Ver qui ralenti le pc + rapport adware
pleasehelp
-
bernie61 -
bernie61 -
j´ai fais une recherhce sur beaucoup de istes mais aucun solution n´est proposé.. mon ordi est ralenti par ce ver...
voici le rapport adware
Ad-Aware SE Build 1.06r1
Logfile Created on:Samstag, 10. Dezember 2005 20:47:26
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R79 09.12.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):43 total references
Tracking Cookie(TAC index:3):32 total references
Windows(TAC index:3):1 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file
Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects
10.12.2005 20:47:26 - Scan started. (Smart mode)
Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 604
ThreadCreationTime : 10.12.2005 18:43:02
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 668
ThreadCreationTime : 10.12.2005 18:43:04
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 696
ThreadCreationTime : 10.12.2005 18:43:06
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 740
ThreadCreationTime : 10.12.2005 18:43:06
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Anwendung für Dienste und Controller
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : services.exe
#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 752
ThreadCreationTime : 10.12.2005 18:43:06
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe
#:6 [ati2evxx.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 904
ThreadCreationTime : 10.12.2005 18:43:07
BasePriority : Normal
FileVersion : 6.14.10.4118
ProductVersion : 6.14.10.4118.02
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE
#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 916
ThreadCreationTime : 10.12.2005 18:43:07
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:8 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 996
ThreadCreationTime : 10.12.2005 18:43:07
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:9 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1092
ThreadCreationTime : 10.12.2005 18:43:07
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:10 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1132
ThreadCreationTime : 10.12.2005 18:43:07
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:11 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1188
ThreadCreationTime : 10.12.2005 18:43:08
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:12 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1448
ThreadCreationTime : 10.12.2005 18:43:09
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe
#:13 [ati2evxx.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1608
ThreadCreationTime : 10.12.2005 18:43:30
BasePriority : Normal
FileVersion : 6.14.10.4118
ProductVersion : 6.14.10.4118.02
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE
#:14 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1704
ThreadCreationTime : 10.12.2005 18:43:30
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : EXPLORER.EXE
#:15 [type32.exe]
FilePath : C:\Programme\Microsoft Hardware\Keyboard\
ProcessID : 1816
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
#:16 [point32.exe]
FilePath : C:\Programme\Microsoft Hardware\Mouse\
ProcessID : 1836
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
#:17 [msgplus.exe]
FilePath : C:\Programme\MessengerPlus! 3\
ProcessID : 1844
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
#:18 [atiptaxx.exe]
FilePath : C:\Programme\ATI Technologies\ATI Control Panel\
ProcessID : 1852
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
FileVersion : 6.14.10.5160
ProductVersion : 6.14.10.5160
ProductName : ATI Desktop Component
CompanyName : ATI Technologies, Inc.
FileDescription : ATI Desktop Control Panel
InternalName : Atiptaxx.exe
LegalCopyright : Copyright (C) 1998-2005 ATI Technologies Inc.
OriginalFilename : Atiptaxx.exe
#:19 [jusched.exe]
FilePath : C:\Programme\Java\jre1.5.0_04\bin\
ProcessID : 1860
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
#:20 [realsched.exe]
FilePath : C:\Programme\Gemeinsame Dateien\Real\Update_OB\
ProcessID : 1884
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
FileVersion : 0.1.0.3292
ProductVersion : 0.1.0.3292
ProductName : RealPlayer (32-bit)
CompanyName : RealNetworks, Inc.
FileDescription : RealNetworks Scheduler
InternalName : schedapp
LegalCopyright : Copyright © RealNetworks, Inc. 1995-2004
LegalTrademarks : RealAudio(tm) is a trademark of RealNetworks, Inc.
OriginalFilename : realsched.exe
#:21 [ashdisp.exe]
FilePath : C:\PROGRA~1\ALWILS~1\Avast4\
ProcessID : 1924
ThreadCreationTime : 10.12.2005 18:43:32
BasePriority : Normal
FileVersion : 4, 6, 731, 0
ProductVersion : 4, 6, 0, 0
ProductName : avast! Antivirus
FileDescription : avast! service GUI component
InternalName : aswDisp
LegalCopyright : Copyright (c) 2005 ALWIL Software
OriginalFilename : aswDisp.exe
#:22 [zlclient.exe]
FilePath : C:\Programme\Zone Labs\ZoneAlarm\
ProcessID : 1932
ThreadCreationTime : 10.12.2005 18:43:32
BasePriority : Normal
FileVersion : 6.1.737.000
ProductVersion : 6.1.737.000
ProductName : Zone Labs Client
CompanyName : Zone Labs, LLC
FileDescription : Zone Labs Client
InternalName : zlclient
LegalCopyright : Copyright © 1998-2005, Zone Labs, LLC
OriginalFilename : zlclient.exe
#:23 [ctfmon.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1948
ThreadCreationTime : 10.12.2005 18:43:32
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE
#:24 [easyshare.exe]
FilePath : C:\Programme\Kodak\Kodak EasyShare software\bin\
ProcessID : 1984
ThreadCreationTime : 10.12.2005 18:43:32
BasePriority : Normal
FileVersion : 5, 0, 25, 230
ProductVersion : 4, 1, 2, 30
ProductName : KODAK EasyShare Software
FileDescription : KODAK EasyShare Software
InternalName : EasyShare
LegalCopyright : © Eastman Kodak Company, 2002-2005. All Rights Reserved.
