Mon ordi traine la jambe.C'est pénible!
Shenzo
-
gott -
gott -
Bonjour à tous.
J'ai installé le scan ad ware. Mais aprés el scan, je ne comprend pas les termes, ce que cela implique. Bref, je suis un peu comme le petit poucet ayant perdu ses marques.Pouvez-vous m'aider s'il vous plait, il me semble que mon ordi perd en vitesse de jours en jours. Agonie lente ou desespoir progressif? Je ne sais pas, je pense que lorsque j'aurais résolu ce dilemme, j'en rirais sûrement. Mais en attendant, quelle patience faut-il avoir pour se servir de mon ordi. Merci de votre COMPREHENSION. (WINDOWS 2000)
J'ai installé le scan ad ware. Mais aprés el scan, je ne comprend pas les termes, ce que cela implique. Bref, je suis un peu comme le petit poucet ayant perdu ses marques.Pouvez-vous m'aider s'il vous plait, il me semble que mon ordi perd en vitesse de jours en jours. Agonie lente ou desespoir progressif? Je ne sais pas, je pense que lorsque j'aurais résolu ce dilemme, j'en rirais sûrement. Mais en attendant, quelle patience faut-il avoir pour se servir de mon ordi. Merci de votre COMPREHENSION. (WINDOWS 2000)
A voir également:
- Mon ordi traine la jambe.C'est pénible!
- Ordi qui rame - Guide
- Comment reinitialiser un ordi - Guide
- La camera de mon ordi ne fonctionne pas - Guide
- Mon ordi ne reconnait pas ma clé usb - Guide
- Plus de son sur mon ordi - Guide
5 réponses
Salut,
Tout d'abord, n'hésites pas à copier ton résultat sur ce forum.
Ensuite, il te faut télécharger des antivirus gratuits comme AVG 6 (voir les autres forums) pour scanner ton PC.
Sinon, tu peux analyser tous les programmes et virus qui tournent sur ton PC à cette adresse : http://prcwin.free.fr/
a+.
Tout d'abord, n'hésites pas à copier ton résultat sur ce forum.
Ensuite, il te faut télécharger des antivirus gratuits comme AVG 6 (voir les autres forums) pour scanner ton PC.
Sinon, tu peux analyser tous les programmes et virus qui tournent sur ton PC à cette adresse : http://prcwin.free.fr/
a+.
salut
tu peut mettre en quarantaine tous ce que trouve adadware
et je te conseil aussi
spyboot
http://www.safer-networking.org/index.php?page=download&lang=fr
tu peut mettre en quarantaine tous ce que trouve adadware
et je te conseil aussi
spyboot
http://www.safer-networking.org/index.php?page=download&lang=fr
Lavasoft Ad-aware Personal Build 6.181
Logfile created on :samedi 1 mai 2004 02:36:08
Created with Ad-aware Personal, free for private use.
Using reference-file :01R298 20.04.2004
______________________________________________________
Ad-aware Settings
=========================
Set : Activate in-depth scan (Recommended)
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry
01-05-2004 02:36:08 - Scan started. (Smart mode)
Listing running processes
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ThreadCreationTime : 30-04-2004 23:26:26
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:33
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:35
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:38
BasePriority : Normal
FileSize : 87 KB
FileVersion : 5.00.2195.6700
ProductVersion : 5.00.2195.6700
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Applications Services et Contr
InternalName : services.exe
OriginalFilename : services.exe
ProductName : Syst
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:5 [lsass.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:38
BasePriority : Normal
FileSize : 38 KB
FileVersion : 5.00.2195.6902
ProductVersion : 5.00.2195.6902
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Ex
InternalName : lsasrv.dll and lsass.exe
OriginalFilename : lsasrv.dll and lsass.exe
ProductName : Syst
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:08
Last modified : 24/03/2004 01:37:02
#:6 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:44
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:08
Last modified : 16/12/1999
#:7 [ccsetmgr.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\
ThreadCreationTime : 30-04-2004 23:26:45
BasePriority : Normal
FileSize : 229 KB
FileVersion : 2.1.0.610
ProductVersion : 2.1.0.610
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client Settings Manager Service
InternalName : ccSetMgr
OriginalFilename : ccSetMgr.exe
ProductName : Common Client
Created on : 10/11/2003 13:30:12
Last accessed : 01/05/2004 00:36:08
Last modified : 10/11/2003 13:30:12
#:8 [ccevtmgr.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\
ThreadCreationTime : 30-04-2004 23:26:46
BasePriority : Normal
FileSize : 249 KB
FileVersion : 2.1.0.610
ProductVersion : 2.1.0.610
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client Event Manager Service
InternalName : ccEvtMgr
OriginalFilename : ccEvtMgr.exe
ProductName : Common Client
Created on : 10/11/2003 13:30:04
Last accessed : 01/05/2004 00:36:08
Last modified : 10/11/2003 13:30:04
#:9 [spoolsv.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:47
BasePriority : Normal
FileSize : 44 KB
FileVersion : 5.00.2195.6659
ProductVersion : 5.00.2195.6659
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolss.exe
OriginalFilename : spoolss.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 07/01/2004 13:26:34
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:10 [svchost.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 30-04-2004 23:26:47
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:08
Last modified : 16/12/1999
#:11 [gearsec.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:47
BasePriority : Normal
FileSize : 52 KB
FileVersion : 1, 0, 0, 6
ProductVersion : 1, 0, 0, 6
Copyright : Copyright
CompanyName : GEAR Software
FileDescription : gearsec
InternalName : gearsec
OriginalFilename : gearsec.exe
ProductName : gearsec
Created on : 20/12/2003 00:53:16
Last accessed : 01/05/2004 00:36:08
Last modified : 20/12/2003 00:53:16
#:12 [navapsvc.exe]
FilePath : C:\Program Files\Norton AntiVirus\
ThreadCreationTime : 30-04-2004 23:26:48
BasePriority : Normal
FileSize : 155 KB
FileVersion : 10.00.3
ProductVersion : 10.00.3
Copyright : Norton AntiVirus 2004 for Windows 98/ME/2000/XP Copyright (c) 2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton AntiVirus Auto-Protect Service
InternalName : NAVAPSVC
OriginalFilename : NAVAPSVC.EXE
ProductName : Norton AntiVirus
Created on : 17/03/2004 11:23:36
Last accessed : 01/05/2004 00:36:08
Last modified : 17/03/2004 11:23:36
#:13 [regsvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:48
BasePriority : Normal
FileSize : 66 KB
FileVersion : 5.00.2195.6701
ProductVersion : 5.00.2195.6701
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Remote Registry Service
InternalName : regsvc
OriginalFilename : REGSVC.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 25/03/2004 17:01:39
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:14 [savscan.exe]
FilePath : C:\Program Files\Norton AntiVirus\
ThreadCreationTime : 30-04-2004 23:26:49
BasePriority : Normal
FileSize : 189 KB
FileVersion : 9.2.1.14
ProductVersion : 9.2
Copyright : Copyright (c) 2003 Symantec Corporation
CompanyName : Symantec Corporation
FileDescription : Symantec AntiVirus Scanner
InternalName : SAVSCAN
OriginalFilename : SAVSCAN.EXE
ProductName : Symantec AntiVirus AutoProtect
Created on : 07/11/2003 17:46:58
Last accessed : 01/05/2004 00:36:08
Last modified : 07/11/2003 17:46:58
#:15 [mstask.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:55
BasePriority : Normal
FileSize : 118 KB
FileVersion : 4.71.2195.6704
ProductVersion : 4.71.2195.6704
Copyright : Copyright (C) Microsoft Corp. 1997
CompanyName : Microsoft Corporation
FileDescription : Moteur du Planificateur de t
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Planificateur de t
Created on : 25/03/2004 16:52:58
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:16 [stisvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:56
BasePriority : Normal
FileSize : 60 KB
FileVersion : 5.00.2195.6656
ProductVersion : 5.00.2195.6656
Copyright : Copyright (C) Microsoft Corp. 1996-1997
CompanyName : Microsoft Corporation
FileDescription : Moniteur de p
InternalName : STIMON
OriginalFilename : STIMON.EXE
ProductName : Syst
Created on : 25/03/2004 17:05:40
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:17 [symlcsvc.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\
ThreadCreationTime : 30-04-2004 23:26:58
BasePriority : Normal
FileSize : 588 KB
FileVersion : 1, 8, 50, 196
ProductVersion : 1, 8, 50, 196
Copyright : Copyright (C) 2003
CompanyName : Symantec Corporation
FileDescription : Symantec Core Component
InternalName : symlcsvc
OriginalFilename : symlcsvc.exe
ProductName : Symantec Core Component
Created on : 30/04/2004 22:25:58
Last accessed : 01/05/2004 00:36:08
Last modified : 30/04/2004 22:25:57
#:18 [winmgmt.exe]
FilePath : C:\WINNT\System32\WBEM\
ThreadCreationTime : 30-04-2004 23:27:01
BasePriority : Normal
FileSize : 192 KB
FileVersion : 1.50.1085.0100
ProductVersion : 1.50.1085.0100
Copyright : Copyright (C) Microsoft Corp. 1995-1999
CompanyName : Microsoft Corporation
FileDescription : Infrastructure de gestion Windows
InternalName : WINMGMT
ProductName : Infrastructure de gestion Windows
Created on : 25/03/2004 17:11:04
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:19 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:27:02
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:08
Last modified : 16/12/1999
#:20 [explorer.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 30-04-2004 23:27:05
BasePriority : Normal
FileSize : 238 KB
FileVersion : 5.00.3700.6690
ProductVersion : 5.00.3700.6690
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Explorateur Windows
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Syst
Created on : 25/03/2004 16:34:59
Last accessed : 01/05/2004 00:36:09
Last modified : 19/06/2003 19:05:04
#:21 [vmtalk.exe]
FilePath : C:\Program Files\Fichiers communs\Talkway\
ThreadCreationTime : 30-04-2004 23:27:14
BasePriority : Normal
FileSize : 60 KB
FileVersion : 1, 1, 1, 82
ProductVersion : 1.0.1.0
Copyright : Copyright 2001-2003, Talkway Communications
CompanyName : Talkway Communications
FileDescription : Talkway VMailTalk Manager application
InternalName : VMTalk
OriginalFilename : VMTalk
ProductName : VMailTalk
Created on : 09/03/2004 16:48:15
Last accessed : 01/05/2004 00:36:09
Last modified : 24/07/2003 16:21:20
#:22 [p2p networking.exe]
FilePath : C:\WINNT\System32\P2P Networking\
ThreadCreationTime : 30-04-2004 23:27:18
BasePriority : Normal
FileSize : 470 KB
FileVersion : 1, 25, 0, 20
ProductVersion : 1, 25, 0, 20
Copyright : Copyright
CompanyName : Joltid Ltd.
