Probleme de fenetres intempestives vraiment génant
Dernière réponse : dans Sécurité
Alors voila je crée ce sujet comme me l'a conseillé un de nos confrères:
Alors j'ai des problemes de fenetres intempestives tres genants et je voudrai savoir si
il n'existe pas un logiciel qui permet d'empecher tout simplement leur apparition?
Car j'avais essayer de les supprimer a l'aide de logiciels décris dans un des topics du forum
Mais je garde toujours des cheveux blancs quand j'ai du réengistrer windows suite a un de
ces logiciels
Merci je compte sur votre aide
Alors j'ai des problemes de fenetres intempestives tres genants et je voudrai savoir si
il n'existe pas un logiciel qui permet d'empecher tout simplement leur apparition?
Car j'avais essayer de les supprimer a l'aide de logiciels décris dans un des topics du forum
Mais je garde toujours des cheveux blancs quand j'ai du réengistrer windows suite a un de
ces logiciels
Merci je compte sur votre aide
Autres pages sur : probleme fenetres intempestives vraiment genant
Lassé par la pub ? Créez un compte
Je ne sais vraiment pas pourquoi je t'aide ![:sarcastic:]( ":sarcastic:")
- Télécharge Hijackthis (de Merjin).
- Dézippe le dans un dossier ou sur ton bureau.
- Lance l'application.
- Choisis l'option "Do a system scan and save a logfile"
-- Le Bloc-Notes s'ouvre :
-> Edition / Sélectionner Tout
-> Edition / Copier
- Colle le rapport ici.
AIDE : Tuto sur Hijackthis (Malekal)
- Télécharge Hijackthis (de Merjin).
- Dézippe le dans un dossier ou sur ton bureau.
- Lance l'application.
- Choisis l'option "Do a system scan and save a logfile"
-- Le Bloc-Notes s'ouvre :
-> Edition / Sélectionner Tout
-> Edition / Copier
- Colle le rapport ici.
AIDE : Tuto sur Hijackthis (Malekal)
Logfile of HijackThis v1.99.1
Scan saved at 17:51:42, on 27/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\SYSTEM32\acs.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
c:\program files\mcafee.com\agent\mcagent.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Instant Messenger Names\IM-svr.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Launchy\Launchy.exe
C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Valve\Steam\Steam.exe
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\DOCUME~1\Bruno\LOCALS~1\Temp\Répertoire temporaire 2 pour hijackthis.zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [keyboard] c:\\kybrd_1.exe
O4 - HKLM\..\Run: [defender] C:\\dfndrb_2.exe
O4 - HKLM\..\Run: [newname] c:\\nwnm_1.exe
O4 - HKLM\..\Run: [winupdates] C:\Program Files\winupdates\winupdates.exe /auto
O4 - HKLM\..\Run: [WinAntiVirusPro2006] "C:\Program Files\WinAntiVirus Pro 2006\WinAV.exe" /min
O4 - HKLM\..\Run: [uwa6pcw] "C:\Program Files\WinAntiVirus Pro 2006\uwa6pcw.exe" -c
O4 - HKLM\..\Run: [Messaging] C:\Program Files\Instant Messenger Names\IM-svr.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Steam] C:\Valve\Steam\Steam.exe -silent
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EA Link\Core.exe" -silent
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Global Startup: Launchy.lnk = C:\Program Files\Launchy\Launchy.exe
O4 - Global Startup: NETGEAR WG311T Wireless Assistant.lnk = C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://www.m6video.fr/1click/install/files/installer2.c...
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://fdata.over-blog.com/script/ImageUploader3.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll
O20 - Winlogon Notify: Media Center - C:\WINDOWS\system32\jtlm0731e.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\SYSTEM32\acs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\SYSTEM32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - Networks Associates Technology, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
Scan saved at 17:51:42, on 27/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\SYSTEM32\acs.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
c:\program files\mcafee.com\agent\mcagent.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Instant Messenger Names\IM-svr.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Launchy\Launchy.exe
C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Valve\Steam\Steam.exe
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\DOCUME~1\Bruno\LOCALS~1\Temp\Répertoire temporaire 2 pour hijackthis.zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [keyboard] c:\\kybrd_1.exe
O4 - HKLM\..\Run: [defender] C:\\dfndrb_2.exe
O4 - HKLM\..\Run: [newname] c:\\nwnm_1.exe
O4 - HKLM\..\Run: [winupdates] C:\Program Files\winupdates\winupdates.exe /auto
O4 - HKLM\..\Run: [WinAntiVirusPro2006] "C:\Program Files\WinAntiVirus Pro 2006\WinAV.exe" /min
O4 - HKLM\..\Run: [uwa6pcw] "C:\Program Files\WinAntiVirus Pro 2006\uwa6pcw.exe" -c
O4 - HKLM\..\Run: [Messaging] C:\Program Files\Instant Messenger Names\IM-svr.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Steam] C:\Valve\Steam\Steam.exe -silent
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EA Link\Core.exe" -silent
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Global Startup: Launchy.lnk = C:\Program Files\Launchy\Launchy.exe
O4 - Global Startup: NETGEAR WG311T Wireless Assistant.lnk = C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://www.m6video.fr/1click/install/files/installer2.c...
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://fdata.over-blog.com/script/ImageUploader3.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll
O20 - Winlogon Notify: Media Center - C:\WINDOWS\system32\jtlm0731e.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\SYSTEM32\acs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\SYSTEM32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - Networks Associates Technology, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
Infection Alcan.
Télécharge combofix.exe (par sUBs) sur ton Bureau
Double clique combofix.exe.
Tape sur la touche Y (Yes) pour démarrer le scan.
Lorsque le scan sera complété, un rapport apparaîtra. Copie/colle ce rapport dans ta prochaine réponse.
NOTE : Le rapport se trouve également ici : C:\Combofix.txt
NOTE : Le rapport se trouve également ici : C:\Combofix.txt
- 27/12/2006 18:03:45,48 Service Pack 2
ComboFix 06.11.27 - Running from: "C:\Documents and Settings\Bureau"
((((((((((((((((((((((((((((((((((((((((((((( Look2Me's Log ))))))))))))))))))))))))))))))))))))))))))))))))))
REGISTRY ENTRIES REMOVED:
[HKEY_CLASSES_ROOT\clsid\{D94EDF40-E036-473B-8FF1-38FF96BA442B}]
@=""
"IDEx"="ADDR"
[HKEY_CLASSES_ROOT\clsid\{D94EDF40-E036-473B-8FF1-38FF96BA442B}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{D94EDF40-E036-473B-8FF1-38FF96BA442B}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{D94EDF40-E036-473B-8FF1-38FF96BA442B}\InprocServer32]
@="C:\\WINDOWS\\system32\\DSRAWEX.DLL"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{8D9CD509-0CE0-4AF5-A070-29FFF74B5A36}]
@=""
[HKEY_CLASSES_ROOT\clsid\{8D9CD509-0CE0-4AF5-A070-29FFF74B5A36}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{8D9CD509-0CE0-4AF5-A070-29FFF74B5A36}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{8D9CD509-0CE0-4AF5-A070-29FFF74B5A36}\InprocServer32]
@="C:\\WINDOWS\\system32\\MGCSUBS.DLL"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{A25AED71-FF4E-4EE4-A3E9-7365B3745334}]
@=""
[HKEY_CLASSES_ROOT\clsid\{A25AED71-FF4E-4EE4-A3E9-7365B3745334}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{A25AED71-FF4E-4EE4-A3E9-7365B3745334}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{A25AED71-FF4E-4EE4-A3E9-7365B3745334}\InprocServer32]
@="C:\\WINDOWS\\system32\\guard.tmp"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{3542F2CF-3E00-4E65-A998-A899EA8294A2}]
@=""
[HKEY_CLASSES_ROOT\clsid\{3542F2CF-3E00-4E65-A998-A899EA8294A2}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{3542F2CF-3E00-4E65-A998-A899EA8294A2}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{3542F2CF-3E00-4E65-A998-A899EA8294A2}\InprocServer32]
@="C:\\WINDOWS\\system32\\FISCFGWZ.DLL"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{5184009E-CFF4-429E-8C81-3163C8DA2F7B}]
@=""
[HKEY_CLASSES_ROOT\clsid\{5184009E-CFF4-429E-8C81-3163C8DA2F7B}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{5184009E-CFF4-429E-8C81-3163C8DA2F7B}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{5184009E-CFF4-429E-8C81-3163C8DA2F7B}\InprocServer32]
@="C:\\WINDOWS\\system32\\WIWFAXUI.DLL"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{7F66C209-6BF9-40A6-AF1E-9AD724F68354}]
@=""
[HKEY_CLASSES_ROOT\clsid\{7F66C209-6BF9-40A6-AF1E-9AD724F68354}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{7F66C209-6BF9-40A6-AF1E-9AD724F68354}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{7F66C209-6BF9-40A6-AF1E-9AD724F68354}\InprocServer32]
@="C:\\WINDOWS\\system32\\lkeps11n.dll"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{97544B6B-0B9F-4876-A9DF-EB27C745D768}]
@=""
[HKEY_CLASSES_ROOT\clsid\{97544B6B-0B9F-4876-A9DF-EB27C745D768}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{97544B6B-0B9F-4876-A9DF-EB27C745D768}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{97544B6B-0B9F-4876-A9DF-EB27C745D768}\InprocServer32]
@="C:\\WINDOWS\\system32\\DFKQUOTA.DLL"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{AA86EACB-B1C2-40ED-89EF-15875E6D0153}]
@=""
[HKEY_CLASSES_ROOT\clsid\{AA86EACB-B1C2-40ED-89EF-15875E6D0153}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{AA86EACB-B1C2-40ED-89EF-15875E6D0153}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{AA86EACB-B1C2-40ED-89EF-15875E6D0153}\InprocServer32]
@="C:\\WINDOWS\\system32\\PPDLIB32.DLL"
"ThreadingModel"="Apartment"
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
FILES REMOVED:
C:\WINDOWS\SYSTEM32\AAMETER.DLL
C:\WINDOWS\SYSTEM32\ACPTIF.DLL
C:\WINDOWS\SYSTEM32\adiiiexx.dll
C:\WINDOWS\SYSTEM32\aei2cqag.dll
C:\WINDOWS\SYSTEM32\aiioglxx.dll
C:\WINDOWS\SYSTEM32\AMMFD.DLL
C:\WINDOWS\SYSTEM32\AYAAMON.DLL
C:\WINDOWS\SYSTEM32\AYIDDC.DLL
C:\WINDOWS\SYSTEM32\aza003fme.dll
C:\WINDOWS\SYSTEM32\aza0lelm1hqa.dll
C:\WINDOWS\SYSTEM32\aza0li3m18.dll
C:\WINDOWS\SYSTEM32\aza2li5o18.dll
C:\WINDOWS\SYSTEM32\aza4l93q1.dll
C:\WINDOWS\SYSTEM32\aza60c9sef.dll
C:\WINDOWS\SYSTEM32\aza6lghs1646.dll
C:\WINDOWS\SYSTEM32\azam0a91ed.dll
C:\WINDOWS\SYSTEM32\azaol3531.dll
C:\WINDOWS\SYSTEM32\azasl3771.dll
C:\WINDOWS\SYSTEM32\azasl9h71.dll
C:\WINDOWS\SYSTEM32\azasla971d.dll
C:\WINDOWS\SYSTEM32\azau0399e.dll
C:\WINDOWS\SYSTEM32\azau0g19e6.dll
C:\WINDOWS\SYSTEM32\azaulc191f.dll
C:\WINDOWS\SYSTEM32\BQSESRV.DLL
C:\WINDOWS\SYSTEM32\BYelList.dll
C:\WINDOWS\SYSTEM32\c6000gdme60a0.dll
C:\WINDOWS\SYSTEM32\ccmpatUI.dll
C:\WINDOWS\SYSTEM32\CDRTCLI.DLL
C:\WINDOWS\SYSTEM32\CHGBKEND.DLL
C:\WINDOWS\SYSTEM32\CJCS32.dll
C:\WINDOWS\SYSTEM32\CKNSOLE.DLL
