Aller au contenu

  • Pas encore inscrit ?

    Pourquoi ne pas vous inscrire ? C'est simple, rapide et gratuit.
    Pour en savoir plus, lisez Les avantages de l'inscription... et la Charte de Zébulon.
    De plus, les messages que vous postez en tant qu'invité restent invisibles tant qu'un modérateur ne les a pas validés. Inscrivez-vous, ce sera un gain de temps pour tout le monde, vous, les helpeurs et les modérateurs ! :wink:

[Résolu] Infection ordinateur

els93

Par els93
dans Analyses et éradication malwares

 Partager

Messages recommandés

Falkra Devil Member !

Falkra

Posté(e)
Posté(e)

Re. Merci pour la copie d'écran. :P

 

Le n/a dans la colonne PID indique (si c'est ça qui est en cause) que le numéro windows du processus, c'est ça le PID, n'est pas lisible.

Le charge est élevée en effet, et cela peut venir de beaucoup de choses.

 

Télécharge random's system information tool (RSIT) par random/random et sauvegarde-le sur le Bureau.

  • Double-clique sur RSIT.exe afin de lancer RSIT.
  • Clique Continue à l'écran Disclaimer.
  • Si l'outil HijackThis (version à jour) n'est pas présent ou non détecté sur l'ordinateur, RSIT le téléchargera (autorise l'accès dans ton pare-feu, si demandé) et tu devras accepter la licence.
  • Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront. Poste le contenu de log.txt (<<qui sera affiché)
    ainsi que de info.txt (<<qui sera réduit dans la Barre des Tâches).
  • NB : Les rapports sont sauvegardés dans le dossier C:\rsit

els93 Junior Member

els93

Posté(e)
  • Auteur
Posté(e)

voici le premier raport:

info.txt logfile of random's system information tool 1.04 2008-10-07 12:02:17

 

======Uninstall list======

 

AsusUpdate-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\ASUS\AsusUpdate\Uninst.isu"

ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe

ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0

ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean

Catalyst Control Center - Branding-->MsiExec.exe /I{FA3A247D-437A-455E-A88F-7EB6E5F9E799}

CCleaner-->"C:\Program Files\CCleaner\uninst.exe"

HijackThis 2.0.2-->"C:\Program Files\HiJackThis\HijackThis.exe" /uninstall

Java 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}

LClock-->"C:\Program Files\LClock\Désinstaller.exe"

Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"

Marvell Miniport Driver-->MsiExec.exe /X{C950420B-4182-49EA-850A-A6A2ABF06C6B}

Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}

Microsoft Xbox 360 Accessories 1.1-->MsiExec.exe /X{9F5DF7FC-3AF2-4502-9084-F62FC00A5A3F}

Mise à jour de sécurité pour Lecteur Windows Media 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"

Mise à jour de sécurité pour Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"

NOD32 Antivirus System-->C:\Program Files\Eset\Setup\setup.exe /UNINSTALL

NOD32 FiX v1.9-->"C:\Program Files\Eset\unins000.exe"

SoundMAX-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe" -l0x40c -removeonly

Taskix-->"C:\Program Files\Taskix\Désinstaller.exe"

TP-LINK Client Installation Program-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{28006915-2739-4EBE-B5E8-49B25D32EB33}\setup.exe" -l0x9 -removeonly

TransBar-->"C:\Program Files\TransBar\Désinstaller.exe"

ULi Sata Driver-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FDC53DC6-137A-4541-BFA2-A9BAE4A7FE99}\Setup.exe"

Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe

uTorrent-->"C:\Program Files\uTorrent\Désinstaller.exe"

VistaDriveStatus-->"C:\Program Files\VistaDriveStatus\Désinstaller.exe"

VisualTaskTips-->"C:\Program Files\VisualTaskTips\Désinstaller.exe"

Winamp-->"C:\Program Files\Winamp\UninstWA.exe"

Windows Live Mail-->MsiExec.exe /I{C514C594-23AA-4F13-A070-DB8BDB27594F}

Windows Live Messenger-->MsiExec.exe /X{BADF6744-3787-48F6-B8C9-4C4995401D65}

Windows Trust Anti-Pub-->"C:\WINDOWS\System32\Drivers\Etc\UnHosts.exe"

Windows Trust Installer-->"C:\Program Files\WTInstaller\Désinstaller.exe"

WinRAR-->"C:\Program Files\WinRAR\uninstall.exe"

WinRoll-->"C:\Program Files\WinRoll\Désinstaller.exe"

 

======Hosts File======

 

127.0.0.1 localhost

127.0.0.1 mpa.one.microsoft.com

127.0.0.1 rad.msn.com

127.0.0.1 rad.live.com

127.0.0.1 ads1.msn.com

127.0.0.1 adfarm.mediaplex.com

127.0.0.1 101com.com

127.0.0.1 101order.com

127.0.0.1 103bees.com

127.0.0.1 1100i.com

 

Securitycenter WMI appears to be broken

 

======Environment variables======

 

