Bonjour
Alors après la désactivation de l'UAC Ok pour le diagHepl j'ai bien suivi les consignes; il n'y a qu'a la fin pour envoyer le fichier upload j'ai fait ce qu'il me dise (rechercher le fichier :parcourir > poste de travail > C:/ >
upload_moi_coiffurenancy.tar.gz Double click dessus,c'est ensuite retrouvé dans la case parcourir puis envoyer et là problème a la fin il me dit :
Vous n'avez pas choisi de fichierAurais-je fais une mauvaise manip????? PS: tu pourras le constater en fin de rapport.....
Voici le rapport ci-dessous:
DiagHelp version v1.4 -
http://www.malekal.comexcute le 06/05/2008 à 15:07:59,15
Liste des derniers fichies modifies/crees dans windir\system32 et prefetch
C:\Windows\prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf -->06/05/2008 15:04:15
C:\Windows\prefetch\SEARCHFILTERHOST.EXE-77482212.pf -->06/05/2008 15:04:15
C:\Windows\prefetch\TASKENG.EXE-48D4E289.pf -->06/05/2008 15:00:46
C:\Windows\prefetch\WERMGR.EXE-0F2AC88C.pf -->06/05/2008 14:58:50
C:\Windows\prefetch\DLLHOST.EXE-5E46FA0D.pf -->06/05/2008 14:53:59
C:\Windows\prefetch\IEXPLORE.EXE-908C99F8.pf -->06/05/2008 14:51:30
C:\Windows\prefetch\WMIADAP.EXE-F8DFDFA2.pf -->06/05/2008 14:49:53
C:\Windows\prefetch\CONIME.EXE-9781FD5F.pf -->06/05/2008 14:49:06
C:\Windows\prefetch\CMD.EXE-4A81B364.pf -->06/05/2008 14:49:06
C:\Windows\prefetch\RUNDLL32.EXE-E8AC3089.pf -->06/05/2008 14:48:43
C:\Windows\System32\drivers\avipbb.sys -->04/03/2008 13:28:53
C:\Windows\System32\drivers\pxhelp20.sys -->23/02/2008 04:38:33
C:\Windows\System32\drivers\mrxdav.sys -->20/02/2008 21:38:54
C:\Windows\System32\drivers\WdfLdr.sys -->20/02/2008 21:37:14
C:\Windows\System32\drivers\Wdf01000.sys -->20/02/2008 21:37:14
C:\Windows\System32\drivers\sermouse.sys -->20/02/2008 21:37:12
C:\Windows\System32\drivers\mouhid.sys -->20/02/2008 21:37:12
C:\Windows\System32\PerfStringBackup.INI -->06/05/2008 14:52:06
C:\Windows\System32\perfh00C.dat -->06/05/2008 14:52:06
C:\Windows\System32\perfh009.dat -->06/05/2008 14:52:06
C:\Windows\System32\perfc00C.dat -->06/05/2008 14:52:06
C:\Windows\System32\perfc009.dat -->06/05/2008 14:52:06
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 -->06/05/2008 14:45:39
C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 -->06/05/2008 14:45:38
C:\Windows\System32\jupdate-1.6.0_05-b13.log -->29/04/2008 18:01:04
C:\Windows\System32\FNTCACHE.DAT -->10/04/2008 20:39:27
C:\Windows\System32\mrt.exe -->06/04/2008 07:56:20
C:\Windows\System32\config.nt -->01/04/2008 20:17:58
C:\Windows\System32\kd1394.dll -->29/02/2008 08:51:24
C:\Windows\System32\srcore.dll -->29/02/2008 08:39:13
C:\Windows\System32\srclient.dll -->29/02/2008 08:39:13
C:\Windows\System32\srdelayed.exe -->29/02/2008 08:38:59
C:\Windows\System32\rstrui.exe -->29/02/2008 08:38:54
C:\Windows\System32\kbd106n.dll -->29/02/2008 08:35:17
C:\Windows\System32\f3ahvoas.dll -->29/02/2008 08:34:50