C:\WINDOWS\SYSTEM32\CQYPTUI.DLL
C:\WINDOWS\SYSTEM32\CRL3DV2.DLL
C:\WINDOWS\SYSTEM32\cslbact.dll
C:\WINDOWS\SYSTEM32\CUYPTDLG.DLL
C:\WINDOWS\SYSTEM32\CYRSRV.DLL
C:\WINDOWS\SYSTEM32\d2j02c1mgf.dll
C:\WINDOWS\SYSTEM32\d40mled11h0.dll
C:\WINDOWS\SYSTEM32\DALAYX.DLL
C:\WINDOWS\SYSTEM32\DCRAWEX.DLL
C:\WINDOWS\SYSTEM32\debcpwr.dll
C:\WINDOWS\SYSTEM32\DEDMO.DLL
C:\WINDOWS\SYSTEM32\DFKQUOTA.DLL
C:\WINDOWS\SYSTEM32\DFNHUPNP.DLL
C:\WINDOWS\SYSTEM32\DJCPROP2.DLL
C:\WINDOWS\SYSTEM32\DJNMPNTW.DLL
C:\WINDOWS\SYSTEM32\DLNMODEM.DLL
C:\WINDOWS\SYSTEM32\dlvx_xx0c.dll
C:\WINDOWS\SYSTEM32\dn0u01d9e.dll
C:\WINDOWS\SYSTEM32\dn2401fqe.dll
C:\WINDOWS\SYSTEM32\dn8801lue.dll
C:\WINDOWS\SYSTEM32\dn8q01l5e.dll
C:\WINDOWS\SYSTEM32\dnjm0111e.dll
C:\WINDOWS\SYSTEM32\dnjo0113e.dll
C:\WINDOWS\SYSTEM32\DNLAYX.DLL
C:\WINDOWS\SYSTEM32\dnn8015ue.dll
C:\WINDOWS\SYSTEM32\dotmsft3.dll
C:\WINDOWS\SYSTEM32\DPSEC.DLL
C:\WINDOWS\SYSTEM32\DQVENUM.DLL
C:\WINDOWS\SYSTEM32\DRNET.DLL
C:\WINDOWS\SYSTEM32\DVDLGS.DLL
C:\WINDOWS\SYSTEM32\DWCOMPOS.DLL
C:\WINDOWS\SYSTEM32\DWDMO.DLL
C:\WINDOWS\SYSTEM32\DWDPMESH.DLL
C:\WINDOWS\SYSTEM32\DXCOMPOS.DLL
C:\WINDOWS\SYSTEM32\DYDLGS.DLL
C:\WINDOWS\SYSTEM32\DYSEC.DLL
C:\WINDOWS\SYSTEM32\dz16gt.dLL
C:\WINDOWS\SYSTEM32\DZCONFIG.DLL
C:\WINDOWS\SYSTEM32\dZnim.dll
C:\WINDOWS\SYSTEM32\DZSKCOPY.DLL
C:\WINDOWS\SYSTEM32\e4202efmgh2a2.dll
C:\WINDOWS\SYSTEM32\e6202gfmg62a2.dll
C:\WINDOWS\SYSTEM32\e8200ifme82a0.dll
C:\WINDOWS\SYSTEM32\EEENTLOG.DLL
C:\WINDOWS\SYSTEM32\EJTS.DLL
C:\WINDOWS\SYSTEM32\en0ol1d31.dll
C:\WINDOWS\SYSTEM32\en46l1hs1.dll
C:\WINDOWS\SYSTEM32\en6ul1j91.dll
C:\WINDOWS\SYSTEM32\en80l1lm1.dll
C:\WINDOWS\SYSTEM32\enl8l13u1.dll
C:\WINDOWS\SYSTEM32\enlul1391.dll
C:\WINDOWS\SYSTEM32\ennol1531.dll
C:\WINDOWS\SYSTEM32\enp8l17u1.dll
C:\WINDOWS\SYSTEM32\f20olcd31f0.dll
C:\WINDOWS\SYSTEM32\f40oled31h0.dll
C:\WINDOWS\SYSTEM32\f60olgd3160.dll
C:\WINDOWS\SYSTEM32\f6j2lg1o16.dll
C:\WINDOWS\SYSTEM32\f8l0li3m18.dll
C:\WINDOWS\SYSTEM32\ffru0399e.dll
C:\WINDOWS\SYSTEM32\FICFG.DLL
C:\WINDOWS\SYSTEM32\FISCFGWZ.DLL
C:\WINDOWS\SYSTEM32\fp0603dse.dll
C:\WINDOWS\SYSTEM32\fp0s03d7e.dll
C:\WINDOWS\SYSTEM32\fp2203foe.dll
C:\WINDOWS\SYSTEM32\fp6o03j3e.dll
C:\WINDOWS\SYSTEM32\fp8803lue.dll
C:\WINDOWS\SYSTEM32\fpjs0317e.dll
C:\WINDOWS\SYSTEM32\fpl8033ue.dll
C:\WINDOWS\SYSTEM32\fplm0331e.dll
C:\WINDOWS\SYSTEM32\fpn2035oe.dll
C:\WINDOWS\SYSTEM32\fpp0037me.dll
C:\WINDOWS\SYSTEM32\fpr0039me.dll
C:\WINDOWS\SYSTEM32\fpru0399e.dll
C:\WINDOWS\SYSTEM32\g0220afoed2c0.dll
C:\WINDOWS\SYSTEM32\g8jo0i13e8.dll
C:\WINDOWS\SYSTEM32\gp0ol3d31.dll
C:\WINDOWS\SYSTEM32\gp2ql3f51.dll
C:\WINDOWS\SYSTEM32\gp60l3jm1.dll
C:\WINDOWS\SYSTEM32\gpl6l33s1.dll
C:\WINDOWS\SYSTEM32\gplml3311.dll
C:\WINDOWS\SYSTEM32\gplql3351.dll
C:\WINDOWS\SYSTEM32\gpnol3531.dll
C:\WINDOWS\SYSTEM32\gpp2l37o1.dll
C:\WINDOWS\SYSTEM32\gppsl3771.dll
C:\WINDOWS\SYSTEM32\GXDEF.DLL
C:\WINDOWS\SYSTEM32\h22olcf31f2.dll
C:\WINDOWS\SYSTEM32\h4n0le5m1h.dll
C:\WINDOWS\SYSTEM32\h80qlid5180.dll
C:\WINDOWS\SYSTEM32\h8l20i3oe8.dll
C:\WINDOWS\SYSTEM32\hFn0le5m1h.dll
C:\WINDOWS\SYSTEM32\hgp2057oe.dll
C:\WINDOWS\SYSTEM32\hl8605lse.dll
C:\WINDOWS\SYSTEM32\HPETWIZ.DLL
C:\WINDOWS\SYSTEM32\hr0805due.dll
C:\WINDOWS\SYSTEM32\hr2605fse.dll
C:\WINDOWS\SYSTEM32\hr2m05f1e.dll
C:\WINDOWS\SYSTEM32\hr4205hoe.dll
C:\WINDOWS\SYSTEM32\hr4u05h9e.dll
C:\WINDOWS\SYSTEM32\hr8405lqe.dll
C:\WINDOWS\SYSTEM32\hr8605lse.dll
C:\WINDOWS\SYSTEM32\hrj8051ue.dll
C:\WINDOWS\SYSTEM32\hrnu0559e.dll
C:\WINDOWS\SYSTEM32\hrp2057oe.dll
C:\WINDOWS\SYSTEM32\hrpm0571e.dll
C:\WINDOWS\SYSTEM32\hrps0577e.dll
C:\WINDOWS\SYSTEM32\hrru0599e.dll
C:\WINDOWS\SYSTEM32\i2060cdsef060.dll
C:\WINDOWS\SYSTEM32\i6060gdse6060.dll
C:\WINDOWS\SYSTEM32\i6240gfqe62e0.dll
C:\WINDOWS\SYSTEM32\i6lo0g33e6.dll
C:\WINDOWS\SYSTEM32\IC32_32.DLL
C:\WINDOWS\SYSTEM32\IDDKCS32.DLL
C:\WINDOWS\SYSTEM32\iiss.dll
C:\WINDOWS\SYSTEM32\iqetcomm.dll
C:\WINDOWS\SYSTEM32\IQSECSVC.DLL
C:\WINDOWS\SYSTEM32\ir22l5fo1.dll
C:\WINDOWS\SYSTEM32\ir2ml5f11.dll
C:\WINDOWS\SYSTEM32\ir2ql5f51.dll
C:\WINDOWS\SYSTEM32\ir4ol5h31.dll
C:\WINDOWS\SYSTEM32\ir68l5ju1.dll
C:\WINDOWS\SYSTEM32\irj6l51s1.dll
C:\WINDOWS\SYSTEM32\irn4l55q1.dll
C:\WINDOWS\SYSTEM32\irn8l55u1.dll
C:\WINDOWS\SYSTEM32\irrul5991.dll
C:\WINDOWS\SYSTEM32\ISRTPRIO.DLL
C:\WINDOWS\SYSTEM32\ITESHARE.DLL
C:\WINDOWS\SYSTEM32\ITUV_32.DLL
C:\WINDOWS\SYSTEM32\iV060gdse6060.dll
C:\WINDOWS\SYSTEM32\ix2ql5f51.dll
C:\WINDOWS\SYSTEM32\IYXRTMGR.DLL
C:\WINDOWS\SYSTEM32\j0p00a7med.dll
C:\WINDOWS\SYSTEM32\j22q0cf5ef2.dll
C:\WINDOWS\SYSTEM32\j2j60c1sef.dll
C:\WINDOWS\SYSTEM32\j60s0gd7e60.dll
C:\WINDOWS\SYSTEM32\j66m0gj1e6o.dll
C:\WINDOWS\SYSTEM32\j86mlij118o.dll
C:\WINDOWS\SYSTEM32\j8n2li5o18.dll
C:\WINDOWS\SYSTEM32\JEAW400.DLL
C:\WINDOWS\SYSTEM32\JIAW400.DLL
C:\WINDOWS\SYSTEM32\JMAW400.DLL
C:\WINDOWS\SYSTEM32\jmproxy.dll
C:\WINDOWS\SYSTEM32\JPT500.DLL
C:\WINDOWS\SYSTEM32\jr0025dmg.dll
C:\WINDOWS\SYSTEM32\jr2025fmg.dll
C:\WINDOWS\SYSTEM32\jt0807due.dll
C:\WINDOWS\SYSTEM32\jt2607fse.dll
C:\WINDOWS\SYSTEM32\jt4m07h1e.dll
C:\WINDOWS\SYSTEM32\jt6q07j5e.dll
C:\WINDOWS\SYSTEM32\jt8807lue.dll
C:\WINDOWS\SYSTEM32\jt8q07l5e.dll
C:\WINDOWS\SYSTEM32\jtj8071ue.dll
C:\WINDOWS\SYSTEM32\jtlm0731e.dll
C:\WINDOWS\SYSTEM32\jtns0757e.dll
C:\WINDOWS\SYSTEM32\JXSD400.DLL
C:\WINDOWS\SYSTEM32\jzns0757e.dll
C:\WINDOWS\SYSTEM32\k2260cfsef260.dll
C:\WINDOWS\SYSTEM32\k4440ehqeh4e0.dll
C:\WINDOWS\SYSTEM32\k480lelm1hqa.dll
C:\WINDOWS\SYSTEM32\k608lgdu1608.dll
C:\WINDOWS\SYSTEM32\k6440ghqe64e0.dll
C:\WINDOWS\SYSTEM32\k644lghq164e.dll
C:\WINDOWS\SYSTEM32\k6800glme6qa0.dll
C:\WINDOWS\SYSTEM32\k6jslg1716.dll
C:\WINDOWS\SYSTEM32\k6lq0g35e6.dll
C:\WINDOWS\SYSTEM32\k6lqlg3516.dll
C:\WINDOWS\SYSTEM32\KCDTAT.DLL
C:\WINDOWS\SYSTEM32\KDDUSR.DLL
C:\WINDOWS\SYSTEM32\KEDRO.DLL
C:\WINDOWS\SYSTEM32\kfrml7911.dll
C:\WINDOWS\SYSTEM32\KGDSMSFI.DLL
C:\WINDOWS\SYSTEM32\khuser.dll
C:\WINDOWS\SYSTEM32\KKDMLT47.DLL
C:\WINDOWS\SYSTEM32\KMDCZ1.DLL
C:\WINDOWS\SYSTEM32\KMDUK.DLL
C:\WINDOWS\SYSTEM32\knrberos.dll
C:\WINDOWS\SYSTEM32\kt04l7dq1.dll
C:\WINDOWS\SYSTEM32\kt66l7js1.dll
C:\WINDOWS\SYSTEM32\kt6ml7j11.dll
C:\WINDOWS\SYSTEM32\ktj0l71m1.dll
C:\WINDOWS\SYSTEM32\ktl0l73m1.dll
C:\WINDOWS\SYSTEM32\ktlol7331.dll
C:\WINDOWS\SYSTEM32\ktpul7791.dll
C:\WINDOWS\SYSTEM32\ktrml7911.dll
C:\WINDOWS\SYSTEM32\KWDUZB.DLL
C:\WINDOWS\SYSTEM32\KXDYCC.DLL
C:\WINDOWS\SYSTEM32\l04qlah51d4.dll
C:\WINDOWS\SYSTEM32\l0j80a1ued.dll
C:\WINDOWS\SYSTEM32\l20ulcd91f0.dll
C:\WINDOWS\SYSTEM32\l2l60c3sef.dll
C:\WINDOWS\SYSTEM32\l2l6lc3s1f.dll
C:\WINDOWS\SYSTEM32\l4p20e7oeh.dll
C:\WINDOWS\SYSTEM32\l8n4li5q18.dll
C:\WINDOWS\SYSTEM32\l8r0li9m18.dll
C:\WINDOWS\SYSTEM32\LC32.DLL
C:\WINDOWS\SYSTEM32\LCXP2P32.DLL
C:\WINDOWS\SYSTEM32\le4809hue.dll
C:\WINDOWS\SYSTEM32\LfgitCheckControl.dll
C:\WINDOWS\SYSTEM32\lkeps11n.dll
C:\WINDOWS\SYSTEM32\lknkinfo.dll
C:\WINDOWS\SYSTEM32\LMGHOURS.DLL
C:\WINDOWS\SYSTEM32\LQRT.DLL
C:\WINDOWS\SYSTEM32\lt0027dmg.dll
C:\WINDOWS\SYSTEM32\lv0009dme.dll
C:\WINDOWS\SYSTEM32\lv0q09d5e.dll
C:\WINDOWS\SYSTEM32\lv2209foe.dll
C:\WINDOWS\SYSTEM32\lv4609hse.dll
C:\WINDOWS\SYSTEM32\lv4809hue.dll
C:\WINDOWS\SYSTEM32\lv4s09h7e.dll
C:\WINDOWS\SYSTEM32\lv8s09l7e.dll
C:\WINDOWS\SYSTEM32\lvls0937e.dll
C:\WINDOWS\SYSTEM32\lvnq0955e.dll
C:\WINDOWS\SYSTEM32\lvp6097se.dll
C:\WINDOWS\SYSTEM32\lvpm0971e.dll
C:\WINDOWS\SYSTEM32\lvro0993e.dll
C:\WINDOWS\SYSTEM32\LXCMP11n.DLL
C:\WINDOWS\SYSTEM32\m0jula191d.dll
C:\WINDOWS\SYSTEM32\m0rm0a91ed.dll
C:\WINDOWS\SYSTEM32\m2460chsef460.dll
C:\WINDOWS\SYSTEM32\m2julc191f.dll
C:\WINDOWS\SYSTEM32\m2rmlc911f.dll
C:\WINDOWS\SYSTEM32\m4rm0e91eh.dll
C:\WINDOWS\SYSTEM32\m646lghs1646.dll
C:\WINDOWS\SYSTEM32\m682lglo16qc.dll
C:\WINDOWS\SYSTEM32\m6ju0g19e6.dll
C:\WINDOWS\SYSTEM32\m6julg1916.dll
C:\WINDOWS\SYSTEM32\m6ls0g37e6.dll
C:\WINDOWS\SYSTEM32\m8poli7318.dll
C:\WINDOWS\SYSTEM32\mapmsp.dll
C:\WINDOWS\SYSTEM32\MDGLIBNT.DLL
C:\WINDOWS\SYSTEM32\MDGSVC.DLL
C:\WINDOWS\SYSTEM32\MEEXCH40.DLL
C:\WINDOWS\SYSTEM32\MEJTES40.DLL
C:\WINDOWS\SYSTEM32\MEPLAT.dll
C:\WINDOWS\SYSTEM32\MFSWCH.DLL
C:\WINDOWS\SYSTEM32\MFXDM.DLL
C:\WINDOWS\SYSTEM32\MFXML3R.DLL
C:\WINDOWS\SYSTEM32\MGCSUBS.DLL
C:\WINDOWS\SYSTEM32\MGPBDE40.DLL
C:\WINDOWS\SYSTEM32\MGVIDCTL.DLL
C:\WINDOWS\SYSTEM32\MHRUI.DLL
C:\WINDOWS\SYSTEM32\micans32.dll
C:\WINDOWS\SYSTEM32\MIDEMUI.DLL
C:\WINDOWS\SYSTEM32\MILBUI.DLL
C:\WINDOWS\SYSTEM32\MJIQTZ32.DLL
C:\WINDOWS\SYSTEM32\MKXML3R.DLL
C:\WINDOWS\SYSTEM32\mM460chsef460.dll
C:\WINDOWS\SYSTEM32\MND32.DLL
C:\WINDOWS\SYSTEM32\mnpmsp.dll
C:\WINDOWS\SYSTEM32\MOISEQ.DLL
C:\WINDOWS\SYSTEM32\MORAPI.DLL
C:\WINDOWS\SYSTEM32\MPIEFTP.DLL
C:\WINDOWS\SYSTEM32\MQJTER40.DLL
C:\WINDOWS\SYSTEM32\MR4SDMOD.DLL
C:\WINDOWS\SYSTEM32\MRSAP.DLL
C:\WINDOWS\SYSTEM32\mSjulc191f.dll
C:\WINDOWS\SYSTEM32\MSMDD.DLL
C:\WINDOWS\SYSTEM32\MTAATEXT.DLL
C:\WINDOWS\SYSTEM32\MTACM32.DLL
C:\WINDOWS\SYSTEM32\MTGSVC.DLL
C:\WINDOWS\SYSTEM32\mTjulc191f.dll
C:\WINDOWS\SYSTEM32\MTSYSTEM.DLL
C:\WINDOWS\SYSTEM32\mv0ql9d51.dll
C:\WINDOWS\SYSTEM32\mv2ul9f91.dll
C:\WINDOWS\SYSTEM32\mv42l9ho1.dll
C:\WINDOWS\SYSTEM32\mv46l9hs1.dll
C:\WINDOWS\SYSTEM32\mv4ol9h31.dll
C:\WINDOWS\SYSTEM32\mv4sl9h71.dll
C:\WINDOWS\SYSTEM32\mv80l9lm1.dll
C:\WINDOWS\SYSTEM32\MVDIMAP.DLL
C:\WINDOWS\SYSTEM32\MVIQTZ32.DLL
C:\WINDOWS\SYSTEM32\mvl4l93q1.dll
C:\WINDOWS\SYSTEM32\mvlol9331.dll
C:\WINDOWS\SYSTEM32\mvnol9531.dll
C:\WINDOWS\SYSTEM32\MVRLE32.DLL
C:\WINDOWS\SYSTEM32\mvrql9951.dll
C:\WINDOWS\SYSTEM32\MVXML2.DLL
C:\WINDOWS\SYSTEM32\mWjulc191f.dll
C:\WINDOWS\SYSTEM32\MWUTILSE.DLL
C:\WINDOWS\SYSTEM32\mwvci70.dll
C:\WINDOWS\SYSTEM32\MXRDIM.DLL
C:\WINDOWS\SYSTEM32\MXXML.DLL
C:\WINDOWS\SYSTEM32\mypmsp.dll
C:\WINDOWS\SYSTEM32\mzcpxl32.dLL
C:\WINDOWS\SYSTEM32\n04s0ah7ed4.dll
C:\WINDOWS\SYSTEM32\n0p40a7qed.dll
C:\WINDOWS\SYSTEM32\n0r2la9o1d.dll
C:\WINDOWS\SYSTEM32\n26q0cj5efo.dll
C:\WINDOWS\SYSTEM32\n28olcl31fq.dll
C:\WINDOWS\SYSTEM32\n4l80e3ueh.dll
C:\WINDOWS\SYSTEM32\n62u0gf9e62.dll
C:\WINDOWS\SYSTEM32\n62ulgf9162.dll
C:\WINDOWS\SYSTEM32\natman.dll
C:\WINDOWS\SYSTEM32\NCMSSVC.DLL
C:\WINDOWS\SYSTEM32\NDTUI2.DLL
C:\WINDOWS\SYSTEM32\NHTRAP.DLL
C:\WINDOWS\SYSTEM32\NITCFGX.DLL
C:\WINDOWS\SYSTEM32\NMDLL.DLL
C:\WINDOWS\SYSTEM32\nNr2la9o1d.dll
C:\WINDOWS\SYSTEM32\nP6q0cj5efo.dll
C:\WINDOWS\SYSTEM32\NYLANUI.DLL
C:\WINDOWS\SYSTEM32\o2480chuef480.dll
C:\WINDOWS\SYSTEM32\o6ro0g93e6.dll
C:\WINDOWS\SYSTEM32\o8pq0i75e8.dll
C:\WINDOWS\SYSTEM32\o8ro0i93e8.dll
C:\WINDOWS\SYSTEM32\OEEDLG.DLL
C:\WINDOWS\SYSTEM32\OFDBSE32.DLL
C:\WINDOWS\SYSTEM32\p04ulah91d4.dll
C:\WINDOWS\SYSTEM32\p24u0ch9ef4.dll
C:\WINDOWS\SYSTEM32\p2p60c7sef.dll
C:\WINDOWS\SYSTEM32\p4r40e9qeh.dll
C:\WINDOWS\SYSTEM32\p4r4le9q1h.dll
C:\WINDOWS\SYSTEM32\p64ulgh9164.dll
C:\WINDOWS\SYSTEM32\p6r4lg9q16.dll
C:\WINDOWS\SYSTEM32\PCDGEN.DLL
C:\WINDOWS\SYSTEM32\PIP.DLL
C:\WINDOWS\SYSTEM32\Po.dll
C:\WINDOWS\SYSTEM32\PPDLIB32.DLL
C:\WINDOWS\SYSTEM32\PQD.DLL
C:\WINDOWS\SYSTEM32\PVTORSVC.DLL