"ComSpec"=%SystemRoot%\system32\cmd.exe

"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static

"windir"=%SystemRoot%

"FP_NO_HOST_CHECK"=NO

"OS"=Windows_NT

"PROCESSOR_ARCHITECTURE"=x86

"PROCESSOR_LEVEL"=15

"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 39 Stepping 1, AuthenticAMD

"PROCESSOR_REVISION"=2701

"NUMBER_OF_PROCESSORS"=1

"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH

"TEMP"=%SystemRoot%\TEMP

"TMP"=%SystemRoot%\TEMP

 

-----------------EOF-----------------

 

 

voila le deuxieme:

 

Logfile of random's system information tool 1.04 (written by random/random)

Run by Administrateur at 2008-10-07 12:02:06

Microsoft Windows XP Professionnel Service Pack 3, v.5512

System drive C: has 146 GB (97%) free of 150 GB

Total RAM: 1023 MB (69% free)

 

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 12:02:14, on 07/10/2008

Platform: Windows XP SP3, v.5512 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.20772)

Boot mode: Normal

 

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\acs.exe

C:\Program Files\Eset\nod32krn.exe

C:\Program Files\Taskix\Taskix32.exe

C:\Program Files\VisualTaskTips\VisualTaskTips.exe

C:\Program Files\Analog Devices\Core\smax4pnp.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

C:\Program Files\Analog Devices\SoundMAX\Smax4.exe

C:\Program Files\TP-LINK\TWCU\TWCU.exe

C:\Program Files\Eset\nod32kui.exe

C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe

C:\Program Files\WinRoll\winroll.exe

C:\Program Files\LClock\LClock.exe

C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe

C:\Program Files\Internet Explorer\IEXPLORE.EXE

C:\Documents and Settings\Administrateur\Bureau\RSIT.exe

C:\Program Files\HiJackThis\Administrateur.exe

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Favoris

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O4 - HKLM\..\Run: [Taskix] C:\Program Files\Taskix\Taskix32.exe start

O4 - HKLM\..\Run: [VisualTaskTips] C:\Program Files\VisualTaskTips\VisualTaskTips.exe

O4 - HKLM\..\Run: [Vistadrv] C:\Program Files\VistaDriveStatus\vsdrv.exe

O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [soundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe

O4 - HKLM\..\Run: [soundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray

O4 - HKLM\..\Run: [TWCU] "C:\Program Files\TP-LINK\TWCU\TWCU.exe" -nogui

O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE

O4 - HKLM\..\Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun

O4 - HKCU\..\Run: [TransBar] C:\Program Files\TransBar\TransBar.exe /s

O4 - HKCU\..\Run: [WinRoll] C:\Program Files\WinRoll\winroll.exe

O4 - HKCU\..\Run: [LClock] "C:\Program Files\LClock\LClock.exe"

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O23 - Service: TP-LINK Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe

O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe

O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe

 

--

End of file - 3869 bytes

 

======Registry dump======

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

SSVHelper Class - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll [2008-03-25 509328]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]

"Taskix"=C:\Program Files\Taskix\Taskix32.exe [2007-01-25 65536]

"VisualTaskTips"=C:\Program Files\VisualTaskTips\VisualTaskTips.exe [2007-09-05 36352]

"Vistadrv"=C:\Program Files\VistaDriveStatus\vsdrv.exe [2006-07-30 121089]

"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-07-16 61440]

"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2005-05-20 925696]

"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\Smax4.exe [2005-09-07 716800]

"TWCU"=C:\Program Files\TP-LINK\TWCU\TWCU.exe [2006-03-29 364544]

"nod32kui"=C:\Program Files\Eset\nod32kui.exe [2008-10-05 921600]

"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2007-09-26 734264]

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"TransBar"=C:\Program Files\TransBar\TransBar.exe [2005-06-01 65536]

"WinRoll"=C:\Program Files\WinRoll\winroll.exe [2004-04-07 15360]

"LClock"=C:\Program Files\LClock\LClock.exe [2004-09-19 65536]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]

C:\WINDOWS\system32\Ati2evxx.dll [2008-08-01 143360]

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]

WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-05-11 133632]

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]

"dontdisplaylastusername"=1

"legalnoticecaption"=

"legalnoticetext"=

"shutdownwithoutlogon"=1

"undockwithoutlogon"=1

"SynchronousMachineGroupPolicy"=0

"SynchronousUserGroupPolicy"=0

 

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoDriveTypeAutoRun"=255

"NoSMHelp"=1

"ForceClassicControlPanel"=1

"NoDesktopCleanupWizard"=1

"NoInstrumentation"=1

"NoResolveSearch"=1

"NoResolveTrack"=1

"NoSMBalloonTip"=1

"NoSMConfigurePrograms"=1

"NoStartMenuMFUprogramsList"=1

"NoStrCmpLogical"=0

"NoWelcomeScreen"=1

 

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]

"NoActiveDesktop"=

"NoDriveTypeAutoRun"=

"NoResolveTrack"=

"NoSetActiveDesktop"=

"HideRunAsVerb"=

"NoInstrumentation"=

"NoStartMenuMFUprogramsList"=

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

 

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"

 

======File associations======

 

.reg - edit -

.reg - open -

 

======List of files/folders created in the last 1 months======

 

