seb72 Posted March 17, 2009 Report Share Posted March 17, 2009 comment svp? Link to comment Share on other sites More sharing options...
moogly Posted March 17, 2009 Report Share Posted March 17, 2009 Peut-être un malware sur ton PC qui crache uT.Peux-tu poster ici les logs Hijackthis and Process Explorer quand uT fonctionne (copie/colle les .txt/.log dans ton post).Guide: http://forum.utorrent.com/viewtopic.php?id=29748N'oublie pas de sélectionner utorrent.exe et d'activer le mode DLL (ctrl+d) dans Process Explorer. Link to comment Share on other sites More sharing options...
seb72 Posted March 19, 2009 Author Report Share Posted March 19, 2009 el le log HijackthisLogfile of Trend Micro HijackThis v2.0.2Scan saved at 18:41:56, on 24/03/2009Platform: Windows Vista SP1 (WinNT 6.00.1905)MSIE: Internet Explorer v7.00 (7.00.6001.18000)Boot mode: NormalRunning processes:C:\Windows\system32\taskeng.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Program Files\Windows Defender\MSASCui.exeC:\Windows\RtHDVCpl.exeC:\Acer\Empowering Technology\SysMonitor.exeC:\Acer\Empowering Technology\eDataSecurity\eDSloader.exeC:\Program Files\HP\HP Software Update\hpwuSchd2.exeC:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exeC:\Program Files\Pack Securite\Common\FSM32.EXEC:\Program Files\Windows Media Player\wmpnscfg.exeC:\Program Files\Java\jre6\bin\jusched.exeC:\Windows\FixCamera.exeC:\Windows\tsnp2std.exeC:\Program Files\Google\Quick Search Box\qsb.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Windows\ehome\ehtray.exeC:\Users\fabien\AppData\Local\miucg.exeC:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeC:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exeC:\Windows\ehome\ehmsas.exeC:\Acer\Empowering Technology\ACER.EMPOWERING.FRAMEWORK.SUPERVISOR.EXEC:\Program Files\Windows Sidebar\sidebar.exeC:\Program Files\Pack Securite\FSGUI\fsguidll.exeC:\Acer\Empowering Technology\eRecovery\ERAGENT.EXEC:\Program Files\Neuf\Widget Neuf\9widget.exeC:\Program Files\Internet Explorer\IEUser.exeC:\Program Files\Internet Explorer\iexplore.exeC:\Program Files\Google\Google Toolbar\GoogleToolbarUser.exeC:\Windows\system32\conime.exeC:\Program Files\Pack Securite\FSGUI\scanwizard.exeC:\Windows\System32\mobsync.exeC:\Program Files\Trend Micro\HijackThis\HijackThis.exeC:\Windows\system32\SearchFilterHost.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.atcomet.com/b/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://fr.fr.acer.yahoo.comR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhostO2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dllO2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dllO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dllO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dllO2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_9993303B90FE6C1D.dllO2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dllO3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Windows\system32\eDStoolbar.dllO3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dllO4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hideO4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exeO4 - HKLM\..\Run: [Acer Empowering Technology Monitor] C:\Acer\Empowering Technology\SysMonitor.exeO4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\eDSloader.exeO4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exeO4 - HKLM\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exeO4 - HKLM\..\Run: [Apanel] C:\ACERSW\config\NewSetApanel.cmdO4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exeO4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\Pack Securite\Common\FSM32.EXE" /splashO4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\Pack Securite\FSGUI\TNBUtil.exe" /CHECKALL /WAITFORSWO4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"O4 - HKLM\..