trojan et virtumonde, ordi infecté, aidez-moiRésolu/Fermé

Question

Bonjour,
Je me suis pris un cheval de troie avec un film que je voulais télécharger. il ralentit mon ordi et essaie de modifier mon registre. il me fait auvirir des pop-up me disant que mon ordi est infesté par trojan et abebot, et il crée une petite icone en bas à droite qui me renvoie vers http://antispyware-reviews.biz/?wmid=4663&pwebmid=R3n1c2Bg8A .  j'ai mené des test avec ad aware, spybot, a-square, avast et vundo fix. spybot detect aussi virtumonde (je ne sais pas si c'est liée) mais a chaque fois que je l'elimine, il revient au démarrage suivant, malgrès le fait que j'ai désactivé la restauration du system. sur tous les autres post du forum que j'ai lu, les gens conseillent d'utiliser les programmes que j'ai utilisé mais cela ne fonctionne pas. Aidez moi, je ne sais plus quoi faire.
merci de votre aide

Logfile of HijackThis v1.99.1
Scan saved at 16:21:09, on 04/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\Documents and Settings\All Users\Application Data\vwzetedu\lsxmbaxi.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OBealsched.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Speeditup Free\SearchDefender.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\vuxkjavg.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\DOCUME~1\Adam\LOCALS~1\Temp\Répertoire temporaire 1 pour hijackthis_199.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.fr/?gws_rd=ssl
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Pluginseg\VeohToolbar.dll
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OBealsched.exe"  -osboot
O4 - HKLM\..\Run: [PC-Checkup] "C:\Program Files\Speeditup Free\PCCheckUp\PCCheckUp.exe" -mini
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Search Defender] "C:\Program Files\Speeditup Free\SearchDefender.exe"
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [vemdbilj] C:\WINDOWS\system32\vuxkjavg.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [ftllpizu] C:\WINDOWS\system32\jqvwnsnw.exe
O4 - HKCU\..\Run: [zmbawrrd] C:\WINDOWS\system32
kpmdatk.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\FICHIE~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Fichiers communs\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

Powax · Answer

Bonjour,

télécharge Combofix.exe sur ton Bureau: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

    * Déconnecte-toi du net et désactive ton antivirus pour que Combofix puisse s'exécuter normalement
    * Double clique sur Combofix.exe
    * Mets le en langue française F
    * Tape sur la touche 1 (Yes) pour démarrer le scan
    * Lorsque le scan sera terminé, un rapport apparaîtra
    * Poste le rapport sauvegardé: C:\Combofix.txt

adam · Answer

voila le rapport de combofix. que dois je faire maintenant? encore merci pour l'aide ComboFix 08-04-03.5 - Adam 2008-04-04 16:45:00.1 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.390 [GMT 2:00] Endroit: C:\Documents and Settings\Adam\Bureau\ComboFix.exe [color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color] . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat C:\WINDOWS s.txt C:\WINDOWS\search_res.txt C:\WINDOWS\svpekgonbpm.dll ----- BITS: Possible sites infectés ----- hxxp://softworldnetwork.com hxxp://onsafepro.com . ((((((((((((((((((((((((((((( Fichiers créés 2008-03-04 to 2008-04-04 )))))))))))))))))))))))))))))))))))) . 2008-04-04 09:09 . 2008-04-04 09:09 114,688 --a------ C:\WINDOWS\system32 opqtcnk.exe 2008-04-04 00:59 . 2008-04-04 00:59 90,112 --a------ C:\WINDOWS\system32\mxankvgt.exe 2008-04-03 12:22 . 2008-04-03 12:22 d-------- C:\VundoFix Backups 2008-04-03 09:33 . 2008-04-03 11:15 d-------- C:\Program Files\a-squared Free 2008-04-03 01:16 . 2008-04-03 01:16 110,592 --a------ C:\WINDOWS\system32 kpmdatk.exe 2008-04-03 00:31 . 2008-04-03 00:31 114,688 --a------ C:\WINDOWS\system32\jqvwnsnw.exe 2008-04-02 23:17 . 2008-04-02 23:17 d-------- C:\Program Files\Spybot - Search & Destroy 2008-04-02 23:17 . 2008-04-02 23:39 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-04-02 14:17 . 2008-04-03 11:16 d-------- C:\Program Files\Navilog1 2008-04-02 11:26 . 2008-04-02 11:26 d-------- C:\Documents and Settings\All Users\Application Data\vwzetedu 2008-04-02 11:26 . 2008-04-02 11:26 102,400 --a------ C:\WINDOWS\system32\vuxkjavg.exe 2008-04-02 01:13 . 2008-04-02 01:13 d-------- C:\Program Files\Veoh Networks 2008-03-13 19:52 . 2008-03-13 19:52 d-------- C:\Keeping the peace . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-04-04 14:19 --------- d-----w C:\Documents and Settings\Adam\Application Data\Skype 2008-04-04 14:07 --------- d-----w C:\Documents and Settings\Adam\Application Data\skypePM 2008-04-03 09:17 --------- d-----w C:\Program Files\Webteh 2008-04-02 11:42 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-04-01 10:27 --------- d-----w C:\Documents and Settings\Adam\Application Data\OpenOffice.org2 2008-03-13 17:51 --------- d-----w C:\Documents and Settings\All Users\Application Data\DVD Shrink 2008-03-13 09:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-03-02 22:55 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat 2008-03-02 22:55 --------- d-----w C:\Program Files\Skype 2008-03-02 22:55 --------- d-----w C:\Program Files\Fichiers communs\Skype 2008-02-29 21:54 --------- d-----w C:\Program Files\DivX 2008-02-29 14:34 --------- d-----w C:\Program Files\iTunes 2008-02-29 14:33 --------- d-----w C:\Program Files\iPod 2008-02-29 14:31 --------- d-----w C:\Program Files\QuickTime 2008-02-28 10:11 --------- d-----w C:\Program Files\AltoMP3 Gold 2008-02-28 10:11 --------- d-----w C:\Documents and Settings\All Users\Application Data\TEMP 2008-02-25 21:41 --------- d-----w C:\Program Files\Windows Installer Clean Up 2008-02-25 21:41 --------- d-----w C:\Program Files\MSECACHE 2008-02-22 21:08 --------- d-----w C:\Program Files\Fichiers communs\LogiShrd 2008-02-21 02:05 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll 2008-02-21 02:05 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll 2008-02-11 16:41 --------- d-----w C:\Program Files\Fichiers communs\Adobe 2008-02-11 16:40 --------- d-----w C:\Program Files\Fichiers communs\Adobe(2) 2008-02-11 16:40 --------- d-----w C:\Program Files\Adobe(2) 2008-01-19 17:04 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 12:00 15360] "StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 13:35 90112] "Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2008-02-01 19:22 21898024] "Search Defender"="C:\Program Files\Speeditup Free\SearchDefender.exe" [2007-08-02 02:54 541696] "DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2007-08-16 13:24 167368] "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 13:34 5724184] "vemdbilj"="C:\WINDOWS\system32\vuxkjavg.exe" [2008-04-02 11:26 102400] "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 11:43 2097488] "ftllpizu"="C:\WINDOWS\system32\jqvwnsnw.exe" [2008-04-03 00:31 114688] "zmbawrrd"="C:\WINDOWS\system32 kpmdatk.exe" [2008-04-03 01:16 110592] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SigmatelSysTrayApp"="stsystra.exe" [2007-02-19 14:26 303104 C:\WINDOWS\stsystra.exe] "Broadcom Wireless Manager UI"="C:\WINDOWS\system32\WLTRAY.exe" [2007-03-16 18:10 1392640] "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2007-04-27 16:10 851968] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 03:11 132496] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 15:00 79224] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 21:51 39792] "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB ealsched.exe" [2007-10-01 13:29 185632] "PC-Checkup"="C:\Program Files\Speeditup Free\PCCheckUp\PCCheckUp.exe" [2008-03-04 17:46 1500672] "LogitechCommunicationsManager"="C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" [2007-10-25 17:33 563984] "LogitechQuickCamRibbon"="C:\Program Files\Logitech\QuickCam\Quickcam.exe" [2007-10-25 17:37 2178832] "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-02-01 01:13 385024] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-02-19 15:10 267048] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-05 12:00 15360] C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe [2007-09-28 20:03:16 50688] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer un] "eD04k2lyb0"= C:\Documents and Settings\All Users\Application Data\vwzetedu\lsxmbaxi.exe [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.I420"= lvcodec2.dll "MSVideo"= vfwwdm32.dll "MSVideo8"= VfWWDM32.dll "msacm.scg726"= scg726.acm "msacm.alf2cd"= alf2cd.acm "msacm.ac3acm"= AC3ACM.acm "vidc.dvsd"= mcdvd_32.dll [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\system32\sessmgr.exe"= "C:\WINDOWS\system32\dpvsetup.exe"= "C:\WINDOWS\system32\rundll32.exe"= "C:\Program Files\Mozilla Firefox\firefox.exe"= "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"= "C:\Program Files\Windows Live\Messenger\livecall.exe"= "C:\Program Files\Total War\Medieval - Total War\Medieval_TW.exe"= "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"= "C:\Program Files\Real\RealPlayer\realplay.exe"= "C:\Program Files\iTunes\iTunes.exe"= "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe"= "C:\Program Files\Skype\Phone\Skype.exe"= S3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 23:08] . Contenu du dossier 'Scheduled Tasks/Tâches planifiées' "2008-03-31 10:30:05 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe . ************************************************************************** catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-04 16:48:26 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cachés ... Balayage caché autostart entries ... Balayage des fichiers cachés ... Scan terminé avec succès Les fichiers cachés: 0 ************************************************************************** . Temps d'accomplissement: 2008-04-04 16:49:19 ComboFix-quarantined-files.txt 2008-04-04 14:49:14 Pre-Run: 51,072,151,552 octets libres Post-Run: 51,061,620,736 octets libres . 2008-04-04 13:23:36 --- E O F ---

Powax · Answer

*  Fais une analyse BitDefender à partir d'IE: https://www.bitdefender.fr/

(bouton BitDefender Scan Online dans la colonne de gauche)

    * Poste le rapport

dou-l · Answer

slt 


il est infécter par vundo ;)

Powax · Answer

d'acc pour moi les vundo étaient toujours dans les lignes 20, merki

Télécharge VundoFix: http://www.atribune.org/ccount/click.php?id=4

    * Double-clique sur VundoFix.exe
    * Clique sur le bouton Scan for Vundo
    * Si le programme te demande de supprimer des fichiers, dis oui
    * Lorsque le programme a fini de scanner ton pc, il doit être éteint, redémarre le.
    * Copie/colle le contenu du rapport situé dans C:\vundofix.txt

adam · Answer

très bien. j'avais déja fais une analyse avec vundo fix mais il n'avait rien trouvé alors que spybot a trouvé virtumonde. je vais refiare un scan pour vous donner le rapport.

dou-l · Answer

c'est une bonne initiative de demandé bitdefender cfait le

adam · Answer

merci beaucoup je ne sais pas comment j'aurais fait sans vous. je commence l'analyse avec bitdefender

dou-l · Answer

une icone ou ?,

adam · Answer

elle est en bas à droite et dans la barre a gauche de l'horloge. elle est en forme d'un panneau de signalisation jaune avec un point d'exclamation

dou-l · Answer

ok

apres bitdefender et vundo

télécharge smitfraudfix: smitfraudfix

# Double clique sur l'icone de smitfraud pui choisis l'option 1 et poste le rapport.


N'oubie pas ca

adam · Answer

smitfaudfix est en cours

adam · Answer

Voila pour le rapport SmitFraudFix


SmitFraudFix v2.309

Rapport fait à 17:16:34,18, 04/04/2008
Executé à partir de C:\Program Files\Mozilla Firefox\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode normal

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Documents and Settings\All Users\Application Data\vwzetedu\lsxmbaxi.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OBealsched.exe
C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam\Quickcam.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Fichiers communs\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Speeditup Free\SearchDefender.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\WINDOWS\system32\vuxkjavg.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Fichiers communs\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Fichiers communs\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32
otepad.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Documents and Settings\Adam\Bureau\VundoFix.exe
C:\WINDOWS\system32\cmd.exe

»»»»»»»»»»»»»»»»»»»»»»»» hosts

Fichier hosts corrompu !

127.0.0.1	www.legal-at-spybot.info
127.0.0.1	legal-at-spybot.info

»»»»»»»»»»»»»»»»»»»»»»»» C:\


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32


»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Adam


»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Adam\Application Data


»»»»»»»»»»»»»»»»»»»»»»»» Menu Démarrer


»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\Adam\Favoris


»»»»»»»»»»»»»»»»»»»»»»»» Bureau


»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files 


»»»»»»»»»»»»»»»»»»»»»»»» Clés corrompues


»»»»»»»»»»»»»»»»»»»»»»»» Eléments du bureau
 
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="Ma page d'accueil"
 

»»»»»»»»»»»»»»»»»»»»»»»» IEDFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» VACFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=""


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\WINDOWS\system32\userinit.exe,"
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Rustock



»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: Carte Mini Dell Wireless 1390 - Miniport d'ordonnancement de paquets
DNS Server Search Order: 212.27.53.252
DNS Server Search Order: 212.27.54.252

HKLM\SYSTEM\CCS\Services\Tcpip\..\{B43BECF5-281B-4457-819E-C601E80A4F9A}: DhcpNameServer=212.27.53.252 212.27.54.252
HKLM\SYSTEM\CS1\Services\Tcpip\..\{B43BECF5-281B-4457-819E-C601E80A4F9A}: DhcpNameServer=212.27.53.252 212.27.54.252
HKLM\SYSTEM\CS2\Services\Tcpip\..\{B43BECF5-281B-4457-819E-C601E80A4F9A}: DhcpNameServer=212.27.53.252 212.27.54.252
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=212.27.53.252 212.27.54.252
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=212.27.53.252 212.27.54.252
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=212.27.53.252 212.27.54.252


»»»»»»»»»»»»»»»»»»»»»»»» Recherche infection wininet.dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

adam · Answer

et vundofix n'a rien trouvé

adam · Answer

qu'est ce que cela veux dire, qu'est ce que le rapport dit?

dou-l · Answer

ou en est le scan bitdefender

adam · Answer

rien jusque la, il lui reste un peu plus d'une demi heure

dou-l · Answer

ok poste le rapport

adam · Answer

c'est fini, il n'a rien trouvé du tout. que dois je faife maintenant

dou-l · Answer

poste le rapport.

adam · Answer

voila le rapport

BitDefender Online Scanner
	

 
	

 

Rapport d'analyse généré à: Fri, Apr 04, 2008 - 17:47:26

 
	

 
	

 

Voie d'analyse: C:\;D:\;E:\;
	

 
	

 

 
	

 
	

 

Statistiques

Temps
	

00:32:27

Fichiers
	

57806

Directoires
	

7950

Secteurs de boot
	

3

Archives
	

880

Paquets programmes
	

4265
	

 
	

 

Résultats

Virus identifiés
	

0

Fichiers infectés
	

0

Fichiers suspects
	

0

Avertissements
	

0

Désinfectés
	

0

Fichiers effacés
	

0
	

 
	

 

Info sur les moteurs

Définition virus
	

1121572

Version des moteurs
	

AVCORE v1.0 (build 2422) (i386) (Sep 25 2007 08:26:36)

Analyse des plugins
	

16

Archive des plugins
	

41

Unpack des plugins
	

7

E-mail plugins
	

6

Système plugins
	

5
	

 
	

 

Paramètres d'analyse

Première action
	

Désinfecté

Seconde Action
	

Supprimé

Heuristique
	

Oui

Acceptez les avertissements
	

Oui

Extensions analysées
	

exe;com;dll;ocx;scr;bin;dat;386;vxd;sys;wdm;cla;class;ovl;ole;hlp;doc;dot;xls;ppt;wbk;wiz;pot;ppa;xla;xlt;vbs;vbe;mdb;rtf;htm;hta;html;xml;xtp;php;asp;js;shs;chm;lnk;pif;prc;url;smm;pfd;msi;ini;csc;cmd;bas;

Excludez les extensions
	

 

Analyse d'emails
	

Oui

Analyse des Archives
	

Oui

Analyser paquets programmes
	

Oui

Analyse des fichiers
	

Oui

Analyse de boot
	

Oui
	

 
	

 
 

Fichier analysé
	

 Statut

Aucun virus trouvé.

dou-l · Answer

fait analyser ces fichiers sur virustotal et dit si tu es infecter poste les rapport

 C:\WINDOWS\system32\jqvwnsnw.exe
 C:\WINDOWS\system32
kpmdatk.exe 
C:\WINDOWS\system32\vuxkjavg.exe 


https://www.virustotal.com/gui/

adam · Answer

voila pour el premier fichier

 Fichier jqvwnsnw.exe reçu le 2008.04.04 16:52:56 (CET)
Situation actuelle: terminé
Résultat: 6/31 (19.35%)
Formaté Formaté
Impression des résultats Impression des résultats
Antivirus 	Version 	Dernière mise à jour 	Résultat
AhnLab-V3 	- 	- 	-
AntiVir 	- 	- 	TR/Crypt.XPACK.Gen
Authentium 	- 	- 	-
Avast 	- 	- 	-
AVG 	- 	- 	Downloader.Obfuskated
BitDefender 	- 	- 	-
CAT-QuickHeal 	- 	- 	-
ClamAV 	- 	- 	-
DrWeb 	- 	- 	-
eSafe 	- 	- 	-
eTrust-Vet 	- 	- 	-
Ewido 	- 	- 	-
F-Prot 	- 	- 	-
F-Secure 	- 	- 	-
FileAdvisor 	- 	- 	-
Fortinet 	- 	- 	-
Ikarus 	- 	- 	-
Kaspersky 	- 	- 	-
McAfee 	- 	- 	-
Microsoft 	- 	- 	TrojanDownloader:Win32/Agent.ZZC
NOD32v2 	- 	- 	-
Norman 	- 	- 	W32/Smalltroj.DSQP
Panda 	- 	- 	-
Prevx1 	- 	- 	Downloader.Obfuskated
Rising 	- 	- 	-
Sophos 	- 	- 	-
Symantec 	- 	- 	-
TheHacker 	- 	- 	-
VBA32 	- 	- 	-
VirusBuster 	- 	- 	-
Webwasher-Gateway 	- 	- 	Trojan.Crypt.XPACK.Gen
Information additionnelle
MD5: 9d0ed2d20c0a429fc653a0e61b3bfc71
SHA1: 87fee6d7d63a5cb9be0f8390ce867bd185cb87a2
SHA256: 35743a923cd1d656363b24c3e8e0185d652791550f3edcfa53b47d15fa47a847
SHA512: 192aeaecdda1995f8223d951c8a6f92566bc6440a3c87e6889bc171566c687951643b1347977560564265c8b3384d03de43eb96a1d4c6caa9b03eaa4b0db04bb

adam · Answer

voila le second

 Fichier nkpmdatk.exe reçu le 2008.04.03 03:08:31 (CET)
Situation actuelle: terminé
Résultat: 5/32 (15.62%)
Formaté Formaté
Impression des résultats Impression des résultats
Antivirus 	Version 	Dernière mise à jour 	Résultat
AhnLab-V3 	- 	- 	-
AntiVir 	- 	- 	TR/Crypt.XPACK.Gen
Authentium 	- 	- 	-
Avast 	- 	- 	-
AVG 	- 	- 	Downloader.Obfuskated
BitDefender 	- 	- 	-
CAT-QuickHeal 	- 	- 	-
ClamAV 	- 	- 	-
DrWeb 	- 	- 	-
eSafe 	- 	- 	-
eTrust-Vet 	- 	- 	-
Ewido 	- 	- 	-
F-Prot 	- 	- 	-
F-Secure 	- 	- 	-
FileAdvisor 	- 	- 	-
Fortinet 	- 	- 	-
Ikarus 	- 	- 	-
Kaspersky 	- 	- 	-
McAfee 	- 	- 	-
Microsoft 	- 	- 	TrojanDownloader:Win32/Agent.ZZC
NOD32v2 	- 	- 	-
Norman 	- 	- 	-
Panda 	- 	- 	-
Prevx1 	- 	- 	Covert.Sys.Exec
Rising 	- 	- 	-
Sophos 	- 	- 	-
Sunbelt 	- 	- 	-
Symantec 	- 	- 	-
TheHacker 	- 	- 	-
VBA32 	- 	- 	-
VirusBuster 	- 	- 	-
Webwasher-Gateway 	- 	- 	Trojan.Crypt.XPACK.Gen
Information additionnelle
MD5: 8bc49d7964ce7b238f9b90ad8370a4aa
SHA1: 87f00c4d42dd785c572f34f9ed3d5e2e09477d7d
SHA256: e40ec648d8f64a265e37ebad8650f1be21bff81c706e357271a9e80bcbff03f6
SHA512: 517732a7e8a2884bff5a7fafbba76854d8039865daad41caec674afe2600afb13541f63346def7c78eb0f8b0431b689225ce1ee155df026060d32ab21081981a

adam · Answer

voila le troisième

 Fichier vuxkjavg.exe_ reçu le 2008.04.04 04:33:53 (CET)
Situation actuelle: terminé
Résultat: 7/32 (21.88%)
Formaté Formaté
Impression des résultats Impression des résultats
Antivirus 	Version 	Dernière mise à jour 	Résultat
AhnLab-V3 	- 	- 	-
AntiVir 	- 	- 	TR/Crypt.XPACK.Gen
Authentium 	- 	- 	-
Avast 	- 	- 	-
AVG 	- 	- 	Downloader.Obfuskated
BitDefender 	- 	- 	-
CAT-QuickHeal 	- 	- 	-
ClamAV 	- 	- 	-
DrWeb 	- 	- 	-
eSafe 	- 	- 	-
eTrust-Vet 	- 	- 	-
Ewido 	- 	- 	-
F-Prot 	- 	- 	-
F-Secure 	- 	- 	Trojan-Downloader.Win32.Agent.miz
FileAdvisor 	- 	- 	-
Fortinet 	- 	- 	-
Ikarus 	- 	- 	-
Kaspersky 	- 	- 	Trojan-Downloader.Win32.Agent.miz
McAfee 	- 	- 	-
Microsoft 	- 	- 	TrojanDownloader:Win32/Agent.ZZC
NOD32v2 	- 	- 	-
Norman 	- 	- 	-
Panda 	- 	- 	-
Prevx1 	- 	- 	Downloader.Obfuskated
Rising 	- 	- 	-
Sophos 	- 	- 	-
Sunbelt 	- 	- 	-
Symantec 	- 	- 	-
TheHacker 	- 	- 	-
VBA32 	- 	- 	-
VirusBuster 	- 	- 	-
Webwasher-Gateway 	- 	- 	Trojan.Crypt.XPACK.Gen
Information additionnelle
MD5: 5f8ff8c726ae8790f1ce04a7475d1705
SHA1: 994eb2fa21afdb42beaaeaf55e92c5bf3f715167
SHA256: 3df05c1ea3ee02f916876e85f99f1874009be2a0a08e8f50628994b352393306
SHA512: aee337449f564450c42dc33601bb97dc873a2d8c2b5594e7dc695ff254d9178093c6932faf1b323d424b7034d78b491bd20f609e9ec089fb9a302ffeb91961c4

dou-l · Answer

Télécharge lopxp

-Double cliquer sur Lopxpsetup.exe pour lancer l'installation

- Au menu, choisi l'option 1

- Patiente jusqu'à que l'on demande d'appuyer sur une touche, appuyer !

