Sujet Précédent Sujet Suivant

Win32:adware-gen(adw)

Fermé
momo5418 Messages postés 16 Date d'inscription vendredi 19 octobre 2007 Statut Membre Dernière intervention 2 novembre 2007 - 19 oct. 2007 à 19:18
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 - 2 nov. 2007 à 15:55
Bonjour,
je vien d'avoir ce virus win32:adware-gen(adw) sur mon pc que dois je faire ????


merci de votre aide d'avance..
a+

34 réponses

  • 1
  • 2
Réponse 1 / 34
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406
19 oct. 2007 à 19:28
bonsoir momo,

Télécharge HijackThis version francaise ici :

-> http://pchelpbordeaux.free.fr/logiciels.html

Tutoriel d´installation (images) :

-> http://pchelpbordeaux.free.fr/tuto.html

Tutoriel d´utilisation (video) :

-> http://pageperso.aol.fr/balltrap34/demohijack.htm

Post le rapport généré ici stp...
0
lollipop
30 oct. 2007 à 14:45
Hello et Heeeelllppp
Je fais appel à un doué :D:D
En scannant avec Avast, j'ai trouvé un adware Win32:Agent-AWB [Adw]
Nom du fichier :
E:\SystemVolumeInformation\_restore{50203417-4FB4-4149-8038-755C50583654}\RP90\A0034526.exe\$INSTDIR\SetupDTSB.exe\DaemonTools_WhenUSave_Installer.exe
j'ai beau le mettre en quarantaine, il revient automatiquement à chaque scan.
Jai passé ccleaner,ad-awar se : RAS
Avec Spybot ça coince à la 1/2 du scan.
Quoi t'est-ce et que dois-je faire.
Il y en a-t-il possible de me helper??
Merci mille fois déjà ;)
0
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406 > lollipop
30 oct. 2007 à 20:54
Bonjour,

Il serait préférable que tu fasses ton message personnel, cela rendra les postes plus compréhensibles et la réponse à ton problème sera plus efficace
Procèdes comme ceci :
http://pageperso.aol.fr/balltrap34/demofairesontmessage.htm

A bientôt ''
0
Réponse 2 / 34
momo5418
20 oct. 2007 à 09:28
voila ce que tu ma demander g!rly

Logfile of HijackThis v1.99.1
Scan saved at 09:23:53, on 20/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\Program Files\CyberLink\PowerCinema\PCMService.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\WINDOWS\system32\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe /normal-run2
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\CyberLink\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
0
Réponse 3 / 34
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406
20 oct. 2007 à 09:35
bonjour mohamed,

je ne voie rien de mechant dans ton pc;

as tu des pubs?

pour l´instant fais un scan avec ad-aware et dis moi quoi...

*Ad-Aware (gratuit)
Téléchargement :
http://telecharger.01net.com/windows/Internet/internet_utlitaire/fiches/11643.html
Le patch en Français pour Ad-Aware (gratuit) :
http://telecharger.01net.com/windows/Internet/internet_utlitaire/fiches/25543.html
Tuto :
http://perso.orange.fr/entraide-hijackthis/AdAware/AdAware.htm
0
Réponse 4 / 34
momo5418 Messages postés 16 Date d'inscription vendredi 19 octobre 2007 Statut Membre Dernière intervention 2 novembre 2007
21 oct. 2007 à 11:29
j'arrive pas a lire ta page tuto :
http://perso.orange.fr/entraide-hijackthis/AdAware/AdAware.htm
es ce que j'en est vraiment besoin
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 34
momo5418 Messages postés 16 Date d'inscription vendredi 19 octobre 2007 Statut Membre Dernière intervention 2 novembre 2007
21 oct. 2007 à 11:59
bonjour , g!rly

voila j'espere c'est ce qu'il te faut

Ad-Aware 2007 Build
Log File Created on: 2007-10-21 11:53:15
Using Definitions File: C:\Documents and Settings\All Users\Application Data\Lavasoft\Ad-Aware 2007\core.aawdef
Computer name: BRIGITTE
Name of user performing scan: SYSTEM

System information
===========================
Number of processors: 1
Processor type: AMD Sempron(tm) Processor 3400+
Memory Available: 32%
Total Physical Memory: 469217280 Bytes
Available Physical Memory: 145584128 Bytes
Total Page File Size: 1107111936 Bytes
Available On Page File: 484163584 Bytes
Total Virtual Memory: 2147352576 Bytes
Available Virtual Memory: 1994149888 Bytes
OS: Microsoft Windows XP Service Pack 2 (Build 2600)

Ad-Aware 2007 Settings
===========================
Skipping files larger than 1048576 kB
Ignoring infections with lower TAI than: 3


Extended Ad-Aware 2007 Settings
===========================
Unloading known modules during scan
Ignoring spanned files when scanning cab archives
Scanning registry for all users
Using permanent archive caching
Reanalyzing results after scanning before displaying results
Trying to unload modules prior to removal
Let Windows remove files currently in use at next reboot
Removing quarantined objects after restore
Logging Ad-Aware events
Blocking Pop-Ups aggressively
Deactivating Ad-Watch during scans
Writeprotecting system files after repairs
Including Ad-aware command line parameters in log file
Include info about ignored objects in log file
Including basic settings in log file
Including advanced settings in log file
Including user and computer name in log file
Include reference summary in log file
Creating log file for removal operations
Including module info in log file
Include Alternate Data Stream details in log file
Create and save WebUpdate log file

Databaseinfo
===========================
Version number: 7
Build Number: 0
Build Date and Time: 2007/07/05 07:55:33

Scan Statistics
===========================
Method: Full
Scan tracking cookies.............................: On
Scan ADS filestreams..............................: Off

Item Scanned: 138427
Infections Detected: 60
Infections Ignored: 0

Scan detailed statistics
===========================
Type Critical Total
Process Scan....: 0 0
Registry Scan...: 1 1
Registry PE Scan: 0 0
Hosts File Scan.: 0 0
File Scan.......: 0 0
Folder Scan.....: 0 0
LSP Scan........: 0 0
ADS Scan........: 0 0
Cookie Scan.....: 55 55
File Hash Scan..: 1 1

Infections Found
===========================
Family Id: 725 Name: Tracking Cookie Category: DataMiner TAI:3
Item Id: 600000179 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat atdmt.com AA002 /
Item Id: 600000001 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat smartadserver.com TestIfCookieP /
Item Id: 600000001 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat smartadserver.com pbw /
Item Id: 600000001 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat smartadserver.com pid /
Item Id: 600000001 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat smartadserver.com pbwmaj /
Item Id: 600000042 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat ww3.shoshkeles.com shosh /
Item Id: 600000447 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat apmebf.com S /
Item Id: 600000447 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat apmebf.com LCLK /
Item Id: 600000225 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat weborama.fr oo240953 /
Item Id: 600000225 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat weborama.fr AFFICHE_W /
Item Id: 600000225 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat weborama.fr oo136131 /
Item Id: 600000225 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat weborama.fr aimfarcapping /
Item Id: 600000225 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat weborama.fr wbo_temps_reel /
Item Id: 600000457 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat adopt.euroclick.com LO /
Item Id: 600000457 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat adopt.euroclick.com UI /
Item Id: 600000457 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat adopt.euroclick.com NSC_mc-bepqu.fvspdmjdl.dpn-iuuq /
Item Id: 600000201 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat media.adrevolver.com adrevid /
Item Id: 600000201 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat media.adrevolver.com BIGipServerar-slave /
Item Id: 600000201 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat adrevolver.com prefs /
Item Id: 600000201 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat adrevolver.com adrev_adpath /
Item Id: 600000276 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat www.etracker.de etcnt_40683 /
Item Id: 600000276 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat www.etracker.de etcnt_62665 /
Item Id: 600000173 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat bluestreak.com id /
Item Id: 600000408 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat serving-sys.com A2 /
Item Id: 600000408 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat serving-sys.com B2 /
Item Id: 600000408 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat serving-sys.com C3 /
Item Id: 600000408 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat serving-sys.com D3 /
Item Id: 600000408 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat serving-sys.com E2 /
Item Id: 600000001 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat adserver.aol.fr JEB2 /
Item Id: 600000201 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat media.adrevolver.com freq /adrevolver/
Item Id: 600000201 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat media.adrevolver.com uid /adrevolver/
Item Id: 600000190 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat www.googleadservices.com Conversion /pagead/conversion/1071486122/
Item Id: 600000171 Value: Browser: Internet Explorer Cookie: C:\Documents and Settings\bibi\Cookies\index.dat bs.serving-sys.com eyeblaster /
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1059843415/
Item Id: 600000144 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt doubleclick.net id /
Item Id: 600000179 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt atdmt.com AA002 /
Item Id: 600000225 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt weborama.fr AFFICHE_W /
Item Id: 600000225 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt weborama.fr wous /
Item Id: 600000225 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt weborama.fr aimfarcapping /
Item Id: 600000001 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt smartadserver.com pbw /
Item Id: 600000001 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt smartadserver.com pid /
Item Id: 600000001 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt smartadserver.com TestIfCookieP /
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1066597940/
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1067647651/
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1061582872/
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1069159032/
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1063995060/
Item Id: 600000392 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt web-stats.org wso_6117 /
Item Id: 600000001 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt adserver.aol.fr JEB2 /
Item Id: 600000190 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt www.googleadservices.com Conversion /pagead/conversion/1063680960/
Item Id: 600000412 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt searchportal.information.com Spusr /
Item Id: 600000461 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt ad.uk.tangozebra.com TZID /a
Item Id: 600000276 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt www.etracker.de etcnt_62665 /
Item Id: 600000276 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt www.etracker.de etcnt_40683 /
Item Id: 600000457 Value: Browser: Firefox Cookie: C:\Documents and Settings\bibi\Application Data\Mozilla\Firefox\Profiles/25r8hsrv.default\cookies.txt adopt.euroclick.com UI /
Family Id: 316 Name: DriveCleaner Category: Misc TAI:3
Item Id: 6108 Value: File: C:\system volume information\_restore{27929864-1714-4615-A18A-05D85FEEEFEA}\RP114\A0013678.exe
Item Id: 300008257 Value: Root: HKU Path: S-1-5-21-2512778113-1555988816-2965856440-1006\software\eicouohwumaclouifmlneogwlcmcnnuium
Family Id: 9999 Name: MRU Object Category: MRU Object TAI:0
Item Id: 1 Value: MRU Path: C:\Documents and Settings\bibi\Recent Count: 90
Item Id: 2 Value: MRU Registry Key: S-1-5-21-2512778113-1555988816-2965856440-1006\Software\Microsoft\Search Assistant\ACMru\5603 Count: 1
Item Id: 3 Value: MRU Registry Key: S-1-5-21-2512778113-1555988816-2965856440-1006\Software\Microsoft\Internet Explorer\TypedURLs Count: 22

Items Ignored During Scan
===========================


Listing of running processes
===========================
C:\WINDOWS\SYSTEM32\SMSS.EXE
c:\windows\system32\smss.exe

c:\windows\system32\ntdll.dll

C:\WINDOWS\SYSTEM32\CSRSS.EXE
c:\windows\system32\csrss.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\csrsrv.dll

c:\windows\system32\basesrv.dll

c:\windows\system32\winsrv.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\sxs.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

C:\WINDOWS\SYSTEM32\WINLOGON.EXE
c:\windows\system32\winlogon.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\authz.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\nddeapi.dll

c:\windows\system32\profmap.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\psapi.dll

c:\windows\system32\regapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\version.dll

c:\windows\system32\winsta.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\msgina.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\odbc32.dll

c:\windows\system32\comdlg32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\odbcint.dll

c:\windows\system32\shsvcs.dll

c:\windows\system32\sfc.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\ole32.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\winscard.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\sxs.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\cscdll.dll

c:\windows\system32\wlnotify.dll

c:\windows\system32\winspool.drv

c:\windows\system32\mpr.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\wgalogon.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\cscui.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

C:\WINDOWS\SYSTEM32\SERVICES.EXE
c:\windows\system32\services.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\scesrv.dll

c:\windows\system32\authz.dll

c:\windows\system32\umpnpmgr.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acadproc.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\version.dll

c:\windows\system32\eventlog.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\psapi.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

C:\WINDOWS\SYSTEM32\LSASS.EXE
c:\windows\system32\lsass.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\lsasrv.dll

c:\windows\system32\mpr.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\samsrv.dll

c:\windows\system32\cryptdll.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\msprivs.dll

c:\windows\system32\kerberos.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\netlogon.dll

c:\windows\system32\w32time.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\schannel.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\wdigest.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\scecli.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\ipsecsvc.dll

c:\windows\system32\authz.dll

c:\windows\system32\oakley.dll

c:\windows\system32\winipsec.dll

c:\windows\system32\pstorsvc.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\psbase.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\dssenh.dll

C:\WINDOWS\SYSTEM32\SVCHOST.EXE
c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\rpcss.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\termsrv.dll

c:\windows\system32\icaapi.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\authz.dll

c:\windows\system32\mstlsapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\atl.dll

c:\windows\system32\regapi.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\rpcss.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\shsvcs.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\dhcpcsvc.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\wzcsvc.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\wmi.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\esent.dll

c:\windows\system32\atl.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\rastls.dll

c:\windows\system32\cryptui.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wininet.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\schannel.dll

c:\windows\system32\winscard.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\raschap.dll

c:\windows\system32\schedsvc.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\msv1_0.dll

c:\windows\system32\msidle.dll

c:\windows\system32\audiosrv.dll

c:\windows\system32\wkssvc.dll

c:\windows\system32\qmgr.dll

c:\windows\system32\mpr.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\cryptsvc.dll

c:\windows\system32\certcli.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\ersvc.dll

c:\windows\system32\srvsvc.dll

c:\windows\pchealth\helpctr\binaries\pchsvc.dll

c:\windows\system32\es.dll

c:\windows\system32\netman.dll

c:\windows\system32\netshell.dll

c:\windows\system32\credui.dll

c:\windows\system32\wzcsapi.dll

c:\windows\system32\seclogon.dll

c:\windows\system32\upnp.dll

c:\windows\system32\ssdpapi.dll

c:\windows\system32\srsvc.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\sens.dll

c:\windows\system32\browser.dll

c:\windows\system32\wuauserv.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\wbem\wmisvc.dll

c:\windows\system32\vssapi.dll

c:\windows\system32\wuaueng.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cabinet.dll

c:\windows\system32\mspatcha.dll

c:\windows\system32\w32time.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\trkwks.dll

c:\windows\system32\tapisrv.dll

c:\windows\system32\psapi.dll

c:\windows\system32\wscsvc.dll

c:\windows\system32\msi.dll

c:\windows\system32\ipnathlp.dll

c:\windows\system32\authz.dll

c:\windows\system32\sxs.dll

c:\windows\system32\comsvcs.dll

c:\windows\system32\colbact.dll

c:\windows\system32\mtxclu.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\clusapi.dll

c:\windows\system32\resutils.dll

c:\windows\system32\sfc.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\wbem\wbemcore.dll

c:\windows\system32\wbem\esscli.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\wbem\wmiutils.dll

c:\windows\system32\wbem\repdrvfs.dll

c:\windows\system32\wbem\wmiprvsd.dll

c:\windows\system32\ncobjapi.dll

c:\windows\system32\wbem\wbemess.dll

c:\windows\system32\wbem\ncprov.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\rasdlg.dll

c:\windows\system32\apphelp.dll

c:\windows\system32\dssenh.dll

c:\windows\system32\catsrvut.dll

c:\windows\system32\catsrv.dll

c:\windows\system32\mfcsubs.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\msxml3.dll

c:\windows\system32\advpack.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\dnsrslvr.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\svchost.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ntmarta.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\lmhsvc.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\webclnt.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ssdpsrv.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\wshtcpip.dll

C:\WINDOWS\SYSTEM32\SPOOLSV.EXE
c:\windows\system32\spoolsv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\spoolss.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\localspl.dll

c:\windows\system32\sfc_os.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\winspool.drv

c:\windows\system32\netapi32.dll

c:\windows\system32\cnbjmon.dll

c:\windows\system32\fxsmon.dll

c:\windows\system32\fxsevent.dll

c:\windows\system32\pjlmon.dll

c:\windows\system32\tcpmon.dll

c:\windows\system32\usbmon.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\win32spl.dll

c:\windows\system32\netrap.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\inetpp.dll

