Sujet Précédent Sujet Suivant

[Spywares]pubs, pubs et encore des pubs

Fermé
Céline - 30 avril 2006 à 22:57
incognito02 Messages postés 3487 Date d'inscription vendredi 28 octobre 2005 Statut Contributeur Dernière intervention 17 août 2008 - 1 mai 2006 à 19:44
Bonjour,

mon pc est devenu très instable, dès que je vais sur Internet, j'ai plein de pop-up qui apparaissent, je pense etre infecté par plein de spyaware, d'ailleurs ad-aware et spybot en détectent plein, je les supprime mais ils reviennent toujours aussitôt.

De plus, j'ai des répertoires avec des noms bizarres qui se créent tous seuls et que je n'arrive pas à supprimer.


Voici mon rapport hijack this :


Logfile of HijackThis v1.99.1
Scan saved at 22:50:43, on 30/04/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {1D1085A7-207C-C833-06FB-1FFC4DC0A7A6} - jopplerg.dll (file missing)
F2 - REG:system.ini: UserInit=userinit.exe
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [porka_] avpmondll.exe
O4 - HKLM\..\Run: [ATLIEHELPER] install2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [10010] SpyElim.exe
O4 - HKCU\..\Run: [XTermInit] MsNetHelper.exe
O4 - HKCU\..\Run: [Trayz] uio.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/25f3dd158e13656aa721/netzip/RdxIE601_fr.cab
O16 - DPF: {5DDCC37F-7C6B-48B8-9664-97C537920CA0} (aecviz Class) - http://www.maisonfamiliale.com/AECVIZ/npaecviz.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://charon777.free.fr/plugins/hardwaredetection.cab
O16 - DPF: {FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0} - http://download.spyspotter.com/spyspotter/sp3.02r/spyspottercabinstall.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6150CC6C-2ACB-4F29-AF5C-ABFA0132D35D}: NameServer = 85.255.113.108,85.255.112.197
O17 - HKLM\System\CCS\Services\Tcpip\..\{8220F778-B6E4-4535-ACB9-158DF2104CE0}: NameServer = 212.27.54.252 212.27.53.252
O17 - HKLM\System\CCS\Services\Tcpip\..\{C47C166D-E06F-4793-9946-E321125D56AD}: NameServer = 85.255.113.108,85.255.112.197
O20 - Winlogon Notify: Shell Extensions - C:\WINDOWS\system32\dnru0199e.dll
O23 - Service: AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

9 réponses

Réponse 1 / 9
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
30 avril 2006 à 23:09
bonsoir Céline,

Télécharge Look2Me-Destroyer.exe sur ton Bureau.
http://www.atribune.org/ccount/click.php?id=7

* Ferme toutes les fenêtres actives avant de passer à l'étape suivante.
* Double-clique Look2Me-Destroyer.exe afin de lancer l'outil.
* Coche Run this program as a task
* Un message s'affichera, te disant ceci : "Look2Me-Destroyer will close and re-open in approximately 10 seconds". Clique OK
* Il se relancera après les 10 secondes, puis clique sur le bouton Scan for L2M; les icônes de ton Bureau vont disparaître : c'est normal.
* Lorsque le scan termine, clique sur le bouton Remove L2M
* Un message Done Scanning apparaîtra, clique OK.
* Un nouveau message s'affichera : Done removing infected files! Look2Me-Destroyer will now shutdown your computer; clique OK.
* Ton PC va maintenant s'éteindre.
* Démarre ton PC normalement.
* Colle le rapport généré, situé ici : C:\Look2Me-Destroyer.txt , ainsi qu'un nouveau rapport HijackThis! dans ta prochaine réponse.

#Si Look2Me-Destroyer ne se relance pas automatiquement après les 10 secondes, redémarre et essaie à nouveau.

##Si tu reçois un message de ton parefeu que l'outil tente d'accéder à l'internet : accepte.

###Si un message runtime error '339' s'affiche : télécharge MSWINSCK.OCX du lien ci-bas, et place-le dans le dossier C:\Windows\System32.
http://www.ascentive.com/support/new/images/lib/MSWINSCK.OCX

a+
0
Réponse 2 / 9
Céline
1 mai 2006 à 11:30
Bonjour did71,

j'ai exécuté looktome-destroyer, voici le log, et ensuite, le nouveau rapport hijackthis

Merci pour ton aide !




