جهازي مصاب وهذا التقرير
BitDefender QuickScan Beta 0.9.3.4 - Apr 3 2009, 03:29:02
----------------------------------------------------------------
Scan date/time: Sat Apr 04 23:52:50 2009
Machine Id: 6CD261C1
Processes
----------
<unsigned> cqkky.exe 392 C:\documents and settings\allal\local settings\application data\cqkky.exe
<unsigned> SoundMAX service agent component 1692 C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
<unsigned> SoundMAX System Tray 176 C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
<unsigned> Internet Mobile.exe 2456 C:\Program Files\Internet Mobile\Internet Mobile.exe
<unsigned> SiS Compatible Super VGA Keyboard Daemon 128 C:\WINDOWS\system32\keyhook.exe
<unsigned> SiS Compatible Super VGA Tray Application 824 C:\WINDOWS\system32\sistray.exe
<unsigned> 1712 x 2560 220 C:\windows\system32\ZakariaG.jpg.exe
<unsigned> Internet Download Manager (IDM) 344 D:\Program Files\Internet Download Manager\IDMan.exe
<verified> SoftwareHelper 212 C:\Documents and Settings\allal\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
<verified> Eset GUI 256 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
<verified> Eset Service 1408 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
<verified> GoogleToolbarNotifier 356 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
<verified> Internet Explorer 768 C:\Program Files\Internet Explorer\iexplore.exe
<verified> Java(TM) Quick Starter Service 1496 C:\Program Files\Java\jre6\bin\jqs.exe
<verified> Microsoft Office OneNote Quick Launcher 1196 C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
<verified> Microsoft SeaPort Search Enhancement Broker 1592 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
<verified> Windows Live Communications Platform 3212 C:\Program Files\Windows Live\Contacts\wlcomm.exe
<verified> Family Safety Service 1432 C:\Program Files\Windows Live\Family Safety\fsssvc.exe
<verified> Family Safety Client 248 C:\Program Files\Windows Live\Family Safety\fsui.exe
<verified> Windows Live Messenger 3100 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
<verified> Windows Live Toolbar User Elevation Helper 2240 C:\Program Files\Windows Live\Toolbar\wltuser.exe
<verified> Explorateur Windows 3876 C:\WINDOWS\explorer.exe
<verified> Application Layer Gateway Service 2004 C:\WINDOWS\System32\alg.exe
<verified> Client Server Runtime Process 516 C:\WINDOWS\system32\csrss.exe
<verified> CTF Loader 264 C:\WINDOWS\system32\ctfmon.exe
<verified> Débogueur Postmortem Dr Watson 1124 C:\WINDOWS\system32\drwtsn32.exe
<verified> Débogueur Postmortem Dr Watson 2832 C:\WINDOWS\system32\drwtsn32.exe
<verified> Débogueur Postmortem Dr Watson 3208 C:\WINDOWS\system32\drwtsn32.exe
<verified> LSA Shell (Export Version) 596 C:\WINDOWS\system32\lsass.exe
<verified> Applications Services et Contrôleur 584 C:\WINDOWS\system32\services.exe
<verified> Gestionnaire de session Windows NT 440 C:\WINDOWS\System32\smss.exe
<verified> Spooler SubSystem App 1288 C:\WINDOWS\system32\spoolsv.exe
<verified> Generic Host Process for Win32 Services 872 C:\WINDOWS\System32\svchost.exe
<verified> Generic Host Process for Win32 Services 836 C:\WINDOWS\system32\svchost.exe
<verified> Generic Host Process for Win32 Services 760 C:\WINDOWS\system32\svchost.exe
<verified> Generic Host Process for Win32 Services 960 C:\WINDOWS\system32\svchost.exe
<verified> Generic Host Process for Win32 Services 920 C:\WINDOWS\system32\svchost.exe
<verified> Service de la carte de performance WMI 2424 C:\WINDOWS\system32\wbem\wmiapsrv.exe
<verified> Application d'ouverture de session Windows NT 540 C:\WINDOWS\system32\winlogon.exe
<verified> Internet Download Manager agent for click monitori 2260 D:\Program Files\Internet Download Manager\IEMonitor.exe
Autoruns and critical files
---------------------------
c:\documents and settings\allal\application data\eorezo\softwareupdate\softwareupdatehp.exe
c:\documents and settings\allal\local settings\application data\cqkky.exe
c:\program files\analog devices\soundmax\smtray.exe
c:\program files\eset\eset nod32 antivirus\egui.exe
c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe
c:\program files\microsoft office\office12\onenotem.exe
c:\program files\windows live\family safety\fsui.exe
c:\program files\windows live\messenger\msnmsgr.exe
c:\windows\sisusbrg.exe
c:\windows\system32\crypt32.dll
c:\windows\system32\cryptnet.dll
c:\windows\system32\cscdll.dll
c:\windows\system32\ctfmon.exe
