Sujet Précédent Sujet Suivant

Virus m'empèche de lancer mes programmes

Fermé
have some fun - 21 janv. 2007 à 16:05
 have some fun - 24 janv. 2007 à 16:43
xp sp2
bonjour
Alors voila mon problème: avast et avg me repèrent un trojan a chaque analyse j'ai le mettre en quarantaine il revient a chaque fois. Le plus ennuyeux c'est qu'il menpèche de lancer certains prog comme msn ou photoshop.
Je ne sais vraiment pas quoi faire please heeeeeeelp!!
merci d'avance
A voir également:

4 réponses

Réponse 1 / 4
BrotherS
21 janv. 2007 à 16:08
Tu as essayé Adware?

A+
BrotherS

Team Security Crawler
Http://www.securitycrawler.com
0
Réponse 2 / 4
have some fun
21 janv. 2007 à 16:14
non j'essaye de ce pas!! merci
0
Réponse 3 / 4
have some fun
21 janv. 2007 à 16:47
bon alors j'ai fais un scan je te poste le rapport parce que pr moi rien n'a changé...



Ad-Aware SE Build 1.06r1
Logfile Created on:dimanche 21 janvier 2007 16:08:40
Created with Ad-Aware SE Personal, free for private use.
Using definitions file:SE1R145 17.01.2007
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

References detected during the scan:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Adware.PluginDL(TAC index:3):2 total references
AntiVermins(TAC index:3):4 total references
Other(TAC index:5):1 total references
SpySpotter(TAC index:3):3 total references
Tracking Cookie(TAC index:3):4 total references
Windows(TAC index:3):1 total references
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Ad-Aware SE Settings
===========================
Set : Search for negligible risk entries
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep-scan registry
Set : Scan my IE Favorites for banned URLs
Set : Scan my Hosts file

Extended Ad-Aware SE Settings
===========================
Set : Unload recognized processes & modules during scan
Set : Scan registry for all users instead of current user only
Set : Always try to unload modules before deletion
Set : During removal, unload Explorer and IE if necessary
Set : Let Windows remove files in use at next reboot
Set : Delete quarantined objects after restoring
Set : Include basic Ad-Aware settings in log file
Set : Include additional Ad-Aware settings in log file
Set : Include reference summary in log file
Set : Include alternate data stream details in log file
Set : Play sound at scan completion if scan locates critical objects


21-01-2007 16:08:40 - Scan started. (Full System Scan)

Listing running processes
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ProcessID : 552
ThreadCreationTime : 20-01-2007 13:40:48
BasePriority : Normal


#:2 [csrss.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 616
ThreadCreationTime : 20-01-2007 13:40:51
BasePriority : Normal


#:3 [winlogon.exe]
FilePath : \??\C:\WINDOWS\system32\
ProcessID : 640
ThreadCreationTime : 20-01-2007 13:40:52
BasePriority : High


#:4 [services.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 684
ThreadCreationTime : 20-01-2007 13:40:53
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Système d'exploitation Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Applications Services et Contrôleur
InternalName : services.exe
LegalCopyright : © Microsoft Corporation. Tous droits réservés.
OriginalFilename : services.exe

#:5 [lsass.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 696
ThreadCreationTime : 20-01-2007 13:40:53
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : LSA Shell (Export Version)
InternalName : lsass.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : lsass.exe

#:6 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 836
ThreadCreationTime : 20-01-2007 13:40:54
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:7 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 924
ThreadCreationTime : 20-01-2007 13:40:55
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:8 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 960
ThreadCreationTime : 20-01-2007 13:40:55
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:9 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1016
ThreadCreationTime : 20-01-2007 13:40:55
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:10 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1120
ThreadCreationTime : 20-01-2007 13:40:55
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:11 [spoolsv.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1364
ThreadCreationTime : 20-01-2007 13:40:57
BasePriority : Normal
FileVersion : 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)
ProductVersion : 5.1.2600.2696
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolsv.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : spoolsv.exe

