obusco

Membres

Afficher le profil Afficher son activité

Compteur de contenus
11
Inscription
le 14 avril 2008
Dernière visite
le 18 avril 2008

Autres informations

Mes langues
Fr

obusco's Achievements

Junior Member (3/12)

Réputation sur la communauté

Config joueur "petit" budget (600e)

obusco a répondu à un(e) sujet de focky dans Conseils matériel - Achats & Ventes

Bonsoir, Pareil que Fernando, je ne passerai pas par DirectX 10, d'ailleurs j'ai lu sur le net qu'il existait une version Xp de DX10 ( Non officielle ). Tu dit que c'est pour jouer a WOW, n'est ce que pour ce jeu ?
- le 17 avril 2008
- 32 réponses
Processus "System" qui me prend presque tout mon UC avec Cou

obusco a répondu à un(e) sujet de obusco dans Software

Oui , Toujours le même, pour mon fichier mp3 rien n'as été détecté ( Un mp3 peut il etre contaminé ? )
- le 16 avril 2008
- 18 réponses
Processus "System" qui me prend presque tout mon UC avec Cou

obusco a répondu à un(e) sujet de obusco dans Software

ComboFix 08-04-14.2 - Alex 2008-04-15 21:23:20.3 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.1505 [GMT 2:00] Endroit: C:\Documents and Settings\Alex\Bureau\ComboFix.exe Command switches used :: C:\Documents and Settings\Alex\Bureau\CFScript.txt * Création d'un nouveau point de restauration FILE :: c:\Documents and Settings\Alex\Local Settings\Temp\ubi1A.tmp.exe c:\Documents and Settings\Alex\Local Settings\Temp\ubiB4.tmp.exe C:\TMP79.tmp C:\TMP7D.tmp . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\TMP79.tmp C:\TMP7D.tmp . ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-03-15 to 2008-04-15 )))))))))))))))))))))))))))))))))))) . 2008-04-15 21:08 . 2008-04-15 21:08 101,928 --a------ C:\Projet sans titre.aep 2008-04-15 20:03 . 2008-04-15 20:03 91,661,540 --a------ C:\a_4.avi 2008-04-15 20:03 . 2008-04-15 20:03 1,874,840 --a------ C:\VIDEO_083_PC.avi 2008-04-15 19:30 . 2008-04-15 19:37 545,584 --a------ C:\a_3_1.avi 2008-04-15 18:57 . 2008-04-15 18:57 307,230,644 --a------ C:\a_3.avi 2008-04-15 18:56 . 2008-04-15 18:56 4,064,470 --a------ C:\VIDEO_080_PC.avi 2008-04-15 18:14 . 2008-04-15 18:14 172,153,052 --a------ C:\A_2.avi 2008-04-15 18:14 . 2008-04-15 18:14 2,528,208 --a------ C:\VIDEO_078_PC.avi 2008-04-15 17:56 . 2008-04-15 17:56 11,680,706 --a------ C:\A_1.avi 2008-04-15 17:50 . 2008-04-15 17:50 553,384 --a------ C:\VIDEO_077_PC.avi 2008-04-15 16:38 . 2008-04-15 16:38 <REP> d-------- C:\Documents and Settings\LocalService\Application Data\AdobeUM 2008-04-15 13:39 . 2008-04-15 13:39 12,126,674 --a------ C:\upload_moi_OBUSCO.tar.gz 2008-04-15 00:06 . 2008-04-15 00:06 <REP> d-------- C:\Program Files\Stardock 2008-04-15 00:06 . 2008-04-15 00:06 <REP> d-------- C:\Program Files\Fichiers communs\Stardock 2008-04-15 00:06 . 2008-04-15 00:08 163,712 --a------ C:\WINDOWS\system32\drivers\vidstub.sys 2008-04-14 19:59 . 2008-04-14 19:59 1,701,220 --a------ C:\VIDEO_083.mp4 2008-04-14 19:41 . 2008-04-14 19:41 <REP> d-------- C:\Program Files\UxTheme Multipatcher Fr 2008-04-14 19:24 . 2008-04-14 19:24 <REP> d-------- C:\Program Files\AusLogics Disk Defrag 2008-04-14 19:19 . 2008-04-14 19:20 <REP> d-------- C:\Program Files\Power Defrag 2008-04-14 18:51 . 2008-04-14 18:51 <REP> d--h----- C:\WINDOWS\system32\GroupPolicy 2008-04-14 18:51 . 2008-04-14 18:51 4,286,990 --a------ C:\VIDEO_080.mp4 2008-04-14 18:21 . 2008-04-14 18:21 <REP> d-------- C:\Program Files\HardwareDetection 2008-04-14 18:12 . 2008-04-14 18:12 2,017,950 --a------ C:\VIDEO_078.mp4 2008-04-14 17:47 . 2008-04-14 17:47 267,688 --a------ C:\VIDEO_077.mp4 2008-04-14 12:20 . 2008-04-14 12:21 <REP> d-------- C:\Program Files\Defcon 2008-04-14 03:08 . 2008-04-14 04:02 64,998,563 --a------ C:\Defcon v1.43.rar 2008-04-13 23:26 . 2008-04-13 23:26 103 --a------ C:\WINDOWS\pro.INI 2008-04-13 23:25 . 2008-04-15 21:29 <REP> d-------- C:\Documents and Settings\LocalService\Application Data\VMware 2008-04-13 23:24 . 2006-11-13 13:23 142,128 --a------ C:\WINDOWS\system32\vmnat.exe 2008-04-13 23:24 . 2006-11-13 13:23 113,456 --a------ C:\WINDOWS\system32\vmnetdhcp.exe 2008-04-13 23:23 . 2006-11-13 13:23 391,984 --a------ C:\WINDOWS\system32\vnetlib.dll 2008-04-13 23:23 . 2006-11-13 13:23 22,576 --a------ C:\WINDOWS\system32\drivers\vmnetuserif.sys 2008-04-13 23:19 . 2008-04-13 23:19 <REP> d-------- C:\Program Files\VMware 2008-04-13 23:19 . 2008-04-13 23:19 <REP> d-------- C:\Program Files\Fichiers communs\VMware 2008-04-13 23:19 . 2008-04-15 21:29 <REP> d-------- C:\Documents and Settings\All Users\Application Data\VMware 2008-04-13 22:21 . 2008-04-13 22:21 <REP> d-------- C:\Program Files\Trend Micro 2008-04-13 22:15 . 2008-04-13 22:15 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion 2008-04-13 22:06 . 2008-04-13 22:06 <REP> d-------- C:\Program Files\Yahoo! 2008-04-11 21:00 . 2008-04-13 22:24 <REP> d-------- C:\Program Files\Google 2008-04-10 23:02 . 2008-04-10 23:02 <REP> d-------- C:\Program Files\iPod 2008-04-10 23:02 . 2008-04-15 17:26 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-04-10 23:02 . 2008-04-10 23:02 1,409 --a------ C:\WINDOWS\QTFont.for 2008-04-06 16:48 . 2008-04-13 23:32 <REP> d-------- C:\Program Files\Panda Security 2008-04-03 01:26 . 2008-04-03 01:26 41,296 --a------ C:\WINDOWS\system32\xfcodec.dll 2008-04-01 21:04 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll 2008-04-01 21:04 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll 2008-04-01 21:04 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui 2008-04-01 20:28 . 2008-04-01 20:29 <REP> d-------- C:\Program Files\StuffPlug3 2008-04-01 20:22 . 2008-04-01 20:22 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller 2008-04-01 20:22 . 2008-04-01 20:22 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-03-30 11:32 . 2008-03-30 11:35 <REP> d-------- C:\logos 2008-03-30 11:26 . 2008-03-30 11:25 5,202,560 --a------ C:\aiw1245765.mp3 2008-03-30 11:17 . 2008-04-13 22:06 <REP> d-------- C:\Program Files\Hair Pro 2008 Light 2008-03-30 11:17 . 2008-03-30 11:17 275 --a------ C:\WINDOWS\SStylerProDemo.ini 2008-03-30 01:31 . 2008-03-30 01:31 312,044 --a------ C:\WINDOWS\CSSBScript - Version Full Uninstaller.exe 2008-03-28 23:37 . 2008-03-28 23:37 90,112 --a------ C:\WINDOWS\system32\QuickTimeVR.qtx 2008-03-28 23:37 . 2008-03-28 23:37 57,344 --a------ C:\WINDOWS\system32\QuickTime.qts 2008-03-23 17:52 . 2008-03-23 17:52 5,228,374 --a------ C:\test.wav 2008-03-23 16:09 . 2008-03-23 16:09 <REP> d-------- C:\Program Files\Bome's Mouse Keyboard 2008-03-23 16:07 . 2008-03-23 16:07 673,546 --a------ C:\WINDOWS\unins001.exe 2008-03-23 16:07 . 2003-09-22 18:10 61,440 --a------ C:\WINDOWS\system32\marblaxp.dll 2008-03-23 16:07 . 2003-09-22 18:10 53,248 --a------ C:\WINDOWS\system32\drivers\maplevmd000.exe 2008-03-23 16:07 . 2003-09-22 18:09 49,152 --a------ C:\WINDOWS\system32\mapleapi.dll 2008-03-23 16:07 . 2003-09-22 18:10 31,624 --a------ C:\WINDOWS\system32\mapledxp.dll 2008-03-23 16:07 . 2004-04-05 11:44 24,720 --a------ C:\WINDOWS\system32\drivers\mapledxp.sys 2008-03-23 16:07 . 2008-03-23 16:07 7,448 --a------ C:\WINDOWS\unins001.dat 2008-03-23 15:50 . 2008-03-23 15:50 368,640 --a------ C:\WINDOWS\system32\ReWire.dll 2008-03-23 15:50 . 2008-03-23 15:50 233,472 --a------ C:\WINDOWS\system32\REX Shared Library.dll 2008-03-22 21:54 . 2008-03-22 21:54 <REP> d-------- C:\Documents and Settings\Alex\1204397503 2008-03-21 21:00 . 2008-03-21 21:00 <REP> d-------- C:\Program Files\Fractalis Software 2008-03-21 21:00 . 2008-03-21 22:35 <REP> d-------- C:\myinst 2008-03-21 21:00 . 2008-03-21 21:00 720,896 --a------ C:\WINDOWS\iun6002.exe 2008-03-21 20:37 . 2008-03-21 20:37 <REP> d-------- C:\Program Files\Propellerhead 2008-03-20 22:47 . 2008-03-20 22:48 <REP> d-------- C:\Program Files\Safari 2008-03-19 12:41 . 2008-03-19 12:41 244 --ah----- C:\sqmnoopt02.sqm 2008-03-19 12:41 . 2008-03-19 12:41 232 --ah----- C:\sqmdata02.sqm 2008-03-19 00:29 . 2008-03-19 00:29 244 --ah----- C:\sqmnoopt01.sqm 2008-03-19 00:29 . 2008-03-19 00:29 232 --ah----- C:\sqmdata01.sqm 2008-03-16 23:38 . 2008-03-16 23:38 <REP> d-------- C:\Documents and Settings\Alex\Application Data\Alien Skin 2008-03-16 12:01 . 2008-03-16 12:01 <REP> d---s---- C:\Documents and Settings\Administrateur\UserData 2008-03-16 11:36 . 2008-03-16 12:01 <REP> d-------- C:\Documents and Settings\Administrateur\Contacts 2008-03-16 11:34 . 2008-03-16 11:34 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\ATI 2008-03-15 23:00 . 2008-03-15 23:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-03-15 22:51 . 2007-07-09 15:11 584,192 -----c--- C:\WINDOWS\system32\dllcache\rpcrt4.dll 2008-03-15 22:35 . 2007-07-30 20:19 38,232 --a------ C:\WINDOWS\system32\wucltui.dll.mui 2008-03-15 22:35 . 2007-07-30 20:20 30,040 --a------ C:\WINDOWS\system32\wuaucpl.cpl.mui 2008-03-15 22:35 . 2007-07-30 20:19 30,040 --a------ C:\WINDOWS\system32\wuapi.dll.mui 2008-03-15 22:35 . 2007-07-30 20:18 21,336 --a------ C:\WINDOWS\system32\wuaueng.dll.mui . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-04-15 15:40 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-04-15 15:39 --------- d-----w C:\Program Files\Fichiers communs\Adobe 2008-04-15 14:44 --------- d-----w C:\Program Files\Steam 2008-04-15 12:45 --------- d-----w C:\Documents and Settings\Alex\Application Data\OpenOffice.org2 2008-04-14 23:21 --------- d-----w C:\Documents and Settings\Alex\Application Data\uTorrent 2008-04-14 19:19 --------- d-----w C:\Program Files\eMule 2008-04-14 17:46 --------- d-----w C:\Documents and Settings\Alex\Application Data\tor 2008-04-13 22:05 --------- d-----w C:\Program Files\Gpotato.eu 2008-04-13 21:27 --------- d-----w C:\Program Files\Mackila 2008-04-13 21:26 --------- d-----w C:\Program Files\Teleport Pro 2008-04-13 21:15 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-04-13 20:44 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard 2008-04-13 20:38 --------- d-----w C:\Documents and Settings\Alex\Application Data\Vidalia 2008-04-13 20:06 --------- d-----w C:\Program Files\Prime95 2008-04-13 20:05 --------- d-----w C:\Program Files\Eurobarre 2008-04-11 17:17 --------- d-s---w C:\Program Files\Xfire 2008-04-10 21:02 --------- d-----w C:\Program Files\iTunes 2008-04-10 21:00 --------- d-----w C:\Program Files\QuickTime 2008-04-09 17:19 --------- d-----w C:\Program Files\Ripp-it_AM 2008-04-08 21:59 --------- d-----w C:\Documents and Settings\Alex\Application Data\Skype 2008-04-08 17:04 --------- d-----w C:\Documents and Settings\Alex\Application Data\Xfire 2008-04-02 17:34 --------- d-----w C:\Program Files\Symantec 2008-04-02 17:34 --------- d-----w C:\Program Files\Fichiers communs\Symantec Shared 2008-04-01 18:26 --------- d-----w C:\Program Files\MSN Messenger 2008-04-01 18:22 --------- d-----w C:\Program Files\Windows Live 2008-03-30 12:43 --------- d-----w C:\Program Files\Messenger Plus! Live 2008-03-24 15:35 --------- d-----w C:\Documents and Settings\Alex\Application Data\Apple Computer 2008-03-15 21:03 --------- d-----w C:\Program Files\Mlehrer 2008-03-15 21:02 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP 2008-03-13 20:07 --------- d-----w C:\Program Files\SigmaTel 2008-03-12 23:30 --------- d-----w C:\Program Files\dBpowerAMP 2008-03-12 22:33 --------- d-----w C:\Program Files\THOMSON mp3PRO Audio Player 2008-03-12 22:33 --------- d-----w C:\Program Files\CDex_170b2 2008-03-12 22:25 --------- d-----w C:\Program Files\Free Audio Pack 2008-03-09 11:18 --------- d-----w C:\Program Files\Game Cam V2 2008-03-04 21:27 --------- d-----w C:\Program Files\IntelliTamper 2008-03-04 21:18 --------- d-----w C:\Program Files\i-Media 2008-03-04 21:18 --------- d-----w C:\Program Files\Goto 2008-03-01 20:21 --------- d-----w C:\Program Files\StatnPerf 2008-03-01 20:18 --------- d-----w C:\Documents and Settings\All Users\Application Data\ATI 2008-03-01 20:07 --------- d-----w C:\Program Files\NetLimiter 2 Pro 2008-03-01 17:55 --------- d-----w C:\Program Files\ATI Technologies 2008-03-01 17:40 --------- d-----w C:\Program Files\BitComet 2008-03-01 15:40 --------- d-----w C:\Documents and Settings\All Users\Application Data\Locktime 2008-03-01 15:16 --------- d-----w C:\Documents and Settings\Alex\Application Data\LockTime 2008-02-29 19:53 --------- d-----w C:\Program Files\Act-3D 2008-02-29 18:03 --------- d-----w C:\Program Files\Fichiers communs\Thraex Software 2008-02-28 00:24 --------- d-----w C:\Program Files\WowCartographe 2008-02-25 21:14 --------- d-----w C:\Program Files\World Of Warcraft 2008-02-25 20:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Earthsim 2008-02-25 20:23 --------- d-----w C:\Documents and Settings\Alex\Application Data\Earthsim 2008-02-25 19:48 --------- d-----w C:\Program Files\IDoser v4 2008-02-25 19:47 --------- d-----w C:\Program Files\Microsoft ActiveSync 2008-02-25 19:41 --------- d-----w C:\Program Files\Opera 2008-02-25 19:21 --------- d-----w C:\Documents and Settings\Alex\Application Data\InstallShield 2008-02-25 19:20 --------- d-----w C:\Program Files\ProcessGuard 2008-02-25 16:45 --------- d-----w C:\Program Files\Spybot - Search & Destroy 2008-02-24 14:02 --------- d-----w C:\Program Files\uTorrent 2008-02-23 02:49 --------- d-----w C:\Program Files\KiddiesBarre 2008-02-20 13:14 --------- d-----w C:\Program Files\CamStudio 2007-08-02 12:53 1 ----a-w C:\Documents and Settings\Alex\SI.bin 2007-07-10 21:51 1,435 ----a-w C:\Documents and Settings\Alex\Application Data\SAS7_000.DAT 2007-04-15 16:24 278,528 ----a-w C:\Program Files\Fichiers communs\FDEUnInstaller.exe 2006-06-23 06:48 32,768 ----a-r C:\WINDOWS\inf\UpdateUSB.exe . ((((((((((((((((((((((((((((( snapshot@2008-04-15_15.18.59.10 ))))))))))))))))))))))))))))))))))))))))) . - 2008-04-15 13:02:50 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2008-04-15 19:28:34 2,048 --s-a-w C:\WINDOWS\bootstat.dat - 2007-09-27 16:51:11 61,440 ----a-r C:\WINDOWS\Installer\{B74D4E10-0000-0000-0000-EDED00000102}\ESLaunchShortcut_B669579F4AB8402BB6E7E4F073A6E215.exe + 2008-04-15 15:40:58 61,440 ----a-r C:\WINDOWS\Installer\{B74D4E10-0000-0000-0000-EDED00000102}\ESLaunchShortcut_B669579F4AB8402BB6E7E4F073A6E215.exe - 2007-09-27 16:51:11 61,440 ----a-r C:\WINDOWS\Installer\{B74D4E10-0000-0000-0000-EDED00000102}\NewShortcut2_B669579F4AB8402BB6E7E4F073A6E215.exe + 2008-04-15 15:40:58 61,440 ----a-r C:\WINDOWS\Installer\{B74D4E10-0000-0000-0000-EDED00000102}\NewShortcut2_B669579F4AB8402BB6E7E4F073A6E215.exe - 2007-09-27 16:43:23 23,558 ----a-r C:\WINDOWS\Installer\{DD362256-A7A2-4524-9457-213DDC2AFC2A}\ARPPRODUCTICON.exe + 2008-04-15 15:40:16 23,558 ----a-r C:\WINDOWS\Installer\{DD362256-A7A2-4524-9457-213DDC2AFC2A}\ARPPRODUCTICON.exe - 2008-04-13 21:25:00 64,680 ----a-w C:\WINDOWS\system32\perfc009.dat + 2008-04-15 18:01:38 64,680 ----a-w C:\WINDOWS\system32\perfc009.dat - 2008-04-13 21:25:00 78,678 ----a-w C:\WINDOWS\system32\perfc00C.dat + 2008-04-15 18:01:38 78,678 ----a-w C:\WINDOWS\system32\perfc00C.dat - 2008-04-13 21:25:00 408,572 ----a-w C:\WINDOWS\system32\perfh009.dat + 2008-04-15 18:01:38 408,572 ----a-w C:\WINDOWS\system32\perfh009.dat - 2008-04-13 21:25:00 476,548 ----a-w C:\WINDOWS\system32\perfh00C.dat + 2008-04-15 18:01:38 476,548 ----a-w C:\WINDOWS\system32\perfh00C.dat + 2008-04-15 19:29:10 16,384 ----atw C:\WINDOWS\TEMP\Perflib_Perfdata_598.dat . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2007-04-04 00:29 165784] "TheTurtle"="C:\Program Files\TheTurtle\TheTurtle.exe" [2005-09-15 19:44 815104] "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 12:43 2097488] "H/PC Connection Agent"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 14:07 1289000] "updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2004-11-22 08:18 307200] "msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 11:34 5724184] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMAXPnP"="C:\Program Files\Analog Devices\Core\smax4pnp.exe" [2006-05-01 12:07 843776] "SoundMAX"="C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" [2006-04-10 09:19 729088] "AsusServiceProvider"="C:\Program Files\ASUS\AASP\1.00.05\aaCenter.exe" [2006-08-03 11:25 591360] "Ai Nap"="C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe" [ ] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 02:11 132496] "avgnt"="C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" [2007-10-10 21:57 249896] "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-05-04 19:24 185784] "ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2005-02-16 16:15 81920] "JMB36X IDE Setup"="C:\WINDOWS\RaidTool\xInsIDE.exe" [2007-03-20 15:36 36864] "36X Raid Configurer"="C:\WINDOWS\system32\xRaidSetup.exe" [2007-11-19 12:01 1970176] "StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 13:35 90112] "BootSkin Startup Jobs"="C:\PROGRA~1\Stardock\WINCUS~1\BootSkin\BootSkin.exe" [2004-04-26 16:21 270336] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-03-28 23:37 413696] "MSConfig"="C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe" [2004-08-19 16:10 160768] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoSMConfigurePrograms"= 1 (0x1) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoSMConfigurePrograms"= 1 (0x1) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice] @="" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "stisvc"=3 (0x3) "RemoteRegistry"=2 (0x2) "COMSysApp"=3 (0x3) "helpsvc"=2 (0x2) "Dnscache"=2 (0x2) "WmiApSrv"=3 (0x3) "FastUserSwitchingCompatibility"=3 (0x3) "seclogon"=2 (0x2) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Veoh"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide "Odebit Multimedia V3"=C:\Program Files\Odebit Multimédia\V3\Odebit.exe "Odebit Multimedia V3 - Services"=C:\Program Files\Odebit Multimédia\V3\Odebit.exe /info "C:\Program Files\NetMeter\NetMeter.exe"=C:\Program Files\NetMeter\NetMeter.exe "Steam"="c:\program files\steam\steam.exe" -silent "updateMgr"=C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0 "Vidalia"="C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe" "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background "H/PC Connection Agent"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe" "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" "<NO NAME>"= [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" -atboottime "PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE "NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\World Of Warcraft\\Repair.exe"= "C:\\Program Files\\BitComet\\BitComet.exe"= "C:\\Program Files\\eMule\\emule.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Civilization4.exe"= "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Warlords\\Civ4Warlords.exe"= "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Warlords\\Civ4Warlords_PitBoss.exe"= "C:\\Program Files\\Xfire\\xfire.exe"= "C:\\WINDOWS\\system32\\dpvsetup.exe"= "C:\\WINDOWS\\system32\\rundll32.exe"= "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Beyond the Sword\\Civ4BeyondSword.exe"= "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Beyond the Sword\\Civ4BeyondSword_PitBoss.exe"= "C:\\Documents and Settings\\Alex\\Bureau\\pfull_361\\final\\SpyGestion.exe"= "C:\\Program Files\\FileZilla\\FileZilla.exe"= "C:\\Program Files\\mIRC\\mirc.exe"= "C:\\Program Files\\Mozilla Firefox\\firefox.exe"= "C:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"= C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"= C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"= C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application "C:\\Program Files\\Steam\\Steam.exe"= "C:\\Program Files\\World Of Warcraft\\WoW-2.2.0-frFR-downloader.exe"= "C:\\Program Files\\uTorrent\\uTorrent.exe"= "C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"= "C:\\Program Files\\Steam\\steamapps\\xav9595\\counter-strike source\\hl2.exe"= "C:\\Program Files\\Steam\\steamapps\\xav9595\\half-life 2 deathmatch\\hl2.exe"= "C:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"= "C:\\Program Files\\World Of Warcraft\\Wow.exe"= "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= "C:\\Program Files\\Skype\\Phone\\Skype.exe"= "C:\\Program Files\\iTunes\\iTunes.exe"= "C:\\Program Files\\Defcon\\defcon.exe"= "C:\\Program Files\\Steam\\steamapps\\spritx\\counter-strike source\\hl2.exe"= "C:\\Program Files\\Steam\\steamapps\\spritx\\condition zero\\hl.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "8116:TCP"= 8116:TCP:BitComet 8116 TCP "8116:UDP"= 8116:UDP:BitComet 8116 UDP "8553:TCP"= 8553:TCP:BitComet 8553 TCP "8553:UDP"= 8553:UDP:BitComet 8553 UDP "13381:TCP"= 13381:TCP:BitComet 13381 TCP "13381:UDP"= 13381:UDP:BitComet 13381 UDP "26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service "3724:TCP"= 3724:TCP:Blizzard Downloader: 3724 "7313:TCP"= 7313:TCP:BitComet 7313 TCP "7313:UDP"= 7313:UDP:BitComet 7313 UDP R1 mapledxp;mapledxp;C:\WINDOWS\system32\drivers\mapledxp.SYS [2004-04-05 11:44] R1 nltdi;nltdi;C:\WINDOWS\system32\drivers\nltdi.sys [2007-04-23 13:03] R2 procguard;procguard;C:\WINDOWS\system32\drivers\procguard.sys [2005-01-20 15:13] S3 SG760_XP;SAGEM 802.11g XG760 1211 Driver;C:\WINDOWS\system32\DRIVERS\WlanUZXP.sys [2006-01-09 11:26] S3 SIWIO;SIWIO;C:\WINDOWS\TEMP\SiwIo.sys [] S3 StMp3Rec;Pilote de périphérique de la restauration de lecteur;C:\WINDOWS\system32\Drivers\StMp3Rec.sys [2007-06-15 11:49] S3 ZDCndis5;ZDCndis5 Protocol Driver;C:\WINDOWS\system32\ZDCndis5.SYS [] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e02e1945-eb8e-11db-83ec-806d6172696f}] \Shell\AutoRun\command - D:\ASUSACPI.exe . Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es' "2008-04-10 19:45:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe . ************************************************************************** catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-15 21:28:54 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cach‚s ... Balayage cach‚ autostart entries ... Balayage des fichiers cach‚s ... Scan termin‚ avec succŠs Les fichiers cach‚s: 347 ************************************************************************** . --------------------- DLLs a charg‚ sous des processus courants --------------------- PROCESS: C:\WINDOWS\system32\winlogon.exe -> C:\Program Files\TheTurtle\rkmt.dll PROCESS: C:\WINDOWS\system32\lsass.exe -> C:\Program Files\TheTurtle\rkmt.dll PROCESS: C:\WINDOWS\system32\csrss.exe -> C:\Program Files\TheTurtle\rkmt.dll . ------------------------ Other Running Processes ------------------------ . C:\WINDOWS\system32\ati2evxx.exe C:\WINDOWS\system32\ati2evxx.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\ATKKBService.exe C:\Program Files\NetLimiter 2 Pro\nlsvc.exe C:\Program Files\VMware\VMware Player\vmware-authd.exe C:\Program Files\Fichiers communs\VMware\VMware Virtual Image Editing\vmount2.exe C:\WINDOWS\system32\vmnat.exe C:\Program Files\NetLimiter 2 Pro\NLClient.exe C:\WINDOWS\system32\vmnetdhcp.exe C:\WINDOWS\system32\wscntfy.exe C:\PROGRA~1\MICROS~4\rapimgr.exe C:\Program Files\Last.fm\LastFMHelper.exe . ************************************************************************** . Temps d'accomplissement: 2008-04-15 21:43:45 - machine was rebooted ComboFix-quarantined-files.txt 2008-04-15 19:43:40 ComboFix2.txt 2008-04-15 15:08:12 ComboFix3.txt 2008-04-15 13:19:17 Pre-Run: 25,701,920,768 octets libres Post-Run: 25,706,819,584 octets libres . 2008-04-12 18:11:23 --- E O F --- J'ai vérifier si : - c:\Documents and Settings\Alex\Local Settings\Temp\ubi1A.tmp.exe c:\Documents and Settings\Alex\Local Settings\Temp\ubiB4.tmp.exe Sont encore la, je ne les voit pas ( manuellement ). Pour ATF quel sont les catégorie a nettoyer ?
- le 15 avril 2008
- 18 réponses
Processus "System" qui me prend presque tout mon UC avec Cou