2008-10-07 12:02:06 ----D---- C:\rsit

2008-10-06 17:17:41 ----D---- C:\Program Files\Marvell

2008-10-06 17:17:22 ----A---- C:\WINDOWS\AS_Debug.txt

2008-10-06 12:55:42 ----HD---- C:\Documents and Settings\All Users\Application Data\ActiveSMART

2008-10-06 12:27:39 ----D---- C:\Documents and Settings\Administrateur\Application Data\Malwarebytes

2008-10-06 12:27:25 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes

2008-10-06 12:27:22 ----D---- C:\Program Files\Malwarebytes' Anti-Malware

2008-10-05 18:43:32 ----A---- C:\WINDOWS\ntbtlog.txt

2008-10-05 17:57:31 ----SHD---- C:\RECYCLER

2008-10-05 16:56:09 ----D---- C:\Program Files\ASUS

2008-10-05 16:55:39 ----A---- C:\WINDOWS\IsUninst.exe

2008-10-05 16:54:29 ----D---- C:\Documents and Settings\Administrateur\Application Data\Notepad++

2008-10-05 10:06:55 ----N---- C:\WINDOWS\system32\dev32.exe

2008-10-05 10:06:48 ----A---- C:\WINDOWS\system32\coin5288.dll

2008-10-05 10:06:08 ----D---- C:\Program Files\Microsoft Xbox 360 Accessories

2008-10-05 10:06:03 ----D---- C:\WINDOWS\system32\DirectX

2008-10-05 09:49:50 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$

2008-10-05 09:49:19 ----N---- C:\WINDOWS\system32\spmsg.dll

2008-10-05 09:49:16 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$

2008-10-05 09:40:47 ----N---- C:\WINDOWS\system32\vxblock.dll

2008-10-05 09:40:47 ----N---- C:\WINDOWS\system32\pxwave.dll

2008-10-05 09:40:47 ----N---- C:\WINDOWS\system32\pxsfs.dll

2008-10-05 09:40:47 ----N---- C:\WINDOWS\system32\pxmas.dll

2008-10-05 09:40:47 ----N---- C:\WINDOWS\system32\pxinsa64.exe

2008-10-05 09:40:47 ----N---- C:\WINDOWS\system32\pxhpinst.exe

2008-10-05 09:40:47 ----N---- C:\WINDOWS\system32\pxdrv.dll

2008-10-05 09:40:47 ----N---- C:\WINDOWS\system32\pxcpya64.exe

2008-10-05 09:40:47 ----N---- C:\WINDOWS\system32\pxafs.dll

2008-10-05 09:40:47 ----N---- C:\WINDOWS\system32\px.dll

2008-10-05 09:40:41 ----D---- C:\Program Files\Winamp

2008-10-05 09:40:41 ----D---- C:\Documents and Settings\Administrateur\Application Data\Winamp

2008-10-05 09:38:41 ----D---- C:\Documents and Settings\Administrateur\Application Data\Macromedia

2008-10-05 09:38:41 ----D---- C:\Documents and Settings\Administrateur\Application Data\Adobe

2008-10-05 09:30:40 ----A---- C:\WINDOWS\system32\imon.dll

2008-10-05 09:30:20 ----D---- C:\Program Files\ESET

2008-10-05 09:29:31 ----A---- C:\WINDOWS\system32\results.txt

2008-10-05 09:29:31 ----A---- C:\WINDOWS\system32\acs.exe

2008-10-05 09:29:26 ----A---- C:\WINDOWS\system32\AegisI5.exe

2008-10-05 09:29:25 ----A---- C:\WINDOWS\system32\wgapi.dll

2008-10-05 09:29:25 ----A---- C:\WINDOWS\system32\wcapi.dll

2008-10-05 09:29:25 ----A---- C:\WINDOWS\system32\athcfg11res.dll

2008-10-05 09:29:25 ----A---- C:\WINDOWS\system32\athcfg11.dll

2008-10-05 09:29:25 ----A---- C:\WINDOWS\system32\AegisE5.dll

2008-10-05 09:29:24 ----D---- C:\Program Files\TP-LINK

2008-10-05 09:29:06 ----D---- C:\temp

2008-10-05 09:25:17 ----N---- C:\WINDOWS\system32\wdmioctl.dll

2008-10-05 09:25:16 ----N---- C:\WINDOWS\system32\SMMedia.dll

2008-10-05 09:25:16 ----N---- C:\WINDOWS\system32\CleanUp.exe

2008-10-05 09:25:16 ----D---- C:\Program Files\Analog Devices

2008-10-05 09:25:16 ----A---- C:\WINDOWS\system32\DSndUp.exe

2008-10-05 00:39:18 ----A---- C:\WINDOWS\system32\h323log.txt

2008-10-05 00:37:40 ----A---- C:\WINDOWS\system32\ksuser.dll

2008-10-05 00:37:03 ----A---- C:\WINDOWS\system32\usbui.dll

2008-10-05 00:36:03 ----SHD---- C:\WINDOWS\Installer

2008-10-05 00:36:03 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI

2008-10-05 00:36:02 ----D---- C:\Program Files\Fichiers communs\ODBC

2008-10-05 00:36:02 ----D---- C:\Program Files\Fichiers communs

2008-10-05 00:36:02 ----D---- C:\Program Files

2008-10-05 00:36:02 ----A---- C:\WINDOWS\ODBCINST.INI

2008-10-05 00:35:58 ----RA---- C:\WINDOWS\system32\kbdtuq.dll

2008-10-05 00:35:58 ----RA---- C:\WINDOWS\system32\kbdtuf.dll

2008-10-05 00:35:58 ----RA---- C:\WINDOWS\system32\kbdazel.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdycc.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbduzb.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdur.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdtat.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdru1.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdru.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdmon.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdkyr.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdkaz.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdbu.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdblr.dll

