Virus ou pas ? - Sécurité - Virus
TomsGuide.com : 700 000 inscrits répondent à toutes vos questions high-tech et informatique.
Pour obtenir de l'aide, inscrivez-vous gratuitement !
 

Ajouter une réponse



Mot :   Pseudo :  
 
Bas de page
Auteur
 Sujet : Virus ou pas ?
 
bluesunset
Profil : IDNaute
Plus d'informations
n°153155
08-03-2007 à 15:15:42

Bonjour
Oulala moi qui suis débutante je me demande si je n'ai pas un truc qui me pourri la vida sur mon ordi.
Voici ce ke l'analyse avec smitfraudfix me donne.
Que dois je faire ensuite ?
Merci à vous.
SmitFraudFix v2.148

Rapport fait à 15:03:19,41, 08/03/2007
Executé à partir de C:\Documents and Settings\keke\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» hosts


»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\keke


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\keke\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\keke\Favoris


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files


»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

Liens sponsorisés


Inscrivez-vous ou connectez-vous pour masquer ceci.

bluesunset
Profil : IDNaute
Plus d'informations
n°153159
08-03-2007 à 15:21:22

Re moi
Ben voila apres le nettoyage ce que cela donne . Vous en pensez quoi ? et que puis je faire ou pas finalement car je ne sais pas si mon ordi est ok ou pas , car à chaque fois ke je l'eteinds il met 3 heures pour redemarrer......
MErci à vous.

SmitFraudFix v2.148

Rapport fait à 15:16:29,19, 08/03/2007
Executé à partir de C:\Documents and Settings\keke\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» hosts

127.0.0.1 localhost


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés


»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre

Nettoyage terminé.

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

chercheur_
Profil : Helper
Plus d'informations
n°153163
08-03-2007 à 15:29:41

Bonjour


Rien d'infectieux dans ces rapports.

Télécharge le logiciel HijackThis v1.99.1
http://pchelpbordeaux.free.fr/logiciels.html
Tutorial
http://pchelpbordeaux.free.fr/tuto.html
Démo en image
http://perso.orange.fr/rginformati [...] hijack.htm

Fais un scan et poste l'analyse.

bluesunset
Profil : IDNaute
Plus d'informations
n°153171
08-03-2007 à 16:04:01

Grand chef
Voici mon rapport.

Logfile of HijackThis v1.99.1
Scan saved at 16:03:05, on 08/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SYSTEM32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\Microsoft IntelliType Pro\type32.exe
C:\Program Files\MessengerPlus! 3\MsgPlus.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\PROGRA~1\INCRED~1\bin\IMApp.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\Skype\Plugin Manager\SkypePM.exe
C:\WINDOWS\system32\svchost.exe
D:\Telechargements\Spybot - Search & Destroy\SpybotSD.exe
C:\Documents and Settings\keke\Local Settings\Temporary Internet Files\Content.IE5\G0LN4JKK\hijackthis_hijackthis_1.99.1_anglais_17891[1].exe
C:\Program Files\Internet Explorer\iexplore.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: {1A03F196-9617-4CA0-842B-A83CEECB022B} - - (no file)
N4 - Mozilla: user_pref("browser.startup.homepage", "http://www.roglruretzwzpcutn.info/DgC6QSstKisATDKI_PHTTuCezTgSshaNJUcodPB3o5M.php" );\nuser_pref("browser.startup.page", 1); (C:\Documents and Settings\keke\Application Data\Mozilla\Profiles\default\fdrpxgs8.slt\prefs.js)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\TELECH~1\SPYBOT~1\SDHelper.dll
O2 - BHO: EoRezoBHO - {64F56FC1-1272-44CD-BA6E-39723696E350} - C:\PROGRA~1\eoRezo\EoAdv\EOREZO~1.DLL (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\point32.exe"
O4 - HKLM\..\Run: [type32] "C:\Program Files\Microsoft IntelliType Pro\type32.exe"
O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [EPSON Stylus Photo RX520 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIAGE.EXE /P31 "EPSON Stylus Photo RX520 Series" /O6 "USB002" /M "Stylus Photo RX520"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\RunServices: [SchedulingAgent] C:\WINDOWS\system32\mstask.exe
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\WCESCOMM.EXE"
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Toolbars\Restrictions present
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Créer un Favori de l'appareil mobile - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Program Files\Microsoft ActiveSync\inetrepl.dll
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O12 - Plugin for .htm: C:\Program Files\Netscape\Netscape Browser\PLUGINS\npTrident.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{F1AD1F0D-A4C8-4E06-9ACB-2422B97AFCE8}: NameServer = 212.27.54.252,212.27.53.252
O18 - Protocol: bw+0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: offline-8876480 - {77BCBF27-07E1-41F7-BCDA-77199FBD3056} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: VNC Server Version 4 (WinVNC4) - Unknown owner - C:\Program Files\RealVNC\VNC4\WinVNC4.exe" -service (file missing)