- Le contenu du rapport est situé dans : C:\Programfiles\Lopxp\cid.txt colle le ici.

adam · Answer

voila le rapport, que dois je faire maintenant

# Rapport Lopxp fait le 04/04/2008 à 18:12:02
# Exécuté dans : C:\Program Files\Lopxp
# Version 3.06 - Maj du 05/02/2008

  Killing 'iexplore.exe'
"C:\Program Files\Internet Explorer\IEXPLORE.EXE"  (13276)


========== Listing des dossiers Application Data

+- C:\Documents and Settings\Adam\Application Data

 2008-02-02 à 14:41:13 - Adobe 
 2007-09-28 à 23:36:09 - Apple Computer
 2007-09-28 à 18:31:39 - ATI 
 2007-09-28 à 18:07:20 - Dell 
 2007-11-14 à 16:31:18 - HorizonWimba 
 2007-09-28 à 17:40:55 - Identities 
 2007-09-28 à 17:48:09 - InstallShield 
 2007-10-22 à 13:09:08 - InterVideo 
 2007-09-28 à 23:00:30 - Macromedia 
 2008-02-25 à 00:54:21 - Microsoft 
 2007-09-28 à 23:06:36 - Mozilla 
 2008-04-01 à 10:27:17 - OpenOffice.org2 
 2007-10-08 à 22:58:17 - Real 
 2008-04-04 à 15:23:10 - Skype 
 2008-04-04 à 14:07:55 - skypePM 
 2007-09-28 à 23:34:40 - Sun 
 2007-09-28 à 23:06:53 - Talkback 

+- C:\Documents and Settings\Adam\Local Settings\Application Data

 2007-09-28 à 23:12:33 - Adobe 
 2007-09-28 à 23:34:15 - Apple 
 2007-09-28 à 23:36:09 - Apple Computer
 2007-09-28 à 18:31:39 - ATI 
 2007-09-28 à 23:06:54 - Google 
 2007-10-12 à 00:15:01 - Identities 
 2008-01-21 à 01:26:35 - Microsoft 
 2008-01-06 à 22:38:16 - Microsoft Help
 2007-09-28 à 23:06:36 - Mozilla 
 2007-11-17 à 13:41:03 - PCHealth 
 2007-09-28 à 18:12:17 - {3248F0A6-6813-11D6-A77B-00B0D0150060} 

+- C:\Documents and Settings\All Users\Application Data

 2008-02-11 à 16:41:05 - Adobe 
 2007-09-28 à 23:33:28 - Apple 
 2007-11-19 à 11:34:06 - Apple Computer
 2008-03-13 à 17:51:56 - DVD Shrink
 2007-11-05 à 21:21:24 - DVD X Studios
 2007-09-28 à 23:06:54 - Google 
 2007-10-22 à 13:07:06 - InstallShield 
 2008-01-19 à 17:05:21 - Lavasoft 
 2007-10-30 à 09:03:40 - Logishrd 
 2007-09-29 à 00:50:04 - Logitech 
 2008-01-06 à 22:42:41 - Microsoft 
 2008-03-13 à 09:32:48 - Microsoft Help
 2007-09-28 à 23:06:08 - Mozilla 
 2007-09-29 à 09:36:02 - Skype 
 2008-04-02 à 21:39:03 - Spybot - Search & Destroy
 2008-02-28 à 10:11:17 - TEMP 
 2008-04-02 à 09:26:26 - vwzetedu 
 2007-10-01 à 11:33:59 - Windows Genuine Advantage
 2007-11-17 à 13:41:15 - WLInstaller 

========== Listing du dossier Program Files

+- C:\Program Files

 2008-04-03 à 09:15:16 - a-squared Free
 2008-02-11 à 16:41:03 - Adobe 
 2008-02-11 à 16:40:55 - Adobe(2) 
 2008-02-28 à 10:11:11 - AltoMP3 Gold
 2007-09-28 à 22:49:04 - Alwil Software
 2007-09-28 à 18:10:10 - AMD 
 2007-09-28 à 23:34:10 - Apple Software Update
 2007-09-28 à 17:55:52 - ATI Technologies
 2007-11-17 à 23:41:07 - AVSMedia 
 2007-09-28 à 18:02:00 - Broadcom 
 2007-09-28 à 17:31:17 - ComPlus Applications
 2007-09-28 à 17:58:22 - CONEXANT 
 2007-10-26 à 19:05:36 - DAEMON Tools
 2007-09-28 à 18:07:18 - Dell 
 2007-09-28 à 18:08:47 - DIFX 
 2007-09-28 à 18:03:16 - Digital Line Detect
 2007-09-28 à 23:54:08 - Direct X
 2008-02-29 à 21:54:19 - DivX 
 2007-09-28 à 23:32:40 - DVD Shrink
 2008-03-02 à 22:55:30 - Fichiers communs
 2007-11-15 à 16:41:06 - FusionSoft DVD Player XP
 2007-10-05 à 07:23:00 - Google 
 2007-10-29 à 09:41:57 - GSC Game World
 2008-04-02 à 11:42:15 - InstallShield Installation Information
 2008-02-14 à 08:26:53 - Internet Explorer
 2007-11-05 à 21:24:52 - InterVideo Information Service
 2008-02-29 à 14:33:57 - iPod 
 2008-02-29 à 14:34:10 - iTunes 
 2008-01-10 à 18:24:04 - Java 
 2007-10-01 à 14:33:34 - Lavasoft 
 2007-10-30 à 01:43:19 - Logitech 
 2008-04-04 à 16:12:29 - Lopxp 
 2007-09-30 à 09:06:30 - Messenger 
 2007-11-19 à 10:07:46 - Microsoft CAPICOM 2.1.0.2
 2007-09-28 à 17:35:35 - microsoft frontpage
 2008-01-06 à 22:44:01 - Microsoft Office
 2008-01-06 à 22:43:55 - Microsoft Visual Studio
 2008-01-06 à 22:39:27 - Microsoft Visual Studio 8
 2008-01-06 à 22:44:38 - Microsoft Works
 2008-01-06 à 22:42:40 - Microsoft.NET 
 2007-09-28 à 17:32:22 - Movie Maker
 2008-04-04 à 15:15:45 - Mozilla Firefox
 2008-01-06 à 22:44:21 - MSBuild 
 2008-02-25 à 21:41:22 - MSECACHE 
 2007-09-28 à 17:29:38 - MSN 
 2007-09-28 à 17:30:24 - MSN Gaming Zone
 2007-09-30 à 08:58:43 - MSXML 4.0
 2008-04-03 à 09:16:49 - Navilog1 
 2007-09-28 à 17:32:41 - NetMeeting 
 2007-09-28 à 17:30:36 - Online Services
 2007-09-28 à 23:36:56 - OpenOffice.org 2.3
 2007-09-30 à 11:01:47 - Outlook Express
 2008-02-29 à 14:31:42 - QuickTime 
 2007-10-01 à 11:29:07 - Real 
 2007-09-28 à 17:33:38 - Services en ligne
 2007-09-28 à 17:57:50 - SigmaTel 
 2008-03-02 à 22:55:35 - Skype 
 2007-10-01 à 15:13:47 - Speeditup Free
 2008-04-02 à 21:17:20 - Spybot - Search & Destroy
 2007-09-28 à 18:11:24 - Synaptics 
 2007-12-27 à 16:20:17 - Total War
 2007-09-28 à 17:40:53 - Uninstall Information
 2008-04-01 à 23:13:52 - Veoh Networks
 2008-04-03 à 09:17:03 - Webteh 
 2008-02-25 à 21:41:39 - Windows Installer Clean Up
 2007-11-17 à 13:42:01 - Windows Live
 2007-10-01 à 11:35:53 - Windows Media Connect 2
 2007-10-01 à 11:35:52 - Windows Media Player
 2007-09-28 à 17:30:13 - Windows NT
 2007-09-28 à 17:33:41 - WindowsUpdate 
 2007-09-28 à 17:35:35 - xerox 

========== Tâches planifiées

AppleSoftwareUpdate.job: C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task

========== Clés registre


========== Bloqueur popups Internet Explorer


==========    Suggestion ( /!\ Nécessite une interprétation.)    ==========

+- Dossiers\Fichiers : Aucune suggestion.

+- Registre : Aucune suggestion.


- Fin du rapport -

dou-l · Answer

vire ton film télécharger si c'est pas déjà fait et ton utilitaire des téléchargement

dit tes soucis actuel

adam · Answer

c'était fait dès que j'ai été infecté. mais ça n'a rien changé.

dou-l · Answer

ok


Télécharge Combofix de sUBs : Renomme le avant toute installation, par exemple, nomme le "KillBagle". aide ici : https://forum.pcastuces.com/sujet.asp?f=25&s=37315

http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Sauvegarde le sur ton bureau et pas ailleurs !

Aide à l’utilisation de combofix ici: https://bibou0007.forumpro.fr/login?redirect=%2Ft121-topic

Double-clic sur combofix, Il va te poser une question, réponds par la touche 1 et entrée pour valider, laisse toi guider.
Attends que combofix ait terminé, un rapport sera créé. Poste le rapport.


ATENTION : Déconnecte toi d'internet ne fais rien pendant la durée du scan désactive ton antivirus et ton antispyware le temp du scan.

adam · Answer

voila le rapport, que dois je faire maintenant ComboFix 08-04-03.5 - Adam 2008-04-04 18:33:19.2 - NTFSx86 Microsoft Windows XP Édition familiale 5.1.2600.2.1252.1.1036.18.403 [GMT 2:00] Endroit: C:\Documents and Settings\Adam\Bureau\KillBagle.exe [color=red][b]AVERTISSEMENT - LA CONSOLE DE RÉCUPÉRATION N'EST PAS INSTALLÉE SUR CETTE MACHINE !![/b][/color] . ((((((((((((((((((((((((((((( Fichiers créés 2008-03-04 to 2008-04-04 )))))))))))))))))))))))))))))))))))) . 2008-04-04 18:11 . 2008-04-04 18:12 d-------- C:\Program Files\Lopxp 2008-04-04 17:16 . 2008-04-04 17:16 3,022 --a------ C:\WINDOWS\system32 mp.reg 2008-04-04 17:15 . 2007-09-05 23:22 289,144 --a------ C:\WINDOWS\system32\VCCLSID.exe 2008-04-04 17:15 . 2006-04-27 16:49 288,417 --a------ C:\WINDOWS\system32\SrchSTS.exe 2008-04-04 17:15 . 2008-03-28 23:19 86,528 --a------ C:\WINDOWS\system32\VACFix.exe 2008-04-04 17:15 . 2008-03-26 08:50 82,432 --a------ C:\WINDOWS\system32\IEDFix.exe 2008-04-04 17:15 . 2003-06-05 20:13 53,248 --a------ C:\WINDOWS\system32\Process.exe 2008-04-04 17:15 . 2004-07-31 17:50 51,200 --a------ C:\WINDOWS\system32\dumphive.exe 2008-04-04 17:15 . 2007-10-03 23:36 25,600 --a------ C:\WINDOWS\system32\WS2Fix.exe 2008-04-04 17:11 . 2008-04-04 17:11 d-------- C:\WINDOWS\LastGood 2008-04-04 17:11 . 2008-04-04 17:47 d-------- C:\WINDOWS\BDOSCAN8 2008-04-04 09:09 . 2008-04-04 09:09 114,688 --a------ C:\WINDOWS\system32 opqtcnk.exe 2008-04-04 00:59 . 2008-04-04 00:59 90,112 --a------ C:\WINDOWS\system32\mxankvgt.exe 2008-04-03 12:22 . 2008-04-03 12:22 d-------- C:\VundoFix Backups 2008-04-03 09:33 . 2008-04-03 11:15 d-------- C:\Program Files\a-squared Free 2008-04-03 01:16 . 2008-04-03 01:16 110,592 --a------ C:\WINDOWS\system32 kpmdatk.exe 2008-04-03 00:31 . 2008-04-03 00:31 114,688 --a------ C:\WINDOWS\system32\jqvwnsnw.exe 2008-04-02 23:17 . 2008-04-02 23:17 d-------- C:\Program Files\Spybot - Search & Destroy 2008-04-02 23:17 . 2008-04-02 23:39 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-04-02 14:17 . 2008-04-03 11:16 d-------- C:\Program Files\Navilog1 2008-04-02 11:26 . 2008-04-02 11:26 d-------- C:\Documents and Settings\All Users\Application Data\vwzetedu 2008-04-02 11:26 . 2008-04-02 11:26 102,400 --a------ C:\WINDOWS\system32\vuxkjavg.exe 2008-04-02 01:13 . 2008-04-02 01:13 d-------- C:\Program Files\Veoh Networks 2008-03-13 19:52 . 2008-03-13 19:52 d-------- C:\Keeping the peace . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-04-04 15:23 --------- d-----w C:\Documents and Settings\Adam\Application Data\Skype 2008-04-04 14:07 --------- d-----w C:\Documents and Settings\Adam\Application Data\skypePM 2008-04-03 09:17 --------- d-----w C:\Program Files\Webteh 2008-04-02 11:42 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-04-01 10:27 --------- d-----w C:\Documents and Settings\Adam\Application Data\OpenOffice.org2 2008-03-13 17:51 --------- d-----w C:\Documents and Settings\All Users\Application Data\DVD Shrink 2008-03-13 09:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help 2008-03-02 22:55 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat 2008-03-02 22:55 --------- d-----w C:\Program Files\Skype 2008-03-02 22:55 --------- d-----w C:\Program Files\Fichiers communs\Skype 2008-02-29 21:54 --------- d-----w C:\Program Files\DivX 2008-02-29 14:34 --------- d-----w C:\Program Files\iTunes 2008-02-29 14:33 --------- d-----w C:\Program Files\iPod 2008-02-29 14:31 --------- d-----w C:\Program Files\QuickTime 2008-02-28 10:11 --------- d-----w C:\Program Files\AltoMP3 Gold 2008-02-28 10:11 --------- d-----w C:\Documents and Settings\All Users\Application Data\TEMP 2008-02-25 21:41 --------- d-----w C:\Program Files\Windows Installer Clean Up 2008-02-25 21:41 --------- d-----w C:\Program Files\MSECACHE 2008-02-22 21:08 --------- d-----w C:\Program Files\Fichiers communs\LogiShrd 2008-02-21 02:05 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll 2008-02-21 02:05 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll 2008-02-11 16:41 --------- d-----w C:\Program Files\Fichiers communs\Adobe 2008-02-11 16:40 --------- d-----w C:\Program Files\Fichiers communs\Adobe(2) 2008-02-11 16:40 --------- d-----w C:\Program Files\Adobe(2) 2008-01-19 17:04 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe . ((((((((((((((((((((((((((((( snapshot@2008-04-04_16.49.00,29 ))))))))))))))))))))))))))))))))))))))))) . + 2008-04-04 15:11:44 45,056 ----a-w C:\WINDOWS\BDOSCAN8\avxdisk.dll + 2008-04-04 15:11:44 10,240 ----a-w C:\WINDOWS\BDOSCAN8\avxs.dll + 2008-04-04 15:11:44 27,136 ----a-w C:\WINDOWS\BDOSCAN8\avxt.dll + 2008-04-04 15:11:48 181,760 ----a-w C:\WINDOWS\BDOSCAN8\bdcore.dll + 2006-05-24 23:21:00 118,784 ----a-w C:\WINDOWS\BDOSCAN8\bdupd.dll + 2006-05-24 23:21:14 53,248 ----a-w C:\WINDOWS\BDOSCAN8\ipsupd.dll + 2008-04-04 15:11:49 142,848 ----a-w C:\WINDOWS\BDOSCAN8\libfn.dll + 2008-04-04 15:11:45 86,016 ----a-w C:\WINDOWS\BDOSCAN8\librtvr.dll + 2006-05-24 23:22:06 53,248 ----a-w C:\WINDOWS\bdoscandel.exe + 2006-05-24 23:21:00 118,784 ----a-w C:\WINDOWS\Downloaded Program Files\bdupd.dll + 2006-05-24 23:21:14 53,248 ----a-w C:\WINDOWS\Downloaded Program Files\ipsupd.dll . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-05 12:00 15360] "StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 13:35 90112] "Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2008-02-01 19:22 21898024] "Search Defender"="C:\Program Files\Speeditup Free\SearchDefender.exe" [2007-08-02 02:54 541696] "DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2007-08-16 13:24 167368] "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [2007-10-18 13:34 5724184] "vemdbilj"="C:\WINDOWS\system32\vuxkjavg.exe" [2008-04-02 11:26 102400] "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 11:43 2097488] "ftllpizu"="C:\WINDOWS\system32\jqvwnsnw.exe" [2008-04-03 00:31 114688] "zmbawrrd"="C:\WINDOWS\system32 kpmdatk.exe" [2008-04-03 01:16 110592] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SigmatelSysTrayApp"="stsystra.exe" [2007-02-19 14:26 303104 C:\WINDOWS\stsystra.exe] "Broadcom Wireless Manager UI"="C:\WINDOWS\system32\WLTRAY.exe" [2007-03-16 18:10 1392640] "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2007-04-27 16:10 851968] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 03:11 132496] "avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 15:00 79224] "Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 21:51 39792] "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB ealsched.exe" [2007-10-01 13:29 185632] "PC-Checkup"="C:\Program Files\Speeditup Free\PCCheckUp\PCCheckUp.exe" [2008-03-04 17:46 1500672] "LogitechCommunicationsManager"="C:\Program Files\Fichiers communs\LogiShrd\LComMgr\Communications_Helper.exe" [2007-10-25 17:33 563984] "LogitechQuickCamRibbon"="C:\Program Files\Logitech\QuickCam\Quickcam.exe" [2007-10-25 17:37 2178832] "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2008-02-01 01:13 385024] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-02-19 15:10 267048] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-05 12:00 15360] C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\ Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe [2007-09-28 20:03:16 50688] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer un] "eD04k2lyb0"= C:\Documents and Settings\All Users\Application Data\vwzetedu\lsxmbaxi.exe [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "VIDC.I420"= lvcodec2.dll "MSVideo"= vfwwdm32.dll "MSVideo8"= VfWWDM32.dll "msacm.scg726"= scg726.acm "msacm.alf2cd"= alf2cd.acm "msacm.ac3acm"= AC3ACM.acm "vidc.dvsd"= mcdvd_32.dll [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\system32\sessmgr.exe"= "C:\WINDOWS\system32\dpvsetup.exe"= "C:\WINDOWS\system32\rundll32.exe"= "C:\Program Files\Mozilla Firefox\firefox.exe"= "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"= "C:\Program Files\Windows Live\Messenger\livecall.exe"= "C:\Program Files\Total War\Medieval - Total War\Medieval_TW.exe"= "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"= "C:\Program Files\Real\RealPlayer\realplay.exe"= "C:\Program Files\iTunes\iTunes.exe"= "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe"= "C:\Program Files\Skype\Phone\Skype.exe"= S3 USBSTOR;Pilote de stockage de masse USB;C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 23:08] . Contenu du dossier 'Scheduled Tasks/Tâches planifiées' "2008-03-31 10:30:05 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe . ************************************************************************** catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-04 18:36:51 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cachés ... Balayage caché autostart entries ... Balayage des fichiers cachés ... Scan terminé avec succès Les fichiers cachés: 0 ************************************************************************** . Temps d'accomplissement: 2008-04-04 18:37:31 ComboFix-quarantined-files.txt 2008-04-04 16:37:21 ComboFix2.txt 2008-04-04 14:49:20 Pre-Run: 51,030,872,064 octets libres Post-Run: 51,022,385,152 octets libres . 2008-04-04 13:23:36 --- E O F ---

adam · Answer

Que dois je faire maintenant? j'ai toujours les même symptomes

dou-l · Answer

télécharge sdfix:

http://downloads.andymanchesta.com/RemovalTools/SDFix.exe

Télécharge le sur le bureau

-
Double clique sur SDFix.exe et choisis Install pour l'extraire dans un dossier dédié sur le Bureau. Redémarre ton ordinateur en mode sans échec en suivant la procédure que voici :

-Redémarre ton ordinateur
-Après avoir entendu l'ordinateur biper lors du démarrage, mais avant que l'icône Windows apparaisse, tapote la touche F8 (une pression par seconde).
-A la place du chargement normal de Windows, un menu avec différentes options devrait apparaître.
-Choisis la première option, pour exécuter Windows en mode sans échec, puis appuie sur "Entrée".
-Choisis ton compte.
-Déroule la liste des instructions ci-dessous :
-Ouvre le dossier SDFix qui vient d'être créé dans le répertoire C:\ et double clique sur RunThis.bat pour lancer le script.
-Appuie sur Y pour commencer le processus de nettoyage.
-Il va supprimer les services et les entrées du Registre de certains trojans trouvés puis te demandera d'appuyer sur une touche pour redémarrer.
-Appuie sur une touche pour redémarrer le PC.
-Ton système sera plus long pour redémarrer qu'à l'accoutumée car l'outil va continuer à s'exécuter et supprimer des fichiers.
-Après le chargement du Bureau, l'outil terminera son travail et affichera Finished.
-Appuie sur une touche pour finir l'exécution du script et charger les icônes de ton Bureau.
-Les icônes du Bureau affichées, le rapport SDFix s'ouvrira à l'écran et s'enregistrera aussi dans le dossier SDFix sous le nom Report.txt.
Enfin copie/colle le contenu du fichier Report.txt dans ta prochaine réponse sur le forum

adam · Answer

merci beaucoup, je m'y met tout de suite et je t'envoie le rapport.

adam · Answer

voila le rapport

[b]SDFix: Version 1.166 [/b]

Run by Adam on 05/04/2008 at 10:11

Microsoft Windows XP [version 5.1.2600]
Running From: C:\SDFix

[b]Checking Services [/b]:


Restoring Windows Registry Values
Restoring Windows Default Hosts File

Rebooting


[b]Checking Files [/b]: 

No Trojan Files Found






Removing Temp Files

[b]ADS Check [/b]:
 


                                 [b]Final Check [/b]:

catchme 0.3.1344.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-04-05 10:19:25
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg]
"s1"=dword:2df9c43f
"s2"=dword:110480d0
"h0"=dword:00000001

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"p0"="C:\Program Files\DAEMON Tools\"
"h0"=dword:00000000
"khjeh"=hex:73,79,e8,77,9d,b4,c9,1d,d2,aa,49,c0,28,98,d5,ea,c1,18,06,1f,57,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,fa,e7,bf,b8,e3,c9,ec,d4,8e,a2,5c,01,4a,3b,f5,e2,3c,..
"khjeh"=hex:b0,2c,0c,98,7e,b8,a8,89,1e,59,69,9a,7d,4e,be,32,4f,50,12,44,fe,..