C:\Windows\System32\win32k.sys -->29/02/2008 06:16:38
C:\Windows\System32\javaws.exe -->22/02/2008 02:33:32
C:\Windows\System32\javaw.exe -->22/02/2008 01:23:39
C:\Windows\System32\java.exe -->22/02/2008 01:23:35
C:\Windows\System32\wininet.dll -->21/02/2008 06:43:42
C:\Windows\System32\urlmon.dll -->21/02/2008 06:43:41
C:\Windows\System32\pngfilt.dll -->21/02/2008 06:43:38
C:\Windows\WindowsUpdate.log -->06/05/2008 14:48:43
C:\Windows\bootstat.dat -->06/05/2008 14:45:27
C:\Windows\PFRO.log -->03/05/2008 01:28:55
C:\Windows\setupact.log -->29/04/2008 17:46:28
C:\Windows\MEMORY.DMP -->03/04/2008 21:38:03
C:\Windows\win.ini -->30/03/2008 20:27:12
C:\Windows\setuperr.log -->29/03/2008 14:42:20
C:\Windows\unins000.dat -->25/02/2008 04:49:43
C:\Windows\unins000.exe -->25/02/2008 04:48:38
C:\Windows\explorer.exe -->20/11/2007 15:25:55
C:\Windows\WindowsShell.Manifest -->13/09/2007 18:27:02
C:\Windows\NeroDigital.ini -->15/05/2007 11:50:43
C:\Windows\DBNAMES.CFG -->15/05/2007 10:22:03
C:\Windows\bti.ini -->15/05/2007 10:20:38
C:\Windows\PhotoSnapViewer.INI -->12/05/2007 20:00:36
winlogon.exe
Verified: Signed
svchost.exe
Verified: Signed
ws2_32.dll
Verified: Signed
user32.dll
Verified: Signed
tcpip.sys
Verified: Signed
ndis.sys
Verified: Signed
null.sys
Verified: Signed
ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals -
http://www.sysinternals.com------------------------------------------------------------------------------
explorer.exe pid: 3012
Command line: C:\Windows\Explorer.EXE
Base Size Version Path
0x00910000 0x2cd000 6.00.6000.16549 C:\Windows\Explorer.EXE
0x77c80000 0x11e000 6.00.6000.16386 C:\Windows\system32\ntdll.dll
0x77460000 0xd8000 6.00.6000.16386 C:\Windows\system32\kernel32.dll
0x773a0000 0xbf000 6.00.6000.16386 C:\Windows\system32\ADVAPI32.dll
0x776c0000 0xc3000 6.00.6000.16525 C:\Windows\system32\RPCRT4.dll
0x77e60000 0x4b000 6.00.6000.16643 C:\Windows\system32\GDI32.dll
0x77dc0000 0x9e000 6.00.6000.16438 C:\Windows\system32\USER32.dll
0x77ba0000 0xaa000 7.00.6000.16386 C:\Windows\system32\msvcrt.dll
0x76540000 0x55000 6.00.6000.16386 C:\Windows\system32\SHLWAPI.dll
0x765a0000 0xace000 6.00.6000.16513 C:\Windows\system32\SHELL32.dll
0x77120000 0x144000 6.00.6000.16386 C:\Windows\system32\ole32.dll
0x777e0000 0x8c000 6.00.6000.16609 C:\Windows\system32\OLEAUT32.dll
0x71300000 0x107000 6.00.6000.16386 C:\Windows\system32\SHDOCVW.dll
0x75230000 0x3f000 6.00.6000.16386 C:\Windows\system32\UxTheme.dll
0x75770000 0x1a000 6.00.6000.16386 C:\Windows\system32\POWRPROF.dll
0x71e10000 0xc000 6.00.6000.16386 C:\Windows\system32\dwmapi.dll
0x74ed0000 0x1aa000 5.02.6000.16386 C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16386_none_9ea0ac9ec96e7127\gdiplus.dll
0x75cc0000 0x39000 6.00.6000.16509 C:\Windows\system32\slc.dll
0x74990000 0xb7000 6.00.6000.16386 C:\Windows\system32\PROPSYS.dll
0x70f90000 0x145000 6.00.6000.16386 C:\Windows\system32\BROWSEUI.dll