Et pour finir, merci.

chercheur_
Profil : Helper
Plus d'informations
n°153218
08-03-2007 à 17:27:46

Rien d'infectieux dans Hijackthis.

Pourquoi penses tu être infecté ?

bluesunset
Profil : IDNaute
Plus d'informations
n°153230
08-03-2007 à 17:49:22

Je suis donc rassurée..

Parce ke qd j'ai fait le scan avec spybot il a detecté smitfraud-c.Et que je n'arrive pas à rebooter l'ordi sans mode échec.Il veut pas redémarrer et plante si je fais f8.
L'ordi se bloque et s'eteinds seul, par contre si je le laisse démarrer seul il se met en marche correctement.
Voili voilou.

chercheur_
Profil : Helper
Plus d'informations
n°153271
08-03-2007 à 18:14:49

On vérifie. Poste ces deux rapports.

Télécharge DiagHelp.zip (de Malekal_Morte) sur ton bureau
http://www.malekal.com/download/DiagHelp.zip
- Fais un clic droit sur le fichier et extraire tout
- Un nouveau dossier chercher va être créé DiagHelp
- Ouvre le et double-clic sur go.cmd (le .cmd peut ne pas apparaître)
- Une fenêtre va s'ouvrir, choisis l'option 1
- L'analyse va commencer, ceci peut durer quelques minutes, laisse faire et appuie sur une touche quand on te le demande
- A la fin de l'analyse, il te sera redemandé de redémarrer l'ordinateur... Une fois l'ordinateur redémarré le rapport va apparaître sur le bloc-note.. Ce dernier se trouve sur C:\resultat.txt
- Copie/colle le contenu du bloc-note qui s'ouvre, pour cela :
-- Dans le bloc-note, cliquez sur le menu Edition / Selectionner tout
-- A nouveau menu Edition / copier
-- Dans un nouveau message ici, faire un clic droit / coller


Télécharge Blacklight (de F-Secure) et sauvegarde le sur ton Bureau.
https://europe.f-secure.com/blacklight/try.shtml
Clique sur "I ACCEPT" au bas de la page. Sauvegarde le sur ton Bureau.

Double-clique blbeta.exe et accepte la licence; clique Scan puis Next

Tu verras une liste de fichiers détectés apparaître. Tu verras également un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).

Copie et colle le contenu de ce rapport dans ta prochaine réponse.

bluesunset
Profil : IDNaute
Plus d'informations
n°153330
08-03-2007 à 19:20:30

Bonsoir
Voci pour le 1ere test:

C:\WINDOWS\System32/drivers\aswRdr.sys -->15/01/2007 18:26:08
C:\WINDOWS\System32/drivers\aswTdi.sys -->15/01/2007 18:25:24
C:\WINDOWS\System32/drivers\aswmon.sys -->21/12/2006 00:56:13
C:\WINDOWS\System32/drivers\aswmon2.sys -->21/12/2006 00:56:00
C:\WINDOWS\System32/drivers\aavmker4.sys -->21/12/2006 00:51:58
C:\WINDOWS\System32/drivers\nwrdr.sys -->13/10/2006 11:23:15
C:\WINDOWS\System32/drivers\fltmgr.sys -->21/08/2006 10:14:58