C:\WINDOWS\EXPLORER.EXE
c:\windows\explorer.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\browseui.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\shdocvw.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\cryptui.dll

c:\windows\system32\wintrust.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\userenv.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\apphelp.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\cscui.dll

c:\windows\system32\cscdll.dll

c:\windows\system32\themeui.dll

c:\windows\system32\msimg32.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\msutb.dll

c:\windows\system32\msctf.dll

c:\progra~1\window~1\wmpband.dll

c:\windows\system32\mpr.dll

c:\windows\system32\samlib.dll

c:\windows\system32\ntshrui.dll

c:\windows\system32\atl.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\linkinfo.dll

c:\windows\system32\netshell.dll

c:\windows\system32\credui.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\rtutils.dll

c:\windows\system32\urlmon.dll

c:\windows\system32\winsta.dll

c:\windows\system32\webcheck.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\stobject.dll

c:\windows\system32\batmeter.dll

c:\windows\system32\powrprof.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\wpdshserviceobj.dll

c:\windows\system32\winhttp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\mydocs.dll

c:\windows\system32\msacm32.drv

c:\windows\system32\midimap.dll

c:\windows\system32\portabledevicetypes.dll

c:\windows\system32\portabledeviceapi.dll

c:\windows\system32\msi.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\drprov.dll

c:\windows\system32\ntlanman.dll

c:\windows\system32\netui0.dll

c:\windows\system32\netui1.dll

c:\windows\system32\netrap.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\davclnt.dll

c:\windows\system32\sxs.dll

c:\windows\system32\fxsst.dll

c:\windows\system32\fxsapi.dll

c:\windows\system32\ntmarta.dll

c:\program files\adobe\acrobat 7.0\activex\pdfshell.dll

c:\windows\system32\browselc.dll

c:\program files\adobe\acrobat 7.0\activex\acroiehelper.dll

c:\windows\system32\duser.dll

c:\windows\system32\wzcsapi.dll

c:\windows\system32\wzcdlg.dll

c:\windows\system32\shdoclc.dll

c:\windows\system32\mlang.dll

c:\windows\system32\rasdlg.dll

c:\windows\system32\mprapi.dll

c:\windows\system32\activeds.dll

c:\windows\system32\adsldpc.dll

c:\windows\system32\rasapi32.dll

c:\windows\system32\rasman.dll

c:\windows\system32\tapi32.dll

c:\windows\system32\netman.dll

c:\windows\system32\wzcsvc.dll

c:\windows\system32\wmi.dll

c:\windows\system32\dhcpcsvc.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\esent.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\netcfgx.dll

c:\windows\system32\clusapi.dll

C:\PROGRAM FILES\LAVASOFT\AD-AWARE 2007\AAWSERVICE.EXE
c:\program files\lavasoft\ad-aware 2007\aawservice.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\program files\lavasoft\ad-aware 2007\ceapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\program files\lavasoft\ad-aware 2007\pkarchive84cb.dll

c:\windows\system32\shell32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\psapi.dll

c:\windows\system32\version.dll

c:\windows\system32\wininet.dll

c:\windows\system32\oleaut32.dll

c:\program files\lavasoft\ad-aware 2007\update.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\rsaenh.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctfime.ime

C:\PROGRAM FILES\ACER\ACER ECONSOLE\MEDIASERVERSERVICE.EXE
c:\program files\acer\acer econsole\mediaserverservice.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msvcrt.dll

c:\program files\acer\acer econsole\ilibn.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\program files\acer\acer econsole\msvcr71.dll

c:\windows\system32\version.dll

c:\program files\acer\acer econsole\log4cxx.dll

c:\windows\system32\odbc32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\oleaut32.dll

c:\program files\acer\acer econsole\msvcp71.dll

c:\windows\system32\iphlpapi.dll

c:\program files\acer\acer econsole\xdb.dll

c:\program files\acer\acer econsole\mediaclass.dll

c:\program files\acer\acer econsole\extresource.dll

c:\program files\acer\acer econsole\mfc71u.dll

c:\program files\acer\acer econsole\xdaoutil.dll

c:\program files\acer\acer econsole\mediautil.dll

c:\windows\system32\wmvcore.dll

c:\windows\system32\wmasf.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\odbcint.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\program files\fichiers communs\system\ado\msado15.dll

c:\windows\system32\msdart.dll

c:\program files\fichiers communs\system\ole db\oledb32.dll

c:\program files\fichiers communs\system\ole db\oledb32r.dll

c:\windows\system32\msjetoledb40.dll

c:\windows\system32\msjet40.dll

c:\windows\system32\mswstr10.dll

c:\windows\system32\msjter40.dll

c:\windows\system32\msjint40.dll

c:\windows\system32\comsvcs.dll

c:\windows\system32\colbact.dll

c:\windows\system32\mtxclu.dll

c:\windows\system32\wsock32.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\clusapi.dll

c:\windows\system32\resutils.dll

c:\windows\system32\userenv.dll

c:\windows\system32\msi.dll

c:\windows\system32\sxs.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\rsaenh.dll

C:\WINDOWS\RTHDCPL.EXE
c:\windows\rthdcpl.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\hhctrl.ocx

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\dsound.dll

c:\windows\system32\winmm.dll

c:\windows\system32\version.dll

c:\windows\system32\setupapi.dll

c:\windows\system32\mpr.dll

c:\windows\system32\winspool.drv

c:\windows\system32\comdlg32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\mui\000c\hhctrlui.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\wintrust.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\wdmaud.drv

c:\windows\system32\msacm32.drv

c:\windows\system32\msacm32.dll

c:\windows\system32\midimap.dll

c:\windows\system32\msctf.dll

c:\windows\system32\ksuser.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

C:\ACER\EMPOWERING TECHNOLOGY\ERECOVERY\ERAGENT.EXE
c:\acer\empowering technology\erecovery\eragent.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\acer\empowering technology\erecovery\it41.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\comdlg32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\winspool.drv

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\oledlg.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\version.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\acer\empowering technology\erecovery\imagefile.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\samlib.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\wbem\wbemprox.dll

c:\windows\system32\wbem\wbemcomn.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\wbem\wbemsvc.dll

c:\windows\system32\wbem\fastprox.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\ntdsapi.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\winmm.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\msctf.dll

C:\PROGRAM FILES\CYBERLINK\POWERDVD\PDVDSERV.EXE
c:\program files\cyberlink\powerdvd\pdvdserv.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shell32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\ole32.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\clbcatq.dll

c:\windows\system32\comres.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\version.dll

c:\program files\cyberlink\powerdvd\clrcengine2.dll

c:\windows\system32\xpsp2res.dll

c:\windows\system32\msctf.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\winmm.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

C:\ACER\EMPOWERING TECHNOLOGY\EPERFORMANCE\MEMCHECK.EXE
c:\acer\empowering technology\eperformance\memcheck.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\mscoree.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorwks.dll

c:\windows\microsoft.net\framework\v1.1.4322\msvcr71.dll

c:\windows\microsoft.net\framework\v1.1.4322\fusion.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll

c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_513c5c46\mscorlib.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorsn.dll

c:\windows\assembly\gac\mscorlib.resources\1.0.5000.0_fr_b77a5c561934e089\mscorlib.resources.dll

c:\windows\assembly\gac\system.serviceprocess\1.0.5000.0__b03f5f7f11d50a3a\system.serviceprocess.dll

c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_5c59ae91\system.dll

c:\acer\empowering technology\eperformance\acer.empowering.shared.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorjit.dll

c:\acer\empowering technology\eperformance\acermemusagecheckservinterface.dll

c:\windows\assembly\gac\system.runtime.remoting\1.0.5000.0__b77a5c561934e089\system.runtime.remoting.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\mswsock.dll

c:\windows\system32\dnsapi.dll

c:\windows\system32\iphlpapi.dll

c:\windows\system32\winrnr.dll

c:\windows\system32\wldap32.dll

c:\windows\system32\rasadhlp.dll

c:\windows\system32\hnetcfg.dll

c:\windows\system32\wshtcpip.dll

c:\windows\system32\rsaenh.dll

c:\windows\assembly\gac\system.serviceprocess.resources\1.0.5000.0_fr_b03f5f7f11d50a3a\system.serviceprocess.resources.dll

c:\windows\system32\oleaut32.dll

C:\WINDOWS\SYSTEM32\RUNDLL32.EXE
c:\windows\system32\rundll32.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\imagehlp.dll

c:\windows\system32\shimeng.dll

c:\windows\apppatch\acgenral.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\winmm.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msacm32.dll

c:\windows\system32\version.dll

c:\windows\system32\shell32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\userenv.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\nvmctray.dll

c:\windows\system32\msctfime.ime

c:\windows\system32\msctf.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

C:\PROGRAM FILES\JAVA\JRE1.5.0_06\BIN\JUSCHED.EXE
c:\program files\java\jre1.5.0_06\bin\jusched.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\wininet.dll

c:\windows\system32\crypt32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\user32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\msasn1.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

C:\WINDOWS\SYSTEM32\SYSMONITOR.EXE
c:\windows\system32\sysmonitor.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\mscoree.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\imm32.dll

c:\windows\system32\lpk.dll

c:\windows\system32\usp10.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorwks.dll

c:\windows\microsoft.net\framework\v1.1.4322\msvcr71.dll

c:\windows\microsoft.net\framework\v1.1.4322\fusion.dll

c:\windows\system32\ole32.dll

c:\windows\system32\shell32.dll

c:\windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.2600.2982_x-ww_ac3f9c03\comctl32.dll

c:\windows\system32\comctl32.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorlib.dll

c:\windows\assembly\nativeimages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_513c5c46\mscorlib.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorsn.dll

c:\windows\system32\uxtheme.dll

c:\windows\system32\msctf.dll

c:\windows\assembly\gac\system.windows.forms\1.0.5000.0__b77a5c561934e089\system.windows.forms.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system.windows.forms\1.0.5000.0__b77a5c561934e089_252a74c0\system.windows.forms.dll

c:\windows\assembly\gac\system\1.0.5000.0__b77a5c561934e089\system.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system\1.0.5000.0__b77a5c561934e089_5c59ae91\system.dll

c:\windows\microsoft.net\framework\v1.1.4322\mscorjit.dll

c:\windows\microsoft.net\framework\v1.1.4322\diasymreader.dll

c:\windows\assembly\gac\system.drawing\1.0.5000.0__b03f5f7f11d50a3a\system.drawing.dll

c:\windows\assembly\nativeimages1_v1.1.4322\system.drawing\1.0.5000.0__b03f5f7f11d50a3a_31f18b12\system.drawing.dll

c:\windows\system32\msctfime.ime

c:\windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.2600.2180_x-ww_522f9f82\gdiplus.dll

c:\windows\system32\ws2_32.dll

c:\windows\system32\ws2help.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\version.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\cryptoapi.dll

c:\windows\system32\winmm.dll

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

C:\ACER\EMPOWERING TECHNOLOGY\EDATASECURITY\EDSLOADER.EXE
c:\acer\empowering technology\edatasecurity\edsloader.exe

c:\windows\system32\ntdll.dll

c:\windows\system32\kernel32.dll

c:\windows\system32\advapi32.dll

c:\windows\system32\rpcrt4.dll

c:\windows\system32\secur32.dll

c:\windows\system32\comctl32.dll

c:\windows\system32\gdi32.dll

c:\windows\system32\user32.dll

c:\windows\system32\keymanager.dll

c:\windows\system32\cryptoapi.dll

c:\windows\system32\msvcr71.dll

c:\windows\system32\winmm.dll

c:\windows\system32\msnchathook.dll

c:\windows\system32\sysenv.dll

c:\windows\system32\version.dll

c:\windows\system32\shlwapi.dll

c:\windows\system32\msvcrt.dll

c:\windows\system32\shell32.dll

c:\windows\system32\oleaut32.dll

c:\windows\system32\ole32.dll

c:\windows\system32\oleacc.dll

c:\windows\system32\msvcp60.dll

c:\windows\system32\winspool.drv

c:\windows\system32\mfc71u.dll

c:\windows\system32\msvcp71.dll

c:\windows\system32\psdutil.dll

c:\windows\system32\mpr.dll

c:\windows\system32\shfolder.dll

c:\windows\system32\showerrmsg.dll

c:\windows\system32\wtsapi32.dll

c:\windows\system32\winsta.dll

c:\windows\system32\netapi32.dll

c:\windows\system32\imm32.dll
0
Réponse 6 / 34
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406
21 oct. 2007 à 17:50
bonjour

adaware n´a trouvé que des cookies, et a signalé un objet dans ta restauration system...

nettoie tes fichiers temporaires avec ceci : atf cleaner, regarde le tuto...

https://freewares-tutos.blogspot.com/2006/10/atf-cleaner.html

et ceci :

Désactive ta restauration système:
pour cela :
Click droit sur poste de travail, dans l´arborescence sur propriétés;
dans la nouvelle fenettre click sur l´onglet restauration système;
coche la case désactiver la restauration systèm et applique.
puis redemarre le pc et click droit sur poste de travail, dans l´arborescence sur propriétés;
dans la nouvelle fenettre click sur l´onglet restauration systèm
décoche la case désactiver la restauration systèm et applique.

au debut quand tu dis je vien d'avoir ce virus win32:adware-gen(adw) sur mon pc que dois je faire il a été supprimé? et par qui?
0
Réponse 7 / 34
momo5418 Messages postés 16 Date d'inscription vendredi 19 octobre 2007 Statut Membre Dernière intervention 2 novembre 2007
27 oct. 2007 à 12:12
bonjour je vien d'avoir ceci par adware que dois je faire :

An unhandled exception occured at 0x77C17FD4 in aawservice.exe

Exception Code : 0xc0000005
Client version : 0.522
Attached Debugger : 0

Windows Information :
---------------------
Windows Version : Windows XP (5.1)
Build Number : 2600
Service Pack : 2.0

CPU Information:
----------------
CPU Name : AMD Sempron(tm) Processor 3400+
Type : 0
Vendor : AuthenticAMD
Family : 15
Extended Family : 0
Model : 15
Extended Model : 5
Stepping : 2

Registry Content:
-----------------
EAX : 0x00194000
ECX : 0x00b1903a
EDX : 0x77c31aa0
EBX : 0x00000001
ESP : 0x0110c4b0
EBP : 0x0110c4b0
ESI : 0x00b115e0
EDI : 0x00000000
EIP : 0x77c17fd4

Memory Usage:
-------------
Physical Memory in use : 88%
Total Physical Memory : 458220 kb
Free Physical Memory : 50508 kb
Total Virtual Memory : 2097024 kb
Free Virtual Memory : 1955584 kb
Max Page file size : 1081228 kb
Current Page file size : 526252 kb
Free Extended memory : 0kb