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:06,c5,8d,57,78,32,27,c3,dc,83,be,2f,8f,a7,aa,54,ef,b2,22,54,83,..
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4]
"p0"="C:\Program Files\DAEMON Tools\"
"h0"=dword:00000000
"khjeh"=hex:73,79,e8,77,9d,b4,c9,1d,d2,aa,49,c0,28,98,d5,ea,c1,18,06,1f,57,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001]
"a0"=hex:20,01,00,00,fa,e7,bf,b8,e3,c9,ec,d4,8e,a2,5c,01,4a,3b,f5,e2,3c,..
"khjeh"=hex:b0,2c,0c,98,7e,b8,a8,89,1e,59,69,9a,7d,4e,be,32,4f,50,12,44,fe,..

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40]
"khjeh"=hex:06,c5,8d,57,78,32,27,c3,dc,83,be,2f,8f,a7,aa,54,ef,b2,22,54,83,..

scanning hidden registry entries ...

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Reinstall\24
\21]
"DisplayName"="\x6008\x77c\x6008\x77c\1"
"DeviceDesc"="\x6008\x77c\x6008\x77c\1"
"ProviderName"="\x27d4\21\xee18\x7c91\x2844\21\b"
"MFG"="\x504"
"ReinstallString"="C:\WINDOWS\System32\ReinstallBackups\xa14\21\x80\xc010\DriverFiles\.INF"
"DeviceInstanceIds"=str(7):"c:\dell\drivers134875\smbus\smbusati.inf"

scanning hidden files ...


scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 46


[b]Remaining Services [/b]:



Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Ex‚cuter une DLL en tant qu'application"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Program Files\Total War\Medieval - Total War\Medieval_TW.exe"="C:\Program Files\Total War\Medieval - Total War\Medieval_TW.exe:*:Enabled:Medieval_TW"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Real\RealPlayer\realplay.exe"="C:\Program Files\Real\RealPlayer\realplay.exe:*:Enabled:RealPlayer"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Veoh Networks\Veoh\VeohClient.exe"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe:*:Enabled:Veoh Client"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[b]Remaining Files [/b]:


File Backups: - C:\SDFix\backups\backups.zip

[b]Files with Hidden Attributes [/b]:

Mon 28 Jan 2008     1,404,240 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SDUpdate.exe"
Mon 28 Jan 2008     5,146,448 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe"
Mon 28 Jan 2008     2,097,488 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"
Tue 15 Jan 2008        18,763 ...H. --- "C:\Documents and Settings\Adam\Bureau\~WRL2176.tmp"
Mon  1 Oct 2007             0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Sun 20 Jan 2008        23,040 ...H. --- "C:\Documents and Settings\Adam\Application Data\Microsoft\Word\~WRL1354.tmp"

[b]Finished![/b]

adam · Answer

pendant un demi heure je n'ai eu aucun signe et j'ai commencé a pensé que mon ordi était nettoyé, mais au final un des écran du troyan, rouge me disant que mon ordi est infecté par abebot et que j'ai besoin d'un nouveau antivirus est apparu.

dou-l · Answer

avec smitfraudfix


Redémarre ton ordinateur en mode sans échec
Ouvre le dossier SmitfraudFix
Double clic sur Smitfraud.cm choisis l'option 2 et Entrée
Réponds O aux deux questions suivantes:
-Voulez-vous nettoyer le registre ?
-Corriger le fichier infecté ?
Un rapport.txt sera généré et tu le postes pour contrôle.





télécharge OTMoveIt
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe (de Old_Timer) sur ton Bureau. Ou sur https://www.luanagames.com/index.fr.html
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

Citation :

C:\WINDOWS\system32\jqvwnsnw.exe
C:\WINDOWS\system32
kpmdatk.exe
C:\WINDOWS\system32\vuxkjavg.exe


clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes. 



4/
Mettre a jour java:
https://www.malekal.com/maintenir-java-adobe-reader-et-le-player-flash-a-jour/

mettre a jour internet explorer
https://www.01net.com/telecharger/windows/Internet/navigateur/fiches/33081.html

mettre à jour adobe reader
https://acrobat.adobe.com/fr/fr/acrobat/pdf-reader.html 


fais analyser ces fichiers sur virustotal:

C:\WINDOWS\system32opqtcnk.exe
C:\WINDOWS\system32\mxankvgt.exe
C:\Documents and Settings\All Users\Application Data\vwzetedu
C:\WINDOWS\system32\ssldivx.dll
C:\WINDOWS\system32\libdivx.dll

adam · Answer

voila le rapport smitfraud fix, il ne m'a pas demandé de supprimer des fichiers. je continue


SmitFraudFix v2.309

Rapport fait à 11:19:37,21, 06/04/2008
Executé à partir de C:\Documents and Settings\Adam\Bureau\SmitfraudFix
OS: Microsoft Windows XP [version 5.1.2600] - Windows_NT
Le type du système de fichiers est NTFS
Fix executé en mode sans echec

»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Avant SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll

»»»»»»»»»»»»»»»»»»»»»»»» Arret des processus


»»»»»»»»»»»»»»»»»»»»»»»» hosts

127.0.0.1 localhost

»»»»»»»»»»»»»»»»»»»»»»»» VACFix

VACFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

S!Ri's WS2Fix: LSP not Found.


»»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

GenericRenosFix by S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» Suppression des fichiers infectés


»»»»»»»»»»»»»»»»»»»»»»»» IEDFix

IEDFix
Credits: Malware Analysis & Diagnostic
Code: S!Ri


»»»»»»»»»»»»»»»»»»»»»»»» DNS



»»»»»»»»»»»»»»»»»»»»»»»» Suppression Fichiers Temporaires


»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


»»»»»»»»»»»»»»»»»»»»»»»» Nettoyage du registre
 
Nettoyage terminé. 
 
»»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Après SmitFraudFix
!!!Attention, les clés qui suivent ne sont pas forcément infectées!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll


»»»»»»»»»»»»»»»»»»»»»»»» Fin

dou-l · Answer

fait le reste stp 



télécharge OTMoveIt
http://download.bleepingcomputer.com/oldtimer/OTMoveIt2.exe (de Old_Timer) sur ton Bureau. Ou sur https://www.luanagames.com/index.fr.html
double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

Citation :

C:\WINDOWS\system32\jqvwnsnw.exe
C:\WINDOWS\system32
kpmdatk.exe
C:\WINDOWS\system32\vuxkjavg.exe


clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.



4/
Mettre a jour java:
https://www.malekal.com/maintenir-java-adobe-reader-et-le-player-flash-a-jour/

mettre a jour internet explorer
https://www.01net.com/telecharger/windows/Internet/navigateur/fiches/33081.html

mettre à jour adobe reader
https://acrobat.adobe.com/fr/fr/acrobat/pdf-reader.html


fais analyser ces fichiers sur virustotal:

C:\WINDOWS\system32opqtcnk.exe
C:\WINDOWS\system32\mxankvgt.exe
C:\Documents and Settings\All Users\Application Data\vwzetedu
C:\WINDOWS\system32\ssldivx.dll
C:\WINDOWS\system32\libdivx.dll

adam · Answer

voila le rapport de otmoveit 

C:\WINDOWS\system32\jqvwnsnw.exe moved successfully.
C:\WINDOWS\system32
kpmdatk.exe moved successfully.
C:\WINDOWS\system32\vuxkjavg.exe moved successfully.
 
OTMoveIt2 by OldTimer - Version 1.0.4.0 log created on 04062008_113257

dou-l · Answer

ok 

fais analyser les autres fichier sur virustotal

adam · Answer

voila l'analyse virus total pour le premier fichier 

 Fichier ropqtcnk.exe_ reçu le 2008.04.04 10:40:27 (CET)
Situation actuelle: terminé
Résultat: 5/32 (15.62%)
Formaté Formaté
Impression des résultats Impression des résultats
Antivirus 	Version 	Dernière mise à jour 	Résultat
AhnLab-V3 	- 	- 	-
AntiVir 	- 	- 	TR/Crypt.XPACK.Gen
Authentium 	- 	- 	-
Avast 	- 	- 	-
AVG 	- 	- 	Downloader.Obfuskated
BitDefender 	- 	- 	-
CAT-QuickHeal 	- 	- 	-
ClamAV 	- 	- 	-
DrWeb 	- 	- 	-
eSafe 	- 	- 	-
eTrust-Vet 	- 	- 	-
Ewido 	- 	- 	-
F-Prot 	- 	- 	-
F-Secure 	- 	- 	-
FileAdvisor 	- 	- 	-
Fortinet 	- 	- 	-
Ikarus 	- 	- 	-
Kaspersky 	- 	- 	-
McAfee 	- 	- 	-
Microsoft 	- 	- 	TrojanDownloader:Win32/Agent.ZZC
NOD32v2 	- 	- 	-
Norman 	- 	- 	-
Panda 	- 	- 	-
Prevx1 	- 	- 	Heuristic: Suspicious File With Outbound Communications
Rising 	- 	- 	-
Sophos 	- 	- 	-
Sunbelt 	- 	- 	-
Symantec 	- 	- 	-
TheHacker 	- 	- 	-
VBA32 	- 	- 	-
VirusBuster 	- 	- 	-
Webwasher-Gateway 	- 	- 	Trojan.Crypt.XPACK.Gen
Information additionnelle
MD5: 6637c0f162d40dbc3f11c4da806aa44c
SHA1: 99aa42db160f166ee6cab2ae25b6359883ed7e2e
SHA256: 417893bd651d2cf471f9d5fc24afd35e4a696ebf393ce7ecb16d924d0d26660e
SHA512: 87cfff7bd9472bcf2ad2905a5f9aa235ea5b89cb6f1f4534882b6e7c204b0c5f510e2cb34cdfcbbd380ab2376da9b41dcf847a62432fc67a218022dfbf6a4dc2

dou-l · Answer

ok le premier es infécté fait le reste a+.

adam · Answer

le second

 Fichier pijmfobg.exe reçu le 2008.04.03 23:18:00 (CET)
Situation actuelle: terminé
Résultat: 5/32 (15.62%)
Formaté Formaté
Impression des résultats Impression des résultats
Antivirus 	Version 	Dernière mise à jour 	Résultat
AhnLab-V3 	- 	- 	-
AntiVir 	- 	- 	TR/Crypt.XPACK.Gen
Authentium 	- 	- 	-
Avast 	- 	- 	-
AVG 	- 	- 	Downloader.Obfuskated
BitDefender 	- 	- 	-
CAT-QuickHeal 	- 	- 	-
ClamAV 	- 	- 	-
DrWeb 	- 	- 	-
eSafe 	- 	- 	-
eTrust-Vet 	- 	- 	-
Ewido 	- 	- 	-
F-Prot 	- 	- 	-
F-Secure 	- 	- 	-
FileAdvisor 	- 	- 	-
Fortinet 	- 	- 	-
Ikarus 	- 	- 	-
Kaspersky 	- 	- 	-
McAfee 	- 	- 	-
Microsoft 	- 	- 	TrojanDownloader:Win32/Agent.ZZC
NOD32v2 	- 	- 	-
Norman 	- 	- 	-
Panda 	- 	- 	-
Prevx1 	- 	- 	Heuristic: Suspicious File With Bad Parent Associations
Rising 	- 	- 	-
Sophos 	- 	- 	-
Sunbelt 	- 	- 	-
Symantec 	- 	- 	-
TheHacker 	- 	- 	-
VBA32 	- 	- 	-
VirusBuster 	- 	- 	-
Webwasher-Gateway 	- 	- 	Trojan.Crypt.XPACK.Gen
Information additionnelle
MD5: baf1a4bf3d8667d6b7bd8afb3ad9bb4b
SHA1: b784567e2559b3f9c36efd4d9fa9c8fe3ab46a37
SHA256: a717a9f03cf7d690d892f7c01872834c3fded0ad5568f3d2f7c2f5eef8923f7b
SHA512: 99be96ca3b2824bd46de336a370c6c9619ef1b387dc8a1b4e18501193c822f3a61099e97815a9434bbd7a9f2e3c7ac79fe59a0610fae9c0c9b6c6d0b0dac75ce

adam · Answer

pour le troisieme, voici le message que je recois: 0 bytes size received / Se ha recibido un archivo vacio

adam · Answer

voici le quatrieme

 Fichier ssldivx.dll reçu le 2008.04.04 19:29:17 (CET)
Situation actuelle: terminé
Résultat: 0/32 (0.00%)
Formaté Formaté
Impression des résultats Impression des résultats
Antivirus 	Version 	Dernière mise à jour 	Résultat
AhnLab-V3 	2008.4.4.1 	2008.04.04 	-
AntiVir 	7.6.0.81 	2008.04.04 	-
Authentium 	4.93.8 	2008.04.03 	-
Avast 	4.7.1098.0 	2008.04.04 	-
AVG 	7.5.0.516 	2008.04.04 	-
BitDefender 	7.2 	2008.04.04 	-
CAT-QuickHeal 	9.50 	2008.04.04 	-
ClamAV 	0.92.1 	2008.04.04 	-
DrWeb 	4.44.0.09170 	2008.04.04 	-
eSafe 	7.0.15.0 	2008.04.01 	-
eTrust-Vet 	31.3.5670 	2008.04.04 	-
Ewido 	4.0 	2008.04.04 	-
F-Prot 	4.4.2.54 	2008.04.04 	-
F-Secure 	6.70.13260.0 	2008.04.04 	-
FileAdvisor 	1 	2008.04.04 	-
Fortinet 	3.14.0.0 	2008.04.04 	-
Ikarus 	T3.1.1.20 	2008.04.04 	-
Kaspersky 	7.0.0.125 	2008.04.04 	-
McAfee 	5267 	2008.04.04 	-
Microsoft 	1.3408 	2008.04.03 	-
NOD32v2 	3003 	2008.04.04 	-
Norman 	5.80.02 	2008.04.04 	-
Panda 	9.0.0.4 	2008.04.04 	-
Prevx1 	V2 	2008.04.04 	-
Rising 	20.38.60.00 	2008.04.03 	-
Sophos 	4.28.0 	2008.04.04 	-
Sunbelt 	3.0.978.0 	2008.03.18 	-
Symantec 	10 	2008.04.04 	-
TheHacker 	6.2.92.264 	2008.04.04 	-
VBA32 	3.12.6.3 	2008.03.25 	-
VirusBuster 	4.3.26:9 	2008.04.04 	-
Webwasher-Gateway 	6.6.2 	2008.04.04 	-
Information additionnelle
File size: 200704 bytes
MD5...: eed2ce7bd9e43b8500d906d944460d22
SHA1..: c34261a2b1e30fa5c80fe304683b6568d12eb978
SHA256: 94d8edba9c4509483fdd5deb3a9aac51506b56d80f1a138bf2493eefc49f78ab
SHA512: 24e024a61d74c8f8976ea5cd52cb7479437756cd2734d5b8ce1245ee23756bf8
ce04f19f89356121e49c4c9b077e0c9ecdadb1b088b8ca24f2eee0cd425c0fe6
PEiD..: Armadillo v1.xx - v2.xx
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x1002239a
timedatestamp.....: 0x44691d42 (Tue May 16 00:30:58 2006)
machinetype.......: 0x14c (I386)

( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0x2145e 0x22000 6.25 73037a107b70a1cc30883247a0feb9fd
.rdata 0x23000 0x73ea 0x8000 5.13 8030a96377a813f37863453bff029028
.data 0x2b000 0x24c4 0x3000 3.89 338ae97b86a868e2111bb9ec09bfec4a
.rsrc 0x2e000 0x440 0x1000 1.16 a6458ae5e5c5267a59d7463dbd63b254
.reloc 0x2f000 0x1ba2 0x2000 6.03 1acebc5b05861141e863de7cb89648fb

( 3 imports )
> libdivx.dll: -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -
> MSVCRT.dll: _adjust_fdiv, malloc, _initterm, free, _errno, _iob, fprintf, strncmp, memmove, time
> KERNEL32.dll: GetLastError, SetLastError, DisableThreadLibraryCalls