2008-10-05 00:35:57 ----RA---- C:\WINDOWS\system32\kbdaze.dll

2008-10-05 00:35:55 ----RA---- C:\WINDOWS\system32\kbdhept.dll

2008-10-05 00:35:55 ----RA---- C:\WINDOWS\system32\kbdhela3.dll

2008-10-05 00:35:55 ----RA---- C:\WINDOWS\system32\kbdhela2.dll

2008-10-05 00:35:55 ----RA---- C:\WINDOWS\system32\kbdhe319.dll

2008-10-05 00:35:55 ----RA---- C:\WINDOWS\system32\kbdhe220.dll

2008-10-05 00:35:55 ----RA---- C:\WINDOWS\system32\kbdhe.dll

2008-10-05 00:35:55 ----RA---- C:\WINDOWS\system32\kbdgkl.dll

2008-10-05 00:35:54 ----RA---- C:\WINDOWS\system32\kbdlv1.dll

2008-10-05 00:35:54 ----RA---- C:\WINDOWS\system32\kbdlv.dll

2008-10-05 00:35:54 ----RA---- C:\WINDOWS\system32\kbdlt1.dll

2008-10-05 00:35:54 ----RA---- C:\WINDOWS\system32\kbdlt.dll

2008-10-05 00:35:54 ----RA---- C:\WINDOWS\system32\kbdest.dll

2008-10-05 00:35:53 ----RA---- C:\WINDOWS\system32\kbdsl1.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdycl.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdsl.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdro.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdpl1.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdpl.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdhu1.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdhu.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdcz2.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdcz1.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdcz.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\kbdcr.dll