0x77070000 0x1e000 6.00.6000.16386 C:\Windows\system32\IMM32.dll
0x77940000 0xc7000 6.00.6000.16386 C:\Windows\system32\MSCTF.dll
0x75200000 0x30000 6.00.6000.16386 C:\Windows\system32\DUser.dll
0x77eb0000 0x9000 6.00.6000.16386 C:\Windows\system32\LPK.DLL
0x77610000 0x7d000 1.626.6000.16386 C:\Windows\system32\USP10.dll
0x10000000 0x18000 2.06.0003.0002 C:\Windows\system32\eNetHook.dll
0x75fd0000 0x194000 6.10.6000.16386 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
0x74680000 0xb2000 6.00.6000.16493 C:\Windows\system32\WindowsCodecs.dll
0x711f0000 0x6000 6.00.6000.16386 C:\Windows\system32\IconCodecService.dll
0x763d0000 0x14000 6.00.6000.16386 C:\Windows\system32\Secur32.dll
0x77090000 0x84000 2001.12.6930.16386 C:\Windows\system32\CLBCatQ.DLL
0x75790000 0x38000 6.00.6000.16386 C:\Windows\system32\rsaenh.dll
0x70e20000 0xb2000 6.00.6000.16549 C:\Windows\system32\timedate.cpl
0x74c30000 0x14000 3.05.2284.0000 C:\Windows\system32\ATL.DLL
0x75f60000 0x6a000 6.00.6000.16386 C:\Windows\system32\NETAPI32.dll
0x764a0000 0x7000 6.00.6000.16386 C:\Windows\system32\PSAPI.DLL
0x74d50000 0x38000 4.02.5406.0000 C:\Windows\system32\OLEACC.dll
0x72da0000 0x53000 6.00.6000.16386 C:\Windows\system32\actxprxy.dll
0x763f0000 0x1e000 6.00.6000.16386 C:\Windows\system32\USERENV.dll
0x71290000 0x2b000 6.00.6000.16386 C:\Windows\system32\msutb.dll
0x75880000 0xd7000 6.00.6000.16386 C:\Windows\system32\WINBRAND.dll
0x74d10000 0x16000 6.00.6000.16386 C:\Windows\System32\shacct.dll
0x75e70000 0x11000 6.00.6000.16386 C:\Windows\System32\SAMLIB.dll
0x76370000 0x2c000 6.00.6000.16386 C:\Windows\system32\apphelp.dll
0x70da0000 0x3c000 6.00.6000.16404 C:\Windows\System32\msshsq.dll
0x70a50000 0xc5000 6.00.6000.16386 C:\Windows\System32\NaturalLanguage6.dll
0x75d00000 0xf1000 6.00.6000.16425 C:\Windows\System32\CRYPT32.dll
0x75e50000 0x12000 6.00.6000.16386 C:\Windows\System32\MSASN1.dll
0x75270000 0x1e7000 6.00.6000.16513 C:\Windows\system32\authui.dll
0x756e0000 0x5000 6.00.6000.16386 C:\Windows\system32\MSIMG32.dll
0x70e10000 0x9000 6.00.6000.16386 C:\Windows\system32\LINKINFO.dll
0x77270000 0x127000 7.00.6000.16643 C:\Windows\system32\urlmon.dll
0x77790000 0x45000 7.00.6000.16386 C:\Windows\system32\iertutil.dll
0x6ff60000 0x5cd000 7.00.6000.16643 C:\Windows\system32\ieframe.dll
0x70e00000 0x7000 4.00.6000.16386 C:\Windows\system32\msiltcfg.dll
0x75b20000 0x8000 6.00.6000.16386 C:\Windows\system32\VERSION.dll
0x70840000 0x204000 4.00.6000.16386 C:\Windows\system32\msi.dll
0x756f0000 0x21000 6.00.6000.16386 C:\Windows\system32\NTMARTA.DLL
0x778f0000 0x49000 6.00.6000.16386 C:\Windows\system32\WLDAP32.dll
0x77c50000 0x2d000 6.00.6000.16386 C:\Windows\system32\WS2_32.dll
0x77db0000 0x6000 6.00.6000.16386 C:\Windows\system32\NSI.dll
0x74d90000 0x33000 6.00.6000.16386 C:\Windows\system32\WINMM.dll
0x73d90000 0x30000 6.00.6000.16386 C:\Windows\system32\wdmaud.drv
