Bonjour Falkra,
J'ai envoyé le rapport mais il semblerait qu'il ne soit pas parti, aussi, je le remets ici, en deux parties, 1: pages 1 à 28,
2: pages 29 à 47
DiagHelp version v1.4 -
http://www.malekal.comexcute le 29.03.2008 à 12:13:31.35
Liste des derniers fichies modifies/crees dans windir\system32 et prefetch
C:\WINDOWS\prefetch\CHCP.COM-18156052.pf -->29.03.2008 12:13:23
C:\WINDOWS\prefetch\CMD.EXE-087B4001.pf -->29.03.2008 12:13:15
C:\WINDOWS\prefetch\WMIPRVSE.EXE-28F301A9.pf -->29.03.2008 12:12:21
C:\WINDOWS\prefetch\MPCMDRUN.EXE-1F9D1CA1.pf -->29.03.2008 12:12:16
C:\WINDOWS\prefetch\EXPLORER.EXE-082F38A9.pf -->29.03.2008 12:12:15
C:\WINDOWS\prefetch\VERCLSID.EXE-3667BD89.pf -->29.03.2008 12:10:12
C:\WINDOWS\prefetch\IEXPLORE.EXE-27122324.pf -->29.03.2008 12:06:48
C:\WINDOWS\prefetch\UPDATE.EXE-256A254D.pf -->29.03.2008 12:05:12
C:\WINDOWS\prefetch\WUAUCLT.EXE-399A8E72.pf -->29.03.2008 12:03:00
C:\WINDOWS\prefetch\MSN_SL.EXE-18A18BC5.pf -->29.03.2008 12:01:44
C:\WINDOWS\System32\drivers\mrxdav.sys -->18.12.2007 10:51:35
C:\WINDOWS\System32\drivers\aswmon.sys -->04.12.2007 15:56:02
C:\WINDOWS\System32\drivers\aswmon2.sys -->04.12.2007 15:55:46
C:\WINDOWS\System32\drivers\aswRdr.sys -->04.12.2007 15:53:39
C:\WINDOWS\System32\drivers\aswTdi.sys -->04.12.2007 15:51:52
C:\WINDOWS\System32\drivers\aavmker4.sys -->04.12.2007 15:49:02
C:\WINDOWS\System32\drivers\secdrv.sys -->13.11.2007 11:25:54
C:\WINDOWS\System32\wpa.dbl -->29.03.2008 11:54:48
C:\WINDOWS\System32\jupdate-1.6.0_05-b13.log -->18.03.2008 15:05:04
C:\WINDOWS\System32\MRT.exe -->05.03.2008 17:30:54
C:\WINDOWS\System32\CONFIG.NT -->24.02.2008 12:15:07
C:\WINDOWS\System32\javaws.exe -->22.02.2008 02:33:32
C:\WINDOWS\System32\javacpl.cpl -->22.02.2008 02:33:31
C:\WINDOWS\System32\javaw.exe -->22.02.2008 01:23:39
C:\WINDOWS\System32\java.exe -->22.02.2008 01:23:35
C:\WINDOWS\System32\pngfilt.dll -->11.01.2008 06:36:55
C:\WINDOWS\System32\PerfStringBackup.INI -->27.12.2007 19:23:49
C:\WINDOWS\System32\perfh00C.dat -->27.12.2007 19:23:49
C:\WINDOWS\System32\perfh009.dat -->27.12.2007 19:23:49
C:\WINDOWS\System32\perfc00C.dat -->27.12.2007 19:23:49
C:\WINDOWS\System32\perfc009.dat -->27.12.2007 19:23:49
C:\WINDOWS\System32\dxtmsft.dll -->19.12.2007 23:53:23
C:\WINDOWS\System32\TZLog.log -->12.12.2007 19:11:14
C:\WINDOWS\System32\mshtml.dll -->08.12.2007 06:08:36
C:\WINDOWS\System32\wininet.dll -->07.12.2007 03:08:34
C:\WINDOWS\System32\webcheck.dll -->07.12.2007 03:08:34
C:\WINDOWS\System32\urlmon.dll -->07.12.2007 03:08:34
C:\WINDOWS\System32\url.dll -->07.12.2007 03:08:34
C:\WINDOWS\System32\occache.dll -->07.12.2007 03:08:34
C:\WINDOWS\System32\mstime.dll -->07.12.2007 03:08:34
C:\WINDOWS\System32\msrating.dll -->07.12.2007 03:08:34
C:\WINDOWS\System32\mshtmled.dll -->07.12.2007 03:08:34
C:\WINDOWS\WindowsUpdate.log -->29.03.2008 12:10:01
C:\WINDOWS\KB926247.log -->29.03.2008 12:05:12
C:\WINDOWS\0.log -->29.03.2008 11:52:40
C:\WINDOWS\wiadebug.log -->29.03.2008 11:52:00
C:\WINDOWS\wiaservc.log -->29.03.2008 11:51:55
C:\WINDOWS\bootstat.dat -->29.03.2008 11:51:45
C:\WINDOWS\SchedLgU.Txt -->28.03.2008 23:54:28
C:\WINDOWS\tsoc.log -->28.03.2008 18:03:11
C:\WINDOWS\ocmsn.log -->28.03.2008 18:03:11
C:\WINDOWS\ocgen.log -->28.03.2008 18:03:11
C:\WINDOWS\ntdtcsetup.log -->28.03.2008 18:03:11
C:\WINDOWS\msgsocm.log -->28.03.2008 18:03:11
C:\WINDOWS\imsins.log -->28.03.2008 18:03:11
C:\WINDOWS\iis6.log -->28.03.2008 18:03:11
C:\WINDOWS\comsetup.log -->28.03.2008 18:03:11
winlogon.exe
Verified: Signed
svchost.exe
Verified: Signed
ws2_32.dll
Verified: Signed
user32.dll
Verified: Signed
tcpip.sys
Verified: Signed
ndis.sys
Verified: Signed
null.sys
Verified: Signed
ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals -
http://www.sysinternals.com------------------------------------------------------------------------------
explorer.exe pid: 2352
Command line: C:\WINDOWS\Explorer.EXE
Base Size Version Path
0x44080000 0xcf000 7.00.6000.16608 C:\WINDOWS\system32\WININET.dll
0x00400000 0x9000 6.00.5441.0000 C:\WINDOWS\system32\Normaliz.dll
0x43e00000 0x45000 7.00.6000.16608 C:\WINDOWS\system32\iertutil.dll
0x58b50000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\comctl32.dll
0x76f80000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