2008-10-05 00:35:52 ----RA---- C:\WINDOWS\system32\KBDAL.DLL

2008-10-05 00:35:48 ----A---- C:\WINDOWS\system32\irclass.dll

2008-10-05 00:35:47 ----A---- C:\WINDOWS\system32\spxcoins.dll

2008-10-05 00:35:47 ----A---- C:\WINDOWS\system32\EqnClass.Dll

2008-10-05 00:35:47 ----A---- C:\WINDOWS\system32\dgsetup.dll

2008-10-05 00:35:47 ----A---- C:\WINDOWS\system32\dgrpsetu.dll

2008-10-05 00:35:44 ----N---- C:\WINDOWS\system32\CONFIG.TMP

2008-10-05 00:35:44 ----A---- C:\WINDOWS\TASKMAN.EXE

2008-10-05 00:35:43 ----A---- C:\WINDOWS\system32\batt.dll

2008-10-05 00:35:43 ----A---- C:\WINDOWS\NOTEPAD.EXE

2008-10-05 00:35:42 ----A---- C:\WINDOWS\system32\storprop.dll

2008-10-05 00:35:36 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini

2008-10-05 00:35:31 ----RA---- C:\WINDOWS\SET8.tmp

2008-10-05 00:35:27 ----RA---- C:\WINDOWS\SET4.tmp

2008-10-05 00:35:25 ----RA---- C:\WINDOWS\SET3.tmp

2008-10-05 00:35:19 ----D---- C:\WINDOWS\system32\CatRoot2

2008-10-05 00:35:19 ----D---- C:\WINDOWS\system32\CatRoot

2008-10-05 00:35:13 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft

2008-10-05 00:34:52 ----SHD---- C:\System Volume Information

2008-10-05 00:34:52 ----D---- C:\Documents and Settings

2008-10-05 00:34:26 ----SH---- C:\boot.ini

2008-10-05 00:30:10 ----RSD---- C:\WINDOWS\Fonts

2008-10-05 00:30:10 ----D---- C:\WINDOWS\WinSxS

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Web

2008-10-05 00:30:10 ----D---- C:\WINDOWS\twain_32

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Temp

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\wins

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\wbem

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\usmt

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\spool

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\ShellExt

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\Setup

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\ras

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\npp

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\mui

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\IME

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\icsxml

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\ias

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\fr-fr

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\fr

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\export

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\drivers

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\dhcp

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\config

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\3com_dmi

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\3076

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\2052

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\1054

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\1042

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\1041

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\1037

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\1036

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\1033

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\1031

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\1028

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32\1025

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system32

2008-10-05 00:30:10 ----D---- C:\WINDOWS\system

2008-10-05 00:30:10 ----D---- C:\WINDOWS\security

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Resources

2008-10-05 00:30:10 ----D---- C:\WINDOWS\repair

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Provisioning

2008-10-05 00:30:10 ----D---- C:\WINDOWS\PeerNet

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Network Diagnostic

2008-10-05 00:30:10 ----D---- C:\WINDOWS\mui

2008-10-05 00:30:10 ----D---- C:\WINDOWS\msapps

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Media

2008-10-05 00:30:10 ----D---- C:\WINDOWS\L2Schemas

2008-10-05 00:30:10 ----D---- C:\WINDOWS\java

2008-10-05 00:30:10 ----D---- C:\WINDOWS\inf

2008-10-05 00:30:10 ----D---- C:\WINDOWS\ime

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Help

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Driver Cache

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Debug

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Cursors

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Connection Wizard

2008-10-05 00:30:10 ----D---- C:\WINDOWS\Config

2008-10-05 00:30:10 ----D---- C:\WINDOWS\AppPatch

2008-10-05 00:30:10 ----D---- C:\WINDOWS\addins

2008-10-05 00:30:10 ----D---- C:\WINDOWS

2008-10-04 23:01:45 ----D---- C:\Documents and Settings\All Users\Application Data\ATI

2008-10-04 23:01:45 ----D---- C:\Documents and Settings\Administrateur\Application Data\ATI

2008-10-04 22:59:28 ----N---- C:\WINDOWS\system32\ati2sgag.exe

2008-10-04 22:59:06 ----HD---- C:\Program Files\InstallShield Installation Information

2008-10-04 22:59:06 ----D---- C:\Program Files\ATI Technologies

2008-10-04 22:58:36 ----D---- C:\Program Files\Fichiers communs\InstallShield

2008-10-04 22:58:13 ----D---- C:\ATI

2008-10-04 22:55:48 ----D---- C:\Program Files\VistaDriveStatus

2008-10-04 22:55:29 ----A---- C:\WINDOWS\system32\javaws.exe

2008-10-04 22:55:29 ----A---- C:\WINDOWS\system32\javaw.exe

2008-10-04 22:55:29 ----A---- C:\WINDOWS\system32\java.exe

2008-10-04 22:55:01 ----D---- C:\Program Files\Java

2008-10-04 22:54:59 ----D---- C:\Program Files\Fichiers communs\Java

2008-10-04 22:54:55 ----D---- C:\Program Files\CCleaner

2008-10-04 22:54:55 ----D---- C:\Documents and Settings\Administrateur\Application Data\Sun

2008-10-04 22:54:54 ----D---- C:\Program Files\WinRoll

2008-10-04 22:54:54 ----D---- C:\Program Files\VisualTaskTips

2008-10-04 22:54:54 ----D---- C:\Program Files\TransBar

2008-10-04 22:54:54 ----D---- C:\Program Files\Taskix

2008-10-04 22:54:54 ----D---- C:\Program Files\LClock

2008-10-04 22:54:51 ----DC---- C:\WINDOWS\system32\DRVSTORE

2008-10-04 22:54:48 ----D---- C:\Program Files\Windows Live

2008-10-04 22:54:28 ----D---- C:\Program Files\uTorrent

2008-10-04 22:54:28 ----D---- C:\Documents and Settings\Administrateur\Application Data\uTorrent

2008-10-04 22:54:27 ----D---- C:\Program Files\WinRAR

2008-10-04 22:54:27 ----D---- C:\Documents and Settings\Administrateur\Application Data\WinRAR

2008-10-04 22:53:10 ----D---- C:\Documents and Settings\Administrateur\Application Data\Identities

2008-10-04 22:53:05 ----HD---- C:\Program Files\Uninstall Information

2008-10-04 22:52:52 ----SD---- C:\Documents and Settings\Administrateur\Application Data\Microsoft

2008-10-04 22:52:52 ----ASH---- C:\Documents and Settings\Administrateur\Application Data\desktop.ini