C:\WINDOWS\win.ini -->08/03/2007 18:38:00
C:\WINDOWS\system.ini -->08/03/2007 18:38:00
C:\WINDOWS\WindowsUpdate.log -->08/03/2007 15:46:36
C:\WINDOWS\0.log -->08/03/2007 15:40:04
C:\WINDOWS\wiaservc.log -->08/03/2007 15:39:47
C:\WINDOWS\wiadebug.log -->08/03/2007 15:39:44
C:\WINDOWS\bootstat.dat -->08/03/2007 15:39:19
C:\WINDOWS\setupact.log -->08/03/2007 15:20:59
C:\WINDOWS\setupapi.log -->04/03/2007 23:07:29
C:\WINDOWS\wmsetup.log -->03/03/2007 10:54:09
C:\WINDOWS\NeroDigital.ini -->02/03/2007 07:09:12
C:\WINDOWS\tsoc.log -->17/02/2007 03:03:22
C:\WINDOWS\tabletoc.log -->17/02/2007 03:03:22
C:\WINDOWS\ocmsn.log -->17/02/2007 03:03:22
C:\WINDOWS\ntdtcsetup.log -->17/02/2007 03:03:22

C:\WINDOWS\ALCFDRTM.EXE |24/10/2004 18:02:20
C:\WINDOWS\ALCMTR.EXE |24/10/2004 16:54:02
C:\WINDOWS\ALCWZRD.EXE |24/10/2004 16:54:01
C:\WINDOWS\amcap.exe |27/08/2006 15:27:13
C:\WINDOWS\bwUnin-6.1.4.68-8876480L.exe |22/12/2004 23:01:23
C:\WINDOWS\bwUnin-7.2.0.137-8876480SL.exe |14/02/2005 21:49:00
C:\WINDOWS\dtvunist.exe |18/04/2005 20:28:14
C:\WINDOWS\install.exe |24/10/2004 16:57:19
C:\WINDOWS\IsUn040c.exe |24/10/2004 17:14:20
C:\WINDOWS\IsUninst.exe |24/10/2004 20:33:29
C:\WINDOWS\iun6002.exe |05/05/2005 09:33:36
C:\WINDOWS\iun6002ev.exe |19/12/2006 16:59:38
C:\WINDOWS\remove.exe |24/10/2004 16:57:19
C:\WINDOWS\RTLCPL.EXE |24/10/2004 16:53:58
C:\WINDOWS\slrundll.exe |20/08/2004 00:10:02
C:\WINDOWS\SOUNDMAN.EXE |24/10/2004 16:54:01
C:\WINDOWS\StillCap.exe |27/08/2006 15:27:51
C:\WINDOWS\twunk_16.exe |24/04/2003 13:00:00
C:\WINDOWS\twunk_32.exe |24/04/2003 13:00:00
C:\WINDOWS\unin040c.exe |27/03/2006 17:48:58
C:\WINDOWS\uninst.exe |24/10/2004 16:59:23
C:\WINDOWS\UninstallFirefox.exe |06/12/2004 22:38:55
C:\WINDOWS\unvise32.exe |24/10/2004 21:10:00
C:\WINDOWS\VPro500.exe |29/11/2006 13:01:07
C:\WINDOWS\WNMHINDR.EXE |05/05/2005 09:34:10
C:\WINDOWS\daemon.dll |04/10/2002 22:11:24
C:\WINDOWS\PCDLIB32.DLL |04/11/2005 13:48:42
C:\WINDOWS\S32EVNT1.DLL |10/09/2005 16:09:49
C:\WINDOWS\twain.dll |24/04/2003 13:00:00
C:\WINDOWS\twain_32.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\append.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\aswBoot.exe |13/03/2005 10:39:38
C:\WINDOWS\system32\ati2evxx.exe |22/02/2005 18:33:36
C:\WINDOWS\system32\Ati2mdxx.exe |22/02/2005 18:33:48
C:\WINDOWS\system32\ati2sgag.exe |24/10/2004 17:05:07
C:\WINDOWS\system32\coclean.exe |30/11/2005 21:23:44
C:\WINDOWS\system32\CoreVorbis-uninstall.exe |09/08/2006 19:12:30
C:\WINDOWS\system32\debug.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\DivXsm.exe |24/05/2005 22:32:44
C:\WINDOWS\system32\dosx.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\dragdiag.exe |24/10/2004 17:39:33
C:\WINDOWS\system32\dumphive.exe |08/03/2007 14:13:39
C:\WINDOWS\system32\dvdplay.exe |23/08/2001 18:47:34
