Encore un virus grr

Juste85 -
Utilisateur anonyme - 16 déc. 2008 à 05:07

Bonjour,

Voilà, j'ai besoin d'un peu d'aide svpp !!!
J'ai fais une analyse de l'ordi, et l'antivirus m'a detecté 2 virus !!! grrr
Bon l'un c'est supprimé sans problème, mais le deuxième, lui n'a pas réussi !

Alors si quelqu'un pouvait m'aider se serait très gentil !!!
Un grand MERCI d'avance !
A bientôt !

Ah et voici le rapport Hijackthis juste au cas ou il serait utile içi!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 00:27:49, on 27/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
c:\APPS\HIDSERVICE\HIDSERVICE.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\123 Free Solitaire\123FreeSolitaire.exe
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60327
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Hélène\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\jkeir.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\jkeir.dll
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MySqlInventime - Unknown owner - c:\mysql\bin\mysqld-max-nt.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

Afficher la suite

A voir également:

Encore un virus grr
Virus mcafee - Accueil - Piratage
Virus informatique - Guide
Virus facebook demande d'amis - Accueil - Facebook
Panda anti virus gratuit - Télécharger - Antivirus & Antimalwares
Undisclosed-recipients virus - Guide

6 réponses

Réponse 1 / 6

Utilisateur anonyme

salut......tu pourrais donner le nom de ton virus car la ca ne m aide pas......lol

Justedu85

Salut

Ah oui c'est vrai, désolé, j'avais completement oublié lol
donc l'analyse me dit que se serait :
- Trojan killAv lz
et
- Trojan downloader agent aar
Voilà et merci !

Réponse 2 / 6

Utilisateur anonyme

Télécharges MalwareByte's :
ici ftp://ftp.commentcamarche.com/download/mbam-setup.exe
ou ici : http://www.malwarebytes.org/mbam.php

* Installes le ( choisis bien "francais" ; ne modifies pas les paramètres d'installe ) et mets le à jour .

(NB : S'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharges le ici : https://www.malekal.com/tutorial-aboutbuster/ )

* Potasses le tuto pour te familiariser avec le prg :
https://forum.pcastuces.com/sujet.asp?f=31&s=3
( cela dis, il est très simple d'utilisation ).

! Déconnectes toi et fermes toutes applications en cours !

* Lances Malwarebyte's .

Fais un examen dit "complet" ( sélectionnes bien tous tes disks avant le scan ! ).

--> Laisses le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
--> à la fin tu cliques sur "résultat" .
--> Vérifies que tous les objets infectés soient validés, puis cliques sur " suppression " .Puis vides la quarantaine.....;

Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !

Postes le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)
accompagné d'un nouveau rapport hijackthis pour analyse ...

Justedu85

Coucou !!!

donc voici le rapport :

Malwarebytes' Anti-Malware 1.30
Version de la base de données: 1430
Windows 5.1.2600 Service Pack 3

28/11/2008 15:11:14
mbam-log-2008-11-28 (15-11-14).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 127731
Temps écoulé: 50 minute(s), 5 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 3
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 2

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage\c:/windows/downloaded program files/uninst.bat (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\asc3550p (Rootkit.Agent) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\Downloaded Program Files\uninst.bat (Trojan.Agent) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\Downloaded Program Files\uninst.bat (Trojan.Agent) -> Quarantined and deleted successfully.
C:\Program Files\EoRezo (Rogue.Eorezo) -> Delete on reboot.

Justedu85

et voici maintenant le rapport Hijackthis :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:22:58, on 28/11/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
c:\APPS\HIDSERVICE\HIDSERVICE.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\PROGRA~1\Wanadoo\WOOBrowser\WOOBrowser.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Hélène\Bureau\Virus\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60327
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Hélène\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\jkeir.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\jkeir.dll
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MySqlInventime - Unknown owner - c:\mysql\bin\mysqld-max-nt.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

justedu85

bonjour,

Oups, j'avais oublié de préciser que l'analyse de malwarebytes a été fait en 2 fois :
Je sais pas si il est aussi utile mais bon, je rajoute kan même le tout premier rapport effectué :

Malwarebytes' Anti-Malware 1.30
Version de la base de données: 1430
Windows 5.1.2600 Service Pack 3

28/11/2008 00:22:52
mbam-log-2008-11-28 (00-22-52).txt

Type de recherche: Examen complet (C:\|D:\|)
Eléments examinés: 85046
Temps écoulé: 49 minute(s), 5 second(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 11
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 1

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\pbfrv2.pbfrv2 (Adware.2020Search) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{38a7c9da-8db7-4d0f-a7b1-c4b1a305bddb} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{9afb8248-617f-460d-9366-d71cdeda3179} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{549b5ca7-4a86-11d7-a4df-000874180bb3} (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{25560540-9571-4d7b-9389-0f166788785a} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{2eff3cf7-99c1-4c29-bc2b-68e057e22340} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3dc201fb-e9c9-499c-a11f-23c360d7c3f8} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{63d0ed2c-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{98d9753d-d73b-42d5-8c85-4469cda897ab} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{9ff05104-b030-46fc-94b8-81276e4e27df} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{a6573479-9075-4a65-98a6-19fd29cf7374} (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
C:\WINDOWS\system32\config\48174160.Evt (Rootkit.Agent.H) -> Delete on reboot.

