Sujet Précédent Sujet Suivant

Win32/mabezat.A

Résolu/Fermé
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011 - 30 avril 2010 à 02:17
 Utilisateur anonyme - 5 mai 2010 à 02:39
Bonjour je vien de chopper le virus win32/mabezat.A j aurias besoin d aidre des gens ki on t deja eut affaire a lui parce que aucun anti virus a pu l enlever

90 réponses

Précédent
Réponse 21 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 01:35
List'em by g3n-h@ckm@n 1.7.2.6

User : ouaaz (Administrateurs)
Update on 02/05/2010 by g3n-h@ckm@n ::::: 14.30
Start at: 01:21:32 | 03/05/2010

Intel(R) Pentium(R) 4 CPU 3.06GHz
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled
AV : ESET NOD32 Antivirus 4.2 4.2 [ (!) Disabled | Updated ]

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local | 31,55 Go (8,61 Go free) | NTFS
D:\ -> Disque fixe local | 58,69 Go (7,84 Go free) [Lecteur] | NTFS
E:\ -> Disque fixe local | 58,8 Go (15,74 Go free) | NTFS
F:\ -> Disque CD-ROM
G:\ -> Disque CD-ROM
H:\ -> Disque fixe local | 298,09 Go (143,83 Go free) [Amaterasu] | NTFS
I:\ -> Disque CD-ROM
K:\ -> Disque amovible | 951,56 Mo (654,13 Mo free) [KINGSTON] | FAT32

Boot: Normal

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Java\j2re1.4.2_01\bin\jusched.exe
C:\Program Files\Java\j2re1.4.2_01\bin\jucheck.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\system32\ctfmon.exe
E:\Crack\IDMan.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\SuperCopier2\SuperCopier2.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\List_Kill'em\List_Kill'em.exe
C:\WINDOWS\system32\cmd.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Skype\Toolbars\Shared\SkypeNames2.exe
C:\Program Files\List_Kill'em\pv.exe

======================
Keys "Run"
======================

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
CTFMON.EXE REG_SZ C:\WINDOWS\system32\ctfmon.exe
Google Update REG_SZ "C:\Documents and Settings\ouaaz\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
IDMan REG_SZ E:\Crack\IDMan.exe /onboot
msnmsgr REG_SZ "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
SUPERAntiSpyware REG_SZ C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
SuperCopier2.exe REG_SZ C:\Program Files\SuperCopier2\SuperCopier2.exe
DAEMON Tools Lite REG_SZ "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
RTHDCPL REG_SZ RTHDCPL.EXE
NvCplDaemon REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
nwiz REG_SZ nwiz.exe /install
NvMediaCenter REG_SZ RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
PWRISOVM.EXE REG_SZ C:\Program Files\PowerISO\PWRISOVM.EXE
egui REG_SZ "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
SunJavaUpdateSched REG_SZ C:\Program Files\Java\j2re1.4.2_01\bin\jusched.exe
QuickTime Task REG_SZ "C:\Program Files\QuickTime\qttask.exe" -atboottime

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]

=====================
Other Keys
=====================

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
dontdisplaylastusername REG_DWORD 0 (0x0)
legalnoticecaption REG_SZ
legalnoticetext REG_SZ
shutdownwithoutlogon REG_DWORD 1 (0x1)
undockwithoutlogon REG_DWORD 1 (0x1)

===============

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDriveAutoRun REG_DWORD 255 (0xff)
NoDriveTypeAutoRun REG_DWORD 255 (0xff)
HonorAutoRunSetting REG_DWORD 0 (0x0)

===============

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
NoDriveAutoRun REG_DWORD 255 (0xff)
NoDriveTypeAutoRun REG_DWORD 255 (0xff)
HonorAutoRunSetting REG_DWORD 0 (0x0)

===============

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
AppInit_DLLS REG_SZ

===============

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
AutoRestartShell REG_DWORD 1 (0x1)
DefaultDomainName REG_SZ OUAAZ-75111509D
DefaultUserName REG_SZ ouaaz
LegalNoticeCaption REG_SZ
LegalNoticeText REG_SZ
PowerdownAfterShutdown REG_SZ 0
ReportBootOk REG_SZ 1
Shell REG_SZ explorer.exe
ShutdownWithoutLogon REG_SZ 0
System REG_SZ
Userinit REG_SZ C:\WINDOWS\system32\userinit.exe,
VmApplet REG_SZ rundll32 shell32,Control_RunDLL "sysdm.cpl"
SfcQuota REG_DWORD -1 (0xffffffff)
allocatecdroms REG_SZ 0
allocatedasd REG_SZ 0
allocatefloppies REG_SZ 0
cachedlogonscount REG_SZ 10
forceunlocklogon REG_DWORD 0 (0x0)
passwordexpirywarning REG_DWORD 14 (0xe)
scremoveoption REG_SZ 0
AllowMultipleTSSessions REG_DWORD 1 (0x1)
UIHost REG_EXPAND_SZ logonui.exe
LogonType REG_DWORD 1 (0x1)
Background REG_SZ 0 0 0
DebugServerCommand REG_SZ no
SFCDisable REG_DWORD 0 (0x0)
WinStationsDisabled REG_SZ 0
HibernationPreviouslyEnabled REG_DWORD 1 (0x1)
ShowLogonOptions REG_DWORD 0 (0x0)
AltDefaultUserName REG_SZ ouaaz
AltDefaultDomainName REG_SZ OUAAZ-75111509D

===============

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\crypt32chain]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cryptnet]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\cscdll]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ScCertProp]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Schedule]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\sclgntfy]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\SensLogn]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\termsrv]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\wlballoon]

===============

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
{AEB6717E-7E19-11d0-97EE-00C04FD91972} REG_SZ
{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} REG_SZ

===============

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\ma-config.com\maconfservice.exe REG_SZ C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice
C:\Program Files\Windows Live\Messenger\wlcsdk.exe REG_SZ C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
C:\Program Files\Windows Live\Messenger\msnmsgr.exe REG_SZ C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger
C:\Program Files\BitComet\BitComet.exe REG_SZ C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE REG_SZ C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook
C:\Program Files\Packet Tracer 5.2\bin\PacketTracer5.exe REG_SZ C:\Program Files\Packet Tracer 5.2\bin\PacketTracer5.exe:*:Enabled:PacketTracer5
C:\WINDOWS\system32\dpvsetup.exe REG_SZ C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test
C:\WINDOWS\system32\rundll32.exe REG_SZ C:\WINDOWS\system32\rundll32.exe:*:Enabled:Exécuter une DLL en tant qu'application
C:\Program Files\Skype\Phone\Skype.exe REG_SZ C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype
E:\Program Files\eMule\emule.exe REG_SZ E:\Program Files\eMule\emule.exe:*:Enabled:eMule

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
%windir%\system32\sessmgr.exe REG_SZ %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019
C:\Program Files\Windows Live\Messenger\wlcsdk.exe REG_SZ C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call
C:\Program Files\Windows Live\Messenger\msnmsgr.exe REG_SZ C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger

===============
ActivX controls
===============

[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{5D86DDB5-BDF9-441B-9E9E-D4730F4EE499}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{6414512B-B978-451D-A0D8-FCFDF33E833C}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{867E13F2-7F31-44FB-AC97-CD38E0DC46EF}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{8AD9C840-044E-11D1-B3E9-00805F499D93}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA}]
[HKEY_LOCAL_MACHINE\software\microsoft\code store database\distribution units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}]

===============
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{26923b43-4d38-484f-9b9e-de460746276c}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{CB58DED6-4AF3-4080-9DF1-DEE72075169F}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{08B0E5C0-4FCB-11CF-AAA5-00401C608500}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10072CEC-8CC1-11D1-986E-00A0C955B42F}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{283807B5-2C60-11D0-A31D-00AA00B92C03}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{36f8ec70-c29a-11d1-b5c7-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3af36230-a269-11d1-b5bf-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{3bf42070-b3b1-11d1-b5c5-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4278c270-a269-11d1-b5bf-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA848-CC51-11CF-AAFA-00AA00B6015C}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA855-CC51-11CF-AAFA-00AA00B6015F}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{45ea75a0-a269-11d1-b5bf-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f216970-c90c-11d1-b5c7-0000f8051515}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{4f645220-306d-11d2-995d-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5A8D6EE0-3E18-11D0-821E-444553540000}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{5fd399c0-a70a-11d1-9948-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{630b1da0-b465-11d1-9948-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6fab99d0-bab8-11d1-994a-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{73fa19d0-2d75-11d2-995d-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9381D8F2-0288-11D0-9501-00AA00B911A5}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{ACC563BC-4266-43f0-B6ED-9D38C4202C7E}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{C9E9A340-D1F1-11D0-821E-444553540600}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CC2A9BA0-3BDD-11D0-821E-444553540000}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{CDD7975E-60F8-41d5-8149-19E51D6F71D0}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{de5aed00-a4bf-11d1-9948-00c04f98bbc9}]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{E92B03AB-B707-11d2-9CBD-0000F87A369E}]

==============
0
Réponse 22 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 01:36
BHO :
======

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\browser helper objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]

===
DNS
===

HKLM\SYSTEM\CCS\Services\Tcpip\..\{9AF65D10-F8AE-4000-BA20-B3469B81B8C5}: DhcpNameServer=192.168.30.1
HKLM\SYSTEM\CS1\Services\Tcpip\..\{9AF65D10-F8AE-4000-BA20-B3469B81B8C5}: DhcpNameServer=192.168.30.1
HKLM\SYSTEM\CS2\Services\Tcpip\..\{9AF65D10-F8AE-4000-BA20-B3469B81B8C5}: DhcpNameServer=192.168.30.1
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.30.1
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.30.1
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=192.168.30.1

================
Internet Explorer :
================

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.msn.com/fr-fr
Local Page REG_SZ C:\WINDOWS\system32\blank.htm
Default_Search_URL REG_SZ http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
Default_Page_URL REG_SZ http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
Search Page REG_SZ http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.google.com/?gws_rd=ssl
Local Page REG_SZ C:\WINDOWS\system32\blank.htm

========
Services
========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services]

Ndisuio : 0x3 ( OK = 3 )
SharedAccess : 0x2 ( OK = 2 )
wuauserv : 0x2 ( OK = 2 )

========
Safemode
========

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot : OK !!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal : OK !!
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network : OK !!

=========
Atapi.sys
=========

C:\WINDOWS\system32\drivers\atapi.sys :
MD5 :: [cdfe4411a69c224bd1d11b2da92dac51]
SHA256 :: [0e6b23a80f171550575bebc56f7500cd87a5cf03b2b9fdc49bc3de96282cd69d]

Référence :
==========

Win 2000_SP2 : ff953a8f08ca3f822127654375786bbe
Win 2000_SP4 : 8c718aa8c77041b3285d55a0ce980867
Win XP_32b : a64013e98426e1877cb653685c5c0009
Win XP_SP2_32b : CDFE4411A69C224BD1D11B2DA92DAC51
Win XP_SP3_32b : 9F3A2F5AA6875C72BF062C712CFA2674
Vista_32b : e03e8c99d15d0381e02743c36afc7c6f
Vista_SP1_32b : 2d9c903dc76a66813d350a562de40ed9
Vista_SP2_32b : 1F05B78AB91C9075565A9D8A4B880BC4
Vista_SP2_64b : 1898FAE8E07D97F2F6C2D5326C633FAC
Windows 7_32b : 80C40F7FDFC376E4C5FEEC28B41C119E
Windows 7_64b : 02062C0B390B7729EDC9E69C680A6F3C
Windows 7_32b_Ultimate : 338c86357871c167a96ab976519bf59e

=======
Drive :
=======

D'fragmenteur de disque Windows
Copyright (c) 2001 Microsoft Corp. et Executive Software International Inc.

Rapport d'analyse
31,55 Go total, 8,61 Go libre (27%), 23% fragment' (fragmentation du fichier 45%)

Vous devriez d'fragmenter ce volume.

