Sujet Précédent Sujet Suivant

Mon processeur

Fermé
Sismix84 Messages postés 83 Statut Membre -  
Sismix84 Messages postés 83 Statut Membre -
Bonsoir,

Je vous explique mon problème. Comme tout PC, le CPU ne devrais pas être actif si l'ordi n'est pas utilisé, mais le mien si. Grâce au gadget de Vista, je peut voir l'activité de mon processeur, et il atteins les 30% même plus, sans que je l'utilise. J'avais posté dans la section Windows et ont ma dit de venir poster mon problème ici avec un rapport HijackThis, le voici :

Logfile of HijackThis v1.99.1
Scan saved at 12:44:28, on 31/05/2008
Platform: Unknown Windows (WinNT 6.00.1905 SP1)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\hp\support\hpsysdrv.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd2.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Windows\Pixart\Pac7302\Monitor.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\System32\rundll32.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\Web Accelerator\googlewebaccclient.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
C:\hp\kbd\kbd.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\João Filipe\Desktop\hijackthis_199\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.atcomet.com/b/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr?cobrand=hp-desktop.msn.com&ocid=HPDHP&pc=HPDTDF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://www.bing.com/?toHttps=1&redig=5FC791212101479BAFBE1A679848B1AF
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ustart.org
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://localhost:9100/proxy.pac
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll
O2 - BHO: &Google Web Accelerator Helper - {69A87B7D-DE56-4136-9655-716BA50C19C7} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - C:\PROGRA~1\STARDO~1\SDIEInt.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [PAC7302_Monitor] C:\Windows\PixArt\PAC7302\Monitor.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\VistaCodecPack\QT\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Shim Fork] "C:\ProgramData\gram hold hold.4bgp1af"
O4 - HKLM\..\Run: [Frag Ooze Cash Scr] "C:\ProgramData\Trans Chic Drive.4gmje"
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - Startup: Moteur du Planificateur de tâches SolidWorks.lnk = C:\Program Files\SolidWorks\swScheduler\swBOEngine.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Run Google Web Accelerator.lnk = C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Barre RoboForm - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Enregistrer le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: Personnaliser le menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Remplir le formulaire - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: Télécharger avec Star Downloader - C:\Program Files\Star Downloader\sdie.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Remplir - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Remplir le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Enregistrer - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Enregistrer le formulaire - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: Barre RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll/206 (file missing)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
O11 - Options group: [INTERNATIONAL] International*
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll
O20 - Winlogon Notify: WBSrv - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Maxtor Service (Maxtor Sync Service) - Seagate Technology LLC - C:\Program Files\Maxtor\Sync\SyncServices.exe
O23 - Service: MSSQL$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe (file missing)
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
O23 - Service: SolidWorks Licensing Service - Unknown owner - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe (file missing)
O23 - Service: SQLAgent$SONY_MEDIAMGR - Unknown owner - C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE (file missing)
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: @%SystemRoot%\System32\TuneUpDefragService.exe,-1 (TuneUp.Defrag) - TuneUp Software GmbH - C:\Windows\System32\TuneUpDefragService.exe
O23 - Service: Stardock WindowBlinds (WindowBlinds) - Stardock Corporation - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\VistaSrv.exe
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)

Merci d'avance.

26 réponses

Précédent
  • 1
  • 2
Réponse 21 / 26
papyber Messages postés 6430 Statut Contributeur sécurité 257
 
quand tu peux....
0
Réponse 22 / 26
Sismix84 Messages postés 83 Statut Membre 2
 
Salut, je poste le résultat du scan :

ComboFix 08-06-20.4 - João Filipe 2008-07-01 13:53:55.1 - NTFSx86
Microsoft® Windows Vista™ Édition Familiale Premium 6.0.6001.1.1252.1.1036.18.275 [GMT 2:00]
Endroit: C:\Users\João Filipe\Desktop\ComboFix.exe
* Création d'un nouveau point de restauration
.

(((((((((((((((((((((((((((((((((((( Autres suppressions ))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Users\JOOFIL~1\AppData\Roaming\macromedia\Flash Player\#SharedObjects\CQFNS7ZB\iforex.com
C:\Users\JOOFIL~1\AppData\Roaming\macromedia\Flash Player\#SharedObjects\CQFNS7ZB\iforex.com\Emerp\Events\flash_object.swf\user_data.sol
C:\Users\JOOFIL~1\AppData\Roaming\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com
C:\Users\JOOFIL~1\AppData\Roaming\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com\settings.sol
C:\Users\Maria de Fatima\AppData\Roaming\macromedia\Flash Player\#SharedObjects\GH7E9HVB\iforex.com
C:\Users\Maria de Fatima\AppData\Roaming\macromedia\Flash Player\#SharedObjects\GH7E9HVB\iforex.com\Emerp\Events\flash_object.swf\user_data.sol
C:\Users\Maria de Fatima\AppData\Roaming\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com
C:\Users\Maria de Fatima\AppData\Roaming\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#iforex.com\settings.sol

.
((((((((((((((((((((((((((((( Fichiers créés 2008-06-01 to 2008-07-01 ))))))))))))))))))))))))))))))))))))
.