#:12 [anbmserv.exe]
FilePath : C:\Acer\eManager\
ProcessID : 1476
ThreadCreationTime : 20-01-2007 13:40:58
BasePriority : Normal
FileVersion : 3.0.5.8
ProductVersion : 1.0
ProductName : Acer eManager for Notebook
CompanyName : OSA Technologies Inc.
FileDescription : Service Program for Acer eManager
LegalCopyright : Acer Inc. (c) 2004
LegalTrademarks : Acer Empowering Technology
Comments : A Windows 2000/XP Service Program for Acer eManager

#:13 [aswupdsv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 1524
ThreadCreationTime : 20-01-2007 13:40:59
BasePriority : Normal


#:14 [ashserv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 1544
ThreadCreationTime : 20-01-2007 13:40:59
BasePriority : High
FileVersion : 4, 7, 936, 0
ProductVersion : 4, 7, 0, 0
ProductName : avast! Antivirus
FileDescription : avast! antivirus service
InternalName : aswServ
LegalCopyright : Copyright (c) 2007 ALWIL Software
OriginalFilename : aswServ.exe

#:15 [guard.exe]
FilePath : C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\
ProcessID : 1576
ThreadCreationTime : 20-01-2007 13:40:59
BasePriority : Normal
FileVersion : 7, 5, 0, 47
ProductVersion : 7, 5, 0, 47
ProductName : AVG Anti-Spyware
CompanyName : Anti-Malware Development a.s.
FileDescription : AVG Anti-Spyware guard
InternalName : AVG Anti-Spyware guard
LegalCopyright : Copyright © 2006 Anti-Malware Development a.s.
OriginalFilename : guard.exe

#:16 [mdnsresponder.exe]
FilePath : C:\Program Files\Bonjour\
ProcessID : 1596
ThreadCreationTime : 20-01-2007 13:41:00
BasePriority : Normal
FileVersion : 1,0,3,1
ProductVersion : 1,0,3,1
ProductName : Bonjour
CompanyName : Apple Computer, Inc.
FileDescription : Bonjour Service
InternalName : mDNSResponder.exe
LegalCopyright : Copyright (C) 2003-2006 Apple Computer, Inc.
OriginalFilename : mDNSResponder.exe

#:17 [cdac11ba.exe]
FilePath : C:\WINDOWS\system32\drivers\
ProcessID : 1608
ThreadCreationTime : 20-01-2007 13:41:00
BasePriority : Normal
FileVersion : 4.20.020
ProductVersion : 4.20.020 Windows NT 2002/12/10
ProductName : SafeCast Windows NT
CompanyName : Macrovision
FileDescription : Macrovision RTS Service
InternalName : CDANTSRV
LegalCopyright : Copyright (c) 1998-2002 Macrovision Corp.
OriginalFilename : CDANTSRV.EXE
Comments : StringFileInfo: U.S. English

#:18 [wdfmgr.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1772
ThreadCreationTime : 20-01-2007 13:41:01
BasePriority : Normal
FileVersion : 5.2.3790.1230 built by: dnsrv(bld4act)
ProductVersion : 5.2.3790.1230
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Windows User Mode Driver Manager
InternalName : WdfMgr
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : WdfMgr.exe

#:19 [ashmaisv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 452
ThreadCreationTime : 20-01-2007 13:41:04
BasePriority : Normal


#:20 [ashwebsv.exe]
FilePath : C:\Program Files\Alwil Software\Avast4\
ProcessID : 480
ThreadCreationTime : 20-01-2007 13:41:04
BasePriority : Normal


#:21 [monitor.exe]
FilePath : C:\Program Files\Acer\eRecovery\
ProcessID : 884
ThreadCreationTime : 20-01-2007 13:45:03
BasePriority : Normal
FileVersion : 1, 2, 11, 1
ProductVersion : 1, 2, 11, 1
ProductName : eRecovery
CompanyName : acer Inc.
FileDescription : Monitor
InternalName : xOBRMonitor.exe
LegalCopyright : (c) acer Inc. All rights reserved.
OriginalFilename : xOBRMonitor.exe

