Virus trojan mcet.dll
Fermé
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
-
27 févr. 2007 à 09:10
KC-coah Messages postés 22 Date d'inscription vendredi 2 février 2007 Statut Membre Dernière intervention 10 mars 2008 - 28 mars 2007 à 15:12
KC-coah Messages postés 22 Date d'inscription vendredi 2 février 2007 Statut Membre Dernière intervention 10 mars 2008 - 28 mars 2007 à 15:12
A voir également:
- Virus trojan mcet.dll
- Trojan remover - Télécharger - Antivirus & Antimalwares
- Message virus iphone site adulte - Forum iPhone
- Trojan wacatac ✓ - Forum Virus
- Youtu.be virus - Accueil - Guide virus
- Svchost.exe virus - Guide
11 réponses
Kristopher
Messages postés
3731
Date d'inscription
vendredi 18 novembre 2005
Statut
Contributeur
Dernière intervention
10 juillet 2009
106
27 févr. 2007 à 10:51
27 févr. 2007 à 10:51
Salut,
Bizarre que tu n'ais pas encore trouvé la solution tout seul : désinstaller ce logiciel chinois qui doit être sûrement un big trojan !!
Bizarre que tu n'ais pas encore trouvé la solution tout seul : désinstaller ce logiciel chinois qui doit être sûrement un big trojan !!
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
27 févr. 2007 à 21:54
27 févr. 2007 à 21:54
Voici le resultat de mon analyse avec bitdefender, ensuite j'ai desinstallé les programmes que j'ai installé.
Je pense qu'il me reste des virus.
Une barre d'outil s'est installé sur mon internet explorer ( nom 7839). Comment je fais l'a desinstallé.
Ensuite par intermittence, internet se connecte sur des sites chinois sans que je demande.
BitDefender Online Scanner
Scan report generated at: Tue, Feb 27, 2007 - 21:29:13
Scan path: A:\;C:\;D:\;
Statistics
Time
00:56:18
Files
254837
Folders
4232
Boot Sectors
2
Archives
2905
Packed Files
27363
Results
Identified Viruses
13
Infected Files
23
Suspect Files
2
Warnings
0
Disinfected
0
Deleted Files
25
Engines Info
Virus Definitions
393856
Engine build
AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)
Scan plugins
14
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\Kévin\Local Settings\Temp\bind_50202.exe
Suspected of: Trojan.Downloader.Gen
C:\Documents and Settings\Kévin\Local Settings\Temp\bind_50202.exe
Disinfection failed
C:\Documents and Settings\Kévin\Local Settings\Temp\bind_50202.exe
Deleted
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\bind_50202[1].exe
Suspected of: Trojan.Downloader.Gen
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\bind_50202[1].exe
Disinfection failed
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\bind_50202[1].exe
Deleted
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\qq[1].exe
Infected with: Generic.PWStealer.30561B04
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\qq[1].exe
Disinfection failed
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\qq[1].exe
Deleted
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\MWIXAN18\windows[1].exe
Infected with: GenPack:Worm.Magistr.H
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\MWIXAN18\windows[1].exe
Disinfection failed
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\MWIXAN18\windows[1].exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP205\snapshot\MFEX-1.DAT
Infected with: Trojan.PWS.OnLineGames.BU
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP205\snapshot\MFEX-1.DAT
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP205\snapshot\MFEX-1.DAT
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033326.exe
Infected with: Trojan.Agent.AJW
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033326.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033326.exe
Deleted
C:\WINDOWS\rising322.exe
Infected with: Generic.PWStealer.30561B04
C:\WINDOWS\rising322.exe
Disinfection failed
C:\WINDOWS\rising322.exe
Deleted
C:\WINDOWS\rising613.exe
Infected with: Generic.PWStealer.30561B04
C:\WINDOWS\rising613.exe
Disinfection failed
C:\WINDOWS\rising613.exe
Deleted
C:\WINDOWS\rising64.exe
Infected with: GenPack:Worm.Magistr.H
C:\WINDOWS\rising64.exe
Disinfection failed
C:\WINDOWS\rising64.exe
Deleted
C:\WINDOWS\rising759.exe
Infected with: Generic.PWStealer.30561B04
C:\WINDOWS\rising759.exe
Disinfection failed
C:\WINDOWS\rising759.exe
Deleted
C:\WINDOWS\rising999.exe
Infected with: Generic.PWStealer.30561B04
C:\WINDOWS\rising999.exe
Disinfection failed
C:\WINDOWS\rising999.exe
Deleted
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Infected with: Trojan.Downloader.Small.R
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Disinfection failed
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Deleted
C:\WINDOWS\system32\1010s.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Infected with: Trojan.Downloader.Harnig.XB
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Disinfection failed
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Deleted
C:\WINDOWS\system32\1250.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\AlxRes070221.exe
Infected with: Generic.Malware.BE!dldspg.DEDC4379
C:\WINDOWS\system32\AlxRes070221.exe
Disinfection failed
C:\WINDOWS\system32\AlxRes070221.exe
Deleted
C:\WINDOWS\system32\bawang.exe
Infected with: Generic.Malware.BE!dldspg.8170D986
C:\WINDOWS\system32\bawang.exe
Disinfection failed
C:\WINDOWS\system32\bawang.exe
Deleted
C:\WINDOWS\system32\bind_50099.exe~
Infected with: Trojan.Downloader.Small.R
C:\WINDOWS\system32\bind_50099.exe~
Disinfection failed
C:\WINDOWS\system32\bind_50099.exe~
Deleted
C:\WINDOWS\system32\cacheur.exe
Infected with: Trojan.Agent.AJW
C:\WINDOWS\system32\cacheur.exe
Disinfection failed
C:\WINDOWS\system32\cacheur.exe
Deleted
C:\WINDOWS\system32\cryptimg.dll
Infected with: Trojan.Downloader.Agent.AYG
C:\WINDOWS\system32\cryptimg.dll
Disinfection failed
C:\WINDOWS\system32\cryptimg.dll
Deleted
C:\WINDOWS\system32\scrsys070221.scr
Infected with: Generic.Malware.BE!dldspg.DEDC4379
C:\WINDOWS\system32\scrsys070221.scr
Disinfection failed
C:\WINDOWS\system32\scrsys070221.scr
Deleted
C:\WINDOWS\system32\scrsys16_070221.scr
Infected with: Trojan.Agent.AMM
C:\WINDOWS\system32\scrsys16_070221.scr
Disinfection failed
C:\WINDOWS\system32\scrsys16_070221.scr
Deleted
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Infected with: Trojan.Adload.H
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Disinfection failed
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Deleted
C:\WINDOWS\system32\t21.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\UniBar.exe
Infected with: Trojan.Nimosw.A
C:\WINDOWS\system32\UniBar.exe
Disinfection failed
C:\WINDOWS\system32\UniBar.exe
Deleted
C:\WINDOWS\system32\winsys16_070221.dll
Infected with: Trojan.Agent.AMM
C:\WINDOWS\system32\winsys16_070221.dll
Disinfection failed
C:\WINDOWS\system32\winsys16_070221.dll
Deleted
C:\WINDOWS\system32\__delete_on_reboot__f_f_u_d_f_._e_x_e_
Infected with: Trojan.Agent.VB.BI
C:\WINDOWS\system32\__delete_on_reboot__f_f_u_d_f_._e_x_e_
Disinfection failed
C:\WINDOWS\system32\__delete_on_reboot__f_f_u_d_f_._e_x_e_
Deleted
C:\WINDOWS\Temp\SYSTEM.dat
Infected with: Trojan.Agent.AJW
C:\WINDOWS\Temp\SYSTEM.dat
Disinfection failed
C:\WINDOWS\Temp\SYSTEM.dat
Deleted
en attente de réponses merci
Je pense qu'il me reste des virus.
Une barre d'outil s'est installé sur mon internet explorer ( nom 7839). Comment je fais l'a desinstallé.
Ensuite par intermittence, internet se connecte sur des sites chinois sans que je demande.
BitDefender Online Scanner
Scan report generated at: Tue, Feb 27, 2007 - 21:29:13
Scan path: A:\;C:\;D:\;
Statistics
Time
00:56:18
Files
254837
Folders
4232
Boot Sectors
2
Archives
2905
Packed Files
27363
Results
Identified Viruses
13
Infected Files
23
Suspect Files
2
Warnings
0
Disinfected
0
Deleted Files
25
Engines Info
Virus Definitions
393856
Engine build
AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)
Scan plugins
14
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\Documents and Settings\Kévin\Local Settings\Temp\bind_50202.exe
Suspected of: Trojan.Downloader.Gen
C:\Documents and Settings\Kévin\Local Settings\Temp\bind_50202.exe
Disinfection failed
C:\Documents and Settings\Kévin\Local Settings\Temp\bind_50202.exe
Deleted
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\bind_50202[1].exe
Suspected of: Trojan.Downloader.Gen
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\bind_50202[1].exe
Disinfection failed
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\bind_50202[1].exe
Deleted
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\qq[1].exe
Infected with: Generic.PWStealer.30561B04
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\qq[1].exe
Disinfection failed
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\012FCDU7\qq[1].exe
Deleted
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\MWIXAN18\windows[1].exe
Infected with: GenPack:Worm.Magistr.H
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\MWIXAN18\windows[1].exe
Disinfection failed
C:\Documents and Settings\Kévin\Local Settings\Temp\Temporary Internet Files\Content.IE5\MWIXAN18\windows[1].exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP205\snapshot\MFEX-1.DAT
Infected with: Trojan.PWS.OnLineGames.BU
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP205\snapshot\MFEX-1.DAT
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP205\snapshot\MFEX-1.DAT
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033326.exe
Infected with: Trojan.Agent.AJW
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033326.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033326.exe
Deleted
C:\WINDOWS\rising322.exe
Infected with: Generic.PWStealer.30561B04
C:\WINDOWS\rising322.exe
Disinfection failed
C:\WINDOWS\rising322.exe
Deleted
C:\WINDOWS\rising613.exe
Infected with: Generic.PWStealer.30561B04
C:\WINDOWS\rising613.exe
Disinfection failed
C:\WINDOWS\rising613.exe
Deleted
C:\WINDOWS\rising64.exe
Infected with: GenPack:Worm.Magistr.H
C:\WINDOWS\rising64.exe
Disinfection failed
C:\WINDOWS\rising64.exe
Deleted
C:\WINDOWS\rising759.exe
Infected with: Generic.PWStealer.30561B04
C:\WINDOWS\rising759.exe
Disinfection failed
C:\WINDOWS\rising759.exe
Deleted
C:\WINDOWS\rising999.exe
Infected with: Generic.PWStealer.30561B04
C:\WINDOWS\rising999.exe
Disinfection failed
C:\WINDOWS\rising999.exe
Deleted
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Infected with: Trojan.Downloader.Small.R
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Disinfection failed
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Deleted
C:\WINDOWS\system32\1010s.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Infected with: Trojan.Downloader.Harnig.XB
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Disinfection failed
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Deleted
C:\WINDOWS\system32\1250.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\AlxRes070221.exe
Infected with: Generic.Malware.BE!dldspg.DEDC4379
C:\WINDOWS\system32\AlxRes070221.exe
Disinfection failed
C:\WINDOWS\system32\AlxRes070221.exe
Deleted
C:\WINDOWS\system32\bawang.exe
Infected with: Generic.Malware.BE!dldspg.8170D986
C:\WINDOWS\system32\bawang.exe
Disinfection failed
C:\WINDOWS\system32\bawang.exe
Deleted
C:\WINDOWS\system32\bind_50099.exe~
Infected with: Trojan.Downloader.Small.R
C:\WINDOWS\system32\bind_50099.exe~
Disinfection failed
C:\WINDOWS\system32\bind_50099.exe~
Deleted
C:\WINDOWS\system32\cacheur.exe
Infected with: Trojan.Agent.AJW
C:\WINDOWS\system32\cacheur.exe
Disinfection failed
C:\WINDOWS\system32\cacheur.exe
Deleted
C:\WINDOWS\system32\cryptimg.dll
Infected with: Trojan.Downloader.Agent.AYG
C:\WINDOWS\system32\cryptimg.dll
Disinfection failed
C:\WINDOWS\system32\cryptimg.dll
Deleted
C:\WINDOWS\system32\scrsys070221.scr
Infected with: Generic.Malware.BE!dldspg.DEDC4379
C:\WINDOWS\system32\scrsys070221.scr
Disinfection failed
C:\WINDOWS\system32\scrsys070221.scr
Deleted
C:\WINDOWS\system32\scrsys16_070221.scr
Infected with: Trojan.Agent.AMM
C:\WINDOWS\system32\scrsys16_070221.scr
Disinfection failed
C:\WINDOWS\system32\scrsys16_070221.scr
Deleted
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Infected with: Trojan.Adload.H
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Disinfection failed
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Deleted
C:\WINDOWS\system32\t21.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\UniBar.exe
Infected with: Trojan.Nimosw.A
C:\WINDOWS\system32\UniBar.exe
Disinfection failed
C:\WINDOWS\system32\UniBar.exe
Deleted
C:\WINDOWS\system32\winsys16_070221.dll
Infected with: Trojan.Agent.AMM
C:\WINDOWS\system32\winsys16_070221.dll
Disinfection failed
C:\WINDOWS\system32\winsys16_070221.dll
Deleted
C:\WINDOWS\system32\__delete_on_reboot__f_f_u_d_f_._e_x_e_
Infected with: Trojan.Agent.VB.BI
C:\WINDOWS\system32\__delete_on_reboot__f_f_u_d_f_._e_x_e_
Disinfection failed
C:\WINDOWS\system32\__delete_on_reboot__f_f_u_d_f_._e_x_e_
Deleted
C:\WINDOWS\Temp\SYSTEM.dat
Infected with: Trojan.Agent.AJW
C:\WINDOWS\Temp\SYSTEM.dat
Disinfection failed
C:\WINDOWS\Temp\SYSTEM.dat
Deleted
en attente de réponses merci
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
27 févr. 2007 à 22:11
27 févr. 2007 à 22:11
Voici mon Hijackthis
Logfile of HijackThis v1.99.1
Scan saved at 22:08:57, on 27/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\ATKKBService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
C:\Program Files\McAfee\MSK\MskAgent.exe
C:\Program Files\SiteAdvisor\6028\SiteAdv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\SiteAdvisor\6028\SAService.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Internet Explorer\iexplore.exe
c:\program files\mcafee\msc\mcuimgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Webroot\Spy Sweeper\SSU.EXE
C:\WINDOWS\system32\winlogon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://hao123.union123.com/index.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll
O2 - BHO: (no name) - {c2f0f66a-1258-43f2-8b0d-4e03f37a8dbf} - C:\WINDOWS\system32\43f2cfsb.dll
O2 - BHO: (no name) - {DE7C3CF0-4B15-11D1-ABED-709549C10000} - (no file)
O2 - BHO: 7839 - {DFCB34B6-902D-426E-AE2B-1B294AE19F4F} - C:\WINDOWS\system32\48a7ntos.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O3 - Toolbar: 7839 - {DFCB34B6-902D-426E-AE2B-1B294AE19F4F} - C:\WINDOWS\system32\48a7ntos.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMAXPnP] "C:\Program Files\Analog Devices\Core\smax4pnp.exe"
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [MskAgentexe] "C:\Program Files\McAfee\MSK\MskAgent.exe"
O4 - HKLM\..\Run: [SiteAdvisor] "C:\Program Files\SiteAdvisor\6028\SiteAdv.exe"
O4 - HKLM\..\Run: [upxdnd] C:\DOCUME~1\Karine\LOCALS~1\Temp\upxdnd.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
O4 - HKLM\..\Run: [26h8arusi] rundll32.exe C:\WINDOWS\8dji1.dll _start@16
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [updatereal] C:\WINDOWS\AntiAdwa.exe other
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/fr/4,0,0,90/mcinsctl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/fr/1,0,0,23/mcgdmgr.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O20 - Winlogon Notify: cryptimg - C:\WINDOWS\SYSTEM32\cryptimg.dll
O20 - Winlogon Notify: sclgntfys - C:\WINDOWS\sclgntfys.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: B7722F62 - Unknown owner - C:\WINDOWS\system32\B7722F62.EXE (file missing)
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6028\SAService.exe
O23 - Service: Windows User Mode Driver (UMWdfmgr) - Unknown owner - rundll32.exe (file missing)
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: System Procedure Call (Windows Installer) - Unknown owner - C:\WINDOWS\system32\Setup\iis.exe
Logfile of HijackThis v1.99.1
Scan saved at 22:08:57, on 27/02/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\ATKKBService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe
C:\Program Files\McAfee\MSK\MskAgent.exe
C:\Program Files\SiteAdvisor\6028\SiteAdv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\SiteAdvisor\6028\SAService.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Internet Explorer\iexplore.exe
c:\program files\mcafee\msc\mcuimgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Webroot\Spy Sweeper\SSU.EXE
C:\WINDOWS\system32\winlogon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://hao123.union123.com/index.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll
O2 - BHO: (no name) - {c2f0f66a-1258-43f2-8b0d-4e03f37a8dbf} - C:\WINDOWS\system32\43f2cfsb.dll
O2 - BHO: (no name) - {DE7C3CF0-4B15-11D1-ABED-709549C10000} - (no file)
O2 - BHO: 7839 - {DFCB34B6-902D-426E-AE2B-1B294AE19F4F} - C:\WINDOWS\system32\48a7ntos.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O3 - Toolbar: 7839 - {DFCB34B6-902D-426E-AE2B-1B294AE19F4F} - C:\WINDOWS\system32\48a7ntos.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [SoundMAXPnP] "C:\Program Files\Analog Devices\Core\smax4pnp.exe"
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\ASUSTek\ASUSDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [MskAgentexe] "C:\Program Files\McAfee\MSK\MskAgent.exe"
O4 - HKLM\..\Run: [SiteAdvisor] "C:\Program Files\SiteAdvisor\6028\SiteAdv.exe"
O4 - HKLM\..\Run: [upxdnd] C:\DOCUME~1\Karine\LOCALS~1\Temp\upxdnd.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
O4 - HKLM\..\Run: [26h8arusi] rundll32.exe C:\WINDOWS\8dji1.dll _start@16
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSKAGENTEXE] C:\PROGRA~1\McAfee\SPAMKI~1\MSKAgent.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [updatereal] C:\WINDOWS\AntiAdwa.exe other
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/fr/4,0,0,90/mcinsctl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/fr/1,0,0,23/mcgdmgr.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O20 - Winlogon Notify: cryptimg - C:\WINDOWS\SYSTEM32\cryptimg.dll
O20 - Winlogon Notify: sclgntfys - C:\WINDOWS\sclgntfys.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: B7722F62 - Unknown owner - C:\WINDOWS\system32\B7722F62.EXE (file missing)
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6028\SAService.exe
O23 - Service: Windows User Mode Driver (UMWdfmgr) - Unknown owner - rundll32.exe (file missing)
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: System Procedure Call (Windows Installer) - Unknown owner - C:\WINDOWS\system32\Setup\iis.exe
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
27 févr. 2007 à 22:39
27 févr. 2007 à 22:39
Voici les sites internet intempestifs:
https://sg.search.yahoo.com/
www.caiyi8.com
https://sg.search.yahoo.com/
www.caiyi8.com
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
28 févr. 2007 à 17:58
28 févr. 2007 à 17:58
Bonjour,
est-ce que quelq'un peut m'aider svp?
est-ce que quelq'un peut m'aider svp?
Kristopher
Messages postés
3731
Date d'inscription
vendredi 18 novembre 2005
Statut
Contributeur
Dernière intervention
10 juillet 2009
106
28 févr. 2007 à 19:39
28 févr. 2007 à 19:39
Re,
Il suffisait de me le rappeler gentillement ;)
Télécharge ceci : (merci a S!RI pour ce programme).
http://siri.urz.free.fr/Fix/SmitfraudFix.exe
Exécute le Smitfraudfix.exe et choisis l’option 1, il va générer un rapport
Copie/colle le sur le poste stp.
Puis :
Télécharge Blacklight (de F-Secure) :
https://europe.f-secure.com/exclude/blacklight/index.shtml
et sauvegarde le sur ton Bureau.
Double-clique blbeta.exe et accepte la licence ;clique Scan puis Next
Tu verras une liste de fichiers détectés apparaître. Tu verras également un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).
Copie et colle le contenu de ce rapport dans ta prochaine réponse
a+
Il suffisait de me le rappeler gentillement ;)
Télécharge ceci : (merci a S!RI pour ce programme).
http://siri.urz.free.fr/Fix/SmitfraudFix.exe
Exécute le Smitfraudfix.exe et choisis l’option 1, il va générer un rapport
Copie/colle le sur le poste stp.
Puis :
Télécharge Blacklight (de F-Secure) :
https://europe.f-secure.com/exclude/blacklight/index.shtml
et sauvegarde le sur ton Bureau.
Double-clique blbeta.exe et accepte la licence ;clique Scan puis Next
Tu verras une liste de fichiers détectés apparaître. Tu verras également un rapport, sur ton Bureau, nommé fsbl.xxxxxxx.log (les xxxxxxx sont des chiffres).
Copie et colle le contenu de ce rapport dans ta prochaine réponse
a+
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
28 févr. 2007 à 23:41
28 févr. 2007 à 23:41
Bonjour voici le 1er rapport
SmitFraudFix v2.144
Rapport fait à 20:51:49,45, 28/02/2007
Executé à partir de C:\Documents and Settings\K‚vin\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal
»»»»»»»»»»»»»»»»»»»»»»»» hosts
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\K‚vin
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\K‚vin\Application Data
»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\KVIN~1\Favoris
»»»»»»»»»»»»»»»»»»»»»»»» Bureau
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues
»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32
»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
et le 2ème
02/28/07 23:28:09 [Info]: BlackLight Engine 1.0.55 initialized
02/28/07 23:28:09 [Info]: OS: 5.1 build 2600 (Service Pack 2)
02/28/07 23:28:09 [Note]: 7019 4
02/28/07 23:28:09 [Note]: 7005 0
02/28/07 23:28:16 [Note]: 7006 0
02/28/07 23:28:16 [Note]: 7011 2008
02/28/07 23:28:16 [Note]: 7026 0
02/28/07 23:28:16 [Note]: 7026 0
02/28/07 23:28:29 [Note]: FSRAW library version 1.7.1021
02/28/07 23:33:06 [Note]: 2000 1012
02/28/07 23:33:06 [Note]: 2000 1012
02/28/07 23:33:34 [Note]: 7007 0
Voici les noms des spy et virus dectecté par avg spy et mc afee:
adware-boran, adware.BHO, backdoor.Agent.ahj et downloader.Agen.bbc .
Les logiciels les detectent et les effacent mais il réapparaisse.
Ce soir j'ai eu des soucis avec internet Spy et avg me disent que des changements de registres sont demandés. Je refuse biensur. j'ai l'impression que des registres sont infectés .
Merci beaucoup pour ton aide et bon courage...
SmitFraudFix v2.144
Rapport fait à 20:51:49,45, 28/02/2007
Executé à partir de C:\Documents and Settings\K‚vin\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal
»»»»»»»»»»»»»»»»»»»»»»»» hosts
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\K‚vin
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\K‚vin\Application Data
»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\KVIN~1\Favoris
»»»»»»»»»»»»»»»»»»»»»»»» Bureau
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues
»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» pe386-msguard-lzx32-huy32
»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll
»»»»»»»»»»»»»»»»»»»»»»»» Fin
et le 2ème
02/28/07 23:28:09 [Info]: BlackLight Engine 1.0.55 initialized
02/28/07 23:28:09 [Info]: OS: 5.1 build 2600 (Service Pack 2)
02/28/07 23:28:09 [Note]: 7019 4
02/28/07 23:28:09 [Note]: 7005 0
02/28/07 23:28:16 [Note]: 7006 0
02/28/07 23:28:16 [Note]: 7011 2008
02/28/07 23:28:16 [Note]: 7026 0
02/28/07 23:28:16 [Note]: 7026 0
02/28/07 23:28:29 [Note]: FSRAW library version 1.7.1021
02/28/07 23:33:06 [Note]: 2000 1012
02/28/07 23:33:06 [Note]: 2000 1012
02/28/07 23:33:34 [Note]: 7007 0
Voici les noms des spy et virus dectecté par avg spy et mc afee:
adware-boran, adware.BHO, backdoor.Agent.ahj et downloader.Agen.bbc .
Les logiciels les detectent et les effacent mais il réapparaisse.
Ce soir j'ai eu des soucis avec internet Spy et avg me disent que des changements de registres sont demandés. Je refuse biensur. j'ai l'impression que des registres sont infectés .
Merci beaucoup pour ton aide et bon courage...
Kristopher
Messages postés
3731
Date d'inscription
vendredi 18 novembre 2005
Statut
Contributeur
Dernière intervention
10 juillet 2009
106
1 mars 2007 à 11:47
1 mars 2007 à 11:47
Re,
Concernant Spy Sweeper, as-tu la version originale avec un abonnement d'un an ?
