Aller au contenu

JC83

Membres
 Afficher le profil  Afficher son activité

  • Compteur de contenus

    633

  • Inscription

  • Dernière visite

Tout ce qui a été posté par JC83

  1. JC83
    Je remonte.
  2. JC83
    La vérification des fichiers système n'a rien donné ; j'ai même restauré kernel32.dll au cas où, mais Hijackthis plante toujours. Dr Watson m'indique pourtant toujours que les 2 mises à jour Windows citées dans le 1er message ont altéré les fichiers système ! Si cela peut t'être utile, voici ce que m'affiche le fichier sfclog.txt : "******************** Vérificateur des fichiers système Fichier journal généré le 13/08/06 à 20:32 Vérification commencée avec les données du fichier : "C:\WINDOWS\Default.sfc" Version Date Nouvelle Nouvelle CRC Fichier Modif. précédente précéd. version date Id. ---------------- ----------- ----------- --------- ----------- --------- ------ [C:\WINDOWS] PATCH.EXE Mis à jour 1,81,0,1011 02/11/05 1,81,0,1011 08/07/06 Oui ieuninst.exe Mis à jour 6.00.2800.1 03/03/03 6.00.2800.1 03/03/03 Oui tsc.exe Mis à jour 3.9.0.1020 02/11/05 3.98.0.1012 08/07/06 Non GREUninstall.exe Mis à jour 26/06/05 21/07/06 Non MozillaUninstall Mis à jour 26/06/05 12/06/06 Non QFECHECK.EXE Mis à jour 4.10.1998 04/09/98 4.10.1998 04/09/98 Oui SeaMonkeyUninsta Ajouté 21/07/06 UNZIP.DLL Mis à jour 1.32.0.1000 02/11/05 1.32.0.1000 08/07/06 Oui TMUPDATE.DLL Mis à jour 1,81,0,1011 02/11/05 1,81,0,1011 08/07/06 Oui MEMBOOT.DLL Mis à jour 02/11/05 08/07/06 Oui BPM95.dll Mis à jour 7.000-1004 02/11/05 7.000-1004 08/07/06 Oui vsapi32.dll Mis à jour 7.510-1002 02/11/05 8.000-1001 08/07/06 Non HCExtOutput.dll Mis à jour 02/11/05 08/07/06 Oui [C:\WINDOWS\Downloaded Program Files] xscan53.ocx Mis à jour 5, 70, 0, 1 03/10/05 5, 70, 0, 1 02/11/05 Non [C:\WINDOWS\SYSTEM] DANIM.DLL Mis à jour 6.03.01.014 20/10/05 6.03.01.014 20/10/05 Oui INSENG.DLL Mis à jour 6.00.2800.1 07/12/04 6.00.2800.1 07/12/04 Oui JGDW400.DLL Mis à jour 082 24/03/04 106 26/05/06 Non JGPL400.DLL Mis à jour 047 24/03/04 054 06/04/06 Non JSPROXY.DLL Mis à jour 6.00.2800.1 30/08/02 6.00.2800.1 28/04/06 Non MSRATING.DLL Mis à jour 6.00.2800.1 24/02/05 6.00.2800.1 24/02/05 Oui MSTIME.DLL Mis à jour 6.00.2800.1 03/03/06 6.00.2800.1 03/03/06 Oui CDFVIEW.DLL Mis à jour 6.00.2800.1 07/12/04 6.00.2800.1 07/12/04 Oui PNGFILT.DLL Mis à jour 6.00.2800.1 27/04/05 6.00.2800.1 27/04/05 Oui BROWSEUI.DLL Mis à jour 6.00.2800.1 17/06/05 6.00.2800.1 18/06/05 Oui OLEAUT32.DLL Mis à jour 5.1.2600.21 20/08/04 2.40.4275 12/04/00 Non DXTMSFT.DLL Mis à jour 6.00.2800.1 30/08/02 6.00.2800.1 28/04/06 Non DXTRANS.DLL Mis à jour 6.00.2800.1 24/02/06 6.00.2800.1 24/02/06 Oui IEPEERS.DLL Mis à jour 6.00.2800.1 24/02/06 6.00.2800.1 24/02/06 Oui MSHTML.DLL Mis à jour 6.00.2800.1 22/03/06 6.00.2800.1 19/05/06 Non wmp.dll Mis à jour 9.00.00.334 19/12/05 9.00.00.334 24/04/06 Non SHDOCVW.DLL Mis à jour 6.00.2800.1 21/03/06 6.00.2800.1 26/05/06 Non SHLWAPI.DLL Mis à jour 6.00.2800.1 31/08/05 6.00.2800.1 31/08/05 Oui URLMON.DLL Mis à jour 6.00.2800.1 03/03/06 6.00.2800.1 08/05/06 Non WININET.DLL Mis à jour 6.00.2800.1 24/02/06 6.00.2800.1 28/04/06 Non JSCRIPT.DLL Mis à jour 5.6.0.8513 13/01/03 5.6.0.8831 17/05/06 Non wmpns.dll Ajouté 9.00.00.298 12/12/02 DRWATSON.VXD Mis à jour 4.03 11/06/06 4.03 13/08/06 Oui MSISYS.VXD Mis à jour 4.03 26/04/06 4.03 13/08/06 Oui [C:\Program Files\Fichiers communs\Microsoft Shared\Web Server Extensions\40\BIN] IMAGEMAP.EXE Ignoré 19/03/99 19/03/99 Non FP4AWEL.DLL Ignoré 4.0.2.2717 20/03/99 4.0.2.2717 20/03/99 Non [C:\Program Files\Fichiers communs\Microsoft Shared\Web Server Extensions\40\servsupp] FP4AMSFT.DLL Ignoré 4.0.2.2717 20/03/99 4.0.2.2717 20/03/99 Non FP4ANSCP.DLL Ignoré 4.0.2.2717 20/03/99 4.0.2.2717 20/03/99 Non FP4APWS.DLL Ignoré 4.0.2.2717 19/03/99 4.0.2.2717 19/03/99 Non [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.8_2005051112] gkgfx.dll Supprimé 1.7.8: 2005 11/05/05 js3250.dll Supprimé 4.0 11/05/05 jsj3250.dll Supprimé 1.7.8: 2005 11/05/05 mozctl.dll Supprimé 1, 0, 0, 1 11/05/05 mozctlx.dll Supprimé 1.7.8: 2005 11/05/05 mozilla-ipcd.exe Supprimé 1.7.8: 2005 11/05/05 mozz.dll Supprimé 1.7.8: 2005 11/05/05 nspr4.dll Supprimé 4.5 Beta 11/05/05 nss3.dll Supprimé 3.9.3 11/05/05 nssckbi.dll Supprimé 1.42 11/05/05 plc4.dll Supprimé 4.5 Beta 11/05/05 plds4.dll Supprimé 4.5 Beta 11/05/05 smime3.dll Supprimé 3.9.3 11/05/05 softokn3.dll Supprimé 3.9.3 11/05/05 ssl3.dll Supprimé 3.9.3 11/05/05 xpcom.dll Supprimé 1.7.8: 2005 11/05/05 xpcom_compat.dll Supprimé 1.7.8: 2005 11/05/05 xpicleanup.exe Supprimé 1.7.8: 2005 11/05/05 xpistub.dll Supprimé 1.7.8: 2005 11/05/05 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.8_2005051112\Setup GRE] SETUP.EXE Supprimé 1, 0, 0, 2 26/06/05 setuprsc.dll Supprimé 26/06/05 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.8_2005051112\uninstall] GREUninstall.exe Supprimé 26/06/05 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.8_2005051112\components] accessibility.dl Supprimé 1.7.8: 2005 11/05/05 appshell.dll Supprimé 1.7.8: 2005 11/05/05 caps.dll Supprimé 1.7.8: 2005 11/05/05 chrome.dll Supprimé 1.7.8: 2005 11/05/05 cookie.dll Supprimé 1.7.8: 2005 11/05/05 docshell.dll Supprimé 1.7.8: 2005 11/05/05 editor.dll Supprimé 1.7.8: 2005 11/05/05 embedcomponents. Supprimé 1.7.8: 2005 11/05/05 gkgfxwin.dll Supprimé 1.7.8: 2005 11/05/05 gklayout.dll Supprimé 1.7.8: 2005 11/05/05 gkparser.dll Supprimé 1.7.8: 2005 11/05/05 gkplugin.dll Supprimé 1.7.8: 2005 11/05/05 gkwidget.dll Supprimé 11/05/05 i18n.dll Supprimé 1.7.8: 2005 11/05/05 imgicon.dll Supprimé 1.7.8: 2005 11/05/05 imglib2.dll Supprimé 1.7.8: 2005 11/05/05 ipcdc.dll Supprimé 1.7.8: 2005 11/05/05 jar50.dll Supprimé 1.7.8: 2005 11/05/05 necko.dll Supprimé 1.7.8: 2005 11/05/05 necko2.dll Supprimé 1.7.8: 2005 11/05/05 oji.dll Supprimé 1.7.8: 2005 11/05/05 p3p.dll Supprimé 1.7.8: 2005 11/05/05 pipboot.dll Supprimé 1.7.8: 2005 11/05/05 pipnss.dll Supprimé 1.7.8: 2005 11/05/05 profile.dll Supprimé 1.7.8: 2005 11/05/05 rdf.dll Supprimé 1.7.8: 2005 11/05/05 uconv.dll Supprimé 1.7.8: 2005 11/05/05 ucvmath.dll Supprimé 1.7.8: 2005 11/05/05 universalchardet Supprimé 1.7.8: 2005 11/05/05 wallet.dll Supprimé 1.7.8: 2005 11/05/05 webbrwsr.dll Supprimé 1.7.8: 2005 11/05/05 xmlextras.dll Supprimé 1.7.8: 2005 11/05/05 xpc3250.dll Supprimé 1.7.8: 2005 11/05/05 xpcom_compat_c.d Supprimé 1.7.8: 2005 11/05/05 xpinstal.dll Supprimé 1.7.8: 2005 11/05/05 xppref32.dll Supprimé 1.7.8: 2005 11/05/05 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.8_2005051112\ipc\modules] lockmodule.dll Supprimé 1.7.8: 2005 11/05/05 transmgr.dll Supprimé 1.7.8: 2005 11/05/05 [C:\WINDOWS\SYSTEM\KB918547] KB918547.EXE Ajouté 4.10.2224 24/04/06 Q918547.dll Ajouté 4.10.2224 24/04/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.8.0.4_2006051612] xpicleanup.exe Ajouté 1.8.0.4: 20 21/07/06 xpcom_core.dll Ajouté 1.8.0.4: 20 21/07/06 xpcom.dll Ajouté 1.8.0.4: 20 21/07/06 xpcom_compat.dll Ajouté 1.8.0.4: 20 21/07/06 js3250.dll Ajouté 4.0 21/07/06 plc4.dll Ajouté 4.6.1 21/07/06 plds4.dll Ajouté 4.6.1 21/07/06 xpistub.dll Ajouté 1.8.0.4: 20 21/07/06 nspr4.dll Ajouté 4.6.1 21/07/06 mozz.dll Ajouté 1.8.0.4: 20 21/07/06 jsj3250.dll Ajouté 1.8.0.4: 20 21/07/06 gkgfx.dll Ajouté 1.8.0.4: 20 21/07/06 nssckbi.dll Ajouté 1.53 21/07/06 softokn3.dll Ajouté 3.10.2 21/07/06 mozctl.dll Ajouté 1, 0, 0, 1 21/07/06 smime3.dll Ajouté 3.10.2 21/07/06 nss3.dll Ajouté 3.10.2 21/07/06 mozctlx.dll Ajouté 1.8.0.4: 20 21/07/06 ssl3.dll Ajouté 3.10.2 21/07/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.8.0.4_2006051612\Setup GRE] SETUP.EXE Ajouté 1, 0, 0, 2 21/07/06 setuprsc.dll Ajouté 21/07/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.8.0.4_2006051612\uninstall] GREUninstall.exe Ajouté 21/07/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.8.0.4_2006051612\components] jar50.dll Ajouté 1.8.0.4: 20 21/07/06 xpinstal.dll Ajouté 1.8.0.4: 20 21/07/06 xpcom_compat_c.d Ajouté 1.8.0.4: 20 21/07/06 imgicon.dll Ajouté 1.8.0.4: 20 21/07/06 oji.dll Ajouté 1.8.0.4: 20 21/07/06 universalchardet Ajouté 1.8.0.4: 20 21/07/06 xmlextras.dll Ajouté 1.8.0.4: 20 21/07/06 xpc3250.dll Ajouté 1.8.0.4: 20 21/07/06 imglib2.dll Ajouté 1.8.0.4: 20 21/07/06 webbrwsr.dll Ajouté 1.8.0.4: 20 21/07/06 docshell.dll Ajouté 1.8.0.4: 20 21/07/06 gkplugin.dll Ajouté 1.8.0.4: 20 21/07/06 gkparser.dll Ajouté 1.8.0.4: 20 21/07/06 uconv.dll Ajouté 1.8.0.4: 20 21/07/06 profile.dll Ajouté 1.8.0.4: 20 21/07/06 rdf.dll Ajouté 1.8.0.4: 20 21/07/06 accessibility.dl Ajouté 1.8.0.4: 20 21/07/06 ucvmath.dll Ajouté 1.8.0.4: 20 21/07/06 p3p.dll Ajouté 1.8.0.4: 20 21/07/06 cookie.dll Ajouté 1.8.0.4: 20 21/07/06 appshell.dll Ajouté 1.8.0.4: 20 21/07/06 caps.dll Ajouté 1.8.0.4: 20 21/07/06 gklayout.dll Ajouté 1.8.0.4: 20 21/07/06 pipboot.dll Ajouté 1.8.0.4: 20 21/07/06 xppref32.dll Ajouté 1.8.0.4: 20 21/07/06 necko2.dll Ajouté 1.8.0.4: 20 21/07/06 gkwidget.dll Ajouté 21/07/06 necko.dll Ajouté 1.8.0.4: 20 21/07/06 editor.dll Ajouté 1.8.0.4: 20 21/07/06 pipnss.dll Ajouté 1.8.0.4: 20 21/07/06 i18n.dll Ajouté 1.8.0.4: 20 21/07/06 embedcomponents. Ajouté 1.8.0.4: 20 21/07/06 chrome.dll Ajouté 1.8.0.4: 20 21/07/06 wallet.dll Ajouté 1.8.0.4: 20 21/07/06 gkgfxwin.dll Ajouté 1.8.0.4: 20 21/07/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.13_2006041421] xpicleanup.exe Ajouté 1.7.13: 200 14/04/06 mozilla-ipcd.exe Ajouté 1.7.13: 200 14/04/06 xpcom.dll Ajouté 1.7.13: 200 14/04/06 xpcom_compat.dll Ajouté 1.7.13: 200 14/04/06 js3250.dll Ajouté 4.0 14/04/06 plc4.dll Ajouté 4.5 Beta 14/04/06 plds4.dll Ajouté 4.5 Beta 14/04/06 xpistub.dll Ajouté 1.7.13: 200 14/04/06 nspr4.dll Ajouté 4.5 Beta 14/04/06 mozz.dll Ajouté 1.7.13: 200 14/04/06 jsj3250.dll Ajouté 1.7.13: 200 14/04/06 gkgfx.dll Ajouté 1.7.13: 200 14/04/06 nssckbi.dll Ajouté 1.42 14/04/06 softokn3.dll Ajouté 3.9.3 14/04/06 mozctl.dll Ajouté 1, 0, 0, 1 14/04/06 smime3.dll Ajouté 3.9.3 14/04/06 nss3.dll Ajouté 3.9.3 14/04/06 mozctlx.dll Ajouté 1.7.13: 200 14/04/06 ssl3.dll Ajouté 3.9.3 14/04/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.13_2006041421\Setup GRE] SETUP.EXE Ajouté 1, 0, 0, 2 12/06/06 setuprsc.dll Ajouté 12/06/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.13_2006041421\uninstall] GREUninstall.exe Ajouté 12/06/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.13_2006041421\components] jar50.dll Ajouté 1.7.13: 200 14/04/06 xpinstal.dll Ajouté 1.7.13: 200 14/04/06 xpcom_compat_c.d Ajouté 1.7.13: 200 14/04/06 imgicon.dll Ajouté 1.7.13: 200 14/04/06 oji.dll Ajouté 1.7.13: 200 14/04/06 universalchardet Ajouté 1.7.13: 200 14/04/06 xmlextras.dll Ajouté 1.7.13: 200 14/04/06 xpc3250.dll Ajouté 1.7.13: 200 14/04/06 imglib2.dll Ajouté 1.7.13: 200 14/04/06 webbrwsr.dll Ajouté 1.7.13: 200 14/04/06 docshell.dll Ajouté 1.7.13: 200 14/04/06 gkplugin.dll Ajouté 1.7.13: 200 14/04/06 gkparser.dll Ajouté 1.7.13: 200 14/04/06 uconv.dll Ajouté 1.7.13: 200 14/04/06 profile.dll Ajouté 1.7.13: 200 14/04/06 rdf.dll Ajouté 1.7.13: 200 14/04/06 accessibility.dl Ajouté 1.7.13: 200 14/04/06 ucvmath.dll Ajouté 1.7.13: 200 14/04/06 p3p.dll Ajouté 1.7.13: 200 14/04/06 cookie.dll Ajouté 1.7.13: 200 14/04/06 appshell.dll Ajouté 1.7.13: 200 14/04/06 caps.dll Ajouté 1.7.13: 200 14/04/06 gklayout.dll Ajouté 1.7.13: 200 14/04/06 pipboot.dll Ajouté 1.7.13: 200 14/04/06 xppref32.dll Ajouté 1.7.13: 200 14/04/06 necko2.dll Ajouté 1.7.13: 200 14/04/06 gkwidget.dll Ajouté 14/04/06 necko.dll Ajouté 1.7.13: 200 14/04/06 editor.dll Ajouté 1.7.13: 200 14/04/06 ipcdc.dll Ajouté 1.7.13: 200 14/04/06 pipnss.dll Ajouté 1.7.13: 200 14/04/06 i18n.dll Ajouté 1.7.13: 200 14/04/06 embedcomponents. Ajouté 1.7.13: 200 14/04/06 chrome.dll Ajouté 1.7.13: 200 14/04/06 wallet.dll Ajouté 1.7.13: 200 14/04/06 gkgfxwin.dll Ajouté 1.7.13: 200 14/04/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.13_2006041421\ipc\modules] lockmodule.dll Ajouté 1.7.13: 200 14/04/06 transmgr.dll Ajouté 1.7.13: 200 14/04/06 288 dossiers examinés. 