Avira AntiVir Personal Report file date: dimanche 25 mai 2008 23:59 Scanning for 1286436 virus strains and unwanted programs. Licensed to: Avira AntiVir PersonalEdition Classic Serial number: 0000149996-ADJIE-0001 Platform: Windows XP Windows version: (Service Pack 2) [5.1.2600] Boot mode: Save mode Username: Malekal_morte Computer name: PROUTCOMPUTER Version information: BUILD.DAT : 8.1.00.295 16479 Bytes 09/04/2008 16:24:00 AVSCAN.EXE : 8.1.2.12 311553 Bytes 18/03/2008 18:02:56 AVSCAN.DLL : 8.1.1.0 53505 Bytes 07/02/2008 17:43:37 LUKE.DLL : 8.1.2.9 151809 Bytes 28/02/2008 17:41:23 LUKERES.DLL : 8.1.2.1 12033 Bytes 21/02/2008 17:28:40 ANTIVIR0.VDF : 6.40.0.0 11030528 Bytes 18/07/2007 19:33:34 ANTIVIR1.VDF : 7.0.3.2 5447168 Bytes 07/03/2008 22:08:58 ANTIVIR2.VDF : 7.0.4.53 1848832 Bytes 17/05/2008 10:34:32 ANTIVIR3.VDF : 7.0.4.88 158720 Bytes 25/05/2008 12:53:20 Engineversion : 8.1.0.46 AEVDF.DLL : 8.1.0.5 102772 Bytes 25/02/2008 18:58:21 AESCRIPT.DLL : 8.1.0.33 266618 Bytes 17/05/2008 10:35:07 AESCN.DLL : 8.1.0.18 119156 Bytes 17/05/2008 10:35:03 AERDL.DLL : 8.1.0.20 418165 Bytes 11/05/2008 11:13:30 AEPACK.DLL : 8.1.1.5 364918 Bytes 17/05/2008 10:35:01 AEOFFICE.DLL : 8.1.0.18 192890 Bytes 11/05/2008 11:13:28 AEHEUR.DLL : 8.1.0.29 1253750 Bytes 17/05/2008 10:34:49 AEHELP.DLL : 8.1.0.14 115063 Bytes 11/05/2008 11:13:25 AEGEN.DLL : 8.1.0.21 303477 Bytes 17/05/2008 10:34:38 AEEMU.DLL : 8.1.0.6 430451 Bytes 11/05/2008 11:13:23 AECORE.DLL : 8.1.0.29 168311 Bytes 17/05/2008 10:34:34 AVWINLL.DLL : 1.0.0.7 14593 Bytes 24/01/2008 02:07:53 AVPREF.DLL : 8.0.0.1 25857 Bytes 18/02/2008 19:37:50 AVREP.DLL : 7.0.0.1 155688 Bytes 16/04/2007 22:26:47 AVREG.DLL : 8.0.0.0 30977 Bytes 24/01/2008 02:07:49 AVARKT.DLL : 1.0.0.23 307457 Bytes 12/02/2008 17:29:23 AVEVTLOG.DLL : 8.0.0.11 114945 Bytes 28/02/2008 17:31:31 SQLITE3.DLL : 3.3.17.1 339968 Bytes 23/01/2008 02:28:02 SMTPLIB.DLL : 1.2.0.19 28929 Bytes 24/01/2008 02:08:39 NETNT.DLL : 8.0.0.1 7937 Bytes 25/01/2008 21:05:10 RCIMAGE.DLL : 8.0.0.35 2371841 Bytes 10/03/2008 23:37:25 RCTEXT.DLL : 8.0.32.0 86273 Bytes 06/03/2008 21:02:11 Configuration settings for the scan: Jobname..........................: Local Hard Disks Configuration file...............: c:\program files\avira\antivir personaledition classic\alldiscs.avp Logging..........................: low Primary action...................: interactive Secondary action.................: ignore Scan master boot sector..........: on Scan boot sector.................: on Boot sectors.....................: C:, Scan memory......................: on Process scan.....................: on Scan registry....................: on Search for rootkits..............: off Scan all files...................: Intelligent file selection Scan archives....................: on Recursion depth..................: 20 Smart extensions.................: on Macro heuristic..................: on File heuristic...................: medium Start of the scan: dimanche 25 mai 2008 23:59 The scan of running processes will be started Scan process 'avscan.exe' - '1' Module(s) have been scanned Scan process 'wmiprvse.exe' - '1' Module(s) have been scanned Scan process 'i.exe' - '1' Module(s) have been scanned Module is infected -> 'C:\Documents and Settings\Malekal_morte\Desktop\i.exe' Scan process 'avcenter.exe' - '1' Module(s) have been scanned Scan process 'ashSimp2.exe' - '1' Module(s) have been scanned Scan process 'avgnt.exe' - '1' Module(s) have been scanned Scan process 'explorer.