assembly
2008-12-30 15:00:13 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2008-12-30 14:52:26 ----HD---- C:\WINDOWS\inf
2008-12-30 14:49:01 ----A---- C:\Program Files\Install_Messenger.exe
2008-12-29 15:00:50 ----HD---- C:\Program Files\InstallShield Installation Information
2008-12-25 17:03:02 ----D---- C:\Program Files\Soulseek
2008-12-25 14:48:38 ----D---- C:\WINDOWS\system32\CatRoot
2008-12-25 14:47:24 ----D---- C:\WINDOWS\Help
2008-12-24 21:57:44 ----A---- C:\WINDOWS\ModemLog_Agere Systems AC'97 Modem.txt
2008-12-24 21:52:54 ----D---- C:\WINDOWS\Debug
2008-12-24 21:41:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-12-18 14:18:17 ----HD---- C:\WINDOWS\$hf_mig$
2008-12-17 14:12:11 ----D---- C:\WINDOWS\system32\DirectX
2008-12-17 14:09:05 ----RSD---- C:\WINDOWS\Fonts
2008-12-17 14:00:56 ----D---- C:\Program Files\Fichiers communs
2008-12-17 14:00:40 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-12-17 14:00:35 ----SD---- C:\Documents and Settings\raphael\Application Data\Microsoft
2008-12-17 13:19:57 ----D---- C:\Program Files\DivX
2008-12-16 22:41:09 ----D---- C:\Program Files\Internet Explorer
2008-12-13 07:37:56 ----A---- C:\WINDOWS\system32\mshtml.dll
2008-12-10 00:24:37 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Pilote de processeur AMD Athlon64; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2004-05-08 38912]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-11-25 75072]
R1 eabfiltr;EABFiltr; \??\C:\WINDOWS\system32\drivers\EABFiltr.sys []
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 SbFw;SbFw; C:\WINDOWS\system32\drivers\SbFw.sys [2008-07-16 269736]
R1 sbhips;Sunbelt HIPS Driver; C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 CdaC15BA;CdaC15BA; \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS []
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2004-02-02 100384]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2004-09-03 1268204]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2003-10-08 94601]
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 BCM43XX;Pilote pour carte réseau BCM 802.11b; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2004-08-04 341760]
R3 CmBatt;Pilote d'adaptateur secteur Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 GEARAspiWDM;GEAR CDRom Filter; C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys [2005-02-02 14408]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-04-07 1382634]
R3 rtl8139;Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver; C:\WINDOWS\system32\DRIVERS\R8139n51.SYS [2003-10-23 46976]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2004-01-13 612032]
R3 tiumfwl;tiumfwl; C:\WINDOWS\system32\drivers\tiumfwl.sys [2003-02-19 42092]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 vaxscsi;vaxscsi; C:\WINDOWS\System32\Drivers\vaxscsi.sys [2006-10-22 223128]
S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 Bridge;Pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BridgeMP;Miniport de pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 catchme;catchme; \??\C:\DOCUME~1\raphael\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 Defender;Defender; \??\C:\Program Files\SinEspias\Defender.sys []
S3 eabusb;eabusb; \??\C:\WINDOWS\system32\drivers\eabusb.sys []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2008-05-07 17536]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2008-05-07 20864]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SMCIRDA;Pilote de périphérique SMC IrCC Miniport; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2001-08-23 36937]
S3 SNPSTD3;USB PC Camera (SNPSTD3); C:\WINDOWS\system32\DRIVERS\snpstd3.sys [2007-03-27 10252544]
S3 SoC PC-Camera Service;SoC PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys []
S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2008-06-06 8064]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2008-05-07 8064]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;Avira AntiVir Personal – Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-26 68865]
R2 AntiVirService;Avira AntiVir Personal – Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-26 151297]
R2 C-DillaCdaC11BA;C-DillaCdaC11BA; C:\WINDOWS\system32\drivers\CDAC11BA.EXE [2005-04-04 54784]
R2 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-06 168432]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2004-04-07 73728]
R2 SbPF.Launcher;SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-07-30 95528]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-07-30 1361192]
R2 StarWindService;StarWind iSCSI Service; C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe [2005-04-02 217600]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe [2004-02-26 49152]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-08-07 575488]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 GoogleDesktopManager-022208-143751;Google Desktop Manager 5.7.802.22438; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-06-13 29744]
S3 hpqwmi;HP WMI Interface; C:\Program Files\HPQ\SHARED\HPQWMI.exe [2004-07-27 98304]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 iPodService;iPodService; C:\Program Files\iPod\bin\iPodService.exe [2006-06-14 323584]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-24 918016]

-----------------EOF-----------------

j'essaye de t'envoyer le rapport antivir dans le prochain message...
scloob
Forumeur débutant
Forumeur débutant
 
Messages: 42
Inscription: 12 Juin 2008, 17:43
Haut

Messagede MoJac » 05 Jan 2009, 17:20

Bonsoir,
Poursuivons:

:ss) Désactive tes protections résidentes ( Antivirus , ... ) tu les réactiveras après le scan

  • Télécharge Lop S&D < ici de l'équipe IDN

  • Double-clique dessus pour lancer l'installation
  • Puis double-clique sur le raccourci Lop S&D présent sur ton bureau
  • Séléctionne la langue souhaitée , puis choisis l'Option 1 ( Recherche )
  • Patiente jusqu'à la fin du scan
  • Poste le rapport généré ( C:\lopR.txt )


( Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide )
- Suivez les instructions qui vous sont données.
- Si vous ne comprenez pas: redemandez des explications.

Image
Avatar de l’utilisateur
MoJac
Super Modérateur
Super Modérateur
 
Messages: 1414
Inscription: 01 Déc 2008, 18:27
Localisation: Puy de Dôme
Haut

Messagede scloob » 05 Jan 2009, 17:36

bonsoir et encore merci pour ton aide, j'espère qu'on réussira à résoudre ce problème...

voici le rapport du scan lop S&D :


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3400+ )
BIOS : Ver 1.00PARTTBL
USER : raphael ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Not Activated)
Firewall : Sunbelt Personal Firewall 4.6.1845 T (Not Activated)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:22 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 05/01/2009|16:26 )

--------------------\\ Listing des dossiers dans APPLIC~1

[02/12/2008|12:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[11/09/2006|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[17/05/2007|10:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7
[19/06/2008|13:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[04/01/2009|20:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[25/01/2005|00:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpqwmi
[20/11/2008|13:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[04/04/2005|12:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[12/06/2008|15:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[17/12/2008|14:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/05/2008|16:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nokia
[11/05/2008|15:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[07/02/2005|17:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[22/11/2004|07:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[12/10/2008|12:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[30/08/2008|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Soulseek
[08/08/2008|15:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[11/06/2008|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[13/03/2006|10:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[10/02/2006|14:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[29/08/2006|12:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[01/03/2008|14:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller


[17/05/2007|10:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[20/03/2007|10:40] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla
[23/02/2006|09:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[11/06/2008|17:25] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft


[22/02/2008|11:38] C:\DOCUME~1\raphael\APPLIC~1\Adobe
[29/05/2007|16:51] C:\DOCUME~1\raphael\APPLIC~1\AdobeUM
[26/02/2006|08:48] C:\DOCUME~1\raphael\APPLIC~1\Ahead
[11/09/2006|15:26] C:\DOCUME~1\raphael\APPLIC~1\Apple Computer
[24/11/2008|16:07] C:\DOCUME~1\raphael\APPLIC~1\DivX
[07/03/2008|12:58] C:\DOCUME~1\raphael\APPLIC~1\EoRezo
[23/08/2005|16:04] C:\DOCUME~1\raphael\APPLIC~1\Google
[04/04/2005|15:52] C:\DOCUME~1\raphael\APPLIC~1\Help
[22/11/2004|07:58] C:\DOCUME~1\raphael\APPLIC~1\Identities
[16/04/2008|12:21] C:\DOCUME~1\raphael\APPLIC~1\InstallShield
[08/02/2005|13:57] C:\DOCUME~1\raphael\APPLIC~1\InterTrust
[24/01/2005|23:43] C:\DOCUME~1\raphael\APPLIC~1\InterVideo
[15/06/2005|17:28] C:\DOCUME~1\raphael\APPLIC~1\Lavasoft
[25/01/2005|11:32] C:\DOCUME~1\raphael\APPLIC~1\Leadertech
[03/04/2005|01:26] C:\DOCUME~1\raphael\APPLIC~1\Macromedia
[12/06/2008|15:28] C:\DOCUME~1\raphael\APPLIC~1\Malwarebytes
[17/12/2008|14:00] C:\DOCUME~1\raphael\APPLIC~1\Microsoft
[01/08/2008|16:57] C:\DOCUME~1\raphael\APPLIC~1\Mozilla
[30/12/2008|14:52] C:\DOCUME~1\raphael\APPLIC~1\MSNInstaller
[11/05/2008|15:52] C:\DOCUME~1\raphael\APPLIC~1\Nokia
[11/05/2008|15:42] C:\DOCUME~1\raphael\APPLIC~1\PC Suite
[17/06/2008|21:48] C:\DOCUME~1\raphael\APPLIC~1\Skype
[25/01/2005|11:34] C:\DOCUME~1\raphael\APPLIC~1\Sonic
[13/11/2005|15:01] C:\DOCUME~1\raphael\APPLIC~1\Sony
[21/11/2004|23:10] C:\DOCUME~1\raphael\APPLIC~1\Sun
[14/06/2008|18:55] C:\DOCUME~1\raphael\APPLIC~1\SUPERAntiSpyware.com
[26/01/2005|16:06] C:\DOCUME~1\raphael\APPLIC~1\Symantec
[24/01/2005|22:52] C:\DOCUME~1\raphael\APPLIC~1\Template
[10/02/2006|14:52] C:\DOCUME~1\raphael\APPLIC~1\Ulead Systems

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[05/01/2009 11:58][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[20/01/2006 23:13][--a------] C:\WINDOWS\tasks\XoftSpy.job
[05/01/2009 16:00][--ah-----] C:\WINDOWS\tasks\ADA0237A911BD6DE.job
[05/01/2009 11:55][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 09:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

( ADA0237A911BD6DE.job )=( c:\docume~1\raphael\applic~1\viewse~1\Sendpartone.exe )