2403 fichiers examinés. 121 fichiers ajoutés au fichier de données de vérification. 60 fichiers supprimés du fichier de données de vérification. 36 fichiers mis à jour dans le fichier de données de vérification. 0 fichiers restaurés. 5 modifications de fichiers ignorées. ******************** Vérificateur des fichiers système Fichier journal généré le 07/03/07 à 11:47 Vérification commencée avec les données du fichier : "C:\WINDOWS\Default.sfc" Version Date Nouvelle Nouvelle CRC Fichier Modif. précédente précéd. version date Id. ---------------- ----------- ----------- --------- ----------- --------- ------ [C:\WINDOWS] tsc.exe Mis à jour 3.98.0.1012 08/07/06 3.98.0.1012 08/01/07 Oui SeaMonkeyUninsta Mis à jour 21/07/06 11/02/07 Non ali.exe Ajouté 1.00 18/06/01 MEMBOOT.DLL Mis à jour 08/07/06 08/01/07 Oui BPM95.dll Mis à jour 7.000-1004 08/07/06 7.000-1004 08/01/07 Oui vsapi32.dll Mis à jour 8.000-1001 08/07/06 8.310-1002 08/01/07 Non HCExtOutput.dll Mis à jour 08/07/06 08/01/07 Oui GREUninstall.exe Supprimé 21/07/06 MozillaUninstall Supprimé 12/06/06 [C:\WINDOWS\SYSTEM] ATIIISXX.EXE Mis à jour 4.12.2117 13/04/02 4.12.2117 12/02/02 Oui ati2s9ag.exe Mis à jour 5.13.0013 12/09/03 5.13.0020 24/01/06 Non ATI2EVXX.EXE Mis à jour 4.18.4051 13/04/02 6.14.4103 25/01/06 Non ASWBOOT.EXE Mis à jour 4, 7, 844, 31/05/06 4, 7, 936, 15/01/07 Non ATI2EDXX.DLL Mis à jour 6, 14, 10, 18/09/03 6, 14, 10, 25/01/06 Non ATI2EVXX.DLL Mis à jour 4.13.4013 13/04/02 6.14.4103 25/01/06 Non ATI3D2AG.DLL Mis à jour 4.13.01.328 13/04/02 4.14.01.407 25/01/06 Non ATI3DUAG.DLL Mis à jour 13/04/02 4.14.01.051 25/01/06 Non ATIDDC.DLL Mis à jour 5.13.01.000 13/04/02 6.14.10.5 25/01/06 Non ATIICDXX.DLL Mis à jour 6.13.10.106 13/04/02 6.14.10.208 25/01/06 Non ATIIIEXX.DLL Mis à jour 6.13.2154 13/04/02 6.14.10.400 25/01/06 Non ATIO9XXX.DLL Mis à jour 4.13.3064 13/04/02 4.14.10.445 25/01/06 Non ATIPDLXX.DLL Mis à jour 4, 12, 1, 2 13/04/02 6, 14, 10, 25/01/06 Non ATITVO32.DLL Mis à jour 4.12.2148 13/04/02 6.14.10.410 25/01/06 Non ATIV16XX.DLL Mis à jour 4.13.2321 13/04/02 4.14.3001 25/01/06 Non ATIVIFXX.DLL Mis à jour 4.13.2263 13/04/02 4.14.3001 25/01/06 Non OEMDSPIF.DLL Mis à jour 4.12.0006 13/04/02 6.14.0010 25/01/06 Non ATI2CQAG.DLL Mis à jour 4.13.1.0048 13/04/02 4.15.1.9165 25/01/06 Non ATI2I9AG.DLL Mis à jour 4.13.01.903 13/04/02 4.15.1.9165 25/01/06 Non wmadmod.dll Mis à jour 9.00.00.298 12/12/02 10.00.00.36 11/08/04 Non wmsdmod.dll Mis à jour 9.00.00.298 12/12/02 10.00.00.36 11/08/04 Non wmspdmod.dll Mis à jour 9.00.00.298 12/12/02 10.00.00.36 11/08/04 Non wmvdmod.dll Mis à jour 9.00.00.298 12/12/02 10.00.00.36 11/08/04 Non ereglb32.dll Ajouté 19/03/96 ergint32.dll Ajouté 04/03/96 wmvadvd.dll Ajouté 10.00.00.38 04/03/05 ATI3D1AG.DLL Mis à jour 4.13.01.328 13/04/02 4.14.01.407 25/01/06 Non ADVPACK.DLL Mis à jour 6.00.2800.1 30/08/02 6.00.2900.2 01/08/04 Non mpreg.dll Ajouté 12/01/98 ATIVVAXX.DLL Ajouté 4.14.01.051 25/01/06 mscomm32.ocx Ajouté 5.01.4319 19/07/97 ATI2VXAG.VXD Mis à jour 4.13.01.903 13/04/02 4.15.1.9165 25/01/06 Non ATIICDXX.VXD Mis à jour 4.12.1003 13/04/02 4.12.1003 15/04/03 Oui HwInfoD.vxd Mis à jour 12/09/05 25/02/07 Oui ATIVVXXX.VXD Mis à jour 4.13.6005 13/04/02 4.14.7001 25/01/06 Non MSISYS.VXD Mis à jour 4.03 13/08/06 4.03 07/03/07 Oui configmg.vxd Ajouté 4.10.2222 05/05/99 ntkern.vxd Ajouté 4.10.2222 05/05/99 vmouse.vxd Ajouté 4.10.2222 05/05/99 ATIICDXX.SYS Mis à jour 6.13.10.100 13/04/02 6.13.10.100 06/11/02 Oui FA33XND3.SYS Ajouté 3.00.090.00 24/04/01 AVASTSS.SCR Mis à jour 4, 7, 835, 31/05/06 4, 7, 936, 15/01/07 Non ATI2DRAG.DRV Mis à jour 4.13.01.903 13/04/02 4.15.1.9165 25/01/06 Non ARGradient.ocx Supprimé 1.05 20/07/01 ATIPRBXX.EXE Supprimé 6.13.10.300 13/04/02 Registry Control Supprimé 1.00 26/04/01 Registry.dll Supprimé 2, 3, 3, 0 25/09/01 SmartMenuXP.dll Supprimé 2.07.0004 13/10/01 SmartMenuXP.ocx Supprimé 1.08.0005 06/11/01 SmartSubClass.dl Supprimé 1.00.0006 27/04/01 wshcon.dll Supprimé 5.6.0.6626 18/08/01 [C:\Program Files] UnInstall_jetAud Supprimé 5.0.0.0 18/08/04 [C:\WINDOWS\SYSTEM32\DRIVERS] ICUSB.sys Ajouté 5.00.1868.1 03/09/03 AFMP3.SYS Supprimé 1, 0, 0, 2 25/03/03 [C:\WINDOWS\SYSTEM\REINSTALLBACKUPS\PCI#VEN_1002&DEV_5159&SUBSYS_013A1002] Ati2evxx.exe Mis à jour 4.18.4051 18/09/03 6.14.4103 18/09/03 Oui atiicdxx.dll Mis à jour 6.13.10.106 18/09/03 6.14.10.208 18/09/03 Oui atiiiexx.dll Mis à jour 6.13.2154 18/09/03 6.14.10.400 18/09/03 Oui ati2edxx.dll Mis à jour 6, 14, 10, 18/09/03 6, 14, 10, 18/09/03 Oui Oemdspif.dll Mis à jour 4.12.0006 18/09/03 6.14.0010 18/09/03 Oui atipdlxx.dll Mis à jour 4, 12, 1, 2 18/09/03 6, 14, 10, 18/09/03 Oui Ati2evxx.dll Mis à jour 4.13.4013 18/09/03 6.14.4103 18/09/03 Oui atitvo32.dll Mis à jour 4.12.2148 18/09/03 6.14.10.410 18/09/03 Oui ATIDDC.DLL Mis à jour 5.13.01.000 18/09/03 6.14.10.5 18/09/03 Oui ATIO9XXX.DLL Mis à jour 4.13.3064 18/09/03 4.14.10.445 18/09/03 Oui ATIVIFXX.DLL Mis à jour 4.13.2263 18/09/03 4.14.3001 18/09/03 Oui ATIV16XX.DLL Mis à jour 4.13.2321 18/09/03 4.14.3001 18/09/03 Oui ATI3DUAG.DLL Mis à jour 18/09/03 4.14.01.051 18/09/03 Oui ATI3D2AG.DLL Mis à jour 4.13.01.328 18/09/03 4.14.01.407 18/09/03 Oui ATI3D1AG.DLL Mis à jour 4.13.01.328 18/09/03 4.14.01.407 18/09/03 Oui ATI2I9AG.DLL Mis à jour 4.13.01.903 18/09/03 4.15.1.9165 18/09/03 Oui ati2cqag.DLL Mis à jour 4.13.1.0048 18/09/03 4.15.1.9165 18/09/03 Oui ATIVVXXX.VXD Mis à jour 4.13.6005 18/09/03 4.14.7001 18/09/03 Oui ATI2VXAG.VXD Mis à jour 4.13.01.903 18/09/03 4.15.1.9165 18/09/03 Oui ATI2DRAG.DRV Mis à jour 4.13.01.903 18/09/03 4.15.1.9165 18/09/03 Oui [C:\Program Files\Fichiers communs\InstallShield\engine\6\Intel 32] IKERNEL.EXE Mis à jour 6, 31, 100, 25/07/02 6, 31, 100, 25/07/02 Oui [C:\Program Files\Fichiers communs\Microsoft Shared\Web Server Extensions\40\BIN] IMAGEMAP.EXE Ignoré 19/03/99 19/03/99 Non FP4AWEL.DLL Ignoré 4.0.2.2717 20/03/99 4.0.2.2717 20/03/99 Non [C:\Program Files\Fichiers communs\Microsoft Shared\Web Server Extensions\40\servsupp] FP4AMSFT.DLL Ignoré 4.0.2.2717 20/03/99 4.0.2.2717 20/03/99 Non FP4ANSCP.DLL Ignoré 4.0.2.2717 20/03/99 4.0.2.2717 20/03/99 Non FP4APWS.DLL Ignoré 4.0.2.2717 19/03/99 4.0.2.2717 19/03/99 Non [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.8.0.4_2006051612] gkgfx.dll Supprimé 1.8.0.4: 20 21/07/06 js3250.dll Supprimé 4.0 21/07/06 jsj3250.dll Supprimé 1.8.0.4: 20 21/07/06 mozctl.dll Supprimé 1, 0, 0, 1 21/07/06 mozctlx.dll Supprimé 1.8.0.4: 20 21/07/06 mozz.dll Supprimé 1.8.0.4: 20 21/07/06 nspr4.dll Supprimé 4.6.1 21/07/06 nss3.dll Supprimé 3.10.2 21/07/06 nssckbi.dll Supprimé 1.53 21/07/06 plc4.dll Supprimé 4.6.1 21/07/06 plds4.dll Supprimé 4.6.1 21/07/06 smime3.dll Supprimé 3.10.2 21/07/06 softokn3.dll Supprimé 3.10.2 21/07/06 ssl3.dll Supprimé 3.10.2 21/07/06 xpcom.dll Supprimé 1.8.0.4: 20 21/07/06 xpcom_compat.dll Supprimé 1.8.0.4: 20 21/07/06 xpcom_core.dll Supprimé 1.8.0.4: 20 21/07/06 xpicleanup.exe Supprimé 1.8.0.4: 20 21/07/06 xpistub.dll Supprimé 1.8.0.4: 20 21/07/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.8.0.4_2006051612\Setup GRE] SETUP.EXE Supprimé 1, 0, 0, 2 21/07/06 setuprsc.dll Supprimé 21/07/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.8.0.4_2006051612\uninstall] GREUninstall.exe Supprimé 21/07/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.8.0.4_2006051612\components] accessibility.dl Supprimé 1.8.0.4: 20 21/07/06 appshell.dll Supprimé 1.8.0.4: 20 21/07/06 caps.dll Supprimé 1.8.0.4: 20 21/07/06 chrome.dll Supprimé 1.8.0.4: 20 21/07/06 cookie.dll Supprimé 1.8.0.4: 20 21/07/06 docshell.dll Supprimé 1.8.0.4: 20 21/07/06 editor.dll Supprimé 1.8.0.4: 20 21/07/06 embedcomponents. Supprimé 1.8.0.4: 20 21/07/06 gkgfxwin.dll Supprimé 1.8.0.4: 20 21/07/06 gklayout.dll Supprimé 1.8.0.4: 20 21/07/06 gkparser.dll Supprimé 1.8.0.4: 20 21/07/06 gkplugin.dll Supprimé 1.8.0.4: 20 21/07/06 gkwidget.dll Supprimé 21/07/06 i18n.dll Supprimé 1.8.0.4: 20 21/07/06 imgicon.dll Supprimé 1.8.0.4: 20 21/07/06 imglib2.dll Supprimé 1.8.0.4: 20 21/07/06 jar50.dll Supprimé 1.8.0.4: 20 21/07/06 necko.dll Supprimé 1.8.0.4: 20 21/07/06 necko2.dll Supprimé 1.8.0.4: 20 21/07/06 oji.dll Supprimé 1.8.0.4: 20 21/07/06 p3p.dll Supprimé 1.8.0.4: 20 21/07/06 pipboot.dll Supprimé 1.8.0.4: 20 21/07/06 pipnss.dll Supprimé 1.8.0.4: 20 21/07/06 profile.dll Supprimé 1.8.0.4: 20 21/07/06 rdf.dll Supprimé 1.8.0.4: 20 21/07/06 uconv.dll Supprimé 1.8.0.4: 20 21/07/06 ucvmath.dll Supprimé 1.8.0.4: 20 21/07/06 universalchardet Supprimé 1.8.0.4: 20 21/07/06 wallet.dll Supprimé 1.8.0.4: 20 21/07/06 webbrwsr.dll Supprimé 1.8.0.4: 20 21/07/06 xmlextras.dll Supprimé 1.8.0.4: 20 21/07/06 xpc3250.dll Supprimé 1.8.0.4: 20 21/07/06 xpcom_compat_c.d Supprimé 1.8.0.4: 20 21/07/06 xpinstal.dll Supprimé 1.8.0.4: 20 21/07/06 xppref32.dll Supprimé 1.8.0.4: 20 21/07/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.13_2006041421] gkgfx.dll Supprimé 1.7.13: 200 14/04/06 js3250.dll Supprimé 4.0 14/04/06 jsj3250.dll Supprimé 1.7.13: 200 14/04/06 mozctl.dll Supprimé 1, 0, 0, 1 14/04/06 mozctlx.dll Supprimé 1.7.13: 200 14/04/06 mozilla-ipcd.exe Supprimé 1.7.13: 200 14/04/06 mozz.dll Supprimé 1.7.13: 200 14/04/06 nspr4.dll Supprimé 4.5 Beta 14/04/06 nss3.dll Supprimé 3.9.3 14/04/06 nssckbi.dll Supprimé 1.42 14/04/06 plc4.dll Supprimé 4.5 Beta 14/04/06 plds4.dll Supprimé 4.5 Beta 14/04/06 smime3.dll Supprimé 3.9.3 14/04/06 softokn3.dll Supprimé 3.9.3 14/04/06 ssl3.dll Supprimé 3.9.3 14/04/06 xpcom.dll Supprimé 1.7.13: 200 14/04/06 xpcom_compat.dll Supprimé 1.7.13: 200 14/04/06 xpicleanup.exe Supprimé 1.7.13: 200 14/04/06 xpistub.dll Supprimé 1.7.13: 200 14/04/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.13_2006041421\Setup GRE] SETUP.EXE Supprimé 1, 0, 0, 2 12/06/06 setuprsc.dll Supprimé 12/06/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.13_2006041421\uninstall] GREUninstall.exe Supprimé 12/06/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.13_2006041421\components] accessibility.dl Supprimé 1.7.13: 200 14/04/06 appshell.dll Supprimé 1.7.13: 200 14/04/06 caps.dll Supprimé 1.7.13: 200 14/04/06 chrome.dll Supprimé 1.7.13: 200 14/04/06 cookie.dll Supprimé 1.7.13: 200 14/04/06 docshell.dll Supprimé 1.7.13: 200 14/04/06 editor.dll Supprimé 1.7.13: 200 14/04/06 embedcomponents. Supprimé 1.7.13: 200 14/04/06 gkgfxwin.dll Supprimé 1.7.13: 200 14/04/06 gklayout.dll Supprimé 1.7.13: 200 14/04/06 gkparser.dll Supprimé 1.7.13: 200 14/04/06 gkplugin.dll Supprimé 1.7.13: 200 14/04/06 gkwidget.dll Supprimé 14/04/06 i18n.dll Supprimé 1.7.13: 200 14/04/06 imgicon.dll Supprimé 1.7.13: 200 14/04/06 imglib2.dll Supprimé 1.7.13: 200 14/04/06 ipcdc.dll Supprimé 1.7.13: 200 14/04/06 jar50.dll Supprimé 1.7.13: 200 14/04/06 necko.dll Supprimé 1.7.13: 200 14/04/06 necko2.dll Supprimé 1.7.13: 200 14/04/06 oji.dll Supprimé 1.7.13: 200 14/04/06 p3p.dll Supprimé 1.7.13: 200 14/04/06 pipboot.dll Supprimé 1.7.13: 200 14/04/06 pipnss.dll Supprimé 1.7.13: 200 14/04/06 profile.dll Supprimé 1.7.13: 200 14/04/06 rdf.dll Supprimé 1.7.13: 200 14/04/06 uconv.dll Supprimé 1.7.13: 200 14/04/06 ucvmath.dll Supprimé 1.7.13: 200 14/04/06 universalchardet Supprimé 1.7.13: 200 14/04/06 wallet.dll Supprimé 1.7.13: 200 14/04/06 webbrwsr.dll Supprimé 1.7.13: 200 14/04/06 xmlextras.dll Supprimé 1.7.13: 200 14/04/06 xpc3250.dll Supprimé 1.7.13: 200 14/04/06 xpcom_compat_c.d Supprimé 1.7.13: 200 14/04/06 xpinstal.dll Supprimé 1.7.13: 200 14/04/06 xppref32.dll Supprimé 1.7.13: 200 14/04/06 [C:\Program Files\Fichiers communs\mozilla.org\GRE\1.7.13_2006041421\ipc\modules] lockmodule.dll Supprimé 1.7.13: 200 14/04/06 transmgr.dll Supprimé 1.7.13: 200 14/04/06 288 dossiers examinés. 