c:\windows\system32\dimsntfy.dll
c:\windows\system32\ime\pintlgnt\imscinst.exe
c:\windows\system32\ime\tintlgnt\tintsetp.exe
c:\windows\system32\keyhook.exe
c:\windows\system32\logonui.exe
c:\windows\system32\msfeedssync.exe
c:\windows\system32\mswsock.dll
c:\windows\system32\rsvpsp.dll
c:\windows\system32\sclgntfy.dll
c:\windows\system32\sistray.exe
c:\windows\system32\wgalogon.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wlnotify.dll
c:\windows\system32\zakariag.jpg.exe
d:\program files\internet download manager\idman.exe
Browser plugins
---------------
c:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll
c:\program files\asksearch\bin\defaultsearch.dll
c:\program files\fichiers communs\microsoft shared\windows live\windowslivelogin.dll
c:\program files\google\googletoolbarnotifier\5.0.926.3450\swg.dll
c:\program files\java\jre6\bin\jp2ssv.dll
c:\program files\java\jre6\bin\ssv.dll
c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
c:\program files\messenger\msmsgs.exe
c:\program files\microsoft office\office12\grooveshellextensions.dll
c:\program files\microsoft silverlight\2.0.40115.0\npctrl.dll
c:\program files\microsoft\office live\npolw.dll
c:\program files\microsoft\search enhancement pack\search helper\searchhelper.dll
c:\program files\windows live\family safety\fssbho.dll
c:\program files\windows live\photo gallery\npwlpg.dll
c:\program files\windows live\toolbar\wltcore.dll
c:\windows\downloaded program files\activeqscan.ocx
c:\windows\downloaded program files\fp_ax_cab_installer.exe
c:\windows\network diagnostic\xpnetdiag.exe
c:\windows\system32\adobe\director\np32dsw.dll
c:\windows\system32\ieframe.dll
d:\program files\internet download manager\idmiecc.dll
Scan
----
The following files must be uploaded for server-side scanning:
C:\windows\system32\ZakariaG.jpg.exe
C:\documents and settings\allal\local settings\application data\cqkky.exe
C:\Program Files\Internet Mobile\Internet Mobile.exe
Upload started - 2 file(s)
Upload: C:\windows\system32\ZakariaG.jpg.exe - (highly recommended) 54272 bytes, hash: cfa7244e664f135270dd9f4fb500cb5e
Upload: C:\documents and settings\allal\local settings\application data\cqkky.exe - (recommended) 278528 bytes, hash: f417c662067983171e3e8000705cad6c
----------------------------------------------------------------
Scan date/time: Sat Apr 04 23:52:50 2009
Machine Id: 6CD261C1
Processes
----------
<unsigned> cqkky.exe 392 C:\documents and settings\allal\local settings\application data\cqkky.exe
<unsigned> SoundMAX service agent component 1692 C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
<unsigned> SoundMAX System Tray 176 C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
<unsigned> Internet Mobile.exe 2456 C:\Program Files\Internet Mobile\Internet Mobile.exe
<unsigned> SiS Compatible Super VGA Keyboard Daemon 128 C:\WINDOWS\system32\keyhook.exe
<unsigned> SiS Compatible Super VGA Tray Application 824 C:\WINDOWS\system32\sistray.exe
<unsigned> 1712 x 2560 220 C:\windows\system32\ZakariaG.jpg.exe
<unsigned> Internet Download Manager (IDM) 344 D:\Program Files\Internet Download Manager\IDMan.exe
<verified> SoftwareHelper 212 C:\Documents and Settings\allal\Application Data\eoRezo\SoftwareUpdate\SoftwareUpdateHP.exe
<verified> Eset GUI 256 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
<verified> Eset Service 1408 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
<verified> GoogleToolbarNotifier 356 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
<verified> Internet Explorer 768 C:\Program Files\Internet Explorer\iexplore.exe
<verified> Java(TM) Quick Starter Service 1496 C:\Program Files\Java\jre6\bin\jqs.exe
<verified> Microsoft Office OneNote Quick Launcher 1196 C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
<verified> Microsoft SeaPort Search Enhancement Broker 1592 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
<verified> Windows Live Communications Platform 3212 C:\Program Files\Windows Live\Contacts\wlcomm.exe
<verified> Family Safety Service 1432 C:\Program Files\Windows Live\Family Safety\fsssvc.exe
<verified> Family Safety Client 248 C:\Program Files\Windows Live\Family Safety\fsui.exe
<verified> Windows Live Messenger 3100 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
<verified> Windows Live Toolbar User Elevation Helper 2240 C:\Program Files\Windows Live\Toolbar\wltuser.exe
<verified> Explorateur Windows 3876 C:\WINDOWS\explorer.exe