¤¤¤¤¤¤¤¤¤¤ Files/folders :

Present !! : C:\WINDOWS\SET3.tmp
Present !! : C:\WINDOWS\SET4.tmp
Present !! : C:\WINDOWS\SET8.tmp
Present !! : C:\WINDOWS\System32\drivers\etc\hosts.msn
Present !! : C:\Documents and Settings\ouaaz\LOCAL Settings\Temp\SSUPDATE.EXE

¤¤¤¤¤¤¤¤¤¤ Keys :

Present !! : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{0E5CBF21-D15F-11D0-8301-00AA005B4383}
Present !! : "HKCU\software\microsoft\internet explorer\searchscopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}"
Present !! : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File execution Options\egui.exe"
Present !! : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File execution Options\ekrn.exe"
Present !! : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Install.exe"
Present !! : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe"
Present !! : "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055c089-8582-441b-a0bf-17b458c2a3a8}"
Present !! : HKCR\CLSID\{0055c089-8582-441b-a0bf-17b458c2a3a8}
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Present !! : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E

============

catchme 0.3.1398.3 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-05-03 01:32:50
Windows 5.1.2600 Service Pack 2 FAT NTAPI

scanning hidden processes ...

scanning hidden services ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0


Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x89C541F8]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\atapi -> 0x89c541f8
Warning: possible MBR rootkit infection !
user & kernel MBR OK
Use "Recovery Console" command "fixmbr" to clear infection !

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
FirstRunDisabled REG_DWORD 1 (0x1)
AntiVirusDisableNotify REG_DWORD 0 (0x0)
FirewallDisableNotify REG_DWORD 0 (0x0)
UpdatesDisableNotify REG_DWORD 0 (0x0)
AntiVirusOverride REG_DWORD 0 (0x0)
FirewallOverride REG_DWORD 0 (0x0)

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

End of scan : 1:32:51,00


voila j attend la suite merci
0
Réponse 23 / 90
Utilisateur anonyme
3 mai 2010 à 01:47
▶ Relance List_Kill'em(soit en clic droit pour vista/7),avec le raccourci sur ton bureau.
mais cette fois-ci :

▶ choisis l'Option Clean

ton PC va redemarrer,

laisse travailler l'outil.

en fin de scan la fenetre se ferme , et tu as un rapport du nom de Kill'em.txt sur ton bureau ,

▶ colle le contenu dans ta reponse
0
Réponse 24 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 02:12
Kill'em by g3n-h@ckm@n 1.7.2.6

User : ouaaz (Administrateurs)
Update on 02/05/2010 by g3n-h@ckm@n ::::: 14.30
Start at: 01:52:25 | 03/05/2010

Intel(R) Pentium(R) 4 CPU 3.06GHz
Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
Internet Explorer 8.0.6001.18702
Windows Firewall Status : Disabled
AV : ESET NOD32 Antivirus 4.2 4.2 [ Enabled | Updated ]

A:\ -> Lecteur de disquettes 3 ½ pouces
C:\ -> Disque fixe local | 31,55 Go (8,61 Go free) | NTFS
D:\ -> Disque fixe local | 58,69 Go (7,84 Go free) [Lecteur] | NTFS
E:\ -> Disque fixe local | 58,8 Go (15,74 Go free) | NTFS
F:\ -> Disque CD-ROM
G:\ -> Disque CD-ROM
H:\ -> Disque fixe local | 298,09 Go (143,83 Go free) [Amaterasu] | NTFS
K:\ -> Disque amovible | 951,56 Mo (654,13 Mo free) [KINGSTON] | FAT32


¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Processes running

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\logonui.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\cmd.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\List_Kill'em\ERUNT.EXE
C:\Program Files\List_Kill'em\pv.exe

¤¤¤¤¤¤¤¤¤¤ Files/folders :

Quarantined & Deleted !! : C:\WINDOWS\SET3.tmp
Quarantined & Deleted !! : C:\WINDOWS\SET4.tmp
Quarantined & Deleted !! : C:\WINDOWS\SET8.tmp

Quarantined & Deleted !! : C:\WINDOWS\System32\drivers\etc\hosts.msn
Quarantined & Deleted !! : C:\Documents and Settings\ouaaz\LOCAL Settings\Temp\SSUPDATE.EXE

=======
Hosts :
=======

127.0.0.1 localhost

========
Registry
========

Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{0E5CBF21-D15F-11D0-8301-00AA005B4383}
Deleted : "HKCU\software\microsoft\internet explorer\searchscopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}"
Deleted : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Install.exe"
Deleted : "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\Setup.exe"
Deleted : "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055c089-8582-441b-a0bf-17b458c2a3a8}"
Deleted : HKCR\CLSID\{0055c089-8582-441b-a0bf-17b458c2a3a8}
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
Deleted : HKLM\software\microsoft\windows\currentversion\installer\userdata\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
=================
Internet Explorer
=================

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.msn.com/fr-fr/?ocid=iehp
Local Page REG_SZ C:\WINDOWS\system32\blank.htm
Default_Search_URL REG_SZ https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
Default_Page_URL REG_SZ https://www.msn.com/fr-fr/?ocid=iehp
Search Page REG_SZ https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
Start Page REG_SZ https://www.google.com/?gws_rd=ssl
Local Page REG_SZ C:\WINDOWS\system32\blank.htm
Search Page REG_SZ http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

===============
Security Center
===============

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
FirstRunDisabled REG_DWORD 1 (0x1)
AntiVirusDisableNotify REG_DWORD 0 (0x0)
FirewallDisableNotify REG_DWORD 0 (0x0)
UpdatesDisableNotify REG_DWORD 0 (0x0)
AntiVirusOverride REG_DWORD 1 (0x1)
FirewallOverride REG_DWORD 1 (0x1)

========
Services
=========

Ndisuio : Start = 3
Ip6Fw : Start = 2
SharedAccess : Start = 2
wuauserv : Start = 2
wscsvc : Start = 2

============
Disk Cleaned
anti-ver blaster : OK
Prefetch cleaned
================



¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤

voila j attend tjrs la suite merci
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 90
Utilisateur anonyme
3 mai 2010 à 02:16
installe le service Pack 3 stp
0
Réponse 26 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 02:22
je dois l installer ,es une necessite ? parce que g pas le sp3 mnt je dois l acheter et encore une autre question pk je dois installe r sp3 g le sp2 en maposscession
etqu en t il de l etat du virus
merci de repondre
0
Réponse 27 / 90
Utilisateur anonyme
3 mai 2010 à 02:39
je saurai quand le sp3 sera installé.....s'il faut s'occuper de fichiers systemes qui seraeint semble-t-ils ....injectés d'un code on dira pour faire simple

il est gratuit telechargeable ici

(le sp3 est beaucoup plus sur pour la securité du pc)

https://www.clubic.com/telecharger-fiche242026-windows-xp-service-pack-3.html
0
Réponse 28 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 02:42
merci je vais l installer juste une precision je dois reformater le disk c ou l installer dessus le windows actuelle ?
merci
0
Réponse 29 / 90
Utilisateur anonyme
3 mai 2010 à 02:43
lol

c'est juste un gros paquet de mises a jour....tu continueras a te servir du meme windows mais en plus stable
0
Utilisateur anonyme
3 mai 2010 à 02:45
des que tu l as recu , tu ferme toutes tes fenetres , tu desactives ton antivirus , et tu double cliques dessus , et tu le laisse faire il te demandera surement de redemarrer à la fin de l installation , fais-le

c'est comme si tu installais un gros programme en fait :)
0
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 12:08
re bonjour apres installation de sp3
je dois faire quoi au juste
es que je dois poster un rapport et si oui lekel stp
merci
0
Réponse 30 / 90
Utilisateur anonyme
3 mai 2010 à 13:07
bonjour

▶ Relance List&Kill'em(soit en clic droit pour vista),avec le raccourci sur ton bureau.

mais cette fois-ci :

▶ choisis l'option Command Lines

un document texte va s'ouvrir à l'apparition de : Text Please

▶copie/colle le texte en gras ci-dessous :

mbr -t >> a.txt
notepad a.txt
del /F /Q a.txt

ensuite onglet "Fichier" clic sur enregistrer , puis ferme ce bloc notes

Laisse travailler l'outil

à la fin un rapport s'ouvre ,

▶ poste le resultat
0
Réponse 31 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 14:13
voila le rapport aparu juste apres la fermeture du blocknote

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spub.sys >>UNKNOWN [0x89E04938]<<
kernel: MBR read successfully
user & kernel MBR OK

j espere que je me suis pas tropmer
la suitre stp
0
Réponse 32 / 90
Utilisateur anonyme
3 mai 2010 à 14:50
il nous reste un petit souci sur fichier system

relance List_kill'em , option "More informations" et poste le rapport "More.txt" qui apparaitra sur ton bureau via cijoint
0
Réponse 33 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 14:57
voila le raport more.text