C:\WINDOWS\SYSTEM32\PwrtableDeviceClassExtension.dll
C:\WINDOWS\SYSTEM32\PXOFMAP.DLL
C:\WINDOWS\SYSTEM32\PYDLIB32.DLL
C:\WINDOWS\SYSTEM32\PZPNETSH.DLL
C:\WINDOWS\SYSTEM32\PzstProc.dll
C:\WINDOWS\SYSTEM32\q268lcju1fo8.dll
C:\WINDOWS\SYSTEM32\q6nu0g59e6.dll
C:\WINDOWS\SYSTEM32\q8nu0i59e8.dll
C:\WINDOWS\SYSTEM32\q8psli7718.dll
C:\WINDOWS\SYSTEM32\q8rq0i95e8.dll
C:\WINDOWS\SYSTEM32\qB68lcju1fo8.dll
C:\WINDOWS\SYSTEM32\qCnu0g59e6.dll
C:\WINDOWS\SYSTEM32\qEpsli7718.dll
C:\WINDOWS\SYSTEM32\qm-mt331.dll
C:\WINDOWS\SYSTEM32\r2r60c9sef.dll
C:\WINDOWS\SYSTEM32\r68s0gl7e6q.dll
C:\WINDOWS\SYSTEM32\r6r6lg9s16.dll
C:\WINDOWS\SYSTEM32\RLAENH.DLL
C:\WINDOWS\SYSTEM32\RQPDD.DLL
C:\WINDOWS\SYSTEM32\rVsmans.dll
C:\WINDOWS\SYSTEM32\RXCNS4.DLL
C:\WINDOWS\SYSTEM32\RXUTILS.DLL
C:\WINDOWS\SYSTEM32\RYHX32.DLL
C:\WINDOWS\SYSTEM32\s088lalu1dq8.dll
C:\WINDOWS\SYSTEM32\s0rsla971d.dll
C:\WINDOWS\SYSTEM32\s6pulg7916.dll
C:\WINDOWS\SYSTEM32\scellstyle.dll
C:\WINDOWS\SYSTEM32\scvsvc.dll
C:\WINDOWS\SYSTEM32\SICLIENT.DLL
C:\WINDOWS\SYSTEM32\skell32.dll
C:\WINDOWS\SYSTEM32\SKPBLB.DLL
C:\WINDOWS\SYSTEM32\smell32.dll
C:\WINDOWS\SYSTEM32\SNNIKE.DLL
C:\WINDOWS\SYSTEM32\SONSCFG.DLL
C:\WINDOWS\SYSTEM32\svell32.dll
C:\WINDOWS\SYSTEM32\SXCSCCP.DLL
C:\WINDOWS\SYSTEM32\SXSBKUP.DLL
C:\WINDOWS\SYSTEM32\SZNS.DLL
C:\WINDOWS\SYSTEM32\t0r80a9ued.dll
C:\WINDOWS\SYSTEM32\TOPI3.DLL
C:\WINDOWS\SYSTEM32\TPAFFIC.DLL
C:\WINDOWS\SYSTEM32\TPPI3.DLL
C:\WINDOWS\SYSTEM32\TRPIUI.DLL
C:\WINDOWS\SYSTEM32\tyflog.dll
C:\WINDOWS\SYSTEM32\u0ru0a99ed.dll
C:\WINDOWS\SYSTEM32\u4rule991h.dll
C:\WINDOWS\SYSTEM32\UDRRTOSA.DLL
C:\WINDOWS\SYSTEM32\UVNP.DLL
C:\WINDOWS\SYSTEM32\uwpnpmgr.dll
C:\WINDOWS\SYSTEM32\VQS_PS.DLL
C:\WINDOWS\SYSTEM32\WbaLogon.dll
C:\WINDOWS\SYSTEM32\WBHIP6.DLL
C:\WINDOWS\SYSTEM32\WGCSVC.DLL
C:\WINDOWS\SYSTEM32\WHDMLOG.dll
C:\WINDOWS\SYSTEM32\WIVEMSP.DLL
C:\WINDOWS\SYSTEM32\WIWFAXUI.DLL
C:\WINDOWS\SYSTEM32\WPSDMOE.DLL
C:\WINDOWS\SYSTEM32\WRASF.DLL
C:\WINDOWS\SYSTEM32\wrps.dll
C:\WINDOWS\SYSTEM32\WUNNTBBU.DLL
C:\WINDOWS\SYSTEM32\WWHFR.DLL
C:\WINDOWS\SYSTEM32\WWIPROP.DLL
C:\WINDOWS\SYSTEM32\xultok.dll
Granting sedebugprivilege to Administrateurs ... successful
(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\WINDOWS\system32\bszip.dll
C:\WINDOWS\system32\cmd.com
C:\WINDOWS\system32\netstat.com
C:\WINDOWS\system32\ping.com
C:\WINDOWS\system32\regedit.com
C:\WINDOWS\system32\setup.exe.tmp
C:\WINDOWS\system32\taskkill.com
C:\WINDOWS\system32\tasklist.com
C:\WINDOWS\system32\tracert.com
C:\WINDOWS\system32\tsuninst.exe
C:\Program Files\Fichiers communs\Yazzle1122OinAdmin.exe
C:\Program Files\Fichiers communs\Yazzle1122OinUninstaller.exe
C:\Program Files\Inetget2
C:\Program Files\outlook
C:\Program Files\ToolBar888
C:\Program Files\winupdates
C:\Program Files\Fichiers communs\{54B1F634-0AE9-1036-0110-050405120021}
~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
Folders Quarantined:
C:\QooBox\Purity\WINDOWS\SYSTEM32\ECURIT~1
C:\QooBox\Purity\WINDOWS\SYSTEM32\ECURIT~1\services.exe
C:\QooBox\Purity\WINDOWS\SYSTEM32\ECURIT~1\?ecurity
((((((((((((((((((((((((((((((( Files Created from 2027-11-06 to 2027/12/2006 ))))))))))))))))))))))))))))))))))
No new files created in this timespan
(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))
(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries are not shown
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"Steam"="C:\\Valve\\Steam\\Steam.exe -silent"
"CTSyncU.exe"="\"C:\\Program Files\\Creative\\Sync Manager Unicode\\CTSyncU.exe\""
"EA Core"="\"C:\\Program Files\\Electronic Arts\\EA Link\\Core.exe\" -silent"
"swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.908.5008\\GoogleToolbarNotifier.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"MCUpdateExe"="c:\\PROGRA~1\\mcafee.com\\agent\\McUpdate.exe"
"VSOCheckTask"="\"c:\\PROGRA~1\\mcafee.com\\vso\\mcmnhdlr.exe\" /checktask"
"VirusScan Online"="c:\\PROGRA~1\\mcafee.com\\vso\\mcvsshld.exe"
"UpdateManager"="\"C:\\Program Files\\Fichiers communs\\Sonic\\Update Manager\\sgtray.exe\" /r"
"SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_03\\bin\\jusched.exe"
"SoundMAXPnP"="C:\\Program Files\\Analog Devices\\Core\\smax4pnp.exe"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"MPFExe"="C:\\PROGRA~1\\McAfee.com\\PERSON~1\\MpfTray.exe"
"MessagerStarter Wanadoo"="C:\\PROGRA~1\\MESSAG~1\\StartMessager.exe Messager Wanadoo"
"MCAgentExe"="c:\\PROGRA~1\\mcafee.com\\agent\\mcagent.exe"
"DVDLauncher"="\"C:\\Program Files\\CyberLink\\PowerDVD\\DVDLauncher.exe\""
"DMXLauncher"="C:\\Program Files\\Dell\\Media Experience\\DMXLauncher.exe"
"dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe"
"RealTray"="C:\\Program Files\\Real\\RealPlayer\\RealPlay.exe SYSTEMBOOTHIDEPLAYER"
"ATICCC"="\"C:\\Program Files\\ATI Technologies\\ATI.ACE\\cli.exe\" runtime -Delay"
"keyboard"="c:\\\\kybrd_1.exe"
"defender"="C:\\\\dfndrb_2.exe"
"newname"="c:\\\\nwnm_1.exe"
"winupdates"="C:\\Program Files\\winupdates\\winupdates.exe /auto"
"WinAntiVirusPro2006"="\"C:\\Program Files\\WinAntiVirus Pro 2006\\WinAV.exe\" /min"
"uwa6pcw"="\"C:\\Program Files\\WinAntiVirus Pro 2006\\uwa6pcw.exe\" -c"
"Messaging"="C:\\Program Files\\Instant Messenger Names\\IM-svr.EXE"
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,40,01,00,00,00,00,00,00,00,05,00,00,92,04,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EXE"
"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EXE"
"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=hex:91,00,00,00
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=hex:91,00,00,00
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL 9.0 Icône AOL.lnk]
"path"="C:\\Documents and Settings\\All Users\\Menu Démarrer\\Programmes\\Démarrage\\AOL 9.0 Icône AOL.lnk"
"backup"="C:\\WINDOWS\\pss\\AOL 9.0 Icône AOL.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\AOL9~1.0\\aoltray.exe -check"
"item"="AOL 9.0 Icône AOL"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL Compagnon.lnk]
"path"="C:\\Documents and Settings\\All Users\\Menu Démarrer\\Programmes\\Démarrage\\AOL Compagnon.lnk"
"backup"="C:\\WINDOWS\\pss\\AOL Compagnon.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\AOLCOM~1\\COMPAN~1.EXE /s"
"item"="AOL Compagnon"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"=""
"hkey"="HKLM"
"command"=""
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Steam"
"hkey"="HKCU"
"command"="C:\\Valve\\Steam\\Steam.exe -silent"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WooCnxMon]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CnxMon"
"hkey"="HKLM"
"command"="C:\\PROGRA~1\\Wanadoo\\CnxMon.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOTASKBARICON]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TaskbarIcon"
"hkey"="HKLM"
"command"="C:\\PROGRA~1\\Wanadoo\\TaskbarIcon.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOWATCH]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Watch"
"hkey"="HKLM"
"command"="C:\\PROGRA~1\\Wanadoo\\Watch.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AOL ACS"=dword:00000002
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"
Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\Creative MediaSource Player.job
C:\WINDOWS\tasks\HyperSnap-DX 5.job
C:\WINDOWS\tasks\Recherche de mises … jour sur McAfee.com (DGTZ4K1J-Bruno).job
C:\WINDOWS\tasks\Recherche de mises … jour sur McAfee.com (DGTZ4K1J-En cas de bug).job
C:\WINDOWS\tasks\Recherche de mises … jour sur McAfee.com (DGTZ4K1J-projet).job
Completion time: 27/12/2006 18:11:54,98
C:\ComboFix.txt ... 27/12/2006 18:11
ComboFix 06.11.27 - Running from: "C:\Documents and Settings\Bureau"
((((((((((((((((((((((((((((((((((((((((((((( Look2Me's Log ))))))))))))))))))))))))))))))))))))))))))))))))))
REGISTRY ENTRIES REMOVED:
[HKEY_CLASSES_ROOT\clsid\{D94EDF40-E036-473B-8FF1-38FF96BA442B}]
@=""
"IDEx"="ADDR"
[HKEY_CLASSES_ROOT\clsid\{D94EDF40-E036-473B-8FF1-38FF96BA442B}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{D94EDF40-E036-473B-8FF1-38FF96BA442B}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{D94EDF40-E036-473B-8FF1-38FF96BA442B}\InprocServer32]
@="C:\\WINDOWS\\system32\\DSRAWEX.DLL"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{8D9CD509-0CE0-4AF5-A070-29FFF74B5A36}]
@=""
[HKEY_CLASSES_ROOT\clsid\{8D9CD509-0CE0-4AF5-A070-29FFF74B5A36}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{8D9CD509-0CE0-4AF5-A070-29FFF74B5A36}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{8D9CD509-0CE0-4AF5-A070-29FFF74B5A36}\InprocServer32]
@="C:\\WINDOWS\\system32\\MGCSUBS.DLL"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{A25AED71-FF4E-4EE4-A3E9-7365B3745334}]
@=""
[HKEY_CLASSES_ROOT\clsid\{A25AED71-FF4E-4EE4-A3E9-7365B3745334}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{A25AED71-FF4E-4EE4-A3E9-7365B3745334}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{A25AED71-FF4E-4EE4-A3E9-7365B3745334}\InprocServer32]
@="C:\\WINDOWS\\system32\\guard.tmp"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{3542F2CF-3E00-4E65-A998-A899EA8294A2}]
@=""
[HKEY_CLASSES_ROOT\clsid\{3542F2CF-3E00-4E65-A998-A899EA8294A2}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{3542F2CF-3E00-4E65-A998-A899EA8294A2}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{3542F2CF-3E00-4E65-A998-A899EA8294A2}\InprocServer32]
@="C:\\WINDOWS\\system32\\FISCFGWZ.DLL"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{5184009E-CFF4-429E-8C81-3163C8DA2F7B}]
@=""
[HKEY_CLASSES_ROOT\clsid\{5184009E-CFF4-429E-8C81-3163C8DA2F7B}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{5184009E-CFF4-429E-8C81-3163C8DA2F7B}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{5184009E-CFF4-429E-8C81-3163C8DA2F7B}\InprocServer32]
@="C:\\WINDOWS\\system32\\WIWFAXUI.DLL"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{7F66C209-6BF9-40A6-AF1E-9AD724F68354}]
@=""
[HKEY_CLASSES_ROOT\clsid\{7F66C209-6BF9-40A6-AF1E-9AD724F68354}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{7F66C209-6BF9-40A6-AF1E-9AD724F68354}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{7F66C209-6BF9-40A6-AF1E-9AD724F68354}\InprocServer32]
@="C:\\WINDOWS\\system32\\lkeps11n.dll"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{97544B6B-0B9F-4876-A9DF-EB27C745D768}]
@=""
[HKEY_CLASSES_ROOT\clsid\{97544B6B-0B9F-4876-A9DF-EB27C745D768}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{97544B6B-0B9F-4876-A9DF-EB27C745D768}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{97544B6B-0B9F-4876-A9DF-EB27C745D768}\InprocServer32]
@="C:\\WINDOWS\\system32\\DFKQUOTA.DLL"
"ThreadingModel"="Apartment"
[HKEY_CLASSES_ROOT\clsid\{AA86EACB-B1C2-40ED-89EF-15875E6D0153}]
@=""
[HKEY_CLASSES_ROOT\clsid\{AA86EACB-B1C2-40ED-89EF-15875E6D0153}\Implemented Categories]
@=""