2008-06-29 14:15 . 2008-06-29 14:15 <REP> d-------- C:\Users\Marie-Alice\AppData\Roaming\Subversion
2008-06-29 10:46 . 2008-06-29 10:46 <REP> d-------- C:\Program Files\Common Files\Macrovision Shared
2008-06-28 20:40 . 2008-06-28 20:40 <REP> d--hs---- C:\Windows\ftpcache
2008-06-28 20:40 . 2008-06-28 20:41 <REP> d-------- C:\Program Files\McDonaldsDragons
2008-06-28 17:59 . 2008-06-28 17:59 355,584 --a------ C:\Windows\System32\TuneUpDefragService.exe
2008-06-28 17:59 . 2008-05-29 09:28 28,416 --a------ C:\Windows\System32\uxtuneup.dll
2008-06-28 17:59 . 2008-05-29 09:28 16,640 --a------ C:\Windows\System32\authuitu.dll
2008-06-26 17:30 . 2008-06-26 17:30 <REP> d-------- C:\Users\João\AppData\Roaming\Subversion
2008-06-21 09:45 . 2008-06-21 09:50 <REP> d-------- C:\Users\João\AppData\Roaming\Real
2008-06-21 09:45 . 2008-06-21 09:46 <REP> d-------- C:\Users\João\AppData\Roaming\Adobe
2008-06-20 14:55 . 2008-06-20 14:55 <REP> d-------- C:\Program Files\Opera
2008-06-15 17:33 . 2008-06-15 17:33 <REP> d-------- C:\Users\Public\Notepad++
2008-06-15 10:49 . 2008-04-23 06:42 428,544 --a------ C:\Windows\System32\EncDec.dll
2008-06-15 10:48 . 2008-04-23 06:42 293,376 --a------ C:\Windows\System32\psisdecd.dll
2008-06-15 10:48 . 2008-04-23 06:41 218,624 --a------ C:\Windows\System32\psisrndr.ax
2008-06-15 10:48 . 2008-04-23 06:41 57,856 --a------ C:\Windows\System32\MSDvbNP.ax
2008-06-14 21:48 . 2008-06-14 21:48 <REP> d-------- C:\Program Files\LaBoiteACouleurs
2008-06-14 19:18 . 2008-06-14 19:18 <REP> d-------- C:\Users\All Users\Pinnacle VideoSpin
2008-06-14 19:18 . 2008-06-14 19:18 <REP> d-------- C:\ProgramData\Pinnacle VideoSpin
2008-06-14 19:12 . 2008-06-14 19:12 <REP> d-------- C:\Users\All Users\VideoSpin
2008-06-14 19:12 . 2008-06-14 19:12 <REP> d-------- C:\ProgramData\VideoSpin
2008-06-14 19:12 . 2008-06-14 19:12 <REP> d-------- C:\Program Files\Common Files\Yahoo!
2008-06-14 19:08 . 2008-06-14 19:08 <REP> d-------- C:\Users\All Users\Pinnacle
2008-06-14 19:08 . 2008-06-14 19:08 <REP> d-------- C:\ProgramData\Pinnacle
2008-06-13 21:53 . 2008-06-13 21:53 <REP> d-------- C:\Program Files\OpenAL
2008-06-13 21:53 . 2007-10-12 15:14 3,734,536 --a------ C:\Windows\System32\d3dx9_36.dll
2008-06-13 21:53 . 2008-06-13 21:53 413,696 --a------ C:\Windows\System32\wrap_oal.dll
2008-06-13 21:53 . 2008-06-13 21:53 110,592 --a------ C:\Windows\System32\OpenAL32.dll
2008-06-13 21:34 . 2008-06-13 21:42 <REP> d-------- C:\Downloads
2008-06-12 19:33 . 2008-06-12 19:33 <REP> d-------- C:\Users\All Users\FLEXnet
2008-06-12 19:33 . 2008-06-12 19:33 <REP> d-------- C:\ProgramData\FLEXnet
2008-06-12 19:03 . 2007-02-20 16:04 2,463,976 --a------ C:\Windows\System32\NPSWF32.dll
2008-06-12 19:03 . 2007-02-20 16:04 190,696 --a------ C:\Windows\System32\NPSWF32_FlashUtil.exe
2008-06-12 18:55 . 2008-06-12 18:55 <REP> d-------- C:\Program Files\Bonjour
2008-06-11 14:54 . 2008-05-10 05:35 885,248 --a------ C:\Windows\System32\RacEngn.dll
2008-06-11 14:54 . 2008-05-10 00:22 9,127 --a------ C:\Windows\System32\RacUR.xml
2008-06-11 14:54 . 2008-05-10 00:22 153 --a------ C:\Windows\System32\RacUREx.xml
2008-06-11 14:52 . 2008-04-25 04:12 1,383,424 --a------ C:\Windows\System32\mshtml.tlb
2008-06-11 14:52 . 2008-04-26 10:08 1,314,816 --a------ C:\Windows\System32\quartz.dll
2008-06-11 14:52 . 2008-04-25 06:35 826,880 --a------ C:\Windows\System32\wininet.dll
2008-06-11 14:52 . 2008-05-10 03:33 113,664 --a------ C:\Windows\System32\drivers\rmcast.sys
2008-06-10 18:22 . 2008-06-10 22:51 <REP> d-------- C:\Users\JOOFIL~1\AppData\Roaming\Notepad++
2008-06-10 18:22 . 2008-06-10 18:22 <REP> d-------- C:\Program Files\Notepad++
2008-06-09 18:52 . 2008-06-09 18:52 <REP> d-------- C:\Deckard
2008-06-07 09:47 . 2008-06-07 09:47 <REP> d-------- C:\Users\Public\w810
2008-06-07 09:23 . 2008-06-07 09:40 <REP> d-------- C:\Users\JOOFIL~1\AppData\Roaming\TeamViewer
2008-06-07 09:22 . 2008-06-07 09:23 <REP> d-------- C:\Program Files\TeamViewer3
2008-06-07 09:21 . 2008-06-07 09:21 <REP> d-------- C:\Users\João Filipe\temp
2008-06-07 09:21 . 2008-06-07 09:21 <REP> d-------- C:\Users\João Filipe\temp
2008-06-06 19:37 . 2008-06-06 19:37 <REP> d-------- C:\Program Files\Rockstar Games
2008-06-05 14:08 . 2008-06-05 14:08 <REP> d-------- C:\Users\All Users\Avira
2008-06-05 14:08 . 2008-06-05 14:08 <REP> d-------- C:\ProgramData\Avira
2008-06-05 14:08 . 2008-06-05 14:08 <REP> d-------- C:\Program Files\Avira
2008-06-04 15:14 . 2008-06-04 15:14 <REP> d-------- C:\Windows\System32\Kaspersky Lab
2008-06-04 14:48 . 2008-06-04 14:48 <REP> d-------- C:\Users\All Users\phenomedia
2008-06-04 14:48 . 2008-06-04 14:48 <REP> d-------- C:\ProgramData\phenomedia
2008-06-04 14:48 . 2008-06-04 14:48 <REP> d-------- C:\Program Files\phenomedia
2008-06-04 11:26 . 2007-04-26 21:23 <REP> d--h----- C:\hp
2008-06-04 11:23 . 2008-06-04 11:23 <REP> d-------- C:\Windows\System32\OEM
2008-06-04 11:23 . 2007-03-01 23:07 <REP> d-------- C:\Windows\Panther
2008-06-04 11:23 . 2008-04-11 11:26 <REP> d--hs---- C:\Boot
2008-06-04 11:23 . 2008-01-19 09:45 333,203 -rahs---- C:\bootmgr
2008-06-04 11:22 . 2008-06-28 15:54 714,390 --a------ C:\Windows\System32\perfh00C.dat
2008-06-04 11:22 . 2008-06-04 11:20 340,236 --a------ C:\Windows\System32\perfi00C.dat
2008-06-04 11:22 . 2008-06-28 15:54 143,166 --a------ C:\Windows\System32\perfc00C.dat
2008-06-04 11:22 . 2008-06-04 11:20 37,390 --a------ C:\Windows\System32\perfd00C.dat
2008-06-04 11:21 . 2008-03-22 18:20 <REP> d-------- C:\Windows\System32\fr
2008-06-04 11:21 . 2008-03-22 18:20 <REP> d-------- C:\Windows\System32\drivers\fr-FR
2008-06-04 11:21 . 2008-06-04 11:21 <REP> d-------- C:\Windows\System32\[u]0/u40C
2008-06-04 11:21 . 2008-06-04 11:21 <REP> d-------- C:\Windows\fr-FR
2008-06-04 01:34 . 2006-09-07 19:13 1,060,864 --a------ C:\Windows\System32\mfc71.dll
2008-06-04 01:34 . 2006-09-07 19:13 348,160 --a------ C:\Windows\System32\msvcr71.dll
2008-06-04 01:34 . 2006-07-16 23:23 327,680 --a------ C:\Windows\System32\pythoncom24.dll
2008-06-04 01:34 . 2006-07-16 23:15 102,400 --a------ C:\Windows\System32\pywintypes24.dll
2008-06-04 01:33 . 2008-06-29 10:59 <REP> d--hs---- C:\Windows\Installer
2008-06-04 01:28 . 2007-11-21 17:36 <REP> d-------- C:\Windows\Debug
2008-06-03 21:44 . 2008-05-30 01:06 34,296 --a------ C:\Windows\System32\drivers\mbamcatchme.sys
2008-06-03 21:44 . 2008-05-30 01:06 15,864 --a------ C:\Windows\System32\drivers\mbam.sys
2008-06-03 19:16 . 2008-06-03 19:16 203,776 --a------ C:\Windows\System32\clrviddc.dll
2008-06-03 19:16 . 1997-06-11 19:01 30,208 --a------ C:\Windows\System32\wnaspi32.BAK
2008-06-03 19:16 . 1999-09-10 13:06 25,244 --a------ C:\Windows\System32\drivers\aspi32.sys
2008-06-03 19:16 . 1999-09-10 13:06 4,672 --a------ C:\Windows\system\wowpost.exe
2008-06-03 19:16 . 1999-10-22 17:58 4,030 --a------ C:\Windows\system\winaspi.BAK
2008-06-02 12:40 . 2008-06-02 12:40 <REP> d-------- C:\Program Files\SpeedFan
2008-06-02 12:40 . 2008-06-02 12:40 45 --a------ C:\Windows\System32\initdebug.nfo
2008-06-01 15:48 . 2008-06-01 16:03 <REP> d-------- C:\Lop SD
2008-06-01 14:44 . 2008-06-01 14:44 <REP> d-------- C:\Users\Daniel\AppData\Roaming\Subversion