FileDescription : P2P Networking
InternalName : P2P Networking
OriginalFilename : P2P Networking.exe
ProductName : P2P Networking
Created on : 22/03/2004 14:23:40
Last accessed : 01/05/2004 00:36:09
Last modified : 22/03/2004 14:23:38
#:23 [ituneshelper.exe]
FilePath : C:\Program Files\iTunes\
ThreadCreationTime : 30-04-2004 23:27:24
BasePriority : Normal
FileSize : 224 KB
FileVersion : 4.2.0.72
ProductVersion : 4.2.0.72
CompanyName : Apple Computer, Inc.
FileDescription : Module iTunesHelper
InternalName : iTunesHelper
OriginalFilename : iTunesHelper.exe
ProductName : iTunes
Created on : 30/12/2003 17:10:58
Last accessed : 01/05/2004 00:36:09
Last modified : 30/12/2003 17:10:58
#:24 [qttask.exe]
FilePath : C:\Program Files\QuickTime\
ThreadCreationTime : 30-04-2004 23:27:25
BasePriority : Normal
FileSize : 96 KB
FileVersion : 6.5
ProductVersion : QuickTime 6.5
CompanyName : Apple Computer, Inc.
InternalName : QuickTime Task
OriginalFilename : QTTask.exe
ProductName : QuickTime
Created on : 26/03/2004 14:52:49
Last accessed : 01/05/2004 00:36:09
Last modified : 26/03/2004 14:52:49
#:25 [totrecsched.exe]
FilePath : C:\Program Files\HighCriteria\TotalRecorder\
ThreadCreationTime : 30-04-2004 23:27:26
BasePriority : Normal
FileSize : 80 KB
FileVersion : 4, 4, 0, 1
ProductVersion : 4, 4, 0, 1
Copyright : Copyright (C) High Criteria inc.,1998-2003
CompanyName : High Criteria inc.
FileDescription : Total Recorder scheduler
InternalName : TotRecSched
OriginalFilename : TotRecSched.exe
ProductName : Total Recorder
Created on : 08/04/2004 17:06:59
Last accessed : 01/05/2004 00:36:09
Last modified : 16/12/2003 21:15:20
#:26 [ipodservice.exe]
FilePath : C:\Program Files\iPod\bin\
ThreadCreationTime : 30-04-2004 23:27:27
BasePriority : Normal
FileSize : 408 KB
FileVersion : 4.2.0.72
ProductVersion : 4.2.0.72
CompanyName : Apple Computer, Inc.
FileDescription : Module iPodService
InternalName : iPodService
OriginalFilename : iPodService.exe
ProductName : iTunes
Created on : 30/12/2003 17:10:58
Last accessed : 01/05/2004 00:36:09
Last modified : 30/12/2003 17:10:58
#:27 [realsched.exe]
FilePath : C:\Program Files\Fichiers communs\Real\Update_OB\
ThreadCreationTime : 30-04-2004 23:27:28
BasePriority : Normal
FileSize : 148 KB
FileVersion : 0.1.0.1622
ProductVersion : 0.1.0.1622
Copyright : Copyright
CompanyName : RealNetworks, Inc.
FileDescription : RealNetworks Scheduler
InternalName : schedapp
OriginalFilename : realsched.exe
ProductName : RealOne Player (32-bit)
Created on : 20/03/2004 01:25:49
Last accessed : 01/05/2004 00:36:09
Last modified : 08/04/2004 17:36:32
#:28 [logitray.exe]
FilePath : C:\Program Files\Logitech\Video\
ThreadCreationTime : 30-04-2004 23:27:31
BasePriority : Normal
FileSize : 64 KB
FileVersion : 8.0.3.1112
ProductVersion : 8.0.3.1112
Copyright : (c) 1996-2003 Logitech. All rights reserved.
CompanyName : Logitech Inc.
FileDescription : ImageStudio Tray Application
InternalName : LogiTray.exe
OriginalFilename : LogiTray.exe
ProductName : Logitech QuickCam
Created on : 30/06/2003 19:00:24
Last accessed : 01/05/2004 00:36:09
Last modified : 30/06/2003 19:00:24
#:29 [sysupd.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 30-04-2004 23:27:33
BasePriority : Normal
FileSize : 129 KB
Created on : 20/04/2004 22:54:37
Last accessed : 01/05/2004 00:36:09
Last modified : 28/04/2004 17:34:26
#:30 [hot_it.exe]
FilePath : C:\Program Files\GMSoft\Dialers\Hot_it\
ThreadCreationTime : 30-04-2004 23:27:38
BasePriority : Normal
FileSize : 88 KB
FileVersion : 1, 0, 0, 16
ProductVersion : 1, 0, 0, 16
Created on : 23/04/2004 21:46:58
Last accessed : 01/05/2004 00:36:09
Last modified : 23/04/2004 21:46:58
#:31 [mnpol.exe]
FilePath : C:\winnt\system32\
ThreadCreationTime : 30-04-2004 23:27:40
BasePriority : Normal
FileSize : 188 KB
FileVersion : 0, 0, 0, 72
ProductVersion : 0, 0, 0, 72
Created on : 23/04/2004 21:47:14
Last accessed : 01/05/2004 00:36:09
Last modified : 23/04/2004 21:47:14
#:32 [safesearch.exe]
FilePath : C:\program files\primesoft\safesearch\
ThreadCreationTime : 30-04-2004 23:27:40
BasePriority : Normal
FileSize : 59 KB
FileVersion : 1, 0, 0, 14
ProductVersion : 1, 0, 0, 14
Created on : 28/04/2004 17:05:14
Last accessed : 01/05/2004 00:36:09
Last modified : 28/04/2004 17:05:10
#:33 [msbb.exe]
FilePath : C:\Program Files\N-case\
ThreadCreationTime : 30-04-2004 23:27:44
BasePriority : Normal
FileSize : 160 KB
FileVersion : 4.1
ProductVersion : 4.1
Copyright : Copyright
CompanyName : 180Solutions Inc
FileDescription : msbb
InternalName : msbb
OriginalFilename : msbb.exe
ProductName : n-CASE
Created on : 28/04/2004 17:21:56
Last accessed : 01/05/2004 00:36:09
Last modified : 28/04/2004 17:21:55
Warning! 180Solutions object found in memory(C:\Program Files\N-case\msbb.exe)
180Solutions Object recognized!
Type : Process
Data : msbb.exe
Object : C:\Program Files\N-case\
FileSize : 160 KB
FileVersion : 4.1
ProductVersion : 4.1
Copyright : Copyright
CompanyName : 180Solutions Inc
FileDescription : msbb
InternalName : msbb
OriginalFilename : msbb.exe
ProductName : n-CASE
Created on : 28/04/2004 17:21:56
Last accessed : 01/05/2004 00:36:09
Last modified : 28/04/2004 17:21:55
"msbb.exe"Process terminated successfully.
#:34 [bpc.exe]
FilePath : C:\Program Files\RVP\
ThreadCreationTime : 30-04-2004 23:27:45
BasePriority : Normal
FileSize : 65 KB
Created on : 18/11/2003 23:48:29
Last accessed : 01/05/2004 00:36:10
Last modified : 18/11/2003 23:48:29
BroadCastPC Object recognized!
Type : Process
Data : bpc.exe
Object : C:\Program Files\RVP\
FileSize : 65 KB
Created on : 18/11/2003 23:48:29
Last accessed : 01/05/2004 00:36:10
Last modified : 18/11/2003 23:48:29
Warning! BroadCastPC object found in memory(bpc.exe)
"bpc.exe"Process terminated successfully.
#:35 [rundll32.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:27:45
BasePriority : Normal
FileSize : 9 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Ex
InternalName : rundll
OriginalFilename : RUNDLL.EXE
ProductName : Syst
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:10
Last modified : 16/12/1999
#:36 [whsurvey.exe]
FilePath : C:\Program Files\webHancer\Programs\
ThreadCreationTime : 30-04-2004 23:27:45
BasePriority : Normal
FileSize : 140 KB
FileVersion : 3.3.0
ProductVersion : 3.3.0
Copyright : Copyright
CompanyName : webHancer Corporation
FileDescription : webHancer Survey Companion
InternalName : whSurvey
OriginalFilename : whSurvey.exe
ProductName : webHancer Survey Companion
Created on : 29/01/2004 07:30:24
Last accessed : 01/05/2004 00:36:10
Last modified : 29/01/2004 07:30:24
#:37 [whagent.exe]
FilePath : C:\Program Files\webHancer\Programs\
ThreadCreationTime : 30-04-2004 23:27:50
BasePriority : Normal
FileSize : 168 KB
FileVersion : 3.3.0
ProductVersion : 3.3.0
Copyright : Copyright
CompanyName : webHancer Corporation
FileDescription : webHancer Customer Companion
InternalName : whAgent
OriginalFilename : whAgent.exe
ProductName : webHancer Customer Companion
Created on : 29/01/2004 07:30:24
Last accessed : 01/05/2004 00:36:10
Last modified : 29/01/2004 07:30:24
#:38 [ccapp.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\
ThreadCreationTime : 30-04-2004 23:27:55
BasePriority : Normal
FileSize : 69 KB
FileVersion : 2.1.0.610
ProductVersion : 2.1.0.610
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client User Session
InternalName : ccApp
OriginalFilename : ccApp.exe
ProductName : Common Client
Created on : 10/11/2003 13:30:02
Last accessed : 01/05/2004 00:36:10
Last modified : 10/11/2003 13:30:02
#:39 [internat.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:27:57
BasePriority : Normal
FileSize : 20 KB
FileVersion : 5.00.2920.0000
ProductVersion : 5.00.2920.0000
Copyright : Copyright (C) Microsoft Corp. 1994-1999
CompanyName : Microsoft Corporation
FileDescription : Application d'indication de langue du clavier
InternalName : INTERNAT
OriginalFilename : INTERNAT.EXE
ProductName : Syst
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:10
Last modified : 16/12/1999
#:40 [ypager.exe]
FilePath : C:\PROGRA~1\Yahoo!\MESSEN~1\
ThreadCreationTime : 30-04-2004 23:27:58
BasePriority : Normal
FileSize : 1496 KB
FileVersion : 5, 6, 0, 1358
ProductVersion : 5, 6, 0, 1358
Copyright : Copyright 1998-2003
CompanyName : Yahoo! Inc.
