S'abonner :

Newsletters

Magazines

01men.

Avis sur les produits

Avis sur les logiciels

Avis sur les jeux

Actualités

A propos de 01net

859 utilisateurs connectés

Forum de 01net / Sécurité / Infecté Win32:Aqware-gen,Win32:CTX Win32:Trojan-gen [Résolu]

Infecté Win32:Aqware-gen,Win32:CTX Win32:Trojan-gen [Résolu]

Vani1408 le 03 avril 2007 à 23h03

Bonsoir à tous,
Je me suis rendue compte il y a peu que mon PC ralentissait ! :pleure:

Pensant à une surcharge de dossier, je fis un nettoyage dans mes fichiers mais sans succés.
C'est en faisant un scan avec AVAST que je pris connaissance de Win32:CTX, Win32:Adware-gen et Win32:Trojan-gen. Et donc impossible de les supprimer.
C'est pourquoi, je me permets de demander de l'aide.

Voici donc la configuration de mon PC :
FUJITSU SIEMENS
Windows XP Edition familiale 2002 Pack 2.

En vous remerciant d'avance de toute l'aide que vous m'apporterez. :jap:

-->Message édité par Vani1408 le 20/04/2007 01:17:42<--

répondre

Anthony10 le 03 avril 2007 à 23h07

Bonsoir Vani1408,

Télécharge HijackThis que tu placeras dans un répertoire dédié tel C:\Program Files\HijackThis.

Double-clique sur HijackThis.exe pour lancer l'outil.

Ferme toutes les applications en cours sauf HijackThis.

Clique sur le bouton Do a system scan and save a logfile.

Un rapport sera généré puis le Bloc-notes l'affichera.

Dans le Bloc-notes, clique en haut sur le menu Edition puis choisis Sélectionner tout.

Dans le Bloc-notes, clique en haut sur le menu Edition puis choisis Copier.

Dans ta future réponse, colle le rapport de HijackThis.

A suivre,

En cas de difficulté, voir le tutorial d'HijackThis sur le site de Malekal_Morte

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 03 avril 2007 à 23h31

Désolé mais j'avais omis de fermer AVAST avant de lancer HIJACKTHIS.
Voici le dernier rapport :

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 23.29, on 03/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\Program Files\Telecom Italia France\Securite Enfants\bin\optproxy.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender8\vsserv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Labtec\LABTEC~1\Keyboard.exe
C:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Program Files\Softwin\BitDefender8\bdoesrv.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\LVComsX.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Hijackthis\HiJackThis_v2.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aliceadsl.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.aliceadsl.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O4 - HKLM\..\Run: [KeyBoard] C:\PROGRA~1\Labtec\LABTEC~1\Keyboard.exe
O4 - HKLM\..\Run: [BDMCon] C:\progra~1\softwin\bitdef~1\bdmcon.exe
O4 - HKLM\..\Run: [BDOESRV] C:\Program Files\Softwin\BitDefender8\\bdoesrv.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Easy Notification.lnk = C:\Program Files\Easy Notification 2.0\EasyNoti.exe
O4 - Startup: La Solution Plus Enseignement Ciel.lnk = C:\CIEL\STARTER.EXE
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_ce(...)
O16 - DPF: Yahoo! Euchre - http://download.games.yahoo.com/games/clients/y/et1_x.cab
O16 - DPF: Yahoo! MahJong Solitaire - http://download.games.yahoo.com/games/clients/y/mjst4_x.cab
O16 - DPF: Yahoo! Pyramids - http://download.games.yahoo.com/games/clients/y/pyt1_x.cab
O16 - DPF: Yahoo! Towers 2.0 - http://download.games.yahoo.com/games/clients/y/ywt0_x.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://E:\content\include\XPPatchInstaller.CAB
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/fr/4,0,0,74/mcinsctl.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://207.188.7.150/22c4b751c7345c935d21/netzip/RdxIE601_fr.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.com/scan8/oscan8.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/20040428/qtinstall.info.apple.com/saba/fr(...)
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} - http://www.bitdefender.com/scan/Msie/bitdefender.cab
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://E:\Content\include\msSecUcd.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IMDownloader Class) - http://www2.incredimail.com/contents/setup/downloader/imloader.cab
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://lw11fd.law11.hotmail.msn.com/activex/HMAtchmt.ocx
O18 - Protocol: bw+0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: x?sockspy.dll sockspy.dll
O22 - SharedTaskScheduler: Pré-chargeur Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Démon de cache des catégories de composant - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Service d'administration du Gestionnaire de disque logique (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Journal des événements (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Service COM de gravage de CD IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\System32\imapi.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Partage de Bureau à distance NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\System32\mnmsrvc.exe
O23 - Service: Sécurité Enfants (OPTENET_FILTER) - Telecom Italia France - C:\Program Files\Telecom Italia France\Securite Enfants\bin\optproxy.exe
O23 - Service: Plug-and-Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Carte à puce (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: Journaux et alertes de performance (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: Cliché instantané de volume (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender8\vsserv.exe
O23 - Service: Carte de performance WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\System32\wbem\wmiapsrv.exe
O23 - Service: Service Partage réseau du Lecteur Windows Media (WMPNetworkSvc) - Unknown owner - C:\Program Files\Windows Media Player\WMPNetwk.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/Vanina/LOCALS~1/Temp/msohtml1/02/clip_image002.jpg
O24 - Desktop Component 1: (no name) - file:///C:/DOCUME~1/Vanina/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg

--
End of file - 23316 bytes

répondre

Anthony10 le 04 avril 2007 à 15h49

Bonjour,

Tu disposes d'une version Beta de HijackThis, il est préférable d'utiliser une version reconnue:
http://216.180.233.162/~merijn/files/HijackThis.exe

Génère un rapport et envoie-le.

Anthony.

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 05 avril 2007 à 00h14

Oups , voici le rapport :
Logfile of HijackThis v1.99.1
Scan saved at 00.06, on 05/04/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\System32\drivers\CDAC11BA.EXE
C:\Program Files\Telecom Italia France\Securite Enfants\bin\optproxy.exe
C:\WINDOWS\system32\slserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe
C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe
C:\Program Files\Softwin\BitDefender8\vsserv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Labtec\LABTEC~1\Keyboard.exe
C:\progra~1\softwin\bitdef~1\bdmcon.exe
C:\Program Files\Softwin\BitDefender8\bdoesrv.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\LVComsX.exe
C:\Program Files\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.aliceadsl.fr
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.aliceadsl.fr
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Alice ADSL
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll
O4 - HKLM\..\Run: [KeyBoard] C:\PROGRA~1\Labtec\LABTEC~1\Keyboard.exe
O4 - HKLM\..\Run: [BDMCon] C:\progra~1\softwin\bitdef~1\bdmcon.exe
O4 - HKLM\..\Run: [BDOESRV] C:\Program Files\Softwin\BitDefender8\\bdoesrv.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - Startup: Easy Notification.lnk = C:\Program Files\Easy Notification 2.0\EasyNoti.exe
O4 - Startup: La Solution Plus Enseignement Ciel.lnk = C:\CIEL\STARTER.EXE
O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O16 - DPF: teleir_cert - https://static.ir.dgi.minefi.gouv.fr/secure/connexion/archives/ie4n4/teleir_ce(...)
O16 - DPF: Yahoo! Euchre - http://download.games.yahoo.com/games/clients/y/et1_x.cab
O16 - DPF: Yahoo! MahJong Solitaire - http://download.games.yahoo.com/games/clients/y/mjst4_x.cab
O16 - DPF: Yahoo! Pyramids - http://download.games.yahoo.com/games/clients/y/pyt1_x.cab
O16 - DPF: Yahoo! Towers 2.0 - http://download.games.yahoo.com/games/clients/y/ywt0_x.cab
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab31267.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://www.pcpitstop.com/pcpitstop/PCPitStop.CAB
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
O16 - DPF: {31B7EB4E-8B4B-11D1-A789-00A0CC6651A8} (Cult3D ActiveX Player) - http://www.cult3d.com/download/cult.cab
O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://E:\content\include\XPPatchInstaller.CAB
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/fr/4,0,0,74/mcinsctl.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} - http://207.188.7.150/22c4b751c7345c935d21/netzip/RdxIE601_fr.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.bitdefender.com/scan8/oscan8.cab
O16 - DPF: {62475759-9E84-458E-A1AB-5D2C442ADFDE} - http://a1540.g.akamai.net/7/1540/52/20040428/qtinstall.info.apple.com/saba/fr(...)
O16 - DPF: {80DD2229-B8E4-4C77-B72F-F22972D723EA} - http://www.bitdefender.com/scan/Msie/bitdefender.cab
O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://E:\Content\include\msSecUcd.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab32846.cab
O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab
O16 - DPF: {F00F4763-7355-4725-82F7-0DA94A256D46} (IMDownloader Class) - http://www2.incredimail.com/contents/setup/downloader/imloader.cab
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://lw11fd.law11.hotmail.msn.com/activex/HMAtchmt.ocx
O18 - Protocol: bw+0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {911E299C-E58A-4905-882A-51825FA310AF} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - AppInit_DLLs: x?sockspy.dll sockspy.dll sockspy.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service (file missing)
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Fichiers communs\BOONTY Shared\Service\Boonty.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\System32\drivers\CDAC11BA.EXE
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: Sécurité Enfants (OPTENET_FILTER) - Telecom Italia France - C:\Program Files\Telecom Italia France\Securite Enfants\bin\optproxy.exe
O23 - Service: SmartLinkService (SLService) - - C:\WINDOWS\SYSTEM32\slserv.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - Unknown owner - C:\Program Files\Softwin\BitDefender8\vsserv.exe" /service (file missing)
O23 - Service: BitDefender Communicator (XCOMM) - Unknown owner - C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service (file missing)

répondre

Anthony10 le 06 avril 2007 à 23h05

Bonsoir Vani1408,

Télécharge ComboFix.exe (par sUBs) sur ton Bureau

Double clique ComboFix.exe et suis les invites.

Lorsque le scan sera fini, un rapport apparaîtra.

Copie/colle ce rapport dans ta prochaine réponse.