0x74030000 0x4000 6.00.6000.16386 C:\Windows\system32\ksuser.dll
0x74d00000 0x7000 6.00.6000.16386 C:\Windows\system32\AVRT.dll
0x75080000 0x27000 6.00.6000.16386 C:\Windows\system32\MMDevAPI.DLL
0x77a10000 0x189000 6.00.6000.16609 C:\Windows\system32\SETUPAPI.dll
0x75520000 0x2d000 6.00.6000.16386 C:\Windows\system32\WINTRUST.dll
0x77690000 0x29000 6.00.6000.16470 C:\Windows\system32\imagehlp.dll
0x73c70000 0x21000 6.00.6000.16386 C:\Windows\System32\audioses.dll
0x73b10000 0x66000 6.00.6000.16386 C:\Windows\System32\audioeng.dll
0x70d30000 0x4a000 6.00.6000.16386 C:\Windows\system32\ntshrui.dll
0x70df0000 0xa000 6.00.6000.16386 C:\Windows\system32\cscapi.dll
0x74020000 0x9000 6.00.6000.16386 C:\Windows\system32\msacm32.drv
0x73d70000 0x15000 6.00.6000.16386 C:\Windows\system32\MSACM32.dll
0x73cc0000 0x7000 6.00.6000.16386 C:\Windows\system32\midimap.dll
0x70de0000 0x9000 6.00.6000.16386 C:\Windows\system32\ExplorerFrame.dll
0x77540000 0xd0000 7.00.6000.16643 C:\Windows\system32\WININET.dll
0x77da0000 0x3000 6.00.6000.16386 C:\Windows\system32\Normaliz.dll
0x6fcd0000 0x28c000 6.00.6000.16386 C:\Windows\System32\NLSData000c.dll
0x6e690000 0x5f4000 6.00.6000.16386 C:\Windows\System32\NLSLexicons000c.dll
0x70690000 0x92000 6.00.6000.16386 C:\Windows\system32\stobject.dll
0x705d0000 0xb6000 6.00.6000.16386 C:\Windows\system32\BatMeter.dll
0x755f0000 0x9000 6.00.6000.16553 C:\Windows\system32\WTSAPI32.dll
0x75800000 0x24000 6.00.6000.16386 C:\Windows\system32\WINSTA.dll
0x74780000 0x45000 2001.12.6930.16386 C:\Windows\system32\es.dll
0x70770000 0x30000 6.00.6000.16386 C:\Windows\System32\SndVolSSO.dll
0x70740000 0x21000 6.00.6000.16386 C:\Windows\ehome\ehSSO.dll
0x74c20000 0x9000 6.00.6000.16386 C:\Windows\system32\HID.DLL
0x75600000 0x63000 6.00.6000.16501 C:\Windows\system32\FirewallAPI.dll
0x6ef80000 0x30b000 6.00.6000.16386 C:\Windows\System32\netshell.dll
0x75c60000 0x19000 6.00.6000.16386 C:\Windows\System32\IPHLPAPI.DLL
0x75c20000 0x35000 6.00.6000.16512 C:\Windows\System32\dhcpcsvc.DLL
0x75eb0000 0x2b000 6.00.6000.16615 C:\Windows\System32\DNSAPI.dll
0x75c10000 0x7000 6.00.6000.16386 C:\Windows\System32\WINNSI.DLL
0x75bf0000 0x20000 6.00.6000.16512 C:\Windows\System32\dhcpcsvc6.DLL
0x74cf0000 0xf000 6.00.6000.16386 C:\Windows\System32\nlaapi.dll
0x6fb10000 0x1bf000 6.00.6000.16386 C:\Windows\system32\pnidui.dll
0x751e0000 0x17000 6.00.6000.16386 C:\Windows\system32\QUtil.dll
0x75c80000 0x3e000 6.00.6000.16386 C:\Windows\system32\wevtapi.dll
0x74140000 0x6000 6.00.6000.16386 C:\Windows\system32\wlanutil.dll
0x72d40000 0x27000 6.00.6000.16386 C:\Windows\system32\FunDisc.dll
0x74d40000 0x9000 6.00.6000.16386 C:\Windows\system32\fdproxy.dll
0x72a60000 0x126000 8.90.1101.0000 C:\Windows\System32\msxml3.dll
0x727e0000 0x8000 6.00.6000.16386 C:\Windows\System32\npmproxy.dll
0x75140000 0xe000 6.00.6000.16551 C:\Windows\system32\Wlanapi.dll
