Sujet Précédent Sujet Suivant

HijackThis

Utilisateur anonyme -  
 Utilisateur anonyme -
Salut est ce que quelqu'un pourrais m'aidai avec l'analyse d'HijackThis s'il vous plait car je ne sait pas comment ca marhce ( malgré les tas de foi que je l'utilise) répondez juste oui pour que je poste le tout.
MERCI.
A voir également:

13 réponses

Réponse 1 / 13
totobetourne Messages postés 5677 Statut Membre 65
 
oui, ps :je pars dans 5 mn
0
Réponse 2 / 13
Utilisateur anonyme
 
arf j'avai pas vue ton message j'était entrain de tel Ccleaner etc...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:03:02, on 21/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\ATI\SUPPORT\9-2_xp32_dd_ccc_wdm_enu_75974\Driver\setup.exe
C:\ATI\SUPPORT\9-2_xp32_dd_ccc_wdm_enu_75974\Driver\AtiCim.bin
C:\ATI\SUPPORT\9-2_xp32_dd_ccc_wdm_enu_75974\Driver\CCC\setup.exe
C:\ATI\SUPPORT\9-2_xp32_dd_ccc_wdm_enu_75974\Driver\CCC\setup.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://msnia.login.live.com/ppsecure/sha1auth.srf?lc=1036
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Planificateur Avira AntiVir Personal - Free Antivirus (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
0
Réponse 3 / 13
totobetourne Messages postés 5677 Statut Membre 65
 
1)a priori correct

2)comment se comporte ton pc?

3)si tu ne l as pas passe le , il remplacera largement ad aware.
passe cet antimalware, fait comme indique
Telecharges malwaresbytes antimalwares(MBAM) : egalement tres util sur pb de pub mais pas tous malheureusement

Malwarebytes Anti-Malware: http://www.malwarebytes.org/mbam/program/mbam-setup.exe

Tutoriel Malwarebytes Anti-Malware: https://forum.pcastuces.com/malwarebytes_antimalwares___tutoriel-f31s3.htm
fais comme indique,mise a jour , scan complet en mode sans echec et les rapports.
COLLE LE RAPPORT APRES SUPPRESSION MERCI.

garde le et lance un scan tout les mois comme indique.

si tu as ad aware tu peux desinstalle car il ne reconnait plus grand chose.

0
Réponse 4 / 13
Utilisateur anonyme
 
Merci il a rien détécté mon pc va mieu mais il a des crise d'asme lol il beug souvent mais ca dur 4/5 minutes
0

Vous n’avez pas trouvé la réponse que vous recherchez ?

Posez votre question
Réponse 5 / 13
totobetourne Messages postés 5677 Statut Membre 65
 
1)passe cela
pour enlever les fichiers temporaires

a passer tout les 15 jours a peu pres.

• Télécharger CCLeaner et l'installer sur le bureau en refusant l'installation de la barre Yahoo.
http://www.commentcamarche.net/telecharger/telecharger 168 ccleaner

• Fermer toutes les applications
• Lancer CCLeaner
S'il n'est pas en Français cliquer sur Options, Setting, Language
et sélectionner Français
• cocher dans le menu Nettoyeur - onglet Windows :
Internet Explorer: Fichiers Internet Temporaires, Cookies
• Système: Vider la Poubelle, Fichiers Temporaires, Presse-papiers
• Avancé: Vieilles données du Prefetch
• Décocher dans le menu Options - sous-menu Avancé :
Effacer uniquement les fichiers, du dossier temp de Windows, plus vieux que 48 heures
• Cocher dans le menu Nettoyeur - onglet Applications : Internet: Sun Java
• Cocher , si cela est possible, dans le menu Nettoyeur - onglet Applications :
Firefox/Mozilla: Cache Internet, Cookies
• Click sur Analyse
• Click sur le bouton Lancer le nettoyage dans le menu Nettoyeur.
• Click sur Registre
• Sélectionner tout
• Click sur Chercher des erreurs (En bas)

Une fois le scan terminé sélectionner tout
• Click sur Réparer les erreurs sélectionnées

2)Télécharge Random's System Information Tool (RSIT) de random/random et enregistre l'exécutable sur ton Bureau.

-> http://images.malwareremoval.com/random/RSIT.exe

! Déconnecte toi et ferme toutes tes applications en cours !

Double-clique sur " RSIT.exe " pour le lancer .

-> Une première fenêtre s'ouvre avec en titre : " Disclaimer of warranty " .

* Devant l'option "List files/folders created ..." , tu choisis : 2 months

* clique ensuite sur " Continue " pour lancer l'analyse ...

-> laisse faire le scan et ne touche pas au PC ...

Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront (probablement avec le bloc-note).

Poste le contenu de " log.txt " (c'est celui qui apparait à l'écran), ainsi que de " info.txt " (que tu verras dans la barre des tâches), pour analyse et attends la suite ...

Important : poste un rapport, puis l'autre dans la réponse suivante
Si tu essaies de poster les deux en même temps, cela risque d'être trop long pour le forum

( Note : les rapports seront en outre sauvegardés dans ce dossier -> C:\rsit )
0
Réponse 6 / 13
Utilisateur anonyme
 
ok merci jv faire tout ca mais juste un truc avan de se compliqué j'ai une ATI Radeon HD 4350 (1024 Mo) sur un DualCore Intel Pentium D 820, 2800 MHz (14 x 200) carte mére ATI Radeon Xpress 200.
Ca ne serait pas juste la carte graphique qui n'arrive pas a suivre pke je me suis dit que ca pouré étre la carte graphique ( se que j'éspére pas je préféré avec un truc genre viu autre que se soit la carte graphique qui n'es pas compatible :-( )
0
Réponse 7 / 13
Utilisateur anonyme
 
Logfile of random's system information tool 1.05 (written by random/random)
Run by tout le mondes at 2009-02-26 17:28:16
Microsoft Windows XP Professionnel Service Pack 2
System drive C: has 37 GB (47%) free of 78 GB
Total RAM: 1023 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:28:20, on 26/02/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\VM_STI.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\tout le mondes\Bureau\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\tout le mondes.exe

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = https://msnia.login.live.com/ppsecure/sha1auth.srf?lc=1036
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE Philips SPC210NC Webcam
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-583907252-1214440339-839522115-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe (User 'soria')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: TrayMin210.exe.lnk = ?
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - Trusted Zone: http://www.secuser.com
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/...
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Ma-Config Service (maconfservice) - CybelSoft - C:\Program Files\ma-config.com\maconfservice.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe
0
Réponse 8 / 13
Utilisateur anonyme
 