--------------------\\ Listing des dossiers dans C:\Program Files

[02/12/2008|12:10] C:\Program Files\Adobe
[22/10/2006|13:09] C:\Program Files\Alcohol Soft
[22/10/2006|13:09] C:\Program Files\Alcohol Toolbar
[19/06/2008|18:37] C:\Program Files\Alwil Software
[21/11/2004|23:17] C:\Program Files\AMD
[21/11/2004|23:08] C:\Program Files\Analog Devices
[21/11/2004|23:01] C:\Program Files\Apoint2K
[19/06/2008|13:15] C:\Program Files\Avira
[20/11/2008|23:58] C:\Program Files\BitLord
[04/04/2005|11:59] C:\Program Files\Boonty
[11/06/2008|12:11] C:\Program Files\BoontyGames
[09/02/2006|14:40] C:\Program Files\CASIO
[12/06/2008|22:07] C:\Program Files\CCleaner
[30/12/2008|15:24] C:\Program Files\CleanUp!
[17/06/2008|21:55] C:\Program Files\CodeStuff
[22/11/2004|07:58] C:\Program Files\ComPlus Applications
[11/05/2008|15:37] C:\Program Files\DIFX
[17/12/2008|13:19] C:\Program Files\DivX
[14/03/2005|05:00] C:\Program Files\Easy Internet signup
[22/12/2008|12:44] C:\Program Files\e-Carte Bleue LCL
[30/12/2008|16:19] C:\Program Files\eMule
[17/12/2008|14:00] C:\Program Files\Fichiers communs
[30/07/2008|18:58] C:\Program Files\Google
[25/01/2005|02:56] C:\Program Files\HPQ
[02/02/2005|21:52] C:\Program Files\Illustrate
[29/12/2008|15:00] C:\Program Files\InstallShield Installation Information
[16/12/2008|22:41] C:\Program Files\Internet Explorer
[25/01/2005|02:57] C:\Program Files\InterVideo
[11/09/2006|15:04] C:\Program Files\iPod
[11/09/2006|15:04] C:\Program Files\iTunes
[26/03/2008|23:05] C:\Program Files\Java
[09/02/2006|14:46] C:\Program Files\KODAK
[15/06/2005|17:28] C:\Program Files\Lavasoft
[26/01/2005|12:19] C:\Program Files\Macromedia
[30/12/2008|17:58] C:\Program Files\Malwarebytes' Anti-Malware
[17/11/2005|19:17] C:\Program Files\Meegos Creator
[15/06/2005|18:03] C:\Program Files\Mes Jeux Install‚s
[15/08/2008|15:11] C:\Program Files\Messenger
[17/12/2008|14:09] C:\Program Files\Microsoft
[03/03/2008|01:28] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[22/11/2004|07:58] C:\Program Files\microsoft frontpage
[21/11/2004|23:20] C:\Program Files\Microsoft Office
[17/12/2008|14:19] C:\Program Files\Microsoft Silverlight
[25/01/2005|00:24] C:\Program Files\Microsoft Works
[30/08/2005|10:37] C:\Program Files\Mihov Image Resizer
[19/06/2008|12:34] C:\Program Files\Movie Maker
[05/01/2009|12:59] C:\Program Files\Mozilla Firefox
[22/11/2004|07:58] C:\Program Files\MSN Gaming Zone
[30/12/2008|15:07] C:\Program Files\MSN Messenger
[04/03/2008|18:54] C:\Program Files\MSNFix
[21/11/2006|00:40] C:\Program Files\MSXML 4.0
[11/05/2008|16:00] C:\Program Files\MSXML 6.0
[23/02/2006|21:14] C:\Program Files\Nero
[19/06/2008|12:29] C:\Program Files\NetMeeting
[02/05/2008|21:24] C:\Program Files\Neuf
[20/11/2008|13:52] C:\Program Files\Nokia
[22/11/2004|07:58] C:\Program Files\Online Services
[19/06/2008|12:29] C:\Program Files\Outlook Express
[29/06/2006|16:08] C:\Program Files\Paltalk Messenger
[20/11/2008|13:50] C:\Program Files\PC Connectivity Solution
[11/09/2006|15:06] C:\Program Files\QuickTime
[21/11/2004|23:34] C:\Program Files\Services en ligne
[12/10/2008|12:38] C:\Program Files\Skype
[26/02/2007|10:51] C:\Program Files\Slide
[15/06/2005|15:40] C:\Program Files\Softwin
[21/11/2004|23:26] C:\Program Files\Sonic
[26/01/2005|12:49] C:\Program Files\Sonic Foundry
[26/01/2005|12:23] C:\Program Files\Sonic Foundry Setup
[13/11/2005|15:12] C:\Program Files\Sony
[13/11/2005|14:57] C:\Program Files\Sony Setup
[25/12/2008|17:03] C:\Program Files\Soulseek
[30/08/2008|19:39] C:\Program Files\Soulseek-Test
[19/11/2008|14:57] C:\Program Files\Spybot - Search & Destroy
[14/06/2008|11:15] C:\Program Files\Sunbelt Software
[16/09/2008|18:41] C:\Program Files\SUPERAntiSpyware
[12/06/2008|14:02] C:\Program Files\Trend Micro
[09/02/2006|14:50] C:\Program Files\Ulead Systems
[22/11/2004|07:58] C:\Program Files\Uninstall Information
[14/06/2008|12:29] C:\Program Files\V-Gear LiveShow
[11/06/2008|16:54] C:\Program Files\Windows Defender
[09/05/2005|16:51] C:\Program Files\Windows Journal Viewer
[30/12/2008|15:04] C:\Program Files\Windows Live
[09/02/2006|14:51] C:\Program Files\Windows Media Components
[11/12/2006|17:37] C:\Program Files\Windows Media Connect 2
[30/12/2008|16:20] C:\Program Files\Windows Media Player
[19/06/2008|12:29] C:\Program Files\Windows NT
[22/11/2004|07:58] C:\Program Files\WindowsUpdate
[11/03/2005|11:12] C:\Program Files\WinLemm
[16/05/2008|13:32] C:\Program Files\WinRAR
[22/11/2004|07:58] C:\Program Files\xerox
[20/07/2005|16:50] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[02/12/2008|12:10] C:\Program Files\Fichiers communs\Adobe
[11/03/2006|19:10] C:\Program Files\Fichiers communs\Ahead
[09/02/2006|14:50] C:\Program Files\Fichiers communs\InstallShield
[21/11/2004|23:10] C:\Program Files\Fichiers communs\Java
[26/01/2005|12:19] C:\Program Files\Fichiers communs\Macromedia
[04/04/2005|12:03] C:\Program Files\Fichiers communs\Macrovision Shared
[30/12/2008|15:00] C:\Program Files\Fichiers communs\Microsoft Shared
[22/11/2004|07:58] C:\Program Files\Fichiers communs\MSSoap
[20/11/2008|13:52] C:\Program Files\Fichiers communs\Nokia
[22/11/2004|07:58] C:\Program Files\Fichiers communs\ODBC
[20/11/2008|13:52] C:\Program Files\Fichiers communs\PCSuite
[22/11/2004|07:58] C:\Program Files\Fichiers communs\Services
[16/04/2008|12:21] C:\Program Files\Fichiers communs\snpstd3
[07/06/2006|11:44] C:\Program Files\Fichiers communs\Softwin
[21/11/2004|23:26] C:\Program Files\Fichiers communs\Sonic
[22/11/2004|07:58] C:\Program Files\Fichiers communs\SpeechEngines
[06/05/2008|17:13] C:\Program Files\Fichiers communs\SureThing Shared
[13/03/2006|10:10] C:\Program Files\Fichiers communs\Symantec Shared
[19/06/2008|12:28] C:\Program Files\Fichiers communs\System
[09/02/2006|14:50] C:\Program Files\Fichiers communs\Ulead Systems
[17/12/2008|14:00] C:\Program Files\Fichiers communs\Windows Live
[01/03/2008|14:56] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[14/06/2008|18:55] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 53 Processes )

IEXPLORE.EXE ~ [PID:1192]

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

C:\WINDOWS\Tasks\ADA0237A911BD6DE.job

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-05 16:30:52
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\raphael\Mes documents\Ma musique\Nokia Music Manager\Artiste inconnu\De La Planete Mars [UK]\Crack.AAC
C:\DOCUME~1\raphael\Mes documents\Ma musique\Sage Francis\Personal Journals\01-Crack_Pipes-DSP.mp3


[F:15][D:3]-> C:\DOCUME~1\raphael\LOCALS~1\Temp
[F:14][D:0]-> C:\DOCUME~1\raphael\Cookies
[F:345][D:9]-> C:\DOCUME~1\raphael\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 05/01/2009|16:33 - Option : [1]

--------------------\\ Fin du rapport a 16:33:22
scloob
Forumeur débutant
Forumeur débutant
 
Messages: 42
Inscription: 12 Juin 2008, 17:43
Haut

Messagede MoJac » 05 Jan 2009, 17:59

Bon pour l'instant: Relance Lop S&D

Choisis cette fois ci l'Option 2 (Suppression)
Ne ferme pas la fenêtre lors de la suppression !

Si le Bureau ne réapparaît pas presse Ctrl + Alt + Suppr , Onglet Fichier , Nouvelle tâche , tape explorer.exe et valide.

Poste le rapport.
Je continue d'éplucher le reste ...
- Suivez les instructions qui vous sont données.
- Si vous ne comprenez pas: redemandez des explications.