C:\WINDOWS\system32\edlin.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\exe2bin.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\fastopen.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\Hdaudpropshortcut.exe |17/03/2004 14:10:40
C:\WINDOWS\system32\hkcmd.exe |08/03/2005 19:42:19
C:\WINDOWS\system32\HPZinw12.exe |30/12/2006 17:31:53
C:\WINDOWS\system32\HPZipm12.exe |30/12/2006 17:31:53
C:\WINDOWS\system32\igfxcfg.exe |08/03/2005 19:42:18
C:\WINDOWS\system32\igfxdiag.exe |08/03/2005 19:42:18
C:\WINDOWS\system32\igfxext.exe |08/03/2005 19:42:14
C:\WINDOWS\system32\igfxtray.exe |08/03/2005 19:42:18
C:\WINDOWS\system32\igfxzoom.exe |08/03/2005 19:42:18
C:\WINDOWS\system32\java.exe |28/02/2007 12:13:19
C:\WINDOWS\system32\javaw.exe |28/02/2007 12:13:19
C:\WINDOWS\system32\javaws.exe |28/02/2007 12:13:19
C:\WINDOWS\system32\mem.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\MMAVILNG.exe |09/08/2006 19:11:40
C:\WINDOWS\system32\Mp3cnfg.exe |24/10/2004 23:18:58
C:\WINDOWS\system32\mscdexnt.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\MXRestore.exe |11/12/2006 07:28:23
C:\WINDOWS\system32\NeroCheck.exe |20/12/2004 22:29:46
C:\WINDOWS\system32\nlsfunc.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\nw16.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\OggDSuninst.exe |09/08/2006 19:12:26
C:\WINDOWS\system32\PAStiSvc.exe |29/11/2006 13:09:36
C:\WINDOWS\system32\Primary.exe |04/05/2005 19:45:21
C:\WINDOWS\system32\Process.exe |08/03/2007 14:13:39
C:\WINDOWS\system32\Prounstl.exe |29/10/2004 12:54:17
C:\WINDOWS\system32\pxcpya64.exe |24/05/2005 18:48:08
C:\WINDOWS\system32\pxcpyi64.exe |24/05/2005 18:48:08
C:\WINDOWS\system32\pxhpinst.exe |08/11/2004 20:12:06
C:\WINDOWS\system32\pxinsa64.exe |24/05/2005 18:48:08
C:\WINDOWS\system32\pxinsi64.exe |24/05/2005 18:48:08
C:\WINDOWS\system32\redir.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\setver.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\share.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\slrundll.exe |20/08/2004 00:10:02
C:\WINDOWS\system32\slserv.exe |20/08/2004 00:10:02
C:\WINDOWS\system32\SrchSTS.exe |08/03/2007 14:13:39
C:\WINDOWS\system32\swreg.exe |08/03/2007 14:13:39
C:\WINDOWS\system32\swsc.exe |08/03/2007 14:13:39
C:\WINDOWS\system32\swxcacls.exe |08/03/2007 14:13:39
C:\WINDOWS\system32\TXPstart.exe |05/11/2003 01:00:00
C:\WINDOWS\system32\UNINSTAL.EXE |07/05/2005 07:56:29
C:\WINDOWS\system32\uninstHelixYUV.exe |25/01/2006 00:23:54
C:\WINDOWS\system32\usrmlnka.exe |23/08/2001 18:47:48
C:\WINDOWS\system32\usrprbda.exe |23/08/2001 18:47:48
C:\WINDOWS\system32\usrshuta.exe |23/08/2001 18:47:48
C:\WINDOWS\system32\vwipxspx.exe |24/04/2003 13:00:00
C:\WINDOWS\system32\3ivx.dll |27/01/2004 13:48:18
C:\WINDOWS\system32\aamd532.dll |09/11/2004 19:54:59