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 07 avril 2007 à 01h17

Voici le rapport

Tue Aug 01 13:01:24 2006 [DBG] Service installed
Tue Aug 01 13:10:50 2006 [WRN] Generic error in connection/blocksock
Wed Aug 02 18:24:47 2006 [WRN] Generic error in connection/blocksock
Thu Aug 03 02:36:44 2006 [WRN] Generic error in connection/blocksock
Fri Aug 04 17:12:27 2006 [WRN] Generic error in connection/blocksock
Sat Aug 05 22:50:00 2006 [WRN] Generic error in connection/blocksock
Sun Aug 06 00:20:31 2006 [ERR] Generic exception caught
Sun Aug 06 18:04:23 2006 [WRN] Generic error in connection/blocksock
Sun Aug 06 20:18:15 2006 [WRN] Generic error in connection/blocksock
Tue Aug 08 15:57:55 2006 [WRN] Generic error in connection/blocksock
Tue Aug 08 22:42:40 2006 [WRN] Generic error in connection/blocksock
Wed Aug 09 17:14:59 2006 [WRN] Generic error in connection/blocksock
Wed Aug 09 17:23:26 2006 [ERR] Generic exception caught
Wed Aug 09 17:31:27 2006 [WRN] Generic error in connection/blocksock
Wed Aug 09 23:21:14 2006 [ERR] Error connecting to the license server
Thu Aug 10 10:47:07 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 10:49:10 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 10:54:12 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 10:56:13 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 11:04:23 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 11:06:25 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 11:13:47 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 11:15:49 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 11:24:12 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 11:26:13 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 11:37:48 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 11:39:50 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 11:42:48 2006 [ERR] Generic exception caught
Thu Aug 10 11:54:42 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 11:56:52 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 12:01:46 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 12:03:49 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 12:09:26 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 12:11:48 2006 [WRN] Generic error in connection/blocksock
Thu Aug 10 12:14:27 2006 [ERR] Generic exception caught
Fri Aug 11 00:35:46 2006 [WRN] Generic error in connection/blocksock
Sat Aug 12 19:40:49 2006 [WRN] Generic error in connection/blocksock
Sat Aug 12 20:15:08 2006 [ERR] Generic exception caught
Sat Aug 12 20:36:29 2006 [WRN] Generic error in connection/blocksock
Sun Aug 13 18:53:50 2006 [WRN] Generic error in connection/blocksock
Tue Aug 15 00:26:18 2006 [WRN] Generic error in connection/blocksock
Tue Aug 15 19:39:54 2006 [WRN] Generic error in connection/blocksock
Wed Aug 16 08:02:03 2006 [WRN] Generic error in connection/blocksock
Wed Aug 16 15:54:25 2006 [WRN] Generic error in connection/blocksock
Wed Aug 16 16:49:11 2006 [WRN] Generic error in connection/blocksock
Wed Aug 16 16:59:41 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 03:28:17 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 03:35:50 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 03:37:51 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 03:47:55 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 03:49:57 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 04:05:04 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 04:07:08 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 04:16:19 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 04:31:30 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 04:33:31 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 04:56:34 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 04:58:35 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 05:13:00 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 05:15:01 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 05:34:10 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 05:36:12 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 06:13:34 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 06:15:55 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 06:17:57 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 06:49:05 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 06:51:06 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 07:20:53 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 07:22:55 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 22:37:35 2006 [WRN] Generic error in connection/blocksock
Thu Aug 17 23:02:34 2006 [WRN] Generic error in connection/blocksock
Fri Aug 18 16:59:30 2006 [WRN] Generic error in connection/blocksock
Fri Aug 18 22:03:18 2006 [WRN] Generic error in connection/blocksock
Fri Aug 18 22:10:26 2006 [WRN] Generic error in connection/blocksock
Fri Aug 18 22:15:39 2006 [WRN] Generic error in connection/blocksock
Fri Aug 18 23:52:02 2006 [WRN] Generic error in connection/blocksock
Sat Aug 19 01:41:59 2006 [WRN] Generic error in connection/blocksock
Sat Aug 19 01:44:29 2006 [WRN] Generic error in connection/blocksock
Sat Aug 19 02:12:05 2006 [WRN] Generic error in connection/blocksock
Sat Aug 19 15:36:41 2006 [WRN] Generic error in connection/blocksock
Sat Aug 19 18:02:26 2006 [WRN] Generic error in connection/blocksock
Sat Aug 19 18:04:42 2006 [WRN] Generic error in connection/blocksock
Sat Aug 19 18:07:03 2006 [WRN] Generic error in connection/blocksock
Sat Aug 19 18:36:34 2006 [WRN] Generic error in connection/blocksock
Sun Aug 20 12:54:39 2006 [WRN] Generic error in connection/blocksock
Sun Aug 20 16:32:34 2006 [WRN] Generic error in connection/blocksock
Sun Aug 20 17:55:43 2006 [ERR] Generic exception caught
Mon Aug 21 11:03:59 2006 [WRN] Generic error in connection/blocksock
Tue Aug 22 00:58:20 2006 [WRN] Generic error in connection/blocksock
Tue Aug 22 01:03:12 2006 [WRN] Generic error in connection/blocksock
Mon Aug 28 13:17:09 2006 [WRN] Generic error in connection/blocksock
Tue Aug 29 15:58:14 2006 [WRN] Generic error in connection/blocksock
Fri Sep 01 23:25:56 2006 [WRN] Generic error in connection/blocksock
Sat Sep 02 13:51:24 2006 [WRN] Generic error in connection/blocksock
Sat Sep 02 14:43:42 2006 [WRN] Generic error in connection/blocksock
Sat Sep 02 20:06:19 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 12:54:24 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 15:41:37 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 18:31:22 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 18:33:43 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 18:37:46 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 18:40:07 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 18:42:28 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 18:47:36 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 18:49:57 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 18:52:21 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 18:54:43 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 18:57:04 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:01:59 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:04:20 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:09:19 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:11:40 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:17:13 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:19:34 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:24:30 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:26:53 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:31:48 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:34:09 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:39:15 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:41:36 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:46:32 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:48:53 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:53:51 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:56:12 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 19:58:33 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:00:54 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:03:15 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:08:14 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:10:35 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:15:31 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:17:52 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:22:48 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:25:08 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:27:42 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:30:03 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:32:24 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:38:01 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:40:22 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:45:23 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:47:44 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:53:59 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 20:56:20 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 21:02:17 2006 [WRN] Generic error in connection/blocksock
Sun Sep 03 21:04:38 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:08:19 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:10:50 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:17:04 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:19:26 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:24:23 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:26:44 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:32:58 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:35:19 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:40:21 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:42:42 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:47:40 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:50:01 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:56:31 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 17:58:52 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:01:20 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:03:42 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:06:02 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:11:48 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:14:09 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:19:14 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:21:35 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:27:17 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:29:38 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:31:59 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 18:36:27 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 19:47:50 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 19:50:11 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 19:55:47 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 19:58:08 2006 [WRN] Generic error in connection/blocksock
Mon Sep 04 20:00:10 2006 [WRN] Generic error in connection/blocksock
Tue Sep 05 15:35:18 2006 [WRN] Generic error in connection/blocksock
Tue Sep 05 19:20:30 2006 [WRN] Generic error in connection/blocksock
Wed Sep 06 13:26:25 2006 [WRN] Generic error in connection/blocksock
Wed Sep 06 13:43:13 2006 [WRN] Generic error in connection/blocksock
Fri Sep 08 18:15:25 2006 [WRN] Generic error in connection/blocksock
Sat Sep 09 13:59:02 2006 [WRN] Generic error in connection/blocksock
Sat Sep 09 19:04:01 2006 [ERR] Generic exception caught
Sun Sep 10 18:50:08 2006 [WRN] Generic error in connection/blocksock
Sun Sep 10 19:15:16 2006 [WRN] Generic error in connection/blocksock
Sun Sep 10 21:19:31 2006 [WRN] Generic error in connection/blocksock
Mon Sep 11 18:05:31 2006 [WRN] Generic error in connection/blocksock
Mon Sep 11 18:41:36 2006 [WRN] Generic error in connection/blocksock
Mon Sep 11 19:55:30 2006 [WRN] Generic error in connection/blocksock
Mon Sep 11 20:52:52 2006 [WRN] Generic error in connection/blocksock
Mon Sep 11 22:09:04 2006 [WRN] Generic error in connection/blocksock
Tue Sep 12 20:09:54 2006 [WRN] Generic error in connection/blocksock
Wed Sep 13 12:34:46 2006 [WRN] Generic error in connection/blocksock
Wed Sep 13 21:18:24 2006 [WRN] Generic error in connection/blocksock
Thu Sep 14 20:31:05 2006 [WRN] Generic error in connection/blocksock
Thu Sep 14 20:53:38 2006 [ERR] Generic exception caught
Thu Sep 14 21:33:01 2006 [WRN] Generic error in connection/blocksock
Thu Sep 14 21:45:27 2006 [ERR] Generic exception caught
Thu Sep 14 22:03:36 2006 [WRN] Generic error in connection/blocksock
Thu Sep 14 22:41:13 2006 [WRN] Generic error in connection/blocksock
Fri Sep 15 17:04:33 2006 [WRN] Generic error in connection/blocksock
Fri Sep 15 17:09:08 2006 [WRN] Generic error in connection/blocksock
Fri Sep 15 20:57:20 2006 [WRN] Generic error in connection/blocksock
Sat Sep 16 13:45:59 2006 [WRN] Generic error in connection/blocksock
Sat Sep 16 15:57:23 2006 [WRN] Generic error in connection/blocksock
Mon Sep 18 17:07:11 2006 [WRN] Generic error in connection/blocksock
Mon Sep 18 18:51:37 2006 [WRN] Generic error in connection/blocksock
Tue Sep 19 07:19:33 2006 [WRN] Generic error in connection/blocksock
Tue Sep 19 07:23:21 2006 [WRN] Generic error in connection/blocksock
Wed Sep 20 12:28:50 2006 [WRN] Generic error in connection/blocksock
Wed Sep 20 14:43:03 2006 [ERR] Generic exception caught
Fri Sep 22 20:59:18 2006 [WRN] Generic error in connection/blocksock
Sat Sep 23 00:58:46 2006 [WRN] Generic error in connection/blocksock
Sat Sep 23 14:01:12 2006 [WRN] Generic error in connection/blocksock
Sat Sep 23 16:35:33 2006 [WRN] Generic error in connection/blocksock
Sat Sep 23 20:29:08 2006 [WRN] Generic error in connection/blocksock
Sun Sep 24 02:11:24 2006 [WRN] Generic error in connection/blocksock
Sun Sep 24 12:48:26 2006 [WRN] Generic error in connection/blocksock
Sun Sep 24 20:18:26 2006 [WRN] Generic error in connection/blocksock
Mon Sep 25 17:59:08 2006 [WRN] Generic error in connection/blocksock
Tue Sep 26 19:31:56 2006 [WRN] Generic error in connection/blocksock
Tue Sep 26 22:26:33 2006 [WRN] Generic error in connection/blocksock
Wed Sep 27 12:47:41 2006 [WRN] Generic error in connection/blocksock
Thu Sep 28 18:30:22 2006 [WRN] Generic error in connection/blocksock
Thu Sep 28 19:56:49 2006 [WRN] Generic error in connection/blocksock
Thu Sep 28 19:59:11 2006 [WRN] Generic error in connection/blocksock
Thu Sep 28 20:01:38 2006 [WRN] Generic error in connection/blocksock
Fri Sep 29 19:24:42 2006 [WRN] Generic error in connection/blocksock
Sat Sep 30 11:40:31 2006 [WRN] Generic error in connection/blocksock
Sat Sep 30 15:22:49 2006 [WRN] Generic error in connection/blocksock
Sat Sep 30 15:25:19 2006 [WRN] Generic error in connection/blocksock
Sat Sep 30 15:27:41 2006 [WRN] Generic error in connection/blocksock
Sun Oct 01 14:23:44 2006 [WRN] Generic error in connection/blocksock
Sun Oct 01 17:57:46 2006 [WRN] Generic error in connection/blocksock
Sun Oct 01 18:32:39 2006 [WRN] Generic error in connection/blocksock
Mon Oct 02 21:56:51 2006 [WRN] Generic error in connection/blocksock
Mon Oct 02 22:34:44 2006 [WRN] Generic error in connection/blocksock
Tue Oct 03 18:59:43 2006 [WRN] Generic error in connection/blocksock
Tue Oct 03 20:03:38 2006 [WRN] Generic error in connection/blocksock
Tue Oct 03 20:42:30 2006 [ERR] Generic exception caught
Tue Oct 03 21:33:57 2006 [WRN] Generic error in connection/blocksock
Wed Oct 04 19:06:32 2006 [WRN] Generic error in connection/blocksock
Thu Oct 05 18:06:35 2006 [WRN] Generic error in connection/blocksock
Fri Oct 06 18:11:28 2006 [WRN] Generic error in connection/blocksock
Sat Oct 07 19:57:44 2006 [WRN] Generic error in connection/blocksock
Sun Oct 08 18:15:44 2006 [WRN] Generic error in connection/blocksock
Mon Oct 09 17:29:10 2006 [WRN] Generic error in connection/blocksock
Mon Oct 09 22:32:29 2006 [WRN] Generic error in connection/blocksock
Tue Oct 10 19:12:58 2006 [WRN] Generic error in connection/blocksock
Wed Oct 11 12:30:24 2006 [WRN] Generic error in connection/blocksock
Thu Oct 12 20:44:54 2006 [WRN] Generic error in connection/blocksock
Fri Oct 13 20:23:08 2006 [WRN] Generic error in connection/blocksock
Fri Oct 13 20:33:03 2006 [WRN] Generic error in connection/blocksock
Sat Oct 14 13:30:24 2006 [WRN] Generic error in connection/blocksock
Sat Oct 14 14:00:31 2006 [WRN] Generic error in connection/blocksock
Sat Oct 14 14:05:01 2006 [ERR] Generic exception caught
Sat Oct 14 21:40:06 2006 [WRN] Generic error in connection/blocksock
Mon Oct 16 20:05:46 2006 [WRN] Generic error in connection/blocksock
Mon Oct 16 22:07:44 2006 [WRN] Generic error in connection/blocksock
Tue Oct 17 19:16:35 2006 [WRN] Generic error in connection/blocksock
Tue Oct 17 19:26:23 2006 [ERR] Generic exception caught
Tue Oct 17 19:52:45 2006 [WRN] Generic error in connection/blocksock
Wed Oct 18 12:46:49 2006 [WRN] Generic error in connection/blocksock
Wed Oct 18 14:02:11 2006 [ERR] Generic exception caught
Wed Oct 18 14:02:11 2006 [WRN] Generic error in connection/blocksock
Thu Oct 19 18:59:48 2006 [WRN] Generic error in connection/blocksock
Fri Oct 20 19:34:55 2006 [WRN] Generic error in connection/blocksock
Fri Oct 20 20:13:22 2006 [ERR] Generic exception caught
Fri Oct 20 21:05:05 2006 [WRN] Generic error in connection/blocksock
Fri Oct 20 23:41:33 2006 [WRN] Generic error in connection/blocksock
Sat Oct 21 11:56:19 2006 [WRN] Generic error in connection/blocksock
Sat Oct 21 12:14:14 2006 [ERR] Generic exception caught
Sat Oct 21 12:33:06 2006 [WRN] Generic error in connection/blocksock
Sat Oct 21 17:06:43 2006 [WRN] Generic error in connection/blocksock
Sat Oct 21 17:26:08 2006 [WRN] Generic error in connection/blocksock
Sat Oct 21 17:36:30 2006 [ERR] Generic exception caught
Sat Oct 21 17:50:07 2006 [WRN] Generic error in connection/blocksock
Sun Oct 22 00:49:11 2006 [WRN] Generic error in connection/blocksock
Sun Oct 22 14:43:44 2006 [WRN] Generic error in connection/blocksock
Mon Oct 23 17:12:34 2006 [WRN] Generic error in connection/blocksock
Mon Oct 23 22:38:30 2006 [WRN] Generic error in connection/blocksock
Tue Oct 24 19:18:11 2006 [WRN] Generic error in connection/blocksock
Tue Oct 24 20:15:28 2006 [WRN] Generic error in connection/blocksock
Tue Oct 24 22:01:55 2006 [ERR] Generic exception caught
Wed Oct 25 13:05:37 2006 [WRN] Generic error in connection/blocksock
Thu Oct 26 12:58:42 2006 [WRN] Generic error in connection/blocksock
Thu Oct 26 18:32:15 2006 [WRN] Generic error in connection/blocksock
Fri Oct 27 12:36:06 2006 [WRN] Generic error in connection/blocksock
Fri Oct 27 12:55:55 2006 [WRN] Generic error in connection/blocksock
Fri Oct 27 13:15:44 2006 [WRN] Generic error in connection/blocksock
Fri Oct 27 13:59:36 2006 [WRN] Generic error in connection/blocksock
Fri Oct 27 21:13:35 2006 [WRN] Generic error in connection/blocksock
Fri Oct 27 22:57:59 2006 [ERR] Generic exception caught
Fri Oct 27 23:13:29 2006 [WRN] Generic error in connection/blocksock
Sat Oct 28 12:50:20 2006 [WRN] Generic error in connection/blocksock
Sat Oct 28 20:17:29 2006 [WRN] Generic error in connection/blocksock
Sat Oct 28 20:28:47 2006 [WRN] Generic error in connection/blocksock
Sun Oct 29 01:34:47 2006 [WRN] Generic error in connection/blocksock
Sun Oct 29 17:35:28 2006 [WRN] Generic error in connection/blocksock
Sun Oct 29 21:32:33 2006 [ERR] Generic exception caught
Sun Oct 29 21:46:06 2006 [WRN] Generic error in connection/blocksock
Mon Oct 30 13:19:03 2006 [WRN] Generic error in connection/blocksock
Tue Oct 31 13:58:09 2006 [WRN] Generic error in connection/blocksock
Tue Oct 31 14:22:05 2006 [WRN] Generic error in connection/blocksock
Tue Oct 31 17:17:15 2006 [WRN] Generic error in connection/blocksock
Wed Nov 01 17:17:46 2006 [WRN] Generic error in connection/blocksock
Wed Nov 01 17:33:09 2006 [ERR] Generic exception caught
Wed Nov 01 17:50:18 2006 [WRN] Generic error in connection/blocksock
Wed Nov 01 18:18:30 2006 [WRN] Generic error in connection/blocksock
Wed Nov 01 18:26:41 2006 [ERR] Generic exception caught
Wed Nov 01 19:03:41 2006 [WRN] Generic error in connection/blocksock
Wed Nov 01 22:29:06 2006 [ERR] Generic exception caught
Thu Nov 02 20:46:25 2006 [WRN] Generic error in connection/blocksock
Fri Nov 03 19:31:51 2006 [WRN] Generic error in connection/blocksock
Sat Nov 04 04:16:12 2006 [WRN] Generic error in connection/blocksock
Sat Nov 04 23:55:23 2006 [WRN] Generic error in connection/blocksock
Sun Nov 05 00:07:18 2006 [WRN] Generic error in connection/blocksock
Sun Nov 05 00:15:50 2006 [WRN] Generic error in connection/blocksock
Sun Nov 05 00:17:52 2006 [WRN] Generic error in connection/blocksock
Sun Nov 05 00:22:47 2006 [WRN] Generic error in connection/blocksock
Sun Nov 05 00:24:49 2006 [WRN] Generic error in connection/blocksock
Sun Nov 05 00:32:01 2006 [WRN] Generic error in connection/blocksock
Sun Nov 05 16:24:32 2006 [WRN] Generic error in connection/blocksock
Tue Nov 07 18:15:31 2006 [WRN] Generic error in connection/blocksock
Wed Nov 08 16:21:22 2006 [WRN] Generic error in connection/blocksock
Wed Nov 08 16:40:25 2006 [ERR] Generic exception caught
Thu Nov 09 19:19:44 2006 [WRN] Generic error in connection/blocksock
Thu Nov 09 19:55:30 2006 [WRN] Generic error in connection/blocksock
Thu Nov 09 20:16:03 2006 [WRN] Generic error in connection/blocksock
Fri Nov 10 18:42:45 2006 [WRN] Generic error in connection/blocksock
Fri Nov 10 21:29:02 2006 [ERR] Generic exception caught
Fri Nov 10 22:00:45 2006 [WRN] Generic error in connection/blocksock
Sat Nov 11 13:43:11 2006 [WRN] Generic error in connection/blocksock
Sat Nov 11 14:54:21 2006 [ERR] Generic exception caught
Sun Nov 12 20:22:34 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 20:29:30 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 20:36:32 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 20:40:54 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 20:43:16 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 20:50:14 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 20:54:36 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 20:56:57 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 20:59:18 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 21:04:16 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 21:06:18 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 21:08:39 2006 [WRN] Generic error in connection/blocksock
Sun Nov 12 21:11:00 2006 [WRN] Generic error in connection/blocksock
Mon Nov 13 17:46:25 2006 [WRN] Generic error in connection/blocksock
Mon Nov 13 21:11:30 2006 [WRN] Generic error in connection/blocksock
Tue Nov 14 17:28:29 2006 [WRN] Generic error in connection/blocksock
Wed Nov 15 12:31:12 2006 [WRN] Generic error in connection/blocksock
Thu Nov 16 10:40:13 2006 [WRN] Generic error in connection/blocksock
Thu Nov 16 10:52:12 2006 [WRN] Generic error in connection/blocksock
Sat Nov 25 13:58:58 2006 [WRN] Generic error in connection/blocksock
Sun Nov 26 00:01:41 2006 [WRN] Generic error in connection/blocksock
Sun Nov 26 15:14:07 2006 [WRN] Generic error in connection/blocksock
Mon Nov 27 19:07:11 2006 [WRN] Generic error in connection/blocksock
Tue Nov 28 20:02:16 2006 [WRN] Generic error in connection/blocksock
Wed Nov 29 18:10:42 2006 [WRN] Generic error in connection/blocksock
Wed Nov 29 18:30:12 2006 [ERR] Generic exception caught
Wed Nov 29 18:49:45 2006 [WRN] Generic error in connection/blocksock
Fri Dec 01 20:09:27 2006 [WRN] Generic error in connection/blocksock
Fri Dec 01 20:23:48 2006 [WRN] Generic error in connection/blocksock
Sat Dec 02 16:21:18 2006 [WRN] Generic error in connection/blocksock
Sun Dec 03 14:49:27 2006 [WRN] Generic error in connection/blocksock
Sun Dec 03 19:30:45 2006 [WRN] Generic error in connection/blocksock
Mon Dec 04 20:09:14 2006 [WRN] Generic error in connection/blocksock
Tue Dec 05 15:54:50 2006 [WRN] Generic error in connection/blocksock
Tue Dec 05 19:05:41 2006 [ERR] Generic exception caught
Tue Dec 05 20:17:30 2006 [WRN] Generic error in connection/blocksock
Wed Dec 06 12:07:05 2006 [WRN] Generic error in connection/blocksock
Wed Dec 06 22:41:13 2006 [WRN] Generic error in connection/blocksock
Thu Dec 07 19:06:35 2006 [WRN] Generic error in connection/blocksock
Thu Dec 07 22:25:00 2006 [WRN] Generic error in connection/blocksock
Fri Dec 08 19:37:01 2006 [WRN] Generic error in connection/blocksock
Fri Dec 08 23:45:11 2006 [WRN] Generic error in connection/blocksock
Sat Dec 09 21:12:43 2006 [WRN] Generic error in connection/blocksock
Sat Dec 09 21:22:05 2006 [WRN] Generic error in connection/blocksock
Sun Dec 10 02:11:32 2006 [WRN] Generic error in connection/blocksock
Sun Dec 10 15:01:09 2006 [WRN] Generic error in connection/blocksock
Mon Dec 11 20:12:44 2006 [WRN] Generic error in connection/blocksock
Tue Dec 12 20:48:42 2006 [WRN] Generic error in connection/blocksock
Wed Dec 13 13:51:24 2006 [WRN] Generic error in connection/blocksock
Wed Dec 13 14:09:39 2006 [WRN] Generic error in connection/blocksock
Wed Dec 13 15:40:28 2006 [ERR] Generic exception caught
Sat Dec 16 12:56:09 2006 [WRN] Generic error in connection/blocksock
Sun Dec 17 12:58:25 2006 [WRN] Generic error in connection/blocksock
Mon Dec 18 17:54:54 2006 [WRN] Generic error in connection/blocksock
Mon Dec 18 18:27:58 2006 [WRN] Generic error in connection/blocksock
Mon Dec 18 19:07:39 2006 [WRN] Generic error in connection/blocksock
Mon Dec 18 19:10:00 2006 [WRN] Generic error in connection/blocksock
Mon Dec 18 19:53:25 2006 [ERR] Generic exception caught
Mon Dec 18 20:03:32 2006 [WRN] Generic error in connection/blocksock
Tue Dec 19 20:18:04 2006 [WRN] Generic error in connection/blocksock
Wed Dec 20 22:10:12 2006 [WRN] Generic error in connection/blocksock
Fri Dec 22 17:00:16 2006 [WRN] Generic error in connection/blocksock
Fri Dec 22 20:51:08 2006 [WRN] Generic error in connection/blocksock
Fri Dec 22 21:24:03 2006 [ERR] Generic exception caught
Fri Dec 22 21:43:12 2006 [WRN] Generic error in connection/blocksock
Sat Dec 23 12:02:49 2006 [WRN] Generic error in connection/blocksock
Sat Dec 23 20:02:47 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 02:49:30 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 03:02:52 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 14:51:44 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 20:50:32 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 22:27:38 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 22:29:59 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 22:35:01 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 22:37:22 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 22:44:18 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 22:51:10 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:01:02 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:09:40 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:16:32 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:20:54 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:23:15 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:30:07 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:34:28 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:36:49 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:45:09 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:51:29 2006 [WRN] Generic error in connection/blocksock
Mon Dec 25 23:53:50 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 00:00:46 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 00:07:47 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 00:13:50 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 00:16:11 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 00:24:58 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 00:30:50 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 00:33:11 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 00:38:36 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 00:40:57 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 19:37:33 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 19:59:01 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 23:28:22 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 23:34:00 2006 [WRN] Generic error in connection/blocksock
Tue Dec 26 23:52:41 2006 [WRN] Error accessing config files
Wed Dec 27 00:26:18 2006 [WRN] Generic error in connection/blocksock
Wed Dec 27 16:38:09 2006 [WRN] Generic error in connection/blocksock
Wed Dec 27 20:55:19 2006 [WRN] Generic error in connection/blocksock
Wed Dec 27 21:00:14 2006 [WRN] Generic error in connection/blocksock
Thu Dec 28 02:02:59 2006 [WRN] Generic error in connection/blocksock
Thu Dec 28 02:09:50 2006 [WRN] Generic error in connection/blocksock
Thu Dec 28 02:16:42 2006 [WRN] Generic error in connection/blocksock
Fri Dec 29 13:43:20 2006 [WRN] Generic error in connection/blocksock
Fri Dec 29 14:09:55 2006 [WRN] Error accessing config files
Fri Dec 29 20:41:29 2006 [WRN] Generic error in connection/blocksock
Sat Dec 30 16:30:34 2006 [WRN] Generic error in connection/blocksock
Sat Dec 30 17:44:25 2006 [WRN] Generic error in connection/blocksock
Sat Dec 30 18:38:15 2006 [WRN] Generic error in connection/blocksock
Sat Dec 30 20:16:05 2006 [WRN] Error accessing config files
Sat Dec 30 20:34:27 2006 [WRN] Generic error in connection/blocksock
Mon Jan 01 15:26:39 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 15:31:58 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 15:34:19 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 15:41:58 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 15:50:25 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 15:58:04 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:05:05 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:11:58 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:19:05 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:23:30 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:25:51 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:30:13 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:32:34 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:37:37 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:39:58 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:44:58 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:47:21 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:51:43 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:54:04 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 16:59:00 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:01:21 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:05:43 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:08:04 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:12:29 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:14:50 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:20:12 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:22:33 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:30:15 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:35:56 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:38:21 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:42:43 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:45:04 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:52:08 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 17:59:19 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:07:02 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:13:55 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:20:53 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:26:04 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:28:25 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:32:47 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:35:08 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:39:30 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:41:51 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:48:52 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:53:14 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 18:55:35 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:01:19 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:03:40 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:08:01 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:10:22 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:14:44 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:17:05 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:24:06 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:32:13 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:36:34 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:38:55 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:43:17 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:45:38 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:50:00 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:52:21 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:56:42 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 19:59:03 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 20:03:25 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 20:05:46 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 20:12:41 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 20:21:18 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 20:28:22 2007 [WRN] Generic error in connection/blocksock
Mon Jan 01 20:35:37 2007 [ERR] Error connecting to the license server
Mon Jan 01 20:35:37 2007 [ERR] Error connecting to the license server
Tue Jan 02 17:47:01 2007 [WRN] Generic error in connection/blocksock
Tue Jan 02 21:07:06 2007 [WRN] Generic error in connection/blocksock
Wed Jan 03 18:40:34 2007 [WRN] Generic error in connection/blocksock
Thu Jan 04 18:48:40 2007 [WRN] Generic error in connection/blocksock
Fri Jan 05 22:59:20 2007 [WRN] Generic error in connection/blocksock
Sat Jan 06 23:39:02 2007 [WRN] Generic error in connection/blocksock
Mon Jan 08 17:36:37 2007 [WRN] Generic error in connection/blocksock
Mon Jan 08 18:10:43 2007 [WRN] Generic error in connection/blocksock
Tue Jan 09 21:06:07 2007 [WRN] Generic error in connection/blocksock
Wed Jan 10 12:57:25 2007 [WRN] Generic error in connection/blocksock
Wed Jan 10 14:25:11 2007 [ERR] Generic exception caught
Fri Jan 12 19:51:19 2007 [WRN] Generic error in connection/blocksock
Fri Jan 12 20:27:40 2007 [WRN] Generic error in connection/blocksock
Sat Jan 13 21:40:50 2007 [WRN] Generic error in connection/blocksock
Sat Jan 13 21:57:59 2007 [WRN] Generic error in connection/blocksock
Sat Jan 13 22:00:20 2007 [WRN] Generic error in connection/blocksock
Sat Jan 13 22:02:41 2007 [WRN] Generic error in connection/blocksock
Sat Jan 13 22:04:16 2007 [ERR] Generic exception caught
Sun Jan 14 00:32:41 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 00:37:03 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 00:39:24 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 00:41:26 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 00:43:47 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 00:46:08 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 00:50:29 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 00:52:50 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 00:57:12 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 00:59:33 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:03:54 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:06:15 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:10:37 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:12:58 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:17:19 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:19:40 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:24:02 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:26:23 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:30:44 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:33:05 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:37:27 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:39:48 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:44:10 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:46:31 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:50:52 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:53:14 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:57:36 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 01:59:57 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:04:18 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:06:39 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:11:01 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:13:22 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:17:44 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:20:05 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:24:26 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:26:47 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:31:09 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:33:30 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:37:51 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:40:12 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:44:34 2007 [WRN] Generic error in connection/blocksock
Sun Jan 14 02:46:55 2007 [WRN] Generic error in connection/blocksock
Tue Jan 16 17:56:31 2007 [WRN] Generic error in connection/blocksock
Wed Jan 17 16:32:42 2007 [WRN] Generic error in connection/blocksock
Wed Jan 17 16:37:36 2007 [WRN] Generic error in connection/blocksock
Wed Jan 17 16:39:57 2007 [WRN] Generic error in connection/blocksock
Wed Jan 17 16:42:18 2007 [WRN] Generic error in connection/blocksock
Wed Jan 17 16:48:38 2007 [ERR] Generic exception caught
Thu Jan 18 18:06:31 2007 [WRN] Generic error in connection/blocksock
Thu Jan 18 18:10:55 2007 [WRN] Generic error in connection/blocksock
Thu Jan 18 18:13:17 2007 [WRN] Generic error in connection/blocksock
Thu Jan 18 18:17:38 2007 [WRN] Generic error in connection/blocksock
Thu Jan 18 18:19:57 2007 [WRN] Generic error in connection/blocksock
Sat Jan 20 14:19:14 2007 [WRN] Generic error in connection/blocksock
Sat Jan 20 14:29:11 2007 [WRN] Generic error in connection/blocksock
Sat Jan 20 18:55:58 2007 [WRN] Generic error in connection/blocksock
Sun Jan 21 16:12:51 2007 [WRN] Generic error in connection/blocksock
Sun Jan 21 18:22:20 2007 [WRN] Generic error in connection/blocksock
Sun Jan 21 18:24:41 2007 [WRN] Generic error in connection/blocksock
Sun Jan 21 18:27:02 2007 [WRN] Generic error in connection/blocksock
Sun Jan 21 18:51:00 2007 [ERR] Generic exception caught
Sun Jan 21 19:18:26 2007 [WRN] Generic error in connection/blocksock
Sun Jan 21 19:21:55 2007 [WRN] Generic error in connection/blocksock
Sun Jan 21 19:24:16 2007 [WRN] Generic error in connection/blocksock
Sun Jan 21 19:26:38 2007 [WRN] Generic error in connection/blocksock
Sun Jan 21 19:39:23 2007 [ERR] Generic exception caught
Mon Jan 22 19:58:27 2007 [WRN] Generic error in connection/blocksock
Mon Jan 22 20:52:41 2007 [WRN] Generic error in connection/blocksock
Tue Jan 23 18:25:58 2007 [WRN] Generic error in connection/blocksock
Tue Jan 23 19:08:24 2007 [ERR] Generic exception caught
Wed Jan 24 13:39:32 2007 [WRN] Generic error in connection/blocksock
Wed Jan 24 14:53:16 2007 [ERR] Generic exception caught
Thu Jan 25 19:54:09 2007 [WRN] Generic error in connection/blocksock
Thu Jan 25 21:17:50 2007 [WRN] Generic error in connection/blocksock
Thu Jan 25 21:45:09 2007 [WRN] Generic error in connection/blocksock
Fri Jan 26 07:28:22 2007 [WRN] Generic error in connection/blocksock
Fri Jan 26 07:34:29 2007 [WRN] Generic error in connection/blocksock
Fri Jan 26 19:26:23 2007 [WRN] Generic error in connection/blocksock
Fri Jan 26 20:32:11 2007 [ERR] Generic exception caught
Fri Jan 26 21:36:17 2007 [WRN] Generic error in connection/blocksock
Sat Jan 27 18:47:14 2007 [WRN] Generic error in connection/blocksock
Sat Jan 27 19:27:06 2007 [ERR] Generic exception caught
Sat Jan 27 19:39:30 2007 [WRN] Generic error in connection/blocksock
Sun Jan 28 03:16:11 2007 [WRN] Generic error in connection/blocksock
Sun Jan 28 12:16:28 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 17:39:40 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 19:39:50 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 20:21:38 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 20:23:59 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 20:26:20 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 20:28:21 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 20:30:52 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 20:33:13 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 20:35:17 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 20:37:38 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 20:39:59 2007 [WRN] Generic error in connection/blocksock
Mon Jan 29 20:50:57 2007 [WRN] Generic error in connection/blocksock
Tue Jan 30 19:27:56 2007 [WRN] Generic error in connection/blocksock
Wed Jan 31 12:49:21 2007 [WRN] Generic error in connection/blocksock
Wed Jan 31 12:58:06 2007 [WRN] Generic error in connection/blocksock
Wed Jan 31 16:04:47 2007 [WRN] Generic error in connection/blocksock
Wed Jan 31 16:10:09 2007 [WRN] Generic error in connection/blocksock
Wed Jan 31 16:12:30 2007 [WRN] Generic error in connection/blocksock
Wed Jan 31 18:23:16 2007 [ERR] Generic exception caught
Wed Jan 31 18:31:33 2007 [WRN] Error accessing config files
Wed Jan 31 18:42:27 2007 [WRN] Generic error in connection/blocksock
Wed Jan 31 19:15:34 2007 [WRN] Generic error in connection/blocksock
Wed Jan 31 19:26:42 2007 [WRN] Generic error in connection/blocksock
Wed Jan 31 19:45:28 2007 [WRN] Generic error in connection/blocksock
Wed Jan 31 19:57:09 2007 [WRN] Generic error in connection/blocksock
Thu Feb 01 17:28:38 2007 [WRN] Generic error in connection/blocksock
Thu Feb 01 18:18:04 2007 [ERR] Generic exception caught
Thu Feb 01 18:32:00 2007 [WRN] Generic error in connection/blocksock
Thu Feb 01 19:15:17 2007 [WRN] Generic error in connection/blocksock
Fri Feb 02 16:23:54 2007 [WRN] Generic error in connection/blocksock
Fri Feb 02 17:07:10 2007 [ERR] Generic exception caught
Fri Feb 02 17:23:17 2007 [WRN] Generic error in connection/blocksock
Fri Feb 02 18:09:49 2007 [ERR] Generic exception caught
Fri Feb 02 18:46:04 2007 [WRN] Generic error in connection/blocksock
Sat Feb 03 12:31:14 2007 [ERR] Generic exception caught
Sat Feb 03 13:14:01 2007 [WRN] Generic error in connection/blocksock
Sat Feb 03 17:53:23 2007 [WRN] Generic error in connection/blocksock
Sun Feb 04 13:51:36 2007 [WRN] Generic error in connection/blocksock
Sun Feb 04 16:30:54 2007 [WRN] Error accessing config files
Sun Feb 04 16:30:54 2007 [WRN] Updating of config files failed
Sun Feb 04 16:56:21 2007 [WRN] Generic error in connection/blocksock
Sun Feb 04 18:13:00 2007 [ERR] Generic exception caught
Sun Feb 04 18:23:43 2007 [WRN] Generic error in connection/blocksock
Mon Feb 05 21:05:49 2007 [WRN] Generic error in connection/blocksock
Mon Feb 05 21:09:38 2007 [ERR] Generic exception caught
Mon Feb 05 21:50:48 2007 [WRN] Generic error in connection/blocksock
Tue Feb 06 16:26:49 2007 [WRN] Generic error in connection/blocksock
Tue Feb 06 18:06:06 2007 [WRN] Generic error in connection/blocksock
Tue Feb 06 23:31:07 2007 [WRN] Generic error in connection/blocksock
Wed Feb 07 02:55:41 2007 [ERR] Generic exception caught
Wed Feb 07 14:06:48 2007 [WRN] Generic error in connection/blocksock
Wed Feb 07 15:12:06 2007 [ERR] Generic exception caught
Wed Feb 07 20:40:09 2007 [WRN] Generic error in connection/blocksock
Thu Feb 08 00:20:20 2007 [ERR] Generic exception caught
Thu Feb 08 19:36:55 2007 [WRN] Generic error in connection/blocksock
Fri Feb 09 00:49:24 2007 [WRN] Generic error in connection/blocksock
Fri Feb 09 16:40:43 2007 [WRN] Generic error in connection/blocksock
Fri Feb 09 18:02:50 2007 [ERR] Generic exception caught
Fri Feb 09 18:21:22 2007 [WRN] Generic error in connection/blocksock
Fri Feb 09 18:34:38 2007 [WRN] Generic error in connection/blocksock
Fri Feb 09 18:37:02 2007 [WRN] Generic error in connection/blocksock
Sat Feb 10 11:58:50 2007 [WRN] Generic error in connection/blocksock
Sat Feb 10 22:44:36 2007 [WRN] Generic error in connection/blocksock
Sun Feb 11 15:36:25 2007 [WRN] Generic error in connection/blocksock
Sun Feb 11 18:55:51 2007 [ERR] Generic exception caught
Sun Feb 11 21:48:03 2007 [WRN] Generic error in connection/blocksock
Mon Feb 12 01:16:34 2007 [WRN] Generic error in connection/blocksock
Mon Feb 12 01:23:45 2007 [WRN] Generic error in connection/blocksock
Mon Feb 12 01:46:58 2007 [ERR] Generic exception caught
Mon Feb 12 19:45:48 2007 [WRN] Generic error in connection/blocksock
Mon Feb 12 19:55:15 2007 [ERR] Generic exception caught
Mon Feb 12 20:42:10 2007 [WRN] Generic error in connection/blocksock
Mon Feb 12 22:37:39 2007 [ERR] Generic exception caught
Mon Feb 12 22:46:43 2007 [WRN] Generic error in connection/blocksock
Tue Feb 13 09:21:04 2007 [WRN] Generic error in connection/blocksock
Tue Feb 13 17:33:13 2007 [WRN] Generic error in connection/blocksock
Tue Feb 13 21:34:54 2007 [WRN] Generic error in connection/blocksock
Tue Feb 13 21:59:59 2007 [ERR] Generic exception caught
Tue Feb 13 22:31:00 2007 [WRN] Generic error in connection/blocksock
Tue Feb 13 22:41:31 2007 [ERR] Generic exception caught
Tue Feb 13 22:53:00 2007 [WRN] Generic error in connection/blocksock
Wed Feb 14 13:23:32 2007 [WRN] Generic error in connection/blocksock
Wed Feb 14 17:28:30 2007 [WRN] Generic error in connection/blocksock
Wed Feb 14 17:37:05 2007 [ERR] Generic exception caught
Wed Feb 14 17:47:44 2007 [WRN] Generic error in connection/blocksock
Wed Feb 14 18:37:33 2007 [WRN] Generic error in connection/blocksock
Thu Feb 15 17:41:01 2007 [WRN] Generic error in connection/blocksock
Thu Feb 15 20:01:51 2007 [WRN] Generic error in connection/blocksock
Fri Feb 16 15:37:43 2007 [WRN] Generic error in connection/blocksock
Fri Feb 16 19:39:15 2007 [WRN] Generic error in connection/blocksock
Fri Feb 16 20:33:11 2007 [WRN] Generic error in connection/blocksock
Fri Feb 16 21:26:00 2007 [WRN] Generic error in connection/blocksock
Sat Feb 17 13:54:22 2007 [WRN] Generic error in connection/blocksock
Sun Feb 18 11:49:36 2007 [WRN] Generic error in connection/blocksock
Sun Feb 18 13:12:47 2007 [WRN] Generic error in connection/blocksock
Sun Feb 18 13:15:08 2007 [WRN] Generic error in connection/blocksock
Sun Feb 18 13:17:29 2007 [WRN] Generic error in connection/blocksock
Sun Feb 18 14:16:28 2007 [WRN] Generic error in connection/blocksock
Sun Feb 18 15:05:53 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:08:22 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:10:45 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:13:06 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:15:28 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:17:49 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:20:11 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:22:32 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:24:54 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:27:15 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:29:39 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:32:13 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:34:40 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:37:02 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:39:23 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:41:44 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:44:05 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:46:26 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:48:49 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:51:15 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:53:37 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:55:59 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 14:58:20 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:00:41 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:03:02 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:05:24 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:07:54 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:10:15 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:12:36 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:15:04 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:17:42 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:20:11 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:22:44 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:25:05 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:27:27 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:29:48 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:32:10 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:34:32 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:36:53 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:39:15 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:41:37 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:43:59 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:46:24 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:48:46 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:51:07 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:53:29 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:55:50 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 15:58:11 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 16:00:33 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 16:02:54 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 16:22:25 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 16:29:32 2007 [ERR] Generic exception caught
Mon Feb 19 17:30:56 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 17:57:34 2007 [WRN] Generic error in connection/blocksock
Mon Feb 19 19:47:29 2007 [ERR] Generic exception caught
Mon Feb 19 20:07:57 2007 [WRN] Generic error in connection/blocksock
Tue Feb 20 12:20:21 2007 [WRN] Generic error in connection/blocksock
Tue Feb 20 22:23:35 2007 [WRN] Generic error in connection/blocksock
Wed Feb 21 13:11:39 2007 [WRN] Generic error in connection/blocksock
Wed Feb 21 19:46:22 2007 [WRN] Generic error in connection/blocksock
Wed Feb 21 22:26:04 2007 [WRN] Generic error in connection/blocksock
Wed Feb 21 22:30:03 2007 [ERR] Generic exception caught
Wed Feb 21 22:42:00 2007 [WRN] Generic error in connection/blocksock
Wed Feb 21 23:47:54 2007 [ERR] Generic exception caught
Wed Feb 21 23:55:53 2007 [WRN] Generic error in connection/blocksock
Thu Feb 22 15:29:29 2007 [WRN] Generic error in connection/blocksock
Thu Feb 22 19:49:16 2007 [WRN] Generic error in connection/blocksock
Thu Feb 22 19:52:40 2007 [WRN] Generic error in connection/blocksock
Thu Feb 22 20:04:03 2007 [WRN] Generic error in connection/blocksock
Thu Feb 22 20:45:25 2007 [ERR] Generic exception caught
Thu Feb 22 20:53:53 2007 [ERR] Error connecting to the license server
Thu Feb 22 20:54:11 2007 [WRN] Generic error in connection/blocksock
Fri Feb 23 01:08:30 2007 [WRN] Generic error in connection/blocksock
Fri Feb 23 14:24:25 2007 [WRN] Generic error in connection/blocksock
Fri Feb 23 15:54:21 2007 [WRN] Generic error in connection/blocksock
Fri Feb 23 22:11:22 2007 [WRN] Generic error in connection/blocksock
Fri Feb 23 22:15:51 2007 [WRN] Generic error in connection/blocksock
Fri Feb 23 23:06:42 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 17:22:07 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 17:33:13 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 17:38:04 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 18:06:28 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 18:09:04 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 18:11:33 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 18:51:57 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 18:56:52 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 19:43:47 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 19:45:48 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 19:48:10 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 20:00:17 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 20:02:39 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 20:04:53 2007 [WRN] Generic error in connection/blocksock
Sat Feb 24 23:45:58 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 13:31:58 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 13:36:33 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 13:41:27 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 13:49:31 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 13:51:52 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 13:54:13 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 14:09:16 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 14:11:17 2007 [ERR] Generic exception caught
Sun Feb 25 14:22:15 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 15:18:38 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 15:23:29 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 15:29:20 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 15:31:41 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 15:34:02 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 15:59:35 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:01:56 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:04:17 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:08:22 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:10:43 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:13:04 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:16:02 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:18:23 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:20:44 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:28:05 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:30:26 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:32:47 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:40:40 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:43:01 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:45:22 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:50:49 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:53:10 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:55:31 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 16:57:56 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:00:17 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:02:38 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:07:12 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:09:33 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:11:54 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:15:30 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:17:51 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:20:13 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:23:14 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:28:05 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:31:10 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:33:31 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:35:52 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:39:59 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:42:20 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:44:41 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:47:37 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:49:58 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 17:52:19 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:01:34 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:03:55 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:06:16 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:12:01 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:14:23 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:16:44 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:21:27 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:23:48 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:26:09 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:28:30 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:30:52 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:33:13 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:37:29 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:39:50 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:42:11 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:47:37 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:49:58 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:52:19 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:54:40 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:57:01 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 18:59:22 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:01:43 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:04:04 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:06:26 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:08:33 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:14:55 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:17:16 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:19:38 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:21:59 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:26:14 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:28:36 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:30:57 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:34:47 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:37:08 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:39:29 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:41:59 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:44:20 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:46:42 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:49:12 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:51:42 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:54:03 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:57:19 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 19:59:43 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:02:05 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:05:06 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:07:27 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:09:49 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:16:50 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:19:11 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:21:32 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:24:40 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:27:01 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:29:22 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:33:44 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:36:05 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:38:27 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:43:10 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:45:31 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:47:52 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:50:13 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:52:34 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:54:55 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:57:17 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 20:59:40 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 21:02:01 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 21:04:22 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 21:06:44 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 21:09:05 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 21:16:01 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 21:18:23 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 21:20:44 2007 [WRN] Generic error in connection/blocksock
Sun Feb 25 21:29:52 2007 [WR