2286 fichiers examinés. 12 fichiers ajoutés au fichier de données de vérification. 129 fichiers supprimés du fichier de données de vérification. 60 fichiers mis à jour dans le fichier de données de vérification. 0 fichiers restaurés. 5 modifications de fichiers ignorées. ******************** Vérificateur des fichiers système Fichier journal généré le 08/03/07 à 00:13 Vérification commencée avec les données du fichier : "C:\WINDOWS\Default.sfc" Version Date Nouvelle Nouvelle CRC Fichier Modif. précédente précéd. version date Id. ---------------- ----------- ----------- --------- ----------- --------- ------ [C:\WINDOWS\SYSTEM] DRWATSON.VXD Mis à jour 4.03 13/08/06 4.03 07/03/07 Oui HwInfoD.vxd Mis à jour 25/02/07 07/03/07 Oui MSISYS.VXD Mis à jour 4.03 07/03/07 4.03 08/03/07 Oui DP83815.SYS Ajouté 5.00.124.0 11/04/01 [C:\WINDOWS\SYSTEM32\DRIVERS] RNDISMP.SYS Supprimé 5.1.3538.0 17/10/03 USB8023.SYS Supprimé 5.1.3538.0 17/10/03 Vérification annulée par l'utilisateur ******************** Vérificateur des fichiers système Fichier journal généré le 08/03/07 à 11:06 Vérification commencée avec les données du fichier : "C:\WINDOWS\Default.sfc" Version Date Nouvelle Nouvelle CRC Fichier Modif. précédente précéd. version date Id. ---------------- ----------- ----------- --------- ----------- --------- ------ [C:\WINDOWS\SYSTEM] DRWATSON.VXD Mis à jour 4.03 13/08/06 4.03 08/03/07 Oui HwInfoD.vxd Mis à jour 25/02/07 07/03/07 Oui MSISYS.VXD Mis à jour 4.03 07/03/07 4.03 08/03/07 Oui DP83815.SYS Ajouté 5.00.124.0 11/04/01 [C:\WINDOWS\SYSTEM32\DRIVERS] RNDISMP.SYS Supprimé 5.1.3538.0 17/10/03 USB8023.SYS Supprimé 5.1.3538.0 17/10/03 [C:\Program Files\Fichiers communs\Microsoft Shared\Web Server Extensions\40\BIN] IMAGEMAP.EXE Ignoré 19/03/99 19/03/99 Non FP4AWEL.DLL Restauré 4.0.2.2717 20/03/99 4.0.2.2717 20/03/99 Non Vérification annulée par l'utilisateur ******************** Vérificateur des fichiers système Fichier journal généré le 08/03/07 à 11:14 Vérification commencée avec les données du fichier : "C:\WINDOWS\Default.sfc" Version Date Nouvelle Nouvelle CRC Fichier Modif. précédente précéd. version date Id. ---------------- ----------- ----------- --------- ----------- --------- ------ [C:\WINDOWS\SYSTEM] DRWATSON.VXD Mis à jour 4.03 13/08/06 4.03 08/03/07 Oui HwInfoD.vxd Mis à jour 25/02/07 07/03/07 Oui MSISYS.VXD Mis à jour 4.03 07/03/07 4.03 08/03/07 Oui DP83815.SYS Ajouté 5.00.124.0 11/04/01 [C:\WINDOWS\SYSTEM32\DRIVERS] RNDISMP.SYS Supprimé 5.1.3538.0 17/10/03 USB8023.SYS Supprimé 5.1.3538.0 17/10/03 [C:\Program Files\Fichiers communs\Microsoft Shared\Web Server Extensions\40\BIN] IMAGEMAP.EXE Ignoré 19/03/99 19/03/99 Non FP4AWEL.DLL Restauré 4.0.2.2717 20/03/99 4.0.2.8912 19/08/04 Non [C:\Program Files\Fichiers communs\Microsoft Shared\Web Server Extensions\40\servsupp] FP4AMSFT.DLL Restauré 4.0.2.2717 20/03/99 4.0.2.8912 19/08/04 Non FP4ANSCP.DLL Restauré 4.0.2.2717 20/03/99 4.0.2.7523 19/08/04 Non FP4APWS.DLL Restauré 4.0.2.2717 19/03/99 4.0.2.7523 19/08/04 Non [C:\Program Files\Fichiers communs\InstallShield\Professional\RunTime91\Intel32] DotNetInstaller. Supprimé 9.1.0.429 10/11/03 288 dossiers examinés. 2284 fichiers examinés. 1 fichiers ajoutés au fichier de données de vérification. 3 fichiers supprimés du fichier de données de vérification. 3 fichiers mis à jour dans le fichier de données de vérification. 4 fichiers restaurés. 1 modifications de fichiers ignorées. ******************** Vérificateur des fichiers système Fichier journal généré le 08/03/07 à 11:57 Vérification commencée avec les données du fichier : "C:\WINDOWS\Default.sfc" Version Date Nouvelle Nouvelle CRC Fichier Modif. précédente précéd. version date Id. ---------------- ----------- ----------- --------- ----------- --------- ------ [C:\WINDOWS\SYSTEM] DRWATSON.VXD Mis à jour 4.03 08/03/07 4.03 08/03/07 Oui MSISYS.VXD Mis à jour 4.03 08/03/07 4.03 08/03/07 Oui [C:\Program Files\Fichiers communs\Microsoft Shared\Web Server Extensions\40\BIN] IMAGEMAP.EXE Ignoré 19/03/99 19/03/99 Non 288 dossiers examinés. 2284 fichiers examinés. 0 fichiers ajoutés au fichier de données de vérification. 0 fichiers supprimés du fichier de données de vérification. 2 fichiers mis à jour dans le fichier de données de vérification. 0 fichiers restaurés. 1 modifications de fichiers ignorées. ******************** Vérificateur des fichiers système Fichier journal généré le 08/03/07 à 17:22 Vérification commencée avec les données du fichier : "C:\WINDOWS\Default.sfc" Version Date Nouvelle Nouvelle CRC Fichier Modif. précédente précéd. version date Id. ---------------- ----------- ----------- --------- ----------- --------- ------ [C:\WINDOWS\SYSTEM] DRWATSON.VXD Mis à jour 4.03 08/03/07 4.03 08/03/07 Oui MSISYS.VXD Mis à jour 4.03 08/03/07 4.03 08/03/07 Oui [C:\Program Files\Fichiers communs\Microsoft Shared\Web Server Extensions\40\BIN] IMAGEMAP.EXE Restauré 19/03/99 19/03/99 Non [C:\WINDOWS\SYSTEM\Kaspersky Lab\Kaspersky Online Scanner] kavuninstall.exe Ajouté 5.0.83.0 20/03/06 kavwebscan.dll Ajouté 5.0.83.0 20/03/06 kavss.dll Ajouté 4, 0, 2, 28 16/05/05 [C:\WINDOWS\SYSTEM\Kaspersky Lab\Kaspersky Online Scanner\bases] avcmhk4.dll Ajouté 1, 0, 0, 3 08/03/07 295 dossiers examinés. 2288 fichiers examinés. 4 fichiers ajoutés au fichier de données de vérification. 0 fichiers supprimés du fichier de données de vérification. 2 fichiers mis à jour dans le fichier de données de vérification. 1 fichiers restaurés. 0 modifications de fichiers ignorées. ******************** Vérificateur des fichiers système Fichier journal généré le 18/03/07 à 23:24 Vérification commencée avec les données du fichier : "C:\WINDOWS\Default.sfc" Version Date Nouvelle Nouvelle CRC Fichier Modif. précédente précéd. version date Id. ---------------- ----------- ----------- --------- ----------- --------- ------ [C:\WINDOWS] bdoscandel.exe Ajouté 25/05/06 [C:\WINDOWS\Downloaded Program Files] ipsupd.dll Ajouté 01/03/05 bdupd.dll Ajouté 01/03/05 libfn.dll Ajouté 07/12/04 bdcore.dll Ajouté 07/12/04 asinst.dll Ajouté 58, 6, 0, 0 24/08/06 oscan81.ocx_x Ajouté 31/05/06 oscan8.ocx Ajouté 1.0.0.1 01/06/06 [C:\WINDOWS\SYSTEM] LOGAGENT.EXE Mis à jour 9.00.00.298 11/12/02 9.00.00.328 05/04/05 Non asuninst.exe Ajouté 1, 0, 0, 2 02/08/06 BLACKBOX.DLL Mis à jour 9.00.00.298 12/12/02 9.00.00.328 19/04/05 Non DRMV2CLT.DLL Mis à jour 9.00.00.298 12/12/02 9.00.00.328 05/04/05 Non LAPRXY.DLL Mis à jour 9.00.00.298 11/12/02 9.00.00.328 05/04/05 Non qasf.dll Mis à jour 9.00.00.298 14/12/02 9.00.00.328 05/04/05 Non drmclien.dll Mis à jour 9.00.00.298 12/12/02 9.00.00.328 05/04/05 Non drmstor.dll Mis à jour 9.00.00.298 12/12/02 9.00.00.328 05/04/05 Non MSNETOBJ.DLL Mis à jour 9.00.00.298 12/12/02 9.00.00.328 05/04/05 Non WMADMOE.DLL Mis à jour 9.00.00.298 12/12/02 10.00.00.38 13/02/05 Non WMASF.DLL Mis à jour 9.00.00.325 04/08/04 9.00.00.328 05/04/05 Non WMNETMGR.DLL Mis à jour 9.00.00.298 12/12/02 9.00.00.328 05/04/05 Non wmidx.dll Mis à jour 9.00.00.298 11/12/02 9.00.00.328 05/04/05 Non WMVCORE.DLL Mis à jour 9.00.00.325 04/08/04 9.00.00.328 05/04/05 Non wmadmod.dll Mis à jour 10.00.00.36 11/08/04 10.00.00.38 05/04/05 Non px.dll Ajouté 3.2.40.500 25/08/06 wmsdmoe2.dll Mis à jour 9.00.00.298 12/12/02 10.00.00.38 13/02/05 Non wmspdmoe.dll Mis à jour 9.00.00.298 12/12/02 10.00.00.38 13/02/05 Non wmvdmoe2.dll Mis à jour 9.00.00.298 12/12/02 10.00.00.38 13/02/05 Non wmsdmod.dll Mis à jour 10.00.00.36 11/08/04 10.00.00.38 05/04/05 Non wmspdmod.dll Mis à jour 10.00.00.36 11/08/04 10.00.00.38 05/04/05 Non wmvdmod.dll Mis à jour 10.00.00.36 11/08/04 10.00.00.38 05/04/05 Non mpg4dmod.dll Mis à jour 9.00.00.298 12/12/02 9.00.00.328 05/04/05 Non mp4sdmod.dll Mis à jour 9.00.00.298 11/12/02 9.00.00.328 05/04/05 Non mp43dmod.dll Mis à jour 9.00.00.298 12/12/02 9.00.00.328 05/04/05 Non pxmas.dll Ajouté 3.2.40.500 25/08/06 pxwave.dll Ajouté 3.2.40.500 25/08/06 vxblock.dll Ajouté 1.00.72a 25/08/06 pxdrv.dll Ajouté 1.01.93B 25/08/06 pxsfs.dll Ajouté 3.2.40.500 25/08/06 pxafs.dll Ajouté 3.2.40.500 25/08/06 unicows.dll Ajouté 1.1.3790.0 07/12/04 ZPORT4AS.dll Ajouté 25/03/03 [C:\WINDOWS\SYSTEM\IOSUBSYS] pxhelper.vxd Ajouté 1.1.0 25/08/06 [C:\WINDOWS\SYSTEM\ActiveScan] pavdr.exe Ajouté 1, 4, 1, 3 14/07/06 pfdnnt.exe Ajouté 1, 4, 1, 3 30/06/06 certdll.dll Ajouté 01/08/03 as.dll Ajouté 2, 89, 0, 0 24/01/07 asmdat.dll Ajouté 03/06/05 memvfile.dll Ajouté 2, 0, 0, 0 16/02/06 pavaleas.dll Ajouté 1, 0, 9, 0 04/05/04 pavexcom.dll Ajouté 3, 3, 4, 0 10/04/06 pavoe.dll Ajouté 2, 0, 0, 0 16/02/06 pavpz.dll Ajouté 1, 18, 0, 0 05/10/06 port32.dll Ajouté 2, 0, 0, 3 04/02/04 pskalloc.dll Ajouté 1, 4, 1, 7 17/08/06 pskas.dll Ajouté 1, 4, 1, 6 04/09/06 pskavs.dll Ajouté 1, 4, 1, 12 18/08/06 pskcmp.dll Ajouté 1, 4, 1, 40 30/08/06 pskfss.dll Ajouté 1, 4, 1, 10 09/08/06 pskhtml.dll Ajouté 1, 4, 1, 4 19/07/06 pskmas.dll Ajouté 1, 4, 0, 0 20/01/06 pskmdfs.dll Ajouté 1, 4, 1, 2 17/05/06 pskpack.dll Ajouté 1, 4, 1, 3 16/08/06 pskscs.dll Ajouté 1, 4, 1, 6 30/06/06 pskutil.dll Ajouté 1, 4, 1, 13 17/08/06 pskvfile.dll Ajouté 1, 4, 1, 3 08/08/06 pskvfs.dll Ajouté 1, 4, 1, 12 18/08/06 pskvm.dll Ajouté 1, 4, 1, 8 18/08/06 psscan.dll Ajouté 10, 4, 1, 8 17/10/06 tcpvfile.dll Ajouté 3, 0, 1, 0 28/02/06 msvcr71.dll Ajouté 7.10.3052.4 25/10/05 sporder.dll Ajouté 4.00 18/09/97 instlsp.dll Ajouté 5, 1, 6, 4 20/05/05 pscpu.dll Ajouté 1, 4, 1, 0 01/08/06 rawvfile.dll Ajouté 2, 0, 0, 28 22/01/07 ascontrol.dll Ajouté 1, 25, 0, 0 05/10/06 pavinas.dll Ajouté 1, 0, 0, 3 14/02/06 pskahk.dll Ajouté 1, 4, 2, 0 23/08/06 296 dossiers examinés. 2342 fichiers examinés. 54 fichiers ajoutés au fichier de données de vérification. 0 fichiers supprimés du fichier de données de vérification. 23 fichiers mis à jour dans le fichier de données de vérification. 0 fichiers restaurés. 0 modifications de fichiers ignorées. "
  3. JC83
    Je remonte.
