Forum Clubic

Message

bonsoir
j’ai lancé hijackthis et voici…

http://img153.imagevenue.com/loc931/th_91372_10_123_931lo.jpg

http://img224.imagevenue.com/loc496/th_91463_11_123_496lo.jpg

que dois-je faire …merci
Edité le 13/12/2008 à 19:07

faites clic droit sur le fichier hijackthis, allez dans mes documents et faites coller. Ensuite un double clic suffira à le lancer et vous n’aurez plus ce message.

bonjour

j’ai fait cela mais desolé c’est pareil…et je sais qu’il faut toujours lancer hijackthis à partir de la racine c:
(qui n’est pas le cas ici) merci quand meme

Salut

1°) Ta version d’hijackthis n’est pas a jours

2°)créer un dossier et met hijackthis puis lance

Salut

et n oublies pas de le renomer
www.pcentraide.com…

certaines infections “Vundos” se cachent au lancement de hijackthis.exe et pas d’un autre .exe)

merci mais c’est pareil…(j’ai chargé à partir de ton lien) toujours meme messages…:frowning:

Salut,

essai sa:

==>Télécharge random’s system information tool (RSIT) et enregistre le sur ton bureau.

==>Double clique sur RSIT.exe pour lancer l’outil.(“execute en tant qu’administrateur”)

==>Clique sur ’ continue ’ à l’écran Disclaimer.

==>Si l’outil HIjackThis (version à jour) n’est pas présent ou non détecté sur l’ordinateur,RSIT le téléchargera et tu devras accepter la licence.

==>Une fois le scan fini , 2 rapports vont apparaitre. Poste le contenu des 2 rapports
( log.txt & info.txt )

(CTRL+A Pour tout selectionner , CTRL+C pour copier et CTRL+V pour coller )
Edité le 15/12/2008 à 21:05