FileDescription : Yahoo! Messenger
InternalName : Yahoo! Messengerr
OriginalFilename : YPager.exe
ProductName : Yahoo! Messenger
Created on : 19/03/2004 19:45:39
Last accessed : 01/05/2004 00:32:07
Last modified : 26/12/2003 14:57:44
#:41 [backweb-8876480.exe]
FilePath : C:\Program Files\Logitech\Desktop Messenger\8876480\Program\
ThreadCreationTime : 30-04-2004 23:28:00
BasePriority : Normal
FileSize : 16 KB
Created on : 11/04/2004 21:30:49
Last accessed : 01/05/2004 00:36:10
Last modified : 11/04/2004 21:30:49
#:42 [rundll32.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:28:00
BasePriority : Normal
FileSize : 9 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Ex
InternalName : rundll
OriginalFilename : RUNDLL.EXE
ProductName : Syst
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:10
Last modified : 16/12/1999
#:43 [a2guard.exe]
FilePath : C:\Program Files\a2\
ThreadCreationTime : 30-04-2004 23:28:03
BasePriority : Normal
FileSize : 608 KB
Created on : 13/12/2003 14:01:19
Last accessed : 01/05/2004 00:36:10
Last modified : 13/12/2003 14:01:19
#:44 [calcheck.exe]
FilePath : C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\
ThreadCreationTime : 30-04-2004 23:28:06
BasePriority : Normal
FileSize : 68 KB
FileVersion : 4, 0, 0, 0
ProductVersion : 4, 0, 0, 0
Copyright : Copyright (C) 1992-1999.Ulead Systems, Inc.
CompanyName : Ulead Systems, Inc.
FileDescription : Photo Express -- Calendar Checker
InternalName : CalCheck
OriginalFilename : CalCheck.EXE
ProductName : Calendar Checker Application
Created on : 23/02/2004 14:08:29
Last accessed : 01/05/2004 00:36:10
Last modified : 03/05/2002 11:05:26
#:45 [dslmon.exe]
FilePath : C:\Program Files\SAGEM\SAGEM F@st 800-840\
ThreadCreationTime : 30-04-2004 23:28:10
BasePriority : Normal
FileSize : 940 KB
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
Copyright : Copyright (C) 2000
FileDescription : ADIMON MFC Application
InternalName : DSLMON
OriginalFilename : ADIMON.EXE
ProductName : DSLMON Application
Created on : 09/03/2004 16:36:56
Last accessed : 01/05/2004 00:36:10
Last modified : 01/07/2003 13:10:36
#:46 [wzqkpick.exe]
FilePath : C:\Program Files\WinZip\
ThreadCreationTime : 30-04-2004 23:28:28
BasePriority : Normal
FileSize : 116 KB
FileVersion : 1.0 (32-bit)
ProductVersion : 9.0 (6028)
Copyright : Copyright (c) WinZip Computing, Inc. 1991-2004 - All Rights Reserved
CompanyName : WinZip Computing, Inc.
FileDescription : WinZip Executable
InternalName : WZQKPICK.EXE
OriginalFilename : WZQKPICK.EXE
ProductName : WinZip
Created on : 27/03/2004 22:50:31
Last accessed : 01/05/2004 00:36:10
Last modified : 11/02/2004 07:00:00
#:47 [lvcoms.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:28:31
BasePriority : Normal
FileSize : 124 KB
FileVersion : 7.3.0.1113
ProductVersion : 7.3.0.1113
Copyright : (c) 1996-2002 Logitech. All rights reserved.
CompanyName : Logitech Inc.
FileDescription : LVCom Server
InternalName : LVComS.exe
OriginalFilename : LVComS.exe
ProductName : Logitech ImageStudio
Created on : 10/04/2004 05:15:48
Last accessed : 01/05/2004 00:36:10
Last modified : 10/12/2002 10:54:04
#:48 [lanceur.exe]
FilePath : C:\Program Files\Club-Internet\Lanceur\
ThreadCreationTime : 30-04-2004 23:49:48
BasePriority : Normal
FileSize : 2652 KB
FileVersion : 5, 0, 1, 1
ProductVersion : 5, 0, 1, 1
Copyright : Copyright (C) T-Online France 2002 - 2003
CompanyName : T-ONLINE France
FileDescription : Lanceur V5.0.1.1
InternalName : Lanceur V5.0.1.0
OriginalFilename : lanceur.exe
ProductName : Lanceur V5.0.1.1
Created on : 09/03/2004 16:45:54
Last accessed : 30/04/2004 23:49:49
Last modified : 09/10/2003 10:23:06
#:49 [msiexec.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 01-05-2004 00:33:38
BasePriority : Normal
FileSize : 63 KB
FileVersion : 2.0.2600.1183
ProductVersion : 2.0.2600.1183
Copyright : Copyright
CompanyName : Microsoft Corporation
FileDescription : Windows
InternalName : msiexec
OriginalFilename : msiexec.exe
ProductName : Windows Installer - Unicode
Created on : 25/03/2004 16:49:57
Last accessed : 01/05/2004 00:33:38
Last modified : 19/06/2003 19:05:04
#:50 [ad-aware.exe]
FilePath : C:\PROGRA~1\Lavasoft\AD-AWA~1\
ThreadCreationTime : 01-05-2004 00:35:12
BasePriority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 01/05/2004 00:35:03
Last accessed : 01/05/2004 00:35:03
Last modified : 12/07/2003 19:00:20
Memory scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 2
Objects found so far: 2
Started registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
180Solutions Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : SOFTWARE\180solutions
180Solutions Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : SOFTWARE\180solutions\msbb
180Solutions Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\nCASE
180Solutions Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Uninstall\msbb
180Solutions Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Uninstall\nCASE
BroadCastPC Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RVP
BroadCastPC Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\RVP
GMSoft Dialer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : Software\GMsoft\Dialers
IBIS Toolbar Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{26E8361F-BCE7-4F75-A347-98C88B418321}
IBIS Toolbar Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HAUTO_UNINSTALL
IBIS Toolbar Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Typelib\{26E8361F-BCE7-4F75-A347-98C88B418328}
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{4A2AACF3-ADF6-11D5-98A9-00E018981B9E}
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4A2AACF3-ADF6-11D5-98A9-00E018981B9E}
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\New.net
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\New.net
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : software\new.net
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Tldctl2.URLLink
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Tldctl2.URLLink.1
SafeSearch Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : safesearch.safesearchbho.1
SafeSearch Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : safesearch.safesearchbho
SafeSearch Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : TYPELIB\{c2faa6e5-2c71-4567-bd0d-64e3c670fdcf}
StopPop Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{4534CD6B-59D6-43FD-864B-06A0D843444A}
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{000020DD-C72E-4113-AF77-DD56626C6C42}
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\twaintec
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : TwaintecDll.TwaintecDllObj.1
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : TypeLib\{690BCCB4-6B83-4203-AE77-038C116594EC}
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : vx2.vx2obj
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{c900b400-cdfe-11d3-976a-00e02913a9e0}
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{C89435B0-CDFE-11D3-976A-00E02913A9E0}
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{c900b400-cdfe-11d3-976a-00e02913a9e0}
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Uninstall\webHancer Agent
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\whSurvey
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\webHancer
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : TypeLib\{C8CB3870-CDFE-11D3-976A-00E02913A9E0}
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : WhIeHelperObj.WhIeHelperObj
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : WhIeHelperObj.WhIeHelperObj.1
BroadCastPC Object recognized!
Type : RegValue
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\RUN
Value : RVP
New.Net Object recognized!
Type : RegValue
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Value : New.net Startup
WebHancer Object recognized!
Type : RegValue
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : webHancer Agent
Registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 39
Objects found so far: 41
Started deep registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
180Solutions Object recognized!
Type : RegValue
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : msbb
VX2.BetterInternet Object recognized!
Type : RegValue
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : alchem
VX2.BetterInternet Object recognized!
Type : File
Data : alchem.exe
Object : c:\winnt\
FileSize : 240 KB
FileVersion : 0, 2, 1, 3
ProductVersion : 0, 2, 1, 3
Copyright : Copyright
CompanyName : ClickAlchemy
FileDescription : www.clickalchemy.com
Created on : 28/04/2004 23:52:06
Last accessed : 01/05/2004 00:37:40
Last modified : 12/03/2004 07:17:20
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000020DD-C72E-4113-AF77-DD56626C6C42}
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer New.net UDP Chain
WebHancer Object recognized!