[HKEY_CLASSES_ROOT\clsid\{AA86EACB-B1C2-40ED-89EF-15875E6D0153}\Implemented Categories\{00021492-0000-0000-C000-000000000046}]
@=""
[HKEY_CLASSES_ROOT\clsid\{AA86EACB-B1C2-40ED-89EF-15875E6D0153}\InprocServer32]
@="C:\\WINDOWS\\system32\\PPDLIB32.DLL"
"ThreadingModel"="Apartment"
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
FILES REMOVED:
C:\WINDOWS\SYSTEM32\AAMETER.DLL
C:\WINDOWS\SYSTEM32\ACPTIF.DLL
C:\WINDOWS\SYSTEM32\adiiiexx.dll
C:\WINDOWS\SYSTEM32\aei2cqag.dll
C:\WINDOWS\SYSTEM32\aiioglxx.dll
C:\WINDOWS\SYSTEM32\AMMFD.DLL
C:\WINDOWS\SYSTEM32\AYAAMON.DLL
C:\WINDOWS\SYSTEM32\AYIDDC.DLL
C:\WINDOWS\SYSTEM32\aza003fme.dll
C:\WINDOWS\SYSTEM32\aza0lelm1hqa.dll
C:\WINDOWS\SYSTEM32\aza0li3m18.dll
C:\WINDOWS\SYSTEM32\aza2li5o18.dll
C:\WINDOWS\SYSTEM32\aza4l93q1.dll
C:\WINDOWS\SYSTEM32\aza60c9sef.dll
C:\WINDOWS\SYSTEM32\aza6lghs1646.dll
C:\WINDOWS\SYSTEM32\azam0a91ed.dll
C:\WINDOWS\SYSTEM32\azaol3531.dll
C:\WINDOWS\SYSTEM32\azasl3771.dll
C:\WINDOWS\SYSTEM32\azasl9h71.dll
C:\WINDOWS\SYSTEM32\azasla971d.dll
C:\WINDOWS\SYSTEM32\azau0399e.dll
C:\WINDOWS\SYSTEM32\azau0g19e6.dll
C:\WINDOWS\SYSTEM32\azaulc191f.dll
C:\WINDOWS\SYSTEM32\BQSESRV.DLL
C:\WINDOWS\SYSTEM32\BYelList.dll
C:\WINDOWS\SYSTEM32\c6000gdme60a0.dll
C:\WINDOWS\SYSTEM32\ccmpatUI.dll
C:\WINDOWS\SYSTEM32\CDRTCLI.DLL
C:\WINDOWS\SYSTEM32\CHGBKEND.DLL
C:\WINDOWS\SYSTEM32\CJCS32.dll
C:\WINDOWS\SYSTEM32\CKNSOLE.DLL
C:\WINDOWS\SYSTEM32\CQYPTUI.DLL
C:\WINDOWS\SYSTEM32\CRL3DV2.DLL
C:\WINDOWS\SYSTEM32\cslbact.dll
C:\WINDOWS\SYSTEM32\CUYPTDLG.DLL
C:\WINDOWS\SYSTEM32\CYRSRV.DLL
C:\WINDOWS\SYSTEM32\d2j02c1mgf.dll
C:\WINDOWS\SYSTEM32\d40mled11h0.dll
C:\WINDOWS\SYSTEM32\DALAYX.DLL
C:\WINDOWS\SYSTEM32\DCRAWEX.DLL
C:\WINDOWS\SYSTEM32\debcpwr.dll
C:\WINDOWS\SYSTEM32\DEDMO.DLL
C:\WINDOWS\SYSTEM32\DFKQUOTA.DLL
C:\WINDOWS\SYSTEM32\DFNHUPNP.DLL
C:\WINDOWS\SYSTEM32\DJCPROP2.DLL
C:\WINDOWS\SYSTEM32\DJNMPNTW.DLL
C:\WINDOWS\SYSTEM32\DLNMODEM.DLL
C:\WINDOWS\SYSTEM32\dlvx_xx0c.dll
C:\WINDOWS\SYSTEM32\dn0u01d9e.dll
C:\WINDOWS\SYSTEM32\dn2401fqe.dll
C:\WINDOWS\SYSTEM32\dn8801lue.dll
C:\WINDOWS\SYSTEM32\dn8q01l5e.dll
C:\WINDOWS\SYSTEM32\dnjm0111e.dll
C:\WINDOWS\SYSTEM32\dnjo0113e.dll
C:\WINDOWS\SYSTEM32\DNLAYX.DLL
C:\WINDOWS\SYSTEM32\dnn8015ue.dll
C:\WINDOWS\SYSTEM32\dotmsft3.dll
C:\WINDOWS\SYSTEM32\DPSEC.DLL
C:\WINDOWS\SYSTEM32\DQVENUM.DLL
C:\WINDOWS\SYSTEM32\DRNET.DLL
C:\WINDOWS\SYSTEM32\DVDLGS.DLL
C:\WINDOWS\SYSTEM32\DWCOMPOS.DLL
C:\WINDOWS\SYSTEM32\DWDMO.DLL
C:\WINDOWS\SYSTEM32\DWDPMESH.DLL
C:\WINDOWS\SYSTEM32\DXCOMPOS.DLL
C:\WINDOWS\SYSTEM32\DYDLGS.DLL
C:\WINDOWS\SYSTEM32\DYSEC.DLL
C:\WINDOWS\SYSTEM32\dz16gt.dLL
C:\WINDOWS\SYSTEM32\DZCONFIG.DLL
C:\WINDOWS\SYSTEM32\dZnim.dll
C:\WINDOWS\SYSTEM32\DZSKCOPY.DLL
C:\WINDOWS\SYSTEM32\e4202efmgh2a2.dll
C:\WINDOWS\SYSTEM32\e6202gfmg62a2.dll
C:\WINDOWS\SYSTEM32\e8200ifme82a0.dll
C:\WINDOWS\SYSTEM32\EEENTLOG.DLL
C:\WINDOWS\SYSTEM32\EJTS.DLL
C:\WINDOWS\SYSTEM32\en0ol1d31.dll
C:\WINDOWS\SYSTEM32\en46l1hs1.dll
C:\WINDOWS\SYSTEM32\en6ul1j91.dll
C:\WINDOWS\SYSTEM32\en80l1lm1.dll
C:\WINDOWS\SYSTEM32\enl8l13u1.dll
C:\WINDOWS\SYSTEM32\enlul1391.dll
C:\WINDOWS\SYSTEM32\ennol1531.dll
C:\WINDOWS\SYSTEM32\enp8l17u1.dll
C:\WINDOWS\SYSTEM32\f20olcd31f0.dll
C:\WINDOWS\SYSTEM32\f40oled31h0.dll
C:\WINDOWS\SYSTEM32\f60olgd3160.dll
C:\WINDOWS\SYSTEM32\f6j2lg1o16.dll
C:\WINDOWS\SYSTEM32\f8l0li3m18.dll
C:\WINDOWS\SYSTEM32\ffru0399e.dll
C:\WINDOWS\SYSTEM32\FICFG.DLL
C:\WINDOWS\SYSTEM32\FISCFGWZ.DLL
C:\WINDOWS\SYSTEM32\fp0603dse.dll
C:\WINDOWS\SYSTEM32\fp0s03d7e.dll
C:\WINDOWS\SYSTEM32\fp2203foe.dll
C:\WINDOWS\SYSTEM32\fp6o03j3e.dll
C:\WINDOWS\SYSTEM32\fp8803lue.dll
C:\WINDOWS\SYSTEM32\fpjs0317e.dll
C:\WINDOWS\SYSTEM32\fpl8033ue.dll
C:\WINDOWS\SYSTEM32\fplm0331e.dll
C:\WINDOWS\SYSTEM32\fpn2035oe.dll
C:\WINDOWS\SYSTEM32\fpp0037me.dll
C:\WINDOWS\SYSTEM32\fpr0039me.dll
C:\WINDOWS\SYSTEM32\fpru0399e.dll
C:\WINDOWS\SYSTEM32\g0220afoed2c0.dll
C:\WINDOWS\SYSTEM32\g8jo0i13e8.dll
C:\WINDOWS\SYSTEM32\gp0ol3d31.dll
C:\WINDOWS\SYSTEM32\gp2ql3f51.dll
C:\WINDOWS\SYSTEM32\gp60l3jm1.dll
C:\WINDOWS\SYSTEM32\gpl6l33s1.dll
C:\WINDOWS\SYSTEM32\gplml3311.dll
C:\WINDOWS\SYSTEM32\gplql3351.dll
C:\WINDOWS\SYSTEM32\gpnol3531.dll
C:\WINDOWS\SYSTEM32\gpp2l37o1.dll
C:\WINDOWS\SYSTEM32\gppsl3771.dll
C:\WINDOWS\SYSTEM32\GXDEF.DLL
C:\WINDOWS\SYSTEM32\h22olcf31f2.dll
C:\WINDOWS\SYSTEM32\h4n0le5m1h.dll
C:\WINDOWS\SYSTEM32\h80qlid5180.dll
C:\WINDOWS\SYSTEM32\h8l20i3oe8.dll
C:\WINDOWS\SYSTEM32\hFn0le5m1h.dll
C:\WINDOWS\SYSTEM32\hgp2057oe.dll
C:\WINDOWS\SYSTEM32\hl8605lse.dll
C:\WINDOWS\SYSTEM32\HPETWIZ.DLL
C:\WINDOWS\SYSTEM32\hr0805due.dll
C:\WINDOWS\SYSTEM32\hr2605fse.dll
C:\WINDOWS\SYSTEM32\hr2m05f1e.dll
C:\WINDOWS\SYSTEM32\hr4205hoe.dll
C:\WINDOWS\SYSTEM32\hr4u05h9e.dll
C:\WINDOWS\SYSTEM32\hr8405lqe.dll
C:\WINDOWS\SYSTEM32\hr8605lse.dll
C:\WINDOWS\SYSTEM32\hrj8051ue.dll
C:\WINDOWS\SYSTEM32\hrnu0559e.dll
C:\WINDOWS\SYSTEM32\hrp2057oe.dll
C:\WINDOWS\SYSTEM32\hrpm0571e.dll
C:\WINDOWS\SYSTEM32\hrps0577e.dll
C:\WINDOWS\SYSTEM32\hrru0599e.dll
C:\WINDOWS\SYSTEM32\i2060cdsef060.dll
C:\WINDOWS\SYSTEM32\i6060gdse6060.dll
C:\WINDOWS\SYSTEM32\i6240gfqe62e0.dll
C:\WINDOWS\SYSTEM32\i6lo0g33e6.dll
C:\WINDOWS\SYSTEM32\IC32_32.DLL
C:\WINDOWS\SYSTEM32\IDDKCS32.DLL
C:\WINDOWS\SYSTEM32\iiss.dll
C:\WINDOWS\SYSTEM32\iqetcomm.dll
C:\WINDOWS\SYSTEM32\IQSECSVC.DLL
C:\WINDOWS\SYSTEM32\ir22l5fo1.dll
C:\WINDOWS\SYSTEM32\ir2ml5f11.dll
C:\WINDOWS\SYSTEM32\ir2ql5f51.dll
C:\WINDOWS\SYSTEM32\ir4ol5h31.dll
C:\WINDOWS\SYSTEM32\ir68l5ju1.dll
C:\WINDOWS\SYSTEM32\irj6l51s1.dll
C:\WINDOWS\SYSTEM32\irn4l55q1.dll
C:\WINDOWS\SYSTEM32\irn8l55u1.dll
C:\WINDOWS\SYSTEM32\irrul5991.dll
C:\WINDOWS\SYSTEM32\ISRTPRIO.DLL
C:\WINDOWS\SYSTEM32\ITESHARE.DLL
C:\WINDOWS\SYSTEM32\ITUV_32.DLL
C:\WINDOWS\SYSTEM32\iV060gdse6060.dll
C:\WINDOWS\SYSTEM32\ix2ql5f51.dll
C:\WINDOWS\SYSTEM32\IYXRTMGR.DLL
C:\WINDOWS\SYSTEM32\j0p00a7med.dll
C:\WINDOWS\SYSTEM32\j22q0cf5ef2.dll
C:\WINDOWS\SYSTEM32\j2j60c1sef.dll
C:\WINDOWS\SYSTEM32\j60s0gd7e60.dll
C:\WINDOWS\SYSTEM32\j66m0gj1e6o.dll
C:\WINDOWS\SYSTEM32\j86mlij118o.dll
C:\WINDOWS\SYSTEM32\j8n2li5o18.dll
C:\WINDOWS\SYSTEM32\JEAW400.DLL
C:\WINDOWS\SYSTEM32\JIAW400.DLL
C:\WINDOWS\SYSTEM32\JMAW400.DLL
C:\WINDOWS\SYSTEM32\jmproxy.dll
C:\WINDOWS\SYSTEM32\JPT500.DLL
C:\WINDOWS\SYSTEM32\jr0025dmg.dll
C:\WINDOWS\SYSTEM32\jr2025fmg.dll
C:\WINDOWS\SYSTEM32\jt0807due.dll
C:\WINDOWS\SYSTEM32\jt2607fse.dll
C:\WINDOWS\SYSTEM32\jt4m07h1e.dll
C:\WINDOWS\SYSTEM32\jt6q07j5e.dll
C:\WINDOWS\SYSTEM32\jt8807lue.dll
C:\WINDOWS\SYSTEM32\jt8q07l5e.dll
C:\WINDOWS\SYSTEM32\jtj8071ue.dll
C:\WINDOWS\SYSTEM32\jtlm0731e.dll
C:\WINDOWS\SYSTEM32\jtns0757e.dll
C:\WINDOWS\SYSTEM32\JXSD400.DLL
C:\WINDOWS\SYSTEM32\jzns0757e.dll
C:\WINDOWS\SYSTEM32\k2260cfsef260.dll
C:\WINDOWS\SYSTEM32\k4440ehqeh4e0.dll
C:\WINDOWS\SYSTEM32\k480lelm1hqa.dll
C:\WINDOWS\SYSTEM32\k608lgdu1608.dll
C:\WINDOWS\SYSTEM32\k6440ghqe64e0.dll
C:\WINDOWS\SYSTEM32\k644lghq164e.dll
C:\WINDOWS\SYSTEM32\k6800glme6qa0.dll
C:\WINDOWS\SYSTEM32\k6jslg1716.dll
C:\WINDOWS\SYSTEM32\k6lq0g35e6.dll
C:\WINDOWS\SYSTEM32\k6lqlg3516.dll
C:\WINDOWS\SYSTEM32\KCDTAT.DLL
C:\WINDOWS\SYSTEM32\KDDUSR.DLL
C:\WINDOWS\SYSTEM32\KEDRO.DLL
C:\WINDOWS\SYSTEM32\kfrml7911.dll
C:\WINDOWS\SYSTEM32\KGDSMSFI.DLL
C:\WINDOWS\SYSTEM32\khuser.dll
C:\WINDOWS\SYSTEM32\KKDMLT47.DLL
C:\WINDOWS\SYSTEM32\KMDCZ1.DLL
C:\WINDOWS\SYSTEM32\KMDUK.DLL
C:\WINDOWS\SYSTEM32\knrberos.dll
C:\WINDOWS\SYSTEM32\kt04l7dq1.dll
C:\WINDOWS\SYSTEM32\kt66l7js1.dll
C:\WINDOWS\SYSTEM32\kt6ml7j11.dll
C:\WINDOWS\SYSTEM32\ktj0l71m1.dll
C:\WINDOWS\SYSTEM32\ktl0l73m1.dll
C:\WINDOWS\SYSTEM32\ktlol7331.dll
C:\WINDOWS\SYSTEM32\ktpul7791.dll
C:\WINDOWS\SYSTEM32\ktrml7911.dll
C:\WINDOWS\SYSTEM32\KWDUZB.DLL
C:\WINDOWS\SYSTEM32\KXDYCC.DLL
C:\WINDOWS\SYSTEM32\l04qlah51d4.dll
C:\WINDOWS\SYSTEM32\l0j80a1ued.dll
C:\WINDOWS\SYSTEM32\l20ulcd91f0.dll
C:\WINDOWS\SYSTEM32\l2l60c3sef.dll
C:\WINDOWS\SYSTEM32\l2l6lc3s1f.dll
C:\WINDOWS\SYSTEM32\l4p20e7oeh.dll
C:\WINDOWS\SYSTEM32\l8n4li5q18.dll
C:\WINDOWS\SYSTEM32\l8r0li9m18.dll
C:\WINDOWS\SYSTEM32\LC32.DLL
C:\WINDOWS\SYSTEM32\LCXP2P32.DLL
C:\WINDOWS\SYSTEM32\le4809hue.dll
C:\WINDOWS\SYSTEM32\LfgitCheckControl.dll
C:\WINDOWS\SYSTEM32\lkeps11n.dll
C:\WINDOWS\SYSTEM32\lknkinfo.dll
C:\WINDOWS\SYSTEM32\LMGHOURS.DLL
C:\WINDOWS\SYSTEM32\LQRT.DLL
C:\WINDOWS\SYSTEM32\lt0027dmg.dll
C:\WINDOWS\SYSTEM32\lv0009dme.dll
C:\WINDOWS\SYSTEM32\lv0q09d5e.dll
C:\WINDOWS\SYSTEM32\lv2209foe.dll
C:\WINDOWS\SYSTEM32\lv4609hse.dll
C:\WINDOWS\SYSTEM32\lv4809hue.dll
C:\WINDOWS\SYSTEM32\lv4s09h7e.dll
C:\WINDOWS\SYSTEM32\lv8s09l7e.dll
C:\WINDOWS\SYSTEM32\lvls0937e.dll
C:\WINDOWS\SYSTEM32\lvnq0955e.dll
C:\WINDOWS\SYSTEM32\lvp6097se.dll
C:\WINDOWS\SYSTEM32\lvpm0971e.dll
C:\WINDOWS\SYSTEM32\lvro0993e.dll
C:\WINDOWS\SYSTEM32\LXCMP11n.DLL
C:\WINDOWS\SYSTEM32\m0jula191d.dll
C:\WINDOWS\SYSTEM32\m0rm0a91ed.dll
C:\WINDOWS\SYSTEM32\m2460chsef460.dll
C:\WINDOWS\SYSTEM32\m2julc191f.dll
C:\WINDOWS\SYSTEM32\m2rmlc911f.dll
C:\WINDOWS\SYSTEM32\m4rm0e91eh.dll
C:\WINDOWS\SYSTEM32\m646lghs1646.dll
C:\WINDOWS\SYSTEM32\m682lglo16qc.dll
C:\WINDOWS\SYSTEM32\m6ju0g19e6.dll
C:\WINDOWS\SYSTEM32\m6julg1916.dll
C:\WINDOWS\SYSTEM32\m6ls0g37e6.dll
C:\WINDOWS\SYSTEM32\m8poli7318.dll
C:\WINDOWS\SYSTEM32\mapmsp.dll
C:\WINDOWS\SYSTEM32\MDGLIBNT.DLL
C:\WINDOWS\SYSTEM32\MDGSVC.DLL
C:\WINDOWS\SYSTEM32\MEEXCH40.DLL
C:\WINDOWS\SYSTEM32\MEJTES40.DLL
C:\WINDOWS\SYSTEM32\MEPLAT.dll
C:\WINDOWS\SYSTEM32\MFSWCH.DLL
C:\WINDOWS\SYSTEM32\MFXDM.DLL
C:\WINDOWS\SYSTEM32\MFXML3R.DLL
C:\WINDOWS\SYSTEM32\MGCSUBS.DLL
C:\WINDOWS\SYSTEM32\MGPBDE40.DLL
C:\WINDOWS\SYSTEM32\MGVIDCTL.DLL
C:\WINDOWS\SYSTEM32\MHRUI.DLL
C:\WINDOWS\SYSTEM32\micans32.dll
C:\WINDOWS\SYSTEM32\MIDEMUI.DLL
C:\WINDOWS\SYSTEM32\MILBUI.DLL
C:\WINDOWS\SYSTEM32\MJIQTZ32.DLL
C:\WINDOWS\SYSTEM32\MKXML3R.DLL
C:\WINDOWS\SYSTEM32\mM460chsef460.dll
C:\WINDOWS\SYSTEM32\MND32.DLL
C:\WINDOWS\SYSTEM32\mnpmsp.dll
C:\WINDOWS\SYSTEM32\MOISEQ.DLL
C:\WINDOWS\SYSTEM32\MORAPI.DLL
C:\WINDOWS\SYSTEM32\MPIEFTP.DLL
C:\WINDOWS\SYSTEM32\MQJTER40.DLL
C:\WINDOWS\SYSTEM32\MR4SDMOD.DLL
C:\WINDOWS\SYSTEM32\MRSAP.DLL
C:\WINDOWS\SYSTEM32\mSjulc191f.dll
C:\WINDOWS\SYSTEM32\MSMDD.DLL
C:\WINDOWS\SYSTEM32\MTAATEXT.DLL
C:\WINDOWS\SYSTEM32\MTACM32.DLL
C:\WINDOWS\SYSTEM32\MTGSVC.DLL
C:\WINDOWS\SYSTEM32\mTjulc191f.dll
C:\WINDOWS\SYSTEM32\MTSYSTEM.DLL
C:\WINDOWS\SYSTEM32\mv0ql9d51.dll
C:\WINDOWS\SYSTEM32\mv2ul9f91.dll
C:\WINDOWS\SYSTEM32\mv42l9ho1.dll
C:\WINDOWS\SYSTEM32\mv46l9hs1.dll
C:\WINDOWS\SYSTEM32\mv4ol9h31.dll
C:\WINDOWS\SYSTEM32\mv4sl9h71.dll
C:\WINDOWS\SYSTEM32\mv80l9lm1.dll
C:\WINDOWS\SYSTEM32\MVDIMAP.DLL
C:\WINDOWS\SYSTEM32\MVIQTZ32.DLL
C:\WINDOWS\SYSTEM32\mvl4l93q1.dll
C:\WINDOWS\SYSTEM32\mvlol9331.dll
C:\WINDOWS\SYSTEM32\mvnol9531.dll
C:\WINDOWS\SYSTEM32\MVRLE32.DLL
C:\WINDOWS\SYSTEM32\mvrql9951.dll
C:\WINDOWS\SYSTEM32\MVXML2.DLL
C:\WINDOWS\SYSTEM32\mWjulc191f.dll
C:\WINDOWS\SYSTEM32\MWUTILSE.DLL
C:\WINDOWS\SYSTEM32\mwvci70.dll