#:22 [ctfmon.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 688
ThreadCreationTime : 20-01-2007 13:45:03
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : CTF Loader
InternalName : CTFMON
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : CTFMON.EXE

#:23 [syntplpr.exe]
FilePath : C:\Program Files\Synaptics\SynTP\
ProcessID : 388
ThreadCreationTime : 20-01-2007 13:45:04
BasePriority : Normal
FileVersion : 7.12.3 08Oct04
ProductVersion : 7.12.3 08Oct04
ProductName : Synaptics Pointing Device Driver
CompanyName : Synaptics, Inc.
FileDescription : TouchPad Driver Helper Application
InternalName : SynTPLpr
LegalCopyright : Copyright (C) Synaptics, Inc. 1996-2004
OriginalFilename : SynTPLpr.exe

#:24 [syntpenh.exe]
FilePath : C:\Program Files\Synaptics\SynTP\
ProcessID : 1932
ThreadCreationTime : 20-01-2007 13:45:06
BasePriority : Normal
FileVersion : 7.12.3 08Oct04
ProductVersion : 7.12.3 08Oct04
ProductName : Synaptics Pointing Device Driver
CompanyName : Synaptics, Inc.
FileDescription : Synaptics TouchPad Enhancements
InternalName : Synaptics Enhancements Application
LegalCopyright : Copyright (C) Synaptics, Inc. 1996-2004
OriginalFilename : SynTPEnh.exe

#:25 [soundman.exe]
FilePath : C:\WINDOWS\
ProcessID : 1980
ThreadCreationTime : 20-01-2007 13:45:08
BasePriority : Normal
FileVersion : 5.1.0.36
ProductVersion : 5.1.0.36
ProductName : Realtek Sound Manager
CompanyName : Realtek Semiconductor Corp.
FileDescription : Realtek Sound Manager
InternalName : ALSMTray
LegalCopyright : Copyright (c) 2001-2004 Realtek Semiconductor Corp.
OriginalFilename : ALSMTray.exe
Comments : Realtek AC97 Audio Sound Manager

#:26 [agrsmmsg.exe]
FilePath : C:\WINDOWS\
ProcessID : 1664
ThreadCreationTime : 20-01-2007 13:45:08
BasePriority : Normal
FileVersion : 2.1.47 2.1.47 10/08/2004 09:50:51
ProductVersion : 2.1.47 2.1.47 10/08/2004 09:50:51
ProductName : Agere SoftModem Messaging Applet
CompanyName : Agere Systems
FileDescription : SoftModem Messaging Applet
InternalName : smdmstat.exe
LegalCopyright : Copyright © Agere Systems 1998-2000
OriginalFilename : smdmstat.exe

#:27 [rundll32.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 1728
ThreadCreationTime : 20-01-2007 13:45:08
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Système d'exploitation Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Exécuter une DLL en tant qu'application
InternalName : rundll
LegalCopyright : © Microsoft Corporation. Tous droits réservés.
OriginalFilename : RUNDLL.EXE

#:28 [keyhook.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 2012
ThreadCreationTime : 20-01-2007 13:45:08
BasePriority : Normal
FileVersion : 0.0.0.3654
ProductVersion : 0.0.0.3654
ProductName : SiS Compatible Super VGA Keyboard Daemon
CompanyName : Silicon Integrated Systems Corporation
FileDescription : SiS Compatible Super VGA Keyboard Daemon
InternalName : KeyHook 3.65f.04
LegalCopyright : Copyright (C) Silicon Integrated Systems Corp. 1998-2004
OriginalFilename : KeyHook.EXE
Comments : SiS Compatible Super VGA Keyboard Daemon