Stack Information:
------------------
Total stack size : 15148

Stack Content:
--------------
0110c4bc 770e4c1d 001930fe 0110c4e8 01121b80 001930fe
0110c51c 01121b3f 001930fe 001930a0 00b115e0 0110c590
0112411a 00000000 0110c50c 01121a44 001930fe 001921c8
00000000 00000000 00000000 00193000 00000000 0110c524
01121d8c 001921c8 00001000 00000000 0019d4d8 0110c5a0
7c80f06f 00000240 00000000 00000000 00000000 0110c564
001921c8 00001000 00000003 00000000 00000000 00000000
00000008 0110f1c4 0110f100 00000000 00000f78 001921c8
7ffda000 00000000 1006803f 00000001 0019d4d8 0110f1c4
0110c558 0110c0d4 0110c718 7c839aa8 7c80f038 00000000
0110c724 1004f3d6 0019d4d8 0110c724 1002a508 bed5e16f
00000008 0110f1c4 0110f101 00740061 0110c7f4 7c91ee18
7c920738 000001c7 0110c808 7c921538 7c921596 7c9206eb
00001000 00c641d8 00000000 00650073 0067006e 00720065
0062005c 00720061 00650062 0062002d 0065006c 00400075
006f0068 0110c650 00c80000 7c920732 00000021 00c80cb8
00c80000 06bfb8e8 0110c628 0110c62c 0110c86c 7c91ee18
7c920738 ffffffff 7c920732 7c9206ab 7c9206eb 00000100
00000000 7c9205d4 7c9205d4 0110c898 7c91ee18 7c920738
ffffffff 7c920732 7c9206ab 7c9206eb 00000100 00000000
005c0065 005c002e 00000000 001b6008 00000004 00000007
00000000 00000000 00000000 7c91e5e5 7c810c30 00000240
00000000 0607b838 00000008 0000000e ffffffff 00000080
000000be 00000000 00000000 00000008 0607b838 005c002e
00000000 03a70048 00000080 000000be 00000000 00000000
004d652f 0110f1c4 00000000 0110c5b4 0110cb30 1008756c
00000002 00000010 a25f504a 01c7a8d8 63a8df86 01c81874
4879fdcc 01c7fdc5 00000000 00000000 00181008 00000000
0000002e 00000000 00000000 000001c7 001931c8 0110c780
7c920f46 000001c7 001931c8 00150000 001921c0 00000000
0110c790 00000000 7c9205c8 00c641b0 0110c85c 7c920551
00c60808 7c92056d 00000000 00c641b8 00000000 001921c0
00150178 0110c7c4 00000000 7c9205c8 05fb9380 0110c890
7c920551 00c80c58 7c92056d 0110c940 05fb9388 00000075
0110c7f0 00000000 7c9205c8 05fb9380 0110c8bc 7c920551
00c80c58 7c92056d 0110c96c 05fb9388 0110c818 00000000
7c9205c8 01230018 0110c8e4 7c920551 00c80f28 7c92056d
00000000 01230020 0110f101 0110c844 00000000 7c9205c8
01230018 0110c910 00000000 06bfb8e8 01230020 00000000
00000108 00000170 00c80000 0110c65c 0110c660 0110c8f4
7c91ee18 7c9206f0 ffffffff 7c9206eb 1006762f 00000170
00000000 00000100 0110c9a0 0000007f 00000007 0110c8b4
10066e07 00000100 0110c940 00c80000 00000075 0110c900
1000be96 00000100 0110c8f8 0001acf0 0000002e 0110c828
00000080 0110c914 7c91ee18 7c920570 ffffffff 7c92056d
10068020 00c80000 00000000 1006803f bed5ef6f 00000000
0110c9a0 0110f101 01230020 0110c8f8 00000000 0110c95c
1006acf0 afccd913 00000002 00000000 0110c944 100672de
06bfb9e2 1008d7c0 00000002 0000007e 0110c9a0 1008d7c0
10016493 06bfb9e2 00000004 1008d7c0 00000000 0110cb3c
0110c9a0 0110cb3c 0110f101 1004f45e 1008d7c0 0019d4d8
bed5ef37 06273838 0110f1c4 00000001 0110c9a0 0000007e
0000007f bed5e16f 0110cb3c 1002a4e0 0110f101 06bfb8e8
0110c994 0110cb3c 0110cb30 0000007f 0000007f 06146501
00000000 00000000 00000000 bed5ed77 00000008 0110f1c4
0110f101 7c92056d 00100001 00000028 00000000 00150000
0110c7e8 77bfc275 0110ca3c 7c91ee18 7c9206f0 ffffffff
7c9206eb 7c9219e6 7c921a24 7c98c080 7c9219fa 0019d894
0019d880 00000000 7ffde000 7ffda000 0019b940 0110ca68
00c80000 7c920732 0000001f 00c80c58 00c80000 0626d478
0110ca40 0110ca44 0110cc84 7c91ee18 7c920738 ffffffff
7c920732 7c9206ab 7c9206eb 000000f0 00000000 7c9205d4
7c9205d4 0110ccb0 7c91ee18 7c920738 ffffffff 7c920732
7c9206ab 7c9206eb 000000f0 00000000 006c0069 005c0065
01100000 0110d1a8 00000004 00000007 00000000 00000000
00000040 00000000 00000000 00000000 7c920738 06bfb8e8
00000000 00000000 00000000 0000007e 0000007f 00d600d4
0626d570 00000000 06bfb8e8 005c0065 00160000 00da00da
0000007e 0000007f 0110c9a0 00000000 00000000 0110f1c4
00000000 0110c9cc 0110cf48 1008756c 00000002 00000010
a25f504a 01c7a8d8 63a8df86 01c81874 4879fdcc 01c7fdc5
00000000 00000000 00000000 00000000 00730055 00720065
00690054 0065006c 00720000 002e0065 00320076 006e0000
00730064 43150000 000000a8 00000000 00000003 0110cd0a
00000000 01c63ca0 0110cc64 43920551 00000000 00000000
0110cd08 7c920945 0110cbf4 00150000 7c920732 0110cbdc
00000000 7c9205c8 0626d1d0 0110cca8 7c920551 00c80bf8
7c92056d 0110cd58 0626d1d8 00000069 0110cc08 00000000
7c9205c8 0626d1d0 0110ccd4 7c920551 00c80bf8 7c92056d
0110cd84 0626d1d8 0110cc30 00000000 7c9205c8 06276420
0110ccfc 7c920551 00c80e98 7c92056d 00000000 06276428
0110f101 0110cc5c 00000000 7c9205c8 06276420 0110cd28
00000000 0626d478 06276428 00000000 000000f8 00000158
00c80000 0110ca74 0110ca78 0110cd0c 7c91ee18 7c9206f0
ffffffff 7c9206eb 1006762f 00000158 00000000 000000f0
0110cdb8 00000077 00000007 0110cccc 10066e07 000000f0
0110cd58 00c80000 00000069 0110cd18 1000be96 000000f0
0110cd10 0001acf0 0000002b 0110cc40 00000078 0110cd2c
7c91ee18 7c920570 ffffffff 7c92056d 10068020 00c80000
00000000 1006803f bed5eb77 00000000 0110cdb8 0110f101
06276428 0110cd10 00000000 0110cd74 1006acf0 afccd913
00000002 00000000 0110cd5c 100672de 0626d560 1008d7c0
00000002 00000075 0110cdb8 1008d7c0 10016493 0626d560
00000006 1008d7c0 00420000 0045004a 00540043 0031007e
0056002e 00000032 1008d7c0 0019d610 bed5ebdf 06bfc8d8
0110f1c4 00000001 0110cdb8 00000075 00000077 bed5ed77
0110cf54 1002a4e0 0110f101 0626d478 0110cdac 0110cf54
0110cf48 00000076 00000077 06146501 00000000 00000000
00000000 bed5e91f 00000008 0110f1c4 0110f101 00740061
0110d024 7c91ee18 7c920738 001895a0 0110d038 7c921414
7c921596 7c9206eb 00001000 00c63cc8 00000000 00650073
0067006e 00720065 0061005c 00740063 00760069 00730065
00610068 00690072 0067006e 0110ce80 00c80000 7c920732
0000001d 00c80bf8 00c80000 0626d390 0110ce58 0110ce5c
0110d09c 7c91ee18 7c920738 ffffffff 7c920732 7c9206ab
7c9206eb 000000e0 00000000 7c9205d4 7c9205d4 0110d0c8
7c91ee18 7c920738 ffffffff 7c920732 7c9206ab 7c9206eb
000000e0 00000000 0072006f 005c0065 00000000 001921c8
00000004 00000007 7c91e5e5 0110ceec 00000000 7c9205c8
00178800 0110cfb8 00000000 0626d478 001a6d68 00150640
0110d000 00000075 00000077 00001000 00000000 00000008
0626d478 005c0065 00000000 03a70048 00000075 00000077
0110cdb8 7c91e288 0000000a 0110f1c4 00000000 0110cde4
0110d360 1008756c 00000002 00000010 a24051b8 01c7a8d8
64273c28 01c81874 72fa243c 01c7ab45 00000000 00000000
001a6960 0110d030 0062004f 0065006a 00740063 00740053
0072006f 00000065 00740061 00000061 0110cefc 00150000
001895a0 00000000 0110cfc0 00000000 7c9205c8 00c63ca0
0110d08c 7c920551 00c60808 7c92056d 0000028b 00c63ca8
00000000 001895a0 00150178 0110cff4 00000000 7c9205c8
06bfbaf0 0110d0c0 7c920551 00c80ad8 7c92056d 0110d170
06bfbaf8 00000053 0110d020 00000000 7c9205c8 06bfbaf0
0110d0ec 7c920551 00c80ad8 7c92056d 0110d19c 06bfbaf8
0110d048 00000000 7c9205c8 05ea78a8 0110d114 7c920551
00c80ce8 7c92056d 00000000 05ea78b0 0110f101 0110d074
00000000 7c9205c8 05ea78a8 0110d140 00000000 0626d390
05ea78b0 00000000 000000e8 00000110 00c80000 0110ce8c
0110ce90 0110d124 7c91ee18 7c9206f0 ffffffff 7c9206eb
1006762f 00000110 00000000 000000e0 0110d1d0 0000006f
00000007 0110d0e4 10066e07 000000e0 0110d170 00c80000
00000053 0110d130 1000be96 000000e0 0110d128 0001acf0
00000022 0110d058 00000070 0110d144 7c91ee18 7c920570
ffffffff 7c92056d 10068020 00c80000 00000000 1006803f
bed5f71f 00000000 0110d1d0 0110f101 05ea78b0 0110d128
00000000 0110d18c 1006acf0 afccd913 00000002 00000000
0110d174 100672de 0626d460 1008d7c0 00000002 00000069
0110d1d0 1008d7c0 10016493 0626d460 0000000e 1008d7c0
0042004f 0045004a 00540043 0031007e 01100000 1004f45e
1008d7c0 0019d880 bed5f7e7 0626d570 0110f1c4 00000001
0110d1d0 00000069 0000006f bed5e91f 0110d36c 1002a4e0
0110f101 0626d390 0110d1c4 0110d36c 0110d360 0000006a
0000006f 06146501 00000000 00000000 00000000 bed5f527
00000008 0110f1c4 0110f101 7c92056d 00100001 00000028
00000000 00150000 0110d018 77bfc275 0110d26c 7c91ee18
7c9206f0 ffffffff 7c9206eb 7c9219e6 7c921a24 7c98c080
7c9219fa 0019da24 0019da10 00000000 7ffde000 7ffda000
0019e898 0110d298 00c80000 7c920732 00000017 00c80ad8
00c80000 06279070 0110d270 0110d274 0110d4b4 7c91ee18
7c920738 ffffffff 7c920732 7c9206ab 7c9206eb 000000b0
00000000 7c9205d4 7c9205d4 0110d4e0 7c91ee18 7c920738
ffffffff 7c920732 7c9206ab 7c9206eb 000000b0 00000000
0066002e 005c0072 01100000 0110d9d8 00000004 00000007
00000000 00000000 00000040 00000000 00000000 00000000
7c920738 0626d390 00000238 0000023c 03b70000 00000069
0000006f 00960094 06bfb758 00000000 0626d390 005c0072
00160000 009a009a 00000069 0000006f 0110d1d0 00000000
01000000 0110f1c4 00000000 0110d1fc 0110d778 1008756c
00000002 00000010 a24051b8 01c7a8d8 64869a38 01c81874
a24778c6 01c7a8d8 00000000 00000000 00000000 00000000
00610062 00620072 002d0065 006c0062 00750065 00680040
0074006f 0061006d 006c0069 0066002e 00000072 00000074
00380000 00380038 00360031 0032002d 00360039 00380035
00360035 00340034 002d0030 00300031 00360030 00190000
00150178 0110d40c 00000000 7c9205c8 06279498 0110d4d8
7c920551 00c80a78 7c92056d 0110d588 062794a0 00000049
0110d438 00000000 7c9205c8 06279498 0110d504 7c920551
00c80a78 7c92056d 0110d5b4 062794a0 0110d460 00000000
7c9205c8 0626d470 0110d52c 7c920551 00c80c58 7c92056d
00000000 0626d478 0110f101 0110d48c 00000000 7c9205c8
0626d470 0110d558 00000000 06279070 0626d478 00000000
000000b8 000000f8 00c80000 0110d2a4 0110d2a8 0110d53c
7c91ee18 7c9206f0 ffffffff 7c9206eb 1006762f 000000f8
00000000 000000b0 0110d5e8 00000057 00000007 0110d4fc
10066e07 000000b0 0110d588 00c80000 00000049 0110d548
1000be96 000000b0 0110d540 0001acf0 0000001f 0110d470
00000058 0110d55c 7c91ee18 7c920570 ffffffff 7c92056d
10068020 00c80000 00000000 1006803f bed5f327 00000000
0110d5e8 0110f101 0626d478 0110d540 00000000 0110d5a4
1006acf0 afccd913 00000002 00000000 0110d58c 100672de
06279114 1008d7c0 00000002 00000053 0110d5e8 1008d7c0
10016493 06279114 0000000a 1008d7c0 00410042 00420052
002d0045 0031007e 0046002e 00000052 10080000 0019d9a8
bed5f38f 05c79e38 0110f1c4 00000001 0110d5e8 00000053
00000057 bed5f527 0110d784 1002a4e0 0110f101 06279070
0110d5dc 0110d784 0110d778 00000054 00000057 06146501
00000000 00000000 00000000 bed5f1cf 00000008 0110f1c4
0110f101 00740061 0110d854 7c91ee18 7c920738 000003c7
0110d868 7c921538 7c921596 7c9206eb 00001000 00c63cc8
00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000 001af960 0110d6b0
00c80000 7c920732 00000015 00c80a78 00c80000 062793f8
0110d688 0110d68c 0110d8cc 7c91ee18 7c920738 ffffffff
7c920732 7c9206ab 7c9206eb 000000a0 00000000 7c9205d4
7c9205d4 0110d8f8 7c91ee18 7c920738 ffffffff 7c920732
7c9206ab 7c9206eb 000000a0 00000000 00650067 005c0072
00000000 00187598 00000004 00000007 00000000 000000d5
00000000 00000000 0110d7e8 7c920eca 00000000 06279070
001a6d68 00150640 0110d830 00000053 00000057 00412000
001a6958 00000008 06279070 005c0072 00400000 03a70048
00000053 00000057 0110d5e8 7c91e288 0000000a 0110f1c4
00000000 0110d614 0110db90 1008756c 00000002 00000010
f772c696 01c79f02 6e257762 01c81874 b7dfe7de 01c7c7a7
00000000 00000000 001a6960 0110d860 0065004d 00730073
006e0065 00650067 00000072 00720065 006f0000 00650072
00000072 002d0036 00390041 00390030 0041002d 00330042
00420033 00380038 00330046 00310046 007d0042 7c920000
00000052 00c63ca8 00000000 001921c0 00150178 0110d824
00000000 7c9205c8 06bfaeb0 0110d8f0 7c920551 00c809b8
7c92056d 0110d9a0 06bfaeb8 0000003f 0110d850 00000000
7c9205c8 06bfaeb0 0110d91c 7c920551 00c809b8 7c92056d
0110d9cc 06bfaeb8 0110d878 00000000 7c9205c8 0625eea8
0110d944 7c920551 00c80b38 7c92056d 00000000 0625eeb0
0110f101 0110d8a4 00000000 7c9205c8 0625eea8 0110d970
00000000 062793f8 0625eeb0 00000000 000000a8 000000c8
00c80000 0110d6bc 0110d6c0 0110d954 7c91ee18 7c9206f0
ffffffff 7c9206eb 1006762f 000000c8 00000000 000000a0
0110da00 0000004f 00000007 0110d914 10066e07 000000a0
0110d9a0 00c80000 0000003f 0110d960 1000be96 000000a0
0110d958 0001acf0 00000019 0110d888 00000050 0110d974
7c91ee18 7c920570 ffffffff 7c92056d 10068020 00c80000
00000000 1006803f bed5ffcf 00000000 0110da00 0110f101
0625eeb0 0110d958 00000000 0110d9bc 1006acf0 afccd913
00000002 00000000 0110d9a4 100672de 06279488 1008d7c0
00000002 00000049 0110da00 1008d7c0 10016493 06279488
0000000e 1008d7c0 0045004d 00530053 004e0045 0031007e
01100000 1004f45e 1008d7c0 0019da10 bed5ff97 06bfb758
0110f1c4 00000001 0110da00 00000049 0000004f bed5f1cf
0110db9c 1002a4e0 0110f101 062793f8 0110d9f4 0110db9c
0110db90 0000004a 0000004f 06146501 00000000 00000000
00000000 bed5fdd7 00000008 0110f1c4 0110f101 7c92056d
00100001 00000028 00000000 00150000 0110d848 77bfc275
0110da9c 7c91ee18 7c9206f0 ffffffff 7c9206eb 7c9219e6
7c921a24 7c98c080 7c9219fa 0019da94 0019da80 00000000
7ffde000 7ffda000 00179da0 0110dac8 00c80000 7c920732
00000011 00c809b8 00c80000 06bfaeb8 0110daa0 0110daa4
0110dce4 7c91ee18 7c920738 ffffffff 7c920732 7c9206ab
7c9206eb 00000080 00000000 7c9205d4 7c9205d4 0110dd10
7c91ee18 7c920738 ffffffff 7c920732 7c9206ab 7c9206eb
00000080 00000000 0066006f 005c0074 00c80000 7c920732
00000004 00000007 00000000 00000000 0110db18 00000000
0110dd5c 00000000 7c920738 062793f8 00000230 00000234
01170000 00000049 0000004f 7c9205d4 06bfb468 00000000
062793f8 005c0074 00160000 00640064 00000049 0000004f
0110da00 00000000 01000000 0110f1c4 00000000 0110da2c
0110dfa8 1008756c 00000002 00000010 5e811cd4 01c79a35
c3c52be6 01c81873 bd9622c8 01c7c960 00000000 00000000
00000000 00000000 0069004d 00720063 0073006f 0066006f
00000074 00620000 00560000 002e0031 00410044 00000054
00520048 002d0038 00300045 00360044 00440031 00410045
00460033 00460044 0069002e 0069006e 00000000 00c63ca8
00000000 0017c2b0 00150178 0110dc3c 00000000 7c9205c8
062795b8 0110dd08 7c920551 00c808f8 7c92056d 0110ddb8
062795c0 0000002e 0110dc68 00000000 7c9205c8 062795b8
0110dd34 7c920551 00c808f8 7c92056d 0110dde4 062795c0
0110dc90 00000000 7c9205c8 06265520 0110dd5c 7c920551
00c80a18 7c92056d 00000000 06265528 0110f101 0110dcbc
00000000 7c9205c8 06265520 0110dd88 00000000 06bfaeb8
06265528 00000000 00000088 00000098 00c80000 0110dad4
0110dad8 0110dd6c 7c91ee18 7c9206f0 ffffffff 7c9206eb
1006762f 00000098 00000000 00000080 0110de18 0000003f
00000007 0110dd2c 10066e07 00000080 0110ddb8 00c80000
0000002e 0110dd78 1000be96 00000080 0110dd70 0001acf0
00000013 0110dca0 00000040 0110dd8c 7c91ee18 7c920570
ffffffff 7c92056d 10068020 00c80000 00000000 1006803f
bed5fbd7 00000000 0110de18 0110f101 06265528 0110dd70
00000000 0110ddd4 1006acf0 afccd913 00000002 00000000
0110ddbc 100672de 06bfaf34 1008d7c0 00000002 0000003f
0110de18 1008d7c0 10016493 06bfaf34 00000002 1008d7c0
0049004d 00520043 0053004f 0031007e 00440000 00000042
10080000 0019da48 bed5fbbf 06265528 0110f1c4 00000001
0110de18 0000003f 00000047 bed5fdd7 0110dfb4 1002a4e0
0110f101 0615be18 0110de0c 0110dfb4 0110dfa8 00000040
0000005e 06146501 00000000 00000000 00000000 bed5f9ff
00000008 0110f1c4 0110f101 00000000 0110e084 7c91ee18
7c920738 001861b8 0110e098 7c921414 7c921596 7c9206eb
00001000 00c63cc8 00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 0110dee0 00c80000 7c920732 0000000d 00c808f8
00c80000 062f2e60 0110deb8 0110debc 0110e0fc 7c91ee18
7c920738 ffffffff 7c920732 7c9206ab 7c9206eb 00000060
00000000 7c9205d4 7c9205d4 0110e128 7c91ee18 7c920738
ffffffff 7c920732 7c9206ab 7c9206eb 00000060 00000000
00740061 005c0061 00000000 0017c2b8 00000004 00000007
00000000 00000000 00000000 7c91e5e5 7c810c30 00000000
00000000 06bfaeb8 001a6d68 00150640 ffffffff 0000003f
0000003f 00000000 00000000 00000008 06bfaeb8 005c0061
00000000 03a70048 0000003f 0000003f 0110de18 00000000
0000000a 0110f1c4 00000000 0110de44 0110e3c0 1008756c
00000002 00000012 5e811cd4 01c79a35 c3c52be6 01c81873
6a4e595a 01c7c4b0 00000000 00000000 001a6960 00000000
00700041 006c0070 00630069 00740061 006f0069 0020006e
00610044 00610074 00730000 00640020 00200065 00610072
00690064 002e006f 00720075 0000006c 0110e0ec 7c920551
00c60808 7c92056d 00000000 00c63ca8 00000000 001861b8
00150178 0110e054 00000000 7c9205c8 05cb7100 0110e120
7c920551 00c80838 7c92056d 0110e1d0 05cb7108 0000001f
0110e080 00000000 7c9205c8 05cb7100 0110e14c 7c920551
00c80838 7c92056d 0110e1fc 05cb7108 0110e0a8 00000000
7c9205c8 062795b8 0110e174 7c920551 00c808f8 7c92056d
00000000 062795c0 0110f101 0110e0d4 00000000 7c9205c8
062f2e58 0110e1a0 00000000 062f2e60 062795c0 00000000
00000068 00000068 00c80000 0110deec 0110def0 0110e184
7c91ee18 7c9206f0 ffffffff 7c9206eb 1006762f 00000068
00000000 00000060 0110e230 0000002f 00000007 0110e144
10066e07 00000060 0110e1d0 00c80000 0000001f 0110e190
1000be96 00000060 0110e188 0001acf0 0000000d 0110e0b8
00000030 0110e1a4 7c91ee18 7c920570 ffffffff 7c92056d
10068020 00c80000 00000000 1006803f bed5c7ff 00000000
0110e230 0110f101 062795c0 0110e188 00000000 0110e1ec
1006acf0 afccd913 00000002 00000000 0110e1d4 100672de
062f2eba 1008d7c0 00000002 0000002e 0110e230 1008d7c0
10016493 062f2eba 00000004 1008d7c0 00500041 004c0050