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'svchost.exe' - '1' Module(s) have been scanned Scan process 'lsass.exe' - '1' Module(s) have been scanned Scan process 'services.exe' - '1' Module(s) have been scanned Scan process 'winlogon.exe' - '1' Module(s) have been scanned Scan process 'csrss.exe' - '1' Module(s) have been scanned Scan process 'smss.exe' - '1' Module(s) have been scanned 15 processes with 15 modules were scanned Starting master boot sector scan: Master boot sector HD0 [INFO] No virus was found! Start scanning boot sectors: Boot sector 'C:\' [INFO] No virus was found! Starting to scan the registry. C:\WINDOWS\system32\WinCtrl32.dll [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msctrl.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msavsc.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msscan.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msiemon.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msfw.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! c:\z_Drivers\svchost.exe [DETECTION] Is the Trojan horse TR/Click.Delf.LP [WARNING] The file was ignored! c:\z_Drivers\svchost.exe [DETECTION] Is the Trojan horse TR/Click.Delf.LP [WARNING] The file was ignored! c:\z_Drivers\svchost.exe [DETECTION] Is the Trojan horse TR/Click.Delf.LP [WARNING] The file was ignored! c:\z_Drivers\svchost.exe [DETECTION] Is the Trojan horse TR/Click.Delf.LP [WARNING] The file was ignored! c:\z_Drivers\svchost.exe [DETECTION] Is the Trojan horse TR/Click.Delf.LP [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msctrl.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msavsc.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msscan.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msiemon.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msfw.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Documents and Settings\Malekal_morte\Desktop\i.exe [DETECTION] Is the Trojan horse TR/Crypt.CFI.Gen [WARNING] The file was ignored! C:\WINDOWS\system32\jownw64r.exe [DETECTION] Is the Trojan horse TR/Downloader.Gen [WARNING] The file was ignored! The registry was scanned ( '44' files ). Starting the file scan: Begin scan in 'C:\' C:\0xf9.exe [DETECTION] Is the Trojan horse TR/Dldr.Tiny.BN.1 [WARNING] The file was ignored! C:\asasa.exe [DETECTION] Is the Trojan horse TR/Dldr.Tiny.BN.1 [WARNING] The file was ignored! C:\pagefile.sys [WARNING] The file could not be opened! C:\svchost.exe [DETECTION] Is the Trojan horse TR/Dldr.Agent.pgf [WARNING] The file was ignored! C:\svchost2.exe [DETECTION] Is the Trojan horse TR/Dldr.Agent.pgf [WARNING] The file was ignored! C:\syst.exe [DETECTION] Is the Trojan horse TR/Dldr.Tiny.BN.1 [WARNING] The file was ignored! C:\Udxm.exe [DETECTION] Is the Trojan horse TR/Dldr.Small.wal [WARNING] The file was ignored! C:\Documents and Settings\LocalService\Application Data\1960716034.exe [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen [WARNING] The file was ignored! C:\Documents and Settings\LocalService\Application Data\562595360.exe [DETECTION] Is the Trojan horse TR/Pakes.cml [WARNING] The file was ignored! C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\K1AJK9QR\scan[1].exe [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen [WARNING] The file was ignored! C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\LQWH5XT8\go[1].exe [DETECTION] Is the Trojan horse TR/Click.Delf.LP [WARNING] The file was ignored! C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\LQWH5XT8\s2[1].exe [DETECTION] Is the Trojan horse TR/Pakes.cml [WARNING] The file was ignored! C:\Documents and Settings\Malekal_morte\Desktop\i.exe [DETECTION] Is the Trojan horse TR/Crypt.CFI.Gen [WARNING] The file was ignored! C:\Documents and Settings\Malekal_morte\Desktop\rustock\2.exe [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen [WARNING] The file was ignored! C:\Documents and Settings\Malekal_morte\Desktop\rustock\sywtdxaz.sys [DETECTION] Is the Trojan horse TR/Rootkit.Gen [WARNING] The file was ignored! C:\Documents and Settings\Malekal_morte\Local Settings\Temp\dnlsvc.exe [DETECTION] Is the Trojan horse TR/Dldr.Barrako [WARNING] The file was ignored! C:\Documents and Settings\Malekal_morte\Local Settings\Temp\msprint.exe [DETECTION] Is the Trojan horse TR/Downloader.Gen [WARNING] The file was ignored! C:\Program Files\Internet Explorer\setupapi.dll [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msavsc.