répondre

Vani1408 le 07 avril 2007 à 01h19

Mais voilà ce qu'il me dit aussi :

Preparing Log Report.
This takes a while. So, please be patient
Le fichier spécifié est introuvable.

Almost done . . .
A report of ComboFix's actions would be produced at C:\ComboFix.txt
'13712.cfexe' n'est pas reconnu en tant que commande interne
ou externe, un programme exécutable ou un fichier de commandes.

répondre

Anthony10 le 07 avril 2007 à 20h57

Bonjour Vani1408,

Il ne s'agit pas du bon rapport mais nous allons procéder autrement.

Télécharge Silent Runners sur ton Bureau.

Double-clique sur SilentRunners.vbs pour lancer le script.

A la fenêtre de demande de recherches supplémentaires, clique sur Oui.

Un rapport sera généré sur ton Bureau nommé Startup Programs.txt

Dans ta future réponse, envoie ce rapport.

A suivre,

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 08 avril 2007 à 14h11

Bonjour,
en cliquant sur le lien proposé j'arrive sur une page script et aucun téléchargement.

Après l'utilisation de COMBIX un exécutable nommé "catch me" s'est installé sur mon bureau et impossible de le supprimer.

répondre

Anthony10 le 08 avril 2007 à 22h16

Bonsoir Vani1408,

Afin de télécharger correctement Silent Runners, clique droit sur le lien suivant et "Enregistrer la cible du lien sous" ou "Enregistrer sous..." :
http://www.silentrunners.org/Silent%20Runners.vbs

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 09 avril 2007 à 15h37

Voici le rapport :

"Silent Runners.vbs", revision R50, http://www.silentrunners.org/
Operating System: Windows XP SP2
Output limited to non-default values, except where indicated by "{++}"

Startup items buried in registry:
---------------------------------

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"CTFMON.EXE" = "C:\WINDOWS\system32\ctfmon.exe" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"KeyBoard" = "C:\PROGRA~1\Labtec\LABTEC~1\Keyboard.exe" [null data]
"BDMCon" = "C:\progra~1\softwin\bitdef~1\bdmcon.exe" ["SOFTWIN S.R.L."]
"BDOESRV" = "C:\Program Files\Softwin\BitDefender8\\bdoesrv.exe" ["SOFTWIN SRL"]
"HP Software Update" = "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" ["Hewlett-Packard Development Company, L.P."]
"InCD" = "C:\Program Files\Ahead\InCD\InCD.exe" ["Nero AG"]
"Wizard" = "(empty string)" [file not found]
"avast!" = "C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [null data]
"TkBellExe" = ""C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot" ["RealNetworks, Inc."]
"!AVG Anti-Spyware" = ""C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized" ["Anti-Malware Development a.s."]

HKLM\Software\Microsoft\Active Setup\Installed Components\
{8b15971b-5355-4c82-8c07-7e181ea07608}\(Default) = "Fax"
\StubPath = "rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.UnInstall.PerUser" [MS]
{94de52c8-2d59-4f1b-883e-79663d2d9a8c}\(Default) = "Fax Provider"
\StubPath = "rundll32.exe C:\WINDOWS\System32\Setup\FxsOcm.dll,XP_UninstallProvider" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = (no title provided)
-> {HKLM...CLSID} = "AcroIEHlprObj Class"
\InProcServer32\(Default) = "C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx" [empty string]
{53707962-6F74-2D53-2644-206D7942484F}\(Default) = (no title provided)
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\PROGRA~1\SPYBOT~1\SDHelper.dll" ["Safer Networking Limited"]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\(Default) = (no title provided)
-> {HKLM...CLSID} = "SSVHelper Class"
\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll" ["Sun Microsystems, Inc."]
{9030D464-4C02-4ABF-8ECC-5164760863C6}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Windows Live Sign-in Helper"
\InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll" [MS]
{9394EDE7-C8B5-483E-8773-474BF36AF6E4}\(Default) = (no title provided)
-> {HKLM...CLSID} = "ST"
\InProcServer32\(Default) = "C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll" [MS]
{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}\(Default) = (no title provided)
-> {HKLM...CLSID} = "MSNToolBandBHO"
\InProcServer32\(Default) = "C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Extension Affichage Panorama du Panneau de configuration"
-> {HKLM...CLSID} = "Extension Affichage Panorama du Panneau de configuration"
\InProcServer32\(Default) = "deskpan.dll" [file not found]
"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Extension icône HyperTerminal"
-> {HKLM...CLSID} = "HyperTerminal Icon Ext"
\InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."]
"{950FF917-7A57-46BC-8017-59D9BF474000}" = "Shell Extension for CDRW"
-> {HKLM...CLSID} = "Shell Extension for CDRW"
\InProcServer32\(Default) = "C:\Program Files\Ahead\InCD\incdshx.dll" ["Nero AG"]
"{C56C4E21-706D-11d0-AFC5-444553540002}" = "Mon appareil photo numérique"
-> {HKLM...CLSID} = "Mon appareil photo numérique"
\InProcServer32\(Default) = "C:\Program Files\PhotoDeluxe HE 3.1\FotoNation Explorer\camview.dll" ["FotoNation Inc."]
"{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4}" = "Shell Extensions for RealOne Player"
-> {HKLM...CLSID} = "RealOne Player Context Menu Class"
\InProcServer32\(Default) = "C:\Program Files\Real\RealPlayer\rpshell.dll" ["RealNetworks, Inc."]
"{400CFEE2-39D0-46DC-96DF-E0BB5A4324B3}" = "My Logitech Pictures"
-> {HKLM...CLSID} = "My Logitech Pictures"
\InProcServer32\(Default) = "C:\Program Files\Logitech\Video\Namespc2.dll" ["Logitech Inc."]
"{A5110426-177D-4e08-AB3F-785F10B4439C}" = "Mes téléphones"
-> {HKLM...CLSID} = "Mes téléphones"
\InProcServer32\(Default) = "C:\Program Files\Sony Ericsson\Mobile\File Manager\fmgrgui.dll" ["Sony Ericsson Mobile Communications AB"]
"{D653647D-D607-4DF6-A5B8-48D2BA195F7B}" = "BitDefender Antivirus v8"
-> {HKLM...CLSID} = "BitDefender Antivirus v8"
\InProcServer32\(Default) = "C:\Program Files\Softwin\BitDefender8\bdshelxt.dll" ["SOFTWIN S.R.L."]
"{0006F045-0000-0000-C000-000000000046}" = "Microsoft Outlook Custom Icon Handler"
-> {HKLM...CLSID} = "Outlook File Icon Extension"
\InProcServer32\(Default) = "C:\Program Files\Microsoft Office\Office10\OLKFSTUB.DLL" [MS]
"{42042206-2D85-11D3-8CFF-005004838597}" = "Microsoft Office HTML Icon Handler"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\Program Files\Microsoft Office\Office10\msohev.dll" [MS]
"{FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D}" = "Messenger Sharing Folders"
-> {HKLM...CLSID} = "Mes dossiers de partage"
\InProcServer32\(Default) = "C:\Program Files\MSN Messenger\fsshext.8.1.0178.00.dll" [MS]
"{cc86590a-b60a-48e6-996b-41d25ed39a1e}" = "Portable Media Devices Menu"
-> {HKLM...CLSID} = "Portable Media Devices Menu"
\InProcServer32\(Default) = "C:\WINDOWS\system32\Audiodev.dll" [MS]
"{604C5810-D0CC-11D2-955F-00C04F79ED8A}" = "CIEL SA In-File System"
-> {HKLM...CLSID} = "CIEL SA In-File System"
\InProcServer32\(Default) = "C:\WINDOWS\system32\ifsrel.dll" ["CIEL SA"]
"{472083B0-C522-11CF-8763-00608CC02F24}" = "avast"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\
<<!>> "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}" = "AVG Anti-Spyware 7.5"
-> {HKLM...CLSID} = "CShellExecuteHookImpl Object"
\InProcServer32\(Default) = "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll" ["Anti-Malware Development a.s."]

HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\
"WPDShServiceObj" = "{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
-> {HKLM...CLSID} = "WPDShServiceObj Class"
\InProcServer32\(Default) = "C:\WINDOWS\system32\WPDShServiceObj.dll" [MS]

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\
<<!>> "AppInit_DLLs" = "x?sockspy.dll sockspy.dll sockspy.dll sockspy.dll" [file not found]

HKLM\Software\Classes\*\shellex\ContextMenuHandlers\
avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]
AVG Anti-Spyware\(Default) = "{8934FCEF-F5B8-468f-951F-78A921CD3920}"
-> {HKLM...CLSID} = "CContextScan Object"
\InProcServer32\(Default) = "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll" ["Anti-Malware Development a.s."]
BitDefender Antivirus v8\(Default) = "{D653647D-D607-4DF6-A5B8-48D2BA195F7B}"
-> {HKLM...CLSID} = "BitDefender Antivirus v8"
\InProcServer32\(Default) = "C:\Program Files\Softwin\BitDefender8\bdshelxt.dll" ["SOFTWIN S.R.L."]

HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\
AVG Anti-Spyware\(Default) = "{8934FCEF-F5B8-468f-951F-78A921CD3920}"
-> {HKLM...CLSID} = "CContextScan Object"
\InProcServer32\(Default) = "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll" ["Anti-Malware Development a.s."]

HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\
avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]
BitDefender Antivirus v8\(Default) = "{D653647D-D607-4DF6-A5B8-48D2BA195F7B}"
-> {HKLM...CLSID} = "BitDefender Antivirus v8"
\InProcServer32\(Default) = "C:\Program Files\Softwin\BitDefender8\bdshelxt.dll" ["SOFTWIN S.R.L."]

Group Policies {policy setting}:
--------------------------------

Note: detected settings may not have any effect.

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System\

"DisableRegistryTools" = (REG_DWORD) hex:0x00000000
{Prevent access to registry editing tools}

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\

"shutdownwithoutlogon" = (REG_DWORD) hex:0x00000001
{Shutdown: Allow system to be shut down without having to log on}

"undockwithoutlogon" = (REG_DWORD) hex:0x00000001
{Devices: Allow undock without having to log on}

Active Desktop and Wallpaper:
-----------------------------

Active Desktop may be enabled at this entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

Displayed if Active Desktop enabled and wallpaper not set by Group Policy:
HKCU\Software\Microsoft\Internet Explorer\Desktop\General\
"Wallpaper" = "C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft\Wallpaper1.bmp"

Displayed if Active Desktop disabled and wallpaper not set by Group Policy:
HKCU\Control Panel\Desktop\
"Wallpaper" = "C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Wallpaper1.bmp"

Active Desktop web content (hidden if disabled):

HKCU\Software\Microsoft\Internet Explorer\Desktop\Components\0\
"FriendlyName" = ""
"Source" = "file:///C:/DOCUME~1/Vanina/LOCALS~1/Temp/msohtml1/02/clip_image002.jpg"
"SubscribedURL" = "file:///C:/DOCUME~1/Vanina/LOCALS~1/Temp/msohtml1/02/clip_image002.jpg"

HKCU\Software\Microsoft\Internet Explorer\Desktop\Components\1\
"FriendlyName" = ""
"Source" = "file:///C:/DOCUME~1/Vanina/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg"
"SubscribedURL" = "file:///C:/DOCUME~1/Vanina/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg"

Enabled Screen Saver:
---------------------

HKCU\Control Panel\Desktop\
"SCRNSAVE.EXE" = "C:\WINDOWS\ENTERT~1.SCR" (EnterTheMatrix.scr) [null data]

Startup items in "Vanina" & "All Users" startup folders:
--------------------------------------------------------

C:\Documents and Settings\Vanina\Menu Démarrer\Programmes\Démarrage
"Easy Notification" -> shortcut to: "C:\Program Files\Easy Notification 2.0\EasyNoti.exe" ["Erik Fournier"]
"La Solution Plus Enseignement Ciel" -> shortcut to: "C:\CIEL\STARTER.EXE" [empty string]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
"DSLMON" -> shortcut to: "C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe" [empty string]

Enabled Scheduled Tasks:
------------------------

"Recherche de virus de McAfee.com - Mon ordinateur (MONPOTE-Vanina)" -> launches: "c:\program files\mcafee.com\vso\mcmnhdlr.exe /runtask:0" [file not found]
"Spybot - Search & Destroy - Scheduled Task" -> launches: "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe /AUTOCHECK" ["Safer Networking Limited"]

Winsock2 Service Provider DLLs:
-------------------------------

Namespace Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}
000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]
000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000004\LibraryPath = "%SystemRoot%\system32\wshbth.dll" [MS]

Transport Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}
0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:
%SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 32
%SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05

Toolbars, Explorer Bars, Extensions:
------------------------------------

Toolbars

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\
"{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}"
-> {HKLM...CLSID} = "MSN"
\InProcServer32\(Default) = "C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll" [MS]

HKLM\Software\Microsoft\Internet Explorer\Toolbar\
"{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" = "0"
-> {HKLM...CLSID} = "MSN"
\InProcServer32\(Default) = "C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll" [MS]

Explorer Bars

HKLM\Software\Microsoft\Internet Explorer\Explorer Bars\
{FE54FA40-D68C-11D2-98FA-00C0F0318AFE}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Real.com"
\InProcServer32\(Default) = "C:\WINDOWS\System32\Shdocvw.dll" [MS]

Extensions (Tools menu items, main toolbar menu buttons)

HKLM\Software\Microsoft\Internet Explorer\Extensions\
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\
"MenuText" = "Console Java (Sun)"
"CLSIDExtension" = "{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}"
-> {HKCU...CLSID} = "Java Plug-in 1.5.0_11"
\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll" ["Sun Microsystems, Inc."]
-> {HKLM...CLSID} = "Java Plug-in 1.5.0_11"
\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_11\bin\npjpi150_11.dll" ["Sun Microsystems, Inc."]

{85D1F590-48F4-11D9-9669-0800200C9A66}\
"MenuText" = "Uninstall BitDefender Online Scanner v8"
"Exec" = "%windir%\bdoscandel.exe" [null data]

Miscellaneous IE Hijack Points
------------------------------

C:\WINDOWS\INF\IERESET.INF (used to "Reset Web Settings")

Added lines (compared with English-language version):
[Strings]: SAFESITE_VALUE="http://home.microsoft.com/intl/fr/"

Missing lines (compared with English-language version):
[Strings]: 1 line

Running Services (Display Name, Service Name, Path {Service DLL}):
------------------------------------------------------------------

avast! Antivirus, avast! Antivirus, ""C:\Program Files\Alwil Software\Avast4\ashServ.exe"" [null data]
avast! iAVS4 Control Service, aswUpdSv, ""C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"" [null data]
AVG Anti-Spyware Guard, AVG Anti-Spyware Guard, "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe" ["Anti-Malware Development a.s."]
BitDefender Communicator, XCOMM, ""C:\Program Files\Fichiers communs\Softwin\BitDefender Communicator\xcommsvr.exe" /service" ["Softwin"]
BitDefender Scan Server, bdss, ""C:\Program Files\Fichiers communs\Softwin\BitDefender Scan Server\bdss.exe" /service" [null data]
BitDefender Virus Shield, VSSERV, ""C:\Program Files\Softwin\BitDefender8\vsserv.exe" /service" ["SOFTWIN S.R.L."]
Bluetooth Support Service, BthServ, "C:\WINDOWS\system32\svchost.exe -k bthsvcs" {"C:\WINDOWS\System32\bthserv.dll" [MS]}
C-DillaCdaC11BA, C-DillaCdaC11BA, "C:\WINDOWS\System32\drivers\CDAC11BA.EXE" ["Macrovision"]
InCD Helper, InCDsrv, "C:\Program Files\Ahead\InCD\InCDsrv.exe" ["Nero AG"]
Service Messenger Sharing Folders USN Journal Reader, usnjsvc, ""C:\Program Files\MSN Messenger\usnsvc.exe"" [MS]
Sécurité Enfants, OPTENET_FILTER, "C:\Program Files\Telecom Italia France\Securite Enfants\bin\optproxy.exe" ["Telecom Italia France"]

Print Monitors:
---------------

HKLM\System\CurrentControlSet\Control\Print\Monitors\
EPSON V6 2KMonitor\Driver = "EBPMON24.DLL" ["SEIKO EPSON CORPORATION"]
PDF995 Monitor\Driver = "pdf995mon.dll" [null data]

----------
<<!>>: Suspicious data at a malware launch point.

+ This report excludes default entries except where indicated.
+ To see *everywhere* the script checks and *everything* it finds,
launch it from a command prompt or a shortcut with the -all parameter.
+ To search all directories of local fixed drives for DESKTOP.INI
DLL launch points, use the -supp parameter or answer "No" at the
first message box and "Yes" at the second message box.
---------- (total run time: 124 seconds, including 4 seconds for message boxes)

répondre

Anthony10 le 10 avril 2007 à 01h42

Bonjour,

Tu as plusieurs AntiVirus, il ne faut t'en garder qu'un seul.

Fais un scan en ligne Kaspersky avec Internet Explorer :

Dans la nouvelle fenêtre, clique sur J'accepte.

Valide l'installation d'un ou de plusieurs ActiveX si c'est nécessaire.

Patiente pendant l'installation des Mises à jour.

Choisis par la suite l'analyse du Poste de travail

Sauvegarde puis colle le rapport généré en fin d'analyse.

AIDE : Configurer le contrôle des ActiveX

NOTE : Si tu reçois le message "La licence de Kaspersky On-line Scanner est périmée", va dans Ajout/Suppression de programmes puis désinstalle On-Line Scanner, reconnecte toi sur le site de Kaspersky pour retenter le scan en ligne.

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 10 avril 2007 à 18h49

Voilà le rapport : (Merci encore)

07-04-10 16:58
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.83.0
Dernière mise à jour de la base antivirus Kaspersky : 10/04/2007
Enregistrements dans la base antivirus Kaspersky : 276811
Paramètres d'analyse
Analyser avec la base antivirus suivante standard
Analyser les archives vrai
Analyser les bases de messagerie vrai
Cible de l'analyse Poste de travail
A:\
C:\
D:\
E:\
Statistiques de l'analyse
Total d'objets analysés 133681
Nombre de virus trouvés 0
Nombre d'objets infectés 0 / 0
Nombre d'objets suspects 0
Durée de l'analyse 03:53:31

Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\DSS\MachineKeys\3bae1360576263a944702944b24e521c_c50bd8c8-b7c7-4f8a-8a37-58dfd86d434f L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Application Data\Microsoft\Modèles\Normal.dot L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_360.wmdb L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Messenger\vani1408@hotmail.fr\SharingMetadata\Logs\Dfsr00005.log L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Messenger\vani1408@hotmail.fr\SharingMetadata\pending.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Messenger\vani1408@hotmail.fr\SharingMetadata\Working\database_2670_618D_7061_6491\dfsr.db L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Messenger\vani1408@hotmail.fr\SharingMetadata\Working\database_2670_618D_7061_6491\fsr.log L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Messenger\vani1408@hotmail.fr\SharingMetadata\Working\database_2670_618D_7061_6491\fsrtmp.log L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Messenger\vani1408@hotmail.fr\SharingMetadata\Working\database_2670_618D_7061_6491\tmp.edb L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Windows Live Contacts\vani1408@hotmail.fr\real\members.stg L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Windows Live Contacts\vani1408@hotmail.fr\shadow\members.stg L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Mozilla\Firefox\Profiles\3bd37vhj.default\Cache\_CACHE_001_ L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Mozilla\Firefox\Profiles\3bd37vhj.default\Cache\_CACHE_002_ L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Mozilla\Firefox\Profiles\3bd37vhj.default\Cache\_CACHE_003_ L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Mozilla\Firefox\Profiles\3bd37vhj.default\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Historique\History.IE5\MSHist012007041020070411\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Temp\~DF279A.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Temp\~DF2957.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Temp\~DF4ABD.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Temp\~DF4AC7.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Temp\~DF7629.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Temp\~DFD941.tmp L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\ntuser.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt L'objet est verrouillé ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\WINDOWS\Cookies\index.dat L'objet est verrouillé ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\Antivirus.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
C:\WINDOWS\Temp\Perflib_Perfdata_724.dat L'objet est verrouillé ignoré
C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré
Analyse terminée.

répondre

Anthony10 le 11 avril 2007 à 00h55

Bonsoir Vani1408,

Le rapport du scan en lignes est "propre".
Donne le nom des fichiers infectés ainsi que leurs chemins d'accès selon Avast.

Anthony.

-->Message édité par Anthony10 le 11/04/2007 00:56:19<--

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 11 avril 2007 à 01h16

Voilà :

Sign of "Win32:Spyware-gen. [Trj]" has been found in "C:\WINDOWS\NDNuninstall6_30.exe" file.

Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\NDNuninstall6_38.exe" file.

Sign of "Win32:CTX" has been found in "C:\WINDOWS\system32\ActiveScan\pskavs.dll" file.

Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\system32\lxjgkpun.exe" file.

Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\WINDOWS\system32\uknjczbi.exe" file.

Sign of "Win32:Spyware-gen. [Trj]" has been found in "C:\System Volume Information\_restore{2C32EEA7-ED7C-4B37-9A18-46E3B377026F}\RP41\A0023690.exe" file.

Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\System Volume Information\_restore{2C32EEA7-ED7C-4B37-9A18-46E3B377026F}\RP41\A0023691.exe" file.

Sign of "Win32:CTX" has been found in "C:\System Volume Information\_restore{2C32EEA7-ED7C-4B37-9A18-46E3B377026F}\RP41\A0023692.dll" file.

Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\System Volume Information\_restore{2C32EEA7-ED7C-4B37-9A18-46E3B377026F}\RP41\A0023693.exe" file.

Sign of "Win32:Adware-gen. [Adw]" has been found in "C:\System Volume Information\_restore{2C32EEA7-ED7C-4B37-9A18-46E3B377026F}\RP41\A0023694.exe" file.

répondre

Vani1408 le 11 avril 2007 à 01h17

Tous ces fichiers sont en quarantaine dans AVAST.

répondre

Anthony10 le 11 avril 2007 à 01h29

Re-bonsoir,

Télécharge DiagHelp.zip (de Malekal) sur ton Bureau.

Dézippe-le entièrement sur ton Bureau.

Double-clique sur go.cmd, une fenêtre de commande s'ouvrira.

Choisis l'option 1 en tapant 1 puis presse la touche Entr du clavier.

Un rapport sera généré sous le nom de resultat.txt.

Dans ta future réponse, envoie ce rapport.

A suivre,

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 11 avril 2007 à 11h40

Bonjour, ci joint le rapport DIAGHELP :

C:\WINDOWS\System32/drivers\aswRdr.sys -->07-01-15 19:26:08
C:\WINDOWS\System32/drivers\aswTdi.sys -->07-01-15 19:25:24
C:\WINDOWS\System32/drivers\aswmon.sys -->06-12-21 01:56:13
C:\WINDOWS\System32/drivers\aswmon2.sys -->06-12-21 01:56:00
C:\WINDOWS\System32/drivers\aavmker4.sys -->06-12-21 01:51:58
C:\WINDOWS\System32/drivers\wpdusb.sys -->06-10-18 21:00:00
C:\WINDOWS\System32/drivers\cdralw2k.sys -->06-10-05 04:42:42

C:\WINDOWS\System32\LVCOMSX.LOG -->07-04-11 11:12:27
C:\WINDOWS\System32\wpa.dbl -->07-04-11 10:45:24
C:\WINDOWS\System32\d3d9caps.dat -->07-04-06 06:37:50
C:\WINDOWS\System32\FNTCACHE.DAT -->07-04-04 12:42:32
C:\WINDOWS\System32\Uninstall.ico -->07-03-28 18:00:14
C:\WINDOWS\System32\pavas.ico -->07-03-28 18:00:14
C:\WINDOWS\System32\Help.ico -->07-03-28 18:00:14
C:\WINDOWS\System32\PerfStringBackup.INI -->07-03-28 12:13:18
C:\WINDOWS\System32\perfh00C.dat -->07-03-28 12:13:18
C:\WINDOWS\System32\perfh009.dat -->07-03-28 12:13:18
C:\WINDOWS\System32\perfc00C.dat -->07-03-28 12:13:18
C:\WINDOWS\System32\perfc009.dat -->07-03-28 12:13:18
C:\WINDOWS\System32\CONFIG.NT -->07-03-23 20:00:33
C:\WINDOWS\System32\winsrv.dll -->07-03-17 15:44:47
C:\WINDOWS\System32\CRUNX.BIN -->07-03-13 19:08:55
C:\WINDOWS\System32\CielComponent.ini -->07-03-12 20:05:03
C:\WINDOWS\System32\xpsp3res.dll -->07-03-09 12:24:03
C:\WINDOWS\System32\user32.dll -->07-03-08 17:37:50
C:\WINDOWS\System32\mf3216.dll -->07-03-08 17:37:50
C:\WINDOWS\System32\gdi32.dll -->07-03-08 17:37:50
C:\WINDOWS\System32\win32k.sys -->07-03-08 17:33:58
C:\WINDOWS\System32\MRT.exe -->07-03-07 22:36:32
C:\WINDOWS\System32\ifsrel.dll -->07-03-05 16:23:51
C:\WINDOWS\System32\ntoskrnl.exe -->07-02-28 18:02:36
C:\WINDOWS\System32\ntkrnlpa.exe -->07-02-28 18:02:36

C:\WINDOWS\win.ini -->07-04-11 10:46:48
C:\WINDOWS\0.log -->07-04-11 10:40:06
C:\WINDOWS\wiadebug.log -->07-04-11 10:38:50
C:\WINDOWS\WindowsUpdate.log -->07-04-11 10:38:48
C:\WINDOWS\wiaservc.log -->07-04-11 10:38:42
C:\WINDOWS\bootstat.dat -->07-04-11 10:38:31
C:\WINDOWS\SchedLgU.Txt -->07-04-11 01:19:58
C:\WINDOWS\tsoc.log -->07-04-11 00:58:41
C:\WINDOWS\setupapi.log -->07-04-11 00:58:41
C:\WINDOWS\ocmsn.log -->07-04-11 00:58:41
C:\WINDOWS\ocgen.log -->07-04-11 00:58:41
C:\WINDOWS\ntdtcsetup.log -->07-04-11 00:58:41
C:\WINDOWS\msgsocm.log -->07-04-11 00:58:41
C:\WINDOWS\KB931784.log -->07-04-11 00:58:41
C:\WINDOWS\imsins.log -->07-04-11 00:58:41