OriginalFilename : EasyShare.exe
#:25 [aswupdsv.exe]
FilePath : C:\Programme\Alwil Software\Avast4\
ProcessID : 1316
ThreadCreationTime : 10.12.2005 18:44:18
BasePriority : Normal
#:26 [ashserv.exe]
FilePath : C:\Programme\Alwil Software\Avast4\
ProcessID : 1372
ThreadCreationTime : 10.12.2005 18:44:18
BasePriority : High
FileVersion : 4, 6, 731, 0
ProductVersion : 4, 6, 0, 0
ProductName : avast! Antivirus
FileDescription : avast! antivirus service
InternalName : aswServ
LegalCopyright : Copyright (c) 2005 ALWIL Software
OriginalFilename : aswServ.exe
#:27 [mmerefresh.exe]
FilePath : E:\Programme\Pro-Tools\Digidesign\Drivers\
ProcessID : 1468
ThreadCreationTime : 10.12.2005 18:44:19
BasePriority : Normal
FileVersion : 6.4.0.138
ProductVersion : 6.4
ProductName : Digidesign MME Binder
CompanyName : Digidesign, A Division of Avid Technology, Inc.
FileDescription : Digidesign MME Binder
InternalName : MMERefresh.exe
LegalCopyright : ©1999-2004 Digidesign, A Division of Avid Technology, Inc.
OriginalFilename : MMERefresh.exe
#:28 [mdm.exe]
FilePath : C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\
ProcessID : 1544
ThreadCreationTime : 10.12.2005 18:44:20
BasePriority : Normal
FileVersion : 7.00.9466
ProductVersion : 7.00.9466
ProductName : Microsoft® Visual Studio .NET
CompanyName : Microsoft Corporation
FileDescription : Machine Debug Manager
InternalName : mdm.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : mdm.exe
#:29 [starwindservice.exe]
FilePath : C:\Programme\Alcohol Soft\Alcohol 120\StarWind\
ProcessID : 1600
ThreadCreationTime : 10.12.2005 18:44:20
BasePriority : Normal
FileVersion : 2.6.1 Build 0x20050401
ProductVersion : 2.6.1 Build 0x20050401
ProductName : StarWind
CompanyName : Rocket Division Software
FileDescription : StarWind iSCSI Target (Alcohol Edition)
InternalName : StarWind
LegalCopyright : Copyright (c) Rocket Division Software 2003-2005. All rights reserved.
OriginalFilename : StarWind
#:30 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1604
ThreadCreationTime : 10.12.2005 18:44:20
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:31 [wdfmgr.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1900
ThreadCreationTime : 10.12.2005 18:44:21
BasePriority : Normal
FileVersion : 5.2.3790.1230 built by: dnsrv(bld4act)
ProductVersion : 5.2.3790.1230
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows User Mode Driver Manager
InternalName : WdfMgr
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WdfMgr.exe
#:32 [uaservice.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 516
ThreadCreationTime : 10.12.2005 18:44:27
BasePriority : Normal
#:33 [vsmon.exe]
FilePath : C:\WINDOWS\system32\ZoneLabs\
ProcessID : 628
ThreadCreationTime : 10.12.2005 18:44:32
BasePriority : Normal
FileVersion : 6.1.737.000
ProductVersion : 6.1.737.000
ProductName : TrueVector Service
CompanyName : Zone Labs, LLC
FileDescription : TrueVector Service
InternalName : vsmon
LegalCopyright : Copyright © 1998-2005, Zone Labs, LLC
OriginalFilename : vsmon.exe
#:34 [ashmaisv.exe]
FilePath : C:\Programme\Alwil Software\Avast4\
ProcessID : 2316
ThreadCreationTime : 10.12.2005 18:44:54
BasePriority : Normal
#:35 [ashwebsv.exe]
FilePath : C:\Programme\Alwil Software\Avast4\
ProcessID : 2392
ThreadCreationTime : 10.12.2005 18:44:56
BasePriority : Normal
#:36 [alg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2776
ThreadCreationTime : 10.12.2005 18:44:59
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe
#:37 [scfgsrv.exe]
FilePath : F:\PROGRA~1\MOBILE~1\bin\
ProcessID : 3720
ThreadCreationTime : 10.12.2005 18:46:21
BasePriority : Normal
FileVersion : 1, 0, 0, 110
ProductVersion : 3.04.40.48.0
ProductName : SCfgSrv Module
CompanyName : Siemens AG
FileDescription : SCfgSrv Module
InternalName : SCfgSrv
LegalCopyright : Copyright (C) 2000-2004
OriginalFilename : SCfgSrv.DLL
#:38 [phones~2.exe]
FilePath : F:\PROGRA~1\MOBILE~1\bin\
ProcessID : 3832
ThreadCreationTime : 10.12.2005 18:46:24
BasePriority : Normal
FileVersion : 3, 4, 36, 21
ProductVersion : 3.04.40.48.0
ProductName : Mobile Phone Manager
CompanyName : Siemens AG
FileDescription : PhoneServerGSM2 Module
InternalName : PhoneServerGSM2
LegalCopyright : Copyright (C) 2000-2004
OriginalFilename : PhoneServerGSM2.EXE
#:39 [desproxy.exe]
FilePath : F:\PROGRA~1\MOBILE~1\bin\
ProcessID : 2828
ThreadCreationTime : 10.12.2005 19:02:28
BasePriority : Normal
FileVersion : 1, 0, 0, 109
ProductVersion : 3.04.40.48.0
ProductName : DESPROXY Module
CompanyName : Siemens AG
FileDescription : DESPROXY Module
InternalName : DESPROXY
LegalCopyright : Copyright (C) 2000-2004
OriginalFilename : DESPROXY.EXE
#:40 [sphone~1.exe]
FilePath : F:\PROGRA~1\MOBILE~1\bin\
ProcessID : 3172
ThreadCreationTime : 10.12.2005 19:02:29
BasePriority : Normal
FileVersion : 0, 0, 6, 48
ProductVersion : 3.04.40.48.0
ProductName : SPhoneObserver Module
CompanyName : Siemens AG
FileDescription : SPhoneObserver Module
InternalName : SPhoneObserver
LegalCopyright : Copyright 2003
OriginalFilename : SPhoneObserver.EXE
#:41 [iexplore.exe]
FilePath : C:\Programme\Internet Explorer\
ProcessID : 2584
ThreadCreationTime : 10.12.2005 19:04:09
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : IEXPLORE.EXE
#:42 [iexplore.exe]
FilePath : C:\Programme\Internet Explorer\
ProcessID : 3620
ThreadCreationTime : 10.12.2005 19:46:20
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : IEXPLORE.EXE
#:43 [ad-aware.exe]
FilePath : E:\Programme\Ad-Aware SE Personal\
ProcessID : 2908
ThreadCreationTime : 10.12.2005 19:46:53
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0
Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Windows Object Recognized!