00430049 0031007e 01100000 1004f45e 1008d7c0 0019da80
bed5c447 06bfb468 0110f1c4 00000001 0110e230 0000002e
0000002f bed5f9ff 0110e3cc 1002a4e0 0110f101 062f2e60
0110e224 0110e3cc 0110e3c0 0000002f 0000002f 06146501
00000000 00000000 00000000 bed5c587 00000008 0110f1c4
0110f101 7c92056d 00100001 00000028 00000000 00150000
0110e078 77bfc275 0110e2cc 7c91ee18 7c9206f0 ffffffff
7c9206eb 7c9219e6 7c921a24 7c98c080 7c9219fa 0017ae5c
0017ae48 00000000 7ffde000 7ffda000 00167d08 0110e2f8
00c80000 7c920732 00000009 00c80838 00c80000 05cb7108
0110e2d0 0110e2d4 0110e514 7c91ee18 7c920738 ffffffff
7c920732 7c9206ab 7c9206eb 00000040 00000000 7c9205d4
7c9205d4 0110e540 7c91ee18 7c920738 ffffffff 7c920732
7c9206ab 7c9206eb 00000040 00000000 0067006e 005c0073
01100000 0110ea38 00000004 00000007 00000000 00000000
00000040 00000000 00000000 00000000 7c920738 062795c0
00000180 00000184 01170000 0000002e 0000002f 00380036
05e580a0 00000000 062795c0 005c0073 00160000 003c003c
0000002e 0000002f 0110e230 00000000 01000000 0110f1c4
00000000 0110e25c 0110e7d8 1008756c 00000002 00000012
5e811cd4 01c79a35 c3c52be6 01c81873 c2f6e56e 01c7bd7a
00000000 00000000 00000000 00000000 006f004c 00610063
0020006c 00650053 00740074 006e0069 00730067 00610000
00610000 00690073 002e0063 006f0043 0070006d 00740061
00620069 006c0069 00740069 002e0079 006c0064 0000006c
002e0067 006c0064 0000006c 00000074 7c920732 0110e46c
00000000 7c9205c8 05cb7100 0110e538 7c920551 00c80838
7c92056d 0110e5e8 05cb7108 0000001a 0110e498 00000000
7c9205c8 05cb7100 0110e564 7c920551 00c80838 7c92056d
0110e614 05cb7108 0110e4c0 00000000 7c9205c8 06bfae68
0110e58c 7c920551 00c80838 7c92056d 00000000 06bfae70
0110f101 0110e4ec 00000000 7c9205c8 05cb7100 0110e5b8
00000000 05cb7108 7c92056d 00000000 00000048 0100f1c4
00c80000 0110e304 0110e308 0110e59c 7c91ee18 7c9206f0
ffffffff 7c9206eb 1006762f 00000048 00000000 00000040
0110e648 0000001f 00000007 0110e55c 10066e07 00000040
00000000 00c80000 06bfae68 0110e5a8 1000be96 00000040
7c92056d 00010008 00000009 0110e4d0 00000020 0110e5bc
7c91ee18 7c920570 ffffffff 7c92056d 10068020 00c80000
00000000 1006803f bed5c387 00000000 0110e648 0110f101
06bfae70 0110e5a0 00000000 0110e604 1006acf0 afccd913
00000002 00000000 0110e5ec 100672de 05cb7144 1008d7c0
00000002 0000001f 0110e648 1008d7c0 10016493 05cb7144
00000002 1008d7c0 004f004c 00410043 0053004c 0031007e
01100000 1004f45e 1008d7c0 0017db88 bed5c06f 062528f0
0110f1c4 00000001 0110e648 0000001f 00000027 bed5c587
0110e7e4 1002a4e0 0110f101 061f72e8 0110e63c 0110e7e4
0110e7d8 00000020 0000002e 06146501 00000000 00000000
00000000 bed5c1af 00000008 0110f1c4 0110f101 00000000
0110e8b4 7c91ee18 7c920738 0017ae78 0110e8c8 7c921414
7c921596 7c9206eb 00001000 00c63cc8 00000000 00000000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00000000 0110e710 00c80000 7c920732
00000009 00c80838 00c80000 05e1ff68 0110e6e8 0110e6ec
0110e92c 7c91ee18 7c920738 ffffffff 7c920732 7c9206ab
7c9206eb 00000040 00000000 7c9205d4 7c9205d4 0110e958
7c91ee18 7c920738 ffffffff 7c920732 7c9206ab 7c9206eb
00000040 00000000 00620069 005c0069 00000000 0017c2f0
00000004 00000007 00000000 00000000 00000000 7c91e5e5
7c810c30 00000160 00000000 06bfae70 00000008 0000000e
ffffffff 0000001f 0000001f 00000000 00000000 00000008
06bfae70 005c0069 00000000 0017ddf8 0000001f 0000001f
0110e648 00000000 004d652f 0110f1c4 00000000 0110e674
0110ebf0 1008756c 00000002 00000010 5e431fb0 01c79a35
c0edfeac 01c81873 5e910e22 01c7fc38 00000000 00000000
0017ddf8 0000000f 00690062 00690062 00730000 00720065
00000073 7c9233ce 00000008 0110e5b8 00150000 00150000
0017ae78 00000000 0110e850 00000000 7c9205c8 00c63ca0
0110e91c 7c920551 00c60808 7c92056d 00000000 00c63ca8
00000000 0017ae78 00150178 7c920e91 0017ae80 7c92056d
00000000 0110e98c 0017ddf8 00000000 0017c2e8 0017ddf0
00150178 0110e8ac 00000000 7c9205c8 001683d0 0110e978
7c920551 00150778 7c92056d 000000ff 00c63c78 00c63968
0110e8d8 00000000 7c9205c8 05cb7100 0110e9a4 7c920551
00c80838 7c92056d 00000000 05cb7108 0110f101 0110e904
00000000 7c9205c8 05e1ff60 0110e9d0 00000000 05e1ff68
05cb7108 00000000 00000048 00000048 00c80000 0110e71c
0110e720 0110e9b4 7c91ee18 7c9206f0 ffffffff 7c9206eb
1006762f 00000048 00000000 00000040 0110ea60 0000001f
00000007 0110e974 10066e07 00000040 0110e984 00c80000
05cb7108 0110e9c0 1000be96 00000040 0000001f 0001e9c4
00000009 0110e8e8 00000020 0110e9d4 7c91ee18 7c920570
ffffffff 7c92056d 10068020 00c80000 00000000 1006803f
bed5cfaf 00000000 0110ea60 0110f101 05cb7108 0110e9b8
00000000 0110ea1c 1006acf0 afccd913 00000002 00000000
0110ea04 100672de 05e1ff9a 1008d7c0 00000002 0000001a
0110ea60 1008d7c0 10016493 05e1ff9a 0000000c 1008d7c0
004c0000 0055004c 00450053 0031007e 01100000 1004f45e
1008d7c0 0017ae48 bed5cc77 05e580a0 0110f1c4 00000001
0110ea60 0000001a 0000001f bed5c1af 0110ebfc 1002a4e0
0110f101 05e1ff68 0110ea54 0110ebfc 0110ebf0 0000001b
0000001f 06146501 00000000 00000000 00000000 bed5cdb7
0110f1c4 061a1fc8 0110f0e0 7c921993 7c98c080 7c921970
00179e38 00179e18 00168474 000000d8 00150000 7c92056d
0110eb04 7c91ee18 7c921978 ffffffff 00011970 7c9218f1
0110ea34 00150000 0110ef7c 7c91ee18 7c920570 ffffffff
7c92056d 00016304 0000001b 0110ea58 0110eb34 00c60000
7c920732 0000002a 00c60e68 00c60000 00000000 0110eb0c
7c920732 0110ed50 7c91ee18 00000097 00000438 0110ed64
7c921538 7c921596 7c9206eb 00000004 00c63b24 00000000
7c921596 7c9206eb 01210748 0000001c 00000001 00167d30
0067006e 005c0073 7c920000 00000003 00000004 00000007
00000000 00000000 0110eb98 0110edb8 7c91ee18 00000000
0110edc8 05cb7108 0041005c 00650063 00000072 0000001a
0000001f 0110ebf8 00000000 77ed46a8 05cb7108 005c0073
00650000 00000072 0000001a 0000001f 0110ea60 00000007
001507d8 0110f1c4 00000000 0110ea8c 0110eedc 1008756c
00000002 00000010 73f2f200 01c6b9f7 bee63e08 01c81873
5e431fb0 01c79a35 00000000 00000000 7c920732 7c9206ab
006f0044 00750063 0065006d 0074006e 00200073 006e0061
00200064 00650053 00740074 006e0069 00730067 01100000
00150000 7c920732 00000005 00150778 00150000 00179e18
0110ec60 0017ae48 0110eea4 7c91ee18 7c920738 ffffffff
7c920732 7c9206ab 7c9206eb 00c63bc8 00c63b68 00000000
00000000 0110ec94 00000000 0110eed8 7c91ee18 7c920738
ffffffff 7c920732 7c921596 7c9206eb 0110ecfc 00c60000
7c920732 00000002 00c606e8 00c60000 00000000 0110ecd4
7c921538 0110ef18 7c91ee18 7c920738 ffffffff 7c920732
7c921596 7c9206eb 3fffffff 00000004 00000001 00c80718
00c80000 064d4ff0 0110ed10 00c60528 0110ef54 7c91ee18
7c920738 ffffffff 7c920732 7c9206ab 7c9206eb 00000010
00000000 7c9205d4 0110ef7c 7c91ee18 7c920738 ffffffff
7c920732 00c60518 7c9206eb 0000001c 00000000 7c9205d4
7c920738 ffffffff 7c920732 7c9206ab 7c9206eb 0000000c
00000000 00000000 00c63b48 00c63c68 00c60640 00c63c50
00c60178 01210748 00c63b50 00000200 00000000 0110ee88
7c920551 00000008 7c92056d 00000000 00c63be0 00c60178
00556983 0000000e 00000010 00c63c60 00000002 00000008
00c60178 00c60550 00c63c08 0057b220 00c60178 0000000c
00c60178 00c60528 0000000f 00000010 00000000 00000006
00000000 0110ee40 100672de 0110ee7c 004f0044 00550043
0045004d 0031007e 01100000 1000d9a1 0110ee7c 00168500
061a1fcc 003a0043 0000005c 061a0000 0110eee8 00000003
00000007 bed5cdb7 0110eee8 1002a6ae 0000000e 003a0043
002a005c 01100000 061a1fc8 00000004 00000007 06146501
0cc0dc00 05cc1f00 00cabf00 bed5c8a3 01210748 00c83b60
00000007 9734a80c 003a0043 0000005c 00000000 00000002
00000003 00000007 0cc0dc00 0110ee78 0110eea4 0110f23c
100875a0 00000000 00000000 00000000 00c63c50 00000010
00c63c58 7c98c0a0 00c60528 00000010 0000ff01 00c60000
0110ed08 0110ef68 0110ef54 7c91ee18 7c9206f0 ffffffff
7c9206eb 0055697e 00c60000 00000000 00556983 3fffffff
00000004 00000001 00c80000 0110ef3c 00492e2f 00c63c58
00c63ba8 00000001 00c63c5c 0110ef54 0110efac 005640d1
00000000 0110efb8 00494796 00000000 00000000 00c63c5c
00c63ba8 004948ea 00c63b68 00c63ba8 ffffffff 00c63c58
00c63ba8 00000004 0110ef90 0110efe8 00564278 ffffffff
00c63bc8 00494fbd 00000000 00c63c5c 062f6428 062f6428
0049512c 00c63bc8 062f6428 0110f1c4 00000002 00c63bc8
0110f050 00564400 00000000 10029110 062f6428 bed5d64b
01210748 0110f1c4 00000000 062f6428 7c9206f0 ffffffff
7c9206eb 1006762f 00c80000 00000000 00000010 01210748
0110f1c4 00000000 0110f050 10066e07 00000010 00000000
bed5c993 00000002 0110f070 10087300 ffffffff 100293ea
bed5d62f 00c83b60 00000007 0110f1c4 0110f23c 10087362
bed5c8a3 00000002 10011b3a 0110f0e0 06146501 062f6400
05cc1f00 00cabf00 bed5d6d7 00000002 00000000 00caf3a8
0000001a 05cc1fb8 0000000b 00000001 00c85ec8 00cabf00
06146501 061465a0 062f6400 00000001 00ca6f50 05cc1f00
10000001 0110f2a4 00100001 061a1fc8 061a2000 061a2000
00008000 01210748 00200000 00010000 06492ea0 00800000
00400000 7c9219e6 06020000 7c98c080 7c9219fa 0016750c
00000000 00000007 7ffde000 003a0000 0000005c 00ca0000
7c920732 00000000 00000007 00ca0000 05be0000 0110f13c
7c98c0a0 0110f380 00000000 00000007 ffffffff 0000001e
004222d0 05a2eda8 00000000 00000000 7c9205d4 7c91ee18
00000000 00000000 00000000 00000000 00c80000 7c80eecc
0016750c 7c91253a 00000000 00000007 7c80eda5 06300000
00cad880 00ca82e8 7c80edb8 00000000 00000007 00c83ba0
ffffffff 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00ca0000 01100000 0110f230 0110f740
7c91ee18 00000000 00000007 062ecff0 0044c501 40000000
00030d40 00000dea 004222d0 05a2eda8 00000001 00030d40
00c63968 00c63b68 064eeff0 062f6428 bed5d6e7 0110f740
10084716 00000010 0041de46 0110f2a4 00000002 00100000
10ebd997 00000003 0110f794 00ca6f50 bed9040f 00caf438
00caf3a8 00000008 00000000 10ebd997 00000001 0110f794
000001fc 00ca6f50 00000004 00300031 00ca8db0 00000004
002d0031 00caab20 00cabf60 002e0035 006f006c 00000067
00000000 0110f2cc 00000000 00150640 00166700 0110f398
7c920551 00151378 7c92056d 00000000 00150178 00000000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 0110f314 00000000 7c9205c8 00166b88 0110f3e0
7c920551 00150778 7c92056d 00166bb0 00166b90 0016750c
00000000 004535de 00150178 0110f3c0 00167530 004533f5
00000c7b 0110f35c 00000000 7c9205c8 00ca9dd0 0110f428
7c920551 00ca07a8 7c92056d 00ca9dd8 00ca9dd8 0110f4f8
00150000 0110f38c 00000000 7c9205c8 0110f398 00000000
0110f3a0 00000000 7c9205c8 00cabf68 0110f46c 7c920551
00ca07a8 7c92056d 00ca9dd8 00cabf70 00000006 00167530
0001000f 00000005 00000030 00150178 0110f40c 7c91ee18
7c920570 ffffffff 7c92056d 7c921962 7c921993 7c98c080
00ca0000 00166bb0 00000038 0016750c 7ffda000 000000c8
00010000 00000030 0110f36c 7c921978 0110f458 7c91ee18
7c920570 ffffffff 7c92056d 0044ae95 00ca0000 00ca0000
0044aeb4 bed9020b 00ca9dd8 00cabf70 0110f4f8 0001f3a8
00000006 0110f3b0 0110f540 0110f49c 7c91ee18 7c920570
ffffffff 7c92056d 0044ae95 00ca0000 00000000 0044aeb4
bed902cf 00ca9dd8 0110f4f8 00000006 00ca9dd8 0110f480
0044c1b0 0110f540 0044c1b0 bf81eb8b fffffffe 0044aeb4
0040b1f0 00cabf70 bed902df 0000001b 00cad880 0000000b
0000000a 00000000 00ca82e8 00000001 001674f8 00000000
00cad880 0110f4f8 00ca9dd8 0110f4f8 00cabf70 00ca9dd8
00000003 00cabf70 00000000 00000000 00000000 00000013
00000000 00000000 0044abe9 bed9032b 0000001b 00cad880
00000000 00000000 0110f51c 00450676 0110f574 0044c1b0
0110f574 00463c9d ffffffff 0040b256 0046c5b8 bed9033b
00caf3a8 0110f548 0044a3ac 0110f740 0044c1b0 bf81eb2b
fffffffe 0110f740 00463cd0 ffffffff 0041faed bed903eb
00caf438 00caf3a8 0110ffec 0041fb0e 4722fec2 00000000
00000002 0000003a 0110f778 7c920551 00ca0000 00000000
00000020 00000005 00000000 00000007 0000003a 00000002
0000000b 0000001b 00000009 0000006b 00000006 0000012b
00000001 0000003a 00000002 0000000b 0000001b 00000009
0000006b 00000006 0000012b 00000001 0000003a 00000002
0000000b 0000001b 00000009 0000006b 00000006 0110f63c
00000000 7c9205c8 00ca6f60 0110f708 7c920551 00ca07d8
7c92056d 00caf438 00ca6f68 00000000 0000003a 00000002
0000000b 0000001b 00000009 0000006b 00000006 0000012b
00000001 0000003a 00000002 0000000b 0000001b 00000009
0000006b 00000006 0000012b 00000001 00ca0000 00ca7150
00000038 0110f778 00000017 003a0049 00000000 003a0044
0000005c 00300031 00370032 00310020 00ca0000 00320030
0035002d 00200038 0020003a 00000000 00012d08 00000007
0110f64c 0110f710 0110f738 7c91ee18 7c920570 ffffffff
7c92056d 0044ae95 00ca0000 00000000 0044aeb4 bed9012b
00caf438 00caf3a8 00000000 0046f78e 0110f71c 0110ffec
0110fc74 bed9041f 0110fc74 00465e4d 00000001 00423220
0110f794 bed9013b 00caf438 00caf3a8 0110ffec 00000000
0110f748 00000000 00000000 00000000 00000000 00ca6f68
00000000 00000000 00000000 00000012 00000017 00000001
00000204 00000000 00cabf70 00ca8e38 00000000 00000000
00000000 00000000 00cabdc0 00000004 00000000 00000000
00000000 00000000 0000d648 0110fc10 7c80b62e 00000002
00000000 00000000 0110fc24 7c80b643 7c800000 7ffde000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000 00000000 7c91d4ea
0110f8ec 00ca0000 7c920732 00000002 00ca06e8 00ca0000
0110f904 0110f908 00ca0000 7c920732 00000003 00ca0718
00ca0000 00cabdc0 0110f8e0 00ca0808 0110fb24 7c91ee18
7c920738 ffffffff 7c920732 7c9206ab 7c9206eb 0000000c
00000000 7c9205d4 7c9206eb 00000034 00000000 7c9205d4
00ca0748 00ca0000 0110f96c 00ca0000 7c920732 00000039
00ca1138 00ca0000 00000000 0110f944 0110f98c 0110fb88
7c91ee18 00000365 0110fb98 7c921538 7c921596 7c9206eb
000001be 00000000 7c9205d4 7c91ee18 0000039e 0110fbbc
7c921538 7c921596 7c9206eb 0000001c 00000000 7c9205d4
7c9205d4 7c9206ab 7c9206eb 0000001e 00000000 00000000
7c9205d4 00f30058 00ca0000 7c920732 0000000c 00000001
00ca0000 00ca4428 0110f9d0 00f30058 0110fc14 00caa288
7c920738 00000000 00000000 7c9206ab 00ca0188 00000000
00f30050 00000008 00ca0178 00000000 00ca0178 00ca0178
00caa0f0 00000000 00000000 00f30058 00ca0178 00000000
00000001 00000001 00000000 00caa0d0 00f30058 00f30058
00f30058 00caa490 00ca4420 00000000 00ca0178 0000000c
00caa498 00caa0f0 00f30050 0000000a 00452fb4 bed90cc7
00000000 0110fba8 00000000 0110fba8 55e6bee4 00449433
55e6bee4 002a6699 00989680 00000000 00000000 00000034
00449447 0cc0dbfe 00000000 2b253ee4 01c81878 fffff1f0
7c920551 00ca1048 00000003 00caa2d0 00caa0f0 000000e8
00000008 0110faf4 00000000 7c9205c8 00caa2a0 0110fbc0
7c920551 00ca0778 00000000 00cabdc0 00caa2a8 00000000
00000018 0000a078 00ca0000 0110f914 00000040 0110fbbc
bed90d4f 00000000 7ffda000 0110fb94 7c80261a 0110fb50
7c8025f0 00cafd70 00caf3a8 00000000 00000014 00000001
00000000 00000000 00000010 0110fb7c 00449604 7ffde000
7ffda000 00000000 00000000 0110fb44 0041518d 0110fc70
7c839aa8 7c8025f8 ffffffff 7c8025f0 7c91e2f1 7c8024b7
000000e8 00000000 00000034 00430ab3 000000e8 00000000
00caf3a8 7c91e57c 7c80a027 00000130 00000000 0110ffec
0041c9e5 0041c9f9 bed90dbf 00caf438 0041ca1d 0000003f
00000130 00000002 00000034 00000020 00000004 0000000a
00000064 00000002 00000068 00000002 00000000 00000000
00000000 00000000 7ffda000 00000000 00000000 0110fbdc
00000000 00000002 0110fbd0 00000000 0110ffa8 7c839aa8
7c8095d8 ffffffff 7c809512 7c80a075 00000002 0110fccc
00000000 ffffffff 00432cac bed90d87 bed9010b 0110ffa8
004666b8 00000000 0042596f bed90aeb 00ca0748 7c92056d
0110ffec 00caf3a8 7c91ee18 7c928ed0 ffffffff 7c928e74
7c91e8c4 7c928dfa 00ca9938 00000003 00caf3a8 00000000
00000000 00000000 00000000 000000d8 000000d4 00000000
00000000 00000000 00000000 00000000 00000000 7ffda000
00000000 00000000 00000000 00000000 00000000 0110fcb0
00000000 ffffffff 7c91ee18 00000000 00000000 7c928d00
7c91d625 7c91eacf 0110fd30 00000001 00010017 00000000
00000000 00000000 00000000 00000000 00000000 00000000
00000000 00000000 00000000 00000000 00000000 ba587b1c
00000002 e247e4ac ba587ae4 ba587a6c 805ee4f1 00000002
0000000c e247e4b4 00000000 00000000 e1caade0 ba587ae4
00100000 00000002 ba587b0c ba587ad0 84419000 8054abe1
00000009 00000000 00dddfc0 00000000 00000038 00000023
00000023 00ca0748 7c92056d 00caf3a8 00000000 7c9205c8
0043ef40 00e0fac8 7c810659 0000001b 00000200 0110fffc
00000023 7c810659 0000001b 00000200 0135fffc 00000023
00000001 83f3dc08 00000000 00000001 c0883cfc 83f3de00
0124ffb0 805053ef 83f3de00 c0883cfc ba587b28 80512f49
ba587b30 0124f001 83f3de00 8109f8b4 8109f8b4 00000000
c0009278 ba587b5c 805155df 0000019e c0009278 8109f8b4
00000000 c0009278 00000000 00000000 05b2b886 00000000
00000800 00005b2b ba587bdc 805159b5 0124ffb0 80000000
83f3dc08 00000000 ba587c3c ba587bd8 00000000 c0009278
84249e90 ba587bac 8053e3df ba587bbc 00000004 00000000
84249e90 83fb6d9c 00000010 00000000 ba587be0 8053e52d
842ea000 0000001f 83e20620 ffdff540 80544eec ffffffff
00000246 80544d2b ba587c28 83e20620 ffdff120 83e207bc
80502e78 83e20690 83e20620 804fb048 83e2078c 83e20620
83e20654 83eb1020 80641c18 83e97020 83e20620 7ffda000
ba587c88 80502592 00000000 00000005 00000000 00000000
00000000 804fef02 ba587c60 83e20654 804fefbe 806e4427
83e20620 ba587d50 00000000 83e20708 ba587c01 00000000
83e97020 8050256a 00000000 00000000 00000000 bed90afb
0110ffdc 00466a49 00000001 0043ef54 7c80b683 00caf3a8
00ca0748 7c92056d 00caf3a8 7ffda000 c0000005 0110ffc0
0110c0d4