Merci pour l'aide !!!
a++

Réponse 3 / 6

Utilisateur anonyme

https://www.virustotal.com/gui/

rends toi ici et fais toi parcourir pour envoyer ce fichier :

c:\Windows\system32\jkeir.dll

justedu85

Bonsoir !

donc voici ce qu'il me dit après cette analyse :

Fichier jkeir.dll reçu le 2008.12.01 21:04:02 (CET)
Situation actuelle: terminé

Résultat: 0/37 (0.00%)

Réponse 4 / 6

Utilisateur anonyme

relances hijackthis pleaze

justedu85

daccord le voici :

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:49:05, on 01/12/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\FSGK32.EXE
C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
C:\WINDOWS\System32\FTRTSVC.exe
C:\Program Files\AntivirusFirewall\Common\FSMB32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fssm32.exe
c:\APPS\HIDSERVICE\HIDSERVICE.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\AntivirusFirewall\Common\FCH32.EXE
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\AntivirusFirewall\Common\FAMEH32.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsqh.exe
C:\Program Files\AntivirusFirewall\Anti-Virus\fsrw.exe
C:\WINDOWS\system32\svchost.exe
c:\APPS\Powercinema\Kernel\TV\CLSched.exe
C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AntivirusFirewall\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\AntivirusFirewall\Common\FSM32.EXE
C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\ANTIVI~1\ANTI-S~1\fsaw.exe
C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
C:\Program Files\AntivirusFirewall\FSGUI\fsguidll.exe
C:\Program Files\Wanadoo\GestionnaireInternet.exe
C:\Program Files\Wanadoo\ComComp.exe
C:\PROGRA~1\Wanadoo\Toaster.exe
C:\PROGRA~1\Wanadoo\Inactivity.exe
C:\PROGRA~1\Wanadoo\PollingModule.exe
C:\WINDOWS\System32\ALERTM~1\ALERTM~1.EXE
C:\Program Files\Wanadoo\Watch.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Documents and Settings\Hélène\Bureau\Virus\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60327
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.msn.com/fr-fr/?ocid=iehp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.01net.com/telecharger/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\Program Files\EoRezo\EoAdv\EoRezoBHO.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\AntivirusFirewall\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\AntivirusFirewall\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [F-Secure Startup Wizard] "C:\Program Files\AntivirusFirewall\FSGUI\FSSW.EXE" /reboot
O4 - HKLM\..\Run: [News Service] "C:\Program Files\AntivirusFirewall\FSGUI\ispnews.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Antivirus Firewall.lnk = C:\Program Files\AntivirusFirewall\backweb\6588780\Program\fspex.exe
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Bloquer cette fenêtre publicitaire - C:\Program Files\AntivirusFirewall\Anti-Spyware\blockpopups.htm
O9 - Extra button: Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - -{FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Protection Internet Explorer - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: Protection Internet Explorer... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\AntivirusFirewall\Anti-Spyware\ieshield.dll
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe (file missing)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Hélène\Menu Démarrer\Programmes\IMVU\Run IMVU.lnk (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\jkeir.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\jkeir.dll
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://www.pandasecurity.com/activescan/cabs/as2stubie.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx2.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - https://www.trendmicro.com/en_us/forHome/products/housecall.html
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} (AvxScanOnline Control) - http://www.inoculer.com/antivirus/Msie/bitdefender.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://wwwimages.adobe.com/www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online, Inc. - C:\PROGRA~1\FICHIE~1\AOL\ACS\AOLacsd.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Antivirus Firewall (BackWeb Plug-in - 6588780) - Securitoo Portal - C:\PROGRA~1\ANTIVI~1\backweb\6588780\Program\SERVIC~1.EXE
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Anti-Virus\fsgk32st.exe
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\AntivirusFirewall\backweb\6588780\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\AntivirusFirewall\FWES\Program\fsdfwd.exe
O23 - Service: FSMA - F-Secure Corporation - C:\Program Files\AntivirusFirewall\Common\FSMA32.EXE
O23 - Service: France Telecom Routing Table Service (FTRTSVC) - France Telecom - C:\WINDOWS\System32\FTRTSVC.exe
O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - c:\APPS\HIDSERVICE\HIDSERVICE.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MySqlInventime - Unknown owner - c:\mysql\bin\mysqld-max-nt.exe
O23 - Service: Planificateur LiveUpdate automatique - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing)
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question