#:29 [pcmservice.exe]
FilePath : C:\Program Files\Arcade\
ProcessID : 2052
ThreadCreationTime : 20-01-2007 13:45:09
BasePriority : Normal
FileVersion : 3.00.0000
ProductVersion : 3.00.0000
ProductName : Cyberlink PowerCinema 3.0
CompanyName : CyberLink Corp.
FileDescription : CyberLink PowerCinema Resident Program
InternalName : CyberLink PowerCinema Resident Program
LegalCopyright : Copyright (c) 2003 CyberLink Corp.
OriginalFilename : PCMService.EXE

#:30 [svchost.exe]
FilePath : C:\WINDOWS\System32\
ProcessID : 2328
ThreadCreationTime : 20-01-2007 13:45:12
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:31 [qtzgacer.exe]
FilePath : C:\Program Files\Launch Manager\
ProcessID : 2412
ThreadCreationTime : 20-01-2007 13:45:12
BasePriority : Normal
FileVersion : 1, 0, 5, 728
ProductVersion : 1, 0, 5, 728
ProductName : Launch Manager
CompanyName : Dritek System Inc.
FileDescription : Launch Manager
LegalCopyright : Copyright (c) 2001-2005 Dritek System Inc.
OriginalFilename : QtZgAcer.exe

#:32 [ituneshelper.exe]
FilePath : C:\Program Files\iTunes\
ProcessID : 2460
ThreadCreationTime : 20-01-2007 13:45:14
BasePriority : Normal
FileVersion : 6.0.4.2
ProductVersion : 6.0.4.2
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iTunesHelper Module
InternalName : iTunesHelper
LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iTunesHelper.exe

#:33 [qttask.exe]
FilePath : C:\Program Files\QuickTime\
ProcessID : 2472
ThreadCreationTime : 20-01-2007 13:45:14
BasePriority : Normal
FileVersion : 7.0.4
ProductVersion : QuickTime 7.0.4
ProductName : QuickTime
CompanyName : Apple Computer, Inc.
FileDescription : QuickTime Task
InternalName : QuickTime Task
LegalCopyright : Copyright Apple Computer, Inc. 1989-2006
OriginalFilename : QTTask.exe

#:34 [ipodservice.exe]
FilePath : C:\Program Files\iPod\bin\
ProcessID : 2500
ThreadCreationTime : 20-01-2007 13:45:14
BasePriority : Normal
FileVersion : 6.0.4.2
ProductVersion : 6.0.4.2
ProductName : iTunes
CompanyName : Apple Computer, Inc.
FileDescription : iPodService Module
InternalName : iPodService
LegalCopyright : © 2003-2006 Apple Computer, Inc. All Rights Reserved.
OriginalFilename : iPodService.exe

#:35 [scusapi.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 2580
ThreadCreationTime : 20-01-2007 13:45:15
BasePriority : Normal
FileVersion : 2.18
ProductVersion : 2.18
ProductName : Sharp SCUS
CompanyName : Sharp Corporation
FileDescription : Sharp SCUS - API Message Handler
InternalName : SCUSAPI
LegalCopyright : Copyright (C) 1997-2001 Xerox Corporation
OriginalFilename : SCUSAPI.EXE

#:36 [ashdisp.exe]
FilePath : C:\PROGRA~1\ALWILS~1\Avast4\
ProcessID : 2588
ThreadCreationTime : 20-01-2007 13:45:15
BasePriority : Normal
FileVersion : 4, 7, 936, 0
ProductVersion : 4, 7, 0, 0
ProductName : avast! Antivirus
FileDescription : avast! service GUI component
InternalName : aswDisp
LegalCopyright : Copyright (c) 2007 ALWIL Software
OriginalFilename : aswDisp.exe

#:37 [jusched.exe]
FilePath : C:\Program Files\Java\jre1.5.0_10\bin\
ProcessID : 2668
ThreadCreationTime : 20-01-2007 13:45:16
BasePriority : Normal