Salut…

info.txt logfile of random’s system information tool 1.04 2008-12-15 21:51:50

======Uninstall list======

Activation Assistant for the 2007 Microsoft Office suites–>“C:\ProgramData{174892B1-CBE7-44F5-86FF-AB555EFD73A3}\Microsoft Office Activation Assistant.exe” REMOVE=TRUE MODIFY=FALSE
Adobe Flash Player 10 Plugin–>C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.2 - Français–>MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81200000003}
Archiveur WinRAR–>C:\Program Files\WinRAR\uninstall.exe
a-squared Free 3.5–>“C:\Program Files\a-squared Free\unins000.exe”
avast! Antivirus–>C:\Program Files\Alwil Software\Avast4\aswRunDll.exe “C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll”,RunSetup
AxCrypt (Désinstaller uniquement)–>“C:\Program Files\Axon Data\AxCrypt\AxCryptU.exe”
BeWAN ADSL modem–>rundll32.exe stmcfg32.dll,Uninstall
Cartoonist 1.3–>“C:\Program Files\Cartoonist\unins000.exe”
Doom 3–>C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\9\INTEL3~1\IDriver.exe /M{EEFB15EB-FE8B-47DF-A496-1C4D1420294A}
eMule–>“C:\Program Files\eMule\Uninstall.exe”
FIFA 09–>MsiExec.exe /X{2315B23D-3E21-4920-837D-AE6460934ECB}
Fujitsu Siemens Computers Recovery–>MsiExec.exe /I{AFC454ED-A26F-4816-826B-C35129D82E1F}
Google Desktop–>C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
Google Earth–>MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
Google Toolbar for Internet Explorer–>MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer–>regsvr32 /u /s “c:\program files\google\googletoolbar1.dll”
HijackThis 2.0.2–>“C:\Program Files\Trend Micro\HijackThis\HijackThis.exe” /uninstall
InfraRecorder–>C:\Program Files\InfraRecorder\uninstall.exe
Java™ 6 Update 10–>MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
LimeWire 4.18.8–>“C:\Program Files\LimeWire\uninstall.exe”
Microsoft Office Access MUI (French) 2007–>MsiExec.exe /X{90120000-0015-040C-0000-0000000FF1CE}
Microsoft Office Excel MUI (French) 2007–>MsiExec.exe /X{90120000-0016-040C-0000-0000000FF1CE}
Microsoft Office Home and Student 2007–>“C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe” /uninstall HOMESTUDENTR /dll OSETUP.DLL
Microsoft Office Home and Student 2007–>MsiExec.exe /X{91120000-002F-0000-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (French) 2007–>MsiExec.exe /X{90120000-0044-040C-0000-0000000FF1CE}
Microsoft Office OneNote MUI (French) 2007–>MsiExec.exe /X{90120000-00A1-040C-0000-0000000FF1CE}
Microsoft Office Outlook MUI (French) 2007–>MsiExec.exe /X{90120000-001A-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (French) 2007–>MsiExec.exe /X{90120000-0018-040C-0000-0000000FF1CE}
Microsoft Office PowerPoint Viewer 2007 (French)–>MsiExec.exe /X{95120000-00AF-040C-0000-0000000FF1CE}
Microsoft Office Professional Plus 2007–>“C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe” /uninstall PROPLUS /dll OSETUP.DLL
Microsoft Office Professional Plus 2007–>MsiExec.exe /X{90120000-0011-0000-0000-0000000FF1CE}
Microsoft Office Proof (Arabic) 2007–>MsiExec.exe /X{90120000-001F-0401-0000-0000000FF1CE}
Microsoft Office Proof (Dutch) 2007–>MsiExec.exe /X{90120000-001F-0413-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007–>MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007–>MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007–>MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007–>MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (French) 2007–>MsiExec.exe /X{90120000-002C-040C-0000-0000000FF1CE}
Microsoft Office Publisher MUI (French) 2007–>MsiExec.exe /X{90120000-0019-040C-0000-0000000FF1CE}
Microsoft Office Shared MUI (French) 2007–>MsiExec.exe /X{90120000-006E-040C-0000-0000000FF1CE}
Microsoft Office Word MUI (French) 2007–>MsiExec.exe /X{90120000-001B-040C-0000-0000000FF1CE}
Microsoft Visual C++ 2005 Redistributable–>MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works–>MsiExec.exe /I{0214A441-A4AB-43A8-8DEF-2F73C5364673}
Module de compatibilité pour Microsoft Office System 2007–>MsiExec.exe /X{90120000-0020-040C-0000-0000000FF1CE}
Mozilla Firefox (3.0.4)–>C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB936181)–>MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB954430)–>MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
neroxml–>MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NVIDIA Drivers–>C:\Windows\system32\nvuninst.exe UninstallGUI
PhotoFiltre–>“C:\Program Files\PhotoFiltre\Uninst.exe”
Picasa 2–>“C:\Program Files\Picasa2\Uninstall.exe”
Realtek High Definition Audio Driver–>RtlUpd.exe -r -m -nrg2709
SopCast 3.0.3–>C:\Program Files\SopCast\uninst.exe
SystemDiagnostics–>MsiExec.exe /X{2F926AE7-9FB7-4B34-906F-9C29A6D146A7}
TVAnts 1.0–>C:\PROGRA~1\TVAnts\UNWISE.EXE C:\PROGRA~1\TVAnts\INSTALL.LOG
Update for Office 2007 (KB934528)–>msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {2B939677-2FFD-48F6-9075-7BF48CB87C80}
Update for Office System 2007 Setup (KB929722)–>msiexec /package {91120000-002F-0000-0000-0000000FF1CE} /uninstall {D8E9BEBD-655F-467D-8176-CA9959C140A3}
VCRedistSetup–>MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
VLC media player 0.9.6–>C:\Program Files\VideoLAN\VLC\uninstall.exe

======Security center information======

AV: avast! antivirus 4.8.1229 [VPS 081123-0]
AS: Windows Defender
AS: avast! antivirus 4.8.1229 [VPS 081123-0]

======Environment variables======

“ComSpec”=%SystemRoot%\system32\cmd.exe
“FP_NO_HOST_CHECK”=NO
“OS”=Windows_NT
“Path”=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%NpmLib%
“PATHEXT”=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
“PROCESSOR_ARCHITECTURE”=x86
“TEMP”=%SystemRoot%\TEMP
“TMP”=%SystemRoot%\TEMP
“USERNAME”=SYSTEM
“windir”=%SystemRoot%
“PROCESSOR_LEVEL”=6
“PROCESSOR_IDENTIFIER”=x86 Family 6 Model 15 Stepping 13, GenuineIntel
“PROCESSOR_REVISION”=0f0d
“NUMBER_OF_PROCESSORS”=2
“TRACE_FORMAT_SEARCH_PATH”=\NTREL202.ntdev.corp.microsoft.com\4F18C3A5-CA09-4DBD-B6FC-219FDD4C6BE0\TraceFormat
“DFSTRACINGON”=FALSE
“NpmLib”=C:\Program Files\Norman\Npm\Bin