Image
Avatar de l’utilisateur
MoJac
Super Modérateur
Super Modérateur
 
Messages: 1414
Inscription: 01 Déc 2008, 18:27
Localisation: Puy de Dôme
Haut

Messagede scloob » 05 Jan 2009, 18:16

bien, voici le rapport :


--------------------\\ Lop S&D 4.2.5-0 XP/Vista

Microsoft Windows XP Édition familiale ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Athlon(tm) 64 Processor 3400+ )
BIOS : Ver 1.00PARTTBL
USER : raphael ( Administrator )
BOOT : Normal boot
Antivirus : Avira AntiVir PersonalEdition 8.0.1.30 (Not Activated)
Firewall : Sunbelt Personal Firewall 4.6.1845 T (Not Activated)
C:\ (Local Disk) - NTFS - Total:74 Go (Free:22 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [2] ( 05/01/2009|17:06 )


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ SUPPRESSION

Supprime! - C:\WINDOWS\Tasks\ADA0237A911BD6DE.job
-
[ Fichier Hosts ] .. Restaure!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing des dossiers dans APPLIC~1

[02/12/2008|12:11] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[11/09/2006|15:03] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[17/05/2007|10:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avg7
[19/06/2008|13:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Avira
[04/01/2009|20:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google Updater
[25/01/2005|00:13] C:\DOCUME~1\ALLUSE~1\APPLIC~1\hpqwmi
[20/11/2008|13:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Installations
[04/04/2005|12:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[12/06/2008|15:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[17/12/2008|14:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[11/05/2008|16:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Nokia
[11/05/2008|15:41] C:\DOCUME~1\ALLUSE~1\APPLIC~1\PC Suite
[07/02/2005|17:12] C:\DOCUME~1\ALLUSE~1\APPLIC~1\QuickTime
[22/11/2004|07:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[12/10/2008|12:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[30/08/2008|19:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Soulseek
[08/08/2008|15:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[11/06/2008|16:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SUPERAntiSpyware.com
[13/03/2006|10:01] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[10/02/2006|14:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Ulead Systems
[29/08/2006|12:53] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[01/03/2008|14:55] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller


[17/05/2007|10:48] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[20/03/2007|10:40] C:\DOCUME~1\LOCALS~1\APPLIC~1\Mozilla
[23/02/2006|09:10] C:\DOCUME~1\LOCALS~1\APPLIC~1\Symantec

[11/06/2008|17:25] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft


[22/02/2008|11:38] C:\DOCUME~1\raphael\APPLIC~1\Adobe
[29/05/2007|16:51] C:\DOCUME~1\raphael\APPLIC~1\AdobeUM
[26/02/2006|08:48] C:\DOCUME~1\raphael\APPLIC~1\Ahead
[11/09/2006|15:26] C:\DOCUME~1\raphael\APPLIC~1\Apple Computer
[24/11/2008|16:07] C:\DOCUME~1\raphael\APPLIC~1\DivX
[07/03/2008|12:58] C:\DOCUME~1\raphael\APPLIC~1\EoRezo
[23/08/2005|16:04] C:\DOCUME~1\raphael\APPLIC~1\Google
[04/04/2005|15:52] C:\DOCUME~1\raphael\APPLIC~1\Help
[22/11/2004|07:58] C:\DOCUME~1\raphael\APPLIC~1\Identities
[16/04/2008|12:21] C:\DOCUME~1\raphael\APPLIC~1\InstallShield
[08/02/2005|13:57] C:\DOCUME~1\raphael\APPLIC~1\InterTrust
[24/01/2005|23:43] C:\DOCUME~1\raphael\APPLIC~1\InterVideo
[15/06/2005|17:28] C:\DOCUME~1\raphael\APPLIC~1\Lavasoft
[25/01/2005|11:32] C:\DOCUME~1\raphael\APPLIC~1\Leadertech
[03/04/2005|01:26] C:\DOCUME~1\raphael\APPLIC~1\Macromedia
[12/06/2008|15:28] C:\DOCUME~1\raphael\APPLIC~1\Malwarebytes
[17/12/2008|14:00] C:\DOCUME~1\raphael\APPLIC~1\Microsoft
[01/08/2008|16:57] C:\DOCUME~1\raphael\APPLIC~1\Mozilla
[30/12/2008|14:52] C:\DOCUME~1\raphael\APPLIC~1\MSNInstaller
[11/05/2008|15:52] C:\DOCUME~1\raphael\APPLIC~1\Nokia
[11/05/2008|15:42] C:\DOCUME~1\raphael\APPLIC~1\PC Suite
[17/06/2008|21:48] C:\DOCUME~1\raphael\APPLIC~1\Skype
[25/01/2005|11:34] C:\DOCUME~1\raphael\APPLIC~1\Sonic
[13/11/2005|15:01] C:\DOCUME~1\raphael\APPLIC~1\Sony
[21/11/2004|23:10] C:\DOCUME~1\raphael\APPLIC~1\Sun
[14/06/2008|18:55] C:\DOCUME~1\raphael\APPLIC~1\SUPERAntiSpyware.com
[26/01/2005|16:06] C:\DOCUME~1\raphael\APPLIC~1\Symantec
[24/01/2005|22:52] C:\DOCUME~1\raphael\APPLIC~1\Template
[10/02/2006|14:52] C:\DOCUME~1\raphael\APPLIC~1\Ulead Systems

--------------------\\ Tâches planifiées dans C:\WINDOWS\tasks

[05/01/2009 11:58][--ah-----] C:\WINDOWS\tasks\MP Scheduled Scan.job
[20/01/2006 23:13][--a------] C:\WINDOWS\tasks\XoftSpy.job
[05/01/2009 11:55][--ah-----] C:\WINDOWS\tasks\SA.DAT
[05/08/2004 09:00][-rah-----] C:\WINDOWS\tasks\desktop.ini

--------------------\\ Listing des dossiers dans C:\Program Files

[02/12/2008|12:10] C:\Program Files\Adobe
[22/10/2006|13:09] C:\Program Files\Alcohol Soft
[22/10/2006|13:09] C:\Program Files\Alcohol Toolbar
[19/06/2008|18:37] C:\Program Files\Alwil Software
[21/11/2004|23:17] C:\Program Files\AMD
[21/11/2004|23:08] C:\Program Files\Analog Devices
[21/11/2004|23:01] C:\Program Files\Apoint2K
[19/06/2008|13:15] C:\Program Files\Avira
[20/11/2008|23:58] C:\Program Files\BitLord
[04/04/2005|11:59] C:\Program Files\Boonty
[11/06/2008|12:11] C:\Program Files\BoontyGames
[09/02/2006|14:40] C:\Program Files\CASIO
[12/06/2008|22:07] C:\Program Files\CCleaner
[30/12/2008|15:24] C:\Program Files\CleanUp!
[17/06/2008|21:55] C:\Program Files\CodeStuff
[22/11/2004|07:58] C:\Program Files\ComPlus Applications
[11/05/2008|15:37] C:\Program Files\DIFX
[17/12/2008|13:19] C:\Program Files\DivX
[14/03/2005|05:00] C:\Program Files\Easy Internet signup
[22/12/2008|12:44] C:\Program Files\e-Carte Bleue LCL
[30/12/2008|16:19] C:\Program Files\eMule
[17/12/2008|14:00] C:\Program Files\Fichiers communs
[30/07/2008|18:58] C:\Program Files\Google
[25/01/2005|02:56] C:\Program Files\HPQ
[02/02/2005|21:52] C:\Program Files\Illustrate
[29/12/2008|15:00] C:\Program Files\InstallShield Installation Information
[16/12/2008|22:41] C:\Program Files\Internet Explorer
[25/01/2005|02:57] C:\Program Files\InterVideo
[11/09/2006|15:04] C:\Program Files\iPod
[11/09/2006|15:04] C:\Program Files\iTunes
[26/03/2008|23:05] C:\Program Files\Java
[09/02/2006|14:46] C:\Program Files\KODAK
[15/06/2005|17:28] C:\Program Files\Lavasoft
[26/01/2005|12:19] C:\Program Files\Macromedia
[30/12/2008|17:58] C:\Program Files\Malwarebytes' Anti-Malware
[17/11/2005|19:17] C:\Program Files\Meegos Creator
[15/06/2005|18:03] C:\Program Files\Mes Jeux Install‚s
[15/08/2008|15:11] C:\Program Files\Messenger
[17/12/2008|14:09] C:\Program Files\Microsoft
[03/03/2008|01:28] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[22/11/2004|07:58] C:\Program Files\microsoft frontpage
[21/11/2004|23:20] C:\Program Files\Microsoft Office
[17/12/2008|14:19] C:\Program Files\Microsoft Silverlight
[25/01/2005|00:24] C:\Program Files\Microsoft Works
[30/08/2005|10:37] C:\Program Files\Mihov Image Resizer
[19/06/2008|12:34] C:\Program Files\Movie Maker
[05/01/2009|16:57] C:\Program Files\Mozilla Firefox
[22/11/2004|07:58] C:\Program Files\MSN Gaming Zone
[30/12/2008|15:07] C:\Program Files\MSN Messenger
[04/03/2008|18:54] C:\Program Files\MSNFix
[21/11/2006|00:40] C:\Program Files\MSXML 4.0
[11/05/2008|16:00] C:\Program Files\MSXML 6.0
[23/02/2006|21:14] C:\Program Files\Nero
[19/06/2008|12:29] C:\Program Files\NetMeeting
[02/05/2008|21:24] C:\Program Files\Neuf
[20/11/2008|13:52] C:\Program Files\Nokia
[22/11/2004|07:58] C:\Program Files\Online Services
[19/06/2008|12:29] C:\Program Files\Outlook Express
[29/06/2006|16:08] C:\Program Files\Paltalk Messenger
[20/11/2008|13:50] C:\Program Files\PC Connectivity Solution
[11/09/2006|15:06] C:\Program Files\QuickTime
[21/11/2004|23:34] C:\Program Files\Services en ligne
[12/10/2008|12:38] C:\Program Files\Skype
[26/02/2007|10:51] C:\Program Files\Slide
[15/06/2005|15:40] C:\Program Files\Softwin
[21/11/2004|23:26] C:\Program Files\Sonic
[26/01/2005|12:49] C:\Program Files\Sonic Foundry
[26/01/2005|12:23] C:\Program Files\Sonic Foundry Setup
[13/11/2005|15:12] C:\Program Files\Sony
[13/11/2005|14:57] C:\Program Files\Sony Setup
[25/12/2008|17:03] C:\Program Files\Soulseek
[30/08/2008|19:39] C:\Program Files\Soulseek-Test
[19/11/2008|14:57] C:\Program Files\Spybot - Search & Destroy
[14/06/2008|11:15] C:\Program Files\Sunbelt Software
[16/09/2008|18:41] C:\Program Files\SUPERAntiSpyware
[12/06/2008|14:02] C:\Program Files\Trend Micro
[09/02/2006|14:50] C:\Program Files\Ulead Systems
[22/11/2004|07:58] C:\Program Files\Uninstall Information
[14/06/2008|12:29] C:\Program Files\V-Gear LiveShow
[11/06/2008|16:54] C:\Program Files\Windows Defender
[09/05/2005|16:51] C:\Program Files\Windows Journal Viewer
[30/12/2008|15:04] C:\Program Files\Windows Live
[09/02/2006|14:51] C:\Program Files\Windows Media Components
[11/12/2006|17:37] C:\Program Files\Windows Media Connect 2
[30/12/2008|16:20] C:\Program Files\Windows Media Player
[19/06/2008|12:29] C:\Program Files\Windows NT
[22/11/2004|07:58] C:\Program Files\WindowsUpdate
[11/03/2005|11:12] C:\Program Files\WinLemm
[16/05/2008|13:32] C:\Program Files\WinRAR
[22/11/2004|07:58] C:\Program Files\xerox
[20/07/2005|16:50] C:\Program Files\Yahoo!