<verified> Application Layer Gateway Service 2004 C:\WINDOWS\System32\alg.exe
<verified> Client Server Runtime Process 516 C:\WINDOWS\system32\csrss.exe
<verified> CTF Loader 264 C:\WINDOWS\system32\ctfmon.exe
<verified> Débogueur Postmortem Dr Watson 1124 C:\WINDOWS\system32\drwtsn32.exe
<verified> Débogueur Postmortem Dr Watson 2832 C:\WINDOWS\system32\drwtsn32.exe
<verified> Débogueur Postmortem Dr Watson 3208 C:\WINDOWS\system32\drwtsn32.exe
<verified> LSA Shell (Export Version) 596 C:\WINDOWS\system32\lsass.exe
<verified> Applications Services et Contrôleur 584 C:\WINDOWS\system32\services.exe
<verified> Gestionnaire de session Windows NT 440 C:\WINDOWS\System32\smss.exe
<verified> Spooler SubSystem App 1288 C:\WINDOWS\system32\spoolsv.exe
<verified> Generic Host Process for Win32 Services 872 C:\WINDOWS\System32\svchost.exe
<verified> Generic Host Process for Win32 Services 836 C:\WINDOWS\system32\svchost.exe
<verified> Generic Host Process for Win32 Services 760 C:\WINDOWS\system32\svchost.exe
<verified> Generic Host Process for Win32 Services 960 C:\WINDOWS\system32\svchost.exe
<verified> Generic Host Process for Win32 Services 920 C:\WINDOWS\system32\svchost.exe
<verified> Service de la carte de performance WMI 2424 C:\WINDOWS\system32\wbem\wmiapsrv.exe
<verified> Application d'ouverture de session Windows NT 540 C:\WINDOWS\system32\winlogon.exe
<verified> Internet Download Manager agent for click monitori 2260 D:\Program Files\Internet Download Manager\IEMonitor.exe
Autoruns and critical files
---------------------------
c:\documents and settings\allal\application data\eorezo\softwareupdate\softwareupdatehp.exe
c:\documents and settings\allal\local settings\application data\cqkky.exe
c:\program files\analog devices\soundmax\smtray.exe
c:\program files\eset\eset nod32 antivirus\egui.exe
c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe
c:\program files\microsoft office\office12\onenotem.exe
c:\program files\windows live\family safety\fsui.exe
c:\program files\windows live\messenger\msnmsgr.exe
c:\windows\sisusbrg.exe
c:\windows\system32\crypt32.dll
c:\windows\system32\cryptnet.dll
c:\windows\system32\cscdll.dll
c:\windows\system32\ctfmon.exe
c:\windows\system32\dimsntfy.dll
c:\windows\system32\ime\pintlgnt\imscinst.exe
c:\windows\system32\ime\tintlgnt\tintsetp.exe
c:\windows\system32\keyhook.exe
c:\windows\system32\logonui.exe
c:\windows\system32\msfeedssync.exe
c:\windows\system32\mswsock.dll
c:\windows\system32\rsvpsp.dll
c:\windows\system32\sclgntfy.dll
c:\windows\system32\sistray.exe
c:\windows\system32\wgalogon.dll
c:\windows\system32\winrnr.dll
c:\windows\system32\wlnotify.dll
c:\windows\system32\zakariag.jpg.exe
d:\program files\internet download manager\idman.exe
Browser plugins
---------------
c:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll
c:\program files\asksearch\bin\defaultsearch.dll
c:\program files\fichiers communs\microsoft shared\windows live\windowslivelogin.dll
c:\program files\google\googletoolbarnotifier\5.0.926.3450\swg.dll
c:\program files\java\jre6\bin\jp2ssv.dll
c:\program files\java\jre6\bin\ssv.dll
c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
c:\program files\messenger\msmsgs.exe
c:\program files\microsoft office\office12\grooveshellextensions.dll
c:\program files\microsoft silverlight\2.0.40115.0\npctrl.dll
c:\program files\microsoft\office live\npolw.dll
c:\program files\microsoft\search enhancement pack\search helper\searchhelper.dll
c:\program files\windows live\family safety\fssbho.dll
c:\program files\windows live\photo gallery\npwlpg.dll
c:\program files\windows live\toolbar\wltcore.dll
c:\windows\downloaded program files\activeqscan.ocx
c:\windows\downloaded program files\fp_ax_cab_installer.exe
c:\windows\network diagnostic\xpnetdiag.exe
c:\windows\system32\adobe\director\np32dsw.dll
c:\windows\system32\ieframe.dll
d:\program files\internet download manager\idmiecc.dll
Scan
----
The following files must be uploaded for server-side scanning:
C:\windows\system32\ZakariaG.jpg.exe
C:\documents and settings\allal\local settings\application data\cqkky.exe
C:\Program Files\Internet Mobile\Internet Mobile.exe
Upload started - 2 file(s)
Upload: C:\windows\system32\ZakariaG.jpg.exe - (highly recommended) 54272 bytes, hash: cfa7244e664f135270dd9f4fb500cb5e
Upload: C:\documents and settings\allal\local settings\application data\cqkky.exe - (recommended) 278528 bytes, hash: f417c662067983171e3e8000705cad6c