========== More informations ==========

====
DLLs
====

------------------------------------------------------------------------------
explorer.exe pid: 1604
Command line: C:\WINDOWS\Explorer.EXE
Base Size Version Path
0x01000000 0x100000 6.00.2900.5512 C:\WINDOWS\Explorer.EXE
0x7c910000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5512 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5512 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x92000 5.01.2600.5512 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5512 C:\WINDOWS\system32\Secur32.dll
0x75f10000 0xfd000 6.00.2900.5512 C:\WINDOWS\system32\BROWSEUI.dll
0x77ef0000 0x49000 5.01.2600.5512 C:\WINDOWS\system32\GDI32.dll
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x77f40000 0x76000 6.00.2900.5512 C:\WINDOWS\system32\SHLWAPI.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x7e210000 0x171000 6.00.2900.5512 C:\WINDOWS\system32\SHDOCVW.dll
0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\MSASN1.dll
0x76610000 0x84000 5.131.2600.5512 C:\WINDOWS\system32\CRYPTUI.dll
0x6fee0000 0x55000 5.01.2600.5512 C:\WINDOWS\system32\NETAPI32.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x404a0000 0xe6000 8.00.6001.18904 C:\WINDOWS\system32\WININET.dll
0x00400000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x45180000 0x133000 8.00.6001.18904 C:\WINDOWS\system32\urlmon.dll
0x40b40000 0x1e8000 8.00.6001.18904 C:\WINDOWS\system32\iertutil.dll
0x76be0000 0x2e000 5.131.2600.5512 C:\WINDOWS\system32\WINTRUST.dll
0x76c40000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\IMAGEHLP.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x7c9d0000 0x825000 6.00.2900.5512 C:\WINDOWS\system32\SHELL32.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\UxTheme.dll
0x5cea0000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\ShimEng.dll
0x595b0000 0x1ca000 5.01.2600.5512 C:\WINDOWS\AppPatch\AcGenral.DLL
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x75140000 0x2e000 5.01.2600.5512 C:\WINDOWS\system32\msctfime.ime
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\appHelp.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x765b0000 0x56000 5.01.2600.5512 C:\WINDOWS\System32\cscui.dll
0x76590000 0x1d000 5.01.2600.5512 C:\WINDOWS\System32\CSCDLL.dll
0x5b950000 0x73000 6.00.2900.5512 C:\WINDOWS\system32\themeui.dll
0x76310000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\MSIMG32.dll
0x01440000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x10000000 0x14000 1.00.0000.1012 C:\Program Files\SUPERAntiSpyware\SASSEH.DLL
0x40d30000 0xa93000 8.00.6001.18904 C:\WINDOWS\system32\ieframe.dll
0x71800000 0x8e000 6.00.2900.5512 C:\WINDOWS\system32\shdoclc.dll
0x5ffb0000 0x33000 5.01.2600.5512 C:\WINDOWS\system32\msutb.dll
0x74690000 0x4c000 5.01.2600.5512 C:\WINDOWS\system32\MSCTF.dll
0x71b50000 0x13000 5.01.2600.5512 C:\WINDOWS\system32\SAMLIB.dll
0x76920000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\LINKINFO.dll
0x76930000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\ntshrui.dll
0x76ac0000 0x11000 3.05.2284.0001 C:\WINDOWS\system32\ATL.DLL
0x778e0000 0xf8000 5.01.2600.5512 C:\WINDOWS\system32\SETUPAPI.dll
0x7d200000 0x2bc000 3.01.4001.5512 C:\WINDOWS\system32\msi.dll
0x762f0000 0x10000 5.01.2600.5512 C:\WINDOWS\system32\WINSTA.dll
0x01140000 0x3d000 8.00.6001.18702 C:\WINDOWS\system32\webcheck.dll
0x75d30000 0x91000 6.00.2900.5512 C:\WINDOWS\system32\MLANG.dll
0x76390000 0x1a9000 5.01.2600.5512 C:\WINDOWS\system32\NETSHELL.dll
0x76bb0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\credui.dll
0x5b660000 0xa000 5.01.2600.5512 C:\WINDOWS\system32\dot3api.dll
0x76e30000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\rtutils.dll
0x72640000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\dot3dlg.dll
0x73990000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\OneX.DLL
0x76f00000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WTSAPI32.dll
0x6da60000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\eappcfg.dll
0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll
0x200e0000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\eappprxy.dll
0x76d10000 0x19000 5.01.2600.5512 C:\WINDOWS\system32\iphlpapi.dll
0x719f0000 0x17000 5.01.2600.5512 C:\WINDOWS\system32\WS2_32.dll
0x719e0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WS2HELP.dll
0x76540000 0x21000 5.01.2600.5512 C:\WINDOWS\system32\stobject.dll
0x74a60000 0xa000 6.00.2900.5512 C:\WINDOWS\system32\BatMeter.dll
0x74a40000 0x8000 6.00.2900.5512 C:\WINDOWS\system32\POWRPROF.dll
0x72c70000 0x9000 5.01.2600.5512 C:\WINDOWS\system32\wdmaud.drv
0x72c60000 0x8000 5.01.2600.0000 C:\WINDOWS\system32\msacm32.drv
0x77ba0000 0x7000 5.01.2600.5512 C:\WINDOWS\system32\midimap.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\system32\rsaenh.dll
0x77210000 0xb1000 5.01.2600.5512 C:\WINDOWS\system32\SXS.DLL
0x71a60000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\MPR.dll
0x75ef0000 0x7000 5.01.2600.5512 C:\WINDOWS\System32\drprov.dll
0x71b70000 0xe000 5.01.2600.5512 C:\WINDOWS\System32\ntlanman.dll
0x71c30000 0x17000 5.01.2600.5512 C:\WINDOWS\System32\NETUI0.dll
0x71bf0000 0x40000 5.01.2600.5512 C:\WINDOWS\System32\NETUI1.dll
0x71be0000 0x7000 5.01.2600.5512 C:\WINDOWS\System32\NETRAP.dll
0x75f00000 0xa000 5.01.2600.5512 C:\WINDOWS\System32\davclnt.dll
0x00d60000 0x7000 4.00.0000.0001 E:\Crack\idmmkb.dll
0x01ac0000 0x2d000 3.93.0000.0000 C:\Program Files\WinRAR\rarext.dll
0x02040000 0x32000 4.06.0000.0000 C:\Program Files\PowerISO\PWRISOSH.DLL
0x72f50000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\WINSPOOL.DRV
0x01a80000 0x18000 1.04.0005.0000 C:\Program Files\Malwarebytes' Anti-Malware\mbamext.dll
0x22000000 0x32000 4.02.0035.0000 C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll
0x033c0000 0xd36000 6.14.0011.8120 C:\WINDOWS\system32\nvcpl.dll
0x76340000 0x4a000 6.00.2900.5512 C:\WINDOWS\system32\comdlg32.dll
0x74bf0000 0x2c000 4.02.5406.0000 C:\WINDOWS\system32\OLEACC.dll
0x04100000 0x45000 6.14.0011.8120 C:\WINDOWS\system32\NVRSFR.DLL
0x77650000 0x21000 5.01.2600.5512 C:\WINDOWS\system32\NTMARTA.DLL
0x04150000 0xa4000 6.14.0011.8120 C:\WINDOWS\system32\nvapi.dll
0x04200000 0x73000 6.14.0010.12082 C:\WINDOWS\system32\nvshell.dll
0x60990000 0x7000 3.01.4001.5512 C:\WINDOWS\system32\MSISIP.DLL
0x7e6a0000 0x16000 5.07.0000.16599 C:\WINDOWS\system32\wshext.dll