Type : File
Data : webhdll.dll
Object : c:\winnt\
FileSize : 40 KB
FileVersion : 3.3.0
ProductVersion : 3.3.0
Copyright : Copyright
CompanyName : webHancer Corporation
FileDescription : webHancer Winsock2 SPI
InternalName : webhdll
OriginalFilename : webhdll.dll
ProductName : webHancer Customer Companion
Created on : 29/01/2004 07:29:52
Last accessed : 01/05/2004 00:37:55
Last modified : 29/01/2004 07:29:52
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer New.net UDP Chain
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer New.net TCP Chain
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer New.net TCP Chain
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer MSAFD Tcpip [TCP/IP]
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer MSAFD Tcpip [TCP/IP]
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer MSAFD Tcpip [UDP/IP]
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer MSAFD Tcpip [UDP/IP]
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net UDP Chain
New.Net Object recognized!
Type : File
Data : newdotnet6_22.dll
Object : c:\program files\newdotnet\
FileSize : 220 KB
FileVersion : 6, 0, 0, 22
ProductVersion : 6, 0, 0, 22
Copyright : Copyright 2000-2002 New.net, Inc.
CompanyName : New.net, Inc.
FileDescription : New.net Domains
InternalName : tldctl2
OriginalFilename : tldctl2.dll
ProductName : New.net Domains
Created on : 28/04/2004 17:23:27
Last accessed : 01/05/2004 00:32:06
Last modified : 28/04/2004 17:23:17
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net UDP Chain
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net TCP Chain
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net TCP Chain
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net TCP Filter
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net TCP Filter
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net UDP Filter
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net UDP Filter
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer
Deep registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 21
Objects found so far: 65
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Tracking Cookie Object recognized!
Type : File
Data : ibm@180solutions[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 17:15:32
Last accessed : 01/05/2004 00:37:56
Last modified : 29/04/2004 17:15:32
Tracking Cookie Object recognized!
Type : File
Data : ibm@advertising[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 19:40:18
Last accessed : 01/05/2004 00:37:56
Last modified : 30/04/2004 19:40:18
Tracking Cookie Object recognized!
Type : File
Data : ibm@bfast[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 23:35:27
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 23:35:27
Tracking Cookie Object recognized!
Type : File
Data : ibm@bis.180solutions[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 17:22:01
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 17:22:01
Tracking Cookie Object recognized!
Type : File
Data : ibm@bluestreak[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 01/05/2004 00:32:38
Last accessed : 01/05/2004 00:33:01
Last modified : 01/05/2004 00:33:01
Tracking Cookie Object recognized!
Type : File
Data : ibm@datemeister[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 09:41:55
Last accessed : 01/05/2004 00:37:56
Last modified : 29/04/2004 09:41:55
Tracking Cookie Object recognized!
Type : File
Data : ibm@doubleclick[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 16:25:19
Last accessed : 01/05/2004 00:37:56
Last modified : 30/04/2004 16:25:38
Tracking Cookie Object recognized!
Type : File
Data : ibm@ehg-cafepress.hitbox[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 23:37:14
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 23:37:14
Tracking Cookie Object recognized!
Type : File
Data : ibm@fortunecity[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 01/05/2004 00:06:09
Last accessed : 01/05/2004 00:06:09
Last modified : 01/05/2004 00:06:09
Tracking Cookie Object recognized!
Type : File
Data : ibm@gator[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 01/05/2004 00:06:10
Last accessed : 01/05/2004 00:06:10
Last modified : 01/05/2004 00:06:10
Tracking Cookie Object recognized!
Type : File
Data : ibm@gold.weborama[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 19:40:20
Last accessed : 01/05/2004 00:37:56
Last modified : 30/04/2004 19:40:20
Tracking Cookie Object recognized!
Type : File
Data : ibm@hitbox[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 23:37:14
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 23:37:14
Tracking Cookie Object recognized!
Type : File
Data : ibm@mediaplex[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 08:50:47
Last accessed : 01/05/2004 00:37:56
Last modified : 29/04/2004 08:50:47
Tracking Cookie Object recognized!
Type : File
Data : ibm@overture[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 21:40:55
Last accessed : 01/05/2004 00:30:58
Last modified : 01/05/2004 00:30:58
Tracking Cookie Object recognized!
Type : File
Data : ibm@qksrv[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 01/05/2004 00:01:52
Last accessed : 01/05/2004 00:01:52
Last modified : 01/05/2004 00:01:52
Tracking Cookie Object recognized!
Type : File
Data : ibm@realmedia[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 20:05:17
Last accessed : 01/05/2004 00:37:56
Last modified : 29/04/2004 20:05:17
Tracking Cookie Object recognized!
Type : File
Data : ibm@realmedia[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 22:49:16
Last accessed : 01/05/2004 00:37:56
Last modified : 30/04/2004 22:49:16
Tracking Cookie Object recognized!
Type : File
Data : ibm@servedby.advertising[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 19:40:18
Last accessed : 01/05/2004 00:37:56
Last modified : 30/04/2004 19:40:18
Tracking Cookie Object recognized!
Type : File
Data : ibm@sexlist[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 23:46:07
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 23:46:07
Tracking Cookie Object recognized!
Type : File
Data : ibm@statcounter[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 23:44:32
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 23:44:32
Tracking Cookie Object recognized!
Type : File
Data : ibm@tradedoubler[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 08:50:43
Last accessed : 01/05/2004 00:37:57
Last modified : 29/04/2004 08:50:43
Tracking Cookie Object recognized!
Type : File
Data : ibm@valueclick[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 17:51:27
Last accessed : 01/05/2004 00:37:57
Last modified : 28/04/2004 17:51:27
Tracking Cookie Object recognized!
Type : File
Data : ibm@weborama[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 23:10:16
Last accessed : 01/05/2004 00:37:57
Last modified : 30/04/2004 23:10:16
Tracking Cookie Object recognized!
Type : File
Data : ibm@xxxtoolbar[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 17:03:14
Last accessed : 01/05/2004 00:37:57
Last modified : 30/04/2004 19:48:16
Tracking Cookie Object recognized!
Type : File
Data : ibm@z1.adserver[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 23:37:35
Last accessed : 30/04/2004 23:39:46
Last modified : 30/04/2004 23:39:46
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Deep scanning and examining files (C:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Performing conditional scans..
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
180Solutions Object recognized!
Type : Folder
Object : c:\program files\N-case
BroadCastPC Object recognized!
Type : Folder
Object : c:\program files\RVP
BroadCastPC Object recognized!
Type : Folder
Object : c:\docume~1\ibm\locals~1\temp\9.exe
BroadCastPC Object recognized!
Type : File
Data : uninst.exe
Object : c:\program files\rvp\
FileSize : 34 KB
Created on : 28/04/2004 17:22:14
Last accessed : 01/05/2004 00:38:15
Last modified : 28/04/2004 17:22:14
BroadCastPC Object recognized!
Type : File
Data : 9.exe
Object : c:\docume~1\ibm\locals~1\temp\9.exe\
FileSize : 70 KB
Created on : 28/04/2004 17:22:16
Last accessed : 01/05/2004 00:38:15
Last modified : 28/04/2004 17:22:21
GMSoft Dialer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : Software\GMSoft
GMSoft Dialer Object recognized!
Type : Folder
Object : c:\program files\gmsoft
GMSoft Dialer Object recognized!
Type : Folder
Object : c:\program files\gmsoft\dialers
GMSoft Dialer Object recognized!
Type : File
Data : wk_2.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 10:40:56
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 10:40:56
GMSoft Dialer Object recognized!
Type : File
Data : wk_3.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 10:41:22
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 10:41:22
GMSoft Dialer Object recognized!
Type : File
Data : wk_4.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 12:45:51
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 12:45:51
GMSoft Dialer Object recognized!
Type : File
Data : wk_5.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 12:46:24
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 12:46:24
GMSoft Dialer Object recognized!
Type : File
Data : wk_6.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 17:20:44
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 17:20:44
GMSoft Dialer Object recognized!
Type : File
Data : wk_7.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 17:21:06
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 17:21:06
GMSoft Dialer Object recognized!
Type : File
Data : wk_8.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 23:28:56
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 23:28:56
GMSoft Dialer Object recognized!
Type : File
Data : wk_86.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 16:23:02
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 16:23:02
GMSoft Dialer Object recognized!
Type : File
Data : wk_87.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 16:23:20
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 16:23:20
GMSoft Dialer Object recognized!
Type : File
Data : wk_9.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 23:29:39
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 23:29:39
GMSoft Dialer Object recognized!
Type : File
Data : wk_c6.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 29/04/2004 16:10:39
Last accessed : 01/05/2004 00:38:15
Last modified : 29/04/2004 16:10:39
GMSoft Dialer Object recognized!
Type : File
Data : wk_c7.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 29/04/2004 16:11:10
Last accessed : 01/05/2004 00:38:15
Last modified : 29/04/2004 16:11:10
GMSoft Dialer Object recognized!
Type : File
Data : hot_it
Object : c:\program files\gmsoft\dialers\
Created on : 23/04/2004 21:46:58
Last accessed : 01/05/2004 00:36:09
Last modified : 23/04/2004 21:46:58
IBIS Toolbar Object recognized!
Type : RegKey
Data :
Logfile created on :samedi 1 mai 2004 02:36:08
Created with Ad-aware Personal, free for private use.