--------------------\\ Listing des dossiers dans C:\Program Files\Fichiers communs

[02/12/2008|12:10] C:\Program Files\Fichiers communs\Adobe
[11/03/2006|19:10] C:\Program Files\Fichiers communs\Ahead
[09/02/2006|14:50] C:\Program Files\Fichiers communs\InstallShield
[21/11/2004|23:10] C:\Program Files\Fichiers communs\Java
[26/01/2005|12:19] C:\Program Files\Fichiers communs\Macromedia
[04/04/2005|12:03] C:\Program Files\Fichiers communs\Macrovision Shared
[30/12/2008|15:00] C:\Program Files\Fichiers communs\Microsoft Shared
[22/11/2004|07:58] C:\Program Files\Fichiers communs\MSSoap
[20/11/2008|13:52] C:\Program Files\Fichiers communs\Nokia
[22/11/2004|07:58] C:\Program Files\Fichiers communs\ODBC
[20/11/2008|13:52] C:\Program Files\Fichiers communs\PCSuite
[22/11/2004|07:58] C:\Program Files\Fichiers communs\Services
[16/04/2008|12:21] C:\Program Files\Fichiers communs\snpstd3
[07/06/2006|11:44] C:\Program Files\Fichiers communs\Softwin
[21/11/2004|23:26] C:\Program Files\Fichiers communs\Sonic
[22/11/2004|07:58] C:\Program Files\Fichiers communs\SpeechEngines
[06/05/2008|17:13] C:\Program Files\Fichiers communs\SureThing Shared
[13/03/2006|10:10] C:\Program Files\Fichiers communs\Symantec Shared
[19/06/2008|12:28] C:\Program Files\Fichiers communs\System
[09/02/2006|14:50] C:\Program Files\Fichiers communs\Ulead Systems
[17/12/2008|14:00] C:\Program Files\Fichiers communs\Windows Live
[01/03/2008|14:56] C:\Program Files\Fichiers communs\WindowsLiveInstaller
[14/06/2008|18:55] C:\Program Files\Fichiers communs\Wise Installation Wizard

--------------------\\ Process

( 51 Processes )

... OK !

--------------------\\ Recherche avec S_Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Recherche de Fichiers / Dossiers Lop

Aucun fichier / dossier Lop trouvé !

--------------------\\ Verification du Registre

..... OK !

--------------------\\ Verification du fichier Hosts

Fichier Hosts PROPRE


--------------------\\ Recherche de fichiers avec Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-01-05 17:11:11
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Recherche d'autres infections

--------------------\\ Cracks & Keygens ..

C:\DOCUME~1\raphael\Mes documents\Ma musique\Nokia Music Manager\Artiste inconnu\De La Planete Mars [UK]\Crack.AAC
C:\DOCUME~1\raphael\Mes documents\Ma musique\Sage Francis\Personal Journals\01-Crack_Pipes-DSP.mp3


[F:16][D:3]-> C:\DOCUME~1\raphael\LOCALS~1\Temp
[F:14][D:0]-> C:\DOCUME~1\raphael\Cookies
[F:361][D:9]-> C:\DOCUME~1\raphael\LOCALS~1\TEMPOR~1\content.IE5

1 - "C:\Lop SD\LopR_1.txt" - 05/01/2009|16:33 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - 05/01/2009|17:13 - Option : [2]

--------------------\\ Fin du rapport a 17:13:04
scloob
Forumeur débutant
Forumeur débutant
 
Messages: 42
Inscription: 12 Juin 2008, 17:43
Haut

Messagede MoJac » 05 Jan 2009, 20:02

On continue donc:

Nous avons éliminé un reste de Lop (ADA0237A911BD6DE.job) , il reste dans le quartier encore un lancement planifié de XoftSpy.

:ss) On va éliminer ce job par une commande DOS.

- clic sur démarrer.
- clic sur executer.
- frappe cmd dans la fenêtre

Dans la fenêtre noire qui apparait frappe exactement:

del /a C:\WINDOWS\tasks\XoftSpy.job puis "entrée" bien entendu

Ferme la fenêtre DOS

Ta machine semble avoir beaucoup vécu, on va vérifier les éléments plus ou moins actifs qui restent et qui sont susceptibles de consommer des ressources:

:ss) Télécharge Ad-Remover(de C_XX) sur ton Bureau.

/!\ Déconnecte toi et ferme toutes les applications en cours /!\

  • Double clic sur le programme d'installation , et installe le dans son emplacement par défaut ( C:\Program files ).
  • Une fois installé clic sur l'icône Ad-remover située sur ton Bureau .
  • Au menu principal choisis l'option "A" (scan)
  • Poste le rapport qui apparait à la fin (il est aussi sauvegardé sous C:\Ad-report(date).log )


Note: Process.exe, un composant de l'outil, est détecté par certains antivirus, (AntiVir, Dr.Web, Kaspersky Anti-Virus) comme étant un RiskTool.
Il ne s'agit pas d'un virus, mais d'un utilitaire destiné à mettre fin à des processus.

C'est pourquoi il faut désactiver provisoirement ton antivirus.

Tout ça pour un pb de ronflement :)
- Suivez les instructions qui vous sont données.
- Si vous ne comprenez pas: redemandez des explications.

Image
Avatar de l’utilisateur
MoJac
Super Modérateur
Super Modérateur
 
Messages: 1414
Inscription: 01 Déc 2008, 18:27
Localisation: Puy de Dôme
Haut

Messagede scloob » 05 Jan 2009, 20:19

voici le rapport :


------- Logfile of AD-Remover 1.0.8.4 by C_XX | ONLY XP/VISTA -------

# START at: 19:11:05 | Lun 05/01/2009 | Microsoft® Windows XP™ SP3 (v5.1.2600)
# BOOT MODE: Normal
# OPTION: Scan | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
# PC: RAF | USER: raphael ( Current user is an administrator)
# DRIVE(S):
- C:\ (File System: NTFS)
# Internet Explorer v7.0.5730.11

# RUNNING PROCESSES: 46

+-----------------------| Boonty/Boonty Games Elements found :