======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2009-01-26 1879896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2009-01-08 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-01-08 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-01-08 73728]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-01-08 136600]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-02-03 61440]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-02-13 17508864]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2008-06-19 57344]
"BigDogPath"=C:\WINDOWS\VM_STI.EXE [2004-06-09 40960]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2007-04-14 75392]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]
"msnmsgr"=C:\Program Files\MSN Messenger\msnmsgr.exe [2007-01-19 5674352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\MSN Messenger\MsnMsgr.Exe [2007-01-19 5674352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSTray]
C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe []

C:\Documents and Settings\All Users\Menu Démarrer\Programmes\Démarrage
TrayMin210.exe.lnk - C:\Program Files\Philips\Philips SPC210NC Webcam\TrayMin210.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2009-02-04 155648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 267304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"F:\samhyr\World of Warcraft\Repair.exe"="F:\samhyr\World of Warcraft\Repair.exe:*:Enabled:Blizzard Repair Utility"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"F:\Program Files\World of Warcraft\WoW-2.3.3.7799-to-2.4.0.8089-frFR-downloader.exe"="F:\Program Files\World of Warcraft\WoW-2.3.3.7799-to-2.4.0.8089-frFR-downloader.exe:*:Enabled:Blizzard Downloader"
"F:\Program Files\Emule\emule.exe"="F:\Program Files\Emule\emule.exe:*:Enabled:eMule"
"C:\Program Files\ma-config.com\maconfservice.exe"="C:\Program Files\ma-config.com\maconfservice.exe:LocalSubNet:Enabled:maconfservice"
"C:\Program Files\eMule\emule.exe"="C:\Program Files\eMule\emule.exe:*:Enabled:eMule"
"C:\WINDOWS\system32\muzapp.exe"="C:\WINDOWS\system32\muzapp.exe:*:Enabled:MUZ AOD APP player"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f29a99c6-fc57-11dd-9ef6-0016ec4b01a2}]
shell\AutoRun\command - F:\start.exe
shell\iledefrance\command - F:\start.exe
0
Réponse 9 / 13
Utilisateur anonyme
 