obusco a répondu à un(e) sujet de obusco dans Software

Je n'ai encore rien fait, mais tu me demande de supprimer C:\aiw1245765.mp3 non ? Car c'est un mp3 qui est en fait de la musique ' Mezzanine-Massive attack '
- le 15 avril 2008
- 18 réponses
Processus "System" qui me prend presque tout mon UC avec Cou

obusco a répondu à un(e) sujet de obusco dans Software

Le problème n'est pas réglé :s
- le 15 avril 2008
- 18 réponses
Processus "System" qui me prend presque tout mon UC avec Cou

obusco a répondu à un(e) sujet de obusco dans Software

J'ai eu plusieurs modifications que m'as signalé Spybot, je l'ai ai accepté, j'ai eu un virus W95/Blumblebee.1738 dans le doute j'ai delete. ComboFix 08-04-14.2 - Alex 2008-04-15 15:00:25.1 - NTFSx86 Microsoft Windows XP Professionnel 5.1.2600.2.1252.1.1036.18.1546 [GMT 2:00] Endroit: C:\Documents and Settings\Alex\Bureau\ComboFix.exe . (((((((((((((((((((((((((((((((((((( Autres suppressions )))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\system32\msttxl16.dll . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_poof ((((((((((((((((((((((((((((( Fichiers cr‚‚s 2008-03-15 to 2008-04-15 )))))))))))))))))))))))))))))))))))) . 2008-04-15 13:39 . 2008-04-15 13:39 12,126,674 --a------ C:\upload_moi_OBUSCO.tar.gz 2008-04-15 00:06 . 2008-04-15 00:06 <REP> d-------- C:\Program Files\Stardock 2008-04-15 00:06 . 2008-04-15 00:06 <REP> d-------- C:\Program Files\Fichiers communs\Stardock 2008-04-15 00:06 . 2008-04-15 00:08 163,712 --a------ C:\WINDOWS\system32\drivers\vidstub.sys 2008-04-14 19:41 . 2008-04-14 19:41 <REP> d-------- C:\Program Files\UxTheme Multipatcher Fr 2008-04-14 19:24 . 2008-04-14 19:24 <REP> d-------- C:\Program Files\AusLogics Disk Defrag 2008-04-14 19:19 . 2008-04-14 19:20 <REP> d-------- C:\Program Files\Power Defrag 2008-04-14 18:51 . 2008-04-14 18:51 <REP> d--h----- C:\WINDOWS\system32\GroupPolicy 2008-04-14 18:21 . 2008-04-14 18:21 <REP> d-------- C:\Program Files\HardwareDetection 2008-04-14 12:20 . 2008-04-14 12:21 <REP> d-------- C:\Program Files\Defcon 2008-04-14 03:08 . 2008-04-14 04:02 64,998,563 --a------ C:\Defcon v1.43.rar 2008-04-13 23:26 . 2008-04-13 23:26 103 --a------ C:\WINDOWS\pro.INI 2008-04-13 23:25 . 2008-04-15 15:03 <REP> d-------- C:\Documents and Settings\LocalService\Application Data\VMware 2008-04-13 23:24 . 2006-11-13 13:23 142,128 --a------ C:\WINDOWS\system32\vmnat.exe 2008-04-13 23:24 . 2006-11-13 13:23 113,456 --a------ C:\WINDOWS\system32\vmnetdhcp.exe 2008-04-13 23:23 . 2006-11-13 13:23 391,984 --a------ C:\WINDOWS\system32\vnetlib.dll 2008-04-13 23:23 . 2006-11-13 13:23 22,576 --a------ C:\WINDOWS\system32\drivers\vmnetuserif.sys 2008-04-13 23:19 . 2008-04-13 23:19 <REP> d-------- C:\Program Files\VMware 2008-04-13 23:19 . 2008-04-13 23:19 <REP> d-------- C:\Program Files\Fichiers communs\VMware 2008-04-13 23:19 . 2008-04-15 15:03 <REP> d-------- C:\Documents and Settings\All Users\Application Data\VMware 2008-04-13 22:21 . 2008-04-13 22:21 <REP> d-------- C:\Program Files\Trend Micro 2008-04-13 22:15 . 2008-04-13 22:15 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion 2008-04-13 22:06 . 2008-04-13 22:06 <REP> d-------- C:\Program Files\Yahoo! 2008-04-11 21:00 . 2008-04-13 22:24 <REP> d-------- C:\Program Files\Google 2008-04-10 23:02 . 2008-04-10 23:02 <REP> d-------- C:\Program Files\iPod 2008-04-10 23:02 . 2008-04-15 14:50 54,156 --ah----- C:\WINDOWS\QTFont.qfn 2008-04-10 23:02 . 2008-04-10 23:02 1,409 --a------ C:\WINDOWS\QTFont.for 2008-04-06 16:48 . 2008-04-13 23:32 <REP> d-------- C:\Program Files\Panda Security 2008-04-03 01:26 . 2008-04-03 01:26 41,296 --a------ C:\WINDOWS\system32\xfcodec.dll 2008-04-01 21:04 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll 2008-04-01 21:04 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll 2008-04-01 21:04 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui 2008-04-01 20:28 . 2008-04-01 20:29 <REP> d-------- C:\Program Files\StuffPlug3 2008-04-01 20:22 . 2008-04-01 20:22 <REP> d--hsc--- C:\Program Files\Fichiers communs\WindowsLiveInstaller 2008-04-01 20:22 . 2008-04-01 20:22 <REP> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-03-30 11:32 . 2008-03-30 11:35 <REP> d-------- C:\logos 2008-03-30 11:26 . 2008-03-30 11:25 5,202,560 --a------ C:\aiw1245765.mp3 2008-03-30 11:17 . 2008-04-13 22:06 <REP> d-------- C:\Program Files\Hair Pro 2008 Light 2008-03-30 11:17 . 2008-03-30 11:17 275 --a------ C:\WINDOWS\SStylerProDemo.ini 2008-03-30 01:31 . 2008-03-30 01:31 312,044 --a------ C:\WINDOWS\CSSBScript - Version Full Uninstaller.exe 2008-03-28 23:37 . 2008-03-28 23:37 90,112 --a------ C:\WINDOWS\system32\QuickTimeVR.qtx 2008-03-28 23:37 . 2008-03-28 23:37 57,344 --a------ C:\WINDOWS\system32\QuickTime.qts 2008-03-23 17:52 . 2008-03-23 17:52 5,228,374 --a------ C:\test.wav 2008-03-23 16:09 . 2008-03-23 16:09 <REP> d-------- C:\Program Files\Bome's Mouse Keyboard 2008-03-23 16:07 . 2008-03-23 16:07 673,546 --a------ C:\WINDOWS\unins001.exe 2008-03-23 16:07 . 2003-09-22 18:10 61,440 --a------ C:\WINDOWS\system32\marblaxp.dll 2008-03-23 16:07 . 2003-09-22 18:10 53,248 --a------ C:\WINDOWS\system32\drivers\maplevmd000.exe 2008-03-23 16:07 . 2003-09-22 18:09 49,152 --a------ C:\WINDOWS\system32\mapleapi.dll 2008-03-23 16:07 . 2003-09-22 18:10 31,624 --a------ C:\WINDOWS\system32\mapledxp.dll 2008-03-23 16:07 . 2004-04-05 11:44 24,720 --a------ C:\WINDOWS\system32\drivers\mapledxp.sys 2008-03-23 16:07 . 2008-03-23 16:07 7,448 --a------ C:\WINDOWS\unins001.dat 2008-03-23 15:50 . 2008-03-23 15:50 368,640 --a------ C:\WINDOWS\system32\ReWire.dll 2008-03-23 15:50 . 2008-03-23 15:50 233,472 --a------ C:\WINDOWS\system32\REX Shared Library.dll 2008-03-22 21:54 . 2008-03-22 21:54 <REP> d-------- C:\Documents and Settings\Alex\1204397503 2008-03-22 21:40 . 2008-03-22 21:44 35,280,088 --a------ C:\TMP79.tmp 2008-03-22 21:40 . 2008-03-22 21:44 8,820,088 --a------ C:\TMP7D.tmp 2008-03-21 21:00 . 2008-03-21 21:00 <REP> d-------- C:\Program Files\Fractalis Software 2008-03-21 21:00 . 2008-03-21 22:35 <REP> d-------- C:\myinst 2008-03-21 21:00 . 2008-03-21 21:00 720,896 --a------ C:\WINDOWS\iun6002.exe 2008-03-21 20:37 . 2008-03-21 20:37 <REP> d-------- C:\Program Files\Propellerhead 2008-03-20 22:47 . 2008-03-20 22:48 <REP> d-------- C:\Program Files\Safari 2008-03-19 12:41 . 2008-03-19 12:41 244 --ah----- C:\sqmnoopt02.sqm 2008-03-19 12:41 . 2008-03-19 12:41 232 --ah----- C:\sqmdata02.sqm 2008-03-19 00:29 . 2008-03-19 00:29 244 --ah----- C:\sqmnoopt01.sqm 2008-03-19 00:29 . 2008-03-19 00:29 232 --ah----- C:\sqmdata01.sqm 2008-03-16 23:38 . 2008-03-16 23:38 <REP> d-------- C:\Documents and Settings\Alex\Application Data\Alien Skin 2008-03-16 12:01 . 2008-03-16 12:01 <REP> d---s---- C:\Documents and Settings\Administrateur\UserData 2008-03-16 11:36 . 2008-03-16 12:01 <REP> d-------- C:\Documents and Settings\Administrateur\Contacts 2008-03-16 11:34 . 2008-03-16 11:34 <REP> d-------- C:\Documents and Settings\Administrateur\Application Data\ATI 2008-03-15 23:00 . 2008-03-15 23:01 <REP> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft 2008-03-15 22:51 . 2007-07-09 15:11 584,192 -----c--- C:\WINDOWS\system32\dllcache\rpcrt4.dll 2008-03-15 22:35 . 2007-07-30 20:19 38,232 --a------ C:\WINDOWS\system32\wucltui.dll.mui 2008-03-15 22:35 . 2007-07-30 20:20 30,040 --a------ C:\WINDOWS\system32\wuaucpl.cpl.mui 2008-03-15 22:35 . 2007-07-30 20:19 30,040 --a------ C:\WINDOWS\system32\wuapi.dll.mui 2008-03-15 22:35 . 2007-07-30 20:18 21,336 --a------ C:\WINDOWS\system32\wuaueng.dll.mui . (((((((((((((((((((((((((((((((((( Compte-rendu de Find3M )))))))))))))))))))))))))))))))))))))))))))))))) . 2008-04-15 12:45 --------- d-----w C:\Documents and Settings\Alex\Application Data\OpenOffice.org2 2008-04-14 23:21 --------- d-----w C:\Documents and Settings\Alex\Application Data\uTorrent 2008-04-14 22:16 --------- d-----w C:\Program Files\Steam 2008-04-14 19:19 --------- d-----w C:\Program Files\eMule 2008-04-14 17:46 --------- d-----w C:\Documents and Settings\Alex\Application Data\tor 2008-04-13 22:05 --------- d-----w C:\Program Files\Gpotato.eu 2008-04-13 21:27 --------- d-----w C:\Program Files\Mackila 2008-04-13 21:26 --------- d-----w C:\Program Files\Teleport Pro 2008-04-13 21:15 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2008-04-13 20:44 --------- d-----w C:\Program Files\Fichiers communs\Wise Installation Wizard 2008-04-13 20:38 --------- d-----w C:\Documents and Settings\Alex\Application Data\Vidalia 2008-04-13 20:06 --------- d-----w C:\Program Files\Prime95 2008-04-13 20:05 --------- d-----w C:\Program Files\Eurobarre 2008-04-11 17:17 --------- d-s---w C:\Program Files\Xfire 2008-04-10 21:02 --------- d-----w C:\Program Files\iTunes 2008-04-10 21:00 --------- d-----w C:\Program Files\QuickTime 2008-04-09 17:19 --------- d-----w C:\Program Files\Ripp-it_AM 2008-04-08 21:59 --------- d-----w C:\Documents and Settings\Alex\Application Data\Skype 2008-04-08 17:04 --------- d-----w C:\Documents and Settings\Alex\Application Data\Xfire 2008-04-02 17:34 --------- d-----w C:\Program Files\Symantec 2008-04-02 17:34 --------- d-----w C:\Program Files\Fichiers communs\Symantec Shared 2008-04-01 18:26 --------- d-----w C:\Program Files\MSN Messenger 2008-04-01 18:22 --------- d-----w C:\Program Files\Windows Live 2008-03-30 12:43 --------- d-----w C:\Program Files\Messenger Plus! Live 2008-03-24 15:35 --------- d-----w C:\Documents and Settings\Alex\Application Data\Apple Computer 2008-03-15 21:03 --------- d-----w C:\Program Files\Mlehrer 2008-03-15 21:02 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP 2008-03-13 20:07 --------- d--h--w C:\Program Files\InstallShield Installation Information 2008-03-13 20:07 --------- d-----w C:\Program Files\SigmaTel 2008-03-12 23:30 --------- d-----w C:\Program Files\dBpowerAMP 2008-03-12 22:33 --------- d-----w C:\Program Files\THOMSON mp3PRO Audio Player 2008-03-12 22:33 --------- d-----w C:\Program Files\CDex_170b2 2008-03-12 22:25 --------- d-----w C:\Program Files\Free Audio Pack 2008-03-09 11:18 --------- d-----w C:\Program Files\Game Cam V2 2008-03-04 21:27 --------- d-----w C:\Program Files\IntelliTamper 2008-03-04 21:18 --------- d-----w C:\Program Files\i-Media 2008-03-04 21:18 --------- d-----w C:\Program Files\Goto 2008-03-01 20:21 --------- d-----w C:\Program Files\StatnPerf 2008-03-01 20:18 --------- d-----w C:\Documents and Settings\All Users\Application Data\ATI 2008-03-01 20:07 --------- d-----w C:\Program Files\NetLimiter 2 Pro 2008-03-01 17:55 --------- d-----w C:\Program Files\ATI Technologies 2008-03-01 17:40 --------- d-----w C:\Program Files\BitComet 2008-03-01 15:40 --------- d-----w C:\Documents and Settings\All Users\Application Data\Locktime 2008-03-01 15:16 --------- d-----w C:\Documents and Settings\Alex\Application Data\LockTime 2008-02-29 19:53 --------- d-----w C:\Program Files\Act-3D 2008-02-29 18:03 --------- d-----w C:\Program Files\Fichiers communs\Thraex Software 2008-02-28 00:24 --------- d-----w C:\Program Files\WowCartographe 2008-02-25 21:14 --------- d-----w C:\Program Files\World Of Warcraft 2008-02-25 20:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Earthsim 2008-02-25 20:23 --------- d-----w C:\Documents and Settings\Alex\Application Data\Earthsim 2008-02-25 19:48 --------- d-----w C:\Program Files\IDoser v4 2008-02-25 19:47 --------- d-----w C:\Program Files\Microsoft ActiveSync 2008-02-25 19:41 --------- d-----w C:\Program Files\Opera 2008-02-25 19:21 --------- d-----w C:\Documents and Settings\Alex\Application Data\InstallShield 2008-02-25 19:20 --------- d-----w C:\Program Files\ProcessGuard 2008-02-25 16:45 --------- d-----w C:\Program Files\Spybot - Search & Destroy 2008-02-24 14:02 --------- d-----w C:\Program Files\uTorrent 2008-02-23 02:49 --------- d-----w C:\Program Files\KiddiesBarre 2008-02-20 13:14 --------- d-----w C:\Program Files\CamStudio 2007-08-02 12:53 1 ----a-w C:\Documents and Settings\Alex\SI.bin 2007-07-10 21:51 1,435 ----a-w C:\Documents and Settings\Alex\Application Data\SAS7_000.DAT 2007-04-15 16:24 278,528 ----a-w C:\Program Files\Fichiers communs\FDEUnInstaller.exe . ((((((((((((((((((((((((((((((((( Point de chargement Reg ))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Note* les ‚l‚ments vides & les ‚l‚ments initiaux l‚gitimes ne sont pas list‚s [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [2007-04-04 00:29 165784] "TheTurtle"="C:\Program Files\TheTurtle\TheTurtle.exe" [2005-09-15 19:44 815104] "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 12:43 2097488] "H/PC Connection Agent"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 14:07 1289000] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SoundMAXPnP"="C:\Program Files\Analog Devices\Core\smax4pnp.exe" [2006-05-01 12:07 843776] "SoundMAX"="C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" [2006-04-10 09:19 729088] "AsusServiceProvider"="C:\Program Files\ASUS\AASP\1.00.05\aaCenter.exe" [2006-08-03 11:25 591360] "Ai Nap"="C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe" [ ] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 02:11 132496] "avgnt"="C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" [2007-10-10 21:57 249896] "TkBellExe"="C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" [2007-05-04 19:24 185784] "ISUSScheduler"="C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" [2005-02-16 16:15 81920] "JMB36X IDE Setup"="C:\WINDOWS\RaidTool\xInsIDE.exe" [2007-03-20 15:36 36864] "36X Raid Configurer"="C:\WINDOWS\system32\xRaidSetup.exe" [2007-11-19 12:01 1970176] "StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 13:35 90112] "MSConfig"="C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe" [2004-08-19 16:10 160768] "BootSkin Startup Jobs"="C:\PROGRA~1\Stardock\WINCUS~1\BootSkin\BootSkin.exe" [2004-04-26 16:21 270336] "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-03-28 23:37 413696] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoSMConfigurePrograms"= 1 (0x1) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoSMConfigurePrograms"= 1 (0x1) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice] @="" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "stisvc"=3 (0x3) "RemoteRegistry"=2 (0x2) "COMSysApp"=3 (0x3) "helpsvc"=2 (0x2) "Dnscache"=2 (0x2) "WmiApSrv"=3 (0x3) "FastUserSwitchingCompatibility"=3 (0x3) "seclogon"=2 (0x2) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "Veoh"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide "Odebit Multimedia V3"=C:\Program Files\Odebit Multimédia\V3\Odebit.exe "Odebit Multimedia V3 - Services"=C:\Program Files\Odebit Multimédia\V3\Odebit.exe /info "C:\Program Files\NetMeter\NetMeter.exe"=C:\Program Files\NetMeter\NetMeter.exe "Steam"="c:\program files\steam\steam.exe" -silent "updateMgr"=C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0 "Vidalia"="C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe" "CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background "H/PC Connection Agent"="C:\Program Files\Microsoft ActiveSync\wcescomm.exe" "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" "<NO NAME>"= [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" -atboottime "PWRISOVM.EXE"=C:\Program Files\PowerISO\PWRISOVM.EXE "NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\World Of Warcraft\\Repair.exe"= "C:\\Program Files\\BitComet\\BitComet.exe"= "C:\\Program Files\\eMule\\emule.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Civilization4.exe"= "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Warlords\\Civ4Warlords.exe"= "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Warlords\\Civ4Warlords_PitBoss.exe"= "C:\\Program Files\\Xfire\\xfire.exe"= "C:\\WINDOWS\\system32\\dpvsetup.exe"= "C:\\WINDOWS\\system32\\rundll32.exe"= "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Beyond the Sword\\Civ4BeyondSword.exe"= "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Beyond the Sword\\Civ4BeyondSword_PitBoss.exe"= "C:\\Documents and Settings\\Alex\\Bureau\\pfull_361\\final\\SpyGestion.exe"= "C:\\Program Files\\FileZilla\\FileZilla.exe"= "C:\\Program Files\\mIRC\\mirc.exe"= "C:\\Program Files\\Mozilla Firefox\\firefox.exe"= "C:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= "C:\Program Files\Microsoft ActiveSync\rapimgr.exe"= C:\Program Files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"= C:\Program Files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager "C:\Program Files\Microsoft ActiveSync\WCESMgr.exe"= C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application "C:\\Program Files\\Steam\\Steam.exe"= "C:\\Program Files\\World Of Warcraft\\WoW-2.2.0-frFR-downloader.exe"= "C:\\Program Files\\uTorrent\\uTorrent.exe"= "C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"= "C:\\Program Files\\Steam\\steamapps\\xav9595\\counter-strike source\\hl2.exe"= "C:\\Program Files\\Steam\\steamapps\\xav9595\\half-life 2 deathmatch\\hl2.exe"= "C:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"= "C:\\Program Files\\World Of Warcraft\\Wow.exe"= "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= "C:\\Program Files\\Skype\\Phone\\Skype.exe"= "C:\\Program Files\\iTunes\\iTunes.exe"= "C:\\Program Files\\Defcon\\defcon.exe"= "C:\\Program Files\\Steam\\steamapps\\spritx\\counter-strike source\\hl2.exe"= "C:\\Program Files\\Steam\\steamapps\\spritx\\condition zero\\hl.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "8116:TCP"= 8116:TCP:BitComet 8116 TCP "8116:UDP"= 8116:UDP:BitComet 8116 UDP "8553:TCP"= 8553:TCP:BitComet 8553 TCP "8553:UDP"= 8553:UDP:BitComet 8553 UDP "13381:TCP"= 13381:TCP:BitComet 13381 TCP "13381:UDP"= 13381:UDP:BitComet 13381 UDP "26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service "3724:TCP"= 3724:TCP:Blizzard Downloader: 3724 "7313:TCP"= 7313:TCP:BitComet 7313 TCP "7313:UDP"= 7313:UDP:BitComet 7313 UDP R1 mapledxp;mapledxp;C:\WINDOWS\system32\drivers\mapledxp.SYS [2004-04-05 11:44] R1 nltdi;nltdi;C:\WINDOWS\system32\drivers\nltdi.sys [2007-04-23 13:03] R2 procguard;procguard;C:\WINDOWS\system32\drivers\procguard.sys [2005-01-20 15:13] R3 SG760_XP;SAGEM 802.11g XG760 1211 Driver;C:\WINDOWS\system32\DRIVERS\WlanUZXP.sys [2006-01-09 11:26] S3 SIWIO;SIWIO;C:\WINDOWS\TEMP\SiwIo.sys [] S3 StMp3Rec;Pilote de périphérique de la restauration de lecteur;C:\WINDOWS\system32\Drivers\StMp3Rec.sys [2007-06-15 11:49] S3 ZDCndis5;ZDCndis5 Protocol Driver;C:\WINDOWS\system32\ZDCndis5.SYS [] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e02e1945-eb8e-11db-83ec-806d6172696f}] \Shell\AutoRun\command - D:\ASUSACPI.exe . Contenu du dossier 'Scheduled Tasks/Tƒches planifi‚es' "2008-04-10 19:45:02 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job" - C:\Program Files\Apple Software Update\SoftwareUpdate.exe . ************************************************************************** catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-15 15:05:11 Windows 5.1.2600 Service Pack 2 NTFS Balayage processus cach‚s ... Balayage cach‚ autostart entries ... Balayage des fichiers cach‚s ... Scan termin‚ avec succŠs Les fichiers cach‚s: 347 ************************************************************************** . --------------------- DLLs a charg‚ sous des processus courants --------------------- PROCESS: C:\WINDOWS\system32\winlogon.exe -> C:\Program Files\TheTurtle\rkmt.dll PROCESS: C:\WINDOWS\system32\lsass.exe -> C:\Program Files\TheTurtle\rkmt.dll PROCESS: C:\WINDOWS\system32\csrss.exe -> C:\Program Files\TheTurtle\rkmt.dll . ------------------------ Other Running Processes ------------------------ . C:\WINDOWS\system32\ati2evxx.exe C:\WINDOWS\system32\ati2evxx.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\ATKKBService.exe C:\Program Files\NetLimiter 2 Pro\nlsvc.exe C:\Program Files\VMware\VMware Player\vmware-authd.exe C:\Program Files\Fichiers communs\VMware\VMware Virtual Image Editing\vmount2.exe C:\WINDOWS\system32\vmnat.exe C:\WINDOWS\system32\vmnetdhcp.exe C:\Program Files\NetLimiter 2 Pro\NLClient.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Last.fm\LastFMHelper.exe C:\PROGRA~1\MICROS~4\rapimgr.exe . ************************************************************************** . Temps d'accomplissement: 2008-04-15 15:19:16 - machine was rebooted ComboFix-quarantined-files.txt 2008-04-15 13:19:11 Pre-Run: 25,598,431,232 octets libres Post-Run: 26,235,445,248 octets libres . 2008-04-12 18:11:23 --- E O F ---
- le 15 avril 2008
- 18 réponses
Processus "System" qui me prend presque tout mon UC avec Cou