0x74190000 0x2d000 6.00.6000.16386 C:\Windows\system32\OneX.DLL
0x748d0000 0xd000 6.00.6000.16386 C:\Windows\system32\eappprxy.dll
0x74160000 0x28000 6.00.6000.16386 C:\Windows\system32\eappcfg.dll
0x75b50000 0x44000 6.00.6000.16386 C:\Windows\system32\bcrypt.dll
0x70d80000 0xd000 6.00.6000.16386 C:\Windows\System32\AltTab.dll
0x6f930000 0x23000 6.00.6000.16386 C:\Windows\system32\wpdshserviceobj.dll
0x736e0000 0x5f000 6.00.6000.16386 C:\Windows\system32\WINHTTP.dll
0x6ef40000 0x40000 6.00.6000.16386 C:\Windows\System32\srchadmin.dll
0x6ef00000 0x3c000 7.00.6000.16386 C:\Windows\system32\webcheck.dll
0x6e470000 0x21c000 6.00.6000.16386 C:\Windows\System32\SyncCenter.dll
0x6f2d0000 0x39000 6.00.6000.16386 C:\Windows\system32\wscntfy.dll
0x74d30000 0xb000 6.00.6000.16386 C:\Windows\system32\WSCAPI.dll
0x6ee40000 0x51000 6.00.6000.16386 C:\Windows\system32\imapi2.dll
0x75170000 0x2c000 6.00.6000.16386 C:\Windows\System32\QAgent.dll
0x73b80000 0x8a000 6.00.6000.16386 C:\Windows\System32\fwpuclnt.dll
0x707a0000 0xb000 6.00.6000.16386 C:\Windows\system32\mssprxy.dll
0x6eea0000 0x2b000 6.00.6000.16386 C:\Windows\system32\PortableDeviceTypes.dll
0x72420000 0x46000 6.00.6000.16386 C:\Windows\system32\PortableDeviceApi.dll
0x76310000 0x5f000 6.00.6000.16386 C:\Windows\system32\SXS.DLL
0x02730000 0x27000 1.00.0003.0017 C:\Program Files\IncrediMail\bin\B4ImApp.dll
0x6d730000 0xf9000 6.00.6000.16386 C:\Windows\system32\bthprops.cpl
0x02760000 0x8000 0.09.0007.0003 C:\Acer\Empowering Technology\EPOWER\SysHook.dll
0x6f4a0000 0x11c000 6.06.8063.0000 C:\Windows\system32\MFC42.DLL
0x707d0000 0x65000 6.00.6000.16386 C:\Windows\system32\ODBC32.dll
0x77870000 0x74000 6.00.6000.16386 C:\Windows\system32\COMDLG32.dll
0x6f290000 0x38000 6.00.6000.16386 C:\Windows\system32\odbcint.dll
0x74c50000 0x14000 6.00.6000.16386 C:\Windows\system32\Cabinet.dll
0x75e00000 0x14000 6.00.6000.16386 C:\Windows\system32\MPR.dll
0x04b30000 0x4a000 2.05.3021.0107 C:\Windows\system32\sysenv.dll
0x731e0000 0x41000 6.00.6000.16386 C:\Windows\system32\WINSPOOL.DRV
0x06e20000 0x185000 1.05.0000.0011 C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
0x6d3e0000 0x7000 6.00.6000.16386 C:\Windows\system32\wsock32.dll
0x6c940000 0xdd000 6.00.6000.16386 C:\Windows\system32\wer.dll
0x70f10000 0x6000 6.00.6000.16386 C:\Windows\system32\SensApi.dll
0x6cec0000 0x26000 6.00.6000.16386 C:\Windows\system32\faultrep.dll
0x6cf50000 0x18000 6.00.6000.16386 C:\Windows\system32\olepro32.dll
0x6cc80000 0xa000 7.00.6000.16643 C:\Windows\system32\jsproxy.dll
0x6fae0000 0x30000 6.00.6000.16386 C:\Windows\system32\MLANG.dll
0x750f0000 0x47000 6.00.6000.16386 C:\Windows\system32\RASAPI32.dll
0x75500000 0x14000 6.00.6000.16386 C:\Windows\system32\rasman.dll
0x750b0000 0x31000 6.00.6000.16386 C:\Windows\system32\TAPI32.dll
0x755e0000 0xc000 6.00.6000.16386 C:\Windows\system32\rtutils.dll