======List of files/folders created in the last 2 months======

2009-02-26 17:26:52 ----D---- C:\Documents and Settings\tout le mondes\Application Data\com.zipeg
2009-02-26 17:26:39 ----D---- C:\Program Files\Zipeg
2009-02-26 17:19:46 ----D---- C:\rsit
2009-02-26 02:32:26 ----D---- C:\Program Files\Windows Live Safety Center
2009-02-24 13:07:38 ----A---- C:\WINDOWS\system32\aswBoot.exe
2009-02-23 23:08:54 ----D---- C:\WINDOWS\report
2009-02-23 23:08:29 ----D---- C:\WINDOWS\AU_Backup
2009-02-23 23:08:28 ----A---- C:\WINDOWS\vsapi32.dll
2009-02-23 23:08:28 ----A---- C:\WINDOWS\tsc.ini
2009-02-23 23:08:28 ----A---- C:\WINDOWS\tsc.exe
2009-02-23 23:08:28 ----A---- C:\WINDOWS\hcextoutput.dll
2009-02-23 23:08:28 ----A---- C:\WINDOWS\BPMNT.dll
2009-02-23 23:06:54 ----A---- C:\WINDOWS\GetServer.ini
2009-02-23 23:06:53 ----D---- C:\WINDOWS\AU_Temp
2009-02-23 23:06:53 ----D---- C:\WINDOWS\AU_Log
2009-02-23 23:06:52 ----A---- C:\xscan.txt
2009-02-23 23:06:49 ----A---- C:\WINDOWS\UNZIP.DLL
2009-02-23 23:06:49 ----A---- C:\WINDOWS\TMUPDATE.DLL
2009-02-23 23:06:48 ----A---- C:\WINDOWS\PATCH.EXE
2009-02-22 20:58:02 ----D---- C:\Documents and Settings\tout le mondes\Application Data\Malwarebytes
2009-02-22 20:57:50 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-02-22 20:57:50 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-02-22 18:46:27 ----D---- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
2009-02-22 18:46:16 ----D---- C:\Program Files\Windows Live
2009-02-22 18:46:15 ----D---- C:\Program Files\Messenger Plus! Live
2009-02-21 20:25:18 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2009-02-21 20:15:41 ----D---- C:\Program Files\Philips
2009-02-21 20:15:41 ----A---- C:\WINDOWS\VMCap.exe
2009-02-21 20:15:41 ----A---- C:\WINDOWS\VM_STI.EXE
2009-02-21 20:15:41 ----A---- C:\WINDOWS\system32\VM31bSTI.dll
2009-02-21 20:15:41 ----A---- C:\WINDOWS\amcap.exe
2009-02-21 15:43:14 ----HD---- C:\WINDOWS\PIF
2009-02-21 08:31:52 ----D---- C:\Documents and Settings\All Users\Application Data\ATI
2009-02-21 08:17:07 ----A---- C:\WINDOWS\RtlUpd.exe
2009-02-21 08:14:54 ----D---- C:\Program Files\Spybot - Search & Destroy
2009-02-21 08:14:54 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-02-21 08:11:54 ----D---- C:\Program Files\ATI
2009-02-21 07:54:28 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2009-02-21 07:53:00 ----D---- C:\Program Files\CCleaner
2009-02-21 07:51:05 ----D---- C:\Program Files\Marvell
2009-02-21 07:49:02 ----A---- C:\WINDOWS\system32\RTSUSTORicon.dll
2009-02-21 07:43:22 ----D---- C:\WINDOWS\system32\ALIEHCI
2009-02-21 06:29:18 ----D---- C:\Program Files\Trend Micro
2009-02-21 05:40:48 ----D---- C:\Program Files\Lavalys
2009-02-21 05:30:54 ----D---- C:\WINDOWS\pss
2009-02-21 05:17:59 ----D---- C:\Program Files\inKline Global
2009-02-20 19:36:22 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2009-02-20 19:35:57 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2009-02-20 19:35:26 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2009-02-20 19:35:24 ----N---- C:\WINDOWS\system32\xmllite.dll
2009-02-20 19:32:37 ----A---- C:\WINDOWS\system32\MRT.exe
2009-02-20 19:32:31 ----D---- C:\WINDOWS\network diagnostic
2009-02-20 19:32:30 ----HDC---- C:\WINDOWS\$NtUninstallKB914440$
2009-02-20 19:32:15 ----HDC---- C:\WINDOWS\$NtUninstallKB904942$
2009-02-20 19:16:48 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2009-02-20 15:16:03 ----N---- C:\WINDOWS\system32\unicows.dll
2009-02-20 15:16:03 ----N---- C:\WINDOWS\system32\msvcr70.dll
2009-02-20 15:16:02 ----N---- C:\WINDOWS\system32\MSLUR71.dll
2009-02-20 15:16:02 ----N---- C:\WINDOWS\system32\MSLUP71.dll
2009-02-20 15:16:02 ----N---- C:\WINDOWS\system32\MFC71u.dll
2009-02-20 15:16:02 ----N---- C:\WINDOWS\system32\mfc70.dll
2009-02-20 15:16:02 ----N---- C:\WINDOWS\system32\atl71.dll
2009-02-20 15:16:01 ----N---- C:\WINDOWS\system32\MFC71LU.DLL
2009-02-20 15:15:41 ----D---- C:\Program Files\Samsung
2009-02-20 15:15:40 ----D---- C:\Program Files\MarkAny
2009-02-18 22:01:43 ----D---- C:\Program Files\QuickPar
2009-02-18 20:35:24 ----D---- C:\Program Files\GrabIt
2009-02-18 20:32:52 ----D---- C:\Documents and Settings\tout le mondes\Application Data\GrabIt
2009-02-18 12:27:12 ----D---- C:\Documents and Settings\tout le mondes\Application Data\ImgBurn
2009-02-18 12:16:00 ----D---- C:\Program Files\ImgBurn
2009-02-18 12:15:45 ----D---- C:\WINDOWS\system32\appmgmt
2009-02-17 15:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2009-02-17 15:05:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2009-02-17 15:05:01 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2009-02-17 15:04:53 ----HDC---- C:\WINDOWS\$NtUninstallKB935448$
2009-02-17 15:04:44 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2009-02-17 15:04:22 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
2009-02-17 15:04:06 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2009-02-17 15:03:57 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2009-02-17 15:03:48 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2009-02-17 15:03:31 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2009-02-17 15:03:17 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
2009-02-17 15:03:09 ----D---- C:\Program Files\MSXML 6.0
2009-02-17 15:02:58 ----HDC---- C:\WINDOWS\$NtUninstallKB925720$
2009-02-17 15:02:47 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2009-02-17 15:02:40 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2009-02-17 15:02:32 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2009-02-17 15:02:25 ----HDC---- C:\WINDOWS\$NtUninstallKB960715$
2009-02-17 15:02:17 ----HDC---- C:\WINDOWS\$NtUninstallKB958687$
2009-02-17 15:02:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2009-02-17 15:02:02 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2009-02-17 15:01:54 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2009-02-17 15:01:43 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2009-02-17 15:01:35 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2009-02-17 15:01:26 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2009-02-17 15:01:18 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2009-02-17 15:01:09 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2009-02-17 15:01:01 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2009-02-17 15:00:55 ----D---- C:\Program Files\MSXML 4.0
2009-02-17 15:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2009-02-17 09:09:36 ----D---- C:\OUT_MEDIA_FILES
2009-02-17 09:09:26 ----A---- C:\WINDOWS\system32\WNASPI32.DLL
2009-02-17 09:09:18 ----D---- C:\Program Files\Alt WAV MP3 WMA OGG Converter
2009-02-17 08:04:43 ----D---- C:\Documents and Settings\tout le mondes\Application Data\Intermedia Software
2009-02-17 08:04:14 ----D---- C:\Program Files\Intermedia Software
2009-02-17 08:04:14 ----A---- C:\WINDOWS\system32\msxml4a.dll
2009-02-17 06:56:59 ----D---- C:\Program Files\Audacity
2009-02-17 04:55:49 ----D---- C:\Program Files\eMule
2009-02-17 00:00:45 ----D---- C:\WINDOWS\system32\CatRoot_bak
2009-02-16 19:51:19 ----A---- C:\WINDOWS\system32\unM5287.exe
2009-02-16 19:51:19 ----A---- C:\WINDOWS\system32\rm5287.exe