Et je vois que tu as du McAfee mais concrètement, as-tu un firewall ?
Ensuite, je vois que tu as déjà certains logiciels donc ça tombe bien mais fais à la lettre ces 4 manipulations (ce sont surtout les rapports qui m'interresent) :
virus methode preliminaire de desinfection version fr
a+
Concernant Spy Sweeper, as-tu la version originale avec un abonnement d'un an ?
Et je vois que tu as du McAfee mais concrètement, as-tu un firewall ?
Ensuite, je vois que tu as déjà certains logiciels donc ça tombe bien mais fais à la lettre ces 4 manipulations (ce sont surtout les rapports qui m'interresent) :
virus methode preliminaire de desinfection version fr
a+
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
2 mars 2007 à 01:11
2 mars 2007 à 01:11
Bonjour,
Effectivement, j'ai la version spy sweeper originale avec la mise à jour et l'abonnement d'un an.
J'ai aussi Mc afee security center avec entre autre personal firewall. Mais peut etre que je l'ai mal configuré.
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 23:38:37 01/03/2007
+ Résultat de l'analyse:
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034442.sys -> Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP218\A0034458.dll -> Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP219\A0035528.dll -> Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP219\A0035529.sys -> Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037910.sys -> Adware.Agent : Aucune action entreprise.
C:\WINDOWS\system32\46fdntos.dll -> Adware.Agent : Aucune action entreprise.
C:\WINDOWS\system32\4edbntos.dll -> Adware.Agent : Aucune action entreprise.
C:\WINDOWS\system32\drivers\ast.sys -> Adware.Agent : Aucune action entreprise.
C:\Program Files\Fichiers communs\CPUSH\__delete_on_reboot__c_p_u_s_h_._d_l_l_ -> Adware.BHO : Aucune action entreprise.
C:\Program Files\Fichiers communs\CPUSH\cpush.tmp -> Adware.BHO : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033332.dll -> Adware.BHO : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034321.dll -> Adware.BHO : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033288.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033289.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033299.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033300.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033329.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033330.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034320.DLL -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034330.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034331.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034335.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034406.DLL -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034416.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034420.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034433.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034436.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP218\A0034451.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP219\A0035478.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP219\A0035490.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP219\A0035504.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0037531.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037729.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037730.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\WINDOWS\system32\__delete_on_reboot__f_f_u_d_f_._e_x_e_ -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\WINDOWS\system32\drivers\ttp.exe~ -> Downloader.Agent.aww : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033323.sys -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033324.dll -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034336.dll -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034404.exe -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034421.sys -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0036531.sys -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0036533.dll -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037900.exe -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0038900.sys -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0038902.exe -> Downloader.Agent.bcc : Aucune action entreprise.
C:\WINDOWS\system32\__delete_on_reboot__m_c_t_e_t_._d_l_l_ -> Downloader.Agent.bcc : Aucune action entreprise.
C:\WINDOWS\system32\cacheur.exe -> Downloader.Agent.bcc : Aucune action entreprise.
C:\WINDOWS\system32\drivers\ffpbek.sys -> Downloader.Agent.bcc : Aucune action entreprise.
C:\WINDOWS\system32\mctet.dll -> Downloader.Agent.bcc : Aucune action entreprise.
[2712] C:\WINDOWS\system32\mctet.dll -> Downloader.Agent.bcc : Aucune action entreprise.
[856] C:\WINDOWS\sclgntfys.dll -> Downloader.Agent.bef : Aucune action entreprise.
C:\WINDOWS\AntiAdwa.exe -> Downloader.Small.dts : Aucune action entreprise.
[268] C:\WINDOWS\winamps.dll -> Downloader.Small.dts : Aucune action entreprise.
C:\WINDOWS\NTServer.DLL -> Downloader.Small.gt : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037912.exe -> Dropper.Agent.bdo : Aucune action entreprise.
C:\WINDOWS\system32\2100qqgm.exe -> Dropper.Agent.bdo : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\9999avps.exe -> Dropper.Agent.bdo : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\__delete_on_reboot__a_v_p_s_._e_x_e_ -> Dropper.Agent.bdo : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\avps.exe -> Dropper.Agent.bdo : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\update\__delete_on_reboot__9_9_9_9_a_v_p_s_._e_x_e_ -> Dropper.Agent.bdo : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033346.exe -> Logger.Agent.pn : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033347.exe -> Logger.Agent.pn : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033348.scr -> Logger.Agent.pn : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033349.scr -> Logger.Agent.pn : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033350.dll -> Logger.Agent.pn : Aucune action entreprise.
C:\WINDOWS\system32\winsys32_070221.dll -> Logger.Agent.pn : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034439.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037908.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0038905.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\WINDOWS\system32\48d0cfsb.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\WINDOWS\system32\4bedcfsb.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\WINDOWS\system32\__delete_on_reboot__4_7_1_5_c_f_s_b_._d_l_l_ -> Trojan.Agent.afb : Aucune action entreprise.
[3312] C:\WINDOWS\system32\4715cfsb.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037913.dll -> Trojan.Agent.tl : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037914.exe -> Trojan.Agent.tl : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\__delete_on_reboot__d_l_l_h_o_s_t_s_._d_l_l_ -> Trojan.Agent.tl : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\__delete_on_reboot__n_o_v_e_l_._e_x_e_ -> Trojan.Agent.tl : Aucune action entreprise.
Fin du rapport
BitDefender Online Scanner
Scan report generated at: Fri, Mar 02, 2007 - 00:52:46
Scan path: A:\;C:\;D:\;
Statistics
Time
01:00:45
Files
258157
Folders
4499
Boot Sectors
2
Archives
2903
Packed Files
27348
Results
Identified Viruses
9
Infected Files
20
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
20
Engines Info
Virus Definitions
402017
Engine build
AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)
Scan plugins
14
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033341.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033341.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033341.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033342.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033342.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033342.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033343.exe
Infected with: GenPack:Worm.Magistr.H
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033343.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033343.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033344.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033344.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033344.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033345.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033345.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033345.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034401.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034401.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034401.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034402.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034402.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034402.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034403.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034403.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034403.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0036535.exe
Infected with: Trojan.Nimosw.A
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0036535.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0036535.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037911.exe
Infected with: Trojan.Nimosw.A
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037911.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037911.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0039903.exe
Infected with: Trojan.Agent.AJW
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0039903.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0039903.exe
Deleted
C:\WINDOWS\rising309.exe
Infected with: Generic.PWStealer.30561B04
C:\WINDOWS\rising309.exe
Disinfection failed
C:\WINDOWS\rising309.exe
Deleted
C:\WINDOWS\rising384.exe
Infected with: GenPack:Worm.Magistr.H
C:\WINDOWS\rising384.exe
Disinfection failed
C:\WINDOWS\rising384.exe
Deleted
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Infected with: Trojan.Downloader.Small.R
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Disinfection failed
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Deleted
C:\WINDOWS\system32\1010s.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Infected with: Trojan.Downloader.Harnig.XB
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Disinfection failed
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Deleted
C:\WINDOWS\system32\1250.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\cacheur.exe
Infected with: Trojan.Agent.AJW
C:\WINDOWS\system32\cacheur.exe
Disinfection failed
C:\WINDOWS\system32\cacheur.exe
Deleted
C:\WINDOWS\system32\cryptimg.dll
Infected with: Trojan.Downloader.Agent.AYG
C:\WINDOWS\system32\cryptimg.dll
Disinfection failed
C:\WINDOWS\system32\cryptimg.dll
Deleted
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0002
Infected with: Trojan.Downloader.Delf.QI
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0002
Disinfection failed
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0002
Deleted
C:\WINDOWS\system32\t21.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Infected with: Trojan.Adload.H
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Disinfection failed
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Deleted
C:\WINDOWS\system32\t21.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\UniBar.exe
Infected with: Trojan.Nimosw.A
C:\WINDOWS\system32\UniBar.exe
Disinfection failed
C:\WINDOWS\system32\UniBar.exe
Deleted
Logfile of HijackThis v1.99.1
Scan saved at 00:55:37, on 02/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
C:\WINDOWS\ATKKBService.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
C:\WINDOWS\system32\ffudf.exe
c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\SiteAdvisor\6028\SAService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\SiteAdvisor\6028\SiteAdv.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll
O2 - BHO: (no name) - {DE7C3CF0-4B15-11D1-ABED-709549C10000} - (no file)
O2 - BHO: È«ÄÜËÑ - {DFCB34B6-902D-426E-AE2B-1B294AE19F4F} - C:\WINDOWS\system32\43dantos.dll (file missing)
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O3 - Toolbar: È«ÄÜËÑ - {DFCB34B6-902D-426E-AE2B-1B294AE19F4F} - C:\WINDOWS\system32\43dantos.dll (file missing)
O3 - Toolbar: ??? - {33E640D8-EB95-4B22-B475-1852B7D35993} - C:\Program Files\ËÑË÷À¸\eqiso.dll (file missing)
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [KernelFaultCheck] C:\WINDOWS\system32\dumprep 0 -k
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
O4 - HKLM\..\Run: [30ckm8olo] rundll32.exe C:\WINDOWS\stg4tdhib.dll _start@16
O4 - HKCU\..\Run: [updatereal] C:\WINDOWS\AntiAdwa.exe other
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/fr/4,0,0,90/mcinsctl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/fr/1,0,0,23/mcgdmgr.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O20 - Winlogon Notify: cryptimg - C:\WINDOWS\SYSTEM32\cryptimg.dll
O20 - Winlogon Notify: sclgntfys - C:\WINDOWS\sclgntfys.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: McAfee Application Installer Cleanup (0252441172783666) (0252441172783666mcinstcleanup) - Unknown owner - C:\WINDOWS\TEMP\025244~1.EXE (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6028\SAService.exe
O23 - Service: Windows User Mode Driver (UMWdfmgr) - Unknown owner - rundll32.exe (file missing)
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: System Procedure Call (Windows Installer) - Unknown owner - C:\WINDOWS\system32\Setup\iis.exe
remarques: apres le scan de avg, il m'a de mandé de redemarrer mon pc, ce que j'ai fait. Au redémarrage j'ai refait un cc cleaner et lancer bitdefender.
Voila je pense que j'ai fait ce que tu voulais.
J'ai pas le temps de faire ce soir le scan avec spy et mc afee.( un peu fatigué!!!!!) je vais essayer de te les faire demain.
Merci pour tes recherches et bon courage!!!!!!!!!
à bientot
Effectivement, j'ai la version spy sweeper originale avec la mise à jour et l'abonnement d'un an.
J'ai aussi Mc afee security center avec entre autre personal firewall. Mais peut etre que je l'ai mal configuré.
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 23:38:37 01/03/2007
+ Résultat de l'analyse:
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034442.sys -> Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP218\A0034458.dll -> Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP219\A0035528.dll -> Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP219\A0035529.sys -> Adware.Agent : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037910.sys -> Adware.Agent : Aucune action entreprise.
C:\WINDOWS\system32\46fdntos.dll -> Adware.Agent : Aucune action entreprise.
C:\WINDOWS\system32\4edbntos.dll -> Adware.Agent : Aucune action entreprise.
C:\WINDOWS\system32\drivers\ast.sys -> Adware.Agent : Aucune action entreprise.
C:\Program Files\Fichiers communs\CPUSH\__delete_on_reboot__c_p_u_s_h_._d_l_l_ -> Adware.BHO : Aucune action entreprise.
C:\Program Files\Fichiers communs\CPUSH\cpush.tmp -> Adware.BHO : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033332.dll -> Adware.BHO : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034321.dll -> Adware.BHO : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033288.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033289.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033299.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033300.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033329.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033330.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034320.DLL -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034330.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034331.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034335.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034406.DLL -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034416.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034420.EXE -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034433.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034436.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP218\A0034451.dll -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP219\A0035478.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP219\A0035490.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP219\A0035504.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0037531.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037729.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037730.exe -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\WINDOWS\system32\__delete_on_reboot__f_f_u_d_f_._e_x_e_ -> Backdoor.Agent.ahj : Aucune action entreprise.
C:\WINDOWS\system32\drivers\ttp.exe~ -> Downloader.Agent.aww : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033323.sys -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033324.dll -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034336.dll -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034404.exe -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034421.sys -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0036531.sys -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0036533.dll -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037900.exe -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0038900.sys -> Downloader.Agent.bcc : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0038902.exe -> Downloader.Agent.bcc : Aucune action entreprise.
C:\WINDOWS\system32\__delete_on_reboot__m_c_t_e_t_._d_l_l_ -> Downloader.Agent.bcc : Aucune action entreprise.
C:\WINDOWS\system32\cacheur.exe -> Downloader.Agent.bcc : Aucune action entreprise.
C:\WINDOWS\system32\drivers\ffpbek.sys -> Downloader.Agent.bcc : Aucune action entreprise.
C:\WINDOWS\system32\mctet.dll -> Downloader.Agent.bcc : Aucune action entreprise.
[2712] C:\WINDOWS\system32\mctet.dll -> Downloader.Agent.bcc : Aucune action entreprise.
[856] C:\WINDOWS\sclgntfys.dll -> Downloader.Agent.bef : Aucune action entreprise.
C:\WINDOWS\AntiAdwa.exe -> Downloader.Small.dts : Aucune action entreprise.
[268] C:\WINDOWS\winamps.dll -> Downloader.Small.dts : Aucune action entreprise.
C:\WINDOWS\NTServer.DLL -> Downloader.Small.gt : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037912.exe -> Dropper.Agent.bdo : Aucune action entreprise.
C:\WINDOWS\system32\2100qqgm.exe -> Dropper.Agent.bdo : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\9999avps.exe -> Dropper.Agent.bdo : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\__delete_on_reboot__a_v_p_s_._e_x_e_ -> Dropper.Agent.bdo : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\avps.exe -> Dropper.Agent.bdo : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\update\__delete_on_reboot__9_9_9_9_a_v_p_s_._e_x_e_ -> Dropper.Agent.bdo : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033346.exe -> Logger.Agent.pn : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033347.exe -> Logger.Agent.pn : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033348.scr -> Logger.Agent.pn : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033349.scr -> Logger.Agent.pn : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033350.dll -> Logger.Agent.pn : Aucune action entreprise.
C:\WINDOWS\system32\winsys32_070221.dll -> Logger.Agent.pn : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034439.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037908.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0038905.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\WINDOWS\system32\48d0cfsb.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\WINDOWS\system32\4bedcfsb.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\WINDOWS\system32\__delete_on_reboot__4_7_1_5_c_f_s_b_._d_l_l_ -> Trojan.Agent.afb : Aucune action entreprise.
[3312] C:\WINDOWS\system32\4715cfsb.dll -> Trojan.Agent.afb : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037913.dll -> Trojan.Agent.tl : Aucune action entreprise.
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037914.exe -> Trojan.Agent.tl : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\__delete_on_reboot__d_l_l_h_o_s_t_s_._d_l_l_ -> Trojan.Agent.tl : Aucune action entreprise.
C:\WINDOWS\system32\system\.setupq\__delete_on_reboot__n_o_v_e_l_._e_x_e_ -> Trojan.Agent.tl : Aucune action entreprise.
Fin du rapport
BitDefender Online Scanner
Scan report generated at: Fri, Mar 02, 2007 - 00:52:46
Scan path: A:\;C:\;D:\;
Statistics
Time
01:00:45
Files
258157
Folders
4499
Boot Sectors
2
Archives
2903
Packed Files
27348
Results
Identified Viruses
9
Infected Files
20
Suspect Files
0
Warnings
0
Disinfected
0
Deleted Files
20
Engines Info
Virus Definitions
402017
Engine build
AVCORE v1.0 (build 2397) (i386) (Feb 8 2007 14:24:08)
Scan plugins
14
Archive plugins
38
Unpack plugins
6
E-mail plugins
6
System plugins
1
Scan Settings
First Action
Disinfect
Second Action
Delete
Heuristics
Yes
Enable Warnings
Yes
Scanned Extensions
*;
Exclude Extensions
Scan Emails
Yes
Scan Archives
Yes
Scan Packed
Yes
Scan Files
Yes
Scan Boot
Yes
Scanned File
Status
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033341.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033341.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033341.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033342.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033342.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033342.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033343.exe
Infected with: GenPack:Worm.Magistr.H
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033343.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033343.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033344.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033344.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033344.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033345.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033345.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0033345.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034401.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034401.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034401.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034402.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034402.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034402.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034403.exe
Infected with: Generic.PWStealer.30561B04
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034403.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP217\A0034403.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0036535.exe
Infected with: Trojan.Nimosw.A
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0036535.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP220\A0036535.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037911.exe
Infected with: Trojan.Nimosw.A
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037911.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0037911.exe
Deleted
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0039903.exe
Infected with: Trojan.Agent.AJW
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0039903.exe
Disinfection failed
C:\System Volume Information\_restore{35FAE571-BFFD-44BB-A2D9-E40AB7B6C6DD}\RP221\A0039903.exe
Deleted
C:\WINDOWS\rising309.exe
Infected with: Generic.PWStealer.30561B04
C:\WINDOWS\rising309.exe
Disinfection failed
C:\WINDOWS\rising309.exe
Deleted
C:\WINDOWS\rising384.exe
Infected with: GenPack:Worm.Magistr.H
C:\WINDOWS\rising384.exe
Disinfection failed
C:\WINDOWS\rising384.exe
Deleted
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Infected with: Trojan.Downloader.Small.R
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Disinfection failed
C:\WINDOWS\system32\1010s.exe=>(NSIS o)=>lzma_solid_nsis0001
Deleted
C:\WINDOWS\system32\1010s.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Infected with: Trojan.Downloader.Harnig.XB
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Disinfection failed
C:\WINDOWS\system32\1250.exe=>(NSIS o)=>lzma_solid_nsis0004
Deleted
C:\WINDOWS\system32\1250.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\cacheur.exe
Infected with: Trojan.Agent.AJW
C:\WINDOWS\system32\cacheur.exe
Disinfection failed
C:\WINDOWS\system32\cacheur.exe
Deleted
C:\WINDOWS\system32\cryptimg.dll
Infected with: Trojan.Downloader.Agent.AYG
C:\WINDOWS\system32\cryptimg.dll
Disinfection failed
C:\WINDOWS\system32\cryptimg.dll
Deleted
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0002
Infected with: Trojan.Downloader.Delf.QI
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0002
Disinfection failed
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0002
Deleted
C:\WINDOWS\system32\t21.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Infected with: Trojan.Adload.H
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Disinfection failed
C:\WINDOWS\system32\t21.exe=>(NSIS o)=>lzma_nsis0004
Deleted
C:\WINDOWS\system32\t21.exe=>(NSIS o)
Update failed
C:\WINDOWS\system32\UniBar.exe
Infected with: Trojan.Nimosw.A
C:\WINDOWS\system32\UniBar.exe
Disinfection failed
C:\WINDOWS\system32\UniBar.exe
Deleted
Logfile of HijackThis v1.99.1
Scan saved at 00:55:37, on 02/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
C:\WINDOWS\ATKKBService.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
C:\WINDOWS\system32\ffudf.exe
c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\SiteAdvisor\6028\SAService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\SiteAdvisor\6028\SiteAdv.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll
O2 - BHO: (no name) - {DE7C3CF0-4B15-11D1-ABED-709549C10000} - (no file)
O2 - BHO: È«ÄÜËÑ - {DFCB34B6-902D-426E-AE2B-1B294AE19F4F} - C:\WINDOWS\system32\43dantos.dll (file missing)
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O3 - Toolbar: È«ÄÜËÑ - {DFCB34B6-902D-426E-AE2B-1B294AE19F4F} - C:\WINDOWS\system32\43dantos.dll (file missing)
O3 - Toolbar: ??? - {33E640D8-EB95-4B22-B475-1852B7D35993} - C:\Program Files\ËÑË÷À¸\eqiso.dll (file missing)
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [KernelFaultCheck] C:\WINDOWS\system32\dumprep 0 -k
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
O4 - HKLM\..\Run: [30ckm8olo] rundll32.exe C:\WINDOWS\stg4tdhib.dll _start@16
O4 - HKCU\..\Run: [updatereal] C:\WINDOWS\AntiAdwa.exe other
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/fr/4,0,0,90/mcinsctl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/fr/1,0,0,23/mcgdmgr.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O20 - Winlogon Notify: cryptimg - C:\WINDOWS\SYSTEM32\cryptimg.dll
O20 - Winlogon Notify: sclgntfys - C:\WINDOWS\sclgntfys.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: McAfee Application Installer Cleanup (0252441172783666) (0252441172783666mcinstcleanup) - Unknown owner - C:\WINDOWS\TEMP\025244~1.EXE (file missing)
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6028\SAService.exe
O23 - Service: Windows User Mode Driver (UMWdfmgr) - Unknown owner - rundll32.exe (file missing)
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: System Procedure Call (Windows Installer) - Unknown owner - C:\WINDOWS\system32\Setup\iis.exe
remarques: apres le scan de avg, il m'a de mandé de redemarrer mon pc, ce que j'ai fait. Au redémarrage j'ai refait un cc cleaner et lancer bitdefender.
Voila je pense que j'ai fait ce que tu voulais.
J'ai pas le temps de faire ce soir le scan avec spy et mc afee.( un peu fatigué!!!!!) je vais essayer de te les faire demain.
Merci pour tes recherches et bon courage!!!!!!!!!
à bientot
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
3 mars 2007 à 14:04
3 mars 2007 à 14:04
Bonjour,
Juste une petite question. J'ai desactivé ma mise à jour windows depuis un certain temps. est-ce dangereux ou pas?
Merci bon courage...
Juste une petite question. J'ai desactivé ma mise à jour windows depuis un certain temps. est-ce dangereux ou pas?
Merci bon courage...
Kristopher
Messages postés
3731
Date d'inscription
vendredi 18 novembre 2005
Statut
Contributeur
Dernière intervention
10 juillet 2009
106
2 mars 2007 à 20:52
2 mars 2007 à 20:52
Re,
Suis mon tutoriel ici
Puis désinfecte ton PC avec AVG Anti-Spyware et copie/colle un nouveau rapport ainsi qu'un nouveau log HijackThis !!
a+
Suis mon tutoriel ici
Puis désinfecte ton PC avec AVG Anti-Spyware et copie/colle un nouveau rapport ainsi qu'un nouveau log HijackThis !!
a+
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
2 mars 2007 à 21:48
2 mars 2007 à 21:48
---------------------------------------------------------
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 21:33:23 02/03/2007
+ Résultat de l'analyse:
C:\WINDOWS\system32\__delete_on_reboot__4_3_d_a_n_t_o_s_._d_l_l_ -> Adware.Agent : Nettoyé.
C:\WINDOWS\system32\__delete_on_reboot__I_n_s_t_a_l_l_a_t_i_o_n_._e_x_e_ -> Adware.Agent : Nettoyé.
C:\WINDOWS\Temp\SYSTEM.dat -> Downloader.Agent.bcc : Nettoyé.
C:\WINDOWS\system32\cacheur.exe -> Downloader.Agent.bcc : Nettoyé.
C:\WINDOWS\system32\drivers\ffpbek.sys -> Downloader.Agent.bcc : Nettoyé.
C:\WINDOWS\system32\mctet.dll -> Downloader.Agent.bcc : Nettoyé.
C:\WINDOWS\system32\system\.setupq\9999avps.exe -> Dropper.Agent.bdo : Nettoyé.
C:\WINDOWS\system32\system\.setupq\avps.exe -> Dropper.Agent.bdo : Nettoyé.
C:\WINDOWS\system32\system\.setupq\update\__delete_on_reboot__9_9_9_9_a_v_p_s_._e_x_e_ -> Dropper.Agent.bdo : Nettoyé.
C:\WINDOWS\system32\4e07cfsb.dll -> Trojan.Agent.afb : Nettoyé.
C:\WINDOWS\system32\__delete_on_reboot__4_7_3_c_c_f_s_b_._d_l_l_ -> Trojan.Agent.afb : Nettoyé.
Fin du rapport
Logfile of HijackThis v1.99.1
Scan saved at 21:41:56, on 02/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
C:\WINDOWS\system32\ffudf.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\SiteAdvisor\6028\SAService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
c:\program files\mcafee\msc\mcuimgr.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll
O2 - BHO: (no name) - {DE7C3CF0-4B15-11D1-ABED-709549C10000} - (no file)
O2 - BHO: (no name) - {f0e9cc41-7fcc-4e07-8b0d-4e03f37a8dbf} - C:\WINDOWS\system32\4e07cfsb.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O3 - Toolbar: ??? - {33E640D8-EB95-4B22-B475-1852B7D35993} - C:\Program Files\ËÑË÷À¸\eqiso.dll (file missing)
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [KernelFaultCheck] C:\WINDOWS\system32\dumprep 0 -k
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [30ckm8olo] rundll32.exe C:\WINDOWS\stg4tdhib.dll _start@16
O4 - HKLM\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
O4 - HKLM\..\Run: [deiwgy] rundll32.exe C:\WINDOWS\64lky8sfuagl3.dll _start@16
O4 - HKCU\..\Run: [updatereal] C:\WINDOWS\AntiAdwa.exe other
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/fr/4,0,0,90/mcinsctl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/fr/1,0,0,23/mcgdmgr.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O20 - Winlogon Notify: cryptimg - C:\WINDOWS\SYSTEM32\cryptimg.dll
O20 - Winlogon Notify: sclgntfys - C:\WINDOWS\sclgntfys.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6028\SAService.exe
O23 - Service: Windows User Mode Driver (UMWdfmgr) - Unknown owner - rundll32.exe (file missing)
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: System Procedure Call (Windows Installer) - Unknown owner - C:\WINDOWS\system32\Setup\iis.exe
J'ai du redémarrer entre le scan AVG et hij. Je te poste les rapport, mais peut-etre qu'il faut que je refasse la manip?
merci beaucoup........