Réponse 5 / 6

Utilisateur anonyme

Je pense que ceci est regle :

Voilà, j'ai besoin d'un peu d'aide svpp !!!
J'ai fais une analyse de l'ordi, et l'antivirus m'a detecté 2 virus !!! grrr
Bon l'un c'est supprimé sans problème, mais le deuxième, lui n'a pas réussi !

donc :

C'est peut etre un peu long mais ......ton pc.......ira 100 fois mieux(version marseillaise) :

1)Telecharge :
-------------

https://www.clubic.com/telecharger-fiche262022-purera.html

coche tout a droite , et "clean"

ensuite :
-----------

http://www.commentcamarche.net/telecharger/cleanafterme 34056612 avis opinions.php3

meme chose tu coches tout et "clean selected items"

source = Gen-Hackman..........et puis a faire aussi :

2)

---> Télécharge ToolsCleaner2 sur ton Bureau.
* Double-clique sur ToolsCleaner2.exe pour le lancer.
* Clique sur Recherche et laisse le scan agir.
* Clique sur Suppression pour finaliser.
* Tu peux, si tu le souhaites, te servir des Options Facultatives.
* Clique sur Quitter pour obtenir le rapport.
* Poste le rapport (TCleaner.txt) qui se trouve à la racine de ton disque dur (C:\).

3/

---> Télécharge et installe CCleaner (N'installe pas la Yahoo Toolbar) :

http://www.commentcamarche.net/telecharger/telecharger 168 ccleaner

* Lance-le. Va dans Options puis Avancé et décoche la case Effacer uniquement les fichiers etc....
* Va dans Nettoyeur, choisis Analyse. Une fois terminé, lance le nettoyage.
* Ensuite, choisis Registre, puis Chercher des erreurs. Une fois terminé, répare toutes les erreurs tant de fois qu il en trouve a l analyse(Sauvegarde la base de registre).
* Veille a ce que dans les options le reglage soit au demarrage de windows et réglé sur "effacement securisé" 35 passes (guttman)
* Décoche la case plus vieux que 48 h

4/

---> Il est nécessaire de désactiver puis réactiver la restauration système pour la purger :
http://www.infos-du-net.com/forum/272480-11-desactiver-activer-restauration-systeme

---> Je te conseille de créer un point de restauration que tu pourras utiliser plus tard si tu as un problème :
https://www.vulgarisation-informatique.com/creer-point-restauration.php

stp poste tous les rapports delivrés....merci.....

si tu as deja Ccleaner ne tiens pas compte du N°3.....mais fais ce qu il est demande avec
(desole le canned est pour tout le monde....lol)

Attention : ne pas toucher au PC pendant qu'il travaille !

B-Nettoyage et Défragmentation de tes Disques
*Nettoyage :
Clic droit sur "poste de travail" ==>"ouvrir" ==>clic droit sur le disque C ==>Propriétés ==>onglet "Général"
Cliques sur le bouton "nettoyage de disque", OK
tu le fais pour chacun de tes disques

*Vérifications des erreurs :
Clic droit sur "poste de travail" ==>"ouvrir" ==>clic droit sur le disque C ==>Propriétés ==>onglet "Outil"
"Vérifier maintenant", une boîte s'ouvre, cocher les cases :
-réparer automatiquement les erreurs...
-rechercher et tenter une récupération...
--->Démarrer, ok
Note : s'il te dis de redémarrer ton Pc pour le faire , tu redémarres et tu laisses faire, cela prend un peu de temps c'est normal
tu le fais pour chacun de tes disques

ensuite toujours dans le même onglet tu choisis :
*Défragmentation :
"défragmenter maintenant", OK
une boîte s'ouvre, tu sélectionnes le disque à défragmenter, et tu cliques sur "analyser", puis après l'analyse, "défragmenter" . OK
tu le fais pour chacun de tes disques

Note : si tu as un utilitaire pour défragmenter , utilises le à la place ...

pour ce faire je te conseille ceci :

https://www.clubic.com/telecharger-fiche44314-defraggler.html

C-Crées un point de restauration de ton PC :

Aller dans le Menu Démarrer puis dans Programmes,
- Ensuite dans Accessoires et enfin dans Outils système,
- Choisir "Restauration du système",
- Sélectionner "Créer un point de restauration",
- Cliquer sur "Suivant",
- Entrer un nom pour le point de restauration (ce nom doit être assez évocateur), exemple :
<< Point restauration sain >> .