Type : RegData
Data : "regedit.exe" "%1"
TAC Rating : 3
Category : Vulnerability
Comment : Possible virus infection, REG file extension compromised
Rootkey : HKEY_CLASSES_ROOT
Object : regfile\shell\open\command
Value :
Data : "regedit.exe" "%1"
Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 1
Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 1
Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@tripod[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:intel@tripod.com/
Expires : 10.12.2006 19:12:44
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@ads.multimania.lycos[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:intel@ads.multimania.lycos.fr/
Expires : 11.12.2005 19:11:36
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@zedo[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:5
Value : Cookie:intel@zedo.com/
Expires : 07.12.2015 16:25:04
LastSync : Hits:5
UseCount : 0
Hits : 5
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@hotlog[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:15
Value : Cookie:intel@hotlog.ru/
Expires : 10.12.2006 20:01:14
LastSync : Hits:15
UseCount : 0
Hits : 15
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@fl01.ct2.comclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookie:intel@fl01.ct2.comclick.com/
Expires : 10.01.2029 01:00:00
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@clickbank[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:intel@clickbank.net/
Expires : 07.06.2006 17:58:44
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@247realmedia[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:intel@247realmedia.com/
Expires : 01.01.2021 01:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@as1.falkag[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:167
Value : Cookie:intel@as1.falkag.de/
Expires : 09.01.2006 18:58:00
LastSync : Hits:167
UseCount : 0
Hits : 167
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@media.fastclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:137
Value : Cookie:intel@media.fastclick.net/
Expires : 09.12.2005 20:28:10
LastSync : Hits:137
UseCount : 0
Hits : 137
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@fastclick[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:268
Value : Cookie:intel@fastclick.net/
Expires : 09.12.2007 19:26:48
LastSync : Hits:268
UseCount : 0
Hits : 268
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@spylog[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:52
Value : Cookie:intel@spylog.com/
Expires : 08.06.2006 19:59:32
LastSync : Hits:52
UseCount : 0
Hits : 52
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@bluestreak[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:12
Value : Cookie:intel@bluestreak.com/
Expires : 08.12.2015 15:46:54
LastSync : Hits:12
UseCount : 0
Hits : 12
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@real[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:5
Value : Cookie:intel@real.com/
Expires : 05.09.2006 08:18:48
LastSync : Hits:5
UseCount : 0
Hits : 5
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@cgi-bin[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:5
Value : Cookie:intel@imrworldwide.com/cgi-bin
Expires : 08.12.2015 14:51:16
LastSync : Hits:5
UseCount : 0
Hits : 5
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@ad4.bannerbank[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:intel@ad4.bannerbank.ru/
Expires : 12.01.2006 19:11:32
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@estat[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:10
Value : Cookie:intel@estat.com/
Expires : 07.12.2015 16:38:16
LastSync : Hits:10
UseCount : 0
Hits : 10
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@serving-sys[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:21
Value : Cookie:intel@serving-sys.com/
Expires : 31.12.2037 23:00:00
LastSync : Hits:21
UseCount : 0
Hits : 21
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@weborama[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:17
Value : Cookie:intel@weborama.fr/
Expires : 09.12.2007 16:20:12
LastSync : Hits:17
UseCount : 0
Hits : 17
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@list[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookie:intel@list.ru/
Expires : 09.03.2006 22:00:00
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@atdmt[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:11
Value : Cookie:intel@atdmt.com/
Expires : 08.12.2010 01:00:00
LastSync : Hits:11
UseCount : 0
Hits : 11
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@ad3.bannerbank[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:intel@ad3.bannerbank.ru/
Expires : 12.01.2006 19:02:42
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@realmedia[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:intel@realmedia.com/
Expires : 01.01.2021 01:00:00
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@servedby.netshelter[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:11
Value : Cookie:intel@servedby.netshelter.net/
Expires : 17.12.2005 19:27:40
LastSync : Hits:11
UseCount : 0
Hits : 11
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@doubleclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:27
Value : Cookie:intel@doubleclick.net/
Expires : 08.12.2008 16:24:52
LastSync : Hits:27
UseCount : 0
Hits : 27
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@adtech[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:intel@adtech.de/
Expires : 07.12.2015 16:54:04
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@as-eu.falkag[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:10
Value : Cookie:intel@as-eu.falkag.net/
Expires : 09.01.2006 16:10:16
LastSync : Hits:10
UseCount : 0
Hits : 10
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@www.smartadserver[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:51
Value : Cookie:intel@www.smartadserver.com/
Expires : 05.12.2025 20:48:28
LastSync : Hits:51
UseCount : 0
Hits : 51
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@2o7[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:89
Value : Cookie:intel@2o7.net/
Expires : 09.12.2010 14:27:44
LastSync : Hits:89
UseCount : 0
Hits : 89
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@revenue[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:107
Value : Cookie:intel@revenue.net/
Expires : 10.06.2022 06:05:42
LastSync : Hits:107
UseCount : 0
Hits : 107
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@mediaplex[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:9
Value : Cookie:intel@mediaplex.com/
Expires : 22.06.2009 01:00:00
LastSync : Hits:9
UseCount : 0
Hits : 9
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@valueclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:6
Value : Cookie:intel@valueclick.com/
Expires : 04.12.2030 14:41:30
LastSync : Hits:6
UseCount : 0
Hits : 6
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@tradedoubler[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:41
Value : Cookie:intel@tradedoubler.com/
Expires : 05.12.2025 18:57:04
LastSync : Hits:41
UseCount : 0
Hits : 41
Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 32
Objects found so far: 33
Deep scanning and examining files...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Disk Scan Result for C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 33
Disk Scan Result for C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 33
Disk Scan Result for C:\DOKUME~1\Intel\LOKALE~1\Temp\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 33
Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 33
MRU List Object Recognized!