Using reference-file :01R298 20.04.2004
______________________________________________________
Ad-aware Settings
=========================
Set : Activate in-depth scan (Recommended)
Set : Safe mode (always request confirmation)
Set : Scan active processes
Set : Scan registry
Set : Deep scan registry
01-05-2004 02:36:08 - Scan started. (Smart mode)
Listing running processes
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
#:1 [smss.exe]
FilePath : \SystemRoot\System32\
ThreadCreationTime : 30-04-2004 23:26:26
BasePriority : Normal
#:2 [csrss.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:33
BasePriority : Normal
#:3 [winlogon.exe]
FilePath : \??\C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:35
BasePriority : High
#:4 [services.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:38
BasePriority : Normal
FileSize : 87 KB
FileVersion : 5.00.2195.6700
ProductVersion : 5.00.2195.6700
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Applications Services et Contr
InternalName : services.exe
OriginalFilename : services.exe
ProductName : Syst
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:5 [lsass.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:38
BasePriority : Normal
FileSize : 38 KB
FileVersion : 5.00.2195.6902
ProductVersion : 5.00.2195.6902
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Ex
InternalName : lsasrv.dll and lsass.exe
OriginalFilename : lsasrv.dll and lsass.exe
ProductName : Syst
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:08
Last modified : 24/03/2004 01:37:02
#:6 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:44
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:08
Last modified : 16/12/1999
#:7 [ccsetmgr.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\
ThreadCreationTime : 30-04-2004 23:26:45
BasePriority : Normal
FileSize : 229 KB
FileVersion : 2.1.0.610
ProductVersion : 2.1.0.610
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client Settings Manager Service
InternalName : ccSetMgr
OriginalFilename : ccSetMgr.exe
ProductName : Common Client
Created on : 10/11/2003 13:30:12
Last accessed : 01/05/2004 00:36:08
Last modified : 10/11/2003 13:30:12
#:8 [ccevtmgr.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\
ThreadCreationTime : 30-04-2004 23:26:46
BasePriority : Normal
FileSize : 249 KB
FileVersion : 2.1.0.610
ProductVersion : 2.1.0.610
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client Event Manager Service
InternalName : ccEvtMgr
OriginalFilename : ccEvtMgr.exe
ProductName : Common Client
Created on : 10/11/2003 13:30:04
Last accessed : 01/05/2004 00:36:08
Last modified : 10/11/2003 13:30:04
#:9 [spoolsv.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:47
BasePriority : Normal
FileSize : 44 KB
FileVersion : 5.00.2195.6659
ProductVersion : 5.00.2195.6659
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Spooler SubSystem App
InternalName : spoolss.exe
OriginalFilename : spoolss.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 07/01/2004 13:26:34
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:10 [svchost.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 30-04-2004 23:26:47
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:08
Last modified : 16/12/1999
#:11 [gearsec.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:47
BasePriority : Normal
FileSize : 52 KB
FileVersion : 1, 0, 0, 6
ProductVersion : 1, 0, 0, 6
Copyright : Copyright
CompanyName : GEAR Software
FileDescription : gearsec
InternalName : gearsec
OriginalFilename : gearsec.exe
ProductName : gearsec
Created on : 20/12/2003 00:53:16
Last accessed : 01/05/2004 00:36:08
Last modified : 20/12/2003 00:53:16
#:12 [navapsvc.exe]
FilePath : C:\Program Files\Norton AntiVirus\
ThreadCreationTime : 30-04-2004 23:26:48
BasePriority : Normal
FileSize : 155 KB
FileVersion : 10.00.3
ProductVersion : 10.00.3
Copyright : Norton AntiVirus 2004 for Windows 98/ME/2000/XP Copyright (c) 2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Norton AntiVirus Auto-Protect Service
InternalName : NAVAPSVC
OriginalFilename : NAVAPSVC.EXE
ProductName : Norton AntiVirus
Created on : 17/03/2004 11:23:36
Last accessed : 01/05/2004 00:36:08
Last modified : 17/03/2004 11:23:36
#:13 [regsvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:48
BasePriority : Normal
FileSize : 66 KB
FileVersion : 5.00.2195.6701
ProductVersion : 5.00.2195.6701
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Remote Registry Service
InternalName : regsvc
OriginalFilename : REGSVC.EXE
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 25/03/2004 17:01:39
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:14 [savscan.exe]
FilePath : C:\Program Files\Norton AntiVirus\
ThreadCreationTime : 30-04-2004 23:26:49
BasePriority : Normal
FileSize : 189 KB
FileVersion : 9.2.1.14
ProductVersion : 9.2
Copyright : Copyright (c) 2003 Symantec Corporation
CompanyName : Symantec Corporation
FileDescription : Symantec AntiVirus Scanner
InternalName : SAVSCAN
OriginalFilename : SAVSCAN.EXE
ProductName : Symantec AntiVirus AutoProtect
Created on : 07/11/2003 17:46:58
Last accessed : 01/05/2004 00:36:08
Last modified : 07/11/2003 17:46:58
#:15 [mstask.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:55
BasePriority : Normal
FileSize : 118 KB
FileVersion : 4.71.2195.6704
ProductVersion : 4.71.2195.6704
Copyright : Copyright (C) Microsoft Corp. 1997
CompanyName : Microsoft Corporation
FileDescription : Moteur du Planificateur de t
InternalName : TaskScheduler
OriginalFilename : mstask.exe
ProductName : Planificateur de t
Created on : 25/03/2004 16:52:58
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:16 [stisvc.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:26:56
BasePriority : Normal
FileSize : 60 KB
FileVersion : 5.00.2195.6656
ProductVersion : 5.00.2195.6656
Copyright : Copyright (C) Microsoft Corp. 1996-1997
CompanyName : Microsoft Corporation
FileDescription : Moniteur de p
InternalName : STIMON
OriginalFilename : STIMON.EXE
ProductName : Syst
Created on : 25/03/2004 17:05:40
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:17 [symlcsvc.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\CCPD-LC\
ThreadCreationTime : 30-04-2004 23:26:58
BasePriority : Normal
FileSize : 588 KB
FileVersion : 1, 8, 50, 196
ProductVersion : 1, 8, 50, 196
Copyright : Copyright (C) 2003
CompanyName : Symantec Corporation
FileDescription : Symantec Core Component
InternalName : symlcsvc
OriginalFilename : symlcsvc.exe
ProductName : Symantec Core Component
Created on : 30/04/2004 22:25:58
Last accessed : 01/05/2004 00:36:08
Last modified : 30/04/2004 22:25:57
#:18 [winmgmt.exe]
FilePath : C:\WINNT\System32\WBEM\
ThreadCreationTime : 30-04-2004 23:27:01
BasePriority : Normal
FileSize : 192 KB
FileVersion : 1.50.1085.0100
ProductVersion : 1.50.1085.0100
Copyright : Copyright (C) Microsoft Corp. 1995-1999
CompanyName : Microsoft Corporation
FileDescription : Infrastructure de gestion Windows
InternalName : WINMGMT
ProductName : Infrastructure de gestion Windows
Created on : 25/03/2004 17:11:04
Last accessed : 01/05/2004 00:36:08
Last modified : 19/06/2003 19:05:04
#:19 [svchost.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:27:02
BasePriority : Normal
FileSize : 7 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Generic Host Process for Win32 Services
InternalName : svchost.exe
OriginalFilename : svchost.exe
ProductName : Microsoft(R) Windows (R) 2000 Operating System
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:08
Last modified : 16/12/1999
#:20 [explorer.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 30-04-2004 23:27:05
BasePriority : Normal
FileSize : 238 KB
FileVersion : 5.00.3700.6690
ProductVersion : 5.00.3700.6690
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Explorateur Windows
InternalName : explorer
OriginalFilename : EXPLORER.EXE
ProductName : Syst
Created on : 25/03/2004 16:34:59
Last accessed : 01/05/2004 00:36:09
Last modified : 19/06/2003 19:05:04
#:21 [vmtalk.exe]
FilePath : C:\Program Files\Fichiers communs\Talkway\
ThreadCreationTime : 30-04-2004 23:27:14
BasePriority : Normal
FileSize : 60 KB
FileVersion : 1, 1, 1, 82
ProductVersion : 1.0.1.0
Copyright : Copyright 2001-2003, Talkway Communications
CompanyName : Talkway Communications
FileDescription : Talkway VMailTalk Manager application
InternalName : VMTalk
OriginalFilename : VMTalk
ProductName : VMailTalk
Created on : 09/03/2004 16:48:15
Last accessed : 01/05/2004 00:36:09
Last modified : 24/07/2003 16:21:20
#:22 [p2p networking.exe]
FilePath : C:\WINNT\System32\P2P Networking\
ThreadCreationTime : 30-04-2004 23:27:18
BasePriority : Normal
FileSize : 470 KB
FileVersion : 1, 25, 0, 20
ProductVersion : 1, 25, 0, 20
Copyright : Copyright
CompanyName : Joltid Ltd.
FileDescription : P2P Networking
InternalName : P2P Networking
OriginalFilename : P2P Networking.exe
ProductName : P2P Networking
Created on : 22/03/2004 14:23:40
Last accessed : 01/05/2004 00:36:09
Last modified : 22/03/2004 14:23:38
#:23 [ituneshelper.exe]
FilePath : C:\Program Files\iTunes\
ThreadCreationTime : 30-04-2004 23:27:24
BasePriority : Normal
FileSize : 224 KB
FileVersion : 4.2.0.72
ProductVersion : 4.2.0.72
CompanyName : Apple Computer, Inc.
FileDescription : Module iTunesHelper
InternalName : iTunesHelper
OriginalFilename : iTunesHelper.exe
ProductName : iTunes
Created on : 30/12/2003 17:10:58
Last accessed : 01/05/2004 00:36:09
Last modified : 30/12/2003 17:10:58
#:24 [qttask.exe]
FilePath : C:\Program Files\QuickTime\
ThreadCreationTime : 30-04-2004 23:27:25
BasePriority : Normal
FileSize : 96 KB
FileVersion : 6.5
ProductVersion : QuickTime 6.5
CompanyName : Apple Computer, Inc.
InternalName : QuickTime Task
OriginalFilename : QTTask.exe
ProductName : QuickTime
Created on : 26/03/2004 14:52:49
Last accessed : 01/05/2004 00:36:09
Last modified : 26/03/2004 14:52:49
#:25 [totrecsched.exe]
FilePath : C:\Program Files\HighCriteria\TotalRecorder\
ThreadCreationTime : 30-04-2004 23:27:26
BasePriority : Normal
FileSize : 80 KB
FileVersion : 4, 4, 0, 1
ProductVersion : 4, 4, 0, 1
Copyright : Copyright (C) High Criteria inc.,1998-2003
CompanyName : High Criteria inc.