.
HKCR\boontybox
HKCR\CLSID\{aa760512-9bd8-4b1b-9e7a-dd9bbe3cf119}
HKCR\PandoraBoxCtrl.PandoraBoxCtrl
HKCR\PandoraBoxCtrl.PandoraBoxCtrl.1
HKCR\Typelib\{BB8AC401-701B-4ED1-96BB-B84A0FCF5874}
HKCU\SOFTWARE\Boonty
HKLM\Software\Boonty
HKLM\Software\Classes\boontybox
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C23587D9-1415-4042-9B3D-43118A4334C7}_is1
.
C:\WINDOWS\system32\PandoraCtrl.dll
C:\Program Files\Boonty
C:\Program Files\Boonty\BoontyBox
C:\Program Files\Boonty\BoontyBox\BBUpdater.exe
C:\Program Files\Boonty\BoontyBox\BoontyBox.exe
C:\Program Files\Boonty\BoontyBox\ChkLicenceNS.exe
C:\Program Files\Boonty\BoontyBox\ChkLicenceOS.exe
C:\Program Files\Boonty\BoontyBox\CrashBox.exe
C:\Program Files\Boonty\BoontyBox\CsaFiles
C:\Program Files\Boonty\BoontyBox\Data
C:\Program Files\Boonty\BoontyBox\extract.exe
C:\Program Files\Boonty\BoontyBox\FLEXnet Activation Service Installer.dll
C:\Program Files\Boonty\BoontyBox\Html
C:\Program Files\Boonty\BoontyBox\Languages
C:\Program Files\Boonty\BoontyBox\Medias
C:\Program Files\Boonty\BoontyBox\PBCheckGames.exe
C:\Program Files\Boonty\BoontyBox\PBCheckMsgs.exe
C:\Program Files\Boonty\BoontyBox\PBInternetCnx.dll
C:\Program Files\Boonty\BoontyBox\PBLanguageManager.dll
C:\Program Files\Boonty\BoontyBox\Skins
C:\Program Files\Boonty\BoontyBox\Temp
C:\Program Files\Boonty\BoontyBox\Templates
C:\Program Files\Boonty\BoontyBox\unins000.dat
C:\Program Files\Boonty\BoontyBox\unins000.exe
C:\Program Files\Boonty\BoontyBox\CsaFiles\NewShell
C:\Program Files\Boonty\BoontyBox\CsaFiles\OldShell
C:\Program Files\Boonty\BoontyBox\CsaFiles\OldShell\Driver.csa
C:\Program Files\Boonty\BoontyBox\CsaFiles\OldShell\Play.csa
C:\Program Files\Boonty\BoontyBox\CsaFiles\OldShell\revolt.csa
C:\Program Files\Boonty\BoontyBox\CsaFiles\OldShell\VirtualF1Launcher.csa
C:\Program Files\Boonty\BoontyBox\Data\41_5698.xml
C:\Program Files\Boonty\BoontyBox\Data\41_5699.xml
C:\Program Files\Boonty\BoontyBox\Data\41_5749.xml
C:\Program Files\Boonty\BoontyBox\Data\41_5788.xml
C:\Program Files\Boonty\BoontyBox\Data\Boonty Crm Messages.xml
C:\Program Files\Boonty\BoontyBox\Data\BoontyGames.xml
C:\Program Files\Boonty\BoontyBox\Data\COMMON_GROUP.xml
C:\Program Files\Boonty\BoontyBox\Data\OtherGames.xml
C:\Program Files\Boonty\BoontyBox\Data\Pandora Crm Messages.xml
C:\Program Files\Boonty\BoontyBox\Data\Partner.xml
C:\Program Files\Boonty\BoontyBox\Html\About.css
C:\Program Files\Boonty\BoontyBox\Html\About.js
C:\Program Files\Boonty\BoontyBox\Html\bb_about.htm
C:\Program Files\Boonty\BoontyBox\Html\bb_configuration.htm
C:\Program Files\Boonty\BoontyBox\Html\bb_help.htm
C:\Program Files\Boonty\BoontyBox\Html\Configuration.css
C:\Program Files\Boonty\BoontyBox\Html\Configuration.js
C:\Program Files\Boonty\BoontyBox\Html\de
C:\Program Files\Boonty\BoontyBox\Html\en
C:\Program Files\Boonty\BoontyBox\Html\fr
C:\Program Files\Boonty\BoontyBox\Html\help.css
C:\Program Files\Boonty\BoontyBox\Html\mask.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_css
C:\Program Files\Boonty\BoontyBox\Html\de\about_images
C:\Program Files\Boonty\BoontyBox\Html\de\about_js
C:\Program Files\Boonty\BoontyBox\Html\de\bb_about.htm
C:\Program Files\Boonty\BoontyBox\Html\de\bb_configuration.htm
C:\Program Files\Boonty\BoontyBox\Html\de\css
C:\Program Files\Boonty\BoontyBox\Html\de\images
C:\Program Files\Boonty\BoontyBox\Html\de\js
C:\Program Files\Boonty\BoontyBox\Html\de\mask.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_css\style.css
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\bkg.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\Left.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\LogoBoontyBox_Big.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\LogoBoontyBox_Release.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\Right.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\Thumbs.db
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\Top.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_images\transp.gif
C:\Program Files\Boonty\BoontyBox\Html\de\about_js\GestionContenu.js
C:\Program Files\Boonty\BoontyBox\Html\de\css\style.css
C:\Program Files\Boonty\BoontyBox\Html\de\images\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\iconDOWNLOADBig.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\iconDOWNLOADSmall.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\iconHOMEBig.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\iconHOMESmall.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\iconMESSAGESBig.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\iconMESSAGESSmall.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\Left.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\LeftHeaderBackground.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\OngletDOWNLOAD_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\OngletDOWNLOAD_On.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\OngletGrisBkgOff.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\OngletGrisBkgOn.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\OngletHOME_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\OngletHOME_On.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\OngletMESSAGES_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\OngletMESSAGES_On.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\OngletRedBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\OngletSelect.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\Right.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\Top.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\de\images\transp.gif
C:\Program Files\Boonty\BoontyBox\Html\de\js\GestionContenu.js
C:\Program Files\Boonty\BoontyBox\Html\en\about_css
C:\Program Files\Boonty\BoontyBox\Html\en\about_images
C:\Program Files\Boonty\BoontyBox\Html\en\about_js
C:\Program Files\Boonty\BoontyBox\Html\en\bb_about.htm
C:\Program Files\Boonty\BoontyBox\Html\en\bb_configuration.htm
C:\Program Files\Boonty\BoontyBox\Html\en\css
C:\Program Files\Boonty\BoontyBox\Html\en\images
C:\Program Files\Boonty\BoontyBox\Html\en\js
C:\Program Files\Boonty\BoontyBox\Html\en\mask.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_css\style.css
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\bkg.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\Left.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\LogoBoontyBox_Big.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\LogoBoontyBox_Release.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\Right.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\Thumbs.db
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\Top.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_images\transp.gif
C:\Program Files\Boonty\BoontyBox\Html\en\about_js\GestionContenu.js
C:\Program Files\Boonty\BoontyBox\Html\en\css\style.css
C:\Program Files\Boonty\BoontyBox\Html\en\images\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\iconDOWNLOADBig.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\iconDOWNLOADSmall.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\iconHOMEBig.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\iconHOMESmall.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\iconMESSAGESBig.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\iconMESSAGESSmall.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\Left.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\LeftHeaderBackground.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\OngletDOWNLOAD_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\OngletDOWNLOAD_On.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\OngletGrisBkgOff.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\OngletGrisBkgOn.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\OngletHOME_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\OngletHOME_On.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\OngletMESSAGES_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\OngletMESSAGES_On.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\OngletRedBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\OngletSelect.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\Right.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\Top.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\en\images\transp.gif
C:\Program Files\Boonty\BoontyBox\Html\en\js\GestionContenu.js
C:\Program Files\Boonty\BoontyBox\Html\fr\about_css
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images
C:\Program Files\Boonty\BoontyBox\Html\fr\about_js
C:\Program Files\Boonty\BoontyBox\Html\fr\bb_about.htm
C:\Program Files\Boonty\BoontyBox\Html\fr\bb_configuration.htm
C:\Program Files\Boonty\BoontyBox\Html\fr\css
C:\Program Files\Boonty\BoontyBox\Html\fr\images
C:\Program Files\Boonty\BoontyBox\Html\fr\js
C:\Program Files\Boonty\BoontyBox\Html\fr\mask.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_css\style.css
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\bkg.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\Left.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\LogoBoontyBox_Big.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\Right.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\Thumbs.db
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\Top.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_images\transp.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\about_js\GestionContenu.js
C:\Program Files\Boonty\BoontyBox\Html\fr\css\style.css
C:\Program Files\Boonty\BoontyBox\Html\fr\images\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\iconDOWNLOADBig.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\iconDOWNLOADSmall.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\iconHOMEBig.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\iconHOMESmall.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\iconMESSAGESBig.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\iconMESSAGESSmall.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\Left.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\LeftHeaderBackground.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\OngletDOWNLOAD_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\OngletDOWNLOAD_On.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\OngletGrisBkgOff.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\OngletGrisBkgOn.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\OngletHOME_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\OngletHOME_On.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\OngletMESSAGES_Off.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\OngletMESSAGES_On.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\OngletRedBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\OngletSelect.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\Right.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\Top.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\images\transp.gif
C:\Program Files\Boonty\BoontyBox\Html\fr\js\GestionContenu.js
C:\Program Files\Boonty\BoontyBox\Languages\boontybox_de.xml
C:\Program Files\Boonty\BoontyBox\Languages\boontybox_en.xml
C:\Program Files\Boonty\BoontyBox\Languages\boontybox_es.xml
C:\Program Files\Boonty\BoontyBox\Languages\boontybox_fr.xml
C:\Program Files\Boonty\BoontyBox\Languages\boontybox_it.xml
C:\Program Files\Boonty\BoontyBox\Languages\boontybox_kr.xml
C:\Program Files\Boonty\BoontyBox\Languages\boontybox_nl.xml
C:\Program Files\Boonty\BoontyBox\Languages\boontybox_us.xml
C:\Program Files\Boonty\BoontyBox\Languages\pandora_de.xml
C:\Program Files\Boonty\BoontyBox\Languages\pandora_en.xml
C:\Program Files\Boonty\BoontyBox\Languages\pandora_fr.xml
C:\Program Files\Boonty\BoontyBox\Medias\01NetMain.gif
C:\Program Files\Boonty\BoontyBox\Medias\01NetMenu.gif
C:\Program Files\Boonty\BoontyBox\Medias\01NetPrefs.gif
C:\Program Files\Boonty\BoontyBox\Medias\BoontyBox_Icon_01Net.ico
C:\Program Files\Boonty\BoontyBox\Medias\BoontyBox_Logo_v2.gif
C:\Program Files\Boonty\BoontyBox\Medias\Buttons
C:\Program Files\Boonty\BoontyBox\Medias\DefaultMessageImg.gif
C:\Program Files\Boonty\BoontyBox\Medias\DefaultMessageSkin.gif
C:\Program Files\Boonty\BoontyBox\Medias\Downtownrun_140x100.jpg
C:\Program Files\Boonty\BoontyBox\Medias\Driver_140x100.jpg
C:\Program Files\Boonty\BoontyBox\Medias\Logo_BoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Medias\Revolt_140x100.jpg
C:\Program Files\Boonty\BoontyBox\Medias\skin.jpg
C:\Program Files\Boonty\BoontyBox\Medias\Smileys
C:\Program Files\Boonty\BoontyBox\Medias\Thumbs.db
C:\Program Files\Boonty\BoontyBox\Medias\VirtualF1_140x100.jpg
C:\Program Files\Boonty\BoontyBox\Medias\Buttons\bt_fermer.gif
C:\Program Files\Boonty\BoontyBox\Medias\Buttons\Close.gif
C:\Program Files\Boonty\BoontyBox\Medias\Buttons\no.gif
C:\Program Files\Boonty\BoontyBox\Medias\Buttons\puce.gif
C:\Program Files\Boonty\BoontyBox\Medias\Buttons\Thumbs.db
C:\Program Files\Boonty\BoontyBox\Medias\Buttons\yes.gif
C:\Program Files\Boonty\BoontyBox\Medias\Smileys\icon_biggrin.gif
C:\Program Files\Boonty\BoontyBox\Medias\Smileys\icon_confused.gif
C:\Program Files\Boonty\BoontyBox\Medias\Smileys\icon_cool.gif
C:\Program Files\Boonty\BoontyBox\Medias\Smileys\icon_eek.gif
C:\Program Files\Boonty\BoontyBox\Medias\Smileys\icon_frown.gif
C:\Program Files\Boonty\BoontyBox\Medias\Smileys\icon_mad.gif
C:\Program Files\Boonty\BoontyBox\Medias\Smileys\icon_razz.gif
C:\Program Files\Boonty\BoontyBox\Medias\Smileys\icon_smile.gif
C:\Program Files\Boonty\BoontyBox\Medias\Smileys\icon_wink.gif
C:\Program Files\Boonty\BoontyBox\Medias\Smileys\Thumbs.db
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray.cab
C:\Program Files\Boonty\BoontyBox\Skins\Default
C:\Program Files\Boonty\BoontyBox\Skins\Default.cab
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia.cab
C:\Program Files\Boonty\BoontyBox\Skins\Lips Red
C:\Program Files\Boonty\BoontyBox\Skins\Lips Red.cab
C:\Program Files\Boonty\BoontyBox\Skins\Little Pink
C:\Program Files\Boonty\BoontyBox\Skins\Little Pink.cab
C:\Program Files\Boonty\BoontyBox\Skins\Oceanic
C:\Program Files\Boonty\BoontyBox\Skins\Oceanic.cab
C:\Program Files\Boonty\BoontyBox\Skins\Orange Blossom
C:\Program Files\Boonty\BoontyBox\Skins\Orange Blossom.cab
C:\Program Files\Boonty\BoontyBox\Skins\Ultra Violet
C:\Program Files\Boonty\BoontyBox\Skins\Ultra Violet.cab
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\bkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\Left.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\LogoBoontyBox_Big.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\pixel_color.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\Right.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\Top.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\about\transp.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocBottom.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocBottomLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocBottomRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocInBottom.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocInBottomLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocInBottomRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocInLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocInMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocInRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocInTop.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocInTopLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocInTopRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocTop.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocTopLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\blocTopRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BottomHelpOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BottomHelpOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BottomOptionsOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BottomOptionsOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BtHeaderLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BtHeaderMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\BtHeaderRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonAfficheMessageOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonAfficheMessageOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonBkgBuyOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonBkgBuyOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonBkgMoreInfosOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonBkgMoreInfosOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonBkgPlayOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonBkgPlayOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonMoreGamesOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonMoreGamesOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonReinstallerOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonReinstallerOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonRetelechargerOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonRetelechargerOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonSupprimerOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ButtonSupprimerOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\Close.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\iconDownload.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\iconFolder.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\iconHelp.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\iconHelpClose.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\iconMesJeux.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\iconMessages.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\iconMoreGames.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\iconPause.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\iconStart.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\itemButtonCheckFalse.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\itemButtonCheckTrue.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\itemButtonDelete.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\itemButtonLaunch.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\itemButtonNone.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\itemButtonPause.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\itemButtonPlay.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ItemConnexionFalse.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ItemConnexionTrue.ico