------------------------------------------------------------------------------
iexplore.exe pid: 2316
Command line: "C:\Program Files\Internet Explorer\iexplore.exe"
Base Size Version Path
0x00400000 0x9c000 8.00.6001.18702 C:\Program Files\Internet Explorer\iexplore.exe
0x7c910000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5512 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5512 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x92000 5.01.2600.5512 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5512 C:\WINDOWS\system32\Secur32.dll
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5512 C:\WINDOWS\system32\GDI32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x77f40000 0x76000 6.00.2900.5512 C:\WINDOWS\system32\SHLWAPI.dll
0x7c9d0000 0x825000 6.00.2900.5512 C:\WINDOWS\system32\SHELL32.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x40b40000 0x1e8000 8.00.6001.18904 C:\WINDOWS\system32\iertutil.dll
0x45180000 0x133000 8.00.6001.18904 C:\WINDOWS\system32\urlmon.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x40d30000 0xa93000 8.00.6001.18904 C:\WINDOWS\system32\IEFRAME.dll
0x404a0000 0xe6000 8.00.6001.18904 C:\WINDOWS\system32\WININET.dll
0x00930000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x719f0000 0x17000 5.01.2600.5512 C:\WINDOWS\system32\ws2_32.dll
0x719e0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WS2HELP.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x71990000 0x40000 5.01.2600.5512 C:\WINDOWS\System32\mswsock.dll
0x76ed0000 0x27000 5.01.2600.5512 C:\WINDOWS\system32\DNSAPI.dll
0x76f70000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\rasadhlp.dll
0x76340000 0x4a000 6.00.2900.5512 C:\WINDOWS\system32\comdlg32.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\uxtheme.dll
0x74690000 0x4c000 5.01.2600.5512 C:\WINDOWS\system32\MSCTF.dll
0x01160000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\appHelp.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x76e90000 0x3c000 5.01.2600.5512 C:\WINDOWS\system32\RASAPI32.dll
0x76e40000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\rasman.dll
0x6fee0000 0x55000 5.01.2600.5512 C:\WINDOWS\system32\NETAPI32.dll
0x76e60000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\TAPI32.dll
0x76e30000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\rtutils.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x77c40000 0x24000 5.01.2600.5512 C:\WINDOWS\system32\msv1_0.dll
0x76d10000 0x19000 5.01.2600.5512 C:\WINDOWS\system32\iphlpapi.dll
0x72220000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\sensapi.dll
0x75140000 0x2e000 5.01.2600.5512 C:\WINDOWS\system32\msctfime.ime
0x01ba0000 0x2a000 8.00.6001.18702 C:\WINDOWS\system32\IEUI.dll
0x76310000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\MSIMG32.dll
0x45380000 0x40000 8.00.6001.18904 C:\Program Files\Internet Explorer\ieproxy.dll
0x74660000 0x2a000 5.01.2600.5512 C:\WINDOWS\system32\msimtf.dll
0x765b0000 0x56000 5.01.2600.5512 C:\WINDOWS\System32\cscui.dll
0x76590000 0x1d000 5.01.2600.5512 C:\WINDOWS\System32\CSCDLL.dll
0x778e0000 0xf8000 5.01.2600.5512 C:\WINDOWS\system32\SETUPAPI.dll
0x74bf0000 0x2c000 4.02.5406.0000 C:\WINDOWS\system32\oleacc.dll
0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll
0x46fe0000 0x21000 1.00.1018.0000 C:\WINDOWS\system32\xmllite.dll
0x450a0000 0x94000 8.00.6001.18904 C:\WINDOWS\system32\msfeeds.dll
0x10000000 0x7000 4.00.0000.0001 E:\Crack\idmmkb.dll
0x77210000 0xb1000 5.01.2600.5512 C:\WINDOWS\system32\SXS.DLL
0x71ca0000 0x1b000 6.00.2900.5512 C:\WINDOWS\system32\actxprxy.dll
0x75d30000 0x91000 6.00.2900.5512 C:\WINDOWS\system32\MLANG.dll
0x753c0000 0x6b000 1.420.2600.5512 C:\WINDOWS\system32\USP10.dll
0x748f0000 0x113000 8.90.1101.0000 C:\WINDOWS\system32\msxml3.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\system32\rsaenh.dll
0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\MSASN1.dll
------------------------------------------------------------------------------
iexplore.exe pid: 2380
Command line: "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:2316 CREDAT:79873
Base Size Version Path
0x00400000 0x9c000 8.00.6001.18702 C:\Program Files\Internet Explorer\iexplore.exe
0x7c910000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5512 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5512 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x92000 5.01.2600.5512 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5512 C:\WINDOWS\system32\Secur32.dll
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5512 C:\WINDOWS\system32\GDI32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x77f40000 0x76000 6.00.2900.5512 C:\WINDOWS\system32\SHLWAPI.dll
0x7c9d0000 0x825000 6.00.2900.5512 C:\WINDOWS\system32\SHELL32.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x40b40000 0x1e8000 8.00.6001.18904 C:\WINDOWS\system32\iertutil.dll
0x45180000 0x133000 8.00.6001.18904 C:\WINDOWS\system32\urlmon.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x40d30000 0xa93000 8.00.6001.18904 C:\WINDOWS\system32\IEFRAME.dll
0x76340000 0x4a000 6.00.2900.5512 C:\WINDOWS\system32\comdlg32.dll
0x00940000 0x6000 8.00.6001.18904 C:\Program Files\Internet Explorer\xpshims.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\uxtheme.dll
0x74690000 0x4c000 5.01.2600.5512 C:\WINDOWS\system32\MSCTF.dll
0x778e0000 0xf8000 5.01.2600.5512 C:\WINDOWS\system32\SETUPAPI.dll
0x01620000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x404a0000 0xe6000 8.00.6001.18904 C:\WINDOWS\system32\WININET.dll
0x010e0000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x45380000 0x40000 8.00.6001.18904 C:\Program Files\Internet Explorer\ieproxy.dll
0x719f0000 0x17000 5.01.2600.5512 C:\WINDOWS\system32\ws2_32.dll
0x719e0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WS2HELP.dll
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\appHelp.dll
0x75d30000 0x91000 6.00.2900.5512 C:\WINDOWS\system32\MLANG.dll
0x75140000 0x2e000 5.01.2600.5512 C:\WINDOWS\system32\msctfime.ime
0x10000000 0x16000 5.11.0000.0003 E:\Crack\IDMIECC.dll
0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll
0x01e30000 0xa4000 1.04.0001.0011 C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.10.dll
0x29500000 0x67000 5.00.0818.0005 C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
0x27500000 0x11a000 5.00.0818.0005 C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\msidcrl40.dll
0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\MSASN1.dll
0x74bf0000 0x2c000 4.02.5406.0000 C:\WINDOWS\system32\OLEACC.dll
0x72220000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\SensApi.dll
0x76ba0000 0xb000 5.01.2600.5512 C:\WINDOWS\system32\PSAPI.DLL
0x76be0000 0x2e000 5.131.2600.5512 C:\WINDOWS\system32\WINTRUST.dll
0x76c40000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\IMAGEHLP.dll
0x02140000 0xc5000 4.02.0000.4997 C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\system32\rsaenh.dll
0x02330000 0x7000 4.00.0000.0001 E:\Crack\idmmkb.dll
0x77210000 0xb1000 5.01.2600.5512 C:\WINDOWS\system32\SXS.DLL
0x76e90000 0x3c000 5.01.2600.5512 C:\WINDOWS\system32\RASAPI32.dll
0x76e40000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\rasman.dll
0x6fee0000 0x55000 5.01.2600.5512 C:\WINDOWS\system32\NETAPI32.dll
0x76e60000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\TAPI32.dll
0x76e30000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\rtutils.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\USERENV.dll
0x77c40000 0x24000 5.01.2600.5512 C:\WINDOWS\system32\msv1_0.dll
0x76d10000 0x19000 5.01.2600.5512 C:\WINDOWS\system32\iphlpapi.dll
0x75ed0000 0x13000 5.131.2600.5512 C:\WINDOWS\system32\cryptnet.dll
0x4d5e0000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\WINHTTP.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x748f0000 0x113000 8.90.1101.0000 C:\WINDOWS\system32\msxml3.dll
0x71990000 0x40000 5.01.2600.5512 C:\WINDOWS\system32\mswsock.dll
0x62e40000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\hnetcfg.dll
0x719d0000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\wshtcpip.dll
0x76f70000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\rasadhlp.dll
0x71ca0000 0x1b000 6.00.2900.5512 C:\WINDOWS\system32\actxprxy.dll
0x76ed0000 0x27000 5.01.2600.5512 C:\WINDOWS\system32\DNSAPI.dll
0x40590000 0x5af000 8.00.6001.18904 C:\WINDOWS\system32\mshtml.dll
0x01f40000 0x29000 3.10.0349.0000 C:\WINDOWS\system32\msls31.dll
0x63380000 0xb4000 5.08.6001.18702 C:\WINDOWS\system32\jscript.dll
0x74660000 0x2a000 5.01.2600.5512 C:\WINDOWS\system32\msimtf.dll
0x35c50000 0x39000 8.00.6001.18702 C:\WINDOWS\system32\Dxtrans.dll
0x76ac0000 0x11000 3.05.2284.0001 C:\WINDOWS\system32\ATL.DLL
0x6d8f0000 0xa000 5.03.2600.5512 C:\WINDOWS\system32\ddrawex.dll
0x736b0000 0x4b000 5.03.2600.5512 C:\WINDOWS\system32\DDRAW.dll
0x73b10000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\DCIMAN32.dll
0x35cb0000 0x57000 8.00.6001.18702 C:\WINDOWS\system32\Dxtmsft.dll
0x431d0000 0x2f000 8.00.6001.18904 C:\WINDOWS\system32\iepeers.dll
0x72f50000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\WINSPOOL.DRV
0x04c80000 0x3c2000 4.02.0000.5004 C:\Program Files\Skype\Toolbars\Shared\SkypePnr.dll
0x1b000000 0xc000 8.00.6001.18702 C:\WINDOWS\system32\ImgUtil.dll
0x1b060000 0xe000 8.00.6001.18702 C:\WINDOWS\system32\pngfilt.dll
0x46fe0000 0x21000 1.00.1018.0000 C:\WINDOWS\system32\XmlLite.dll
0x72c70000 0x9000 5.01.2600.5512 C:\WINDOWS\system32\wdmaud.drv
0x72c60000 0x8000 5.01.2600.0000 C:\WINDOWS\system32\msacm32.drv
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x77ba0000 0x7000 5.01.2600.5512 C:\WINDOWS\system32\midimap.dll
0x4eb80000 0x1a6000 5.01.3102.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5512_x-ww_dfb54e0c\gdiplus.dll
0x05d40000 0x33000 8.00.6001.18702 C:\WINDOWS\system32\MSRATING.dll
0x73890000 0xd0000 5.03.2600.5512 C:\WINDOWS\system32\D3DIM700.DLL
0x76790000 0x27000 5.01.2600.5512 C:\WINDOWS\system32\schannel.dll
0x76310000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\msimg32.dll
------------------------------------------------------------------------------
0
Réponse 34 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 14:58
iexplore.exe pid: 2840
Command line: "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:2316 CREDAT:79874
Base Size Version Path
0x00400000 0x9c000 8.00.6001.18702 C:\Program Files\Internet Explorer\iexplore.exe
0x7c910000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5512 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5512 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x92000 5.01.2600.5512 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5512 C:\WINDOWS\system32\Secur32.dll
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5512 C:\WINDOWS\system32\GDI32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x77f40000 0x76000 6.00.2900.5512 C:\WINDOWS\system32\SHLWAPI.dll
0x7c9d0000 0x825000 6.00.2900.5512 C:\WINDOWS\system32\SHELL32.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x40b40000 0x1e8000 8.00.6001.18904 C:\WINDOWS\system32\iertutil.dll
0x45180000 0x133000 8.00.6001.18904 C:\WINDOWS\system32\urlmon.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x40d30000 0xa93000 8.00.6001.18904 C:\WINDOWS\system32\IEFRAME.dll
0x76340000 0x4a000 6.00.2900.5512 C:\WINDOWS\system32\comdlg32.dll
0x00940000 0x6000 8.00.6001.18904 C:\Program Files\Internet Explorer\xpshims.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\uxtheme.dll
0x74690000 0x4c000 5.01.2600.5512 C:\WINDOWS\system32\MSCTF.dll
0x01620000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x778e0000 0xf8000 5.01.2600.5512 C:\WINDOWS\system32\SETUPAPI.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x45380000 0x40000 8.00.6001.18904 C:\Program Files\Internet Explorer\ieproxy.dll
0x404a0000 0xe6000 8.00.6001.18904 C:\WINDOWS\system32\WININET.dll
0x010f0000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x719f0000 0x17000 5.01.2600.5512 C:\WINDOWS\system32\ws2_32.dll
0x719e0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WS2HELP.dll
0x75d30000 0x91000 6.00.2900.5512 C:\WINDOWS\system32\MLANG.dll
0x75140000 0x2e000 5.01.2600.5512 C:\WINDOWS\system32\msctfime.ime
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\apphelp.dll
0x10000000 0x16000 5.11.0000.0003 E:\Crack\IDMIECC.dll
0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll
0x01e20000 0xa4000 1.04.0001.0011 C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.10.dll
0x29500000 0x67000 5.00.0818.0005 C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
0x02010000 0xc5000 4.02.0000.4997 C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
0x27500000 0x11a000 5.00.0818.0005 C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\msidcrl40.dll
0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\MSASN1.dll
0x74bf0000 0x2c000 4.02.5406.0000 C:\WINDOWS\system32\OLEACC.dll
0x72220000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\SensApi.dll
0x76ba0000 0xb000 5.01.2600.5512 C:\WINDOWS\system32\PSAPI.DLL
0x76be0000 0x2e000 5.131.2600.5512 C:\WINDOWS\system32\WINTRUST.dll
0x76c40000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\IMAGEHLP.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\system32\rsaenh.dll
0x77210000 0xb1000 5.01.2600.5512 C:\WINDOWS\system32\SXS.DLL
0x71ca0000 0x1b000 6.00.2900.5512 C:\WINDOWS\system32\actxprxy.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\userenv.dll
0x6fee0000 0x55000 5.01.2600.5512 C:\WINDOWS\system32\netapi32.dll
0x75ed0000 0x13000 5.131.2600.5512 C:\WINDOWS\system32\cryptnet.dll
0x4d5e0000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\WINHTTP.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x748f0000 0x113000 8.90.1101.0000 C:\WINDOWS\system32\msxml3.dll
0x76e90000 0x3c000 5.01.2600.5512 C:\WINDOWS\system32\RASAPI32.dll
0x76e40000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\rasman.dll
0x76e60000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\TAPI32.dll
0x76e30000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\rtutils.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x40590000 0x5af000 8.00.6001.18904 C:\WINDOWS\system32\mshtml.dll
0x031a0000 0x29000 3.10.0349.0000 C:\WINDOWS\system32\msls31.dll
0x77c40000 0x24000 5.01.2600.5512 C:\WINDOWS\system32\msv1_0.dll
0x76d10000 0x19000 5.01.2600.5512 C:\WINDOWS\system32\iphlpapi.dll
0x03330000 0x7000 4.00.0000.0001 E:\Crack\idmmkb.dll
0x03a10000 0x3c2000 4.02.0000.5004 C:\Program Files\Skype\Toolbars\Shared\SkypePnr.dll
0x74660000 0x2a000 5.01.2600.5512 C:\WINDOWS\system32\msimtf.dll
0x46fe0000 0x21000 1.00.1018.0000 C:\WINDOWS\system32\XmlLite.dll
0x71990000 0x40000 5.01.2600.5512 C:\WINDOWS\system32\mswsock.dll
0x62e40000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\hnetcfg.dll
0x719d0000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\wshtcpip.dll
0x76f70000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\rasadhlp.dll
0x76ed0000 0x27000 5.01.2600.5512 C:\WINDOWS\system32\DNSAPI.dll
0x63380000 0xb4000 5.08.6001.18702 C:\WINDOWS\system32\jscript.dll
0x72c70000 0x9000 5.01.2600.5512 C:\WINDOWS\system32\wdmaud.drv
0x72c60000 0x8000 5.01.2600.0000 C:\WINDOWS\system32\msacm32.drv
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x77ba0000 0x7000 5.01.2600.5512 C:\WINDOWS\system32\midimap.dll
0x431d0000 0x2f000 8.00.6001.18904 C:\WINDOWS\system32\iepeers.dll
0x72f50000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\WINSPOOL.DRV
0x1b000000 0xc000 8.00.6001.18702 C:\WINDOWS\system32\ImgUtil.dll
0x1b060000 0xe000 8.00.6001.18702 C:\WINDOWS\system32\pngfilt.dll
0x05ec0000 0x4a4000 10.00.0045.0002 C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx
0x73a80000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\mscms.dll
0x76310000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\msimg32.dll
0x753c0000 0x6b000 1.420.2600.5512 C:\WINDOWS\system32\USP10.dll
0x4eb80000 0x1a6000 5.01.3102.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5512_x-ww_dfb54e0c\gdiplus.dll
0x73b10000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\dciman32.dll
0x76790000 0x27000 5.01.2600.5512 C:\WINDOWS\system32\schannel.dll
0x35c50000 0x39000 8.00.6001.18702 C:\WINDOWS\system32\Dxtrans.dll
0x76ac0000 0x11000 3.05.2284.0001 C:\WINDOWS\system32\ATL.DLL
0x6d8f0000 0xa000 5.03.2600.5512 C:\WINDOWS\system32\ddrawex.dll
0x736b0000 0x4b000 5.03.2600.5512 C:\WINDOWS\system32\DDRAW.dll
0x35cb0000 0x57000 8.00.6001.18702 C:\WINDOWS\system32\Dxtmsft.dll
0x73890000 0xd0000 5.03.2600.5512 C:\WINDOWS\system32\D3DIM700.DLL
0x03080000 0x33000 8.00.6001.18702 C:\WINDOWS\system32\MSRATING.dll
------------------------------------------------------------------------------
iexplore.exe pid: 1960
Command line: "C:\Program Files\Internet Explorer\iexplore.exe" SCODEF:2316 CREDAT:14372
Base Size Version Path
0x00400000 0x9c000 8.00.6001.18702 C:\Program Files\Internet Explorer\iexplore.exe
0x7c910000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\ntdll.dll
0x7c800000 0x106000 5.01.2600.5512 C:\WINDOWS\system32\kernel32.dll
0x77da0000 0xac000 5.01.2600.5512 C:\WINDOWS\system32\ADVAPI32.dll
0x77e50000 0x92000 5.01.2600.5512 C:\WINDOWS\system32\RPCRT4.dll
0x77fc0000 0x11000 5.01.2600.5512 C:\WINDOWS\system32\Secur32.dll
0x7e390000 0x91000 5.01.2600.5512 C:\WINDOWS\system32\USER32.dll
0x77ef0000 0x49000 5.01.2600.5512 C:\WINDOWS\system32\GDI32.dll
0x77be0000 0x58000 7.00.2600.5512 C:\WINDOWS\system32\msvcrt.dll
0x77f40000 0x76000 6.00.2900.5512 C:\WINDOWS\system32\SHLWAPI.dll
0x7c9d0000 0x825000 6.00.2900.5512 C:\WINDOWS\system32\SHELL32.dll
0x774a0000 0x13d000 5.01.2600.5512 C:\WINDOWS\system32\ole32.dll
0x40b40000 0x1e8000 8.00.6001.18904 C:\WINDOWS\system32\iertutil.dll
0x45180000 0x133000 8.00.6001.18904 C:\WINDOWS\system32\urlmon.dll
0x770e0000 0x8b000 5.01.2600.5512 C:\WINDOWS\system32\OLEAUT32.dll
0x76320000 0x1d000 5.01.2600.5512 C:\WINDOWS\system32\IMM32.DLL
0x77390000 0x103000 6.00.2900.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
0x58b50000 0x9a000 5.82.2900.5512 C:\WINDOWS\system32\comctl32.dll
0x40d30000 0xa93000 8.00.6001.18904 C:\WINDOWS\system32\IEFRAME.dll
0x76340000 0x4a000 6.00.2900.5512 C:\WINDOWS\system32\comdlg32.dll
0x00940000 0x6000 8.00.6001.18904 C:\Program Files\Internet Explorer\xpshims.dll
0x5b090000 0x38000 6.00.2900.5512 C:\WINDOWS\system32\uxtheme.dll
0x74690000 0x4c000 5.01.2600.5512 C:\WINDOWS\system32\MSCTF.dll
0x01620000 0x2da000 5.01.2600.5512 C:\WINDOWS\system32\xpsp2res.dll
0x778e0000 0xf8000 5.01.2600.5512 C:\WINDOWS\system32\SETUPAPI.dll
0x76f80000 0x7f000 2001.12.4414.0700 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0700 C:\WINDOWS\system32\COMRes.dll
0x77bd0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\VERSION.dll
0x45380000 0x40000 8.00.6001.18904 C:\Program Files\Internet Explorer\ieproxy.dll
0x404a0000 0xe6000 8.00.6001.18904 C:\WINDOWS\system32\WININET.dll
0x010f0000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x719f0000 0x17000 5.01.2600.5512 C:\WINDOWS\system32\ws2_32.dll
0x719e0000 0x8000 5.01.2600.5512 C:\WINDOWS\system32\WS2HELP.dll
0x75d30000 0x91000 6.00.2900.5512 C:\WINDOWS\system32\MLANG.dll
0x75140000 0x2e000 5.01.2600.5512 C:\WINDOWS\system32\msctfime.ime
0x77b50000 0x22000 5.01.2600.5512 C:\WINDOWS\system32\apphelp.dll
0x10000000 0x16000 5.11.0000.0003 E:\Crack\IDMIECC.dll
0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll
0x779e0000 0x97000 5.131.2600.5512 C:\WINDOWS\system32\CRYPT32.dll
0x77a80000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\MSASN1.dll
0x72220000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\SensApi.dll
0x76ba0000 0xb000 5.01.2600.5512 C:\WINDOWS\system32\PSAPI.DLL
0x76be0000 0x2e000 5.131.2600.5512 C:\WINDOWS\system32\WINTRUST.dll
0x76c40000 0x28000 5.01.2600.5512 C:\WINDOWS\system32\IMAGEHLP.dll
0x68000000 0x36000 5.01.2600.5507 C:\WINDOWS\system32\rsaenh.dll
0x77210000 0xb1000 5.01.2600.5512 C:\WINDOWS\system32\SXS.DLL
0x71ca0000 0x1b000 6.00.2900.5512 C:\WINDOWS\system32\actxprxy.dll
0x76960000 0xb6000 5.01.2600.5512 C:\WINDOWS\system32\userenv.dll
0x6fee0000 0x55000 5.01.2600.5512 C:\WINDOWS\system32\netapi32.dll
0x027d0000 0x7000 4.00.0000.0001 E:\Crack\idmmkb.dll
0x76e90000 0x3c000 5.01.2600.5512 C:\WINDOWS\system32\RASAPI32.dll
0x76e40000 0x12000 5.01.2600.5512 C:\WINDOWS\system32\rasman.dll
0x76e60000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\TAPI32.dll
0x76e30000 0xe000 5.01.2600.5512 C:\WINDOWS\system32\rtutils.dll
0x76ae0000 0x2f000 5.01.2600.5512 C:\WINDOWS\system32\WINMM.dll
0x75ed0000 0x13000 5.131.2600.5512 C:\WINDOWS\system32\cryptnet.dll
0x4d5e0000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\WINHTTP.dll
0x76f10000 0x2d000 5.01.2600.5512 C:\WINDOWS\system32\WLDAP32.dll
0x77c40000 0x24000 5.01.2600.5512 C:\WINDOWS\system32\msv1_0.dll
0x76d10000 0x19000 5.01.2600.5512 C:\WINDOWS\system32\iphlpapi.dll
0x71990000 0x40000 5.01.2600.5512 C:\WINDOWS\system32\mswsock.dll
0x62e40000 0x59000 5.01.2600.5512 C:\WINDOWS\system32\hnetcfg.dll
0x719d0000 0x8000 5.01.2600.5512 C:\WINDOWS\System32\wshtcpip.dll
0x76f70000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\rasadhlp.dll
0x76ed0000 0x27000 5.01.2600.5512 C:\WINDOWS\system32\DNSAPI.dll
0x748f0000 0x113000 8.90.1101.0000 C:\WINDOWS\system32\msxml3.dll
0x40590000 0x5af000 8.00.6001.18904 C:\WINDOWS\system32\mshtml.dll
0x03430000 0x29000 3.10.0349.0000 C:\WINDOWS\system32\msls31.dll
0x63380000 0xb4000 5.08.6001.18702 C:\WINDOWS\system32\jscript.dll
0x1b000000 0xc000 8.00.6001.18702 C:\WINDOWS\system32\ImgUtil.dll
0x1b060000 0xe000 8.00.6001.18702 C:\WINDOWS\system32\pngfilt.dll
0x35c50000 0x39000 8.00.6001.18702 C:\WINDOWS\system32\Dxtrans.dll
0x76ac0000 0x11000 3.05.2284.0001 C:\WINDOWS\system32\ATL.DLL
0x6d8f0000 0xa000 5.03.2600.5512 C:\WINDOWS\system32\ddrawex.dll
0x736b0000 0x4b000 5.03.2600.5512 C:\WINDOWS\system32\DDRAW.dll
0x73b10000 0x6000 5.01.2600.5512 C:\WINDOWS\system32\DCIMAN32.dll
0x35cb0000 0x57000 8.00.6001.18702 C:\WINDOWS\system32\Dxtmsft.dll
0x72c70000 0x9000 5.01.2600.5512 C:\WINDOWS\system32\wdmaud.drv
0x72c60000 0x8000 5.01.2600.0000 C:\WINDOWS\system32\msacm32.drv
0x77bb0000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\MSACM32.dll
0x77ba0000 0x7000 5.01.2600.5512 C:\WINDOWS\system32\midimap.dll
0x76790000 0x27000 5.01.2600.5512 C:\WINDOWS\system32\schannel.dll
0x071b0000 0x3c2000 4.02.0000.5004 C:\Program Files\Skype\Toolbars\Shared\SkypePnr.dll
0x4eb80000 0x1a6000 5.01.3102.5512 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.5512_x-ww_dfb54e0c\gdiplus.dll
0x73890000 0xd0000 5.03.2600.5512 C:\WINDOWS\system32\D3DIM700.DLL
0x76310000 0x5000 5.01.2600.5512 C:\WINDOWS\system32\msimg32.dll
0x02170000 0xa4000 1.04.0001.0011 C:\Program Files\BitComet\tools\BitCometBHO_1.4.1.10.dll
0x29500000 0x67000 5.00.0818.0005 C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
0x27500000 0x11a000 5.00.0818.0005 C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\msidcrl40.dll
0x74bf0000 0x2c000 4.02.5406.0000 C:\WINDOWS\system32\OLEACC.dll
0x032d0000 0xc5000 4.02.0000.4997 C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
0x46fe0000 0x21000 1.00.1018.0000 C:\WINDOWS\system32\XmlLite.dll
0x431d0000 0x2f000 8.00.6001.18904 C:\WINDOWS\system32\iepeers.dll
0x72f50000 0x26000 5.01.2600.5512 C:\WINDOWS\system32\WINSPOOL.DRV
0x05610000 0x4a4000 10.00.0045.0002 C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx
0x73a80000 0x15000 5.01.2600.5512 C:\WINDOWS\system32\mscms.dll