AVG Anti-Spyware - Rapport d'analyse
---------------------------------------------------------
+ Créé à: 21:33:23 02/03/2007
+ Résultat de l'analyse:
C:\WINDOWS\system32\__delete_on_reboot__4_3_d_a_n_t_o_s_._d_l_l_ -> Adware.Agent : Nettoyé.
C:\WINDOWS\system32\__delete_on_reboot__I_n_s_t_a_l_l_a_t_i_o_n_._e_x_e_ -> Adware.Agent : Nettoyé.
C:\WINDOWS\Temp\SYSTEM.dat -> Downloader.Agent.bcc : Nettoyé.
C:\WINDOWS\system32\cacheur.exe -> Downloader.Agent.bcc : Nettoyé.
C:\WINDOWS\system32\drivers\ffpbek.sys -> Downloader.Agent.bcc : Nettoyé.
C:\WINDOWS\system32\mctet.dll -> Downloader.Agent.bcc : Nettoyé.
C:\WINDOWS\system32\system\.setupq\9999avps.exe -> Dropper.Agent.bdo : Nettoyé.
C:\WINDOWS\system32\system\.setupq\avps.exe -> Dropper.Agent.bdo : Nettoyé.
C:\WINDOWS\system32\system\.setupq\update\__delete_on_reboot__9_9_9_9_a_v_p_s_._e_x_e_ -> Dropper.Agent.bdo : Nettoyé.
C:\WINDOWS\system32\4e07cfsb.dll -> Trojan.Agent.afb : Nettoyé.
C:\WINDOWS\system32\__delete_on_reboot__4_7_3_c_c_f_s_b_._d_l_l_ -> Trojan.Agent.afb : Nettoyé.
Fin du rapport
Logfile of HijackThis v1.99.1
Scan saved at 21:41:56, on 02/03/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
C:\WINDOWS\system32\ffudf.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\SiteAdvisor\6028\SAService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
c:\program files\mcafee\msc\mcuimgr.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - Default URLSearchHook is missing
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\program files\mcafee\virusscan\scriptcl.dll
O2 - BHO: (no name) - {DE7C3CF0-4B15-11D1-ABED-709549C10000} - (no file)
O2 - BHO: (no name) - {f0e9cc41-7fcc-4e07-8b0d-4e03f37a8dbf} - C:\WINDOWS\system32\4e07cfsb.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O3 - Toolbar: ??? - {33E640D8-EB95-4B22-B475-1852B7D35993} - C:\Program Files\ËÑË÷À¸\eqiso.dll (file missing)
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [KernelFaultCheck] C:\WINDOWS\system32\dumprep 0 -k
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [30ckm8olo] rundll32.exe C:\WINDOWS\stg4tdhib.dll _start@16
O4 - HKLM\..\Run: [SpySweeper] C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
O4 - HKLM\..\Run: [deiwgy] rundll32.exe C:\WINDOWS\64lky8sfuagl3.dll _start@16
O4 - HKCU\..\Run: [updatereal] C:\WINDOWS\AntiAdwa.exe other
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/fr/4,0,0,90/mcinsctl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} (DwnldGroupMgr Class) - http://download.mcafee.com/molbin/shared/mcgdmgr/fr/1,0,0,23/mcgdmgr.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
O20 - Winlogon Notify: cryptimg - C:\WINDOWS\SYSTEM32\cryptimg.dll
O20 - Winlogon Notify: sclgntfys - C:\WINDOWS\sclgntfys.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (file missing)
O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Fichiers communs\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\fichiers communs\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: SiteAdvisor Service - McAfee, Inc. - C:\Program Files\SiteAdvisor\6028\SAService.exe
O23 - Service: Windows User Mode Driver (UMWdfmgr) - Unknown owner - rundll32.exe (file missing)
O23 - Service: Moteur Webroot Spy Sweeper (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: System Procedure Call (Windows Installer) - Unknown owner - C:\WINDOWS\system32\Setup\iis.exe
J'ai du redémarrer entre le scan AVG et hij. Je te poste les rapport, mais peut-etre qu'il faut que je refasse la manip?
merci beaucoup........
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
3 mars 2007 à 13:19
3 mars 2007 à 13:19
Je me suis renseigné sur mon Mc afee, J'ai l'abonnement pour un an de Mc afee internet security suite.
Et concernant les otion que j'ai sur Personnal Firewall, j'ai:
-la fonction de protection antiphishing ( activée)
-la protection par pare feu ( activée)
-la fonction de protection web (activée)
- et la fonction de protection des informations personnelles avtivée.
J'ai lancé ce matin une analyse mc afee.
il m'a trouvé dans C:\windows\system32\:
-_delete_on_reboot_m_s_o_f_f_i_c_e_._e_x_e
et dans \drivers\
- ffpbek.sys
- hidproc.sys
- https.sys
- i82440bx.sys-
-Lants.sys
Le nom du malware concernant tous ces fichiers est New malware.z
A priori il a effacé les fichiers.
Et concernant les otion que j'ai sur Personnal Firewall, j'ai:
-la fonction de protection antiphishing ( activée)
-la protection par pare feu ( activée)
-la fonction de protection web (activée)
- et la fonction de protection des informations personnelles avtivée.
J'ai lancé ce matin une analyse mc afee.
il m'a trouvé dans C:\windows\system32\:
-_delete_on_reboot_m_s_o_f_f_i_c_e_._e_x_e
et dans \drivers\
- ffpbek.sys
- hidproc.sys
- https.sys
- i82440bx.sys-
-Lants.sys
Le nom du malware concernant tous ces fichiers est New malware.z
A priori il a effacé les fichiers.
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
3 mars 2007 à 13:47
3 mars 2007 à 13:47
Bonjour,
au démarrage de mon PC, quand j'ouvre mon compte utilisateur j'ai un certain nombre de message:
1- error, registartion Wizard user interface component is missing ( peut etre un fichier de demarrage que j'ai refusé dans ms config. je vais regardé)
2- AVG détecte:
Dropper.Agent.bdo dans
c:\windows\system32\.setupq\avps.exe
Trojan Agent.tl dans
c:\windows\system32\.setupq\dllhosts.dll
Trojan Agent.tl dans
c:\windows\system32\.setupq\novel.exe
Downloader.Small.gt dans
c:\windows\NTServer.DLL
Downloader.Small.dts dans
c:\windows\AntiAdwa.exe
3- essai de connection aux adresses internet suivantes:
http://www.dofus.com.cn/pp/pp.htm
http://www.shcrazyenglish.com/
http://www.dofus.com.cn/mp3
http://t.dofus.com.cn/2/
http://toolsbar.kuaiso.com/goso.htm?st=1&dir=1&wd=Ä«¹¥ (= yahoo en chinois)
au démarrage de mon PC, quand j'ouvre mon compte utilisateur j'ai un certain nombre de message:
1- error, registartion Wizard user interface component is missing ( peut etre un fichier de demarrage que j'ai refusé dans ms config. je vais regardé)
2- AVG détecte:
Dropper.Agent.bdo dans
c:\windows\system32\.setupq\avps.exe
Trojan Agent.tl dans
c:\windows\system32\.setupq\dllhosts.dll
Trojan Agent.tl dans
c:\windows\system32\.setupq\novel.exe
Downloader.Small.gt dans
c:\windows\NTServer.DLL
Downloader.Small.dts dans
c:\windows\AntiAdwa.exe
3- essai de connection aux adresses internet suivantes:
http://www.dofus.com.cn/pp/pp.htm
http://www.shcrazyenglish.com/
http://www.dofus.com.cn/mp3
http://t.dofus.com.cn/2/
http://toolsbar.kuaiso.com/goso.htm?st=1&dir=1&wd=Ä«¹¥ (= yahoo en chinois)
Kristopher
Messages postés
3731
Date d'inscription
vendredi 18 novembre 2005
Statut
Contributeur
Dernière intervention
10 juillet 2009
106
3 mars 2007 à 22:17
3 mars 2007 à 22:17
Kévin,
Tu as fait de ton PC une fontaine de virus après avoir téléchargé ce fichu logiciel chinois... Et j'espère que tu t'en rend comptes !
Bon, on continue, fais ceci à la lettre :
1/ Désinstalle un antivirus car tu en as deux (laisse juste la suite McAfee par exemple)
2/ Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau. http://downloads.andymanchesta.com/RemovalTools/SDFix.zip
Redémarre ton ordinateur en mode sans échec en suivant la procédure suivante :
- Redémarrez votre ordinateur ;
- Lors du démarrage, après avoir entendu l’ordinateur biper, avant que l’icône Windows n’apparaisse, tapotez la touche F8 ;
- Choisir la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée" ;
- Choisir votre compte.
Déroule la liste des instructions ci-dessous :
- En mode sans échec, fais un clic droit sur le fichier SDFix.zip et choisis extraire tout ;
- Ouvrez le dossier SDFix qui vient d’être créé (souvent sur c :\SDFix\ ou sur le Bureau) ;
- Double cliquez sur RunThis.bat pour lancer le scrïpt ;
- Appuiez sur "Y" pour commencer le script.
- Il va supprimer les services de certains trojans, effectuera aussi quelques réparations du Registre et il te demandera d’appuyer sur une touche pour redémarrer.
- Appuiez sur une touche pour redémarrer le PC.
- Votre système sera plus long pour redémarrer qu’à l’accoutumée car l’outil va continuer à s’exécuter et supprimer des fichiers.
- Après le chargement du Bureau, l’outil terminera son travail et affichera Finished.
- Appuiez sur une touche pour finir l’exécution du scrïpt et charger les icônes de votre Bureau.
- Enfin, supprimer le répertoire SDFix.zip, SDFix.exe et c :\SDFix\
Puis installe et Scanne ton PC avec eScan Antivirus Toolkit en suivant ce tutoriel à la lettre :
https://www.malekal.com/tutorial-escan-antivirus-toolkit/
Copie/colle le rapport à la fin !
Courage,
Kristopher
Tu as fait de ton PC une fontaine de virus après avoir téléchargé ce fichu logiciel chinois... Et j'espère que tu t'en rend comptes !
Bon, on continue, fais ceci à la lettre :
1/ Désinstalle un antivirus car tu en as deux (laisse juste la suite McAfee par exemple)
2/ Télécharge SDFix (créé par AndyManchesta) et sauvegarde le sur ton Bureau. http://downloads.andymanchesta.com/RemovalTools/SDFix.zip
Redémarre ton ordinateur en mode sans échec en suivant la procédure suivante :
- Redémarrez votre ordinateur ;
- Lors du démarrage, après avoir entendu l’ordinateur biper, avant que l’icône Windows n’apparaisse, tapotez la touche F8 ;
- Choisir la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée" ;
- Choisir votre compte.
Déroule la liste des instructions ci-dessous :
- En mode sans échec, fais un clic droit sur le fichier SDFix.zip et choisis extraire tout ;
- Ouvrez le dossier SDFix qui vient d’être créé (souvent sur c :\SDFix\ ou sur le Bureau) ;
- Double cliquez sur RunThis.bat pour lancer le scrïpt ;
- Appuiez sur "Y" pour commencer le script.
- Il va supprimer les services de certains trojans, effectuera aussi quelques réparations du Registre et il te demandera d’appuyer sur une touche pour redémarrer.
- Appuiez sur une touche pour redémarrer le PC.
- Votre système sera plus long pour redémarrer qu’à l’accoutumée car l’outil va continuer à s’exécuter et supprimer des fichiers.
- Après le chargement du Bureau, l’outil terminera son travail et affichera Finished.
- Appuiez sur une touche pour finir l’exécution du scrïpt et charger les icônes de votre Bureau.
- Enfin, supprimer le répertoire SDFix.zip, SDFix.exe et c :\SDFix\
Puis installe et Scanne ton PC avec eScan Antivirus Toolkit en suivant ce tutoriel à la lettre :
https://www.malekal.com/tutorial-escan-antivirus-toolkit/
Copie/colle le rapport à la fin !
Courage,
Kristopher
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
4 mars 2007 à 13:19
4 mars 2007 à 13:19
Bonjour Kristopher,
Je m'en rend compte.
Voici mes rapports
SDFix: Version 1.69
Run by K‚vin - 04/03/2007 @ 11:20:14,10
Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix
Safe Mode:
Checking Services:
Restoring Windows Registry Entries
Restoring Default Hosts File
Rebooting...
Normal Mode:
Checking Files:
No Trojan Files Found...
ADS Check:
C:\WINDOWS\system32
No streams found.
Final Check:
Remaining Services:
------------------
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast\\SopCast.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast\\SopCast.exe:*:Enabled:SoP Client"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast_062\\SopCast\\SopCast.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast_062\\SopCast\\SopCast.exe:*:Enabled:SoP Client"
"C:\\WINDOWS\\system32\\LEXPPS.EXE"="C:\\WINDOWS\\system32\\LEXPPS.EXE:*:Enabled:LEXPPS"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\utorrent\\utorrent.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\utorrent\\utorrent.exe:*:Enabled:µTorrent"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~2.EXE"="C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~2.EXE:*:Enabled:Share Streaming"
"C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBarMini.exe"="C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBarMini.exe:*:Enabled:Share Streaming"
"C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~1.EXE"="C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~1.EXE:*:Enabled:Share Streaming"
"C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBar.exe"="C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBar.exe:*:Enabled:Share Streaming"
"C:\\Program Files\\PPLive\\PPlive.exe"="C:\\Program Files\\PPLive\\PPlive.exe:*:Enabled:PPLive"
"C:\\WINDOWS\\temp\\162.exe"="C:\\WINDOWS\\temp\\162.exe:*:Enabled:162.exe"
"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"="C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE:*:Enabled:Internet Explorer"
"C:\\Program Files\\Fichiers communs\\McAfee\\MNA\\McNASvc.exe"="C:\\Program Files\\Fichiers communs\\McAfee\\MNA\\McNASvc.exe:*:Enabled:McAfee Network Agent"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
Remaining Files:
---------------
Checking For Files with Hidden Attributes :
C:\WINDOWS\64lky8sfuagl3.dll
C:\WINDOWS\71wlj07.dll
C:\WINDOWS\8dji1.dll
C:\WINDOWS\l2.dll
C:\WINDOWS\NTServer.DLL
C:\WINDOWS\rqexfq2x.dll
C:\WINDOWS\sclgntfys.dll
C:\WINDOWS\stg4tdhib.dll
C:\WINDOWS\AntiAdwa.exe
C:\WINDOWS\system32\Setup\iis.exe
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL0839.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL1296.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2057.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2303.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2878.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3432.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3680.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3827.tmp
C:\WINDOWS\system32\config\default.tmp.LOG
C:\WINDOWS\system32\config\software.tmp.LOG
C:\WINDOWS\system32\config\system.tmp.LOG
Add/Remove Programs List:
Adobe Download Manager 2.0 (Supprimer uniquement)
adsl TV
AsusUpdate
ASUS_Ai_Proactive_Screensaver (E)
AVG Anti-Spyware 7.5
CCleaner (remove only)
AdPush Software
DivX Content Uploader
eMule
FreeGo 2.0
HijackThis 1.99.1
Hijackthis Version Fran‡aise 1.99.0.1
PinnacleHollywood FX 5
ASUS GameLiveShow
CANON USB Video Driver
ASUS SmartDoctor
Canon Utilities PhotoStitch 3.1
Canon RemoteCapture Task for ZoomBrowser EX
Canon Internet Library for ZoomBrowser EX
ASUS nVIDIA Driver
Canon RAW Image Task for ZoomBrowser EX
Canon Camera Window DVC for ZoomBrowser EX
ASUS VideoSecurity Online
Canon MovieEdit Task for ZoomBrowser EX
Canon Camera Window DS for ZoomBrowser EX
Canon Camera Support Core Library
Canon Camera Window for ZoomBrowser EX
Pro Evolution Soccer 6
ASUS Utilities
Correctif Windows XP - KB885836
Keycraft (remove only)
Lexmark Supplies Monitor
Lexmark Z25-Z35
Mozilla Firefox (1.5)
McAfee SecurityCenter
NVIDIA Drivers
Panda ActiveScan
RealPlayer
Adobe Flash Player 9 ActiveX
Skype 2.5
SLD CODEC PACK 1.5.3
TeamSpeak 2 RC2
VideoLAN VLC media player 0.8.4a
Winamp (remove only)
WinPcap 4.0 alpha1
Archiveur WinRAR
WinZip
XviD MPEG-4 Video Codec
Zoom Player (remove only)
Microsoft Office 2000 CD-ROMÿ2
ASUS GameLiveShow
CANON USB Video Driver
Canon PhotoRecord
ASUS SmartDoctor
AutoUpdate
PhotoStitch
RemoteCapture Task 1.1
Internet Library
ASUS Enhanced Display Driver
J2SE Runtime Environment 5.0 Update 6
RAW Image Task
Camera Window DVC
ASUSUpdate
Windows Genuine Advantage v1.3.0254.0
ASUSDVD
Nero 7 Demo
ASUS VideoSecurity Online
DivX Codec
DivX Player
MovieEdit Task
Microsoft Office Professional Edition 2003
Camera Window DS
Camera Support Core Library
Studio 9
Adobe Reader 7.0.7 - Fran‡ais
DivX Converter
Spy Sweeper
DivX Web Player
Canon ZoomBrowser EX
Camera Window MC
PowerDirector
Windows Live Messenger
Pro Evolution Soccer 6
SoundMAX
ASUS Utilities
PC Probe II
Finished
bon dimanche
Je m'en rend compte.
Voici mes rapports
SDFix: Version 1.69
Run by K‚vin - 04/03/2007 @ 11:20:14,10
Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix
Safe Mode:
Checking Services:
Restoring Windows Registry Entries
Restoring Default Hosts File
Rebooting...
Normal Mode:
Checking Files:
No Trojan Files Found...
ADS Check:
C:\WINDOWS\system32
No streams found.
Final Check:
Remaining Services:
------------------
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast\\SopCast.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast\\SopCast.exe:*:Enabled:SoP Client"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast_062\\SopCast\\SopCast.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast_062\\SopCast\\SopCast.exe:*:Enabled:SoP Client"
"C:\\WINDOWS\\system32\\LEXPPS.EXE"="C:\\WINDOWS\\system32\\LEXPPS.EXE:*:Enabled:LEXPPS"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\utorrent\\utorrent.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\utorrent\\utorrent.exe:*:Enabled:µTorrent"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~2.EXE"="C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~2.EXE:*:Enabled:Share Streaming"
"C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBarMini.exe"="C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBarMini.exe:*:Enabled:Share Streaming"
"C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~1.EXE"="C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~1.EXE:*:Enabled:Share Streaming"
"C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBar.exe"="C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBar.exe:*:Enabled:Share Streaming"
"C:\\Program Files\\PPLive\\PPlive.exe"="C:\\Program Files\\PPLive\\PPlive.exe:*:Enabled:PPLive"
"C:\\WINDOWS\\temp\\162.exe"="C:\\WINDOWS\\temp\\162.exe:*:Enabled:162.exe"
"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"="C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE:*:Enabled:Internet Explorer"
"C:\\Program Files\\Fichiers communs\\McAfee\\MNA\\McNASvc.exe"="C:\\Program Files\\Fichiers communs\\McAfee\\MNA\\McNASvc.exe:*:Enabled:McAfee Network Agent"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
Remaining Files:
---------------
Checking For Files with Hidden Attributes :
C:\WINDOWS\64lky8sfuagl3.dll
C:\WINDOWS\71wlj07.dll
C:\WINDOWS\8dji1.dll
C:\WINDOWS\l2.dll
C:\WINDOWS\NTServer.DLL
C:\WINDOWS\rqexfq2x.dll
C:\WINDOWS\sclgntfys.dll
C:\WINDOWS\stg4tdhib.dll
C:\WINDOWS\AntiAdwa.exe
C:\WINDOWS\system32\Setup\iis.exe
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL0839.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL1296.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2057.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2303.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2878.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3432.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3680.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3827.tmp
C:\WINDOWS\system32\config\default.tmp.LOG
C:\WINDOWS\system32\config\software.tmp.LOG
C:\WINDOWS\system32\config\system.tmp.LOG
Add/Remove Programs List:
Adobe Download Manager 2.0 (Supprimer uniquement)
adsl TV
AsusUpdate
ASUS_Ai_Proactive_Screensaver (E)
AVG Anti-Spyware 7.5
CCleaner (remove only)
AdPush Software
DivX Content Uploader
eMule
FreeGo 2.0
HijackThis 1.99.1
Hijackthis Version Fran‡aise 1.99.0.1
PinnacleHollywood FX 5
ASUS GameLiveShow
CANON USB Video Driver
ASUS SmartDoctor
Canon Utilities PhotoStitch 3.1
Canon RemoteCapture Task for ZoomBrowser EX
Canon Internet Library for ZoomBrowser EX
ASUS nVIDIA Driver
Canon RAW Image Task for ZoomBrowser EX
Canon Camera Window DVC for ZoomBrowser EX
ASUS VideoSecurity Online
Canon MovieEdit Task for ZoomBrowser EX
Canon Camera Window DS for ZoomBrowser EX
Canon Camera Support Core Library
Canon Camera Window for ZoomBrowser EX
Pro Evolution Soccer 6
ASUS Utilities
Correctif Windows XP - KB885836
Keycraft (remove only)
Lexmark Supplies Monitor
Lexmark Z25-Z35
Mozilla Firefox (1.5)
McAfee SecurityCenter
NVIDIA Drivers
Panda ActiveScan
RealPlayer
Adobe Flash Player 9 ActiveX
Skype 2.5
SLD CODEC PACK 1.5.3
TeamSpeak 2 RC2
VideoLAN VLC media player 0.8.4a
Winamp (remove only)
WinPcap 4.0 alpha1
Archiveur WinRAR
WinZip
XviD MPEG-4 Video Codec
Zoom Player (remove only)
Microsoft Office 2000 CD-ROMÿ2
ASUS GameLiveShow
CANON USB Video Driver
Canon PhotoRecord
ASUS SmartDoctor
AutoUpdate
PhotoStitch
RemoteCapture Task 1.1
Internet Library
ASUS Enhanced Display Driver
J2SE Runtime Environment 5.0 Update 6
RAW Image Task
Camera Window DVC
ASUSUpdate
Windows Genuine Advantage v1.3.0254.0
ASUSDVD
Nero 7 Demo
ASUS VideoSecurity Online
DivX Codec
DivX Player
MovieEdit Task
Microsoft Office Professional Edition 2003
Camera Window DS
Camera Support Core Library
Studio 9
Adobe Reader 7.0.7 - Fran‡ais
DivX Converter
Spy Sweeper
DivX Web Player
Canon ZoomBrowser EX
Camera Window MC
PowerDirector
Windows Live Messenger
Pro Evolution Soccer 6
SoundMAX
ASUS Utilities
PC Probe II
Finished
bon dimanche
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
4 mars 2007 à 13:29
4 mars 2007 à 13:29
Bonjour,
Voici le 2 eme rapport,
Sun Mar 04 00:51:43 2007 => **********************************************************
Sun Mar 04 00:51:43 2007 => eScan AntiVirus Toolkit Utility.
Sun Mar 04 00:51:43 2007 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Sun Mar 04 00:51:43 2007 => **********************************************************
Sun Mar 04 00:51:43 2007 => Version 4.4.7
Sun Mar 04 00:51:43 2007 => Log File: C:\KASPER~1\mwav.log
Sun Mar 04 00:51:43 2007 => Latest Date of files inside MWAV: 23 Feb 2007 07:10:29.
Sun Mar 04 00:51:44 2007 => AV Library Loaded...