2009-02-16 19:42:44 ----D---- C:\Program Files\ma-config.com
2009-02-16 19:42:44 ----D---- C:\Documents and Settings\All Users\Application Data\ma-config.com
2009-02-16 19:36:31 ----A---- C:\WINDOWS\system32\OLD4F.tmp
2009-02-16 19:36:31 ----A---- C:\WINDOWS\system32\OLD4E.tmp
2009-02-16 19:31:06 ----D---- C:\Documents and Settings\tout le mondes\Application Data\FileZilla
2009-02-16 19:30:53 ----D---- C:\Program Files\FileZilla FTP Client
2009-02-16 18:56:18 ----D---- C:\WINDOWS\system32\PreInstall
2009-02-16 18:56:16 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2009-02-16 18:56:16 ----HD---- C:\WINDOWS\$hf_mig$
2009-02-04 03:43:04 ----A---- C:\WINDOWS\system32\aticalrt.dll
2009-02-04 03:42:57 ----A---- C:\WINDOWS\system32\aticalcl.dll
2009-02-04 03:40:14 ----A---- C:\WINDOWS\system32\aticaldd.dll
2009-01-10 23:52:42 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2009-01-10 23:19:24 ----N---- C:\WINDOWS\system32\ati2sgag.exe
2009-01-10 23:18:13 ----D---- C:\ATI
2009-01-10 04:43:02 ----D---- C:\Documents and Settings\tout le mondes\Application Data\LimeWire
2009-01-10 04:40:36 ----D---- C:\Documents and Settings\tout le mondes\Application Data\Audacity
2009-01-09 23:30:41 ----A---- C:\WINDOWS\NeroDigital.ini
2009-01-09 23:29:17 ----D---- C:\Documents and Settings\tout le mondes\Application Data\Nero
2009-01-09 21:19:57 ----A---- C:\WINDOWS\Irremote.ini
2009-01-09 21:17:25 ----D---- C:\Program Files\Windows Sidebar
2009-01-09 21:04:41 ----D---- C:\Program Files\Nero
2009-01-09 21:04:10 ----D---- C:\Documents and Settings\All Users\Application Data\Nero
2009-01-09 21:04:09 ----D---- C:\Program Files\Fichiers communs\Nero
2009-01-09 20:59:32 ----D---- C:\WINDOWS\system32\XPSViewer
2009-01-09 20:59:30 ----D---- C:\WINDOWS\system32\en-us
2009-01-09 20:58:52 ----D---- C:\Program Files\Reference Assemblies
2009-01-09 20:58:28 ----N---- C:\WINDOWS\system32\spmsg2.dll
2009-01-09 20:58:08 ----HDC---- C:\WINDOWS\$NtUninstallWIC$
2009-01-09 20:51:22 ----N---- C:\WINDOWS\system32\spmsg.dll
2009-01-09 20:51:05 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2009-01-09 20:17:21 ----A---- C:\WINDOWS\system32\msonpmon.dll
2009-01-09 20:15:26 ----D---- C:\Program Files\Microsoft Works
2009-01-09 20:15:12 ----D---- C:\Program Files\MSBuild
2009-01-09 20:14:36 ----D---- C:\Program Files\Microsoft Visual Studio
2009-01-09 20:14:36 ----D---- C:\Program Files\Fichiers communs\DESIGNER
2009-01-09 20:13:16 ----D---- C:\Program Files\Microsoft.NET
2009-01-09 20:09:44 ----D---- C:\Program Files\Microsoft Visual Studio 8
2009-01-09 20:06:07 ----D---- C:\WINDOWS\SHELLNEW
2009-01-09 20:05:07 ----D---- C:\Program Files\Microsoft Office
2009-01-09 20:05:00 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2009-01-09 20:04:16 ----RHD---- C:\MSOCache
2009-01-09 16:11:50 ----D---- C:\Logs
2009-01-09 02:09:31 ----D---- C:\WINDOWS\Sun
2009-01-09 02:09:30 ----D---- C:\Documents and Settings\tout le mondes\Application Data\Sun
2009-01-09 01:28:24 ----D---- C:\Documents and Settings\tout le mondes\Application Data\dvdcss
2009-01-08 23:09:03 ----D---- C:\Program Files\Paint.NET
2009-01-08 22:42:59 ----D---- C:\Documents and Settings\tout le mondes\Application Data\DivX
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\vxblock.dll
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\pxwave.dll
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\pxsfs.dll
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\pxmas.dll
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\pxinsi64.exe
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\pxdrv.dll
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\pxcpyi64.exe
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2009-01-08 21:58:05 ----N---- C:\WINDOWS\system32\pxafs.dll
2009-01-08 21:58:04 ----N---- C:\WINDOWS\system32\px.dll
2009-01-08 21:57:39 ----D---- C:\Program Files\DivX
2009-01-08 21:27:40 ----D---- C:\Documents and Settings\tout le mondes\Application Data\Macromedia
2009-01-08 21:27:40 ----D---- C:\Documents and Settings\tout le mondes\Application Data\Adobe
2009-01-08 20:13:35 ----D---- C:\Documents and Settings\tout le mondes\Application Data\vlc
2009-01-08 20:03:30 ----D---- C:\Program Files\VideoLAN
2009-01-08 19:58:37 ----D---- C:\OutputFolder
2009-01-08 19:51:53 ----A---- C:\WINDOWS\system32\AVERM.dll
2009-01-08 19:51:53 ----A---- C:\WINDOWS\system32\AVEQT.dll
2009-01-08 19:51:52 ----D---- C:\Program Files\Ultra Mobile 3GP Video Converter
2009-01-08 19:46:50 ----D---- C:\Documents and Settings\tout le mondes\Application Data\WinRAR
2009-01-08 19:41:49 ----D---- C:\Program Files\WinRAR
2009-01-08 19:39:23 ----DC---- C:\WINDOWS\system32\DRVSTORE
2009-01-08 19:39:17 ----D---- C:\Program Files\MSN Messenger
2009-01-08 19:24:43 ----D---- C:\Program Files\uTorrent
2009-01-08 19:24:41 ----D---- C:\Documents and Settings\tout le mondes\Application Data\uTorrent
2009-01-08 18:26:35 ----D---- C:\Program Files\Fichiers communs\Blizzard Entertainment
2009-01-08 18:10:05 ----D---- C:\Documents and Settings\tout le mondes\Application Data\Mozilla
2009-01-08 18:07:17 ----D---- C:\Documents and Settings\tout le mondes\Application Data\ATI
2009-01-08 18:07:04 ----A---- C:\WINDOWS\system32\wmpns.dll
2009-01-08 18:07:03 ----D---- C:\Documents and Settings\tout le mondes\Application Data\Identities
2009-01-08 18:06:36 ----ASH---- C:\Documents and Settings\tout le mondes\Application Data\desktop.ini
2009-01-08 18:06:35 ----SD---- C:\Documents and Settings\tout le mondes\Application Data\Microsoft
2009-01-08 17:45:53 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2009-01-08 17:45:53 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2009-01-08 17:45:53 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2009-01-08 17:45:53 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2009-01-08 17:45:53 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2009-01-08 17:45:52 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2009-01-08 17:45:52 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2009-01-08 17:45:52 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2009-01-08 17:45:52 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2009-01-08 17:45:51 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2009-01-08 17:45:51 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2009-01-08 17:45:51 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2009-01-08 17:45:51 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2009-01-08 17:45:51 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2009-01-08 17:45:50 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2009-01-08 17:45:50 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2009-01-08 17:45:50 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2009-01-08 17:45:50 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2009-01-08 17:45:50 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2009-01-08 17:45:49 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2009-01-08 17:45:49 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2009-01-08 17:45:48 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2009-01-08 17:45:48 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2009-01-08 