Look2Me-Destroyer V1.0.12

Scanning for infected files.....
Scan started at 01/05/2006 11:24:48

Infected! C:\WINDOWS\system32\irnql5551.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP28\A0005349.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP30\A0005401.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP31\A0005476.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP38\A0005643.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005649.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005650.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005654.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005659.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005663.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005701.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005707.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005711.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005713.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005719.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005725.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005729.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005753.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005761.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005762.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005767.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005771.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005773.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005781.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005782.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005787.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005791.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP42\A0006085.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP43\A0006291.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP43\A0006296.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP43\A0006307.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006312.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006313.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006319.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006320.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006397.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006401.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006405.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006413.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006419.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006423.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006428.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006432.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006438.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006443.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006463.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006470.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006492.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006496.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006506.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006510.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006553.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006565.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006569.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006573.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006577.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006581.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006586.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP49\A0006648.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP49\A0006652.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0006655.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0006659.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0007658.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0007664.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0007668.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007695.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007699.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007703.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007705.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007709.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007714.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007755.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007776.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007777.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007783.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007784.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007793.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007794.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007813.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007814.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007832.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007833.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0007841.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0007842.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0008841.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0008849.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0008853.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP56\A0008899.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP56\A0008903.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP57\A0008934.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP57\A0008938.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP58\A0008948.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP58\A0008954.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP59\A0008957.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP59\A0008961.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP60\A0008975.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP60\A0008995.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP60\A0008996.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP62\A0009031.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP62\A0009032.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009131.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009132.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009150.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009151.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009162.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009169.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009170.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP65\A0009255.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP65\A0009260.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP66\A0009278.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP66\A0009282.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP66\A0009286.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP67\A0009303.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP67\A0009307.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP68\A0009329.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP69\A0009366.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP69\A0009420.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP69\A0009424.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009438.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009442.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009462.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009466.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009469.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009507.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009513.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009514.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP72\A0009529.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP72\A0009530.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009542.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009548.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009558.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009565.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP74\A0009596.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP74\A0009600.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP74\A0009608.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010608.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010620.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010621.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010629.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010630.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP76\A0010650.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP77\A0010763.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP78\A0010809.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP78\A0010815.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010874.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010885.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010889.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010898.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010910.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010919.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011918.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011920.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011927.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011931.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011938.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011942.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011948.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011961.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011967.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0012012.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0012022.dll
Infected! C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0012047.dll
Infected! C:\WINDOWS\system32\awmeter.dll
Infected! C:\WINDOWS\system32\bKtmeter.dll
Infected! C:\WINDOWS\system32\cmclassfast.dll
Infected! C:\WINDOWS\system32\cnnsole.dll
Infected! C:\WINDOWS\system32\dnr4019qe.dll
Infected! C:\WINDOWS\system32\dsrgres.dll
Infected! C:\WINDOWS\system32\e8jm0i11e8.dll
Infected! C:\WINDOWS\system32\g0402ahmgd4a2.dll
Infected! C:\WINDOWS\system32\gpnol3531.dll
Infected! C:\WINDOWS\system32\h4j40e1qeh.dll
Infected! C:\WINDOWS\system32\h4j4le1q1h.dll
Infected! C:\WINDOWS\system32\hr2205foe.dll
Infected! C:\WINDOWS\system32\hr6605jse.dll
Infected! C:\WINDOWS\system32\i2060cdsef060.dll
Infected! C:\WINDOWS\system32\iixrip.dll
Infected! C:\WINDOWS\system32\immp.dll
Infected! C:\WINDOWS\system32\inakeng.dll
Infected! C:\WINDOWS\system32\irnql5551.dll
Infected! C:\WINDOWS\system32\j0l4la3q1d.dll
Infected! C:\WINDOWS\system32\k8pmli7118.dll
Infected! C:\WINDOWS\system32\l62s0gf7e62.dll
Infected! C:\WINDOWS\system32\mgdocs.dll
Infected! C:\WINDOWS\system32\mv24l9fq1.dll
Infected! C:\WINDOWS\system32\mxxdm.dll
Infected! C:\WINDOWS\system32\namccs.dll
Infected! C:\WINDOWS\system32\o0pq0a75ed.dll
Infected! C:\WINDOWS\system32\o4660ejseho60.dll
Infected! C:\WINDOWS\system32\rOsmxs.dll
Infected! C:\WINDOWS\system32\rtgsvc.dll
Infected! C:\WINDOWS\system32\xclehlp.dll
Infected! C:\WINDOWS\system32\zupfldr.dll
Infected! C:\WINDOWS\System32\guard.tmp

Attempting to delete infected files...