Sun Mar 04 00:51:44 2007 => Scanning File C:\KASPER~1\kavss.exe
Sun Mar 04 00:51:44 2007 => Scanning File C:\KASPER~1\Getvlist.exe
Sun Mar 04 00:51:44 2007 => Scanning File C:\KASPER~1\kavss.dll
Sun Mar 04 00:51:44 2007 => Scanning File C:\KASPER~1\kavssdi.dll
Sun Mar 04 00:51:44 2007 => Scanning File C:\KASPER~1\kavssi.dll
Sun Mar 04 00:51:45 2007 => Scanning File C:\KASPER~1\kavvlg.dll
Sun Mar 04 00:51:45 2007 => Scanning File C:\KASPER~1\msvlclnt.dll
Sun Mar 04 00:51:45 2007 => Scanning File C:\KASPER~1\ipc.dll
Sun Mar 04 00:51:45 2007 => Scanning File C:\KASPER~1\main.avi
Sun Mar 04 00:51:45 2007 => Scanning File C:\KASPER~1\virus.avi
Sun Mar 04 00:51:45 2007 => Virus Database Date: 2007/02/23
Sun Mar 04 00:51:45 2007 => Virus Database Count: 272614
Sun Mar 04 00:56:38 2007 => AV Library Unloaded (3)...
Sun Mar 04 01:01:37 2007 => **********************************************************
Sun Mar 04 01:01:37 2007 => eScan AntiVirus Toolkit Utility.
Sun Mar 04 01:01:37 2007 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Sun Mar 04 01:01:37 2007 => **********************************************************
Sun Mar 04 01:01:37 2007 => Version 4.4.7
Sun Mar 04 01:01:37 2007 => Log File: C:\KASPER~1\mwav.log
Sun Mar 04 01:01:40 2007 => Latest Date of files inside MWAV: 23 Feb 2007 07:10:29.
Sun Mar 04 01:01:51 2007 => AV Library Loaded...
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\kavss.exe
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\Getvlist.exe
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\kavss.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\kavssdi.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\kavssi.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\kavvlg.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\msvlclnt.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\ipc.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\main.avi
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\virus.avi
Sun Mar 04 01:01:51 2007 => Virus Database Date: 2007/02/23
Sun Mar 04 01:01:51 2007 => Virus Database Count: 272614
Sun Mar 04 01:02:24 2007 => **********************************************************
Sun Mar 04 01:02:24 2007 => eScan AntiVirus Toolkit Utility.
Sun Mar 04 01:02:24 2007 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Sun Mar 04 01:02:24 2007 =>
Sun Mar 04 01:02:24 2007 => Support: support@mwti.net
Sun Mar 04 01:02:24 2007 => Web: https://www.escanav.com/en/index.asp
Sun Mar 04 01:02:24 2007 => **********************************************************
Sun Mar 04 01:02:24 2007 => Version 4.4.7
Sun Mar 04 01:02:24 2007 => Log File: C:\KASPER~1\mwav.log
Sun Mar 04 01:02:24 2007 => Latest Date of files inside MWAV: 23 Feb 2007 07:10:29.
Sun Mar 04 01:02:24 2007 => Options Selected by User:
Sun Mar 04 01:02:24 2007 => Memory Check: Enabled
Sun Mar 04 01:02:24 2007 => Registry Check: Enabled
Sun Mar 04 01:02:24 2007 => StartUp Folder Check: Enabled
Sun Mar 04 01:02:24 2007 => System Folder Check: Enabled
Sun Mar 04 01:02:24 2007 => System Area Check: Disabled
Sun Mar 04 01:02:24 2007 => Services Check: Enabled
Sun Mar 04 01:02:24 2007 => Drive Check: Disabled
Sun Mar 04 01:02:24 2007 => All Drive Check :Enabled
Sun Mar 04 01:02:24 2007 => Scanning Type: Scan And Clean
Sun Mar 04 01:02:24 2007 => Folder Check: Disabled
Sun Mar 04 01:02:24 2007 => ***** Scanning Memory Files *****
Sun Mar 04 01:02:24 2007 => Scanning File C:\WINDOWS\system32\services.exe
Sun Mar 04 01:02:25 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:25 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:25 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:25 2007 => Scanning File C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
Sun Mar 04 01:02:25 2007 => Scanning File C:\PROGRA~1\Webroot\SPYSWE~1\SPYSWE~1.EXE
Sun Mar 04 01:02:25 2007 => Scanning File C:\WINDOWS\Explorer.EXE
Sun Mar 04 01:02:25 2007 => Scanning File C:\PROGRA~1\MICROS~2\OFFICE11\WINWORD.EXE
Sun Mar 04 01:02:26 2007 => Scanning File C:\Kaspersky\mwavscan.com
Sun Mar 04 01:02:26 2007 => Scanning File C:\Kaspersky\kavss.exe
Sun Mar 04 01:02:26 2007 => ***** Scanning Registry Files *****
Sun Mar 04 01:02:26 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Sun Mar 04 01:02:26 2007 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Sun Mar 04 01:02:26 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Sun Mar 04 01:02:26 2007 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Sun Mar 04 01:02:26 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Sun Mar 04 01:02:26 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Sun Mar 04 01:02:26 2007 => Scanning File C:\WINDOWS\system32\stobject.dll
Sun Mar 04 01:02:26 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
Sun Mar 04 01:02:26 2007 => {089FD14D-132B-48FC-8861-0048AE113215} = C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
Sun Mar 04 01:02:26 2007 => Scanning File C:\PROGRA~1\SITEAD~1\6028\SiteAdv.dll
Sun Mar 04 01:02:27 2007 => {7DB2D5A0-7241-4E79-B68D-6309F01C5231} = c:\program files\mcafee\virusscan\scriptcl.dll
Sun Mar 04 01:02:27 2007 => Scanning File c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
Sun Mar 04 01:02:27 2007 => {DE7C3CF0-4B15-11D1-ABED-709549C10000} = NULL
Sun Mar 04 01:02:27 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Sun Mar 04 01:02:27 2007 => Scanning File C:\WINDOWS\Explorer.exe
Sun Mar 04 01:02:27 2007 => Scanning File C:\WINDOWS\system32\userinit.exe
Sun Mar 04 01:02:27 2007 => Scanning HKCU\Control Panel\Desktop
Sun Mar 04 01:02:27 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sun Mar 04 01:02:27 2007 => *** File C:\PROGRA~1\Grisoft\AVGANT~1.5\avgas.exe having Size Restriction ***
Sun Mar 04 01:02:27 2007 => Scanning File C:\PROGRA~1\Grisoft\AVGANT~1.5\avgas.exe [**]
Sun Mar 04 01:02:27 2007 => ERROR!!! Invalid Entry User01 = C:\Program Files\Internet Explorer\SVCHOST.EXE. Removing it.
Sun Mar 04 01:02:27 2007 => Scanning File C:\PROGRA~1\McAfee\MSK\MskAgent.exe
Sun Mar 04 01:02:27 2007 => Scanning File C:\PROGRA~1\SITEAD~1\6028\SiteAdv.exe
Sun Mar 04 01:02:28 2007 => Scanning File C:\WINDOWS\system32\RUNDLL32.EXE
Sun Mar 04 01:02:28 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sun Mar 04 01:02:28 2007 => Scanning File C:\PROGRA~1\ANALOG~1\SoundMAX\Smax4.exe
Sun Mar 04 01:02:28 2007 => Scanning File C:\PROGRA~1\ANALOG~1\Core\smax4pnp.exe
Sun Mar 04 01:02:28 2007 => Scanning File C:\PROGRA~1\Webroot\SPYSWE~1\SPYSWE~2.EXE
Sun Mar 04 01:02:29 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sun Mar 04 01:02:29 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Sun Mar 04 01:02:29 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
Sun Mar 04 01:02:29 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
Sun Mar 04 01:02:29 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sun Mar 04 01:02:29 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Sun Mar 04 01:02:29 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
Sun Mar 04 01:02:29 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
Sun Mar 04 01:02:29 2007 => Scanning HKCR\txtfile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\comfile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\exefile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\dllfile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\batfile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\piffile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\scrfile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\scrfile\shell\config\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\regfile\shell\open\command
Sun Mar 04 01:02:30 2007 => ***** Scanning StartUp Folders *****
Sun Mar 04 01:02:31 2007 => ***** Scanning C:\Documents and Settings\Kévin\Menu Démarrer\Programmes\Démarrage Folder *****
Sun Mar 04 01:02:31 2007 => Scanning Folder: C:\Documents and Settings\Kévin\Menu Démarrer\Programmes\Démarrage\*.*
Sun Mar 04 01:02:31 2007 => Scanning File C:\Documents and Settings\Kévin\Menu Démarrer\Programmes\Démarrage\desktop.ini
Sun Mar 04 01:02:31 2007 => ***** Scanning C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Folder *****
Sun Mar 04 01:02:31 2007 => Scanning Folder: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\*.*
Sun Mar 04 01:02:31 2007 => Scanning File C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\desktop.ini
Sun Mar 04 01:02:31 2007 => ***** Scanning Service Files *****
Sun Mar 04 01:02:31 2007 => Scanning HKLM\SYSTEM\CurrentControlSet\Services
Sun Mar 04 01:02:31 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\61883.sys
Sun Mar 04 01:02:31 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ACPI.sys
Sun Mar 04 01:02:31 2007 => Scanning File C:\WINDOWS\system32\drivers\ADIHdAud.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\AEAudio.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\aec.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\System32\drivers\afd.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\System32\alg.exe
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\arp1394.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\ASAPIW2k.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\AsIO.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\asusgsb.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\atkkbnt.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\asyncmac.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\atapi.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\ATKKBService.exe
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\atmarpc.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\audstub.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\avc.sys
Sun Mar 04 01:02:33 2007 => Scanning File C:\PROGRA~1\GRISOFT\AVGANT~1.5\GUARD.SYS
Sun Mar 04 01:02:33 2007 => Scanning File C:\PROGRA~1\Grisoft\AVGANT~1.5\guard.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\AvgAsCln.sys
Sun Mar 04 01:02:33 2007 => ERROR!!! Invalid Entry C:\WINDOWS\system32\B7722F62.EXE -service in SYSTEM\CurrentControlSet\Services\B7722F62...
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\cdrom.sys
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\cisvc.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\dllhost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\disk.sys
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\System32\dmadmin.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\drivers\dmboot.sys
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\dmio.sys
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\drivers\DMusic.sys
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\drivers\drmkaud.sys
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\EIO.SYS
Sun Mar 04 01:02:34 2007 => Scanning File C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\services.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\fdc.sys
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\flpydisk.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\fltMgr.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ftdisk.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\drivers\fwdrv.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\msgpc.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\PROGRA~1\Google\Common\GOOGLE~1\GOOGLE~1.EXE
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\drivers\HdAudio.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\HIDPROC.SYS [**]
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\hidusb.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\Drivers\HTTP.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\HTTPS.SYS [**]
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\i8042prt.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\imapi.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\imapi.exe
Sun Mar 04 01:02:35 2007 => ERROR!!! Invalid Entry system32\drivers\InCDFs.sys in SYSTEM\CurrentControlSet\Services\InCDFs...
Sun Mar 04 01:02:36 2007 => ERROR!!! Invalid Entry system32\drivers\InCDPass.sys in SYSTEM\CurrentControlSet\Services\InCDPass...
Sun Mar 04 01:02:36 2007 => ERROR!!! Invalid Entry system32\drivers\InCDRm.sys in SYSTEM\CurrentControlSet\Services\InCDRm...
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\intelppm.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipinip.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipnat.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipsec.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\irenum.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\isapnp.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\jsefusf.exe
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\drivers\khips.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\drivers\kmixer.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kpf4ss.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\LANFS.SYS [**]
Sun Mar 04 01:02:37 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\WINDOWS\system32\LEXBCES.EXE
Sun Mar 04 01:02:37 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\PROGRA~1\FICHIE~1\McAfee\HACKER~1\HWAPI.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
Sun Mar 04 01:02:37 2007 => Scanning File c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe
Sun Mar 04 01:02:38 2007 => Scanning File C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
Sun Mar 04 01:02:38 2007 => Scanning File C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
Sun Mar 04 01:02:38 2007 => Scanning File c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
Sun Mar 04 01:02:38 2007 => Scanning File c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
Sun Mar 04 01:02:38 2007 => Scanning File C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
Sun Mar 04 01:02:38 2007 => Scanning File C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\drivers\mfeavfk.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\drivers\mfebopk.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\drivers\mfehidk.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\drivers\mferkdk.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\drivers\mfesmfk.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\System32\mnmsrvc.exe
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mouclass.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\Drivers\Mpfp.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\PROGRA~1\McAfee\MPF\MPFSrv.exe
Sun Mar 04 01:02:39 2007 => Scanning File C:\PROGRA~1\McAfee\MPS\mps.exe
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mrxdav.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\System32\msdtc.exe
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\msdv.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\msiexec.exe
Sun Mar 04 01:02:40 2007 => Scanning File C:\PROGRA~1\McAfee\MSK\MskSrver.exe
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\drivers\MSKSSRV.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\drivers\MSPCLOCK.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\drivers\MSPQM.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mssmbios.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\drivers\MSTEE.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ASACPI.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\NdisIP.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ndistapi.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ndisuio.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ndiswan.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\netbios.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\netbt.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\netdde.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\netdde.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nic1394.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\drivers\npf.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\System32\nvsvc32.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ohci1394.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\PROGRA~1\FICHIE~1\MICROS~1\SOURCE~1\OSE.EXE
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\parport.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\pci.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\pciide.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\drivers\pfc.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\services.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\raspptp.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\processr.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\psched.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ptilink.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\Drivers\PxHelp20.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rasacd.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\raspppoe.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\raspti.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rdbss.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rdpdr.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\sessmgr.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\redbook.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\PROGRA~1\WinPcap\rpcapd.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\locator.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\rsvp.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\secdrv.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\drivers\Senfilt.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\serenum.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\serial.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\PROGRA~1\SITEAD~1\6028\SASERV~1.EXE
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\SLIP.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\drivers\splitter.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\sr.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\srv.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\Drivers\SSFS0509.SYS
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\Drivers\SSHRMD.SYS
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\Drivers\SSIDRV.SYS
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\Drivers\sskbfd.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\StreamIP.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\swenum.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\drivers\swmidi.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\dllhost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\drivers\sysaudio.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\smlogsvc.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\tcpip.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\termdd.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\System32\tlntsvr.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\update.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\System32\ups.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbehci.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbhub.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbprint.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbuhci.sys
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\System32\drivers\vga.sys
Sun Mar 04 01:02:46 2007 => ERROR!!! Invalid Entry System32\Drivers\Video3D.sys in SYSTEM\CurrentControlSet\Services\Video3D...
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\System32\vssvc.exe
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\wanarp.sys
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\drivers\wdmaud.sys
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:46 2007 => Scanning File C:\PROGRA~1\Webroot\SPYSWE~1\SPYSWE~1.EXE
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\\rundll32.exe
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\Setup\iis.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\system32\wbem\wmiapsrv.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:47 2007 => ***** Scanning System32 Folders *****
Sun Mar 04 01:02:47 2007 => Scanning C:\WINDOWS Directory
Sun Mar 04 01:02:47 2007 => Scanning Folder: C:\WINDOWS\*.*
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\0.log [**]
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\64lky8sfuagl3.dll
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\71wlj07.dll
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\8dji1.dll
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\Ascd_tmp.ini
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\ASUS_Ai_Proactive_Screensaver (E).scr
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\AS_Debug.txt [**]
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\ATKKBService.exe
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\bdoscandel.exe
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\bdoscandellang.ini
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\bootstat.dat
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\Bulles de savon.bmp
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\cdplayer.ini
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\clock.avi
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\control.ini [**]
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\desktop.ini
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\explorer.exe
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\explorer.scf
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\flashax.exe
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\F_France.gpl
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\GPInstall.exe
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\Granit vert.bmp
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\hh.exe
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\impborl.dll
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\IsUn040c.exe
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\IsUninst.exe
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\Jour de pêche.bmp
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\l2.dll
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\libeay32.dll
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\mozver.dat
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\msdfmap.ini
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\Mur de Santa Fe.bmp
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\mywinsys.ini
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\NeroDigital.ini
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\notepad.exe
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\nsreg.dat [**]
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\ntbtlog.txt
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\NTServer.DLL
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\ODBC.INI
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\ODBCINST.INI
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\OpPrintServer.INI [**]
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\pavsig.txt
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\PhotoSnapViewer.INI
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\Plume.bmp
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\regedit.exe
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\REGLOCS.OLD
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\Rhododendron.bmp
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\Rivière Sumida.bmp
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\Rosace bleue 16.bmp
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\RPCD.ini
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\rqexfq2x.dll
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\SchedLgU.Txt
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\sclgntfys.dll
Sun Mar 04 01:02:51 2007 => ERROR!!! ScanFile fails for C:\WINDOWS\sclgntfys.dll
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET3.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET3D.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET3E.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET4A.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET4F.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET52.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET5E.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET7.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET7B.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET7C.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET7D.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET7E.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET81.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET82.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET83.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET84.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET85.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET86.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET87.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET88.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET89.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET8A.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET8B.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET8C.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET8D.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET8E.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET8F.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET90.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET91.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET92.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET93.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET94.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET95.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET96.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET97.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET98.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET99.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET9A.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET9B.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET9C.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET9D.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETB8.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETB9.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETBA.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETBB.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETBE.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETBF.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC2.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC3.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC4.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC5.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC6.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC7.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC8.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC9.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCA.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCB.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCC.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCD.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCE.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCF.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD0.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD1.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD2.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD3.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD4.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD5.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD6.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD7.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD8.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD9.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETDA.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETDB.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETDC.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\setupact.log [**]
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\setupapi.log
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\setupapi.log.0.old
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\setupapi.old
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\setuperr.log [**]
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\SMinstall.log
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\ssleay32.dll
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\stg4tdhib.dll
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\Sti_Trace.log [**]
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\system.ini
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\taskman.exe
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\Tasse à café.bmp
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\twain.dll
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\twain_32.dll
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\twunk_16.exe
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\twunk_32.exe
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\unin040c.exe
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\UninstallFirefox.exe
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\UNNeroBackItUp.cfg
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\UNNeroBackItUp.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroMediaHome.cfg
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroMediaHome.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroShowTime.cfg
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroShowTime.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroVision.cfg
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroVision.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNRecode.cfg
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNRecode.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\unvise32.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UPGRADE.TXT
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\vb.ini
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\vbaddin.ini
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\Vent de prairie.bmp
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\vmmreg32.dll
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\War3Unin.dat
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\War3Unin.exe
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\War3Unin.pif
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\wiadebug.log
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\wiaservc.log
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\win.ini
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\winamps.dll
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\WindowsShell.Manifest
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\WindowsUpdate.log
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\winhelp.exe
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\winhlp32.exe
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\winnt.bmp
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\winnt256.bmp
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\WMPrfAra.prx
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\WMPrfCHS.prx
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\WMPrfCHT.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfcsy.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfdan.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\WMPrfDeu.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfell.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfesp.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprffin.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfFRA.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfheb.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfhun.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfita.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\WMPrfJpn.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\WMPrfKor.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfnld.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfnor.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfplk.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfptb.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfptg.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfrus.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfsky.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfslv.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfsve.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprftrk.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\WMSysPr9.prx
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\WMSysPrx.prx
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\WRServices.dll
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\WRUninstall.dll
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\Zapotec.bmp
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\_default.pif
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\__delete_on_reboot__A_n_t_i_A_d_w_a_._e_x_e_
Sun Mar 04 01:02:59 2007 => Scanning C:\WINDOWS\system32 Directory
Sun Mar 04 01:02:59 2007 => Scanning Folder: C:\WINDOWS\system32\*.*
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\system32\$winnt$.inf
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\system32\1010FgX0g.dll
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\system32\1010s.exe
Sun Mar 04 01:03:00 2007 => Scanning File C:\WINDOWS\system32\12.exe
Sun Mar 04 01:03:01 2007 => File C:\WINDOWS\system32\12.exe tagged as not-a-virus:AdWare.Win32.Boran.w. No Action Taken.
Sun Mar 04 01:03:01 2007 => Scanning File C:\WINDOWS\system32\1250.exe
Sun Mar 04 01:03:01 2007 => File C:\WINDOWS\system32\1250.exe infected by "Trojan-Downloader.Win32.Agent.bdr" Virus. Action Taken: File Deleted.
Sun Mar 04 01:03:01 2007 => Scanning File C:\WINDOWS\system32\12520437.cpx
Sun Mar 04 01:03:01 2007 => Scanning File C:\WINDOWS\system32\12520850.cpx
Sun Mar 04 01:03:01 2007 => Scanning File C:\WINDOWS\system32\4a76ntos.dll
Sun Mar 04 01:03:01 2007 => Scanning File C:\WINDOWS\system32\6to4svc.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\a3d.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\aaaamon.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\acctres.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\acelpdec.ax
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\acledit.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\aclui.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\activeds.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\activeds.tlb
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\actmovie.exe
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\actxprxy.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\admparse.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\adptif.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\adsldp.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\adsldpc.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\adsmsext.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\adsnds.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\adsnt.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\adsnw.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\advapi32.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\advpack.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\ahui.exe
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\alg.exe
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\alrsvc.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\amcompat.tlb
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\amstream.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\ansi.sys
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\apcups.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\append.exe
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\apphelp.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\appmgmts.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\appmgr.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\appwiz.cpl
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\arp.exe
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asapi.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\aschs.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\ASCHT.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asctrls.ocx
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\aseng.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asferror.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asfiles.txt [**]
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asfrench.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asfsipc.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asgerman.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asinst.cfg
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\AsIO.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asjapan.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\askorean.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asrussian.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asr_fmt.exe
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asr_ldm.exe
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asr_pfu.exe
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asuninst.exe
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\ASUSASV2.DLL
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asusgsb.inf
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asusgsb.sys
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asycfilt.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\at.exe
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\atkctrs.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\ATKDISP.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\ATKDispCPL.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\atkdsoff.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkdson.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkdst.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKF12.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKF12.rc1
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKF16.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKF16.rc1
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgfoff.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgfon.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgft.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgtvoff.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgtvon.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgtvt.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkid.ini
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKOGL.dll
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdCHS.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdCHT.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdENG.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdFRA.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdGER.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdJPN.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdKOR.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKOSDMini.DLL
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdRUS.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKOSDX.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atkrec.rc0
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atl.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\ATL70.DLL
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atl71.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atmadm.exe
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atmfd.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atmlib.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atmpvcno.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atrace.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\attrib.exe
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\Audio3d.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\audiosrv.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\auditusr.exe
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\authz(2)(2).dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\authz.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\autochk.exe
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\autoconv.exe
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\autodisc.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\AUTOEXEC.NT
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\autofmt.exe
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\autolfn.exe
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\avicap.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\avicap32.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\avifil32.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\avifile.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\Aviprax.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\B7722F62.dat
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\basesrv.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\batmeter.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\batt.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bdaplgin.ax
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bidispl.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bios1.rom
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bios4.rom
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bitsprx2.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bitsprx3.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\blackbox.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\blastcln.exe
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bootcfg.exe
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bootok.exe
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bootvid.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bootvrfy.exe
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bopomofo.uce
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\browselc.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\browser.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\browseui(2).dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\browsewm.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\bthci.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\bthprops.cpl
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\bthserv.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\btpanui.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\cabinet.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\cabview.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\Cachex.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\cacls.exe
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\calc.exe
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\camocx.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\capesnpn.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\cards.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\catsrv(2)(2).dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\catsrv.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\catsrvps.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\catsrvut(2)(2).dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\catsrvut.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\ccfgnt.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\cdfview.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\cdm.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cdmodem.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cdosys.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cdplayer.exe.manifest
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\certcli.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\certmgr.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\certmgr.msc
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cewmdm.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cfgbkend.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cfgmgr32.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\chajei.ime
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\charmap.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\Chaînes.scf
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\chcp.com
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\chkdsk.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\chkntfs.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\ciadmin.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\ciadv.msc
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\cic.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\cidaemon.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\ciodm.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\cipher.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\cisvc.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\ckcnv.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\class_ss.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\claud.ax
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\clb.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\clbcatex.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\clbcatq(2)(2).dll
Sun Mar 04 01:03:14 2007 => Scanning File C:\WINDOWS\system32\clbcatq.dll
Sun Mar 04 01:03:14 2007 => Scanning File C:\WINDOWS\system32\cleanmgr.exe
Sun Mar 04 01:03:14 2007 => Scanning File C:\WINDOWS\system32\CleanUp.exe
Sun Mar 04 01:03:14 2007 => Scanning File C:\WINDOWS\system32\cliconf.chm
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cliconfg.dll
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cliconfg.exe
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cliconfg.rll
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\clipbrd.exe
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\clusapi.dll
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\clvsd.ax
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cmcfg32.dll
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cmd.exe
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cmdial32.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmdl32.exe
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\CMDLGFR.DLL
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmdlib.wsc
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\CmdLineExt.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmmgr32.hlp
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmmon32.exe
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmos.ram
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmpbk32.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmprops.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmsetACL.dll
Sun Mar 04 01:03:16 2007 =>
Voici le 2 eme rapport,
Sun Mar 04 00:51:43 2007 => **********************************************************
Sun Mar 04 00:51:43 2007 => eScan AntiVirus Toolkit Utility.