C:\WINDOWS\system32\amstream.dll |24/10/2004 16:59:56
C:\WINDOWS\system32\ati2cqag.dll |22/02/2005 18:20:50
C:\WINDOWS\system32\ati2dvaa.dll |20/08/2004 00:09:19
C:\WINDOWS\system32\ati2dvag.dll |22/02/2005 18:36:24
C:\WINDOWS\system32\ati2edxx.dll |22/02/2005 18:33:46
C:\WINDOWS\system32\ati2evxx.dll |22/02/2005 18:33:42
C:\WINDOWS\system32\ati3d1ag.dll |20/08/2004 00:09:19
C:\WINDOWS\system32\ati3duag.dll |22/02/2005 18:32:36
C:\WINDOWS\system32\ATIDDC.DLL |22/02/2005 18:33:14
C:\WINDOWS\system32\ATIDEMGR.dll |22/02/2005 19:18:42
C:\WINDOWS\system32\atiiiexx.dll |22/02/2005 19:46:12
C:\WINDOWS\system32\atikvmag.dll |22/02/2005 18:23:16
C:\WINDOWS\system32\atioglx1.dll |23/11/2005 06:20:30
C:\WINDOWS\system32\atioglxx.dll |22/02/2005 18:55:56
C:\WINDOWS\system32\atipdlxx.dll |22/02/2005 18:33:58
C:\WINDOWS\system32\atitvo32.dll |22/02/2005 18:22:44
C:\WINDOWS\system32\ativcoxx.dll |09/11/2001 08:01:04
C:\WINDOWS\system32\ativtmxx.dll |20/08/2004 00:09:19
C:\WINDOWS\system32\ativvaxx.dll |22/02/2005 18:27:04
C:\WINDOWS\system32\atmfd.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\atmlib.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\atrc.dll |10/08/2004 07:50:22
C:\WINDOWS\system32\BASSMOD.dll |27/08/2006 19:59:58
C:\WINDOWS\system32\Bt848WST.DLL |14/12/2005 13:43:40
C:\WINDOWS\system32\CmdLineExt03.dll |03/09/2006 15:58:31
C:\WINDOWS\system32\CNQL1213.DLL |04/11/2005 13:46:54
C:\WINDOWS\system32\CNQU110.DLL |04/11/2005 13:46:55
C:\WINDOWS\system32\compatui.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\cook.dll |10/08/2004 07:50:00
C:\WINDOWS\system32\CPUINFO2.DLL |24/11/2000 17:05:06
C:\WINDOWS\system32\dgrpsetu.dll |24/10/2004 17:38:22
C:\WINDOWS\system32\dgsetup.dll |24/10/2004 17:38:22
C:\WINDOWS\system32\DivX.dll |03/09/2004 19:03:47
C:\WINDOWS\system32\DivXc32.dll |11/12/2001 13:17:12
C:\WINDOWS\system32\DivXc32f.dll |27/11/2001 01:19:54
C:\WINDOWS\system32\divxdec_0407.dll |04/09/2004 00:34:08
C:\WINDOWS\system32\divxdec_040c.dll |04/09/2004 00:34:08
C:\WINDOWS\system32\divxdec_0411.dll |04/09/2004 00:25:12
C:\WINDOWS\system32\divx_xx07.dll |01/09/2004 16:48:45
C:\WINDOWS\system32\divx_xx0c.dll |01/09/2004 16:48:45
C:\WINDOWS\system32\divx_xx11.dll |01/09/2004 16:48:46
C:\WINDOWS\system32\DLLAV32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLCDA32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLCDF32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLCPY32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLDEV32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLDIR32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLDRV32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLIMG32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLIO32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLISO32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLIX.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLMSC32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLPNT32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLPRF32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLPRJ32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLPTL32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLRD32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLRES32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\DLLTPO32.dll |11/12/2006 07:28:23
C:\WINDOWS\system32\dmcrypto.dll |04/05/2005 19:50:17
C:\WINDOWS\system32\dpl100.dll |28/04/2005 05:22:35
C:\WINDOWS\system32\dpu10.dll |03/09/2004 18:33:33
C:\WINDOWS\system32\dpu11.dll |28/04/2005 05:22:35
C:\WINDOWS\system32\dpuGUI10.dll |03/09/2004 18:37:38
C:\WINDOWS\system32\dpuGUI11.dll |28/04/2005 05:22:35
C:\WINDOWS\system32\dpus10.dll |01/09/2004 16:49:16
C:\WINDOWS\system32\dpus11.dll |27/10/2005 20:37:43
C:\WINDOWS\system32\dpv10.dll |01/09/2004 16:49:16
C:\WINDOWS\system32\dpv11.dll |28/04/2005 05:22:36
C:\WINDOWS\system32\drv1.dll |10/08/2004 07:50:48
C:\WINDOWS\system32\drv2.dll |10/08/2004 07:51:08
C:\WINDOWS\system32\drvc.dll |24/09/2004 23:40:12
C:\WINDOWS\system32\DSCam.Dll |14/12/2004 20:56:31
C:\WINDOWS\system32\dtu100.dll |27/10/2005 20:37:43
C:\WINDOWS\system32\DVDProX2.dll |26/04/2005 12:00:00
C:\WINDOWS\system32\e100bmsg.dll |29/10/2004 12:54:17
C:\WINDOWS\system32\encdec.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\EPPicMgr.dll |07/09/2006 12:21:09
C:\WINDOWS\system32\EpPicPrt.dll |07/09/2006 12:21:09
C:\WINDOWS\system32\EqnClass.Dll |24/10/2004 17:38:22
C:\WINDOWS\system32\esccmd.dll |07/09/2006 12:27:10
C:\WINDOWS\system32\escimgd.dll |07/09/2006 12:27:11
C:\WINDOWS\system32\escwiad.dll |07/09/2006 12:27:11
C:\WINDOWS\system32\E_DCINST.DLL |07/09/2006 12:34:20
C:\WINDOWS\system32\E_FBCBAGE.DLL |07/09/2006 12:34:18
C:\WINDOWS\system32\E_FBCHAGE.DLL |07/09/2006 12:34:18
C:\WINDOWS\system32\E_FLMAGE.DLL |07/09/2006 12:34:18
C:\WINDOWS\system32\ff_mpeg2enc.dll |03/10/2004 18:50:53
C:\WINDOWS\system32\ff_theora.dll |12/10/2004 07:39:06
C:\WINDOWS\system32\ff_vfw.dll |29/11/2005 21:17:16
C:\WINDOWS\system32\ff_wmv9.dll |12/10/2004 07:39:47
C:\WINDOWS\system32\ff_x264.dll |09/10/2004 07:40:16
C:\WINDOWS\system32\fpxlib.dll |14/12/2004 20:56:31
C:\WINDOWS\system32\hccutils.dll |08/03/2005 19:42:18
C:\WINDOWS\system32\hcwChan.dll |14/12/2005 13:43:35
C:\WINDOWS\system32\hcwChDB.dll |14/12/2005 13:43:30
C:\WINDOWS\system32\hcwhook.dll |14/12/2005 13:43:35
C:\WINDOWS\system32\hcwi2c32.dll |10/02/2005 15:04:44
C:\WINDOWS\system32\hcwpnp32.dll |11/03/2005 14:32:54
C:\WINDOWS\system32\hcwsched.dll |14/12/2005 13:43:39
C:\WINDOWS\system32\hcwsnbd9.dll |14/12/2005 13:43:30
C:\WINDOWS\system32\hcwTVDlg.dll |14/12/2005 13:43:35