0x10000000 0x14000 1.00.0000.0000 C:\WINDOWS\system32\VirtualExpander\VEShellExt.dll
0x13420000 0x1a000 11.00.5721.5145 C:\Program Files\Windows Media Player\wmpband.dll
0x76ac0000 0x11000 3.05.2284.0000 C:\WINDOWS\system32\ATL.DLL
0x442b0000 0x3c000 7.00.6000.16608 C:\WINDOWS\system32\webcheck.dll
0x44360000 0x5cd000 7.00.6000.16608 C:\WINDOWS\system32\IEFRAME.dll
0x7d200000 0x2be000 3.01.4000.4039 C:\WINDOWS\system32\msi.dll
0x5f800000 0x16000 1.01.1593.0000 C:\PROGRA~1\WIFD1F~1\MpShHook.dll
0x78130000 0x9b000 8.00.50727.0163 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCR80.dll
0x7c420000 0x87000 8.00.50727.0163 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\MSVCP80.dll
0x164a0000 0x23000 5.02.5721.5145 C:\WINDOWS\system32\WPDShServiceObj.dll
0x44160000 0x127000 7.00.6000.16608 C:\WINDOWS\system32\urlmon.dll
0x109c0000 0x2c000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceTypes.dll
0x10930000 0x49000 5.02.5721.5145 C:\WINDOWS\system32\PortableDeviceApi.dll
0x00ca0000 0xc000 1.01.0000.0000 C:\Program Files\XemiComputers\Photo Gadget\ShellResize.dll
0x028b0000 0xbc000 2.01.0017.0001 C:\Program Files\XemiComputers\Photo Gadget\_ISource21.dll
0x73d20000 0xfe000 6.02.4131.0000 C:\WINDOWS\system32\MFC42.DLL
0x76010000 0x65000 6.02.3104.0000 C:\WINDOWS\system32\MSVCP60.dll
0x61d70000 0xe000 6.00.8665.0000 C:\WINDOWS\system32\MFC42LOC.DLL
0x64f00000 0x12000 4.07.1098.0000 C:\Program Files\Alwil Software\Avast4\ashShell.dll
0x02a70000 0x38000 3.00.0000.0058 C:\Program Files\a-squared Free\a2freecontmenu.dll
0x02b40000 0x15000 2.06.0000.0000 C:\Program Files\Hewlett-Packard\HP Share-to-Web\HPGS2WDH.DLL
0x02b70000 0x6000 C:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnfps.dll
0x5a500000 0x50000 8.05.1302.1018 C:\Program Files\Windows Live\Messenger\fsshext.8.5.1302.1018.dll
0x16210000 0x27e000 5.02.5721.5145 C:\WINDOWS\system32\wpdshext.dll
0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll
0x02cd0000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll
0x07160000 0x46000 5.02.5721.5145 C:\WINDOWS\system32\Audiodev.dll
0x15110000 0x25a000 11.00.5721.5145 C:\WINDOWS\system32\WMVCore.DLL
0x11c70000 0x3a000 11.00.5721.5238 C:\WINDOWS\system32\WMASF.DLL
0x00f80000 0x10000 8.00.0000.0456 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
0x03170000 0x5b000 1.01.0000.0000 C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
0x03730000 0x4c000 8.00.0000.0000 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.FRA
0x03980000 0x5b000 8.01.0000.0000 C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\PDFShell.dll
0x039e0000 0x63000 1.03.0011.0000 C:\Program Files\Sony Ericsson\Mobile2\File Manager\fmgrgui.dll
0x7c140000 0x103000 7.10.3077.0000 C:\WINDOWS\system32\MFC71.DLL
0x7c340000 0x56000 7.10.3052.0004 C:\WINDOWS\system32\MSVCR71.dll
0x7c3a0000 0x7b000 7.10.3077.0000 C:\WINDOWS\system32\MSVCP71.dll
0x03830000 0x28000 1.03.0004.0000 C:\Program Files\Sony Ericsson\Mobile2\File Manager\fmgrguil.dll
0x03710000 0x15000 1.01.1593.0000 C:\PROGRA~1\WIFD1F~1\MpOAv.dll
ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals -
http://www.sysinternals.com------------------------------------------------------------------------------
winlogon.exe pid: 504
Command line: winlogon.exe
Base Size Version Path
0x01000000 0x81000 \??\C:\WINDOWS\system32\winlogon.exe
0x58b50000 0x9a000 5.82.2900.2982 C:\WINDOWS\system32\COMCTL32.dll
0x74730000 0x3d000 3.525.1117.0000 C:\WINDOWS\system32\ODBC32.dll
0x20000000 0x18000 3.525.1117.0000 C:\WINDOWS\system32\odbcint.dll
0x01220000 0x3b000 1.07.0017.0000 C:\WINDOWS\system32\WgaLogon.dll
0x76f80000 0x7f000 2001.12.4414.0308 C:\WINDOWS\system32\CLBCATQ.DLL
0x77000000 0xd4000 2001.12.4414.0258 C:\WINDOWS\system32\COMRes.dll
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est B454-B25C
Répertoire de C:\WINDOWS\system
18.12.1994 23:00 4'128 QTNOTIFY.EXE
1 fichier(s) 4'128 octets
0 Rép(s) 33'509'793'792 octets libres
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est B454-B25C
Répertoire de C:\WINDOWS\system32
20.08.2004 00:09 6'144 csrss.exe
1 fichier(s) 6'144 octets
0 Rép(s) 33'509'793'792 octets libres
Contenu de Downloaded Program Files
Le volume dans le lecteur C n'a pas de nom.