#:38 [fppdis2a.exe]
FilePath : C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\
ProcessID : 2712
ThreadCreationTime : 20-01-2007 13:45:17
BasePriority : Normal
FileVersion : 2.22
ProductVersion : 2.22
ProductName : FinePrint pdfFactory
CompanyName : FinePrint Software, LLC
FileDescription : FinePrint pdfFactory
LegalCopyright : Copyright (c) 2001-2004 FinePrint Software, LLC

#:39 [avgas.exe]
FilePath : C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\
ProcessID : 2736
ThreadCreationTime : 20-01-2007 13:45:18
BasePriority : Normal
FileVersion : 7, 5, 0, 50
ProductVersion : 7, 5, 0, 50
ProductName : AVG Anti-Spyware
CompanyName : Anti-Malware Development a.s.
FileDescription : AVG Anti-Spyware
InternalName : AVG Anti-Spyware
LegalCopyright : Copyright © 2006 Anti-Malware Development a.s.
OriginalFilename : avgas.exe

#:40 [msmsgs.exe]
FilePath : C:\Program Files\Messenger\
ProcessID : 2868
ThreadCreationTime : 20-01-2007 13:45:21
BasePriority : Normal
FileVersion : 4.7.3001
ProductVersion : Version 4.7.3001
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Windows Messenger
InternalName : msmsgs
LegalCopyright : Copyright (c) Microsoft Corporation 2004
LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
OriginalFilename : msmsgs.exe

#:41 [sharptray.exe]
FilePath : C:\Program Files\Sharp\Sharpdesk\
ProcessID : 2876
ThreadCreationTime : 20-01-2007 13:45:22
BasePriority : Normal


#:42 [shareaza.exe]
FilePath : C:\Program Files\Shareaza\
ProcessID : 2992
ThreadCreationTime : 20-01-2007 13:45:25
BasePriority : Normal


#:43 [ubericon manager.exe]
FilePath : C:\Program Files\UberIcon\
ProcessID : 3004
ThreadCreationTime : 20-01-2007 13:45:25
BasePriority : High


#:44 [winroll.exe]
FilePath : C:\Program Files\WinRoll\
ProcessID : 3032
ThreadCreationTime : 20-01-2007 13:45:25
BasePriority : Normal


#:45 [9129837.exe]
FilePath : C:\WINDOWS\
ProcessID : 3108
ThreadCreationTime : 20-01-2007 13:45:26
BasePriority : Normal


#:46 [emule.exe]
FilePath : C:\Program Files\eMule\
ProcessID : 3184
ThreadCreationTime : 20-01-2007 13:45:31
BasePriority : Normal
FileVersion : 0.47.2 Unicode
ProductVersion : 0.47.2 Unicode
ProductName : eMule
CompanyName : https://www.emule-project.net/home/perl/general.cgi?l=1
FileDescription : eMule
InternalName : emule.exe
LegalCopyright : Copyright © 2002-2006 Merkur - read license.txt for more infos
OriginalFilename : emule.exe

#:47 [sistray.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 3520
ThreadCreationTime : 20-01-2007 13:45:43
BasePriority : Normal
FileVersion : 0.0.0.3650
ProductVersion : 0.0.0.3650
ProductName : SiS (R) Compatible Super VGA SiSTray application
CompanyName : Silicon Integrated Systems Corporation
FileDescription : SiS Compatible Super VGA Tray Application
InternalName : SISTRAY 3.65.52
LegalCopyright : Copyright (C) Silicon Integrated Systems Corp. 1998-2004
OriginalFilename : SISTRAY.EXE
Comments : SiS Compatible Super VGA Tray Application

#:48 [btnman.exe]
FilePath : C:\Program Files\Sharp\Utilitaires AJ6110\Gestionnaire de destinations\
ProcessID : 3588
ThreadCreationTime : 20-01-2007 13:45:46
BasePriority : Normal
FileVersion : 1, 0, 0, 101
ProductVersion : 1, 0, 0, 0
ProductName : Button Manager
CompanyName : SHARP CORPORATION
FileDescription : Button Manager for AJ Series
InternalName : Button Manager
LegalCopyright : Copyright (C) 2000 SHARP CORPORATION
OriginalFilename : btnman.exe