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ItemError.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ItemNone.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ItemPause.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ItemPlay.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\ItemSuccess.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\Left.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\LeftHeaderSide.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\Maximize.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\MaximizeOff.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\MaximizeOn.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\Minimize.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\MinimizeOff.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\MinimizeOn.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\OngletDownloadsOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\OngletDownloadsOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\OngletGamesOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\OngletGamesOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\OngletMessagesOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\OngletMessagesOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\OngletSelect.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\Resize.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\Right.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\textOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\textOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\textSelect.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\Thumbs.db
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\Top.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\main\TopRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\iconDOWNLOADBig.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\iconDOWNLOADSmall.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\iconHOMEBig.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\iconHOMESmall.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\iconMESSAGESBig.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\iconMESSAGESSmall.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\Left.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\LeftHeaderBackground.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\OngletDOWNLOAD_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\OngletDOWNLOAD_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\OngletGrisBkgOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\OngletGrisBkgOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\OngletHOME_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\OngletHOME_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\OngletMESSAGES_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\OngletMESSAGES_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\OngletRedBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\OngletSelect.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\pixel_color.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\Right.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\Top.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Ash gray\prefs\transp.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocBottom.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocBottomLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocBottomRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocInBottom.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocInBottomLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocInBottomRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocInLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocInMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocInRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocInTop.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocInTopLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocInTopRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocTop.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocTopLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\blocTopRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BottomHelpOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BottomHelpOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BottomOptionsOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BottomOptionsOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BtHeaderLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BtHeaderMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\BtHeaderRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonAfficheMessageOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonAfficheMessageOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonBkgBuyOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonBkgBuyOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonBkgMoreInfosOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonBkgMoreInfosOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonBkgPlayOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonBkgPlayOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonMoreGamesOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonMoreGamesOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonReinstallerOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonReinstallerOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonRetelechargerOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonRetelechargerOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonSupprimerOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ButtonSupprimerOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\iconDownload.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\iconFolder.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\iconMesJeux.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\iconMessages.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\iconMoreGames.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\iconPause.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\iconStart.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\itemButtonCheckFalse.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\itemButtonCheckTrue.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\itemButtonDelete.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\itemButtonLaunch.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\itemButtonNone.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\itemButtonPause.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\itemButtonPlay.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ItemConnexionFalse.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\ItemConnexionTrue.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\ItemError.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ItemNone.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ItemPause.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ItemPlay.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\ItemSuccess.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\Left.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\LeftHeaderSide.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main
C:\Program Files\Boonty\BoontyBox\Skins\Default\MaximizeOff.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\MaximizeOn.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\MinimizeOff.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\MinimizeOn.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\OngletDownloadsOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\OngletDownloadsOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\OngletGamesOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\OngletGamesOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\OngletMessagesOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\OngletMessagesOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\OngletSelect.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs
C:\Program Files\Boonty\BoontyBox\Skins\Default\Resize.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\Right.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\Top.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\TopRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\bkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\Left.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\LogoBoontyBox_Big.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\pixel_color.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\Right.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\Thumbs.db
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\Top.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\about\transp.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocBottom.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocBottomLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocBottomRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocInBottom.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocInBottomLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocInBottomRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocInLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocInMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocInRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocInTop.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocInTopLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocInTopRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocTop.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocTopLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\blocTopRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BottomHelpOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BottomHelpOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BottomOptionsOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BottomOptionsOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BtHeaderLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BtHeaderMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\BtHeaderRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonAfficheMessageOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonAfficheMessageOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonBkgBuyOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonBkgBuyOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonBkgMoreInfosOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonBkgMoreInfosOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonBkgPlayOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonBkgPlayOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonMoreGamesOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonMoreGamesOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonReinstallerOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonReinstallerOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonRetelechargerOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonRetelechargerOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonSupprimerOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ButtonSupprimerOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\iconDownload.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\iconFolder.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\iconHelp.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\iconHelpClose.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\iconMesJeux.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\iconMessages.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\iconMoreGames.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\iconPause.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\iconStart.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\itemButtonCheckFalse.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\itemButtonCheckTrue.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\itemButtonDelete.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\itemButtonLaunch.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\itemButtonNone.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\itemButtonPause.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\itemButtonPlay.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ItemConnexionFalse.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ItemConnexionTrue.ico
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ItemError.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ItemNone.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ItemPause.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ItemPlay.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\ItemSuccess.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\Left.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\LeftHeaderSide.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\Maximize.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\MaximizeOff.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\MaximizeOn.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\Minimize.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\MinimizeOff.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\MinimizeOn.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\OngletDownloadsOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\OngletDownloadsOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\OngletGamesOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\OngletGamesOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\OngletMessagesOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\OngletMessagesOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\OngletSelect.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\Resize.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\Right.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\textOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\textOver.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\textSelect.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\Thumbs.db
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\Top.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\main\TopRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\iconDOWNLOADBig.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\iconDOWNLOADSmall.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\iconHOMEBig.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\iconHOMESmall.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\iconMESSAGESBig.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\iconMESSAGESSmall.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\Left.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\LeftHeaderBackground.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\OngletDOWNLOAD_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\OngletDOWNLOAD_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\OngletGrisBkgOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\OngletGrisBkgOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\OngletHOME_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\OngletHOME_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\OngletMESSAGES_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\OngletMESSAGES_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\OngletRedBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\OngletSelect.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\pixel_color.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\Right.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\Thumbs.db
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\Top.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Default\prefs\transp.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\prefs
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\bkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\ButtonBkgLeft_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\ButtonBkgLeft_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\ButtonBkgMiddle_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\ButtonBkgMiddle_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\ButtonBkgRight_Off.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\ButtonBkgRight_On.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\CloseOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\CloseOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\Left.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\LeftHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\LogoBoontyBox.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\LogoBoontyBox_Big.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\MaximizeOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\MaximizeOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\MinimizeOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\MinimizeOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\pixel_color.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\Right.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\RightHeaderBkg.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\Top.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\TopLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\TopLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\TopLeftSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\TopRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\TopRightSouth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\about\transp.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocBottom.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocBottomLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocBottomRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocInBottom.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocInBottomLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocInBottomRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocInLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocInMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocInRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocInTop.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocInTopLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocInTopRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocTop.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocTopLeft.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\blocTopRight.GIF
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\Bottom.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BottomHelpOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BottomHelpOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BottomLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BottomLeftEast.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BottomLeftNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BottomOptionsOff.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BottomOptionsOn.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BottomRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BottomRightNorth.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BottomRightWest.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BtHeaderLeft.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BtHeaderMiddle.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\BtHeaderRight.gif
C:\Program Files\Boonty\BoontyBox\Skins\Gardenia\main\
scloob
Forumeur débutant
Forumeur débutant
 