Le numéro de série du volume est B454-B25C
Répertoire de C:\WINDOWS\Downloaded Program Files
07.03.2008 14:56 <REP> .
07.03.2008 14:56 <REP> ..
12.04.2006 00:00 2'390 catalog.dat
03.05.2003 09:51 65 desktop.ini
02.07.2007 15:43 <REP> DinerDash.1.0.0.80
31.03.2006 14:30 145'000 DinerDash.1.0.0.80.dll
31.03.2006 14:30 371 DinerDash.1.0.0.80.inf
27.11.2006 17:09 2'094'696 DinerDash2.1.0.0.67.dll
27.11.2006 17:08 257 DinerDash2.1.0.0.67.inf
25.07.2002 17:13 24'576 dwusplay.dll
25.07.2002 17:13 196'608 dwusplay.exe
12.04.2006 00:00 6'899 ecbootil.vxd
12.04.2006 00:00 288'424 ecmsvr32.dll
09.02.2005 15:54 1'271 erma.inf
16.03.2004 18:13 365 f3initialsetup1.0.0.8-2.inf
10.04.2000 17:12 1'765 fhg.inf
28.09.2007 04:41 381'960 GAME_UNO1.dll
17.01.2007 15:44 316 GAME_UNO1.INF
16.05.2007 07:22 399 gp.inf
25.07.2002 17:05 172'032 isusweb.dll
25.08.2003 17:12 1'096 iuctl.inf
10.11.2005 14:05 876 jinstall-1_5_0_06.inf
11.12.2006 16:44 367 LegitCheckControl.inf
06.10.2004 11:40 863 mail_upload.inf
11.10.2004 08:51 315'392 mail_upload.ocx
22.02.2007 23:41 304'544 MessengerStatsPAClient.dll
30.06.2005 14:19 227 MsnMessengerSetupDownloader.inf
13.08.2005 23:26 113'664 MsnMessengerSetupDownloader.ocx
20.06.2006 14:44 379'704 MsnPUpld.dll
19.06.2006 13:40 393 MsnPUpld.inf
12.04.2006 00:00 124'584 naveng32.dll
12.04.2006 00:00 837'288 navex32a.dll
20.06.2006 14:44 117'560 PURen-us.dll
09.01.2007 07:30 110'592 PURfr-ch.dll
09.10.2003 09:32 144 QTPlugin.inf
12.04.2006 00:00 97'440 scrauth.dat
08.12.2003 12:58 3'759 swflash.inf
12.04.2006 00:00 8'145 symaveng.cat
12.04.2006 00:00 901 symaveng.inf
12.04.2006 00:00 45'988 tcdefs.dat
12.04.2006 00:00 706'379 tcscan7.dat
12.04.2006 00:00 286'186 tcscan8.dat
12.04.2006 00:00 564'664 tcscan9.dat
12.04.2006 00:00 453 tinf.dat
12.04.2006 00:00 148 tinfidx.dat
12.04.2006 00:00 1'957 tinfl.dat
12.04.2006 00:00 53'297 tscan1.dat
12.04.2006 00:00 1'237 tscan1hd.dat
12.04.2006 00:00 5'516 v.grd
12.04.2006 00:00 2'256 v.sig
12.04.2006 00:00 106'244 virscan.inf
12.04.2006 00:00 948'450 virscan1.dat
12.04.2006 00:00 561'178 virscan2.dat
12.04.2006 00:00 145'676 virscan3.dat
12.04.2006 00:00 320'086 virscan4.dat
12.04.2006 00:00 2'294'934 virscan5.dat
12.04.2006 00:00 388'320 virscan6.dat
12.04.2006 00:00 3'351'418 virscan7.dat
12.04.2006 00:00 1'521'327 virscan8.dat
12.04.2006 00:00 3'163'397 virscan9.dat
12.04.2006 00:00 32 virscant.dat
16.04.2006 17:02 2'072 vscanmsx.dat
21.01.2008 21:34 465'472 wlscBase.dll
21.01.2008 21:37 319 wlscBase.inf
26.05.2005 03:19 291 wuweb.inf
12.04.2006 00:00 224 zdone.dat
29.08.2006 13:17 161'976 zylomgamesplayer.dll
15.09.2006 09:53 244 ZylomGamesPlayer.inf
65 fichier(s) 20'834'674 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
02.07.2007 15:43 <REP> assets
31.03.2006 14:30 1'009'256 dinerdash.exe
1 fichier(s) 1'009'256 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
02.07.2007 15:43 <REP> accessories
02.07.2007 15:43 <REP> audio
02.07.2007 15:43 <REP> backgrounds
02.07.2007 15:43 <REP> buttons
02.07.2007 15:43 <REP> comics
02.07.2007 15:43 <REP> config
02.07.2007 15:43 <REP> cook
02.07.2007 15:43 <REP> cursor
02.07.2007 15:43 <REP> customers
02.07.2007 15:43 <REP> flo
02.07.2007 15:43 <REP> fonts
02.07.2007 15:43 <REP> furniture
02.07.2007 15:43 <REP> hiscore
02.07.2007 15:43 <REP> layouts
31.03.2006 14:28 5'460 playfirst_logo.png
02.07.2007 15:43 <REP> restaurants
02.07.2007 15:43 <REP> scripts
02.07.2007 15:43 <REP> splash
31.03.2006 14:28 11'803 strings.xml
02.07.2007 15:43 <REP> ui
2 fichier(s) 17'263 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\accessories
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 568 cup.png
31.03.2006 14:27 619 customer_cup.png
31.03.2006 14:27 239 heart.png
31.03.2006 14:27 927 menu_down.png
31.03.2006 14:27 1'244 menu_up.png
31.03.2006 14:27 850 plates.png
31.03.2006 14:27 741 ticket.png
31.03.2006 14:27 1'639 tray.png
8 fichier(s) 6'827 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\audio
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
02.07.2007 15:43 <REP> music
02.07.2007 15:43 <REP> sfx
0 fichier(s) 0 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\audio\music
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 55'809 mainmenumusic.ogg