0x75b30000 0x7000 6.00.6000.16386 c:\windows\system32\credssp.dll
0x75830000 0x45000 6.00.6000.16508 C:\Windows\system32\schannel.dll
0x6ac10000 0x12f000 2001.12.6930.16386 C:\Windows\system32\comsvcs.dll
0x6cb70000 0x60000 6.00.6000.16386 C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
0x04ce0000 0x27000 2.05.3022.0014 C:\Windows\system32\eDStoolbar.dll
0x7c630000 0x1b000 8.00.50727.0042 C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.42_none_dc990e4797f81af1\ATL80.DLL
0x029c0000 0xd000 7.00.0009.0050 C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
0x7c340000 0x56000 7.10.3052.0004 C:\Windows\system32\MSVCR71.dll
0x751a0000 0x22000 1.01.1002.0000 C:\Windows\system32\xmllite.dll
0x6cfe0000 0x12000 6.00.6000.16386 C:\Windows\system32\thumbcache.dll
ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals -
http://www.sysinternals.com------------------------------------------------------------------------------
winlogon.exe pid: 648
Command line: winlogon.exe
Base Size Version Path
0x00c90000 0x4e000 6.00.6000.16386 c:\windows\system32\winlogon.exe
0x77c80000 0x11e000 6.00.6000.16386 C:\Windows\system32\ntdll.dll
0x77460000 0xd8000 6.00.6000.16386 C:\Windows\system32\kernel32.dll
0x773a0000 0xbf000 6.00.6000.16386 C:\Windows\system32\ADVAPI32.dll
0x776c0000 0xc3000 6.00.6000.16525 C:\Windows\system32\RPCRT4.dll
0x77dc0000 0x9e000 6.00.6000.16438 C:\Windows\system32\USER32.dll
0x77e60000 0x4b000 6.00.6000.16643 C:\Windows\system32\GDI32.dll
0x77ba0000 0xaa000 7.00.6000.16386 C:\Windows\system32\msvcrt.dll
0x763d0000 0x14000 6.00.6000.16386 C:\Windows\system32\Secur32.dll
0x75800000 0x24000 6.00.6000.16386 C:\Windows\system32\WINSTA.dll
0x764a0000 0x7000 6.00.6000.16386 C:\Windows\system32\PSAPI.DLL
0x763f0000 0x1e000 6.00.6000.16386 C:\Windows\system32\USERENV.dll
0x77070000 0x1e000 6.00.6000.16386 C:\Windows\system32\IMM32.DLL
0x77940000 0xc7000 6.00.6000.16386 C:\Windows\system32\MSCTF.dll
0x77eb0000 0x9000 6.00.6000.16386 C:\Windows\system32\LPK.DLL
0x77610000 0x7d000 1.626.6000.16386 C:\Windows\system32\USP10.dll
0x10000000 0x18000 2.06.0003.0002 c:\windows\system32\eNetHook.dll
0x76540000 0x55000 6.00.6000.16386 C:\Windows\system32\SHLWAPI.dll
0x75fd0000 0x194000 6.10.6000.16386 C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll
0x76370000 0x2c000 6.00.6000.16386 C:\Windows\system32\apphelp.dll
0x756f0000 0x21000 6.00.6000.16386 c:\windows\system32\NTMARTA.DLL
0x778f0000 0x49000 6.00.6000.16386 C:\Windows\system32\WLDAP32.dll
0x77c50000 0x2d000 6.00.6000.16386 C:\Windows\system32\WS2_32.dll
0x77db0000 0x6000 6.00.6000.16386 C:\Windows\system32\NSI.dll
0x75e70000 0x11000 6.00.6000.16386 c:\windows\system32\SAMLIB.dll
0x77120000 0x144000 6.00.6000.16386 C:\Windows\system32\ole32.dll
0x74af0000 0x3e000 6.00.6000.16386 c:\windows\system32\SHSVCS.dll
0x75230000 0x3f000 6.00.6000.16386 c:\windows\system32\uxtheme.dll