( 206 exports )
BIO_f_ssl, BIO_new_buffer_ssl_connect, BIO_new_ssl, BIO_new_ssl_connect, BIO_ssl_copy_session_id, BIO_ssl_shutdown, DTLSv1_client_method, DTLSv1_method, DTLSv1_server_method, ERR_load_SSL_strings, SSL_CIPHER_description, SSL_CIPHER_get_bits, SSL_CIPHER_get_name, SSL_CIPHER_get_version, SSL_COMP_add_compression_method, SSL_COMP_get_compression_methods, SSL_COMP_get_name, SSL_CTX_add_client_CA, SSL_CTX_add_session, SSL_CTX_callback_ctrl, SSL_CTX_check_private_key, SSL_CTX_ctrl, SSL_CTX_flush_sessions, SSL_CTX_free, SSL_CTX_get_cert_store, SSL_CTX_get_client_CA_list, SSL_CTX_get_ex_data, SSL_CTX_get_ex_new_index, SSL_CTX_get_quiet_shutdown, SSL_CTX_get_timeout, SSL_CTX_get_verify_callback, SSL_CTX_get_verify_depth, SSL_CTX_get_verify_mode, SSL_CTX_load_verify_locations, SSL_CTX_new, SSL_CTX_remove_session, SSL_CTX_sessions, SSL_CTX_set_cert_store, SSL_CTX_set_cert_verify_callback, SSL_CTX_set_cipher_list, SSL_CTX_set_client_CA_list, SSL_CTX_set_default_passwd_cb, SSL_CTX_set_default_passwd_cb_userdata, SSL_CTX_set_default_verify_paths, SSL_CTX_set_ex_data, SSL_CTX_set_generate_session_id, SSL_CTX_set_msg_callback, SSL_CTX_set_purpose, SSL_CTX_set_quiet_shutdown, SSL_CTX_set_session_id_context, SSL_CTX_set_ssl_version, SSL_CTX_set_timeout, SSL_CTX_set_tmp_dh_callback, SSL_CTX_set_tmp_ecdh_callback, SSL_CTX_set_tmp_rsa_callback, SSL_CTX_set_trust, SSL_CTX_set_verify, SSL_CTX_set_verify_depth, SSL_CTX_use_PrivateKey, SSL_CTX_use_PrivateKey_ASN1, SSL_CTX_use_PrivateKey_file, SSL_CTX_use_RSAPrivateKey, SSL_CTX_use_RSAPrivateKey_ASN1, SSL_CTX_use_RSAPrivateKey_file, SSL_CTX_use_certificate, SSL_CTX_use_certificate_ASN1, SSL_CTX_use_certificate_chain_file, SSL_CTX_use_certificate_file, SSL_SESSION_cmp, SSL_SESSION_free, SSL_SESSION_get_ex_data, SSL_SESSION_get_ex_new_index, SSL_SESSION_get_id, SSL_SESSION_get_time, SSL_SESSION_get_timeout, SSL_SESSION_hash, SSL_SESSION_new, SSL_SESSION_print, SSL_SESSION_print_fp, SSL_SESSION_set_ex_data, SSL_SESSION_set_time, SSL_SESSION_set_timeout, SSL_accept, SSL_add_client_CA, SSL_add_dir_cert_subjects_to_stack, SSL_add_file_cert_subjects_to_stack, SSL_alert_desc_string, SSL_alert_desc_string_long, SSL_alert_type_string, SSL_alert_type_string_long, SSL_callback_ctrl, SSL_check_private_key, SSL_clear, SSL_connect, SSL_copy_session_id, SSL_ctrl, SSL_do_handshake, SSL_dup, SSL_dup_CA_list, SSL_free, SSL_get1_session, SSL_get_SSL_CTX, SSL_get_certificate, SSL_get_cipher_list, SSL_get_ciphers, SSL_get_client_CA_list, SSL_get_current_cipher, SSL_get_current_compression, SSL_get_current_expansion, SSL_get_default_timeout, SSL_get_error, SSL_get_ex_data, SSL_get_ex_data_X509_STORE_CTX_idx, SSL_get_ex_new_index, SSL_get_fd, SSL_get_finished, SSL_get_info_callback, SSL_get_peer_cert_chain, SSL_get_peer_certificate, SSL_get_peer_finished, SSL_get_privatekey, SSL_get_quiet_shutdown, SSL_get_rbio, SSL_get_read_ahead, SSL_get_rfd, SSL_get_session, SSL_get_shared_ciphers, SSL_get_shutdown, SSL_get_ssl_method, SSL_get_verify_callback, SSL_get_verify_depth, SSL_get_verify_mode, SSL_get_verify_result, SSL_get_version, SSL_get_wbio, SSL_get_wfd, SSL_has_matching_session_id, SSL_library_init, SSL_load_client_CA_file, SSL_load_error_strings, SSL_new, SSL_peek, SSL_pending, SSL_read, SSL_renegotiate, SSL_renegotiate_pending, SSL_rstate_string, SSL_rstate_string_long, SSL_set_accept_state, SSL_set_bio, SSL_set_cipher_list, SSL_set_client_CA_list, SSL_set_connect_state, SSL_set_ex_data, SSL_set_fd, SSL_set_generate_session_id, SSL_set_info_callback, SSL_set_msg_callback, SSL_set_purpose, SSL_set_quiet_shutdown, SSL_set_read_ahead, SSL_set_rfd, SSL_set_session, SSL_set_session_id_context, SSL_set_shutdown, SSL_set_ssl_method, SSL_set_tmp_dh_callback, SSL_set_tmp_ecdh_callback, SSL_set_tmp_rsa_callback, SSL_set_trust, SSL_set_verify, SSL_set_verify_depth, SSL_set_verify_result, SSL_set_wfd, SSL_shutdown, SSL_state, SSL_state_string, SSL_state_string_long, SSL_use_PrivateKey, SSL_use_PrivateKey_ASN1, SSL_use_PrivateKey_file, SSL_use_RSAPrivateKey, SSL_use_RSAPrivateKey_ASN1, SSL_use_RSAPrivateKey_file, SSL_use_certificate, SSL_use_certificate_ASN1, SSL_use_certificate_file, SSL_version, SSL_want, SSL_write, SSLv23_client_method, SSLv23_method, SSLv23_server_method, SSLv2_client_method, SSLv2_method, SSLv2_server_method, SSLv3_client_method, SSLv3_method, SSLv3_server_method, TLSv1_client_method, TLSv1_method, TLSv1_server_method, d2i_SSL_SESSION, i2d_SSL_SESSION, ssl2_ciphers, ssl3_ciphers

adam · Answer

voila le cinquieme


 Fichier libdivx.dll reçu le 2008.04.04 19:29:09 (CET)
Situation actuelle: terminé
Résultat: 0/32 (0.00%)
Formaté Formaté
Impression des résultats Impression des résultats
Antivirus 	Version 	Dernière mise à jour 	Résultat
AhnLab-V3 	2008.4.4.1 	2008.04.04 	-
AntiVir 	7.6.0.81 	2008.04.04 	-
Authentium 	4.93.8 	2008.04.03 	-
Avast 	4.7.1098.0 	2008.04.04 	-
AVG 	7.5.0.516 	2008.04.04 	-
BitDefender 	7.2 	2008.04.04 	-
CAT-QuickHeal 	9.50 	2008.04.04 	-
ClamAV 	0.92.1 	2008.04.04 	-
DrWeb 	4.44.0.09170 	2008.04.04 	-
eSafe 	7.0.15.0 	2008.04.01 	-
eTrust-Vet 	31.3.5670 	2008.04.04 	-
Ewido 	4.0 	2008.04.04 	-
F-Prot 	4.4.2.54 	2008.04.04 	-
F-Secure 	6.70.13260.0 	2008.04.04 	-
FileAdvisor 	1 	2008.04.04 	-
Fortinet 	3.14.0.0 	2008.04.04 	-
Ikarus 	T3.1.1.20 	2008.04.04 	-
Kaspersky 	7.0.0.125 	2008.04.04 	-
McAfee 	5267 	2008.04.04 	-
Microsoft 	1.3408 	2008.04.03 	-
NOD32v2 	3003 	2008.04.04 	-
Norman 	5.80.02 	2008.04.04 	-
Panda 	9.0.0.4 	2008.04.04 	-
Prevx1 	V2 	2008.04.04 	-
Rising 	20.38.60.00 	2008.04.03 	-
Sophos 	4.28.0 	2008.04.04 	-
Sunbelt 	3.0.978.0 	2008.03.18 	-
Symantec 	10 	2008.04.04 	-
TheHacker 	6.2.92.264 	2008.04.04 	-
VBA32 	3.12.6.3 	2008.03.25 	-
VirusBuster 	4.3.26:9 	2008.04.04 	-
Webwasher-Gateway 	6.6.2 	2008.04.04 	-
Information additionnelle
File size: 1044480 bytes
MD5...: 5d10887c550ab149a7d0e0c2438b8655
SHA1..: e119b812efa903730a899485a0227353ba88bf94
SHA256: d4e493abd564da8a1a457f6ad6d8b7721dbf0dda3f5a2dd64f32c3c9441918e9
SHA512: 7acd2f0c1bbb7ac56da378181a96fea1bd34d7c3b07d7e8089fe1149dea49910
69c2c6766e0d32c9aeae53be55841d24e2f9d27ec70f61f3a52dbbc7c27c6ad6
PEiD..: Armadillo v1.xx - v2.xx
PEInfo: PE Structure information

( base data )
entrypointaddress.: 0x100a638d
timedatestamp.....: 0x44691d21 (Tue May 16 00:30:25 2006)
machinetype.......: 0x14c (I386)

( 5 sections )
name viradd virsiz rawdsiz ntrpy md5
.text 0x1000 0xa5430 0xa6000 6.59 14a91b9668286cfe5c15d9c9c11430cd
.rdata 0xa7000 0x3dedb 0x3e000 6.34 e289ca523ae3789c837d62ec0007a1aa
.data 0xe5000 0x116cc 0xe000 5.26 b7686c922d17314f576b047c1e1fc465
.rsrc 0xf7000 0x440 0x1000 1.16 c1a9ae4c6333e9c9952296f662b41917
.reloc 0xf8000 0xa710 0xb000 6.43 7109e5459d3aa34c77b8473197efdc78

( 6 imports )
> WSOCK32.dll: -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -, -
> GDI32.dll: CreateCompatibleDC, GetDeviceCaps, CreateCompatibleBitmap, SelectObject, GetObjectA, BitBlt, GetBitmapBits, DeleteObject, DeleteDC, CreateDCA
> ADVAPI32.dll: ReportEventA, DeregisterEventSource, RegisterEventSourceA
> USER32.dll: MessageBoxA, GetDesktopWindow, GetProcessWindowStation, GetUserObjectInformationW
> MSVCRT.dll: _write, _fileno, _stat, _chmod, _getch, _isctype, _read, sprintf, abort, wcsstr, _vsnprintf, vfprintf, _iob, free, realloc, malloc, memchr, time, localtime, gmtime, strncpy, _errno, memmove, _pctype, __mb_cur_max, _getpid, fprintf, strstr, fputs, fclose, fopen, fread, fwrite, fflush, _setmode, ftell, fseek, fgets, _ftol, atoi, perror, qsort, strcmp, getenv, strerror, strchr, strncmp, strtoul, strrchr, tolower, sscanf, exit, strtol, signal, printf, _initterm, _adjust_fdiv
> KERNEL32.dll: SetLastError, LoadLibraryA, FreeLibrary, FindClose, GetModuleHandleA, GetCurrentProcessId, GetThreadTimes, GetCurrentThread, GetProcAddress, GetFileType, GetVersion, GlobalMemoryStatus, QueryPerformanceCounter, CloseHandle, GetTickCount, GetVersionExA, FlushConsoleInputBuffer, ExitProcess, GetCurrentThreadId, FindNextFileA, GetLastError, FindFirstFileA, GetStdHandle