Messages: 42
Inscription: 12 Juin 2008, 17:43
Haut

Messagede MoJac » 05 Jan 2009, 22:00

A moins que tu n'aies de bonnes raisons de garder Boonty games on va le supprimer.

:ss) Relance "Ad-remover".

Au menu principal choisis l'option "B" .

Coche cette ligne à l'écran de sélection :

Suppression boonty games

Puis choisis "S" , le programme va travailler,

Poste le rapport qui apparait à la fin (il est aussi sauvegardé sous C:\Ad-report(date).log )

:ss) Refait un scan RSIT et poste log.txt

:ss) Et comment vont les ronflements et comment se comporte ta machine :mrgreen:
- Suivez les instructions qui vous sont données.
- Si vous ne comprenez pas: redemandez des explications.

Image
Avatar de l’utilisateur
MoJac
Super Modérateur
Super Modérateur
 
Messages: 1414
Inscription: 01 Déc 2008, 18:27
Localisation: Puy de Dôme
Haut

Messagede scloob » 05 Jan 2009, 23:32

apres cette manip mon ordi se comporte toujours de la même façon...

voici le rapport ad-remover :


------- Logfile of AD-Remover 1.0.8.4 by C_XX | ONLY XP/VISTA -------

*** Limited to ***

Boonty/BoontyGames

******************

# START at: 22:23:40 | Lun 05/01/2009 | Microsoft® Windows XP™ SP3 (v5.1.2600)
# BOOT MODE: Normal
# OPTION: Clean | EXECUTED FROM: C:\Program Files\Ad-remover\AD-Remover.bat
# PC: RAF | USER: raphael ( Current user is an administrator)
# DRIVE(S):
- C:\ (File System: NTFS)
# Internet Explorer v7.0.5730.11

# RUNNING PROCESSES: 47

(!) ---- IE start pages reset

+-----------------------| Boonty/Boonty Games Elements Deleted :

.
HKCR\boontybox
HKCR\CLSID\{aa760512-9bd8-4b1b-9e7a-dd9bbe3cf119}
HKCR\PandoraBoxCtrl.PandoraBoxCtrl
HKCR\PandoraBoxCtrl.PandoraBoxCtrl.1
HKCR\Typelib\{BB8AC401-701B-4ED1-96BB-B84A0FCF5874}
HKCU\SOFTWARE\Boonty
HKLM\Software\Boonty
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{C23587D9-1415-4042-9B3D-43118A4334C7}_is1
.
C:\WINDOWS\system32\PandoraCtrl.dll
C:\Program Files\Boonty
C:\Program Files\BoontyGames
C:\Documents and Settings\All Users\MENUDM~1\PROGRA~1\BoontyGames

(!) ---- Temp files deleted.
(!) ---- Recycle bin emptied in all drives.


+-----------------------| ADDED SCAN :


+---------- Scanning prefs.js ... ( # Mozilla User Preferences )