Location: : C:\Dokumente und Einstellungen\Intel\recent
Description : list of recently opened documents
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\google\navclient\1.1\history
Description : list of recently used search terms in the google toolbar
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d
MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X
MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X
MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\frontpage\editor
Description : default add image directory for microsoft frontpage
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\frontpage\explorer\frontpage explorer\recent file list
Description : list of recently used files in microsoft frontpage
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\frontpage\explorer\frontpage explorer\recent page list
Description : list of recently used pages in microsoft frontpage
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\frontpage\explorer\frontpage explorer\recent web list
Description : list of recently used webs in microsoft frontpage
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\mediaplayer\medialibraryui
Description : last selected node in the microsoft windows media player media library
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\mediaplayer\player\settings
Description : last open directory used in jasc paint shop pro
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player
MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-19\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-20\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\microsoft management console\recent file list
Description : list of recent snap-ins used in the microsoft management console
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\office\11.0\powerpoint\recent file list
Description : list of recent files used by microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\office\11.0\powerpoint\recent templates
Description : list of recent templates used by microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\office\11.0\powerpoint\recent typeface list
Description : list of recently used typefaces in microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\office\11.0\powerpoint\recentfolderlist
Description : list of recent folders used by microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\office\11.0\powerpoint\recenttemplatelist
Description : list of recent templates used by microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\applets\paint\recent file list
Description : list of files recently opened using microsoft paint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\applets\regedit
Description : last key accessed using the microsoft registry editor
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\explorer\runmru
Description : mru list for items opened in start | run
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\realnetworks\realplayer\6.0\preferences
Description : list of recent skins in realplayer
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\realnetworks\realplayer\6.0\preferences
Description : list of recent clips in realplayer
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\realnetworks\realplayer\6.0\preferences
Description : last login time in realplayer
MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\winrar\dialogedithistory\extrpath
Description : winrar "extract-to" history
Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 76
20:49:28 Scan Complete
Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:02:01.688
Objects scanned:78744
Objects identified:33
Objects ignored:0
New critical objects:33
voici le rapport adware
Ad-Aware SE Build 1.06r1
Logfile Created on:Samstag, 10. Dezember 2005 20:47:26
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R79 09.12.2005
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
MRU List(TAC index:0):43 total references
Tracking Cookie(TAC index:3):32 total references
Windows(TAC index:3):1 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file
Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects
10.12.2005 20:47:26 - Scan started. (Smart mode)
Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 604
ThreadCreationTime : 10.12.2005 18:43:02
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 668
ThreadCreationTime : 10.12.2005 18:43:04
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 696
ThreadCreationTime : 10.12.2005 18:43:06
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 740
ThreadCreationTime : 10.12.2005 18:43:06
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Anwendung für Dienste und Controller
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : services.exe
#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 752
ThreadCreationTime : 10.12.2005 18:43:06
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe
#:6 [ati2evxx.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 904
ThreadCreationTime : 10.12.2005 18:43:07
BasePriority : Normal
FileVersion : 6.14.10.4118
ProductVersion : 6.14.10.4118.02
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE
#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 916
ThreadCreationTime : 10.12.2005 18:43:07
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:8 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 996
ThreadCreationTime : 10.12.2005 18:43:07
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:9 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1092
ThreadCreationTime : 10.12.2005 18:43:07
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:10 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1132
ThreadCreationTime : 10.12.2005 18:43:07
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:11 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1188
ThreadCreationTime : 10.12.2005 18:43:08
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:12 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1448
ThreadCreationTime : 10.12.2005 18:43:09
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe
#:13 [ati2evxx.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1608
ThreadCreationTime : 10.12.2005 18:43:30
BasePriority : Normal
FileVersion : 6.14.10.4118
ProductVersion : 6.14.10.4118.02
ProductName : ATI External Event Utility for WindowsNT and Windows9X
CompanyName : ATI Technologies Inc.