C:\WINDOWS\SYSTEM32\MXRDIM.DLL
C:\WINDOWS\SYSTEM32\MXXML.DLL
C:\WINDOWS\SYSTEM32\mypmsp.dll
C:\WINDOWS\SYSTEM32\mzcpxl32.dLL
C:\WINDOWS\SYSTEM32\n04s0ah7ed4.dll
C:\WINDOWS\SYSTEM32\n0p40a7qed.dll
C:\WINDOWS\SYSTEM32\n0r2la9o1d.dll
C:\WINDOWS\SYSTEM32\n26q0cj5efo.dll
C:\WINDOWS\SYSTEM32\n28olcl31fq.dll
C:\WINDOWS\SYSTEM32\n4l80e3ueh.dll
C:\WINDOWS\SYSTEM32\n62u0gf9e62.dll
C:\WINDOWS\SYSTEM32\n62ulgf9162.dll
C:\WINDOWS\SYSTEM32\natman.dll
C:\WINDOWS\SYSTEM32\NCMSSVC.DLL
C:\WINDOWS\SYSTEM32\NDTUI2.DLL
C:\WINDOWS\SYSTEM32\NHTRAP.DLL
C:\WINDOWS\SYSTEM32\NITCFGX.DLL
C:\WINDOWS\SYSTEM32\NMDLL.DLL
C:\WINDOWS\SYSTEM32\nNr2la9o1d.dll
C:\WINDOWS\SYSTEM32\nP6q0cj5efo.dll
C:\WINDOWS\SYSTEM32\NYLANUI.DLL
C:\WINDOWS\SYSTEM32\o2480chuef480.dll
C:\WINDOWS\SYSTEM32\o6ro0g93e6.dll
C:\WINDOWS\SYSTEM32\o8pq0i75e8.dll
C:\WINDOWS\SYSTEM32\o8ro0i93e8.dll
C:\WINDOWS\SYSTEM32\OEEDLG.DLL
C:\WINDOWS\SYSTEM32\OFDBSE32.DLL
C:\WINDOWS\SYSTEM32\p04ulah91d4.dll
C:\WINDOWS\SYSTEM32\p24u0ch9ef4.dll
C:\WINDOWS\SYSTEM32\p2p60c7sef.dll
C:\WINDOWS\SYSTEM32\p4r40e9qeh.dll
C:\WINDOWS\SYSTEM32\p4r4le9q1h.dll
C:\WINDOWS\SYSTEM32\p64ulgh9164.dll
C:\WINDOWS\SYSTEM32\p6r4lg9q16.dll
C:\WINDOWS\SYSTEM32\PCDGEN.DLL
C:\WINDOWS\SYSTEM32\PIP.DLL
C:\WINDOWS\SYSTEM32\Po.dll
C:\WINDOWS\SYSTEM32\PPDLIB32.DLL
C:\WINDOWS\SYSTEM32\PQD.DLL
C:\WINDOWS\SYSTEM32\PVTORSVC.DLL
C:\WINDOWS\SYSTEM32\PwrtableDeviceClassExtension.dll
C:\WINDOWS\SYSTEM32\PXOFMAP.DLL
C:\WINDOWS\SYSTEM32\PYDLIB32.DLL
C:\WINDOWS\SYSTEM32\PZPNETSH.DLL
C:\WINDOWS\SYSTEM32\PzstProc.dll
C:\WINDOWS\SYSTEM32\q268lcju1fo8.dll
C:\WINDOWS\SYSTEM32\q6nu0g59e6.dll
C:\WINDOWS\SYSTEM32\q8nu0i59e8.dll
C:\WINDOWS\SYSTEM32\q8psli7718.dll
C:\WINDOWS\SYSTEM32\q8rq0i95e8.dll
C:\WINDOWS\SYSTEM32\qB68lcju1fo8.dll
C:\WINDOWS\SYSTEM32\qCnu0g59e6.dll
C:\WINDOWS\SYSTEM32\qEpsli7718.dll
C:\WINDOWS\SYSTEM32\qm-mt331.dll
C:\WINDOWS\SYSTEM32\r2r60c9sef.dll
C:\WINDOWS\SYSTEM32\r68s0gl7e6q.dll
C:\WINDOWS\SYSTEM32\r6r6lg9s16.dll
C:\WINDOWS\SYSTEM32\RLAENH.DLL
C:\WINDOWS\SYSTEM32\RQPDD.DLL
C:\WINDOWS\SYSTEM32\rVsmans.dll
C:\WINDOWS\SYSTEM32\RXCNS4.DLL
C:\WINDOWS\SYSTEM32\RXUTILS.DLL
C:\WINDOWS\SYSTEM32\RYHX32.DLL
C:\WINDOWS\SYSTEM32\s088lalu1dq8.dll
C:\WINDOWS\SYSTEM32\s0rsla971d.dll
C:\WINDOWS\SYSTEM32\s6pulg7916.dll
C:\WINDOWS\SYSTEM32\scellstyle.dll
C:\WINDOWS\SYSTEM32\scvsvc.dll
C:\WINDOWS\SYSTEM32\SICLIENT.DLL
C:\WINDOWS\SYSTEM32\skell32.dll
C:\WINDOWS\SYSTEM32\SKPBLB.DLL
C:\WINDOWS\SYSTEM32\smell32.dll
C:\WINDOWS\SYSTEM32\SNNIKE.DLL
C:\WINDOWS\SYSTEM32\SONSCFG.DLL
C:\WINDOWS\SYSTEM32\svell32.dll
C:\WINDOWS\SYSTEM32\SXCSCCP.DLL
C:\WINDOWS\SYSTEM32\SXSBKUP.DLL
C:\WINDOWS\SYSTEM32\SZNS.DLL
C:\WINDOWS\SYSTEM32\t0r80a9ued.dll
C:\WINDOWS\SYSTEM32\TOPI3.DLL
C:\WINDOWS\SYSTEM32\TPAFFIC.DLL
C:\WINDOWS\SYSTEM32\TPPI3.DLL
C:\WINDOWS\SYSTEM32\TRPIUI.DLL
C:\WINDOWS\SYSTEM32\tyflog.dll
C:\WINDOWS\SYSTEM32\u0ru0a99ed.dll
C:\WINDOWS\SYSTEM32\u4rule991h.dll
C:\WINDOWS\SYSTEM32\UDRRTOSA.DLL
C:\WINDOWS\SYSTEM32\UVNP.DLL
C:\WINDOWS\SYSTEM32\uwpnpmgr.dll
C:\WINDOWS\SYSTEM32\VQS_PS.DLL
C:\WINDOWS\SYSTEM32\WbaLogon.dll
C:\WINDOWS\SYSTEM32\WBHIP6.DLL
C:\WINDOWS\SYSTEM32\WGCSVC.DLL
C:\WINDOWS\SYSTEM32\WHDMLOG.dll
C:\WINDOWS\SYSTEM32\WIVEMSP.DLL
C:\WINDOWS\SYSTEM32\WIWFAXUI.DLL
C:\WINDOWS\SYSTEM32\WPSDMOE.DLL
C:\WINDOWS\SYSTEM32\WRASF.DLL
C:\WINDOWS\SYSTEM32\wrps.dll
C:\WINDOWS\SYSTEM32\WUNNTBBU.DLL
C:\WINDOWS\SYSTEM32\WWHFR.DLL
C:\WINDOWS\SYSTEM32\WWIPROP.DLL
C:\WINDOWS\SYSTEM32\xultok.dll
Granting sedebugprivilege to Administrateurs ... successful
(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\WINDOWS\system32\bszip.dll
C:\WINDOWS\system32\cmd.com
C:\WINDOWS\system32\netstat.com
C:\WINDOWS\system32\ping.com
C:\WINDOWS\system32\regedit.com
C:\WINDOWS\system32\setup.exe.tmp
C:\WINDOWS\system32\taskkill.com
C:\WINDOWS\system32\tasklist.com
C:\WINDOWS\system32\tracert.com
C:\WINDOWS\system32\tsuninst.exe
C:\Program Files\Fichiers communs\Yazzle1122OinAdmin.exe
C:\Program Files\Fichiers communs\Yazzle1122OinUninstaller.exe
C:\Program Files\Inetget2
C:\Program Files\outlook
C:\Program Files\ToolBar888
C:\Program Files\winupdates
C:\Program Files\Fichiers communs\{54B1F634-0AE9-1036-0110-050405120021}
~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ Purity ~ ~ ~ ~ ~ ~ ~ ~~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~
Folders Quarantined:
C:\QooBox\Purity\WINDOWS\SYSTEM32\ECURIT~1
C:\QooBox\Purity\WINDOWS\SYSTEM32\ECURIT~1\services.exe
C:\QooBox\Purity\WINDOWS\SYSTEM32\ECURIT~1\?ecurity
((((((((((((((((((((((((((((((( Files Created from 2027-11-06 to 2027/12/2006 ))))))))))))))))))))))))))))))))))
No new files created in this timespan
(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))
(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries are not shown
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\ctfmon.exe"
"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"Steam"="C:\\Valve\\Steam\\Steam.exe -silent"
"CTSyncU.exe"="\"C:\\Program Files\\Creative\\Sync Manager Unicode\\CTSyncU.exe\""
"EA Core"="\"C:\\Program Files\\Electronic Arts\\EA Link\\Core.exe\" -silent"
"swg"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.908.5008\\GoogleToolbarNotifier.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"MCUpdateExe"="c:\\PROGRA~1\\mcafee.com\\agent\\McUpdate.exe"
"VSOCheckTask"="\"c:\\PROGRA~1\\mcafee.com\\vso\\mcmnhdlr.exe\" /checktask"
"VirusScan Online"="c:\\PROGRA~1\\mcafee.com\\vso\\mcvsshld.exe"
"UpdateManager"="\"C:\\Program Files\\Fichiers communs\\Sonic\\Update Manager\\sgtray.exe\" /r"
"SunJavaUpdateSched"="C:\\Program Files\\Java\\jre1.5.0_03\\bin\\jusched.exe"
"SoundMAXPnP"="C:\\Program Files\\Analog Devices\\Core\\smax4pnp.exe"
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"MPFExe"="C:\\PROGRA~1\\McAfee.com\\PERSON~1\\MpfTray.exe"
"MessagerStarter Wanadoo"="C:\\PROGRA~1\\MESSAG~1\\StartMessager.exe Messager Wanadoo"
"MCAgentExe"="c:\\PROGRA~1\\mcafee.com\\agent\\mcagent.exe"
"DVDLauncher"="\"C:\\Program Files\\CyberLink\\PowerDVD\\DVDLauncher.exe\""
"DMXLauncher"="C:\\Program Files\\Dell\\Media Experience\\DMXLauncher.exe"
"dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe"
"RealTray"="C:\\Program Files\\Real\\RealPlayer\\RealPlay.exe SYSTEMBOOTHIDEPLAYER"
"ATICCC"="\"C:\\Program Files\\ATI Technologies\\ATI.ACE\\cli.exe\" runtime -Delay"
"keyboard"="c:\\\\kybrd_1.exe"
"defender"="C:\\\\dfndrb_2.exe"
"newname"="c:\\\\nwnm_1.exe"
"winupdates"="C:\\Program Files\\winupdates\\winupdates.exe /auto"
"WinAntiVirusPro2006"="\"C:\\Program Files\\WinAntiVirus Pro 2006\\WinAV.exe\" /min"
"uwa6pcw"="\"C:\\Program Files\\WinAntiVirus Pro 2006\\uwa6pcw.exe\" -c"
"Messaging"="C:\\Program Files\\Instant Messenger Names\\IM-svr.EXE"
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,40,01,00,00,00,00,00,00,00,05,00,00,92,04,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EXE"
"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EXE"
"msnmsgr"="\"C:\\Program Files\\MSN Messenger\\msnmsgr.exe\" /background"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=hex:91,00,00,00
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=hex:91,00,00,00
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL 9.0 Icône AOL.lnk]
"path"="C:\\Documents and Settings\\All Users\\Menu Démarrer\\Programmes\\Démarrage\\AOL 9.0 Icône AOL.lnk"
"backup"="C:\\WINDOWS\\pss\\AOL 9.0 Icône AOL.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\AOL9~1.0\\aoltray.exe -check"
"item"="AOL 9.0 Icône AOL"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^AOL Compagnon.lnk]
"path"="C:\\Documents and Settings\\All Users\\Menu Démarrer\\Programmes\\Démarrage\\AOL Compagnon.lnk"
"backup"="C:\\WINDOWS\\pss\\AOL Compagnon.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\AOLCOM~1\\COMPAN~1.EXE /s"
"item"="AOL Compagnon"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"=""
"hkey"="HKLM"
"command"=""
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Steam"
"hkey"="HKCU"
"command"="C:\\Valve\\Steam\\Steam.exe -silent"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WooCnxMon]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="CnxMon"
"hkey"="HKLM"
"command"="C:\\PROGRA~1\\Wanadoo\\CnxMon.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOTASKBARICON]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="TaskbarIcon"
"hkey"="HKLM"
"command"="C:\\PROGRA~1\\Wanadoo\\TaskbarIcon.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOWATCH]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="Watch"
"hkey"="HKLM"
"command"="C:\\PROGRA~1\\Wanadoo\\Watch.exe"
"inimapping"="0"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AOL ACS"=dword:00000002
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"
Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\Creative MediaSource Player.job
C:\WINDOWS\tasks\HyperSnap-DX 5.job
C:\WINDOWS\tasks\Recherche de mises … jour sur McAfee.com (DGTZ4K1J-Bruno).job
C:\WINDOWS\tasks\Recherche de mises … jour sur McAfee.com (DGTZ4K1J-En cas de bug).job
C:\WINDOWS\tasks\Recherche de mises … jour sur McAfee.com (DGTZ4K1J-projet).job
Completion time: 27/12/2006 18:11:54,98
C:\ComboFix.txt ... 27/12/2006 18:11
On n'a pas finit....
Prière d'imprimer ces instructions, ou de les coller dans un fichier texte, pour lecture durant ce fix. Regarde bien la note au bas, avant de débuter.
Télécharge Look2Me-Destroyer.exe (par Atribune) sur ton Bureau.
Ferme toutes les fenêtres actives avant de passer à l'étape suivante.
Double-clique Look2Me-Destroyer.exe afin de lancer l'outil.
Coche Run this program as a task
Un message s'affichera, te disant ceci : "Look2Me-Destroyer will close and re-open in approximately 1 minute". Clique OK
Il se relancera après la minute, puis clique sur le bouton Scan for L2M; les icônes de ton Bureau vont disparaître : c'est normal.
Lorsque le scan termine, clique sur le bouton Remove L2M
Un message Done Scanning apparaîtra, clique OK.
Un nouveau message s'affichera : Done removing infected files! Look2Me-Destroyer will now shutdown your computer; clique OK.
Ton PC va maintenant s'éteindre.
Démarre ton PC normalement.
Colle le rapport généré (Look2Me-Destroyer.txt), situé sur le Bureau, ainsi qu'un nouveau rapport HijackThis! dans ta prochaine réponse.
** Si Look2Me-Destroyer ne se relance pas automatiquement après la minute, redémarre et essaie à nouveau.
Prière d'imprimer ces instructions, ou de les coller dans un fichier texte, pour lecture durant ce fix. Regarde bien la note au bas, avant de débuter.
Télécharge Look2Me-Destroyer.exe (par Atribune) sur ton Bureau.
** Si Look2Me-Destroyer ne se relance pas automatiquement après la minute, redémarre et essaie à nouveau.
Voila pour le rapport look 2me le hijackthis! suit
Look2Me-Destroyer V1.0.12
Scanning for infected files.....