Sun Mar 04 00:51:43 2007 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Sun Mar 04 00:51:43 2007 => **********************************************************
Sun Mar 04 00:51:43 2007 => Version 4.4.7
Sun Mar 04 00:51:43 2007 => Log File: C:\KASPER~1\mwav.log
Sun Mar 04 00:51:43 2007 => Latest Date of files inside MWAV: 23 Feb 2007 07:10:29.
Sun Mar 04 00:51:44 2007 => AV Library Loaded...
Sun Mar 04 00:51:44 2007 => Scanning File C:\KASPER~1\kavss.exe
Sun Mar 04 00:51:44 2007 => Scanning File C:\KASPER~1\Getvlist.exe
Sun Mar 04 00:51:44 2007 => Scanning File C:\KASPER~1\kavss.dll
Sun Mar 04 00:51:44 2007 => Scanning File C:\KASPER~1\kavssdi.dll
Sun Mar 04 00:51:44 2007 => Scanning File C:\KASPER~1\kavssi.dll
Sun Mar 04 00:51:45 2007 => Scanning File C:\KASPER~1\kavvlg.dll
Sun Mar 04 00:51:45 2007 => Scanning File C:\KASPER~1\msvlclnt.dll
Sun Mar 04 00:51:45 2007 => Scanning File C:\KASPER~1\ipc.dll
Sun Mar 04 00:51:45 2007 => Scanning File C:\KASPER~1\main.avi
Sun Mar 04 00:51:45 2007 => Scanning File C:\KASPER~1\virus.avi
Sun Mar 04 00:51:45 2007 => Virus Database Date: 2007/02/23
Sun Mar 04 00:51:45 2007 => Virus Database Count: 272614
Sun Mar 04 00:56:38 2007 => AV Library Unloaded (3)...
Sun Mar 04 01:01:37 2007 => **********************************************************
Sun Mar 04 01:01:37 2007 => eScan AntiVirus Toolkit Utility.
Sun Mar 04 01:01:37 2007 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Sun Mar 04 01:01:37 2007 => **********************************************************
Sun Mar 04 01:01:37 2007 => Version 4.4.7
Sun Mar 04 01:01:37 2007 => Log File: C:\KASPER~1\mwav.log
Sun Mar 04 01:01:40 2007 => Latest Date of files inside MWAV: 23 Feb 2007 07:10:29.
Sun Mar 04 01:01:51 2007 => AV Library Loaded...
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\kavss.exe
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\Getvlist.exe
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\kavss.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\kavssdi.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\kavssi.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\kavvlg.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\msvlclnt.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\ipc.dll
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\main.avi
Sun Mar 04 01:01:51 2007 => Scanning File C:\KASPER~1\virus.avi
Sun Mar 04 01:01:51 2007 => Virus Database Date: 2007/02/23
Sun Mar 04 01:01:51 2007 => Virus Database Count: 272614
Sun Mar 04 01:02:24 2007 => **********************************************************
Sun Mar 04 01:02:24 2007 => eScan AntiVirus Toolkit Utility.
Sun Mar 04 01:02:24 2007 => Copyright © 2003-2004, MicroWorld Technologies Inc.
Sun Mar 04 01:02:24 2007 =>
Sun Mar 04 01:02:24 2007 => Support: support@mwti.net
Sun Mar 04 01:02:24 2007 => Web: https://www.escanav.com/en/index.asp
Sun Mar 04 01:02:24 2007 => **********************************************************
Sun Mar 04 01:02:24 2007 => Version 4.4.7
Sun Mar 04 01:02:24 2007 => Log File: C:\KASPER~1\mwav.log
Sun Mar 04 01:02:24 2007 => Latest Date of files inside MWAV: 23 Feb 2007 07:10:29.
Sun Mar 04 01:02:24 2007 => Options Selected by User:
Sun Mar 04 01:02:24 2007 => Memory Check: Enabled
Sun Mar 04 01:02:24 2007 => Registry Check: Enabled
Sun Mar 04 01:02:24 2007 => StartUp Folder Check: Enabled
Sun Mar 04 01:02:24 2007 => System Folder Check: Enabled
Sun Mar 04 01:02:24 2007 => System Area Check: Disabled
Sun Mar 04 01:02:24 2007 => Services Check: Enabled
Sun Mar 04 01:02:24 2007 => Drive Check: Disabled
Sun Mar 04 01:02:24 2007 => All Drive Check :Enabled
Sun Mar 04 01:02:24 2007 => Scanning Type: Scan And Clean
Sun Mar 04 01:02:24 2007 => Folder Check: Disabled
Sun Mar 04 01:02:24 2007 => ***** Scanning Memory Files *****
Sun Mar 04 01:02:24 2007 => Scanning File C:\WINDOWS\system32\services.exe
Sun Mar 04 01:02:25 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:25 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:25 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:25 2007 => Scanning File C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
Sun Mar 04 01:02:25 2007 => Scanning File C:\PROGRA~1\Webroot\SPYSWE~1\SPYSWE~1.EXE
Sun Mar 04 01:02:25 2007 => Scanning File C:\WINDOWS\Explorer.EXE
Sun Mar 04 01:02:25 2007 => Scanning File C:\PROGRA~1\MICROS~2\OFFICE11\WINWORD.EXE
Sun Mar 04 01:02:26 2007 => Scanning File C:\Kaspersky\mwavscan.com
Sun Mar 04 01:02:26 2007 => Scanning File C:\Kaspersky\kavss.exe
Sun Mar 04 01:02:26 2007 => ***** Scanning Registry Files *****
Sun Mar 04 01:02:26 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Sun Mar 04 01:02:26 2007 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Sun Mar 04 01:02:26 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Sun Mar 04 01:02:26 2007 => *** File C:\WINDOWS\system32\SHELL32.dll having Size Restriction ***
Sun Mar 04 01:02:26 2007 => Scanning File C:\WINDOWS\system32\SHELL32.dll [**]
Sun Mar 04 01:02:26 2007 => Scanning File C:\WINDOWS\system32\webcheck.dll
Sun Mar 04 01:02:26 2007 => Scanning File C:\WINDOWS\system32\stobject.dll
Sun Mar 04 01:02:26 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
Sun Mar 04 01:02:26 2007 => {089FD14D-132B-48FC-8861-0048AE113215} = C:\Program Files\SiteAdvisor\6028\SiteAdv.dll
Sun Mar 04 01:02:26 2007 => Scanning File C:\PROGRA~1\SITEAD~1\6028\SiteAdv.dll
Sun Mar 04 01:02:27 2007 => {7DB2D5A0-7241-4E79-B68D-6309F01C5231} = c:\program files\mcafee\virusscan\scriptcl.dll
Sun Mar 04 01:02:27 2007 => Scanning File c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
Sun Mar 04 01:02:27 2007 => {DE7C3CF0-4B15-11D1-ABED-709549C10000} = NULL
Sun Mar 04 01:02:27 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Sun Mar 04 01:02:27 2007 => Scanning File C:\WINDOWS\Explorer.exe
Sun Mar 04 01:02:27 2007 => Scanning File C:\WINDOWS\system32\userinit.exe
Sun Mar 04 01:02:27 2007 => Scanning HKCU\Control Panel\Desktop
Sun Mar 04 01:02:27 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sun Mar 04 01:02:27 2007 => *** File C:\PROGRA~1\Grisoft\AVGANT~1.5\avgas.exe having Size Restriction ***
Sun Mar 04 01:02:27 2007 => Scanning File C:\PROGRA~1\Grisoft\AVGANT~1.5\avgas.exe [**]
Sun Mar 04 01:02:27 2007 => ERROR!!! Invalid Entry User01 = C:\Program Files\Internet Explorer\SVCHOST.EXE. Removing it.
Sun Mar 04 01:02:27 2007 => Scanning File C:\PROGRA~1\McAfee\MSK\MskAgent.exe
Sun Mar 04 01:02:27 2007 => Scanning File C:\PROGRA~1\SITEAD~1\6028\SiteAdv.exe
Sun Mar 04 01:02:28 2007 => Scanning File C:\WINDOWS\system32\RUNDLL32.EXE
Sun Mar 04 01:02:28 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sun Mar 04 01:02:28 2007 => Scanning File C:\PROGRA~1\ANALOG~1\SoundMAX\Smax4.exe
Sun Mar 04 01:02:28 2007 => Scanning File C:\PROGRA~1\ANALOG~1\Core\smax4pnp.exe
Sun Mar 04 01:02:28 2007 => Scanning File C:\PROGRA~1\Webroot\SPYSWE~1\SPYSWE~2.EXE
Sun Mar 04 01:02:29 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sun Mar 04 01:02:29 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Sun Mar 04 01:02:29 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
Sun Mar 04 01:02:29 2007 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
Sun Mar 04 01:02:29 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sun Mar 04 01:02:29 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
Sun Mar 04 01:02:29 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
Sun Mar 04 01:02:29 2007 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
Sun Mar 04 01:02:29 2007 => Scanning HKCR\txtfile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\comfile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\exefile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\dllfile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\batfile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\piffile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\scrfile\shell\open\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\scrfile\shell\config\command
Sun Mar 04 01:02:30 2007 => Scanning HKCR\regfile\shell\open\command
Sun Mar 04 01:02:30 2007 => ***** Scanning StartUp Folders *****
Sun Mar 04 01:02:31 2007 => ***** Scanning C:\Documents and Settings\Kévin\Menu Démarrer\Programmes\Démarrage Folder *****
Sun Mar 04 01:02:31 2007 => Scanning Folder: C:\Documents and Settings\Kévin\Menu Démarrer\Programmes\Démarrage\*.*
Sun Mar 04 01:02:31 2007 => Scanning File C:\Documents and Settings\Kévin\Menu Démarrer\Programmes\Démarrage\desktop.ini
Sun Mar 04 01:02:31 2007 => ***** Scanning C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage Folder *****
Sun Mar 04 01:02:31 2007 => Scanning Folder: C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\*.*
Sun Mar 04 01:02:31 2007 => Scanning File C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage\desktop.ini
Sun Mar 04 01:02:31 2007 => ***** Scanning Service Files *****
Sun Mar 04 01:02:31 2007 => Scanning HKLM\SYSTEM\CurrentControlSet\Services
Sun Mar 04 01:02:31 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\61883.sys
Sun Mar 04 01:02:31 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ACPI.sys
Sun Mar 04 01:02:31 2007 => Scanning File C:\WINDOWS\system32\drivers\ADIHdAud.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\AEAudio.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\aec.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\System32\drivers\afd.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\System32\alg.exe
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\arp1394.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\ASAPIW2k.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\AsIO.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\asusgsb.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\drivers\atkkbnt.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\asyncmac.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\atapi.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\ATKKBService.exe
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\atmarpc.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\audstub.sys
Sun Mar 04 01:02:32 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\avc.sys
Sun Mar 04 01:02:33 2007 => Scanning File C:\PROGRA~1\GRISOFT\AVGANT~1.5\GUARD.SYS
Sun Mar 04 01:02:33 2007 => Scanning File C:\PROGRA~1\Grisoft\AVGANT~1.5\guard.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\AvgAsCln.sys
Sun Mar 04 01:02:33 2007 => ERROR!!! Invalid Entry C:\WINDOWS\system32\B7722F62.EXE -service in SYSTEM\CurrentControlSet\Services\B7722F62...
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\cdrom.sys
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\cisvc.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\dllhost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\disk.sys
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\System32\dmadmin.exe
Sun Mar 04 01:02:33 2007 => Scanning File C:\WINDOWS\system32\drivers\dmboot.sys
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\dmio.sys
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\drivers\DMusic.sys
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\drivers\drmkaud.sys
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\EIO.SYS
Sun Mar 04 01:02:34 2007 => Scanning File C:\PROGRA~1\FICHIE~1\McAfee\EmProxy\emproxy.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\services.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\fdc.sys
Sun Mar 04 01:02:34 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\flpydisk.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\fltMgr.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ftdisk.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\drivers\fwdrv.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\msgpc.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\PROGRA~1\Google\Common\GOOGLE~1\GOOGLE~1.EXE
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\drivers\HdAudio.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\HIDPROC.SYS [**]
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\hidusb.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\Drivers\HTTP.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\HTTPS.SYS [**]
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\i8042prt.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\imapi.sys
Sun Mar 04 01:02:35 2007 => Scanning File C:\WINDOWS\system32\imapi.exe
Sun Mar 04 01:02:35 2007 => ERROR!!! Invalid Entry system32\drivers\InCDFs.sys in SYSTEM\CurrentControlSet\Services\InCDFs...
Sun Mar 04 01:02:36 2007 => ERROR!!! Invalid Entry system32\drivers\InCDPass.sys in SYSTEM\CurrentControlSet\Services\InCDPass...
Sun Mar 04 01:02:36 2007 => ERROR!!! Invalid Entry system32\drivers\InCDRm.sys in SYSTEM\CurrentControlSet\Services\InCDRm...
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\intelppm.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipinip.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipnat.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ipsec.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\irenum.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\isapnp.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\jsefusf.exe
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\kbdclass.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\drivers\khips.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\WINDOWS\system32\drivers\kmixer.sys
Sun Mar 04 01:02:36 2007 => Scanning File C:\PROGRA~1\SUNBEL~1\PERSON~1\kpf4ss.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\WINDOWS\SYSTEM32\DRIVERS\LANFS.SYS [**]
Sun Mar 04 01:02:37 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\WINDOWS\system32\LEXBCES.EXE
Sun Mar 04 01:02:37 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\PROGRA~1\FICHIE~1\McAfee\HACKER~1\HWAPI.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
Sun Mar 04 01:02:37 2007 => Scanning File C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
Sun Mar 04 01:02:37 2007 => Scanning File c:\PROGRA~1\FICHIE~1\mcafee\mna\mcnasvc.exe
Sun Mar 04 01:02:38 2007 => Scanning File C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
Sun Mar 04 01:02:38 2007 => Scanning File C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
Sun Mar 04 01:02:38 2007 => Scanning File c:\PROGRA~1\FICHIE~1\mcafee\mcproxy\mcproxy.exe
Sun Mar 04 01:02:38 2007 => Scanning File c:\PROGRA~1\FICHIE~1\mcafee\redirsvc\redirsvc.exe
Sun Mar 04 01:02:38 2007 => Scanning File C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
Sun Mar 04 01:02:38 2007 => Scanning File C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\drivers\mfeavfk.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\drivers\mfebopk.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\drivers\mfehidk.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\drivers\mferkdk.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\drivers\mfesmfk.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\System32\mnmsrvc.exe
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mouclass.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\WINDOWS\system32\Drivers\Mpfp.sys
Sun Mar 04 01:02:39 2007 => Scanning File C:\PROGRA~1\McAfee\MPF\MPFSrv.exe
Sun Mar 04 01:02:39 2007 => Scanning File C:\PROGRA~1\McAfee\MPS\mps.exe
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mrxdav.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\System32\msdtc.exe
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\msdv.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\msiexec.exe
Sun Mar 04 01:02:40 2007 => Scanning File C:\PROGRA~1\McAfee\MSK\MskSrver.exe
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\drivers\MSKSSRV.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\drivers\MSPCLOCK.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\drivers\MSPQM.sys
Sun Mar 04 01:02:40 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\mssmbios.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\drivers\MSTEE.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ASACPI.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\NdisIP.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ndistapi.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ndisuio.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ndiswan.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\netbios.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\netbt.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\netdde.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\netdde.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nic1394.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\drivers\npf.sys
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:41 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\System32\nvsvc32.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ohci1394.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\PROGRA~1\FICHIE~1\MICROS~1\SOURCE~1\OSE.EXE
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\parport.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\pci.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\pciide.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\drivers\pfc.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\services.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\raspptp.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\processr.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\psched.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\ptilink.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\Drivers\PxHelp20.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rasacd.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\raspppoe.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\raspti.sys
Sun Mar 04 01:02:42 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rdbss.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\rdpdr.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\sessmgr.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\redbook.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\PROGRA~1\WinPcap\rpcapd.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\locator.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\rsvp.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\System32\SCardSvr.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\secdrv.sys
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:43 2007 => Scanning File C:\WINDOWS\system32\drivers\Senfilt.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\serenum.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\serial.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\PROGRA~1\SITEAD~1\6028\SASERV~1.EXE
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\SLIP.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\drivers\splitter.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\sr.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\srv.sys
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\Drivers\SSFS0509.SYS
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\Drivers\SSHRMD.SYS
Sun Mar 04 01:02:44 2007 => Scanning File C:\WINDOWS\system32\Drivers\SSIDRV.SYS
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\Drivers\sskbfd.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\StreamIP.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\swenum.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\drivers\swmidi.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\dllhost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\drivers\sysaudio.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\smlogsvc.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\tcpip.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\termdd.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\System32\tlntsvr.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\update.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\System32\ups.exe
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbehci.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbhub.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbprint.sys
Sun Mar 04 01:02:45 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\usbuhci.sys
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\System32\drivers\vga.sys
Sun Mar 04 01:02:46 2007 => ERROR!!! Invalid Entry System32\Drivers\Video3D.sys in SYSTEM\CurrentControlSet\Services\Video3D...
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\System32\vssvc.exe
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\wanarp.sys
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\drivers\wdmaud.sys
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:46 2007 => Scanning File C:\PROGRA~1\Webroot\SPYSWE~1\SPYSWE~1.EXE
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\\rundll32.exe
Sun Mar 04 01:02:46 2007 => Scanning File C:\WINDOWS\system32\Setup\iis.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\system32\wbem\wmiapsrv.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\system32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:47 2007 => Scanning File C:\WINDOWS\System32\svchost.exe
Sun Mar 04 01:02:47 2007 => ***** Scanning System32 Folders *****
Sun Mar 04 01:02:47 2007 => Scanning C:\WINDOWS Directory
Sun Mar 04 01:02:47 2007 => Scanning Folder: C:\WINDOWS\*.*
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\0.log [**]
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\64lky8sfuagl3.dll
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\71wlj07.dll
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\8dji1.dll
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\Ascd_tmp.ini
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\ASUS_Ai_Proactive_Screensaver (E).scr
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\AS_Debug.txt [**]
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\ATKKBService.exe
Sun Mar 04 01:02:48 2007 => Scanning File C:\WINDOWS\bdoscandel.exe
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\bdoscandellang.ini
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\bootstat.dat
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\Bulles de savon.bmp
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\cdplayer.ini
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\clock.avi
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\control.ini [**]
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\desktop.ini
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\explorer.exe
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\explorer.scf
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\flashax.exe
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\F_France.gpl
Sun Mar 04 01:02:49 2007 => Scanning File C:\WINDOWS\GPInstall.exe
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\Granit vert.bmp
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\hh.exe
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\impborl.dll
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\IsUn040c.exe
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\IsUninst.exe
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\Jour de pêche.bmp
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\l2.dll
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\libeay32.dll
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\mozver.dat
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\msdfmap.ini
Sun Mar 04 01:02:50 2007 => Scanning File C:\WINDOWS\Mur de Santa Fe.bmp
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\mywinsys.ini
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\NeroDigital.ini
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\notepad.exe
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\nsreg.dat [**]
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\ntbtlog.txt
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\NTServer.DLL
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\ODBC.INI
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\ODBCINST.INI
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\OpPrintServer.INI [**]
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\pavsig.txt
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\PhotoSnapViewer.INI
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\Plume.bmp
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\regedit.exe
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\REGLOCS.OLD
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\Rhododendron.bmp
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\Rivière Sumida.bmp
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\Rosace bleue 16.bmp
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\RPCD.ini
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\rqexfq2x.dll
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\SchedLgU.Txt
Sun Mar 04 01:02:51 2007 => Scanning File C:\WINDOWS\sclgntfys.dll
Sun Mar 04 01:02:51 2007 => ERROR!!! ScanFile fails for C:\WINDOWS\sclgntfys.dll
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET3.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET3D.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET3E.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET4A.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET4F.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET52.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET5E.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET7.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET7B.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET7C.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET7D.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET7E.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET81.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET82.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET83.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET84.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET85.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET86.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET87.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET88.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET89.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET8A.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET8B.tmp
Sun Mar 04 01:02:52 2007 => Scanning File C:\WINDOWS\SET8C.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET8D.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET8E.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET8F.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET90.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET91.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET92.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET93.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET94.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET95.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET96.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET97.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET98.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET99.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET9A.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET9B.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET9C.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SET9D.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETB8.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETB9.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETBA.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETBB.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETBE.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETBF.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC2.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC3.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC4.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC5.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC6.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC7.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC8.tmp
Sun Mar 04 01:02:53 2007 => Scanning File C:\WINDOWS\SETC9.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCA.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCB.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCC.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCD.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCE.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETCF.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD0.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD1.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD2.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD3.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD4.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD5.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD6.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD7.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD8.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETD9.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETDA.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETDB.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\SETDC.tmp
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\setupact.log [**]
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\setupapi.log
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\setupapi.log.0.old
Sun Mar 04 01:02:54 2007 => Scanning File C:\WINDOWS\setupapi.old
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\setuperr.log [**]
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\SMinstall.log
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\ssleay32.dll
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\stg4tdhib.dll
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\Sti_Trace.log [**]
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\system.ini
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\taskman.exe
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\Tasse à café.bmp
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\twain.dll
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\twain_32.dll
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\twunk_16.exe
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\twunk_32.exe
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\unin040c.exe
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\UninstallFirefox.exe
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\UNNeroBackItUp.cfg
Sun Mar 04 01:02:55 2007 => Scanning File C:\WINDOWS\UNNeroBackItUp.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroMediaHome.cfg
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroMediaHome.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroShowTime.cfg
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroShowTime.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroVision.cfg
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNNeroVision.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNRecode.cfg
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UNRecode.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\unvise32.exe
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\UPGRADE.TXT
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\vb.ini
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\vbaddin.ini
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\Vent de prairie.bmp
Sun Mar 04 01:02:56 2007 => Scanning File C:\WINDOWS\vmmreg32.dll
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\War3Unin.dat
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\War3Unin.exe
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\War3Unin.pif
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\wiadebug.log
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\wiaservc.log
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\win.ini
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\winamps.dll
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\WindowsShell.Manifest
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\WindowsUpdate.log
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\winhelp.exe
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\winhlp32.exe
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\winnt.bmp
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\winnt256.bmp
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\WMPrfAra.prx
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\WMPrfCHS.prx
Sun Mar 04 01:02:57 2007 => Scanning File C:\WINDOWS\WMPrfCHT.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfcsy.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfdan.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\WMPrfDeu.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfell.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfesp.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprffin.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfFRA.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfheb.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfhun.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfita.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\WMPrfJpn.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\WMPrfKor.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfnld.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfnor.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfplk.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfptb.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfptg.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfrus.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfsky.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfslv.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprfsve.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\wmprftrk.prx
Sun Mar 04 01:02:58 2007 => Scanning File C:\WINDOWS\WMSysPr9.prx
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\WMSysPrx.prx
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\WRServices.dll
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\WRUninstall.dll
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\Zapotec.bmp
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\_default.pif
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\__delete_on_reboot__A_n_t_i_A_d_w_a_._e_x_e_
Sun Mar 04 01:02:59 2007 => Scanning C:\WINDOWS\system32 Directory
Sun Mar 04 01:02:59 2007 => Scanning Folder: C:\WINDOWS\system32\*.*
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\system32\$winnt$.inf
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\system32\1010FgX0g.dll
Sun Mar 04 01:02:59 2007 => Scanning File C:\WINDOWS\system32\1010s.exe
Sun Mar 04 01:03:00 2007 => Scanning File C:\WINDOWS\system32\12.exe
Sun Mar 04 01:03:01 2007 => File C:\WINDOWS\system32\12.exe tagged as not-a-virus:AdWare.Win32.Boran.w. No Action Taken.
Sun Mar 04 01:03:01 2007 => Scanning File C:\WINDOWS\system32\1250.exe
Sun Mar 04 01:03:01 2007 => File C:\WINDOWS\system32\1250.exe infected by "Trojan-Downloader.Win32.Agent.bdr" Virus. Action Taken: File Deleted.