FileDescription : ATI External Event Utility EXE Module
InternalName : ATI2EVXX.EXE
LegalCopyright : Copyright © 1999-2004 ATI Technologies Inc.
OriginalFilename : ATI2EVXX.EXE
#:14 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 1704
ThreadCreationTime : 10.12.2005 18:43:30
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Windows Explorer
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : EXPLORER.EXE
#:15 [type32.exe]
FilePath : C:\Programme\Microsoft Hardware\Keyboard\
ProcessID : 1816
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
#:16 [point32.exe]
FilePath : C:\Programme\Microsoft Hardware\Mouse\
ProcessID : 1836
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
#:17 [msgplus.exe]
FilePath : C:\Programme\MessengerPlus! 3\
ProcessID : 1844
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
#:18 [atiptaxx.exe]
FilePath : C:\Programme\ATI Technologies\ATI Control Panel\
ProcessID : 1852
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
FileVersion : 6.14.10.5160
ProductVersion : 6.14.10.5160
ProductName : ATI Desktop Component
CompanyName : ATI Technologies, Inc.
FileDescription : ATI Desktop Control Panel
InternalName : Atiptaxx.exe
LegalCopyright : Copyright (C) 1998-2005 ATI Technologies Inc.
OriginalFilename : Atiptaxx.exe
#:19 [jusched.exe]
FilePath : C:\Programme\Java\jre1.5.0_04\bin\
ProcessID : 1860
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
#:20 [realsched.exe]
FilePath : C:\Programme\Gemeinsame Dateien\Real\Update_OB\
ProcessID : 1884
ThreadCreationTime : 10.12.2005 18:43:31
BasePriority : Normal
FileVersion : 0.1.0.3292
ProductVersion : 0.1.0.3292
ProductName : RealPlayer (32-bit)
CompanyName : RealNetworks, Inc.
FileDescription : RealNetworks Scheduler
InternalName : schedapp
LegalCopyright : Copyright © RealNetworks, Inc. 1995-2004
LegalTrademarks : RealAudio(tm) is a trademark of RealNetworks, Inc.
OriginalFilename : realsched.exe
#:21 [ashdisp.exe]
FilePath : C:\PROGRA~1\ALWILS~1\Avast4\
ProcessID : 1924
ThreadCreationTime : 10.12.2005 18:43:32
BasePriority : Normal
FileVersion : 4, 6, 731, 0
ProductVersion : 4, 6, 0, 0
ProductName : avast! Antivirus
FileDescription : avast! service GUI component
InternalName : aswDisp
LegalCopyright : Copyright (c) 2005 ALWIL Software
OriginalFilename : aswDisp.exe
#:22 [zlclient.exe]
FilePath : C:\Programme\Zone Labs\ZoneAlarm\
ProcessID : 1932
ThreadCreationTime : 10.12.2005 18:43:32
BasePriority : Normal
FileVersion : 6.1.737.000
ProductVersion : 6.1.737.000
ProductName : Zone Labs Client
CompanyName : Zone Labs, LLC
FileDescription : Zone Labs Client
InternalName : zlclient
LegalCopyright : Copyright © 1998-2005, Zone Labs, LLC
OriginalFilename : zlclient.exe
#:23 [ctfmon.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1948
ThreadCreationTime : 10.12.2005 18:43:32
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE
#:24 [easyshare.exe]
FilePath : C:\Programme\Kodak\Kodak EasyShare software\bin\
ProcessID : 1984
ThreadCreationTime : 10.12.2005 18:43:32
BasePriority : Normal
FileVersion : 5, 0, 25, 230
ProductVersion : 4, 1, 2, 30
ProductName : KODAK EasyShare Software
FileDescription : KODAK EasyShare Software
InternalName : EasyShare
LegalCopyright : © Eastman Kodak Company, 2002-2005. All Rights Reserved.
OriginalFilename : EasyShare.exe
#:25 [aswupdsv.exe]
FilePath : C:\Programme\Alwil Software\Avast4\
ProcessID : 1316
ThreadCreationTime : 10.12.2005 18:44:18
BasePriority : Normal
#:26 [ashserv.exe]
FilePath : C:\Programme\Alwil Software\Avast4\
ProcessID : 1372
ThreadCreationTime : 10.12.2005 18:44:18
BasePriority : High
FileVersion : 4, 6, 731, 0
ProductVersion : 4, 6, 0, 0
ProductName : avast! Antivirus
FileDescription : avast! antivirus service
InternalName : aswServ
LegalCopyright : Copyright (c) 2005 ALWIL Software
OriginalFilename : aswServ.exe
#:27 [mmerefresh.exe]
FilePath : E:\Programme\Pro-Tools\Digidesign\Drivers\
ProcessID : 1468
ThreadCreationTime : 10.12.2005 18:44:19
BasePriority : Normal
FileVersion : 6.4.0.138
ProductVersion : 6.4
ProductName : Digidesign MME Binder
CompanyName : Digidesign, A Division of Avid Technology, Inc.
FileDescription : Digidesign MME Binder
InternalName : MMERefresh.exe
LegalCopyright : ©1999-2004 Digidesign, A Division of Avid Technology, Inc.