Attempting to delete: C:\WINDOWS\system32\irnql5551.dll
C:\WINDOWS\system32\irnql5551.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP28\A0005349.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP28\A0005349.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP30\A0005401.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP30\A0005401.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP31\A0005476.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP31\A0005476.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP38\A0005643.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP38\A0005643.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005649.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005649.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005650.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005650.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005654.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005654.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005659.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005659.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005663.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP39\A0005663.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005701.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005701.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005707.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005707.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005711.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005711.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005713.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005713.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005719.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005719.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005725.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005725.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005729.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005729.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005753.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005753.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005761.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005761.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005762.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP40\A0005762.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005767.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005767.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005771.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005771.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005773.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005773.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005781.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005781.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005782.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005782.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005787.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005787.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005791.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP41\A0005791.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP42\A0006085.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP42\A0006085.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP43\A0006291.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP43\A0006291.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP43\A0006296.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP43\A0006296.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP43\A0006307.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP43\A0006307.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006312.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006312.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006313.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006313.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006319.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006319.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006320.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006320.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006397.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006397.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006401.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP44\A0006401.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006405.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006405.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006413.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006413.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006419.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006419.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006423.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006423.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006428.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP45\A0006428.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006432.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006432.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006438.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006438.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006443.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006443.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006463.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006463.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006470.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP46\A0006470.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006492.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006492.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006496.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006496.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006506.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006506.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006510.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP47\A0006510.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006553.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006553.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006565.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006565.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006569.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006569.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006573.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006573.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006577.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006577.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006581.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006581.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006586.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP48\A0006586.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP49\A0006648.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP49\A0006648.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP49\A0006652.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP49\A0006652.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0006655.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0006655.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0006659.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0006659.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0007658.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0007658.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0007664.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0007664.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0007668.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP50\A0007668.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007695.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007695.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007699.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007699.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007703.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007703.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007705.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007705.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007709.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007709.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007714.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007714.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007755.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP53\A0007755.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007776.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007776.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007777.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007777.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007783.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007783.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007784.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007784.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007793.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007793.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007794.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007794.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007813.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007813.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007814.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007814.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007832.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007832.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007833.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP54\A0007833.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0007841.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0007841.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0007842.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0007842.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0008841.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0008841.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0008849.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0008849.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0008853.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP55\A0008853.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP56\A0008899.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP56\A0008899.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP56\A0008903.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP56\A0008903.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP57\A0008934.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP57\A0008934.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP57\A0008938.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP57\A0008938.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP58\A0008948.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP58\A0008948.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP58\A0008954.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP58\A0008954.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP59\A0008957.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP59\A0008957.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP59\A0008961.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP59\A0008961.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP60\A0008975.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP60\A0008975.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP60\A0008995.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP60\A0008995.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP60\A0008996.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP60\A0008996.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP62\A0009031.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP62\A0009031.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP62\A0009032.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP62\A0009032.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009131.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009131.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009132.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009132.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009150.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009150.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009151.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009151.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009162.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009162.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009169.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009169.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009170.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP64\A0009170.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP65\A0009255.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP65\A0009255.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP65\A0009260.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP65\A0009260.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP66\A0009278.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP66\A0009278.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP66\A0009282.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP66\A0009282.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP66\A0009286.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP66\A0009286.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP67\A0009303.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP67\A0009303.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP67\A0009307.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP67\A0009307.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP68\A0009329.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP68\A0009329.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP69\A0009366.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP69\A0009366.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP69\A0009420.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP69\A0009420.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP69\A0009424.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP69\A0009424.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009438.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009438.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009442.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009442.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009462.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009462.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009466.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP70\A0009466.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009469.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009469.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009507.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009507.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009513.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009513.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009514.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP71\A0009514.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP72\A0009529.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP72\A0009529.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP72\A0009530.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP72\A0009530.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009542.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009542.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009548.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009548.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009558.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009558.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009565.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP73\A0009565.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP74\A0009596.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP74\A0009596.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP74\A0009600.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP74\A0009600.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP74\A0009608.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP74\A0009608.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010608.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010608.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010620.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010620.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010621.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010621.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010629.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010629.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010630.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP75\A0010630.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP76\A0010650.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP76\A0010650.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP77\A0010763.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP77\A0010763.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP78\A0010809.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP78\A0010809.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP78\A0010815.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP78\A0010815.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010874.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010874.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010885.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010885.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010889.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010889.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010898.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010898.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010910.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010910.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010919.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP79\A0010919.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011918.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011918.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011920.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011920.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011927.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011927.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011931.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011931.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011938.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011938.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011942.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011942.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011948.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011948.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011961.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011961.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011967.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0011967.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0012012.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0012012.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0012022.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0012022.dll Deleted successfully!