C:\WINDOWS\adiras.exe |18/07/2005 15:11:47
C:\WINDOWS\autoclk.exe |18/07/2005 15:11:34
C:\WINDOWS\bdoscandel.exe |04/03/2005 14:10:36
C:\WINDOWS\bwUnin-6.1.4.36-8876480L.exe |02/11/2004 19:08:20
C:\WINDOWS\bwUnin-7.2.0.120-8876480SL.exe |15/12/2004 02:05:29
C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe |13/02/2005 02:47:03
C:\WINDOWS\CielInfos.exe |05/03/2007 16:14:37
C:\WINDOWS\CleanDev.exe |02/01/2004 16:14:51
C:\WINDOWS\dbplugin.exe |11/03/2004 23:29:24
C:\WINDOWS\enddisk32.exe |18/07/2005 15:11:40
C:\WINDOWS\IsUn040c.exe |17/10/2003 08:36:00
C:\WINDOWS\IsUninst.exe |27/12/2003 17:20:55
C:\WINDOWS\ml-cleanup.exe |02/04/2002 17:08:34
C:\WINDOWS\NuNinst.exe |20/12/2003 13:57:15
C:\WINDOWS\OptChecker.exe |01/08/2006 13:00:23
C:\WINDOWS\OptRemove.exe |01/08/2006 13:00:24
C:\WINDOWS\QT32INST.EXE |26/08/1996 02:12:00
C:\WINDOWS\QTW32DEL.EXE |26/08/1996 02:12:00
C:\WINDOWS\Screen Saver.exe |08/07/2005 18:45:45
C:\WINDOWS\ScreenTime.exe |08/07/2005 19:38:15
C:\WINDOWS\slrundll.exe |17/10/2003 07:56:16
C:\WINDOWS\SmCfg.exe |17/10/2003 09:03:09
C:\WINDOWS\twunk_16.exe |17/10/2003 08:06:25
C:\WINDOWS\twunk_32.exe |17/10/2003 08:06:25
C:\WINDOWS\UniFish3.exe |02/01/2004 16:40:42
C:\WINDOWS\unin040c.exe |14/01/2004 01:57:45
C:\WINDOWS\UninstallFirefox.exe |17/05/2005 15:02:14
C:\WINDOWS\UNISTB32.EXE |13/03/1998 00:02:00
C:\WINDOWS\UNNeroBurnRights.exe |20/12/2003 14:52:38
C:\WINDOWS\UNNeroVision.exe |20/12/2003 13:56:03
C:\WINDOWS\UNNMIX.exe |15/04/2004 15:37:32
C:\WINDOWS\UNNMP.exe |03/01/2005 23:38:50
C:\WINDOWS\unvise32.exe |09/02/2004 18:02:30
C:\WINDOWS\unvise32qt.exe |30/07/2004 21:50:13
C:\WINDOWS\winppr32.exe |27/01/2004 17:42:54
C:\WINDOWS\ADE.DLL |30/06/2004 21:44:34
C:\WINDOWS\impborl.dll |08/07/2005 18:45:48
C:\WINDOWS\KPAPI32.DLL |14/01/2004 01:59:37
C:\WINDOWS\kpcp32.dll |14/01/2004 01:59:37
C:\WINDOWS\kpsys32.dll |14/01/2004 01:59:37
C:\WINDOWS\mickey32.dll |08/07/2005 19:38:15
C:\WINDOWS\pcdlib32.dll |30/06/2004 21:46:30
C:\WINDOWS\Screen Saver.dll |08/07/2005 18:45:45
C:\WINDOWS\SlantAdj.dll |30/06/2004 21:44:34
C:\WINDOWS\sprof32.dll |14/01/2004 01:59:37
C:\WINDOWS\twain.dll |17/10/2003 08:06:25
C:\WINDOWS\twain_32.dll |17/10/2003 08:06:25
C:\WINDOWS\system32\append.exe |17/10/2003 08:05:46
C:\WINDOWS\system32\asuninst.exe |04/01/2006 22:57:02
C:\WINDOWS\system32\aswBoot.exe |23/03/2007 19:59:53
C:\WINDOWS\system32\ati2evxx.exe |17/10/2003 07:58:08
C:\WINDOWS\system32\Ati2mdxx.exe |17/10/2003 07:58:08
C:\WINDOWS\system32\cielcalc.exe |05/03/2007 16:13:25
C:\WINDOWS\system32\CielShellExe.exe |05/03/2007 16:23:17
C:\WINDOWS\system32\debug.exe |17/10/2003 08:05:51
C:\WINDOWS\system32\dosx.exe |17/10/2003 08:05:52
C:\WINDOWS\system32\dvdplay.exe |23/08/2001 19:47:34
C:\WINDOWS\system32\edlin.exe |17/10/2003 08:05:59
C:\WINDOWS\system32\exe2bin.exe |17/10/2003 08:05:59
C:\WINDOWS\system32\fastopen.exe |17/10/2003 08:05:59
C:\WINDOWS\system32\InstMed.exe |02/11/2004 19:10:32
C:\WINDOWS\system32\ipdetect.exe |18/07/2005 15:11:44
C:\WINDOWS\system32\java.exe |12/02/2007 23:29:53
C:\WINDOWS\system32\javaw.exe |12/02/2007 23:29:53
C:\WINDOWS\system32\javaws.exe |12/02/2007 23:29:54
C:\WINDOWS\system32\leadsrvr.exe |23/07/2006 19:55:51
C:\WINDOWS\system32\LVCOMSX.EXE |25/02/2004 17:15:50
C:\WINDOWS\system32\mem.exe |17/10/2003 08:06:06
C:\WINDOWS\system32\minirec.exe |17/10/2003 09:03:09
C:\WINDOWS\system32\mscdexnt.exe |17/10/2003 08:06:08
C:\WINDOWS\system32\NeroCheck.exe |20/12/2003 13:51:28
C:\WINDOWS\system32\nlsfunc.exe |17/10/2003 08:06:13
C:\WINDOWS\system32\pcpbios.exe |14/03/2002 13:00:26
C:\WINDOWS\system32\pxhpinst.exe |23/06/2004 22:34:15
C:\WINDOWS\system32\redir.exe |17/10/2003 08:06:18
C:\WINDOWS\system32\setver.exe |17/10/2003 08:06:20
C:\WINDOWS\system32\share.exe |17/10/2003 08:06:20
C:\WINDOWS\system32\slmh.exe |17/10/2003 09:03:09
C:\WINDOWS\system32\slrundll.exe |20/08/2004 01:10:02
C:\WINDOWS\system32\slserv.exe |17/10/2003 07:56:17
C:\WINDOWS\system32\unaddrv.exe |18/07/2005 15:11:38
C:\WINDOWS\system32\usrmlnka.exe |23/08/2001 19:47:48
C:\WINDOWS\system32\usrprbda.exe |23/08/2001 19:47:48
C:\WINDOWS\system32\usrshuta.exe |23/08/2001 19:47:48
C:\WINDOWS\system32\adadix16.dll |18/07/2005 15:11:38
C:\WINDOWS\system32\adadix2k.dll |18/07/2005 15:11:38
C:\WINDOWS\system32\adadix32.dll |18/07/2005 15:11:44
C:\WINDOWS\system32\adinst32.dll |16/12/2004 18:30:49
C:\WINDOWS\system32\amr_cpl.dll |17/10/2003 09:03:09
C:\WINDOWS\system32\amstream.dll |12/12/2002 00:14:32
C:\WINDOWS\system32\ati2cqag.dll |20/08/2004 01:09:19
C:\WINDOWS\system32\ati2dvaa.dll |20/08/2004 01:09:19
C:\WINDOWS\system32\ati2dvag.dll |17/10/2003 07:58:08
C:\WINDOWS\system32\ati2evxx.dll |17/10/2003 07:58:08
C:\WINDOWS\system32\ati3d1ag.dll |17/10/2003 07:58:08
C:\WINDOWS\system32\ati3d2ag.dll |17/10/2003 07:58:08
C:\WINDOWS\system32\ati3duag.dll |17/10/2003 07:58:08
C:\WINDOWS\system32\ATIDDC.DLL |17/10/2003 07:58:08
C:\WINDOWS\system32\atiiiexx.dll |17/10/2003 07:58:08
C:\WINDOWS\system32\atioglxx.dll |17/10/2003 07:58:09
C:\WINDOWS\system32\atipdlxx.dll |17/10/2003 07:58:09
C:\WINDOWS\system32\atitvo32.dll |17/10/2003 07:58:09
C:\WINDOWS\system32\ativcoxx.dll |17/10/2003 07:58:09
C:\WINDOWS\system32\ativtmxx.dll |20/08/2004 01:09:19
C:\WINDOWS\system32\ativvaxx.dll |20/08/2004 01:09:19
C:\WINDOWS\system32\ATMDRVR.DLL |14/01/2004 02:01:46
C:\WINDOWS\system32\atmfd.dll |17/10/2003 08:05:47
C:\WINDOWS\system32\atmlib.dll |17/10/2003 08:05:47
C:\WINDOWS\system32\Camapi32.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\CDDBControl.dll |10/12/2005 16:23:10
C:\WINDOWS\system32\CDDBUI.dll |10/12/2005 16:23:10
C:\WINDOWS\system32\CielArchiver.dll |05/03/2007 16:14:37
C:\WINDOWS\system32\cielcalc.dll |05/03/2007 16:13:23
C:\WINDOWS\system32\clrviddc.dll |01/02/2005 16:26:49
C:\WINDOWS\system32\CmdLineExt.dll |13/02/2006 00:15:38
C:\WINDOWS\system32\coclassfast.dll |18/07/2005 15:11:40
C:\WINDOWS\system32\coface.dll |05/03/2007 16:13:53
C:\WINDOWS\system32\coinst.dll |17/10/2003 07:56:15
C:\WINDOWS\system32\Comm32.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\compatui.dll |17/10/2003 08:05:49
C:\WINDOWS\system32\CPPENV25.DLL |14/01/2004 01:59:34
C:\WINDOWS\system32\crun500.dll |05/03/2007 15:57:14
C:\WINDOWS\system32\CSH.DLL |15/07/2002 16:58:00
C:\WINDOWS\system32\DC210V204_32.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\Dc50ip32.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\Dc50v11_32.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\dgrpsetu.dll |17/10/2003 09:26:45
C:\WINDOWS\system32\dgsetup.dll |17/10/2003 09:26:45
C:\WINDOWS\system32\DivX.dll |11/11/2003 16:25:08
C:\WINDOWS\system32\E300.DLL |14/01/2004 01:59:35
C:\WINDOWS\system32\E300str.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\EBPCHP.DLL |30/06/2004 21:38:56
C:\WINDOWS\system32\EBPMON24.DLL |30/06/2004 21:38:56
C:\WINDOWS\system32\ECBTEG.DLL |30/06/2004 21:38:57
C:\WINDOWS\system32\ekfpixaudio.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\ekfpixexif.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\ekfpixguid.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\ekfpixio130.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\ekfpixjpeg.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\ekfpixpsets.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\encdec.dll |26/11/2002 16:15:52
C:\WINDOWS\system32\Epcmlib.dll |30/06/2004 21:48:45
C:\WINDOWS\system32\EqnClass.Dll |17/10/2003 09:26:45
C:\WINDOWS\system32\esccmd.dll |30/06/2004 21:38:30
C:\WINDOWS\system32\escimgd.dll |30/06/2004 21:38:30
C:\WINDOWS\system32\escwiad.dll |30/06/2004 21:38:30
C:\WINDOWS\system32\EZIMG25.DLL |14/01/2004 01:59:34
C:\WINDOWS\system32\E_DCINST.DLL |30/06/2004 21:38:58
C:\WINDOWS\system32\HHActiveX.dll |20/03/2002 22:01:58
C:\WINDOWS\system32\HookPS2.dll |05/02/2007 17:29:41
C:\WINDOWS\system32\HPcam_02.dll |13/09/2005 15:06:22
C:\WINDOWS\system32\HPODXPAT.DLL |27/05/2004 15:00:52
C:\WINDOWS\system32\hsfcisp2.dll |20/08/2004 01:09:27
C:\WINDOWS\system32\hticons.dll |17/10/2003 08:29:34
C:\WINDOWS\system32\Htmlzap.dll |14/01/2002 00:17:04
C:\WINDOWS\system32\hypertrm.dll |17/10/2003 08:29:34
C:\WINDOWS\system32\Iacenc.dll |18/11/1998 16:33:16
C:\WINDOWS\system32\iccvid.dll |17/10/2003 08:06:03
C:\WINDOWS\system32\ieencode.dll |20/08/2004 01:09:27
C:\WINDOWS\system32\iFPSP.dll |04/09/2004 14:44:51
C:\WINDOWS\system32\ifsrel.dll |05/03/2007 16:23:51
C:\WINDOWS\system32\imagr5.dll |20/12/2003 13:51:35
C:\WINDOWS\system32\imagx5.dll |20/12/2003 13:51:36
C:\WINDOWS\system32\ImagX7.dll |03/01/2005 23:07:21
C:\WINDOWS\system32\ImagXpr5.dll |20/12/2003 13:51:35
C:\WINDOWS\system32\ImagXpr7.dll |03/01/2005 23:07:22
C:\WINDOWS\system32\ImagXR7.dll |03/01/2005 23:07:22
C:\WINDOWS\system32\ImagXRA7.dll |03/01/2005 23:07:22
C:\WINDOWS\system32\ImgLibLead.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\indounin.dll |27/01/1999 14:39:06
C:\WINDOWS\system32\Inetwh32.dll |20/12/2003 15:25:53
C:\WINDOWS\system32\ir32_32.dll |17/10/2003 08:06:04
C:\WINDOWS\system32\ir41_qc.dll |14/11/2002 12:59:36
C:\WINDOWS\system32\ir41_qcx.dll |14/11/2002 12:59:36
C:\WINDOWS\system32\ir50_32.dll |14/11/2002 12:59:38
C:\WINDOWS\system32\ir50_qc.dll |14/11/2002 12:59:38
C:\WINDOWS\system32\ir50_qcx.dll |14/11/2002 12:59:40
C:\WINDOWS\system32\isrdbg32.dll |17/10/2003 08:30:51
C:\WINDOWS\system32\Iyvu9_32.dll |13/06/1997 08:56:08
C:\WINDOWS\system32\jgaw400.dll |17/10/2003 08:06:04
C:\WINDOWS\system32\jgdw400.dll |17/10/2003 08:06:04
C:\WINDOWS\system32\jgmd400.dll |17/10/2003 08:06:04
C:\WINDOWS\system32\jgpl400.dll |17/10/2003 08:06:04
C:\WINDOWS\system32\jgsd400.dll |17/10/2003 08:06:04
C:\WINDOWS\system32\jgsh400.dll |17/10/2003 08:06:04
C:\WINDOWS\system32\KBHook.dll |05/02/2007 17:29:42
C:\WINDOWS\system32\LCamCpl.dll |25/02/2004 18:04:04
C:\WINDOWS\system32\LCodcCMP.dll |24/04/2002 11:42:18
C:\WINDOWS\system32\lfani11n.dll |23/07/2006 19:55:51
C:\WINDOWS\system32\lfani12n.dll |10/12/2005 16:23:15
C:\WINDOWS\system32\lfavi11n.dll |23/07/2006 19:55:51
C:\WINDOWS\system32\lfavi12n.dll |10/12/2005 16:23:18
C:\WINDOWS\system32\lfawd11n.dll |23/07/2006 19:55:51
C:\WINDOWS\system32\lfawd12n.dll |10/12/2005 16:23:15
C:\WINDOWS\system32\lfbmp11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\lfbmp12n.dll |25/02/2004 15:38:42
C:\WINDOWS\system32\Lfbmp70n.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\lfcal11n.dll |23/07/2006 19:55:52
C:\WINDOWS\system32\lfcal12n.dll |10/12/2005 16:23:15
C:\WINDOWS\system32\lfCGM11n.dll |23/07/2006 19:55:52
C:\WINDOWS\system32\Lfcgm12n.dll |10/12/2005 16:23:15
C:\WINDOWS\system32\lfclp11N.dll |23/07/2006 19:55:52
C:\WINDOWS\system32\lfclp12n.dll |10/12/2005 16:23:15
C:\WINDOWS\system32\LFCMP11n.DLL |07/06/2002 05:02:00
C:\WINDOWS\system32\Lfcmp12n.dll |25/02/2004 15:38:42
C:\WINDOWS\system32\LFCMP70n.DLL |14/01/2004 01:59:35
C:\WINDOWS\system32\lfCUT11n.dll |23/07/2006 19:55:55
C:\WINDOWS\system32\lfCUT12n.dll |10/12/2005 16:23:15
C:\WINDOWS\system32\Lfdgn11n.dll |23/07/2006 19:55:55
C:\WINDOWS\system32\Lfdgn12n.dll |10/12/2005 16:23:15
C:\WINDOWS\system32\lfDRW11n.dll |23/07/2006 19:55:55
C:\WINDOWS\system32\Lfdrw12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lfdwf12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lfdwg12N.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lfdxf11N.dll |23/07/2006 19:55:55
C:\WINDOWS\system32\Lfdxf12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lfeps11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\lfeps12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lffax11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\lffax12n.dll |25/02/2004 15:38:42
C:\WINDOWS\system32\lfflc11N.dll |23/07/2006 19:55:56
C:\WINDOWS\system32\lfflc12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lffpx11n.dll |23/07/2006 19:55:56
C:\WINDOWS\system32\lffpx12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lffpx7.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lfgif11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\lfgif12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lfica11n.dll |23/07/2006 19:55:57
C:\WINDOWS\system32\lfica12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lfiff11n.dll |23/07/2006 19:55:57
C:\WINDOWS\system32\lfiff12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lfimg11n.dll |23/07/2006 19:55:57
C:\WINDOWS\system32\lfimg12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lfitg11N.dll |23/07/2006 19:55:57
C:\WINDOWS\system32\lfitg12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\lfjbg11n.dll |23/07/2006 19:55:57
C:\WINDOWS\system32\lfjbg12n.dll |10/12/2005 16:23:14
C:\WINDOWS\system32\LFKODAK.DLL |10/12/2005 16:23:13
C:\WINDOWS\system32\lflma11n.dll |23/07/2006 19:55:57
C:\WINDOWS\system32\lflma12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lflmb11n.dll |23/07/2006 19:55:57
C:\WINDOWS\system32\lflmb12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfmac11n.dll |23/07/2006 19:55:57
C:\WINDOWS\system32\lfmac12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfmpg11n.dll |23/07/2006 19:55:58
C:\WINDOWS\system32\lfmpg12n.dll |10/12/2005 16:23:16
C:\WINDOWS\system32\lfmsp11n.dll |23/07/2006 19:55:58
C:\WINDOWS\system32\lfmsp12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfpcd11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\lfpcd12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfpct11n.dll |23/07/2006 19:55:58
C:\WINDOWS\system32\Lfpct12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfpcx11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\lfpcx12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfpdf12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfplt11n.dll |23/07/2006 19:55:59
C:\WINDOWS\system32\Lfplt12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\Lfpng11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\Lfpng12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\LFPNM11n.dll |23/07/2006 19:55:59
C:\WINDOWS\system32\LFPNM12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfpsd11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\lfpsd12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfras11n.dll |23/07/2006 19:56:00
C:\WINDOWS\system32\lfras12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfRaw12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfsgi12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lftga11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\lftga12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lftif11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\lftif12n.dll |25/02/2004 15:38:42
C:\WINDOWS\system32\Lfvec12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfwfx11n.dll |23/07/2006 19:56:01
C:\WINDOWS\system32\lfwfx12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfwmf11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\Lfwmf12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfwpg11n.dll |23/07/2006 19:56:01
C:\WINDOWS\system32\lfwpg12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfXbm11n.dll |23/07/2006 19:56:01
C:\WINDOWS\system32\lfXbm12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfXpm11n.dll |23/07/2006 19:56:01
C:\WINDOWS\system32\lfXpm12n.dll |10/12/2005 16:23:13
C:\WINDOWS\system32\lfxwd11N.dll |23/07/2006 19:56:01
C:\WINDOWS\system32\lfxwd12n.dll |10/12/2005 16:23:12
C:\WINDOWS\system32\libmySQL.dll |26/03/2004 00:23:33
C:\WINDOWS\system32\LQCUI2.dll |25/02/2004 17:35:10
C:\WINDOWS\system32\ltann11n.dll |23/07/2006 19:56:02
C:\WINDOWS\system32\LTAUT12n.dll |10/12/2005 16:23:12
C:\WINDOWS\system32\LTDic11n.dll |23/07/2006 19:56:02
C:\WINDOWS\system32\LTDIS11n.dll |07/06/2002 05:02:00
C:\WINDOWS\system32\Ltdis12n.dll |25/02/2004 15:38:46
C:\WINDOWS\system32\ltdlg11N.dll |23/07/2006 19:56:06
C:\WINDOWS\system32\ltdlg12n.dll |10/12/2005 16:23:16
C:\WINDOWS\system32\ltefx11n.dll |23/07/2006 19:56:06
C:\WINDOWS\system32\Ltefx12n.dll |25/02/2004 15:38:46
C:\WINDOWS\system32\ltfil11n.DLL |07/06/2002 05:02:00
C:\WINDOWS\system32\Ltfil12n.dll |25/02/2004 15:38:46
C:\WINDOWS\system32\Ltfil70n.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\ltimg11n.dll |07/06/2002 05:02:02
C:\WINDOWS\system32\Ltimg12n.dll |25/02/2004 15:38:46
C:\WINDOWS\system32\ltisi11n.dll |23/07/2006 19:56:07
C:\WINDOWS\system32\ltkrn11n.dll |07/06/2002 05:02:02
C:\WINDOWS\system32\Ltkrn12n.dll |25/02/2004 15:38:48
C:\WINDOWS\system32\Ltkrn70n.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\ltlst11n.dll |23/07/2006 19:56:07
C:\WINDOWS\system32\LTSCR11n.DLL |23/07/2006 19:56:08
C:\WINDOWS\system32\ltthk11w.dll |23/07/2006 19:56:08
C:\WINDOWS\system32\lttmb11n.dll |23/07/2006 19:56:08
C:\WINDOWS\system32\lttwn11n.dll |23/07/2006 19:56:08
C:\WINDOWS\system32\lttwn12n.dll |10/12/2005 16:23:16
C:\WINDOWS\system32\ltvid12n.dll |10/12/2005 16:23:17
C:\WINDOWS\system32\ltwen11n.dll |23/07/2006 19:56:08
C:\WINDOWS\system32\LTWND11n.DLL |23/07/2006 19:56:09
C:\WINDOWS\system32\LTWND12n.DLL |10/12/2005 16:23:18
C:\WINDOWS\system32\Ltwvc11n.dll |07/06/2002 05:02:02
C:\WINDOWS\system32\Ltwvc12n.dll |25/02/2004 15:38:52
C:\WINDOWS\system32\lvcodec2.dll |02/11/2004 19:10:09
C:\WINDOWS\system32\lvcoinst.dll |02/11/2004 19:10:11
C:\WINDOWS\system32\LVCOMCX.dll |25/02/2004 17:18:46
C:\WINDOWS\system32\LVDLG11N.dll |23/07/2006 19:56:11
C:\WINDOWS\system32\Lvdlg12n.dll |10/12/2005 16:23:18
C:\WINDOWS\system32\Lvdx11n.dll |23/07/2006 19:56:11
C:\WINDOWS\system32\Lvdx12n.dll |10/12/2005 16:23:18
C:\WINDOWS\system32\Lvgl11n.dll |23/07/2006 19:56:11
C:\WINDOWS\system32\Lvgl12n.dll |10/12/2005 16:23:18
C:\WINDOWS\system32\Lvkrn11n.dll |23/07/2006 19:56:11
C:\WINDOWS\system32\Lvkrn12n.dll |25/02/2004 15:38:52
C:\WINDOWS\system32\LVMAENUM.dll |25/02/2004 17:16:56
C:\WINDOWS\system32\LVUI2.dll |02/11/2004 19:10:10
C:\WINDOWS\system32\LVUI2RC.dll |02/11/2004 19:10:10
C:\WINDOWS\system32\mdmxsdk.dll |20/08/2004 01:09:30
C:\WINDOWS\system32\mdwmdmsp.dll |23/08/2001 19:47:06
C:\WINDOWS\system32\MpvpxMMX.dll |09/02/2004 18:22:08
C:\WINDOWS\system32\MpvpxSSE.dll |09/02/2004 18:22:08
C:\WINDOWS\system32\MpvpxX86.dll |09/02/2004 18:22:09
C:\WINDOWS\system32\msdmo.dll |12/12/2002 00:14:32
C:\WINDOWS\system32\msencode.dll |17/10/2003 08:06:08
C:\WINDOWS\system32\MSVCRT10.DLL |14/01/2004 01:59:36
C:\WINDOWS\system32\MTXM_Thumbs.dll |25/03/2006 17:41:42
C:\WINDOWS\system32\mtxparhd.dll |20/08/2004 01:09:35
C:\WINDOWS\system32\NCTAudioFile.dll |10/12/2005 16:23:18
C:\WINDOWS\system32\NCTAudioGrabber.dll |10/12/2005 16:23:12
C:\WINDOWS\system32\NCTAudioInformation.dll |10/12/2005 16:23:18
C:\WINDOWS\system32\NCTVideoConverter.dll |10/12/2005 16:23:09
C:\WINDOWS\system32\NCTWMAFile.dll |10/12/2005 16:23:18
C:\WINDOWS\system32\NeroCo.dll |20/12/2003 14:52:38
C:\WINDOWS\system32\Nkdscsi.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\Nkdserl.dll |14/01/2004 01:59:35
C:\WINDOWS\system32\Npindeo.dll |20/11/1998 14:38:58
C:\WINDOWS\system32\nv4_disp.dll |20/08/2004 01:09:36
C:\WINDOWS\system32\Oemdspif.dll |17/10/2003 07:58:09
C:\WINDOWS\system32\paqsp.dll |23/08/2001 19:47:16
C:\WINDOWS\system32\PCDLIB32.DLL |07/06/2002 05:02:02
C:\WINDOWS\system32\pdf995mon.dll |09/06/2006 19:42:31
C:\WINDOWS\system32\pdfmona.dll |09/06/2006 19:42:31
C:\WINDOWS\system32\picn20.dll |20/12/2003 13:51:40
C:\WINDOWS\system32\pncrt.dll |22/12/2003 20:50:13
C:\WINDOWS\system32\pndx5016.dll |20/12/2003 15:26:14
C:\WINDOWS\system32\pndx5032.dll |20/12/2003 15:26:14
C:\WINDOWS\system32\pngu3266.dll |10/12/2005 16:23:09
C:\WINDOWS\system32\PolarZIPLight.dll |02/01/2004 16:03:36
C:\WINDOWS\system32\Portal.dll |05/03/2007 16:13:54
C:\WINDOWS\system32\psisdecd.dll |17/10/2003 09:08:28
C:\WINDOWS\system32\Px.dll |17/01/2005 10:43:24
C:\WINDOWS\system32\pxdrv.dll |24/01/2005 01:01:00
C:\WINDOWS\system32\pxmas.dll |17/01/2005 10:42:32
C:\WINDOWS\system32\PxWave.dll |17/01/2005 10:42:04
C:\WINDOWS\system32\PXWMA.dll |17/01/2005 10:44:08
C:\WINDOWS\system32\QCUI2.dll |25/02/2004 17:37:58
C:\WINDOWS\system32\qedwipes.dll |12/12/2002 00:14:32
C:\WINDOWS\system32\rmbe3260.dll |10/12/2005 16:23:09
C:\WINDOWS\system32\rmoc3260.dll |20/12/2003 15:26:17
C:\WINDOWS\system32\rmto3260.dll |10/12/2005 16:23:09
C:\WINDOWS\system32\roboex32.dll |20/12/2003 15:25:53
C:\WINDOWS\system32\s3gnb.dll |20/08/2004 01:09:39
C:\WINDOWS\system32\sbe.dll |26/11/2002 16:15:50
C:\WINDOWS\system32\SC.DLL |14/01/2004 01:59:35
C:\WINDOWS\system32\slbcsp.dll |17/10/2003 08:06:21
C:\WINDOWS\system32\slbiop.dll |17/10/2003 08:06:21
C:\WINDOWS\system32\slbrccsp.dll |17/10/2003 08:06:21
C:\WINDOWS\system32\slcoinst.dll |20/08/2004 01:09:41
C:\WINDOWS\system32\slextspk.dll |17/10/2003 07:56:16
C:\WINDOWS\system32\SLGen.dll |17/10/2003 07:56:16
C:\WINDOWS\system32\SLLights.dll |17/10/2003 09:03:09
C:\WINDOWS\system32\SLMOHServ.dll |17/10/2003 09:03:09
C:\WINDOWS\system32\Snap32n.dll |14/01/2004 01:59:36
C:\WINDOWS\system32\spnike.dll |23/08/2001 19:47:18
C:\WINDOWS\system32\sprio600.dll |23/08/2001 19:47:18
C:\WINDOWS\system32\sprio800.dll |23/08/2001 19:47:18
C:\WINDOWS\system32\spxcoins.dll |17/10/2003 09:26:45
C:\WINDOWS\system32\ssubtmr6.dll |17/10/2003 09:03:02
C:\WINDOWS\system32\sysres.dll |16/08/1998 06:00:00
C:\WINDOWS\system32\tsd32.dll |17/10/2003 08:06:25
C:\WINDOWS\system32\TwnLib20.dll |15/04/2004 15:45:07
C:\WINDOWS\system32\TwnLib4.dll |03/01/2005 23:50:23
C:\WINDOWS\system32\usrcntra.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrcoina.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrdpa.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrdtea.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrfaxa.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrlbva.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrrtosa.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrsdpia.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrsvpia.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrv42a.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrv80a.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrvoica.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\usrvpa.dll |23/08/2001 19:47:20
C:\WINDOWS\system32\vbalicom6.dll |17/10/2003 09:03:02
C:\WINDOWS\system32\vbid3lib.dll |10/12/2005 16:23:10
C:\WINDOWS\system32\vct3216.dll |30/10/1999 02:36:44
C:\WINDOWS\system32\vidx16.dll |02/01/2004 16:17:04
C:\WINDOWS\system32\VorbisEncX.dll |10/12/2005 16:23:10
C:\WINDOWS\system32\vp6vfw.dll |05/10/2004 19:28:21
C:\WINDOWS\system32\VXBLOCK.dll |17/09/2004 01:00:00
C:\WINDOWS\system32\win87em.dll |17/10/2003 08:06:28
C:\WINDOWS\system32\WINSIZE.DLL |14/01/2004 01:59:34
C:\WINDOWS\system32\WMAEncX.dll |10/12/2005 16:23:10
C:\WINDOWS\system32\WNASPI32.DLL |09/02/2004 17:42:18
C:\WINDOWS\system32\xcomm.dll |02/10/2003 12:15:34
C:\WINDOWS\system32\xcommsvr.dll |01/10/2001 17:08:08
C:\WINDOWS\system32\xgate.dll |29/08/2001 09:37:12
C:\WINDOWS\system32\xmlparse.dll |01/03/2005 19:46:16
C:\WINDOWS\system32\xmltok.dll |01/03/2005 19:46:17
C:\WINDOWS\system32\xvidcore.dll |30/12/2006 19:12:44
C:\WINDOWS\system32\xvidvfw.dll |30/12/2006 19:12:44
C:\WINDOWS\system32\xxxprogress.dll |05/03/2007 16:14:17
C:\WINDOWS\system32\ZPORT4AS.dll |29/12/2006 21:47:56