System Activity:
----------------
Process 00000000: [System Process]
Module at 0x00400000: aawservice.exe
Module at 0x7c910000: ntdll.dll
Module at 0x7c800000: kernel32.dll
Module at 0x10000000: CEAPI.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x00490000: PKArchive84cb.dll
Module at 0x7c9d0000: SHELL32.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x7e390000: USER32.dll
Module at 0x77be0000: msvcrt.dll
Module at 0x77f40000: SHLWAPI.dll
Module at 0x774a0000: ole32.dll
Module at 0x779e0000: CRYPT32.dll
Module at 0x77a80000: MSASN1.dll
Module at 0x76f10000: WLDAP32.dll
Module at 0x76ba0000: PSAPI.DLL
Module at 0x77bd0000: VERSION.dll
Module at 0x77aa0000: WININET.dll
Module at 0x770e0000: OLEAUT32.dll
Module at 0x00340000: Update.dll
Module at 0x71a10000: WSOCK32.dll
Module at 0x719f0000: WS2_32.dll
Module at 0x719e0000: WS2HELP.dll
Module at 0x76320000: IMM32.DLL
Module at 0x62dc0000: LPK.DLL
Module at 0x753c0000: USP10.dll
Module at 0x77390000: comctl32.dll
Module at 0x58b50000: comctl32.dll
Module at 0x0ffd0000: rsaenh.dll
Module at 0x5b090000: uxtheme.dll
Module at 0x75140000: msctfime.ime

Process 00000004: System
Current Memory usage : 36 kb
Memory usage peak : 4640 kb
Current Paged Pool usage : 0 kb
Paged Pool usage peak : 0 kb
Current Non-Paged Pool usage : 0 kb
Non-Paged Pool usage peak : 0 kb
Current Page file usage : 0 kb
Page file usage peak : 0 kb
Page Faults : 10192

Module list
Module at 0x00000000:

Process 0000027c: smss.exe
Current Memory usage : 40 kb
Memory usage peak : 672 kb
Current Paged Pool usage : 6 kb
Paged Pool usage peak : 22 kb
Current Non-Paged Pool usage : 0 kb
Non-Paged Pool usage peak : 0 kb
Current Page file usage : 256 kb
Page file usage peak : 1648 kb
Page Faults : 358

Module list
Module at 0x48580000: smss.exe
Module at 0x7c910000: ntdll.dll

Process 000002c0: csrss.exe
Current Memory usage : 472 kb
Memory usage peak : 6448 kb
Current Paged Pool usage : 79 kb
Paged Pool usage peak : 159 kb
Current Non-Paged Pool usage : 6 kb
Non-Paged Pool usage peak : 7 kb
Current Page file usage : 1816 kb
Page file usage peak : 5588 kb
Page Faults : 9615

Module list
Module at 0x4a680000: csrss.exe
Module at 0x7c910000: ntdll.dll
Module at 0x75ad0000: CSRSRV.dll
Module at 0x75ae0000: basesrv.dll
Module at 0x75af0000: winsrv.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x7c800000: KERNEL32.dll
Module at 0x7e390000: USER32.dll
Module at 0x62dc0000: LPK.DLL
Module at 0x753c0000: USP10.dll
Module at 0x77be0000: msvcrt.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x77210000: sxs.dll
Module at 0x719f0000: WS2_32.dll
Module at 0x719e0000: WS2HELP.dll
Module at 0x770e0000: OLEAUT32.dll
Module at 0x774a0000: ole32.dll