\Run: [skytel] Skytel.exeO4 - HKLM\..\Run: [FixCamera] C:\Windows\FixCamera.exeO4 - HKLM\..\Run: [tsnp2std] C:\Windows\tsnp2std.exeO4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\qsb.exe" /autorunO4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunO4 - HKCU\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exeO4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exeO4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0O4 - HKCU\..\Run: [bmnwcqb] c:\users\fabien\appdata\local\bmnwcqb.exe bmnwcqbO4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exeO4 - HKCU\..\Run: [miucg] "c:\users\fabien\appdata\local\miucg.exe" miucgO4 - HKCU\..\Run: [bitComet] C:\Program Files\BitComet\BitComet.exe /trayO4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeO4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE LOCAL')O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'SERVICE LOCAL')O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'SERVICE RÉSEAU')O4 - HKUS\S-1-5-18\..\Run: [] (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [] (User 'Default user')O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXEO4 - Global Startup: Empowering Technology Launcher.lnk = ?O4 - Global Startup: PCM Media Sharing.lnk = C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\PCMMediaSharing.exeO8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dllO9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLLO13 - Gopher Prefix: O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cabO18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_9993303B90FE6C1D.dllO23 - Service: Acer HomeMedia Connect Service - CyberLink - C:\Program Files\Acer Arcade Live\Acer HomeMedia Connect\Kernel\DMS\CLMSServer.exeO23 - Service: ePerformance Service (AcerMemUsageCheckService) - Unknown owner - C:\Acer\Empowering Technology\ePerformance\MemCheck.exeO23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exeO23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)O23 - Service: eDSService.exe (eDataSecurity Service) - HiTRSUT - C:\Acer\Empowering Technology\eDataSecurity\eDSService.exeO23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exeO23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\Program Files\Pack Securite\Anti-Virus\fsgk32st.exeO23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\Program Files\Pack Securite\FSAUA\program\fsaua.exeO23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\Pack Securite\FWES\Program\fsdfwd.exeO23 - Service: FSMA - F-Secure Corporation - C:\Program Files\Pack Securite\Common\FSMA32.EXEO23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\Pack Securite\ORSP Client\fsorsp.exeO23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exeO23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXEO23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exeO23 - Service: Planificateur LiveUpdate automatique - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exeO23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe--End of file - 10009 bytes Link to comment Share on other sites More sharing options...
moogly Posted March 25, 2009 Report Share Posted March 25, 2009 Inutile de créer 25 threads pour poster les logs, il y a une fonction EDIT pour chaque post. En plus c'est plus facile à suivre si vous postez dans le mm thread.Il suffit de générer les logs et de les copier/coller ici. Pour Process Explorer:N'oublie pas de sélectionner utorrent.exe et d'activer le mode DLL (ctrl+d) dans Process Explorer. Link to comment Share on other sites More sharing options...