Attempting to delete: C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0012047.dll
C:\System Volume Information\_restore{0C660EEA-1423-4ECA-AECA-9A866174946F}\RP80\A0012047.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\awmeter.dll
C:\WINDOWS\system32\awmeter.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\bKtmeter.dll
C:\WINDOWS\system32\bKtmeter.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\cmclassfast.dll
C:\WINDOWS\system32\cmclassfast.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\cnnsole.dll
C:\WINDOWS\system32\cnnsole.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\dnr4019qe.dll
C:\WINDOWS\system32\dnr4019qe.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\dsrgres.dll
C:\WINDOWS\system32\dsrgres.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\e8jm0i11e8.dll
C:\WINDOWS\system32\e8jm0i11e8.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\g0402ahmgd4a2.dll
C:\WINDOWS\system32\g0402ahmgd4a2.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\gpnol3531.dll
C:\WINDOWS\system32\gpnol3531.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\h4j40e1qeh.dll
C:\WINDOWS\system32\h4j40e1qeh.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\h4j4le1q1h.dll
C:\WINDOWS\system32\h4j4le1q1h.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\hr2205foe.dll
C:\WINDOWS\system32\hr2205foe.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\hr6605jse.dll
C:\WINDOWS\system32\hr6605jse.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\i2060cdsef060.dll
C:\WINDOWS\system32\i2060cdsef060.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\iixrip.dll
C:\WINDOWS\system32\iixrip.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\immp.dll
C:\WINDOWS\system32\immp.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\inakeng.dll
C:\WINDOWS\system32\inakeng.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\irnql5551.dll
C:\WINDOWS\system32\irnql5551.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\j0l4la3q1d.dll
C:\WINDOWS\system32\j0l4la3q1d.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\k8pmli7118.dll
C:\WINDOWS\system32\k8pmli7118.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\l62s0gf7e62.dll
C:\WINDOWS\system32\l62s0gf7e62.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mgdocs.dll
C:\WINDOWS\system32\mgdocs.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mv24l9fq1.dll
C:\WINDOWS\system32\mv24l9fq1.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\mxxdm.dll
C:\WINDOWS\system32\mxxdm.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\namccs.dll
C:\WINDOWS\system32\namccs.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\o0pq0a75ed.dll
C:\WINDOWS\system32\o0pq0a75ed.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\o4660ejseho60.dll
C:\WINDOWS\system32\o4660ejseho60.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\rOsmxs.dll
C:\WINDOWS\system32\rOsmxs.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\rtgsvc.dll
C:\WINDOWS\system32\rtgsvc.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\xclehlp.dll
C:\WINDOWS\system32\xclehlp.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\system32\zupfldr.dll
C:\WINDOWS\system32\zupfldr.dll Deleted successfully!

Attempting to delete: C:\WINDOWS\System32\guard.tmp
C:\WINDOWS\System32\guard.tmp Deleted successfully!

Making registry repairs.