FileDescription : Total Recorder scheduler
InternalName : TotRecSched
OriginalFilename : TotRecSched.exe
ProductName : Total Recorder
Created on : 08/04/2004 17:06:59
Last accessed : 01/05/2004 00:36:09
Last modified : 16/12/2003 21:15:20
#:26 [ipodservice.exe]
FilePath : C:\Program Files\iPod\bin\
ThreadCreationTime : 30-04-2004 23:27:27
BasePriority : Normal
FileSize : 408 KB
FileVersion : 4.2.0.72
ProductVersion : 4.2.0.72
CompanyName : Apple Computer, Inc.
FileDescription : Module iPodService
InternalName : iPodService
OriginalFilename : iPodService.exe
ProductName : iTunes
Created on : 30/12/2003 17:10:58
Last accessed : 01/05/2004 00:36:09
Last modified : 30/12/2003 17:10:58
#:27 [realsched.exe]
FilePath : C:\Program Files\Fichiers communs\Real\Update_OB\
ThreadCreationTime : 30-04-2004 23:27:28
BasePriority : Normal
FileSize : 148 KB
FileVersion : 0.1.0.1622
ProductVersion : 0.1.0.1622
Copyright : Copyright
CompanyName : RealNetworks, Inc.
FileDescription : RealNetworks Scheduler
InternalName : schedapp
OriginalFilename : realsched.exe
ProductName : RealOne Player (32-bit)
Created on : 20/03/2004 01:25:49
Last accessed : 01/05/2004 00:36:09
Last modified : 08/04/2004 17:36:32
#:28 [logitray.exe]
FilePath : C:\Program Files\Logitech\Video\
ThreadCreationTime : 30-04-2004 23:27:31
BasePriority : Normal
FileSize : 64 KB
FileVersion : 8.0.3.1112
ProductVersion : 8.0.3.1112
Copyright : (c) 1996-2003 Logitech. All rights reserved.
CompanyName : Logitech Inc.
FileDescription : ImageStudio Tray Application
InternalName : LogiTray.exe
OriginalFilename : LogiTray.exe
ProductName : Logitech QuickCam
Created on : 30/06/2003 19:00:24
Last accessed : 01/05/2004 00:36:09
Last modified : 30/06/2003 19:00:24
#:29 [sysupd.exe]
FilePath : C:\WINNT\
ThreadCreationTime : 30-04-2004 23:27:33
BasePriority : Normal
FileSize : 129 KB
Created on : 20/04/2004 22:54:37
Last accessed : 01/05/2004 00:36:09
Last modified : 28/04/2004 17:34:26
#:30 [hot_it.exe]
FilePath : C:\Program Files\GMSoft\Dialers\Hot_it\
ThreadCreationTime : 30-04-2004 23:27:38
BasePriority : Normal
FileSize : 88 KB
FileVersion : 1, 0, 0, 16
ProductVersion : 1, 0, 0, 16
Created on : 23/04/2004 21:46:58
Last accessed : 01/05/2004 00:36:09
Last modified : 23/04/2004 21:46:58
#:31 [mnpol.exe]
FilePath : C:\winnt\system32\
ThreadCreationTime : 30-04-2004 23:27:40
BasePriority : Normal
FileSize : 188 KB
FileVersion : 0, 0, 0, 72
ProductVersion : 0, 0, 0, 72
Created on : 23/04/2004 21:47:14
Last accessed : 01/05/2004 00:36:09
Last modified : 23/04/2004 21:47:14
#:32 [safesearch.exe]
FilePath : C:\program files\primesoft\safesearch\
ThreadCreationTime : 30-04-2004 23:27:40
BasePriority : Normal
FileSize : 59 KB
FileVersion : 1, 0, 0, 14
ProductVersion : 1, 0, 0, 14
Created on : 28/04/2004 17:05:14
Last accessed : 01/05/2004 00:36:09
Last modified : 28/04/2004 17:05:10
#:33 [msbb.exe]
FilePath : C:\Program Files\N-case\
ThreadCreationTime : 30-04-2004 23:27:44
BasePriority : Normal
FileSize : 160 KB
FileVersion : 4.1
ProductVersion : 4.1
Copyright : Copyright
CompanyName : 180Solutions Inc
FileDescription : msbb
InternalName : msbb
OriginalFilename : msbb.exe
ProductName : n-CASE
Created on : 28/04/2004 17:21:56
Last accessed : 01/05/2004 00:36:09
Last modified : 28/04/2004 17:21:55
Warning! 180Solutions object found in memory(C:\Program Files\N-case\msbb.exe)
180Solutions Object recognized!
Type : Process
Data : msbb.exe
Object : C:\Program Files\N-case\
FileSize : 160 KB
FileVersion : 4.1
ProductVersion : 4.1
Copyright : Copyright
CompanyName : 180Solutions Inc
FileDescription : msbb
InternalName : msbb
OriginalFilename : msbb.exe
ProductName : n-CASE
Created on : 28/04/2004 17:21:56
Last accessed : 01/05/2004 00:36:09
Last modified : 28/04/2004 17:21:55
"msbb.exe"Process terminated successfully.
#:34 [bpc.exe]
FilePath : C:\Program Files\RVP\
ThreadCreationTime : 30-04-2004 23:27:45
BasePriority : Normal
FileSize : 65 KB
Created on : 18/11/2003 23:48:29
Last accessed : 01/05/2004 00:36:10
Last modified : 18/11/2003 23:48:29
BroadCastPC Object recognized!
Type : Process
Data : bpc.exe
Object : C:\Program Files\RVP\
FileSize : 65 KB
Created on : 18/11/2003 23:48:29
Last accessed : 01/05/2004 00:36:10
Last modified : 18/11/2003 23:48:29
Warning! BroadCastPC object found in memory(bpc.exe)
"bpc.exe"Process terminated successfully.
#:35 [rundll32.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:27:45
BasePriority : Normal
FileSize : 9 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Ex
InternalName : rundll
OriginalFilename : RUNDLL.EXE
ProductName : Syst
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:10
Last modified : 16/12/1999
#:36 [whsurvey.exe]
FilePath : C:\Program Files\webHancer\Programs\
ThreadCreationTime : 30-04-2004 23:27:45
BasePriority : Normal
FileSize : 140 KB
FileVersion : 3.3.0
ProductVersion : 3.3.0
Copyright : Copyright
CompanyName : webHancer Corporation
FileDescription : webHancer Survey Companion
InternalName : whSurvey
OriginalFilename : whSurvey.exe
ProductName : webHancer Survey Companion
Created on : 29/01/2004 07:30:24
Last accessed : 01/05/2004 00:36:10
Last modified : 29/01/2004 07:30:24
#:37 [whagent.exe]
FilePath : C:\Program Files\webHancer\Programs\
ThreadCreationTime : 30-04-2004 23:27:50
BasePriority : Normal
FileSize : 168 KB
FileVersion : 3.3.0
ProductVersion : 3.3.0
Copyright : Copyright
CompanyName : webHancer Corporation
FileDescription : webHancer Customer Companion
InternalName : whAgent
OriginalFilename : whAgent.exe
ProductName : webHancer Customer Companion
Created on : 29/01/2004 07:30:24
Last accessed : 01/05/2004 00:36:10
Last modified : 29/01/2004 07:30:24
#:38 [ccapp.exe]
FilePath : C:\Program Files\Fichiers communs\Symantec Shared\
ThreadCreationTime : 30-04-2004 23:27:55
BasePriority : Normal
FileSize : 69 KB
FileVersion : 2.1.0.610
ProductVersion : 2.1.0.610
Copyright : Copyright (c) 2000-2003 Symantec Corporation. All rights reserved.
CompanyName : Symantec Corporation
FileDescription : Common Client User Session
InternalName : ccApp
OriginalFilename : ccApp.exe
ProductName : Common Client
Created on : 10/11/2003 13:30:02
Last accessed : 01/05/2004 00:36:10
Last modified : 10/11/2003 13:30:02
#:39 [internat.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:27:57
BasePriority : Normal
FileSize : 20 KB
FileVersion : 5.00.2920.0000
ProductVersion : 5.00.2920.0000
Copyright : Copyright (C) Microsoft Corp. 1994-1999
CompanyName : Microsoft Corporation
FileDescription : Application d'indication de langue du clavier
InternalName : INTERNAT
OriginalFilename : INTERNAT.EXE
ProductName : Syst
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:10
Last modified : 16/12/1999
#:40 [ypager.exe]
FilePath : C:\PROGRA~1\Yahoo!\MESSEN~1\
ThreadCreationTime : 30-04-2004 23:27:58
BasePriority : Normal
FileSize : 1496 KB
FileVersion : 5, 6, 0, 1358
ProductVersion : 5, 6, 0, 1358
Copyright : Copyright 1998-2003
CompanyName : Yahoo! Inc.
FileDescription : Yahoo! Messenger
InternalName : Yahoo! Messengerr
OriginalFilename : YPager.exe
ProductName : Yahoo! Messenger
Created on : 19/03/2004 19:45:39
Last accessed : 01/05/2004 00:32:07
Last modified : 26/12/2003 14:57:44
#:41 [backweb-8876480.exe]
FilePath : C:\Program Files\Logitech\Desktop Messenger\8876480\Program\
ThreadCreationTime : 30-04-2004 23:28:00
BasePriority : Normal
FileSize : 16 KB
Created on : 11/04/2004 21:30:49
Last accessed : 01/05/2004 00:36:10
Last modified : 11/04/2004 21:30:49
#:42 [rundll32.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:28:00
BasePriority : Normal
FileSize : 9 KB
FileVersion : 5.00.2134.1
ProductVersion : 5.00.2134.1
Copyright : Copyright (C) Microsoft Corp. 1981-1999
CompanyName : Microsoft Corporation
FileDescription : Ex
InternalName : rundll
OriginalFilename : RUNDLL.EXE
ProductName : Syst
Created on : 16/12/1999
Last accessed : 01/05/2004 00:36:10
Last modified : 16/12/1999
#:43 [a2guard.exe]
FilePath : C:\Program Files\a2\
ThreadCreationTime : 30-04-2004 23:28:03
BasePriority : Normal
FileSize : 608 KB
Created on : 13/12/2003 14:01:19
Last accessed : 01/05/2004 00:36:10
Last modified : 13/12/2003 14:01:19
#:44 [calcheck.exe]
FilePath : C:\Program Files\Ulead Systems\Ulead Photo Express 4.0 SE\
ThreadCreationTime : 30-04-2004 23:28:06
BasePriority : Normal
FileSize : 68 KB
FileVersion : 4, 0, 0, 0
ProductVersion : 4, 0, 0, 0
Copyright : Copyright (C) 1992-1999.Ulead Systems, Inc.