seb72 Posted March 25, 2009 Author Report Share Posted March 25, 2009 voici le log Process PID CPU Description Company NameSystem Idle Process 0 93.54 Interrupts n/a Hardware Interrupts DPCs n/a 1.55 Deferred Procedure Calls System 4 0.77 smss.exe 508 csrss.exe 576 wininit.exe 628 services.exe 676 svchost.exe 900 ehmsas.exe 4576 Media Center Media Status Aggregator Service Microsoft Corporation mobsync.exe 5628 Microsoft Sync Center Microsoft Corporation FlashUtil10a.exe 12448 Adobe Flash Player Helper 10.0 r12 Adobe Systems, Inc. svchost.exe 960 svchost.exe 1004 Ati2evxx.exe 1100 Ati2evxx.exe 1572 svchost.exe 1120 audiodg.exe 1284 svchost.exe 1152 WUDFHost.exe 2492 dwm.exe 876 1.55 Gestionnaire de fenêtres du Bureau Microsoft Corporation svchost.exe 1168 taskeng.exe 1392 taskeng.exe 3892 Moteur du Planificateur de tâches Microsoft Corporation taskeng.exe 6956 taskeng.exe 10988 SLsvc.exe 1316 svchost.exe 1348 svchost.exe 1496 spoolsv.exe 1716 svchost.exe 1744 CLMSServer.exe 388 MemCheck.exe 520 eDSService.exe 500 fsgk32st.exe 1800 fsgk32.exe 1996 fssm32.exe 3268 FSMA32.EXE 2024 FSMB32.EXE 2076 FCH32.EXE 2548 FAMEH32.EXE 2828 fsqh.exe 2856 fsav32.exe 3592 svchost.exe 1440 LSSrvc.exe 1064 PIFSvc.exe 2104 svchost.exe 2124 AluSchedulerSvc.exe 2156 svchost.exe 2184 svchost.exe 2204 RichVideo.exe 2232 svchost.exe 2272 svchost.exe 2328 SearchIndexer.exe 2436 eRecoveryService.exe 2564 fsaua.exe 3412 fsorsp.exe 3456 fsdfwd.exe 3468 alg.exe 3480 wmpnetwk.exe 4524 lsass.exe 692 lsm.exe 700 csrss.exe 640 winlogon.exe 768 fsus.exe 3728 explorer.exe 1224 Explorateur Windows Microsoft Corporation MSASCui.exe 1416 Windows Defender User Interface Microsoft Corporation RtHDVCpl.exe 4032 HD Audio Control Panel Realtek Semiconductor SysMonitor.exe 1244 eDSloader.exe 1108 eDataSecurity System Loader( Load and prepare enviroment ) HiTRUST hpwuSchd2.exe 2796 Hewlett-Packard Product Assistant Hewlett-Packard Co. PIFSvc.exe 4156 LiveUpdate Notice Service Symantec Corporation FSM32.EXE 4168 F-Secure Settings and Statistics F-Secure Corporation fsguidll.exe 5472 F-Secure GUI component F-Secure Corporation scanwizard.exe 7356 FSAV FSM AV UI F-Secure Corporation wmpnscfg.exe 4232 Application de configuration du service Partage réseau du Lecteur Windows Media Microsoft Corporation jusched.exe 4248 Java Platform SE binary Sun Microsystems, Inc. FixCamera.exe 4268 CameraFixer MFC Application tsnp2std.exe 4276 tsnp2std Microsoft qsb.exe 4284 Quick Search Box Google Inc. sidebar.exe 4292 Volet Windows Microsoft Corporation sidebar.exe 5164 Volet Windows Microsoft Corporation ehtray.exe 4312 Media Center Tray Applet Microsoft Corporation miucg.exe 4328 1.55 GoogleToolbarNotifier.exe 4336 GoogleToolbarNotifier Google Inc. PCMMediaSharing.exe 4372 9widget.exe 2408 Widget neufbox SFR notepad.exe 9784 Bloc-notes Microsoft Corporationconime.exe 4944 Console IME Microsoft Corporationconime.exe 4956 Console IME Microsoft CorporationeRAgent.exe 5484 eRecovery agent Acer Inc.conime.exe 4716 Console IME Microsoft Corporationconime.exe 6120 Console IME Microsoft Corporationconime.exe 2420 Console IME Microsoft Corporationieuser.exe 12072 Internet Explorer Microsoft Corporation iexplore.exe 14148 Internet Explorer Microsoft Corporation GoogleToolbarUser.exe 6192 procexp.exe 6848 Sysinternals Process Explorer Sysinternals - www.sysinternals.com Link to comment Share on other sites More sharing options...
moogly Posted March 25, 2009 Report Share Posted March 25, 2009 Le log Process Explorer n'est pas bon. Il faut lancer uTorrent et SELECTIONNER utorrent.exe et activer le mode DLL (ctrl+d) dans Process Explorer.Les crashes sont aléatoires ou pas ? des modifs récentes sur le PC ? Link to comment Share on other sites More sharing options...