obusco a répondu à un(e) sujet de obusco dans Software

Antivir ne m'as rien detecté, mais j'avais baissé l'analyse heuristique, il s'affolait pour tout. DiagHelp version v1.4 - http://www.malekal.com excute le 15/04/2008 à 13:36:19,90 Liste des derniers fichies modifies/crees dans windir\system32 et prefetch C:\WINDOWS\prefetch\NTOSBOOT-B00DFAAD.pf -->15/04/2008 13:31:49 C:\WINDOWS\System32\drivers\vidstub.sys -->15/04/2008 00:08:20 C:\WINDOWS\System32\drivers\GEARAspiWDM.sys -->29/01/2008 12:01:28 C:\WINDOWS\System32\drivers\ati2mtag.sys -->22/01/2008 23:38:03 C:\WINDOWS\System32\drivers\ati2erec.dll -->22/01/2008 21:58:35 C:\WINDOWS\System32\drivers\mrxdav.sys -->18/12/2007 11:51:35 C:\WINDOWS\System32\drivers\jraid.sys -->26/11/2007 12:16:50 C:\WINDOWS\System32\drivers\secdrv.sys -->13/11/2007 12:25:54 C:\WINDOWS\System32\msttxl16.dll -->15/04/2008 03:39:11 C:\WINDOWS\System32\PerfStringBackup.INI -->13/04/2008 23:25:00 C:\WINDOWS\System32\perfh00C.dat -->13/04/2008 23:25:00 C:\WINDOWS\System32\perfh009.dat -->13/04/2008 23:25:00 C:\WINDOWS\System32\perfc00C.dat -->13/04/2008 23:25:00 C:\WINDOWS\System32\perfc009.dat -->13/04/2008 23:25:00 C:\WINDOWS\System32\wpa.dbl -->11/04/2008 19:13:02 C:\WINDOWS\System32\FNTCACHE.DAT -->10/04/2008 17:09:23 C:\WINDOWS\System32\MRT.exe -->06/04/2008 07:56:20 C:\WINDOWS\System32\xfcodec.dll -->03/04/2008 01:26:06 C:\WINDOWS\System32\QuickTimeVR.qtx -->28/03/2008 23:37:26 C:\WINDOWS\System32\QuickTime.qts -->28/03/2008 23:37:26 C:\WINDOWS\System32\REX Shared Library.dll -->23/03/2008 15:50:53 C:\WINDOWS\System32\ReWire.dll -->23/03/2008 15:50:52 C:\WINDOWS\System32\win32k.sys -->20/03/2008 10:09:22 C:\WINDOWS\System32\TZLog.log -->16/03/2008 04:07:55 C:\WINDOWS\System32\pghash.dat -->26/02/2008 05:25:09 C:\WINDOWS\System32\pguard.dat -->25/02/2008 21:20:26 C:\WINDOWS\System32\winskfr.dll -->23/02/2008 05:25:01 C:\WINDOWS\System32\gdi32.dll -->20/02/2008 08:51:00 C:\WINDOWS\System32\dnsrslvr.dll -->20/02/2008 07:35:05 C:\WINDOWS\System32\dnsapi.dll -->20/02/2008 07:35:05 C:\WINDOWS\System32\mshtml.dll -->17/02/2008 00:32:38 C:\WINDOWS\System32\wininet.dll -->16/02/2008 11:02:39 C:\WINDOWS\System32\urlmon.dll -->16/02/2008 11:02:39 C:\WINDOWS\WindowsUpdate.log -->15/04/2008 13:34:13 C:\WINDOWS\0.log -->15/04/2008 13:30:07 C:\WINDOWS\bootstat.dat -->15/04/2008 13:29:29 C:\WINDOWS\wiadebug.log -->15/04/2008 03:40:48 C:\WINDOWS\SchedLgU.Txt -->15/04/2008 03:40:48 C:\WINDOWS\setupapi.log -->15/04/2008 01:28:00 C:\WINDOWS\TheTurtle.log -->15/04/2008 00:01:04 C:\WINDOWS\wiaservc.log -->14/04/2008 22:44:36 C:\WINDOWS\NeroDigital.ini -->14/04/2008 22:23:53 C:\WINDOWS\win.ini -->14/04/2008 19:08:57 C:\WINDOWS\system.ini -->14/04/2008 19:08:57 C:\WINDOWS\wmsetup.log -->14/04/2008 18:15:22 C:\WINDOWS\QTFont.qfn -->14/04/2008 14:44:11 C:\WINDOWS\Sti_Trace.log -->14/04/2008 00:41:29 C:\WINDOWS\ntbtlog.txt -->14/04/2008 00:15:08 winlogon.exe Verified: Signed svchost.exe Verified: Signed ws2_32.dll Verified: Signed user32.dll Verified: Signed tcpip.sys Verified: Signed ndis.sys Verified: Signed null.sys Verified: Signed ListDLLs v2.25 - DLL lister for Win9x/NT Copyright © 1997-2004 Mark Russinovich Sysinternals - www.sysinternals.com ------------------------------------------------------------------------------ explorer.exe pid: 1528 Command line: C:\WINDOWS\Explorer.EXE Base Size Version Path 0x58b50000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\comctl32.dll 0x6bc00000 0x9000 4.00.0008.0001 C:\WINDOWS\system32\mapledxp.dll 0x76f80000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL 0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll 0x13420000 0x1a000 11.00.5721.5145 C:\PROGRA~1\WINDOW~3\wmpband.dll 0x76ac0000 0x11000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL 0x164a0000 0x23000 5.02.5721.5145 C:\WINDOWS\system32\WPDShServiceObj.dll 0x109c0000 0x2c000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceTypes.dll 0x10930000 0x49000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceApi.dll 0x10000000 0x1b9000 2.00.0000.0007 C:\Program Files\Fichiers communs\Ahead\lib\NeroDigitalExt.dll 0x7c140000 0x103000 7.10.3077.0000 C:\Program Files\Fichiers communs\Ahead\lib\MFC71.DLL 0x7c340000 0x56000 7.10.3052.0004 C:\Program Files\Fichiers communs\Ahead\lib\MSVCR71.dll 0x7c3a0000 0x7b000 7.10.3077.0000 C:\Program Files\Fichiers communs\Ahead\lib\MSVCP71.dll 0x7d200000 0x2be000 3.01.4000.4039 C:\WINDOWS\system32\msi.dll 0x61c20000 0x54000 8.00.0000.9118 C:\Program Files\OpenOffice.org 2.2\program\shlxthdl.dll 0x5fc70000 0x18000 8.00.0000.9107 C:\Program Files\OpenOffice.org 2.2\program\uwinapi.dll 0x61740000 0x8e000 4.05.2003.0120 C:\Program Files\OpenOffice.org 2.2\program\stlport_vc7145.dll 0x01c50000 0x1c000 7.00.0000.0000 C:\Program Files\Adobe\Acrobat 7.0\ActiveX\PDFShell.dll 0x60510000 0x19000 2.00.50727.1433 C:\WINDOWS\system32\dfshim.dll 0x79000000 0x46000 2.00.50727.1433 C:\WINDOWS\system32\mscoree.dll 0x78130000 0x9b000 8.00.50727.1433 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.1433_x-ww_5cf844d2\MSVCR80.dll 0x79e70000 0x58f000 2.00.50727.1433 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll 0x00d50000 0xe000 C:\Program Files\TheTurtle\rkmt.dll 0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\System32\MSVCP60.dll 0x00d10000 0xe000 7.00.0000.1333 C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll 0x02490000 0x185000 1.05.0000.0011 C:\PROGRA~1\SPYBOT~1\SDHelper.dll 0x6d7c0000 0x79000 6.00.0030.0005 C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll ListDLLs v2.25 - DLL lister for Win9x/NT Copyright © 1997-2004 Mark Russinovich Sysinternals - www.sysinternals.com ------------------------------------------------------------------------------ winlogon.exe pid: 1028 Command line: winlogon.exe Base Size Version Path 0x01000000 0x81000 \??\C:\WINDOWS\system32\winlogon.exe 0x58b50000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\COMCTL32.dll 0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll 0x20000000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll 0x6bc00000 0x9000 4.00.0008.0001 C:\WINDOWS\system32\mapledxp.dll 0x10000000 0x20000 6.14.0010.4176 C:\WINDOWS\system32\Ati2evxx.dll 0x73d50000 0x3000 1.05.0532.0002 C:\WINDOWS\system32\WgaLogon.dll 0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll 0x76f80000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL 0x01130000 0xe000 C:\Program Files\TheTurtle\rkmt.dll Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E4D6-E003 Répertoire de C:\WINDOWS\system 10/12/2001 17:33 4 672 WOWPOST.EXE 1 fichier(s) 4 672 octets 0 Rép(s) 25 801 641 984 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E4D6-E003 Répertoire de C:\WINDOWS\system32 19/08/2004 16:09 6 144 csrss.exe 1 fichier(s) 6 144 octets 0 Rép(s) 25 801 641 984 octets libres Contenu de Downloaded Program Files Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E4D6-E003 Répertoire de C:\WINDOWS\Downloaded Program Files 15/03/2008 22:41 <REP> . 15/03/2008 22:41 <REP> .. 14/04/2007 20:39 65 desktop.ini 25/07/2002 17:13 24 576 dwusplay.dll 25/07/2002 17:13 196 608 dwusplay.exe 22/11/2006 23:22 372 736 GAME_UNO1.dll 22/11/2006 20:50 316 GAME_UNO1.INF 16/02/2005 16:15 401 408 isusweb.dll 22/02/2007 23:41 304 544 MessengerStatsPAClient.dll 28/02/2007 14:21 131 472 msgrchkr.dll 11/06/2007 12:21 5 021 swflash.inf 30/07/2007 20:24 293 wuweb.inf 10 fichier(s) 1 437 039 octets Total des fichiers listés : 10 fichier(s) 1 437 039 octets 2 Rép(s) 25 801 637 888 octets libres Recherche de rootkit! (Merci S!Ri) Recherche d'infections connues Export des clefs sensibles.. Liste des fichiers en exception sur le pare-feu XP SP2 "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\World Of Warcraft\\Repair.exe"="C:\\Program Files\\World Of Warcraft\\Repair.exe:*:Enabled:Blizzard Repair Utility" "D:\\NEWSWIND\\A_Sites\\gjklm\\FileZilla\\filezilla.exe"="D:\\NEWSWIND\\A_Sites\\gjklm\\FileZilla\\filezilla.exe:*:Enabled:FileZilla" "C:\\Program Files\\BitComet\\BitComet.exe"="C:\\Program Files\\BitComet\\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client" "C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule" "C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger" "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Civilization4.exe"="C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Civilization4.exe:*:Enabled:Sid Meier's Civilization 4" "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Warlords\\Civ4Warlords.exe"="C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Warlords\\Civ4Warlords.exe:*:Enabled:Sid Meier's Civilization 4 Warlords" "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Warlords\\Civ4Warlords_PitBoss.exe"="C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Warlords\\Civ4Warlords_PitBoss.exe:*:Enabled:Sid Meier's Civilization 4 Pitboss" "C:\\Program Files\\Anno 1701\\Anno1701.exe"="C:\\Program Files\\Anno 1701\\Anno1701.exe:*:Enabled:Anno 1701" "C:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe"="C:\\Program Files\\EA GAMES\\Battlefield 2\\BF2.exe:*:Enabled:Battlefield 2" "C:\\Program Files\\Xfire\\xfire.exe"="C:\\Program Files\\Xfire\\xfire.exe:*:Enabled:Xfire" "C:\\WINDOWS\\system32\\dpvsetup.exe"="C:\\WINDOWS\\system32\\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "C:\\WINDOWS\\system32\\rundll32.exe"="C:\\WINDOWS\\system32\\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application" "C:\\Program Files\\Steam\\SteamApps\\obusco\\counter-strike\\hl.exe"="C:\\Program Files\\Steam\\SteamApps\\obusco\\counter-strike\\hl.exe:*:Enabled:Half-Life Launcher" "C:\\Program Files\\Steam\\SteamApps\\obusco\\condition zero\\hl.exe"="C:\\Program Files\\Steam\\SteamApps\\obusco\\condition zero\\hl.exe:*:Enabled:Half-Life Launcher" "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Beyond the Sword\\Civ4BeyondSword.exe"="C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Beyond the Sword\\Civ4BeyondSword.exe:*:Enabled:Sid Meier's Civilization 4 Beyond the Sword" "C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Beyond the Sword\\Civ4BeyondSword_PitBoss.exe"="C:\\Program Files\\Firaxis Games\\Sid Meier's Civilization 4\\Beyond the Sword\\Civ4BeyondSword_PitBoss.exe:*:Enabled:Sid Meier's Civilization 4 Beyond the Sword Pitboss" "C:\\Program Files\\THQ\\Gas Powered Games\\GPGNet\\GPG.Multiplayer.Client.exe"="C:\\Program Files\\THQ\\Gas Powered Games\\GPGNet\\GPG.Multiplayer.Client.exe:*:Enabled:GPGNet - Supreme Commander" "C:\\Program Files\\Octoshape Streaming Services\\Alex\\OctoshapeClient.exe"="C:\\Program Files\\Octoshape Streaming Services\\Alex\\OctoshapeClient.exe:*:Enabled:OctoshapeClient" "C:\\Documents and Settings\\Alex\\Bureau\\pfull_361\\final\\SpyGestion.exe"="C:\\Documents and Settings\\Alex\\Bureau\\pfull_361\\final\\SpyGestion.exe:*:Enabled:SpyGestion" "C:\\Program Files\\FileZilla\\FileZilla.exe"="C:\\Program Files\\FileZilla\\FileZilla.exe:*:Enabled:FileZilla" "C:\\Program Files\\FlashGet\\flashget.exe"="C:\\Program Files\\FlashGet\\flashget.exe:*:Enabled:Flashget" "C:\\Program Files\\mIRC\\mirc.exe"="C:\\Program Files\\mIRC\\mirc.exe:*:Enabled:mIRC" "C:\\Program Files\\Mozilla Firefox\\firefox.exe"="C:\\Program Files\\Mozilla Firefox\\firefox.exe:*:Enabled:Mozilla Browser" "C:\\Program Files\\VideoLAN\\VLC\\vlc.exe"="C:\\Program Files\\VideoLAN\\VLC\\vlc.exe:*:Enabled:VLC media player" "C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager" "C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager" "C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application" "C:\\Program Files\\Steam\\Steam.exe"="C:\\Program Files\\Steam\\Steam.exe:*:Enabled:Steam" "C:\\Program Files\\World Of Warcraft\\WoW-2.2.0-frFR-downloader.exe"="C:\\Program Files\\World Of Warcraft\\WoW-2.2.0-frFR-downloader.exe:*:Enabled:Blizzard Downloader" "C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:µTorrent" "C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe"="C:\\Program Files\\Veoh Networks\\Veoh\\VeohClient.exe:*:Enabled:Veoh Client" "C:\\Program Files\\Steam\\steamapps\\xav9595\\counter-strike source\\hl2.exe"="C:\\Program Files\\Steam\\steamapps\\xav9595\\counter-strike source\\hl2.exe:*:Enabled:hl2" "C:\\Program Files\\Steam\\steamapps\\xav9595\\half-life 2 deathmatch\\hl2.exe"="C:\\Program Files\\Steam\\steamapps\\xav9595\\half-life 2 deathmatch\\hl2.exe:*:Enabled:hl2" "C:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"="C:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe:*:Enabled:Call of Duty® 4 - Modern Warfare" "C:\\Program Files\\TVUPlayer\\TVUPlayer.exe"="C:\\Program Files\\TVUPlayer\\TVUPlayer.exe:*:Enabled:TVUPlayer Component" "C:\\Program Files\\World Of Warcraft\\Wow.exe"="C:\\Program Files\\World Of Warcraft\\Wow.exe:*:Enabled:Wow.exe" "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" "C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype" "C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes" "C:\\Program Files\\Defcon\\defcon.exe"="C:\\Program Files\\Defcon\\defcon.exe:*:Enabled:Defcon" "C:\\Program Files\\Steam\\steamapps\\spritx\\counter-strike source\\hl2.exe"="C:\\Program Files\\Steam\\steamapps\\spritx\\counter-strike source\\hl2.exe:*:Enabled:hl2" "C:\\Program Files\\Steam\\steamapps\\spritx\\condition zero\\hl.exe"="C:\\Program Files\\Steam\\steamapps\\spritx\\condition zero\\hl.exe:*:Enabled:Half-Life Launcher" "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager" "C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"="C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager" "C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe"="C:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application" "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger" "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)" Export de la clef SharedTaskScheduler [sharedTaskScheduler] "{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui" "{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant" exports des policies REGEDIT4 [system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 Export des clefs sensibles.. Rechercher adresses sensibles dans le fichier HOSTS... 