=====
Ports
=====

Pid Process Port Proto Path
1720 -> 1025 TCP
1132 -> 135 TCP
1432 -> 2869 TCP
4 System -> 139 TCP
0 System -> 2869 TCP
0 System -> 30606 TCP
4 System -> 445 TCP
1820 ekrn -> 30606 TCP C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
2344 firefox -> 3044 TCP C:\Program Files\Mozilla Firefox\firefox.exe
2344 firefox -> 3045 TCP C:\Program Files\Mozilla Firefox\firefox.exe
2344 firefox -> 3050 TCP C:\Program Files\Mozilla Firefox\firefox.exe
2344 firefox -> 3051 TCP C:\Program Files\Mozilla Firefox\firefox.exe
1432 -> 1036 UDP
1720 -> 1525 UDP
1132 -> 445 UDP
4 System -> 1031 UDP
0 System -> 1067 UDP
0 System -> 1080 UDP
0 System -> 123 UDP
0 System -> 137 UDP
0 System -> 138 UDP
0 System -> 1638 UDP
0 System -> 1900 UDP
4 System -> 500 UDP
1820 ekrn -> 4500 UDP C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
2344 firefox -> 1526 UDP C:\Program Files\Mozilla Firefox\firefox.exe
2344 firefox -> 1771 UDP C:\Program Files\Mozilla Firefox\firefox.exe
2344 firefox -> 1826 UDP C:\Program Files\Mozilla Firefox\firefox.exe
2344 firefox -> 3080 UDP C:\Program Files\Mozilla Firefox\firefox.exe

=============
Boot Execute
=============


HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute
autocheck autochk *
autocheck autochk *
Utilitaire de vérification automatique
Microsoft Corporation
5.01.2600.5512
c:\windows\system32\autochk.exe
b16ccbf66bf41f994d2810cc2299d9d6 (MD5)
1ca550976a0a04527ba38312ffc87b0e083e5f31 (SHA-1)
72a10210863995896fdd1725f072967961ffd41926c099634ff3bc99bbd65b4f (SHA-256)
0
Réponse 35 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 15:04
===================
LSA Security Providers
===================


HKLM\SYSTEM\CurrentControlSet\Control\SecurityProviders\SecurityProviders
msapsspc.dll
msapsspc.dll
Client DPA pour plate-forme 32 bit
Microsoft Corporation
6.00.0000.7755
c:\windows\system32\msapsspc.dll
9b5b153f4d0d5cb14d9865435182bd70 (MD5)
81f2fa4984c6dd3b9bca38d5c348343062d90815 (SHA-1)
5dbbbb5c1e4b0ffe1fedb6bcacc6693c835948deec967f5e412329a02b799d5f (SHA-256)
schannel.dll
schannel.dll
TLS / SSL Security Provider
Microsoft Corporation
5.01.2600.5512
c:\windows\system32\schannel.dll
e13d36b8490a1d942b5e504409950aa3 (MD5)
dbc9ea1342443f9df89f9594e01313cbefea947f (SHA-1)
cbd3bf27640a43a12b5753cf6ad7dbf09ee6feecc744c6c60000db42793c2bab (SHA-256)
digest.dll
digest.dll
Package d'authentification Digest SSPI
Microsoft Corporation
6.00.2900.5512
c:\windows\system32\digest.dll
6cc5c1dac782a63bbc18afc1a23acb68 (MD5)
a71acf37920ee69a9b6ad859c9bcd713826cf598 (SHA-1)
31a5cabdbd646bb97d75118c738229d440020a99301d3a0552210630ad8bb431 (SHA-256)
msnsspc.dll
msnsspc.dll
Accès MSN Internet
Microsoft Corporation
6.01.1825.0000
c:\windows\system32\msnsspc.dll
25f3fbfb7cbc160674b1ac246fd13dc0 (MD5)
223431b21e851cd14c1cf0ab1fbec16d1aa86518 (SHA-1)
ffaa55260dd1c2989508910b0470997ef9c868eb578f4a2b10e187de59fe35e7 (SHA-256)

HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Authentication Packages
msv1_0
msv1_0
Microsoft Authentication Package v1.0
Microsoft Corporation
5.01.2600.5512
c:\windows\system32\msv1_0.dll
427df62a7f78eaf26e40352cd0e05eda (MD5)
ab500c986b25b9410232eec5ca35a419346388c5 (SHA-1)
0c56662bb2662d1ced43c35d188e1e3ea94bdcb7ee85b23a3907a9f3bbbdd354 (SHA-256)

HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Notification Packages
scecli
scecli
Moteur du client de l'Éditeur de configuration de sécurité Windows
Microsoft Corporation
5.01.2600.5512
c:\windows\system32\scecli.dll
973b36634c544948c663e8269aa1b3a3 (MD5)
eae992c87e70dfdcdcd615624e80438e03f42f54 (SHA-1)
ad2c0561d4248c29e71dbffe5ecca1b1d061d2339773e1b54857f6d57970fe80 (SHA-256)

HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Security Packages
kerberos
kerberos
Kerberos Security Package
Microsoft Corporation
5.01.2600.5512
c:\windows\system32\kerberos.dll
5e1dc78ea1cfe5f02e5c6fd256e46492 (MD5)
1b8a28c0b3826e47f08c673750f540eafbb9de0c (SHA-1)
a8d42db0a2e075597b6af77ac54e4931255feaad578324992e19e6804551fb84 (SHA-256)
msv1_0
msv1_0
Microsoft Authentication Package v1.0
Microsoft Corporation
5.01.2600.5512
c:\windows\system32\msv1_0.dll
427df62a7f78eaf26e40352cd0e05eda (MD5)
ab500c986b25b9410232eec5ca35a419346388c5 (SHA-1)
0c56662bb2662d1ced43c35d188e1e3ea94bdcb7ee85b23a3907a9f3bbbdd354 (SHA-256)
schannel
schannel
TLS / SSL Security Provider
Microsoft Corporation
5.01.2600.5512
c:\windows\system32\schannel.dll
e13d36b8490a1d942b5e504409950aa3 (MD5)
dbc9ea1342443f9df89f9594e01313cbefea947f (SHA-1)
cbd3bf27640a43a12b5753cf6ad7dbf09ee6feecc744c6c60000db42793c2bab (SHA-256)
wdigest
wdigest
Microsoft Digest Access
Microsoft Corporation
5.01.2600.5512
c:\windows\system32\wdigest.dll
a3cbc6a9e46ee3fe8396c59f4e2270cc (MD5)
6b0f691f891bcf9b5ed1098aced610a0e8c01dc7 (SHA-1)
bb9c2d96678e37a2540ac9d071dea57536d7198f342b3fca621bd87754066d82 (SHA-256)

===============
Scheduled tasks
===============


Task Scheduler
GoogleUpdateTaskUserS-1-5-21-1343024091-484763869-682003330-1003Core.job
C:\Documents and Settings\ouaaz\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /c
Programme d'installation de Google
Google Inc.
1.02.0183.0009
c:\documents and settings\ouaaz\local settings\application data\google\update\googleupdate.exe
8f0de4fef8201e306f9938b0905ac96a (MD5)
d2e2915087427be8ea88b4a174c334c578208e78 (SHA-1)
ca7153fe0c037d79fbf7ce0e090d741fb52bccbbbd4ca505ef4849a0c4199f72 (SHA-256)
GoogleUpdateTaskUserS-1-5-21-1343024091-484763869-682003330-1003UA.job
C:\Documents and Settings\ouaaz\Local Settings\Application Data\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
Programme d'installation de Google
Google Inc.
1.02.0183.0009
c:\documents and settings\ouaaz\local settings\application data\google\update\googleupdate.exe
8f0de4fef8201e306f9938b0905ac96a (MD5)
d2e2915087427be8ea88b4a174c334c578208e78 (SHA-1)
ca7153fe0c037d79fbf7ce0e090d741fb52bccbbbd4ca505ef4849a0c4199f72 (SHA-256)

========
Programs
========

Ad-Remover By C_XX
Adobe Flash Player 10 ActiveX 10.0.45.2
Adobe Flash Player 10 Plugin 10.0.45.2
Adobe Photoshop CS3 10.0
Adobe Setup 1.0
Assistant de connexion Windows Live 5.000.818.5
BitComet 1.18 1.18
CCleaner 2.31
Cisco Packet Tracer 5.2.1
ESET NOD32 Antivirus 4.2.35.0
EVEREST Ultimate Edition v5.30 5.30
Foxit Reader 3.2.1.401
Free PDF to Word Converter 1.5
Free PDF to Word Doc Converter v1.1 1.1
High Definition Audio Driver Package - KB835221 20040219.000000
High Definition Audio Driver Package - KB888111 20040219.000000
Installation Windows Live 14.0.8089.726
Installation Windows Live 14.0.8089.0726
Java 2 Runtime Environment, SE v1.4.2_01 1.4.2_01
K-Lite Mega Codec Pack 4.9.5 4.9.5
List_Kill'em 1.7.2.6
Logiciel d'archivage WinRAR
MSVCRT 14.0.1468.721
Ma-Config.com 4.0.038
Malwarebytes' Anti-Malware
Media Player Classic - Home Cinema v. 1.3.1249.0
Microsoft Application Error Reporting 12.0.6012.5000
Microsoft Choice Guard 2.0.48.0
Microsoft Office Access MUI (French) 2007 12.0.4518.1014
Microsoft Office Excel MUI (French) 2007 12.0.4518.1014
Microsoft Office InfoPath MUI (French) 2007 12.0.4518.1014
Microsoft Office Outlook MUI (French) 2007 12.0.4518.1014
Microsoft Office PowerPoint MUI (French) 2007 12.0.4518.1014
Microsoft Office Professional Plus 2007 12.0.4518.1014
Microsoft Office Professional Plus 2007 12.0.4518.1014
Microsoft Office Proof (Arabic) 2007 12.0.4518.1014
Microsoft Office Proof (Dutch) 2007 12.0.4518.1014
Microsoft Office Proof (English) 2007 12.0.4518.1014
Microsoft Office Proof (French) 2007 12.0.4518.1014
Microsoft Office Proof (German) 2007 12.0.4518.1014
Microsoft Office Proof (Spanish) 2007 12.0.4518.1014
Microsoft Office Proofing (French) 2007 12.0.4518.1014
Microsoft Office Publisher MUI (French) 2007 12.0.4518.1014
Microsoft Office Shared MUI (French) 2007 12.0.4518.1014
Microsoft Office Word MUI (French) 2007 12.0.4518.1014
Microsoft Silverlight 3.0.40624.0
Microsoft Software Update for Web Folders (French) 12 12.0.4518.1014
Mise à jour pour Windows Internet Explorer 8 (KB980182) 1
Mise à jour pour Windows Internet Explorer 8 (KB980302) 1
Mozilla Firefox (3.5.9) 3.5.9 (fr)
NETg Learning Studio
NVIDIA Drivers
NVIDIA PhysX v8.10.13 8.10.13
Outil de téléchargement Windows Live 14.0.8014.1029
PowerISO 4.6
QuickTime
REALTEK GbE & FE Ethernet PCI-E NIC Driver 1.13.0000
Realtek High Definition Audio Driver 5.10.0.6029
SUPERAntiSpyware Free Edition 4.35.0.1002
Segoe UI 14.0.4327.805
Skype Toolbars 1.0.4051
Skype? 4.2 4.2.163
SuperCopier2
TeamSpeak 2 RC2 2.0.32.60
Train Signal Practice Exams
VLC media player 1.0.5 1.0.5
WebFldrs XP 9.50.7523
Windows Genuine Advantage Validation Tool (KB892130) 1.7.0069.2
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8 20090308.140743
Windows Live Call 14.0.8064.0206
Windows Live Communications Platform 14.0.8098.930
Windows Live Messenger 14.0.8089.0726
Windows XP Service Pack 3 20080413.144513