  4. JC83
    1er scan : (ali.exe) Complete scanning result of "ali.exe", received in VirusTotal at 03.16.2007, 00:25:51 (CET). Antivirus Version Update Result AhnLab-V3 2007.3.15.0 03.15.2007 no virus found AntiVir 7.3.1.43 03.15.2007 no virus found Authentium 4.93.8 03.15.2007 no virus found Avast 4.7.936.0 03.15.2007 no virus found AVG 7.5.0.447 03.15.2007 no virus found BitDefender 7.2 03.16.2007 no virus found CAT-QuickHeal 9.00 03.15.2007 no virus found ClamAV 0.90.1 03.15.2007 no virus found DrWeb 4.33 03.15.2007 no virus found eSafe 7.0.14.0 03.15.2007 no virus found eTrust-Vet 30.6.3481 03.15.2007 no virus found Ewido 4.0 03.15.2007 no virus found FileAdvisor 1 03.16.2007 No threat detected Fortinet 2.85.0.0 03.15.2007 no virus found F-Prot 4.3.1.45 03.15.2007 no virus found F-Secure 6.70.13030.0 03.15.2007 no virus found Ikarus T3.1.1.3 03.15.2007 no virus found Kaspersky 4.0.2.24 03.15.2007 no virus found McAfee 4985 03.15.2007 no virus found Microsoft 1.2306 03.15.2007 no virus found NOD32v2 2117 03.15.2007 no virus found Norman 5.80.02 03.15.2007 no virus found Panda 9.0.0.4 03.15.2007 no virus found Prevx1 V2 03.16.2007 no virus found Sophos 4.15.0 03.13.2007 no virus found Sunbelt 2.2.907.0 03.15.2007 no virus found Symantec 10 03.15.2007 no virus found TheHacker 6.1.6.076 03.15.2007 no virus found UNA 1.83 03.15.2007 no virus found VBA32 3.11.2 03.15.2007 no virus found VirusBuster 4.3.7:9 03.15.2007 no virus found Aditional Information File size: 18944 bytes MD5: bfd00de5f6e1fbf41e1e97af0a55fa5b SHA1: db4cdecb597f8d7977f01de8c5db8f220ce12c35 Bit9 info: http://fileadvisor.bit9.com/services/extin...e1e97af0a55fa5b 2ème scan (MROUSSEL.WL) Complete scanning result of "Mroussel.pwl", received in VirusTotal at 03.16.2007, 00:35:29 (CET). Antivirus Version Update Result AhnLab-V3 2007.3.15.0 03.15.2007 no virus found AntiVir 7.3.1.43 03.15.2007 no virus found Authentium 4.93.8 03.15.2007 no virus found Avast 4.7.936.0 03.15.2007 no virus found AVG 7.5.0.447 03.15.2007 no virus found BitDefender 7.2 03.16.2007 no virus found CAT-QuickHeal 9.00 03.15.2007 no virus found ClamAV 0.90.1 03.15.2007 no virus found DrWeb 4.33 03.15.2007 no virus found eSafe 7.0.14.0 03.15.2007 no virus found eTrust-Vet 30.6.3481 03.15.2007 no virus found Ewido 4.0 03.15.2007 no virus found FileAdvisor 1 03.16.2007 no virus found Fortinet 2.85.0.0 03.15.2007 no virus found F-Prot 4.3.1.45 03.15.2007 no virus found F-Secure 6.70.13030.0 03.15.2007 no virus found Ikarus T3.1.1.3 03.15.2007 no virus found Kaspersky 4.0.2.24 03.15.2007 no virus found McAfee 4985 03.15.2007 no virus found Microsoft 1.2306 03.15.2007 no virus found NOD32v2 2117 03.15.2007 no virus found Norman 5.80.02 03.15.2007 no virus found Panda 9.0.0.4 03.15.2007 no virus found Prevx1 V2 03.16.2007 no virus found Sophos 4.15.0 03.13.2007 no virus found Sunbelt 2.2.907.0 03.15.2007 no virus found Symantec 10 03.16.2007 no virus found TheHacker 6.1.6.076 03.15.2007 no virus found UNA 1.83 03.15.2007 no virus found VBA32 3.11.2 03.15.2007 no virus found VirusBuster 4.3.7:9 03.15.2007 no virus found Aditional Information File size: 1200 bytes MD5: 02720d1ad70d2235d35039b5d3914afe SHA1: 1bb25fb6083aa7e214e2249c9a8b3a7aca8e0462 P.S. pour Hijackthis, malgré la réinstallation, il plante toujours de la même façon.
  5. JC83
    Voici le rapport demandé : Incident Statut Analyse Spyware:Cookie/Xiti No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.xiti.com/] Spyware:Cookie/Comclick No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[fl01.ct2.comclick.com/] Spyware:Cookie/Tradedoubler No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.tradedoubler.com/] Spyware:Cookie/Hitbox No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.hitbox.com/] Spyware:Cookie/Doubleclick No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.doubleclick.net/] Spyware:Cookie/Bluestreak No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.bluestreak.com/] Spyware:Cookie/Serving-sys No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.serving-sys.com/] Spyware:Cookie/Serving-sys No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.bs.serving-sys.com/] Spyware:Cookie/Serving-sys No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.serving-sys.com/] Spyware:Cookie/Statcounter No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.statcounter.com/] Spyware:Cookie/YieldManager No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/Falkag No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.as-us.falkag.net/] Spyware:Cookie/Tribalfusion No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.tribalfusion.com/] Spyware:Cookie/Falkag No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[as1.falkag.de/] Spyware:Cookie/Itrack No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[ilead.itrack.it/] Spyware:Cookie/Falkag No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[as1.falkag.de/] Spyware:Cookie/Adtech No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.adtech.de/] Spyware:Cookie/Weborama No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.weborama.fr/] Spyware:Cookie/Mediaplex No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.mediaplex.com/] Spyware:Cookie/Atlas DMT No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.atdmt.com/] Spyware:Cookie/Advertising No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.advertising.com/] Spyware:Cookie/RealMedia No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.247realmedia.com/] Spyware:Cookie/RealMedia No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.realmedia.com/] Spyware:Cookie/2o7 No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.2o7.net/] Spyware:Cookie/Overture No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.overture.com/] Spyware:Cookie/Com.com No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.com.com/] Spyware:Cookie/Falkag No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.as-eu.falkag.net/] Spyware:Cookie/FastClick No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.fastclick.net/] Spyware:Cookie/WebtrendsLive No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[statse.webtrendslive.com/] Spyware:Cookie/Adviva No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.adviva.net/] Spyware:Cookie/Toplist No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.toplist.cz/] Spyware:Cookie/Casalemedia No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.casalemedia.com/] Spyware:Cookie/MetriWeb No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.metriweb.be/] Spyware:Cookie/Tucows No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.tucows.com/] Spyware:Cookie/DriveCleaner No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.drivecleaner.com/] Spyware:Cookie/BurstNet No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.burstnet.com/] Spyware:Cookie/DriveCleaner No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[www.drivecleaner.com/] Spyware:Cookie/ErrorSafe No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.errorsafe.com/] Spyware:Cookie/Searchportal No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[searchportal.information.com/] Spyware:Cookie/WUpd No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.revenue.net/] Spyware:Cookie/Reliablestats No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[stats1.reliablestats.com/] Spyware:Cookie/FortuneCity No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.fortunecity.com/] Spyware:Cookie/Reliablestats No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[stats1.reliablestats.com/] Spyware:Cookie/FortuneCity No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.fortunecity.com/] Spyware:Cookie/Hbmediapro No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.adopt.hbmediapro.com/] Spyware:Cookie/onestat.com No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[stat.onestat.com/] Spyware:Cookie/fe.lea.lycos No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[fe.lea.lycos.fr/] Spyware:Cookie/bravenetA No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.bravenet.com/] Spyware:Cookie/Yadro No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.yadro.ru/] Spyware:Cookie/Zedo No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.zedo.com/] Spyware:Cookie/QuestionMarket No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.questionmarket.com/] Spyware:Cookie/Overture No Désinfecté C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cookies.txt[.perf.overture.com/] Spyware:Cookie/Atlas DMT No Désinfecté C:\WINDOWS\Cookies\m. roussel@atdmt[1].txt Spyware:Cookie/Overture No Désinfecté C:\WINDOWS\Cookies\m. roussel@perf.overture[1].txt Spyware:Cookie/Weborama No Désinfecté C:\WINDOWS\Cookies\m. roussel@weborama[2].txt Spyware:Cookie/fe.lea.lycos No Désinfecté C:\WINDOWS\Cookies\m. roussel@fe.lea.lycos[1].txt Spyware:Cookie/Beweb No Désinfecté C:\WINDOWS\Cookies\m. roussel@beweb[2].txt Spyware:Cookie/Cgi-bin No Désinfecté C:\WINDOWS\Cookies\m[12].txt Spyware:Cookie/Xiti No Désinfecté C:\WINDOWS\Cookies\m. roussel@xiti[1].txt Spyware:Cookie/Com.com No Désinfecté C:\WINDOWS\Cookies\m. roussel@bannerlandia.com[1].txt Spyware:Cookie/GoStats No Désinfecté C:\WINDOWS\Cookies\m. roussel@gostats[2].txt Spyware:Cookie/Doubleclick No Désinfecté C:\WINDOWS\Cookies\m. roussel@doubleclick[2].txt Spyware:Cookie/Bluestreak No Désinfecté C:\WINDOWS\Cookies\m. roussel@bluestreak[2].txt Spyware:Cookie/Xmts No Désinfecté C:\WINDOWS\Cookies\m. roussel@xmts[2].txt Spyware:Cookie/Atwola No Désinfecté C:\WINDOWS\Cookies\m. roussel@atwola[3].txt Spyware:Cookie/Cgi-bin No Désinfecté C:\WINDOWS\Cookies\m. roussel@CARE2HJZ.txt Spyware:Cookie/Adtech No Désinfecté C:\WINDOWS\Cookies\m. roussel@adtech[2].txt Spyware:Cookie/Reliablestats No Désinfecté C:\WINDOWS\Cookies\m. roussel@stats1.reliablestats[1].txt Spyware:Cookie/Serving-sys No Désinfecté C:\WINDOWS\Cookies\m. roussel@bs.serving-sys[2].txt Spyware:Cookie/Atwola No Désinfecté C:\WINDOWS\Cookies\m. roussel@atwola[2].txt Outil indésirable:Application/PassRock No Désinfecté D:\Mes documents\TéléchInternet\Utilitaires\UTILITAIRES SYSTEME\Rock XP\RockXP3.exe Virus:Trj/Downloader.HZO Désinfecté D:\System Volume Information\_restore{BF1548B7-959B-4C99-B631-742485BE40FA}\RP25\A0012293.EXE
  6. JC83
    Voici le rapport demandé : " WinPFind3 logfile created on: 12/03/07 22:25:22 WinPFind3U by OldTimer - Version 1.0.20 Folder = C:\WINDOWS\BUREAU\WINPFIND3U\ (Version = .) Internet Explorer (Version = 6.0.2800.1106) 523668 Kb Total Physical Memory | 44584 Kb Available Physical Memory | 8,51% Memory free 1573480 Kb Paging File | 1304848 Kb Available in Paging File | 82,93% Paging File free Paging file location(s): Reg Data - Value does not exist %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 10231392 Kb Total Space | 4301256 Kb Free Space | 42,04% Space Free Drive D: | 28830576 Kb Total Space | 15649456 Kb Free Space | 54,28% Space Free Drive E: | 133724448 Kb Total Space | 89252544 Kb Free Space | 66,74% Space Free F: Drive not present or media not loaded [Processes - Non-Microsoft Only] [Win32 Services - Non-Microsoft Only] [Registry - Non-Microsoft Only] < Run [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ashMaiSv -> %ProgramFiles%\Alwil Software\Avast4\ASHMAISV.EXE -> ALWIL Software [Ver = 4, 7, 936, 0 | Size = 255616 bytes | Modified Date = 15/01/07 17:28:32 | Attr = ] ATIPTA -> %ProgramFiles%\ATI Technologies\ATI Control Panel\atiptaxx.exe -> ATI Technologies, Inc. [Ver = 6.14.10.5113 | Size = 339968 bytes | Modified Date = 24/01/06 21:00:00 | Attr = ] avast! Web Scanner -> %ProgramFiles%\Alwil Software\Avast4\ASHWEBSV.EXE -> ALWIL Software [Ver = 4, 7, 936, 0 | Size = 370304 bytes | Modified Date = 15/01/07 17:27:52 | Attr = ] Logitech Utility -> %SystemRoot%\LOGI_MWX.EXE -> Logitech Inc. [Ver = 9.76.043 | Size = 19968 bytes | Modified Date = 07/03/03 09:50:00 | Attr = ] OpScheduler -> %ProgramFiles%\ScanSoft\OmniPagePro14.0\OpScheduler.exe -> ScanSoft, Inc. [Ver = 14.0.2003.11111 | Size = 114688 bytes | Modified Date = 12/11/03 02:41:48 | Attr = ] Opware14 -> %ProgramFiles%\ScanSoft\OmniPagePro14.0\opware14.exe -> ScanSoft, Inc. [Ver = 14.0 | Size = 57344 bytes | Modified Date = 12/11/03 02:39:30 | Attr = ] PL2507MON -> %ProgramFiles%\Hi-Speed USB-to-IDE Win98 Driver\PL2507MON.exe -> Prolific Technology Inc. [Ver = 1, 4, 0, 0 | Size = 172032 bytes | Modified Date = 11/05/04 12:15:12 | Attr = ] QuickTime Task -> %System32%\qttask.exe -> Apple Computer, Inc. [Ver = 6.4 | Size = 77824 bytes | Modified Date = 07/07/04 10:45:26 | Attr = ] SSPrnAgent -> %ProgramFiles%\ScanSoft\OmniPagePro14.0\PdfPrn\SPrnAgent.exe -> ScanSoft, Inc. [Ver = 14.0.2003.11111 | Size = 20480 bytes | Modified Date = 12/11/03 01:20:48 | Attr = ] SXGDSENU -> %System32%\SXGDSENU.exe -> YAMAHA CORPORATION [Ver = 2, 1, 0, 2 | Size = 19456 bytes | Modified Date = 02/09/98 17:46:56 | Attr = ] TkBellExe -> %CommonProgramFiles%\Real\Update_OB\realsched.exe -> RealNetworks, Inc. [Ver = 0.1.0.3208 | Size = 180269 bytes | Modified Date = 22/01/05 10:49:32 | Attr = ] Zone Labs Client -> %ProgramFiles%\Zone Labs\ZoneAlarm\zlclient.exe -> Zone Labs Inc. [Ver = 4.5.538.001 | Size = 693528 bytes | Modified Date = 17/02/04 17:01:32 | Attr = ] < RunServices [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices ATIPOLL -> %System32%\ATI2EVXX.EXE -> [Ver = | Size = 376832 bytes | Modified Date = 25/01/06 03:42:20 | Attr = ] ATISmart -> %System32%\ati2s9ag.exe -> [Ver = 5.13.0020 | Size = 512091 bytes | Modified Date = 24/01/06 21:00:00 | Attr = ] avast! -> %ProgramFiles%\Alwil Software\Avast4\ASHSERV.EXE -> [Ver = 4, 7, 936, 0 | Size = 132736 bytes | Modified Date = 15/01/07 17:28:52 | Attr = ] TrueVector -> %System32%\ZONELABS\vsmon.exe -> Zone Labs Inc. [Ver = 4.5.538.001 | Size = 824592 bytes | Modified Date = 17/02/04 17:00:44 | Attr = ] < OptionalComponents [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\ IMAIL -> Installed = 1 -> MAPI -> Installed = 1 -> MSFS -> Installed = 1 -> < Run [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run SeaMonkey Quick Launch -> %ProgramFiles%\mozilla.org\SeaMonkey\seamonkey.exe -> mozilla.org [Ver = 1.8.1.2pre: 2007011111 | Size = 151552 bytes | Modified Date = 11/01/07 13:11:00 | Attr = ] < User Startup > -> C:\WINDOWS\Menu Démarrer\Programmes\Démarrage %SystemRoot%\Menu Démarrer\Programmes\Démarrage\Adobe Gamma Loader.exe.lnk -> %CommonProgramFiles%\Adobe\Calibration\ADOBEG~1.EXE -> Adobe Systems, Inc. [Ver = 1, 0, 0, 1 | Size = 108544 bytes | Modified Date = 11/05/98 15:00:42 | Attr = ] %SystemRoot%\Menu Démarrer\Programmes\Démarrage\BTTray.lnk -> %ProgramFiles%\WIDCOMM\Logiciel Bluetooth\BTTray.exe -> WIDCOMM, Inc. [Ver = 1.4.2 Build 10 | Size = 503869 bytes | Modified Date = 15/10/03 13:46:16 | Attr = ] -> %SystemRoot%\Menu Démarrer\Programmes\Démarrage\CnxUnistall.exe -> [Ver = | Size = 208896 bytes | Modified Date = 03/04/04 17:59:32 | Attr = ] < File Associations > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\ .bat [@ = batfile] -> PersistentHandler = Reg Data - Key not found -> .chm [@ = chm.file] -> PersistentHandler = Reg Data - Key not found -> .cmd [@ = ] -> PersistentHandler = Reg Data - Key not found -> .com [@ = comfile] -> PersistentHandler = Reg Data - Key not found -> .cpl [@ = cplfile] -> PersistentHandler = Reg Data - Key not found -> .exe [@ = exefile] -> PersistentHandler = Reg Data - Key not found -> .hlp [@ = hlpfile] -> PersistentHandler = Reg Data - Key not found -> .hta [@ = htafile] -> PersistentHandler = Reg Data - Key not found -> .html [@ = MozillaHTML] -> PersistentHandler = Reg Data - Key not found -> .inf [@ = inffile] -> PersistentHandler = Reg Data - Key not found -> .ini [@ = inifile] -> PersistentHandler = Reg Data - Key not found -> .url [@ = InternetShortcut] -> PersistentHandler = Reg Data - Key not found -> .js [@ = JSFile] -> PersistentHandler = Reg Data - Key not found -> .jse [@ = JSEFile] -> PersistentHandler = Reg Data - Key not found -> .pif [@ = piffile] -> PersistentHandler = Reg Data - Key not found -> .reg [@ = regfile] -> PersistentHandler = Reg Data - Key not found -> .scr [@ = scrfile] -> PersistentHandler = Reg Data - Key not found -> .txt [@ = txtfile] -> PersistentHandler = Reg Data - Key not found -> .vbe [@ = VBEFile] -> PersistentHandler = Reg Data - Key not found -> .vbs [@ = VBSFile] -> PersistentHandler = Reg Data - Key not found -> .wsf [@ = WSFFile] -> PersistentHandler = Reg Data - Key not found -> .wsh [@ = WSHFile] -> PersistentHandler = Reg Data - Key not found -> < Registry Shell Spawning > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command batfile [edit] -> %SystemRoot%\NOTEPAD.EXE %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] batfile [open] -> "%1" %* -> batfile [print] -> %SystemRoot%\NOTEPAD.EXE /p %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] chm.file [open] -> "%SystemRoot%\hh.exe" %1 -> Microsoft Corporation [Ver = 5.2.3790.309 (srv03_gdr.050413-1540) | Size = 10752 bytes | Modified Date = 13/04/05 17:06:32 | Attr = ] cmdfile [edit] -> Reg Data - Key not found -> cmdfile [open] -> Reg Data - Key not found -> cmdfile [print] -> Reg Data - Key not found -> comfile [open] -> "%1" %* -> cplfile [cplopen] -> %SystemRoot%\rundll32.exe shell32.dll,Control_RunDLL %1,%* -> Microsoft Corporation [Ver = 4.72.3812.600 | Size = 1405200 bytes | Modified Date = 14/03/02 11:08:14 | Attr = ] exefile [open] -> "%1" %* -> helpfile [open] -> Reg Data - Key not found -> hlpfile [open] -> %SystemRoot%\winhlp32.exe %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 327680 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] htafile [open] -> %System32%\MSHTA.EXE "%1" %* -> Microsoft Corporation [Ver = 6.00.2800.1106 | Size = 24576 bytes | Modified Date = 30/08/02 | Attr = ] htmlfile [edit] -> "%ProgramFiles%\MICROSOFT OFFICE\OFFICE\msohtmed.exe" %1 -> Microsoft Corporation [Ver = 9.0.2609 | Size = 41011 bytes | Modified Date = 09/02/99 21:14:10 | Attr = ] htmlfile [open] -> "%SystemDrive%\PROGRA~1\INTERN~1\iexplore.exe" -nohome -> Microsoft Corporation [Ver = 6.00.2800.1106 | Size = 91136 bytes | Modified Date = 30/08/02 | Attr = ] htmlfile [opennew] -> "%SystemDrive%\PROGRA~1\INTERN~1\iexplore.exe" %1 -> Microsoft Corporation [Ver = 6.00.2800.1106 | Size = 91136 bytes | Modified Date = 30/08/02 | Attr = ] htmlfile [print] -> rundll32.exe %System32%\MSHTML.DLL,PrintHTML "%1" -> Microsoft Corporation [Ver = 6.00.2800.1555 | Size = 2702848 bytes | Modified Date = 19/05/06 16:09:20 | Attr = ] http [open] -> %SystemDrive%\PROGRA~1\MOZILLA.ORG\SEAMON~1\SEAMON~1.EXE -url "%1" -> mozilla.org [Ver = 1.8.1.2pre: 2007011111 | Size = 151552 bytes | Modified Date = 11/01/07 13:11:00 | Attr = ] https [open] -> %SystemDrive%\PROGRA~1\MOZILLA.ORG\SEAMON~1\SEAMON~1.EXE -url "%1" -> mozilla.org [Ver = 1.8.1.2pre: 2007011111 | Size = 151552 bytes | Modified Date = 11/01/07 13:11:00 | Attr = ] inffile [install] -> %SystemRoot%\rundll.exe setupx.dll,InstallHinfSection DefaultInstall 132 %1 -> Microsoft Corporation [Ver = 4.10.2222 | Size = 752759 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] inffile [open] -> %SystemRoot%\NOTEPAD.EXE %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] inffile [print] -> %SystemRoot%\NOTEPAD.EXE /p %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] inifile [open] -> %SystemRoot%\NOTEPAD.EXE %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] inifile [print] -> %SystemRoot%\NOTEPAD.EXE /p %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] InternetShortcut [open] -> rundll32.exe shdocvw.dll,OpenURL %l -> Microsoft Corporation [Ver = 6.00.2800.1849 (xpsp2.060519-1300) | Size = 1339904 bytes | Modified Date = 26/05/06 15:50:26 | Attr = ] InternetShortcut [print] -> rundll32.exe %System32%\MSHTML.DLL,PrintHTML "%1" -> Microsoft Corporation [Ver = 6.00.2800.1555 | Size = 2702848 bytes | Modified Date = 19/05/06 16:09:20 | Attr = ] jsfile [edit] -> %SystemRoot%\Notepad.exe %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] jsfile [open] -> %SystemRoot%\WScript.exe "%1" %* -> Microsoft Corporation [Ver = 5.6.0.6626 | Size = 118834 bytes | Modified Date = 26/06/01 17:53:50 | Attr = ] jsfile [print] -> %SystemRoot%\Notepad.exe /p %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] jsefile [edit] -> %SystemRoot%\Notepad.exe %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] jsefile [open] -> %SystemRoot%\WScript.exe "%1" %* -> Microsoft Corporation [Ver = 5.6.0.6626 | Size = 118834 bytes | Modified Date = 26/06/01 17:53:50 | Attr = ] jsefile [print] -> %SystemRoot%\Notepad.exe /p %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] piffile [open] -> "%1" %* -> regfile [edit] -> %SystemRoot%\NOTEPAD.EXE %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] regfile [open] -> regedit.exe "%1" -> Microsoft Corporation [Ver = 4.10.1998 | Size = 122880 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] regfile [merge] -> Reg Data - Key not found -> regfile [print] -> %SystemRoot%\NOTEPAD.EXE /p %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] scrfile [config] -> "%1" -> scrfile [install] -> %SystemRoot%\rundll32.exe desk.cpl,InstallScreenSaver %l -> Microsoft Corporation [Ver = 4.72.3110.0 | Size = 225376 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] scrfile [open] -> "%1" /S -> txtfile [edit] -> Reg Data - Key not found -> txtfile [open] -> %SystemRoot%\NOTEPAD.EXE %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] txtfile [print] -> %SystemRoot%\NOTEPAD.EXE /p %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] txtfile [printto] -> Reg Data - Key not found -> vbefile [edit] -> %SystemRoot%\Notepad.exe %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] vbefile [open] -> %SystemRoot%\WScript.exe "%1" %* -> Microsoft Corporation [Ver = 5.6.0.6626 | Size = 118834 bytes | Modified Date = 26/06/01 17:53:50 | Attr = ] vbefile [print] -> %SystemRoot%\Notepad.exe /p %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] vbsfile [edit] -> %SystemRoot%\Notepad.exe %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] vbsfile [open] -> %SystemRoot%\WScript.exe "%1" %* -> Microsoft Corporation [Ver = 5.6.0.6626 | Size = 118834 bytes | Modified Date = 26/06/01 17:53:50 | Attr = ] vbsfile [print] -> %SystemRoot%\Notepad.exe /p %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] wsffile [edit] -> %SystemRoot%\Notepad.exe %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] wsffile [open] -> %SystemRoot%\WScript.exe "%1" %* -> Microsoft Corporation [Ver = 5.6.0.6626 | Size = 118834 bytes | Modified Date = 26/06/01 17:53:50 | Attr = ] wsffile [print] -> %SystemRoot%\Notepad.exe /p %1 -> Microsoft Corporation [Ver = 4.10.1998 | Size = 57344 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] wshfile [open] -> %SystemRoot%\WScript.exe "%1" %* -> Microsoft Corporation [Ver = 5.6.0.6626 | Size = 118834 bytes | Modified Date = 26/06/01 17:53:50 | Attr = ] Unknown [openas] -> %SystemRoot%\rundll32.exe shell32.dll,OpenAs_RunDLL %1 -> Microsoft Corporation [Ver = 4.72.3812.600 | Size = 1405200 bytes | Modified Date = 14/03/02 11:08:14 | Attr = ] Directory [find] -> %SystemRoot%\Explorer.exe -> Microsoft Corporation [Ver = 4.72.3110.1 | Size = 180224 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] Folder [open] -> %SystemRoot%\Explorer.exe /idlist,%I,%L -> Microsoft Corporation [Ver = 4.72.3110.1 | Size = 180224 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] Folder [explore] -> %SystemRoot%\Explorer.exe /e,/idlist,%I,%L -> Microsoft Corporation [Ver = 4.72.3110.1 | Size = 180224 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] Drive [find] -> %SystemRoot%\Explorer.exe -> Microsoft Corporation [Ver = 4.72.3110.1 | Size = 180224 bytes | Modified Date = 05/05/99 22:22:00 | Attr = ] Applications\iexplore.exe [open] -> "%SystemDrive%\PROGRA~1\INTERN~1\iexplore.exe" %1 -> Microsoft Corporation [Ver = 6.00.2800.1106 | Size = 91136 bytes | Modified Date = 30/08/02 | Attr = ] CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -> "%SystemDrive%\PROGRA~1\INTERN~1\iexplore.exe" -> Microsoft Corporation [Ver = 6.00.2800.1106 | Size = 91136 bytes | Modified Date = 30/08/02 | Attr = ] < ActiveX StubPath [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\ {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} -> -> {22d6f312-b0f6-11d0-94ab-0080c74c7e95} -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\mswmp.inf,PerUserStub -> {44BBA840-CC51-11CF-AAFA-00AA00B6015C} -> rundll32.exe advpack.dll,UserInstStubWrapper {44BBA840-CC51-11CF-AAFA-00AA00B6015C} -> {44BBA842-CC51-11CF-AAFA-00AA00B6015C} -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.W95 -> {44BBA851-CC51-11CF-AAFA-00AA00B6015C} -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wpie5x86.inf,PerUserStub -> {5A8D6EE0-3E18-11D0-821E-444553540000} -> rundll32.exe advpack.dll,LaunchINFSectionEx C:\WINDOWS\INF\icw.inf,PerUserStub,,36 -> {6BF52A52-394A-11d3-B153-00C04F79FAA6} -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub -> {73fa19d0-2d75-11d2-995d-00c04f98bbc9} -> rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\webfdr16.inf,PerUserStub.Install,1 -> {7790769C-0471-11d2-AF11-00C04FA35D02} -> rundll32.exe advpack.dll,UserInstStubWrapper {7790769C-0471-11d2-AF11-00C04FA35D02} -> {89820200-ECBD-11cf-8B85-00AA005B4383} -> rundll32.exe advpack.dll,UserInstStubWrapper {89820200-ECBD-11cf-8B85-00AA005B4383} -> {89820200-ECBD-11cf-8B85-00AA005B4395} -> rundll32.exe advpack.dll,LaunchINFSectionEx C:\WINDOWS\SYSTEM\ie4uinit.inf,Shell.UserStub,,36 -> {89B4C1CD-B018-4511-B0A1-5476DBF70820} -> C:\WINDOWS\SYSTEM\Rundll32.exe C:\WINDOWS\SYSTEM\mscories.dll,Install -> {9EF0045A-CDD9-438e-95E6-02B9AFEC8E11} -> C:\WINDOWS\SYSTEM\updcrl.exe -e -u C:\WINDOWS\SYSTEM\verisignpub1.crl -> {CA0A4247-44BE-11d1-A005-00805F8ABE06} -> RunDLL setupx.dll,InstallHinfSection PowerCfg.user 0 powercfg.inf -> >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} -> C:\WINDOWS\inf\unregmp2.exe /ShowWMP -> >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS -> RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP -> >PerUser_MSN_Clean -> C:\WINDOWS\msnmgsr1.exe -> AppletsPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection AppletsPerUser 64 C:\WINDOWS\INF\applets.inf -> FontsPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection FontsPerUser 64 C:\WINDOWS\INF\fonts.inf -> MmoptJunglePerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection MmoptJunglePerUser 64 C:\WINDOWS\INF\mmopt.inf -> MmoptMusicaPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection MmoptMusicaPerUser 64 C:\WINDOWS\INF\mmopt.inf -> MmoptRegisterPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection MmoptRegisterPerUser 64 C:\WINDOWS\INF\mmopt.inf -> MmoptRobotzPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection MmoptRobotzPerUser 64 C:\WINDOWS\INF\mmopt.inf -> MmoptUtopiaPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection MmoptUtopiaPerUser 64 C:\WINDOWS\INF\mmopt.inf -> MotownAvivideoPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection MotownAvivideoPerUser 64 C:\WINDOWS\INF\motown.inf -> MotownMmsysPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection MotownMmsysPerUser 64 C:\WINDOWS\INF\motown.inf -> MotownMPlayPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection MotownMPlayPerUser 64 C:\WINDOWS\INF\mplay98.inf -> MotownRecPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection MotownRecPerUser 64 C:\WINDOWS\INF\motown.inf -> OlsMsnPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection OlsMsnPerUser 64 C:\WINDOWS\INF\ols.inf -> OlsPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection OlsPerUser 64 C:\WINDOWS\INF\ols.inf -> PerUser_Base -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Base 64 C:\WINDOWS\INF\msmail.inf -> PerUser_Calc_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Calc_Inis 64 C:\WINDOWS\INF\applets.inf -> PerUser_CDPlayer_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_CDPlayer_Inis 64 C:\WINDOWS\INF\mmopt.inf -> PerUser_CharMap_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_CharMap_Inis 64 C:\WINDOWS\INF\appletpp.inf -> PerUser_ClipBrd_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_ClipBrd_Inis 64 C:\WINDOWS\INF\clip.inf -> PerUser_CVT_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_CVT_Inis 64 C:\WINDOWS\INF\applets1.inf -> PerUser_Dialer_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Dialer_Inis 64 C:\WINDOWS\INF\appletpp.inf -> PerUser_dxxspace_Links -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_dxxspace_Links 64 C:\WINDOWS\INF\applets1.inf -> PerUser_ICW_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_ICW_Inis 0 C:\WINDOWS\INF\icw97.inf -> PerUser_LinkBar_URLs -> C:\WINDOWS\COMMAND\sulfnbk.exe /L -> PerUser_MSBackup_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_MSBackup_Inis 64 C:\WINDOWS\INF\applets1.inf -> PerUser_Msinfo -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Msinfo 64 C:\WINDOWS\INF\msinfo.inf -> PerUser_Msinfo2 -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Msinfo2 64 C:\WINDOWS\INF\msinfo.inf -> PerUser_MSWordPad_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_MSWordPad_Inis 64 C:\WINDOWS\INF\wordpad.inf -> PerUser_netwatch_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_netwatch_Inis 64 C:\WINDOWS\INF\appletpp.inf -> PerUser_Onlinelnks_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Onlinelnks_Inis 64 C:\WINDOWS\INF\appletpp.inf -> PerUser_Paint_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Paint_Inis 64 C:\WINDOWS\INF\applets.inf -> PerUser_RNA_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_RNA_Inis 64 C:\WINDOWS\INF\rna.inf -> PerUser_Sysmeter_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Sysmeter_Inis 64 C:\WINDOWS\INF\appletpp.inf -> PerUser_Sysmon_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Sysmon_Inis 64 C:\WINDOWS\INF\appletpp.inf -> PerUser_Vol -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Vol 64 C:\WINDOWS\INF\motown.inf -> PerUser_winapps_Links -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_winapps_Links 64 C:\WINDOWS\INF\subase.inf -> PerUser_winbase_Links -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_winbase_Links 64 C:\WINDOWS\INF\subase.inf -> PerUser_Wingames_Inis -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUser_Wingames_Inis 64 C:\WINDOWS\INF\appletpp.inf -> PerUserOldLinks -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection PerUserOldLinks 64 C:\WINDOWS\INF\appletpp.inf -> SetupcPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection SetupcPerUser 64 C:\WINDOWS\INF\setupc.inf -> Shell2PerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection Shell2PerUser 64 C:\WINDOWS\INF\shell2.inf -> ShellPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection ShellPerUser 64 C:\WINDOWS\INF\shell.inf -> TapiPerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection TapiPerUser 64 C:\WINDOWS\INF\tapi.inf -> Theme_MoreWindows_PerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection Themes_MoreWindows_PerUser 0 C:\WINDOWS\INF\themes.inf -> Theme_Windows_PerUser -> rundll.exe C:\WINDOWS\SYSTEM\setupx.dll,InstallHinfSection Themes_Windows_PerUser 0 C:\WINDOWS\INF\themes.inf -> < Session Manager Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager < AppInit_DLLs [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs < SecurityProviders [HKLM] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders < Winlogon settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon < Policy Settings [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> -> < Policy Settings [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> ‘ HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\CDRAutoRun -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoToolbarCustomize -> 0 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Network\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\ -> -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\ -> -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ -> -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\\AdvancedTab -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\\ProgramsTab -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\\ConnectionsTab -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\\ContentTab -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\\SecurityTab -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\\GeneralTab -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\\PrivacyTab -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\\HomePage -> 1 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\ -> -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\\NoBrowserSaveAs -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\\NoViewSource -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\\NoFavorites -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\\NoBrowserContextMenu -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\\NoPrinting -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\\NoSelectDownloadDir -> 0 -> HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Restrictions\\NoBrowserClose -> 0 -> < HOSTS File > -> -> Hosts file not found -> < Internet Explorer Settings > -> HKLM: Default_Page_URL -> http://www.microsoft.com/isapi/redir.dll?p...&ar=msnhome -> HKLM: Main\\Default_Search_URL -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch -> HKLM: Local Page -> C:\WINDOWS\SYSTEM\blank.htm -> HKLM: Search Page -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch -> HKLM: Start Page -> http://www.microsoft.com/isapi/redir.dll?p...ER}&ar=home -> HKLM: CustomizeSearch -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm -> HKLM: SearchAssistant -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm -> HKCU: Local Page -> C:\WINDOWS\SYSTEM\blank.htm -> HKCU: Search Page -> http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch -> HKCU: Start Page -> http://www.tiscali.fr/ -> HKCU: ProxyEnable -> 0 -> < BHO's > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKLM] -> %ProgramFiles%\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [AcroIEHlprObj Class] -> Adobe Systems Incorporated [Ver = 6.0.0.2003051500 | Size = 50376 bytes | Modified Date = 15/05/03 00:47:54 | Attr = ] {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> %ProgramFiles%\Java\jre1.5.0_06\bin\ssv.dll [sSVHelper Class] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 184423 bytes | Modified Date = 10/11/05 13:22:12 | Attr = ] < Internet Explorer ToolBars [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found WebBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} [HKLM] -> Reg Data - Key not found [Reg Data - Key not found] -> File not found < Internet Explorer CmdMapping [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\CmdMapping {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -> 8200 - Console Java (Sun) -> {2A465934-E5F0-11D2-91B5-00104B9C4765} -> 8194 - Reg Data - Key not found -> {2A465936-E5F0-11D2-91B5-00104B9C4765} -> 8193 - Reg Data - Key not found -> {85d1f590-48f4-11d9-9669-0800200c9a66} -> 8201 - Uninstall BitDefender Online Scanner v8 -> {99EFB53C-C965-43CF-9F45-52242D134187} -> 8195 - Reg Data - Key not found -> {A75C6120-9B36-11d4-A3F0-009027427750} -> 8197 - Reg Data - Key not found -> {c95fe080-8f5d-11d2-a20b-00aa003c157a} -> 8192 - @shdoclc.dll,-864 -> {CCA281CA-C863-46ef-9331-5C8D4460577F} -> 8199 - @btrez.dll,-4017 -> {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} -> 8196 - Reg Data - Value does not exist -> {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} -> 8198 - Yahoo! Messenger -> NextId -> 8202 -> < Internet Explorer Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ {08B0E5C0-4FCB-11CF-AAA5-00401C608501} [HKLM] -> %ProgramFiles%\Java\jre1.5.0_06\bin\ssv.dll [MenuText: Console Java (Sun)] -> Sun Microsystems, Inc. [Ver = 5.0.60.5 | Size = 184423 bytes | Modified Date = 10/11/05 13:22:12 | Attr = ] {85d1f590-48f4-11d9-9669-0800200c9a66} [HKLM] -> Reg Data - Key not found [MenuText: Uninstall BitDefender Online Scanner v8] -> File not found {c95fe080-8f5d-11d2-a20b-00aa003c157a} -> %SystemRoot%\WEB\RELATED.HTM [buttonText: @shdoclc.dll,-866] -> [Ver = | Size = 654 bytes | Modified Date = 30/08/02 | Attr = R ] {CCA281CA-C863-46ef-9331-5C8D4460577F} -> %ProgramFiles%\WIDCOMM\Logiciel Bluetooth\btsendto_ie.htm [buttonText: @btrez.dll,-4015] -> [Ver = | Size = 2681 bytes | Modified Date = 29/05/03 13:53:08 | Attr = ] {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} -> Reg Data - Value does not exist [buttonText: Real.com] -> File not found {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} -> %ProgramFiles%\Yahoo!\Messenger\YPager.exe [buttonText: Yahoo! Messenger] -> Yahoo! Inc. [Ver = 6,0,0,1750 | Size = 2502656 bytes | Modified Date = 06/08/04 15:33:46 | Attr = ] < Internet Explorer Menu Extensions [HKCU] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ Download using Download &Express -> %System32%\MetaProducts\add_url.htm -> [Ver = | Size = 1028 bytes | Modified Date = 24/04/03 18:53:00 | Attr = ] Envoyer à &Bluetooth -> %ProgramFiles%\WIDCOMM\Logiciel Bluetooth\btsendto_ie_ctx.htm -> [Ver = | Size = 1320 bytes | Modified Date = 29/05/03 13:53:12 | Attr = ] Ouvrir le fichier PDF dans Word -> %ProgramFiles%\ScanSoft\OmniPagePro14.0\PdfCnv\IEShellExt.dll -> ScanSoft, Inc. [Ver = 1.0 | Size = 32768 bytes | Modified Date = 30/09/03 09:55:18 | Attr = ] < Approved Shell Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved [HKLM] -> Reg Data - Key not found [] -> File not found {1ADB1280-803F-11D9-B596-444553540000} [HKLM] -> %ProgramFiles%\Axon Data\AxCrypt\AxCrypt.dll [AxCrypt Privacy Wrapper File] -> Axantum Software AB [Ver = 1, 6, 0, 0 | Size = 112128 bytes | Modified Date = 27/11/04 19:49:50 | Attr = ] {2E9D3540-211C-11d0-A5F2-00A0248C37BE} [HKLM] -> %ProgramFiles%\Ahead\Nero\neroshx.dll [Nero Shell Extension Property Sheet] -> Ahead Software AG [Ver = 5, 5, 0, 4 | Size = 270336 bytes | Modified Date = 07/07/03 15:07:10 | Attr = ] {472083B0-C522-11CF-8763-00608CC02F24} [HKLM] -> %ProgramFiles%\Alwil Software\Avast4\ASHSHELL.DLL [avast] -> ALWIL Software [Ver = 4, 7, 936, 0 | Size = 69632 bytes | Modified Date = 15/01/07 17:23:14 | Attr = ] {5E44E225-A408-11CF-B581-008029601108} [HKLM] -> %ProgramFiles%\Adaptec\DirectCD\Shellex.dll [Adaptec Directcd Shell Extension] -> Adaptec [Ver = 3.0 (89) | Size = 190976 bytes | Modified Date = 30/08/99 03:00:00 | Attr = ] {6af09ec9-b429-11d4-a1fb-0090960218cb} [HKLM] -> %System32%\BTNeighborhood.dll [My Bluetooth Places] -> WIDCOMM, Inc. [Ver = 1.4.2 Build 10 | Size = 794701 bytes | Modified Date = 15/10/03 13:44:54 | Attr = ] {71F3F4F2-CF91-478a-B0DA-54847FF1BC3A} [HKLM] -> %ProgramFiles%\ScanSoft\OmniPagePro14.0\PdfCnv\ShellExt.dll [scanSoft PDF Converter Shell Extension] -> ScanSoft, Inc. [Ver = 1.0 | Size = 24576 bytes | Modified Date = 30/09/03 09:55:22 | Attr = ] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR shell extension] -> [Ver = | Size = 120832 bytes | Modified Date = 25/01/04 | Attr = ] {BDEADF00-C265-11d0-BCED-00A0C90AB50F} [HKLM] -> %CommonProgramFiles%\Microsoft Shared\Web Folders\MSONSEXT.DLL [Dossiers Web] -> [Ver = | Size = 532537 bytes | Modified Date = 12/02/99 21:43:50 | Attr = ] {F0CB00CD-5A07-4D91-97F5-A8C92CDA93E4} [HKLM] -> %ProgramFiles%\Real\RealPlayer\rpshell.dll [shell Extensions for RealOne Player] -> RealNetworks, Inc. [Ver = 1.0.1.1946 | Size = 49198 bytes | Modified Date = 22/01/05 10:49:38 | Attr = ] < Approved Shell Extensions [HKCU] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved {BDEADF00-C265-11d0-BCED-00A0C90AB50F} [HKLM] -> %CommonProgramFiles%\Microsoft Shared\Web Folders\MSONSEXT.DLL [Dossiers Web] -> [Ver = | Size = 532537 bytes | Modified Date = 12/02/99 21:43:50 | Attr = ] < ContextMenuHandlers - * [HKLM] > -> HKEY_LOCAL_MACHINE\Software\Classes\*\shellex\ContextMenuHandlers\ {472083B0-C522-11CF-8763-00608CC02F24} [HKLM] -> %ProgramFiles%\Alwil Software\Avast4\ASHSHELL.DLL [avast] -> ALWIL Software [Ver = 4, 7, 936, 0 | Size = 69632 bytes | Modified Date = 15/01/07 17:23:14 | Attr = ] {1ADB1280-803F-11D9-B596-444553540000} [HKLM] -> %ProgramFiles%\Axon Data\AxCrypt\AxCrypt.dll [axcrypt.File] -> Axantum Software AB [Ver = 1, 6, 0, 0 | Size = 112128 bytes | Modified Date = 27/11/04 19:49:50 | Attr = ] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR] -> [Ver = | Size = 120832 bytes | Modified Date = 25/01/04 | Attr = ] {E0D79304-84BE-11CE-9641-444553540000} [HKLM] -> %ProgramFiles%\WinZip\WZSHLSTB.DLL [WinZip] -> WinZip Computing, Inc. [Ver = 3.0 (32-bit) | Size = 24645 bytes | Modified Date = 27/11/02 08:10:00 | Attr = ] < ContextMenuHandlers - Directory [HKLM] > -> HKEY_LOCAL_MACHINE\Software\Classes\Directory\shellex\ContextMenuHandlers\ {B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR] -> [Ver = | Size = 120832 bytes | Modified Date = 25/01/04 | Attr = ] {E0D79304-84BE-11CE-9641-444553540000} [HKLM] -> %ProgramFiles%\WinZip\WZSHLSTB.DLL [WinZip] -> WinZip Computing, Inc. [Ver = 3.0 (32-bit) | Size = 24645 bytes | Modified Date = 27/11/02 08:10:00 | Attr = ] < ContextMenuHandlers - Folder [HKLM] > -> HKEY_LOCAL_MACHINE\Software\Classes\Folder\shellex\ContextMenuHandlers\ {472083B0-C522-11CF-8763-00608CC02F24} [HKLM] -> %ProgramFiles%\Alwil Software\Avast4\ASHSHELL.DLL [avast] -> ALWIL Software [Ver = 4, 7, 936, 0 | Size = 69632 bytes | Modified Date = 15/01/07 17:23:14 | Attr = ] {1ADB1280-803F-11D9-B596-444553540000} [HKLM] -> %ProgramFiles%\Axon Data\AxCrypt\AxCrypt.dll [axcrypt.File] -> Axantum Software AB [Ver = 1, 6, 0, 0 | Size = 112128 bytes | Modified Date = 27/11/04 19:49:50 | Attr = ] {B41DB860-8EE4-11D2-9906-E49FADC173CA} [HKLM] -> %ProgramFiles%\WinRAR\RarExt.dll [WinRAR] -> [Ver = | Size = 120832 bytes | Modified Date = 25/01/04 | Attr = ] {E0D79304-84BE-11CE-9641-444553540000} [HKLM] -> %ProgramFiles%\WinZip\WZSHLSTB.DLL [WinZip] -> WinZip Computing, Inc. [Ver = 3.0 (32-bit) | Size = 24645 bytes | Modified Date = 27/11/02 08:10:00 | Attr = ] < Protocol Handlers [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ ipp -> Reg Data - Key not found -> File not found msdaipp -> Reg Data - Key not found -> File not found < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} -> QuickTime Object - CodeBase = http://www.apple.com/qtactivex/qtplugin.cab -> {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} -> CKAVWebScan Object - CodeBase = http://webscanner.kaspersky.fr/kavwebscan_ansi.cab -> {166B1BCA-3F9C-11CF-8075-444553540000} -> Shockwave ActiveX Control - CodeBase = http://download.macromedia.com/pub/shockwa...director/sw.cab -> {32505657-9980-0010-8000-00AA00389B71} -> - CodeBase = http://download.microsoft.com/download/0/A...01F/wmvadvd.cab -> {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -> BDSCANONLINE Control - CodeBase = http://download.bitdefender.com/resources/scan8/oscan8.cab -> {74D05D43-3236-11D4-BDCD-00C04F9A3B61} -> HouseCall Control - CodeBase = http://a840.g.akamai.net/7/840/537/2005111...all/xscan53.cab -> {8AD9C840-044E-11D1-B3E9-00805F499D93} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab -> {9F1C11AA-197B-4942-BA54-47A8489BB47F} -> Update Class - CodeBase = http://v4.windowsupdate.microsoft.com/CAB/...8070.6446412037 -> {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} -> Java Plug-in - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -> Java Plug-in 1.5.0_06 - CodeBase = http://java.sun.com/update/1.5.0/jinstall-...indows-i586.cab -> {D27CDB6E-AE6D-11CF-96B8-444553540000} -> Shockwave Flash Object - CodeBase = http://download.macromedia.com/pub/shockwa...ash/swflash.cab -> DirectAnimation Java Classes -> - CodeBase = file://C:\WINDOWS\SYSTEM\dajava.cab -> Internet Explorer Classes for Java -> - CodeBase = file://C:\WINDOWS\SYSTEM\iejava.cab -> Microsoft XML Parser for Java -> - CodeBase = file://C:\WINDOWS\Java\classes\xmldso.cab -> teleir_cert -> - CodeBase = https://static.ir.dgi.minefi.gouv.fr/secure...teleir_cert.cab -> [Files - Created Within 30 days] CONFIG.SYS -> %SystemDrive%\CONFIG.SYS -> [Ver = | Size = 148 bytes | Created Date = 07/03/07 15:02:47 | Attr = ] AUTOEXEC.BAT -> %SystemDrive%\AUTOEXEC.BAT -> [Ver = | Size = 251 bytes | Created Date = 07/03/07 15:02:47 | Attr = ] PINBALL.INF -> %SystemDrive%\PINBALL.INF -> [Ver = | Size = 3813 bytes | Created Date = 01/03/07 10:37:27 | Attr = R ] PINBALL01.INF -> %SystemDrive%\PINBALL01.INF -> [Ver = | Size = 3831 bytes | Created Date = 01/03/07 10:54:03 | Attr = ] cc_20070211_2321.reg -> %UserDocuments%\cc_20070211_2321.reg -> [Ver = | Size = 815 bytes | Created Date = 11/02/07 23:21:38 | Attr = ] cc_20070308_1131.reg -> %UserDocuments%\cc_20070308_1131.reg -> [Ver = | Size = 1302 bytes | Created Date = 08/03/07 11:31:53 | Attr = ] rapportKaspersky.html -> %UserDocuments%\rapportKaspersky.html -> [Ver = | Size = 59840 bytes | Created Date = 08/03/07 12:55:45 | Attr = ] rapportKaspersky.doc -> %UserDocuments%\rapportKaspersky.doc -> [Ver = | Size = 75804 bytes | Created Date = 08/03/07 13:04:04 | Attr = ] avast! Antivirus.lnk -> %SystemRoot%\Bureau\avast! Antivirus.lnk -> [Ver = | Size = 519 bytes | Created Date = 09/03/07 19:26:45 | Attr = ] SeaMonkey.lnk -> %SystemRoot%\Bureau\SeaMonkey.lnk -> [Ver = | Size = 528 bytes | Created Date = 11/02/07 22:31:44 | Attr = ] DoubleKiller.exe.lnk -> %SystemRoot%\Bureau\DoubleKiller.exe.lnk -> [Ver = | Size = 583 bytes | Created Date = 10/03/07 23:22:46 | Attr = ] WinDrvExpert.exe.lnk -> %SystemRoot%\Bureau\WinDrvExpert.exe.lnk -> [Ver = | Size = 630 bytes | Created Date = 28/02/07 17:19:35 | Attr = ] Hijackthis Version Française.lnk -> %SystemRoot%\Bureau\Hijackthis Version Française.lnk -> [Ver = | Size = 480 bytes | Created Date = 11/03/07 19:55:35 | Attr = ] winpfind3u.exe -> %SystemRoot%\Bureau\winpfind3u.exe -> [Ver = | Size = 344532 bytes | Created Date = 12/03/07 22:23:20 | Attr = ] WAVEMIX.INI -> %SystemRoot%\WAVEMIX.INI -> [Ver = | Size = 54 bytes | Created Date = 12/03/07 21:53:08 | Attr = ] POWERPNT.INI -> %SystemRoot%\POWERPNT.INI -> [Ver = | Size = 60 bytes | Created Date = 12/03/07 21:53:08 | Attr = ] HWINFO.DAT -> %SystemRoot%\HWINFO.DAT -> [Ver = | Size = 667680 bytes | Created Date = 07/03/07 11:59:15 | Attr = RH ] HOSTS.SAM -> %SystemRoot%\HOSTS.SAM -> [Ver = | Size = 736 bytes | Created Date = 07/03/07 15:02:49 | Attr = ] LMHOSTS.SAM -> %SystemRoot%\LMHOSTS.SAM -> [Ver = | Size = 3717 bytes | Created Date = 07/03/07 15:02:49 | Attr = ] NBTSTAT.EXE -> %SystemRoot%\NBTSTAT.EXE -> [Ver = | Size = 34543 bytes | Created Date = 07/03/07 15:02:49 | Attr = ] NET.EXE -> %SystemRoot%\NET.EXE -> [Ver = | Size = 356134 bytes | Created Date = 07/03/07 15:02:49 | Attr = ] NET.MSG -> %SystemRoot%\NET.MSG -> [Ver = | Size = 114927 bytes | Created Date = 07/03/07 15:02:49 | Attr = ] NETH.MSG -> %SystemRoot%\NETH.MSG -> [Ver = | Size = 75201 bytes | Created Date = 07/03/07 15:02:49 | Attr = ] Default.sf0 -> %SystemRoot%\Default.sf0 -> [Ver = | Size = 144421 bytes | Created Date = 08/03/07 11:58:50 | Attr = ] Default.sfc -> %SystemRoot%\Default.sfc -> [Ver = | Size = 144927 bytes | Created Date = 08/03/07 17:29:04 | Attr = ] SYSTEM.INI -> %System32%.INI -> [Ver = | Size = 2369 bytes | Created Date = 12/03/07 21:53:08 | Attr = ] WININIT.BAK -> %SystemRoot%\WININIT.BAK -> [Ver = | Size = 48 bytes | Created Date = 11/03/07 19:50:19 | Attr = ] WIN.INI -> %SystemRoot%\WIN.INI -> [Ver = | Size = 9468 bytes | Created Date = 07/03/07 15:02:47 | Attr = ] USER.DAT -> %SystemRoot%\USER.DAT -> [Ver = | Size = 1597472 bytes | Created Date = 05/03/07 23:12:29 | Attr = RH ] QTFont.qfn -> %SystemRoot%\QTFont.qfn -> [Ver = | Size = 54156 bytes | Created Date = 07/03/07 01:03:31 | Attr = H ] QTFont.for -> %SystemRoot%\QTFont.for -> [Ver = | Size = 1308 bytes | Created Date = 07/03/07 01:03:31 | Attr = ] SeaMonkeyUninstall.exe -> %SystemRoot%\SeaMonkeyUninstall.exe -> [Ver = | Size = 118784 bytes | Created Date = 11/02/07 22:31:48 | Attr = ] WinDrvExpert.ini -> %SystemRoot%\WinDrvExpert.ini -> [Ver = | Size = 159 bytes | Created Date = 28/02/07 17:18:54 | Attr = ] ali.exe -> %SystemRoot%\ali.exe -> PC-Magic Software [Ver = 1.00 | Size = 18944 bytes | Created Date = 03/03/07 16:04:20 | Attr = ] AVASTSS.SCR -> %System32%\AVASTSS.SCR -> ALWIL Software [Ver = 4, 7, 936, 0 | Size = 90112 bytes | Created Date = 09/03/07 19:32:52 | Attr = ] LOCPROXY.EXE -> %System32%\LOCPROXY.EXE -> Microsoft Corporatoin [Ver = 4.10.5 | Size = 16384 bytes | Created Date = 07/03/07 15:02:49 | Attr = ] DHCPCSVC.DLL -> %System32%\DHCPCSVC.DLL -> [Ver = | Size = 24576 bytes | Created Date = 07/03/07 10:23:33 | Attr = ] TELNET.HLP -> %System32%\TELNET.HLP -> [Ver = | Size = 11685 bytes | Created Date = 07/03/07 15:02:49 | Attr = ] LMSCRIPT.EXE -> %System32%\LMSCRIPT.EXE -> [Ver = | Size = 4809 bytes | Created Date = 07/03/07 15:02:49 | Attr = ] LMSCRIPT.PIF -> %System32%\LMSCRIPT.PIF -> [Ver = | Size = 995 bytes | Created Date = 07/03/07 15:02:49 | Attr = ] FA33XND3.SYS -> %System32%\FA33XND3.SYS -> NETGEAR Inc. [Ver = 3.00.090.00 | Size = 33792 bytes | Created Date = 07/03/07 13:26:16 | Attr = ] DP83815.SYS -> %System32%\DP83815.SYS -> National Semiconductor Corp. [Ver = 5.00.124.0 | Size = 22040 bytes | Created Date = 07/03/07 15:02:48 | Attr = ] aswBoot.exe -> %System32%\aswBoot.exe -> [Ver = 4, 7, 936, 0 | Size = 689280 bytes | Created Date = 09/03/07 19:32:52 | Attr = ] [Files - Modified Within 30 days] BOOTLOG.PRV -> %SystemDrive%\BOOTLOG.PRV -> [Ver = | Size = 97830 bytes | Modified Date = 09/03/07 23:39:16 | Attr = H ] CONFIG.SYS -> %SystemDrive%\CONFIG.SYS -> [Ver = | Size = 148 bytes | Modified Date = 07/03/07 15:02:48 | Attr = ] AUTOEXEC.BAT -> %SystemDrive%\AUTOEXEC.BAT -> [Ver = | Size = 251 bytes | Modified Date = 07/03/07 15:02:48 | Attr = ] PINBALL01.INF -> %SystemDrive%\PINBALL01.INF -> [Ver = | Size = 3831 bytes | Modified Date = 01/03/07 10:54:04 | Attr = ] cc_20070211_2321.reg -> %UserDocuments%\cc_20070211_2321.reg -> [Ver = | Size = 815 bytes | Modified Date = 11/02/07 23:22:10 | Attr = ] cc_20070308_1131.reg -> %UserDocuments%\cc_20070308_1131.reg -> [Ver = | Size = 1302 bytes | Modified Date = 08/03/07 11:32:20 | Attr = ] rapportKaspersky.html -> %UserDocuments%\rapportKaspersky.html -> [Ver = | Size = 59840 bytes | Modified Date = 08/03/07 12:55:46 | Attr = ] rapportKaspersky.doc -> %UserDocuments%\rapportKaspersky.doc -> [Ver = | Size = 75804 bytes | Modified Date = 08/03/07 13:04:06 | Attr = ] avast! Antivirus.lnk -> %SystemRoot%\Bureau\avast! Antivirus.lnk -> [Ver = | Size = 519 bytes | Modified Date = 09/03/07 20:48:16 | Attr = ] Ma musique (2).lnk -> %SystemRoot%\Bureau\Ma musique (2).lnk -> [Ver = | Size = 306 bytes | Modified Date = 15/02/07 00:32:48 | Attr = ] SeaMonkey.lnk -> %SystemRoot%\Bureau\SeaMonkey.lnk -> [Ver = | Size = 528 bytes | Modified Date = 11/02/07 22:31:46 | Attr = ] DoubleKiller.exe.lnk -> %SystemRoot%\Bureau\DoubleKiller.exe.lnk -> [Ver = | Size = 583 bytes | Modified Date = 10/03/07 23:22:48 | Attr = ] Zone Labs Security.lnk -> %SystemRoot%\Bureau\Zone Labs Security.lnk -> [Ver = | Size = 422 bytes | Modified Date = 09/03/07 19:16:24 | Attr = ] Rct.lnk -> %SystemRoot%\Bureau\Rct.lnk -> [Ver = | Size = 285 bytes | Modified Date = 08/03/07 00:07:22 | Attr = ] WinDrvExpert.exe.lnk -> %SystemRoot%\Bureau\WinDrvExpert.exe.lnk -> [Ver = | Size = 630 bytes | Modified Date = 28/02/07 17:19:36 | Attr = ] Hijackthis Version Française.lnk -> %SystemRoot%\Bureau\Hijackthis Version Française.lnk -> [Ver = | Size = 480 bytes | Modified Date = 11/03/07 19:55:36 | Attr = ] winpfind3u.exe -> %SystemRoot%\Bureau\winpfind3u.exe -> [Ver = | Size = 344532 bytes | Modified Date = 12/03/07 18:35:38 | Attr = ] MROUSSEL.PWL -> %SystemRoot%\MROUSSEL.PWL -> [Ver = | Size = 1182 bytes | Modified Date = 07/03/07 14:43:54 | Attr = ] ODBC.INI -> %SystemRoot%\ODBC.INI -> [Ver = | Size = 1185 bytes | Modified Date = 09/03/07 19:29:52 | Attr = ] WAVEMIX.INI -> %SystemRoot%\WAVEMIX.INI -> [Ver = | Size = 54 bytes | Modified Date = 12/03/07 21:53:10 | Attr = ] POWERPNT.INI -> %SystemRoot%\POWERPNT.INI -> [Ver = | Size = 60 bytes | Modified Date = 12/03/07 21:53:10 | Attr = ] SHAREMEM.INI -> %SystemRoot%\SHAREMEM.INI -> [Ver = | Size = 61 bytes | Modified Date = 10/03/07 23:20:58 | Attr = ] CONTROL.INI -> %SystemRoot%\CONTROL.INI -> [Ver = | Size = 926 bytes | Modified Date = 04/03/07 21:52:16 | Attr = ] HWINFO.DAT -> %SystemRoot%\HWINFO.DAT -> [Ver = | Size = 667680 bytes | Modified Date = 07/03/07 11:59:16 | Attr = RH ] SYSTEM.CB -> %System32%.CB -> [Ver = | Size = 116 bytes | Modified Date = 09/03/07 20:22:26 | Attr = ] Default.sf0 -> %SystemRoot%\Default.sf0 -> [Ver = | Size = 144421 bytes | Modified Date = 08/03/07 11:58:52 | Attr = ] Default.sfc -> %SystemRoot%\Default.sfc -> [Ver = | Size = 144927 bytes | Modified Date = 08/03/07 17:29:06 | Attr = ] SYSTEM.INI -> %System32%.INI -> [Ver = | Size = 2369 bytes | Modified Date = 12/03/07 21:53:10 | Attr = ] WININIT.BAK -> %SystemRoot%\WININIT.BAK -> [Ver = | Size = 48 bytes | Modified Date = 11/03/07 19:50:20 | Attr = ] HPFCSS14.INI -> %SystemRoot%\HPFCSS14.INI -> [Ver = | Size = 2608 bytes | Modified Date = 10/03/07 23:20:58 | Attr = ] HPFdjc14.ini -> %SystemRoot%\HPFdjc14.ini -> [Ver = | Size = 1254 bytes | Modified Date = 10/03/07 23:20:58 | Attr = ] WIN.INI -> %SystemRoot%\WIN.INI -> [Ver = | Size = 9468 bytes | Modified Date = 07/03/07 15:02:48 | Attr = ] USER.DAT -> %SystemRoot%\USER.DAT -> [Ver = | Size = 1597472 bytes | Modified Date = 12/03/07 22:23:34 | Attr = RH ] mozver.dat -> %SystemRoot%\mozver.dat -> [Ver = | Size = 31489 bytes | Modified Date = 11/02/07 22:31:46 | Attr = ] QTFont.qfn -> %SystemRoot%\QTFont.qfn -> [Ver = | Size = 54156 bytes | Modified Date = 08/03/07 00:04:52 | Attr = H ] QTFont.for -> %SystemRoot%\QTFont.for -> [Ver = | Size = 1308 bytes | Modified Date = 07/03/07 01:03:32 | Attr = ] SeaMonkeyUninstall.exe -> %SystemRoot%\SeaMonkeyUninstall.exe -> [Ver = | Size = 118784 bytes | Modified Date = 11/02/07 22:31:50 | Attr = ] SYSTEM.DAT -> %System32%.DAT -> [Ver = | Size = 10199074 bytes | Modified Date = 12/03/07 22:23:34 | Attr = RH ] WinDrvExpert.ini -> %SystemRoot%\WinDrvExpert.ini -> [Ver = | Size = 159 bytes | Modified Date = 28/02/07 17:18:56 | Attr = ] HwInfoD.vxd -> %System32%\HwInfoD.vxd -> [Ver = | Size = 10982 bytes | Modified Date = 07/03/07 11:59:02 | Attr = ] WININIT.INI -> %System32%\WININIT.INI -> [Ver = | Size = 100 bytes | Modified Date = 01/03/07 08:40:58 | Attr = ] vsconfig.xml -> %System32%\vsconfig.xml -> [Ver = | Size = 527 bytes | Modified Date = 12/03/07 21:52:42 | Attr = ] [File String Scan - Non-Microsoft Only] File scan skipped for file %SystemDrive%\xscan.txt -> File size too big (123595200 bytes) -> UPX! , UPX0 , -> %UserDocuments%\20050701-007-i32.exe -> [Ver = | Size = 8335408 bytes | Modified Date = 02/07/05 17:13:38 | Attr = ] UPX! , aspack , -> %SystemRoot%\vsapi32.dll -> Trend Micro Inc. [Ver = 8.310-1002 | Size = 1101904 bytes | Modified Date = 08/01/07 00:15:36 | Attr = ] UPX! , UPX0 , -> %SystemRoot%\tsc.exe -> Trend Micro Inc. [Ver = 3.98.0.1012 | Size = 176709 bytes | Modified Date = 08/01/07 00:15:36 | Attr = ] PTech , Thawte Consulting , USERTRUST , -> %System32%.DAT -> [Ver = | Size = 10199074 bytes | Modified Date = 12/03/07 22:23:34 | Attr = RH ] UPX! , UPX0 , -> %System32%\aswBoot.exe -> [Ver = 4, 7, 936, 0 | Size = 689280 bytes | Modified Date = 15/01/07 17:32:08 | Attr = ] < End of report >
  7. JC83
    J'en viens à me demander si mon message est visible sur le forum. Détrompez-moi. P.S. En utilisant Bit defender en ligne, j'ai réussi à éliminer les menaces détectées par Kaspersky. Mais cela n'a pas amélioré les choses pour Hijackthis qui ne fonctionne toujours pas.