.
(((((((((((((((((((((((((((((((((( Compte-rendu de Find3M ))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-07-01 12:01 8,650,752 ----a-w C:\Users\João Filipe\ntuser.dat
2008-07-01 12:01 8,650,752 ----a-w C:\Users\João Filipe\ntuser.dat
2008-07-01 11:53 3,932,160 --sha-w C:\Users\João\NTUSER.DAT
2008-07-01 11:53 3,932,160 --sha-w C:\Users\João\NTUSER.DAT
2008-07-01 08:50 3,698 ----a-w C:\Users\Maria de Fatima\AppData\Roaming\wklnhst.dat
2008-06-29 08:55 --------- d-----w C:\Program Files\Common Files\Adobe
2008-06-28 15:59 --------- d-----w C:\Program Files\TuneUp Utilities 2008
2008-06-26 15:30 --------- d-----w C:\Users\João\AppData\Roaming\Subversion
2008-06-21 07:50 --------- d-----w C:\Users\João\AppData\Roaming\Real
2008-06-21 07:46 --------- d-----w C:\Users\João\AppData\Roaming\Adobe
2008-06-20 15:44 --------- d-----w C:\Program Files\Steam
2008-06-14 17:12 --------- d-----w C:\Program Files\Pinnacle
2008-06-14 10:12 6,854 ----a-w C:\Users\JOOFIL~1\AppData\Roaming\wklnhst.dat
2008-06-12 07:35 --------- d-----w C:\Program Files\Common Files\Steam
2008-06-11 19:29 --------- d-----w C:\Program Files\Windows Mail
2008-06-06 17:37 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-06-03 19:44 --------- d-----w C:\Program Files\Malwarebytes' Anti-Malware
2008-05-29 16:40 --------- d-----w C:\Users\JOOFIL~1\AppData\Roaming\MessengerGadget
2008-05-27 16:27 --------- d-----w C:\Program Files\SoftwareClub.ws
2008-05-26 10:25 --------- d-----w C:\Users\Maria de Fatima\AppData\Roaming\Subversion
2008-05-24 13:28 --------- d-----w C:\Program Files\OpenOffice.org 2.4
2008-05-24 13:27 --------- d-----w C:\Program Files\OpenOffice.org 2.3
2008-05-24 13:20 --------- d-----w C:\Program Files\Java
2008-05-24 12:31 --------- d-----w C:\Users\JOOFIL~1\AppData\Roaming\OpenOffice.org2
2008-05-23 07:09 --------- d-----w C:\Users\JOOFIL~1\AppData\Roaming\Subversion
2008-05-23 07:04 --------- d-----w C:\Program Files\TortoiseSVN
2008-05-20 06:01 --------- d-----w C:\Program Files\Microsoft Silverlight
2008-05-17 20:06 --------- d-----w C:\Program Files\Sony
2008-05-17 20:05 --------- d-----w C:\ProgramData\Sony
2008-05-14 14:35 --------- d-----w C:\Program Files\Messenger Plus! Live
2008-05-09 15:52 --------- d-----w C:\Program Files\Project64 1.7 Beta
2008-05-07 15:05 --------- d-----w C:\ProgramData\Skyline
2008-05-07 14:24 --------- d-----w C:\Program Files\Autodesk
2008-05-07 14:22 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-05-07 14:21 --------- d-----w C:\Users\JOOFIL~1\AppData\Roaming\Lavasoft
2008-05-05 16:56 --------- d-----w C:\Program Files\NRJ
2008-05-05 16:55 --------- d-----w C:\Program Files\Ubisoft
2008-05-05 16:52 --------- d-----w C:\Program Files\SolidWorks
2008-05-03 20:50 --------- d-----w C:\ProgramData\TrackMania
2008-04-16 17:16 2,560 ----a-w C:\Windows\System32\bitcometres.dll
2008-04-01 09:54 319,456 ----a-w C:\Windows\DIFxAPI.dll
2008-04-01 09:54 315,392 ----a-w C:\Windows\HideWin.exe
2008-03-22 16:31 174 --sha-w C:\Program Files\desktop.ini
2007-12-20 12:46 364 ----a-w C:\Users\Daniel\AppData\Roaming\wklnhst.dat
2007-06-23 17:23 47,360 ----a-w C:\Users\JOOFIL~1\AppData\Roaming\pcouffin.sys
2007-06-12 17:43 94 ----a-w C:\Users\Marie-Alice\AppData\Roaming\wklnhst.dat
2007-05-18 10:47 22 --sha-w C:\Windows\SMINST\HPCD.sys
.