Sun Mar 04 01:03:01 2007 => Scanning File C:\WINDOWS\system32\12520437.cpx
Sun Mar 04 01:03:01 2007 => Scanning File C:\WINDOWS\system32\12520850.cpx
Sun Mar 04 01:03:01 2007 => Scanning File C:\WINDOWS\system32\4a76ntos.dll
Sun Mar 04 01:03:01 2007 => Scanning File C:\WINDOWS\system32\6to4svc.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\a3d.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\aaaamon.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\acctres.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\acelpdec.ax
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\acledit.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\aclui.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\activeds.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\activeds.tlb
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\actmovie.exe
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\actxprxy.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\admparse.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\adptif.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\adsldp.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\adsldpc.dll
Sun Mar 04 01:03:02 2007 => Scanning File C:\WINDOWS\system32\adsmsext.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\adsnds.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\adsnt.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\adsnw.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\advapi32.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\advpack.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\ahui.exe
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\alg.exe
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\alrsvc.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\amcompat.tlb
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\amstream.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\ansi.sys
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\apcups.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\append.exe
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\apphelp.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\appmgmts.dll
Sun Mar 04 01:03:03 2007 => Scanning File C:\WINDOWS\system32\appmgr.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\appwiz.cpl
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\arp.exe
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asapi.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\aschs.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\ASCHT.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asctrls.ocx
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\aseng.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asferror.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asfiles.txt [**]
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asfrench.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asfsipc.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asgerman.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asinst.cfg
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\AsIO.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\asjapan.dll
Sun Mar 04 01:03:04 2007 => Scanning File C:\WINDOWS\system32\askorean.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asrussian.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asr_fmt.exe
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asr_ldm.exe
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asr_pfu.exe
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asuninst.exe
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\ASUSASV2.DLL
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asusgsb.inf
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asusgsb.sys
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\asycfilt.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\at.exe
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\atkctrs.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\ATKDISP.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\ATKDispCPL.dll
Sun Mar 04 01:03:05 2007 => Scanning File C:\WINDOWS\system32\atkdsoff.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkdson.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkdst.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKF12.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKF12.rc1
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKF16.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKF16.rc1
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgfoff.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgfon.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgft.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgtvoff.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgtvon.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkgtvt.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkid.ini
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKOGL.dll
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdCHS.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdCHT.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdENG.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdFRA.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdGER.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdJPN.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdKOR.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKOSDMini.DLL
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\atkosdRUS.rc0
Sun Mar 04 01:03:06 2007 => Scanning File C:\WINDOWS\system32\ATKOSDX.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atkrec.rc0
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atl.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\ATL70.DLL
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atl71.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atmadm.exe
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atmfd.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atmlib.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atmpvcno.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\atrace.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\attrib.exe
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\Audio3d.dll
Sun Mar 04 01:03:07 2007 => Scanning File C:\WINDOWS\system32\audiosrv.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\auditusr.exe
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\authz(2)(2).dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\authz.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\autochk.exe
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\autoconv.exe
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\autodisc.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\AUTOEXEC.NT
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\autofmt.exe
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\autolfn.exe
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\avicap.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\avicap32.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\avifil32.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\avifile.dll
Sun Mar 04 01:03:08 2007 => Scanning File C:\WINDOWS\system32\Aviprax.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\B7722F62.dat
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\basesrv.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\batmeter.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\batt.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bdaplgin.ax
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bidispl.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bios1.rom
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bios4.rom
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bitsprx2.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bitsprx3.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\blackbox.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\blastcln.exe
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bootcfg.exe
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bootok.exe
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bootvid.dll
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bootvrfy.exe
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\bopomofo.uce
Sun Mar 04 01:03:09 2007 => Scanning File C:\WINDOWS\system32\browselc.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\browser.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\browseui(2).dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\browseui.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\browsewm.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\bthci.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\bthprops.cpl
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\bthserv.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\btpanui.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\cabinet.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\cabview.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\Cachex.dll
Sun Mar 04 01:03:10 2007 => Scanning File C:\WINDOWS\system32\cacls.exe
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\calc.exe
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\camocx.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\capesnpn.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\cards.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\catsrv(2)(2).dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\catsrv.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\catsrvps.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\catsrvut(2)(2).dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\catsrvut.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\ccfgnt.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\cdfview.dll
Sun Mar 04 01:03:11 2007 => Scanning File C:\WINDOWS\system32\cdm.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cdmodem.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cdosys.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cdplayer.exe.manifest
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\certcli.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\certmgr.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\certmgr.msc
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cewmdm.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cfgbkend.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\cfgmgr32.dll
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\chajei.ime
Sun Mar 04 01:03:12 2007 => Scanning File C:\WINDOWS\system32\charmap.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\Chaînes.scf
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\chcp.com
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\chkdsk.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\chkntfs.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\ciadmin.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\ciadv.msc
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\cic.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\cidaemon.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\ciodm.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\cipher.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\cisvc.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\ckcnv.exe
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\class_ss.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\claud.ax
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\clb.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\clbcatex.dll
Sun Mar 04 01:03:13 2007 => Scanning File C:\WINDOWS\system32\clbcatq(2)(2).dll
Sun Mar 04 01:03:14 2007 => Scanning File C:\WINDOWS\system32\clbcatq.dll
Sun Mar 04 01:03:14 2007 => Scanning File C:\WINDOWS\system32\cleanmgr.exe
Sun Mar 04 01:03:14 2007 => Scanning File C:\WINDOWS\system32\CleanUp.exe
Sun Mar 04 01:03:14 2007 => Scanning File C:\WINDOWS\system32\cliconf.chm
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cliconfg.dll
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cliconfg.exe
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cliconfg.rll
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\clipbrd.exe
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\clipsrv.exe
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\clusapi.dll
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\clvsd.ax
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cmcfg32.dll
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cmd.exe
Sun Mar 04 01:03:15 2007 => Scanning File C:\WINDOWS\system32\cmdial32.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmdl32.exe
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\CMDLGFR.DLL
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmdlib.wsc
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\CmdLineExt.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmmgr32.hlp
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmmon32.exe
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmos.ram
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmpbk32.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmprops.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmsetACL.dll
Sun Mar 04 01:03:16 2007 =>
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
4 mars 2007 à 13:40
4 mars 2007 à 13:40
voici la suite, a priori je peux pas coller le rapport en entier....
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmsetACL.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmstp.exe
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmutil.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cnbjmon.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cnetcfg.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cnvfat.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\colbact(2)(2).dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\colbact.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\comaddin.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comcat.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comctl32.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\COMCTL32.OCA
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comctl32.ocx
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comdlg32.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\COMDLG32.OCA
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\COMDLG32.OCX
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comm.drv
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\command.com
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\commdlg.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comp.exe
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\compact.exe
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\compatUI.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\compmgmt.msc
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\compobj.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\compstui.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comrepl.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comres.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comsnap.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comsvcs(2)(2).dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comsvcs.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comuid.dll
Sun Mar 04 01:03:19 2007 => Scanning File C:\WINDOWS\system32\Config.MPF
Sun Mar 04 01:03:19 2007 => Scanning File C:\WINDOWS\system32\CONFIG.NT
Sun Mar 04 01:03:19 2007 => Scanning File C:\WINDOWS\system32\CONFIG.TMP
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\confmsp.dll
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\conime.exe
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\console.dll
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\control.exe
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\convert.exe
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\corpol.dll
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\country.sys
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\credui.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\crtdll.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\crypt32.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptdlg.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptdll.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptext.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptimg.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptnet.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptsvc.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptui.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cscdll.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cscript.exe
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cscui.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\csrsrv.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\csrss.exe
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\csseqchk.dll
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\ctfmon.exe
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\ctl3d32.dll
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\ctl3dv2.dll
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\ctype.nls
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\CUSBInst.exe
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\c_037.nls
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\c_10000.nls
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\c_10001.nls
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\c_10003.nls
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\c_10006.nls
Sun Mar 04 01:03:23 2007 => Scanning File C:\WINDOWS\system32\c_10007.nls
Sun Mar 04 01:03:23 2007 => Scanning File C:\WINDOWS\system32\c_10008.nls
Sun Mar 04 01:03:23 2007 => Scanning File C:\WINDOWS\system32\c_10010.nls
Sun Mar 04 01:03:23 2007 => Scanning File C:\WINDOWS\system32\c_10017.nls
Sun Mar 04 01:03:23 2007 => Scanning File C:\WINDOWS\system32\c_10029.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_10079.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_10081.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_10082.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_1026.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_1250.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_1251.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_1252.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1253.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1254.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1255.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1256.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1257.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1258.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1361.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20000.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20127.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20261.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20290.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20866.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20905.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20932.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20936.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20949.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_21027.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_21866.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_28591.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_28592.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_28593.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\C_28594.NLS
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\C_28595.NLS
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\C_28597.NLS
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_28598.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_28599.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_28603.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_28605.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_437.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_500.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_737.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_775.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_850.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_852.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_855.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_857.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_860.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_861.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_863.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_865.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_866.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_869.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_874.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_875.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_932.nls
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\c_936.nls
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\c_949.nls
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\c_950.nls
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\c_g18030.dll
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\c_is2022.dll
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\d3d8.dll
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\d3d8thk.dll
Sun Mar 04 01:03:30 2007 => Scanning File C:\WINDOWS\system32\d3d9.dll
Sun Mar 04 01:03:30 2007 => Scanning File C:\WINDOWS\system32\d3dim.dll
Sun Mar 04 01:03:30 2007 => Scanning File C:\WINDOWS\system32\d3dim700.dll
Sun Mar 04 01:03:30 2007 => Scanning File C:\WINDOWS\system32\d3dpmesh.dll
Sun Mar 04 01:03:31 2007 => Scanning File C:\WINDOWS\system32\d3dramp.dll
Sun Mar 04 01:03:31 2007 => Scanning File C:\WINDOWS\system32\d3drm.dll
Sun Mar 04 01:03:31 2007 => Scanning File C:\WINDOWS\system32\d3dx9_24.dll
Sun Mar 04 01:03:31 2007 => Scanning File C:\WINDOWS\system32\d3dx9_25.dll
Sun Mar 04 01:03:32 2007 => Scanning File C:\WINDOWS\system32\d3dx9_26.dll
Sun Mar 04 01:03:32 2007 => Scanning File C:\WINDOWS\system32\d3dx9_27.dll
Sun Mar 04 01:03:32 2007 => Scanning File C:\WINDOWS\system32\d3dx9_28.dll
Sun Mar 04 01:03:32 2007 => Scanning File C:\WINDOWS\system32\d3dx9_29.dll
Sun Mar 04 01:03:33 2007 => Scanning File C:\WINDOWS\system32\d3dx9_30.dll
Sun Mar 04 01:03:33 2007 => Scanning File C:\WINDOWS\system32\d3dxof.dll
Sun Mar 04 01:03:33 2007 => Scanning File C:\WINDOWS\system32\danim.dll
Sun Mar 04 01:03:33 2007 => Scanning File C:\WINDOWS\system32\dataclen.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\datime.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\davclnt.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\daxctle.ocx
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dayi.ime
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbgeng.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbghelp.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbmsadsn.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbmsrpcn.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbmsvinn.dLL
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbnetlib.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\dbnmpntw.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\Dcache.bin
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\dciman32.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\dcomcnfg.exe
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\DDAO36.DLL
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\ddeml.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\ddeshare.exe
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\ddraw.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\ddrawex.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\debug.exe
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\defrag.exe
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\desk.cpl
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\deskadp.dll
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\deskmon.dll
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\deskperf.dll
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\desktop.ini
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\devenum.dll
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\devmgmt.msc
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\devmgr.dll
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\dfrg.msc
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\dfrgfat.exe
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\dfrgntfs.exe
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dfrgres.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dfrgsnap.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dfrgui.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dfsshlex.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dgnet.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dgrpsetu.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dgsetup.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dhcpcsvc.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dhcpmon.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dhcpsapi.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\diactfrm.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\diantz.exe
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\digest.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\dimap.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\dinput.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\dinput8.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskcomp.com
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskcopy.com
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskcopy.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\DiskIO.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskmgmt.msc
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskpart.exe
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskperf.exe
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\dispex.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\DivX.dll
Sun Mar 04 01:03:39 2007 => Scanning File C:\WINDOWS\system32\DivXa32.acm
Sun Mar 04 01:03:39 2007 => Scanning File C:\WINDOWS\system32\DivXc32.dll
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXc32f.dll
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXCodecUpdateChecker.exe
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\divxdec.ax
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXG400.ax
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXMedia.ax
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXsm.exe
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\divxsm.tlb
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXWMPExtType.dll
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\divx_xx07.dll
Sun Mar 04 01:03:41 2007 => Scanning File C:\WINDOWS\system32\divx_xx0c.dll
Sun Mar 04 01:03:41 2007 => Scanning File C:\WINDOWS\system32\divx_xx11.dll
Sun Mar 04 01:03:41 2007 => Scanning File C:\WINDOWS\system32\dllhost.exe
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dllhst3g.exe
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dmadmin.exe
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dmband.dll
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dmcompos.dll
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dmconfig.dll
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dmdlgs.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmdskmgr.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmdskres.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmime.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmintf.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmloader.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmocx.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmremote.exe
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmscript.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmserver.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmstyle.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dmsynth.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dmusic.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dmutil.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dmview.ocx
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dnsapi.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dnsrslvr.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\docprop.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\docprop2.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\doskey.exe
Sun Mar 04 01:03:45 2007 => Scanning File C:\WINDOWS\system32\dosx.exe
Sun Mar 04 01:03:45 2007 => Scanning File C:\WINDOWS\system32\dpcdll.dll
Sun Mar 04 01:03:45 2007 => Scanning File C:\WINDOWS\system32\dpl100.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dplay.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dplaysvr.exe
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dplayx.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpmodemx.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnaddr.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnet.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnhpast.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnhupnp.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnlobby.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnmodem.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnsvr.exe
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnwsock.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpserial.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpu10.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpu11.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpufr.qm
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpuGUI10.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpuGUI11.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpus11.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpv11.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpvacm.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpvoice.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpvsetup.exe
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpvvox.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpwsock.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpwsockx.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\driverquery.exe
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\drmclien.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\drmstor.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\drmv2clt.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\drprov.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\drvqry.exe
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\drwatson.exe
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\drwtsn32.exe
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\ds16gt.dLL
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\ds32gt.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dsauth.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dsdmo.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dsdmoprp.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dskquota.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dskquoui.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dsm_fr.qm
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\DSndUp.exe
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsound.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsound.vxd
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsound3d.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsprop.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsprpres.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsquery.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dssec.dat
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dssec.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dssenh.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsuiext.dll
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dswave.dll
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dtu100.dll
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dtu_fr.qm
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dufs1.exe
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dumphive.exe
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dumprep.exe
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dunzip32.dll
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\duser.dll
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dvdplay.exe
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dvdupgrd.exe
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dwwin.exe
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dx7vb.dll
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dx8vb.dll
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dxdiag.exe
Sun Mar 04 01:03:53 2007 => Scanning File C:\WINDOWS\system32\dxdiagn.dll
Sun Mar 04 01:03:53 2007 => Scanning File C:\WINDOWS\system32\dxmasf.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\dxtmsft.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\dxtrans.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\edb500.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\edit.com
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\edit.hlp
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\edlin.exe
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\efsadu.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\ega.cpi
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\els.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\emptyregdb.dat
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\encapi.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\encdec.dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\EqnClass.Dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\ersvc.dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\es(2)(2).dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\es.dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\esent(2)(2).dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\esent.dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\esent97.dll
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\esentprf.dll
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\esentprf.hxx
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\esentprf.ini
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\esentutl.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eudcedit.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eula.txt
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\evcreate.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventcls.dll
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventcreate.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventlog.dll
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventquery.vbs
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventtriggers.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventvwr.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventvwr.msc
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\evtquery.vbs
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\evtrig.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\exe2bin.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\expand.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\expsrv.dll
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\extmgr.dll
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\extrac32.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\exts.dll
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\f3ahvoas.dll
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\fastopen.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\faultrep.dll
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\fc.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\fde.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\fdeploy.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\feclient.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\ffudf.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\filemgmt.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\find.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\findstr.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\finger.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\firewall.cpl
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\fixmapi.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\fldrclnr.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\fltlib.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\fltMc.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\FM20.DLL
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\FM20FRA.DLL
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fmifs.dll
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\FNTCACHE.DAT
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fontext.dll
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fontsub.dll
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fontview.exe
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\forcedos.exe
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\format.com
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\framebuf.dll
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\freecell.exe
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fsmgmt.msc
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fsquirt.exe
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fsusd.dll
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fsutil.exe
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\ftp.exe
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\ftsrch.dll
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\fwcfg.dll
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\g711codc.ax
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\gb2312.uce
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\gcdef.dll
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\gdi.exe
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\gdi32.dll
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\geo.nls
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\getmac.exe
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\getuname.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\glmf32.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\glu32.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpedit.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpedit.msc
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpkcsp.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpkrsrc.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpresult.exe
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gptext.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpupdate.exe
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\graftabl.com
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\graphics.com
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\graphics.pro
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\grpconv.exe
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\GWFSPidGen.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\h323.tsp
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\h323log.txt [**]
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\h323msp.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\hal.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\hccoin.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\HdAProp.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\HdAShCut.exe
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\HdAudRes.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\hdwwiz.cpl
Sun Mar 04 01:04:03 2007 => Scanning File C:\WINDOWS\system32\help.exe
Sun Mar 04 01:04:03 2007 => Scanning File C:\WINDOWS\system32\Help.ico
Sun Mar 04 01:04:03 2007 => Scanning File C:\WINDOWS\system32\HfxClasses5.dll
Sun Mar 04 01:04:03 2007 => Scanning File C:\WINDOWS\system32\HfxGUI5.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hhctrl.ocx
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hhsetup.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hid.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hidphone.tsp
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\himem.sys
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\history.txt
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hlink.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hnetcfg.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hnetmon.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hnetwiz.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\homepage.inf
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hostname.exe
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\hotplug.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\html.iec
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\httpapi.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\htui.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iac25_32.ax
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iasacct.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iasads.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iashlpr.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iasnap.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iaspolcy.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iasrad.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iasrecst.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\iassam.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\iassdo.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\iassvcs.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icaapi.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\iccvid.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icfgnt5.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icm32.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icmp.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icmui.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icwdial.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icwphbk.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\ideograf.uce
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\idq.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\ie4uinit.exe
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\ieakeng.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\ieaksie.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\ieakui.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\ieencode.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\iepeers.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\iernonce.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\iesetup.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\ieuinit.inf
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\iexpress.exe
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\ifmon.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\ifsutil.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\igmpagnt.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\iissuba.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\ils.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\imaadp32.acm
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\imagehlp.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\imagX7.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imagXpr7.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imagXR7.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imagXRA7.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imapi.exe
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imekr61.ime
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imeshare.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imgutil.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imjp81.ime
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\imjp81k.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\imm32.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\index.dat
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetcfg.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetcomm.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetcpl.cpl
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetcplc.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\INETFR.DLL
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetmib1.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetpp.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\inetppui.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\inetres.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\infosoft.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\initpki.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\INKED.DLL
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\input.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\inseng.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\instcat.sql
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\INSTMON.EXE
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\intl.cpl
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\iologmsg.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipconf.tsp
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipconfig.exe
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\iphlpapi.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipmontr.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipnathlp.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ippromon.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\iprop.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\iprtprio.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\iprtrmgr.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipsec6.exe
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipsecsnp.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipsecsvc.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipsink.ax
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipsmsnap.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipv6.exe
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipv6mon.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxmontr.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxpromn.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxrip.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxroute.exe
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxrtmgr.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxsap.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxwan.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir32_32.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir41_32.ax
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir41_qc.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir41_qcx.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir50_32.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir50_qc.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir50_qcx.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\irclass.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\irprops.cpl
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\isign32.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\islzma.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\isrdbg32.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\itircl.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\itss.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\iuengine.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\ivfsrc.ax
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\ixsso.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\iyuv_32.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\java.exe
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\javaw.exe
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jet500.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgaw400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgdw400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgmd400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgpl400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgsd400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgsh400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jjgfst1.exe
Sun Mar 04 01:04:17 2007 => File C:\WINDOWS\system32\jjgfst1.exe tagged as not-a-virus:AdWare.Win32.BHO.av. No Action Taken.