  8. JC83
    Et il montait, montait, montait...
  9. JC83
    L'ascension continue... Surtout, ne pas désespérer...
  10. JC83
    Eh bien, on va encore remonter...
  11. JC83
    Je remonte encore ! Je vais finir par arriver au sommet.
  12. JC83
    Toujours rien ? Je remonte.
  13. JC83
    J'ajoute le rapport Kaspersky (analyse en ligne) : KASPERSKY ON-LINE SCANNER REPORT Thursday, March 08, 2007 11:55:45 AM Système d'exploitation : Microsoft Windows 98 SE Kaspersky On-line Scanner version : 5.0.83.0 Dernière mise à jour de la base antivirus Kaspersky : 8/03/2007 Enregistrements dans la base antivirus Kaspersky : 278692 Paramètres d'analyse Analyser avec la base antivirus suivante étendue Analyser les archives vrai Analyser les bases de messagerie vrai Cible de l'analyse Zones critiques C:\WINDOWS C:\WINDOWS\TEMP\ Statistiques de l'analyse Total d'objets analysés 9635 Nombre de virus trouvés 1 Nombre d'objets infectés 0 / 0 Nombre d'objets suspects 67 Durée de l'analyse 00:20:35 Nom de l'objet infecté Nom du virus Dernière action C:\WINDOWS\TEMP\ZLT02950.TMP L'objet est verrouillé ignoré C:\WINDOWS\TEMP\_avast4_\Webshlock.txt L'objet est verrouillé ignoré C:\WINDOWS\WIN386.SWP L'objet est verrouillé ignoré C:\WINDOWS\Application Data\Mozilla\registry.dat L'objet est verrouillé ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Cache\_CACHE_MAP_ L'objet est verrouillé ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Cache\_CACHE_001_ L'objet est verrouillé ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Cache\_CACHE_002_ L'objet est verrouillé ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Cache\_CACHE_003_ L'objet est verrouillé ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\parent.lock L'objet est verrouillé ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 2 May 2002 00:37:50 +0200]/html Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 9 May 2002 12:43:34 +0200]/html Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 12 May 2002 21:41:00 +020 ... /html Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 12 May 2002 21:41:00 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 28 Apr 2002 00:41:26 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 28 Apr 2002 00:25:14 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 5 Apr 2002 23:58:19 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Mon, 18 Mar 2002 22:25:17 +0100]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 6 Mar 2002 22:22:23 +0100]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 3 Mar 2002 22:56:03 +0100]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 8 Dec 2004 01:07:04 +0100]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sat, 4 Dec 2004 17:32:21 +0100]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Tue, 30 Nov 2004 18:47:12 +0100]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 26 Nov 2004 22:51:31 +0100]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Mon, 8 Nov 2004 00:16:49 +0100]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 5 Nov 2004 17:43:40 +0100]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Tue, 2 Nov 2004 16:16:33 +0100]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sat, 30 Oct 2004 17:59:35 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sat, 30 Oct 2004 00:43:45 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 29 Oct 2004 17:47:46 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 28 Oct 2004 18:04:00 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 27 Oct 2004 22:44:40 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 27 Oct 2004 17:39:56 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 27 Oct 2004 09:34:54 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Tue, 26 Oct 2004 20:08:08 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Tue, 26 Oct 2004 17:29:20 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 24 Oct 2004 20:39:42 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 21 Oct 2004 23:44:51 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 21 Oct 2004 00:20:57 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 10 Oct 2004 20:19:35 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Tue, 5 Oct 2004 20:24:59 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 24 Sep 2004 23:51:44 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Mon, 20 Sep 2004 21:49:26 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 17 Sep 2004 07:42:27 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Mon, 13 Sep 2004 20:23:26 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Mon, 13 Sep 2004 00:17:54 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sat, 11 Sep 2004 13:00:52 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 8 Sep 2004 23:06:23 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 1 Sep 2004 12:33:40 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Tue, 31 Aug 2004 16:55:15 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 27 Aug 2004 16:38:10 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Mon, 23 Aug 2004 19:25:48 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Mon, 23 Aug 2004 00:50:32 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 22 Aug 2004 01:22:47 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Tue, 17 Aug 2004 10:56:15 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Mon, 16 Aug 2004 21:10:43 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Mon, 16 Aug 2004 19:33:02 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 15 Aug 2004 10:49:19 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Mon, 9 Aug 2004 10:22:38 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 6 Aug 2004 23:20:51 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sat, 17 Jul 2004 01:22:46 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 16 Jul 2004 16:07:18 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 16 Jul 2004 11:51:13 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 11 Jul 2004 17:33:49 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 11 Jul 2004 17:32:23 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sun, 11 Jul 2004 17:29:43 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sat, 10 Jul 2004 17:20:26 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Sat, 10 Jul 2004 03:29:28 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 7 Jul 2004 21:49:35 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 7 Jul 2004 11:45:33 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 7 Jul 2004 11:32:00 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Tue, 6 Jul 2004 12:49:37 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Wed, 5 May 2004 14:29:41 +0200]/text Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Fri, 30 Apr 2004 22:26:09 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED/[From "Jean-Christophe" ][Date Thu, 29 Apr 2004 17:39:46 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent/[From "Jean-Christophe" ][Date Wed, 28 Apr 2004 01:03:22 +0200]/UNNAMED Suspect : Exploit.HTML.Iframe.FileDownload ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\Mail\pop.tiscali.fr\Sent Mail Berkeley mbox: suspect - 66 ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\cert8.db L'objet est verrouillé ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\key3.db L'objet est verrouillé ignoré C:\WINDOWS\Application Data\Mozilla\Profiles\default\gsbrlx88.slt\history.dat L'objet est verrouillé ignoré C:\WINDOWS\SchedLog.Txt L'objet est verrouillé ignoré C:\WINDOWS\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré C:\WINDOWS\Cookies\index.dat L'objet est verrouillé ignoré C:\WINDOWS\Historique\History.IE5\index.dat L'objet est verrouillé ignoré C:\WINDOWS\Historique\History.IE5\MSHist012007030820070309\index.dat L'objet est verrouillé ignoré C:\WINDOWS\Local Settings\Application Data\Microsoft\Internet Explorer\MSIMGSIZ.DAT L'objet est verrouillé ignoré C:\WINDOWS\Internet Logs\tvDebug.log L'objet est verrouillé ignoré C:\WINDOWS\Internet Logs\IAMDB.RDB L'objet est verrouillé ignoré C:\WINDOWS\Internet Logs\Z6R3U5.ldb L'objet est verrouillé ignoré C:\WINDOWS\TEMP\ZLT02950.TMP L'objet est verrouillé ignoré C:\WINDOWS\TEMP\_avast4_\Webshlock.txt L'objet est verrouillé ignoré Analyse terminée.
  14. JC83
    J'ai restauré plusieurs fichiers système endommagés grâce à l'outil de Windows et la corbeille fonctionne à nouveau, mais pas moyen de trouver un fichier "d'origine" pour remplacer "imagemap.exe" qui est lui-aussi altéré. Ou pourrais-je dénicher cela ? Et toujours la même erreur affichée au démarrage d'Hijackthis, et même de Zeb Utility ! A l'aide !
  15. JC83
    Je remonte ! Merci de votre aide.
  16. JC83
    Merci, mais... Euh... J'aimerais mieux ne pas réinstaller...
  17. JC83
    Bonjour à tous Depuis quelques jours, la poubelle de mon windows 98SE donnait des signes de dysfonctionnement (elle refusait par exemple d'effacer certains fichiers. Depuis aujourd'hui, elle est "hors-service" : quand je veux supprimer un fichier, un message m'annonce que la poubelle n'est pas conforme puis me demande si je veux l'utiliser. Quel que soit le choix, le système se bloque ensuite et je dois redémarrer. En lançant "Dr Watson", j'obtiens ceci : "Windows KB891711 component a altéré les fichiers système Windows. Nom du module : KB891711.EXE Description : Windows KB891711 component Version : 4.10.2223 Produit : Microsoft® Windows® Operating System Fabricant : Microsoft Corporation -------------------- Windows KB918547 EXE component a altéré les fichiers système Windows. Nom du module : KB918547.EXE Description : Windows KB918547 EXE component Version : 4.10.2224 Produit : Microsoft® Windows® Operating System Fabricant : Microsoft Corporation" Je ne peux même pas vous donner un rapport hijack this car ce programme plante systématiquement, avec le message suivant : " HIJACKTHIS VF a causé une défaillance de page dans le module KERNEL32.DLL à 017f:bff7b9a6. Registres : EAX=00000000 CS=017f EIP=bff7b9a6 EFLGS=00000246 EBX=01464240 SS=0187 ESP=0071f778 EBP=0071f78c ECX=01464240 DS=0187 ESI=014642a8 FS=6fcf EDX=01660ebc ES=0187 EDI=014642a8 GS=0000 Octets à CS : EIP : ff 76 04 e8 13 89 ff ff 5e c2 04 00 56 8b 74 24 État de la pile : 01464240 70e2eb88 014642a8 00000000 01660ec0 0071f7cc 70e2e28e 01660ec0 0000000d 0071f7b4 00000001 01464240 00000012 00000000 81e135fc 00000000 " J'ai fait une recherche de virus avec Avast, qui n'a rien détecté. J'attends vos conseils, merci d'avance !
  18. JC83
    Alors, voici donc : "Il est parfois utile de changer l'emplacement du dossier temp (plus de place sur C: par exemple) Pour cela : 1/ créer le dossier cible, exemple D:\temp 2/ ajouter à c:\autoexec.bat : set temp=D:\temp set tmp=D:\temp 3/ relancer le PC, et hop, c'est fait. Par contre, ne pas supprimer c:\windows\temp qui est utilisé en mode sans échec..." Astuce découverte sur le site "Bruno's web", au lien suivant : Bruno's web @ +
  19. JC83
    Je viens de résoudre le problème. Si ça intéresse quelqu'un, je peux lui donner la solution. Amicalement.
  20. JC83
    Bonjour à tous J'ai installé sur un ordi non connecté à internet Windows 98 SE "dégraissé" (version "sleek") en utilisant le logiciel LitePro et en suivant les instructions suivantes : instructions J'ai partitionné mon DD comme indiqué, et j'ai déplacé le dossier Windows\Temp dans une autre partition. Le problème, c'est que depuis cette manipulation je ne peux installer aucun programme sur mon ordi car une fenêtre s'ouvre "Le dossier Temp se trouve sur un lecteur saturé ou inaccessible. Libérez de l'espace sur le disque et vérifiez que vous disposez des droits d'accès en écriture pour ce dossier Temp". Je précise que le "lecteur" en question a une capacité de 2 Go. Merci de vos éclaircissements et solutions.
  21. JC83
    Merci pour toutes ces propositions ! Juste une question : je voudrais garder mes deux disques durs (ultra DMA 100), mon lecteur et mon graveur de DVD (IDE). Or, la plupart des cartes-mères récentes n'offrent qu'un port IDE, voire aucun. Existerait-il un adaptateur pour brancher un périphérique IDE sur un port SATA, par exemple ? Merci de vos réponses.
  22. JC83
    Merci beaucoup, je vais essayer.
  23. JC83
    Merci, mais je crois que leur fréquence n'est pas compatible avec le Core 2 duo 6300. Me tromperais-je ? Et puisque j'y suis, avez-vous d'autres propositions de config ? Merci.
  24. JC83
    C'est vraiment très gentil, et j'accepte volontiers ! Merci.
  25. JC83
    on va dire 400 euros (voire plus) J'avais idée de choisir un processeur Intel Core 2 duo pour base de config.
×
×
  • Créer...