((((((((((((((((((((((((((((((((( Point de chargement Reg )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
REGEDIT4
*Note* les éléments vides & les éléments initiaux légitimes ne sont pas listés

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseSVN]
@={30351346-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseSVN]
@={30351347-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseSVN]
@={30351348-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseSVN]
@={3035134B-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseSVN]
@={3035134C-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseSVN]
@={3035134D-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseSVN]
@={3035134E-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_CLASSES_ROOT\CLSID\{30351346-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{30351347-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{30351348-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134B-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134C-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134D-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134E-7B7D-4FCC-81B4-1E394CA267EB}]
2008-01-05 14:03 536576 --a------ C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2008-01-19 09:33 125952]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-19 09:33 1233920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2006-09-28 15:42 65536]
"OsdMaestro"="C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" [2006-11-20 13:34 155648]
"KBD"="C:\HP\KBD\KbdStub.EXE" [2006-12-08 17:16 65536]
"RtHDVCpl"="RtHDVCpl.exe" [2008-01-15 11:26 4874240 C:\Windows\RtHDVCpl.exe]
"HP Software Update"="C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe" [2006-12-10 21:52 49152]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" [2007-06-13 08:16 528384]
"PAC7302_Monitor"="C:\Windows\PixArt\PAC7302\Monitor.exe" [2006-11-03 12:01 319488]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" [2008-03-25 04:28 144784]
"QuickTime Task"="C:\Program Files\VistaCodecPack\QT\QTTask.exe" [2008-03-28 23:37 413696]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-03-30 10:36 267048]
"NvSvc"="C:\Windows\system32\nvsvc.dll" [2007-12-11 17:06 86016]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2007-12-11 17:06 8530464]
"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2007-12-11 17:06 81920]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2008-04-25 19:06 185896]
"Shim Fork"="C:\ProgramData\gram hold hold.4bgp1af" [ ]
"Frag Ooze Cash Scr"="C:\ProgramData\Trans Chic Drive.4gmje" [ ]
"avgnt"="C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" [2008-02-12 10:06 262401]
"WPCUMI"="C:\Windows\system32\WpcUmi.exe" [2006-11-02 14:35 176128]
"Adobe_ID0EYTHM"="C:\PROGRA~1\COMMON~1\Adobe\ADOBEV~1\Server\bin\VERSIO~2.EXE" [2007-03-20 16:40 1884160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"="C:\Windows\SMINST\launcher.exe" [2006-11-24 17:20 44136]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe [2007-01-02 21:40:10 210520]
Run Google Web Accelerator.lnk - C:\Program Files\Google\Web Accelerator\GoogleWebAccWarden.exe [2007-07-09 23:24:38 1134592]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"FilterAdministratorToken"= 1 (0x1)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"LogonHoursAction"= 2 (0x2)
"DontDisplayLogonHoursWarnings"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv]
C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll 2007-03-07 11:08 112304 C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\WbSrv.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.mjpg"= pvmjpg30.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"mxomssmenu"="C:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe"
"QuickTime Task"="C:\Program Files\VistaCodecPack\QT\QTTask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UacDisableNotify"=dword:00000001
"InternetSettingsDisableNotify"=dword:00000001
"AutoUpdateDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"TCP Query User{659F64FD-F2BC-4F74-A06B-FC6D983DE9C8}C:\\program files\\valve\\steam\\steamapps\\sismix84\\condition zero\\hl.exe"= UDP:C:\program files\valve\steam\steamapps\sismix84\condition zero\hl.exe:Half-Life Launcher
"UDP Query User{AE180A44-6782-4519-A1DB-1C934F099F99}C:\\program files\\valve\\steam\\steamapps\\sismix84\\condition zero\\hl.exe"= TCP:C:\program files\valve\steam\steamapps\sismix84\condition zero\hl.exe:Half-Life Launcher
"{54396A3D-96A2-493D-960B-52329600DFDC}"= UDP:C:\Program Files\Electronic Arts\Battlefield 2142\BF2142.exe:Battlefield 2
"{6156A217-43FE-42C7-B700-69FFFCA21829}"= TCP:C:\Program Files\Electronic Arts\Battlefield 2142\BF2142.exe:Battlefield 2
"{38CAAF10-7703-4BEE-A19A-45C532FDCECE}"= UDP:1993:Port 1
"{55F60C63-EDB8-4DE6-9962-14EBB9EC9CD6}"= TCP:1994:Port 2
"{66DC03B1-B5F0-4133-A0F2-37BA241414A9}"= TCP:7777:Port 3
"TCP Query User{A59A0AA9-6DBF-4D56-878B-2A5DEE72F740}C:\\program files\\motorola\\software update\\msu.exe"= UDP:C:\program files\motorola\software update\msu.exe:msu
"UDP Query User{C2CD1A22-CD92-49C8-A3CC-DAF40CDCA4ED}C:\\program files\\motorola\\software update\\msu.exe"= TCP:C:\program files\motorola\software update\msu.exe:msu