Removing: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Dynamic Directory

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{B097F448-B970-4DDC-9E23-91A5815A519A}"
HKCR\Clsid\{B097F448-B970-4DDC-9E23-91A5815A519A}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{73E52861-F9BB-4DDF-8B68-9E0CEDD04A69}"
HKCR\Clsid\{73E52861-F9BB-4DDF-8B68-9E0CEDD04A69}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{883E75F7-5B27-48E6-902E-899634738FC2}"
HKCR\Clsid\{883E75F7-5B27-48E6-902E-899634738FC2}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{5CBB46BE-E175-4FCC-BE2D-A2AACEDF490F}"
HKCR\Clsid\{5CBB46BE-E175-4FCC-BE2D-A2AACEDF490F}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{4F9A3CC8-0259-4A0C-B6BB-FF284E5475E9}"
HKCR\Clsid\{4F9A3CC8-0259-4A0C-B6BB-FF284E5475E9}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{8BC6F184-2305-4160-A49C-08A73CB93EE3}"
HKCR\Clsid\{8BC6F184-2305-4160-A49C-08A73CB93EE3}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{D5FBE156-3544-4746-8B13-01D4DC511941}"
HKCR\Clsid\{D5FBE156-3544-4746-8B13-01D4DC511941}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{DF02D50E-C668-4C86-8646-AD5B126DC243}"
HKCR\Clsid\{DF02D50E-C668-4C86-8646-AD5B126DC243}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{2D08DD9E-322B-48C2-BE8D-F4F364D706B5}"
HKCR\Clsid\{2D08DD9E-322B-48C2-BE8D-F4F364D706B5}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{9AB6095F-3CD9-426F-BE82-94E6EE0BC3D4}"
HKCR\Clsid\{9AB6095F-3CD9-426F-BE82-94E6EE0BC3D4}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{92838672-7A3B-45B5-80CE-645131B3CFA1}"
HKCR\Clsid\{92838672-7A3B-45B5-80CE-645131B3CFA1}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{6292524B-DEB1-4B80-BC6D-CA488B678E5D}"
HKCR\Clsid\{6292524B-DEB1-4B80-BC6D-CA488B678E5D}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{643ADDE2-FD0B-404D-9E41-94A7293C6534}"
HKCR\Clsid\{643ADDE2-FD0B-404D-9E41-94A7293C6534}

Removing: HKLM
0
Réponse 3 / 9
Céline
1 mai 2006 à 11:34
Voici la fin du log looktome-destroyer, puis le nouveau rapport hijack this :

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{A45DDA6F-1907-4E9C-8162-694CCEDFF9C5}"
HKCR\Clsid\{A45DDA6F-1907-4E9C-8162-694CCEDFF9C5}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{8B16EFA8-2D7A-4B14-B816-B1F0D064CAF0}"
HKCR\Clsid\{8B16EFA8-2D7A-4B14-B816-B1F0D064CAF0}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{68C6B00E-A6E9-4BA7-B231-986A4B8E7718}"
HKCR\Clsid\{68C6B00E-A6E9-4BA7-B231-986A4B8E7718}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{4AB237B4-29E3-4AA3-AA83-06EA7E93B76D}"
HKCR\Clsid\{4AB237B4-29E3-4AA3-AA83-06EA7E93B76D}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{EE3C764D-36FF-4F3E-A6E2-01DFD796C1AC}"
HKCR\Clsid\{EE3C764D-36FF-4F3E-A6E2-01DFD796C1AC}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{3C886E2F-9AD3-4C9B-811E-440195AFCCB0}"
HKCR\Clsid\{3C886E2F-9AD3-4C9B-811E-440195AFCCB0}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{ABBCBD41-AD19-4316-BAE9-E59976D9565E}"
HKCR\Clsid\{ABBCBD41-AD19-4316-BAE9-E59976D9565E}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{E185BF0E-C721-4F3B-BCDE-8ACC7711092C}"
HKCR\Clsid\{E185BF0E-C721-4F3B-BCDE-8ACC7711092C}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{2BA6C25F-56E3-43A5-B43C-AC3420F6DEF7}"
HKCR\Clsid\{2BA6C25F-56E3-43A5-B43C-AC3420F6DEF7}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{D31EA657-312C-4176-BDD0-D4FE0410F6D3}"
HKCR\Clsid\{D31EA657-312C-4176-BDD0-D4FE0410F6D3}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{55D22FE8-3C43-4D00-977D-7BE550C54201}"
HKCR\Clsid\{55D22FE8-3C43-4D00-977D-7BE550C54201}

Removing: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved "{BD32570B-C09E-4914-9F52-52EF76611B0B}"
HKCR\Clsid\{BD32570B-C09E-4914-9F52-52EF76611B0B}

Restoring Windows certificates.