#:49 [firefox.exe]
FilePath : C:\Program Files\Mozilla Firefox\
ProcessID : 2824
ThreadCreationTime : 20-01-2007 13:46:06
BasePriority : Normal


#:50 [svchost.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 2912
ThreadCreationTime : 20-01-2007 13:47:51
BasePriority : Normal
FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 5.1.2600.2180
ProductName : Microsoft® Windows® Operating System
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
LegalCopyright : © Microsoft Corporation. All rights reserved.
OriginalFilename : svchost.exe

#:51 [msnmsgr.exe]
FilePath : C:\Program Files\MSN Messenger\
ProcessID : 3764
ThreadCreationTime : 20-01-2007 14:22:56
BasePriority : Normal
FileVersion : 8.0.0812.00
ProductVersion : 8.0.0812
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr.exe
LegalCopyright : Copyright (c) Microsoft Corporation. All rights reserved.
OriginalFilename : msnmsgr.exe

#:52 [mmjb.exe]
FilePath : C:\Program Files\Musicmatch\Musicmatch Jukebox\
ProcessID : 3208
ThreadCreationTime : 20-01-2007 23:54:21
BasePriority : Normal
FileVersion : 9.00.5100
ProductVersion : 9.00.5100
ProductName : Musicmatch Jukebox
CompanyName : Musicmatch, Inc.
FileDescription : Musicmatch Jukebox
InternalName : mmjb
LegalCopyright : Copyright © Musicmatch 1998-2004
LegalTrademarks :
OriginalFilename : mmjb.EXE

#:53 [mmdiag.exe]
FilePath : C:\Program Files\Musicmatch\Musicmatch Jukebox\
ProcessID : 2148
ThreadCreationTime : 20-01-2007 23:54:24
BasePriority : Normal
FileVersion : 9.00.5100
ProductVersion : 9.00.5100
ProductName : Musicmatch Jukebox
CompanyName : Musicmatch, Inc.
FileDescription : Logging and tracing manager
InternalName : MMTraceExe
LegalCopyright : Copyright © Musicmatch 1998-2004
LegalTrademarks :
OriginalFilename : MMTraceExe.EXE

#:54 [photoshop.exe]
FilePath : C:\Program Files\Adobe\Photoshop CS\
ProcessID : 3660
ThreadCreationTime : 21-01-2007 00:23:12
BasePriority : Normal
FileVersion : 8.0.1 (8.0x125)
ProductVersion : CS
ProductName : Adobe Photoshop CS
CompanyName : Adobe Systems, Incorporated
FileDescription : Adobe Photoshop CS
InternalName : Photoshop
LegalCopyright : Copyright 2003 Adobe Systems Inc.
OriginalFilename : Photoshop.exe

#:55 [realsched.exe]
FilePath : C:\Program Files\Fichiers communs\Real\Update_OB\
ProcessID : 236
ThreadCreationTime : 21-01-2007 01:58:45
BasePriority : Normal
FileVersion : 0.1.0.3510
ProductVersion : 0.1.0.3510
ProductName : RealPlayer (32-bit)
CompanyName : RealNetworks, Inc.
FileDescription : RealNetworks Scheduler
InternalName : schedapp
LegalCopyright : Copyright © RealNetworks, Inc. 1995-2004
LegalTrademarks : RealAudio(tm) is a trademark of RealNetworks, Inc.
OriginalFilename : realsched.exe

#:56 [drwtsn32.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 5580
ThreadCreationTime : 21-01-2007 14:00:14
BasePriority : Normal
FileVersion : 5.1.2600.0 (XPClient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Système d'exploitation Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Débogueur Postmortem Dr Watson
InternalName : drwtsn32.exe
LegalCopyright : © Microsoft Corporation. Tous droits réservés.
OriginalFilename : drwtsn32.exe