C:\WINDOWS\system32\hcwtvwnd.dll |14/12/2005 13:43:39
C:\WINDOWS\system32\hcwutl32.dll |08/06/2004 01:03:40
C:\WINDOWS\system32\hcwxds.dll |23/09/2002 12:11:24
C:\WINDOWS\system32\Hdaudprop.dll |17/03/2004 14:10:40
C:\WINDOWS\system32\Hdaudpropres.dll |18/03/2004 16:18:08
C:\WINDOWS\system32\HPODXPAT.DLL |27/05/2004 15:00:52
C:\WINDOWS\system32\hpz3l463.dll |30/12/2006 17:32:57
C:\WINDOWS\system32\HPZc3212.dll |29/03/2006 13:20:22
C:\WINDOWS\system32\hpzcoi09.dll |01/09/2003 12:14:10
C:\WINDOWS\system32\hpzcon09.dll |01/09/2003 12:14:52
C:\WINDOWS\system32\HPZidr12.dll |30/12/2006 17:31:53
C:\WINDOWS\system32\HPZIDS01.dll |30/12/2006 17:32:58
C:\WINDOWS\system32\HPZipr12.dll |30/12/2006 17:31:53
C:\WINDOWS\system32\HPZipt12.dll |30/12/2006 17:31:53
C:\WINDOWS\system32\HPZisn12.dll |30/12/2006 17:31:53
C:\WINDOWS\system32\hsfcisp2.dll |20/08/2004 00:09:27
C:\WINDOWS\system32\HSF_INST.dll |10/01/2004 13:35:34
C:\WINDOWS\system32\hticons.dll |24/10/2004 16:41:54
C:\WINDOWS\system32\HtmlWH.dll |11/12/2006 07:28:00
C:\WINDOWS\system32\HUFFYUV.DLL |08/12/2001 21:20:20
C:\WINDOWS\system32\hxltcolor.dll |10/08/2004 07:52:54
C:\WINDOWS\system32\hypertrm.dll |17/11/2004 18:57:39
C:\WINDOWS\system32\i420vfw.dll |25/01/2004 17:18:34
C:\WINDOWS\system32\Iacenc.dll |18/11/1998 15:33:16
C:\WINDOWS\system32\iAlmCoIn_v3847.dll |08/03/2005 19:42:15
C:\WINDOWS\system32\ialmdd5.dll |08/03/2005 19:42:18
C:\WINDOWS\system32\ialmdev5.dll |08/03/2005 19:42:17
C:\WINDOWS\system32\ialmdnt5.dll |08/03/2005 19:42:17
C:\WINDOWS\system32\ialmgdev.dll |08/03/2005 19:42:21
C:\WINDOWS\system32\ialmgicd.dll |08/03/2005 19:42:21
C:\WINDOWS\system32\ialmrem.dll |08/03/2005 19:42:21
C:\WINDOWS\system32\ialmrnt5.dll |08/03/2005 19:42:17
C:\WINDOWS\system32\ieencode.dll |20/08/2004 00:09:27
C:\WINDOWS\system32\igfxdev.dll |08/03/2005 19:42:18
C:\WINDOWS\system32\igfxdgps.dll |08/03/2005 19:42:18
C:\WINDOWS\system32\igfxdo.dll |08/03/2005 19:42:18
C:\WINDOWS\system32\igfxeud.dll |08/03/2005 19:42:18
C:\WINDOWS\system32\igfxexps.dll |08/03/2005 19:42:14
C:\WINDOWS\system32\igfxhk.dll |08/03/2005 19:42:19
C:\WINDOWS\system32\igfxpph.dll |08/03/2005 19:42:18
C:\WINDOWS\system32\igfxres.dll |08/03/2005 19:43:01
C:\WINDOWS\system32\igfxress.dll |08/03/2005 19:42:19
C:\WINDOWS\system32\igfxsrvc.dll |08/03/2005 19:42:18
C:\WINDOWS\system32\ImagX7.dll |20/12/2004 22:29:46
C:\WINDOWS\system32\ImagXpr7.dll |20/12/2004 22:29:46
C:\WINDOWS\system32\ImagXR7.dll |20/12/2004 22:29:46
C:\WINDOWS\system32\ImagXRA7.dll |20/12/2004 22:29:46
C:\WINDOWS\system32\indounin.dll |27/01/1999 13:39:06
C:\WINDOWS\system32\inetwh32.dll |01/09/1999 11:04:42
C:\WINDOWS\system32\IntelNic.dll |29/10/2004 12:54:17
C:\WINDOWS\system32\Ir32_32.dll |07/11/1995 11:46:00
C:\WINDOWS\system32\ir41_qc.dll |23/09/2004 15:55:56