seb72 Posted March 29, 2009 Author Report Share Posted March 29, 2009 Process PID CPU Description Company NameSystem Idle Process 0 84.21 Interrupts n/a 0.74 Hardware Interrupts DPCs n/a 0.74 Deferred Procedure Calls System 4 smss.exe 444 Windows Session Manager Microsoft Corporationcsrss.exe 576 Processus d'exécuttion client-serveur Microsoft Corporationwininit.exe 628 Application de démarrage de Windows Microsoft Corporation services.exe 676 0.74 Applications Services et Contrôleur Microsoft Corporation svchost.exe 900 Processus hôte pour les services Windows Microsoft Corporation ehmsas.exe 4648 Media Center Media Status Aggregator Service Microsoft Corporation svchost.exe 960 Processus hôte pour les services Windows Microsoft Corporation svchost.exe 996 Processus hôte pour les services Windows Microsoft Corporation Ati2evxx.exe 1092 ATI External Event Utility EXE Module ATI Technologies Inc. Ati2evxx.exe 1400 ATI External Event Utility EXE Module ATI Technologies Inc. svchost.exe 1156 Processus hôte pour les services Windows Microsoft Corporation audiodg.exe 1276 Isolation graphique de périphérique audio Windows Microsoft Corporation svchost.exe 1192 Processus hôte pour les services Windows Microsoft Corporation WUDFHost.exe 2524 Windows Driver Foundation - Processus hôte de l'infrastructure de pilotes en mode utilisateur Microsoft Corporation dwm.exe 3912 0.74 Gestionnaire de fenêtres du Bureau Microsoft Corporation svchost.exe 1208 Processus hôte pour les services Windows Microsoft Corporation taskeng.exe 3760 Moteur du Planificateur de tâches Microsoft Corporation taskeng.exe 3780 Moteur du Planificateur de tâches Microsoft Corporation SLsvc.exe 1308 Service de gestion des licences Microsoft Microsoft Corporation svchost.exe 1344 Processus hôte pour les services Windows Microsoft Corporation svchost.exe 1540 Processus hôte pour les services Windows Microsoft Corporation spoolsv.exe 1700 Application sous-système spouleur Microsoft Corporation svchost.exe 1724 Processus hôte pour les services Windows Microsoft Corporation CLMSServer.exe 460 CLMSServer CyberLink MemCheck.exe 548 MemCheck.Service eDSService.exe 620 eDataSecurity Service HiTRSUT fsgk32st.exe 1396 F-Secure Anti-Virus Scanning Service F-Secure Corporation fsgk32.exe 1876 Gatekeeper Handler II F-Secure Corp. fssm32.exe 3384 fssm32 F-Secure Corp. FSMA32.EXE 1828 F-Secure Management Agent F-Secure Corporation FSMB32.EXE 2384 F-Secure Message Broker F-Secure Corporation FCH32.EXE 2736 F-Secure Configuration Handler F-Secure Corporation FAMEH32.EXE 2996 F-Secure Alert and Management Extension Handler F-Secure Corporation fsqh.exe 3012 F-Secure Quarantine Handler F-Secure Corporation fsav32.exe 4396 FSAV Handler F-Secure Corporation svchost.exe 1924 Processus hôte pour les services Windows Microsoft Corporation LSSrvc.exe 1928 Hewlett-Packard Company PIFSvc.exe 2052 LiveUpdate Notice Service Symantec Corporation svchost.exe 2068 Processus hôte pour les services Windows Microsoft Corporation AluSchedulerSvc.exe 2104 Automatic LiveUpdate Scheduler Service Symantec Corporation svchost.exe 2156 Processus hôte pour les services Windows Microsoft Corporation svchost.exe 2176 Processus hôte pour les services Windows Microsoft Corporation RichVideo.exe 2192 RichVideo Module svchost.exe 2232 Processus hôte pour les services Windows Microsoft Corporation svchost.exe 2280 Processus hôte pour les services Windows Microsoft Corporation SearchIndexer.exe 2352 Indexeur Microsoft Windows Search Microsoft Corporation eRecoveryService.exe 2392 eRecoveryService Acer Inc. fsaua.exe 3364 F-Secure Automatic Update Agent F-Secure Corporation fsorsp.exe 3428 F-Secure ORSP Service F-Secure Corporation fsdfwd.exe 3612 2.22 F-Secure Internet Shield daemon F-Secure Corporation alg.exe 3640 Service de la passerelle de la couche Application Microsoft Corporation wmpnetwk.exe 4212 Service Partage réseau du Lecteur Windows Media Microsoft Corporation lsass.exe 692 Processus de l'autorité de sécurité locale Microsoft Corporation lsm.exe 700 Service du gestionnaire de session locale Microsoft Corporationcsrss.exe 640 Processus d'exécuttion client-serveur Microsoft Corporationwinlogon.exe 772 Application d'ouverture de session Windows Microsoft