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msctrl.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msfw.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msiemon.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\mssadv.exe [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen [WARNING] The file was ignored! C:\Program Files\Microsoft Security Adviser\msscan.exe [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\Program Files\NetProject\uninst.exe [DETECTION] Is the Trojan horse TR/Dldr.Zlob.DBY [WARNING] The file was ignored! C:\WINDOWS\mrofinu1000106.exe [DETECTION] Is the Trojan horse TR/Crypt.ULPM.Gen [WARNING] The file was ignored! C:\WINDOWS\msavsc.dll [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\WINDOWS\msctrl.dll [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\WINDOWS\msfw.dll [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\WINDOWS\msiemon.dll [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\WINDOWS\mssadv.dll [DETECTION] Is the Trojan horse TR/Crypt.FKM.Gen [WARNING] The file was ignored! C:\WINDOWS\msscan.dll [DETECTION] Is the Trojan horse TR/Agent.dfv [WARNING] The file was ignored! C:\WINDOWS\uninstall_nmon.vbs [DETECTION] Is the Trojan horse TR/Small.WY [WARNING] The file was ignored! C:\WINDOWS\system\explorer.exe [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen [WARNING] The file was ignored! C:\WINDOWS\system32\geBtRiIc.dll [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen [WARNING] The file was ignored! C:\WINDOWS\system32\jownw64r.exe [DETECTION] Is the Trojan horse TR/Downloader.Gen [WARNING] The file was ignored! C:\WINDOWS\system32\msdirect.sys [DETECTION] Contains a detection pattern of the (dangerous) backdoor program BDS/ForBot.AF Backdoor server programs [WARNING] The file was ignored! C:\WINDOWS\system32\rwwnw64d.exe [DETECTION] Is the Trojan horse TR/Downloader.Gen [WARNING] The file was ignored! C:\WINDOWS\system32\sywtdxaz.sys [DETECTION] Is the Trojan horse TR/Rootkit.Gen [WARNING] The file was ignored! C:\WINDOWS\system32\WinCtrl32.dll [DETECTION] Is the Trojan horse TR/Crypt.XPACK.Gen [WARNING] The file was ignored! C:\WINDOWS\system32\3056v\tgvram102.exe [DETECTION] Is the Trojan horse TR/Downloader.Gen [WARNING] The file was ignored! C:\WINDOWS\system32\drivers\kcK65.sys [WARNING] The file could not be opened! C:\WINDOWS\system32\xnA\sxdparsdll.exe [DETECTION] Is the Trojan horse TR/Dldr.CWS.gen.2 [WARNING] The file was ignored! C:\WINDOWS\Temp\ms-13.exe [DETECTION] Is the Trojan horse TR/Click.Delf.LP [WARNING] The file was ignored! C:\WINDOWS\TWFsZWthbF9tb3J0ZQ\command.exe [DETECTION] Is the Trojan horse TR/Spy.Banbra.df.199 [WARNING] The file was ignored! C:\z_Drivers\svchost.exe [DETECTION] Is the Trojan horse TR/Click.Delf.LP [WARNING] The file was ignored! End of the scan: lundi 26 mai 2008 00:21 Used time: 22:50 min The scan has been done completely. 829 Scanning directories 31941 Files were scanned 63 viruses and/or unwanted programs were found 0 Files were classified as suspicious: 0 files were deleted 0 files were repaired 0 files were moved to quarantine 0 files were renamed 2 Files cannot be scanned 31878 Files not concerned 310 Archives were scanned 64 Warnings 0 Notes