17:45:46 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2009-01-08 17:45:45 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2009-01-08 17:45:45 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2009-01-08 17:45:45 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-01-08 17:45:44 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2009-01-08 17:45:44 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2009-01-08 17:45:44 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2009-01-08 17:45:44 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2009-01-08 17:45:44 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2009-01-08 17:45:43 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2009-01-08 17:45:43 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2009-01-08 17:45:43 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2009-01-08 17:45:36 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2009-01-08 17:45:36 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2009-01-08 17:45:36 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2009-01-08 17:45:35 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2009-01-08 17:45:35 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2009-01-08 17:45:35 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-01-08 17:45:34 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2009-01-08 17:45:34 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2009-01-08 17:45:33 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2009-01-08 17:45:30 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2009-01-08 17:40:05 ----A---- C:\WINDOWS\system32\javaws.exe
2009-01-08 17:40:05 ----A---- C:\WINDOWS\system32\javaw.exe
2009-01-08 17:40:05 ----A---- C:\WINDOWS\system32\java.exe
2009-01-08 17:40:05 ----A---- C:\WINDOWS\system32\deploytk.dll
2009-01-08 17:39:53 ----D---- C:\Program Files\Java
2009-01-08 17:34:22 ----D---- C:\Program Files\Mozilla Firefox
2009-01-08 16:56:55 ----RSD---- C:\WINDOWS\assembly
2009-01-08 16:56:30 ----D---- C:\WINDOWS\Microsoft.NET
2009-01-08 16:55:40 ----D---- C:\Program Files\ATI Technologies
2009-01-08 16:52:54 ----RA---- C:\WINDOWS\system32\nvudisp.exe
2009-01-08 15:58:09 ----D---- C:\WINDOWS\system32\Lang
2009-01-08 15:55:54 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-01-08 15:54:26 ----A---- C:\WINDOWS\system32\ksuser.dll
2009-01-08 15:54:18 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2009-01-08 15:54:17 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2009-01-08 15:54:14 ----A---- C:\WINDOWS\ALCWZRD.EXE
2009-01-08 15:54:14 ----A---- C:\WINDOWS\ALCMTR.EXE
2009-01-08 15:54:13 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2009-01-08 15:54:13 ----A---- C:\WINDOWS\RTHDCPL.EXE
2009-01-08 15:54:13 ----A---- C:\WINDOWS\MicCal.exe
2009-01-08 15:54:12 ----R---- C:\WINDOWS\system32\ChCfg.exe
2009-01-08 15:54:12 ----D---- C:\WINDOWS\system32\RTCOM
2009-01-08 15:54:12 ----A---- C:\WINDOWS\RTLCPL.EXE
2009-01-08 15:53:56 ----D---- C:\Program Files\Realtek
2009-01-08 15:53:55 ----HD---- C:\Program Files\InstallShield Installation Information
2009-01-08 15:53:42 ----A---- C:\WINDOWS\RtlExUpd.dll
2009-01-08 15:53:12 ----A---- C:\WINDOWS\system32\h323log.txt
2009-01-08 15:53:02 ----D---- C:\Program Files\Fichiers communs\InstallShield
2009-01-08 15:52:23 ----A---- C:\WINDOWS\system32\hidserv.dll
2009-01-08 15:51:00 ----A---- C:\WINDOWS\system32\usbui.dll
2009-01-08 15:49:37 ----N---- C:\WINDOWS\system32\agrsmdel.exe
2009-01-08 15:49:32 ----D---- C:\WINDOWS\Options
2009-01-08 15:49:08 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2009-01-08 15:49:07 ----SHD---- C:\WINDOWS\Installer
2009-01-08 15:49:06 ----D---- C:\Program Files\Fichiers communs\ODBC
2009-01-08 15:49:06 ----A---- C:\WINDOWS\ODBCINST.INI
2009-01-08 15:49:02 ----D---- C:\Program Files\Fichiers communs\SpeechEngines
2009-01-08 15:49:01 ----RD---- C:\Program Files
2009-01-08 15:49:01 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-01-08 15:49:01 ----D---- C:\Program Files\Fichiers communs
2009-01-08 15:48:57 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2009-01-08 15:48:57 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2009-01-08 15:48:57 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2009-01-08 15:48:55 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2009-01-08 15:48:55 ----RA---- C:\WINDOWS\system32\kbdur.dll
2009-01-08 15:48:55 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2009-01-08 15:48:55 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2009-01-08 15:48:55 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2009-01-08 15:48:55 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2009-01-08 15:48:55 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2009-01-08 15:48:54 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2009-01-08 15:48:54 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2009-01-08 15:48:54 ----RA---- C:\WINDOWS\system32\kbdru.dll
2009-01-08 15:48:54 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2009-01-08 15:48:54 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2009-01-08 15:48:52 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2009-01-08 15:48:52 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2009-01-08 15:48:52 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2009-01-08 15:48:52 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2009-01-08 15:48:52 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2009-01-08 15:48:52 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2009-01-08 15:48:52 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2009-01-08 15:48:50 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2009-01-08 15:48:50 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2009-01-08 15:48:50 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2009-01-08 15:48:50 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2009-01-08 15:48:50 ----RA---- C:\WINDOWS\system32\kbdest.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdycl.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdsl1.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdsl.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdro.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdpl1.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdpl.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdhu1.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdhu.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdcz2.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdcz1.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdcz.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\kbdcr.dll
2009-01-08 15:48:47 ----RA---- C:\WINDOWS\system32\KBDAL.DLL
2009-01-08 15:48:44 ----A---- C:\WINDOWS\system32\irclass.dll
2009-01-08 15:48:44 ----A---- C:\WINDOWS\system32\dgsetup.dll
2009-01-08 15:48:44 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2009-01-08 15:48:43 ----A---- C:\WINDOWS\system32\spxcoins.dll
2009-01-08 15:48:43 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2009-01-08 15:48:41 ----A---- C:\WINDOWS\TASKMAN.EXE
2009-01-08 15:48:40 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2009-01-08 15:48:40 ----A---- C:\WINDOWS\system32\batt.dll