2008-10-04 22:52:49 ----SD---- C:\WINDOWS\system32\Microsoft

2008-10-04 22:48:06 ----RSD---- C:\WINDOWS\assembly

2008-10-04 22:47:39 ----D---- C:\WINDOWS\PCHEALTH

2008-10-04 22:47:39 ----D---- C:\WINDOWS\Microsoft.NET

2008-10-04 22:46:26 ----A---- C:\WINDOWS\control.ini

2008-10-04 22:46:26 ----A---- C:\AUTOEXEC.BAT

2008-10-04 22:46:06 ----D---- C:\WINDOWS\system32\dllcache

2008-10-04 22:46:06 ----A---- C:\WINDOWS\system32\mapi32.dll

2008-10-04 22:45:08 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest

2008-10-04 22:45:00 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest

2008-10-04 22:44:33 ----A---- C:\WINDOWS\system32\desktop.ini

2008-10-04 22:44:33 ----A---- C:\WINDOWS\desktop.ini

2008-10-04 22:44:30 ----A---- C:\WINDOWS\system32\acctres.dll

2008-10-04 22:44:29 ----D---- C:\Program Files\Fichiers communs\Services

2008-10-04 22:44:26 ----SD---- C:\WINDOWS\Tasks

2008-10-04 22:44:26 ----A---- C:\WINDOWS\system32\icfgnt5.dll

2008-10-04 22:44:25 ----D---- C:\Program Files\Fichiers communs\MSSoap

2008-10-04 22:44:19 ----A---- C:\WINDOWS\system32\qmgrprxy.dll

2008-10-04 22:44:19 ----A---- C:\WINDOWS\system32\bitsprx4.dll

2008-10-04 22:44:19 ----A---- C:\WINDOWS\system32\bitsprx3.dll

2008-10-04 22:44:19 ----A---- C:\WINDOWS\system32\bitsprx2.dll

2008-10-04 22:44:18 ----A---- C:\WINDOWS\system32\qmgr.dll

2008-10-04 22:44:16 ----A---- C:\WINDOWS\system32\msoert2.dll

2008-10-04 22:44:16 ----A---- C:\WINDOWS\system32\fltMc.exe

2008-10-04 22:44:16 ----A---- C:\WINDOWS\system32\fltlib.dll

2008-10-04 22:44:15 ----A---- C:\WINDOWS\system32\msoeacct.dll

2008-10-04 22:44:13 ----A---- C:\WINDOWS\system32\inetres.dll

2008-10-04 22:44:13 ----A---- C:\WINDOWS\system32\inetcomm.dll

2008-10-04 22:44:09 ----D---- C:\Program Files\Outlook Express

2008-10-04 22:44:08 ----A---- C:\WINDOWS\system32\schedsvc.dll

2008-10-04 22:44:08 ----A---- C:\WINDOWS\system32\mstinit.exe

2008-10-04 22:44:08 ----A---- C:\WINDOWS\system32\mstask.dll

2008-10-04 22:44:08 ----A---- C:\WINDOWS\system32\icwphbk.dll

2008-10-04 22:44:08 ----A---- C:\WINDOWS\system32\icwdial.dll

2008-10-04 22:44:07 ----A---- C:\WINDOWS\system32\isign32.dll

2008-10-04 22:44:07 ----A---- C:\WINDOWS\system32\inetcfg.dll

2008-10-04 22:43:57 ----D---- C:\Program Files\Fichiers communs\System

2008-10-04 22:43:55 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared

2008-10-04 22:43:34 ----D---- C:\Program Files\ComPlus Applications

2008-10-04 22:43:32 ----A---- C:\WINDOWS\vbaddin.ini

2008-10-04 22:43:32 ----A---- C:\WINDOWS\vb.ini

2008-10-04 22:43:26 ----D---- C:\WINDOWS\Registration

2008-10-04 22:42:29 ----D---- C:\Program Files\Windows Media Player

2008-10-04 22:42:16 ----D---- C:\Program Files\Notepad++

2008-10-04 22:42:14 ----D---- C:\Program Files\Unlocker

2008-10-04 22:42:06 ----D---- C:\Program Files\WTInstaller

2008-10-04 22:41:47 ----D---- C:\WINDOWS\system32\Macromed

2008-10-04 22:41:41 ----D---- C:\Program Files\Windows Trust

2008-10-04 22:41:04 ----D---- C:\WINDOWS\Magnétophone

2008-10-04 22:41:03 ----D---- C:\Program Files\HiJackThis

2008-10-04 22:41:02 ----D---- C:\WINDOWS\LangDLLs

2008-10-04 22:41:02 ----D---- C:\Program Files\Paint.NET

2008-10-04 22:41:02 ----A---- C:\WINDOWS\DamnNFO.exe

2008-10-04 22:40:55 ----D---- C:\WINDOWS\system32\skins

2008-10-04 22:40:55 ----A---- C:\WINDOWS\system32\iColorFolder.exe

2008-10-04 22:40:55 ----A---- C:\WINDOWS\system32\iColorFolder.dll

2008-10-04 22:40:54 ----A---- C:\WINDOWS\system32\CMExt.dll

2008-10-04 22:40:52 ----SD---- C:\WINDOWS\Downloaded Program Files

2008-10-04 22:40:52 ----D---- C:\WINDOWS\Offline Web Pages

2008-10-04 22:40:52 ----A---- C:\WINDOWS\system32\winfxdocobj.exe

2008-10-04 22:40:51 ----A---- C:\WINDOWS\system32\msfeedssync.exe

2008-10-04 22:40:50 ----D---- C:\WINDOWS\wbem

2008-10-04 22:40:47 ----A---- C:\WINDOWS\system32\advpack.dll.mui

2008-10-04 22:40:44 ----D---- C:\Program Files\Internet Explorer

2008-10-04 22:40:44 ----A---- C:\WINDOWS\system32\sndvol32.exe

2008-10-04 22:40:43 ----A---- C:\WINDOWS\system32\getuname.dll

2008-10-04 22:40:43 ----A---- C:\WINDOWS\system32\charmap.exe

2008-10-04 22:40:42 ----A---- C:\WINDOWS\system32\winmine.exe