127.0.0.1 www.activexupdate.com 127.0.0.1 activexupdate.com 127.0.0.1 www.avpcheckupdate.com 127.0.0.1 avpcheckupdate.com 127.0.0.1 client.exeupdate.com 127.0.0.1 www.eupdatepage.com 127.0.0.1 eupdatepage.com 127.0.0.1 www.exeupdate.com 127.0.0.1 exeupdate.com 127.0.0.1 hotwinupdates.com 127.0.0.1 www.hotwinupdates.com 127.0.0.1 www.lavasoftupdate.com 127.0.0.1 lavasoftupdate.com 127.0.0.1 www.malwarewipeupdate.com 127.0.0.1 malwarewipeupdate.com 127.0.0.1 www.msupdate.net 127.0.0.1 msupdate.net 127.0.0.1 www.msupdater.net 127.0.0.1 msupdater.net 127.0.0.1 necessaryupdates.com 127.0.0.1 www.necessaryupdates.com 127.0.0.1 newupdates.lzio.com 127.0.0.1 redirect.msupdate.net 127.0.0.1 search.keyword.exeupdate.com 127.0.0.1 www.securityupdatesite.com 127.0.0.1 securityupdatesite.com 127.0.0.1 settings.updatemysettings.com 127.0.0.1 www.spyaxeupdate.com 127.0.0.1 spyaxeupdate.com 127.0.0.1 www.spyfalconupdate.com 127.0.0.1 spyfalconupdate.com 127.0.0.1 www.systemupdates.net 127.0.0.1 systemupdates.net 127.0.0.1 trial.updates.winsoftware.com 127.0.0.1 update.680180.net 127.0.0.1 www.updatemysettings.com 127.0.0.1 updatemysettings.com 127.0.0.1 updates.spywarequake.com 127.0.0.1 www.urgentsystemupdate.biz 127.0.0.1 urgentsystemupdate.biz 127.0.0.1 www.urgentsystemupdate.com 127.0.0.1 urgentsystemupdate.com 127.0.0.1 windupdates.com 127.0.0.1 www.antispywareupdates.net 127.0.0.1 antispywareupdates.net 127.0.0.1 update.shareaza.com 127.0.0.1 www.pandaantivirus-2007.com 127.0.0.1 pandaantivirus-2007.com 127.0.0.1 www.pandadownload-now.com 127.0.0.1 pandadownload-now.com 127.0.0.1 www.panda-hq.com 127.0.0.1 panda-hq.com catchme 0.3.1351 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-04-15 13:38:06 Windows 5.1.2600 Service Pack 2 NTFS scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] "s1"=dword:b69a0531 "s2"=dword:68e64ec5 "h0"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:7e,b3,83,a4,be,cc,9a,65,1f,4b,d3,cd,f7,b1,fe,52,0e,65,65,4c,12,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,89,40,7d,36,86,ce,85,cd,69,1d,8e,16,b7,18,28,6a,bf,.. "khjeh"=hex:0b,e8,f4,1d,48,88,7f,46,88,77,04,bf,2b,ea,22,e0,fd,3d,97,58,88,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:cd,75,1d,ce,31,65,6d,11,7a,ba,e1,3c,c2,7c,b2,95,44,11,61,de,f2,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41] "khjeh"=hex:9c,d4,ab,10,c4,f0,83,10,32,2a,37,f0,92,58,5d,28,2f,72,fb,50,07,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42] "khjeh"=hex:cc,76,11,47,c4,86,23,9b,f6,27,ba,b5,2c,e4,fd,fa,ee,28,3f,80,67,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43] "khjeh"=hex:91,3e,80,f8,c9,71,c3,4a,c1,e3,fc,2d,e7,08,8d,39,02,64,42,cb,34,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "h0"=dword:00000000 "khjeh"=hex:7e,b3,83,a4,be,cc,9a,65,1f,4b,d3,cd,f7,b1,fe,52,0e,65,65,4c,12,.. "p0"="C:\Program Files\DAEMON Tools\" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,89,40,7d,36,86,ce,85,cd,69,1d,8e,16,b7,18,28,6a,bf,.. "khjeh"=hex:0b,e8,f4,1d,48,88,7f,46,88,77,04,bf,2b,ea,22,e0,fd,3d,97,58,88,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:cd,75,1d,ce,31,65,6d,11,7a,ba,e1,3c,c2,7c,b2,95,44,11,61,de,f2,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41] "khjeh"=hex:9c,d4,ab,10,c4,f0,83,10,32,2a,37,f0,92,58,5d,28,2f,72,fb,50,07,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42] "khjeh"=hex:cc,76,11,47,c4,86,23,9b,f6,27,ba,b5,2c,e4,fd,fa,ee,28,3f,80,67,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43] "khjeh"=hex:91,3e,80,f8,c9,71,c3,4a,c1,e3,fc,2d,e7,08,8d,39,02,64,42,cb,34,.. scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden services: 0 hidden files: 0 KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Process list by traversal of KiWaitListHead 4 - System 368 - nlsvc.exe 480 - ati2evxx.exe 564 - svchost.exe 904 - vmware-authd.ex 988 - avguard.exe 992 - csrss.exe 1028 - winlogon.exe 1072 - services.exe 1084 - lsass.exe 1276 - svchost.exe 1336 - svchost.exe 1528 - explorer.exe 1620 - alg.exe 1804 - CCC.exe 1828 - svchost.exe 1980 - vmount2.exe 2020 - sched.exe 2028 - AppleMobileDevi 2676 - SMax4.exe 2888 - aaCenter.exe 3396 - firefox.exe 3604 - avgnt.exe 3632 - issch.exe 3748 - MOM.exe 3764 - cmd.exe 3820 - TheTurtle.exe 3832 - TeaTimer.exe Total number of processes = 28 NOTE: Under WinXP, this will not show all processes. KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (www.security.org.sg) Driver/Module list by traversal of PsLoadedModuleList 804D7000 - \WINDOWS\system32\ntkrnlpa.exe 806E2000 - \WINDOWS\system32\hal.dll BA5A8000 - \WINDOWS\system32\KDCOM.DLL BA4B8000 - \WINDOWS\system32\BOOTVID.dll B9E97000 - sptd.sys BA5AA000 - \WINDOWS\System32\Drivers\WMILIB.SYS B9E7F000 - \WINDOWS\System32\Drivers\SCSIPORT.SYS B9E50000 - ACPI.sys B9E3F000 - pci.sys BA0A8000 - isapnp.sys BA670000 - pciide.sys BA328000 - \WINDOWS\System32\DRIVERS\PCIIDEX.SYS BA0B8000 - MountMgr.sys B9E20000 - ftdisk.sys BA5AC000 - dmload.sys B9DFA000 - dmio.sys BA330000 - PartMgr.sys BA0C8000 - VolSnap.sys B9DE2000 - atapi.sys B9DCB000 - jraid.sys BA0D8000 - disk.sys BA0E8000 - \WINDOWS\System32\DRIVERS\CLASSPNP.SYS B9DAB000 - fltmgr.sys B9D99000 - sr.sys BA0F8000 - PxHelp20.sys B9D82000 - KSecDD.sys B9CF5000 - Ntfs.sys B9CC8000 - NDIS.sys B9CAD000 - Mup.sys BA1E8000 - \SystemRoot\System32\DRIVERS\intelppm.sys B96D7000 - \SystemRoot\system32\DRIVERS\ati2mtag.sys B96C3000 - \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS BA3A0000 - \SystemRoot\System32\DRIVERS\usbuhci.sys B96A0000 - \SystemRoot\System32\DRIVERS\USBPORT.SYS BA3A8000 - \SystemRoot\system32\DRIVERS\usbehci.sys B967B000 - \SystemRoot\system32\DRIVERS\HDAudBus.sys BA1F8000 - \SystemRoot\system32\DRIVERS\imapi.sys BA208000 - \SystemRoot\System32\DRIVERS\cdrom.sys BA218000 - \SystemRoot\System32\DRIVERS\redbook.sys B9658000 - \SystemRoot\System32\DRIVERS\ks.sys BA59C000 - \SystemRoot\System32\Drivers\GEARAspiWDM.sys B9647000 - \SystemRoot\System32\DRIVERS\serial.sys B9C89000 - \SystemRoot\System32\DRIVERS\serenum.sys BA3B0000 - \SystemRoot\System32\DRIVERS\fdc.sys BA5C0000 - \SystemRoot\system32\DRIVERS\ASACPI.sys B9633000 - \SystemRoot\System32\DRIVERS\parport.sys BA228000 - \SystemRoot\System32\DRIVERS\i8042prt.sys BA3B8000 - \SystemRoot\System32\DRIVERS\kbdclass.sys BA3C0000 - \SystemRoot\System32\DRIVERS\mouclass.sys B95CD000 - \SystemRoot\System32\Drivers\apl4ntzf.SYS B9C55000 - \SystemRoot\system32\drivers\atkkbnt.sys BA79F000 - \SystemRoot\System32\DRIVERS\audstub.sys BA238000 - \SystemRoot\System32\DRIVERS\rasl2tp.sys B9C51000 - \SystemRoot\System32\DRIVERS\ndistapi.sys B95A5000 - \SystemRoot\System32\DRIVERS\ndiswan.sys BA248000 - \SystemRoot\System32\DRIVERS\raspppoe.sys BA258000 - \SystemRoot\System32\DRIVERS\raspptp.sys BA420000 - \SystemRoot\System32\DRIVERS\TDI.SYS B94F4000 - \SystemRoot\System32\DRIVERS\psched.sys BA268000 - \SystemRoot\System32\DRIVERS\msgpc.sys BA428000 - \SystemRoot\System32\DRIVERS\ptilink.sys BA430000 - \SystemRoot\System32\DRIVERS\raspti.sys B94C3000 - \SystemRoot\System32\DRIVERS\rdpdr.sys BA278000 - \SystemRoot\System32\DRIVERS\termdd.sys BA5C6000 - \SystemRoot\System32\DRIVERS\swenum.sys B946A000 - \SystemRoot\System32\DRIVERS\update.sys BA570000 - \SystemRoot\System32\DRIVERS\mssmbios.sys BA578000 - \SystemRoot\system32\DRIVERS\vmnetadapter.sys BA57C000 - \SystemRoot\system32\DRIVERS\VMNET.SYS BA288000 - \SystemRoot\System32\Drivers\NDProxy.SYS BA2B8000 - \SystemRoot\System32\DRIVERS\usbhub.sys BA5C8000 - \SystemRoot\System32\DRIVERS\USBD.SYS AD3E5000 - \SystemRoot\system32\drivers\ADIHdAud.sys AD3C1000 - \SystemRoot\system32\drivers\portcls.sys BA2C8000 - \SystemRoot\system32\drivers\drmk.sys AD3AA000 - \SystemRoot\system32\drivers\AEAudio.sys AD34A000 - \SystemRoot\system32\drivers\Senfilt.sys BA440000 - \SystemRoot\System32\DRIVERS\flpydisk.sys BA5CC000 - \SystemRoot\System32\Drivers\Fs_Rec.SYS BA6A3000 - \SystemRoot\System32\Drivers\Null.SYS BA5CE000 - \SystemRoot\System32\Drivers\Beep.SYS BA598000 - \SystemRoot\System32\drivers\mapledxp.SYS BA450000 - \SystemRoot\System32\drivers\vga.sys BA5D0000 - \SystemRoot\System32\Drivers\mnmdd.SYS BA5D2000 - \SystemRoot\System32\DRIVERS\RDPCDD.sys BA458000 - \SystemRoot\System32\Drivers\Msfs.SYS BA460000 - \SystemRoot\System32\Drivers\Npfs.SYS B9C85000 - \SystemRoot\System32\DRIVERS\rasacd.sys AD2EF000 - \SystemRoot\System32\DRIVERS\ipsec.sys AD297000 - \SystemRoot\System32\DRIVERS\tcpip.sys AD25C000 - \??\C:\WINDOWS\system32\drivers\nltdi.sys AD23B000 - \SystemRoot\System32\DRIVERS\ipnat.sys AD213000 - \SystemRoot\System32\DRIVERS\netbt.sys BA2E8000 - \SystemRoot\System32\DRIVERS\wanarp.sys AD129000 - \SystemRoot\System32\drivers\afd.sys BA2F8000 - \SystemRoot\System32\DRIVERS\netbios.sys BA468000 - \SystemRoot\System32\Drivers\SCDEmu.SYS AD0FE000 - \SystemRoot\System32\DRIVERS\rdbss.sys AD08F000 - \SystemRoot\System32\DRIVERS\mrxsmb.sys BA318000 - \SystemRoot\System32\Drivers\Fips.SYS BA188000 - \SystemRoot\system32\DRIVERS\avipbb.sys BA5D4000 - \??\C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys BA5D6000 - \SystemRoot\system32\drivers\AsIO.sys BA1A8000 - \SystemRoot\System32\Drivers\Cdfs.SYS AD027000 - \SystemRoot\system32\DRIVERS\WlanUZXP.sys BA480000 - \SystemRoot\system32\DRIVERS\USBSTOR.SYS AD00F000 - \SystemRoot\System32\Drivers\dump_atapi.sys BA5E2000 - \SystemRoot\System32\Drivers\dump_WMILIB.SYS BF800000 - \SystemRoot\System32\win32k.sys AD28B000 - \SystemRoot\System32\drivers\Dxapi.sys BA488000 - \SystemRoot\System32\watchdog.sys BF000000 - \SystemRoot\System32\drivers\dxg.sys BA747000 - \SystemRoot\System32\drivers\dxgthk.sys BF012000 - \SystemRoot\System32\atkdisp.dll BF057000 - \SystemRoot\System32\ati2dvag.dll BF09D000 - \SystemRoot\System32\ati2cqag.dll BF118000 - \SystemRoot\System32\atikvmag.dll BF186000 - \SystemRoot\System32\atiok3x2.dll BF1B3000 - \SystemRoot\System32\ati3duag.dll BF4AE000 - \SystemRoot\System32\ativvaxx.dll BA4A0000 - \SystemRoot\system32\DRIVERS\vmnetbridge.sys AACEF000 - \SystemRoot\System32\DRIVERS\ndisuio.sys AAA8A000 - \SystemRoot\system32\drivers\wdmaud.sys AAC97000 - \SystemRoot\system32\drivers\sysaudio.sys AA858000 - \SystemRoot\System32\Drivers\Fastfat.SYS AA7A6000 - \??\C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys AAA2F000 - \??\C:\WINDOWS\system32\Drivers\hcmon.sys BA624000 - \SystemRoot\System32\Drivers\ParVdm.SYS BA388000 - \??\C:\WINDOWS\system32\Drivers\VMparport.sys AA70B000 - \??\C:\WINDOWS\system32\Drivers\vmx86.sys AA780000 - \SystemRoot\System32\drivers\aspi32.sys AA73B000 - \??\C:\WINDOWS\system32\drivers\EIO.sys AA5C9000 - \SystemRoot\System32\DRIVERS\srv.sys BA340000 - \??\C:\WINDOWS\system32\drivers\procguard.sys AAD97000 - \SystemRoot\System32\DRIVERS\secdrv.sys AA723000 - \SystemRoot\System32\Drivers\Stltrk2k.SYS AA627000 - \??\C:\WINDOWS\system32\drivers\vmnetuserif.sys AA5AD000 - \??\C:\Program Files\Fichiers communs\VMware\VMware Virtual Image Editing\vstor2.sys AA2B8000 - \SystemRoot\System32\Drivers\HTTP.sys BA759000 - \SystemRoot\System32\DRIVERS\KProcCheck.sys Total number of drivers = 140 Liste des programmes installes 7-Zip 4.57 Adobe After Effects 7.0 Adobe After Effects 7.0 Adobe Bridge 1.0 Adobe Common File Installer Adobe ExtendScript Toolkit 1.0 Adobe Flash Player Plugin Adobe Help Center 2.0 Adobe Photoshop CS2 Adobe Photoshop CS2 Adobe Reader 7.0 Adobe Stock Photos 1.0 Adobe Stock Photos 1.0 AGEIA PhysX v7.07.09 AI Suite Apple Mobile Device Support Apple Software Update Assistant de connexion Windows Live ASUS ATI Driver ASUS Enhanced Display Driver ATI - Software Uninstall Utility ATI Catalyst Control Center ATI Display Driver ATI Parental Control & Encoder Audiosurf AusLogics Disk Defrag 1.4 AutoUpdate Avira AntiVir PersonalEdition Classic AviSynth 2.5 AVIVO Codecs Bioshock BitComet 0.90 Bome's Mouse Keyboard 2.00 BootSkin Call of Duty® 4 - Modern Warfare Call of Duty® 4 - Modern Warfare CamStudio 2.0 Fr Catalyst Control Center Core Implementation Catalyst Control Center Graphics Full Existing Catalyst Control Center Graphics Full New Catalyst Control Center Graphics Light Catalyst Control Center Graphics Previews Common ccc-core-preinstall ccc-core-static ccc-utility CCC Help English CCleaner (remove only) Condition Zero CoreAAC Audio Decoder (remove only) Correctif pour Lecteur Windows Media 11 (KB939683) Correctif Windows XP - KB873339 Correctif Windows XP - KB885835 Correctif Windows XP - KB885836 Correctif Windows XP - KB885884 Correctif Windows XP - KB886185 Correctif Windows XP - KB887472 Correctif Windows XP - KB888302 Correctif Windows XP - KB890859 Correctif Windows XP - KB891781 Counter-Strike: Source Cpukiller3 v1.0.5 CSSBScript - Version Full dBpoweramp [iD Tag Update] Codec dBpoweramp Musepack Codec Defcon v1.43 DivX Codec DivX Content Uploader DivX Converter DivX Player DivX Web Player dMC 10.1 DVD Shrink 3.2 EasyPHP 1.8 EasyRecovery Professional EasyRecovery Professional EasyRecovery Professional Essai EasyRecovery Professional Trial eMule FileZilla (remove only) Fraps Free Mp3 Wma Converter V 1.7.2 Game Cam 2.0 Garry's Mod Google Earth Grand Theft Auto: Vice City Half-Life 2 High Definition Audio Driver Package - KB888111 HijackThis 2.0.2 Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows XP (KB909394) Hotfix for Windows XP (KB926239) Hurchalla Maple VMidi Cable v3.56 iTunes Java 6 Update 2 Java 6 Update 3 Java SE Runtime Environment 6 Java SE Runtime Environment 6 Update 1 JMB36X Raid Configurer K-Lite Codec Pack 2.89 Full KiddiesBarre 1.0 Lame ACM MP3 Codec Last.fm 1.4.2.59470 Lecteur Windows Media 11 LeechFTP Livebox LiveUpdate 1.80 (Symantec Corporation) Macromedia Dreamweaver 8 Macromedia Extension Manager Macromedia Fireworks 8 Macromedia Flash 8 Macromedia Flash 8 Video Encoder Macromedia Flash Player 8 Media Tagger v1.3.5 MemoWeb 4 - Découverte Messenger Plus! Live Microsoft .NET Compact Framework 1.0 SP3 Microsoft .NET Compact Framework 2.0 SP2 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Hotfix (KB928366) Microsoft .NET Framework 2.0 Language Pack - FRA Microsoft .NET Framework 2.0 Service Pack 1 Microsoft ActiveSync Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Game Studios Common Redistributables Pack 1 Microsoft Office PowerPoint Viewer 2003 Microsoft Reader for Pocket PC Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable Microsoft Windows Journal Viewer Microsoft XML Parser mIRC Mise à jour de sécurité pour Lecteur Windows Media (KB911564) Mise à jour de sécurité pour Lecteur Windows Media 11 (KB936782) Mise à jour de sécurité pour Lecteur Windows Media 6.4 (KB925398) Mise à jour de sécurité pour Lecteur Windows Media 9 (KB917734) Mise à jour de sécurité pour Windows XP (KB893756) Mise à jour de sécurité pour Windows XP (KB896358) Mise à jour de sécurité pour Windows XP (KB896423) Mise à jour de sécurité pour Windows XP (KB896428) Mise à jour de sécurité pour Windows XP (KB899587) Mise à jour de sécurité pour Windows XP (KB899591) Mise à jour de sécurité pour Windows XP (KB900725) Mise à jour de sécurité pour Windows XP (KB901017) Mise à jour de sécurité pour Windows XP (KB901214) Mise à jour de sécurité pour Windows XP (KB902400) Mise à jour de sécurité pour Windows XP (KB904706) Mise à jour de sécurité pour Windows XP (KB905414) Mise à jour de sécurité pour Windows XP (KB905749) Mise à jour de sécurité pour Windows XP (KB908519) Mise à jour de sécurité pour Windows XP (KB911562) Mise à jour de sécurité pour Windows XP (KB911927) Mise à jour de sécurité pour Windows XP (KB913580) Mise à jour de sécurité pour Windows XP (KB914388) Mise à jour de sécurité pour Windows XP (KB914389) Mise à jour de sécurité pour Windows XP (KB917344) Mise à jour de sécurité pour Windows XP (KB917422) Mise à jour de sécurité pour Windows XP (KB917953) Mise à jour de sécurité pour Windows XP (KB918118) Mise à jour de sécurité pour Windows XP (KB918439) Mise à jour de sécurité pour Windows XP (KB919007) Mise à jour de sécurité pour Windows XP (KB920213) Mise à jour de sécurité pour Windows XP (KB920670) Mise à jour de sécurité pour Windows XP (KB920683) Mise à jour de sécurité pour Windows XP (KB920685) Mise à jour de sécurité pour Windows XP (KB922819) Mise à jour de sécurité pour Windows XP (KB923191) Mise à jour de sécurité pour Windows XP (KB923414) Mise à jour de sécurité pour Windows XP (KB923689) Mise à jour de sécurité pour Windows XP (KB923694) Mise à jour de sécurité pour Windows XP (KB923980) Mise à jour de sécurité pour Windows XP (KB924191) Mise à jour de sécurité pour Windows XP (KB924270) Mise à jour de sécurité pour Windows XP (KB924496) Mise à jour de sécurité pour Windows XP (KB924667) Mise à jour de sécurité pour Windows XP (KB925902) Mise à jour de sécurité pour Windows XP (KB926255) Mise à jour de sécurité pour Windows XP (KB926436) Mise à jour de sécurité pour Windows XP (KB927779) Mise à jour de sécurité pour Windows XP (KB927802) Mise à jour de sécurité pour Windows XP (KB928090) Mise à jour de sécurité pour Windows XP (KB928255) Mise à jour de sécurité pour Windows XP (KB928843) Mise à jour de sécurité pour Windows XP (KB929123) Mise à jour de sécurité pour Windows XP (KB929969) Mise à jour de sécurité pour Windows XP (KB930178) Mise à jour de sécurité pour Windows XP (KB931261) Mise à jour de sécurité pour Windows XP (KB931784) Mise à jour de sécurité pour Windows XP (KB932168) Mise à jour de sécurité pour Windows XP (KB933729) Mise à jour de sécurité pour Windows XP (KB935839) Mise à jour de sécurité pour Windows XP (KB935840) Mise à jour de sécurité pour Windows XP (KB936021) Mise à jour de sécurité pour Windows XP (KB937894) Mise à jour de sécurité pour Windows XP (KB938127) Mise à jour de sécurité pour Windows XP (KB938829) Mise à jour de