1 fichier(s) 55'809 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\audio\sfx
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 5'299 sfx_bring_check_1_snd.ogg
31.03.2006 14:27 3'602 sfx_deliver_food_1_snd.ogg
31.03.2006 14:27 5'560 sfx_deliver_order_1_snd.ogg
31.03.2006 14:27 9'248 sfx_diner.ogg
31.03.2006 14:27 3'906 sfx_dish_dropoff_1_snd.ogg
31.03.2006 14:27 3'932 sfx_food_ready_1_snd.ogg
31.03.2006 14:27 3'650 sfx_gain_heart_1.ogg
31.03.2006 14:27 14'169 sfx_get_drinks_1_snd.ogg
31.03.2006 14:27 6'727 sfx_party_arrive_1_snd.ogg
31.03.2006 14:27 4'861 sfx_pencil_write_2.ogg
31.03.2006 14:27 4'413 sfx_pickup_food_1_snd.ogg
31.03.2006 14:27 2'868 sfx_rollover_1.ogg
31.03.2006 14:27 4'862 sfx_seat_people_snd.ogg
13 fichier(s) 73'097 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\backgrounds
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 1'319 choosedifficulty.png
31.03.2006 14:27 12'316 credits.jpg
31.03.2006 14:27 12'927 flo_lose.png
31.03.2006 14:27 13'807 flo_win.png
31.03.2006 14:27 16'725 help1.jpg
31.03.2006 14:27 18'595 help2.jpg
31.03.2006 14:27 14'327 highscores.jpg
31.03.2006 14:27 14'586 levelintro.jpg
31.03.2006 14:27 2'967 levelintro_mask.png
31.03.2006 14:27 14'582 levelover.jpg
31.03.2006 14:27 3'383 levelover_mask.png
31.03.2006 14:27 43'278 mainmenu.jpg
31.03.2006 14:27 7'362 popup.jpg
31.03.2006 14:27 1'899 popup_mask.png
31.03.2006 14:27 6'010 upgradegrid.png
31.03.2006 14:27 3'218 upgradetitle.png
31.03.2006 14:27 39'050 upsell.jpg
17 fichier(s) 226'351 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\buttons
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 825 arrowleft_blue.png
31.03.2006 14:27 995 arrowleft_yellow.png
31.03.2006 14:27 827 arrowright_blue.png
31.03.2006 14:27 991 arrowright_yellow.png
31.03.2006 14:27 2'326 backchalk.png
31.03.2006 14:27 2'960 backchalkup.png
31.03.2006 14:27 1'420 backtomenu_blue.png
31.03.2006 14:27 1'393 backtomenu_yellow.png
31.03.2006 14:27 1'795 back_blue.png
31.03.2006 14:27 1'761 back_yellow.png
31.03.2006 14:27 2'403 cancel.png
31.03.2006 14:27 2'368 cancelup.png
31.03.2006 14:27 2'722 career.png
31.03.2006 14:27 2'714 career_over.png
31.03.2006 14:27 2'156 close.png
31.03.2006 14:27 2'223 closeup.png
31.03.2006 14:27 3'346 continue.png
31.03.2006 14:27 3'208 continueover.png
31.03.2006 14:27 1'378 credits_blue.png
31.03.2006 14:27 1'365 credits_yellow.png
31.03.2006 14:27 2'073 download_blue.png
31.03.2006 14:27 2'081 download_yellow.png
31.03.2006 14:27 2'530 easy.png
31.03.2006 14:27 1'695 easy_over.png
31.03.2006 14:27 2'882 endlessshift.png
31.03.2006 14:27 2'886 endlessshift_over.png
31.03.2006 14:27 2'525 hard.png
31.03.2006 14:27 1'780 hard_over.png
31.03.2006 14:27 1'397 help.png
31.03.2006 14:27 1'395 help_over.png
31.03.2006 14:27 2'871 highscores.png
31.03.2006 14:27 2'871 highscores_over.png
31.03.2006 14:27 1'492 instructions_blue.png
31.03.2006 14:27 1'487 instructions_yellow.png
31.03.2006 14:27 1'491 letsplay.png
31.03.2006 14:27 1'491 letsplayover.png
31.03.2006 14:27 2'934 medium.png
31.03.2006 14:27 1'972 medium_over.png
31.03.2006 14:27 2'909 moreinfo.png
31.03.2006 14:27 2'903 moreinfoup.png
31.03.2006 14:27 580 off.png
31.03.2006 14:27 580 off_on.png
31.03.2006 14:27 505 on.png
31.03.2006 14:27 504 on_on.png
31.03.2006 14:27 827 pause.png
31.03.2006 14:27 843 pauseover.png
31.03.2006 14:27 2'835 quit.png
31.03.2006 14:27 3'776 quitgame.png
31.03.2006 14:27 3'122 quitgameover.png
31.03.2006 14:27 2'866 quitover.png
31.03.2006 14:27 3'762 resumegame.png
31.03.2006 14:27 3'196 resumegameover.png
31.03.2006 14:27 2'812 submit.png
31.03.2006 14:27 2'737 submitup.png
31.03.2006 14:27 3'175 tryagain.png
31.03.2006 14:27 3'244 tryagainover.png
31.03.2006 14:27 4'392 upgrade_over.png
31.03.2006 14:27 4'429 upgrade_up.png
31.03.2006 14:27 4'235 viewglobal.png
31.03.2006 14:27 4'219 viewglobalup.png
31.03.2006 14:27 3'710 viewhighscore.png
31.03.2006 14:27 3'250 viewhighscoreon.png
31.03.2006 14:27 4'189 viewlocal.png
31.03.2006 14:27 4'173 viewlocalup.png
64 fichier(s) 150'802 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\comics
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 31'920 webcomic.jpg