--> Cliquer sur "Créer" et le point de restauration se créé automatiquement.

> Peux-tu vérifier ta console JAVA ici ? : https://www.java.com/fr/download/uninstalltool.jsp et installer la nouvelle version si besoin est (dans ce cas désinstalle avant l'ancienne version).
Pour info. ou en cas de problème : http://assiste.com.free.fr/p/abc/c/anti_java.html

> Mets à jour Acrobat si ce n'est pas le cas (désinstalle avant la version antérieure) : https://get2.adobe.com/reader/otherversions/

> Télécharge et installe Update Checker : https://filehippo.com/windows/tuning-utilities/
- Lance le programme. Une page web de ce type va s'ouvrir.
- Fais les mises à jour de tous les logiciels proposés pour Update. Je ne te conseille pas de faire celles pour les versions béta (elles peuvent être instables).
- Fais un copier/coller de la liste de éléments "Updates". Puis poste la sur le forum.
- Une fois les mises à jour effectuées, relance ton PC.
Tuto si problèmes : https://www.commentcamarche.net/list 9908 update checker vos logiciels sont ils a jour

> Télécharge et installe Easy Cleaner : https://www.01net.com/telecharger/windows/Utilitaire/registre/fiches/8351.html
(lien miroir : https://www.clubic.com/telecharger-fiche11170-easycleaner.html )
- Lance le programme puis clique sur <Registre> puis sur <Trouver>.
- A la fin du scan clique sur <Supprime tout> puis confirme par <Oui> puis quitte le programme.
Si besoin tuto ici : https://www.pcparadise.fr
et http://www.6ma.fr/tuto/easycleaner-nettoyer-windows-des-elements-obsoletes/

> Tu peux aussi vider ta corbeille......quoi que Ccleaner le fasse tout seul.......

> Si nous avons utilisé MalwaresByte's Anti-Malware : vide sa quarantaine.
- Lance le programme puis clique sur <Quarantaine>.
- Sélectionne tous les éléments puis clique sur <supprime>.
- Quitte la programme.

> Idem pour ton antivirus : vide sa quarantaine si ce n'est pas déjà fait...

> Désactive et réactive la restauration de système, pour cela : suis les instructions de ce lien :

liens XP:

http://service1.symantec.com/SUPPORT/INTER/tsgeninfointl.nsf/fr_docid/20020830101856924

liens Vista :

http://service1.symantec.com/SUPPORT/INTER/tsgeninfointl.nsf/4f60eedf1156c8068525695b005ca288/c066b2e9a50cc948802572870032b170?OpenDocument
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Quelques conseils et recommandations pour l'avenir :

> Passe un coup d'AGV et/ou de MalwareByte's Anti-Malware et de Ccleaner de temps en temps (1 fois par semaine à 1 fois par mois, suivant l'utilisation que tu fais de ton PC. Tu peux aussi décocher la casse dans l’onglet "Options" puis clique sur "Avancé" et décoche la case "Effacer uniquement les fichiers, du dossier temp de Windows, plus vieux que 48 heures").
- Utilise aussi tes autres logiciels de protection (scannes antivirus, antispywares...). N'oublie pas de faire les mises à jour avant de les utiliser.
- Pense aussi à faire une défragmentation de tes disques durs de temps en temps (garde suffisamment d'espace sur C:\ (1/3 de libre pour être à l'aise))

> Pour bien protéger ton PC :
[1 seul Antivirus] + [1 seul Pare feu (/!\ les routeurs et box en possèdent un)] + [Quelques Antispywares] + [Mises à Jour récentes Windows et Logiciels de Protection] + [Utilisation de Firefox -ou autres- (Internet Explorer présente des failles de sécurité qui mettent longtemps avant d'être corrigées mais il faut absolument le conserver pour les mises à jour Windows)] + [Utilisation du PC en mode Invité (= limité). Lors d'une infection en mode administrateur le PC est beaucoup plus vulnérable. Voir ICI]
PS : En fait la meilleure des protections c'est toi même : ce que tu fais avec ton PC : où tu surfes, télécharges...ect....
Les virus utilisent les failles de ton PC pour infecter un système. Info : http://assiste.com.free.fr/p/abc/a/zombies_et_botnets.html