sécurité pour Windows XP (KB941202) Mise à jour de sécurité pour Windows XP (KB941568) Mise à jour de sécurité pour Windows XP (KB941569) Mise à jour de sécurité pour Windows XP (KB941644) Mise à jour de sécurité pour Windows XP (KB941693) Mise à jour de sécurité pour Windows XP (KB943055) Mise à jour de sécurité pour Windows XP (KB943460) Mise à jour de sécurité pour Windows XP (KB943485) Mise à jour de sécurité pour Windows XP (KB944338) Mise à jour de sécurité pour Windows XP (KB944533) Mise à jour de sécurité pour Windows XP (KB944653) Mise à jour de sécurité pour Windows XP (KB945553) Mise à jour de sécurité pour Windows XP (KB946026) Mise à jour de sécurité pour Windows XP (KB947864) Mise à jour de sécurité pour Windows XP (KB948590) Mise à jour de sécurité pour Windows XP (KB948881) Mise à jour pour Windows XP (KB894391) Mise à jour pour Windows XP (KB898461) Mise à jour pour Windows XP (KB900485) Mise à jour pour Windows XP (KB908531) Mise à jour pour Windows XP (KB910437) Mise à jour pour Windows XP (KB911280) Mise à jour pour Windows XP (KB916595) Mise à jour pour Windows XP (KB920872) Mise à jour pour Windows XP (KB922582) Mise à jour pour Windows XP (KB927891) Mise à jour pour Windows XP (KB930916) Mise à jour pour Windows XP (KB931836) Mise à jour pour Windows XP (KB936357) Mise à jour pour Windows XP (KB938828) Mise à jour pour Windows XP (KB942763) Mise à jour pour Windows XP (KB942840) MKVtoolnix 2.0.2-1 Mlehrer 2.23 Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA Mozilla Firefox (2.0.0.13) MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 Parser and SDK Nero 7 Demo NetLimiter 2 Pro (remove only) NetMeter 1.1.0 (beta) Notepad++ Oblivion Odebit Multimédia V3 OGSConverter version 2.10 OpenOffice.org 2.2 Opera 9.26 PacSteamT PC Inspector File Recovery PC Probe II PowerISO PremiumSoft Navicat MySQL 7.2 Privoxy 3.0.6 QuickTime RealPlayer REALTEK GbE & FE Ethernet PCI-E NIC Driver Reason 4.0 Reason MIDI Board 1.1 Ri4m v5.0.1d RIAM Video Enhancer Ripp-It Codec Pack v 4.2.6 Safari SAGEM Wi-Fi 11g USB adapter (outil) SAGEM Wi-Fi 11g USB adapter (pilote) Sarbacane Sid Meier's Civilization 4 Sid Meier's Civilization 4 Sid Meier's Civilization 4 - Beyond the Sword Sid Meier's Civilization 4 - Warlords SigmaTel MSCN Audio Player Skins Skype 3.1 Skype Plugin Manager SoundMAX Spb Backup Spybot - Search & Destroy Steam StuffPlug 3 TCPMP TeamSpeak 2 RC2 TheTurtle 4.2 THOMSON mp3PRO Audio Player Tor 0.1.2.17 Total Commander (Remove or Repair) USB Picture Card Reader UxTheme Multipatcher Fr VeohTV BETA VeohTV BETA Vidalia 0.0.14 VideoLAN VLC media player 0.8.6a VirtualDub 1.6.9 Fr VirtualDubMOD 1.5.10.2 b2540 Fr VisualSubSync (remove only) VMware Player WebFldrs XP Windows Genuine Advantage Notifications (KB905474) Windows Genuine Advantage Validation Tool (KB892130) Windows Genuine Advantage Validation Tool (KB892130) Windows Installer 3.1 (KB893803) Windows Live installer Windows Live Messenger Windows Media Format 11 runtime Windows Media Format 11 runtime Windows Media Player 11 Windows Media Player Firefox Plugin Windows XP Service Pack 2 WinHTTrack Website Copier 3.41-2 WinRAR Archiveur Wow Cartographe 1.07 Xfire (remove only) Yahoo! Install Manager Yahoo! Toolbar Yahoo! Toolbar avec bloqueur de fenêtres pop-up Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E4D6-E003 Répertoire de C:\Program Files 15/04/2008 00:06 <REP> . 15/04/2008 00:06 <REP> .. 16/08/2007 16:06 <REP> 3wPlayer 17/01/2008 02:03 <REP> 7-Zip 28/10/2007 13:35 <REP> Aceana2001 29/02/2008 21:53 <REP> Act-3D 07/02/2008 20:53 <REP> Activision 27/09/2007 18:47 <REP> Adobe 12/12/2007 13:11 <REP> AGEIA Technologies 15/04/2007 01:43 <REP> Ahead 15/04/2007 00:14 <REP> Analog Devices 20/01/2008 05:58 <REP> Anno 1701 14/04/2008 20:08 <REP> AntiVir PersonalEdition Classic 05/11/2007 18:21 <REP> Apple Software Update 15/04/2007 00:48 <REP> ASUS 01/03/2008 19:55 <REP> ATI Technologies 14/04/2008 19:24 <REP> AusLogics Disk Defrag 17/07/2007 01:23 <REP> AviSynth 2.5 24/06/2007 13:59 <REP> Bethesda Softworks 01/03/2008 19:40 <REP> BitComet 23/03/2008 16:09 <REP> Bome's Mouse Keyboard 08/01/2008 00:15 <REP> CACE Technologies 20/02/2008 15:14 <REP> CamStudio 07/01/2008 23:27 <REP> CCleaner 13/03/2008 00:33 <REP> CDex_170b2 15/04/2007 01:36 <REP> Common Files 14/04/2007 20:37 <REP> ComPlus Applications 18/08/2007 01:19 <REP> Cpukiller3 30/04/2007 06:47 <REP> DAEMON Tools 13/03/2008 01:30 <REP> dBpowerAMP 14/04/2008 12:21 <REP> Defcon 01/05/2007 15:13 <REP> Dictionnaire 10/08/2007 20:46 <REP> directx 21/12/2007 19:50 <REP> DivX 30/01/2008 21:02 <REP> DVD Shrink 08/06/2007 18:39 <REP> EasyPHP1-8 30/04/2007 18:05 <REP> Electronic Arts 14/04/2008 21:19 <REP> eMule 13/04/2008 22:05 <REP> Eurobarre 15/04/2008 00:06 <REP> Fichiers communs 18/04/2007 14:51 <REP> FileZilla 17/05/2007 14:23 <REP> Firaxis Games 28/08/2007 13:29 <REP> FlashGet 21/03/2008 21:00 <REP> Fractalis Software 13/03/2008 00:25 <REP> Free Audio Pack 09/03/2008 13:18 <REP> Game Cam V2 13/04/2008 22:24 <REP> Google 04/03/2008 23:18 <REP> Goto 20/05/2007 23:04 <REP> Goto software 14/04/2008 00:05 <REP> Gpotato.eu 13/04/2008 22:06 <REP> Hair Pro 2008 Light 14/04/2008 18:21 <REP> HardwareDetection 25/02/2008 21:48 <REP> IDoser v4 01/09/2007 15:12 <REP> Illustrate 04/03/2008 23:18 <REP> i-Media 15/04/2007 00:08 <REP> Intel 04/03/2008 23:27 <REP> IntelliTamper 10/04/2008 16:50 <REP> Internet Explorer 20/10/2007 14:54 <REP> Inventel 10/04/2008 23:02 <REP> iPod 10/04/2008 23:02 <REP> iTunes 15/07/2007 16:37 <REP> JAP 29/11/2007 18:47 <REP> Java 23/02/2008 04:49 <REP> KiddiesBarre 18/04/2007 22:33 <REP> K-Lite Codec Pack 29/04/2007 12:11 <REP> Kodak 17/01/2008 03:24 <REP> Last.fm 18/05/2007 22:48 <REP> LeechFTP 13/04/2008 23:27 <REP> Mackila 15/05/2007 19:05 <REP> Macromedia 24/11/2007 23:38 <REP> Media Tagger 16/04/2007 06:39 <REP> Messenger 30/03/2008 14:43 <REP> Messenger Plus! Live 12/07/2007 03:37 <REP> Microsoft .NET Compact Framework 1.0 SP3 25/02/2008 21:47 <REP> Microsoft ActiveSync 14/04/2007 20:41 <REP> microsoft frontpage 07/02/2008 20:05 <REP> Microsoft Games 17/11/2007 16:28 <REP> Microsoft Office 12/07/2007 03:30 <REP> Microsoft.NET 01/01/2008 00:27 <REP> mIRC 17/07/2007 01:27 <REP> MKVtoolnix 15/03/2008 23:03 <REP> Mlehrer 14/04/2007 23:55 <REP> Movie Maker 15/04/2008 13:33 <REP> Mozilla Firefox 14/04/2007 20:37 <REP> MSN 14/04/2007 20:37 <REP> MSN Gaming Zone 01/04/2008 20:26 <REP> MSN Messenger 24/04/2007 20:47 <REP> MSXML 4.0 15/04/2007 00:41 <REP> My Company Name 15/04/2007 01:47 <REP> Nero 01/03/2008 22:07 <REP> NetLimiter 2 Pro 14/04/2007 23:54 <REP> NetMeeting 21/07/2007 00:50 <REP> NetMeter 01/07/2007 14:27 <REP> No-IP 28/06/2007 22:08 <REP> Notepad++ 06/11/2007 18:02 <REP> Nouveau dossier 22/08/2007 16:20 <REP> Octoshape Streaming Services 03/07/2007 03:33 <REP> Odebit Multimédia 19/09/2007 13:23 <REP> OGSConverter 18/04/2007 00:14 <REP> Ontrack 02/05/2007 19:13 <REP> OpenOffice.org 2.2 25/02/2008 21:41 <REP> Opera 16/03/2008 04:08 <REP> Outlook Express 13/04/2008 23:32 <REP> Panda Security 17/04/2007 19:24 <REP> PC Inspector File Recovery 14/04/2008 19:20 <REP> Power Defrag 28/08/2007 21:31 <REP> PowerISO 28/06/2007 21:31 <REP> PremiumSoft 13/04/2008 22:06 <REP> Prime95 25/02/2008 21:20 <REP> ProcessGuard 21/03/2008 20:37 <REP> Propellerhead 14/05/2007 09:13 <REP> PSCS2Updater 10/04/2008 23:00 <REP> QuickTime 04/05/2007 19:24 <REP> Real 22/08/2007 12:57 <REP> Reality Pump 15/04/2007 00:19 <REP> Realtek 17/07/2007 13:12 <REP> RIAM Video Enhancer 17/07/2007 13:07 <REP> Ripp-It Codec Pack 09/04/2008 19:19 <REP> Ripp-it_AM 20/03/2008 22:48 <REP> Safari 21/10/2007 20:34 <REP> SAGEM 21/10/2007 20:34 <REP> SAGEM WiFi manager 07/02/2008 23:31 <REP> Satellite TV for PC 20/10/2007 14:58 <REP> Securitoo 14/04/2007 20:37 <REP> Services en ligne 13/03/2008 22:07 <REP> SigmaTel 08/05/2007 18:53 <REP> Skype 12/05/2007 12:37 <REP> Sony 25/02/2008 18:45 <REP> Spybot - Search & Destroy 15/04/2008 00:06 <REP> Stardock 01/03/2008 22:21 <REP> StatnPerf 15/04/2008 00:16 <REP> Steam 01/04/2008 20:29 <REP> StuffPlug3 02/04/2008 19:34 <REP> Symantec 15/04/2007 20:20 <REP> Teamspeak2_RC2 13/04/2008 23:26 <REP> Teleport Pro 27/07/2007 19:12 <REP> TheTurtle 13/03/2008 00:33 <REP> THOMSON mp3PRO Audio Player 02/05/2007 18:58 <REP> TRELLIAN 13/04/2008 22:21 <REP> Trend Micro 24/02/2008 16:02 <REP> uTorrent 14/04/2008 19:41 <REP> UxTheme Multipatcher Fr 10/01/2008 20:25 <REP> Veoh Networks 14/09/2007 17:03 <REP> Vidalia Bundle 15/04/2007 22:19 <REP> VideoLAN 16/07/2007 01:37 <REP> VirtualDub 17/07/2007 01:10 <REP> VirtualDubMOD 05/01/2008 18:07 <REP> VisualSubSync 13/04/2008 23:19 <REP> VMware 21/10/2007 19:51 <REP> Wanadoo 08/09/2007 13:10 <REP> Windows Journal Viewer 01/04/2008 20:22 <REP> Windows Live 21/04/2007 23:13 <REP> Windows Media Connect 2 16/12/2007 16:36 <REP> Windows Media Player 14/04/2007 23:54 <REP> Windows NT 30/04/2007 22:53 <REP> WinHTTrack 14/04/2007 20:48 <REP> WinRAR 25/02/2008 23:14 <REP> World Of Warcraft 28/02/2008 02:24 <REP> WowCartographe 14/04/2007 20:41 <REP> xerox 17/07/2007 13:30 <REP> Xilisoft 13/04/2008 22:06 <REP> Yahoo! 0 fichier(s) 0 octets 162 Rép(s) 25 789 501 440 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E4D6-E003 Répertoire de C:\Program Files\fichiers communs 15/04/2008 00:06 <REP> . 15/04/2008 00:06 <REP> .. 27/09/2007 18:50 <REP> Adobe 14/05/2007 09:03 <REP> Adobe Systems Shared 15/04/2007 01:49 <REP> Ahead 30/07/2007 17:16 <REP> Apple 15/04/2007 00:38 <REP> ATI Technologies 13/10/2007 16:06 <REP> Blizzard Entertainment 15/04/2007 18:24 278 528 FDEUnInstaller.exe 27/05/2007 09:51 <REP> InstallShield 21/04/2007 17:17 <REP> Java 16/04/2007 19:20 <REP> Macromedia 13/04/2008 23:20 <REP> Microsoft Shared 14/04/2007 20:38 <REP> MSSoap 15/04/2007 21:31 <REP> ODBC 04/05/2007 19:24 <REP> Real 29/04/2007 12:11 <REP> SCM 14/04/2007 20:38 <REP> Services 08/05/2007 18:53 <REP> Skype 15/05/2007 21:33 <REP> SourceTec 15/04/2007 21:31 <REP> SpeechEngines 15/04/2008 00:06 <REP> Stardock 15/04/2007 01:10 <REP> SWF Studio 02/04/2008 19:34 <REP> Symantec Shared 16/03/2008 04:08 <REP> System 29/02/2008 20:03 <REP> Thraex Software 13/04/2008 23:19 <REP> VMware 13/04/2008 22:44 <REP> Wise Installation Wizard 04/05/2007 19:24 <REP> xing shared 1 fichier(s) 278 528 octets 28 Rép(s) 25 789 505 536 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E4D6-E003 Répertoire de C:\Program Files\fichiers communs\Microsoft Shared\Web Folders 29/08/2007 23:51 <REP> . 29/08/2007 23:51 <REP> .. 17/06/2007 16:16 <REP> 1033 29/08/2007 23:51 <REP> 1036 15/02/2001 05:45 1 318 912 MSONSEXT.DLL 03/06/1999 14:09 122 937 MSOWS409.DLL 07/03/2001 09:00 127 033 MSOWS40c.DLL 22/01/2001 03:25 86 016 PKMWS.DLL 4 fichier(s) 1 654 898 octets 4 Rép(s) 25 789 505 536 octets libres Le volume dans le lecteur C n'a pas de nom. Le numéro de série du volume est E4D6-E003 Répertoire de C:\Program Files\common files 15/04/2007 01:36 <REP> . 15/04/2007 01:36 <REP> .. 15/04/2007 01:36 <REP> Ahead 0 fichier(s) 0 octets 3 Rép(s) 25 789 505 536 octets libres c:\Documents and Settings\Administrateur\Local Settings\Temp\Install_WLMessenger.exe c:\Documents and Settings\Alex\Application Data\Microsoft\Installer\{7A0BAED2-066E-4B4F-8FA5-472A4655F4C2}\_5af141bb.exe c:\Documents and Settings\Alex\Application Data\Microsoft\Installer\{885A63EA-382B-4DD4-A755-14809B8557D6}\ARPPRODUCTICON.exe c:\Documents and Settings\Alex\Application Data\Microsoft\Installer\{C941F1F1-25B3-4DF5-83E6-888C51A1AAB6}\ARPPRODUCTICON.exe c:\Documents and Settings\Alex\Application Data\Microsoft\Installer\{FB706A00-C234-4716-AB1F-27DCB192C664}\ARPPRODUCTICON.exe c:\Documents and Settings\Alex\Application Data\Mozilla\Firefox\Profiles\r8i1ltk9.default\FlashGot.exe c:\Documents and Settings\Alex\Application Data\Mozilla\Firefox\Profiles\r8i1ltk9.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\maconfsetup.exe c:\Documents and Settings\Alex\Application Data\U3\temp\cleanup.exe c:\Documents and Settings\Alex\Bureau\tcpvcon.exe c:\Documents and Settings\Alex\Bureau\Tcpview.exe c:\Documents and Settings\Alex\Bureau\XuMouse.exe c:\Documents and Settings\Alex\Bureau\-== Jeux ==-\Civ4BeyondSword.exe c:\Documents and Settings\Alex\Bureau\10_aout\DivXPlayer.exe c:\Documents and Settings\Alex\Bureau\10_aout\Firefox Setup 2.0.0.3.exe c:\Documents and Settings\Alex\Bureau\10_aout\Tubedownloader10.exe c:\Documents and Settings\Alex\Bureau\24_aout\DivXPlayer.exe c:\Documents and Settings\Alex\Bureau\24_aout\Firefox Setup 2.0.0.3.exe c:\Documents and Settings\Alex\Bureau\24_aout\Tubedownloader10.exe c:\Documents and Settings\Alex\Bureau\ANiMATED.TEXTURE.CONVERTER_SMiDDY\vtex.exe c:\Documents and Settings\Alex\Bureau\blender-2.44-windows\blender.exe c:\Documents and Settings\Alex\Bureau\blender-2.44-windows\blenderplayer.exe c:\Documents and Settings\Alex\Bureau\cssource_script_generator\cssource_script_generator.exe c:\Documents and Settings\Alex\Bureau\cssource_script_generator\background\vtex.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\catchme.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\diff.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\dumphive.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\FilesInfoCmd.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\find2.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\Fport.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\grep.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\gzip.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\KProcCheck.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\LFiles.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\LISTDLLS.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\md5sums.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\pslist.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\sigcheck.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\streams.