Le volume dans le lecteur C s'appelle 53_03_10

Répertoire de C:\WINDOWS\system32

04-08-20 01:09 6,144 csrss.exe
1 fichier(s) 6,144 octets
0 Rép(s) 52,324,302,848 octets libres

Contenu de Downloaded Program Files
Le volume dans le lecteur C s'appelle 53_03_10

Répertoire de C:\WINDOWS\Downloaded Program Files

07-04-10 11:47 <REP> .
07-04-10 11:47 <REP> ..
06-08-24 09:28 141,424 asinst.dll
06-08-22 10:06 537 asinst.inf
04-12-07 16:07 32 bdcore.dll
05-03-01 14:08 118,784 bdupd.dll
03-08-13 20:07 815 bitdefender.inf
03-08-14 16:16 348,160 bitdefender.ocx
04-01-07 16:35 1,134 Cult.inf
03-10-17 08:31 65 desktop.ini
97-10-14 18:52 697 DirectAnimation Java Classes.osd
03-04-18 13:59 53,248 DiskFAU.dll
02-07-25 18:13 24,576 dwusplay.dll
02-07-25 18:13 196,608 dwusplay.exe
04-09-08 23:38 1,271 erma.inf
00-07-12 04:02 36,864 fxfileop.dll
04-01-04 14:03 113,008 HMAtchmt.ocx
04-03-03 15:59 393,216 imloader.exe
05-03-01 14:08 53,248 ipsupd.dll
02-07-25 18:05 172,032 isusweb.dll
06-08-08 11:45 576 kavwebscan.inf
05-03-09 15:42 6,742 lang.ini
04-12-07 16:07 32 libfn.dll
05-02-18 16:22 126 live.ini
03-02-20 14:04 678 mcinsctl.inf
02-01-30 02:00 497 MDM.inf
03-05-29 15:00 160,864 messengerstatsclient.dll
04-04-06 20:03 172,072 MessengerStatsPAClient.dll
00-01-20 16:25 1,162 Microsoft XML Parser for Java.osd
03-05-29 15:00 77,408 msgrchkr.dll
03-11-04 11:06 677 msSecucd.inf
03-08-22 21:10 226 opuc.inf
05-03-01 11:15 1,246 oscan8.inf
05-03-09 15:40 475,136 oscan8.ocx
05-01-05 21:02 252,416 PCPitstop.dll
05-01-05 15:32 618 PCPitstop.inf
03-10-09 10:32 144 QTPlugin.inf
04-07-30 21:48 6,191,238 QuickTimeInstallCache.qdat
04-01-09 11:54 524,445 RdxIE.dll
05-03-09 15:43 6,828 scanoptions.tsi
06-11-09 15:36 5,019 swflash.inf
04-10-21 17:55 1,390 teleir_cert.osd
01-10-31 12:37 118 uninst.bat
00-04-17 13:04 3,072 voxacm.inf
03-10-22 19:18 387 windec32.inf
03-06-30 23:41 1,689 WMV9VCM.inf
03-12-18 12:06 1,534 XPPatchInstaller.INF
04-06-09 17:51 1,777 xscan.inf
04-06-09 17:56 435,712 xscan53.ocx
03-07-15 20:54 532 Yahoo! Euchre.osd
04-08-12 11:48 558 Yahoo! MahJong Solitaire.osd
02-12-20 15:15 538 Yahoo! Pyramids.osd
02-05-15 12:27 776 Yahoo! Towers 2.0.osd
03-09-09 18:39 323 yinst.inf
03-09-09 18:39 124,352 yinsthelper.dll
04-11-17 23:44 114,728 ZIntro.ocx
04-06-15 09:52 221,184 zylomloader.dll
04-05-18 12:40 229 zylomloader.inf
56 fichier(s) 10,442,768 octets

Total des fichiers listés :
56 fichier(s) 10,442,768 octets
2 Rép(s) 52,324,298,752 octets libres

Recherche de rootkit! (Merci S!Ri)

Recherche d'infections connues

catchme 0.2 W2K/XP/Vista - userland rootkit detector by Gmer, 17 October 2006
http://www.gmer.net

scanning hidden processes ...

scanning hidden services ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0

Liste des programmes installes

ABBYY FineReader 5.0 Sprint Plus
ACDSee 7.0
Ad-Aware SE Personal
Adobe Acrobat 5.0
Adobe Acrobat Reader 3.01
Adobe Flash Player 9 ActiveX
Adobe Reader 6.0 - Français
Adobe Type Manager 4.0
Ahead Nero BurnRights
ArcSoft Software Suite
ATI Control Panel
ATI Display Driver
Audacity 1.2.4
avast! Antivirus
AVG Anti-Spyware 7.5
Barre d'outils MSN
BlueSoleil
BufferChm
C-Major Audio
CameraDrivers
CameraUserGuides
CapMan
CCleaner (remove only)
Ciel Compta Evolution pour Windows
Ciel eSauvegarde V2
Ciel Gestion Commerciale Evolution pour Windows
Ciel Paye Evolution pour Windows
Ciel Serveur
Ciel TDS pour Windows
Correctif Windows XP - KB834707
Correctif Windows XP - KB867282
Correctif Windows XP - KB873333
Correctif Windows XP - KB873339
Correctif Windows XP - KB885250
Correctif Windows XP - KB885835
Correctif Windows XP - KB885836
Correctif Windows XP - KB885884
Correctif Windows XP - KB886185
Correctif Windows XP - KB887472
Correctif Windows XP - KB887742
Correctif Windows XP - KB888113
Correctif Windows XP - KB888302
Correctif Windows XP - KB890047
Correctif Windows XP - KB890175
Correctif Windows XP - KB890859
Correctif Windows XP - KB890923
Correctif Windows XP - KB891781
Correctif Windows XP - KB893066
Correctif Windows XP - KB893086
CP_AtenaShokunin1Config
CP_CalendarTemplates1
cp_OnlineProjectsConfig
CP_Package_Basic1
CP_Panorama1Config
cp_PosterPrintConfig
CueTour
Destinations
DeviceFunctionQFolder
DeviceManagementQFolder
DivX Pro Codec Adware
Easy Notification 2.0
EasyCleaner
EPSON CardMonitor
EPSON Copy Utility
EPSON Logiciel imprimante
EPSON Photo Print
EPSON PhotoQuicker3.5
EPSON PhotoStarter3.1
EPSON PRINT Image Framer Tool2.1
EPSON Scan
EPSON Smart Panel
ESPRX500 Guide de référence
ESPRX500 Guide des logiciels
ESPRX500 Guide fonctionnement
eSupportQFolder
Extension HighMAT pour l'Assistant Graver un CD de Microsoft Windows XP
FullDPAppQFolder
GdiplusUpgrade
HijackThis 1.99.1
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows XP (KB926239)
HP Appareils photos Photosmart 6.0
HP Imaging Device Functions 6.0
HP Photosmart Premier Software 6.0
HP Software Update
HP Solution Center and Imaging Support Tools 6.0
hpiCamDrvQFolder
HPProductAssistant
InCD
InstantShareDevices
InterVideo WinDVD 4
iriver Music Manager
J2SE Runtime Environment 5.0 Update 1
J2SE Runtime Environment 5.0 Update 11
Kaspersky Online Scanner
Kit de Connexion Alice ADSL
Labtec Keyboard-Desktop Software
Lecteur Windows Media 11
Les Sims 2
Les Sims 2 : Nuits de Folie
Les Sims 2 : La bonne affaire
Les Sims™ 2 Animaux & Cie
LimeWire 4.12.11
Logitech Desktop Messenger
Logitech Print Service
Logitech QuickCam
Messenger Plus! Live
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 French Language Pack
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Office XP Professional avec FrontPage
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Works 7.0
MicroStaff WINASPI
Mise à jour de sécurité pour Lecteur Windows Media (KB911564)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB911565)
Mise à jour de sécurité pour Lecteur Windows Media 10 (KB917734)
Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398)
Mise à jour de sécurité pour Step by Step Interactive Training (KB898458)
Mise à jour de sécurité pour Step by Step Interactive Training (KB923723)
Mise à jour de sécurité pour Windows XP (KB883939)
Mise à jour de sécurité pour Windows XP (KB890046)
Mise à jour de sécurité pour Windows XP (KB893756)
Mise à jour de sécurité pour Windows XP (KB896358)
Mise à jour de sécurité pour Windows XP (KB896422)
Mise à jour de sécurité pour Windows XP (KB896423)
Mise à jour de sécurité pour Windows XP (KB896424)
Mise à jour de sécurité pour Windows XP (KB896428)
Mise à jour de sécurité pour Windows XP (KB896688)
Mise à jour de sécurité pour Windows XP (KB899587)
Mise à jour de sécurité pour Windows XP (KB899588)
Mise à jour de sécurité pour Windows XP (KB899591)
Mise à jour de sécurité pour Windows XP (KB900725)
Mise à jour de sécurité pour Windows XP (KB901017)
Mise à jour de sécurité pour Windows XP (KB901214)
Mise à jour de sécurité pour Windows XP (KB902400)
Mise à jour de sécurité pour Windows XP (KB903235)
Mise à jour de sécurité pour Windows XP (KB904706)
Mise à jour de sécurité pour Windows XP (KB905414)
Mise à jour de sécurité pour Windows XP (KB905749)
Mise à jour de sécurité pour Windows XP (KB905915)
Mise à jour de sécurité pour Windows XP (KB908519)
Mise à jour de sécurité pour Windows XP (KB911562)
Mise à jour de sécurité pour Windows XP (KB911567)
Mise à jour de sécurité pour Windows XP (KB911927)
Mise à jour de sécurité pour Windows XP (KB912812)
Mise à jour de sécurité pour Windows XP (KB912919)
Mise à jour de sécurité pour Windows XP (KB913446)
Mise à jour de sécurité pour Windows XP (KB913580)
Mise à jour de sécurité pour Windows XP (KB914388)
Mise à jour de sécurité pour Windows XP (KB914389)
Mise à jour de sécurité pour Windows XP (KB916281)
Mise à jour de sécurité pour Windows XP (KB917159)
Mise à jour de sécurité pour Windows XP (KB917344)
Mise à jour de sécurité pour Windows XP (KB917422)
Mise à jour de sécurité pour Windows XP (KB917953)
Mise à jour de sécurité pour Windows XP (KB918118)
Mise à jour de sécurité pour Windows XP (KB918439)
Mise à jour de sécurité pour Windows XP (KB918899)
Mise à jour de sécurité pour Windows XP (KB919007)
Mise à jour de sécurité pour Windows XP (KB920213)
Mise à jour de sécurité pour Windows XP (KB920214)
Mise à jour de sécurité pour Windows XP (KB920670)
Mise à jour de sécurité pour Windows XP (KB920683)
Mise à jour de sécurité pour Windows XP (KB920685)
Mise à jour de sécurité pour Windows XP (KB921398)
Mise à jour de sécurité pour Windows XP (KB921883)
Mise à jour de sécurité pour Windows XP (KB922616)
Mise à jour de sécurité pour Windows XP (KB922760)
Mise à jour de sécurité pour Windows XP (KB922819)
Mise à jour de sécurité pour Windows XP (KB923191)
Mise à jour de sécurité pour Windows XP (KB923414)
Mise à jour de sécurité pour Windows XP (KB923689)
Mise à jour de sécurité pour Windows XP (KB923694)
Mise à jour de sécurité pour Windows XP (KB923980)
Mise à jour de sécurité pour Windows XP (KB924191)
Mise à jour de sécurité pour Windows XP (KB924270)
Mise à jour de sécurité pour Windows XP (KB924496)
Mise à jour de sécurité pour Windows XP (KB924667)
Mise à jour de sécurité pour Windows XP (KB925454)
Mise à jour de sécurité pour Windows XP (KB925486)
Mise à jour de sécurité pour Windows XP (KB925902)
Mise à jour de sécurité pour Windows XP (KB926255)
Mise à jour de sécurité pour Windows XP (KB926436)
Mise à jour de sécurité pour Windows XP (KB927779)
Mise à jour de sécurité pour Windows XP (KB927802)
Mise à jour de sécurité pour Windows XP (KB928090)
Mise à jour de sécurité pour Windows XP (KB928255)
Mise à jour de sécurité pour Windows XP (KB928843)
Mise à jour de sécurité pour Windows XP (KB929969)
Mise à jour de sécurité pour Windows XP (KB930178)
Mise à jour de sécurité pour Windows XP (KB931261)
Mise à jour de sécurité pour Windows XP (KB931784)
Mise à jour de sécurité pour Windows XP (KB932168)
Mise à jour pour Windows XP (KB894391)
Mise à jour pour Windows XP (KB896727)
Mise à jour pour Windows XP (KB898461)
Mise à jour pour Windows XP (KB900485)
Mise à jour pour Windows XP (KB908531)
Mise à jour pour Windows XP (KB910437)
Mise à jour pour Windows XP (KB911280)
Mise à jour pour Windows XP (KB916595)
Mise à jour pour Windows XP (KB920872)
Mise à jour pour Windows XP (KB922582)
Mise à jour pour Windows XP (KB929338)
Mise à jour pour Windows XP (KB931836)
monAlbumPhoto
Mozilla Firefox (2.0.0.3)
MSXML 4.0 SP2 (KB927978)
MSXML4 Parser
MyDSC2
Nero Digital
Nero Media Player
Nero OEM
NeroMIX
Panda ActiveScan
PanoStandAlone
PDF2HTML 1.6
Pdf995
PhotoFiltre
PhotoGallery
Photorécit 3 pour Windows
Phototool 1.8
Picasa 2
PIF DESIGNER2.1
Programme de gestion Camera de Logitech®
Quick Zip 4.60.017b
QuickTime
RandMap
RealPlayer
SafeCast Shared Components
SAGEM F@st 800-840
Sandlot Games Client Services
Sarbacane 2
ScanToWeb
SkinsHP1
Smart Link 56K Modem
SolutionCenter
Sonic_PrimoSDK
Sony Ericsson File Manager
Sony Ericsson Image Editor
Sony Ericsson MMS Home Studio
Sony Ericsson Mobile Phone Monitor
Sony Ericsson OCS
Spybot - Search & Destroy 1.4
Status
Sécurité Enfants
TrayApp
Ulead Photo Express 4.0 SE
Unload
VideoEgg Publisher
VideoLAN VLC media player 0.7.2
Viewpoint Media Player
WebFldrs XP
WebReg
Windows Genuine Advantage Notifications (KB905474)
Windows Installer 3.1 (KB893803)
Windows Installer 3.1 (KB893803)
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 2
xp-AntiSpy 3.92
Xvid 1.1.2 final uninstall