Replaced hosts file with default windows hosts file


Restoring SeDebugPrivilege for Administrateurs - Succeeded



-------------------------------------------

rapport hijack this :

Logfile of HijackThis v1.99.1
Scan saved at 11:29:53, on 01/05/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Internet Explorer\iexplore.exe
D:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {1D1085A7-207C-C833-06FB-1FFC4DC0A7A6} - jopplerg.dll (file missing)
F2 - REG:system.ini: UserInit=userinit.exe
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [porka_] avpmondll.exe
O4 - HKLM\..\Run: [ATLIEHELPER] install2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [10010] SpyElim.exe
O4 - HKCU\..\Run: [XTermInit] MsNetHelper.exe
O4 - HKCU\..\Run: [Trayz] uio.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/25f3dd158e13656aa721/netzip/RdxIE601_fr.cab
O16 - DPF: {5DDCC37F-7C6B-48B8-9664-97C537920CA0} (aecviz Class) - http://www.maisonfamiliale.com/AECVIZ/npaecviz.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://charon777.free.fr/plugins/hardwaredetection.cab
O16 - DPF: {FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0} - http://download.spyspotter.com/spyspotter/sp3.02r/spyspottercabinstall.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6150CC6C-2ACB-4F29-AF5C-ABFA0132D35D}: NameServer = 85.255.113.108,85.255.112.197
O17 - HKLM\System\CCS\Services\Tcpip\..\{8220F778-B6E4-4535-ACB9-158DF2104CE0}: NameServer = 212.27.53.252 212.27.54.252
O17 - HKLM\System\CCS\Services\Tcpip\..\{C47C166D-E06F-4793-9946-E321125D56AD}: NameServer = 85.255.113.108,85.255.112.197
O23 - Service: AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
0
Réponse 4 / 9
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
1 mai 2006 à 14:16
bonjour,

look2me destroyer a bien bossé mais c'est pas fini!

Imprime ces instructions car il va y avoir un redémarrage de l'ordinateur.

* Télécharge FixWareout d'un de ces deux sites sur le bureau:

http://downloads.subratam.org/Fixwareout.exe

http://swandog46.geekstogo.com/Fixwareout.exe

* Lance le fix: clique sur Next, puis Install, puis assure toi que "Run fixit" est activé puis clique sur Finish.
Le fix va commencer, suis les messages à l'écran. Il te sera demandé de redémarrer ton ordinateur, fais le. Ton système mettra un peu plus de temps au démarrage, c'est normal.

*Poste (Copie/colle) le contenu du rapport qui va s'afficher à l'écran (report.txt) avec un nouveau rapport HijackThis! dans ta prochaine réponse.

a+
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 9
Céline
1 mai 2006 à 14:39
Merci pour ton aide !

J'ai fait ce que tu m'as dit, voici le rapport fixwareout, puis le nouveau rapport hijack this :


Fixwareout ver 1.003
Last edited 04/26/2006
Post this report in the forums please

Reg Entries that were deleted
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ruins\ufhmd
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Urls\xedocne
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Urls\gib_ogol
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Urls\repiwoh
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Urls\llun
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Urls\23plhps
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Urls\mgcppp
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Urls\tesvaf
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Urls\32refaselif
...

Microsoft (R) Windows Script Host Version 5.6
Random Runs removed from HKLM
"dmhfu.exe"=-
...