( 2953 exports )
ACCESS_DESCRIPTION_free, ACCESS_DESCRIPTION_it, ACCESS_DESCRIPTION_new, AES_cbc_encrypt, AES_cfb128_encrypt, AES_cfb1_encrypt, AES_cfb8_encrypt, AES_cfbr_encrypt_block, AES_ctr128_encrypt, AES_decrypt, AES_ecb_encrypt, AES_encrypt, AES_ofb128_encrypt, AES_options, AES_set_decrypt_key, AES_set_encrypt_key, ASN1_ANY_it, ASN1_BIT_STRING_asn1_meth, ASN1_BIT_STRING_free, ASN1_BIT_STRING_get_bit, ASN1_BIT_STRING_it, ASN1_BIT_STRING_name_print, ASN1_BIT_STRING_new, ASN1_BIT_STRING_num_asc, ASN1_BIT_STRING_set, ASN1_BIT_STRING_set_asc, ASN1_BIT_STRING_set_bit, ASN1_BMPSTRING_free, ASN1_BMPSTRING_it, ASN1_BMPSTRING_new, ASN1_BOOLEAN_it, ASN1_ENUMERATED_free, ASN1_ENUMERATED_get, ASN1_ENUMERATED_it, ASN1_ENUMERATED_new, ASN1_ENUMERATED_set, ASN1_ENUMERATED_to_BN, ASN1_FBOOLEAN_it, ASN1_GENERALIZEDTIME_check, ASN1_GENERALIZEDTIME_free, ASN1_GENERALIZEDTIME_it, ASN1_GENERALIZEDTIME_new, ASN1_GENERALIZEDTIME_print, ASN1_GENERALIZEDTIME_set, ASN1_GENERALIZEDTIME_set_string, ASN1_GENERALSTRING_free, ASN1_GENERALSTRING_it, ASN1_GENERALSTRING_new, ASN1_HEADER_free, ASN1_HEADER_new, ASN1_IA5STRING_asn1_meth, ASN1_IA5STRING_free, ASN1_IA5STRING_it, ASN1_IA5STRING_new, ASN1_INTEGER_cmp, ASN1_INTEGER_dup, ASN1_INTEGER_free, ASN1_INTEGER_get, ASN1_INTEGER_it, ASN1_INTEGER_new, ASN1_INTEGER_set, ASN1_INTEGER_to_BN, ASN1_NULL_free, ASN1_NULL_it, ASN1_NULL_new, ASN1_OBJECT_create, ASN1_OBJECT_free, ASN1_OBJECT_it, ASN1_OBJECT_new, ASN1_OCTET_STRING_NDEF_it, ASN1_OCTET_STRING_cmp, ASN1_OCTET_STRING_dup, ASN1_OCTET_STRING_free, ASN1_OCTET_STRING_it, ASN1_OCTET_STRING_new, ASN1_OCTET_STRING_set, ASN1_PRINTABLESTRING_free, ASN1_PRINTABLESTRING_it, ASN1_PRINTABLESTRING_new, ASN1_PRINTABLE_free, ASN1_PRINTABLE_it, ASN1_PRINTABLE_new, ASN1_PRINTABLE_type, ASN1_SEQUENCE_it, ASN1_STRING_TABLE_add, ASN1_STRING_TABLE_cleanup, ASN1_STRING_TABLE_get, ASN1_STRING_cmp, ASN1_STRING_data, ASN1_STRING_dup, ASN1_STRING_encode, ASN1_STRING_free, ASN1_STRING_get_default_mask, ASN1_STRING_length, ASN1_STRING_length_set, ASN1_STRING_new, ASN1_STRING_print, ASN1_STRING_print_ex, ASN1_STRING_print_ex_fp, ASN1_STRING_set, ASN1_STRING_set_by_NID, ASN1_STRING_set_default_mask, ASN1_STRING_set_default_mask_asc, ASN1_STRING_to_UTF8, ASN1_STRING_type, ASN1_STRING_type_new, ASN1_T61STRING_free, ASN1_T61STRING_it, ASN1_T61STRING_new, ASN1_TBOOLEAN_it, ASN1_TIME_check, ASN1_TIME_free, ASN1_TIME_it, ASN1_TIME_new, ASN1_TIME_print, ASN1_TIME_set, ASN1_TIME_to_generalizedtime, ASN1_TYPE_free, ASN1_TYPE_get, ASN1_TYPE_get_int_octetstring, ASN1_TYPE_get_octetstring, ASN1_TYPE_new, ASN1_TYPE_set, ASN1_TYPE_set_int_octetstring, ASN1_TYPE_set_octetstring, ASN1_UNIVERSALSTRING_free, ASN1_UNIVERSALSTRING_it, ASN1_UNIVERSALSTRING_new, ASN1_UNIVERSALSTRING_to_string, ASN1_UTCTIME_check, ASN1_UTCTIME_cmp_time_t, ASN1_UTCTIME_free, ASN1_UTCTIME_it, ASN1_UTCTIME_new, ASN1_UTCTIME_print, ASN1_UTCTIME_set, ASN1_UTCTIME_set_string, ASN1_UTF8STRING_free, ASN1_UTF8STRING_it, ASN1_UTF8STRING_new, ASN1_VISIBLESTRING_free, ASN1_VISIBLESTRING_it, ASN1_VISIBLESTRING_new, ASN1_add_oid_module, ASN1_check_infinite_end, ASN1_const_check_infinite_end, ASN1_d2i_bio, ASN1_d2i_fp, ASN1_digest, ASN1_dup, ASN1_generate_nconf, ASN1_generate_v3, ASN1_get_object, ASN1_i2d_bio, ASN1_i2d_fp, ASN1_item_d2i, ASN1_item_d2i_bio, ASN1_item_d2i_fp, ASN1_item_digest, ASN1_item_dup, ASN1_item_ex_d2i, ASN1_item_ex_free, ASN1_item_ex_i2d, ASN1_item_ex_new, ASN1_item_free, ASN1_item_i2d, ASN1_item_i2d_bio, ASN1_item_i2d_fp, ASN1_item_ndef_i2d, ASN1_item_new, ASN1_item_pack, ASN1_item_sign, ASN1_item_unpack, ASN1_item_verify, ASN1_mbstring_copy, ASN1_mbstring_ncopy, ASN1_object_size, ASN1_pack_string, ASN1_parse, ASN1_parse_dump, ASN1_primitive_free, ASN1_primitive_new, ASN1_put_eoc, ASN1_put_object, ASN1_seq_pack, ASN1_seq_unpack, ASN1_sign, ASN1_tag2bit, ASN1_tag2str, ASN1_template_d2i, ASN1_template_free, ASN1_template_i2d, ASN1_template_new, ASN1_unpack_string, ASN1_verify, AUTHORITY_INFO_ACCESS_free, AUTHORITY_INFO_ACCESS_it, AUTHORITY_INFO_ACCESS_new, AUTHORITY_KEYID_free, AUTHORITY_KEYID_it, AUTHORITY_KEYID_new, BASIC_CONSTRAINTS_free, BASIC_CONSTRAINTS_it, BASIC_CONSTRAINTS_new, BF_cbc_encrypt, BF_cfb64_encrypt, BF_decrypt, BF_ecb_encrypt, BF_encrypt, BF_ofb64_encrypt, BF_options, BF_set_key, BIGNUM_it, BIO_accept, BIO_callback_ctrl, BIO_copy_next_retry, BIO_ctrl, BIO_ctrl_get_read_request, BIO_ctrl_get_write_guarantee, BIO_ctrl_pending, BIO_ctrl_reset_read_request, BIO_ctrl_wpending, BIO_debug_callback, BIO_dgram_non_fatal_error, BIO_dump, BIO_dump_cb, BIO_dump_fp, BIO_dump_indent, BIO_dump_indent_cb, BIO_dump_indent_fp, BIO_dup_chain, BIO_f_base64, BIO_f_buffer, BIO_f_cipher, BIO_f_md, BIO_f_nbio_test, BIO_f_null, BIO_f_reliable, BIO_fd_non_fatal_error, BIO_fd_should_retry, BIO_find_type, BIO_free, BIO_free_all, BIO_get_accept_socket, BIO_get_ex_data, BIO_get_ex_new_index, BIO_get_host_ip, BIO_get_port, BIO_get_retry_BIO, BIO_get_retry_reason, BIO_gethostbyname, BIO_gets, BIO_indent, BIO_int_ctrl, BIO_new, BIO_new_accept, BIO_new_bio_pair, BIO_new_connect, BIO_new_dgram, BIO_new_fd, BIO_new_file, BIO_new_fp, BIO_new_mem_buf, BIO_new_socket, BIO_next, BIO_nread, BIO_nread0, BIO_number_read, BIO_number_written, BIO_nwrite, BIO_nwrite0, BIO_pop, BIO_printf, BIO_ptr_ctrl, BIO_push, BIO_puts, BIO_read, BIO_s_accept, BIO_s_bio, BIO_s_connect, BIO_s_datagram, BIO_s_fd, BIO_s_file, BIO_s_mem, BIO_s_null, BIO_s_socket, BIO_set, BIO_set_cipher, BIO_set_ex_data, BIO_set_tcp_ndelay, BIO_snprintf, BIO_sock_cleanup, BIO_sock_error, BIO_sock_init, BIO_sock_non_fatal_error, BIO_sock_should_retry, BIO_socket_ioctl, BIO_socket_nbio, BIO_vfree, BIO_vprintf, BIO_vsnprintf, BIO_write, BN_BLINDING_convert, BN_BLINDING_convert_ex, BN_BLINDING_create_param, BN_BLINDING_free, BN_BLINDING_get_flags, BN_BLINDING_get_thread_id, BN_BLINDING_invert, BN_BLINDING_invert_ex, BN_BLINDING_new, BN_BLINDING_set_flags, BN_BLINDING_set_thread_id, BN_BLINDING_update, BN_CTX_end, BN_CTX_free, BN_CTX_get, BN_CTX_init, BN_CTX_new, BN_CTX_start, BN_GENCB_call, BN_GF2m_add, BN_GF2m_arr2poly, BN_GF2m_mod, BN_GF2m_mod_arr, BN_GF2m_mod_div, BN_GF2m_mod_div_arr, BN_GF2m_mod_exp, BN_GF2m_mod_exp_arr, BN_GF2m_mod_inv, BN_GF2m_mod_inv_arr, BN_GF2m_mod_mul, BN_GF2m_mod_mul_arr, BN_GF2m_mod_solve_quad, BN_GF2m_mod_solve_quad_arr, BN_GF2m_mod_sqr, BN_GF2m_mod_sqr_arr, BN_GF2m_mod_sqrt, BN_GF2m_mod_sqrt_arr, BN_GF2m_poly2arr, BN_MONT_CTX_copy, BN_MONT_CTX_free, BN_MONT_CTX_init, BN_MONT_CTX_new, BN_MONT_CTX_set, BN_MONT_CTX_set_locked, BN_RECP_CTX_free, BN_RECP_CTX_init, BN_RECP_CTX_new, BN_RECP_CTX_set, BN_add, BN_add_word, BN_bin2bn, BN_bn2bin, BN_bn2dec, BN_bn2hex, BN_bn2mpi, BN_bntest_rand, BN_clear, BN_clear_bit, BN_clear_free, BN_cmp, BN_copy, BN_dec2bn, BN_div, BN_div_recp, BN_div_word, BN_dup, BN_exp, BN_free, BN_from_montgomery, BN_gcd, BN_generate_prime, BN_generate_prime_ex, BN_get0_nist_prime_192, BN_get0_nist_prime_224, BN_get0_nist_prime_256, BN_get0_nist_prime_384, BN_get0_nist_prime_521, BN_get_params, BN_get_word, BN_hex2bn, BN_init, BN_is_bit_set, BN_is_prime, BN_is_prime_ex, BN_is_prime_fasttest, BN_is_prime_fasttest_ex, BN_kronecker, BN_lshift, BN_lshift1, BN_mask_bits, BN_mod_add, BN_mod_add_quick, BN_mod_exp, BN_mod_exp2_mont, BN_mod_exp_mont, BN_mod_exp_mont_consttime, BN_mod_exp_mont_word, BN_mod_exp_recp, BN_mod_exp_simple, BN_mod_inverse, BN_mod_lshift, BN_mod_lshift1, BN_mod_lshift1_quick, BN_mod_lshift_quick, BN_mod_mul, BN_mod_mul_montgomery, BN_mod_mul_reciprocal, BN_mod_sqr, BN_mod_sqrt, BN_mod_sub, BN_mod_sub_quick, BN_mod_word, BN_mpi2bn, BN_mul, BN_mul_word, BN_new, BN_nist_mod_192, BN_nist_mod_224, BN_nist_mod_256, BN_nist_mod_384, BN_nist_mod_521, BN_nnmod, BN_num_bits, BN_num_bits_word, BN_options, BN_print, BN_print_fp, BN_pseudo_rand, BN_pseudo_rand_range, BN_rand, BN_rand_range, BN_reciprocal, BN_rshift, BN_rshift1, BN_set_bit, BN_set_negative, BN_set_params, BN_set_word, BN_sqr, BN_sub, BN_sub_word, BN_swap, BN_to_ASN1_ENUMERATED, BN_to_ASN1_INTEGER, BN_uadd, BN_ucmp, BN_usub, BN_value_one, BUF_MEM_free, BUF_MEM_grow, BUF_MEM_grow_clean, BUF_MEM_new, BUF_memdup, BUF_strdup, BUF_strlcat, BUF_strlcpy, BUF_strndup, CAST_cbc_encrypt, CAST_cfb64_encrypt, CAST_decrypt, CAST_ecb_encrypt, CAST_encrypt, CAST_ofb64_encrypt, CAST_set_key, CBIGNUM_it, CERTIFICATEPOLICIES_free, CERTIFICATEPOLICIES_it, CERTIFICATEPOLICIES_new, COMP_CTX_free, COMP_CTX_new, COMP_compress_block, COMP_expand_block, COMP_rle, COMP_zlib, CONF_dump_bio, CONF_dump_fp, CONF_free, CONF_get1_default_config_file, CONF_get_number, CONF_get_section, CONF_get_string, CONF_imodule_get_flags, CONF_imodule_get_module, CONF_imodule_get_name, CONF_imodule_get_usr_data, CONF_imodule_get_value, CONF_imodule_set_flags, CONF_imodule_set_usr_data, CONF_load, CONF_load_bio, CONF_load_fp, CONF_module_add, CONF_module_get_usr_data, CONF_module_set_usr_data, CONF_modules_finish, CONF_modules_free, CONF_modules_load, CONF_modules_load_file, CONF_modules_unload, CONF_parse_list, CONF_set_default_method, CONF_set_nconf, CRL_DIST_POINTS_free, CRL_DIST_POINTS_it, CRL_DIST_POINTS_new, CRYPTO_add_lock, CRYPTO_cleanup_all_ex_data, CRYPTO_dbg_free, CRYPTO_dbg_get_options, CRYPTO_dbg_malloc, CRYPTO_dbg_realloc, CRYPTO_dbg_set_options, CRYPTO_destroy_dynlockid, CRYPTO_dup_ex_data, CRYPTO_ex_data_new_class, CRYPTO_free, CRYPTO_free_ex_data, CRYPTO_free_locked, CRYPTO_get_add_lock_callback, CRYPTO_get_dynlock_create_callback, CRYPTO_get_dynlock_destroy_callback, CRYPTO_get_dynlock_lock_callback, CRYPTO_get_dynlock_value, CRYPTO_get_ex_data, CRYPTO_get_ex_data_implementation, CRYPTO_get_ex_new_index, CRYPTO_get_id_callback, CRYPTO_get_lock_name, CRYPTO_get_locked_mem_ex_functions, CRYPTO_get_locked_mem_functions, CRYPTO_get_locking_callback, CRYPTO_get_mem_debug_functions, CRYPTO_get_mem_debug_options, CRYPTO_get_mem_ex_functions, CRYPTO_get_mem_functions, CRYPTO_get_new_dynlockid, CRYPTO_get_new_lockid, CRYPTO_is_mem_check_on, CRYPTO_lock, CRYPTO_malloc, CRYPTO_malloc_locked, CRYPTO_mem_ctrl, CRYPTO_mem_leaks, CRYPTO_mem_leaks_cb, CRYPTO_mem_leaks_fp, CRYPTO_new_ex_data, CRYPTO_num_locks, CRYPTO_pop_info, CRYPTO_push_info_, CRYPTO_realloc, CRYPTO_realloc_clean, CRYPTO_remalloc, CRYPTO_remove_all_info, CRYPTO_set_add_lock_callback, CRYPTO_set_dynlock_create_callback, CRYPTO_set_dynlock_destroy_callback, CRYPTO_set_dynlock_lock_callback, CRYPTO_set_ex_data, CRYPTO_set_ex_data_implementation, CRYPTO_set_id_callback, CRYPTO_set_locked_mem_ex_functions, CRYPTO_set_locked_mem_functions, CRYPTO_set_locking_callback, CRYPTO_set_mem_debug_functions, CRYPTO_set_mem_debug_options, CRYPTO_set_mem_ex_functions, CRYPTO_set_mem_functions, CRYPTO_thread_id, DES_cbc_cksum, DES_cbc_encrypt, DES_cfb64_encrypt, DES_cfb_encrypt, DES_check_key_parity, DES_crypt, DES_decrypt3, DES_ecb3_encrypt, DES_ecb_encrypt, DES_ede3_cbc_encrypt, DES_ede3_cbcm_encrypt, DES_ede3_cfb64_encrypt, DES_ede3_cfb_encrypt, DES_ede3_ofb64_encrypt, DES_enc_read, DES_enc_write, DES_encrypt1, DES_encrypt2, DES_encrypt3, DES_fcrypt, DES_is_weak_key, DES_key_sched, DES_ncbc_encrypt, DES_ofb64_encrypt, DES_ofb_encrypt, DES_options, DES_pcbc_encrypt, DES_quad_cksum, DES_random_key, DES_read_2passwords, DES_read_password, DES_set_key, DES_set_key_checked, DES_set_key_unchecked, DES_set_odd_parity, DES_string_to_2keys, DES_string_to_key, DES_xcbc_encrypt, DES_xwhite_in2out, DH_OpenSSL, DH_check, DH_check_pub_key, DH_compute_key, DH_free, DH_generate_key, DH_generate_parameters, DH_generate_parameters_ex, DH_get_default_method, DH_get_ex_data, DH_get_ex_new_index, DH_new, DH_new_method, DH_set_default_method, DH_set_ex_data, DH_set_method, DH_size, DH_up_ref, DHparams_print, DHparams_print_fp, DIRECTORYSTRING_free, DIRECTORYSTRING_it, DIRECTORYSTRING_new, DISPLAYTEXT_free, DISPLAYTEXT_it, DISPLAYTEXT_new, DIST_POINT_NAME_free, DIST_POINT_NAME_it, DIST_POINT_NAME_new, DIST_POINT_free, DIST_POINT_it, DIST_POINT_new, DSA_OpenSSL, DSA_SIG_free, DSA_SIG_new, DSA_do_sign, DSA_do_verify, DSA_dup_DH, DSA_free, DSA_generate_key, DSA_generate_parameters, DSA_generate_parameters_ex, DSA_get_default_method, DSA_get_ex_data, DSA_get_ex_new_index, DSA_new, DSA_new_method, DSA_print, DSA_print_fp, DSA_set_default_method, DSA_set_ex_data, DSA_set_method, DSA_sign, DSA_sign_setup, DSA_size, DSA_up_ref, DSA_verify, DSAparams_print, DSAparams_print_fp, DSO_METHOD_dl, DSO_METHOD_dlfcn, DSO_METHOD_null, DSO_METHOD_openssl, DSO_METHOD_vms, DSO_METHOD_win32, DSO_bind_func, DSO_bind_var, DSO_convert_filename, DSO_ctrl, DSO_flags, DSO_free, DSO_get_default_method, DSO_get_filename, DSO_get_loaded_filename, DSO_get_method, DSO_load, DSO_merge, DSO_new, DSO_new_method, DSO_set_default_method, DSO_set_filename, DSO_set_method, DSO_set_name_converter, DSO_up_ref, ECDH_OpenSSL, ECDH_compute_key, ECDH_get_default_method, ECDH_get_ex_data, ECDH_get_ex_new_index, ECDH_set_default_method, ECDH_set_ex_data, ECDH_set_method, ECDSA_OpenSSL, ECDSA_SIG_free, ECDSA_SIG_new, ECDSA_do_sign, ECDSA_do_sign_ex, ECDSA_do_verify, ECDSA_get_default_method, ECDSA_get_ex_data, ECDSA_get_ex_new_index, ECDSA_set_default_method, ECDSA_set_ex_data, ECDSA_set_method, ECDSA_sign, ECDSA_sign_ex, ECDSA_sign_setup, ECDSA_size, ECDSA_verify, ECPKParameters_print, ECPKParameters_print_fp, ECParameters_print, ECParameters_print_fp, EC_GF2m_simple_method, EC_GFp_mont_method, EC_GFp_nist_method, EC_GFp_simple_method, EC_GROUP_check, EC_GROUP_check_discriminant, EC_GROUP_clear_free, EC_GROUP_cmp, EC_GROUP_copy, EC_GROUP_dup, EC_GROUP_free, EC_GROUP_get0_generator, EC_GROUP_get0_seed, EC_GROUP_get_asn1_flag, EC_GROUP_get_basis_type, EC_GROUP_get_cofactor, EC_GROUP_get_curve_GF2m, EC_GROUP_get_curve_GFp, EC_GROUP_get_curve_name, EC_GROUP_get_degree, EC_GROUP_get_order, EC_GROUP_get_pentanomial_basis, EC_GROUP_get_point_conversion_form, EC_GROUP_get_seed_len, EC_GROUP_get_trinomial_basis, EC_GROUP_have_precompute_mult, EC_GROUP_method_of, EC_GROUP_new, EC_GROUP_new_by_curve_name, EC_GROUP_new_curve_GF2m, EC_GROUP_new_curve_GFp, EC_GROUP_precompute_mult, EC_GROUP_set_asn1_flag, EC_GROUP_set_curve_GF2m, EC_GROUP_set_curve_GFp, EC_GROUP_set_curve_name, EC_GROUP_set_generator, EC_GROUP_set_point_conversion_form, EC_GROUP_set_seed, EC_KEY_check_key, EC_KEY_copy, EC_KEY_dup, EC_KEY_free, EC_KEY_generate_key, EC_KEY_get0_group, EC_KEY_get0_private_key, EC_KEY_get0_public_key, EC_KEY_get_conv_form, EC_KEY_get_enc_flags, EC_KEY_get_key_method_data, EC_KEY_insert_key_method_data, EC_KEY_new, EC_KEY_new_by_curve_name, EC_KEY_precompute_mult, EC_KEY_print, EC_KEY_print_fp, EC_KEY_set_asn1_flag, EC_KEY_set_conv_form, EC_KEY_set_enc_flags, EC_KEY_set_group, EC_KEY_set_private_key, EC_KEY_set_public_key, EC_KEY_up_ref, EC_METHOD_get_field_type, EC_POINT_add, EC_POINT_bn2point, EC_POINT_clear_free, EC_POINT_cmp, EC_POINT_copy, EC_POINT_dbl, EC_POINT_dup, EC_POINT_free, EC_POINT_get_Jprojective_coordinates_GFp, EC_POINT_get_affine_coordinates_GF2m, EC_POINT_get_affine_coordinates_GFp, EC_POINT_hex2point, EC_POINT_invert, EC_POINT_is_at_infinity, EC_POINT_is_on_curve, EC_POINT_make_affine, EC_POINT_method_of, EC_POINT_mul, EC_POINT_new, EC_POINT_oct2point, EC_POINT_point2bn, EC_POINT_point2hex, EC_POINT_point2oct, EC_POINT_set_Jprojective_coordinates_GFp, EC_POINT_set_affine_coordinates_GF2m, EC_POINT_set_affine_coordinates_GFp, EC_POINT_set_compressed_coordinates_GF2m, EC_POINT_set_compressed_coordinates_GFp, EC_POINT_set_to_infinity, EC_POINTs_make_affine, EC_POINTs_mul, EC_get_builtin_curves, EDIPARTYNAME_free, EDIPARTYNAME_it, EDIPARTYNAME_new, ENGINE_add, ENGINE_add_conf_module, ENGINE_by_id, ENGINE_cleanup, ENGINE_cmd_is_executable, ENGINE_ctrl, ENGINE_ctrl_cmd, ENGINE_ctrl_cmd_string, ENGINE_finish, ENGINE_free, ENGINE_get_DH, ENGINE_get_DSA, ENGINE_get_ECDH, ENGINE_get_ECDSA, ENGINE_get_RAND, ENGINE_get_RSA, ENGINE_get_STORE, ENGINE_get_cipher, ENGINE_get_cipher_engine, ENGINE_get_ciphers, ENGINE_get_cmd_defns, ENGINE_get_ctrl_function, ENGINE_get_default_DH, ENGINE_get_default_DSA, ENGINE_get_default_ECDH, ENGINE_get_default_ECDSA, ENGINE_get_default_RAND, ENGINE_get_default_RSA, ENGINE_get_destroy_function, ENGINE_get_digest, ENGINE_get_digest_engine, ENGINE_get_digests, ENGINE_get_ex_data, ENGINE_get_ex_new_index, ENGINE_get_finish_function, ENGINE_get_first, ENGINE_get_flags, ENGINE_get_id, ENGINE_get_init_function, ENGINE_get_last, ENGINE_get_load_privkey_function, ENGINE_get_load_pubkey_function, ENGINE_get_name, ENGINE_get_next, ENGINE_get_prev, ENGINE_get_static_state, ENGINE_get_table_flags, ENGINE_init, ENGINE_load_4758cca, ENGINE_load_aep, ENGINE_load_atalla, ENGINE_load_builtin_engines, ENGINE_load_chil, ENGINE_load_cryptodev, ENGINE_load_cswift, ENGINE_load_dynamic, ENGINE_load_nuron, ENGINE_load_openssl, ENGINE_load_padlock, ENGINE_load_private_key, ENGINE_load_public_key, ENGINE_load_sureware, ENGINE_load_ubsec, ENGINE_new, ENGINE_register_DH, ENGINE_register_DSA, ENGINE_register_ECDH, ENGINE_register_ECDSA, ENGINE_register_RAND, ENGINE_register_RSA, ENGINE_register_STORE, ENGINE_register_all_DH, ENGINE_register_all_DSA, ENGINE_register_all_ECDH, ENGINE_register_all_ECDSA, ENGINE_register_all_RAND, ENGINE_register_all_RSA, ENGINE_register_all_STORE, ENGINE_register_all_ciphers, ENGINE_register_all_complete, ENGINE_register_all_digests, ENGINE_register_ciphers, ENGINE_register_complete, ENGINE_register_digests, ENGINE_remove, ENGINE_set_DH, ENGINE_set_DSA, ENGINE_set_ECDH, ENGINE_set_ECDSA, ENGINE_set_RAND, ENGINE_set_RSA, ENGINE_set_STORE, ENGINE_set_ciphers, ENGINE_set_cmd_defns, ENGINE_set_ctrl_function, ENGINE_set_default, ENGINE_set_default_DH, ENGINE_set_default_DSA, ENGINE_set_default_ECDH, ENGINE_set_default_ECDSA, ENGINE_set_default_RAND, ENGINE_set_default_RSA, ENGINE_set_default_ciphers, ENGINE_set_default_digests, ENGINE_set_default_string, ENGINE_set_destroy_function, ENGINE_set_digests, ENGINE_set_ex_data, ENGINE_set_finish_function, ENGINE_set_flags, ENGINE_set_id, ENGINE_set_init_function, ENGINE_set_load_privkey_function, ENGINE_set_load_pubkey_function, ENGINE_set_name, ENGINE_set_table_flags, ENGINE_unregister_DH, ENGINE_unregister_DSA, ENGINE_unregister_ECDH, ENGINE_unregister_ECDSA, ENGINE_unregister_RAND, ENGINE_unregister_RSA, ENGINE_unregister_STORE, ENGINE_unregister_ciphers, ENGINE_unregister_digests, ENGINE_up_ref, ERR_add_error_data, ERR_clear_error, ERR_error_string, ERR_error_string_n, ERR_free_strings, ERR_func_error_string, ERR_get_err_state_table, ERR_get_error, ERR_get_error_line, ERR_get_error_line_data, ERR_get_implementation, ERR_get_next_error_library, ERR_get_state, ERR_get_string_table, ERR_lib_error_string, ERR_load_ASN1_strings, ERR_load_BIO_strings, ERR_load_BN_strings, ERR_load_BUF_strings, ERR_load_COMP_strings, ERR_load_CONF_strings, ERR_load_CRYPTO_strings, ERR_load_DH_strings, ERR_load_DSA_strings, ERR_load_DSO_strings, ERR_load_ECDH_strings, ERR_load_ECDSA_strings, ERR_load_EC_strings, ERR_load_ENGINE_strings, ERR_load_ERR_strings, ERR_load_EVP_strings, ERR_load_OBJ_strings, ERR_load_OCSP_strings, ERR_load_PEM_strings, ERR_load_PKCS12_strings, ERR_load_PKCS7_strings, ERR_load_RAND_strings, ERR_load_RSA_strings, ERR_load_STORE_strings, ERR_load_UI_strings, ERR_load_X509V3_strings, ERR_load_X509_strings, ERR_load_crypto_strings, ERR_load_strings, ERR_peek_error, ERR_peek_error_line, ERR_peek_error_line_data, ERR_peek_last_error, ERR_peek_last_error_line, ERR_peek_last_error_line_data, ERR_pop_to_mark, ERR_print_errors, ERR_print_errors_cb, ERR_print_errors_fp, ERR_put_error, ERR_reason_error_string, ERR_release_err_state_table, ERR_remove_state, ERR_set_error_data, ERR_set_implementation, ERR_set_mark, ERR_unload_strings, EVP_BytesToKey, EVP_CIPHER_CTX_cleanup, EVP_CIPHER_CTX_ctrl, EVP_CIPHER_CTX_free, EVP_CIPHER_CTX_init, EVP_CIPHER_CTX_new, EVP_CIPHER_CTX_rand_key, EVP_CIPHER_CTX_set_key_length, EVP_CIPHER_CTX_set_padding, EVP_CIPHER_asn1_to_param, EVP_CIPHER_get_asn1_iv, EVP_CIPHER_param_to_asn1, EVP_CIPHER_set_asn1_iv, EVP_CIPHER_type, EVP_CipherFinal, EVP_CipherFinal_ex, EVP_CipherInit, EVP_CipherInit_ex, EVP_CipherUpdate, EVP_DecodeBlock, EVP_DecodeFinal, EVP_DecodeInit, EVP_DecodeUpdate, EVP_DecryptFinal, EVP_DecryptFinal_ex, EVP_DecryptInit, EVP_DecryptInit_ex, EVP_DecryptUpdate, EVP_Digest, EVP_DigestFinal, EVP_DigestFinal_ex, EVP_DigestInit, EVP_DigestInit_ex, EVP_DigestUpdate, EVP_EncodeBlock, EVP_EncodeFinal, EVP_EncodeInit, EVP_EncodeUpdate, EVP_EncryptFinal, EVP_EncryptFinal_ex, EVP_EncryptInit, EVP_EncryptInit_ex, EVP_EncryptUpdate, EVP_MD_CTX_cleanup, EVP_MD_CTX_copy, EVP_MD_CTX_copy_ex, EVP_MD_CTX_create, EVP_MD_CTX_destroy, EVP_MD_CTX_init, EVP_OpenFinal, EVP_OpenInit, EVP_PBE_CipherInit, EVP_PBE_alg_add, EVP_PBE_cleanup, EVP_PKCS82PKEY, EVP_PKEY2PKCS8, EVP_PKEY2PKCS8_broken, EVP_PKEY_add1_attr, EVP_PKEY_add1_attr_by_NID, EVP_PKEY_add1_attr_by_OBJ, EVP_PKEY_add1_attr_by_txt, EVP_PKEY_assign, EVP_PKEY_bits, EVP_PKEY_cmp, EVP_PKEY_cmp_parameters, EVP_PKEY_copy_parameters, EVP_PKEY_decrypt, EVP_PKEY_delete_attr, EVP_PKEY_encrypt, EVP_PKEY_free, EVP_PKEY_get1_DH, EVP_PKEY_get1_DSA, EVP_PKEY_get1_EC_KEY, EVP_PKEY_get1_RSA, EVP_PKEY_get_attr, EVP_PKEY_get_attr_by_NID, EVP_PKEY_get_attr_by_OBJ, EVP_PKEY_get_attr_count, EVP_PKEY_missing_parameters, EVP_PKEY_new, EVP_PKEY_save_parameters, EVP_PKEY_set1_DH, EVP_PKEY_set1_DSA, EVP_PKEY_set1_EC_KEY, EVP_PKEY_set1_RSA, EVP_PKEY_size, EVP_PKEY_type, EVP_SealFinal, EVP_SealInit, EVP_SignFinal, EVP_VerifyFinal, EVP_add_cipher, EVP_add_digest, EVP_aes_128_cbc, EVP_aes_128_cfb1, EVP_aes_128_cfb128, EVP_aes_128_cfb8, EVP_aes_128_ecb, EVP_aes_128_ofb, EVP_aes_192_cbc, EVP_aes_192_cfb1, EVP_aes_192_cfb128, EVP_aes_192_cfb8, EVP_aes_192_ecb, EVP_aes_192_ofb, EVP_aes_256_cbc, EVP_aes_256_cfb1, EVP_aes_256_cfb128, EVP_aes_256_cfb8, EVP_aes_256_ecb, EVP_aes_256_ofb, EVP_bf_cbc, EVP_bf_cfb64, EVP_bf_ecb, EVP_bf_ofb, EVP_cast5_cbc, EVP_cast5_cfb64, EVP_cast5_ecb, EVP_cast5_ofb, EVP_cleanup, EVP_des_cbc, EVP_des_cfb1, EVP_des_cfb64, EVP_des_cfb8, EVP_des_ecb, EVP_des_ede, EVP_des_ede3, EVP_des_ede3_cbc, EVP_des_ede3_cfb1, EVP_des_ede3_cfb64, EVP_des_ede3_cfb8, EVP_des_ede3_ecb, EVP_des_ede3_ofb, EVP_des_ede_cbc, EVP_des_ede_cfb64, EVP_des_ede_ecb, EVP_des_ede_ofb, EVP_des_ofb, EVP_desx_cbc, EVP_dss, EVP_dss1, EVP_ecdsa, EVP_enc_null, EVP_get_cipherbyname, EVP_get_digestbyname, EVP_get_pw_prompt, EVP_md2, EVP_md4, EVP_md5, EVP_md_null, EVP_rc2_40_cbc, EVP_rc2_64_cbc, EVP_rc2_cbc, EVP_rc2_cfb64, EVP_rc2_ecb, EVP_rc2_ofb, EVP_rc4, EVP_rc4_40, EVP_read_pw_string, EVP_ripemd160, EVP_set_pw_prompt, EVP_sha, EVP_sha1, EVP_sha224, EVP_sha256, EVP_sha384, EVP_sha512, EXTENDED_KEY_USAGE_free, EXTENDED_KEY_USAGE_it, EXTENDED_KEY_USAGE_new, GENERAL_NAMES_free, GENERAL_NAMES_it, GENERAL_NAMES_new, GENERAL_NAME_free, GENERAL_NAME_it, GENERAL_NAME_new, GENERAL_NAME_print, GENERAL_SUBTREE_free, GENERAL_SUBTREE_it, GENERAL_SUBTREE_new, HMAC, HMAC_CTX_cleanup, HMAC_CTX_init, HMAC_Final, HMAC_Init, HMAC_Init_ex, HMAC_Update, KRB5_APREQBODY_free, KRB5_APREQBODY_it, KRB5_APREQBODY_new, KRB5_APREQ_free, KRB5_APREQ_it, KRB5_APREQ_new, KRB5_AUTHDATA_free, KRB5_AUTHDATA_it, KRB5_AUTHDATA_new, KRB5_AUTHENTBODY_free, KRB5_AUTHENTBODY_it, KRB5_AUTHENTBODY_new, KRB5_AUTHENT_free, KRB5_AUTHENT_it, KRB5_AUTHENT_new, KRB5_CHECKSUM_free, KRB5_CHECKSUM_it, KRB5_CHECKSUM_new, KRB5_ENCDATA_free, KRB5_ENCDATA_it, KRB5_ENCDATA_new, KRB5_ENCKEY_free, KRB5_ENCKEY_it, KRB5_ENCKEY_new, KRB5_PRINCNAME_free, KRB5_PRINCNAME_it, KRB5_PRINCNAME_new, KRB5_TICKET_free, KRB5_TICKET_it, KRB5_TICKET_new, KRB5_TKTBODY_free, KRB5_TKTBODY_it, KRB5_TKTBODY_new, LONG_it, MD2, MD2_Final, MD2_Init, MD2_Update, MD2_options, MD4, MD4_Final, MD4_Init, MD4_Transform, MD4_Update, MD5, MD5_Final, MD5_Init, MD5_Transform, MD5_Update, NAME_CONSTRAINTS_free, NAME_CONSTRAINTS_it, NAME_CONSTRAINTS_new, NCONF_WIN32, NCONF_default, NCONF_dump_bio, NCONF_dump_fp, NCONF_free, NCONF_free_data, NCONF_get_number_e, NCONF_get_section, NCONF_get_string, NCONF_load, NCONF_load_bio, NCONF_load_fp, NCONF_new, NETSCAPE_CERT_SEQUENCE_free, NETSCAPE_CERT_SEQUENCE_it, NETSCAPE_CERT_SEQUENCE_new, NETSCAPE_SPKAC_free, NETSCAPE_SPKAC_it, NETSCAPE_SPKAC_new, NETSCAPE_SPKI_b64_decode, NETSCAPE_SPKI_b64_encode, NETSCAPE_SPKI_free, NETSCAPE_SPKI_get_pubkey, NETSCAPE_SPKI_it, NETSCAPE_SPKI_new, NETSCAPE_SPKI_print, NETSCAPE_SPKI_set_pubkey, NETSCAPE_SPKI_sign, NETSCAPE_SPKI_verify, NOTICEREF_free, NOTICEREF_it, NOTICEREF_new, OBJ_NAME_add, OBJ_NAME_cleanup, OBJ_NAME_do_all, OBJ_NAME_do_all_sorted, OBJ_NAME_get, OBJ_NAME_init, OBJ_NAME_new_index, OBJ_NAME_remove, OBJ_add_object, OBJ_bsearch, OBJ_bsearch_ex, OBJ_cleanup, OBJ_cmp, OBJ_create, OBJ_create_objects, OBJ_dup, OBJ_ln2nid, OBJ_new_nid, OBJ_nid2ln, OBJ_nid2obj, OBJ_nid2sn, OBJ_obj2nid, OBJ_obj2txt, OBJ_sn2nid, OBJ_txt2nid, OBJ_txt2obj, OCSP_BASICRESP_add1_ext_i2d, OCSP_BASICRESP_add_ext, OCSP_BASICRESP_delete_ext, OCSP_BASICRESP_free, OCSP_BASICRESP_get1_ext_d2i, OCSP_BASICRESP_get_ext, OCSP_BASICRESP_get_ext_by_NID, OCSP_BASICRESP_get_ext_by_OBJ, OCSP_BASICRESP_get_ext_by_critical, OCSP_BASICRESP_get_ext_count, OCSP_BASICRESP_it, OCSP_BASICRESP_new, OCSP_CERTID_free, OCSP_CERTID_it, OCSP_CERTID_new, OCSP_CERTSTATUS_free, OCSP_CERTSTATUS_it, OCSP_CERTSTATUS_new, OCSP_CRLID_free, OCSP_CRLID_it, OCSP_CRLID_new, OCSP_ONEREQ_add1_ext_i2d, OCSP_ONEREQ_add_ext, OCSP_ONEREQ_delete_ext, OCSP_ONEREQ_free, OCSP_ONEREQ_get1_ext_d2i, OCSP_ONEREQ_get_ext, OCSP_ONEREQ_get_ext_by_NID, OCSP_ONEREQ_get_ext_by_OBJ, OCSP_ONEREQ_get_ext_by_critical, OCSP_ONEREQ_get_ext_count, OCSP_ONEREQ_it, OCSP_ONEREQ_new, OCSP_REQINFO_free, OCSP_REQINFO_it, OCSP_REQINFO_new, OCSP_REQUEST_add1_ext_i2d, OCSP_REQUEST_add_ext, OCSP_REQUEST_delete_ext, OCSP_REQUEST_free, OCSP_REQUEST_get1_ext_d2i, OCSP_REQUEST_get_ext, OCSP_REQUEST_get_ext_by_NID, OCSP_REQUEST_get_ext_by_OBJ, OCSP_REQUEST_get_ext_by_critical, OCSP_REQUEST_get_ext_count, OCSP_REQUEST_it, OCSP_REQUEST_new, OCSP_REQUEST_print, OCSP_RESPBYTES_free, OCSP_RESPBYTES_it, OCSP_RESPBYTES_new, OCSP_RESPDATA_free, OCSP_RESPDATA_it, OCSP_RESPDATA_new, OCSP_RESPID_free, OCSP_RESPID_it, OCSP_RESPID_new, OCSP_RESPONSE_free, OCSP_RESPONSE_it, OCSP_RESPONSE_new, OCSP_RESPONSE_print, OCSP_REVOKEDINFO_free, OCSP_REVOKEDINFO_it, OCSP_REVOKEDINFO_new, OCSP_SERVICELOC_free, OCSP_SERVICELOC_it, OCSP_SERVICELOC_new, OCSP_SIGNATURE_free, OCSP_SIGNATURE_it, OCSP_SIGNATURE_new, OCSP_SINGLERESP_add1_ext_i2d, OCSP_SINGLERESP_add_ext, OCSP_SINGLERESP_delete_ext, OCSP_SINGLERESP_free, OCSP_SINGLERESP_get1_ext_d2i, OCSP_SINGLERESP_get_ext, OCSP_SINGLERESP_get_ext_by_NID, OCSP_SINGLERESP_get_ext_by_OBJ, OCSP_SINGLERESP_get_ext_by_critical, OCSP_SINGLERESP_get_ext_count, OCSP_SINGLERESP_it, OCSP_SINGLERESP_new, OCSP_accept_responses_new, OCSP_archive_cutoff_new, OCSP_basic_add1_cert, OCSP_basic_add1_nonce, OCSP_basic_add1_status, OCSP_basic_sign, OCSP_basic_verify, OCSP_cert_id_new, OCSP_cert_status_str, OCSP_cert_to_id, OCSP_check_nonce, OCSP_check_validity, OCSP_copy_nonce, OCSP_crlID_new, OCSP_crl_reason_str, OCSP_id_cmp, OCSP_id_get0_info, OCSP_id_issuer_cmp, OCSP_onereq_get0_id, OCSP_parse_url, OCSP_request_add0_id, OCSP_request_add1_cert, OCSP_request_add1_nonce, OCSP_request_is_signed, OCSP_request_onereq_count, OCSP_request_onereq_get0, OCSP_request_set1_name, OCSP_request_sign, OCSP_request_verify, OCSP_resp_count, OCSP_resp_find, OCSP_resp_find_status, OCSP_resp_get0, OCSP_response_create, OCSP_response_get1_basic, OCSP_response_status, OCSP_response_status_str, OCSP_sendreq_bio, OCSP_single_get0_status, OCSP_url_svcloc_new, OPENSSL_DIR_end, OPENSSL_DIR_read, OPENSSL_add_all_algorithms_conf, OPENSSL_add_all_algorithms_noconf, OPENSSL_cleanse, OPENSSL_config, OPENSSL_ia32cap_loc, OPENSSL_issetugid, OPENSSL_load_builtin_modules, OPENSSL_no_config, OSSL_DES_version, OSSL_libdes_version, OTHERNAME_free, OTHERNAME_it, OTHERNAME_new, OpenSSLDie, OpenSSL_add_all_ciphers, OpenSSL_add_all_digests, PBE2PARAM_free, PBE2PARAM_it, PBE2PARAM_new, PBEPARAM_free, PBEPARAM_it, PBEPARAM_new, PBKDF2PARAM_free, PBKDF2PARAM_it, PBKDF2PARAM_new, PEM_ASN1_read, PEM_ASN1_read_bio, PEM_ASN1_write, PEM_ASN1_write_bio, PEM_SealFinal, PEM_SealInit, PEM_SealUpdate, PEM_SignFinal, PEM_SignInit, PEM_SignUpdate, PEM_X509_INFO_read, PEM_X509_INFO_read_bio, PEM_X509_INFO_write_bio, PEM_bytes_read_bio, PEM_def_callback, PEM_dek_info, PEM_do_header, PEM_get_EVP_CIPHER_INFO, PEM_proc_type, PEM_read, PEM_read_DHparams, PEM_read_DSAPrivateKey, PEM_read_DSA_PUBKEY, PEM_read_DSAparams, PEM_read_ECPKParameters, PEM_read_ECPrivateKey, PEM_read_EC_PUBKEY, PEM_read_NETSCAPE_CERT_SEQUENCE, PEM_read_PKCS7, PEM_read_PKCS8, PEM_read_PKCS8_PRIV_KEY_INFO, PEM_read_PUBKEY, PEM_read_PrivateKey, PEM_read_RSAPrivateKey, PEM_read_RSAPublicKey, PEM_read_RSA_PUBKEY, PEM_read_X509, PEM_read_X509_AUX, PEM_read_X509_CERT_PAIR, PEM_read_X509_CRL, PEM_read_X509_REQ, PEM_read_bio, PEM_read_bio_DHparams, PEM_read_bio_DSAPrivateKey, PEM_read_bio_DSA_PUBKEY, PEM_read_bio_DSAparams, PEM_read_bio_ECPKParameters, PEM_read_bio_ECPrivateKey, PEM_read_bio_EC_PUBKEY, PEM_read_bio_NETSCAPE_CERT_SEQUENCE, PEM_read_bio_PKCS7, PEM_read_bio_PKCS8, PEM_read_bio_PKCS8_PRIV_KEY_INFO, PEM_read_bio_PUBKEY, PEM_read_bio_PrivateKey, PEM_read_bio_RSAPrivateKey, PEM_read_bio_RSAPublicKey, PEM_read_bio_RSA_PUBKEY, PEM_read_bio_X509, PEM_read_bio_X509_AUX, PEM_read_bio_X509_CERT_PAIR, PEM_read_bio_X509_CRL, PEM_read_bio_X509_REQ, PEM_write, PEM_write_DHparams, PEM_write_DSAPrivateKey, PEM_write_DSA_PUBKEY, PEM_write_DSAparams, PEM_write_ECPKParameters, PEM_write_ECPrivateKey, PEM_write_EC_PUBKEY, PEM_write_NETSCAPE_CERT_SEQUENCE, PEM_write_PKCS7, PEM_write_PKCS8, PEM_write_PKCS8PrivateKey, PEM_write_PKCS8PrivateKey_nid, PEM_write_PKCS8_PRIV_KEY_INFO, PEM_write_PUBKEY, PEM_write_PrivateKey, PEM_write_RSAPrivateKey, PEM_write_RSAPublicKey, PEM_write_RSA_PUBKEY, PEM_write_X509, PEM_write_X509_AUX, PEM_write_X509_CERT_PAIR, PEM_write_X509_CRL, PEM_write_X509_REQ, PEM_write_X509_REQ_NEW, PEM_write_bio, PEM_write_bio_DHparams, PEM_write_bio_DSAPrivateKey, PEM_write_bio_DSA_PUBKEY, PEM_write_bio_DSAparams, PEM_write_bio_ECPKParameters, PEM_write_bio_ECPrivateKey, PEM_write_bio_EC_PUBKEY, PEM_write_bio_NETSCAPE_CERT_SEQUENCE, PEM_write_bio_PKCS7, PEM_write_bio_PKCS8, PEM_write_bio_PKCS8PrivateKey, PEM_write_bio_PKCS8PrivateKey_nid, PEM_write_bio_PKCS8_PRIV_KEY_INFO, PEM_write_bio_PUBKEY, PEM_write_bio_PrivateKey, PEM_write_bio_RSAPrivateKey, PEM_write_bio_RSAPublicKey, PEM_write_bio_RSA_PUBKEY, PEM_write_bio_X509, PEM_write_bio_X509_AUX, PEM_write_bio_X509_CERT_PAIR, PEM_write_bio_X509_CRL, PEM_write_bio_X509_REQ, PEM_write_bio_X509_REQ_NEW, PKCS12_AUTHSAFES_it, PKCS12_BAGS_free, PKCS12_BAGS_it, PKCS12_BAGS_new, PKCS12_MAC_DATA_free, PKCS12_MAC_DATA_it, PKCS12_MAC_DATA_new, PKCS12_MAKE_KEYBAG, PKCS12_MAKE_SHKEYBAG, PKCS12_PBE_add, PKCS12_PBE_keyivgen, PKCS12_SAFEBAGS_it, PKCS12_SAFEBAG_free, PKCS12_SAFEBAG_it, PKCS12_SAFEBAG_new, PKCS12_add_CSPName_asc, PKCS12_add_cert, PKCS12_add_friendlyname_asc, PKCS12_add_friendlyname_uni, PKCS12_add_key, PKCS12_add_localkeyid, PKCS12_add_safe, PKCS12_add_safes, PKCS12_certbag2x509, PKCS12_certbag2x509crl, PKCS12_create, PKCS12_decrypt_skey, PKCS12_free, PKCS12_gen_mac, PKCS12_get_attr_gen, PKCS12_get_friendlyname, PKCS12_init, PKCS12_it, PKCS12_item_decrypt_d2i, PKCS12_item_i2d_encrypt, PKCS12_item_pack_safebag, PKCS12_key_gen_asc, PKCS12_key_gen_uni, PKCS12_new, PKCS12_newpass, PKCS12_pack_authsafes, PKCS12_pack_p7data, PKCS12_pack_p7encdata, PKCS12_parse, PKCS12_pbe_crypt, PKCS12_set_mac, PKCS12_setup_mac, PKCS12_unpack_authsafes, PKCS12_unpack_p7data, PKCS12_unpack_p7encdata, PKCS12_verify_mac, PKCS12_x5092certbag, PKCS12_x509crl2certbag, PKCS1_MGF1, PKCS5_PBE_add, PKCS5_PBE_keyivgen, PKCS5_PBKDF2_HMAC_SHA1, PKCS5_pbe2_set, PKCS5_pbe_set, PKCS5_v2_PBE_keyivgen, PKCS7_ATTR_SIGN_it, PKCS7_ATTR_VERIFY_it, PKCS7_DIGEST_free, PKCS7_DIGEST_it, PKCS7_DIGEST_new, PKCS7_ENCRYPT_free, PKCS7_ENCRYPT_it, PKCS7_ENCRYPT_new, PKCS7_ENC_CONTENT_free, PKCS7_ENC_CONTENT_it, PKCS7_ENC_CONTENT_new, PKCS7_ENVELOPE_free, PKCS7_ENVELOPE_it, PKCS7_ENVELOPE_new, PKCS7_ISSUER_AND_SERIAL_digest, PKCS7_ISSUER_AND_SERIAL_free, PKCS7_ISSUER_AND_SERIAL_it, PKCS7_ISSUER_AND_SERIAL_new, PKCS7_RECIP_INFO_free, PKCS7_RECIP_INFO_it, PKCS7_RECIP_INFO_new, PKCS7_RECIP_INFO_set, PKCS7_SIGNED_free, PKCS7_SIGNED_it, PKCS7_SIGNED_new, PKCS7_SIGNER_INFO_free, PKCS7_SIGNER_INFO_it, PKCS7_SIGNER_INFO_new, PKCS7_SIGNER_INFO_set, PKCS7_SIGN_ENVELOPE_free, PKCS7_SIGN_ENVELOPE_it, PKCS7_SIGN_ENVELOPE_new, PKCS7_add_attrib_smimecap, PKCS7_add_attribute, PKCS7_add_certificate, PKCS7_add_crl, PKCS7_add_recipient, PKCS7_add_recipient_info, PKCS7_add_signature, PKCS7_add_signed_attribute, PKCS7_add_signer, PKCS7_cert_from_signer_info, PKCS7_content_new, PKCS7_ctrl, PKCS7_dataDecode, PKCS7_dataFinal, PKCS7_dataInit, PKCS7_dataVerify, PKCS7_decrypt, PKCS7_digest_from_attributes, PKCS7_dup, PKCS7_encrypt, PKCS7_free, PKCS7_get0_signers, PKCS7_get_attribute, PKCS7_get_issuer_and_serial, PKCS7_get_signed_attribute, PKCS7_get_signer_info, PKCS7_get_smimecap, PKCS7_it, PKCS7_new, PKCS7_set0_type_other, PKCS7_set_attributes, PKCS7_set_cipher, PKCS7_set_content, PKCS7_set_digest, PKCS7_set_signed_attributes, PKCS7_set_type, PKCS7_sign, PKCS7_signatureVerify, PKCS7_simple_smimecap, PKCS7_verify, PKCS8_PRIV_KEY_INFO_free, PKCS8_PRIV_KEY_INFO_it, PKCS8_PRIV_KEY_INFO_new, PKCS8_add_keyusage, PKCS8_decrypt, PKCS8_encrypt, PKCS8_set_broken, PKEY_USAGE_PERIOD_free, PKEY_USAGE_PERIOD_it, PKEY_USAGE_PERIOD_new, POLICYINFO_free, POLICYINFO_it, POLICYINFO_new, POLICYQUALINFO_free, POLICYQUALINFO_it, POLICYQUALINFO_new, POLICY_CONSTRAINTS_free, POLICY_CONSTRAINTS_it, POLICY_CONSTRAINTS_new, POLICY_MAPPINGS_it, POLICY_MAPPING_free, POLICY_MAPPING_it, POLICY_MAPPING_new, PROXY_CERT_INFO_EXTENSION_free, PROXY_CERT_INFO_EXTENSION_it, PROXY_CERT_INFO_EXTENSION_new, PROXY_POLICY_free, PROXY_POLICY_it, PROXY_POLICY_new, RAND_SSLeay, RAND_add, RAND_bytes, RAND_cleanup, RAND_egd, RAND_egd_bytes, RAND_event, RAND_file_name, RAND_get_rand_method, RAND_load_file, RAND_poll, RAND_pseudo_bytes, RAND_query_egd_bytes, RAND_screen, RAND_seed, RAND_set_rand_engine, RAND_set_rand_method, RAND_status, RAND_write_file, RC2_cbc_encrypt, RC2_cfb64_encrypt, RC2_decrypt, RC2_ecb_encrypt, RC2_encrypt, RC2_ofb64_encrypt, RC2_set_key, RC4, RC4_options, RC4_set_key, RIPEMD160, RIPEMD160_Final, RIPEMD160_Init, RIPEMD160_Transform, RIPEMD160_Update, RSAPrivateKey_asn1_meth, RSAPrivateKey_dup, RSAPrivateKey_it, RSAPublicKey_dup, RSAPublicKey_it, RSA_PKCS1_SSLeay, RSA_X931_hash_id, RSA_blinding_off, RSA_blinding_on, RSA_check_key, RSA_flags, RSA_free, RSA_generate_key, RSA_generate_key_ex, RSA_get_default_method, RSA_get_ex_data, RSA_get_ex_new_index, RSA_get_method, RSA_memory_lock, RSA_new, RSA_new_method, RSA_null_method, RSA_padding_add_PKCS1_OAEP, RSA_padding_add_PKCS1_PSS, RSA_padding_add_PKCS1_type_1, RSA_padding_add_PKCS1_type_2, RSA_padding_add_SSLv23, RSA_padding_add_X931, RSA_padding_add_none, RSA_padding_check_PKCS1_OAEP, RSA_padding_check_PKCS1_type_1, RSA_padding_check_PKCS1_type_2, RSA_padding_check_SSLv23, RSA_padding_check_X931, RSA_padding_check_none, RSA_print, RSA_print_fp, RSA_private_decrypt, RSA_private_encrypt, RSA_public_decrypt, RSA_public_encrypt, RSA_set_default_method, RSA_set_ex_data, RSA_set_method, RSA_setup_blinding, RSA_sign, RSA_sign_ASN1_OCTET_STRING, RSA_size, RSA_up_ref, RSA_verify, RSA_verify_ASN1_OCTET_STRING, RSA_verify_PKCS1_PSS, SHA, SHA1, SHA1_Final, SHA1_Init, SHA1_Transform, SHA1_Update, SHA224, SHA224_Final, SHA224_Init, SHA224_Update, SHA256, SHA256_Final, SHA256_Init, SHA256_Transform, SHA256_Update, SHA384, SHA384_Final, SHA384_Init, SHA384_Update, SHA512, SHA512_Final, SHA512_Init, SHA512_Transform, SHA512_Update, SHA_Final, SHA_Init, SHA_Transform, SHA_Update, SMIME_crlf_copy, SMIME_read_PKCS7, SMIME_text, SMIME_write_PKCS7, SSLeay, SSLeay_version, STORE_ATTR_INFO_compare, STORE_ATTR_INFO_free, STORE_ATTR_INFO_get0_cstr, STORE_ATTR_INFO_get0_dn, STORE_ATTR_INFO_get0_number, STORE_ATTR_INFO_get0_sha1str, STORE_ATTR_INFO_in, STORE_ATTR_INFO_in_ex, STORE_ATTR_INFO_in_range, STORE_ATTR_INFO_modify_cstr, STORE_ATTR_INFO_modify_dn, STORE_ATTR_INFO_modify_number, STORE_ATTR_INFO_modify_sha1str, STORE_ATTR_INFO_new, STORE_ATTR_INFO_set_cstr, STORE_ATTR_INFO_set_dn, STORE_ATTR_INFO_set_number, STORE_ATTR_INFO_set_sha1str, STORE_Memory, STORE_OBJECT_free, STORE_OBJECT_new, STORE_create_method, STORE_ctrl, STORE_delete_arbitrary, STORE_delete_certificate, STORE_delete_crl, STORE_delete_number, STORE_delete_private_key, STORE_delete_public_key, STORE_destroy_method, STORE_free, STORE_generate_crl, STORE_generate_key, STORE_get_arbitrary, STORE_get_certificate, STORE_get_crl, STORE_get_ex_data, STORE_get_ex_new_index, STORE_get_method, STORE_get_number, STORE_get_private_key, STORE_get_public_key, STORE_list_certificate_end, STORE_list_certificate_endp, STORE_list_certificate_next, STORE_list_certificate_start, STORE_list_crl_end, STORE_list_crl_endp, STORE_list_crl_next, STORE_list_crl_start, STORE_list_private_key_end, STORE_list_private_key_endp, STORE_list_private_key_next, STORE_list_private_key_start, STORE_list_public_key_end, STORE_list_public_key_endp, STORE_list_public_key_next, STORE_list_public_key_start, STORE_method_get_cleanup_function, STORE_method_get_ctrl_function, STORE_method_get_delete_function, STORE_method_get_generate_function, STORE_method_get_get_function, STORE_method_get_initialise_function, STORE_method_get_list_end_function, STORE_method_get_list_next_function, STORE_method_get_list_start_function, STORE_method_get_lock_store_function, STORE_method_get_modify_function, STORE_method_get_revoke_function, STORE_method_get_store_function, STORE_method_get_unlock_store_function, STORE_method_get_update_store_function, STORE_method_set_cleanup_function, STORE_method_set_ctrl_function, STORE_method_set_delete_function, STORE_method_set_generate_function, STORE_method_set_get_function, STORE_method_set_initialise_function, STORE_method_set_list_end_function, STORE_method_set_list_next_function, STORE_method_set_list_start_function, STORE_method_set_lock_store_function, STORE_method_set_modify_function, STORE_method_set_revoke_function, STORE_method_set_store_function, STORE_method_set_unlock_store_function, STORE_method_set_update_store_function, STORE_modify_arbitrary, STORE_modify_certificate, STORE_modify_crl, STORE_modify_number, STORE_modify_private_key, STORE_modify_public_key, STORE_new_engine, STORE_new_method, STORE_parse_attrs_end, STORE_parse_attrs_endp, STORE_parse_attrs_next, STORE_parse_attrs_start, STORE_revoke_certificate, STORE_revoke_private_key, STORE_revoke_public_key, STORE_set_ex_data, STORE_set_method, STORE_store_arbitrary, STORE_store_certificate, STORE_store_crl, STORE_store_number, STORE_store_private_key, STORE_store_public_key, SXNETID_free, SXNETID_it, SXNETID_new, SXNET_add_id_INTEGER, SXNET_add_id_asc, SXNET_add_id_ulong, SXNET_free, SXNET_get_id_INTEGER, SXNET_get_id_asc, SXNET_get_id_ulong, SXNET_it, SXNET_new, TXT_DB_create_index, TXT_DB_free, TXT_DB_get_by_index, TXT_DB_insert, TXT_DB_read, TXT_DB_write, UI_OpenSSL, UI_UTIL_read_pw, UI_UTIL_read_pw_string, UI_add_error_string, UI_add_info_string, UI_add_input_boolean, UI_add_input_string, UI_add_user_data, UI_add_verify_string, UI_construct_prompt, UI_create_method, UI_ctrl, UI_destroy_method, UI_dup_error_string, UI_dup_info_string, UI_dup_input_boolean, UI_dup_input_string, UI_dup_verify_string, UI_free, UI_get0_action_string, UI_get0_output_string, UI_get0_result, UI_get0_result_string, UI_get0_test_string, UI_get0_user_data, UI_get_default_method, UI_get_ex_data, UI_get_ex_new_index, UI_get_input_flags, UI_get_method, UI_get_result_maxsize, UI_get_result_minsize, UI_get_string_type, UI_method_get_closer, UI_method_get_flusher, UI_method_get_opener, UI_method_get_reader, UI_method_get_writer, UI_method_set_closer, UI_method_set_flusher, UI_method_set_opener, UI_method_set_reader, UI_method_set_writer, UI_new, UI_new_method, UI_process, UI_set_default_method, UI_set_ex_data, UI_set_method, UI_set_result, USERNOTICE_free, USERNOTICE_it, USERNOTICE_new, UTF8_getc, UTF8_putc, X509V3_EXT_CRL_add_conf, X509V3_EXT_CRL_add_nconf, X509V3_EXT_REQ_add_conf, X509V3_EXT_REQ_add_nconf, X509V3_EXT_add, X509V3_EXT_add_alias, X509V3_EXT_add_conf, X509V3_EXT_add_list, X509V3_EXT_add_nconf, X509V3_EXT_add_nconf_sk, X509V3_EXT_cleanup, X509V3_EXT_conf, X509V3_EXT_conf_nid, X509V3_EXT_d2i, X509V3_EXT_get, X509V3_EXT_get_nid, X509V3_EXT_i2d, X509V3_EXT_nconf, X509V3_EXT_nconf_nid, X509V3_EXT_print, X509V3_EXT_print_fp, X509V3_EXT_val_prn, X509V3_NAME_from_section, X509V3_add1_i2d, X509V3_add_standard_extensions, X509V3_add_value, X509V3_add_value_bool, X509V3_add_value_bool_nf, X509V3_add_value_int, X509V3_add_value_uchar, X509V3_conf_free, X509V3_extensions_print, X509V3_get_d2i, X509V3_get_section, X509V3_get_string, X509V3_get_value_bool, X509V3_get_value_int, X509V3_parse_list, X509V3_section_free, X509V3_set_conf_lhash, X509V3_set_ctx, X509V3_set_nconf, X509V3_string_free, X509_ALGOR_dup, X509_ALGOR_free, X509_ALGOR_it, X509_ALGOR_new, X509_ATTRIBUTE_count, X509_ATTRIBUTE_create, X509_ATTRIBUTE_create_by_NID, X509_ATTRIBUTE_create_by_OBJ, X509_ATTRIBUTE_create_by_txt, X509_ATTRIBUTE_dup, X509_ATTRIBUTE_free, X509_ATTRIBUTE_get0_data, X509_ATTRIBUTE_get0_object, X509_ATTRIBUTE_get0_type, X509_ATTRIBUTE_it, X509_ATTRIBUTE_new, X509_ATTRIBUTE_set1_data, X509_ATTRIBUTE_set1_object, X509_CERT_AUX_free, X509_CERT_AUX_it, X509_CERT_AUX_new, X509_CERT_AUX_print, X509_CERT_PAIR_free, X509_CERT_PAIR_it, X509_CERT_PAIR_new, X509_CINF_free, X509_CINF_it, X509_CINF_new, X509_CRL_INFO_free, X509_CRL_INFO_it, X509_CRL_INFO_new, X509_CRL_add0_revoked, X509_CRL_add1_ext_i2d, X509_CRL_add_ext, X509_CRL_cmp, X509_CRL_delete_ext, X509_CRL_digest, X509_CRL_dup, X509_CRL_free, X509_CRL_get_ext, X509_CRL_get_ext_by_NID, X509_CRL_get_ext_by_OBJ, X509_CRL_get_ext_by_critical, X509_CRL_get_ext_count, X509_CRL_get_ext_d2i, X509_CRL_it, X509_CRL_new, X509_CRL_print, X509_CRL_print_fp, X509_CRL_set_issuer_name, X509_CRL_set_lastUpdate, X509_CRL_set_nextUpdate, X509_CRL_set_version, X509_CRL_sign, X509_CRL_sort, X509_CRL_verify, X509_EXTENSION_create_by_NID, X509_EXTENSION_create_by_OBJ, X509_EXTENSION_dup, X509_EXTENSION_free, X509_EXTENSION_get_critical, X509_EXTENSION_get_data, X509_EXTENSION_get_object, X509_EXTENSION_it, X509_EXTENSION_new, X509_EXTENSION_set_critical, X509_EXTENSION_set_data, X509_EXTENSION_set_object, X509_INFO_free, X509_INFO_new, X509_LOOKUP_by_alias, X509_LOOKUP_by_fingerprint, X509_LOOKUP_by_issuer_serial, X509_LOOKUP_by_subject, X509_LOOKUP_ctrl, X509_LOOKUP_file, X509_LOOKUP_free, X509_LOOKUP_hash_dir, X509_LOOKUP_init, X509_LOOKUP_new, X509_LOOKUP_shutdown, X509_NAME_ENTRY_create_by_NID, X509_NAME_ENTRY_create_by_OBJ, X509_NAME_ENTRY_create_by_txt, X509_NAME_ENTRY_dup, X509_NAME_ENTRY_free, X509_NAME_ENTRY_get_data, X509_NAME_ENTRY_get_object, X509_NAME_ENTRY_it, X509_NAME_ENTRY_new, X509_NAME_ENTRY_set_data, X509_NAME_ENTRY_set_object, X509_NAME_add_entry, X509_NAME_add_entry_by_NID, X509_NAME_add_entry_by_OBJ, X509_NAME_add_entry_by_txt, X509_NAME_cmp, X509_NAME_delete_entry, X509_NAME_digest, X509_NAME_dup, X509_NAME_entry_count, X509_NAME_free, X509_NAME_get_entry, X509_NAME_get_index_by_NID, X509_NAME_get_index_by_OBJ, X509_NAME_get_text_by_NID, X509_NAME_get_text_by_OBJ, X509_NAME_hash, X509_NAME_it, X509_NAME_new, X509_NAME_oneline, X509_NAME_print, X509_NAME_print_ex, X509_NAME_print_ex_fp, X509_NAME_set, X509_OBJECT_free_contents, X509_OBJECT_idx_by_subject, X509_OBJECT_retrieve_by_subject, X509_OBJECT_retrieve_match, X509_OBJECT_up_ref_count, X509_PKEY_free, X509_PKEY_new, X509_POLICY_NODE_print, X509_PUBKEY_free, X509_PUBKEY_get, X509_PUBKEY_it, X509_PUBKEY_new, X509_PUBKEY_set, X509_PURPOSE_add, X509_PURPOSE_cleanup, X509_PURPOSE_get0, X509_PURPOSE_get0_name, X509_PURPOSE_get0_sname, X509_PURPOSE_get_by_id, X509_PURPOSE_get_by_sname, X509_PURPOSE_get_count, X509_PURPOSE_get_id, X509_PURPOSE_get_trust, X509_PURPOSE_set, X509_REQ_INFO_free, X509_REQ_INFO_it, X509_REQ_INFO_new, X509_REQ_add1_attr, X509_REQ_add1_attr_by_NID, X509_REQ_add1_attr_by_OBJ, X509_REQ_add1_attr_by_txt, X509_REQ_add_extensions, X509_REQ_add_extensions_nid, X509_REQ_check_private_key, X509_REQ_delete_attr, X509_REQ_digest, X509_REQ_dup, X509_REQ_extension_nid, X509_REQ_free, X509_REQ_get1_email, X509_REQ_get_attr, X509_REQ_get_attr_by_NID, X509_REQ_get_attr_by_OBJ, X509_REQ_get_attr_count, X509_REQ_get_extension_nids, X509_REQ_get_extensions, X509_REQ_get_pubkey, X509_REQ_it, X509_REQ_new, X509_REQ_print, X509_REQ_print_ex, X509_REQ_print_fp, X509_REQ_set_extension_nids, X509_REQ_set_pubkey, X509_REQ_set_subject_name, X509_REQ_set_version, X509_REQ_sign, X509_REQ_to_X509, X509_REQ_verify, X509_REVOKED_add1_ext_i2d, X509_REVOKED_add_ext, X509_REVOKED_delete_ext, X509_REVOKED_free, X509_REVOKED_get_ext, X509_REVOKED_get_ext_by_NID, X509_REVOKED_get_ext_by_OBJ, X509_REVOKED_get_ext_by_critical, X509_REVOKED_get_ext_count, X509_REVOKED_get_ext_d2i, X509_REVOKED_it, X509_REVOKED_new, X509_REVOKED_set_revocationDate, X509_REVOKED_set_serialNumber, X509_SIG_free, X509_SIG_it, X509_SIG_new, X509_STORE_CTX_cleanup, X509_STORE_CTX_free, X509_STORE_CTX_get0_param, X509_STORE_CTX_get0_policy_tree, X509_STORE_CTX_get1_chain, X509_STORE_CTX_get1_issuer, X509_STORE_CTX_get_chain, X509_STORE_CTX_get_current_cert, X509_STORE_CTX_get_error, X509_STORE_CTX_get_error_depth, X509_STORE_CTX_get_ex_data, X509_STORE_CTX_get_ex_new_index, X509_STORE_CTX_get_explicit_policy, X509_STORE_CTX_init, X509_STORE_CTX_new, X509_STORE_CTX_purpose_inherit, X509_STORE_CTX_set0_crls, X509_STORE_CTX_set0_param, X509_STORE_CTX_set_cert, X509_STORE_CTX_set_chain, X509_STORE_CTX_set_default, X509_STORE_CTX_set_depth, X509_STORE_CTX_set_error, X509_STORE_CTX_set_ex_data, X509_STORE_CTX_set_flags, X509_STORE_CTX_set_purpose, X509_STORE_CTX_set_time, X509_STORE_CTX_set_trust, X509_STORE_CTX_set_verify_cb, X509_STORE_CTX_trusted_stack, X509_STORE_add_cert, X509_STORE_add_crl, X509_STORE_add_lookup, X509_STORE_free, X509_STORE_get_by_subject, X509_STORE_load_locations, X509_STORE_new, X509_STORE_set1_param, X509_STORE_set_default_paths, X509_STORE_set_depth, X509_STORE_set_flags, X509_STORE_set_purpose, X509_STORE_set_trust, X509_TRUST_add, X509_TRUST_cleanup, X509_TRUST_get0, X509_TRUST_get0_name, X509_TRUST_get_by_id, X509_TRUST_get_count, X509_TRUST_get_flags, X509_TRUST_get_trust, X509_TRUST_set, X509_TRUST_set_default, X509_VAL_free, X509_VAL_it, X509_VAL_new, X509_VERIFY_PARAM_add0_policy, X509_VERIFY_PARAM_add0_table, X509_VERIFY_PARAM_clear_flags, X509_VERIFY_PARAM_free, X509_VERIFY_PARAM_get_depth, X509_VERIFY_PARAM_get_flags, X509_VERIFY_PARAM_inherit, X509_VERIFY_PARAM_lookup, X509_VERIFY_PARAM_new, X509_VERIFY_PARAM_set1, X509_VERIFY_PARAM_set1_name, X509_VERIFY_PARAM_set1_policies, X509_VERIFY_PARAM_set_depth, X509_VERIFY_PARAM_set_flags, X509_VERIFY_PARAM_set_purpose, X509_VERIFY_PARAM_set_time, X509_VERIFY_PARAM_set_trust, X509_VERIFY_PARAM_table_cleanup, X509_add1_ext_i2d, X509_add1_reject_object, X509_add1_trust_object, X509_add_ext, X509_alias_get0, X509_alias_set1, X509_asn1_meth, X509_certificate_type, X509_check_ca, X509_check_issued, X509_check_private_key, X509_check_purpose, X509_check_trust, X509_cmp, X509_cmp_current_time, X509_cmp_time, X509_delete_ext, X509_digest, X509_dup, X509_email_free, X509_find_by_issuer_and_serial, X509_find_by_subject, X509_free, X509_get0_pubkey_bitstr, X509_get1_email, X509_get_default_cert_area, X509_get_default_cert_dir, X509_get_default_cert_dir_env, X509_get_default_cert_file, X509_get_default_cert_file_env, X509_get_default_private_dir, X509_get_ex_data, X509_get_ex_new_index, X509_get_ext, X509_get_ext_by_NID, X509_get_ext_by_OBJ, X509_get_ext_by_critical, X509_get_ext_count, X509_get_ext_d2i, X509_get_issuer_name, X509_get_pubkey, X509_get_pubkey_parameters, X509_get_serialNumber, X509_get_subject_name, X509_gmtime_adj, X509_issuer_and_serial_cmp, X509_issuer_and_serial_hash, X509_issuer_name_cmp, X509_issuer_name_hash, X509_it, X509_keyid_get0, X509_keyid_set1, X509_load_cert_crl_file, X509_load_cert_file, X509_load_crl_file, X509_new, X509_ocspid_print, X509_policy_check, X509_policy_level_get0_node, X509_policy_level_node_count, X509_policy_node_get0_parent, X509_policy_node_get0_policy, X509_policy_node_get0_qualifiers, X509_policy_tree_free, X509_policy_tree_get0_level, X509_policy_tree_get0_policies, X509_policy_tree_get0_user_policies, X509_policy_tree_level_count, X509_print, X509_print_ex, X509_print_ex_fp, X509_print_fp, X509_pubkey_digest, X509_reject_clear, X509_set_ex_data, X509_set_issuer_name, X509_set_notAfter, X509_set_notBefore, X509_set_pubkey, X509_set_serialNumber, X509_set_subject_name, X509_set_version, X509_sign, X509_signature_print, X509_subject_name_cmp, X509_subject_name_hash, X509_supported_extension, X509_time_adj, X509_to_X509_REQ, X509_trust_clear, X509_verify, X509_verify_cert, X509_verify_cert_error_string, X509at_add1_attr, X509at_add1_attr_by_NID, X509at_add1_attr_by_OBJ, X509at_add1_attr_by_txt, X509at_delete_attr, X509at_get_attr, X509at_get_attr_by_NID, X509at_get_attr_by_OBJ, X509at_get_attr_count, X509v3_add_ext, X509v3_delete_ext, X509v3_get_ext, X509v3_get_ext_by_NID, X509v3_get_ext_by_OBJ, X509v3_get_ext_by_critical, X509v3_get_ext_count, ZLONG_it, _ossl_096_des_random_seed, _ossl_old_crypt, _ossl_old_des_cbc_cksum, _ossl_old_des_cbc_encrypt, _ossl_old_des_cfb64_encrypt, _ossl_old_des_cfb_encrypt, _ossl_old_des_crypt, _ossl_old_des_decrypt3, _ossl_old_des_ecb3_encrypt, _ossl_old_des_ecb_encrypt, _ossl_old_des_ede3_cbc_encrypt, _ossl_old_des_ede3_cfb64_encrypt, _ossl_old_des_ede3_ofb64_encrypt, _ossl_old_des_enc_read, _ossl_old_des_enc_write, _ossl_old_des_encrypt, _ossl_old_des_encrypt2, _ossl_old_des_encrypt3, _ossl_old_des_fcrypt, _ossl_old_des_is_weak_key, _ossl_old_des_key_sched, _ossl_old_des_ncbc_encrypt, _ossl_old_des_ofb64_encrypt, _ossl_old_des_ofb_encrypt, _ossl_old_des_options, _ossl_old_des_pcbc_encrypt, _ossl_old_des_quad_cksum, _ossl_old_des_random_key, _ossl_old_des_random_seed, _ossl_old_des_read_2passwords, _ossl_old_des_read_password, _ossl_old_des_read_pw, _ossl_old_des_read_pw_string, _ossl_old_des_set_key, _ossl_old_des_set_odd_parity, _ossl_old_des_string_to_2keys, _ossl_old_des_string_to_key, _ossl_old_des_xcbc_encrypt, _ossl_old_des_xwhite_in2out, _shadow_DES_check_key, _shadow_DES_rw_mode, a2d_ASN1_OBJECT, a2i_ASN1_ENUMERATED, a2i_ASN1_INTEGER, a2i_ASN1_STRING, a2i_IPADDRESS, a2i_IPADDRESS_NC, asc2uni, asn1_Finish, asn1_GetSequence, asn1_add_error, asn1_const_Finish, asn1_do_adb, asn1_do_lock, asn1_enc_free, asn1_enc_init, asn1_enc_restore, asn1_enc_save, asn1_ex_c2i, asn1_ex_i2c, asn1_get_choice_selector, asn1_get_field_ptr, asn1_set_choice_selector, bn_add_words, bn_div_words, bn_dup_expand, bn_expand2, bn_mul_add_words, bn_mul_words, bn_sqr_words, bn_sub_words, c2i_ASN1_BIT_STRING, c2i_ASN1_INTEGER, c2i_ASN1_OBJECT, d2i_ACCESS_DESCRIPTION, d2i_ASN1_BIT_STRING, d2i_ASN1_BMPSTRING, d2i_ASN1_BOOLEAN, d2i_ASN1_ENUMERATED, d2i_ASN1_GENERALIZEDTIME, d2i_ASN1_GENERALSTRING, d2i_ASN1_HEADER, d2i_ASN1_IA5STRING, d2i_ASN1_INTEGER, d2i_ASN1_NULL, d2i_ASN1_OBJECT, d2i_ASN1_OCTET_STRING, d2i_ASN1_PRINTABLE, d2i_ASN1_PRINTABLESTRING, d2i_ASN1_SET, d2i_ASN1_T61STRING, d2i_ASN1_TIME, d2i_ASN1_TYPE, d2i_ASN1_UINTEGER, d2i_ASN1_UNIVERSALSTRING, d2i_ASN1_UTCTIME, d2i_ASN1_UTF8STRING, d2i_ASN1_VISIBLESTRING, d2i_ASN1_bytes, d2i_ASN1_type_bytes, d2i_AUTHORITY_INFO_ACCESS, d2i_AUTHORITY_KEYID, d2i_AutoPrivateKey, d2i_BASIC_CONSTRAINTS, d2i_CERTIFICATEPOLICIES, d2i_CRL_DIST_POINTS, d2i_DHparams, d2i_DIRECTORYSTRING, d2i_DISPLAYTEXT, d2i_DIST_POINT, d2i_DIST_POINT_NAME, d2i_DSAPrivateKey, d2i_DSAPrivateKey_bio, d2i_DSAPrivateKey_fp, d2i_DSAPublicKey, d2i_DSA_PUBKEY, d2i_DSA_PUBKEY_bio, d2i_DSA_PUBKEY_fp, d2i_DSA_SIG, d2i_DSAparams, d2i_ECDSA_SIG, d2i_ECPKParameters, d2i_ECParameters, d2i_ECPrivateKey, d2i_ECPrivateKey_bio, d2i_ECPrivateKey_fp, d2i_EC_PUBKEY, d2i_EC_PUBKEY_bio, d2i_EC_PUBKEY_fp, d2i_EDIPARTYNAME, d2i_EXTENDED_KEY_USAGE, d2i_GENERAL_NAME, d2i_GENERAL_NAMES, d2i_KRB5_APREQ, d2i_KRB5_APREQBODY, d2i_KRB5_AUTHDATA, d2i_KRB5_AUTHENT, d2i_KRB5_AUTHENTBODY, d2i_KRB5_CHECKSUM, d2i_KRB5_ENCDATA, d2i_KRB5_ENCKEY, d2i_KRB5_PRINCNAME, d2i_KRB5_TICKET, d2i_KRB5_TKTBODY, d2i_NETSCAPE_CERT_SEQUENCE, d2i_NETSCAPE_SPKAC, d2i_NETSCAPE_SPKI, d2i_NOTICEREF, d2i_Netscape_RSA, d2i_OCSP_BASICRESP, d2i_OCSP_CERTID, d2i_OCSP_CERTSTATUS, d2i_OCSP_CRLID, d2i_OCSP_ONEREQ, d2i_OCSP_REQINFO, d2i_OCSP_REQUEST, d2i_OCSP_RESPBYTES, d2i_OCSP_RESPDATA, d2i_OCSP_RESPID, d2i_OCSP_RESPONSE, d2i_OCSP_REVOKEDINFO, d2i_OCSP_SERVICELOC, d2i_OCSP_SIGNATURE, d2i_OCSP_SINGLERESP, d2i_OTHERNAME, d2i_PBE2PARAM, d2i_PBEPARAM, d2i_PBKDF2PARAM, d2i_PKCS12, d2i_PKCS12_BAGS, d2i_PKCS12_MAC_DATA, d2i_PKCS12_SAFEBAG, d2i_PKCS12_bio, d2i_PKCS12_fp, d2i_PKCS7, d2i_PKCS7_DIGEST, d2i_PKCS7_ENCRYPT, d2i_PKCS7_ENC_CONTENT, d2i_PKCS7_ENVELOPE, d2i_PKCS7_ISSUER_AND_SERIAL, d2i_PKCS7_RECIP_INFO, d2i_PKCS7_SIGNED, d2i_PKCS7_SIGNER_INFO, d2i_PKCS7_SIGN_ENVELOPE, d2i_PKCS7_bio, d2i_PKCS7_fp, d2i_PKCS8PrivateKey_bio, d2i_PKCS8PrivateKey_fp, d2i_PKCS8_PRIV_KEY_INFO, d2i_PKCS8_PRIV_KEY_INFO_bio, d2i_PKCS8_PRIV_KEY_INFO_fp, d2i_PKCS8_bio, d2i_PKCS8_fp, d2i_PKEY_USAGE_PERIOD, d2i_POLICYINFO, d2i_POLICYQUALINFO, d2i_PROXY_CERT_INFO_EXTENSION, d2i_PROXY_POLICY, d2i_PUBKEY, d2i_PUBKEY_bio, d2i_PUBKEY_fp, d2i_PrivateKey, d2i_PrivateKey_bio, d2i_PrivateKey_fp, d2i_PublicKey, d2i_RSAPrivateKey, d2i_RSAPrivateKey_bio, d2i_RSAPrivateKey_fp, d2i_RSAPublicKey, d2i_RSAPublicKey_bio, d2i_RSAPublicKey_fp, d2i_RSA_NET, d2i_RSA_PUBKEY, d2i_RSA_PUBKEY_bio, d2i_RSA_PUBKEY_fp, d2i_SXNET, d2i_SXNETID, d2i_USERNOTICE, d2i_X509, d2i_X509_ALGOR, d2i_X509_ATTRIBUTE, d2i_X509_AUX, d2i_X509_CERT_AUX, d2i_X509_CERT_PAIR, d2i_X509_CINF, d2i_X509_CRL, d2i_X509_CRL_INFO, d2i_X509_CRL_bio, d2i_X509_CRL_fp, d2i_X509_EXTENSION, d2i_X509_NAME, d2i_X509_NAME_ENTRY, d2i_X509_PKEY, d2i_X509_PUBKEY, d2i_X509_REQ, d2i_X509_REQ_INFO, d2i_X509_REQ_bio, d2i_X509_REQ_fp, d2i_X509_REVOKED, d2i_X509_SIG, d2i_X509_VAL, d2i_X509_bio, d2i_X509_fp, get_rfc2409_prime_1024, get_rfc2409_prime_768, get_rfc3526_prime_1536, get_rfc3526_prime_2048, get_rfc3526_prime_3072, get_rfc3526_prime_4096, get_rfc3526_prime_6144, get_rfc3526_prime_8192, hex_to_string, i2a_ACCESS_DESCRIPTION, i2a_ASN1_ENUMERATED, i2a_ASN1_INTEGER, i2a_ASN1_OBJECT, i2a_ASN1_STRING, i2c_ASN1_BIT_STRING, i2c_ASN1_INTEGER, i2d_ACCESS_DESCRIPTION, i2d_ASN1_BIT_STRING, i2d_ASN1_BMPSTRING, i2d_ASN1_BOOLEAN, i2d_ASN1_ENUMERATED, i2d_ASN1_GENERALIZEDTIME, i2d_ASN1_GENERALSTRING, i2d_ASN1_HEADER, i2d_ASN1_IA5STRING, i2d_ASN1_INTEGER, i2d_ASN1_NULL, i2d_ASN1_OBJECT, i2d_ASN1_OCTET_STRING, i2d_ASN1_PRINTABLE, i2d_ASN1_PRINTABLESTRING, i2d_ASN1_SET, i2d_ASN1_T61STRING, i2d_ASN1_TIME, i2d_ASN1_TYPE, i2d_ASN1_UNIVERSALSTRING, i2d_ASN1_UTCTIME, i2d_ASN1_UTF8STRING, i2d_ASN1_VISIBLESTRING, i2d_ASN1_bytes, i2d_AUTHORITY_INFO_ACCESS, i2d_AUTHORITY_KEYID, i2d_BASIC_CONSTRAINTS, i2d_CERTIFICATEPOLICIES, i2d_CRL_DIST_POINTS, i2d_DHparams, i2d_DIRECTORYSTRING, i2d_DISPLAYTEXT, i2d_DIST_POINT, i2d_DIST_POINT_NAME, i2d_DSAPrivateKey, i2d_DSAPrivateKey_bio, i2d_DSAPrivateKey_fp, i2d_DSAPublicKey, i2d_DSA_PUBKEY, i2d_DSA_PUBKEY_bio, i2d_DSA_PUBKEY_fp, i2d_DSA_SIG, i2d_DSAparams, i2d_ECDSA_SIG, i2d_ECPKParameters, i2d_ECParameters, i2d_ECPrivateKey, i2d_ECPrivateKey_bio, i2d_ECPrivateKey_fp, i2d_EC_PUBKEY, i2d_EC_PUBKEY_bio, i2d_EC_PUBKEY_fp, i2d_EDIPARTYNAME, i2d_EXTENDED_KEY_USAGE, i2d_GENERAL_NAME, i2d_GENERAL_NAMES, i2d_KRB5_APREQ, i2d_KRB5_APREQBODY, i2d_KRB5_AUTHDATA, i2d_KRB5_AUTHENT, i2d_KRB5_AUTHENTBODY, i2d_KRB5_CHECKSUM, i2d_KRB5_ENCDATA, i2d_KRB5_ENCKEY, i2d_KRB5_PRINCNAME, i2d_KRB5_TICKET, i2d_KRB5_TKTBODY, i2d_NETSCAPE_CERT_SEQUENCE, i2d_NETSCAPE_SPKAC, i2d_NETSCAPE_SPKI, i2d_NOTICEREF, i2d_Netscape_RSA, i2d_OCSP_BASICRESP, i2d_OCSP_CERTID, i2d_OCSP_CERTSTATUS, i2d_OCSP_CRLID, i2d_OCSP_ONEREQ, i2d_OCSP_REQINFO, i2d_OCSP_REQUEST, i2d_OCSP_RESPBYTES, i2d_OCSP_RESPDATA, i2d_OCSP_RESPID, i2d_OCSP_RESPONSE, i2d_OCSP_REVOKEDINFO, i2d_OCSP_SERVICELOC, i2d_OCSP_SIGNATURE, i2d_OCSP_SINGLERESP, i2d_OTHERNAME, i2d_PBE2PARAM, i2d_PBEPARAM, i2d_PBKDF2PARAM, i2d_PKCS12, i2d_PKCS12_BAGS, i2d_PKCS12_MAC_DATA, i2d_PKCS12_SAFEBAG, i2d_PKCS12_bio, i2d_PKCS12_fp, i2d_PKCS7, i2d_PKCS7_DIGEST, i2d_PKCS7_ENCRYPT, i2d_PKCS7_ENC_CONTENT, i2d_PKCS7_ENVELOPE, i2d_PKCS7_ISSUER_AND_SERIAL, i2d_PKCS7_NDEF, i2d_PKCS7_RECIP_INFO, i2d_PKCS7_SIGNED, i2d_PKCS7_SIGNER_INFO, i2d_PKCS7_SIGN_ENVELOPE, i2d_PKCS7_bio, i2d_PKCS7_fp, i2d_PKCS8PrivateKeyInfo_bio, i2d_PKCS8PrivateKeyInfo_fp, i2d_PKCS8PrivateKey_bio, i2d_PKCS8PrivateKey_fp, i2d_PKCS8PrivateKey_nid_bio, i2d_PKCS8PrivateKey_nid_fp, i2d_PKCS8_PRIV_KEY_INFO, i2d_PKCS8_PRIV_KEY_INFO_bio, i2d_PKCS8_PRIV_KEY_INFO_fp, i2d_PKCS8_bio, i2d_PKCS8_fp, i2d_PKEY_USAGE_PERIOD, i2d_POLICYINFO, i2d_POLICYQUALINFO, i2d_PROXY_CERT_INFO_EXTENSION, i2d_PROXY_POLICY, i2d_PUBKEY, i2d_PUBKEY_bio, i2d_PUBKEY_fp, i2d_PrivateKey, i2d_PrivateKey_bio, i2d_PrivateKey_fp, i2d_PublicKey, i2d_RSAPrivateKey, i2d_RSAPrivateKey_bio, i2d_RSAPrivateKey_fp, i2d_RSAPublicKey, i2d_RSAPublicKey_bio, i2d_RSAPublicKey_fp, i2d_RSA_NET, i2d_RSA_PUBKEY, i2d_RSA_PUBKEY_bio, i2d_RSA_PUBKEY_fp, i2d_SXNET, i2d_SXNETID, i2d_USERNOTICE, i2d_X509, i2d_X509_ALGOR, i2d_X509_ATTRIBUTE, i2d_X509_AUX, i2d_X509_CERT_AUX, i2d_X509_CERT_PAIR, i2d_X509_CINF, i2d_X509_CRL, i2d_X509_CRL_INFO, i2d_X509_CRL_bio, i2d_X509_CRL_fp, i2d_X509_EXTENSION, i2d_X509_NAME, i2d_X509_NAME_ENTRY, i2d_X509_PKEY, i2d_X509_PUBKEY, i2d_X509_REQ, i2d_X509_REQ_INFO, i2d_X509_REQ_bio, i2d_X509_REQ_fp, i2d_X509_REVOKED, i2d_X509_SIG, i2d_X509_VAL, i2d_X509_bio, i2d_X509_fp, i2o_ECPublicKey, i2s_ASN1_ENUMERATED, i2s_ASN1_ENUMERATED_TABLE, i2s_ASN1_INTEGER, i2s_ASN1_OCTET_STRING, i2t_ASN1_OBJECT, i2v_ASN1_BIT_STRING, i2v_GENERAL_NAME, i2v_GENERAL_NAMES, lh_delete, lh_doall, lh_doall_arg, lh_free, lh_insert, lh_new, lh_node_stats, lh_node_stats_bio, lh_node_usage_stats, lh_node_usage_stats_bio, lh_num_items, lh_retrieve, lh_stats, lh_stats_bio, lh_strhash, ms_time_cmp, ms_time_diff, ms_time_free, ms_time_get, ms_time_new, name_cmp, o2i_ECPublicKey, pitem_free, pitem_new, pqueue_find, pqueue_free, pqueue_insert, pqueue_iterator, pqueue_new, pqueue_next, pqueue_peek, pqueue_pop, pqueue_print, s2i_ASN1_INTEGER, s2i_ASN1_OCTET_STRING, sk_delete, sk_delete_ptr, sk_dup, sk_find, sk_find_ex, sk_free, sk_insert, sk_is_sorted, sk_new, sk_new_null, sk_num, sk_pop, sk_pop_free, sk_push, sk_set, sk_set_cmp_func, sk_shift, sk_sort, sk_unshift, sk_value, sk_zero, string_to_hex, uni2asc, v2i_ASN1_BIT_STRING, v2i_GENERAL_NAME, v2i_GENERAL_NAMES, v2i_GENERAL_NAME_ex