1 fichier(s) 31'920 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\config
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 33'657 career.xml
31.03.2006 14:27 11'169 customer.xml
31.03.2006 14:27 17'741 endless.xml
31.03.2006 14:27 621 global.xml
31.03.2006 14:27 3'137 powerups.xml
5 fichier(s) 66'325 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\cook
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 6'690 cook.png
31.03.2006 14:27 3'091 cook.xml
31.03.2006 14:27 228 stove.png
3 fichier(s) 10'009 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\cursor
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 1'773 arrow.png
31.03.2006 14:27 2'028 click.png
31.03.2006 14:27 1'926 click2.png
31.03.2006 14:27 1'726 grab.png
31.03.2006 14:27 2'274 open.png
5 fichier(s) 9'727 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
02.07.2007 15:43 <REP> old_male
02.07.2007 15:43 <REP> young_female
0 fichier(s) 0 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\old_male
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 13'644 anim.xml
02.07.2007 15:43 <REP> blue
02.07.2007 15:43 <REP> green
02.07.2007 15:43 <REP> purple
02.07.2007 15:43 <REP> red
02.07.2007 15:43 <REP> yellow
1 fichier(s) 13'644 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\old_male\blue
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 14'880 anim.png
31.03.2006 14:27 1'479 anim.xml
31.03.2006 14:27 678 sit_legs.png
3 fichier(s) 17'037 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\old_male\green
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 14'567 anim.png
31.03.2006 14:27 1'481 anim.xml
31.03.2006 14:27 626 sit_legs.png
3 fichier(s) 16'674 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\old_male\purple
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 14'859 anim.png
31.03.2006 14:27 1'483 anim.xml
31.03.2006 14:27 640 sit_legs.png
3 fichier(s) 16'982 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\old_male\red
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 14'840 anim.png
31.03.2006 14:27 1'477 anim.xml
31.03.2006 14:27 649 sit_legs.png
3 fichier(s) 16'966 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\old_male\yellow
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 14'982 anim.png
31.03.2006 14:27 1'483 anim.xml
31.03.2006 14:27 786 sit_legs.png
3 fichier(s) 17'251 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\young_female
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 13'571 anim.xml
02.07.2007 15:43 <REP> blue
02.07.2007 15:43 <REP> green
02.07.2007 15:43 <REP> purple
02.07.2007 15:43 <REP> red
02.07.2007 15:43 <REP> yellow
1 fichier(s) 13'571 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\young_female\blue
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 11'922 anim.png
31.03.2006 14:27 1'485 anim.xml
31.03.2006 14:27 476 sit_legs.png
3 fichier(s) 13'883 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\young_female\green
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 11'759 anim.png
31.03.2006 14:27 1'487 anim.xml
31.03.2006 14:27 448 sit_legs.png
3 fichier(s) 13'694 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\young_female\purple
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 11'875 anim.png
31.03.2006 14:27 1'489 anim.xml
31.03.2006 14:27 475 sit_legs.png
3 fichier(s) 13'839 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\young_female\red
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 11'584 anim.png
31.03.2006 14:27 1'483 anim.xml
31.03.2006 14:27 466 sit_legs.png
3 fichier(s) 13'533 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\customers\young_female\yellow
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 12'011 anim.png
31.03.2006 14:27 1'489 anim.xml
31.03.2006 14:27 483 sit_legs.png
3 fichier(s) 13'983 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\flo
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 21'613 idle.png
31.03.2006 14:27 2'752 idle.xml
31.03.2006 14:27 6'943 lower.png
31.03.2006 14:27 2'177 lower.xml
31.03.2006 14:27 16'974 upper.png
31.03.2006 14:27 6'892 upper.xml
6 fichier(s) 57'351 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\fonts