2008-10-04 22:40:42 ----A---- C:\WINDOWS\system32\sol.exe

2008-10-04 22:40:42 ----A---- C:\WINDOWS\system32\calc.exe

2008-10-04 22:40:41 ----A---- C:\WINDOWS\system32\usrlogon.cmd

2008-10-04 22:40:41 ----A---- C:\WINDOWS\system32\tsshutdn.exe

2008-10-04 22:40:41 ----A---- C:\WINDOWS\system32\tskill.exe

2008-10-04 22:40:41 ----A---- C:\WINDOWS\system32\reset.exe

2008-10-04 22:40:41 ----A---- C:\WINDOWS\system32\mshearts.exe

2008-10-04 22:40:41 ----A---- C:\WINDOWS\system32\freecell.exe

2008-10-04 22:40:40 ----A---- C:\WINDOWS\system32\tslabels.ini

2008-10-04 22:40:40 ----A---- C:\WINDOWS\system32\tsdiscon.exe

2008-10-04 22:40:40 ----A---- C:\WINDOWS\system32\tscon.exe

2008-10-04 22:40:40 ----A---- C:\WINDOWS\system32\shadow.exe

2008-10-04 22:40:40 ----A---- C:\WINDOWS\system32\rwinsta.exe

2008-10-04 22:40:40 ----A---- C:\WINDOWS\system32\regini.exe

2008-10-04 22:40:40 ----A---- C:\WINDOWS\system32\rdpcfgex.dll

2008-10-04 22:40:40 ----A---- C:\WINDOWS\system32\qwinsta.exe

2008-10-04 22:40:40 ----A---- C:\WINDOWS\system32\qappsrv.exe

2008-10-04 22:40:40 ----A---- C:\WINDOWS\system32\msg.exe

2008-10-04 22:40:39 ----A---- C:\WINDOWS\system32\msdtcprf.ini

2008-10-04 22:40:39 ----A---- C:\WINDOWS\system32\logoff.exe

2008-10-04 22:40:39 ----A---- C:\WINDOWS\system32\cdmodem.dll

2008-10-04 22:40:32 ----A---- C:\WINDOWS\system32\wmimgmt.msc

2008-10-04 22:40:32 ----A---- C:\WINDOWS\system32\mplay32.exe

2008-10-04 22:40:31 ----A---- C:\WINDOWS\system32\spider.exe

2008-10-04 22:40:29 ----A---- C:\WINDOWS\system32\tsgqec.dll

2008-10-04 22:40:29 ----A---- C:\WINDOWS\system32\tscfgwmi.dll

2008-10-04 22:40:29 ----A---- C:\WINDOWS\system32\rhttpaa.dll

2008-10-04 22:40:29 ----A---- C:\WINDOWS\system32\aaclient.dll

2008-10-04 22:40:27 ----A---- C:\WINDOWS\system32\mstscax.dll

2008-10-04 22:40:26 ----A---- C:\WINDOWS\system32\sessmgr.exe

2008-10-04 22:40:26 ----A---- C:\WINDOWS\system32\remotepg.dll

2008-10-04 22:40:26 ----A---- C:\WINDOWS\system32\rdshost.exe

2008-10-04 22:40:26 ----A---- C:\WINDOWS\system32\rdsaddin.exe

2008-10-04 22:40:26 ----A---- C:\WINDOWS\system32\rdchost.dll

2008-10-04 22:40:26 ----A---- C:\WINDOWS\system32\mstsc.exe

2008-10-04 22:40:25 ----A---- C:\WINDOWS\system32\termsrv.dll

2008-10-04 22:40:25 ----A---- C:\WINDOWS\system32\rdpwsx.dll

2008-10-04 22:40:25 ----A---- C:\WINDOWS\system32\rdpsnd.dll

2008-10-04 22:40:25 ----A---- C:\WINDOWS\system32\rdpclip.exe

2008-10-04 22:40:25 ----A---- C:\WINDOWS\system32\qprocess.exe

2008-10-04 22:40:25 ----A---- C:\WINDOWS\system32\icaapi.dll

2008-10-04 22:40:24 ----D---- C:\WINDOWS\system32\MsDtc

2008-10-04 22:40:24 ----A---- C:\WINDOWS\system32\mtxoci.dll

2008-10-04 22:40:24 ----A---- C:\WINDOWS\system32\msdtcuiu.dll

2008-10-04 22:40:24 ----A---- C:\WINDOWS\system32\msdtcprx.dll

2008-10-04 22:40:24 ----A---- C:\WINDOWS\system32\cfgbkend.dll

2008-10-04 22:40:23 ----A---- C:\WINDOWS\system32\xolehlp.dll

2008-10-04 22:40:23 ----A---- C:\WINDOWS\system32\msdtctm.dll

2008-10-04 22:40:23 ----A---- C:\WINDOWS\system32\msdtclog.dll

2008-10-04 22:40:23 ----A---- C:\WINDOWS\system32\msdtc.exe

2008-10-04 22:40:22 ----D---- C:\WINDOWS\system32\Com

2008-10-04 22:40:22 ----A---- C:\WINDOWS\system32\mtxlegih.dll

2008-10-04 22:40:22 ----A---- C:\WINDOWS\system32\mtxex.dll

2008-10-04 22:40:22 ----A---- C:\WINDOWS\system32\mtxdm.dll

2008-10-04 22:40:22 ----A---- C:\WINDOWS\system32\dcomcnfg.exe

2008-10-04 22:40:22 ----A---- C:\WINDOWS\system32\colbact.dll

2008-10-04 22:40:21 ----A---- C:\WINDOWS\system32\stclient.dll

2008-10-04 22:40:21 ----A---- C:\WINDOWS\system32\comrepl.dll

2008-10-04 22:40:21 ----A---- C:\WINDOWS\system32\comaddin.dll

2008-10-04 22:40:21 ----A---- C:\WINDOWS\system32\clbcatex.dll

2008-10-04 22:40:21 ----A---- C:\WINDOWS\system32\catsrvps.dll

2008-10-04 22:40:20 ----A---- C:\WINDOWS\system32\catsrvut.dll

2008-10-04 22:40:20 ----A---- C:\WINDOWS\system32\catsrv.dll

2008-10-04 22:40:19 ----A---- C:\WINDOWS\system32\comuid.dll

2008-10-04 22:40:19 ----A---- C:\WINDOWS\system32\comsvcs.dll

2008-10-04 22:40:19 ----A---- C:\WINDOWS\system32\comsnap.dll

2008-10-04 22:40:18 ----A---- C:\WINDOWS\system32\clbcatq.dll

2008-10-04 22:40:07 ----A---- C:\WINDOWS\system32\servdeps.dll