Scan started at 28/12/2006 16:51:19
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP250\A0517243.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0536279.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP271\A0540293.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP275\A0546313.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553343.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP307\A0576373.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP310\A0576439.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP311\A0576473.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP313\A0577505.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577621.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577640.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP315\A0577672.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP317\A0579709.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP324\A0585816.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP325\A0585855.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP326\A0585895.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP331\A0587948.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP336\A0603982.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP338\A0604997.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP343\A0612011.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP344\A0613019.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP347\A0616074.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP351\A0616226.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0618257.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0619226.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP357\A0624285.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP364\A0629391.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP370\A0631371.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0633377.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634373.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634379.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635030.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635049.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635067.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635071.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0636079.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636099.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636108.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0636130.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637281.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637282.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637283.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637287.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637288.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637289.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637290.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637291.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637292.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637293.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637294.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637295.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637296.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637297.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637298.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637299.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637300.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637301.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637303.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637304.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637305.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637308.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637312.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637315.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637316.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637319.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637326.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637327.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637328.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637329.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637330.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637331.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637332.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637334.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637335.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637348.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637350.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637351.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637352.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637355.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637356.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637357.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637358.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637359.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637360.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637361.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637362.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637363.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637364.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637365.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637366.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637367.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637368.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637371.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637372.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637373.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637374.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637375.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637376.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637377.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637378.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637379.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637380.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637381.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637382.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637383.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637384.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637385.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637386.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637387.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637388.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637389.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637390.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637391.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637392.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637393.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637395.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637396.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637397.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637398.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637399.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637400.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637401.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637403.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637404.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637405.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637406.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637407.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637408.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637409.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637410.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637411.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637412.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637413.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637414.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637415.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637416.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637417.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637418.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637419.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637422.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637423.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637425.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637426.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637427.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637428.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637429.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637430.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637431.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637432.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637433.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637437.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637438.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637440.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637441.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637442.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637443.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637444.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637445.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637446.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637450.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637452.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637453.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637454.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637455.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637456.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637457.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637458.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637459.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637460.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637461.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637462.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637464.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637465.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637466.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637467.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637468.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637469.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637470.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637471.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637472.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637473.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637474.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637478.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637480.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637484.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637485.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637486.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637487.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637488.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637489.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637490.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637491.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637492.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637495.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637496.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637497.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637498.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637499.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637500.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637501.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637502.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637505.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637506.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637507.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637508.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637511.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637512.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637513.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637514.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637515.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637516.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637517.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637518.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637519.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637520.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637521.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637522.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637523.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637525.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637526.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637527.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637528.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637529.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637530.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637531.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637532.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637533.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637534.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637535.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637536.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637537.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637542.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637550.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637555.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637557.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637564.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637569.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637571.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637572.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637573.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637574.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637575.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637576.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637577.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637580.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637581.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637582.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637584.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637586.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637588.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637591.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637593.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637594.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637595.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637596.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637597.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637598.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637599.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637600.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637601.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637607.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637608.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637610.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637611.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637612.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637613.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637616.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637617.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637618.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637619.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637620.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637621.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637622.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637625.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637629.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637633.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637634.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637635.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637636.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637637.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637638.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637639.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637640.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637641.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637642.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637643.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637644.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637645.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637648.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637652.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637653.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637654.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637655.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637656.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637658.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637660.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637663.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637667.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637672.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637673.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637674.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637677.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637679.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637682.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637687.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637691.dll
Attempting to delete infected files...
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP250\A0517243.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP250\A0517243.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0536279.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0536279.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP271\A0540293.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP271\A0540293.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP275\A0546313.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP275\A0546313.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553343.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553343.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP307\A0576373.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP307\A0576373.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP310\A0576439.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP310\A0576439.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP311\A0576473.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP311\A0576473.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP313\A0577505.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP313\A0577505.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577621.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577621.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577640.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577640.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP315\A0577672.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP315\A0577672.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP317\A0579709.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP317\A0579709.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP324\A0585816.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP324\A0585816.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP325\A0585855.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP325\A0585855.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP326\A0585895.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP326\A0585895.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP331\A0587948.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP331\A0587948.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP336\A0603982.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP336\A0603982.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP338\A0604997.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP338\A0604997.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP343\A0612011.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP343\A0612011.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP344\A0613019.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP344\A0613019.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP347\A0616074.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP347\A0616074.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP351\A0616226.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP351\A0616226.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0618257.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0618257.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0619226.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0619226.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP357\A0624285.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP357\A0624285.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP364\A0629391.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP364\A0629391.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP370\A0631371.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP370\A0631371.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0633377.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0633377.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634373.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634373.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634379.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634379.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635030.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635030.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635049.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635049.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635067.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635067.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635071.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635071.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0636079.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0636079.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636099.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636099.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636108.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636108.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0636130.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0636130.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637281.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637281.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637282.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637282.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637283.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637283.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637287.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637287.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637288.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637288.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637289.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637289.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637290.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637290.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637291.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637291.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637292.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637292.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637293.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637293.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637294.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637294.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637295.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637295.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637296.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637296.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637297.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637297.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637298.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637298.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637299.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637299.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637300.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637300.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637301.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637301.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637303.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637303.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637304.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637304.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637305.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637305.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637308.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637308.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637312.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637312.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637315.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637315.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637316.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637316.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637319.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637319.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637326.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637326.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637327.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637327.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637328.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637328.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637329.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637329.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637330.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637330.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637331.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637331.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637332.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637332.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637334.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637334.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637335.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637335.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637348.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637348.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637350.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637350.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637351.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637351.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637352.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637352.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637355.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637355.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637356.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637356.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637357.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637357.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637358.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637358.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637359.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637359.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637360.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637360.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637361.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637361.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637362.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637362.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637363.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637363.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637364.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637364.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637365.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637365.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637366.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637366.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637367.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637367.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637368.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637368.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637371.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637371.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637372.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637372.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637373.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637373.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637374.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637374.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637375.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637375.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637376.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637376.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637377.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637377.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637378.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637378.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637379.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637379.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637380.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637380.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637381.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637381.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637382.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637382.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637383.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637383.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637384.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637384.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637385.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637385.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637386.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637386.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637387.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637387.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637388.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637388.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637389.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637389.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637390.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637390.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637391.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637391.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637392.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637392.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637393.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637393.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637395.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637395.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637396.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637396.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637397.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637397.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637398.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637398.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637399.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637399.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637400.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637400.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637401.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637401.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637403.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637403.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637404.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637404.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637405.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637405.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637406.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637406.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637407.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637407.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637408.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637408.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637409.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637409.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637410.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637410.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637411.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637411.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637412.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637412.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637413.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637413.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637414.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637414.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637415.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637415.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637416.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637416.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637417.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637417.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637418.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637418.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_r
Look2Me-Destroyer V1.0.12
Scanning for infected files.....
Scan started at 28/12/2006 16:51:19
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP250\A0517243.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0536279.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP271\A0540293.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP275\A0546313.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553343.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP307\A0576373.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP310\A0576439.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP311\A0576473.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP313\A0577505.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577621.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577640.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP315\A0577672.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP317\A0579709.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP324\A0585816.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP325\A0585855.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP326\A0585895.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP331\A0587948.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP336\A0603982.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP338\A0604997.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP343\A0612011.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP344\A0613019.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP347\A0616074.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP351\A0616226.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0618257.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0619226.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP357\A0624285.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP364\A0629391.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP370\A0631371.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0633377.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634373.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634379.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635030.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635049.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635067.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635071.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0636079.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636099.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636108.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0636130.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637281.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637282.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637283.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637287.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637288.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637289.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637290.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637291.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637292.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637293.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637294.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637295.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637296.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637297.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637298.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637299.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637300.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637301.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637303.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637304.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637305.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637308.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637312.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637315.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637316.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637319.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637326.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637327.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637328.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637329.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637330.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637331.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637332.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637334.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637335.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637348.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637350.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637351.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637352.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637355.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637356.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637357.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637358.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637359.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637360.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637361.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637362.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637363.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637364.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637365.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637366.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637367.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637368.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637371.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637372.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637373.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637374.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637375.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637376.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637377.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637378.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637379.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637380.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637381.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637382.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637383.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637384.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637385.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637386.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637387.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637388.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637389.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637390.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637391.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637392.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637393.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637395.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637396.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637397.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637398.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637399.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637400.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637401.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637403.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637404.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637405.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637406.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637407.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637408.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637409.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637410.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637411.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637412.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637413.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637414.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637415.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637416.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637417.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637418.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637419.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637422.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637423.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637425.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637426.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637427.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637428.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637429.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637430.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637431.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637432.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637433.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637437.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637438.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637440.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637441.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637442.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637443.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637444.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637445.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637446.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637450.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637452.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637453.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637454.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637455.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637456.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637457.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637458.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637459.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637460.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637461.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637462.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637464.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637465.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637466.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637467.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637468.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637469.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637470.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637471.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637472.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637473.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637474.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637478.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637480.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637484.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637485.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637486.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637487.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637488.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637489.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637490.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637491.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637492.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637495.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637496.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637497.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637498.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637499.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637500.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637501.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637502.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637505.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637506.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637507.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637508.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637511.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637512.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637513.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637514.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637515.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637516.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637517.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637518.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637519.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637520.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637521.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637522.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637523.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637525.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637526.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637527.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637528.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637529.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637530.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637531.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637532.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637533.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637534.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637535.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637536.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637537.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637542.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637550.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637555.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637557.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637564.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637569.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637571.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637572.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637573.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637574.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637575.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637576.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637577.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637580.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637581.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637582.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637584.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637586.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637588.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637591.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637593.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637594.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637595.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637596.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637597.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637598.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637599.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637600.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637601.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637607.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637608.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637610.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637611.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637612.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637613.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637616.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637617.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637618.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637619.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637620.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637621.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637622.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637625.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637629.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637633.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637634.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637635.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637636.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637637.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637638.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637639.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637640.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637641.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637642.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637643.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637644.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637645.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637648.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637652.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637653.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637654.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637655.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637656.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637658.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637660.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637663.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637667.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637672.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637673.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637674.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637677.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637679.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637682.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637687.dll
Infected! C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637691.dll
Attempting to delete infected files...
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP250\A0517243.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP250\A0517243.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0536279.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0536279.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP271\A0540293.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP271\A0540293.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP275\A0546313.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP275\A0546313.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553343.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553343.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP307\A0576373.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP307\A0576373.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP310\A0576439.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP310\A0576439.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP311\A0576473.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP311\A0576473.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP313\A0577505.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP313\A0577505.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577621.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577621.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577640.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP314\A0577640.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP315\A0577672.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP315\A0577672.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP317\A0579709.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP317\A0579709.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP324\A0585816.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP324\A0585816.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP325\A0585855.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP325\A0585855.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP326\A0585895.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP326\A0585895.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP331\A0587948.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP331\A0587948.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP336\A0603982.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP336\A0603982.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP338\A0604997.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP338\A0604997.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP343\A0612011.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP343\A0612011.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP344\A0613019.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP344\A0613019.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP347\A0616074.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP347\A0616074.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP351\A0616226.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP351\A0616226.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0618257.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0618257.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0619226.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP354\A0619226.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP357\A0624285.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP357\A0624285.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP364\A0629391.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP364\A0629391.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP370\A0631371.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP370\A0631371.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0633377.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0633377.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634373.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634373.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634379.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP373\A0634379.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635030.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635030.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635049.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP374\A0635049.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635067.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635067.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635071.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0635071.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0636079.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP375\A0636079.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636099.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636099.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636108.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP376\A0636108.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0636130.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0636130.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637281.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637281.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637282.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637282.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637283.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637283.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637287.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637287.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637288.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637288.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637289.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637289.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637290.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637290.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637291.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637291.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637292.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637292.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637293.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637293.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637294.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637294.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637295.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637295.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637296.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637296.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637297.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637297.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637298.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637298.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637299.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637299.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637300.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637300.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637301.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637301.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637303.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637303.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637304.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637304.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637305.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637305.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637308.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637308.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637312.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637312.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637315.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637315.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637316.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637316.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637319.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637319.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637326.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637326.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637327.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637327.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637328.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637328.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637329.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637329.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637330.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637330.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637331.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637331.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637332.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637332.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637334.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637334.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637335.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637335.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637348.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637348.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637350.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637350.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637351.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637351.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637352.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637352.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637355.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637355.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637356.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637356.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637357.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637357.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637358.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637358.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637359.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637359.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637360.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637360.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637361.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637361.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637362.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637362.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637363.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637363.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637364.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637364.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637365.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637365.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637366.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637366.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637367.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637367.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637368.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637368.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637371.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637371.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637372.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637372.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637373.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637373.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637374.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637374.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637375.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637375.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637376.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637376.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637377.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637377.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637378.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637378.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637379.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637379.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637380.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637380.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637381.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637381.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637382.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637382.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637383.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637383.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637384.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637384.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637385.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637385.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637386.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637386.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637387.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637387.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637388.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637388.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637389.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637389.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637390.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637390.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637391.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637391.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637392.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637392.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637393.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637393.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637395.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637395.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637396.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637396.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637397.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637397.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637398.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637398.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637399.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637399.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637400.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637400.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637401.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637401.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637403.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637403.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637404.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637404.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637405.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637405.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637406.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637406.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637407.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637407.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637408.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637408.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637409.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637409.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637410.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637410.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637411.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637411.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637412.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637412.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637413.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637413.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637414.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637414.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637415.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637415.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637416.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637416.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637417.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637417.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637418.dll
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP377\A0637418.dll Deleted successfully!
Attempting to delete: C:\System Volume Information\_r
Excuse moi c'est bon j'ai le rapport Hijackthis:
Logfile of HijackThis v1.99.1
Scan saved at 17:13:19, on 28/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SYSTEM32\acs.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
c:\program files\mcafee.com\agent\mcagent.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Instant Messenger Names\IM-svr.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Valve\Steam\Steam.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Creative\MediaSource5\MtdAcqu.exe
C:\Program Files\Launchy\Launchy.exe
C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
c:\PROGRA~1\mcafee.com\agent\McDash.exe
c:\program files\mcafee.com\shared\mghtml.exe
C:\DOCUME~1\Bruno\LOCALS~1\Temp\Répertoire temporaire 6 pour hijackthis.zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [keyboard] c:\\kybrd_1.exe
O4 - HKLM\..\Run: [defender] C:\\dfndrb_2.exe
O4 - HKLM\..\Run: [newname] c:\\nwnm_1.exe
O4 - HKLM\..\Run: [winupdates] C:\Program Files\winupdates\winupdates.exe /auto
O4 - HKLM\..\Run: [WinAntiVirusPro2006] "C:\Program Files\WinAntiVirus Pro 2006\WinAV.exe" /min
O4 - HKLM\..\Run: [uwa6pcw] "C:\Program Files\WinAntiVirus Pro 2006\uwa6pcw.exe" -c
O4 - HKLM\..\Run: [Messaging] C:\Program Files\Instant Messenger Names\IM-svr.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Steam] C:\Valve\Steam\Steam.exe -silent
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MtdAcqu] "C:\Program Files\Creative\MediaSource5\MtdAcqu.exe" /s
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Global Startup: Launchy.lnk = C:\Program Files\Launchy\Launchy.exe
O4 - Global Startup: NETGEAR WG311T Wireless Assistant.lnk = C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://www.m6video.fr/1click/install/files/installer2.c...
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://fdata.over-blog.com/script/ImageUploader3.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\SYSTEM32\acs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\SYSTEM32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - Networks Associates Technology, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
Logfile of HijackThis v1.99.1
Scan saved at 17:13:19, on 28/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SYSTEM32\acs.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
c:\program files\mcafee.com\agent\mcagent.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Instant Messenger Names\IM-svr.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Valve\Steam\Steam.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Creative\MediaSource5\MtdAcqu.exe
C:\Program Files\Launchy\Launchy.exe
C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
c:\PROGRA~1\mcafee.com\agent\McDash.exe
c:\program files\mcafee.com\shared\mghtml.exe
C:\DOCUME~1\Bruno\LOCALS~1\Temp\Répertoire temporaire 6 pour hijackthis.zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [keyboard] c:\\kybrd_1.exe
O4 - HKLM\..\Run: [defender] C:\\dfndrb_2.exe
O4 - HKLM\..\Run: [newname] c:\\nwnm_1.exe
O4 - HKLM\..\Run: [winupdates] C:\Program Files\winupdates\winupdates.exe /auto
O4 - HKLM\..\Run: [WinAntiVirusPro2006] "C:\Program Files\WinAntiVirus Pro 2006\WinAV.exe" /min
O4 - HKLM\..\Run: [uwa6pcw] "C:\Program Files\WinAntiVirus Pro 2006\uwa6pcw.exe" -c
O4 - HKLM\..\Run: [Messaging] C:\Program Files\Instant Messenger Names\IM-svr.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Steam] C:\Valve\Steam\Steam.exe -silent
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MtdAcqu] "C:\Program Files\Creative\MediaSource5\MtdAcqu.exe" /s
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Global Startup: Launchy.lnk = C:\Program Files\Launchy\Launchy.exe
O4 - Global Startup: NETGEAR WG311T Wireless Assistant.lnk = C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://www.m6video.fr/1click/install/files/installer2.c...
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://fdata.over-blog.com/script/ImageUploader3.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\SYSTEM32\acs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\SYSTEM32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - Networks Associates Technology, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
Re,
Télécharge Blacklight (F-Secure), clique sur " I ACCEPT " en bas de la page :
Clique sur le premier " Download " afin de télécharger le programme
Sauvegarde le sur ton Bureau
Double-clique blbeta.exe et accepte la licence; clique Scan puis Next.
A la fin du scan, NE TOUCHE A RIEN !
Tu verras un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).
Nous devons analyser ce rapport, ferme donc le BlackLight.
Poste le rapport sur le forum.
AIDE : Tuto sur BlackLight (Malekal)
Télécharge Blacklight (F-Secure), clique sur " I ACCEPT " en bas de la page :
Clique sur le premier " Download " afin de télécharger le programme
Sauvegarde le sur ton Bureau
Double-clique blbeta.exe et accepte la licence; clique Scan puis Next.
A la fin du scan, NE TOUCHE A RIEN !