=======
Drivers
=======

e5e6dbfc41ea8aad005cb9a57a96b43b c:\windows\system32\drivers\acpi.sys
e4abc1212b70bb03d35e60681c447210 c:\windows\system32\drivers\acpiec.sys
ee7e0588072d196fc95486c23b8c6599 c:\windows\system32\drivers\adv01nt5.dll
7043187713dbf552d749c6accbb23c4e c:\windows\system32\drivers\adv02nt5.dll
f37bbf29cf0ec8c53fa14eac14679e1a c:\windows\system32\drivers\adv05nt5.dll
4c2d5029d8bd503c6a3a8061782fc69d c:\windows\system32\drivers\adv07nt5.dll
41e0f54f896ac2e891b87736d5778f3c c:\windows\system32\drivers\adv08nt5.dll
26db5e53d36407180b60c66d96658e2b c:\windows\system32\drivers\adv09nt5.dll
2a1106a5cc3d8f874158e19507634ddb c:\windows\system32\drivers\adv11nt5.dll
8bed39e3c35d6a489438b8141717a557 c:\windows\system32\drivers\aec.sys
322d0e36693d6e24a2398bee62a268cd c:\windows\system32\drivers\afd.sys
08fd04aa961bdc77fb983f328334e3d7 c:\windows\system32\drivers\agp440.sys
03a7e0922acfe1b07d5db2eeb0773063 c:\windows\system32\drivers\agpcpq.sys
cb08aed0de2dd889a8a820cd8082d83c c:\windows\system32\drivers\alim1541.sys
267fc636801edc5ab28e14036349e3be c:\windows\system32\drivers\Ambfilt.sys
95b4fb835e28aa1336ceeb07fd5b9398 c:\windows\system32\drivers\amdagp.sys
c6c0f974ab7e825813f8e6b4e5581750 c:\windows\system32\drivers\amdk6.sys
d3dabc57be6d456dfd4bc026cfa582ff c:\windows\system32\drivers\amdk7.sys
b5b8a80875c1dededa8b02765642c32f c:\windows\system32\drivers\arp1394.sys
b153affac761e7f5fcfa822b9c4e97bc c:\windows\system32\drivers\asyncmac.sys
9f3a2f5aa6875c72bf062c712cfa2674 c:\windows\system32\drivers\atapi.sys
d649c57da6fa762c64013747e5d7d2d6 c:\windows\system32\drivers\ati1btxx.sys
60b6aa2dc1521da343f781b70eb7895a c:\windows\system32\drivers\ati1mdxx.sys
6fdc61e8e8e17f6ecc2d9a10fa8df347 c:\windows\system32\drivers\ati1pdxx.sys
9d318099bf3876a4af4bc75966d27603 c:\windows\system32\drivers\ati1raxx.sys
bcaf267b10620f8c93f6e87ab726e145 c:\windows\system32\drivers\ati1rvxx.sys
dac7d785cf62f5bd41441e9d6f5a6efe c:\windows\system32\drivers\ati1snxx.sys
f7706dae7d101f1b19ce552d772ebfce c:\windows\system32\drivers\ati1ttxx.sys
6f714b4720dd80ffa9f8d2731594ea4c c:\windows\system32\drivers\ati1tuxx.sys
67ffbc158dd4d27ba3fc92c6acd87f73 c:\windows\system32\drivers\ati1xbxx.sys
0d8cab1f08f7d3c4de228b49e12e596a c:\windows\system32\drivers\ati1xsxx.sys
a2f791e99fd6eecebccfb1953a1d6f24 c:\windows\system32\drivers\ati2mtaa.sys
417352592432f5368a8296f7fb73becf c:\windows\system32\drivers\ati2mtag.sys
993e7bd6438fe989e328c6b4bca246a9 c:\windows\system32\drivers\atinbtxx.sys
ed4c2bf8403f4437987c0ba09cf48716 c:\windows\system32\drivers\atinmdxx.sys
e90ac2b14e98f1a4372e5891b4278784 c:\windows\system32\drivers\atinpdxx.sys
da36687d701c833430605a298731410b c:\windows\system32\drivers\atinraxx.sys
a7a01b907db63898d40b0a14248ff9a2 c:\windows\system32\drivers\atinrvxx.sys
ceddee2e0591894d19654d458fd3b9be c:\windows\system32\drivers\atinsnxx.sys
d80a8f6c0a717446496c3a06d33b0d9c c:\windows\system32\drivers\atinttxx.sys
edd66332608d27f4fd5069bcd0bc5164 c:\windows\system32\drivers\atintuxx.sys
3e7d485cbd0b0d9f6ea2ad9442411831 c:\windows\system32\drivers\atinxbxx.sys
77b575d7aab35d5908ae6ce681608d62 c:\windows\system32\drivers\atinxsxx.sys
8e59f9be251c8ae32a1ceb068b3f96b1 c:\windows\system32\drivers\ativmc20.cod
9916c1225104ba14794209cfa8012159 c:\windows\system32\drivers\atmarpc.sys
39a0a59180f19946374275745b21aeba c:\windows\system32\drivers\atmepvc.sys
ae76348a2605fb197fa8ff1d6f547836 c:\windows\system32\drivers\atmlane.sys
e7ef69b38d17ba01f914ae8f66216a38 c:\windows\system32\drivers\atmuni.sys
11b0477e16133f8754efa21249387a02 c:\windows\system32\drivers\atv01nt5.dll
1039128f6ce28dddc9b4dd3908b43afb c:\windows\system32\drivers\atv02nt5.dll
40699bff6b6b0eb0dbbc9af5102eef0f c:\windows\system32\drivers\atv04nt5.dll
a3059bfa93952c2404b555e2476eb52c c:\windows\system32\drivers\atv06nt5.dll
f5dcc193d3c900723487b55581d20d8d c:\windows\system32\drivers\atv10nt5.dll
d9f724aa26c010a217c97606b160ed68 c:\windows\system32\drivers\audstub.sys
da1f27d85e0d1525f6621372e7b685e9 c:\windows\system32\drivers\beep.sys
f934d1b230f84e1d19dd00ac5a7a83ed c:\windows\system32\drivers\bridge.sys
b279426e3c0c344893ed78a613a73bde c:\windows\system32\drivers\bthenum.sys
fca6f069597b62d42495191ace3fc6c1 c:\windows\system32\drivers\bthmodem.sys
80602b8746d3738f5886ce3d67ef06b6 c:\windows\system32\drivers\bthpan.sys
b6dcfa596e97c3964f9148d5d9198ef8 c:\windows\system32\drivers\bthport.sys
bb68cebffd181e18a26112d1b9f90f3d c:\windows\system32\drivers\bthprint.sys
61364cd71ef63b0f038b7e9df00f1efa c:\windows\system32\drivers\bthusb.sys
90a673fc8e12a79afbed2576f6a7aaf9 c:\windows\system32\drivers\cbidf2k.sys
c1b486a7658353d33a10cc15211a873b c:\windows\system32\drivers\cdaudio.sys
c885b02847f5d2fd45a24e219ed93b32 c:\windows\system32\drivers\cdfs.sys
1f4260cc5b42272d71f79e570a27a4fe c:\windows\system32\drivers\cdrom.sys
1961e1e4006ead9e56aaa6a5fa44682d c:\windows\system32\drivers\ch7xxnt5.dll
c9b25ae9b8abd983c5ad3f8cbfab0f9c c:\windows\system32\drivers\cinemst2.sys
fe47dd8fe6d7768ff94ebec6c74b2719 c:\windows\system32\drivers\classpnp.sys
9624293e55ad405415862b504ca95b73 c:\windows\system32\drivers\cpqdap01.sys
d68ae021109a74e491b83f3f69fb92cd c:\windows\system32\drivers\crusoe.sys
3194c32e8a2403073b812183355e25c6 c:\windows\system32\drivers\cxthsfs2.cty
044452051f3e02e7963599fc8f4f3e25 c:\windows\system32\drivers\disk.sys
e65e2353a5d74ea89971cb918eeeb2f6 c:\windows\system32\drivers\diskdump.sys
f5deadd42335fb33edca74ecb2f36cba c:\windows\system32\drivers\dmboot.sys
5a7c47c9b3f9fb92a66410a7509f0c71 c:\windows\system32\drivers\dmio.sys
e9317282a63ca4d188c0df5e09c6ac5f c:\windows\system32\drivers\dmload.sys
8a208dfcf89792a484e76c40e5f50b45 c:\windows\system32\drivers\dmusic.sys
6cb08593487f5701d2d2254e693eafce c:\windows\system32\drivers\drmk.sys
8f5fcff8e8848afac920905fbd9d33c8 c:\windows\system32\drivers\drmkaud.sys
fe97d0343acfdebdd578fc67cc91fa87 c:\windows\system32\drivers\dxapi.sys
ac7280566a7bb85cb3291f04ddc1198e c:\windows\system32\drivers\dxg.sys
a73f5d6705b1d820c19b18782e176efd c:\windows\system32\drivers\dxgthk.sys
55e754e04c09daf19fc0054e72713d80 c:\windows\system32\drivers\eamon.sys
6f2441c26d74bde88c25e240a2720eeb c:\windows\system32\drivers\ehdrv.sys
a8317313533e02d573e9da4962ce1bad c:\windows\system32\drivers\epfwtdir.sys
38d332a6d56af32635675f132548343e c:\windows\system32\drivers\fastfat.sys
92cdd60b6730b9f50f6a1a0c1f8cdc81 c:\windows\system32\drivers\fdc.sys
31f923eb2170fc172c81abda0045d18c c:\windows\system32\drivers\fips.sys
9d27e7b80bfcdf1cdd9b555862d5e7f0 c:\windows\system32\drivers\flpydisk.sys
b2cf4b0786f8212cb92ed2b50c6db6b0 c:\windows\system32\drivers\fltmgr.sys
b71a69bb9cc88803f455341bd3992e0c c:\windows\system32\drivers\fsvga.sys
3e1e2bd4f39b0e2b7dc4f4d2bcc2779a c:\windows\system32\drivers\fs_rec.sys
a86859b77b908c18c2657f284aa29fe3 c:\windows\system32\drivers\ftdisk.sys
3a74c423cf6bcca6982715878f450a3b c:\windows\system32\drivers\gagp30kx.sys
7f29903cb8f5590d52db0c9f97049a25 c:\windows\system32\drivers\gm.dls
7111bfa692a22e4b3c07f1e6c6ff6f72 c:\windows\system32\drivers\gmreadme.txt
573c7d0a32852b48f3058cfd8026f511 c:\windows\system32\drivers\hdaudbus.sys
2a013e7530beab6e569faa83f517e836 c:\windows\system32\drivers\Hdaudio.sys
557e47d8ea3ffe1c30fcb1b988dc75d1 c:\windows\system32\drivers\hidbth.sys
1af592532532a402ed7c060f6954004f c:\windows\system32\drivers\hidclass.sys
bb1a6fb7d35a91e599973fa74a619056 c:\windows\system32\drivers\hidir.sys
96eccf28fdbf1b2cc12725818a63628d c:\windows\system32\drivers\hidparse.sys
970178e8e003eb1481293830069624b9 c:\windows\system32\drivers\hsfbs2s2.sys
1225ebea76aac3c84df6c54fe5e5d8be c:\windows\system32\drivers\hsfcxts2.sys
ebb354438a4c5a3327fb97306260714a c:\windows\system32\drivers\hsfdpsp2.sys
f6aacf5bce2893e0c1754afeb672e5c9 c:\windows\system32\drivers\http.sys
a09bdc4ed10e3b2e0ec27bb94af32516 c:\windows\system32\drivers\i8042prt.sys
083a052659f5310dd8b6a6cb05edcf8e c:\windows\system32\drivers\imapi.sys
ad340800c35a42d4de1641a37feea34c c:\windows\system32\drivers\intelppm.sys
3bb22519a194418d5fec05d800a19ad0 c:\windows\system32\drivers\ip6fw.sys
731f22ba402ee4b62748adaf6363c182 c:\windows\system32\drivers\ipfltdrv.sys
b87ab476dcf76e72010632b5550955f5 c:\windows\system32\drivers\ipinip.sys
cc748ea12c6effde940ee98098bf96bb c:\windows\system32\drivers\ipnat.sys
23c74d75e36e7158768dd63d92789a91 c:\windows\system32\drivers\ipsec.sys
b43b36b382aea10861f7c7a37f9d4ae2 c:\windows\system32\drivers\irbus.sys
c93c9ff7b04d772627a3646d89f7bf89 c:\windows\system32\drivers\irenum.sys
355836975a67b6554bca60328cd6cb74 c:\windows\system32\drivers\isapnp.sys
16813155807c6881f4bfbf6657424659 c:\windows\system32\drivers\kbdclass.sys
692bcf44383d056aed41b045a323d378 c:\windows\system32\drivers\kmixer.sys
0753515f78df7f271a5e61c20bcd36a1 c:\windows\system32\drivers\ks.sys
1705745d900dabf2d89f90ebaddc7517 c:\windows\system32\drivers\ksecdd.sys
f61b04f2bb5098a34817d776c59e5e7c c:\windows\system32\drivers\mbam.sys
75b8ef2a089127e8a3b38f46cc366d79 c:\windows\system32\drivers\mbamswissarmy.sys
0
Réponse 36 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 15:07
d1f8be91ed4ddb671d42e473e3fe71ab c:\windows\system32\drivers\mcd.sys
195741aee20369980796b557358cd774 c:\windows\system32\drivers\mdmxsdk.sys
a7da20ab18a1bdae28b0f349e57da0d1 c:\windows\system32\drivers\mf.sys
4ae068242760a1fb6e1a44bf4e16afa6 c:\windows\system32\drivers\mnmdd.sys
510ade9327fe84c10254e1902697e25f c:\windows\system32\drivers\modem.sys
c7d9f9717916b34c1b00dd4834af485c c:\windows\system32\drivers\Monfilt.sys
027c01bd7ef3349aaebc883d8a799efb c:\windows\system32\drivers\mouclass.sys
a80b9a0bad1b73637dbcbba7df72d3fd c:\windows\system32\drivers\mountmgr.sys
70c14f5cca5cf73f8a645c73a01d8726 c:\windows\system32\drivers\mqac.sys
11d42bb6206f33fbb3ba0288d3ef81bd c:\windows\system32\drivers\mrxdav.sys
68755f0ff16070178b54674fe5b847b0 c:\windows\system32\drivers\mrxsmb.sys
c941ea2454ba8350021d774daf0f1027 c:\windows\system32\drivers\msfs.sys
0a02c63c8b144bd8c86b103dee7c86a2 c:\windows\system32\drivers\msgpc.sys
d1575e71568f4d9e14ca56b7b0453bf1 c:\windows\system32\drivers\mskssrv.sys
325bb26842fc7ccc1fcce2c457317f3e c:\windows\system32\drivers\mspclock.sys
bad59648ba099da4a17680b39730cb3d c:\windows\system32\drivers\mspqm.sys
af5f4f3f14a8ea2c26de30f7a1e17136 c:\windows\system32\drivers\mssmbios.sys
c53775780148884ac87c455489a0c070 c:\windows\system32\drivers\mtlmnt5.sys
54886a652bf5685192141df304e923fd c:\windows\system32\drivers\mtlstrm.sys
6dda78a0be692b61b668fab860f276cf c:\windows\system32\drivers\mtxparhm.sys
2f625d11385b1a94360bfc70aaefdee1 c:\windows\system32\drivers\mup.sys
b538dcd9816ea35fa4f637cfc261aaa8 c:\windows\system32\drivers\mutohpen.sys
1df7f42665c94b825322fae71721130d c:\windows\system32\drivers\ndis.sys
1ab3d00c991ab086e69db84b6c0ed78f c:\windows\system32\drivers\ndistapi.sys
f927a4434c5028758a842943ef1a3849 c:\windows\system32\drivers\ndisuio.sys
edc1531a49c80614b2cfda43ca8659ab c:\windows\system32\drivers\ndiswan.sys
6215023940cfd3702b46abc304e1d45a c:\windows\system32\drivers\ndproxy.sys
5d81cf9a2f1a3a756b66cf684911cdf0 c:\windows\system32\drivers\netbios.sys
74b2b2f5bea5e9a3dc021d685551bd3d c:\windows\system32\drivers\netbt.sys
905cb655e93d39c97e078a3c4c884f31 c:\windows\system32\drivers\netwlan5.img
e9e47cfb2d461fa0fc75b7a74c6383ea c:\windows\system32\drivers\nic1394.sys
be984d604d91c217355cdd3737aad25d c:\windows\system32\drivers\nikedrv.sys
1e421a6bcf2203cc61b821ada9de878b c:\windows\system32\drivers\nmnt.sys
3182d64ae053d6fb034f44b6def8034a c:\windows\system32\drivers\npfs.sys
78a08dd6a8d65e697c18e1db01c5cdca c:\windows\system32\drivers\ntfs.sys
576b34ceae5b7e5d9fd2775e93b3db53 c:\windows\system32\drivers\ntmtlfax.sys
73c1e1f395918bc2c6dd67af7591a3ad c:\windows\system32\drivers\null.sys
ce34061a298bfb4ebd1a0bb8592dc977 c:\windows\system32\drivers\nv4_mini.sys
b305f3fad35083837ef46a0bbce2fc57 c:\windows\system32\drivers\nwlnkflt.sys
c99b3415198d1aab7227f2c88fd664b9 c:\windows\system32\drivers\nwlnkfwd.sys
8b8b1be2dba4025da6786c645f77f123 c:\windows\system32\drivers\nwlnkipx.sys
56d34a67c05e94e16377c60609741ff8 c:\windows\system32\drivers\nwlnknb.sys
c0bb7d1615e1acbdc99757f6ceaf8cf0 c:\windows\system32\drivers\nwlnkspx.sys
36b9b950e3d2e100970a48d8bad86740 c:\windows\system32\drivers\nwrdr.sys
4bb30ddc53ebc76895e38694580cdfe9 c:\windows\system32\drivers\oprghdlr.sys
cecb679633523ac5eb7eb85f92dcd806 c:\windows\system32\drivers\p3.sys
8fd0bdbea875d06ccf6c945ca9abaf75 c:\windows\system32\drivers\parport.sys
beb3ba25197665d82ec7065b724171c6 c:\windows\system32\drivers\partmgr.sys
9575c5630db8fb804649a6959737154c c:\windows\system32\drivers\parvdm.sys
043410877bda580c528f45165f7125bc c:\windows\system32\drivers\pci.sys
f4bfde7209c14a07aaa61e4d6ae69eac c:\windows\system32\drivers\pciide.sys
52e60f29221d0d1ac16737e8dbf7c3e9 c:\windows\system32\drivers\pciidex.sys
f0406cbc60bdb0394a0e17ffb04cdd3d c:\windows\system32\drivers\pcmcia.sys
e82a496c3961efc6828b508c310ce98f c:\windows\system32\drivers\portcls.sys
e19c9632ac828f6f214391e2bdda11cb c:\windows\system32\drivers\processr.sys
09298ec810b07e5d582cb3a3f9255424 c:\windows\system32\drivers\psched.sys
80d317bd1c3dbc5d4fe7b1678c60cadd c:\windows\system32\drivers\ptilink.sys
fe0d99d6f31e4fad8159f690d68ded9c c:\windows\system32\drivers\rasacd.sys
11b4a627bc9614b885c4969bfa5ff8a6 c:\windows\system32\drivers\rasl2tp.sys
5bc962f2654137c9909c3d4603587dee c:\windows\system32\drivers\raspppoe.sys
efeec01b1d3cf84f16ddd24d9d9d8f99 c:\windows\system32\drivers\raspptp.sys
fdbb1d60066fcfbb7452fd8f9829b242 c:\windows\system32\drivers\raspti.sys
01524cd237223b18adbb48f70083f101 c:\windows\system32\drivers\rawwan.sys
7ad224ad1a1437fe28d89cf22b17780a c:\windows\system32\drivers\rdbss.sys
4912d5b403614ce99c28420f75353332 c:\windows\system32\drivers\rdpcdd.sys
15cabd0f7c00c47c70124907916af3f1 c:\windows\system32\drivers\rdpdr.sys
6728e45b66f93c08f11de2e316fc70dd c:\windows\system32\drivers\rdpwd.sys
e9aaa0092d74a9d371659c4c38882e12 c:\windows\system32\drivers\recagent.sys
d8eb2a7904db6c916eb5361878ddcbae c:\windows\system32\drivers\redbook.sys
851c30df2807fcfa21e4c681a7d6440e c:\windows\system32\drivers\rfcomm.sys
a56fe08ec7473e8580a390bb1081cdd7 c:\windows\system32\drivers\rio8drv.sys
0a854df84c77a0be205bfeab2ae4f0ec c:\windows\system32\drivers\riodrv.sys
ecff394d65671efde5a872eb9ef4f2d5 c:\windows\system32\drivers\rmcast.sys
601844cbcf617ff8c868130ca5b2039d c:\windows\system32\drivers\rndismp.sys
726548542afeca56257ff01eb13bb6d7 c:\windows\system32\drivers\rndismpx.sys
d8b0b4ade32574b2d9c5cc34dc0dbbe7 c:\windows\system32\drivers\rootmdm.sys
36ada62330c31ad314e4a26b815fc485 c:\windows\system32\drivers\Rtenicxp.sys
c42f37a1f345219b4888188bf297ddef c:\windows\system32\drivers\RtkHDAud.sys
0dbcc071a268e0340a2ba6bdd98bace4 c:\windows\system32\drivers\s3gnbm.sys
16b1abe7f3e35f21dac57592b6c5d464 c:\windows\system32\drivers\scdemu.sys
76c465f570e90c28942d52ccb2580a10 c:\windows\system32\drivers\scsiport.sys
8d04819a3ce51b9eb47e5689b44d43c4 c:\windows\system32\drivers\sdbus.sys
90a3935d05b494a5a39d37e71f09a677 c:\windows\system32\drivers\secdrv.sys
0f29512ccd6bead730039fb4bd2c85ce c:\windows\system32\drivers\serenum.sys
93d313c31f7ad9ea2b75f26075413c7c c:\windows\system32\drivers\serial.sys
0fa803c64df0914b41f807ea276bf2a6 c:\windows\system32\drivers\sffdisk.sys
d66d22d76878bf3483a6be30183fb648 c:\windows\system32\drivers\sffp_mmc.sys
c17c331e435ed8737525c86a7557b3ac c:\windows\system32\drivers\sffp_sd.sys
8e6b8c671615d126fdc553d1e2de5562 c:\windows\system32\drivers\sfloppy.sys
8fa17ab5a444501179049c7625c6e284 c:\windows\system32\drivers\siint5.dll
6b33d0ebd30db32e27d1d78fe946a754 c:\windows\system32\drivers\sisagp.sys
d9673011648a71ed1e1f77b831bc85e6 c:\windows\system32\drivers\slnt7554.sys
2c1779c0feb1f4a6033600305eba623a c:\windows\system32\drivers\slntamr.sys
f9b8e30e82ee95cf3e1d3e495599b99c c:\windows\system32\drivers\slnthal.sys
db56bb2c55723815cf549d7fc50cfceb c:\windows\system32\drivers\slwdmsup.sys
895be38a993b9bd5abbe570d63d88a2e c:\windows\system32\drivers\smbali.sys
017daecf0ed3aa731313433601ec40fa c:\windows\system32\drivers\smclib.sys
489703624dac94ed943c2abda022a1cd c:\windows\system32\drivers\sonydcam.sys
ab8b92451ecb048a4d1de7c3ffcb4a9f c:\windows\system32\drivers\splitter.sys
39626e6dc1fb39434ec40c42722b660a c:\windows\system32\drivers\sr.sys
5252605079810904e31c332e241cd59b c:\windows\system32\drivers\srv.sys
3e5d89099ded9e86e5639f411693218f c:\windows\system32\drivers\stream.sys
3941d127aef12e93addf6fe6ee027e0f c:\windows\system32\drivers\swenum.sys
8ce882bcc6cf8a62f2b2323d95cb3d01 c:\windows\system32\drivers\swmidi.sys
8b83f3ed0f1688b4958f77cd6d2bf290 c:\windows\system32\drivers\sysaudio.sys
fd6093e3decd925f1cffc8a0dd539d72 c:\windows\system32\drivers\tape.sys
93ea8d04ec73a85db02eb8805988f733 c:\windows\system32\drivers\tcpip.sys
aa7a55536096d646dc7ab0ac5641e9e8 c:\windows\system32\drivers\tcpip6.sys
0539d5e53587f82d1b4fd74c5be205cf c:\windows\system32\drivers\tdi.sys
6471a66807f5e104e4885f5b67349397 c:\windows\system32\drivers\tdpipe.sys
c56b6d0402371cf3700eb322ef3aaf61 c:\windows\system32\drivers\tdtcp.sys
88155247177638048422893737429d9e c:\windows\system32\drivers\termdd.sys
699450901c5ccfd82357cbc531cedd23 c:\windows\system32\drivers\tosdvd.sys
d74a8ec75305f1d3cfde7c7fc1bd62a9 c:\windows\system32\drivers\tsbvcap.sys
8f861eda21c05857eb8197300a92501c c:\windows\system32\drivers\tunmp.sys
d85938f272d1bcf3db3a31fc0a048928 c:\windows\system32\drivers\uagp35.sys
5787b80c2e3c5e2f56c2a233d91fa2c9 c:\windows\system32\drivers\udfs.sys
402ddc88356b1bac0ee3dd1580c76a31 c:\windows\system32\drivers\update.sys
bee793d4a059caea55d6ac20e19b3a8f c:\windows\system32\drivers\usb8023.sys
b6cc50279d6cd28e090a5d33244adc9a c:\windows\system32\drivers\usb8023x.sys
1c1a47b40c23358245aa8d0443b6935e c:\windows\system32\drivers\usbcamd.sys
ce97845d2e3f0d274b8bac1ed07c6149 c:\windows\system32\drivers\usbcamd2.sys
596eb39b50d6ebd9b734dc4ae0544693 c:\windows\system32\drivers\usbd.sys
65dcf09d0e37d4c6b11b5b0b76d470a7 c:\windows\system32\drivers\usbehci.sys
1ab3cdde553b6e064d2e754efe20285c c:\windows\system32\drivers\usbhub.sys
290913dc4f1125e5a82de52579a44c43 c:\windows\system32\drivers\usbintel.sys
791912e524cc2cc6f50b5f2b52d1eb71 c:\windows\system32\drivers\usbport.sys
a32426d9b14a089eaa1d922e0c5801a9 c:\windows\system32\drivers\usbstor.sys
26496f9dee2d787fc3e61ad54821ffe6 c:\windows\system32\drivers\usbuhci.sys
63bbfca7f390f4c49ed4b96bfb1633e0 c:\windows\system32\drivers\usbvideo.sys
370aa6ba1633350c90779e4e9d29bac6 c:\windows\system32\drivers\vchnt5.dll
55e01061c74a8cefff58dc36114a8d3f c:\windows\system32\drivers\vdmindvd.sys
0d3a8fafceacd8b7625cd549757a7df1 c:\windows\system32\drivers\vga.sys
754292ce5848b3738281b4f3607eaef4 c:\windows\system32\drivers\viaagp.sys
e28726b72c46821a28830e077d39a55b c:\windows\system32\drivers\videoprt.sys
46de1126684369bace4849e4fc8c43ca c:\windows\system32\drivers\volsnap.sys
aced8c149b30f8496c237bcba3727b48 c:\windows\system32\drivers\wacompen.sys
0308aef61941e4af478fa1a0f83812f5 c:\windows\system32\drivers\wadv07nt.sys
714038a8aa5de08e12062202cd7eaeb5 c:\windows\system32\drivers\wadv08nt.sys
7bb3aa595e4507a788de1cdc63f4c8c4 c:\windows\system32\drivers\wadv09nt.sys
36e6c405b6143d09687f4056fd9a0d10 c:\windows\system32\drivers\wadv11nt.sys
e20b95baedb550f32dd489265c1da1f6 c:\windows\system32\drivers\wanarp.sys
352fa0e98bc461ce1ce5d41f64db558d c:\windows\system32\drivers\watv06nt.sys
791cc45de6e50445be72e8ad6401ff45 c:\windows\system32\drivers\watv10nt.sys
6768acf64b18196494413695f0c3a00f c:\windows\system32\drivers\wdmaud.sys
2f31b7f954bed437f2c75026c65caf7b c:\windows\system32\drivers\wmilib.sys
6abe6e225adb5a751622a9cc3bc19ce8 c:\windows\system32\drivers\ws2ifsl.sys