Corporationexplorer.exe 3980 Explorateur Windows Microsoft Corporation MSASCui.exe 2216 Windows Defender User Interface Microsoft Corporation RtHDVCpl.exe 2504 HD Audio Control Panel Realtek Semiconductor SysMonitor.exe 3104 eDSloader.exe 188 eDataSecurity System Loader( Load and prepare enviroment ) HiTRUST hpwuSchd2.exe 3944 Hewlett-Packard Product Assistant Hewlett-Packard Co. PIFSvc.exe 3960 LiveUpdate Notice Service Symantec Corporation FSM32.EXE 3996 F-Secure Settings and Statistics F-Secure Corporation fsguidll.exe 5332 F-Secure GUI component F-Secure Corporation scanwizard.exe 7976 FSAV FSM AV UI F-Secure Corporation FixCamera.exe 3064 6.65 CameraFixer MFC Application tsnp2std.exe 2980 tsnp2std Microsoft qsb.exe 1152 Quick Search Box Google Inc. jusched.exe 1120 Java Platform SE binary Sun Microsystems, Inc. sidebar.exe 1148 Volet Windows Microsoft Corporation sidebar.exe 5728 Volet Windows Microsoft Corporation wmpnscfg.exe 2876 Application de configuration du service Partage réseau du Lecteur Windows Media Microsoft Corporation ehtray.exe 4420 Media Center Tray Applet Microsoft Corporation GoogleToolbarNotifier.exe 4448 GoogleToolbarNotifier Google Inc. PCMMediaSharing.exe 4468 wmplayer.exe 5212 Windows Media Player Microsoft Corporation 9widget.exe 8560 Widget neufbox SFR uTorrent.exe 13132 1.48 µTorrent BitTorrent, Inc.fsus.exe 1484 F-Secure Automatic Update Agent - Run Upstreamer F-Secure Corporationconime.exe 4056 Console IME Microsoft CorporationAcer.Empowering.Framework.Supervisor.exe 5232 Acer Empowering Techonology Framework Launcher Acer Inc.eRAgent.exe 5848 eRecovery agent Acer Inc.Procmon.exe 4936 Process Monitor Sysinternals - www.sysinternals.comQUAD Scheduler.exe 11348 procexp.exe 9420 2.95 Sysinternals Process Explorer Sysinternals - www.sysinternals.comProcess: uTorrent.exe Pid: 13132Name Description Company Name VersionADVAPI32.dll API avancées Windows 32 Microsoft Corporation 6.0.6001.18000ATL.DLL ATL Module for Windows XP (Unicode) Microsoft Corporation 3.5.2284.0BatchCrypto.dll BatchCrypto Dynamic Link Library 2.5.3026.14CLBCatQ.DLL COM+ Configuration Catalog Microsoft Corporation 2001.12.6931.18000COMCTL32.dll Bibliothèque de contrôles de l'expérience utilisateur Microsoft Corporation 6.10.6001.18000comdlg32.dll DLL commune de boîtes de dialogues Microsoft Corporation 6.0.6001.18000CryptoAPI.dll CryptoAPI HiTRUST 2.2.0.34dbghelp.dll Windows Image Helper Microsoft Corporation 6.0.6001.18000dhcpcsvc.DLL Service client DHCP Microsoft Corporation 6.0.6001.18000dhcpcsvc6.DLL Client DHCPv6 Microsoft Corporation 6.0.6001.18000DnsApi.dll DNS DLL de l'API Client Microsoft Corporation 6.0.6001.18000FirewallAPI.dll API du Pare-feu Windows Microsoft Corporation 6.0.6001.18000fsgkiapi.dll fsgkiapi F-Secure Corp. 7.70.14204.15921fslsp.dll F-Secure Protocol Scanner LSP F-Secure Corporation 2.1.610.0fsscoepl.dll Microsoft Outlook Express® Spam Control Addin F-Secure Corporation 1.2.7040.0GDI32.dll GDI Client DLL Microsoft Corporation 6.0.6001.18159GPAPI.dll API client de stratégie de groupe Microsoft Corporation 6.0.6001.18000hnetcfg.dll Gestionnaire de configuration de réseau domestique Microsoft Corporation 6.0.6001.18000iertutil.dll Run time utility for Internet Explorer Microsoft Corporation 7.0.6001.18203IMM32.DLL Multi-User Windows IMM32 API Client DLL Microsoft Corporation 6.0.6001.18000Iphlpapi.dll API de l'application d'assistance IP Microsoft Corporation 6.0.6001.18000kernel32.dll DLL du client API BASE Windows NT Microsoft Corporation 6.0.6001.18000keyManager.dll keyManager HiTRSUT 2.2.0.18locale.nls locale.nls LPK.DLL Language Pack Microsoft Corporation 6.0.6001.18000MFC80FRA.DLL MFC Language Specific Resources Microsoft Corporation 8.0.50727.762MFC80U.DLL MFCDLL Shared Library - Retail Version Microsoft Corporation 8.0.50727.762MSCTF.dll DLL de MSCTF Server Microsoft