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 36'107 arial.mvec
31.03.2006 14:27 34'231 komikaaxis.mvec
2 fichier(s) 70'338 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\furniture
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:27 5'529 chair.png
31.03.2006 14:27 2'914 chair.xml
31.03.2006 14:27 1'512 dirt2top.png
31.03.2006 14:27 1'762 dirt4top.png
31.03.2006 14:27 11'831 dishcart.png
31.03.2006 14:27 1'455 dishcart.xml
31.03.2006 14:27 2'990 drinkstation_off.png
31.03.2006 14:27 3'248 drinkstation_on1.png
31.03.2006 14:27 2'965 drinkstation_on2.png
31.03.2006 14:28 14'012 ticketstation.png
31.03.2006 14:28 2'621 ticketstation.xml
11 fichier(s) 50'839 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\hiscore
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 700 arrowdown.png
31.03.2006 14:28 699 arrowdownon.png
31.03.2006 14:28 684 arrowleft.png
31.03.2006 14:28 684 arrowlefton.png
31.03.2006 14:28 677 arrowright.png
31.03.2006 14:28 679 arrowrighton.png
31.03.2006 14:28 701 arrowup.png
31.03.2006 14:28 703 arrowupon.png
31.03.2006 14:28 357 p1icon.png
31.03.2006 14:28 3'844 textedit.png
31.03.2006 14:28 2'066 title.png
11 fichier(s) 11'794 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\layouts
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 301 endless_1_1.txt
31.03.2006 14:28 301 endless_1_1_a.txt
31.03.2006 14:28 301 endless_1_1_b.txt
31.03.2006 14:28 301 endless_1_1_c.txt
31.03.2006 14:28 301 endless_1_2.txt
31.03.2006 14:28 301 endless_1_2_a.txt
31.03.2006 14:28 313 endless_1_2_b.txt
31.03.2006 14:28 301 endless_1_2_c.txt
31.03.2006 14:28 301 endless_1_2_d.txt
31.03.2006 14:28 301 endless_1_3.txt
31.03.2006 14:28 301 endless_1_3_a.txt
31.03.2006 14:28 301 endless_1_3_b.txt
31.03.2006 14:28 301 endless_1_3_c.txt
31.03.2006 14:28 301 endless_1_3_d.txt
31.03.2006 14:28 313 fifth_level_diner.txt
31.03.2006 14:28 313 first_level_diner.txt
31.03.2006 14:28 313 fourth_level_diner.txt
31.03.2006 14:28 313 second_level_diner.txt
18 fichier(s) 5'478 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\restaurants
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
02.07.2007 15:43 <REP> diner
31.03.2006 14:28 2'996 tableshadow.png
1 fichier(s) 2'996 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\restaurants\diner
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 23'014 background.jpg
02.07.2007 15:43 <REP> food
02.07.2007 15:43 <REP> frames
02.07.2007 15:43 <REP> tables
31.03.2006 14:28 443 upgrades.xml
2 fichier(s) 23'457 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\restaurants\diner\food
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 3'323 food1.png
31.03.2006 14:28 679 food1.xml
31.03.2006 14:28 3'217 food2.png
31.03.2006 14:28 678 food2.xml
31.03.2006 14:28 3'263 food3.png
31.03.2006 14:28 678 food3.xml
6 fichier(s) 11'838 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\restaurants\diner\frames
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 28'970 upgrade_0001.png
1 fichier(s) 28'970 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\restaurants\diner\tables
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 2'142 2top.png
31.03.2006 14:28 1'757 2top.xml
31.03.2006 14:28 1'926 4top.png
31.03.2006 14:28 2'227 4top.xml
4 fichier(s) 8'052 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\scripts
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 1'947 choosedifficulty.lua
31.03.2006 14:28 3'861 chooseplayer.lua
31.03.2006 14:28 1'497 chooserestaurant.lua
31.03.2006 14:28 8'311 credits.lua
31.03.2006 14:28 4'094 game.lua
31.03.2006 14:28 1'300 gothighscore.lua
31.03.2006 14:28 2'500 help.lua
31.03.2006 14:28 3'381 help2.lua
31.03.2006 14:28 14'475 hiscore.lua
31.03.2006 14:28 702 hiscoreinfo.lua
31.03.2006 14:28 3'784 hiscoresubmit.lua
31.03.2006 14:28 1'582 levelintro.lua
31.03.2006 14:28 3'757 levelover.lua
31.03.2006 14:28 775 loading.lua
31.03.2006 14:28 825 mainloop.lua
31.03.2006 14:28 2'574 mainmenu.lua
31.03.2006 14:28 836 ok.lua
31.03.2006 14:28 2'057 pause.lua
31.03.2006 14:28 1'323 style.lua
31.03.2006 14:28 1'521 tutorialintro.lua
31.03.2006 14:28 2'754 upgrade.lua
31.03.2006 14:28 973 upsell.lua
31.03.2006 14:28 2'247 webcomic.lua
31.03.2006 14:28 1'516 yesno.lua