==========( EOF )==========


voila tt le rapport
j attend la suite
merci
0
Réponse 37 / 90
Utilisateur anonyme
3 mai 2010 à 15:09
je t'avais demandé via cijoint.fr
0
Réponse 38 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 15:17
dsl jave remarquer mais c bon jg envoyer via cijoint.fr
j attend la suite
merci
0
Réponse 39 / 90
Utilisateur anonyme
3 mai 2010 à 15:20
j'attends le lien en retour ^^
0
Réponse 40 / 90
luffyy Messages postés 82 Date d'inscription vendredi 30 avril 2010 Statut Membre Dernière intervention 17 janvier 2011
3 mai 2010 à 15:27
dsl je suis un peut fatiguer la donc voila
http://www.cijoint.fr/cjlink.php?file=cj201005/cijWpxHrTf.txt
j attend tjrs la suite
merci
0

Discussions similaires

Problème avec "PUADIManager:Win32/OfferCore
Knaki -
bazfile -

3 réponses
Menaces HackTool:Win32
LeMax5993 -
lisa4777 -

4 réponses
Detection PUA: win32 Installcore
Nat -
bazfile -

13 réponses
PUABundler:Win32/CandyOpen : dangereux ?
joubine -
bazfile -

2 réponses
infecté par HackTool:Win32/AutoKMS
fredo1968 -
fredo1968 -

5 réponses