Corporation 6.0.6001.18000MsnChatHook.dll MsnChatHook HiTRUST Inc. 2.5.3.11MSVCP80.dll Microsoft® C++ Runtime Library Microsoft Corporation 8.0.50727.3053MSVCR80.dll Microsoft® C Runtime Library Microsoft Corporation 8.0.50727.3053msvcrt.dll Windows NT CRT DLL Microsoft Corporation 7.0.6001.18000mswsock.dll Fournisseur de service Sockets 2.0 de Microsoft Windows Microsoft Corporation 6.0.6001.18000msxml3.dll MSXML 3.0 SP10 Microsoft Corporation 8.100.1048.0msxml3r.dll XML Resources Microsoft Corporation 8.20.8730.1napinsp.dll Fournisseur Shim d'affectation de noms de messagerie Microsoft Corporation 6.0.6001.18000NETAPI32.dll Net Win32 API DLL Microsoft Corporation 6.0.6001.18157netshell.dll Noyau des Connexions réseau Microsoft Corporation 6.0.6001.18000NLAapi.dll Network Location Awareness 2 Microsoft Corporation 6.0.6001.18000Normaliz.dll Unicode Normalization DLL Microsoft Corporation 6.0.6000.16386npmproxy.dll Network List Manager Proxy Microsoft Corporation 6.0.6000.16386NSI.dll NSI User-mode interface DLL Microsoft Corporation 6.0.6001.18000ntdll.dll DLL Couche NT Microsoft Corporation 6.0.6001.18000ole32.dll Microsoft OLE pour Windows Microsoft Corporation 6.0.6001.18000OLEACC.dll Active Accessibility Core Component Microsoft Corporation 4.2.5406.0oleaccrc.dll Active Accessibility Resource DLL Microsoft Corporation 4.2.5406.0oleaut32.dll Microsoft Corporation 6.0.6001.18000pnrpnsp.dll Fournisseur d'espace de noms PNRP Microsoft Corporation 6.0.6001.18000PSAPI.DLL Process Status Helper Microsoft Corporation 6.0.6000.16386R000000000009.clb rasadhlp.dll Remote Access AutoDial Helper Microsoft Corporation 6.0.6000.16386RPCRT4.dll Runtime d'appel de procédure distante Microsoft Corporation 6.0.6001.18051rsaenh.dll Microsoft Enhanced Cryptographic Provider Microsoft Corporation 6.0.6001.18000Secur32.dll Security Support Provider Interface Microsoft Corporation 6.0.6001.18000SHELL32.dll DLL commune du shell Windows Microsoft Corporation 6.0.6001.18167shfolder.dll Shell Folder Service Microsoft Corporation 6.0.6000.16386SHLWAPI.dll Bibliothèque d'utilitaires légers du Shell Microsoft Corporation 6.0.6001.18000ShowErrMsg.dll ShowErrMsg 2.5.3024.22slc.dll Dll de client de gestion de licences du logiciel Microsoft Corporation 6.0.6001.18000SSDPAPI.dll SSDP Client API DLL Microsoft Corporation 6.0.6000.16386SXS.DLL Fusion 2.5 Microsoft Corporation 6.0.6001.18000sysenv.dll System share library HiTRUST 2.5.3021.108upnp.dll UPnP Control Point API Microsoft Corporation 6.0.6001.18000urlmon.dll Extensions OLE32 pour Win32 Microsoft Corporation 7.0.6001.18203USER32.dll DLL client de l'API uilisateur de Windows multi-utilisateurs Microsoft Corporation 6.0.6001.18000USERENV.dll Userenv Microsoft Corporation 6.0.6001.18000USP10.dll Uniscribe Unicode script processor Microsoft Corporation 1.626.6001.18000uTorrent.exe µTorrent BitTorrent, Inc. 1.8.2.14458uxtheme.dll Bibliothèque de thèmes Ux Microsoft Microsoft Corporation 6.0.6001.18000VERSION.dll Version Checking and File Installation Libraries Microsoft Corporation 6.0.6001.18000WINHTTP.dll Services HTTP Windows Microsoft Corporation 6.0.6001.18000WININET.dll Extensions Internet pour Win32 Microsoft Corporation 7.0.6001.18203WINNSI.DLL Network Store Information RPC interface Microsoft Corporation 6.0.6001.18000winrnr.dll LDAP RnR Provider DLL Microsoft Corporation 6.0.6000.16386WINSPOOL.DRV Pilote de spouleur Windows Microsoft Corporation 6.0.6001.18000WLDAP32.dll DLL API LDAP Win32 Microsoft Corporation 6.0.6001.18000WS2_32.dll Windows Socket 2.0 32-Bit DLL Microsoft Corporation 6.0.6001.18000wship6.dll DLL d'application d'assistance Winsock2 (TL/IPv6) Microsoft Corporation 6.0.6001.18000wshtcpip.dll DLL d'application d'assistance Winsock2 (TL/IPv4) Microsoft Corporation 6.0.6001.18000 Link to comment Share on other sites More sharing options...