24 fichier(s) 68'592 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\splash
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 7'620 aol_logo.png
31.03.2006 14:28 7'639 gamelabsplash.jpg
31.03.2006 14:28 21'506 playfirst_logo.jpg
3 fichier(s) 36'765 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\ui
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 3'181 angersmoke.png
31.03.2006 14:28 1'179 angersmoke.xml
31.03.2006 14:28 2'098 chairflags.png
31.03.2006 14:28 1'884 chairflags.xml
31.03.2006 14:28 1'641 check.png
31.03.2006 14:28 335 checkmark.png
31.03.2006 14:28 9'739 clock.png
31.03.2006 14:28 3'021 closed.png
31.03.2006 14:28 5'511 closingtime.png
31.03.2006 14:28 2'511 coinflip.png
31.03.2006 14:28 1'146 coinflip.xml
31.03.2006 14:28 1'182 dollar.png
02.07.2007 15:43 <REP> doodles
31.03.2006 14:28 6'341 expert.png
31.03.2006 14:28 3'910 expertscore.png
31.03.2006 14:28 5'463 foodpoof.png
31.03.2006 14:28 640 foodpoof.xml
31.03.2006 14:28 2'676 fork_timer.png
31.03.2006 14:28 2'680 goalcompleted.png
31.03.2006 14:28 2'013 heartgrow.png
31.03.2006 14:28 1'117 heartgrow.xml
31.03.2006 14:28 18'939 jar.png
31.03.2006 14:28 941 jar.xml
31.03.2006 14:28 10'376 level.png
31.03.2006 14:28 4'276 level_career.png
31.03.2006 14:28 8'910 score.png
31.03.2006 14:28 697 sound.png
31.03.2006 14:28 862 staroff.png
31.03.2006 14:28 1'830 staron.png
31.03.2006 14:28 2'187 tablenumber.png
31.03.2006 14:28 2'303 tablenumberup.png
31.03.2006 14:28 419 traynumber.png
31.03.2006 14:28 1'014 tutorialarrow.png
31.03.2006 14:28 1'880 tutorialbox.png
31.03.2006 14:28 6'924 tutorial_character.png
31.03.2006 14:28 11'027 upgradeanim.png
31.03.2006 14:28 1'457 upgradeanim.xml
02.07.2007 15:43 <REP> upgrades
36 fichier(s) 132'310 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\ui\doodles
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 5'155 coffee.png
31.03.2006 14:28 3'960 tables.png
31.03.2006 14:28 2'928 wallpaper.png
3 fichier(s) 12'043 octets
Répertoire de C:\WINDOWS\Downloaded Program Files\DinerDash.1.0.0.80\assets\ui\upgrades
02.07.2007 15:43 <REP> .
02.07.2007 15:43 <REP> ..
31.03.2006 14:28 2'301 drinks.png
31.03.2006 14:28 4'505 maitred.png
31.03.2006 14:28 3'783 oven.png
31.03.2006 14:28 4'177 select.png
31.03.2006 14:28 2'482 shoes.png
31.03.2006 14:28 4'267 stereo.png
31.03.2006 14:28 3'924 table.png
7 fichier(s) 25'439 octets
Total des fichiers listés :
352 fichier(s) 23'219'379 octets
122 Rép(s) 33'509'756'928 octets libres
Recherche de rootkit! (Merci S!Ri)
Recherche d'infections connues
Export des clefs sensibles..
Liste des fichiers en exception sur le pare-feu XP SP2
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\WINDOWS\\system32\\LEXPPS.EXE"="C:\\WINDOWS\\system32\\LEXPPS.EXE:*:Disabled:LEXPPS.EXE"
"C:\\Program Files\\Master Qwans Mahjongg\\Mahjongg.exe"="C:\\Program Files\\Master Qwans Mahjongg\\Mahjongg.exe:*:Enabled:Master Qwan's Mahjongg "
"C:\\Program Files\\Wolfram Research\\Mathematica\\5.1\\Mathematica.exe"="C:\\Program Files\\Wolfram Research\\Mathematica\\5.1\\Mathematica.exe:*:Enabled:Mathematica 5.1"
"C:\\Program Files\\Wolfram Research\\Mathematica\\5.1\\MathKernel.exe"="C:\\Program Files\\Wolfram Research\\Mathematica\\5.1\\MathKernel.exe:*:Enabled:Mathematica 5.1 Kernel"
"C:\\Program Files\\Wolfram Research\\Mathematica\\5.1\\math.exe"="C:\\Program Files\\Wolfram Research\\Mathematica\\5.1\\math.exe:*:Enabled:math.exe"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Zattoo\\zattood.exe"="C:\\Program Files\\Zattoo\\zattood.exe:*:Enabled:zattood"
"C:\\Program Files\\Zattoo\\Zattoo1.exe"="C:\\Program Files\\Zattoo\\Zattoo1.exe:*:Enabled: "
"C:\\Program Files\\Zattoo\\Zattoo2.exe"="C:\\Program Files\\Zattoo\\Zattoo2.exe:*:Enabled: "
"C:\\Program Files\\Zattoo\\Zattoo.exe"="C:\\Program Files\\Zattoo\\Zattoo.exe:*:Enabled: "
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
Export de la clef SharedTaskScheduler
[SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Pré-chargeur Browseui"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Démon de cache des catégories de composant"
exports des policies
REGEDIT4
[system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001
Export des clefs sensibles..