Le volume dans le lecteur C s'appelle 53_03_10

Répertoire de C:\Program Files

03-12-20 13:17 <REP> %ALLUSERSPROFILE%
07-04-10 11:44 <REP> .
07-04-10 11:44 <REP> ..
05-02-01 22:24 <REP> _ArcadeDownloadFolder
04-03-24 08:21 <REP> 3DJongg
05-05-16 17:16 <REP> a2
05-05-19 17:34 <REP> ABBYY FineReader 5.0 Sprint
06-10-08 12:57 <REP> ACD Systems
04-01-05 21:47 <REP> Ad-aware
06-10-08 13:56 <REP> Adobe
04-01-14 02:01 <REP> Adobe Type Manager
05-07-29 12:47 <REP> Ahead
07-03-28 12:13 <REP> Alice
07-03-23 19:59 <REP> Alwil Software
04-06-30 21:46 <REP> ArcSoft
05-12-24 18:15 <REP> Audacity
06-12-30 19:07 <REP> BitTorrent
06-08-11 02:31 <REP> Boonty
06-08-11 01:27 <REP> BoontyGames
06-10-08 12:51 <REP> BVRP Software
07-04-05 14:59 <REP> CCleaner
07-03-05 16:15 <REP> CIEL
07-03-05 16:30 <REP> Common Files
04-11-26 03:18 <REP> Company Ericsson
03-10-17 08:30 <REP> ComPlus Applications
04-06-17 12:42 <REP> CursorXP
04-01-02 20:57 <REP> dialware
04-01-02 16:14 <REP> Digital Camera (2320)
03-12-27 16:11 <REP> directx
04-07-09 15:09 <REP> DivX
05-06-27 17:39 <REP> D-Tools
06-12-28 18:39 <REP> EA GAMES
06-01-04 23:32 <REP> Easy Notification 2.0
06-12-30 19:09 <REP> eMule
04-06-30 22:10 <REP> EPSON
06-10-08 12:57 <REP> Fichiers communs
04-10-02 00:59 <REP> Foxmail
04-04-17 02:54 <REP> F-Secure Internet Security
07-01-02 19:19 <REP> Google
07-03-26 22:16 <REP> Goto software
07-04-03 21:25 <REP> Grisoft
04-10-02 00:58 <REP> GTDesktop
06-08-15 19:33 <REP> Hewlett-Packard
04-01-04 03:38 <REP> HighMAT CD Writing Wizard
07-04-05 00:06 <REP> Hijackthis
06-08-15 19:31 <REP> HP
04-06-04 23:24 <REP> Icons
04-01-14 01:59 <REP> ImageServer
05-05-19 22:51 <REP> IncrediMail
05-07-21 13:52 <REP> InterActual
07-02-15 18:55 <REP> Internet Explorer
03-12-20 14:50 <REP> InterVideo
04-09-04 14:44 <REP> iRiver
05-03-29 18:57 <REP> IVT Corporation
07-02-12 23:29 <REP> Java
03-12-22 23:51 <REP> Kazaa
06-12-30 19:22 <REP> Kazaa Lite K++
04-07-02 21:29 <REP> Kerio
05-03-03 03:47 <REP> Kodak
04-01-02 16:43 <REP> Konami
07-02-05 17:29 <REP> Labtec
05-08-13 15:36 <REP> Lavasoft
04-06-17 12:41 <REP> LeechGet 2004
07-03-14 14:23 <REP> LimeWire
05-01-04 00:00 <REP> Logiciels peu utilisés
04-11-15 15:43 <REP> Logitech
04-06-21 13:18 <REP> Logon Loader
04-10-02 00:58 <REP> Maxis
05-05-16 17:26 <REP> McAfee.com
06-08-11 01:27 <REP> Mes Jeux Téléchargés
05-02-12 20:12 <REP> Messenger
07-03-14 19:10 <REP> Messenger Plus! Live
04-01-02 16:02 <REP> Micro Application
03-10-17 08:32 <REP> microsoft frontpage
05-06-30 13:36 <REP> Microsoft Office
04-12-21 15:50 <REP> Microsoft Picture It! PhotoPub
04-03-04 18:18 <REP> Microsoft Works
04-12-04 17:20 <REP> MIKSOFT
06-03-25 17:41 <REP> monAlbumPhoto
04-10-02 00:57 <REP> MoodLogic
04-09-03 11:20 <REP> Movie Maker
07-04-05 14:46 <REP> Mozilla Firefox
04-12-11 13:29 <REP> MSN
05-11-04 20:38 <REP> MSN Apps
03-10-17 08:29 <REP> MSN Gaming Zone
07-02-26 15:11 <REP> MSN Messenger
06-11-26 22:15 <REP> MSXML 4.0
05-03-10 15:00 <REP> Neodivx
04-09-03 11:16 <REP> NetMeeting
05-01-03 22:36 <REP> Network Associates
03-12-20 15:26 <REP> Nullsoft
04-05-29 17:30 <REP> OfficeUpdate11
07-02-06 18:31 <REP> OpenOffice.org 2.0
06-12-29 14:50 <REP> Outlook Express
05-05-16 17:22 <REP> PCPitstop
07-04-09 16:58 <REP> PDF2HTML 1.6
06-06-09 19:42 <REP> pdf995
06-05-07 01:02 <REP> Photo Story 3 for Windows
04-01-14 03:02 <REP> PhotoDeluxe HE 3.1
06-04-09 03:05 <REP> PhotoFiltre
06-07-23 20:00 <REP> Phototool
07-01-02 19:19 <REP> Picasa2
05-05-16 17:32 <REP> Pinnacle
04-02-09 17:38 <REP> PIXELA
04-06-05 00:03 <REP> Plus!
06-01-05 01:00 <REP> QuickTime
07-03-31 14:35 <REP> QuickZip4
05-02-01 22:29 <REP> Real
05-07-18 17:20 <REP> SAGEM
06-02-12 02:29 <REP> Seagrand
03-10-17 08:31 <REP> Services en ligne
03-10-17 09:03 <REP> SigmaTel
06-12-30 19:24 <REP> SIMS academy
04-07-17 17:05 <REP> Smart Panel
04-06-17 12:42 <REP> SmartBarXP BETA4.4
04-10-02 01:21 <REP> SmartBarXP BETA4.8
05-03-29 18:17 <REP> SmartBarXP BETA4.9
05-05-16 17:37 <REP> Softwin
04-12-02 21:02 <REP> Sony Ericsson
05-05-20 01:07 <REP> Sony Setup
04-06-04 22:35 <REP> Sphere
07-02-03 19:36 <REP> Spybot - Search & Destroy
05-05-16 17:23 <REP> Tap'Touche 5
06-08-01 13:00 <REP> Telecom Italia France
04-06-05 19:05 <REP> TGTSoft
04-06-04 21:12 <REP> themexp
07-02-20 00:20 <REP> ToniArts
04-03-12 02:36 <REP> TryMedia
04-01-02 21:13 <REP> Twilight
05-03-01 19:46 <REP> Ubi Soft
06-06-13 21:25 <REP> Ulead Systems
07-03-21 23:13 <REP> VideoEgg
04-06-30 00:26 <REP> VideoLAN
03-12-20 15:26 <REP> Viewpoint
05-05-20 01:20 <REP> VSTplugins
04-01-05 21:48 <REP> Webteh
05-06-27 17:46 <REP> WildTangent
04-07-13 19:29 <REP> Winamp
06-12-30 18:01 <REP> Windows Media Connect 2
06-12-30 18:01 <REP> Windows Media Player
04-12-11 13:29 <REP> Windows NT
03-10-17 08:32 <REP> xerox
06-12-30 19:12 <REP> Xvid
05-03-27 17:27 <REP> Yahoo!
0 fichier(s) 0 octets
144 Rép(s) 52,323,942,400 octets libres
Le volume dans le lecteur C s'appelle 53_03_10

Répertoire de C:\Program Files\fichiers communs

06-10-08 12:57 <REP> .
06-10-08 12:57 <REP> ..
06-10-08 19:20 <REP> ACD Systems
07-02-06 18:34 <REP> Adobe
03-12-20 13:51 <REP> Ahead
03-12-22 20:49 <REP> AOL
06-07-25 22:52 <REP> BOONTY Shared
05-06-30 13:36 <REP> Designer
04-11-02 19:13 <REP> FotoWire
06-08-15 19:34 <REP> HP
07-02-05 17:29 <REP> InstallShield
05-06-09 18:07 <REP> Java
05-03-03 03:47 <REP> Kodak
04-11-02 19:09 <REP> Logitech
04-02-20 20:42 <REP> Macrovision Shared
06-09-02 13:59 <REP> Microsoft Shared
03-10-17 08:30 <REP> MSSoap
03-10-17 09:26 <REP> ODBC
05-02-01 16:25 <REP> Real
06-06-12 21:12 <REP> Sandlot Shared
03-10-17 08:30 <REP> Services
07-04-10 12:09 <REP> Softwin
06-08-15 19:35 <REP> Sonic Shared
03-10-17 09:26 <REP> SpeechEngines
04-06-04 23:43 <REP> Stardock
06-12-29 14:50 <REP> System
04-11-26 03:28 <REP> Teleca Shared
05-02-01 16:25 <REP> xing shared
0 fichier(s) 0 octets
28 Rép(s) 52,323,950,592 octets libres
Le volume dans le lecteur C s'appelle 53_03_10

Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders

05-06-30 13:36 <REP> .
05-06-30 13:36 <REP> ..
03-12-27 17:35 <REP> 1033
05-06-30 13:36 <REP> 1036
03-07-11 11:15 1,292,872 MSONSEXT.DLL
01-02-13 08:23 58,784 MSOSV.DLL
99-06-03 14:09 122,937 MSOWS409.DLL
01-03-07 09:00 127,033 MSOWS40c.DLL
00-08-06 09:04 401,462 MSVCP60.DLL
01-01-22 03:25 69,632 PKMAXCTL.DLL
01-01-22 03:25 872,448 PKMCDO.DLL
01-01-22 03:25 159,744 PKMCORE.DLL
01-02-07 09:59 106,496 PKMFORMS.DLL
01-02-12 04:03 684,032 PKMRES.DLL
01-01-22 03:25 28,672 PKMSSTLB.DLL
01-01-22 03:25 40,960 PKMTEMPL.DLL
01-01-22 03:25 24,576 PKMTRACE.DLL
03-07-11 03:25 80,448 PKMWS.DLL
01-01-22 03:25 237,568 PROMDEMO.DLL
01-01-22 03:25 184,320 SECMGR.DLL
01-01-22 03:25 323,584 VAIDDMGR.DLL
01-01-22 03:25 32,768 VAIMEM.DLL
18 fichier(s) 4,848,336 octets
4 Rép(s) 52,323,950,592 octets libres
Le volume dans le lecteur C s'appelle 53_03_10

Répertoire de C:\Program Files\common files

07-03-05 16:30 <REP> .
07-03-05 16:30 <REP> ..
05-06-16 13:20 <REP> EasyInfo
04-08-19 19:56 <REP> Microsoft Shared
07-03-05 16:30 <REP> Sage Shared
04-07-30 21:33 <REP> System
0 fichier(s) 0 octets
6 Rép(s) 52,323,950,592 octets libres
Le volume dans le lecteur C s'appelle 53_03_10

Répertoire de C:\

01-11-11 00:00 68,096 diff.exe
02-11-11 17:16 20,480 fastboot.exe
03-07-02 08:49 520,192 FirstSteps.exe
06-08-27 14:10 103,424 grep.exe
05-10-31 17:56 700,416 StubInstaller.exe
01-05-24 13:59 162,304 UNWISE.EXE
6 fichier(s) 1,574,912 octets
0 Rép(s) 52,323,946,496 octets libres
c:\Documents and Settings\All Users\Documents\Pac-Man.exe
c:\Documents and Settings\Camille\.limewire\.NetworkShare\LimeWireWinInstaller.exe
c:\Documents and Settings\Camille\Application Data\Macromedia\Flash Player\localhost\Documents and Settings\All Users\Documents\Pac-Man.exe
c:\Documents and Settings\Camille\Application Data\MessengerPlus! 3\MsgPlus.exe
c:\Documents and Settings\Camille\Bureau\LimeWireWin.exe
c:\Documents and Settings\Camille\Local Settings\Temp\ar500fra.exe
c:\Documents and Settings\Camille\Local Settings\Temp\AutoRun.exe
c:\Documents and Settings\Camille\Local Settings\Temp\BitTorrent-4.20.9.exe
c:\Documents and Settings\Camille\Local Settings\Temp\eauninstall.exe
c:\Documents and Settings\Camille\Local Settings\Temp\idy3bn65.exe
c:\Documents and Settings\Camille\Local Settings\Temp\Install_Messenger.exe
c:\Documents and Settings\Camille\Local Settings\Temp\msnsearch.exe
c:\Documents and Settings\Camille\Local Settings\Temp\The Sims 2 Pets_uninst.exe
c:\Documents and Settings\Camille\Local Settings\Temp\bye52.tmp\Disk1\setup.exe
c:\Documents and Settings\Camille\Local Settings\Temp\bye57.tmp\Disk1\setup.exe
c:\Documents and Settings\Camille\Local Settings\Temp\HPSUD5-4.V6J\signed\hprbUpdate.exe
c:\Documents and Settings\Camille\Local Settings\Temp\HPSUD5-4.V6J\signed\hprbupdatep.exe
c:\Documents and Settings\Camille\Local Settings\Temp\SLF1383.tmp\Appartement_3D_2006_Telecharger{75474}.exe
c:\Documents and Settings\Camille\Local Settings\Temp\SLF1A80.tmp\Desktop_Sudoku_Telecharger{66976}.exe
c:\Documents and Settings\Camille\Local Settings\Temp\SLF1E15.tmp\Appartement_3D_2006_Telecharger{75474}.exe
c:\Documents and Settings\Camille\Local Settings\Temp\SLF2A9F.tmp\Appartement_3D_2006_Telecharger{75474}.exe
c:\Documents and Settings\Camille\Local Settings\Temp\SLF346B.tmp\Appartement_3D_2006_Telecharger{75474}-1.exe
c:\Documents and Settings\Camille\Local Settings\Temp\SLF653A.tmp\Appartement_3D_2006_Telecharger{75474}-1.exe
c:\Documents and Settings\Camille\Local Settings\Temp\SLF6CDF.tmp\Appartement_3D_2006_Telecharger{75474}.exe
c:\Documents and Settings\Camille\Local Settings\Temp\SLF7329.tmp\Appartement_3D_2006_Telecharger{75474}-1.exe
c:\Documents and Settings\Camille\Local Settings\Temp\SLF7B8E.tmp\Diner_Dash_Telecharger{27345}.exe
c:\Documents and Settings\Camille\Local Settings\Temp\SLFEDC.tmp\Diner_Dash_2_Telecharger{122098}.exe
c:\Documents and Settings\Camille\Local Settings\Temp\__ArcadeDownloadFoler__dinerdash2restaurantrescue_FR_rf-elgoog\RealOneArcadeBundle.exe
c:\Documents and Settings\Camille\Local Settings\Temp\__ArcadeDownloadFoler__dinerdash2restaurantrescue_FR_rf-elgoog\RngcBundler.exe
c:\Documents and Settings\Camille\Local Settings\Temporary Internet Files\Content.IE5\4RLF2IZP\picasa2-setup-3597[1].exe
c:\Documents and Settings\Camille\Local Settings\Temporary Internet Files\Content.IE5\PRV7DHOE\Install_Messenger[1].exe
c:\Documents and Settings\Camille\Menu Démarrer\Programmes\COKTEL\Configuration 3D.exe
c:\Documents and Settings\Camille\Menu Démarrer\Programmes\COKTEL\Désinstalleur Coktel.exe
c:\Documents and Settings\Camille\Mes documents\Téléchargements\google-earth_google_earth_3.0.0762_beta_anglais_14783.exe
c:\Documents and Settings\Camille\Mes documents\Téléchargements\GoogleVideoPlayerSetup_2006_04_28-14-09_pcg.exe
c:\Documents and Settings\Camille\Mes documents\Téléchargements\MsgPlusLive-401.exe
c:\Documents and Settings\Camille\Mes documents\Téléchargements\pf-setup.exe
c:\Documents and Settings\Camille\Mes documents\Téléchargements\msn\MsgPlus.exe
c:\Documents and Settings\Camille\Mes documents\Téléchargements\msn\MsgPlus-325.exe
c:\Documents and Settings\Vanina\Application Data\Microsoft\Installer\{532EFE70-19BC-4F0F-8F50-D5F15C243133}\NewShortcut1_8315396A5EA1419DBEC4978284BDF556.exe
c:\Documents and Settings\Vanina\Application Data\Microsoft\Installer\{8315396A-5EA1-419D-BEC4-978284BDF556}\NewShortcut1_8315396A5EA1419DBEC4978284BDF556.exe
c:\Documents and Settings\Vanina\Bureau\a ranger\audacity-win-1.2.4.exe
c:\Documents and Settings\Vanina\Bureau\Cours\Sphinx2000\Sphinx2000\Sphinx2000.exe
c:\Documents and Settings\Vanina\Bureau\Cours\Sphinx2000\Sphinx2000\SphCalc\SphCalc.exe
c:\Documents and Settings\Vanina\Bureau\Cours\Sphinx2000\Sphinx2000\SphList\SphList.exe
c:\Documents and Settings\Vanina\Bureau\Cours\Sphinx2000\Sphinx2000\SphMerge\SphMerge.exe
c:\Documents and Settings\Vanina\Bureau\Cours\Sphinx2000\Sphinx2000\Sphodbc\SphODBC.exe
c:\Documents and Settings\Vanina\Bureau\Cours\Sphinx2000\Sphinx2000\SphPrSc\SphPrSc.exe
c:\Documents and Settings\Vanina\Bureau\Cours\Sphinx2000\Sphinx2000\Sylex\wlemb32.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Sphinx.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\ConvertEuro\ConvertEuro.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Eureka\Eureka.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Eureka\Modules\FormScript.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Licence\Licence.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Licence\UNWISE.EXE
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Modules\SphList\SphList.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Modules\SphMerge\SphMerge.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Modules\SphPrSc\SphPrSc.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Modules\SphTools\RenommeFic.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Modules\SphTools\Sph2Office.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Modules\SphTools\sphconcat.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Modules\SphTools\SW32.EXE
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Modules\SphTrad\TraductionSphinx.exe
c:\Documents and Settings\Vanina\Bureau\Cours\SphinxME\SphinxME\Serveur\Compte.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\catchme.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\diff.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\dumphive.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\FilesInfoCmd.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\Fport.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\grep.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\LFiles.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\LISTDLLS.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\pslist.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\streams.exe
c:\Documents and Settings\Vanina\Bureau\DiagHelp\DiagHelp\swreg.exe
c:\Documents and Settings\Vanina\Bureau\PC Sécu\catchme.exe
c:\Documents and Settings\Vanina\Bureau\PC Sécu\avg\ewido-setup.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\aawsepersonal.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\avg75free_432a904.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\ccsetup138_basic.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\EClea2_0.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\pdf2html.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\quickzip.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\rp505fra.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\setupfre.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\spybotsd14.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\SXFR201DOGTC5.EXE
c:\Documents and Settings\Vanina\Bureau\Téléchargements\VideoEggPublisher.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\XviD-1.1.2-01112006.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\EClea2_0\EasyClea.exe
c:\Documents and Settings\Vanina\Bureau\Téléchargements\mvc\setup.exe
c:\Documents and Settings\Vanina\Mes documents\divers\divers\zumadeluxeenfranais.exe
c:\Documents and Settings\Vanina\Mes documents\divers\divers\NeroVision\nero63117.exe
c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll
c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll
c:\Documents and Settings\All Users\Application Data\Zylom\ZylomLoader\zylom\astropop\astropop.dll
c:\Documents and Settings\All Users\Application Data\Zylom\ZylomLoader\zylom\Zuma\Zuma.dll
c:\Documents and Settings\Camille\Application Data\MessengerPlus! 3\Lame_enc.dll
c:\Documents and Settings\Camille\Application Data\MessengerPlus! 3\Libsndfile.dll
c:\Documents and Settings\Camille\Application Data\MessengerPlus! 3\MsgPlusH.dll
c:\Documents and Settings\Camille\Application Data\MessengerPlus! 3\MsgPlusLoader.dll
c:\Documents and Settings\Camille\Application Data\MessengerPlus! 3\MsgPlusLoader1.dll
c:\Documents and Settings\Camille\Application Data\MessengerPlus! 3\RichEdHook.dll
c:\Documents and Settings\Camille\Application Data\MessengerPlus! 3\Resources\MsgPlusRes.dll
c:\Documents and Settings\Camille\Application Data\Microsoft\IdentityCRL\ppcrlconfig.dll
c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll
c:\Documents and Settings\Vanina\Application Data\Adobe\Acrobat\Whapi\WHA Library.dll
c:\Documents and Settings\Vanina\Application Data\Mozilla\Firefox\Profiles\3bd37vhj.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar.dll
c:\Documents and Settings\Vanina\Application Data\Mozilla\Firefox\Profiles\3bd37vhj.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\metrics.dll
c:\Documents and Settings\Vanina\Application Data\VideoEgg\Publisher\3461\avcodec.dll
c:\Documents and Settings\Vanina\Application Data\VideoEgg\Publisher\3461\crashRpt.dll
c:\Documents and Settings\Vanina\Application Data\VideoEgg\Publisher\3461\FLVEncoder.dll
c:\Documents and Settings\Vanina\Application Data\VideoEgg\Publisher\3461\lame_enc.dll
c:\Documents and Settings\Vanina\Application Data\VideoEgg\Publisher\3461\libcurlve.dll
c:\Documents and Settings\Vanina\Application Data\VideoEgg\Publisher\3461\libpng.dll
c:\Documents and Settings\Vanina\Application Data\VideoEgg\Publisher\3461\npvideoegg-publisher.dll
c:\Documents and Settings\Vanina\Application Data\VideoEgg\Publisher\3461\zlib.dll
c:\Documents and Settings\Vanina\Application Data\VideoEgg\Updater\2663\libcurlve.dll
c:\Documents and Settings\Vanina\Application Data\VideoEgg\Updater\2663\updater.dll

répondre

Anthony10 le 12 avril 2007 à 01h32

Bonsoir Vani1408,

Quels sont les fichiers détectés par Avast ?
Quels sont les chemins d'accès ?

Anthony.

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 13 avril 2007 à 19h59

Hello,
Je rencontre des difficultés à intégré une copie d'écran (ou image) indiquant les fichiers détecté par AVAST et leurs emplacements. En effet ces fichiers ont des noms assez particulier, c'est pourquoi j'ai fait une copie écran puis converti en image.
Alors comment insérer une image sur le forum??

-->Message édité par Vani1408 le 13/04/2007 20:00:52<--

répondre

Anthony10 le 14 avril 2007 à 01h24

Bonsoir Vani1408,

Pour la copie de Avast, appuie sur la touche Impécr Syst de ton clavier.
Clique sur Démarrer/Programmes/Accessoires/Paint
Clique sur le menu déroulant Edition/Coller l'image
Donne un nom à ton image (champ Nom du fichier)
A Type, choisis : JPEG
Enregistre ton image sur ton Bureau
Rends-toi ici
Pour récupérer ton image, clique sur le bouton Parcourir.
Trouve ton image et double-clique dessus (ou clique une fois dessus et clique sur Ouvrir)
Clique sur host it!
Patiente quelques secondes, le temps que l'image se charge sur les serveurs de ImageShack.
Sélectionne ce qui est dans le champ : Direct Link
Clique droit, Copier et colle le lien dans ta future réponse.

Anthony

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 14 avril 2007 à 02h29

MERCIIIIIIIII
Voici les fichiers infestés et leurs emplacements

http://img339.imageshack.us/img339/4753/avastquarantaineig5.jpg

répondre

Anthony10 le 14 avril 2007 à 02h31

Re-bonsoir,

Avant de commencer, lis la licence de Blacklight (F-Secure)
En lisant ce document, tu as pris connaissance et accepté les conditions d'utilisation de ce programme inclus dans Navilog1.zip.

Télécharge maintenant Navilog1.zip (Il Mafioso)
Enregistre-le sur ton Bureau.
Dézippe le contenu de l'archive en faisant un Clique droit sur Navilog1.zip puis en choisissant Tout Extraire.

Double clique sur Navilog1.bat.
Laisse-toi guider par l'utilitaire. Choisis l'option 1 puis valide.
/!\ N'utilise pas l'option 2,3 et 4 sans notre accord /!\
Patiente jusqu'à l'apparition de ce message :
"*** Analyse Termine le ..... ***"
Appuie sur une touche comme demandé. Le Bloc-notes va s'ouvrir. Poste-nous son contenu de cette manière :

-> Edition / Sélectionner tout
-> Edition / Copier
-> Clique-Droit / Coller dans ta réponse

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 14 avril 2007 à 15h09

Le rapport de Navilog1:

Search Navipromo version 1.1.5 commencé le 07-04-14 à 14:40:06.42

!!! Attention,ce rapport peut indiquer des fichiers/programmes légitimes!!!
!!! Poster ce rapport sur le forum pour le faire analyser !!!
!!! Ne pas lancer la partie désinfection sans l'avis d'un spécialiste !!!

Fix lancé depuis C:\Documents and Settings\Vanina\Bureau\navilog1
Mise a jour le 13.04.2007 a 20h00 by IL-MAFIOSO

Executé en mode normal

*** Recherche Programmes installes ***

*** Recherche dossiers dans C:\WINDOWS ***

*** Recherche dossiers dans C:\Program Files ***

*** Recherche dossiers dans C:\Documents and Settings\All Users\Application Data ***

*** Recherche dossiers dans C:\Documents and Settings\Vanina\Application Data ***

*** Recherche avec BlackLight Engine/F-secure ***
BlackLight Engine est un produit de F-secure, pour + d'infos :
http://www.f-secure.com/blacklight/blacklight_help.html

F-SECURE BLACKLIGHT ROOTKIT ELIMINATOR
======================================

Copyright 2005-2006 F-Secure Corporation. All rights reserved.
This is a beta version. It will expire on 1st of April, 2007.
Version information: 2.2.1061.