> Quelques liens utiles :
- https://www.commentcamarche.net/list 2432 securite proteger un ordinateur contre les malwares d internet
- https://sebsauvage.net/safehex.html
- https://www.zebulon.fr/telechargements/securite/protection-donnees-personnelles/spywareblaster.html (= petit logiciel qui bloque l'installation d'activ-X nuisibles au PC. Fonctionne en arrière plan)

et au final dernier petite chose :

http://www.commentcamarche.net/faq/sujet 11365 mettre son poste en probleme resolu

Voila,
Bonne lecture....

source : DllD..............;-)

Gen-hackman.......................

justedu85

salut ,

me revoilà,

bon je poste certains rapport demandé (mais dslé il en manque =( )

1)
Delete registry value: '@explorer.exe,-7024' in HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache - Succeeded
Delete registry value: '@explorer.exe,-7025' in HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache - Succeeded
Delete registry value: 'C:\Documents and Settings\Hélène\Bureau\cleanafterme.exe' in HKCU\Software\Microsoft\Windows\ShellNoRoam\MUICache - Succeeded
Delete registry value: 'HRZR_HVFPHG' in HKCU\HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{75048700-EF1F-11D0-9888-006097DEACF9}\Count - Succeeded
Delete registry value: 'HRZR_EHACNGU' in HKCU\HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{75048700-EF1F-11D0-9888-006097DEACF9}\Count - Succeeded
Delete registry value: 'HRZR_EHACNGU:P:\Qbphzragf naq Frggvatf\Uéyèar\Ohernh\pyrnansgrezr.rkr' in HKCU\HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{75048700-EF1F-11D0-9888-006097DEACF9}\Count - Succeeded
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temp\MessengerCache\%3Cmsnobj%20Creator%3D%22dechet95%40hotmail.fr%22%20Type%3D%223%22%20SHA1D%3D%22UQlgHhJjKtvJzJFEnHL6Zu7zNHo%3D%22%20Size%3D%222958%22%20Location%3D%220%22%20Friendly%3D%22YwBpAGIAbABlAAAA%22%2F%3E - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temp\MessengerCache\%3Cmsnobj%20Creator%3D%22ikala.cmoi%40hotmail.fr%22%20Type%3D%223%22%20SHA1D%3D%228P9bXWt0ZAt8K4kL3%2B2DtkQkQBU%3D%22%20Size%3D%228911%22%20Location%3D%220%22%20Friendly%3D%22QwBoAGkAZQB1AHoAAAA%3D%22%2F%3E - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temp\MessengerCache\%3Cmsnobj%20Creator%3D%22makaveli_99%40hotmail.fr%22%20Type%3D%223%22%20SHA1D%3D%22M5fBrva76xpH4sXYJEzoMl43UOE%3D%22%20Size%3D%2228478%22%20Location%3D%220%22%20Friendly%3D%22bQBvAG4AXwA3ADEAAAA%3D%22%2F%3E - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temp\MessengerCache\Z8q+GUvOqWOJssFdSu58rLyNe9w= - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temp\~DF5B90.tmp - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temp\~DF61F2.tmp - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temp\~DFA8AF.tmp - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temp\~DFA8B7.tmp - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temp\~DFC7A3.tmp - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temp\~DFC7D0.tmp - Failed
Delete folder: C:\Documents and Settings\Hélène\Local Settings\Temp\MessengerCache - Failed
Empty the Recycle Bin - Succeeded
Clean the clipboard - Succeeded
Clean event log: Application - Succeeded
Clean event log: Security - Succeeded
Clean event log: System - Succeeded
Uninstall USB Devices - Succeeded
Clean index.dat file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\index.dat - Succeeded
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\4717BOHB\ads[2].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\4717BOHB\ads[3].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\4717BOHB\PureRa-download-135237[1].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\4717BOHB\telechargement-34055291-toolscleaner[1].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\4DWREE5U\index[1].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\4DWREE5U\singlefile[1].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\VLEXB949\ads[1].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\VLEXB949\ads[3].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\VLEXB949\ads[4].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\VLEXB949\html41bis[1].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\VLEXB949\lancer-le-telechargement-276564-0-purera[1].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\VLEXB949\widget_Pixel_1x1;sz=1x1;ord=7482395842468500[1].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\WUDZ1XIS\ADSAdClient31[1].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\WUDZ1XIS\cleanafterme-34056612-avis-opinions[1].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\WUDZ1XIS\get.bestcat[2].htm - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\WUDZ1XIS\st[1] - Failed
Delete file: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\WUDZ1XIS\top_new[1].htm - Failed
Delete folder: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\4717BOHB - Failed
Delete folder: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\4DWREE5U - Failed
Delete folder: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\VLEXB949 - Failed
Delete folder: C:\Documents and Settings\Hélène\Local Settings\Temporary Internet Files\Content.IE5\WUDZ1XIS - Failed
Clean index.dat file: C:\Documents and Settings\Hélène\Cookies\index.dat - Succeeded
Clean index.dat file: C:\Documents and Settings\Hélène\Local Settings\Historique\History.IE5\index.dat - Succeeded
Clean index.dat file: C:\Documents and Settings\Hélène\Local Settings\Historique\History.IE5\MSHist012008120120081202\index.dat - Succeeded
Delete file: C:\Documents and Settings\Hélène\Local Settings\Historique\History.IE5\MSHist012008120120081202\index.dat - Failed
Delete folder: C:\Documents and Settings\Hélène\Local Settings\Historique\History.IE5\MSHist012008120120081202 - Failed