#:57 [drwtsn32.exe]
FilePath : C:\WINDOWS\system32\
ProcessID : 6004
ThreadCreationTime : 21-01-2007 14:01:09
BasePriority : Normal
FileVersion : 5.1.2600.0 (XPClient.010817-1148)
ProductVersion : 5.1.2600.0
ProductName : Système d'exploitation Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Débogueur Postmortem Dr Watson
InternalName : drwtsn32.exe
LegalCopyright : © Microsoft Corporation. Tous droits réservés.
OriginalFilename : drwtsn32.exe

#:58 [explorer.exe]
FilePath : C:\WINDOWS\
ProcessID : 2264
ThreadCreationTime : 21-01-2007 14:05:52
BasePriority : Normal
FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
ProductVersion : 6.00.2900.2180
ProductName : Système d'exploitation Microsoft® Windows®
CompanyName : Microsoft Corporation
FileDescription : Explorateur Windows
InternalName : explorer
LegalCopyright : © Microsoft Corporation. Tous droits réservés.
OriginalFilename : EXPLORER.EXE

#:59 [msnmsgr.exe]
FilePath : C:\Program Files\MSN Messenger\
ProcessID : 4372
ThreadCreationTime : 21-01-2007 14:50:31
BasePriority : Normal
FileVersion : 8.0.0812.00
ProductVersion : 8.0.0812
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr.exe
LegalCopyright : Copyright (c) Microsoft Corporation. All rights reserved.
OriginalFilename : msnmsgr.exe

#:60 [msnmsgr.exe]
FilePath : C:\Program Files\MSN Messenger\
ProcessID : 5820
ThreadCreationTime : 21-01-2007 14:51:07
BasePriority : Normal
FileVersion : 8.0.0812.00
ProductVersion : 8.0.0812
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr.exe
LegalCopyright : Copyright (c) Microsoft Corporation. All rights reserved.
OriginalFilename : msnmsgr.exe

#:61 [msnmsgr.exe]
FilePath : C:\Program Files\MSN Messenger\
ProcessID : 540
ThreadCreationTime : 21-01-2007 14:51:15
BasePriority : Normal
FileVersion : 8.0.0812.00
ProductVersion : 8.0.0812
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr.exe
LegalCopyright : Copyright (c) Microsoft Corporation. All rights reserved.
OriginalFilename : msnmsgr.exe

#:62 [msnmsgr.exe]
FilePath : C:\Program Files\MSN Messenger\
ProcessID : 4780
ThreadCreationTime : 21-01-2007 14:51:28
BasePriority : Normal
FileVersion : 8.0.0812.00
ProductVersion : 8.0.0812
ProductName : Messenger
CompanyName : Microsoft Corporation
FileDescription : Messenger
InternalName : msnmsgr.exe
LegalCopyright : Copyright (c) Microsoft Corporation. All rights reserved.
OriginalFilename : msnmsgr.exe

#:63 [ad-aware.exe]
FilePath : C:\PROGRA~1\LAVASOFT\AD-AWA~1\
ProcessID : 3936
ThreadCreationTime : 21-01-2007 15:07:18
BasePriority : Normal
FileVersion : 6.2.0.236
ProductVersion : SE 106
ProductName : Lavasoft Ad-Aware SE
CompanyName : Lavasoft Sweden
FileDescription : Ad-Aware SE Core application
InternalName : Ad-Aware.exe
LegalCopyright : Copyright © Lavasoft AB Sweden
OriginalFilename : Ad-Aware.exe
Comments : All Rights Reserved

Memory scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 0


Started registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

AntiVermins Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Malware
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : clsid\{663de629-4ffd-a944-6f0a-64f98e925b62}

SpySpotter Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_USERS
Object : S-1-5-21-4283703853-1560221679-1447081827-1005\software\vb and vba program settings\spyspotter