..\2xsloq7w.default\prefs.js :

~~~~ Mozilla FireFox version 3.0.5 ~~~~

* Browser Search Selected Engine: "Live Search"
* Browser Startup HomePage: "http://fr.msn.com/"

.

+---------------------------------------------------------------------------+

+--[HKEY_CURRENT_USER\..\Internet Explorer\MAIN]

Start Page : hxxp://www.microsoft.com/isapi/redir.dl ... ar=msnhome

+--[HKEY_LOCAL_MACHINE\..\Internet Explorer\MAIN]

Start Page : hxxp://fr.msn.com/

+---------------------------------------------------------------------------+

[~1855 bytes] - "C:\AD-report-Clean-05.01.2009.log"
[~247277 bytes] - "C:\AD-report-Scan-05.01.2009.log"

# END at: 22:26:08 | 05/01/2009 - Time elapsed: 2 minutes, 28 seconds

+---------------------------------------------------------------------------+
+------------------------------- [ E.O.F - 43 lines ]
+---------------------------------------------------------------------------+


puis le log.text du rsit :

Logfile of random's system information tool 1.05 (written by random/random)
Run by raphael at 2009-01-05 22:28:30
Microsoft Windows XP Édition familiale Service Pack 3
System drive C: has 23 GB (30%) free of 76 GB
Total RAM: 511 MB (22% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:28:46, on 05/01/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Sunbelt Software\Personal Firewall\SbPFCl.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\WINDOWS\AGRSMMSG.exe
C:\WINDOWS\tsnpstd3.exe
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\raphael\Bureau\RSIT.exe
C:\Program Files\Trend Micro\monjack\raphael.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://fr.msn.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Alcohol Toolbar Helper - {52D06F97-5511-43FA-8FDA-C481864FD26E} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O3 - Toolbar: Alcohol Toolbar - {4C4E7CDB-5BFC-4D74-83E2-8AE659B7EDA2} - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll (file missing)
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [Sin Espias] C:\Program Files\SinEspias\No-Spy.exe /autorun
O4 - HKLM\..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=FR_FR&c=Q105&bd=presario&pf=laptop
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid= ... lcid=0x409
O16 - DPF: {45E83043-1F6F-4D22-A5E7-0138EA171B49} (FileSharingCtrl Class) - http://appdirectory.messenger.msn.com/A ... ngctrl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by1fd.bay1.hotmail.msn.com/resou ... nPUpld.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/msnme ... loader.cab
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Avira AntiVir Personal – Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal – Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SbPF.Launcher - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Sunbelt Personal Firewall 4 (SPF4) - Sunbelt Software, Inc. - C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 9755 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\MP Scheduled Scan.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{52D06F97-5511-43FA-8FDA-C481864FD26E}]
Alcohol Toolbar Helper - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll [2008-02-22 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll [2008-10-06 652784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4C4E7CDB-5BFC-4D74-83E2-8AE659B7EDA2} - Alcohol Toolbar - C:\Program Files\Alcohol Toolbar\v3.2.0.0\Alcohol_Toolbar.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2003-10-08 159744]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2004-03-01 200766]
"UpdateManager"=C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe [2003-08-19 110592]
"eabconfg.cpl"=C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe [2004-08-19 290816]
"AGRSMMSG"=C:\WINDOWS\AGRSMMSG.exe [2004-09-03 88363]
"Sin Espias"=C:\Program Files\SinEspias\No-Spy.exe /autorun []
"EoEngine"= []
"EoWeather"= []
"tsnpstd3"=C:\WINDOWS\tsnpstd3.exe [2006-11-29 262144]
"snpstd3"=C:\WINDOWS\vsnpstd3.exe [2006-09-19 827392]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2004-04-07 4730880]
"nwiz"=nwiz.exe /install []
"avgnt"=C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe [2008-07-22 266497]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2006-09-11 282624]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sonic RecordNow!"= []
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe []
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-06-13 68856]
"PC Suite Tray"=C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2008-10-02 1124352]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2008-09-16 352256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=
"NoDriveTypeAutoRun"=
"NoDrives"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

======File associations======

.reg - open - regedit.exe "%1" %*
.scr - open - "%1" %*

======List of files/folders created in the last 1 months======

2009-01-05 19:09:40 ----D---- C:\Program Files\Ad-remover
2009-01-05 16:26:03 ----A---- C:\lopR.txt
2009-01-05 16:25:08 ----D---- C:\Lop SD
2009-01-05 15:09:39 ----D---- C:\rsit
2008-12-30 16:45:18 ----A---- C:\WINDOWS\system32\tmp.txt
2008-12-30 16:45:02 ----A---- C:\rapport.txt
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\WS2Fix.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\VCCLSID.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\VACFix.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\swxcacls.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\swsc.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\swreg.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\SrchSTS.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\Process.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\o4Patch.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\IEDFix.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\dumphive.exe
2008-12-30 16:40:42 ----A---- C:\WINDOWS\system32\404Fix.exe
2008-12-30 15:21:51 ----A---- C:\Program Files\CleanUp40.exe
2008-12-30 15:06:49 ----D---- C:\Program Files\MSN Messenger
2008-12-30 15:03:25 ----SHD---- C:\Config.Msi
2008-12-30 14:52:16 ----D---- C:\Documents and Settings\raphael\Application Data\MSNInstaller
2008-12-25 14:48:37 ----N---- C:\WINDOWS\system32\spmsg.dll
2008-12-22 12:44:39 ----D---- C:\Program Files\e-Carte Bleue LCL
2008-12-17 14:19:06 ----D---- C:\Program Files\Microsoft Silverlight
2008-12-17 14:12:07 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2008-12-17 14:09:57 ----D---- C:\Program Files\Microsoft
2008-12-17 14:00:56 ----D---- C:\Program Files\Fichiers communs\Windows Live
2008-12-16 22:41:38 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2008-12-16 22:38:58 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2008-12-16 22:38:51 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2008-12-16 22:38:36 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$

======List of files/folders modified in the last 1 months======

2009-01-05 22:28:38 ----D---- C:\WINDOWS\Prefetch
2009-01-05 22:26:42 ----D---- C:\WINDOWS\Temp
2009-01-05 22:24:46 ----RD---- C:\Program Files
2009-01-05 22:23:54 ----D---- C:\WINDOWS\system32
2009-01-05 22:19:47 ----SD---- C:\WINDOWS\Tasks
2009-01-05 20:49:32 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-01-05 19:39:58 ----D---- C:\Program Files\Mozilla Firefox
2009-01-04 20:35:24 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2009-01-04 20:27:46 ----D---- C:\WINDOWS
2008-12-31 12:00:18 ----A---- C:\WINDOWS\wininit.ini
2008-12-30 19:08:19 ----D---- C:\WINDOWS\system32\CatRoot2
2008-12-30 17:58:05 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-12-30 17:58:03 ----D---- C:\WINDOWS\system32\drivers
2008-12-30 16:29:26 ----D---- C:\WINDOWS\WinSxS
2008-12-30 16:23:09 ----D---- C:\WINDOWS\system32\usmt
2008-12-30 16:23:09 ----D---- C:\WINDOWS\system32\URTTemp
2008-12-30 16:22:32 ----RSHD---- C:\WINDOWS\system32\dllcache
2008-12-30 16:21:51 ----D---- C:\WINDOWS\repair
2008-12-30 16:21:23 ----SHD---- C:\WINDOWS\Installer
2008-12-30 16:20:01 ----D---- C:\Program Files\Windows Media Player
2008-12-30 16:19:30 ----D---- C:\Program Files\eMule
2008-12-30 15:41:24 ----D---- C:\WINDOWS\Microsoft.NET
2008-12-30 15:24:36 ----D---- C:\Program Files\CleanUp!
2008-12-30 15:04:23 ----D---- C:\Program Files\Windows Live
2008-12-30 15:01:42 ----RSD---- C:\WINDOWS\assembly
2008-12-30 15:00:13 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2008-12-30 14:52:26 ----HD---- C:\WINDOWS\inf
2008-12-30 14:49:01 ----A---- C:\Program Files\Install_Messenger.exe
2008-12-29 15:00:50 ----HD---- C:\Program Files\InstallShield Installation Information
2008-12-25 17:03:02 ----D---- C:\Program Files\Soulseek
2008-12-25 14:48:38 ----D---- C:\WINDOWS\system32\CatRoot
2008-12-25 14:47:24 ----D---- C:\WINDOWS\Help
2008-12-24 21:57:44 ----A---- C:\WINDOWS\ModemLog_Agere Systems AC'97 Modem.txt
2008-12-24 21:52:54 ----D---- C:\WINDOWS\Debug
2008-12-24 21:41:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-12-18 14:18:17 ----HD---- C:\WINDOWS\$hf_mig$
2008-12-17 14:12:11 ----D---- C:\WINDOWS\system32\DirectX
2008-12-17 14:09:05 ----RSD---- C:\WINDOWS\Fonts
2008-12-17 14:00:56 ----D---- C:\Program Files\Fichiers communs
2008-12-17 14:00:40 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-12-17 14:00:35 ----SD---- C:\Documents and Settings\raphael\Application Data\Microsoft
2008-12-17 13:19:57 ----D---- C:\Program Files\DivX
2008-12-16 22:41:09 ----D---- C:\Program Files\Internet Explorer
2008-12-13 07:37:56 ----A---- C:\WINDOWS\system32\mshtml.dll
2008-12-10 00:24:37 ----A---- C:\WINDOWS\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;Pilote de processeur AMD Athlon64; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2004-05-08 38912]
R1 avgio;avgio; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys []
R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2008-11-25 75072]
R1 eabfiltr;EABFiltr; \??\C:\WINDOWS\system32\drivers\EABFiltr.sys []
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 SbFw;SbFw; C:\WINDOWS\system32\drivers\SbFw.sys [2008-07-16 269736]
R1 sbhips;Sunbelt HIPS Driver; C:\WINDOWS\system32\drivers\sbhips.sys [2008-06-21 66600]
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2007-03-01 28352]
R1 WmiAcpi;Interface de gestion Microsoft Windows pour ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R2 CdaC15BA;CdaC15BA; \??\C:\WINDOWS\system32\drivers\CdaC15BA.SYS []
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2004-02-02 100384]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2004-09-03 1268204]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2003-10-08 94601]
R3 avgntflt;avgntflt; \??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys []
R3 BCM43XX;Pilote pour carte réseau BCM 802.11b; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2004-08-04 341760]
R3 CmBatt;Pilote d'adaptateur secteur Microsoft; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 GEARAspiWDM;GEAR CDRom Filter; C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys [2005-02-02 14408]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2004-04-07 1382634]
R3 rtl8139;Realtek RTL8139/810x Family Fast Ethernet NIC NT Driver; C:\WINDOWS\system32\DRIVERS\R8139n51.SYS [2003-10-23 46976]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport; C:\WINDOWS\system32\DRIVERS\sbfwim.sys [2008-06-21 65576]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2004-01-13 612032]
R3 tiumfwl;tiumfwl; C:\WINDOWS\system32\drivers\tiumfwl.sys [2003-02-19 42092]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-13 17152]
R3 vaxscsi;vaxscsi; C:\WINDOWS\System32\Drivers\vaxscsi.sys [2006-10-22 223128]
S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 Bridge;Pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 BridgeMP;Miniport de pont MAC; C:\WINDOWS\system32\DRIVERS\bridge.sys [2008-04-13 71552]
S3 catchme;catchme; \??\C:\DOCUME~1\raphael\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 Defender;Defender; \??\C:\Program Files\SinEspias\Defender.sys []
S3 eabusb;eabusb; \??\C:\WINDOWS\system32\drivers\eabusb.sys []
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2008-05-07 17536]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2008-05-07 20864]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2007-09-17 21632]
S3 Rasirda;Miniport réseau étendu (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SMCIRDA;Pilote de périphérique SMC IrCC Miniport; C:\WINDOWS\system32\DRIVERS\smcirda.sys [2001-08-23 36937]
S3 SNPSTD3;USB PC Camera (SNPSTD3); C:\WINDOWS\system32\DRIVERS\snpstd3.sys [2007-03-27 10252544]
S3 SoC PC-Camera Service;SoC PC-Camera; C:\WINDOWS\system32\DRIVERS\pfc027.sys []
S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2008-06-06 8064]
S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2008-05-07 8064]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2006-11-02 492000]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-15 82688]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AntiVirScheduler;Avira AntiVir Personal – Free Antivirus Scheduler; C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe [2008-10-26 68865]
R2 AntiVirService;Avira AntiVir Personal – Free Antivirus Guard; C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe [2008-10-26 151297]
R2 C-DillaCdaC11BA;C-DillaCdaC11BA; C:\WINDOWS\system32\drivers\CDAC11BA.EXE [2005-04-04 54784]
R2 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-06 168432]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2004-04-07 73728]
R2 SbPF.Launcher;SbPF.Launcher; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFLnch.exe [2008-07-30 95528]
R2 SoundMAX Agent Service (default);SoundMAX Agent Service; C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [2002-09-20 45056]
R2 SPF4;Sunbelt Personal Firewall 4; C:\Program Files\Sunbelt Software\Personal Firewall\SbPFSvc.exe [2008-07-30 1361192]
R2 StarWindService;StarWind iSCSI Service; C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindService.exe [2005-04-02 217600]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Fichiers communs\Ulead Systems\DVD\ULCDRSvr.exe [2004-02-26 49152]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-08-07 575488]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 GoogleDesktopManager-022208-143751;Google Desktop Manager 5.7.802.22438; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-06-13 29744]
S3 hpqwmi;HP WMI Interface; C:\Program Files\HPQ\SHARED\HPQWMI.exe [2004-07-27 98304]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 iPodService;iPodService; C:\Program Files\iPod\bin\iPodService.exe [2006-06-14 323584]
S3 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-24 918016]

-----------------EOF-----------------


je vais le redemarrer afin de voir si ça passe...
scloob
Forumeur débutant
Forumeur débutant
 
Messages: 42
Inscription: 12 Juin 2008, 17:43
Haut

Messagede MoJac » 06 Jan 2009, 12:14

Salut scloob,

Pour l'instant je ne vois rien dans ce log qui expliquerait ce phénomène :8) mais je continue à chercher :C)

:ss) Va dans le gestionnaire de tache:

- clic droit en bas sur la barre de tache
- clic sur gestionnaire des tâches.

Onglet performance: quel pourcentage d'utilisation de l'UC ?
idem pour le fichier d'échange (combien de Mo) ?

Onglet processus: peux tu lister les 2 ou 3 premiers ainsi que leur utilisation mémoire ?

A plus.
- Suivez les instructions qui vous sont données.
- Si vous ne comprenez pas: redemandez des explications.

Image
Avatar de l’utilisateur
MoJac
Super Modérateur
Super Modérateur
 
Messages: 1414
Inscription: 01 Déc 2008, 18:27
Localisation: Puy de Dôme
Haut

Messagede scloob » 06 Jan 2009, 13:10

bonjour Mojac,

j'ai noté dans l'onglet performance le pourcentage de l'utilisation de l'UC :
ça varie entre 0 et 2% avec juste un pic dans les 50% .

pour le fichier d'échange, c'est 414Mo

dans l'onglet processus, voici les 3 prmiers de la liste :

msmsgs.exe avec une utilisation mémoire de 1520Ko
PCsuite.exe avec une utilisation mémoirede 27516Ko
et enfin googleToolbarNot... avec une utilisation mémoire de 1752Ko

sinon, j'ai repensé à un truc, j'avais téléchargé la dernière version de windows live messenger que j'ai supprimé car elle ne me convenait pas et suis retourné à l'ancienne version, cela a-t-il pu jouer ?


je te précise également que je vais devoir m'absenter jusqu'à dimanche pour le boulot et ne pourrai donc pas me connecter d'ici dimanche.
mais je reviendrai vers toi afin de m'en sortir avec ce problème....
merci à toi
scloob
Forumeur débutant
Forumeur débutant
 
Messages: 42
Inscription: 12 Juin 2008, 17:43
Haut

Messagede MoJac » 06 Jan 2009, 21:09

Bonsoir scloob,

j'ai noté dans l'onglet performance le pourcentage de l'utilisation de l'UC :
ça varie entre 0 et 2% avec juste un pic dans les 50%.


C'est quand même pas avec ça qu'on fait transpirer un processeur 2D)

J'ai vu une trace qui semble issue d'une ancienne (?) infection MSN. Je continue à creuser.

En attendant peux tu désactiver le lancement automatique de MSN justement pour vérifier si ça apporte une améliration.

Je pense ne pas pouvoir repasser ce soir.

A plus.
- Suivez les instructions qui vous sont données.
- Si vous ne comprenez pas: redemandez des explications.

Image
Avatar de l’utilisateur
MoJac
Super Modérateur
Super Modérateur
 
Messages: 1414
Inscription: 01 Déc 2008, 18:27
Localisation: Puy de Dôme
Haut

Messagede scloob » 11 Jan 2009, 18:19

bonsoir Mojac,

me voici de retour, j'allume l'ordi et le même problème qui se reproduit...

à propos de msn, j'avais eu une infection en effet mais qui avait disparue avec msnfix.
de plus, ça ne s'était pas traduit par un exces de ventilation mais plutôt par un blocage de l'ordi.

je ne lance pas msn automatiquement au démarrage, j'ai cru aussi au début que c'était lié à la mise en route de msn mais en fait, il ronfle avant même d'allumer msn.

peut être se fait il vieux cet ordi ? il a 4 ou 5 ans, plutôt 5 je crois, et c'est vrai qu'il est souvent resté des journées entières allumé.
ce n'est pas un pc bureau mais un portable, son espérance de vie doit être plus courte !

mais bon, s'il pouvait encore tenir un peu...d'autant que sans ce ronflement il tourne normalement.

merci
scloob
Forumeur débutant
Forumeur débutant
 
Messages: 42
Inscription: 12 Juin 2008, 17:43
Haut
PrécédenteSuivante
Répondre

Retourner vers Virus - Sécurité - Analyses HijackThis

 


  • Articles en relation
    Réponses
    Vus
    Dernier message

Qui est en ligne

Utilisateurs parcourant ce forum: Aucun utilisateur enregistré et 0 invités



Powered by phpBB2000, 2002, 2005, 2007 phpBB Group - Template et images : Micro-Astuce.com

Traduction par : phpBB-fr.com / Référencement obtimisé par : phpBB-seo.com

Le forum Micro-Astuce remercie de leur aide :
libellules.ch
Sites amis : Emoticones | Forum informatique | Informatruc | Plante verte | Dépannage informatique Carcassonne | Hebergement Web | Annuaire pour Webmaster

Ce site utilise des pages PHP entièrement recyclables