[+] Started on 04/14/07 at 14:40:09.
[+] Initializing ...
[+] Starting scan, press Ctrl-C to abort.
[+] Scanning for hidden items .........................................................................................................................................................................................
[+] Scan complete.
[+] Summary: 0 hidden item(s) found, 0 scheduled for renaming.
[+] Exited on 04/14/07 at 15:03:52 (return code = 0).

*** Recherche fichiers ***

*** Recherche cles registre ***

Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs]

Recherche dans [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ModuleUsage]

Recherche Clé Magic Control

*** Module de Recherche complémentaire ***
(Recherche fichiers spécifiques)

1)Recherche fichiers connus:

2)Recherche Heuristique :
*
**
***
****
*****
******
*******
********

*** Analyse Terminé le 07-04-14 à 15:04:26.84 ***

répondre

Anthony10 le 15 avril 2007 à 12h41

Bonjour Vani1408,

Télécharge F-Secure BlackLight (de F-Secure) sur ton Bureau.

Clique sur I accept au bas de la page.

Clique sur Download Blacklight Beta graphical user interface version.

Double-clique sur fsbl.exe et accepte la licence en cochant le bouton devant I accept the agreement.

Clique sur Scan .

Le scan peut prendre quelques minutes.

Clique sur Next, le rapport s'affichera (Ne pas effectuer l'étape nommée "Cleaning").

Clique sur Close.

Dans ta future réponse, envoie le rapport de F-Secure BlackLight situé sur le Bureau : fsbl-xxxxxxxx.txt (Les "x" représentent des chiffres).

A suivre,

En cas de soucis, voir le tutorial de F-Secure Blacklight sur le site de Malekal_Morte

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 15 avril 2007 à 13h12

Voilà le rapport fr Blacklight :

04/15/07 12:45:59 [Info]: BlackLight Engine 1.0.61 initialized
04/15/07 12:45:59 [Info]: OS: 5.1 build 2600 (Service Pack 2)
04/15/07 12:45:59 [Note]: 7019 4
04/15/07 12:45:59 [Note]: 7005 0
04/15/07 12:46:04 [Note]: 7006 0
04/15/07 12:46:04 [Note]: 7011 1488
04/15/07 12:46:05 [Note]: 7026 0
04/15/07 12:46:05 [Note]: 7026 0
04/15/07 12:46:37 [Note]: FSRAW library version 1.7.1021
04/15/07 13:10:15 [Note]: 2000 1012
04/15/07 13:10:57 [Note]: 7007 0

répondre

Anthony10 le 15 avril 2007 à 13h15

Bonjour,

Télécharge (Clique droit puis "Enregistrer la cible sous) Silent Runners sur ton Bureau.

Double-clique sur SilentRunners.vbs pour lancer le script.

A la fenêtre de demande de recherches supplémentaires, clique sur Oui.

Un rapport sera généré sur ton Bureau nommé Startup Programs.txt

Dans ta future réponse, envoie ce rapport.

A suivre,

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 15 avril 2007 à 13h22

Voilà :

"Silent Runners.vbs", revision R50, http://www.silentrunners.org/
Operating System: Windows XP SP2
Output limited to non-default values, except where indicated by "{++}"

répondre

Vani1408 le 15 avril 2007 à 13h23

Désolée j'avais pas vu le reste :

"Silent Runners.vbs", revision R50, http://www.silentrunners.org/
Operating System: Windows XP SP2
Output limited to non-default values, except where indicated by "{++}"

Startup items buried in registry:
---------------------------------

HKCU\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"CTFMON.EXE" = "C:\WINDOWS\system32\ctfmon.exe" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\ {++}
"KeyBoard" = "C:\PROGRA~1\Labtec\LABTEC~1\Keyboard.exe" [null data]
"HP Software Update" = "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" ["Hewlett-Packard Development Company, L.P."]
"InCD" = "C:\Program Files\Ahead\InCD\InCD.exe" ["Nero AG"]
"Wizard" = "(empty string)" [file not found]
"avast!" = "C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [null data]
"TkBellExe" = ""C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot" ["RealNetworks, Inc."]
"!AVG Anti-Spyware" = ""C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized" ["Anti-Malware Development a.s."]

HKLM\Software\Microsoft\Active Setup\Installed Components\
{8b15971b-5355-4c82-8c07-7e181ea07608}\(Default) = "Fax"
\StubPath = "rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.UnInstall.PerUser" [MS]
{94de52c8-2d59-4f1b-883e-79663d2d9a8c}\(Default) = "Fax Provider"
\StubPath = "rundll32.exe C:\WINDOWS\System32\Setup\FxsOcm.dll,XP_UninstallProvider" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}\(Default) = (no title provided)
-> {HKLM...CLSID} = "AcroIEHlprObj Class"
\InProcServer32\(Default) = "C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx" [empty string]
{53707962-6F74-2D53-2644-206D7942484F}\(Default) = (no title provided)
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\PROGRA~1\SPYBOT~1\SDHelper.dll" ["Safer Networking Limited"]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\(Default) = (no title provided)
-> {HKLM...CLSID} = "SSVHelper Class"
\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll" ["Sun Microsystems, Inc."]
{9030D464-4C02-4ABF-8ECC-5164760863C6}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Windows Live Sign-in Helper"
\InProcServer32\(Default) = "C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll" [MS]
{9394EDE7-C8B5-483E-8773-474BF36AF6E4}\(Default) = (no title provided)
-> {HKLM...CLSID} = "ST"
\InProcServer32\(Default) = "C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll" [MS]
{BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0}\(Default) = (no title provided)
-> {HKLM...CLSID} = "MSNToolBandBHO"
\InProcServer32\(Default) = "C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Extension Affichage Panorama du Panneau de configuration"
-> {HKLM...CLSID} = "Extension Affichage Panorama du Panneau de configuration"
\InProcServer32\(Default) = "deskpan.dll" [file not found]
"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "Extension icône HyperTerminal"
-> {HKLM...CLSID} = "HyperTerminal Icon Ext"
\InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."]
"{950FF917-7A57-46BC-8017-59D9BF474000}" = "Shell Extension for CDRW"
-> {HKLM...CLSID} = "Shell Extension for CDRW"
\InProcServer32\(Default) = "C:\Program Files\Ahead\InCD\incdshx.dll" ["Nero AG"]
"{C56C4E21-706D-11d0-AFC5-444553540002}" = "Mon appareil photo numérique"
-> {HKLM...CLSID} = "Mon appareil photo numérique"
\InProcServer32\(Default) = "C:\Program Files\PhotoDeluxe HE 3.1\FotoNation Explorer\camview.dll" ["FotoNation Inc."]
"{F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4}" = "Shell Extensions for RealOne Player"
-> {HKLM...CLSID} = "RealOne Player Context Menu Class"
\InProcServer32\(Default) = "C:\Program Files\Real\RealPlayer\rpshell.dll" ["RealNetworks, Inc."]
"{400CFEE2-39D0-46DC-96DF-E0BB5A4324B3}" = "My Logitech Pictures"
-> {HKLM...CLSID} = "My Logitech Pictures"
\InProcServer32\(Default) = "C:\Program Files\Logitech\Video\Namespc2.dll" ["Logitech Inc."]
"{A5110426-177D-4e08-AB3F-785F10B4439C}" = "Mes téléphones"
-> {HKLM...CLSID} = "Mes téléphones"
\InProcServer32\(Default) = "C:\Program Files\Sony Ericsson\Mobile\File Manager\fmgrgui.dll" ["Sony Ericsson Mobile Communications AB"]
"{0006F045-0000-0000-C000-000000000046}" = "Microsoft Outlook Custom Icon Handler"
-> {HKLM...CLSID} = "Outlook File Icon Extension"
\InProcServer32\(Default) = "C:\Program Files\Microsoft Office\Office10\OLKFSTUB.DLL" [MS]
"{42042206-2D85-11D3-8CFF-005004838597}" = "Microsoft Office HTML Icon Handler"
-> {HKLM...CLSID} = (no title provided)
\InProcServer32\(Default) = "C:\Program Files\Microsoft Office\Office10\msohev.dll" [MS]
"{FC9FB64A-1EB2-4CCF-AF5E-1A497A9B5C2D}" = "Messenger Sharing Folders"
-> {HKLM...CLSID} = "Mes dossiers de partage"
\InProcServer32\(Default) = "C:\Program Files\MSN Messenger\fsshext.8.1.0178.00.dll" [MS]
"{cc86590a-b60a-48e6-996b-41d25ed39a1e}" = "Portable Media Devices Menu"
-> {HKLM...CLSID} = "Portable Media Devices Menu"
\InProcServer32\(Default) = "C:\WINDOWS\system32\Audiodev.dll" [MS]
"{604C5810-D0CC-11D2-955F-00C04F79ED8A}" = "CIEL SA In-File System"
-> {HKLM...CLSID} = "CIEL SA In-File System"
\InProcServer32\(Default) = "C:\WINDOWS\system32\ifsrel.dll" ["CIEL SA"]
"{472083B0-C522-11CF-8763-00608CC02F24}" = "avast"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\
<<!>> "{57B86673-276A-48B2-BAE7-C6DBB3020EB8}" = "AVG Anti-Spyware 7.5"
-> {HKLM...CLSID} = "CShellExecuteHookImpl Object"
\InProcServer32\(Default) = "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\shellexecutehook.dll" ["Anti-Malware Development a.s."]

HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\
"WPDShServiceObj" = "{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
-> {HKLM...CLSID} = "WPDShServiceObj Class"
\InProcServer32\(Default) = "C:\WINDOWS\system32\WPDShServiceObj.dll" [MS]

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Windows\
<<!>> "AppInit_DLLs" = "x?sockspy.dll sockspy.dll sockspy.dll" [file not found]

HKLM\Software\Classes\*\shellex\ContextMenuHandlers\
avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]
AVG Anti-Spyware\(Default) = "{8934FCEF-F5B8-468f-951F-78A921CD3920}"
-> {HKLM...CLSID} = "CContextScan Object"
\InProcServer32\(Default) = "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll" ["Anti-Malware Development a.s."]

HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\
AVG Anti-Spyware\(Default) = "{8934FCEF-F5B8-468f-951F-78A921CD3920}"
-> {HKLM...CLSID} = "CContextScan Object"
\InProcServer32\(Default) = "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\context.dll" ["Anti-Malware Development a.s."]

HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\
avast\(Default) = "{472083B0-C522-11CF-8763-00608CC02F24}"
-> {HKLM...CLSID} = "avast"
\InProcServer32\(Default) = "C:\Program Files\Alwil Software\Avast4\ashShell.dll" ["ALWIL Software"]

Group Policies {policy setting}:
--------------------------------

Note: detected settings may not have any effect.

HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System\

"DisableRegistryTools" = (REG_DWORD) hex:0x00000000
{Prevent access to registry editing tools}

HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\

"shutdownwithoutlogon" = (REG_DWORD) hex:0x00000001
{Shutdown: Allow system to be shut down without having to log on}

"undockwithoutlogon" = (REG_DWORD) hex:0x00000001
{Devices: Allow undock without having to log on}

Active Desktop and Wallpaper:
-----------------------------

Active Desktop may be enabled at this entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

Displayed if Active Desktop enabled and wallpaper not set by Group Policy:
HKCU\Software\Microsoft\Internet Explorer\Desktop\General\
"Wallpaper" = "C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data\Microsoft\Wallpaper1.bmp"

Displayed if Active Desktop disabled and wallpaper not set by Group Policy:
HKCU\Control Panel\Desktop\
"Wallpaper" = "C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Wallpaper1.bmp"

Active Desktop web content (hidden if disabled):

HKCU\Software\Microsoft\Internet Explorer\Desktop\Components\0\
"FriendlyName" = ""
"Source" = "file:///C:/DOCUME~1/Vanina/LOCALS~1/Temp/msohtml1/02/clip_image002.jpg"
"SubscribedURL" = "file:///C:/DOCUME~1/Vanina/LOCALS~1/Temp/msohtml1/02/clip_image002.jpg"

HKCU\Software\Microsoft\Internet Explorer\Desktop\Components\1\
"FriendlyName" = ""
"Source" = "file:///C:/DOCUME~1/Vanina/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg"
"SubscribedURL" = "file:///C:/DOCUME~1/Vanina/LOCALS~1/Temp/msohtml1/01/clip_image002.jpg"

Enabled Screen Saver:
---------------------

HKCU\Control Panel\Desktop\
"SCRNSAVE.EXE" = "C:\WINDOWS\ENTERT~1.SCR" (EnterTheMatrix.scr) [null data]

Startup items in "Vanina" & "All Users" startup folders:
--------------------------------------------------------

C:\Documents and Settings\Vanina\Menu Démarrer\Programmes\Démarrage
"Easy Notification" -> shortcut to: "C:\Program Files\Easy Notification 2.0\EasyNoti.exe" ["Erik Fournier"]
"La Solution Plus Enseignement Ciel" -> shortcut to: "C:\CIEL\STARTER.EXE" [empty string]

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
"DSLMON" -> shortcut to: "C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe" [empty string]

Enabled Scheduled Tasks:
------------------------

"Recherche de virus de McAfee.com - Mon ordinateur (MONPOTE-Vanina)" -> launches: "c:\program files\mcafee.com\vso\mcmnhdlr.exe /runtask:0" [file not found]
"Spybot - Search & Destroy - Scheduled Task" -> launches: "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe /AUTOCHECK" ["Safer Networking Limited"]

Winsock2 Service Provider DLLs:
-------------------------------

Namespace Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}
000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]
000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000004\LibraryPath = "%SystemRoot%\system32\wshbth.dll" [MS]

Transport Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}
0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:
%SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 32
%SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05

Toolbars, Explorer Bars, Extensions:
------------------------------------

Toolbars

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\
"{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}"
-> {HKLM...CLSID} = "MSN"
\InProcServer32\(Default) = "C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll" [MS]

HKLM\Software\Microsoft\Internet Explorer\Toolbar\
"{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" = "0"
-> {HKLM...CLSID} = "MSN"
\InProcServer32\(Default) = "C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\fr\msntb.dll" [MS]

Explorer Bars

HKLM\Software\Microsoft\Internet Explorer\Explorer Bars\
{FE54FA40-D68C-11D2-98FA-00C0F0318AFE}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Real.com"
\InProcServer32\(Default) = "C:\WINDOWS\System32\Shdocvw.dll" [MS]

Extensions (Tools menu items, main toolbar menu buttons)

HKLM\Software\Microsoft\Internet Explorer\Extensions\
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\
"MenuText" = "Console Java (Sun)"
"CLSIDExtension" = "{CAFEEFAC-0015-0000-0011-ABCDEFFEDCBC}"
-> {HKCU...CLSID} = "Java Plug-in 1.5.0_11"
\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll" ["Sun Microsystems, Inc."]
-> {HKLM...CLSID} = "Java Plug-in 1.5.0_11"
\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_11\bin\npjpi150_11.dll" ["Sun Microsystems, Inc."]

{85D1F590-48F4-11D9-9669-0800200C9A66}\
"MenuText" = "Uninstall BitDefender Online Scanner v8"
"Exec" = "%windir%\bdoscandel.exe" [null data]

Miscellaneous IE Hijack Points
------------------------------

C:\WINDOWS\INF\IERESET.INF (used to "Reset Web Settings")

Added lines (compared with English-language version):
[Strings]: SAFESITE_VALUE="http://home.microsoft.com/intl/fr/"

Missing lines (compared with English-language version):
[Strings]: 1 line

Running Services (Display Name, Service Name, Path {Service DLL}):
------------------------------------------------------------------

avast! Antivirus, avast! Antivirus, ""C:\Program Files\Alwil Software\Avast4\ashServ.exe"" [null data]
avast! iAVS4 Control Service, aswUpdSv, ""C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe"" [null data]
AVG Anti-Spyware Guard, AVG Anti-Spyware Guard, "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe" ["Anti-Malware Development a.s."]
Bluetooth Support Service, BthServ, "C:\WINDOWS\system32\svchost.exe -k bthsvcs" {"C:\WINDOWS\System32\bthserv.dll" [MS]}
C-DillaCdaC11BA, C-DillaCdaC11BA, "C:\WINDOWS\System32\drivers\CDAC11BA.EXE" ["Macrovision"]
InCD Helper, InCDsrv, "C:\Program Files\Ahead\InCD\InCDsrv.exe" ["Nero AG"]
Pml Driver HPZ12, Pml Driver HPZ12, "C:\WINDOWS\system32\HPZipm12.exe" ["HP"]
Service Messenger Sharing Folders USN Journal Reader, usnjsvc, ""C:\Program Files\MSN Messenger\usnsvc.exe"" [MS]
Sécurité Enfants, OPTENET_FILTER, "C:\Program Files\Telecom Italia France\Securite Enfants\bin\optproxy.exe" ["Telecom Italia France"]

Print Monitors:
---------------

HKLM\System\CurrentControlSet\Control\Print\Monitors\
EPSON V6 2KMonitor\Driver = "EBPMON24.DLL" ["SEIKO EPSON CORPORATION"]
PDF995 Monitor\Driver = "pdf995mon.dll" [null data]

----------
<<!>>: Suspicious data at a malware launch point.

+ This report excludes default entries except where indicated.
+ To see *everywhere* the script checks and *everything* it finds,
launch it from a command prompt or a shortcut with the -all parameter.
+ To search all directories of local fixed drives for DESKTOP.INI
DLL launch points, use the -supp parameter or answer "No" at the
first message box and "Yes" at the second message box.
---------- (total run time: 101 seconds, including 9 seconds for message boxes)

répondre

Anthony10 le 16 avril 2007 à 21h50

Bonjour,

Fais un scan en ligne Kaspersky avec Internet Explorer :

Dans la nouvelle fenêtre, clique sur J'accepte.

Valide l'installation d'un ou de plusieurs ActiveX si c'est nécessaire.

Patiente pendant l'installation des Mises à jour.

Choisis par la suite l'analyse du Poste de travail

Sauvegarde puis colle le rapport généré en fin d'analyse.

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 17 avril 2007 à 20h53

Rapport KASPERSKY :
7-04-17 20:51
Système d'exploitation : Microsoft Windows XP Home Edition, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version : 5.0.83.0
Dernière mise à jour de la base antivirus Kaspersky : 17/04/2007
Enregistrements dans la base antivirus Kaspersky : 281224
Paramètres d'analyse
Analyser avec la base antivirus suivante standard
Analyser les archives vrai
Analyser les bases de messagerie vrai
Cible de l'analyse Poste de travail
A:\
C:\
D:\
E:\
Statistiques de l'analyse
Total d'objets analysés 132565
Nombre de virus trouvés 0
Nombre d'objets infectés 0 / 0
Nombre d'objets suspects 0
Durée de l'analyse 01:51:19

Nom de l'objet infecté Nom du virus Dernière action
C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\DSS\MachineKeys\3bae1360576263a944702944b24e521c_c50bd8c8-b7c7-4f8a-8a37-58dfd86d434f L'objet est verrouillé ignoré
C:\Documents and Settings\All Users\Application Data\Microsoft\Dr Watson\user.dmp L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré
C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\ntuser.dat L'objet est verrouillé ignoré
C:\Documents and Settings\Vanina\ntuser.dat.LOG L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log L'objet est verrouillé ignoré
C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt L'objet est verrouillé ignoré
C:\System Volume Information\MountPointManagerRemoteDatabase L'objet est verrouillé ignoré
C:\WINDOWS\Cookies\index.dat L'objet est verrouillé ignoré
C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré
C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\EventCache\{61640498-1980-403F-8701-50D52DB3741B}.bin L'objet est verrouillé ignoré
C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré
C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\edb.log L'objet est verrouillé ignoré
C:\WINDOWS\system32\CatRoot2\tmp.edb L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\Antivirus.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré
C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré
C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré
C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré
C:\WINDOWS\Temp\Perflib_Perfdata_718.dat L'objet est verrouillé ignoré
C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré
C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré
C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré
Analyse terminée. :jap:

répondre

Anthony10 le 18 avril 2007 à 21h47

Bonsoir,

Le rapport du scan en ligne est "propre".
Rencontres-tu encore des problèmes ?

Anthony

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 18 avril 2007 à 23h37

Le démarrage de mon PC est plus rapide et dans l'ensemble il est moins long.
Cependant, j'ai dans le fichier quarantaine d'AVAST les fichiers pour lesquels j'ai posté içi. Et il est impossible de les supprimer.

Est ce que je les laisse en quarantaine ou ...?

répondre

Anthony10 le 19 avril 2007 à 22h21

Bonjour,

Tu peux les laisser en Quarantaine car ils sont inactifs.

Désinstalle et supprime la totalité des programmes que je t'ai fais installé.

Recache les fichiers/dossiers.

Edite ton titre et rajoute la mention [Résolu] devant stp.

Rapporte ton infection pour faire condamner les auteurs sur Malware-Complaints. Pour faire entendre notre voix, nous devons être le plus nombreux possibles, alors rapport ton infection :

- Voir les règles de Malware-Complaints
- Enregistre sur le forum à partir du bouton register en haut :
Si tu as plus de 13 ans, choisir : I Agree to these terms and am over or exactly 13 years of age
Si tu as moins, clic sur : I Agree to these terms and am under 13 years of age

Après t'être enregistré, tu as sous forme de liste les types d'infection (Look2Me, Smitfraud, SpywareQuake etc..) : http://www.malwarecomplaints.info/viewforum.php?f=10&sid=0ea0981a2025873f(...)

Si le malware que tu as eu n'apparaît pas dans la liste, ou si tu ne sais pas quelle infection tu as eu, créé un message dans le sujet "Autres infections" conforme au règle du forum (age, ville, département etc..) : http://www.malwarecomplaints.info/viewforum.php?f=10

Si tu as des questions ou des problèmes, n'hésites pas à me demander ici.

Bonne journée.

-------
Mon forum (avec Bruce Lee):
http://cybersecurite.xooit.com/index.php

répondre

Vani1408 le 20 avril 2007 à 01h19

Tout d'abord merci beaucoup à toi pour toute ton aide.
Et bonne continuation.
Vanina

répondre