Rechercher adresses sensibles dans le fichier HOSTS...
catchme 0.3.1319 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-03-29 12:14:43
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden services & system hive ...
IPC error: 2 Le fichier spécifié est introuvable.
scanning hidden registry entries ...
scanning hidden files ...
scan completed successfully
hidden services: 0
hidden files: 0
KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (
http://www.security.org.sg)
Process list by traversal of KiWaitListHead
4 - System
152 - cmd.exe
248 - ashWebSv.exe
360 - epmworker.exe
396 - ashMaiSv.exe
480 - csrss.exe
504 - winlogon.exe
548 - services.exe
560 - lsass.exe
708 - svchost.exe
788 - svchost.exe
852 - MsMpEng.exe
896 - svchost.exe
928 - svchost.exe
1152 - svchost.exe
1268 - spoolsv.exe
1440 - ashServ.exe
1536 - svchost.exe
1556 - MDM.EXE
1644 - iexplore.exe
1852 - wmpnetwk.exe
1968 - CALMAIN.exe
2352 - explorer.exe
3380 - E_FATIAAE.EXE
3420 - ashDisp.exe
3472 - MSASCui.exe
3548 - PicasaMediaDete
3680 - ctfmon.exe
3736 - GoogleToolbarNo
Total number of processes = 29
NOTE: Under WinXP, this will not show all processes.
KProcCheck Version 0.2-beta1 Proof-of-Concept by SIG^2 (
http://www.security.org.sg)
Driver/Module list by traversal of PsLoadedModuleList
804D7000 - \WINDOWS\system32\ntoskrnl.exe
806EC000 - \WINDOWS\system32\hal.dll
FA0F1000 - \WINDOWS\system32\KDCOM.DLL
FA001000 - \WINDOWS\system32\BOOTVID.dll
F9BA1000 - ACPI.sys
FA0F3000 - \WINDOWS\System32\DRIVERS\WMILIB.SYS
F9B90000 - pci.sys
F9BF1000 - isapnp.sys
FA1B9000 - pciide.sys
F9E71000 - \WINDOWS\System32\DRIVERS\PCIIDEX.SYS
F9C01000 - MountMgr.sys
F9B71000 - ftdisk.sys
F9E79000 - PartMgr.sys
F9C11000 - VolSnap.sys
F9B59000 - atapi.sys
F9C21000 - disk.sys
F9C31000 - \WINDOWS\System32\DRIVERS\CLASSPNP.SYS
F9B39000 - fltmgr.sys
F9B27000 - sr.sys
F9C41000 - PxHelp20.sys
F9B10000 - KSecDD.sys
F9AFD000 - WudfPf.sys
F9A70000 - Ntfs.sys
F9A43000 - NDIS.sys
F9E81000 - sisagp.sys
F9A28000 - Mup.sys
F9E31000 - \SystemRoot\System32\DRIVERS\intelppm.sys
F97BB000 - \SystemRoot\System32\DRIVERS\nv4_mini.sys
F97A7000 - \SystemRoot\System32\DRIVERS\VIDEOPRT.SYS
F9E41000 - \SystemRoot\System32\DRIVERS\i8042prt.sys
F9EE1000 - \SystemRoot\System32\DRIVERS\mouclass.sys
F9EE9000 - \SystemRoot\System32\DRIVERS\kbdclass.sys
F9EF1000 - \SystemRoot\System32\DRIVERS\fdc.sys
F9796000 - \SystemRoot\System32\DRIVERS\serial.sys
FA0D1000 - \SystemRoot\System32\DRIVERS\serenum.sys
F9782000 - \SystemRoot\System32\DRIVERS\parport.sys
FA0D5000 - \SystemRoot\System32\DRIVERS\gameenum.sys
FA293000 - \SystemRoot\system32\drivers\msmpu401.sys
F975E000 - \SystemRoot\system32\drivers\portcls.sys
F9E51000 - \SystemRoot\system32\drivers\drmk.sys
F973B000 - \SystemRoot\system32\drivers\ks.sys
F9E61000 - \SystemRoot\System32\DRIVERS\cdrom.sys
F9C71000 - \SystemRoot\System32\DRIVERS\redbook.sys
F9C81000 - \SystemRoot\System32\DRIVERS\imapi.sys
F969B000 - \SystemRoot\system32\drivers\ALCXWDM.SYS
F9F01000 - \SystemRoot\System32\DRIVERS\usbohci.sys