2008-10-04 22:40:07 ----A---- C:\WINDOWS\system32\mmfutil.dll

2008-10-04 22:40:07 ----A---- C:\WINDOWS\system32\licwmi.dll

2008-10-04 22:40:07 ----A---- C:\WINDOWS\system32\cmprops.dll

 

======List of files/folders modified in the last 1 months======

 

2008-10-05 00:36:00 ----A---- C:\WINDOWS\system.ini

2008-10-04 22:46:26 ----A---- C:\WINDOWS\win.ini

 

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-14 12032]

R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.10.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-10-05 21275]

R2 AMON;AMON; \??\C:\WINDOWS\system32\drivers\amon.sys []

R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\ADIHdAud.sys [2005-10-05 141312]

R3 AEAudioService;AEAudio Service; C:\WINDOWS\system32\drivers\AEAudio.sys [2005-03-04 127872]

R3 AR5211;TP-LINK Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2005-12-21 470048]

R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-08-01 3266560]

R3 HDAudBus;Pilote de bus Microsoft UAA pour High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]

R3 ms_mpu401;Pilote UART MIDI MPU-401 Microsoft; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]

R3 SenFiltService;SenFilt Service; C:\WINDOWS\system32\drivers\Senfilt.sys [2005-08-11 393088]

R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]

R3 usbhub;Concentrateur USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]

R3 usbohci;Pilote miniport de contrôleur hôte ouvert USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbohci.sys [2008-04-14 17152]

S3 Arp1394;Protocole client ARP 1394; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-05-13 60800]

S3 NIC1394;Pilote réseau 1394; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-05-13 61824]

S3 rkhdrv40;Rootkit Unhooker Driver; C:\WINDOWS\system32\drivers\rkhdrv40.sys []

S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-05-11 77568]

S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-05-11 82944]

S3 yukonwxp;NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller; C:\WINDOWS\system32\DRIVERS\yk51x86.sys [2005-03-30 230400]

S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []

 

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 

R2 ACS;TP-LINK Configuration Service; C:\WINDOWS\system32\acs.exe [2005-12-30 36864]

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-08-01 573440]

R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2008-10-05 507904]

S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-07-31 593920]

S4 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]

S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]

S4 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]

S4 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

 

-----------------EOF-----------------

 

 

 

By -=E.L.s=-

els93 Junior Member

els93

Posté(e)
  • Auteur
Posté(e)

hep!!problem résolue j'ai éssayé ma vga ds le 2em port pci express et la rapidité est la!!!!youpi!!merci quand meme (en théori quand on a une vga sur ma mobo on doit laisser une carte noire ds le 2eme port ) la c'est pas le cas beug de la carte mere??mystere faudrait voir si crossfire activé sa refait la meme......bon sur ceux a+++(1smaine et demi de recherche de stresse pour une solution simple....)

  • Tonton a modifié le titre en [Résolu] Infection ordinateur

Rejoindre la conversation

Vous pouvez publier maintenant et vous inscrire plus tard. Si vous avez un compte, connectez-vous maintenant pour publier avec votre compte.
Remarque : votre message nécessitera l’approbation d’un modérateur avant de pouvoir être visible.

Invité
Répondre à ce sujet…

×   Collé en tant que texte enrichi.   Coller en tant que texte brut à la place

  Seulement 75 émoticônes maximum sont autorisées.

×   Votre lien a été automatiquement intégré.   Afficher plutôt comme un lien

×   Votre contenu précédent a été rétabli.   Vider l’éditeur

×   Vous ne pouvez pas directement coller des images. Envoyez-les depuis votre ordinateur ou insérez-les depuis une URL.

×
 Partager
Aller sur la liste des sujets

  • En ligne récemment   0 membre est en ligne

    • Aucun utilisateur enregistré regarde cette page.
×
×
  • Créer...