2009-01-08 15:48:39 ----A---- C:\WINDOWS\system32\storprop.dll
2009-01-08 15:48:39 ----A---- C:\WINDOWS\NOTEPAD.EXE
2009-01-08 15:48:31 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2009-01-08 15:48:26 ----RA---- C:\WINDOWS\SET8.tmp
2009-01-08 15:48:22 ----RA---- C:\WINDOWS\SET4.tmp
2009-01-08 15:48:21 ----RA---- C:\WINDOWS\SET3.tmp
2009-01-08 15:48:16 ----D---- C:\WINDOWS\system32\CatRoot2
2009-01-08 15:48:16 ----D---- C:\WINDOWS\system32\CatRoot
2009-01-08 15:48:10 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-01-08 15:47:40 ----D---- C:\Documents and Settings
2009-01-08 15:47:39 ----SHD---- C:\System Volume Information
2009-01-08 15:47:11 ----SH---- C:\boot.ini
2009-01-08 15:46:48 ----D---- C:\drivers
2009-01-08 15:39:37 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-01-08 15:39:37 ----RSD---- C:\WINDOWS\Fonts
2009-01-08 15:39:37 ----RD---- C:\WINDOWS\Web
2009-01-08 15:39:37 ----D---- C:\WINDOWS\WinSxS
2009-01-08 15:39:37 ----D---- C:\WINDOWS\twain_32
2009-01-08 15:39:37 ----D---- C:\WINDOWS\Temp
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\wins
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\wbem
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\usmt
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\spool
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\ShellExt
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\Setup
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\ras
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\oobe
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\npp
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\mui
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\inetsrv
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\IME
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\icsxml
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\ias
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\export
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\drivers
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\dhcp
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\config
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\3com_dmi
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\3076
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\2052
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\1054
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\1042
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\1041
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\1037
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\1036
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\1033
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\1031
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\1028
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32\1025
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system32
2009-01-08 15:39:37 ----D---- C:\WINDOWS\system
2009-01-08 15:39:37 ----D---- C:\WINDOWS\security
2009-01-08 15:39:37 ----D---- C:\WINDOWS\Resources
2009-01-08 15:39:37 ----D---- C:\WINDOWS\repair
2009-01-08 15:39:37 ----D---- C:\WINDOWS\Provisioning
2009-01-08 15:39:37 ----D---- C:\WINDOWS\PeerNet
2009-01-08 15:39:37 ----D---- C:\WINDOWS\pchealth
2009-01-08 15:39:37 ----D---- C:\WINDOWS\mui
2009-01-08 15:39:37 ----D---- C:\WINDOWS\msapps
2009-01-08 15:39:37 ----D---- C:\WINDOWS\msagent
2009-01-08 15:39:37 ----D---- C:\WINDOWS\Media
2009-01-08 15:39:37 ----D---- C:\WINDOWS\java
2009-01-08 15:39:37 ----D---- C:\WINDOWS\inf
2009-01-08 15:39:37 ----D---- C:\WINDOWS\ime
2009-01-08 15:39:37 ----D---- C:\WINDOWS\Help
2009-01-08 15:39:37 ----D---- C:\WINDOWS\ehome
2009-01-08 15:39:37 ----D---- C:\WINDOWS\Driver Cache
2009-01-08 15:39:37 ----D---- C:\WINDOWS\Debug
2009-01-08 15:39:37 ----D---- C:\WINDOWS\Cursors
2009-01-08 15:39:37 ----D---- C:\WINDOWS\Connection Wizard
2009-01-08 15:39:37 ----D---- C:\WINDOWS\Config
2009-01-08 15:39:37 ----D---- C:\WINDOWS\AppPatch
2009-01-08 15:39:37 ----D---- C:\WINDOWS\addins
2009-01-08 15:39:37 ----D---- C:\WINDOWS
2009-01-08 15:16:19 ----A---- C:\WINDOWS\system32\MSVCR71.dll
2009-01-08 15:16:19 ----A---- C:\WINDOWS\system32\MSVCP71.dll
2009-01-08 15:16:19 ----A---- C:\WINDOWS\system32\MFC71.dll
2009-01-08 15:16:15 ----D---- C:\Program Files\Alwil Software
2009-01-08 15:11:27 ----SHD---- C:\RECYCLER
2009-01-08 15:09:50 ----A---- C:\WINDOWS\system32\atiiiexx.dll
2009-01-08 15:03:22 ----HD---- C:\Program Files\Uninstall Information
2009-01-08 15:03:04 ----D---- C:\WINDOWS\SoftwareDistribution
2009-01-08 15:03:01 ----D---- C:\WINDOWS\Prefetch
2009-01-08 15:03:00 ----SD---- C:\WINDOWS\system32\Microsoft
2009-01-08 15:03:00 ----N---- C:\WINDOWS\SchedLgU.Txt
2009-01-08 14:59:28 ----D---- C:\WINDOWS\system32\xircom
2009-01-08 14:59:28 ----D---- C:\Program Files\xerox
2009-01-08 14:59:28 ----D---- C:\Program Files\msn gaming zone
2009-01-08 14:59:28 ----D---- C:\Program Files\microsoft frontpage
2009-01-08 14:59:08 ----A---- C:\WINDOWS\control.ini
2009-01-08 14:59:08 ----A---- C:\AUTOEXEC.BAT
2009-01-08 14:58:53 ----A---- C:\WINDOWS\system32\mapi32.dll
2009-01-08 14:57:55 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-01-08 14:57:55 ----RD---- C:\WINDOWS\Offline Web Pages
2009-01-08 14:57:55 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2009-01-08 14:57:48 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2009-01-08 14:57:43 ----HD---- C:\Program Files\WindowsUpdate
2009-01-08 14:57:39 ----D---- C:\Program Files\Services en ligne
2009-01-08 14:57:16 ----D---- C:\WINDOWS\system32\DirectX
2009-01-08 14:56:48 ----A---- C:\WINDOWS\system32\atrace.dll
2009-01-08 14:56:44 ----A---- C:\WINDOWS\system32\desktop.ini
2009-01-08 14:56:44 ----A---- C:\WINDOWS\desktop.ini
2009-01-08 14:56:36 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2009-01-08 14:56:34 ----A---- C:\WINDOWS\system32\acctres.dll
2009-01-08 14:56:33 ----D---- C:\Program Files\Fichiers communs\Services
2009-01-08 14:56:30 ----SD---- C:\WINDOWS\Tasks
2009-01-08 14:56:30 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2009-01-08 14:56:28 ----D---- C:\Program Files\Fichiers communs\MSSoap
2009-01-08 14:56:23 ----D---- C:\WINDOWS\srchasst
2009-01-08 14:56:22 ----D---- C:\WINDOWS\system32\Macromed
2009-01-08 14:56:18 ----A---- C:\WINDOWS\system32\wuweb.dll
2009-01-08 14:56:18 ----A---- C:\WINDOWS\system32\wucltui.dll
2009-01-08 14:56:18 ----A---- C:\WINDOWS\system32\wuauserv.dll
2009-01-08 14:56:18 ----A---- C:\WINDOWS\system32\wuaueng1.dll
2009-01-08 14:56:17 ----A---- C:\WINDOWS\system32\wups.dll
2009-01-08 14:56:17 ----A---- C:\WINDOWS\system32\wuaueng.dll
2009-01-08 14:56:17 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2009-01-08 14:56:17 ----A---- C:\WINDOWS\system32\wuauclt.exe
2009-01-08 14:56:17 ----A---- C:\WINDOWS\system32\wuapi.dll
2009-01-08 14:56:16 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2009-01-08 14:56:16 ----A---- C:\WINDOWS\system32\qmgr.dll
2009-01-08 14:56:16 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2009-01-08 14:56:16 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2009-01-08 14:56:10 ----D---- C:\Program Files\Movie Maker