PLEASE NOTE, There WILL be LEGIT FILES LISTED. IF YOU ARE UNSURE OF WHAT IT IS LEAVE THEM ALONE.
Example ipsec6.exe is lagitamate

»»»»» Search by size and names...
* csr.exe C:\WINDOWS\System32\CSGGN.EXE

»»»»» Misc files
* thequicklink C:\WINDOWS\System32\XHIFM.DLL

»»»»» Checking for older varients covered by the Rem3 tool

»»»»»
Search five digit cs, dm and jb files
This WILL/CAN also list Legit Files, Submit them at Virustotal
C:\WINDOWS\SYSTEM32\CSGGN.EXE 51 297 2006-04-18
C:\WINDOWS\SYSTEM32\DMHFU.EXE 44 047 2002-08-30



-----------------------------------------------------------------------------

rapport hijack this :

Logfile of HijackThis v1.99.1
Scan saved at 11:46:30, on 01/05/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\System32\RUNDLL32.EXE
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
D:\Program Files\Hijackthis Version Française\VERSION TRADUITE ORIGINALE.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: (no name) - {1D1085A7-207C-C833-06FB-1FFC4DC0A7A6} - jopplerg.dll (file missing)
F2 - REG:system.ini: UserInit=userinit.exe
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\System32\\NeroCheck.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [porka_] avpmondll.exe
O4 - HKLM\..\Run: [ATLIEHELPER] install2.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [10010] SpyElim.exe
O4 - HKCU\..\Run: [XTermInit] MsNetHelper.exe
O4 - HKCU\..\Run: [Trayz] uio.exe
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://software-dl.real.com/25f3dd [...] 601_fr.cab
O16 - DPF: {5DDCC37F-7C6B-48B8-9664-97C537920CA0} (aecviz Class) - http://www.maisonfamiliale.com/AECVIZ/npaecviz.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537 [...] scan53.cab
O16 - DPF: {867E13F2-7F31-44FB-AC97-CD38E0DC46EF} (HardwareDetection Control) - http://charon777.free.fr/plugins/hardwaredetection.cab
O16 - DPF: {FC67BB52-AAB6-4282-9D51-2DAFFE73AFD0} - http://download.spyspotter.com/spy [...] nstall.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6150CC6C-2ACB-4F29-AF5C-ABFA0132D35D}: NameServer = 85.255.113.108,85.255.112.197
O17 - HKLM\System\CCS\Services\Tcpip\..\{C47C166D-E06F-4793-9946-E321125D56AD}: NameServer = 85.255.113.108,85.255.112.197
O23 - Service: AntiVir Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Service (AntiVirService) - AVIRA GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
0
Réponse 6 / 9
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
1 mai 2006 à 17:37
re,

rends toi ici:

http://www.virustotal.com/flash/index_en.html

et fais analyser ces 2 fichiers:

C:\WINDOWS\SYSTEM32\CSGGN.EXE
C:\WINDOWS\SYSTEM32\DMHFU.EXE

J'ai besoin de vérifier quelque chose,
Télécharge SmitfraudFix de S!Ri:

http://siri.urz.free.fr/Fix/SmitfraudFix.zip

Tu le dézippes sur le Bureau.

* Tu ouvres SmitfraudFix, tu double cliques sur SmitfraudFix.cmd et tu choisis l’option 1
Postes le rapport.

Ensuite, on attaque le rapport plus en détails!

a+
0
Réponse 7 / 9
incognito02 Messages postés 3487 Date d'inscription vendredi 28 octobre 2005 Statut Contributeur Dernière intervention 17 août 2008 138
1 mai 2006 à 17:41
Bonjour Did :)

Me permets tu d'utiliser ta procédure Fixwareout, elle est super bien faites ?

Bonne fin de journée.

A+
0
Réponse 8 / 9
did71 Messages postés 2187 Date d'inscription vendredi 24 mars 2006 Statut Contributeur sécurité Dernière intervention 30 janvier 2010 36
1 mai 2006 à 19:42
bonsoir incognito02,

oui, vas y sans problème!

Je le tiens de Qc001, tu peux l'utiliser

a+
0
Réponse 9 / 9
incognito02 Messages postés 3487 Date d'inscription vendredi 28 octobre 2005 Statut Contributeur Dernière intervention 17 août 2008 138
1 mai 2006 à 19:44
Bonsoir Did71,

Merci !

A+
0

Discussions similaires

apparation intempestives de pub type site de rencontre et photo dans le même ton
Crokino -
Crokino -

6 réponses
Candy crush
eric2850 -
MPMP10 -

6 réponses
Publicité s'ouvre toute seule ! ?
RRD91 -
crisgoss -

51 réponses
Pub intempestive sur smartphone Android.
Camitte -
Yoyo -

31 réponses
Pub incessantes sur mon téléphone
safiya.l -
Mia -

6 réponses