OriginalFilename : MMERefresh.exe
#:28 [mdm.exe]
FilePath : C:\Programme\Gemeinsame Dateien\Microsoft Shared\VS7Debug\
ProcessID : 1544
ThreadCreationTime : 10.12.2005 18:44:20
BasePriority : Normal
FileVersion : 7.00.9466
ProductVersion : 7.00.9466
ProductName : Microsoft® Visual Studio .NET
CompanyName : Microsoft Corporation
FileDescription : Machine Debug Manager
InternalName : mdm.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : mdm.exe
#:29 [starwindservice.exe]
FilePath : C:\Programme\Alcohol Soft\Alcohol 120\StarWind\
ProcessID : 1600
ThreadCreationTime : 10.12.2005 18:44:20
BasePriority : Normal
FileVersion : 2.6.1 Build 0x20050401
ProductVersion : 2.6.1 Build 0x20050401
ProductName : StarWind
CompanyName : Rocket Division Software
FileDescription : StarWind iSCSI Target (Alcohol Edition)
InternalName : StarWind
LegalCopyright : Copyright (c) Rocket Division Software 2003-2005. All rights reserved.
OriginalFilename : StarWind
#:30 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 1604
ThreadCreationTime : 10.12.2005 18:44:20
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe
#:31 [wdfmgr.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1900
ThreadCreationTime : 10.12.2005 18:44:21
BasePriority : Normal
FileVersion : 5.2.3790.1230 built by: dnsrv(bld4act)
ProductVersion : 5.2.3790.1230
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows User Mode Driver Manager
InternalName : WdfMgr
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WdfMgr.exe
#:32 [uaservice.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 516
ThreadCreationTime : 10.12.2005 18:44:27
BasePriority : Normal
#:33 [vsmon.exe]
FilePath : C:\WINDOWS\system32\ZoneLabs\
ProcessID : 628
ThreadCreationTime : 10.12.2005 18:44:32
BasePriority : Normal
FileVersion : 6.1.737.000
ProductVersion : 6.1.737.000
ProductName : TrueVector Service
CompanyName : Zone Labs, LLC
FileDescription : TrueVector Service
InternalName : vsmon
LegalCopyright : Copyright © 1998-2005, Zone Labs, LLC
OriginalFilename : vsmon.exe
#:34 [ashmaisv.exe]
FilePath : C:\Programme\Alwil Software\Avast4\
ProcessID : 2316
ThreadCreationTime : 10.12.2005 18:44:54
BasePriority : Normal
#:35 [ashwebsv.exe]
FilePath : C:\Programme\Alwil Software\Avast4\
ProcessID : 2392
ThreadCreationTime : 10.12.2005 18:44:56
BasePriority : Normal
#:36 [alg.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2776
ThreadCreationTime : 10.12.2005 18:44:59
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Application Layer Gateway Service
InternalName : ALG.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : ALG.exe
#:37 [scfgsrv.exe]
FilePath : F:\PROGRA~1\MOBILE~1\bin\
ProcessID : 3720
ThreadCreationTime : 10.12.2005 18:46:21
BasePriority : Normal
FileVersion : 1, 0, 0, 110
ProductVersion : 3.04.40.48.0
ProductName : SCfgSrv Module
CompanyName : Siemens AG
FileDescription : SCfgSrv Module
InternalName : SCfgSrv
LegalCopyright : Copyright (C) 2000-2004
OriginalFilename : SCfgSrv.DLL
#:38 [phones~2.exe]
FilePath : F:\PROGRA~1\MOBILE~1\bin\
ProcessID : 3832
ThreadCreationTime : 10.12.2005 18:46:24
BasePriority : Normal
FileVersion : 3, 4, 36, 21
ProductVersion : 3.04.40.48.0
ProductName : Mobile Phone Manager
CompanyName : Siemens AG
FileDescription : PhoneServerGSM2 Module
InternalName : PhoneServerGSM2
LegalCopyright : Copyright (C) 2000-2004
OriginalFilename : PhoneServerGSM2.EXE
#:39 [desproxy.exe]
FilePath : F:\PROGRA~1\MOBILE~1\bin\
ProcessID : 2828
ThreadCreationTime : 10.12.2005 19:02:28
BasePriority : Normal
FileVersion : 1, 0, 0, 109
ProductVersion : 3.04.40.48.0
ProductName : DESPROXY Module
CompanyName : Siemens AG
FileDescription : DESPROXY Module
InternalName : DESPROXY
LegalCopyright : Copyright (C) 2000-2004
OriginalFilename : DESPROXY.EXE
#:40 [sphone~1.exe]
FilePath : F:\PROGRA~1\MOBILE~1\bin\
ProcessID : 3172
ThreadCreationTime : 10.12.2005 19:02:29
BasePriority : Normal
FileVersion : 0, 0, 6, 48
ProductVersion : 3.04.40.48.0
ProductName : SPhoneObserver Module
CompanyName : Siemens AG
FileDescription : SPhoneObserver Module
InternalName : SPhoneObserver
LegalCopyright : Copyright 2003
OriginalFilename : SPhoneObserver.EXE
#:41 [iexplore.exe]
FilePath : C:\Programme\Internet Explorer\
ProcessID : 2584
ThreadCreationTime : 10.12.2005 19:04:09
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : IEXPLORE.EXE
#:42 [iexplore.exe]
FilePath : C:\Programme\Internet Explorer\
ProcessID : 3620
ThreadCreationTime : 10.12.2005 19:46:20
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Betriebssystem Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Internet Explorer
InternalName : iexplore
LegalCopyright : © Microsoft Corporation. Alle Rechte vorbehalten.
OriginalFilename : IEXPLORE.EXE
#:43 [ad-aware.exe]
FilePath : E:\Programme\Ad-Aware SE Personal\
ProcessID : 2908
ThreadCreationTime : 10.12.2005 19:46:53
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved
Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0
Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Windows Object Recognized!