16 actions succeeded.
34 actions failed.

2)

RaProducts' PureRa v1.2
Log created at 23:06 on 01/12/2008
===================================

C:\WINDOWS\$MSI31Uninstall_KB893803v2$\msi.dll << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\msiexec.exe << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\msihnd.dll << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\msimsg.dll << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\msisip.dll << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00013 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00014 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00015 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00016 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00017 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00018 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00019 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00020 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00021 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00022 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00023 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00024 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00025 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00026 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00027 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00028 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00029 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00030 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00031 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00032 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00033 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00034 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00035 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00036 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00037 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00038 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00039 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00040 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00041 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00042 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00043 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00044 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00045 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00046 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00047 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00048 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00051 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00052 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00053 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00054 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00055 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00056 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00057 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00058 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00059 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00060 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00061 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00062 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00063 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00064 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00065 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00066 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00067 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00068 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00069 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00070 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00071 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00072 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00073 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00074 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00075 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00076 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00077 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00078 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00079 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00080 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00081 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00082 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00083 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00084 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00085 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00086 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00087 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00088 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00089 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00090 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00091 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00092 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00093 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00094 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00095 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00096 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00097 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00098 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00099 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00100 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00101 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00102 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00103 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00104 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00105 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00106 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00107 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00108 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00109 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00110 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00111 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00112 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00113 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00114 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00115 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\reg00116 << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.inf << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.txt << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\updspapi.dll << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst << Deleted.
C:\WINDOWS\$MSI31Uninstall_KB893803v2$ << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\1394bus.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\6to4svc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\acadproc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\acadproc.dll.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\access.cpl << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\accessor.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\accwiz.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\acgenral.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\acgenral.dll.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\aclayers.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\aclayers.dll.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\aclua.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\aclua.dll.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\aclui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\acpi.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\acspecfc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\acspecfc.dll.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\activeds.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\actmovie.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\actshell.htm << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\actxprxy.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\acxtrnal.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\acxtrnal.dll.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\adsldp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\adsldpc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\adsmsext.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\adsnt.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\advapi32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\aec.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\aec.sys.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\afd.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agentanm.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agentctl.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agentdp2.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agentdpv.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agentmpx.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agentpsh.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agentsr.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agentsvr.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agp440.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agpcpq.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0401.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0404.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0405.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0406.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0407.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0408.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0409.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt040b.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt040c.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt040d.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt040e.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0410.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0411.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0412.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0413.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0414.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0415.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0416.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0419.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt041d.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt041f.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0804.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0816.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agt0c0a.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agtctl15.tlb << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\agtintl.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ahui.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\alg.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\alim1541.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\alrsvc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\amdagp.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\amdk6.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\amdk7.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\amstream.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\apolicy.htm << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\apphelp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\apphelp.sdb << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\apphelp.sdb.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\apph_sp.sdb << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\apph_sp.sdb.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\apps.chm << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\apps_sp.chm << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\appwiz.cpl << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ariblk.ttf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\arp1394.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\asctrls.ocx << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\asycfilt.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\asyncmac.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\at.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\atapi.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\atl.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\atmadm.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\atmarpc.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\atmfd.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\atmlane.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\atmlib.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\attrib.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\audiosrv.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\auditusr.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\authz.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\autochk.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\autoconv.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\autofmt.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\autolfn.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\au_plcy.htm << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\avifil32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\basesrv.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\batmeter.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\batt.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\battc.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bidispl.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bitsprx2.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bitsprx3.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\blastcln.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bridge.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\browselc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\browser.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\browseui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\browsewm.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bth.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthci.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthenum.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthmodem.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthpan.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthport.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthport.sys.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthprint.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthprops.cpl << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthserv.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthspp.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\bthusb.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\btpanui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cabinet.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cabview.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cacls.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\callcont.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\camocx.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\capesnpn.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\catsrv.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\catsrvps.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\catsrvut.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ccdecode.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cdfs.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cdfview.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cdosys.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\centre de sécurité.lnk << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\certcli.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\certmgr.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cfgbkend.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cfgmgr32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\chajei.ime << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\chtmbx.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\chtskdic.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\chtskf.