2009-01-08 14:56:06 ----A---- C:\WINDOWS\system32\safrslv.dll
2009-01-08 14:56:05 ----A---- C:\WINDOWS\system32\safrdm.dll
2009-01-08 14:56:05 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2009-01-08 14:56:05 ----A---- C:\WINDOWS\system32\racpldlg.dll
2009-01-08 14:56:00 ----A---- C:\WINDOWS\system32\fltMc.exe
2009-01-08 14:56:00 ----A---- C:\WINDOWS\system32\fltlib.dll
2009-01-08 14:55:59 ----D---- C:\WINDOWS\system32\Restore
2009-01-08 14:55:59 ----A---- C:\WINDOWS\system32\srsvc.dll
2009-01-08 14:55:59 ----A---- C:\WINDOWS\system32\srrstr.dll
2009-01-08 14:55:59 ----A---- C:\WINDOWS\system32\srclient.dll
2009-01-08 14:55:58 ----A---- C:\WINDOWS\system32\mnmdd.dll
2009-01-08 14:55:58 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2009-01-08 14:55:58 ----A---- C:\WINDOWS\system32\ils.dll
2009-01-08 14:55:57 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2009-01-08 14:55:57 ----A---- C:\WINDOWS\system32\msconf.dll
2009-01-08 14:55:57 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2009-01-08 14:55:54 ----D---- C:\Program Files\NetMeeting
2009-01-08 14:55:54 ----A---- C:\WINDOWS\system32\msoert2.dll
2009-01-08 14:55:53 ----A---- C:\WINDOWS\system32\msoeacct.dll
2009-01-08 14:55:52 ----A---- C:\WINDOWS\system32\inetres.dll
2009-01-08 14:55:52 ----A---- C:\WINDOWS\system32\inetcomm.dll
2009-01-08 14:55:49 ----D---- C:\Program Files\Outlook Express
2009-01-08 14:55:49 ----A---- C:\WINDOWS\system32\schedsvc.dll
2009-01-08 14:55:49 ----A---- C:\WINDOWS\system32\mstinit.exe
2009-01-08 14:55:49 ----A---- C:\WINDOWS\system32\mstask.dll
2009-01-08 14:55:48 ----A---- C:\WINDOWS\system32\isign32.dll
2009-01-08 14:55:48 ----A---- C:\WINDOWS\system32\inetcfg.dll
2009-01-08 14:55:48 ----A---- C:\WINDOWS\system32\icwphbk.dll
2009-01-08 14:55:48 ----A---- C:\WINDOWS\system32\icwdial.dll
2009-01-08 14:55:40 ----D---- C:\Program Files\Fichiers communs\System
2009-01-08 14:55:38 ----D---- C:\Program Files\Internet Explorer
2009-01-08 14:55:02 ----D---- C:\Program Files\ComPlus Applications
2009-01-08 14:55:00 ----A---- C:\WINDOWS\vbaddin.ini
2009-01-08 14:55:00 ----A---- C:\WINDOWS\vb.ini
2009-01-08 14:54:55 ----D---- C:\WINDOWS\Registration
2009-01-08 14:54:46 ----D---- C:\Program Files\Windows Media Player
2009-01-08 14:54:42 ----A---- C:\WINDOWS\system32\write.exe
2009-01-08 14:54:41 ----A---- C:\WINDOWS\system32\sndvol32.exe
2009-01-08 14:54:41 ----A---- C:\WINDOWS\system32\hticons.dll
2009-01-08 14:54:41 ----A---- C:\WINDOWS\system32\avwav.dll
2009-01-08 14:54:41 ----A---- C:\WINDOWS\system32\avmeter.dll
2009-01-08 14:54:40 ----A---- C:\WINDOWS\system32\avtapi.dll
2009-01-08 14:54:39 ----A---- C:\WINDOWS\system32\getuname.dll
2009-01-08 14:54:39 ----A---- C:\WINDOWS\system32\charmap.exe
2009-01-08 14:54:38 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2009-01-08 14:54:38 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2009-01-08 14:54:38 ----A---- C:\WINDOWS\system32\tslabels.ini
2009-01-08 14:54:38 ----A---- C:\WINDOWS\system32\tskill.exe
2009-01-08 14:54:38 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2009-01-08 14:54:38 ----A---- C:\WINDOWS\system32\reset.exe
2009-01-08 14:54:38 ----A---- C:\WINDOWS\system32\calc.exe
2009-01-08 14:54:37 ----A---- C:\WINDOWS\system32\tscon.exe
2009-01-08 14:54:37 ----A---- C:\WINDOWS\system32\shadow.exe
2009-01-08 14:54:37 ----A---- C:\WINDOWS\system32\rwinsta.exe
2009-01-08 14:54:37 ----A---- C:\WINDOWS\system32\regini.exe
2009-01-08 14:54:37 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2009-01-08 14:54:37 ----A---- C:\WINDOWS\system32\qwinsta.exe
2009-01-08 14:54:37 ----A---- C:\WINDOWS\system32\qappsrv.exe
2009-01-08 14:54:37 ----A---- C:\WINDOWS\system32\msg.exe
2009-01-08 14:54:37 ----A---- C:\WINDOWS\system32\logoff.exe
2009-01-08 14:54:36 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2009-01-08 14:54:36 ----A---- C:\WINDOWS\system32\cdmodem.dll
2009-01-08 14:54:35 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2009-01-08 14:54:35 ----A---- C:\WINDOWS\system32\mtxex.dll
2009-01-08 14:54:35 ----A---- C:\WINDOWS\system32\mtxdm.dll
2009-01-08 14:54:35 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2009-01-08 14:54:35 ----A---- C:\WINDOWS\system32\comrepl.dll
2009-01-08 14:54:35 ----A---- C:\WINDOWS\system32\comaddin.dll
2009-01-08 14:54:34 ----A---- C:\WINDOWS\system32\stclient.dll
2009-01-08 14:54:34 ----A---- C:\WINDOWS\system32\comsnap.dll
2009-01-08 14:54:27 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2009-01-08 14:54:26 ----A---- C:\WINDOWS\system32\sndrec32.exe
2009-01-08 14:54:26 ----A---- C:\WINDOWS\system32\mplay32.exe
2009-01-08 14:54:26 ----A---- C:\WINDOWS\system32\hypertrm.dll
2009-01-08 14:54:25 ----D---- C:\Program Files\Windows NT
2009-01-08 14:54:25 ----A---- C:\WINDOWS\system32\clipbrd.exe
2009-01-08 14:54:24 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2009-01-08 14:54:24 ----A---- C:\WINDOWS\system32\remotepg.dll
2009-01-08 14:54:24 ----A---- C:\WINDOWS\system32\rdshost.exe
2009-01-08 14:54:24 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2009-01-08 14:54:24 ----A---- C:\WINDOWS\system32\mstscax.dll
2009-01-08 14:54:24 ----A---- C:\WINDOWS\system32\mstsc.exe
2009-01-08 14:54:23 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2009-01-08 14:54:23 ----A---- C:\WINDOWS\system32\termsrv.dll
2009-01-08 14:54:23 ----A---- C:\WINDOWS\system32\sessmgr.exe
2009-01-08 14:54:23 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2009-01-08 14:54:23 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2009-01-08 14:54:23 ----A---- C:\WINDOWS\system32\rdchost.dll
2009-01-08 14:54:22 ----D---- C:\WINDOWS\system32\MsDtc
2009-01-08 14:54:22 ----A---- C:\WINDOWS\system32\rdpclip.exe
2009-01-08 14:54:22 ----A---- C:\WINDOWS\system32\qprocess.exe
2009-01-08 14:54:22 ----A---- C:\WINDOWS\system32\mtxoci.dll
2009-01-08 14:54:22 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2009-01-08 14:54:22 ----A---- C:\WINDOWS\system32\icaapi.dll
2009-01-08 14:54:22 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2009-01-08 14:54:21 ----A---- C:\WINDOWS\system32\xolehlp.dll
2009-01-08 14:54:21 ----A---- C:\WINDOWS\system32\msdtctm.dll
2009-01-08 14:54:21 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2009-01-08 14:54:21 ----A---- C:\WINDOWS\system32\msdtclog.dll
2009-01-08 14:54:20 ----A---- C:\WINDOWS\system32\msdtc.exe
2009-01-08 14:54:19 ----D---- C:\WINDOWS\system32\Com
2009-01-08 14:54:19 ----A---- C:\WINDOWS\system32\colbact.dll
2009-01-08 14:54:19 ----A---- C:\WINDOWS\system32\clbcatex.dll
2009-01-08 14:54:19 ----A---- C:\WINDOWS\system32\catsrvut.dll
2009-01-08 14:54:19 ----A---- C:\WINDOWS\system32\catsrvps.dll
2009-01-08 14:54:19 ----A---- C:\WINDOWS\system32\catsrv.dll
2009-01-08 14:54:18 ----A---- C:\WINDOWS\system32\comuid.dll
2009-01-08 14:54:18 ----A---- C:\WINDOWS\system32\comsvcs.dll
2009-01-08 14:54:17 ----A---- C:\WINDOWS\system32\clbcatq.dll
2009-01-08 14:54:09 ----A---- C:\WINDOWS\system32\servdeps.dll
2009-01-08 14:54:08 ----A---- C:\WINDOWS\system32\mmfutil.dll
2009-01-08 14:54:08 ----A---- C:\WINDOWS\system32\licwmi.dll
2009-01-08 14:54:08 ----A---- C:\WINDOWS\system32\cmprops.dll
0
Réponse 10 / 13
Utilisateur anonyme
 