Tu verras un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).
Nous devons analyser ce rapport, ferme donc le BlackLight.
Poste le rapport sur le forum.
AIDE : Tuto sur BlackLight (Malekal)
Voila pour le rapport blacklight
12/28/06 17:25:38 [Info]: BlackLight Engine 1.0.55 initialized
12/28/06 17:25:38 [Info]: OS: 5.1 build 2600 (Service Pack 2)
12/28/06 17:25:38 [Note]: 7019 4
12/28/06 17:25:38 [Note]: 7005 0
12/28/06 17:25:41 [Note]: 7006 0
12/28/06 17:25:42 [Note]: 7011 1060
12/28/06 17:25:42 [Note]: 7026 0
12/28/06 17:25:42 [Note]: 7026 0
12/28/06 17:25:54 [Note]: FSRAW library version 1.7.1021
12/28/06 17:35:40 [Note]: 2000 1012
12/28/06 17:35:40 [Note]: 2000 1012
12/28/06 17:35:40 [Note]: 2000 1012
12/28/06 17:25:38 [Info]: BlackLight Engine 1.0.55 initialized
12/28/06 17:25:38 [Info]: OS: 5.1 build 2600 (Service Pack 2)
12/28/06 17:25:38 [Note]: 7019 4
12/28/06 17:25:38 [Note]: 7005 0
12/28/06 17:25:41 [Note]: 7006 0
12/28/06 17:25:42 [Note]: 7011 1060
12/28/06 17:25:42 [Note]: 7026 0
12/28/06 17:25:42 [Note]: 7026 0
12/28/06 17:25:54 [Note]: FSRAW library version 1.7.1021
12/28/06 17:35:40 [Note]: 2000 1012
12/28/06 17:35:40 [Note]: 2000 1012
12/28/06 17:35:40 [Note]: 2000 1012
On passe maintenant à WinAntivirus.
Les manipulations sont à faire sans interruption et dans l'ordre
Si tu ne comprends pas quelque chose, demande des explications avant de commencer.
Enregistre cette page pour avoir accès à la procédure en mode sans échec :
- Fichier
- Enregistrer Sous...
- Nom du fichier : Procédure
- Type : Page Web, complète
- Pour l'emplacement, chosis ton Bureau
- Clique maintenant sur Enregistrer
Télécharge :
Brute Force Uninstaller (de Merjin).
Créé un nouveau dossier directement sur le C:\ et nomme-le BFU. Décompresse le fichier téléchargé dans ce nouveau dossier (C:\BFU)
Navipromo.zip et décompresse-le sur ton bureau.
FAIS UN CLIQUE-DROIT ICI et choisis "Enregistrer la cible du lien sous..." afin de télécharger EGDACCESS.bfu (de Metallica). Sauvegarde-le dans le dossier créé (C:\BFU).
Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : Winsoftware.bfu et BFU.exe (très important).
Note : Si tu utlises Internet Explorer; lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers".
AIDE : Comment installer et utiliser BFU ?
Redémarre en mode Sans Échec : au redémarrage, tapote immédiatement la touche F8; tu verras un écran avec choix de démarrages apparaître. Utilisant les flèches du clavier, choisis "Mode Sans Échec" et valide avec "Entrée". Choisis ton compte usuel, et non Administrateur.
Démarre "Brute Force Uninstaller" en double-cliquant BFU.exe (du dossier C:\BFU)
- Clique sur le petit dossier jaune, à la droite de la boîte Scriptline to execute, et double-clique sur :
Winsoftware.bfu
- Dans la boîte "Scriptline to execute", tu devrais maintenant voir ceci : C:\BFU\Winsoftware.bfu
Clique sur Execute et laisse-le faire son travail.
Attends que Complete script execution apparaisse pour cliquer sur OK.
Clique Exit pour fermer le programme BFU.
Redémarre normalement.
Poste un rapport Hijackthis
Les manipulations sont à faire sans interruption et dans l'ordre
Si tu ne comprends pas quelque chose, demande des explications avant de commencer.
Enregistre cette page pour avoir accès à la procédure en mode sans échec :
- Fichier
- Enregistrer Sous...
- Nom du fichier : Procédure
- Type : Page Web, complète
- Pour l'emplacement, chosis ton Bureau
- Clique maintenant sur Enregistrer
Télécharge :
Brute Force Uninstaller (de Merjin).
Créé un nouveau dossier directement sur le C:\ et nomme-le BFU. Décompresse le fichier téléchargé dans ce nouveau dossier (C:\BFU)
Navipromo.zip et décompresse-le sur ton bureau.
FAIS UN CLIQUE-DROIT ICI et choisis "Enregistrer la cible du lien sous..." afin de télécharger EGDACCESS.bfu (de Metallica). Sauvegarde-le dans le dossier créé (C:\BFU).
Tu dois maintenant avoir deux fichiers dans le dossier C:\BFU : Winsoftware.bfu et BFU.exe (très important).
Note : Si tu utlises Internet Explorer; lors de la sauvegarde, assure-toi que le champs "Type :" affiche "Tous les fichiers".
AIDE : Comment installer et utiliser BFU ?
Redémarre en mode Sans Échec : au redémarrage, tapote immédiatement la touche F8; tu verras un écran avec choix de démarrages apparaître. Utilisant les flèches du clavier, choisis "Mode Sans Échec" et valide avec "Entrée". Choisis ton compte usuel, et non Administrateur.
Démarre "Brute Force Uninstaller" en double-cliquant BFU.exe (du dossier C:\BFU)
- Clique sur le petit dossier jaune, à la droite de la boîte Scriptline to execute, et double-clique sur :
Winsoftware.bfu
- Dans la boîte "Scriptline to execute", tu devrais maintenant voir ceci : C:\BFU\Winsoftware.bfu
Clique sur Execute et laisse-le faire son travail.
Attends que Complete script execution apparaisse pour cliquer sur OK.
Clique Exit pour fermer le programme BFU.
Redémarre normalement.
Poste un rapport Hijackthis
Voici le rapport Hijackthis
Logfile of HijackThis v1.99.1
Scan saved at 18:09:40, on 28/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\SYSTEM32\acs.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\WINDOWS\system32\Ati2evxx.exe
c:\program files\mcafee.com\agent\mcagent.exe
C:\WINDOWS\Explorer.EXE
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Instant Messenger Names\IM-svr.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Valve\Steam\Steam.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Creative\MediaSource5\MtdAcqu.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Launchy\Launchy.exe
C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\DOCUME~1\Bruno\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [keyboard] c:\\kybrd_1.exe
O4 - HKLM\..\Run: [defender] C:\\dfndrb_2.exe
O4 - HKLM\..\Run: [newname] c:\\nwnm_1.exe
O4 - HKLM\..\Run: [winupdates] C:\Program Files\winupdates\winupdates.exe /auto
O4 - HKLM\..\Run: [Messaging] C:\Program Files\Instant Messenger Names\IM-svr.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Steam] C:\Valve\Steam\Steam.exe -silent
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MtdAcqu] "C:\Program Files\Creative\MediaSource5\MtdAcqu.exe" /s
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Global Startup: Launchy.lnk = C:\Program Files\Launchy\Launchy.exe
O4 - Global Startup: NETGEAR WG311T Wireless Assistant.lnk = C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://www.m6video.fr/1click/install/files/installer2.c...
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://fdata.over-blog.com/script/ImageUploader3.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\SYSTEM32\acs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\SYSTEM32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - Networks Associates Technology, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
Logfile of HijackThis v1.99.1
Scan saved at 18:09:40, on 28/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\SYSTEM32\acs.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\UAService7.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
C:\WINDOWS\system32\Ati2evxx.exe
c:\program files\mcafee.com\agent\mcagent.exe
C:\WINDOWS\Explorer.EXE
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\PROGRA~1\MESSAG~1\StartMessager.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Instant Messenger Names\IM-svr.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Valve\Steam\Steam.exe
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
C:\Program Files\Creative\MediaSource5\MtdAcqu.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Launchy\Launchy.exe
C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\DOCUME~1\Bruno\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis.zip\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://www.euro.dell.com/countries/fr/fra/gen/default.h...
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Wanadoo
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\PROGRA~1\Wanadoo\SEARCH~1.DLL
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.exe
O4 - HKLM\..\Run: [VSOCheckTask] "c:\PROGRA~1\mcafee.com\vso\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] c:\PROGRA~1\mcafee.com\vso\mcvsshld.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [keyboard] c:\\kybrd_1.exe
O4 - HKLM\..\Run: [defender] C:\\dfndrb_2.exe
O4 - HKLM\..\Run: [newname] c:\\nwnm_1.exe
O4 - HKLM\..\Run: [winupdates] C:\Program Files\winupdates\winupdates.exe /auto
O4 - HKLM\..\Run: [Messaging] C:\Program Files\Instant Messenger Names\IM-svr.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Steam] C:\Valve\Steam\Steam.exe -silent
O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.908.5008\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MtdAcqu] "C:\Program Files\Creative\MediaSource5\MtdAcqu.exe" /s
O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
O4 - Global Startup: Launchy.lnk = C:\Program Files\Launchy\Launchy.exe
O4 - Global Startup: NETGEAR WG311T Wireless Assistant.lnk = C:\Program Files\NETGEAR\WG311T\wlancfg5.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O9 - Extra 'Tools' menuitem: Messager Wanadoo - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\PROGRA~1\MESSAG~1\Messager Wanadoo.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267....
O16 - DPF: {09CC593B-E8A9-4491-927D-A3E33534DDD4} (InstallerObj Class) - http://www.m6video.fr/1click/install/files/installer2.c...
O16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) - http://musicmix.messenger.msn.com/Medialogic.CAB
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab312...
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.com/cabs/acclaim_v4.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClie...
O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Ap...
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://fdata.over-blog.com/script/ImageUploader3.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - C:\Program Files\Tiscali\Tiscali Internet\dlls\tiscalifilter.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Atheros Configuration Service (ACS) - Unknown owner - C:\WINDOWS\SYSTEM32\acs.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\SYSTEM32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee.com McShield (McShield) - Unknown owner - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee.com VirusScan Online Realtime Engine (MCVSRte) - Networks Associates Technology, Inc - c:\PROGRA~1\mcafee.com\vso\mcvsrte.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: SecuROM User Access Service (V7) (UserAccess7) - Sony DADC Austria AG. - C:\WINDOWS\system32\UAService7.exe
On a pas eu trop peur ? ![:)]( ":)")
Désinstalle si possible :
MyGlobalSearch
- Lance Hijackthis ->Do a system scan only
->Coche les lignes ci-dessous :
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O4 - HKLM\..\Run: [keyboard] c:\\kybrd_1.exe
O4 - HKLM\..\Run: [defender] C:\\dfndrb_2.exe
O4 - HKLM\..\Run: [newname] c:\\nwnm_1.exe
O4 - HKLM\..\Run: [winupdates] C:\Program Files\winupdates\winupdates.exe /auto
Clique sur Fix checked (en bas à gauche)
Supprime ces dossiers :
C:\Program Files\winupdates\
C:\Program Files\MyGlobalSearch\
Fais un scan en ligne Kaspersky avec Internet Explorer :
Clique sur ![]()
Clique maintenant sur J'accepte.
Valide l'installation d'un ou de plusieurs ActiveX si c'est nécessaire.
Patiente pendant l'installation des Mises à jour.
Choisis par la suite l'analyse du Poste de travail
Sauvegarde puis colle le rapport généré en fin d'analyse.
AIDE : Configurer le contrôle des ActiveX
NOTE : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.
Désinstalle si possible :
MyGlobalSearch
- Lance Hijackthis ->Do a system scan only
->Coche les lignes ci-dessous :
O3 - Toolbar: My Global Search Bar - {37B85A29-692B-4205-9CAD-2626E4993404} - C:\Program Files\MyGlobalSearch\bar\1.bin\MGSBAR.DLL
O4 - HKLM\..\Run: [keyboard] c:\\kybrd_1.exe
O4 - HKLM\..\Run: [defender] C:\\dfndrb_2.exe
O4 - HKLM\..\Run: [newname] c:\\nwnm_1.exe
O4 - HKLM\..\Run: [winupdates] C:\Program Files\winupdates\winupdates.exe /auto
Clique sur Fix checked (en bas à gauche)
Supprime ces dossiers :
C:\Program Files\winupdates\
C:\Program Files\MyGlobalSearch\
AIDE : Configurer le contrôle des ActiveX
NOTE : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.
je nai que 91 pourcent je reccomence demain les voici
Thursday, December 28, 2006 8:52:58 PM
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.83.0
Dernière mise à jour de la base antivirus Kaspersky : 28/12/2006
Enregistrements dans la base antivirus Kaspersky : 240474
Paramètres d'analyse
Analyser avec la base antivirus suivante standard
Analyser les archives vrai
Analyser les bases de messagerie vrai
Cible de l'analyse Poste de travail
A:\
C:\
D:\
Statistiques de l'analyse
Total d'objets analysés 164257
Nombre de virus trouvés 17
Nombre d'objets infectés 29 / 0
Nombre d'objets suspects 0
Durée de l'analyse 02:21:13
Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\PCML_1.dpm L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\PCML_1.ldb L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/BlackBox.class Infecté : Exploit.Java.ByteVerify ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/VerifierBug.class Infecté : Exploit.Java.ByteVerify ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/Beyond.class Infecté : Trojan-Downloader.Java.OpenConnection.aa ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip ZIP: infecté - 3 ignoré
C:\Documents and Settings\Bruno\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\ApplicationHistory\cli.exe.c88dbd71.ini.inuse L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Historique\History.IE5\MSHist012006122820061229\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\JET83D1.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_1f0.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_af8.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_e74.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF6B5D.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\++++ relc te souhaite la bienvenue 43.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\relc te souhaite la bienvenue 27.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\[[ relc te souhaite la bienvenue 26.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\LocalService\Cookies\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Photo Sophie\0000000000000000000000000000000000000000000000 Infecté : Trojan-Downloader.Win32.VB.afv ignoré
C:\Program Files\Bethesda Softworks\Morrowind\CSUninstall\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\Bethesda Softworks\Morrowind\MWUninstall\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\Common Files\misc001\Mendoza.exe/data0006 Infecté : Trojan-Dropper.Win32.VB.mz ignoré
C:\Program Files\Common Files\misc001\Mendoza.exe NSIS: infecté - 1 ignoré
C:\Program Files\Common Files\simtest\sysstall.exe Infecté : Trojan.Win32.Zapchast.bl ignoré
C:\Program Files\Common Files\svchostsys\svchostupdate.exe Infecté : Trojan-Downloader.MSIL.Agent.a ignoré
C:\Program Files\Fichiers communs\ifqq\ifqqa.exe Infecté : Trojan-Downloader.Win32.TSUpdate.l ignoré
C:\Program Files\Fichiers communs\ifqq\ifqql.exe Infecté : Trojan-Downloader.Win32.TSUpdate.r ignoré
C:\Program Files\Fichiers communs\ifqq\ifqqp.exe Infecté : Trojan-Downloader.Win32.TSUpdate.f ignoré
C:\Program Files\InstallShield Installation Information\{026FE81A-DF00-40B0-B325-7F9C6921ED02}\Setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{2727FBEF-3155-11D4-8F73-0050DA0F6297}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{588C135F-0B15-4A02-8F2D-04697BE2904E}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{7595CCFC-953D-4EF3-896F-6993A4013C60}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{7D268154-7A31-40F2-9779-7A250914BB39}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{A4832C98-ADB6-11D4-8DEA-00105AF17047}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{A8808DE0-7441-4873-8711-A7E65DBD693C}\Setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{AAC8AF92-DAEC-45D2-B77D-36699E3751A9}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{DF3E37E0-06D5-4A1B-A264-BD2B7E30B458}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{EBC0E8C0-63AC-11D4-BEF2-00A0C9E0B324}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{EFCE5837-FC21-11D6-9D24-00010240CE95}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\Instant Messenger Names\1.exe Infecté : Trojan.Win32.KillFW.a ignoré
C:\Program Files\pspvideo9\settings.xml L'objet est verrouillé ignoré
C:\QooBox\Purity\WINDOWS\SYSTEM32\ECURIT~1\services.exe Infecté : Trojan-Downloader.Win32.PurityScan.dr ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553367.exe Infecté : Trojan-Downloader.Win32.TSUpdate.n ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553368.exe Infecté : Trojan-Downloader.Win32.TSUpdate.p ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553369.exe Infecté : Trojan-Downloader.Win32.TSUpdate.l ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553370.exe Infecté : Trojan-Downloader.Win32.TSUpdate.f ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP285\A0558775.exe Infecté : Trojan-Downloader.Win32.TSUpdate.o ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP316\A0578713.exe Infecté : Trojan-Downloader.Win32.VB.afv ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP317\A0579929.exe Infecté : Trojan-Downloader.MSIL.Agent.a ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP317\A0579930.exe Infecté : Trojan-Downloader.Win32.TSUpdate.n ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP334\A0591853.exe Infecté : Trojan-Downloader.Win32.Small.buy ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP334\A0591864.exe Infecté : Trojan-Spy.Win32.Perfloger.ab ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP334\A0591894.exe Infecté : Trojan-Spy.Win32.Perfloger.ab ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP334\A0603120.exe Infecté : Trojan-Dropper.Win32.VB.mz ignoré
Analyse interrompue par l'utilisateur !