"TCP Query User{1B41E54F-D540-4982-A59C-09DABA2A1630}C:\\program files\\valve\\steam\\steam.exe"= UDP:C:\program files\valve\steam\steam.exe:Steam
"UDP Query User{7C0099C3-B86A-4AC7-97D8-19A4A59B8121}C:\\program files\\valve\\steam\\steam.exe"= TCP:C:\program files\valve\steam\steam.exe:Steam
"TCP Query User{336A7E20-52E9-410F-8B35-857660080C8F}C:\\program files\\mta san andreas\\server\\mta server.exe"= UDP:C:\program files\mta san andreas\server\mta server.exe:MTA Server
"UDP Query User{5DD8E38E-43A9-4EDF-8DC3-FF2610D7CFD6}C:\\program files\\mta san andreas\\server\\mta server.exe"= TCP:C:\program files\mta san andreas\server\mta server.exe:MTA Server
"TCP Query User{E9982794-CF24-4318-93EB-24C9E3B9F7EC}L:\\msn messenger\\msnmsgr.exe"= UDP:L:\msn messenger\msnmsgr.exe:Messenger
"UDP Query User{9C121950-8FCE-47BC-8195-64C05BE226FE}L:\\msn messenger\\msnmsgr.exe"= TCP:L:\msn messenger\msnmsgr.exe:Messenger
"{D87742EE-0413-4E29-A8E9-B06D015727A3}"= C:\Program Files\Windows Live\Messenger\livecall.exe:Windows Live Messenger (Phone)
"TCP Query User{87A2F41D-93F5-46F6-9625-76997CA41931}C:\\program files\\ubisoft\\tom clancy's splinter cell chaos theory\\system\\splintercell3.exe"= UDP:C:\program files\ubisoft\tom clancy's splinter cell chaos theory\system\splintercell3.exe:splintercell3
"UDP Query User{E9237F38-E740-494D-8BA6-744E69B29770}C:\\program files\\ubisoft\\tom clancy's splinter cell chaos theory\\system\\splintercell3.exe"= TCP:C:\program files\ubisoft\tom clancy's splinter cell chaos theory\system\splintercell3.exe:splintercell3
"TCP Query User{5570368E-4F8C-4009-9B03-7D8C0A0240EF}C:0\\program files\\emule\\emule.exe"= UDP:C:0\program files\emule\emule.exe:emule.exe
"UDP Query User{C3FDCE3F-DE23-4377-88EE-BC0F253409A3}C:0\\program files\\emule\\emule.exe"= TCP:C:0\program files\emule\emule.exe:emule.exe
"{9916D77B-BF06-44A9-B3AB-087AD575D385}"= UDP:C:\Program Files\Autodesk\Backburner\monitor.exe:backburner 2.3 monitor
"{B2693690-8D92-4D8C-B37D-A1B6F6254D03}"= TCP:C:\Program Files\Autodesk\Backburner\monitor.exe:backburner 2.3 monitor
"{FF76C4A1-7998-4E54-9735-D29203F84546}"= UDP:C:\Program Files\Autodesk\Backburner\manager.exe:backburner 2.3 manager
"{970C17CF-A367-4996-9636-CDBC3F6FBD44}"= TCP:C:\Program Files\Autodesk\Backburner\manager.exe:backburner 2.3 manager
"{8222D988-A161-40F4-ACC1-D82C00FF6ED7}"= UDP:C:\Program Files\Autodesk\Backburner\server.exe:backburner 2.3 server
"{B91236E9-7664-491F-9C20-7A01B2E48EDB}"= TCP:C:\Program Files\Autodesk\Backburner\server.exe:backburner 2.3 server
"TCP Query User{993959BE-1FEB-469C-B972-145403335E26}E:\\program files\\emule\\emule.exe"= UDP:E:\program files\emule\emule.exe:eMule
"UDP Query User{5CDB1BB5-66A7-47CE-BB2D-4C3142E8FB32}E:\\program files\\emule\\emule.exe"= TCP:E:\program files\emule\emule.exe:eMule
"{BB29BC9B-989F-468B-8197-DA881776EB16}"= UDP:C:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe:Zoo Tycoon 2 Executable
"{577FF9D7-366F-4A3A-9CB5-09C908CA4B35}"= TCP:C:\Program Files\Microsoft Games\Zoo Tycoon 2\zt.exe:Zoo Tycoon 2 Executable
"TCP Query User{651CA27C-4256-461C-A63F-18E4CB12E4CF}C:\\program files\\valve\\steam\\steamapps\\user\\counter-strike source\\hl2.exe"= UDP:C:\program files\valve\steam\steamapps\user\counter-strike source\hl2.exe:hl2
"UDP Query User{DB205CAC-D2BF-426F-BE1D-4FE9C022B22B}C:\\program files\\valve\\steam\\steamapps\\user\\counter-strike source\\hl2.exe"= TCP:C:\program files\valve\steam\steamapps\user\counter-strike source\hl2.exe:hl2
"TCP Query User{0E6A958A-20E0-40F9-A297-FC0DC4767AE0}C:\\program files\\valve\\steam\\steamapps\\user\\half-life 2\\hl2.exe"= UDP:C:\program files\valve\steam\steamapps\user\half-life 2\hl2.exe:hl2
"UDP Query User{1D852A0D-108A-48CD-A748-395701CA9DCB}C:\\program files\\valve\\steam\\steamapps\\user\\half-life 2\\hl2.exe"= TCP:C:\program files\valve\steam\steamapps\user\half-life 2\hl2.exe:hl2
"TCP Query User{2F2C591A-43D5-4552-AF88-9B910D6AADF1}C:\\windows\\system32\\dplaysvr.exe"= UDP:C:\windows\system32\dplaysvr.exe:Application d'assistance Microsoft DirectPlay
"UDP Query User{6816689D-DB85-44BD-95E0-F936C37BFE09}C:\\windows\\system32\\dplaysvr.exe"= TCP:C:\windows\system32\dplaysvr.exe:Application d'assistance Microsoft DirectPlay
"TCP Query User{22A3003E-DB78-4768-9AAF-5DAD9F534CD6}C:\\program files\\half-life 2\\hl2.exe"= UDP:C:\program files\half-life 2\hl2.exe:hl2
"UDP Query User{B30A805D-0EBD-4CE9-AAD0-E5BAD62DFC64}C:\\program files\\half-life 2\\hl2.exe"= TCP:C:\program files\half-life 2\hl2.exe:hl2
"{8783D613-2C3C-4D35-B510-33CAD18B3E89}"= UDP:E:\Program Files\uTorrent\uTorrent.exe:µTorrent
"{E9BAE9D4-9770-4C7D-8D37-A12DA835D8C2}"= TCP:E:\Program Files\uTorrent\uTorrent.exe:µTorrent
"{D005F636-984D-4A31-AA53-67CD3A4397BA}"= UDP:C:\Program Files\uTorrent\uTorrent.exe:µTorrent
"{6F995844-2077-4E01-9C14-CE00B0BF7C70}"= TCP:C:\Program Files\uTorrent\uTorrent.exe:µTorrent
"{B0676D14-4784-478B-A4D9-9DA81BABC567}"= UDP:1990:Port 4
"TCP Query User{0D1703CD-4FB8-4B41-9C31-90E79241C1D5}C:\\program files\\valve\\steam\\steamapps\\sismix84\\counter-strike\\hl.exe"= UDP:C:\program files\valve\steam\steamapps\sismix84\counter-strike\hl.exe:Half-Life Launcher