Process 000002dc: winlogon.exe
Current Memory usage : 592 kb
Memory usage peak : 14568 kb
Current Paged Pool usage : 88 kb
Paged Pool usage peak : 104 kb
Current Non-Paged Pool usage : 41 kb
Non-Paged Pool usage peak : 42 kb
Current Page file usage : 6792 kb
Page file usage peak : 8440 kb
Page Faults : 10428

Module list
Module at 0x01000000: winlogon.exe
Module at 0x7c910000: ntdll.dll
Module at 0x7c800000: kernel32.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x77680000: AUTHZ.dll
Module at 0x77be0000: msvcrt.dll
Module at 0x779e0000: CRYPT32.dll
Module at 0x7e390000: USER32.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x77a80000: MSASN1.dll
Module at 0x758d0000: NDdeApi.dll
Module at 0x758c0000: PROFMAP.dll
Module at 0x6fee0000: NETAPI32.dll
Module at 0x76960000: USERENV.dll
Module at 0x76ba0000: PSAPI.DLL
Module at 0x76b60000: REGAPI.dll
Module at 0x778e0000: SETUPAPI.dll
Module at 0x77bd0000: VERSION.dll
Module at 0x762f0000: WINSTA.dll
Module at 0x76be0000: WINTRUST.dll
Module at 0x76c40000: IMAGEHLP.dll
Module at 0x719f0000: WS2_32.dll
Module at 0x719e0000: WS2HELP.dll
Module at 0x76320000: IMM32.DLL
Module at 0x62dc0000: LPK.DLL
Module at 0x753c0000: USP10.dll
Module at 0x75900000: MSGINA.dll
Module at 0x7c9d0000: SHELL32.dll
Module at 0x77f40000: SHLWAPI.dll
Module at 0x58b50000: COMCTL32.dll
Module at 0x74730000: ODBC32.dll
Module at 0x76340000: comdlg32.dll
Module at 0x77390000: comctl32.dll
Module at 0x20000000: odbcint.dll
Module at 0x776a0000: SHSVCS.dll
Module at 0x76b50000: sfc.dll
Module at 0x76c10000: sfc_os.dll
Module at 0x774a0000: ole32.dll
Module at 0x77b50000: Apphelp.dll
Module at 0x75140000: msctfime.ime
Module at 0x72340000: WINSCARD.DLL
Module at 0x76f00000: WTSAPI32.dll
Module at 0x77210000: sxs.dll
Module at 0x76ae0000: WINMM.dll
Module at 0x5b090000: uxtheme.dll
Module at 0x76590000: cscdll.dll
Module at 0x758e0000: WlNotify.dll
Module at 0x72f50000: WINSPOOL.DRV
Module at 0x71a60000: MPR.dll
Module at 0x0ffd0000: rsaenh.dll
Module at 0x012d0000: WgaLogon.dll
Module at 0x770e0000: OLEAUT32.dll
Module at 0x77650000: NTMARTA.DLL
Module at 0x76f10000: WLDAP32.dll
Module at 0x71b50000: SAMLIB.dll
Module at 0x76f80000: CLBCATQ.DLL
Module at 0x77000000: COMRes.dll
Module at 0x77c40000: msv1_0.dll
Module at 0x76d10000: iphlpapi.dll
Module at 0x765b0000: cscui.dll
Module at 0x01540000: xpsp2res.dll
Module at 0x72c70000: wdmaud.drv
Module at 0x72c60000: msacm32.drv
Module at 0x77bb0000: MSACM32.dll
Module at 0x77ba0000: midimap.dll

Process 00000308: services.exe
Current Memory usage : 1148 kb
Memory usage peak : 3544 kb
Current Paged Pool usage : 44 kb
Paged Pool usage peak : 46 kb
Current Non-Paged Pool usage : 8 kb
Non-Paged Pool usage peak : 10 kb
Current Page file usage : 2092 kb
Page file usage peak : 2460 kb
Page Faults : 5542

Module list
Module at 0x01000000: services.exe
Module at 0x7c910000: ntdll.dll
Module at 0x7c800000: kernel32.dll
Module at 0x77be0000: msvcrt.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x7e390000: USER32.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x76960000: USERENV.dll
Module at 0x76a20000: SCESRV.dll
Module at 0x77680000: AUTHZ.dll
Module at 0x7dbc0000: umpnpmgr.dll
Module at 0x762f0000: WINSTA.dll
Module at 0x6fee0000: NETAPI32.dll
Module at 0x5fb00000: NCObjAPI.DLL
Module at 0x76010000: MSVCP60.dll
Module at 0x5cea0000: ShimEng.dll
Module at 0x47260000: AcAdProc.dll
Module at 0x76320000: IMM32.DLL
Module at 0x62dc0000: LPK.DLL
Module at 0x753c0000: USP10.dll
Module at 0x77b50000: Apphelp.dll
Module at 0x77bd0000: VERSION.dll
Module at 0x77b80000: eventlog.dll
Module at 0x719f0000: WS2_32.dll
Module at 0x719e0000: WS2HELP.dll
Module at 0x76ba0000: PSAPI.DLL
Module at 0x76f00000: wtsapi32.dll
Module at 0x770e0000: OLEAUT32.dll
Module at 0x774a0000: ole32.dll

Process 00000314: lsass.exe
Current Memory usage : 1120 kb
Memory usage peak : 5316 kb
Current Paged Pool usage : 73 kb
Paged Pool usage peak : 77 kb
Current Non-Paged Pool usage : 8 kb
Non-Paged Pool usage peak : 11 kb
Current Page file usage : 4008 kb
Page file usage peak : 4148 kb
Page Faults : 4380

Module list
Module at 0x01000000: lsass.exe
Module at 0x7c910000: ntdll.dll
Module at 0x7c800000: kernel32.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x756b0000: LSASRV.dll
Module at 0x71a60000: MPR.dll
Module at 0x7e390000: USER32.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x77a80000: MSASN1.dll
Module at 0x77be0000: msvcrt.dll
Module at 0x6fee0000: NETAPI32.dll
Module at 0x76740000: NTDSAPI.dll
Module at 0x76ed0000: DNSAPI.dll
Module at 0x719f0000: WS2_32.dll
Module at 0x719e0000: WS2HELP.dll
Module at 0x76f10000: WLDAP32.dll
Module at 0x71b50000: SAMLIB.dll
Module at 0x743b0000: SAMSRV.dll
Module at 0x76730000: cryptdll.dll
Module at 0x5cea0000: ShimEng.dll
Module at 0x595b0000: AcGenral.DLL
Module at 0x76ae0000: WINMM.dll
Module at 0x774a0000: ole32.dll
Module at 0x770e0000: OLEAUT32.dll
Module at 0x77bb0000: MSACM32.dll
Module at 0x77bd0000: VERSION.dll
Module at 0x7c9d0000: SHELL32.dll
Module at 0x77f40000: SHLWAPI.dll
Module at 0x76960000: USERENV.dll
Module at 0x5b090000: UxTheme.dll
Module at 0x76320000: IMM32.DLL
Module at 0x62dc0000: LPK.DLL
Module at 0x753c0000: USP10.dll
Module at 0x77390000: comctl32.dll
Module at 0x58b50000: comctl32.dll
Module at 0x20000000: msprivs.dll
Module at 0x71c50000: kerberos.dll
Module at 0x77c40000: msv1_0.dll
Module at 0x76d10000: iphlpapi.dll
Module at 0x74420000: netlogon.dll
Module at 0x76760000: w32time.dll
Module at 0x76010000: MSVCP60.dll
Module at 0x76790000: schannel.dll
Module at 0x779e0000: CRYPT32.dll
Module at 0x742e0000: wdigest.dll
Module at 0x0ffd0000: rsaenh.dll
Module at 0x74370000: scecli.dll
Module at 0x778e0000: SETUPAPI.dll
Module at 0x74340000: ipsecsvc.dll
Module at 0x77680000: AUTHZ.dll
Module at 0x75dd0000: oakley.DLL
Module at 0x742d0000: WINIPSEC.DLL
Module at 0x74300000: pstorsvc.dll
Module at 0x71990000: mswsock.dll
Module at 0x62e40000: hnetcfg.dll
Module at 0x719d0000: wshtcpip.dll
Module at 0x74320000: psbase.dll
Module at 0x68100000: dssenh.dll

Process 00000398: svchost.exe
Current Memory usage : 468 kb
Memory usage peak : 3508 kb
Current Paged Pool usage : 72 kb
Paged Pool usage peak : 75 kb
Current Non-Paged Pool usage : 6 kb
Non-Paged Pool usage peak : 7 kb
Current Page file usage : 3340 kb
Page file usage peak : 23572 kb
Page Faults : 3127

Module list
Module at 0x01000000: svchost.exe
Module at 0x7c910000: ntdll.dll
Module at 0x7c800000: kernel32.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x5cea0000: ShimEng.dll
Module at 0x595b0000: AcGenral.DLL
Module at 0x7e390000: USER32.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x76ae0000: WINMM.dll
Module at 0x774a0000: ole32.dll
Module at 0x77be0000: msvcrt.dll
Module at 0x770e0000: OLEAUT32.dll
Module at 0x77bb0000: MSACM32.dll
Module at 0x77bd0000: VERSION.dll
Module at 0x7c9d0000: SHELL32.dll
Module at 0x77f40000: SHLWAPI.dll
Module at 0x76960000: USERENV.dll
Module at 0x5b090000: UxTheme.dll
Module at 0x76320000: IMM32.DLL
Module at 0x62dc0000: LPK.DLL
Module at 0x753c0000: USP10.dll
Module at 0x77390000: comctl32.dll
Module at 0x58b50000: comctl32.dll
Module at 0x77650000: NTMARTA.DLL
Module at 0x76f10000: WLDAP32.dll
Module at 0x71b50000: SAMLIB.dll
Module at 0x76870000: rpcss.dll
Module at 0x719f0000: WS2_32.dll
Module at 0x719e0000: WS2HELP.dll
Module at 0x20000000: xpsp2res.dll
Module at 0x76f80000: CLBCATQ.DLL
Module at 0x77000000: COMRes.dll
Module at 0x766a0000: termsrv.dll
Module at 0x74ee0000: ICAAPI.dll
Module at 0x778e0000: SETUPAPI.dll
Module at 0x76be0000: WINTRUST.dll
Module at 0x779e0000: CRYPT32.dll
Module at 0x77a80000: MSASN1.dll
Module at 0x76c40000: IMAGEHLP.dll
Module at 0x77680000: AUTHZ.dll
Module at 0x75080000: mstlsapi.dll
Module at 0x77c90000: ACTIVEDS.dll
Module at 0x76dc0000: adsldpc.dll
Module at 0x6fee0000: NETAPI32.dll
Module at 0x76ac0000: ATL.DLL
Module at 0x76b60000: REGAPI.dll
Module at 0x0ffd0000: rsaenh.dll
Module at 0x77b50000: Apphelp.dll

Process 000003f8: svchost.exe
Current Memory usage : 696 kb
Memory usage peak : 4360 kb
Current Paged Pool usage : 68 kb
Paged Pool usage peak : 68 kb
Current Non-Paged Pool usage : 13 kb
Non-Paged Pool usage peak : 15 kb
Current Page file usage : 2072 kb
Page file usage peak : 2324 kb
Page Faults : 3151

Module list
Module at 0x01000000: svchost.exe
Module at 0x7c910000: ntdll.dll
Module at 0x7c800000: kernel32.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x5cea0000: ShimEng.dll
Module at 0x595b0000: AcGenral.DLL
Module at 0x7e390000: USER32.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x76ae0000: WINMM.dll
Module at 0x774a0000: ole32.dll
Module at 0x77be0000: msvcrt.dll
Module at 0x770e0000: OLEAUT32.dll
Module at 0x77bb0000: MSACM32.dll
Module at 0x77bd0000: VERSION.dll
Module at 0x7c9d0000: SHELL32.dll
Module at 0x77f40000: SHLWAPI.dll
Module at 0x76960000: USERENV.dll
Module at 0x5b090000: UxTheme.dll
Module at 0x76320000: IMM32.DLL
Module at 0x62dc0000: LPK.DLL
Module at 0x753c0000: USP10.dll
Module at 0x77390000: comctl32.dll
Module at 0x58b50000: comctl32.dll
Module at 0x76870000: rpcss.dll
Module at 0x719f0000: WS2_32.dll
Module at 0x719e0000: WS2HELP.dll
Module at 0x20000000: xpsp2res.dll
Module at 0x0ffd0000: rsaenh.dll
Module at 0x71990000: mswsock.dll
Module at 0x62e40000: hnetcfg.dll
Module at 0x719d0000: wshtcpip.dll
Module at 0x76ed0000: DNSAPI.dll
Module at 0x76d10000: iphlpapi.dll
Module at 0x76f60000: winrnr.dll
Module at 0x76f10000: WLDAP32.dll
Module at 0x76f70000: rasadhlp.dll
Module at 0x76f80000: CLBCATQ.DLL
Module at 0x77000000: COMRes.dll

Process 0000042c: svchost.exe
Current Memory usage : 4256 kb
Memory usage peak : 20532 kb
Current Paged Pool usage : 168 kb
Paged Pool usage peak : 197 kb
Current Non-Paged Pool usage : 55 kb
Non-Paged Pool usage peak : 60 kb
Current Page file usage : 13872 kb
Page file usage peak : 22792 kb
Page Faults : 29593