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cic.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cimwin32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cimwin32.mfl << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cimwin32.mof << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cintime.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cintlgnt.ime << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ciodm.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cisvc.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\classpnp.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\clbcatex.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\clbcatq.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cleanmgr.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cliconfg.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cliconfg.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\clipbrd.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\clipsrv.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\clusapi.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cmbatt.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cmcfg32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cmd.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cmdial32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cmdl32.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cmmon32.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cmprops.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cmsetacl.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cmstp.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cmutil.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cnbjmon.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\colbact.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comaddin.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comadmin.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comctl32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comdlg32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\compatui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\compbatt.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\compstui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comrepl.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comrepl.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comrereg.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comres.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comsetup.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comsnap.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comsvcs.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\comuid.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\conf.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\confmrsl.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\confmsp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\conime.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\corpol.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\corpol.dll.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\credui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\crusoe.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\crypt32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cryptdlg.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cryptdll.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cryptext.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cryptnet.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cryptsvc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cryptui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cscdll.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cscript.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\cscui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\csrsrv.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\csrss.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ctfmon.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\custsat.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\custsat.dll.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\c_g18030.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\d3d8.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\d3d8thk.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\d3d9.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\d3dim700.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\danim.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dataclen.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\datime.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\davclnt.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\daxctle.ocx << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dayi.ime << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dbghelp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dbmsrpcn.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dbnetlib.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dbnmpntw.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dcache.bin << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dcap32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dciman32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dcomcnfg.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ddeshare.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ddraw.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ddrawex.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\defrag.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\desk.cpl << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\devenum.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\devmgr.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dfrgfat.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dfrgntfs.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dfrgsnap.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dfrgui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dfsshlex.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dgnet.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dhcpcsvc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dhcpmon.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dhtmled.ocx << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dialer.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\diantz.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\digest.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dinput.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dinput8.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\directdb.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\disk.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\diskcopy.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\diskdump.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\diskpart.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dispex.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dllhost.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmadmin.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmband.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmboot.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmcompos.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmdlgs.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmdskmgr.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmime.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmio.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmloader.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmremote.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmscript.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmserver.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmstyle.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmsynth.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmusic.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmusic.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dmutil.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dnsapi.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dnsrslvr.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\docprop2.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpcdll.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dplaysvr.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dplayx.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpmodemx.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpnaddr.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpnet.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpnhpast.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpnhupnp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpnlobby.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpnsvr.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpvacm.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpvoice.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpvsetup.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpvvox.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dpwsockx.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\drmclien.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\drmk.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\drmkaud.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\drmstor.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\drprov.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\drvindex.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\drvmain.sdb << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\drvmain.sdb.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ds32gt.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dsdmo.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dsdmoprp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dskquota.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dskquoui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dsound.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dsound3d.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dsprop.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dsprpres.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dsquery.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dssec.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dssenh.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dsuiext.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dswave.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dumprep.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\duser.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dvdupgrd.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dwup.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dwwin.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dx7vb.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dx8vb.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dxdiag.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dxdiagn.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dxg.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\dxmasf.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\els.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\encapi.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\encdec.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\error.js << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ersvc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\es.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\esent.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\esscli.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\eudcedit.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\evntrprv.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\explorer.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\expsrv.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\extrac32.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\exts.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\f3ahvoas.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fastfat.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fastprox.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\faultrep.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fdc.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\feclient.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\filelist.xml << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\filemgmt.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\findstr.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fips.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\firewall.cpl << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fldrclnr.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\flpydisk.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fltlib.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fltmc.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fltmgr.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fltmgr.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fontext.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fontsub.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fontview.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\forcedos.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\format.com << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fp4.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fp40ext.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fp40ext.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fp4autl.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\framebuf.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\framedyn.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fsquirt.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ftp.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fwcfg.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\fxsocm.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\gdi32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\glu32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\gpkrsrc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\grpconv.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\guitrn.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\h323.tsp << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\h323cc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\h323msp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hal.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\halmacpi.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\halmacpi.dll.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hccoin.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hdaudbus.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hdaudbus.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hdwwiz.cpl << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\help.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\helpctr.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\helpsvc.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hh.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hhctrl.ocx << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hhsetup.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hid.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hidbth.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hidbth.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hidclass.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hiddigi.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hidparse.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hidphone.tsp << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hidserv.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hidserv.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hidusb.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hlink.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hnetcfg.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hnetwiz.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hotplug.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hscsp_p3.cab << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hscupd.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\html.iec << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\http.