"UDP Query User{FC3B8BF6-6462-4E95-9DD1-5033DB63048B}C:\\program files\\valve\\steam\\steamapps\\sismix84\\counter-strike\\hl.exe"= TCP:C:\program files\valve\steam\steamapps\sismix84\counter-strike\hl.exe:Half-Life Launcher
"TCP Query User{34AF4D0A-F883-4521-A1FA-DFA6154C125E}C:\\program files\\valve\\steam\\steamapps\\sismix84\\condition zero deleted scenes\\hl.exe"= UDP:C:\program files\valve\steam\steamapps\sismix84\condition zero deleted scenes\hl.exe:Half-Life Launcher
"UDP Query User{9A111C94-95E4-4BDA-A760-46F295C345FB}C:\\program files\\valve\\steam\\steamapps\\sismix84\\condition zero deleted scenes\\hl.exe"= TCP:C:\program files\valve\steam\steamapps\sismix84\condition zero deleted scenes\hl.exe:Half-Life Launcher
"{DEE263DE-93C4-4548-BC10-10336B6684ED}"= UDP:E:\utorrent.exe:µTorrent
"{B1148095-606F-42DA-99A5-5CDFE5AC4544}"= TCP:E:\utorrent.exe:µTorrent
"{E925C19E-CD32-4F14-92CD-28F4A6A6B153}"= UDP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{1C065937-FAE3-49D1-9574-3D607F0E2FAB}"= TCP:C:\Program Files\iTunes\iTunes.exe:iTunes
"{9D78701C-64D6-4B8C-AC04-5CC861A8700B}"= UDP:27182:BitCometBeta 27182 TCP
"{2864126A-60F8-45FE-A480-CCF5078BAAAB}"= TCP:27182:BitCometBeta 27182 UDP
"TCP Query User{4DCC65A5-C76B-4841-8C62-369C88797E00}E:\\program files\\bitcomet\\bitcomet.exe"= UDP:E:\program files\bitcomet\bitcomet.exe:BitCometBeta - a BitTorrent Client
"UDP Query User{647EBE3E-96D4-464A-A6E1-136CCB6A0A84}E:\\program files\\bitcomet\\bitcomet.exe"= TCP:E:\program files\bitcomet\bitcomet.exe:BitCometBeta - a BitTorrent Client
"{3B624316-7AAA-4C56-8BC2-58F20D678D91}"= TCP:1990:BitCometBeta 1990 UDP
"TCP Query User{CBF8BF1C-53BE-40A8-9BF8-B20AE3151222}C:\\program files\\steam\\steamapps\\common\\trackmania nations forever\\tmforever.exe"= UDP:C:\program files\steam\steamapps\common\trackmania nations forever\tmforever.exe:TmForever
"UDP Query User{6971578A-888F-469A-B0CD-8F2E0CEF7844}C:\\program files\\steam\\steamapps\\common\\trackmania nations forever\\tmforever.exe"= TCP:C:\program files\steam\steamapps\common\trackmania nations forever\tmforever.exe:TmForever
"TCP Query User{C1860E28-EB6C-4C75-95D0-31A50177353B}C:\\program files\\steam\\steamapps\\sismix84\\source sdk base\\hl2.exe"= UDP:C:\program files\steam\steamapps\sismix84\source sdk base\hl2.exe:hl2
"UDP Query User{F3C0B706-3A08-4C8B-85BA-7BD5ACC5611E}C:\\program files\\steam\\steamapps\\sismix84\\source sdk base\\hl2.exe"= TCP:C:\program files\steam\steamapps\sismix84\source sdk base\hl2.exe:hl2
"TCP Query User{16704AB4-3FB6-47E8-BFEA-1039B260FDCB}C:\\program files\\steam\\steamapps\\sismix84\\garrysmod\\hl2.exe"= UDP:C:\program files\steam\steamapps\sismix84\garrysmod\hl2.exe:hl2
"UDP Query User{1605D756-1EB3-401B-B180-A11A78F1B018}C:\\program files\\steam\\steamapps\\sismix84\\garrysmod\\hl2.exe"= TCP:C:\program files\steam\steamapps\sismix84\garrysmod\hl2.exe:hl2
"TCP Query User{C65680A3-D450-4184-AF21-E0D9BD6CC061}C:\\program files\\codemasters\\dirt demo\\dirtdemo.exe"= UDP:C:\program files\codemasters\dirt demo\dirtdemo.exe:DiRT Demo Executable
"UDP Query User{C410DE0A-1050-44EF-9238-C11F4DA070DE}C:\\program files\\codemasters\\dirt demo\\dirtdemo.exe"= TCP:C:\program files\codemasters\dirt demo\dirtdemo.exe:DiRT Demo Executable
"{8D33CC54-D48A-4D4B-9B4A-F7973F059B01}"= UDP:58904:Pando P2P TCP Listening Port
"{ECAA1BA4-6930-4919-B98F-386E79C8F67F}"= TCP:58904:Pando P2P UDP Listening Port
"TCP Query User{C81B2AD2-8231-4CCB-951D-D76444B58A12}C:\\program files\\windows sidebar\\sidebar.exe"= UDP:C:\program files\windows sidebar\sidebar.exe:Volet Windows
"UDP Query User{2B9BBE5E-B30B-4BA2-A46B-28F8C3DD00E3}C:\\program files\\windows sidebar\\sidebar.exe"= TCP:C:\program files\windows sidebar\sidebar.exe:Volet Windows
"{4DFFC499-0582-4E96-8ABA-28927889F42A}"= UDP:3703:Adobe Version Cue CS3 Server
"{CBD05DFA-6D25-4427-AFA2-734EBBE0F9F5}"= UDP:3704:Adobe Version Cue CS3 Server
"{59542601-E00D-4FF8-8CAD-11DAE7978B42}"= UDP:50900:Adobe Version Cue CS3 Server
"{33343DE7-1AE0-4E89-BE79-A49C3FCD0FF3}"= UDP:50901:Adobe Version Cue CS3 Server
"{7EED4172-A902-4B16-AA5E-72DDB3242778}"= UDP:C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe:Adobe Version Cue CS3 Server
"{BA4DC3F9-4FD0-4815-8727-D6F18CAFE525}"= TCP:C:\Program Files\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3.exe:Adobe Version Cue CS3 Server
"{4B21CC43-76DC-4B81-8703-66BAE973A0DF}"= UDP:C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:Render Manager
"{3790F397-A753-46E0-8875-B5C129AC23D1}"= TCP:C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:Render Manager
"{FB39EB94-4ABD-4683-BC7B-B6ECFC2FF071}"= UDP:C:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe:PMSRegisterFile
"{012AA18A-9257-4FF1-9987-09F391589E63}"= TCP:C:\Program Files\Pinnacle\VideoSpin\Programs\PMSRegisterFile.exe:PMSRegisterFile
"{1DDC5BE1-810B-4585-850C-97B8DB125DB9}"= UDP:C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:umi
"{0566A06B-DC7E-4554-9A9C-8417511E7AB2}"= TCP:C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:umi
"{68FC7EEB-47CA-4D88-8B1B-00FC900DCD03}"= UDP:C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:Pinnacle VideoSpin
"{E8DCE87B-A930-4FCC-8A33-755270B35359}"= TCP:C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:Pinnacle VideoSpin