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jobexec.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\joy.cpl
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jpicpl32.cpl
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jscript.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jsefusf.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jsefusf.exe
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jsfr.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jsproxy.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jupdate-1.5.0_06-b05.log
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kanji_1.uce
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kanji_2.uce
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kb16.com
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd101.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd101a.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd101b.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd101c.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd103.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd106.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd106n.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbdal.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdax2.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdaze.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdazel.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdbe.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdbene.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdblr.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdbr.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdbu.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdca.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdcan.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdcr.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdcz.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdcz1.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdcz2.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdda.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbddv.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdes.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdest.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdfc.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdfi.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdfi1.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdfo.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdfr.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdgae.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdgkl.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdgr.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdgr1.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhe.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhe220.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhe319.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhela2.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhela3.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhept.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhu.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhu1.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdibm02.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdic.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdinbe1.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdinben.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdinmal.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdir.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdit.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdit142.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdjpn.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdkaz.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdkor.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdkyr.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdla.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlk41a.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlk41j.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlt.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlt1.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlv.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlv1.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdmac.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdmaori.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdmlt47.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdmlt48.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdmon.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdne.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdnec.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdnec95.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdnecat.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdnecnt.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdno.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdno1.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdpl.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdpl1.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdpo.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdro.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdru.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdru1.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsf.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsg.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsl.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsl1.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsmsfi.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsmsno.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsp.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsw.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdtat.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdtuf.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdtuq.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbduk.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdukx.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdur.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdus.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdusl.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdusr.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdusx.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbduzb.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdycc.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdycl.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kd1394.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kdcom.dll
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\kerberos(2)(2).dll
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\kerberos.dll
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\kernel32.dll
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\key01.sys
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\keyboard.drv
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\keyboard.sys
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\keymgr.dll
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\keystone.exe
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\kmddsp.tsp
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\korean.uce
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\krnl386.exe
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\ksc.nls
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\ksproxy.ax
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\kstvtune.ax
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\ksuser.dll
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\kswdmcap.ax
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\ksxbar.ax
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\kwbuf.ini
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\l3codeca.acm
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\l3codecp.acm
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\l3codecx.ax
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\label.exe
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\langserv.dll
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\langwrbk.dll
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\lanman.drv
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\laprxy.dll
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\LegitCheckControl.DLL
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\LEX2KUSB.DLL
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\LEXBCE.DLL
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\LEXBCES.EXE
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\lexlmpm.dll
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\LEXP2P32.DLL
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\lexping.exe
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\LEXPPS.EXE~
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\lfbmp13n.dll
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\lfcmp13n.dll
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\lffax13n.dll
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\lfgif13n.dll
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\LFJ2K13n.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\Lfpct13n.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\lftga13n.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\lftif13n.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\Lfwmf13n.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\lhacm.acm
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\libdivx.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\libmmd.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\licdll.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\licmgr10.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\licwmi.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\lights.exe
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\linkinfo(2).dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\linkinfo.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\lmhsvc.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\lmrt.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\lnkstub.exe
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\loadfix.com
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\loadperf.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\locale.nls
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\localsec.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\localspl.dll
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\localui.dll
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\locator.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\lodctr.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logagent.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\loghours.dll
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\login.cmd
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logman.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logoff.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logon.scr
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logonui.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logonui.exe.manifest
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\lpk.dll
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\lpq.exe
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lpr.exe
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lprhelp.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lprmonui.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lsanp.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lsasrv.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\LTCLR13n.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\ltdis13n.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\ltefx13n.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\ltfil13n.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\ltimg13n.dll
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\ltkrn13n.dll
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lusrmgr.msc
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxax.loc
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxcfg.exe
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxcomm.dll
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxcu.dll
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxcur.dll
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxdrv.cnt
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxdrv.hlp
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxgf.dll
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxih.exe
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxjswr.dll
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxlcnp.dll
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxlcnt.dll
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxlpa.cnt
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxlpa.hlp
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxlsnt.exe
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lxaxma.cnt
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lxaxpmnt.dll
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lxaxpwr.dll
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lxaxutil.dll
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\LXSMUNIN.DLL
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\LXSMUNIN.EXE
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\LXSUPMON.DLL
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\LXSUPMON.EXE
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\LXSUPMON.HLP
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lz32.dll
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lzexpand.dll
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\l_except.nls
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\l_intl.nls
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\magnify.exe
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\mag_hook.dll
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\main.cpl
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\makecab.exe
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\MAPI.DLL
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\mapi32.dll
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\MAPISRVR.EXE
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\mapistub.dll
Sun Mar 04 01:04:32 2007 => Scanning
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmsetACL.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmstp.exe
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cmutil.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cnbjmon.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cnetcfg.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\cnvfat.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\colbact(2)(2).dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\colbact.dll
Sun Mar 04 01:03:16 2007 => Scanning File C:\WINDOWS\system32\comaddin.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comcat.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comctl32.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\COMCTL32.OCA
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comctl32.ocx
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comdlg32.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\COMDLG32.OCA
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\COMDLG32.OCX
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comm.drv
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\command.com
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\commdlg.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\comp.exe
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\compact.exe
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\compatUI.dll
Sun Mar 04 01:03:17 2007 => Scanning File C:\WINDOWS\system32\compmgmt.msc
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\compobj.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\compstui.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comrepl.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comres.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comsnap.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comsvcs(2)(2).dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comsvcs.dll
Sun Mar 04 01:03:18 2007 => Scanning File C:\WINDOWS\system32\comuid.dll
Sun Mar 04 01:03:19 2007 => Scanning File C:\WINDOWS\system32\Config.MPF
Sun Mar 04 01:03:19 2007 => Scanning File C:\WINDOWS\system32\CONFIG.NT
Sun Mar 04 01:03:19 2007 => Scanning File C:\WINDOWS\system32\CONFIG.TMP
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\confmsp.dll
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\conime.exe
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\console.dll
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\control.exe
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\convert.exe
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\corpol.dll
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\country.sys
Sun Mar 04 01:03:20 2007 => Scanning File C:\WINDOWS\system32\credui.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\crtdll.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\crypt32.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptdlg.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptdll.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptext.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptimg.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptnet.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptsvc.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cryptui.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cscdll.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cscript.exe
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\cscui.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\csrsrv.dll
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\csrss.exe
Sun Mar 04 01:03:21 2007 => Scanning File C:\WINDOWS\system32\csseqchk.dll
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\ctfmon.exe
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\ctl3d32.dll
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\ctl3dv2.dll
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\ctype.nls
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\CUSBInst.exe
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\c_037.nls
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\c_10000.nls
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\c_10001.nls
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\c_10003.nls
Sun Mar 04 01:03:22 2007 => Scanning File C:\WINDOWS\system32\c_10006.nls
Sun Mar 04 01:03:23 2007 => Scanning File C:\WINDOWS\system32\c_10007.nls
Sun Mar 04 01:03:23 2007 => Scanning File C:\WINDOWS\system32\c_10008.nls
Sun Mar 04 01:03:23 2007 => Scanning File C:\WINDOWS\system32\c_10010.nls
Sun Mar 04 01:03:23 2007 => Scanning File C:\WINDOWS\system32\c_10017.nls
Sun Mar 04 01:03:23 2007 => Scanning File C:\WINDOWS\system32\c_10029.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_10079.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_10081.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_10082.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_1026.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_1250.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_1251.nls
Sun Mar 04 01:03:24 2007 => Scanning File C:\WINDOWS\system32\c_1252.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1253.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1254.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1255.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1256.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1257.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1258.nls
Sun Mar 04 01:03:25 2007 => Scanning File C:\WINDOWS\system32\c_1361.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20000.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20127.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20261.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20290.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20866.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20905.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20932.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20936.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_20949.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_21027.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_21866.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_28591.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_28592.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_28593.nls
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\C_28594.NLS
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\C_28595.NLS
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\C_28597.NLS
Sun Mar 04 01:03:26 2007 => Scanning File C:\WINDOWS\system32\c_28598.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_28599.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_28603.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_28605.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_437.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_500.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_737.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_775.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_850.nls
Sun Mar 04 01:03:27 2007 => Scanning File C:\WINDOWS\system32\c_852.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_855.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_857.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_860.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_861.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_863.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_865.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_866.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_869.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_874.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_875.nls
Sun Mar 04 01:03:28 2007 => Scanning File C:\WINDOWS\system32\c_932.nls
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\c_936.nls
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\c_949.nls
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\c_950.nls
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\c_g18030.dll
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\c_is2022.dll
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\d3d8.dll
Sun Mar 04 01:03:29 2007 => Scanning File C:\WINDOWS\system32\d3d8thk.dll
Sun Mar 04 01:03:30 2007 => Scanning File C:\WINDOWS\system32\d3d9.dll
Sun Mar 04 01:03:30 2007 => Scanning File C:\WINDOWS\system32\d3dim.dll
Sun Mar 04 01:03:30 2007 => Scanning File C:\WINDOWS\system32\d3dim700.dll
Sun Mar 04 01:03:30 2007 => Scanning File C:\WINDOWS\system32\d3dpmesh.dll
Sun Mar 04 01:03:31 2007 => Scanning File C:\WINDOWS\system32\d3dramp.dll
Sun Mar 04 01:03:31 2007 => Scanning File C:\WINDOWS\system32\d3drm.dll
Sun Mar 04 01:03:31 2007 => Scanning File C:\WINDOWS\system32\d3dx9_24.dll
Sun Mar 04 01:03:31 2007 => Scanning File C:\WINDOWS\system32\d3dx9_25.dll
Sun Mar 04 01:03:32 2007 => Scanning File C:\WINDOWS\system32\d3dx9_26.dll
Sun Mar 04 01:03:32 2007 => Scanning File C:\WINDOWS\system32\d3dx9_27.dll
Sun Mar 04 01:03:32 2007 => Scanning File C:\WINDOWS\system32\d3dx9_28.dll
Sun Mar 04 01:03:32 2007 => Scanning File C:\WINDOWS\system32\d3dx9_29.dll
Sun Mar 04 01:03:33 2007 => Scanning File C:\WINDOWS\system32\d3dx9_30.dll
Sun Mar 04 01:03:33 2007 => Scanning File C:\WINDOWS\system32\d3dxof.dll
Sun Mar 04 01:03:33 2007 => Scanning File C:\WINDOWS\system32\danim.dll
Sun Mar 04 01:03:33 2007 => Scanning File C:\WINDOWS\system32\dataclen.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\datime.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\davclnt.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\daxctle.ocx
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dayi.ime
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbgeng.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbghelp.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbmsadsn.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbmsrpcn.dll
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbmsvinn.dLL
Sun Mar 04 01:03:34 2007 => Scanning File C:\WINDOWS\system32\dbnetlib.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\dbnmpntw.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\Dcache.bin
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\dciman32.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\dcomcnfg.exe
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\DDAO36.DLL
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\ddeml.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\ddeshare.exe
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\ddraw.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\ddrawex.dll
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\debug.exe
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\defrag.exe
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\desk.cpl
Sun Mar 04 01:03:35 2007 => Scanning File C:\WINDOWS\system32\deskadp.dll
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\deskmon.dll
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\deskperf.dll
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\desktop.ini
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\devenum.dll
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\devmgmt.msc
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\devmgr.dll
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\dfrg.msc
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\dfrgfat.exe
Sun Mar 04 01:03:36 2007 => Scanning File C:\WINDOWS\system32\dfrgntfs.exe
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dfrgres.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dfrgsnap.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dfrgui.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dfsshlex.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dgnet.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dgrpsetu.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dgsetup.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dhcpcsvc.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dhcpmon.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\dhcpsapi.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\diactfrm.dll
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\diantz.exe
Sun Mar 04 01:03:37 2007 => Scanning File C:\WINDOWS\system32\digest.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\dimap.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\dinput.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\dinput8.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskcomp.com
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskcopy.com
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskcopy.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\DiskIO.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskmgmt.msc
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskpart.exe
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\diskperf.exe
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\dispex.dll
Sun Mar 04 01:03:38 2007 => Scanning File C:\WINDOWS\system32\DivX.dll
Sun Mar 04 01:03:39 2007 => Scanning File C:\WINDOWS\system32\DivXa32.acm
Sun Mar 04 01:03:39 2007 => Scanning File C:\WINDOWS\system32\DivXc32.dll
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXc32f.dll
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXCodecUpdateChecker.exe
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\divxdec.ax
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXG400.ax
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXMedia.ax
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXsm.exe
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\divxsm.tlb
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\DivXWMPExtType.dll
Sun Mar 04 01:03:40 2007 => Scanning File C:\WINDOWS\system32\divx_xx07.dll
Sun Mar 04 01:03:41 2007 => Scanning File C:\WINDOWS\system32\divx_xx0c.dll
Sun Mar 04 01:03:41 2007 => Scanning File C:\WINDOWS\system32\divx_xx11.dll
Sun Mar 04 01:03:41 2007 => Scanning File C:\WINDOWS\system32\dllhost.exe
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dllhst3g.exe
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dmadmin.exe
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dmband.dll
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dmcompos.dll
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dmconfig.dll
Sun Mar 04 01:03:42 2007 => Scanning File C:\WINDOWS\system32\dmdlgs.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmdskmgr.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmdskres.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmime.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmintf.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmloader.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmocx.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmremote.exe
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmscript.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmserver.dll
Sun Mar 04 01:03:43 2007 => Scanning File C:\WINDOWS\system32\dmstyle.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dmsynth.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dmusic.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dmutil.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dmview.ocx
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dnsapi.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\dnsrslvr.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\docprop.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\docprop2.dll
Sun Mar 04 01:03:44 2007 => Scanning File C:\WINDOWS\system32\doskey.exe
Sun Mar 04 01:03:45 2007 => Scanning File C:\WINDOWS\system32\dosx.exe
Sun Mar 04 01:03:45 2007 => Scanning File C:\WINDOWS\system32\dpcdll.dll
Sun Mar 04 01:03:45 2007 => Scanning File C:\WINDOWS\system32\dpl100.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dplay.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dplaysvr.exe
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dplayx.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpmodemx.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnaddr.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnet.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnhpast.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnhupnp.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnlobby.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnmodem.dll
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnsvr.exe
Sun Mar 04 01:03:46 2007 => Scanning File C:\WINDOWS\system32\dpnwsock.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpserial.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpu10.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpu11.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpufr.qm
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpuGUI10.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpuGUI11.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpus11.dll
Sun Mar 04 01:03:47 2007 => Scanning File C:\WINDOWS\system32\dpv11.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpvacm.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpvoice.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpvsetup.exe
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpvvox.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpwsock.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\dpwsockx.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\driverquery.exe
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\drmclien.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\drmstor.dll
Sun Mar 04 01:03:48 2007 => Scanning File C:\WINDOWS\system32\drmv2clt.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\drprov.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\drvqry.exe
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\drwatson.exe
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\drwtsn32.exe
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\ds16gt.dLL
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\ds32gt.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dsauth.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dsdmo.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dsdmoprp.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dskquota.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dskquoui.dll
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\dsm_fr.qm
Sun Mar 04 01:03:49 2007 => Scanning File C:\WINDOWS\system32\DSndUp.exe
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsound.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsound.vxd
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsound3d.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsprop.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsprpres.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsquery.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dssec.dat
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dssec.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dssenh.dll
Sun Mar 04 01:03:50 2007 => Scanning File C:\WINDOWS\system32\dsuiext.dll
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dswave.dll
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dtu100.dll
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dtu_fr.qm
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dufs1.exe
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dumphive.exe
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dumprep.exe
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\dunzip32.dll
Sun Mar 04 01:03:51 2007 => Scanning File C:\WINDOWS\system32\duser.dll
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dvdplay.exe
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dvdupgrd.exe
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dwwin.exe
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dx7vb.dll
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dx8vb.dll
Sun Mar 04 01:03:52 2007 => Scanning File C:\WINDOWS\system32\dxdiag.exe
Sun Mar 04 01:03:53 2007 => Scanning File C:\WINDOWS\system32\dxdiagn.dll
Sun Mar 04 01:03:53 2007 => Scanning File C:\WINDOWS\system32\dxmasf.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\dxtmsft.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\dxtrans.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\edb500.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\edit.com
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\edit.hlp
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\edlin.exe
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\efsadu.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\ega.cpi
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\els.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\emptyregdb.dat
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\encapi.dll
Sun Mar 04 01:03:54 2007 => Scanning File C:\WINDOWS\system32\encdec.dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\EqnClass.Dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\ersvc.dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\es(2)(2).dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\es.dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\esent(2)(2).dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\esent.dll
Sun Mar 04 01:03:55 2007 => Scanning File C:\WINDOWS\system32\esent97.dll
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\esentprf.dll
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\esentprf.hxx
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\esentprf.ini
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\esentutl.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eudcedit.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eula.txt
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\evcreate.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventcls.dll
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventcreate.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventlog.dll
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventquery.vbs
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventtriggers.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventvwr.exe
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\eventvwr.msc
Sun Mar 04 01:03:56 2007 => Scanning File C:\WINDOWS\system32\evtquery.vbs
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\evtrig.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\exe2bin.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\expand.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\expsrv.dll
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\extmgr.dll
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\extrac32.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\exts.dll
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\f3ahvoas.dll
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\fastopen.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\faultrep.dll
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\fc.exe
Sun Mar 04 01:03:57 2007 => Scanning File C:\WINDOWS\system32\fde.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\fdeploy.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\feclient.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\ffudf.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\filemgmt.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\find.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\findstr.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\finger.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\firewall.cpl
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\fixmapi.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\fldrclnr.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\fltlib.dll
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\fltMc.exe
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\FM20.DLL
Sun Mar 04 01:03:58 2007 => Scanning File C:\WINDOWS\system32\FM20FRA.DLL
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fmifs.dll
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\FNTCACHE.DAT
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fontext.dll
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fontsub.dll
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fontview.exe
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\forcedos.exe
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\format.com
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\framebuf.dll
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\freecell.exe
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fsmgmt.msc
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fsquirt.exe
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fsusd.dll
Sun Mar 04 01:03:59 2007 => Scanning File C:\WINDOWS\system32\fsutil.exe
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\ftp.exe
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\ftsrch.dll
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\fwcfg.dll
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\g711codc.ax
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\gb2312.uce
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\gcdef.dll
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\gdi.exe
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\gdi32.dll
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\geo.nls
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\getmac.exe
Sun Mar 04 01:04:00 2007 => Scanning File C:\WINDOWS\system32\getuname.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\glmf32.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\glu32.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpedit.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpedit.msc
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpkcsp.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpkrsrc.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpresult.exe
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gptext.dll
Sun Mar 04 01:04:01 2007 => Scanning File C:\WINDOWS\system32\gpupdate.exe
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\graftabl.com
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\graphics.com
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\graphics.pro
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\grpconv.exe
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\GWFSPidGen.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\h323.tsp
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\h323log.txt [**]
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\h323msp.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\hal.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\hccoin.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\HdAProp.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\HdAShCut.exe
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\HdAudRes.dll
Sun Mar 04 01:04:02 2007 => Scanning File C:\WINDOWS\system32\hdwwiz.cpl
Sun Mar 04 01:04:03 2007 => Scanning File C:\WINDOWS\system32\help.exe
Sun Mar 04 01:04:03 2007 => Scanning File C:\WINDOWS\system32\Help.ico
Sun Mar 04 01:04:03 2007 => Scanning File C:\WINDOWS\system32\HfxClasses5.dll
Sun Mar 04 01:04:03 2007 => Scanning File C:\WINDOWS\system32\HfxGUI5.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hhctrl.ocx
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hhsetup.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hid.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hidphone.tsp
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\himem.sys
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\history.txt
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hlink.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hnetcfg.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hnetmon.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hnetwiz.dll
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\homepage.inf
Sun Mar 04 01:04:04 2007 => Scanning File C:\WINDOWS\system32\hostname.exe
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\hotplug.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\html.iec
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\httpapi.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\htui.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iac25_32.ax
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iasacct.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iasads.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iashlpr.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iasnap.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iaspolcy.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iasrad.dll
Sun Mar 04 01:04:05 2007 => Scanning File C:\WINDOWS\system32\iasrecst.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\iassam.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\iassdo.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\iassvcs.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icaapi.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\iccvid.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icfgnt5.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icm32.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icmp.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icmui.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icwdial.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\icwphbk.dll
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\ideograf.uce
Sun Mar 04 01:04:06 2007 => Scanning File C:\WINDOWS\system32\idq.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\ie4uinit.exe
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\ieakeng.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\ieaksie.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\ieakui.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\ieencode.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\iepeers.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\iernonce.dll
Sun Mar 04 01:04:07 2007 => Scanning File C:\WINDOWS\system32\iesetup.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\ieuinit.inf
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\iexpress.exe
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\ifmon.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\ifsutil.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\igmpagnt.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\iissuba.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\ils.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\imaadp32.acm
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\imagehlp.dll
Sun Mar 04 01:04:08 2007 => Scanning File C:\WINDOWS\system32\imagX7.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imagXpr7.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imagXR7.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imagXRA7.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imapi.exe
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imekr61.ime
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imeshare.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imgutil.dll
Sun Mar 04 01:04:09 2007 => Scanning File C:\WINDOWS\system32\imjp81.ime
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\imjp81k.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\imm32.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\index.dat
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetcfg.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetcomm.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetcpl.cpl
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetcplc.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\INETFR.DLL
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetmib1.dll
Sun Mar 04 01:04:10 2007 => Scanning File C:\WINDOWS\system32\inetpp.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\inetppui.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\inetres.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\infosoft.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\initpki.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\INKED.DLL
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\input.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\inseng.dll
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\instcat.sql
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\INSTMON.EXE
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\intl.cpl
Sun Mar 04 01:04:11 2007 => Scanning File C:\WINDOWS\system32\iologmsg.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipconf.tsp
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipconfig.exe
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\iphlpapi.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipmontr.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipnathlp.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ippromon.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\iprop.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\iprtprio.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\iprtrmgr.dll
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipsec6.exe
Sun Mar 04 01:04:12 2007 => Scanning File C:\WINDOWS\system32\ipsecsnp.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipsecsvc.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipsink.ax
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipsmsnap.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipv6.exe
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipv6mon.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxmontr.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxpromn.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxrip.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxroute.exe
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxrtmgr.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxsap.dll
Sun Mar 04 01:04:13 2007 => Scanning File C:\WINDOWS\system32\ipxwan.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir32_32.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir41_32.ax
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir41_qc.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir41_qcx.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir50_32.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir50_qc.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\ir50_qcx.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\irclass.dll
Sun Mar 04 01:04:14 2007 => Scanning File C:\WINDOWS\system32\irprops.cpl
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\isign32.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\islzma.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\isrdbg32.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\itircl.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\itss.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\iuengine.dll
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\ivfsrc.ax
Sun Mar 04 01:04:15 2007 => Scanning File C:\WINDOWS\system32\ixsso.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\iyuv_32.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\java.exe
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\javaw.exe
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jet500.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgaw400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgdw400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgmd400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgpl400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgsd400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jgsh400.dll
Sun Mar 04 01:04:16 2007 => Scanning File C:\WINDOWS\system32\jjgfst1.exe
Sun Mar 04 01:04:17 2007 => File C:\WINDOWS\system32\jjgfst1.exe tagged as not-a-virus:AdWare.Win32.BHO.av. No Action Taken.
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jobexec.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\joy.cpl
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jpicpl32.cpl
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jscript.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jsefusf.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jsefusf.exe
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jsfr.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jsproxy.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\jupdate-1.5.0_06-b05.log
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kanji_1.uce
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kanji_2.uce
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kb16.com
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd101.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd101a.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd101b.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd101c.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd103.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd106.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbd106n.dll
Sun Mar 04 01:04:17 2007 => Scanning File C:\WINDOWS\system32\kbdal.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdax2.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdaze.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdazel.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdbe.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdbene.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdblr.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdbr.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdbu.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdca.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdcan.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdcr.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdcz.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdcz1.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdcz2.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdda.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbddv.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdes.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdest.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdfc.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdfi.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdfi1.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdfo.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdfr.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdgae.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdgkl.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdgr.dll
Sun Mar 04 01:04:18 2007 => Scanning File C:\WINDOWS\system32\kbdgr1.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhe.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhe220.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhe319.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhela2.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhela3.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhept.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhu.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdhu1.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdibm02.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdic.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdinbe1.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdinben.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdinmal.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdir.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdit.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdit142.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdjpn.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdkaz.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdkor.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdkyr.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdla.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlk41a.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlk41j.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlt.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlt1.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlv.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdlv1.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdmac.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdmaori.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdmlt47.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdmlt48.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdmon.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdne.dll
Sun Mar 04 01:04:19 2007 => Scanning File C:\WINDOWS\system32\kbdnec.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdnec95.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdnecat.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdnecnt.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdno.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdno1.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdpl.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdpl1.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdpo.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdro.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdru.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdru1.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsf.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsg.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsl.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsl1.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsmsfi.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsmsno.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsp.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdsw.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdtat.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdtuf.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdtuq.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbduk.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdukx.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdur.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdus.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdusl.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdusr.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdusx.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbduzb.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdycc.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kbdycl.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kd1394.dll
Sun Mar 04 01:04:20 2007 => Scanning File C:\WINDOWS\system32\kdcom.dll
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\kerberos(2)(2).dll
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\kerberos.dll
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\kernel32.dll
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\key01.sys
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\keyboard.drv
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\keyboard.sys
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\keymgr.dll
Sun Mar 04 01:04:21 2007 => Scanning File C:\WINDOWS\system32\keystone.exe
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\kmddsp.tsp
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\korean.uce
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\krnl386.exe
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\ksc.nls
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\ksproxy.ax
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\kstvtune.ax
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\ksuser.dll
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\kswdmcap.ax
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\ksxbar.ax
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\kwbuf.ini
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\l3codeca.acm
Sun Mar 04 01:04:22 2007 => Scanning File C:\WINDOWS\system32\l3codecp.acm
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\l3codecx.ax
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\label.exe
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\langserv.dll
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\langwrbk.dll
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\lanman.drv
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\laprxy.dll
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\LegitCheckControl.DLL
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\LEX2KUSB.DLL
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\LEXBCE.DLL
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\LEXBCES.EXE
Sun Mar 04 01:04:23 2007 => Scanning File C:\WINDOWS\system32\lexlmpm.dll
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\LEXP2P32.DLL
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\lexping.exe
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\LEXPPS.EXE~
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\lfbmp13n.dll
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\lfcmp13n.dll
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\lffax13n.dll
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\lfgif13n.dll
Sun Mar 04 01:04:24 2007 => Scanning File C:\WINDOWS\system32\LFJ2K13n.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\Lfpct13n.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\lftga13n.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\lftif13n.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\Lfwmf13n.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\lhacm.acm
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\libdivx.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\libmmd.dll
Sun Mar 04 01:04:25 2007 => Scanning File C:\WINDOWS\system32\licdll.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\licmgr10.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\licwmi.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\lights.exe
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\linkinfo(2).dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\linkinfo.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\lmhsvc.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\lmrt.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\lnkstub.exe
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\loadfix.com
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\loadperf.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\locale.nls
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\localsec.dll
Sun Mar 04 01:04:26 2007 => Scanning File C:\WINDOWS\system32\localspl.dll
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\localui.dll
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\locator.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\lodctr.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logagent.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\loghours.dll
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\login.cmd
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logman.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logoff.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logon.scr
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logonui.exe
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\logonui.exe.manifest
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\lpk.dll
Sun Mar 04 01:04:27 2007 => Scanning File C:\WINDOWS\system32\lpq.exe
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lpr.exe
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lprhelp.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lprmonui.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lsanp.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lsasrv.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\lsass.exe
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\LTCLR13n.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\ltdis13n.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\ltefx13n.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\ltfil13n.dll
Sun Mar 04 01:04:28 2007 => Scanning File C:\WINDOWS\system32\ltimg13n.dll
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\ltkrn13n.dll
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lusrmgr.msc
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxax.loc
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxcfg.exe
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxcomm.dll
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxcu.dll
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxcur.dll
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxdrv.cnt
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxdrv.hlp
Sun Mar 04 01:04:29 2007 => Scanning File C:\WINDOWS\system32\lxaxgf.dll
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxih.exe
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxjswr.dll
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxlcnp.dll
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxlcnt.dll
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxlpa.cnt
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxlpa.hlp
Sun Mar 04 01:04:30 2007 => Scanning File C:\WINDOWS\system32\lxaxlsnt.exe
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lxaxma.cnt
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lxaxpmnt.dll
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lxaxpwr.dll
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lxaxutil.dll
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\LXSMUNIN.DLL
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\LXSMUNIN.EXE
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\LXSUPMON.DLL
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\LXSUPMON.EXE
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\LXSUPMON.HLP
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lz32.dll
Sun Mar 04 01:04:31 2007 => Scanning File C:\WINDOWS\system32\lzexpand.dll
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\l_except.nls
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\l_intl.nls
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\magnify.exe
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\mag_hook.dll
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\main.cpl
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\makecab.exe
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\MAPI.DLL
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\mapi32.dll
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\MAPISRVR.EXE
Sun Mar 04 01:04:32 2007 => Scanning File C:\WINDOWS\system32\mapistub.dll
Sun Mar 04 01:04:32 2007 => Scanning
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
4 mars 2007 à 13:44
4 mars 2007 à 13:44
Voici la fin du rapport. Il y y aurait pas autre solution pour t'envoyer le rapport en entier car sinon cela va me prendre un certain temps.
Sun Mar 04 12:47:18 2007 => ***** Checking for specific ITW Viruses *****
Sun Mar 04 12:47:18 2007 => Checking for Welchia Virus...
Sun Mar 04 12:47:18 2007 => Checking for LovGate Virus...
Sun Mar 04 12:47:18 2007 => Checking for CodeRed Virus...
Sun Mar 04 12:47:18 2007 => Checking for OpaServ Virus...
Sun Mar 04 12:47:18 2007 => Checking for Sobig.e Virus...
Sun Mar 04 12:47:18 2007 => Checking for Winupie Virus...
Sun Mar 04 12:47:18 2007 => Checking for Swen Virus...
Sun Mar 04 12:47:18 2007 => Checking for JS.Fortnight Virus...
Sun Mar 04 12:47:18 2007 => Checking for Novarg Virus...
Sun Mar 04 12:47:18 2007 => Checking for Pagabot Virus...
Sun Mar 04 12:47:19 2007 => Checking for Parite.b Virus...
Sun Mar 04 12:47:19 2007 => Checking for Parite.a Virus...