C:\WINDOWS\system32\ir41_qcx.dll |23/09/2004 15:55:56
C:\WINDOWS\system32\ir50_32.dll |27/01/1999 12:45:58
C:\WINDOWS\system32\ir50_qc.dll |07/10/1998 14:46:18
C:\WINDOWS\system32\ir50_qcx.dll |07/10/1998 14:50:22
C:\WINDOWS\system32\isrdbg32.dll |24/10/2004 16:42:45
C:\WINDOWS\system32\Iyvu9_32.dll |13/06/1997 07:56:08
C:\WINDOWS\system32\jgaw400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgdw400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgmd400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgpl400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgsd400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jgsh400.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\jpeglib.dll |14/12/2004 20:56:31
C:\WINDOWS\system32\lame_enc.dll |06/09/2002 16:36:16
C:\WINDOWS\system32\LCamCpl.dll |01/06/2004 11:01:48
C:\WINDOWS\system32\lfbmp12n.dll |01/06/2004 10:37:50
C:\WINDOWS\system32\LFCMP12n.DLL |01/06/2004 10:37:50
C:\WINDOWS\system32\lffax12n.dll |01/06/2004 10:37:50
C:\WINDOWS\system32\lftif12n.dll |01/06/2004 10:37:50
C:\WINDOWS\system32\libavcodec.dll |12/10/2004 07:40:56
C:\WINDOWS\system32\libdivx.dll |28/09/2005 19:50:04
C:\WINDOWS\system32\libeay32.dll |28/04/2005 05:22:34
C:\WINDOWS\system32\libmplayer.dll |05/10/2004 09:16:07
C:\WINDOWS\system32\LQCUI2.dll |01/06/2004 10:43:10
C:\WINDOWS\system32\LTDIS12n.dll |01/06/2004 10:37:52
C:\WINDOWS\system32\ltefx12n.dll |01/06/2004 10:37:52
C:\WINDOWS\system32\ltfil12n.DLL |01/06/2004 10:37:52
C:\WINDOWS\system32\ltimg12n.dll |01/06/2004 10:37:54
C:\WINDOWS\system32\ltkrn12n.dll |01/06/2004 10:37:54
C:\WINDOWS\system32\Ltwvc12n.dll |01/06/2004 10:37:58
C:\WINDOWS\system32\Lvkrn12n.dll |01/06/2004 10:37:58
C:\WINDOWS\system32\m2pmux.dll |28/03/2002 11:50:04
C:\WINDOWS\system32\malslib.dll |14/12/2004 20:41:55
C:\WINDOWS\system32\mdwmdmsp.dll |23/08/2001 18:47:06
C:\WINDOWS\system32\mgxoschk.dll |11/12/2006 07:27:03
C:\WINDOWS\system32\MMSwitch.dll |15/11/2002 13:11:26
C:\WINDOWS\system32\mpa.dll |16/04/2002 12:27:16
C:\WINDOWS\system32\MPLEX.DLL |30/09/2006 16:43:23
C:\WINDOWS\system32\msdmo.dll |24/10/2004 16:59:56
C:\WINDOWS\system32\msencode.dll |24/04/2003 13:00:00
C:\WINDOWS\system32\MsgPlusLoader.dll |17/09/2005 12:13:55
C:\WINDOWS\system32\msmscoin.dll |11/04/2002 19:47:52
C:\WINDOWS\system32\mtxparhd.dll |20/08/2004 00:09:35
C:\WINDOWS\system32\NCTAudioCompress2.dll |08/12/2003 18:06:16
C:\WINDOWS\system32\NCTAudioFile2.dll |15/12/2003 18:43:18
C:\WINDOWS\system32\NCTAVIFile.dll |06/01/2004 00:57:52
C:\WINDOWS\system32\NCTImageFile.dll |07/10/2003 20:37:26
C:\WINDOWS\system32\NCTMPEGFile.dll |06/01/2004 22:49:28
C:\WINDOWS\system32\NCTRMFile.dll |05/01/2004 19:31:58
C:\WINDOWS\system32\NCTVideoCompress.dll |08/10/2003 18:29:08
C:\WINDOWS\system32\NCTVideoFile.dll |05/01/2004 19:26:48
C:\WINDOWS\system32\NCTV