Module list
Module at 0x01000000: svchost.exe
Module at 0x7c910000: ntdll.dll
Module at 0x7c800000: kernel32.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x5cea0000: ShimEng.dll
Module at 0x595b0000: AcGenral.DLL
Module at 0x7e390000: USER32.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x76ae0000: WINMM.dll
Module at 0x774a0000: ole32.dll
Module at 0x77be0000: msvcrt.dll
Module at 0x770e0000: OLEAUT32.dll
Module at 0x77bb0000: MSACM32.dll
Module at 0x77bd0000: VERSION.dll
Module at 0x7c9d0000: SHELL32.dll
Module at 0x77f40000: SHLWAPI.dll
Module at 0x76960000: USERENV.dll
Module at 0x5b090000: UxTheme.dll
Module at 0x76320000: IMM32.DLL
Module at 0x62dc0000: LPK.DLL
Module at 0x753c0000: USP10.dll
Module at 0x77390000: comctl32.dll
Module at 0x58b50000: comctl32.dll
Module at 0x77650000: NTMARTA.DLL
Module at 0x76f10000: WLDAP32.dll
Module at 0x71b50000: SAMLIB.dll
Module at 0x20000000: xpsp2res.dll
Module at 0x776a0000: shsvcs.dll
Module at 0x762f0000: WINSTA.dll
Module at 0x6fee0000: NETAPI32.dll
Module at 0x76d30000: dhcpcsvc.dll
Module at 0x76ed0000: DNSAPI.dll
Module at 0x719f0000: WS2_32.dll
Module at 0x719e0000: WS2HELP.dll
Module at 0x76d10000: iphlpapi.dll
Module at 0x7db30000: wzcsvc.dll
Module at 0x76e30000: rtutils.dll
Module at 0x76ce0000: WMI.dll
Module at 0x779e0000: CRYPT32.dll
Module at 0x77a80000: MSASN1.dll
Module at 0x76f00000: WTSAPI32.dll
Module at 0x6f890000: ESENT.dll
Module at 0x76ac0000: ATL.DLL
Module at 0x0ffd0000: rsaenh.dll
Module at 0x76b70000: rastls.dll
Module at 0x76610000: CRYPTUI.dll
Module at 0x76be0000: WINTRUST.dll
Module at 0x76c40000: IMAGEHLP.dll
Module at 0x77aa0000: WININET.dll
Module at 0x76cf0000: MPRAPI.dll
Module at 0x77c90000: ACTIVEDS.dll
Module at 0x76dc0000: adsldpc.dll
Module at 0x778e0000: SETUPAPI.dll
Module at 0x76e90000: RASAPI32.dll
Module at 0x76e40000: rasman.dll
Module at 0x76e60000: TAPI32.dll
Module at 0x76790000: SCHANNEL.dll
Module at 0x72340000: WinSCard.dll
Module at 0x76c90000: raschap.dll
Module at 0x76f80000: CLBCATQ.DLL
Module at 0x77000000: COMRes.dll
Module at 0x77c40000: msv1_0.dll
Module at 0x76b10000: schedsvc.dll
Module at 0x76740000: NTDSAPI.dll
Module at 0x74ec0000: MSIDLE.DLL
Module at 0x70da0000: audiosrv.dll
Module at 0x772d0000: wkssvc.dll
Module at 0x60ac0000: qmgr.dll
Module at 0x71a60000: MPR.dll
Module at 0x76720000: SHFOLDER.dll
Module at 0x4d5e0000: WINHTTP.dll
Module at 0x76cc0000: cryptsvc.dll
Module at 0x752c0000: certcli.dll
Module at 0x71990000: mswsock.dll
Module at 0x62e40000: hnetcfg.dll
Module at 0x719d0000: wshtcpip.dll
Module at 0x74ef0000: ersvc.dll
Module at 0x75000000: srvsvc.dll
Module at 0x74eb0000: pchsvc.dll
Module at 0x776d0000: es.dll
Module at 0x77cd0000: netman.dll
Module at 0x76390000: netshell.dll
Module at 0x76bb0000: credui.dll
Module at 0x72f80000: WZCSAPI.DLL
Module at 0x73c70000: seclogon.dll
Module at 0x76d90000: browser.dll
Module at 0x50000000: wuauserv.dll
Module at 0x4f0b0000: wmisvc.dll
Module at 0x75350000: VSSAPI.DLL
Module at 0x50040000: wuaueng.dll
Module at 0x72f50000: WINSPOOL.DRV
Module at 0x750c0000: Cabinet.dll
Module at 0x60440000: mspatcha.dll
Module at 0x76760000: w32time.dll
Module at 0x76010000: MSVCP60.dll
Module at 0x74fe0000: trkwks.dll
Module at 0x73330000: tapisrv.dll
Module at 0x76ba0000: PSAPI.DLL
Module at 0x75110000: srsvc.dll
Module at 0x74a40000: POWRPROF.dll
Module at 0x72240000: sens.dll
Module at 0x4c190000: wscsvc.dll
Module at 0x7d200000: msi.dll
Module at 0x77210000: SXS.DLL
Module at 0x76080000: comsvcs.dll
Module at 0x750a0000: colbact.DLL
Module at 0x75060000: MTXCLU.DLL
Module at 0x71a10000: WSOCK32.dll
Module at 0x76d50000: CLUSAPI.DLL
Module at 0x75020000: RESUTILS.DLL
Module at 0x66890000: ipnathlp.dll
Module at 0x77680000: AUTHZ.dll
Module at 0x76b50000: sfc.dll
Module at 0x76c10000: sfc_os.dll
Module at 0x75200000: wbemcomn.dll
Module at 0x76250000: wbemcore.dll
Module at 0x75280000: esscli.dll
Module at 0x75610000: FastProx.dll
Module at 0x74f90000: wmiutils.dll
Module at 0x75170000: repdrvfs.dll
Module at 0x59ad0000: wmiprvsd.dll
Module at 0x5fb00000: NCObjAPI.DLL
Module at 0x75300000: wbemess.dll
Module at 0x76df0000: upnp.dll
Module at 0x74e70000: SSDPAPI.dll
Module at 0x5fad0000: ncprov.dll
Module at 0x76f70000: rasadhlp.dll
Module at 0x754c0000: RASDLG.dll
Module at 0x77b50000: Apphelp.dll
Module at 0x50e60000: wups2.dll
Module at 0x751d0000: advpack.dll
Module at 0x70000000: catsrvut.dll
Module at 0x700c0000: catsrv.dll
Module at 0x61d60000: MfcSubs.dll
Module at 0x7df30000: urlmon.dll

Process 00000490: svchost.exe
Current Memory usage : 576 kb
Memory usage peak : 3152 kb
Current Paged Pool usage : 53 kb
Paged Pool usage peak : 65 kb
Current Non-Paged Pool usage : 2 kb
Non-Paged Pool usage peak : 5 kb
Current Page file usage : 1412 kb
Page file usage peak : 1436 kb
Page Faults : 1943

Module list
Module at 0x01000000: svchost.exe
Module at 0x7c910000: ntdll.dll
Module at 0x7c800000: kernel32.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x5cea0000: ShimEng.dll
Module at 0x595b0000: AcGenral.DLL
Module at 0x7e390000: USER32.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x76ae0000: WINMM.dll
Module at 0x774a0000: ole32.dll
Module at 0x77be0000: msvcrt.dll
Module at 0x770e0000: OLEAUT32.dll
Module at 0x77bb0000: MSACM32.dll
Module at 0x77bd0000: VERSION.dll
Module at 0x7c9d0000: SHELL32.dll
Module at 0x77f40000: SHLWAPI.dll
Module at 0x76960000: USERENV.dll
Module at 0x5b090000: UxTheme.dll
Module at 0x76320000: IMM32.DLL
Module at 0x62dc0000: LPK.DLL
Module at 0x753c0000: USP10.dll
Module at 0x77390000: comctl32.dll
Module at 0x58b50000: comctl32.dll
Module at 0x76710000: dnsrslvr.dll
Module at 0x76ed0000: DNSAPI.dll
Module at 0x719f0000: WS2_32.dll
Module at 0x719e0000: WS2HELP.dll
Module at 0x76d10000: iphlpapi.dll

Process 000004c4: svchost.exe
Current Memory usage : 172 kb
Memory usage peak : 3816 kb
Current Paged Pool usage : 69 kb
Paged Pool usage peak : 69 kb
Current Non-Paged Pool usage : 5 kb
Non-Paged Pool usage peak : 7 kb
Current Page file usage : 1912 kb
Page file usage peak : 1936 kb
Page Faults : 2044

Module list
Module at 0x01000000: svchost.exe
Module at 0x7c910000: ntdll.dll
Module at 0x7c800000: kernel32.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x5cea0000: ShimEng.dll
Module at 0x595b0000: AcGenral.DLL
Module at 0x7e390000: USER32.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x76ae0000: WINMM.dll
Module at 0x774a0000: ole32.dll
Module at 0x77be0000: msvcrt.dll
Module at 0x770e0000: OLEAUT32.dll
Module at 0x77bb0000: MSACM32.dll
Module at 0x77bd0000: VERSION.dll
Module at 0x7c9d0000: SHELL32.dll
Module at 0x77f40000: SHLWAPI.dll
Module at 0x76960000: USERENV.dll
Module at 0x5b090000: UxTheme.dll
Module at 0x76320000: IMM32.DLL
Module at 0x62dc0000: LPK.DLL
Module at 0x753c0000: USP10.dll
Module at 0x77390000: comctl32.dll
Module at 0x58b50000: comctl32.dll
Module at 0x77650000: NTMARTA.DLL
Module at 0x76f10000: WLDAP32.dll
Module at 0x71b50000: SAMLIB.dll
Module at 0x20000000: xpsp2res.dll
Module at 0x74bb0000: lmhsvc.dll
Module at 0x76d10000: iphlpapi.dll
Module at 0x719f0000: WS2_32.dll
Module at 0x719e0000: WS2HELP.dll
Module at 0x5a9f0000: webclnt.dll
Module at 0x77aa0000: WININET.dll
Module at 0x779e0000: CRYPT32.dll
Module at 0x77a80000: MSASN1.dll
Module at 0x71a10000: wsock32.dll
Module at 0x76840000: ssdpsrv.dll
Module at 0x62e40000: hnetcfg.dll
Module at 0x76f80000: CLBCATQ.DLL
Module at 0x77000000: COMRes.dll
Module at 0x71990000: mswsock.dll
Module at 0x719d0000: wshtcpip.dll

Process 000005ac: spoolsv.exe
Current Memory usage : 508 kb
Memory usage peak : 5072 kb
Current Paged Pool usage : 75 kb
Paged Pool usage peak : 77 kb
Current Non-Paged Pool usage : 5 kb
Non-Paged Pool usage peak : 9 kb
Current Page file usage : 3564 kb
Page file usage peak : 3684 kb
Page Faults : 3316

Module list
Module at 0x01000000: spoolsv.exe
Module at 0x7c910000: ntdll.dll
Module at 0x7c800000: kernel32.dll
Module at 0x77da0000: ADVAPI32.dll
Module at 0x77e50000: RPCRT4.dll
Module at 0x77fc0000: Secur32.dll
Module at 0x77ef0000: GDI32.dll
Module at 0x7e390000: USER32.dll
Module at 0x77be000
0
Réponse 8 / 34
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406
27 oct. 2007 à 15:36
bonjour momo,

Télécharge LopxpMH sur ton Bureau.

http://www.alt-shift-return.org/Info/Fichiers/lopxpMH2.zip

Dézippe-le (clic droit >> Extraire ici) et double clique sur le fichier lopxpMH.bat.

Poste le contenu du rapport qui va s'ouvrir.

@+
0
Réponse 9 / 34
momo5418 Messages postés 16 Date d'inscription vendredi 19 octobre 2007 Statut Membre Dernière intervention 2 novembre 2007
27 oct. 2007 à 16:29
bonjour
voici le contenu:

Rapport lopxpMH2 version 2.0 fait à 16:25:21,60 le 27/10/2007
C:\Documents and Settings\bibi\Bureau\telechargement\4\lopxpMH2

******************************************
## Répertoires Application Data

Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\Documents and Settings\All Users\Application Data

07/08/2006 10:12 <REP> .
07/08/2006 10:12 <REP> ..
07/08/2006 10:12 <REP> Adobe
19/05/2007 18:57 <REP> CyberLink
13/10/2007 18:23 <REP> eConsole
12/07/2007 20:13 <REP> Google
20/10/2007 10:14 <REP> Lavasoft
07/08/2006 09:57 <REP> Microsoft
20/09/2007 13:51 <REP> SalesMonitor
19/05/2007 18:49 <REP> Symantec
14/10/2007 09:57 <REP> TEMP
03/06/2007 11:18 <REP> Windows Genuine Advantage
19/05/2007 21:11 <REP> Yahoo! Companion
07/08/2006 11:55 62 desktop.ini
1 fichier(s) 62 octets
13 Rép(s) 66 713 374 720 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\Documents and Settings\bibi\Application Data

19/05/2007 18:47 <REP> .
19/05/2007 18:47 <REP> ..
28/05/2007 14:50 <REP> Adobe
08/06/2007 18:10 <REP> AdobeUM
28/05/2007 20:58 <REP> CyberLink
21/09/2007 12:25 <REP> DriveCleaner Free
14/10/2007 10:14 <REP> Google
19/05/2007 21:11 <REP> Help
19/05/2007 18:47 <REP> Identities
19/05/2007 18:47 <REP> Macromedia
19/05/2007 18:47 <REP> Microsoft
19/05/2007 21:19 <REP> Mozilla
25/06/2007 16:16 <REP> Sun
19/05/2007 18:47 62 desktop.ini
1 fichier(s) 62 octets
13 Rép(s) 66 713 362 432 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\Documents and Settings\bibi\Local Settings\Application Data

19/05/2007 18:47 <REP> .
19/05/2007 18:47 <REP> ..
19/05/2007 18:47 <REP> {3248F0A6-6813-11D6-A77B-00B0D0150060}
28/05/2007 14:50 <REP> Adobe
19/05/2007 18:47 <REP> ApplicationHistory
12/07/2007 20:13 <REP> Google
19/05/2007 21:11 <REP> Help
27/05/2007 16:24 <REP> Identities
19/05/2007 18:47 <REP> Microsoft
19/05/2007 21:19 <REP> Mozilla
19/05/2007 18:57 <REP> PowerCinema
03/06/2007 11:13 8 704 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
19/05/2007 18:47 127 fusioncache.dat
19/05/2007 18:55 35 064 GDIPFONTCACHEV1.DAT
19/05/2007 18:47 4 267 120 IconCache.db
4 fichier(s) 4 311 015 octets
11 Rép(s) 66 713 362 432 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\Documents and Settings\Default User\Application Data

07/08/2006 11:55 <REP> .
07/08/2006 11:55 <REP> ..
19/05/2007 18:46 <REP> Identities
19/05/2007 18:46 <REP> Macromedia
07/08/2006 09:57 <REP> Microsoft
07/08/2006 11:55 62 desktop.ini
1 fichier(s) 62 octets
5 Rép(s) 66 713 362 432 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\Documents and Settings\Default User\Local Settings\Application Data

07/08/2006 09:57 <REP> .
07/08/2006 09:57 <REP> ..
19/05/2007 18:46 <REP> ApplicationHistory
07/08/2006 09:57 <REP> Microsoft
19/05/2007 18:46 135 fusioncache.dat
19/05/2007 18:46 1 414 484 IconCache.db
2 fichier(s) 1 414 619 octets
4 Rép(s) 66 713 358 336 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\Documents and Settings\LocalService\Application Data

07/08/2006 09:59 <REP> .
07/08/2006 09:59 <REP> ..
07/08/2006 09:59 <REP> Microsoft
0 fichier(s) 0 octets
3 Rép(s) 66 713 358 336 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\Documents and Settings\LocalService\Local Settings\Application Data

07/08/2006 09:59 <REP> .
07/08/2006 09:59 <REP> ..
07/08/2006 09:59 <REP> Microsoft
0 fichier(s) 0 octets
3 Rép(s) 66 713 358 336 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\Documents and Settings\NetworkService\Application Data

07/08/2006 09:59 <REP> .
07/08/2006 09:59 <REP> ..
07/08/2006 09:59 <REP> Microsoft
0 fichier(s) 0 octets
3 Rép(s) 66 713 358 336 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\Documents and Settings\NetworkService\Local Settings\Application Data

07/08/2006 09:59 <REP> .
07/08/2006 09:59 <REP> ..
07/08/2006 09:59 <REP> Microsoft
0 fichier(s) 0 octets
3 Rép(s) 66 713 358 336 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\WINDOWS\system32\config\systemprofile\Application Data

07/08/2006 11:55 <REP> .
07/08/2006 11:55 <REP> ..
19/05/2007 18:46 <REP> Identities
19/05/2007 18:46 <REP> Macromedia
07/08/2006 11:55 <REP> Microsoft
07/08/2006 11:55 62 desktop.ini
1 fichier(s) 62 octets
5 Rép(s) 66 713 358 336 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\WINDOWS\system32\config\systemprofile\Local Settings\Application Data

07/08/2006 11:55 <REP> .
07/08/2006 11:55 <REP> ..
19/05/2007 18:46 <REP> ApplicationHistory
07/08/2006 09:57 <REP> Microsoft
19/05/2007 18:46 135 fusioncache.dat
19/05/2007 18:46 1 414 484 IconCache.db
2 fichier(s) 1 414 619 octets
4 Rép(s) 66 713 358 336 octets libres

******************************************
Recherche des taches planifiées dans C:\WINDOWS\tasks

******************************************
## Répertoires de C:\Program Files

Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 244A-D6F6

Répertoire de C:\Program Files

20/10/2007 10:14 <REP> .
20/10/2007 10:14 <REP> ..
19/05/2007 18:56 <REP> Acer
20/05/2007 03:17 <REP> Acer WLAN 11g USB Dongle
20/05/2007 03:17 <REP> Adobe
13/10/2007 10:42 <REP> Alwil Software
06/07/2007 14:23 <REP> Codemasters
20/05/2007 03:18 <REP> commercial
07/08/2006 09:56 <REP> ComPlus Applications
19/05/2007 18:56 <REP> CyberLink
20/05/2007 03:18 <REP> DIFX
10/06/2007 12:10 <REP> directx
20/10/2007 10:13 <REP> Fichiers communs
13/10/2007 10:44 <REP> Google
20/10/2007 09:23 <REP> Hijackthis Version Française
02/07/2007 13:32 <REP> Infogrames
10/10/2007 22:25 <REP> Internet Explorer
19/05/2007 18:48 <REP> Java
20/10/2007 10:16 <REP> Lavasoft
20/05/2007 03:18 <REP> Messenger
28/05/2007 10:33 <REP> Micro Application
20/05/2007 03:18 <REP> microsoft frontpage
20/05/2007 18:50 <REP> Mindscape
20/05/2007 03:18 <REP> Movie Maker
13/10/2007 10:39 <REP> Mozilla Firefox
13/10/2007 10:46 <REP> MSN
20/05/2007 03:18 <REP> MSN Gaming Zone
05/07/2007 17:18 <REP> MSN Messenger
27/05/2007 22:05 <REP> MSXML 4.0
20/05/2007 03:18 <REP> NetMeeting
19/05/2007 18:55 <REP> NewTech Infosystems
13/10/2007 10:41 <REP> Objective Tarot
20/05/2007 03:19 <REP> Oca History Tool
20/05/2007 03:19 <REP> Online Services
13/07/2007 16:45 <REP> Outlook Express
20/05/2007 03:19 <REP> Realtek
02/07/2007 10:55 <REP> Rockstar Games
19/05/2007 21:06 <REP> SAGEM
19/05/2007 21:02 <REP> Securitoo
20/05/2007 03:19 <REP> Services en ligne
20/05/2007 18:48 <REP> The Learning Company
13/07/2007 19:50 <REP> Trust 320 SpaceCam
13/07/2007 16:46 <REP> Wanadoo
29/06/2007 20:09 <REP> Wanadoo Messager
03/06/2007 11:20 <REP> Windows Media Connect 2
03/06/2007 11:20 <REP> Windows Media Player
20/05/2007 03:19 <REP> Windows NT
20/05/2007 03:19 <REP> xerox
19/05/2007 18:55 <REP> Yahoo!
0 fichier(s) 0 octets
49 Rép(s) 66 713 354 240 octets libres