Type : RegData
Data : "regedit.exe" "%1"
TAC Rating : 3
Category : Vulnerability
Comment : Possible virus infection, REG file extension compromised
Rootkey : HKEY_CLASSES_ROOT
Object : regfile\shell\open\command
Value :
Data : "regedit.exe" "%1"
Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 1
Objects found so far: 1
Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 1
Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@tripod[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:intel@tripod.com/
Expires : 10.12.2006 19:12:44
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@ads.multimania.lycos[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:intel@ads.multimania.lycos.fr/
Expires : 11.12.2005 19:11:36
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@zedo[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:5
Value : Cookie:intel@zedo.com/
Expires : 07.12.2015 16:25:04
LastSync : Hits:5
UseCount : 0
Hits : 5
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@hotlog[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:15
Value : Cookie:intel@hotlog.ru/
Expires : 10.12.2006 20:01:14
LastSync : Hits:15
UseCount : 0
Hits : 15
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@fl01.ct2.comclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookie:intel@fl01.ct2.comclick.com/
Expires : 10.01.2029 01:00:00
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@clickbank[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:intel@clickbank.net/
Expires : 07.06.2006 17:58:44
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@247realmedia[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:intel@247realmedia.com/
Expires : 01.01.2021 01:00:00
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@as1.falkag[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:167
Value : Cookie:intel@as1.falkag.de/
Expires : 09.01.2006 18:58:00
LastSync : Hits:167
UseCount : 0
Hits : 167
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@media.fastclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:137
Value : Cookie:intel@media.fastclick.net/
Expires : 09.12.2005 20:28:10
LastSync : Hits:137
UseCount : 0
Hits : 137
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@fastclick[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:268
Value : Cookie:intel@fastclick.net/
Expires : 09.12.2007 19:26:48
LastSync : Hits:268
UseCount : 0
Hits : 268
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@spylog[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:52
Value : Cookie:intel@spylog.com/
Expires : 08.06.2006 19:59:32
LastSync : Hits:52
UseCount : 0
Hits : 52
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@bluestreak[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:12
Value : Cookie:intel@bluestreak.com/
Expires : 08.12.2015 15:46:54
LastSync : Hits:12
UseCount : 0
Hits : 12
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@real[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:5
Value : Cookie:intel@real.com/
Expires : 05.09.2006 08:18:48
LastSync : Hits:5
UseCount : 0
Hits : 5
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@cgi-bin[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:5
Value : Cookie:intel@imrworldwide.com/cgi-bin
Expires : 08.12.2015 14:51:16
LastSync : Hits:5
UseCount : 0
Hits : 5
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@ad4.bannerbank[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:intel@ad4.bannerbank.ru/
Expires : 12.01.2006 19:11:32
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@estat[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:10
Value : Cookie:intel@estat.com/
Expires : 07.12.2015 16:38:16
LastSync : Hits:10
UseCount : 0
Hits : 10
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@serving-sys[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:21
Value : Cookie:intel@serving-sys.com/
Expires : 31.12.2037 23:00:00
LastSync : Hits:21
UseCount : 0
Hits : 21
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@weborama[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:17
Value : Cookie:intel@weborama.fr/
Expires : 09.12.2007 16:20:12
LastSync : Hits:17
UseCount : 0
Hits : 17
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@list[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:3
Value : Cookie:intel@list.ru/
Expires : 09.03.2006 22:00:00
LastSync : Hits:3
UseCount : 0
Hits : 3
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@atdmt[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:11
Value : Cookie:intel@atdmt.com/
Expires : 08.12.2010 01:00:00
LastSync : Hits:11
UseCount : 0
Hits : 11
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@ad3.bannerbank[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:1
Value : Cookie:intel@ad3.bannerbank.ru/
Expires : 12.01.2006 19:02:42
LastSync : Hits:1
UseCount : 0
Hits : 1
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@realmedia[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:intel@realmedia.com/
Expires : 01.01.2021 01:00:00
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@servedby.netshelter[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:11
Value : Cookie:intel@servedby.netshelter.net/
Expires : 17.12.2005 19:27:40
LastSync : Hits:11
UseCount : 0
Hits : 11
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@doubleclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:27
Value : Cookie:intel@doubleclick.net/
Expires : 08.12.2008 16:24:52
LastSync : Hits:27
UseCount : 0
Hits : 27
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@adtech[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:2
Value : Cookie:intel@adtech.de/
Expires : 07.12.2015 16:54:04
LastSync : Hits:2
UseCount : 0
Hits : 2
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@as-eu.falkag[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:10
Value : Cookie:intel@as-eu.falkag.net/
Expires : 09.01.2006 16:10:16
LastSync : Hits:10
UseCount : 0
Hits : 10
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@www.smartadserver[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:51
Value : Cookie:intel@www.smartadserver.com/
Expires : 05.12.2025 20:48:28
LastSync : Hits:51
UseCount : 0
Hits : 51
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@2o7[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:89
Value : Cookie:intel@2o7.net/
Expires : 09.12.2010 14:27:44
LastSync : Hits:89
UseCount : 0
Hits : 89
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@revenue[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:107
Value : Cookie:intel@revenue.net/
Expires : 10.06.2022 06:05:42
LastSync : Hits:107
UseCount : 0
Hits : 107
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@mediaplex[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:9
Value : Cookie:intel@mediaplex.com/
Expires : 22.06.2009 01:00:00
LastSync : Hits:9
UseCount : 0
Hits : 9
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@valueclick[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:6
Value : Cookie:intel@valueclick.com/
Expires : 04.12.2030 14:41:30
LastSync : Hits:6
UseCount : 0
Hits : 6
Tracking Cookie Object Recognized!