0x75790000 0x38000 6.00.6000.16386 c:\windows\system32\rsaenh.dll
0x74680000 0xb2000 6.00.6000.16493 c:\windows\system32\WindowsCodecs.dll
0x75f60000 0x6a000 6.00.6000.16386 c:\windows\system32\NETAPI32.dll
0x75cc0000 0x39000 6.00.6000.16509 c:\windows\system32\slc.dll
0x75e00000 0x14000 6.00.6000.16386 c:\windows\system32\MPR.dll
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 2AA8-1BF3
Répertoire de C:\Windows\system32
02/11/2006 11:45 7 680 csrss.exe
1 fichier(s) 7 680 octets
0 Rép(s) 29 003 010 048 octets libres
Contenu de Downloaded Program Files
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 2AA8-1BF3
Répertoire de C:\Windows\Downloaded Program Files
19/04/2007 23:02 <REP> .
19/04/2007 23:02 <REP> ..
18/09/2006 23:26 65 desktop.ini
25/07/2002 17:13 24 576 dwusplay.dll
25/07/2002 17:13 196 608 dwusplay.exe
11/08/2005 15:30 417 792 isusweb.dll
4 fichier(s) 639 041 octets
Total des fichiers listés :
4 fichier(s) 639 041 octets
2 Rép(s) 29 003 010 048 octets libres
Recherche de rootkit! (Merci S!Ri)
Recherche d'infections connues
Export des clefs sensibles..
dword:00000001 présent dans la clef HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon - Possible infection
Trojan.DNS/Wareout Liste des fichiers en exception sur le pare-feu XP SP2
Export de la clef SharedTaskScheduler
[SharedTaskScheduler]
exports des policies
REGEDIT4
[System]
"ConsentPromptBehaviorAdmin"=dword:00000002
"ConsentPromptBehaviorUser"=dword:00000001
"EnableInstallerDetection"=dword:00000001
"EnableLUA"=dword:00000000
"EnableSecureUIAPaths"=dword:00000001
"EnableVirtualization"=dword:00000001
"PromptOnSecureDesktop"=dword:00000001
"ValidateAdminCodeSignatures"=dword:00000000
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"scforceoption"=dword:00000000
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
"FilterAdministratorToken"=dword:00000000
[System\UIPI]
[System\UIPI\Clipboard]
[System\UIPI\Clipboard\ExceptionFormats]
"CF_TEXT"=dword:00000001
"CF_BITMAP"=dword:00000002
"CF_OEMTEXT"=dword:00000007
"CF_DIB"=dword:00000008
"CF_PALETTE"=dword:00000009
"CF_UNICODETEXT"=dword:0000000d
"CF_DIBV5"=dword:00000011
Export des clefs sensibles..
Rechercher adresses sensibles dans le fichier HOSTS...
catchme 0.3.1351 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-05-06 15:08:17
Windows 6.0.6000 NTFS
scanning hidden services & system hive ...
scanning hidden registry entries ...
scanning hidden files ...
scan completed successfully
hidden services: 0
hidden files: 0
KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (
http://www.security.org.sg)
Sorry, this version supports only Win2K/XP
KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (
http://www.security.org.sg)
Sorry, this version supports only Win2K/XP
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 2AA8-1BF3
Répertoire de C:\Program Files
05/05/2008 20:28 <REP> .