moogly Posted March 29, 2009 Report Share Posted March 29, 2009 fsgkiapi.dll fsgkiapi F-Secure Corp. 7.70.14204.15921fslsp.dll F-Secure Protocol Scanner LSP F-Secure Corporation 2.1.610.0CryptoAPI.dll CryptoAPI HiTRUST 2.2.0.34keyManager.dll keyManager HiTRSUT 2.2.0.18MsnChatHook.dll MsnChatHook HiTRUST Inc. 2.5.3.11sysenv.dll System share library HiTRUST 2.5.3021.108ShowErrMsg.dll ShowErrMsg 2.5.3024.22Il y a un paquet de DLLs injectées dans uT. A priori je pense que c'est ton antivirus F-Secure qui pose problème, en particulier le module de scanning. Essaie d'exclure uT du scan de F-Secure.Le mieux serait de désintaller ton antivirus temporairement et de voir si uT continue à crasher. Si ce n'est pas le cas, F-Secure est coupable et à remplacer par un autre AV mieux (AVG ou Avira par ex.). J'ai déjà vu un AV dérivé de F-Secure qui était le coupable.Par ailleurs il y a des DLLs de HiTRUST Inc., je ne sais pas trop à quoi ça sert. C'est pour l'identification des empreintes digitales non ? Link to comment Share on other sites More sharing options...
Meda31 Posted March 29, 2009 Report Share Posted March 29, 2009 si malgré toutes les solutions de moogly qui sont à mon humble avis intéressantes et judicieuses, tu as toujours un problème, j'aimerai savoir une chose à propos de ton installations si possible. Peux nous dire de combien date ton installation téléphonique? ça à l'air anodin comme question, juste une réponse avant d'aller jusqu'au bout de ma pensée^^ Link to comment Share on other sites More sharing options...
seb72 Posted March 30, 2009 Author Report Share Posted March 30, 2009 Pour HiTRUST Inc,je vois pas d'où ça vient?Il y danger ou pas?Meda31 pour ma ligne j'ai aménagé en août 2008 et la maison est de 1913 donc la ligne est probablement âgée. Link to comment Share on other sites More sharing options...
moogly Posted March 30, 2009 Report Share Posted March 30, 2009 HiTrust je ne connais pas mais je pense que c'est une boite qui produit un logiciel de sécurité pour les PC genre lecteur d'empreintes digitales ou autres. Tu as sûrement eu ça en achetant ton PC, en pré-installé.Sinon le point principal est de regarder si F-Secure perturbe uT. As-tu désinstallé cet AV pour tester ? Link to comment Share on other sites More sharing options...
seb72 Posted March 30, 2009 Author Report Share Posted March 30, 2009 ça marche merci.J'ai mis AVG faut t'il passé à la version payante?c'est bien F sécure qui merde.C'est l'anti virus de neuf.J'ai mis AVG faut t'il passer à la version payante Link to comment Share on other sites More sharing options...
moogly Posted March 30, 2009 Report Share Posted March 30, 2009 Bcp de gens ont AVG en free. Tu peux aussi tester Avira dans le mm style.En payant, les meilleurs sont Bitdefender ou Kaspersky. Après chacun pose aussi qqes pbms parfois. :/En firewall, je te conseille Comodo sans soucis. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.