======List of files/folders modified in the last 2 months======

2009-02-25 22:20:07 ----A---- C:\WINDOWS\win.ini
2009-02-21 05:32:58 ----N---- C:\WINDOWS\system.ini
2009-02-04 06:57:13 ----A---- C:\WINDOWS\system32\atioglxx.dll
2009-02-04 06:03:34 ----A---- C:\WINDOWS\system32\atiok3x2.dll
2009-02-04 05:56:22 ----A---- C:\WINDOWS\system32\ATIDEMGX.dll
2009-02-04 05:55:01 ----A---- C:\WINDOWS\system32\ati2dvag.dll
2009-02-04 05:44:16 ----A---- C:\WINDOWS\system32\atipdlxx.dll
2009-02-04 05:44:03 ----A---- C:\WINDOWS\system32\Oemdspif.dll
2009-02-04 05:43:55 ----A---- C:\WINDOWS\system32\Ati2mdxx.exe
2009-02-04 05:43:45 ----A---- C:\WINDOWS\system32\ati2edxx.dll
2009-02-04 05:43:29 ----A---- C:\WINDOWS\system32\ati2evxx.dll
2009-02-04 05:41:55 ----A---- C:\WINDOWS\system32\ati2evxx.exe
2009-02-04 05:40:30 ----A---- C:\WINDOWS\system32\ATIDDC.DLL
2009-02-04 05:30:55 ----A---- C:\WINDOWS\system32\ati3duag.dll
2009-02-04 05:14:05 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2009-02-04 04:58:46 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2009-02-04 04:54:38 ----A---- C:\WINDOWS\system32\atikvmag.dll
2009-02-04 04:53:04 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2009-02-04 04:52:53 ----A---- C:\WINDOWS\system32\atitvo32.dll
2009-02-04 04:46:18 ----A---- C:\WINDOWS\system32\ati2cqag.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2007-04-14 26888]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2007-04-14 43176]
R1 intelppm;Pilote de processeur Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 40320]
R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
R1 Tcpip6;Pilote du protocole IPv6 Microsoft; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2008-06-20 225920]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2007-04-14 94552]
R2 NwlnkIpx;Protocole de transport compatible NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-04 88448]
R2 NwlnkNb;NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2002-03-27 63232]
R2 NwlnkSpx;Protocole NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2002-03-27 55936]
R3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-04 60800]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2007-04-14 23416]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-02-04 3488768]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2002-03-27 9600]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-02-13 5029376]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2002-03-27 12288]
R3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-04 61824]
R3 tunmp;Pilote de carte miniport Tun Microsoft; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2004-08-04 12416]
R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-04 31616]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2004-08-04 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2004-08-04 17024]
R3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2008-12-09 296448]
S3 ASPI;Advanced SCSI Programming Interface Driver; \??\C:\WINDOWS\System32\DRIVERS\ASPI32.sys []
S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-08-03 17024]
S3 driverhardwarev2;driverhardwarev2; \??\C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys []
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MSTEE.sys [2004-08-03 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-08-03 85376]
S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-08-03 10880]
S3 nm;Pilote du Moniteur réseau; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2004-08-04 40320]
S3 RSUSBSTOR;RTS5121.Sys Realtek USB Card Reader; C:\WINDOWS\System32\Drivers\RTS5121.sys []
S3 Rts516xIR;Realtek IR Driver; C:\WINDOWS\system32\DRIVERS\Rts516xIR.sys []
S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-08-03 11136]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-08-03 15360]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\WINDOWS\system32\DRIVERS\Rts5161ccid.sys []
S3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-04 26496]
S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-08-03 19328]
S3 ZSMC301b;Philips SPC210NC Webcam; C:\WINDOWS\System32\Drivers\usbVM31b.sys [2005-02-26 91527]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 6to4;Service d'application d'assistance IPv6; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2007-04-14 16512]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-02-04 602112]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2007-04-14 132736]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-01-08 152984]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Fichiers communs\Nero\Nero BackItUp 4\NBService.exe [2008-09-24 935208]
R2 NwSapAgent;Agent SAP; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2007-04-14 243328]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2007-04-14 345728]
R3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2009-02-03 593920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 maconfservice;Ma-Config Service; C:\Program Files\ma-config.com\maconfservice.exe [2009-01-24 216232]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

-----------------EOF-----------------
0
Réponse 11 / 13
Utilisateur anonyme
 
voila merci a toi et a toutes les personne qui pourront m'aidé ^^
0
Réponse 12 / 13
Utilisateur anonyme
 
quelqu'un peu m'aider? et me dire si d'une c'est compatible et de deux me traduire le log merci
0
Réponse 13 / 13
Utilisateur anonyme
 
s'il vous plait :)
0

Discussions similaires

Analyse des logs hijackthis
philnoug -
nayas13 -

35 réponses
spywar
stephane74 -
stephane74 -

4 réponses
Processus et démarrage
baptcollot -
baptcollot -

4 réponses
Analyse logs hijackthis
embêté -
Utilisateur anonyme -

21 réponses
rapport Hijackthis
kawito33 -
kawito33 -

87 réponses