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\swreg.exe c:\Documents and Settings\Alex\Bureau\diaghelp\DiagHelp\tar.exe c:\Documents and Settings\Alex\Bureau\FrenchySkins.com\RSSource1.0.exe c:\Documents and Settings\Alex\Bureau\hdogg252\Harddisk.exe c:\Documents and Settings\Alex\Bureau\HoHNspire\HoH Nspire\HoH Nspire.exe c:\Documents and Settings\Alex\Bureau\KodakUSBCR\SETUP.EXE c:\Documents and Settings\Alex\Bureau\lastfm\Last.fm Extra Stats.exe c:\Documents and Settings\Alex\Bureau\lastfm\Last.fm Extra Stats\Last.fmExtraStats.exe c:\Documents and Settings\Alex\Bureau\Muz\_Feal.exe c:\Documents and Settings\Alex\Bureau\Muz\_Feer.exe c:\Documents and Settings\Alex\Bureau\Muz\_Mlehrer.exe c:\Documents and Settings\Alex\Bureau\Muz\41236-bootskin_free_1.05a.exe c:\Documents and Settings\Alex\Bureau\Muz\7z457.exe c:\Documents and Settings\Alex\Bureau\Muz\8-2_xp32_dd_ccc_wdm_enu_58128.exe c:\Documents and Settings\Alex\Bureau\Muz\aceana2001fr102.exe c:\Documents and Settings\Alex\Bureau\Muz\aida32ee_393(2).exe c:\Documents and Settings\Alex\Bureau\Muz\audacity-win-1.2.6.exe c:\Documents and Settings\Alex\Bureau\Muz\auslogics-disk-defrag_auslogics_disk_defrag_1.4.10.248_francais_26672.exe c:\Documents and Settings\Alex\Bureau\Muz\avg_avwt_stf_g7_8_93a1283.exe c:\Documents and Settings\Alex\Bureau\Muz\camstudio_camstudio_2.0_francais_10618.exe c:\Documents and Settings\Alex\Bureau\Muz\ccsetup203.exe c:\Documents and Settings\Alex\Bureau\Muz\ccsetup205.exe c:\Documents and Settings\Alex\Bureau\Muz\ccsetup206.exe c:\Documents and Settings\Alex\Bureau\Muz\cdex_170b2_enu_nonunicode(2).exe c:\Documents and Settings\Alex\Bureau\Muz\cdex_170b2_enu_nonunicode.exe c:\Documents and Settings\Alex\Bureau\Muz\ce2kmain.exe c:\Documents and Settings\Alex\Bureau\Muz\CSSBScript_full_4.0.exe c:\Documents and Settings\Alex\Bureau\Muz\CursorFX_public.exe c:\Documents and Settings\Alex\Bureau\Muz\dBpoweramp-Codec-[iD Tag Update].exe c:\Documents and Settings\Alex\Bureau\Muz\dBpoweramp-Codec-Musepack.exe c:\Documents and Settings\Alex\Bureau\Muz\dbpoweramp-music-converter_dbpoweramp_music_converter_francais_10333.exe c:\Documents and Settings\Alex\Bureau\Muz\dMC-r12.3.exe c:\Documents and Settings\Alex\Bureau\Muz\earthsim_ati.exe c:\Documents and Settings\Alex\Bureau\Muz\ebsetup(2).exe c:\Documents and Settings\Alex\Bureau\Muz\ebsetup.exe c:\Documents and Settings\Alex\Bureau\Muz\EVE_Setup.exe c:\Documents and Settings\Alex\Bureau\Muz\flashget_flashget_1.92_francais_10017.exe c:\Documents and Settings\Alex\Bureau\Muz\fraps_fraps_2.9.4_anglais_10858.exe c:\Documents and Settings\Alex\Bureau\Muz\GameCamV2Setup.exe c:\Documents and Settings\Alex\Bureau\Muz\Google Updater.exe c:\Documents and Settings\Alex\Bureau\Muz\Help 2 Speak 1.2 WMClassicPro ActiveSync Setup.exe c:\Documents and Settings\Alex\Bureau\Muz\HJTInstall.exe c:\Documents and Settings\Alex\Bureau\Muz\hosts20setup.exe c:\Documents and Settings\Alex\Bureau\Muz\hp2008d.exe c:\Documents and Settings\Alex\Bureau\Muz\install_flash_player.exe c:\Documents and Settings\Alex\Bureau\Muz\Installation_StatnPerf_113.exe c:\Documents and Settings\Alex\Bureau\Muz\InstallOgameFarmingInterface.exe c:\Documents and Settings\Alex\Bureau\Muz\Ivainstall.exe c:\Documents and Settings\Alex\Bureau\Muz\JournalViewer1.5_KB886179_ENU.exe c:\Documents and Settings\Alex\Bureau\Muz\KiddiesBarreIntall.exe c:\Documents and Settings\Alex\Bureau\Muz\Last.fm-1.3.2.13b.exe c:\Documents and Settings\Alex\Bureau\Muz\Memoweb_4_Flash.EXE c:\Documents and Settings\Alex\Bureau\Muz\midi2mp3_setup.exe c:\Documents and Settings\Alex\Bureau\Muz\mirc617.exe c:\Documents and Settings\Alex\Bureau\Muz\MKMSetup-v19000.exe c:\Documents and Settings\Alex\Bureau\Muz\MouseKeyboard200.exe c:\Documents and Settings\Alex\Bureau\Muz\mp3PROAudioPlayer.exe c:\Documents and Settings\Alex\Bureau\Muz\MsgPlusLive-423.exe c:\Documents and Settings\Alex\Bureau\Muz\myokent.exe c:\Documents and Settings\Alex\Bureau\Muz\Nbexe112.exe c:\Documents and Settings\Alex\Bureau\Muz\nl_v130.exe c:\Documents and Settings\Alex\Bureau\Muz\nnscript403(2).exe c:\Documents and Settings\Alex\Bureau\Muz\nnscript403.exe c:\Documents and Settings\Alex\Bureau\Muz\octosetup_vEPGIGA_l_ond.exe c:\Documents and Settings\Alex\Bureau\Muz\OGSConverter_v2.10_install.exe c:\Documents and Settings\Alex\Bureau\Muz\p95v2414.exe c:\Documents and Settings\Alex\Bureau\Muz\PackBarre.exe c:\Documents and Settings\Alex\Bureau\Muz\pgsetup.exe c:\Documents and Settings\Alex\Bureau\Muz\PocketDivXEncoder_0.3.60.exe c:\Documents and Settings\Alex\Bureau\Muz\powerdefrag.exe c:\Documents and Settings\Alex\Bureau\Muz\PowerISO38.exe c:\Documents and Settings\Alex\Bureau\Muz\PPVIEWER.EXE c:\Documents and Settings\Alex\Bureau\Muz\Quest3D_Viewers_3.0e.exe c:\Documents and Settings\Alex\Bureau\Muz\reasonmdb_setup.exe c:\Documents and Settings\Alex\Bureau\Muz\Setup_FreeConverter(2).exe c:\Documents and Settings\Alex\Bureau\Muz\Setup_FreeConverter.exe c:\Documents and Settings\Alex\Bureau\Muz\setup_mt.exe c:\Documents and Settings\Alex\Bureau\Muz\SP3.5.590.exe c:\Documents and Settings\Alex\Bureau\Muz\sspdemo.exe c:\Documents and Settings\Alex\Bureau\Muz\TaskBot.exe c:\Documents and Settings\Alex\Bureau\Muz\Teleport_Pro_Installer.exe c:\Documents and Settings\Alex\Bureau\Muz\UxTheme_Multipatcher_Fr.exe c:\Documents and Settings\Alex\Bureau\Muz\VeohSetup-3.8.0.1051.exe c:\Documents and Settings\Alex\Bureau\Muz\vmware-player_vmware_player_2.0_anglais_15594(2).exe c:\Documents and Settings\Alex\Bureau\Muz\vmware-player_vmware_player_2.0_anglais_15594.exe c:\Documents and Settings\Alex\Bureau\Muz\WGAPluginInstall.exe c:\Documents and Settings\Alex\Bureau\Muz\wireshark-setup-0.99.8.exe c:\Documents and Settings\Alex\Bureau\Muz\wmnall.exe c:\Documents and Settings\Alex\Bureau\Muz\wmpfirefoxplugin.exe c:\Documents and Settings\Alex\Bureau\Muz\world_of_warcraft_mise_a_jour_depuis_v2.3.0.7561_francais_199830.exe c:\Documents and Settings\Alex\Bureau\Muz\world_of_warcraft_mise_a_jour_depuis_v2.3.2.7741_francais_208404.exe c:\Documents and Settings\Alex\Bureau\Muz\wrar320.exe c:\Documents and Settings\Alex\Bureau\Muz\Wrath_Of_The_Lich_King_FR.avi-downloader.exe c:\Documents and Settings\Alex\Bureau\Ogame Spy\OGameStratege.exe c:\Documents and Settings\Alex\Bureau\pe\procexp.exe c:\Documents and Settings\Alex\Bureau\pfull_361\final\SpyGestion.exe c:\Documents and Settings\Alex\Bureau\RADIO_BLOG_CLUB\radio.blog.3.1\creat.sound\bin\lame.exe c:\Documents and Settings\Alex\Bureau\REST2514\Restoration.exe c:\Documents and Settings\Alex\Bureau\sites\A_Dreamovies\DivXPlayer.exe c:\Documents and Settings\Alex\Bureau\sites\Nouvelle version\DivXPlayer.exe c:\Documents and Settings\Alex\Bureau\sites\z_SAUVEGARDE\17_05_07\Firefox Setup 2.0.0.3.exe c:\Documents and Settings\Alex\Bureau\sites\z_SAUVEGARDE\17_05_07\Tubedownloader10.exe c:\Documents and Settings\Alex\Bureau\SpyGestion\final\SpyGestion.exe c:\Documents and Settings\Alex\Bureau\Starcraft\starcraft\starcraft\INSTALL.EXE c:\Documents and Settings\Alex\Bureau\Starcraft\starcraft\starcraft\SETUP.EXE c:\Documents and Settings\Alex\Bureau\Starcraft\starcraft\starcraft\DIRECTX5\DIRECTX\DDHELP.EXE c:\Documents and Settings\Alex\Bureau\Starcraft\starcraft\starcraft\DIRECTX5\DIRECTX\DPLAYSVR.EXE c:\Documents and Settings\Alex\Bureau\Starcraft\starcraft\starcraft\DIRECTX5\DIRECTX\DXINFO.EXE c:\Documents and Settings\Alex\Bureau\Starcraft\starcraft\starcraft\DIRECTX5\DIRECTX\DXSETUP.EXE c:\Documents and Settings\Alex\Bureau\Starcraft\starcraft\starcraft\DIRECTX5\DIRECTX\DXTOOL.EXE c:\Documents and Settings\Alex\Bureau\Starcraft\starcraft\starcraft\MANUEL\AR40FRA.EXE c:\Documents and Settings\Alex\Bureau\Starcraft\starcraft\starcraft\PATCH\STAR_108.EXE c:\Documents and Settings\Alex\Bureau\swfmill\swfmill.exe c:\Documents and Settings\Alex\Bureau\Vac2Dumper\VAC2 Dumper.exe c:\Documents and Settings\Alex\Bureau\Video2smv\video2smv.exe c:\Documents and Settings\Alex\Bureau\WOW\Patches\WoW-2.2.3-to-2.3.0-frFR-Win-patch\BNUpdate.exe c:\Documents and Settings\Alex\Bureau\Z_V2_Dream\Fevrier_2008\DivXPlayer.exe c:\Documents and Settings\Alex\Bureau\Z_V2_Dream\Fevrier_2008\Tubedownloader10.exe c:\Documents and Settings\Alex\Bureau\Z_V2_Dream\SAUVEGARDE_1janvier08\DivXPlayer.exe c:\Documents and Settings\Alex\Bureau\Z_V2_Dream\SAUVEGARDE_1janvier08\Tubedownloader10.exe c:\Documents and Settings\Alex\Bureau\[Eirene] SimpleHack v2.0\xfire.exe c:\Documents and Settings\Alex\Local Settings\Application Data\Last.fm\Client\Updaterd.exe c:\Documents and Settings\Alex\Local Settings\Application Data\Last.fm\Client\UpTemp.exe c:\Documents and Settings\Alex\Local Settings\Application Data\Personal\Last.fmExtraStats.exe_Url_lgvpd0hc3izll2hnznzl5cl0f4hag00s c:\Documents and Settings\Alex\Local Settings\Application Data\WMFMetadataReader\FairUseCommander.exe_Url_t1cbwhnordky4tcxfbasvrvhvwwizarv c:\Documents and Settings\Alex\Local Settings\Application Data\Xenocode\ApplianceCaches\GameCamV2.exe_v317582C1 c:\Documents and Settings\Alex\Local Settings\Apps\2.0\7HARX4KT.3CQ\PH5AWBJW.75W\niel..tion_052609426b199baa_0001.0000_67e08737f298fece\Niel_s_Cs_Tool.exe c:\Documents and Settings\Alex\Local Settings\Apps\2.0\7HARX4KT.3CQ\PH5AWBJW.75W\pack..tion_327fe5f622394256_0001.0001_36ae94514d309d59\PackBarre.exe c:\Documents and Settings\Alex\Local Settings\Temp\_autorun.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is10.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is128.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is21E.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is220.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is253.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is39.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is5B.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is6.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is6D.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is8.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is89.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is90.exe c:\Documents and Settings\Alex\Local Settings\Temp\_is97.exe c:\Documents and Settings\Alex\Local Settings\Temp\_isA7.exe c:\Documents and Settings\Alex\Local Settings\Temp\_isA8.exe c:\Documents and Settings\Alex\Local Settings\Temp\_isB.exe c:\Documents and Settings\Alex\Local Settings\Temp\_isEB.exe c:\Documents and Settings\Alex\Local Settings\Temp\_isF4.exe c:\Documents and Settings\Alex\Local Settings\Temp\aiw34375531.EXE c:\Documents and Settings\Alex\Local Settings\Temp\DWPInstaller.exe c:\Documents and Settings\Alex\Local Settings\Temp\DWPUpgradeInstaller.exe c:\Documents and Settings\Alex\Local Settings\Temp\giF08NEP.exe c:\Documents and Settings\Alex\Local Settings\Temp\i4jdel0.exe c:\Documents and Settings\Alex\Local Settings\Temp\iTunesPluginWinSetup_2.0.13.0.exe c:\Documents and Settings\Alex\Local Settings\Temp\jre-6u3-windows-i586-p-iftw_2cd32978.exe c:\Documents and Settings\Alex\Local Settings\Temp\Last.fm-1.4.1.57486.exe c:\Documents and Settings\Alex\Local Settings\Temp\Last.fm-1.4.2.59470.exe c:\Documents and Settings\Alex\Local Settings\Temp\Progitekbooster.exe c:\Documents and Settings\Alex\Local Settings\Temp\ProgitekConvertir.exe c:\Documents and Settings\Alex\Local Settings\Temp\SETUP.EXE c:\Documents and Settings\Alex\Local Settings\Temp\SkypeSetup.exe c:\Documents and Settings\Alex\Local Settings\Temp\ubi1A.tmp.exe c:\Documents and Settings\Alex\Local Settings\Temp\ubiB4.tmp.exe c:\Documents and Settings\Alex\Local Settings\Temp\uneb.exe c:\Documents and Settings\Alex\Local Settings\Temp\WmpPluginSetup_2.1.0.5.exe c:\Documents and Settings\Alex\Local Settings\Temp\xmlUpdater.exe c:\Documents and Settings\Alex\Local Settings\Temp\yac0kek0.exe c:\Documents and Settings\Alex\Local Settings\Temp\ycomp_setup.exe c:\Documents and Settings\Alex\Local Settings\Temp\.cleanup.tmp\remove.exe c:\Documents and Settings\Alex\Local Settings\Temp\2UI69OOK\Resume.exe c:\Documents and Settings\Alex\Local Settings\Temp\AUG2005DXREDIST\DXSETUP.exe c:\Documents and Settings\Alex\Local Settings\Temp\Blizzard Installer Bootstrap - 00480447\Installer.exe c:\Documents and Settings\Alex\Local Settings\Temp\Blizzard Installer Bootstrap - 00494969\Installer.exe c:\Documents and Settings\Alex\Local Settings\Temp\Div3B.tmp\DivXInstaller.exe c:\Documents and Settings\Alex\Local Settings\Temp\pft30.tmp\ALUNOTIFY.EXE c:\Documents and Settings\Alex\Local Settings\Temp\pft30.tmp\AUpdate.exe c:\Documents and Settings\Alex\Local Settings\Temp\pft30.tmp\Lsetup.exe c:\Documents and Settings\Alex\Local Settings\Temp\pft30.tmp\LuAll.exe c:\Documents and Settings\Alex\Local Settings\Temp\pft30.tmp\LUInit.exe c:\Documents and Settings\Alex\Local Settings\Temp\pft30.tmp\NDetect.exe c:\Documents and Settings\Alex\Local Settings\Temp\pft30.tmp\SHFOLDER.EXE c:\Documents and Settings\Alex\Local Settings\Temp\pft30.tmp\SYMANTECROOTINSTALLER.EXE c:\Documents and Settings\Alex\Local Settings\Temp\VSD37A.tmp\setup.exe c:\Documents and Settings\Alex\Local Settings\Temp\VSD37A.tmp\DotNetFX\dotnetchk.exe c:\Documents and Settings\Alex\Local Settings\Temp\VSD37A.tmp\DotNetFX\langpack.exe c:\Documents and Settings\Alex\Local Settings\Temp\VSD53.tmp\DotNetFX\dotnetchk.exe c:\Documents and Settings\Alex\Local Settings\Temp\{0EFC6259-3AD8-4CD2-BC57-D4937AF5CC0E}\SymRBFile\SevInst.Exe c:\Documents and Settings\Alex\Local Settings\Temp\{16DE9AEB-52FB-43A9-A7F1-345976C0BEFF}\{B17E235C-7A3B-4482-B650-21FFDE1D452E}\PhysX_7.03.21_SystemSoftware.exe c:\Documents and Settings\Alex\Mes documents\My Games\Beyond the Sword\Patch\PATCH_302.exe c:\Documents and Settings\Alex\Mes documents\My Games\Beyond the Sword\Patch\Patch_313.exe c:\Documents and Settings\Alex\Mes documents\My Games\Sid Meier's Civilization 4\Patch\v161PATCHREL.exe c:\Documents and Settings\Alex\Mes documents\My Games\Titan Quest\TitanQuest1_30.exe c:\Documents and Settings\Alex\Mes documents\Updater\bridge1\AdobeBridge_1.0.4_updater.exe c:\Documents and Settings\Alex\Mes documents\Updater\bridge1\Bridge103Updater.exe c:\Documents and Settings\Alex\Mes documents\Updater\bridge1\OLSUpdater_1.exe c:\Documents and Settings\Alex\Mes documents\Updater\helpcenter1\AdobeUpdater405.exe c:\Documents and Settings\Alex\Mes documents\Updater\photoshop9-fr_FR-RET\CameraRawUpdater3.7.exe c:\Documents and Settings\Alex\Mes documents\Updater\stockphotos1\UpdateInstaller1_0_8.exe c:\Documents and Settings\Alex\Mes documents\Videos\Veoh\VeohSetup-3.8.1.1011.exe c:\Documents and Settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 7.6.2.9\iTunesSetupAdmin.exe c:\Documents and Settings\All Users\Application Data\Last.fm\Client\UninstITW\unins000.exe c:\Documents and Settings\All Users\Application Data\Last.fm\Client\UninstWMP\unins000.exe c:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\81I7SHIF\iTunesSetupAdmin[1].exe c:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\MOH8KDY2\iTunesSetupAdmin[1].exe c:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\U79QG5Y8\iTunesSetupAdmin[1].exe c:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\U79QG5Y8\iTunesSetupAdmin[2].exe c:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\WX6CAFBV\iTunesSetupAdmin[1].exe c:\Recupération d'ancien disque\Documents and Settings\Obusco\Application Data\Microsoft\Installer\{750B9AD1-4C63-4143-94C5-6FB304199BAD}\ARPPRODUCTICON.exe c:\Recupération d'ancien disque\Documents and Settings\Obusco\Application Data\Microsoft\Installer\{FBEFFB42-957E-4B46-A4A6-7B7863C2F69A}\ARPPRODUCTICON.exe c:\Recupération d'ancien disque\Documents and Settings\Obusco\Application Data\Microsoft\Installer\{FBEFFB42-957E-4B46-A4A6-7B7863C2F69A}\BOINCMGRLink_D9753704E7AD4D26B61C5913FE567CF3.exe c:\Recupération d'ancien disque\Documents and Settings\Obusco\Application Data\Microsoft\Installer\{FBEFFB42-957E-4B46-A4A6-7B7863C2F69A}\BOINCMGRStartupLink_D9753704E7AD4D26B61C5913FE567CF3.exe c:\Documents and Settings\Alex\Application Data\Macromedia\Dreamweaver 8\Configuration\Flash Player\FlashPlayerW.dll c:\Documents and Settings\Alex\Application Data\Microsoft\IdentityCRL\PROD\ppcrlconfig.dll c:\Documents and Settings\Alex\Application Data\Mozilla\Firefox\Profiles\r8i1ltk9.default\extensions\{0784CD66-62FE-4cef-ABF4-F8ED9B654ACC}\components\tab_effect_xpcom.dll c:\Documents and Settings\Alex\Application Data\Mozilla\Firefox\Profiles\r8i1ltk9.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar.dll c:\Documents and Settings\Alex\Application Data\Mozilla\Firefox\Profiles\r8i1ltk9.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\metrics.dll c:\Documents and Settings\Alex\Application Data\Mozilla\Firefox\Profiles\r8i1ltk9.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\plugins\nphardwaredetection.dll c:\Documents and Settings\Alex\Application Data\Mozilla\Firefox\Profiles\svyxwrq3.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar.dll c:\Documents and Settings\Alex\Application Data\Mozilla\Firefox\Profiles\svyxwrq3.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\metrics.dll c:\Documents and Settings\Alex\Local Settings\Application Data\Macromedia\Flash 8\fr\Configuration\External Libraries\FLfile.dll c:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\BACKUP\FAILSAFE\avewin32.dll c:\Documents and Settings\All Users\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll c:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll c:\Recupération d'ancien disque\Documents and Settings\All Users.WINDOWS\Application Data\Microsoft\IdentityCRL\production\ppcrlconfig.dll c:\Recupération d'ancien disque\Documents and Settings\Obusco\Application Data\Macromedia\Dreamweaver 8\Configuration\Flash Player\FlashPlayerW.dll ****** Fin du rapport DiagHelp Veuillez svp envoyer le fichier C:\upload_moi_OBUSCO.tar.gz a l'adresse http://upload.malekal.com
- le 15 avril 2008
- 18 réponses
Processus "System" qui me prend presque tout mon UC avec Cou