Type : IECache Entry
Data : intel@tradedoubler[1].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:41
Value : Cookie:intel@tradedoubler.com/
Expires : 05.12.2025 18:57:04
LastSync : Hits:41
UseCount : 0
Hits : 41
Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 32
Objects found so far: 33
Deep scanning and examining files...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Disk Scan Result for C:\WINDOWS
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 33
Disk Scan Result for C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 33
Disk Scan Result for C:\DOKUME~1\Intel\LOKALE~1\Temp\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 33
Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
1 entries scanned.
New critical objects:0
Objects found so far: 33
MRU List Object Recognized!
Location: : C:\Dokumente und Einstellungen\Intel\recent
Description : list of recently opened documents
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\google\navclient\1.1\history
Description : list of recently used search terms in the google toolbar
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d
MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct3d
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X
MRU List Object Recognized!
Location: : software\microsoft\direct3d\mostrecentapplication
Description : most recent application to use microsoft direct X
MRU List Object Recognized!
Location: : software\microsoft\directdraw\mostrecentapplication
Description : most recent application to use microsoft directdraw
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\directinput\mostrecentapplication
Description : most recent application to use microsoft directinput
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\frontpage\editor
Description : default add image directory for microsoft frontpage
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\frontpage\explorer\frontpage explorer\recent file list
Description : list of recently used files in microsoft frontpage
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\frontpage\explorer\frontpage explorer\recent page list
Description : list of recently used pages in microsoft frontpage
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\frontpage\explorer\frontpage explorer\recent web list
Description : list of recently used webs in microsoft frontpage
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\internet explorer
Description : last download directory used in microsoft internet explorer
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\internet explorer\typedurls
Description : list of recently entered addresses in microsoft internet explorer
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\mediaplayer\medialibraryui
Description : last selected node in the microsoft windows media player media library
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\mediaplayer\player\settings
Description : last open directory used in jasc paint shop pro
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\mediaplayer\preferences
Description : last playlist index loaded in microsoft windows media player
MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-19\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-20\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\mediaplayer\preferences
Description : last playlist loaded in microsoft windows media player
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\microsoft management console\recent file list
Description : list of recent snap-ins used in the microsoft management console
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\office\11.0\powerpoint\recent file list
Description : list of recent files used by microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\office\11.0\powerpoint\recent templates
Description : list of recent templates used by microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\office\11.0\powerpoint\recent typeface list
Description : list of recently used typefaces in microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\office\11.0\powerpoint\recentfolderlist
Description : list of recent folders used by microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\office\11.0\powerpoint\recenttemplatelist
Description : list of recent templates used by microsoft powerpoint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\search assistant\acmru
Description : list of recent search terms used with the search assistant
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\applets\paint\recent file list
Description : list of files recently opened using microsoft paint
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\applets\regedit
Description : last key accessed using the microsoft registry editor
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
Description : list of recent programs opened
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
Description : list of recently saved files, stored according to file extension
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\explorer\recentdocs
Description : list of recent documents opened
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows\currentversion\explorer\runmru
Description : mru list for items opened in start | run
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\realnetworks\realplayer\6.0\preferences
Description : list of recent skins in realplayer
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\realnetworks\realplayer\6.0\preferences
Description : list of recent clips in realplayer
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\realnetworks\realplayer\6.0\preferences
Description : last login time in realplayer
MRU List Object Recognized!
Location: : .DEFAULT\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
MRU List Object Recognized!
Location: : S-1-5-18\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\microsoft\windows media\wmsdk\general
Description : windows media sdk
MRU List Object Recognized!
Location: : S-1-5-21-515967899-2025429265-725345543-1008\software\winrar\dialogedithistory\extrpath
Description : winrar "extract-to" history
Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 76
20:49:28 Scan Complete
Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:02:01.688
Objects scanned:78744
Objects identified:33
Objects ignored:0
New critical objects:33
A voir également:
- Ver qui ralenti le pc + rapport adware
- Pc ralenti - Guide
- Reinitialiser pc - Guide
- Downloader for pc - Télécharger - Téléchargement & Transfert
- Double ecran pc - Guide
- Forcer demarrage pc - Guide
2 réponses
Voici le ver... je sais pas koi faire dois je l´effacer ou modifier quelque chose??!! si vous plait aidez moi
Windows Object Recognized!
Type : RegData
Data : "regedit.exe" "%1"
TAC Rating : 3
Category : Vulnerability
Comment : Possible virus infection, REG file extension compromised
Rootkey : HKEY_CLASSES_ROOT
Object : regfile\shell\open\command
Value :
Data : "regedit.exe" "%1"
Windows Object Recognized!
Type : RegData
Data : "regedit.exe" "%1"
TAC Rating : 3
Category : Vulnerability
Comment : Possible virus infection, REG file extension compromised
Rootkey : HKEY_CLASSES_ROOT
Object : regfile\shell\open\command
Value :
Data : "regedit.exe" "%1"
salut
tu recherches les fichiers REGEDIT sur ton ordi et un à un tu vérifie là
http://virusscan.jotti.org/ fichier par fichier Parcourir puis SEND lance ce multiple scanneur antivirus
a+
tu recherches les fichiers REGEDIT sur ton ordi et un à un tu vérifie là
http://virusscan.jotti.org/ fichier par fichier Parcourir puis SEND lance ce multiple scanneur antivirus
a+