R2 Maxtor Sync Service;Maxtor Service;"C:\Program Files\Maxtor\Sync\SyncServices.exe" [2007-09-28 13:24]
R2 NMSAccessU;NMSAccessU;C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-03-09 11:20]
S3 PAC7302;PAC7302 VGA USB Camera;C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-06-14 16:29]
S3 PIXMC10;JVC Communication PIX-MC10 Driver;C:\Windows\system32\Drivers\pixmc10c.sys [2003-12-05 15:39]
S3 PIXMC10A;JVC PIX-MC10 Audio Capture;C:\Windows\system32\Drivers\pixmc10a.sys [2003-12-05 15:39]
S3 PIXMC10V;JVC PIX-MC10 Video Capture;C:\Windows\system32\Drivers\pixmc10v.sys [2003-12-05 15:39]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{da61d521-05ca-11dc-930f-001a925d2aef}]
\shell\AutoRun\command - L:\InstallTomTomHOME.exe

*Newly Created Service* - CATCHME
.
Contenu du dossier 'Scheduled Tasks/Tâches planifiées'
"2008-06-30 19:20:13 C:\Windows\Tasks\User_Feed_Synchronization-{3D51593A-22C3-4D80-99D6-689FFDE3FA9A}.job"
- C:\Windows\system32\msfeedssync.exe
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-07-01 14:01:39
Windows 6.0.6001 Service Pack 1 NTFS