CompanyName : Ulead Systems, Inc.
FileDescription : Photo Express -- Calendar Checker
InternalName : CalCheck
OriginalFilename : CalCheck.EXE
ProductName : Calendar Checker Application
Created on : 23/02/2004 14:08:29
Last accessed : 01/05/2004 00:36:10
Last modified : 03/05/2002 11:05:26
#:45 [dslmon.exe]
FilePath : C:\Program Files\SAGEM\SAGEM F@st 800-840\
ThreadCreationTime : 30-04-2004 23:28:10
BasePriority : Normal
FileSize : 940 KB
FileVersion : 1, 0, 0, 1
ProductVersion : 1, 0, 0, 1
Copyright : Copyright (C) 2000
FileDescription : ADIMON MFC Application
InternalName : DSLMON
OriginalFilename : ADIMON.EXE
ProductName : DSLMON Application
Created on : 09/03/2004 16:36:56
Last accessed : 01/05/2004 00:36:10
Last modified : 01/07/2003 13:10:36
#:46 [wzqkpick.exe]
FilePath : C:\Program Files\WinZip\
ThreadCreationTime : 30-04-2004 23:28:28
BasePriority : Normal
FileSize : 116 KB
FileVersion : 1.0 (32-bit)
ProductVersion : 9.0 (6028)
Copyright : Copyright (c) WinZip Computing, Inc. 1991-2004 - All Rights Reserved
CompanyName : WinZip Computing, Inc.
FileDescription : WinZip Executable
InternalName : WZQKPICK.EXE
OriginalFilename : WZQKPICK.EXE
ProductName : WinZip
Created on : 27/03/2004 22:50:31
Last accessed : 01/05/2004 00:36:10
Last modified : 11/02/2004 07:00:00
#:47 [lvcoms.exe]
FilePath : C:\WINNT\system32\
ThreadCreationTime : 30-04-2004 23:28:31
BasePriority : Normal
FileSize : 124 KB
FileVersion : 7.3.0.1113
ProductVersion : 7.3.0.1113
Copyright : (c) 1996-2002 Logitech. All rights reserved.
CompanyName : Logitech Inc.
FileDescription : LVCom Server
InternalName : LVComS.exe
OriginalFilename : LVComS.exe
ProductName : Logitech ImageStudio
Created on : 10/04/2004 05:15:48
Last accessed : 01/05/2004 00:36:10
Last modified : 10/12/2002 10:54:04
#:48 [lanceur.exe]
FilePath : C:\Program Files\Club-Internet\Lanceur\
ThreadCreationTime : 30-04-2004 23:49:48
BasePriority : Normal
FileSize : 2652 KB
FileVersion : 5, 0, 1, 1
ProductVersion : 5, 0, 1, 1
Copyright : Copyright (C) T-Online France 2002 - 2003
CompanyName : T-ONLINE France
FileDescription : Lanceur V5.0.1.1
InternalName : Lanceur V5.0.1.0
OriginalFilename : lanceur.exe
ProductName : Lanceur V5.0.1.1
Created on : 09/03/2004 16:45:54
Last accessed : 30/04/2004 23:49:49
Last modified : 09/10/2003 10:23:06
#:49 [msiexec.exe]
FilePath : C:\WINNT\System32\
ThreadCreationTime : 01-05-2004 00:33:38
BasePriority : Normal
FileSize : 63 KB
FileVersion : 2.0.2600.1183
ProductVersion : 2.0.2600.1183
Copyright : Copyright
CompanyName : Microsoft Corporation
FileDescription : Windows
InternalName : msiexec
OriginalFilename : msiexec.exe
ProductName : Windows Installer - Unicode
Created on : 25/03/2004 16:49:57
Last accessed : 01/05/2004 00:33:38
Last modified : 19/06/2003 19:05:04
#:50 [ad-aware.exe]
FilePath : C:\PROGRA~1\Lavasoft\AD-AWA~1\
ThreadCreationTime : 01-05-2004 00:35:12
BasePriority : Normal
FileSize : 668 KB
FileVersion : 6.0.1.181
ProductVersion : 6.0.0.0
Copyright : Copyright
CompanyName : Lavasoft Sweden
FileDescription : Ad-aware 6 core application
InternalName : Ad-aware.exe
OriginalFilename : Ad-aware.exe
ProductName : Lavasoft Ad-aware Plus
Created on : 01/05/2004 00:35:03
Last accessed : 01/05/2004 00:35:03
Last modified : 12/07/2003 19:00:20
Memory scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 2
Objects found so far: 2
Started registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
180Solutions Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : SOFTWARE\180solutions
180Solutions Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : SOFTWARE\180solutions\msbb
180Solutions Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\nCASE
180Solutions Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Uninstall\msbb
180Solutions Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Uninstall\nCASE
BroadCastPC Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\RVP
BroadCastPC Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\RVP
GMSoft Dialer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : Software\GMsoft\Dialers
IBIS Toolbar Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{26E8361F-BCE7-4F75-A347-98C88B418321}
IBIS Toolbar Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\HAUTO_UNINSTALL
IBIS Toolbar Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Typelib\{26E8361F-BCE7-4F75-A347-98C88B418328}
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{4A2AACF3-ADF6-11D5-98A9-00E018981B9E}
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4A2AACF3-ADF6-11D5-98A9-00E018981B9E}
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\New.net
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\New.net
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : software\new.net
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Tldctl2.URLLink
New.Net Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Tldctl2.URLLink.1
SafeSearch Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : safesearch.safesearchbho.1
SafeSearch Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : safesearch.safesearchbho
SafeSearch Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : TYPELIB\{c2faa6e5-2c71-4567-bd0d-64e3c670fdcf}
StopPop Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{4534CD6B-59D6-43FD-864B-06A0D843444A}
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{000020DD-C72E-4113-AF77-DD56626C6C42}
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\twaintec
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : TwaintecDll.TwaintecDllObj.1
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : TypeLib\{690BCCB4-6B83-4203-AE77-038C116594EC}
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : vx2.vx2obj
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : CLSID\{c900b400-cdfe-11d3-976a-00e02913a9e0}
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : Interface\{C89435B0-CDFE-11D3-976A-00E02913A9E0}
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{c900b400-cdfe-11d3-976a-00e02913a9e0}
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Uninstall\webHancer Agent
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\whSurvey
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\webHancer
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : TypeLib\{C8CB3870-CDFE-11D3-976A-00E02913A9E0}
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : WhIeHelperObj.WhIeHelperObj
WebHancer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CLASSES_ROOT
Object : WhIeHelperObj.WhIeHelperObj.1
BroadCastPC Object recognized!
Type : RegValue
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\RUN
Value : RVP
New.Net Object recognized!
Type : RegValue
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Value : New.net Startup
WebHancer Object recognized!
Type : RegValue
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : webHancer Agent
Registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 39
Objects found so far: 41
Started deep registry scan
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
180Solutions Object recognized!
Type : RegValue
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : msbb
VX2.BetterInternet Object recognized!
Type : RegValue
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : Software\Microsoft\Windows\CurrentVersion\Run
Value : alchem
VX2.BetterInternet Object recognized!
Type : File
Data : alchem.exe
Object : c:\winnt\
FileSize : 240 KB
FileVersion : 0, 2, 1, 3
ProductVersion : 0, 2, 1, 3
Copyright : Copyright
CompanyName : ClickAlchemy
FileDescription : www.clickalchemy.com
Created on : 28/04/2004 23:52:06
Last accessed : 01/05/2004 00:37:40
Last modified : 12/03/2004 07:17:20
VX2.BetterInternet Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_LOCAL_MACHINE
Object : SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000020DD-C72E-4113-AF77-DD56626C6C42}
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer New.net UDP Chain
WebHancer Object recognized!
Type : File
Data : webhdll.dll
Object : c:\winnt\
FileSize : 40 KB
FileVersion : 3.3.0
ProductVersion : 3.3.0
Copyright : Copyright
CompanyName : webHancer Corporation
FileDescription : webHancer Winsock2 SPI
InternalName : webhdll
OriginalFilename : webhdll.dll
ProductName : webHancer Customer Companion
Created on : 29/01/2004 07:29:52
Last accessed : 01/05/2004 00:37:55
Last modified : 29/01/2004 07:29:52
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer New.net UDP Chain
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer New.net TCP Chain
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer New.net TCP Chain
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer MSAFD Tcpip [TCP/IP]
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer MSAFD Tcpip [TCP/IP]
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer MSAFD Tcpip [UDP/IP]
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer MSAFD Tcpip [UDP/IP]
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net UDP Chain
New.Net Object recognized!
Type : File
Data : newdotnet6_22.dll
Object : c:\program files\newdotnet\
FileSize : 220 KB
FileVersion : 6, 0, 0, 22
ProductVersion : 6, 0, 0, 22
Copyright : Copyright 2000-2002 New.net, Inc.
CompanyName : New.net, Inc.
FileDescription : New.net Domains
InternalName : tldctl2
OriginalFilename : tldctl2.dll
ProductName : New.net Domains
Created on : 28/04/2004 17:23:27
Last accessed : 01/05/2004 00:32:06
Last modified : 28/04/2004 17:23:17
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net UDP Chain
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net TCP Chain
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net TCP Chain
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net TCP Filter
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net TCP Filter
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net UDP Filter
New.Net Object recognized!