adam · Answer

j'ai aussi mis a jour internet, flash, java et acrobat

dou-l · Answer

Il manque cela non ?


C:\WINDOWS\system32\mxankvgt.exe
C:\Documents and Settings\All Users\Application Data\vwzetedu

adam · Answer

non ils sont respectivement le second (message 46) qui est infecté et le troisième (message 47), mais  pour le troisième il n'arrive pas a le trouver

dou-l · Answer

ok


double-clique sur OTMoveIt.exe pour le lancer.
copie la liste qui se trouve en citation ci-dessous,
et colle-la dans le cadre de gauche de OTMoveIt :Paste List of Files/Folders to be moved.

Citation :

C:\WINDOWS\system32\ropqtcnk.exe 

clique sur MoveIt! pour lancer la suppression.
le résultat apparaitra dans le cadre "Results".
clique sur Exit pour fermer.
poste le rapport situé dans C:\_OTMoveIt\MovedFiles.

il te sera peut-être demander de redémarrer le pc pour achever la suppression.si c'est le cas accepte par Yes.

adam · Answer

C:\WINDOWS\system32\ropqtcnk.exe moved successfully.
 
OTMoveIt2 by OldTimer - Version 1.0.4.0 log created on 04062008_124920

adam · Answer

mais il me semble que le second fichier est aussi infecté. je le supprime de la meme manière?

dou-l · Answer

J'étais en train d'y penser mais je ne te l'ai pas donné a analyser je crois si ?

adam · Answer

je parle de C:\WINDOWS\system32\mxankvgt.exe (message 46)

dou-l · Answer

ben non au message 46 c'est pas lui :

c'est lui : http://www.commentcamarche.net/forum/affich 5772457 trojan et virtumonde ordi infecte aidez moi?page=3#46

adam · Answer

c'est ce que j'obtien quand je demande a virus total d'analyser ce fichier

dou-l · Answer

ta du l'envoyer pour qu'il l'analyse c'était quoi le chemin d'accès ?<

adam · Answer

C:\WINDOWS\system32\mxankvgt.exe

dou-l · Answer

au post 46 j'obtient ce fichier  pijmfobg.exe c'est toi qu'il a fait analyser non ?

adam · Answer

oui je vois de quoi tu parles. c'est bizarre. mais pourtant c'est bien le chemin d'acces C:\WINDOWS\system32\mxankvgt.exe que je tape, et le rapport reste le meme, je viens de reessayer. que dois je faire

dou-l · Answer

attend si je comprend bien tu mets ce fichier a anaslyer : C:\WINDOWS\system32\mxankvgt.exe

et il te sors : pijmfobg.exe Non ?

adam · Answer

exactemement

dou-l · Answer

bizarre 


encore des soucis ?

adam · Answer

bas depuis 2-3 heures je n'ai plus de pop up ou de message. je me demande surtout si il y aura des sesquelle sur mon ordi que je devrais réparer et si cette histoire de test bizarre est inquiétant ou pas

dou-l · Answer

Ok c'est bon alors

si on aurait pas désinfécter tu aurais eu des séquelles lol

C'est pas inquiétant lol je t'es fait analyer des fichiers pour voir si'il étaient infécter et il y en avait

Si tu veux tu peux faire une analyse en ligne chez bitdefender pour voir s'il n'y a plus rien !

ici puis colle le rapport .

a+.

adam · Answer

je te remrcie enormément de ton aide, c'est incroyable cette entraide. je sias pas comment j'aurais fais sans toi, vraiment merci. une dernière question. qu'est ce que j'avais en fait, et comment tu l'as enlevé en term pédagogique pour un débutant? je veux juste comprendre. dès que bitdefender a fini, je post le rapport.
encore merci

dou-l · Answer

T'as pu attrapé ca en cliquant au mauvaise endroit ou en téléchargeant quelque chose qu'il ne fallait pas . Je l'ai enlevé avec les fix qui servent et avec hijack qui aide a savoir ce qui traine sur ton pc .

Je te demande un truc c'est de mettre ton problème en résolu stp .

J'attend le rapport .

adam · Answer

je le fait avant ou apres avoir posté le rapport?

dou-l · Answer

de quoi mettre résolue ? attend le rapport

adam · Answer

BitDefender Online Scanner - Rapport virus en temps réel
	

 
	

 

Généré à: Sun, Apr 06, 2008 - 14:34:14

 
	

 
	

 

Info d'analyse
	

 
	

 

Fichiers scannés
	

67790

Infectés Fichiers
	

0
	

 
	

 

 
	

 
	

 

Virus Détectés
	

 
	

 

Aucun virus trouvé.
	

	

 
	

 

 
	

 
	

 

 
	

 
	

 

Ce sommaire du processus d'analyse sera utilisé par les laboratoires Antivirus BitDefender pour créer des statistiques agréguées sur l'activité des virus dans le monde.

adam · Answer

encore merci beaucoup.

dou-l · Answer

Ok il y a rien c'est parfait


mnt tu peux mettre résolu ^^

adam · Answer

c'est fait, merci de ton aide

dou-l · Answer

ok

a+.

Trojan et virtumonde, ordi infecté, aidez-moi

75 réponses

Discussions similaires

Newsletters