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\http.sys.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\httpapi.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\htui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hwxjpn.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\hypertrm.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\i2omgmt.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\i2omp.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\i8042prt.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\iac25_32.ax << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\iasrad.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icaapi.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\iccvid.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icm32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icmp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\iconlib.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icwconn.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icwconn1.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icwconn2.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icwdial.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icwdl.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icwhelp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icwphbk.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icwrmind.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\icwutil.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\idq.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ie.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ieaccess.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ieencode.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\iexpress.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ifmon.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\igmpagnt.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\iis.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ils.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imaadp32.acm << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imagehlp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imapi.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imapi.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imekr61.ime << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imekrcic.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imekrmbx.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imeshare.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imjp81.ime << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imjp81k.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imjpcic.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imjpcus.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imjpdct.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imjputyc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imlang.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imm32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\impact.ttf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ims.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ims.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imsinsnt.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\imskf.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\inetcfg.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\inetcomm.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\inetmib1.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\inetpp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\inetppui.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\inetres.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\inetwiz.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\initpki.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\input.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\input.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\input.pnf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\intelide.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\intelppm.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\intl.cpl << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\intl.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ip6fw.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipconf.tsp << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipconfig.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\iphlpapi.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipinip.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipmontr.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipnat.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipnathlp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ippromon.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\iprtrmgr.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipsec.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipsecsnp.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipsecsvc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipsink.ax << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipsmsnap.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipv6.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipv6mon.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipxroute.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ipxwan.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ir41_32.ax << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ir41_qc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ir41_qcx.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ir50_32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ir50_qc.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ir50_qcx.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\irenum.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\irftp.exe << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\irmon.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\irprops.cpl << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\isapnp.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\isign32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\isrdbg32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\itircl.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\itss.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\iuengine.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ivfsrc.ax << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ixsso.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\iyuv_32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\jgdw400.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\jgpl400.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\joy.cpl << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\jscript.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb873339.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb885250.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb885835.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb885836.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb885884.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb886185.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb887472.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb887742.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb888113.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb888302.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb890046.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb890859.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb891781.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb893066.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb893756.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb894391.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb896256.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb896358.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb896422.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb896423.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb896424.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb896428.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb898461.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb899587.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb899591.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb900485.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb900725.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb901017.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb901190.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb901214.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb902400.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb904706.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb904942.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb905414.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb905749.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb905915.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb908519.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb908531.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb910437.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb911280.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb911562.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb911927.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb913580.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb914388.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb914389.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb914440.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb915865.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb916595.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb917344.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb917953.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb918118.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb918439.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb919007.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb920213.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb920670.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb920683.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb920685.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb920872.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb921503.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb922582.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb922819.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb923191.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb923414.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb923980.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb924191.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb924270.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb924496.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb924667.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb925902.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb926239.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb926255.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb926436.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb927779.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb927802.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb927891.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb928255.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb928843.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb929123.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb929969.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb930178.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb930916.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb931261.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb931784.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb931836.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb932168.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb932823-v3.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb933360.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb933566.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb933729.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb935448.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb935839.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb935840.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb936021.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb937143.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb938127.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb938828.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb938829.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb939653.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb941202.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb941568.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb941644.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb941693.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb942615.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb942763.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb942840.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb943055.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb943460.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb943485.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb944653.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb945553.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb946026.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb946627.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb948590.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb948881.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kb950749.cat << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbd101.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbd106.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbd106n.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdax2.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdclass.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdfi1.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdhid.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdibm02.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdinbe1.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdinben.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdinmal.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdlk41a.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdlk41j.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdmaori.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdmlt47.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdmlt48.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdnec.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdno1.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdsmsfi.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdsmsno.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kbdukx.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kd1394.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kerberos.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kernel32.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\keyboard.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\keyboard.pnf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\keymgr.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kmddsp.tsp << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kmixer.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kmixer.sys.000 << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\krnlprov.dll << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ks.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ks.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\kscaptur.inf << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ksecdd.sys << Deleted.
C:\WINDOWS\$NtServicePackUninstall$\ksfilter.inf << Deleted.
C:\WINDOWS\$

Réponse 6 / 6

Utilisateur anonyme

il m a jamais fait ca purera !!!!!!!!!!!!!!!!

Discussions similaires

Softonic,est-ce un virus ?

virus Artemis!

Désinstaller Softonic

Message Apple virus !!

Erreur 0x800700E1

Encore un virus grr

6 réponses

Votre réponse

Discussions similaires

Newsletters