obusco a répondu à un(e) sujet de obusco dans Software

J'ai tout fait, cela n'as rien changé, j'ai pris des screen, a noter des que le processus hl2 et fermé tout redevient normal. Avec Counter-Strike ouvert Une fois fermé
- le 14 avril 2008
- 18 réponses
Processus "System" qui me prend presque tout mon UC avec Cou

obusco a répondu à un(e) sujet de obusco dans Software

Le voici, merci de ton aide : Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 17:08:39, on 14/04/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Analog Devices\Core\smax4pnp.exe C:\Program Files\Analog Devices\SoundMAX\Smax4.exe C:\Program Files\ASUS\AASP\1.00.05\aaCenter.exe C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe C:\Program Files\PowerISO\PWRISOVM.EXE C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\DAEMON Tools\daemon.exe C:\Program Files\AntiVir PersonalEdition Classic\sched.exe C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\ATKKBService.exe C:\Program Files\TheTurtle\TheTurtle.exe C:\program files\steam\steam.exe C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe C:\Program Files\Microsoft ActiveSync\wcescomm.exe C:\Program Files\NetLimiter 2 Pro\nlsvc.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Program Files\Vidalia Bundle\Privoxy\privoxy.exe C:\PROGRA~1\MICROS~4\rapimgr.exe C:\Program Files\SAGEM WiFi manager\WLANUTL.exe C:\Program Files\VMware\VMware Player\vmware-authd.exe C:\Program Files\Last.fm\LastFMHelper.exe C:\Program Files\Xfire\xfire.exe C:\Program Files\Fichiers communs\VMware\VMware Virtual Image Editing\vmount2.exe C:\Program Files\NetLimiter 2 Pro\NLClient.exe C:\WINDOWS\system32\vmnat.exe C:\WINDOWS\system32\vmnetdhcp.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Vidalia Bundle\Tor\tor.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\taskmgr.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Windows Media Player\wmplayer.exe C:\Program Files\Last.fm\LastFM.exe C:\WINDOWS\system32\mspaint.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\WINDOWS\System32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.6.14.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe O4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray O4 - HKLM\..\Run: [AsusServiceProvider] C:\Program Files\ASUS\AASP\1.00.05\aaCenter.exe O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Fichiers communs\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\WINDOWS\RaidTool\xInsIDE.exe O4 - HKLM\..\Run: [36X Raid Configurer] C:\WINDOWS\system32\xRaidSetup.exe boot O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Fichiers communs\Ahead\lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0 O4 - HKCU\..\Run: [TheTurtle] C:\Program Files\TheTurtle\TheTurtle.exe O4 - HKCU\..\Run: [steam] "c:\program files\steam\steam.exe" -silent O4 - HKCU\..\Run: [Vidalia] "C:\Program Files\Vidalia Bundle\Vidalia\vidalia.exe" O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\Program Files\Microsoft ActiveSync\wcescomm.exe" O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\RunOnce: [gi2563399] "C:\DOCUME~1\Alex\LOCALS~1\Temp\giF08NEP.exe" /resume:"C:\DOCUME~1\Alex\LOCALS~1\Temp\2LF08MTF" /exename:"C:\Documents and Settings\Alex\Application Data\Mozilla\Firefox\Profiles\r8i1ltk9.default\extensions\{bb628310-0ab7-11db-9cd8-0800200c9a66}\setupmconfig.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Startup: Last.fm Helper.lnk = C:\Program Files\Last.fm\LastFMHelper.exe O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Privoxy.lnk = C:\Program Files\Vidalia Bundle\Privoxy\privoxy.exe O4 - Global Startup: Utilitaire réseau pour SAGEM Wi-Fi 11g USB adapter.lnk = ? O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll O9 - Extra 'Tools' menuitem: Créer un Favori de l'appareil mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\PROGRA~1\MICROS~4\INetRepl.dll O9 - Extra button: Run WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll O9 - Extra 'Tools' menuitem: Launch WinHTTrack - {36ECAF82-3300-8F84-092E-AFF36D6C7040} - C:\Program Files\WinHTTrack\WinHTTrackIEBar.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1205613711109 O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...nt.cab56907.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{FBB59401-C3FA-450E-9675-8E39358BED76}: NameServer = 192.168.1.1 O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Fichiers communs\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NetLimiter (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 2 Pro\nlsvc.exe O23 - Service: VMware Authorization Service (VMAuthdService) - VMware, Inc. - C:\Program Files\VMware\VMware Player\vmware-authd.exe O23 - Service: VMware DHCP Service (VMnetDHCP) - VMware, Inc. - C:\WINDOWS\system32\vmnetdhcp.exe O23 - Service: VMware Virtual Mount Manager Extended (vmount2) - VMware, Inc. - C:\Program Files\Fichiers communs\VMware\VMware Virtual Image Editing\vmount2.exe O23 - Service: VMware NAT Service - VMware, Inc. - C:\WINDOWS\system32\vmnat.exe O23 - Service: Service de lancement de WlanCfg (Wlancfg) - Unknown owner - C:\Program Files\Inventel\Gateway\wlancfg.exe (file missing) -- End of file - 12204 bytes
- le 14 avril 2008
- 18 réponses
Processus "System" qui me prend presque tout mon UC avec Cou

obusco a répondu à un(e) sujet de obusco dans Software

On parle bien de ceci :
- le 14 avril 2008
- 18 réponses
Processus "System" qui me prend presque tout mon UC avec Cou

obusco a posté un sujet dans Software

Bon après-midi à tous ! J'ai un problème depuis hier soir que je n'arrive pas à résoudre, malgré un passage d'antiVir et de Spybot-SD ( En Mode sans échec ). Lorsque je lance Counter-Strike : Source, j'ai un processus ( hl2.exe , dont je pense que c'est justement CS-S ) mais une fois ce processus lancé j'ai le processus System qui s'affole, il me prend entre 90-100 % de mon UC. C'est apparu hier soir sans modification majeure de mon pc entre temps. J'avais déjà eu ce problème il y a un mois, qui a disparu quand j'ai changé de compte Steam. Qu'elle qu'un aurait il une idée du problème ? Sachant que je ne peut pas jouer avec ce problème, car je tombe a 10 de FPS et des saut de 150 en ping Voici la configuration de mon PC. Processor: Intel® Pentium® 4 CPU 3.00GHz (2 CPUs) Memory: 2048MB RAM Hard Drive: 137 GB Video Card: ASUS X1650 Series Windows XP Professional (5.1, Build 2600) Service Pack 2 (2600.xpsp_sp2_gdr.050301-1519) Merci d'avance de votre aide Bonne journée Cordialement Obusco
- le 14 avril 2008
- 18 réponses

Connexion

obusco

Compteur de contenus

Inscription

Dernière visite

Autres informations

obusco's Achievements

Junior Member (3/12)

Réputation sur la communauté

Config joueur "petit" budget (600e)

Processus "System" qui me prend presque tout mon UC avec Cou

Processus "System" qui me prend presque tout mon UC avec Cou

Processus "System" qui me prend presque tout mon UC avec Cou

Processus "System" qui me prend presque tout mon UC avec Cou

Processus "System" qui me prend presque tout mon UC avec Cou

Processus "System" qui me prend presque tout mon UC avec Cou

Processus "System" qui me prend presque tout mon UC avec Cou

Processus "System" qui me prend presque tout mon UC avec Cou

Processus "System" qui me prend presque tout mon UC avec Cou

Processus "System" qui me prend presque tout mon UC avec Cou

Zebulon

Outils en ligne

Naviguer