******************************************
## Popups autorisées

* Internet Explorer

! REG.EXE VERSION 3.0

HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\New Windows\Allow

* Mozilla Firefox (1 autorisé 2 interdit)

---------- C:\DOCUMENTS AND SETTINGS\BIBI\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\25R8HSRV.DEFAULT\HOSTPERM.1
host popup 1 www.tourisme.fr
host popup 1 www.planetanim.com
host popup 1 www.globaltestmarket.com
host popup 1 video.google.fr
host popup 1 www.elleadore.com
host popup 1 secure.brainjuicer.com

******************************************
## Registre

* [HKEY_CURRENT_USER\\Software\Microsoft\Internet Explorer\Main]
Search Bar REG_SZ http://www.google.com/toolbar/ie8/sidebar.html

******************************************
## Zones de sécurité

* HKCU Domains (4)

* P3P History (5)

******************************************
## Recherche C:\WINDOWS\*.htm, "C:\WINDOWS\*.gif"


*************** Fin du rapport ****************
0
Réponse 10 / 34
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406
27 oct. 2007 à 17:33
re,

va sur ce site et fais analyser les fichiers suivant : https://www.virustotal.com/gui/

C:\Documents and Settings\bibi\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

C:\Documents and Settings\bibi\Local Settings\Application Data\GDIPFONTCACHEV1.DAT

C:\Documents and Settings\bibi\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150060}

C:\Documents and Settings\bibi\Application Data\Macromedia

upload les fichiers (un a la fois) une fois l´analyse terminée, envoie moi les rapports stp

puis fais ceci :

crée un nouveau fichier texte avec le block note

clic droit de souris sur le bureau, "Nouveau"> "Document Texte". Ouvre-le et copie-colle dedans de ce qui est en citation ci-dessous, (copie tout d'un trait)
_________________________________________________________________________________
REGEDIT4

[HKEY_CURRENT_USER\Software\Mozilla\FIREFOX\PROFILES\25R8HSRV.DEFAULT\HOSTPERM.1]
"host popup 1 www.tourisme.fr"=-
"host popup 1 www.planetanim.com"=-
"host popup 1 www.globaltestmarket.com"=-
"host popup 1 www.elleadore.com"=-
"host popup 1 secure.brainjuicer.com"=-
_________________________________________________________________________________


Puis "fichier"/"enregistrer sous" :
dans : sur le bureau
Nom du fichier : fix.reg
Type de fichier : "tous les fichiers"
clique sur "enregistrer"

Note:
* Lors de l'enregistrement, il faut choisir pour le champ "Type": "Tous les fichiers"
* Fait bien attention que REGEDIT 4 soit sur la toute 1ere ligne


une fois le fichier sauvé sur le bureau, quitte internet et double clique sur fix.reg => tu dois obligatoirement avoir un message "voulez-vous vraiment ajouter les informations contenues dans ce fichier .reg au registre ?"

Si c'est bien le cas, clique sur "oui"

voila

poste le rapports des differents scan de foichiers que je t´ai demandé
0
Réponse 11 / 34
momo5418 Messages postés 16 Date d'inscription vendredi 19 octobre 2007 Statut Membre Dernière intervention 2 novembre 2007
30 oct. 2007 à 11:47
bonjour g!rly
voila j'ai fait ce que tu a demander mes j'ai un probleme avec les deux dernier j'arrive pas a les analyser


Fichier DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3 reçu le 2007.10.30 10:59:28 (CET)
Situation actuelle: en cours de chargement ... mis en file d'attente en attente en cours d'analyse terminé NON TROUVE ARRETE
Résultat: 0/32 (0%)
en train de charger les informations du serveur...
Votre fichier est dans la file d'attente, en position: ___.
L'heure estimée de démarrage est entre ___ et ___ .
Ne fermez pas la fenêtre avant la fin de l'analyse.
L'analyseur qui traitait votre fichier est actuellement stoppé, nous allons attendre quelques secondes pour tenter de récupérer vos résultats.
Si vous attendez depuis plus de cinq minutes, vous devez renvoyer votre fichier.
Votre fichier est, en ce moment, en cours d'analyse par VirusTotal,
les résultats seront affichés au fur et à mesure de leur génération.
Formaté Formaté
Impression des résultats Impression des résultats
Votre fichier a expiré ou n'existe pas.
Le service est en ce moment, stoppé, votre fichier attend d'être analysé (position : ) depuis une durée indéfinie.

Vous pouvez attendre une réponse du Web (re-chargement automatique) ou taper votre e-mail dans le formulaire ci-dessous et cliquer "Demande" pour que le système vous envoie une notification quand l'analyse sera terminée.
Email:

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2007.10.30.0 2007.10.30 -
AntiVir 7.6.0.30 2007.10.30 -
Authentium 4.93.8 2007.10.29 -
Avast 4.7.1074.0 2007.10.29 -
AVG 7.5.0.503 2007.10.29 -
BitDefender 7.2 2007.10.30 -
CAT-QuickHeal 9.00 2007.10.29 -
ClamAV 0.91.2 2007.10.30 -
DrWeb 4.44.0.09170 2007.10.30 -
eSafe 7.0.15.0 2007.10.28 -
eTrust-Vet 31.2.5253 2007.10.30 -
Ewido 4.0 2007.10.29 -
FileAdvisor 1 2007.10.30 -
Fortinet 3.11.0.0 2007.10.19 -
F-Prot 4.3.2.48 2007.10.29 -
F-Secure 6.70.13030.0 2007.10.30 -
Ikarus T3.1.1.12 2007.10.30 -
Kaspersky 7.0.0.125 2007.10.30 -
McAfee 5151 2007.10.29 -
Microsoft 1.2908 2007.10.30 -
NOD32v2 2626 2007.10.30 -
Norman 5.80.02 2007.10.29 -
Panda 9.0.0.4 2007.10.30 -
Prevx1 V2 2007.10.30 -
Rising 19.47.11.00 2007.10.30 -
Sophos 4.23.0 2007.10.30 -
Sunbelt 2.2.907.0 2007.10.29 -
Symantec 10 2007.10.30 -
TheHacker 6.2.9.110 2007.10.27 -
VBA32 3.12.2.4 2007.10.28 -
VirusBuster 4.3.26:9 2007.10.29 -
Webwasher-Gateway 6.0.1 2007.10.30 -
Information additionnelle
File size: 8704 bytes
MD5: e4bc4eddeb716031e5b9bd48df817125
SHA1: 681f1f36d7375b2393eba97dc8eaf2efd81e0b5e




Fichier GDIPFONTCACHEV1.DAT_ reçu le 2007.10.30 11:09:43 (CET)
Situation actuelle: en cours de chargement ... mis en file d'attente en attente en cours d'analyse terminé NON TROUVE ARRETE
Résultat: 0/32 (0%)
en train de charger les informations du serveur...
Votre fichier est dans la file d'attente, en position: 3.
L'heure estimée de démarrage est entre 48 et 68 secondes.
Ne fermez pas la fenêtre avant la fin de l'analyse.
L'analyseur qui traitait votre fichier est actuellement stoppé, nous allons attendre quelques secondes pour tenter de récupérer vos résultats.
Si vous attendez depuis plus de cinq minutes, vous devez renvoyer votre fichier.
Votre fichier est, en ce moment, en cours d'analyse par VirusTotal,
les résultats seront affichés au fur et à mesure de leur génération.
Formaté Formaté
Impression des résultats Impression des résultats
Votre fichier a expiré ou n'existe pas.
Le service est en ce moment, stoppé, votre fichier attend d'être analysé (position : ) depuis une durée indéfinie.

Vous pouvez attendre une réponse du Web (re-chargement automatique) ou taper votre e-mail dans le formulaire ci-dessous et cliquer "Demande" pour que le système vous envoie une notification quand l'analyse sera terminée.
Email:

Antivirus Version Dernière mise à jour Résultat
AhnLab-V3 2007.10.30.0 2007.10.30 -
AntiVir 7.6.0.30 2007.10.30 -
Authentium 4.93.8 2007.10.29 -
Avast 4.7.1074.0 2007.10.29 -
AVG 7.5.0.503 2007.10.29 -
BitDefender 7.2 2007.10.30 -
CAT-QuickHeal 9.00 2007.10.29 -
ClamAV 0.91.2 2007.10.30 -
DrWeb 4.44.0.09170 2007.10.30 -
eSafe 7.0.15.0 2007.10.28 -
eTrust-Vet 31.2.5253 2007.10.30 -
Ewido 4.0 2007.10.29 -
FileAdvisor 1 2007.10.30 -
Fortinet 3.11.0.0 2007.10.19 -
F-Prot 4.3.2.48 2007.10.29 -
F-Secure 6.70.13030.0 2007.10.30 -
Ikarus T3.1.1.12 2007.10.30 -
Kaspersky 7.0.0.125 2007.10.30 -
McAfee 5151 2007.10.29 -
Microsoft 1.2908 2007.10.30 -
NOD32v2 2626 2007.10.30 -
Norman 5.80.02 2007.10.29 -
Panda 9.0.0.4 2007.10.30 -
Prevx1 V2 2007.10.30 -
Rising 19.47.11.00 2007.10.30 -
Sophos 4.23.0 2007.10.30 -
Sunbelt 2.2.907.0 2007.10.29 -
Symantec 10 2007.10.30 -
TheHacker 6.2.9.110 2007.10.27 -
VBA32 3.12.2.4 2007.10.28 -
VirusBuster 4.3.26:9 2007.10.29 -
Webwasher-Gateway 6.6.1 2007.10.30 -
Information additionnelle
File size: 35064 bytes
MD5: d4decf13401cfbe3510ab5f87f8a6ace
SHA1: 7f554848df6ebc7aacdf18b9f609b641dd53856f
0
Réponse 12 / 34
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406
30 oct. 2007 à 11:58
bonjour,

peux tu poster un nouveau rapport hijackthis stp
0
Réponse 13 / 34
momo5418 Messages postés 16 Date d'inscription vendredi 19 octobre 2007 Statut Membre Dernière intervention 2 novembre 2007
30 oct. 2007 à 12:03
voila


Logfile of HijackThis v1.99.1
Scan saved at 12:03:21, on 30/10/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\SysMonitor.exe
C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe
C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
C:\Program Files\Acer\Acer eMode Management\AspireService.exe
C:\Program Files\Acer\Acer eConsole\MediaSync.exe
C:\Program Files\CyberLink\PowerCinema\PCMService.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Acer\Empowering Technology\Acer.Empowering.Framework.Launcher.exe
C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Java\jre1.5.0_06\bin\jucheck.exe
C:\Program Files\Hijackthis Version Française\hijackthis vf.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.orange.fr/portail
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://fr.yahoo.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://fr.yahoo.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\WINDOWS\system32\eDStoolbar.dll
O3 - Toolbar: Yahoo! Toolbar avec bloqueur de fenêtres pop-up - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [LaunchApp] Alaunch
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ntiMUI] c:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\WINDOWS\system32\SysMonitor.exe
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exe 0
O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe /normal-run2
O4 - HKLM\..\Run: [AspireService] C:\Program Files\Acer\Acer eMode Management\AspireService.exe
O4 - HKLM\..\Run: [MediaSync] C:\Program Files\Acer\Acer eConsole\MediaSync.exe
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\CyberLink\PowerCinema\PCMService.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WOOKIT] C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Global Startup: Acer Empowering Technology.lnk = ?
O4 - Global Startup: Acer WLAN 11g USB Dongle.lnk = C:\Program Files\Acer WLAN 11g USB Dongle\ZDWlan.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Acer Media Server - Acer Inc. - C:\Program Files\Acer\Acer eConsole\MediaServerService.exe
O23 - Service: Memory Check Service (AcerMemUsageCheckService) - Acer Inc. - C:\Acer\Empowering Technology\ePerformance\MemCheck.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Fichiers communs\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
0
Réponse 14 / 34
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406
30 oct. 2007 à 12:11
re,

a l´aide de hjack this coche et fix ceci:

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

comment fixer :

Tutoriel d´utilisation (video) :

-> http://pageperso.aol.fr/balltrap34/demohijack.htm

puis

-> Télécharger AVG Anti-Spyware (ewido)

http://www.commentcamarche.net/telecharger/telecharger 218 avg anti spyware

-> L´installer.

-> lancer AVG Anti-Spyware et clicker sur le bouton Mise à jour. Patienter...

p.s : si les mises a jours ne se font pas, elles sont telechargable ici :

http://downloads.ewido.net/avgas-signatures-full-current.exe

-> Sur la page "analyse":

choisir d´abord l'onglet "paramètres".

sous « Comment réagir » clicker sur « Actions recommandées » et dans le menu déroulant, choisir « Supprimer ».

-> Lancer le scan, (c´est long...).

-> A la fin du scan copier Et coller le rapport ici.

-> Une aide en image au cas ou :

Tutoriel d´installation et de parametrages :

http://www.kachouri.com/tuto/tuto-161-avg-anti-spyware-75-pour-votre-securite.html

@+
0
Réponse 15 / 34
momo5418 Messages postés 16 Date d'inscription vendredi 19 octobre 2007 Statut Membre Dernière intervention 2 novembre 2007
30 oct. 2007 à 13:22
je vien de faire le scan et il a trouve 3 traces et il me demande de les supprime ou supprime au demarrages que dois je faire
0
Réponse 16 / 34
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406
30 oct. 2007 à 20:55
re,

peux tu m´envoyer le rapport stp

@+
0
Réponse 17 / 34
ludi
30 oct. 2007 à 20:57
slt j'ai aussi attrapé le virus nokia 19 par msn, mon ordi a beugué pdt 3 jours, j'ai réussi à le supprimer de mon ordi grace à avast mais ce dernier est tjs ds msn messenger.Comment faire?merci
0
Réponse 18 / 34
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406
30 oct. 2007 à 21:44
bonsoir ludi,

Il serait préférable que tu fasses ton message personnel, cela rendra les postes plus compréhensibles et la réponse à ton problème sera plus efficace
Procèdes comme ceci :
http://pageperso.aol.fr/balltrap34/demofairesontmessage.htm

A bientôt ''
0
Réponse 19 / 34
momo5418 Messages postés 16 Date d'inscription vendredi 19 octobre 2007 Statut Membre Dernière intervention 2 novembre 2007
31 oct. 2007 à 09:40
g!rly je peut pas t'envoier le rapport car il met aucun rapport disponible
0
Réponse 20 / 34
g!rly Messages postés 18209 Date d'inscription vendredi 17 août 2007 Statut Contributeur Dernière intervention 30 novembre 2014 406
31 oct. 2007 à 10:59
salut momo,

bon, peux tu me dire quelles sont les trois traces qu´il a trouvés?

apres supprime les si tu ne l´as pas deja fais...
0

Discussions similaires

Detection PUA: win32 Installcore
Nat -
bazfile -

13 réponses
Problème avec "PUADIManager:Win32/OfferCore
Knaki -
bazfile -

3 réponses
Menaces HackTool:Win32
LeMax5993 -
lisa4777 -

4 réponses
PUABundler:Win32/CandyOpen : dangereux ?
joubine -
bazfile -

2 réponses
infecté par HackTool:Win32/AutoKMS
fredo1968 -
fredo1968 -

5 réponses