Type : LSP
Data : c:\program files\newdotnet\newdotnet6_22.dll
Layered Service Provider: New.net UDP Filter
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer
WebHancer Object recognized!
Type : LSP
Data : c:\winnt\webhdll.dll
Layered Service Provider: webHancer
Deep registry scan result :
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
New objects : 21
Objects found so far: 65
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Tracking Cookie Object recognized!
Type : File
Data : ibm@180solutions[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 17:15:32
Last accessed : 01/05/2004 00:37:56
Last modified : 29/04/2004 17:15:32
Tracking Cookie Object recognized!
Type : File
Data : ibm@advertising[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 19:40:18
Last accessed : 01/05/2004 00:37:56
Last modified : 30/04/2004 19:40:18
Tracking Cookie Object recognized!
Type : File
Data : ibm@bfast[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 23:35:27
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 23:35:27
Tracking Cookie Object recognized!
Type : File
Data : ibm@bis.180solutions[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 17:22:01
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 17:22:01
Tracking Cookie Object recognized!
Type : File
Data : ibm@bluestreak[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 01/05/2004 00:32:38
Last accessed : 01/05/2004 00:33:01
Last modified : 01/05/2004 00:33:01
Tracking Cookie Object recognized!
Type : File
Data : ibm@datemeister[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 09:41:55
Last accessed : 01/05/2004 00:37:56
Last modified : 29/04/2004 09:41:55
Tracking Cookie Object recognized!
Type : File
Data : ibm@doubleclick[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 16:25:19
Last accessed : 01/05/2004 00:37:56
Last modified : 30/04/2004 16:25:38
Tracking Cookie Object recognized!
Type : File
Data : ibm@ehg-cafepress.hitbox[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 23:37:14
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 23:37:14
Tracking Cookie Object recognized!
Type : File
Data : ibm@fortunecity[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 01/05/2004 00:06:09
Last accessed : 01/05/2004 00:06:09
Last modified : 01/05/2004 00:06:09
Tracking Cookie Object recognized!
Type : File
Data : ibm@gator[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 01/05/2004 00:06:10
Last accessed : 01/05/2004 00:06:10
Last modified : 01/05/2004 00:06:10
Tracking Cookie Object recognized!
Type : File
Data : ibm@gold.weborama[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 19:40:20
Last accessed : 01/05/2004 00:37:56
Last modified : 30/04/2004 19:40:20
Tracking Cookie Object recognized!
Type : File
Data : ibm@hitbox[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 23:37:14
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 23:37:14
Tracking Cookie Object recognized!
Type : File
Data : ibm@mediaplex[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 08:50:47
Last accessed : 01/05/2004 00:37:56
Last modified : 29/04/2004 08:50:47
Tracking Cookie Object recognized!
Type : File
Data : ibm@overture[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 21:40:55
Last accessed : 01/05/2004 00:30:58
Last modified : 01/05/2004 00:30:58
Tracking Cookie Object recognized!
Type : File
Data : ibm@qksrv[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 01/05/2004 00:01:52
Last accessed : 01/05/2004 00:01:52
Last modified : 01/05/2004 00:01:52
Tracking Cookie Object recognized!
Type : File
Data : ibm@realmedia[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 20:05:17
Last accessed : 01/05/2004 00:37:56
Last modified : 29/04/2004 20:05:17
Tracking Cookie Object recognized!
Type : File
Data : ibm@realmedia[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 22:49:16
Last accessed : 01/05/2004 00:37:56
Last modified : 30/04/2004 22:49:16
Tracking Cookie Object recognized!
Type : File
Data : ibm@servedby.advertising[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 19:40:18
Last accessed : 01/05/2004 00:37:56
Last modified : 30/04/2004 19:40:18
Tracking Cookie Object recognized!
Type : File
Data : ibm@sexlist[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 23:46:07
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 23:46:07
Tracking Cookie Object recognized!
Type : File
Data : ibm@statcounter[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 23:44:32
Last accessed : 01/05/2004 00:37:56
Last modified : 28/04/2004 23:44:32
Tracking Cookie Object recognized!
Type : File
Data : ibm@tradedoubler[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 08:50:43
Last accessed : 01/05/2004 00:37:57
Last modified : 29/04/2004 08:50:43
Tracking Cookie Object recognized!
Type : File
Data : ibm@valueclick[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 28/04/2004 17:51:27
Last accessed : 01/05/2004 00:37:57
Last modified : 28/04/2004 17:51:27
Tracking Cookie Object recognized!
Type : File
Data : ibm@weborama[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 23:10:16
Last accessed : 01/05/2004 00:37:57
Last modified : 30/04/2004 23:10:16
Tracking Cookie Object recognized!
Type : File
Data : ibm@xxxtoolbar[2].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 29/04/2004 17:03:14
Last accessed : 01/05/2004 00:37:57
Last modified : 30/04/2004 19:48:16
Tracking Cookie Object recognized!
Type : File
Data : ibm@z1.adserver[1].txt
Object : C:\Documents and Settings\IBM\Cookies\
Created on : 30/04/2004 23:37:35
Last accessed : 30/04/2004 23:39:46
Last modified : 30/04/2004 23:39:46
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Deep scanning and examining files (C:)
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
Performing conditional scans..
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
180Solutions Object recognized!
Type : Folder
Object : c:\program files\N-case
BroadCastPC Object recognized!
Type : Folder
Object : c:\program files\RVP
BroadCastPC Object recognized!
Type : Folder
Object : c:\docume~1\ibm\locals~1\temp\9.exe
BroadCastPC Object recognized!
Type : File
Data : uninst.exe
Object : c:\program files\rvp\
FileSize : 34 KB
Created on : 28/04/2004 17:22:14
Last accessed : 01/05/2004 00:38:15
Last modified : 28/04/2004 17:22:14
BroadCastPC Object recognized!
Type : File
Data : 9.exe
Object : c:\docume~1\ibm\locals~1\temp\9.exe\
FileSize : 70 KB
Created on : 28/04/2004 17:22:16
Last accessed : 01/05/2004 00:38:15
Last modified : 28/04/2004 17:22:21
GMSoft Dialer Object recognized!
Type : RegKey
Data :
Rootkey : HKEY_CURRENT_USER
Object : Software\GMSoft
GMSoft Dialer Object recognized!
Type : Folder
Object : c:\program files\gmsoft
GMSoft Dialer Object recognized!
Type : Folder
Object : c:\program files\gmsoft\dialers
GMSoft Dialer Object recognized!
Type : File
Data : wk_2.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 10:40:56
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 10:40:56
GMSoft Dialer Object recognized!
Type : File
Data : wk_3.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 10:41:22
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 10:41:22
GMSoft Dialer Object recognized!
Type : File
Data : wk_4.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 12:45:51
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 12:45:51
GMSoft Dialer Object recognized!
Type : File
Data : wk_5.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 12:46:24
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 12:46:24
GMSoft Dialer Object recognized!
Type : File
Data : wk_6.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 17:20:44
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 17:20:44
GMSoft Dialer Object recognized!
Type : File
Data : wk_7.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 17:21:06
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 17:21:06
GMSoft Dialer Object recognized!
Type : File
Data : wk_8.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 23:28:56
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 23:28:56
GMSoft Dialer Object recognized!
Type : File
Data : wk_86.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 16:23:02
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 16:23:02
GMSoft Dialer Object recognized!
Type : File
Data : wk_87.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 16:23:20
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 16:23:20
GMSoft Dialer Object recognized!
Type : File
Data : wk_9.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 30/04/2004 23:29:39
Last accessed : 01/05/2004 00:38:15
Last modified : 30/04/2004 23:29:39
GMSoft Dialer Object recognized!
Type : File
Data : wk_c6.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 29/04/2004 16:10:39
Last accessed : 01/05/2004 00:38:15
Last modified : 29/04/2004 16:10:39
GMSoft Dialer Object recognized!
Type : File
Data : wk_c7.tmp
Object : c:\docume~1\ibm\locals~1\temp\
Created on : 29/04/2004 16:11:10
Last accessed : 01/05/2004 00:38:15
Last modified : 29/04/2004 16:11:10
GMSoft Dialer Object recognized!
Type : File
Data : hot_it
Object : c:\program files\gmsoft\dialers\
Created on : 23/04/2004 21:46:58
Last accessed : 01/05/2004 00:36:09
Last modified : 23/04/2004 21:46:58
IBIS Toolbar Object recognized!
Type : RegKey
Data :
Essaye avec Everest, que tu peux trouver là => http://www.clubic.com/telecharger-fiche12281-everest.html <=
Dans la rubrique logiciel du programme, tu pourras afficher la liste des processus qui se lancent automatiquement au démarrage de ton ordi. Si tu utilise la même verson de windows depuis longtemps, elle doit être bien longue, et ça ralenti beaucoup l'animal.
Le mieux que tu puisse faire c'est supprimer tous les processus qui t'inspirent pas confiance, ou ceux que tu connais pas. De toute façon il ne te permet pas de supprimer les lancement des programmes importants de windows alors t'as pas de soucis à te faire... tout au plus si tu vire un peu trop tu pourrais avoir quelques programmes à réinstaller...
Dans la rubrique logiciel du programme, tu pourras afficher la liste des processus qui se lancent automatiquement au démarrage de ton ordi. Si tu utilise la même verson de windows depuis longtemps, elle doit être bien longue, et ça ralenti beaucoup l'animal.
Le mieux que tu puisse faire c'est supprimer tous les processus qui t'inspirent pas confiance, ou ceux que tu connais pas. De toute façon il ne te permet pas de supprimer les lancement des programmes importants de windows alors t'as pas de soucis à te faire... tout au plus si tu vire un peu trop tu pourrais avoir quelques programmes à réinstaller...
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
Après vérification, la nouvelle version d'Everest ne permet plus la supression des processus au démarrage, il faut que tu télécharge la version 1.51
http://www.blue-hardware.com/divers/download/telecharge205.php
http://www.blue-hardware.com/divers/download/telecharge205.php