Sun Mar 04 12:47:19 2007 => ***** Scanning complete. *****
Sun Mar 04 12:47:19 2007 => Total Number of Files Scanned: 49523
Sun Mar 04 12:47:19 2007 => Total Number of Virus(es) Found: 14
Sun Mar 04 12:47:19 2007 => Total Number of Disinfected Files: 0
Sun Mar 04 12:47:19 2007 => Total Number of Files Renamed: 0
Sun Mar 04 12:47:19 2007 => Total Number of Deleted Files: 0
Sun Mar 04 12:47:19 2007 => Total Number of Errors: 13
Sun Mar 04 12:47:19 2007 => Time Elapsed: 01:11:32
Sun Mar 04 12:47:20 2007 => Virus Database Date: 2007/02/23
Sun Mar 04 12:47:20 2007 => Virus Database Count: 272614
Sun Mar 04 12:47:20 2007 => Scan Completed.
Sun Mar 04 12:47:18 2007 => ***** Checking for specific ITW Viruses *****
Sun Mar 04 12:47:18 2007 => Checking for Welchia Virus...
Sun Mar 04 12:47:18 2007 => Checking for LovGate Virus...
Sun Mar 04 12:47:18 2007 => Checking for CodeRed Virus...
Sun Mar 04 12:47:18 2007 => Checking for OpaServ Virus...
Sun Mar 04 12:47:18 2007 => Checking for Sobig.e Virus...
Sun Mar 04 12:47:18 2007 => Checking for Winupie Virus...
Sun Mar 04 12:47:18 2007 => Checking for Swen Virus...
Sun Mar 04 12:47:18 2007 => Checking for JS.Fortnight Virus...
Sun Mar 04 12:47:18 2007 => Checking for Novarg Virus...
Sun Mar 04 12:47:18 2007 => Checking for Pagabot Virus...
Sun Mar 04 12:47:19 2007 => Checking for Parite.b Virus...
Sun Mar 04 12:47:19 2007 => Checking for Parite.a Virus...
Sun Mar 04 12:47:19 2007 => ***** Scanning complete. *****
Sun Mar 04 12:47:19 2007 => Total Number of Files Scanned: 49523
Sun Mar 04 12:47:19 2007 => Total Number of Virus(es) Found: 14
Sun Mar 04 12:47:19 2007 => Total Number of Disinfected Files: 0
Sun Mar 04 12:47:19 2007 => Total Number of Files Renamed: 0
Sun Mar 04 12:47:19 2007 => Total Number of Deleted Files: 0
Sun Mar 04 12:47:19 2007 => Total Number of Errors: 13
Sun Mar 04 12:47:19 2007 => Time Elapsed: 01:11:32
Sun Mar 04 12:47:20 2007 => Virus Database Date: 2007/02/23
Sun Mar 04 12:47:20 2007 => Virus Database Count: 272614
Sun Mar 04 12:47:20 2007 => Scan Completed.
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
9 mars 2007 à 09:45
9 mars 2007 à 09:45
Dois je refaire la manip?
Pourtant j'ai fait ce qu'il y avait d'ecrit.
merci
Pourtant j'ai fait ce qu'il y avait d'ecrit.
merci
Kristopher
Messages postés
3731
Date d'inscription
vendredi 18 novembre 2005
Statut
Contributeur
Dernière intervention
10 juillet 2009
106
4 mars 2007 à 13:57
4 mars 2007 à 13:57
Sun Mar 04 12:47:19 2007 => Total Number of Virus(es) Found: 14 Sun Mar 04 12:47:19 2007 => Total Number of Disinfected Files: 0
Pourquoi n'as tu rien désinfecté ?????
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
4 mars 2007 à 15:30
4 mars 2007 à 15:30
A quel moment je desinfecte et avec quoi?
Je croyais que ça le faisait automatiquement.
Je croyais que ça le faisait automatiquement.
Kristopher
Messages postés
3731
Date d'inscription
vendredi 18 novembre 2005
Statut
Contributeur
Dernière intervention
10 juillet 2009
106
11 mars 2007 à 17:52
11 mars 2007 à 17:52
KC-coah,
Oui, anticipe et essaie de refaire la manip. ;)
Pas grave si tu n'y arrives pas cependant...
Je voudrais que tu désinfecte ton PC avec Spy Sweeper mis à jour, et en faisant un scan complet du PC (en incluant tout, même les archives !) - ça prendra du temps mais c'est très efficace :)
Copie/colle ce rapport stp.
Puis fais ceci et ceci :
Télécharge EasyCleaner ici :
https://www.01net.com/telecharger/windows/Utilitaire/registre/fiches/8351.html
Utilisation : Exécuter EasyCleaner, choisir "Registre" + "Inutiles". Ne pas toucher à la fonction doublons. Supprimer tout ce qu'il vous propose.
Scanne ton PC avec cet antivirus en ligne : https://www.pandasecurity.com/?ref=www.pandasoftware.com/activescan/fr/activescan_principal.htm
Copie/colle le rapport entier sur le forum.
a+
Oui, anticipe et essaie de refaire la manip. ;)
Pas grave si tu n'y arrives pas cependant...
Je voudrais que tu désinfecte ton PC avec Spy Sweeper mis à jour, et en faisant un scan complet du PC (en incluant tout, même les archives !) - ça prendra du temps mais c'est très efficace :)
Copie/colle ce rapport stp.
Puis fais ceci et ceci :
Télécharge EasyCleaner ici :
https://www.01net.com/telecharger/windows/Utilitaire/registre/fiches/8351.html
Utilisation : Exécuter EasyCleaner, choisir "Registre" + "Inutiles". Ne pas toucher à la fonction doublons. Supprimer tout ce qu'il vous propose.
Scanne ton PC avec cet antivirus en ligne : https://www.pandasecurity.com/?ref=www.pandasoftware.com/activescan/fr/activescan_principal.htm
Copie/colle le rapport entier sur le forum.
a+
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
19 mars 2007 à 13:31
19 mars 2007 à 13:31
Bonjour,
j'ai refait la manip avec sdfix.
SDFix: Version 1.69
Run by K‚vin - 18/03/2007 @ 16:23:17,79
Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix
Safe Mode:
Checking Services:
Restoring Windows Registry Entries
Restoring Default Hosts File
Rebooting...
Normal Mode:
Checking Files:
No Trojan Files Found...
ADS Check:
C:\WINDOWS\system32
No streams found.
Final Check:
Remaining Services:
------------------
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast\\SopCast.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast\\SopCast.exe:*:Enabled:SoP Client"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast_062\\SopCast\\SopCast.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast_062\\SopCast\\SopCast.exe:*:Enabled:SoP Client"
"C:\\WINDOWS\\system32\\LEXPPS.EXE"="C:\\WINDOWS\\system32\\LEXPPS.EXE:*:Enabled:LEXPPS"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\utorrent\\utorrent.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\utorrent\\utorrent.exe:*:Enabled:µTorrent"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~2.EXE"="C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~2.EXE:*:Enabled:Share Streaming"
"C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBarMini.exe"="C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBarMini.exe:*:Enabled:Share Streaming"
"C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~1.EXE"="C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~1.EXE:*:Enabled:Share Streaming"
"C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBar.exe"="C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBar.exe:*:Enabled:Share Streaming"
"C:\\Program Files\\PPLive\\PPlive.exe"="C:\\Program Files\\PPLive\\PPlive.exe:*:Enabled:PPLive"
"C:\\WINDOWS\\temp\\162.exe"="C:\\WINDOWS\\temp\\162.exe:*:Enabled:162.exe"
"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"="C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE:*:Enabled:Internet Explorer"
"C:\\Program Files\\Fichiers communs\\McAfee\\MNA\\McNASvc.exe"="C:\\Program Files\\Fichiers communs\\McAfee\\MNA\\McNASvc.exe:*:Enabled:McAfee Network Agent"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
Remaining Files:
---------------
Checking For Files with Hidden Attributes :
C:\WINDOWS\64lky8sfuagl3.dll
C:\WINDOWS\71wlj07.dll
C:\WINDOWS\8dji1.dll
C:\WINDOWS\l2.dll
C:\WINDOWS\NTServer.DLL
C:\WINDOWS\rqexfq2x.dll
C:\WINDOWS\stg4tdhib.dll
C:\WINDOWS\system32\Setup\iis.exe
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL0839.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL1296.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2057.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2303.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2878.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3432.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3680.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3827.tmp
C:\WINDOWS\system32\config\default.tmp.LOG
C:\WINDOWS\system32\config\software.tmp.LOG
C:\WINDOWS\system32\config\system.tmp.LOG
Add/Remove Programs List:
7c58bf4
Adobe Download Manager 2.0 (Supprimer uniquement)
adsl TV
Alexa Toolbar
AsusUpdate
ASUS_Ai_Proactive_Screensaver (E)
AVG Anti-Spyware 7.5
CCleaner (remove only)
AdPush Software
DivX Content Uploader
eMule
FreeGo 2.0
HijackThis 1.99.1
Hijackthis Version Fran‡aise 1.99.0.1
PinnacleHollywood FX 5
ASUS GameLiveShow
CANON USB Video Driver
ASUS SmartDoctor
Canon Utilities PhotoStitch 3.1
Canon RemoteCapture Task for ZoomBrowser EX
Canon Internet Library for ZoomBrowser EX
ASUS nVIDIA Driver
Canon RAW Image Task for ZoomBrowser EX
Canon Camera Window DVC for ZoomBrowser EX
ASUS VideoSecurity Online
Canon MovieEdit Task for ZoomBrowser EX
Canon Camera Window DS for ZoomBrowser EX
Canon Camera Support Core Library
Canon Camera Window for ZoomBrowser EX
Pro Evolution Soccer 6
ASUS Utilities
Correctif Windows XP - KB885836
Keycraft (remove only)
Lexmark Supplies Monitor
Lexmark Z25-Z35
Mozilla Firefox (1.5)
McAfee SecurityCenter
NVIDIA Drivers
Panda ActiveScan
RealPlayer
Adobe Flash Player 9 ActiveX
Skype 2.5
SLD CODEC PACK 1.5.3
???
TeamSpeak 2 RC2
VideoLAN VLC media player 0.8.4a
Winamp (remove only)
WinPcap 4.0 alpha1
Archiveur WinRAR
WinZip
XviD MPEG-4 Video Codec
Zoom Player (remove only)
Microsoft Office 2000 CD-ROMÿ2
ASUS GameLiveShow
CANON USB Video Driver
Canon PhotoRecord
ASUS SmartDoctor
AutoUpdate
PhotoStitch
RemoteCapture Task 1.1
Internet Library
ASUS Enhanced Display Driver
J2SE Runtime Environment 5.0 Update 6
RAW Image Task
Camera Window DVC
ASUSUpdate
Windows Genuine Advantage v1.3.0254.0
ASUSDVD
Nero 7 Demo
ASUS VideoSecurity Online
DivX Codec
DivX Player
MovieEdit Task
Microsoft Office Professional Edition 2003
Camera Window DS
Camera Support Core Library
Studio 9
Adobe Reader 7.0.7 - Fran‡ais
DivX Converter
Spy Sweeper
DivX Web Player
Canon ZoomBrowser EX
Camera Window MC
PowerDirector
Windows Live Messenger
Pro Evolution Soccer 6
SoundMAX
ASUS Utilities
PC Probe II
Finished
Voici les dernières lignes de mwav
Sun Mar 18 17:38:37 2007 => ***** Checking for specific ITW Viruses *****
Sun Mar 18 17:38:37 2007 => Checking for Welchia Virus...
Sun Mar 18 17:38:37 2007 => Checking for LovGate Virus...
Sun Mar 18 17:38:37 2007 => Checking for CodeRed Virus...
Sun Mar 18 17:38:37 2007 => Checking for OpaServ Virus...
Sun Mar 18 17:38:37 2007 => Checking for Sobig.e Virus...
Sun Mar 18 17:38:37 2007 => Checking for Winupie Virus...
Sun Mar 18 17:38:37 2007 => Checking for Swen Virus...
Sun Mar 18 17:38:37 2007 => Checking for JS.Fortnight Virus...
Sun Mar 18 17:38:37 2007 => Checking for Novarg Virus...
Sun Mar 18 17:38:37 2007 => Checking for Pagabot Virus...
Sun Mar 18 17:38:37 2007 => Checking for Parite.b Virus...
Sun Mar 18 17:38:37 2007 => Checking for Parite.a Virus...
Sun Mar 18 17:38:37 2007 => ***** Scanning complete. *****
Sun Mar 18 17:38:37 2007 => Total Number of Files Scanned: 53321
Sun Mar 18 17:38:37 2007 => Total Number of Virus(es) Found: 114
Sun Mar 18 17:38:37 2007 => Total Number of Disinfected Files: 0
Sun Mar 18 17:38:37 2007 => Total Number of Files Renamed: 90
Sun Mar 18 17:38:37 2007 => Total Number of Deleted Files: 8
Sun Mar 18 17:38:37 2007 => Total Number of Errors: 295
Sun Mar 18 17:38:37 2007 => Time Elapsed: 00:58:25
Sun Mar 18 17:38:37 2007 => Virus Database Date: 2007/02/23
Sun Mar 18 17:38:37 2007 => Virus Database Count: 272614
Sun Mar 18 17:38:37 2007 => Scan Completed.
Voici le log de spy
Name cnnewmusic-yiqilai
Unique Code WSBH1GTH
Type Adware
Severity
Description cnnewmusic-yiqilai est un programme espion susceptible d'afficher des publicités sur votre système.
Characteristics cnnewmusic-yiqilai est susceptible d'afficher des publicités sur votre ordinateur.
Method of Infection cnnewmusic-yiqilai se propage généralement au moyen de boîtes de dialogue, par diverses méthodes de manipulation sociale ou par des erreurs de script. En général, les logiciels publicitaires et les programmes d'assistance de navigateur sont associés à divers log
Consequences Ce programme peut afficher des publicités. Il peut aussi provoquer le ralentissement de votre navigateur Web et des problèmes de performances de votre système
Name Maxifiles
Unique Code MFA400
Type Adware
Severity
Description Maxifiles est un programme espion susceptible d'afficher des publicités sur votre système.
Characteristics Maxifiles est susceptible d'afficher des publicités sur votre ordinateur.
Method of Infection Maxifiles se propage généralement au moyen de boîtes de dialogue, par diverses méthodes de manipulation sociale ou par des erreurs de script. En général, les logiciels publicitaires et les programmes d'assistance de navigateur sont associés à divers log
Consequences Ce programme peut afficher des publicités. Il peut aussi provoquer le ralentissement de votre navigateur Web et des problèmes de performances de votre système.
Pour le scan en ligne, j'arrive à me connecter à l'adresse indiquer. Mais quand je clique sur "anallysez votre pc" rien ne se passe.
J'ai remarqué aussi ce phénomène sur d'autres sites internet, par exemple je peux pas rentrer dans ma boite mail msn en cliquant sur l'enveloppe des mails et non plus quand je fais ouvrir le lien dans une nouvelles fenetres.
merci à bientot.
j'ai refait la manip avec sdfix.
SDFix: Version 1.69
Run by K‚vin - 18/03/2007 @ 16:23:17,79
Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix
Safe Mode:
Checking Services:
Restoring Windows Registry Entries
Restoring Default Hosts File
Rebooting...
Normal Mode:
Checking Files:
No Trojan Files Found...
ADS Check:
C:\WINDOWS\system32
No streams found.
Final Check:
Remaining Services:
------------------
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast\\SopCast.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast\\SopCast.exe:*:Enabled:SoP Client"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast_062\\SopCast\\SopCast.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\pplive\\soap\\SopCast_062\\SopCast\\SopCast.exe:*:Enabled:SoP Client"
"C:\\WINDOWS\\system32\\LEXPPS.EXE"="C:\\WINDOWS\\system32\\LEXPPS.EXE:*:Enabled:LEXPPS"
"C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\utorrent\\utorrent.exe"="C:\\Documents and Settings\\Kévin\\Mes documents\\Kévin\\Programmes\\utorrent\\utorrent.exe:*:Enabled:µTorrent"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
"C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~2.EXE"="C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~2.EXE:*:Enabled:Share Streaming"
"C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBarMini.exe"="C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBarMini.exe:*:Enabled:Share Streaming"
"C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~1.EXE"="C:\\PROGRA~1\\pcast\\PODCAS~1\\PODCAS~1.EXE:*:Enabled:Share Streaming"
"C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBar.exe"="C:\\Program Files\\pcast\\PodcastbarMini\\PodcastBar.exe:*:Enabled:Share Streaming"
"C:\\Program Files\\PPLive\\PPlive.exe"="C:\\Program Files\\PPLive\\PPlive.exe:*:Enabled:PPLive"
"C:\\WINDOWS\\temp\\162.exe"="C:\\WINDOWS\\temp\\162.exe:*:Enabled:162.exe"
"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"="C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE:*:Enabled:Internet Explorer"
"C:\\Program Files\\Fichiers communs\\McAfee\\MNA\\McNASvc.exe"="C:\\Program Files\\Fichiers communs\\McAfee\\MNA\\McNASvc.exe:*:Enabled:McAfee Network Agent"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.0"
"C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)"
Remaining Files:
---------------
Checking For Files with Hidden Attributes :
C:\WINDOWS\64lky8sfuagl3.dll
C:\WINDOWS\71wlj07.dll
C:\WINDOWS\8dji1.dll
C:\WINDOWS\l2.dll
C:\WINDOWS\NTServer.DLL
C:\WINDOWS\rqexfq2x.dll
C:\WINDOWS\stg4tdhib.dll
C:\WINDOWS\system32\Setup\iis.exe
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL0839.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL1296.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2057.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2303.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL2878.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3432.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3680.tmp
C:\Documents and Settings\Karine\Mes documents\Karine\fran‡ais\~WRL3827.tmp
C:\WINDOWS\system32\config\default.tmp.LOG
C:\WINDOWS\system32\config\software.tmp.LOG
C:\WINDOWS\system32\config\system.tmp.LOG
Add/Remove Programs List:
7c58bf4
Adobe Download Manager 2.0 (Supprimer uniquement)
adsl TV
Alexa Toolbar
AsusUpdate
ASUS_Ai_Proactive_Screensaver (E)
AVG Anti-Spyware 7.5
CCleaner (remove only)
AdPush Software
DivX Content Uploader
eMule
FreeGo 2.0
HijackThis 1.99.1
Hijackthis Version Fran‡aise 1.99.0.1
PinnacleHollywood FX 5
ASUS GameLiveShow
CANON USB Video Driver
ASUS SmartDoctor
Canon Utilities PhotoStitch 3.1
Canon RemoteCapture Task for ZoomBrowser EX
Canon Internet Library for ZoomBrowser EX
ASUS nVIDIA Driver
Canon RAW Image Task for ZoomBrowser EX
Canon Camera Window DVC for ZoomBrowser EX
ASUS VideoSecurity Online
Canon MovieEdit Task for ZoomBrowser EX
Canon Camera Window DS for ZoomBrowser EX
Canon Camera Support Core Library
Canon Camera Window for ZoomBrowser EX
Pro Evolution Soccer 6
ASUS Utilities
Correctif Windows XP - KB885836
Keycraft (remove only)
Lexmark Supplies Monitor
Lexmark Z25-Z35
Mozilla Firefox (1.5)
McAfee SecurityCenter
NVIDIA Drivers
Panda ActiveScan
RealPlayer
Adobe Flash Player 9 ActiveX
Skype 2.5
SLD CODEC PACK 1.5.3
???
TeamSpeak 2 RC2
VideoLAN VLC media player 0.8.4a
Winamp (remove only)
WinPcap 4.0 alpha1
Archiveur WinRAR
WinZip
XviD MPEG-4 Video Codec
Zoom Player (remove only)
Microsoft Office 2000 CD-ROMÿ2
ASUS GameLiveShow
CANON USB Video Driver
Canon PhotoRecord
ASUS SmartDoctor
AutoUpdate
PhotoStitch
RemoteCapture Task 1.1
Internet Library
ASUS Enhanced Display Driver
J2SE Runtime Environment 5.0 Update 6
RAW Image Task
Camera Window DVC
ASUSUpdate
Windows Genuine Advantage v1.3.0254.0
ASUSDVD
Nero 7 Demo
ASUS VideoSecurity Online
DivX Codec
DivX Player
MovieEdit Task
Microsoft Office Professional Edition 2003
Camera Window DS
Camera Support Core Library
Studio 9
Adobe Reader 7.0.7 - Fran‡ais
DivX Converter
Spy Sweeper
DivX Web Player
Canon ZoomBrowser EX
Camera Window MC
PowerDirector
Windows Live Messenger
Pro Evolution Soccer 6
SoundMAX
ASUS Utilities
PC Probe II
Finished
Voici les dernières lignes de mwav
Sun Mar 18 17:38:37 2007 => ***** Checking for specific ITW Viruses *****
Sun Mar 18 17:38:37 2007 => Checking for Welchia Virus...
Sun Mar 18 17:38:37 2007 => Checking for LovGate Virus...
Sun Mar 18 17:38:37 2007 => Checking for CodeRed Virus...
Sun Mar 18 17:38:37 2007 => Checking for OpaServ Virus...
Sun Mar 18 17:38:37 2007 => Checking for Sobig.e Virus...
Sun Mar 18 17:38:37 2007 => Checking for Winupie Virus...
Sun Mar 18 17:38:37 2007 => Checking for Swen Virus...
Sun Mar 18 17:38:37 2007 => Checking for JS.Fortnight Virus...
Sun Mar 18 17:38:37 2007 => Checking for Novarg Virus...
Sun Mar 18 17:38:37 2007 => Checking for Pagabot Virus...
Sun Mar 18 17:38:37 2007 => Checking for Parite.b Virus...
Sun Mar 18 17:38:37 2007 => Checking for Parite.a Virus...
Sun Mar 18 17:38:37 2007 => ***** Scanning complete. *****
Sun Mar 18 17:38:37 2007 => Total Number of Files Scanned: 53321
Sun Mar 18 17:38:37 2007 => Total Number of Virus(es) Found: 114
Sun Mar 18 17:38:37 2007 => Total Number of Disinfected Files: 0
Sun Mar 18 17:38:37 2007 => Total Number of Files Renamed: 90
Sun Mar 18 17:38:37 2007 => Total Number of Deleted Files: 8
Sun Mar 18 17:38:37 2007 => Total Number of Errors: 295
Sun Mar 18 17:38:37 2007 => Time Elapsed: 00:58:25
Sun Mar 18 17:38:37 2007 => Virus Database Date: 2007/02/23
Sun Mar 18 17:38:37 2007 => Virus Database Count: 272614
Sun Mar 18 17:38:37 2007 => Scan Completed.
Voici le log de spy
Name cnnewmusic-yiqilai
Unique Code WSBH1GTH
Type Adware
Severity
Description cnnewmusic-yiqilai est un programme espion susceptible d'afficher des publicités sur votre système.
Characteristics cnnewmusic-yiqilai est susceptible d'afficher des publicités sur votre ordinateur.
Method of Infection cnnewmusic-yiqilai se propage généralement au moyen de boîtes de dialogue, par diverses méthodes de manipulation sociale ou par des erreurs de script. En général, les logiciels publicitaires et les programmes d'assistance de navigateur sont associés à divers log
Consequences Ce programme peut afficher des publicités. Il peut aussi provoquer le ralentissement de votre navigateur Web et des problèmes de performances de votre système
Name Maxifiles
Unique Code MFA400
Type Adware
Severity
Description Maxifiles est un programme espion susceptible d'afficher des publicités sur votre système.
Characteristics Maxifiles est susceptible d'afficher des publicités sur votre ordinateur.
Method of Infection Maxifiles se propage généralement au moyen de boîtes de dialogue, par diverses méthodes de manipulation sociale ou par des erreurs de script. En général, les logiciels publicitaires et les programmes d'assistance de navigateur sont associés à divers log
Consequences Ce programme peut afficher des publicités. Il peut aussi provoquer le ralentissement de votre navigateur Web et des problèmes de performances de votre système.
Pour le scan en ligne, j'arrive à me connecter à l'adresse indiquer. Mais quand je clique sur "anallysez votre pc" rien ne se passe.
J'ai remarqué aussi ce phénomène sur d'autres sites internet, par exemple je peux pas rentrer dans ma boite mail msn en cliquant sur l'enveloppe des mails et non plus quand je fais ouvrir le lien dans une nouvelles fenetres.
merci à bientot.
KC-coah
Messages postés
22
Date d'inscription
vendredi 2 février 2007
Statut
Membre
Dernière intervention
10 mars 2008
28 mars 2007 à 15:12
28 mars 2007 à 15:12
Bonjour Kristopher,
Merci pour ton aide et pour le temps passé sur mon cas.
J'ai formaté mon disque car j'en avais marre et surtout pour gagner du temps.
merci encore à bientot
Merci pour ton aide et pour le temps passé sur mon cas.
J'ai formaté mon disque car j'en avais marre et surtout pour gagner du temps.
merci encore à bientot