Balayage processus cachés ...

Balayage caché autostart entries ...

Balayage des fichiers cachés ...

Scan terminé avec succès
Les fichiers cachés: 0

**************************************************************************
.
Temps d'accomplissement: 2008-07-01 14:04:06
ComboFix-quarantined-files.txt 2008-07-01 12:03:54

Pre-Run: 128,592,220,160 octets libres
Post-Run: 128,698,609,664 octets libres

357 --- E O F --- 2008-06-28 10:53:31
0
Réponse 23 / 26
papyber Messages postés 6430 Statut Contributeur sécurité 257
 
Télécharger Lop S&D.exe de eric71 et angeldark
https://sites.google.com/site/eric71mespages/lop.sd.exe
scanne ton Pc option1

0
Réponse 24 / 26
Sismix84 Messages postés 83 Statut Membre 2
 
J'ai déjà scanné mon PC avec Lop S&D, je le refait ?
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 25 / 26
papyber Messages postés 6430 Statut Contributeur sécurité 257
 
il semble qu'il reste des lignes infectieuses oui recommence stp
0
Réponse 26 / 26
Sismix84 Messages postés 83 Statut Membre 2
 
Salut, je crois devoir faire changer ma livebox, j'ai toujours des problème avec internet. Mais c'est bon, je devrais avoir internet pour quelque temps encore.

Pour mon problème, je crois qu'il est résolu, mon processeur ne travail plus comme avant, il est normal. A mon avis c'est le logiciel que propose Microsoft dans les mise à jour pour Vista qui a détecté un truc. Je vais quand même faire l'analyse que tu ma dit. On sais jamais.

Merci.
0

Discussions similaires

Durée de fonctionnement CPU
Theodose3 -
Aubin -

7 réponses
overlay windows processeur IPS S.O. graphique LAT S.O.
ov3rlord91 -
smile -

11 réponses
PC multiprocesseur ACPI
alfredsson11 -
marcmarais -

1 réponse
Que veut dire x64 ?
deneb -
epango -

56 réponses
Durée de Fonctionnement processeur
Neozik_ -
Neozik_ -

2 réponses