Windows Object Recognized!
Type : RegData
Data : "regedit.exe" "%1"
TAC Rating : 3
Category : Vulnerability
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : regfile\shell\open\command
Value :
Data : "regedit.exe" "%1"

Registry Scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 3
Objects found so far: 3


Started deep registry scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Deep registry scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 3


Started Tracking Cookie scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


Tracking Cookie Object Recognized!
Type : IECache Entry
Data : windows_xp_mci@real[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:6
Value : Cookie:windows xp mci@real.com/
Expires : 22-03-2007 00:34:26
LastSync : Hits:6
UseCount : 0
Hits : 6

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : windows_xp_mci@weborama[2].txt
TAC Rating : 3
Category : Data Miner
Comment : Hits:4
Value : Cookie:windows xp mci@weborama.fr/
Expires : 19-01-2009 15:26:26
LastSync : Hits:4
UseCount : 0
Hits : 4

Tracking cookie scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 2
Objects found so far: 5



Deep scanning and examining files (C:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Adware.PluginDL Object Recognized!
Type : File
Data : bone start.exe
TAC Rating : 3
Category : Adware
Comment :
Object : C:\Documents and Settings\All Users\Application Data\Pile amen sixth blue\



Adware.PluginDL Object Recognized!
Type : File
Data : kfvvzzte.exe
TAC Rating : 3
Category : Adware
Comment :
Object : C:\Documents and Settings\WINDOWS XP MCI\Application Data\Else plus\



Tracking Cookie Object Recognized!
Type : IECache Entry
Data : henri@real[1].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Henri.ACER-6281EFDEF1\Cookies\henri@real[1].txt

Tracking Cookie Object Recognized!
Type : IECache Entry
Data : henri@ads.multimania.lycos[2].txt
TAC Rating : 3
Category : Data Miner
Comment :
Value : C:\Documents and Settings\Henri.ACER-6281EFDEF1\Cookies\henri@ads.multimania.lycos[2].txt

Disk Scan Result for C:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 9


Deep scanning and examining files (D:)
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Disk Scan Result for D:\
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 0
Objects found so far: 9


Scanning Hosts file......
Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

Hosts file scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
71 entries scanned.
New critical objects:0
Objects found so far: 9




Performing conditional scans...
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

AntiVermins Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\antivermins

AntiVermins Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Malware
Comment :
Rootkey : HKEY_LOCAL_MACHINE
Object : software\microsoft\windows\currentversion\app paths\antivermins.exe

AntiVermins Object Recognized!
Type : Folder
TAC Rating : 3
Category : Malware
Comment : AntiVermins
Object : C:\Documents and Settings\WINDOWS XP MCI\Menu Démarrer\Programmes\AntiVermins

SpySpotter Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : tabdlg.sstab

SpySpotter Object Recognized!
Type : Regkey
Data :
TAC Rating : 3
Category : Misc
Comment :
Rootkey : HKEY_CLASSES_ROOT
Object : tabdlg.sstab.1

Other Object Recognized!
Type : File
Data : BONE START.EXE-25EDB0A4.pf
TAC Rating : 10
Category : Malware
Comment :
Object : C:\WINDOWS\prefetch\



Conditional scan result:
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
New critical objects: 6
Objects found so far: 15

16:33:04 Scan Complete

Summary Of This Scan
»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
Total scanning time:00:24:24.641
Objects scanned:256550
Objects identified:16
Objects ignored:0
New critical objects:16
0
Réponse 4 / 4
have some fun
24 janv. 2007 à 16:43
up
0

Discussions similaires

Est ce que le site tlauncher est dangereux ?
caribou -
bazfile -

1 réponse
Softonic,est-ce un virus ?
techmel1 -
techmel1 -

6 réponses
Message "Un bloqueur de publicité empêche la lecture..."
pistouri -
pistouri -

0 réponse
4 virus en raison d’un porno ????
valou -
Bello040420 -

9 réponses
comment desactiver un bloqueur de pub
amour10 -
MPMP10 -

4 réponses