05/05/2008 20:28 <REP> ..
10/12/2006 12:16 <REP> Acer Arcade Deluxe
19/04/2007 23:02 <REP> Acer Inc
10/12/2006 12:09 <REP> Adobe
03/05/2008 01:35 <REP> Avira
08/03/2008 22:05 <REP> CCleaner
30/03/2008 20:23 <REP> Common Files
02/12/2006 09:33 <REP> CONEXANT
10/12/2006 12:18 <REP> CyberLink
31/10/2007 08:00 <REP> EBP
05/05/2008 14:33 <REP> Everest Poker
05/05/2007 03:02 <REP> Google
05/05/2007 02:24 <REP> IncrediMail
10/04/2008 20:37 <REP> Internet Explorer
29/04/2008 18:01 <REP> Java
14/05/2007 17:19 <REP> Launch Manager
05/05/2007 01:23 <REP> Lavasoft
04/02/2008 05:35 <REP> Magentic
15/01/2008 19:55 <REP> Micro Application
02/11/2006 14:37 <REP> Microsoft Games
21/05/2007 11:16 <REP> Microsoft Money 2005
10/12/2006 21:35 <REP> Movie Maker
27/04/2008 03:21 <REP> Mozilla Firefox
02/11/2006 14:37 <REP> MSBuild
02/11/2006 14:37 <REP> MSN
12/11/2007 03:08 <REP> MSN Messenger
05/05/2007 01:01 <REP> MSXML 4.0
05/05/2008 20:40 <REP> Navilog1
03/05/2007 21:10 <REP> Nero
10/12/2006 12:17 <REP> NewTech Infosystems
03/05/2008 02:51 <REP> Picasa2
22/03/2007 00:31 <REP> Realtek
02/11/2006 14:37 <REP> Reference Assemblies
19/04/2007 20:25 <REP> Satsuki Decodeur Pack
25/02/2008 04:52 <REP> Spybot - Search & Destroy
02/12/2006 09:35 <REP> Synaptics
23/04/2007 17:22 <REP> WinAce
13/09/2007 18:22 <REP> Windows Calendar
10/12/2006 21:35 <REP> Windows Collaboration
05/05/2007 02:13 <REP> Windows Defender
10/12/2006 21:35 <REP> Windows Journal
10/04/2008 20:37 <REP> Windows Mail
15/10/2007 12:03 <REP> Windows Media Player
19/04/2007 23:00 <REP> Windows NT
10/12/2006 21:35 <REP> Windows Photo Gallery
15/01/2008 19:28 <REP> Windows Sidebar
19/04/2007 23:03 <REP> Yahoo!
05/05/2007 00:57 <REP> Zone Labs
0 fichier(s) 0 octets
49 Rép(s) 29 002 158 080 octets libres
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 2AA8-1BF3
Répertoire de C:\Program Files\fichiers communs
Le volume dans le lecteur C s'appelle ACER
Le numéro de série du volume est 2AA8-1BF3
Répertoire de C:\Program Files\common files
30/03/2008 20:23 <REP> .
30/03/2008 20:23 <REP> ..
29/03/2008 16:32 <REP> Adobe
03/05/2007 21:16 <REP> Ahead
15/05/2007 14:39 <REP> EBP
19/04/2007 23:02 <REP> InstallShield
05/05/2007 01:54 <REP> Java
03/05/2007 21:21 <REP> LightScribe
12/11/2007 03:06 <REP> microsoft shared
10/12/2006 12:17 <REP> muvee Technologies
10/12/2006 12:17 <REP> NewTech Infosystems
15/05/2007 13:57 <REP> Pervasive Software Shared
02/11/2006 13:18 <REP> Services
02/11/2006 13:18 <REP> SpeechEngines
19/04/2007 21:23 <REP> Symantec Shared
20/06/2007 16:20 <REP> System
0 fichier(s) 0 octets
16 Rép(s) 29 002 153 984 octets libres
****** Fin du rapport DiagHelp
Veuillez svp envoyer le fichier C:\upload_moi_coiffurenancy.tar.gz a l'adresse
http://upload.malekal.com@+.....