Thursday, December 28, 2006 8:52:58 PM
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.83.0
Dernière mise à jour de la base antivirus Kaspersky : 28/12/2006
Enregistrements dans la base antivirus Kaspersky : 240474
Paramètres d'analyse
Analyser avec la base antivirus suivante standard
Analyser les archives vrai
Analyser les bases de messagerie vrai
Cible de l'analyse Poste de travail
A:\
C:\
D:\
Statistiques de l'analyse
Total d'objets analysés 164257
Nombre de virus trouvés 17
Nombre d'objets infectés 29 / 0
Nombre d'objets suspects 0
Durée de l'analyse 02:21:13
Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\PCML_1.dpm L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\PCML_1.ldb L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/BlackBox.class Infecté : Exploit.Java.ByteVerify ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/VerifierBug.class Infecté : Exploit.Java.ByteVerify ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/Beyond.class Infecté : Trojan-Downloader.Java.OpenConnection.aa ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip ZIP: infecté - 3 ignoré
C:\Documents and Settings\Bruno\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\ApplicationHistory\cli.exe.c88dbd71.ini.inuse L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Historique\History.IE5\MSHist012006122820061229\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\JET83D1.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_1f0.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_af8.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_e74.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF6B5D.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\++++ relc te souhaite la bienvenue 43.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\relc te souhaite la bienvenue 27.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\[[ relc te souhaite la bienvenue 26.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\LocalService\Cookies\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Photo Sophie\0000000000000000000000000000000000000000000000 Infecté : Trojan-Downloader.Win32.VB.afv ignoré
C:\Program Files\Bethesda Softworks\Morrowind\CSUninstall\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\Bethesda Softworks\Morrowind\MWUninstall\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\Common Files\misc001\Mendoza.exe/data0006 Infecté : Trojan-Dropper.Win32.VB.mz ignoré
C:\Program Files\Common Files\misc001\Mendoza.exe NSIS: infecté - 1 ignoré
C:\Program Files\Common Files\simtest\sysstall.exe Infecté : Trojan.Win32.Zapchast.bl ignoré
C:\Program Files\Common Files\svchostsys\svchostupdate.exe Infecté : Trojan-Downloader.MSIL.Agent.a ignoré
C:\Program Files\Fichiers communs\ifqq\ifqqa.exe Infecté : Trojan-Downloader.Win32.TSUpdate.l ignoré
C:\Program Files\Fichiers communs\ifqq\ifqql.exe Infecté : Trojan-Downloader.Win32.TSUpdate.r ignoré
C:\Program Files\Fichiers communs\ifqq\ifqqp.exe Infecté : Trojan-Downloader.Win32.TSUpdate.f ignoré
C:\Program Files\InstallShield Installation Information\{026FE81A-DF00-40B0-B325-7F9C6921ED02}\Setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{2727FBEF-3155-11D4-8F73-0050DA0F6297}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{588C135F-0B15-4A02-8F2D-04697BE2904E}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{7595CCFC-953D-4EF3-896F-6993A4013C60}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{7D268154-7A31-40F2-9779-7A250914BB39}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{A4832C98-ADB6-11D4-8DEA-00105AF17047}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{A8808DE0-7441-4873-8711-A7E65DBD693C}\Setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{AAC8AF92-DAEC-45D2-B77D-36699E3751A9}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{DF3E37E0-06D5-4A1B-A264-BD2B7E30B458}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{EBC0E8C0-63AC-11D4-BEF2-00A0C9E0B324}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{EFCE5837-FC21-11D6-9D24-00010240CE95}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\Instant Messenger Names\1.exe Infecté : Trojan.Win32.KillFW.a ignoré
C:\Program Files\pspvideo9\settings.xml L'objet est verrouillé ignoré
C:\QooBox\Purity\WINDOWS\SYSTEM32\ECURIT~1\services.exe Infecté : Trojan-Downloader.Win32.PurityScan.dr ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553367.exe Infecté : Trojan-Downloader.Win32.TSUpdate.n ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553368.exe Infecté : Trojan-Downloader.Win32.TSUpdate.p ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553369.exe Infecté : Trojan-Downloader.Win32.TSUpdate.l ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP282\A0553370.exe Infecté : Trojan-Downloader.Win32.TSUpdate.f ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP285\A0558775.exe Infecté : Trojan-Downloader.Win32.TSUpdate.o ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP316\A0578713.exe Infecté : Trojan-Downloader.Win32.VB.afv ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP317\A0579929.exe Infecté : Trojan-Downloader.MSIL.Agent.a ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP317\A0579930.exe Infecté : Trojan-Downloader.Win32.TSUpdate.n ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP334\A0591853.exe Infecté : Trojan-Downloader.Win32.Small.buy ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP334\A0591864.exe Infecté : Trojan-Spy.Win32.Perfloger.ab ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP334\A0591894.exe Infecté : Trojan-Spy.Win32.Perfloger.ab ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP334\A0603120.exe Infecté : Trojan-Dropper.Win32.VB.mz ignoré
Analyse interrompue par l'utilisateur !
Re,
Connais-tu Instant Messenger Names ?
Supprime ces dossiers :
C:\Program Files\Common Files\misc001\
C:\Program Files\Common Files\simtest\
C:\Program Files\Common Files\svchostsys\
Supprime ce fichier :
C:\Program Files\Instant Messenger Names\1.exe
Désactive puis réactive la restuartion du système.
Connais-tu Instant Messenger Names ?
Supprime ces dossiers :
C:\Program Files\Common Files\misc001\
C:\Program Files\Common Files\simtest\
C:\Program Files\Common Files\svchostsys\
Supprime ce fichier :
C:\Program Files\Instant Messenger Names\1.exe
Désactive puis réactive la restuartion du système.
Bonjour Angeldark je te remercie de tout ce que tu as fait pour essayer de m'aider mais mon pere qui est programmeur en recherche m'a dit de tout formater donc je vais repartir de 0 En tout cas je remerci beaucoup et adore ce que tu fais pour les gens qui ont des virus mais moi je pense que j'en ai beaucoup trop et mon pere veut que je supprime tout alors ...
Bon j'ai plus beaucoup de temps car je pars a venise alors voila le rapport
KASPERSKY ON-LINE SCANNER REPORT
Saturday, December 30, 2006 6:48:59 PM
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.83.0
Dernière mise à jour de la base antivirus Kaspersky : 30/12/2006
Enregistrements dans la base antivirus Kaspersky : 240826
Paramètres d'analyse
Analyser avec la base antivirus suivante standard
Analyser les archives vrai
Analyser les bases de messagerie vrai
Cible de l'analyse Poste de travail
A:\
C:\
D:\
Statistiques de l'analyse
Total d'objets analysés 110987
Nombre de virus trouvés 12
Nombre d'objets infectés 17 / 0
Nombre d'objets suspects 0
Durée de l'analyse 02:53:07
Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\C L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\C.ldb L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\PCML_1.dpm L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\PCML_1.ldb L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Microsoft\Internet Explorer\UserData\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/BlackBox.class Infecté : Exploit.Java.ByteVerify ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/VerifierBug.class Infecté : Exploit.Java.ByteVerify ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/Beyond.class Infecté : Trojan-Downloader.Java.OpenConnection.aa ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip ZIP: infecté - 3 ignoré
C:\Documents and Settings\Bruno\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\ApplicationHistory\cli.exe.c88dbd71.ini.inuse L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\Logs\Dfsr.log L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\pending.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\Working\database_4C54_B209_54B1_F634\dfsr.db L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\Working\database_4C54_B209_54B1_F634\fsr.log L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\Working\database_4C54_B209_54B1_F634\fsrtmp.log L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\Working\database_4C54_B209_54B1_F634\tmp.edb L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows Live Contacts\brun94120@hotmail.fr\real\members.stg L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows Live Contacts\brun94120@hotmail.fr\shadow\members.stg L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Historique\History.IE5\MSHist012006123020061231\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\iatmunin.sys L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\JET1BEA.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\JETAB6D.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_a48.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_c0c.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_ef4.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF873A.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF8756.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF8DB4.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF99D3.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF9A43.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temporary Internet Files\Content.IE5\YV1WKD32\728x90v2[7].swf L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\++++ relc te souhaite la bienvenue 43.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\relc te souhaite la bienvenue 27.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\[[ relc te souhaite la bienvenue 26.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\LocalService\Cookies\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Photo Sophie\0000000000000000000000000000000000000000000000 Infecté : Trojan-Downloader.Win32.VB.afv ignoré
C:\Program Files\Bethesda Softworks\Morrowind\CSUninstall\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\Fichiers communs\ifqq\ifqqa.exe Infecté : Trojan-Downloader.Win32.TSUpdate.l ignoré
C:\Program Files\Fichiers communs\ifqq\ifqql.exe Infecté : Trojan-Downloader.Win32.TSUpdate.r ignoré
C:\Program Files\Fichiers communs\ifqq\ifqqp.exe Infecté : Trojan-Downloader.Win32.TSUpdate.f ignoré
C:\Program Files\InstallShield Installation Information\{026FE81A-DF00-40B0-B325-7F9C6921ED02}\Setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{2727FBEF-3155-11D4-8F73-0050DA0F6297}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{588C135F-0B15-4A02-8F2D-04697BE2904E}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{7595CCFC-953D-4EF3-896F-6993A4013C60}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{7D268154-7A31-40F2-9779-7A250914BB39}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{A4832C98-ADB6-11D4-8DEA-00105AF17047}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{A8808DE0-7441-4873-8711-A7E65DBD693C}\Setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{AAC8AF92-DAEC-45D2-B77D-36699E3751A9}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{EBC0E8C0-63AC-11D4-BEF2-00A0C9E0B324}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{EFCE5837-FC21-11D6-9D24-00010240CE95}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\McAfee.com\Personal Firewall\data\log.edb L'objet est verrouillé ignoré
C:\Program Files\pspvideo9\settings.xml L'objet est verrouillé ignoré
C:\QooBox\Purity\WINDOWS\SYSTEM32\ECURIT~1\services.exe Infecté : Trojan-Downloader.Win32.PurityScan.dr ignoré
C:\RECYCLER\S-1-5-21-395835069-2718657812-3650650536-1009\Dc67\Mendoza.exe/data0006 Infecté : Trojan-Dropper.Win32.VB.mz ignoré
C:\RECYCLER\S-1-5-21-395835069-2718657812-3650650536-1009\Dc67\Mendoza.exe NSIS: infecté - 1 ignoré
C:\RECYCLER\S-1-5-21-395835069-2718657812-3650650536-1009\Dc68\sysstall.exe Infecté : Trojan.Win32.Zapchast.bl ignoré
C:\RECYCLER\S-1-5-21-395835069-2718657812-3650650536-1009\Dc69\svchostupdate.exe Infecté : Trojan-Downloader.MSIL.Agent.a ignoré
C:\RECYCLER\S-1-5-21-395835069-2718657812-3650650536-1009\Dc70.exe Infecté : Trojan.Win32.KillFW.a ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP384\change.log L'objet est verrouillé ignoré
C:\Valve\Steam\Steam.log L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\condition zero models.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\counter-strike.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\half-life engine.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\half-life.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\mololo\counter-strike\cstrike\demoheader.dmf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\platform.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\sourceinit.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\winui.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamLogs\SteamStats.log L'objet est verrouillé ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
Analyse interrompue par l'utilisateur !
j'ai du arreter a 95 pourcents
KASPERSKY ON-LINE SCANNER REPORT
Saturday, December 30, 2006 6:48:59 PM
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.83.0
Dernière mise à jour de la base antivirus Kaspersky : 30/12/2006
Enregistrements dans la base antivirus Kaspersky : 240826
Paramètres d'analyse
Analyser avec la base antivirus suivante standard
Analyser les archives vrai
Analyser les bases de messagerie vrai
Cible de l'analyse Poste de travail
A:\
C:\
D:\
Statistiques de l'analyse
Total d'objets analysés 110987
Nombre de virus trouvés 12
Nombre d'objets infectés 17 / 0
Nombre d'objets suspects 0
Durée de l'analyse 02:53:07
Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\C L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\C.ldb L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\PCML_1.dpm L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Creative\Media Database\PCML_1.ldb L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Microsoft\Internet Explorer\UserData\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/BlackBox.class Infecté : Exploit.Java.ByteVerify ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/VerifierBug.class Infecté : Exploit.Java.ByteVerify ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip/Beyond.class Infecté : Trojan-Downloader.Java.OpenConnection.aa ignoré
C:\Documents and Settings\Bruno\Application Data\Sun\Java\Deployment\cache\javapi\v1.0\jar\count.jar-31948ced-484b5310.zip ZIP: infecté - 3 ignoré
C:\Documents and Settings\Bruno\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\ApplicationHistory\cli.exe.c88dbd71.ini.inuse L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\Logs\Dfsr.log L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\pending.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\Working\database_4C54_B209_54B1_F634\dfsr.db L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\Working\database_4C54_B209_54B1_F634\fsr.log L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\Working\database_4C54_B209_54B1_F634\fsrtmp.log L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Messenger\brun94120@hotmail.fr\SharingMetadata\Working\database_4C54_B209_54B1_F634\tmp.edb L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows Live Contacts\brun94120@hotmail.fr\real\members.stg L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Application Data\Microsoft\Windows Live Contacts\brun94120@hotmail.fr\shadow\members.stg L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Historique\History.IE5\MSHist012006123020061231\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\iatmunin.sys L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\JET1BEA.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\JETAB6D.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_a48.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_c0c.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\Perflib_Perfdata_ef4.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF873A.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF8756.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF8DB4.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF99D3.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temp\~DF9A43.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\Local Settings\Temporary Internet Files\Content.IE5\YV1WKD32\728x90v2[7].swf L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\Bruno\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\++++ relc te souhaite la bienvenue 43.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\relc te souhaite la bienvenue 27.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\En cas de bug\Bureau\Bruno\Mes documents\GTA San Andreas User Files\User Tracks\[[ relc te souhaite la bienvenue 26.wma Infecté : Trojan-Downloader.WMA.Wimad.d ignoré
C:\Documents and Settings\LocalService\Cookies\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\INDEX.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Photo Sophie\0000000000000000000000000000000000000000000000 Infecté : Trojan-Downloader.Win32.VB.afv ignoré
C:\Program Files\Bethesda Softworks\Morrowind\CSUninstall\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\Fichiers communs\ifqq\ifqqa.exe Infecté : Trojan-Downloader.Win32.TSUpdate.l ignoré
C:\Program Files\Fichiers communs\ifqq\ifqql.exe Infecté : Trojan-Downloader.Win32.TSUpdate.r ignoré
C:\Program Files\Fichiers communs\ifqq\ifqqp.exe Infecté : Trojan-Downloader.Win32.TSUpdate.f ignoré
C:\Program Files\InstallShield Installation Information\{026FE81A-DF00-40B0-B325-7F9C6921ED02}\Setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{2727FBEF-3155-11D4-8F73-0050DA0F6297}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{588C135F-0B15-4A02-8F2D-04697BE2904E}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{7595CCFC-953D-4EF3-896F-6993A4013C60}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{7D268154-7A31-40F2-9779-7A250914BB39}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{A4832C98-ADB6-11D4-8DEA-00105AF17047}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{A8808DE0-7441-4873-8711-A7E65DBD693C}\Setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{AAC8AF92-DAEC-45D2-B77D-36699E3751A9}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{EBC0E8C0-63AC-11D4-BEF2-00A0C9E0B324}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\InstallShield Installation Information\{EFCE5837-FC21-11D6-9D24-00010240CE95}\setup.ilg L'objet est verrouillé ignoré
C:\Program Files\McAfee.com\Personal Firewall\data\log.edb L'objet est verrouillé ignoré
C:\Program Files\pspvideo9\settings.xml L'objet est verrouillé ignoré
C:\QooBox\Purity\WINDOWS\SYSTEM32\ECURIT~1\services.exe Infecté : Trojan-Downloader.Win32.PurityScan.dr ignoré
C:\RECYCLER\S-1-5-21-395835069-2718657812-3650650536-1009\Dc67\Mendoza.exe/data0006 Infecté : Trojan-Dropper.Win32.VB.mz ignoré
C:\RECYCLER\S-1-5-21-395835069-2718657812-3650650536-1009\Dc67\Mendoza.exe NSIS: infecté - 1 ignoré
C:\RECYCLER\S-1-5-21-395835069-2718657812-3650650536-1009\Dc68\sysstall.exe Infecté : Trojan.Win32.Zapchast.bl ignoré
C:\RECYCLER\S-1-5-21-395835069-2718657812-3650650536-1009\Dc69\svchostupdate.exe Infecté : Trojan-Downloader.MSIL.Agent.a ignoré
C:\RECYCLER\S-1-5-21-395835069-2718657812-3650650536-1009\Dc70.exe Infecté : Trojan.Win32.KillFW.a ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP384\change.log L'objet est verrouillé ignoré
C:\Valve\Steam\Steam.log L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\condition zero models.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\counter-strike.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\half-life engine.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\half-life.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\mololo\counter-strike\cstrike\demoheader.dmf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\platform.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\sourceinit.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamApps\winui.gcf L'objet est verrouillé ignoré
C:\Valve\Steam\SteamLogs\SteamStats.log L'objet est verrouillé ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
Analyse interrompue par l'utilisateur !
j'ai du arreter a 95 pourcents
Lassé par la pub ? Créez un compte
- Contenus similaires :
- ForumProbleme about blank et fenetres intempestive
- ForumFenetres intempestives pubs,fenetres blanches
- ForumFenetres intempestives spyware-secure
- ForumSpyware secure fenetres intempestives
- ForumFenetres intempestives
- ForumOuverture de fenetres intempestives
- ForumFenetres intempestives et drive cleaner.
- ForumFenetres intempestives internet
- ForumFenetres intempestives em-pc.on.internet
- ForumFenetres intempestives et pc lent
- Voir plus