-----------------EOF-----------------

Logfile of random’s system information tool 1.04 (written by random/random)
Run by Charly at 2008-12-15 21:51:46
Microsoft® Windows Vista™ Édition Familiale Premium Service Pack 1
System drive C: has 35 GB (44%) free of 78 GB
Total RAM: 3071 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:51:48, on 15/12/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\rundll32.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Charly\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Charly.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com…
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com…
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com…
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Aide pour le lien d’Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM…\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM…\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM…\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM…\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM…\Run: [Adobe Reader Speed Launcher] “C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe”
O4 - HKLM…\Run: [Google Desktop Search] “C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe” /startup
O4 - HKLM…\Run: [FSCRecovery] c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe
O4 - HKLM…\Run: [NPCTray] C:\Program Files\Norman\npc\bin\npc_tray.exe /LOAD
O4 - HKLM…\Run: [Google EULA Launcher] c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe IE PA
O4 - HKLM…\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM…\Run: [SunJavaUpdateSched] “C:\Program Files\Java\jre6\bin\jusched.exe”
O4 - HKLM…\Run: [NBKeyScan] “C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe”
O4 - HKCU…\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKCU…\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU…\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19…\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‘SERVICE LOCAL’)
O4 - HKUS\S-1-5-19…\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User ‘SERVICE LOCAL’)
O4 - HKUS\S-1-5-20…\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User ‘SERVICE RÉSEAU’)
O4 - HKUS\S-1-5-21-547818311-4091986834-1694812455-1001…\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User ‘Christine’)
O4 - HKUS\S-1-5-18…\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User ‘SYSTEM’)
O4 - HKUS.DEFAULT…\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe (User ‘Default user’)
O8 - Extra context menu item: E&xporter vers Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE…
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra ‘Tools’ menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe


End of file - 6292 bytes

======Scheduled tasks folder======

C:\Windows\tasks\User_Feed_Synchronization-{94DDF1EB-0D31-4CDD-B5F0-8619AC9A80B2}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Aide pour le lien d’Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-11-15 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll [2008-11-05 2436160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-11-15 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2008-11-05 2436160]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
“Windows Defender”=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
“NvCplDaemon”=C:\Windows\system32\NvCpl.dll [2008-03-19 13531680]
“NvMediaCenter”=C:\Windows\system32\NvMcTray.dll [2008-03-19 92704]
“RtHDVCpl”=C:\Windows\RtHDVCpl.exe [2008-05-28 6144000]
“Adobe Reader Speed Launcher”=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
“Google Desktop Search”=C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-11-05 29744]
“FSCRecovery”=c:\Program Files\Fujitsu Siemens Computers\Fujitsu Siemens Computers Recovery\FSCRecoveryReminder.exe [2008-06-18 268096]
“NPCTray”=C:\Program Files\Norman\npc\bin\npc_tray.exe /LOAD []
“Google EULA Launcher”=c:\Program Files\Google\Google EULA\GoogleEULALauncher.exe [2008-05-28 20480]
“avast!”=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2008-11-26 81000]
“SunJavaUpdateSched”=C:\Program Files\Java\jre6\bin\jusched.exe [2008-11-15 136600]
“NBKeyScan”=C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
“Picasa Media Detector”=C:\Program Files\Picasa2\PicasaMediaDetector.exe [2008-02-26 443968]
“WMPNSCFG”=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2008-01-21 202240]
“Sidebar”=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
“AppInit_DLLS”=“C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL”

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“EnableUIADesktopToggle”=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======List of files/folders created in the last 1 months======

2008-12-15 21:51:46 ----D---- C:\rsit
2008-12-15 18:09:43 ----D---- C:\Program Files\Trend Micro
2008-12-13 19:52:42 ----A---- C:\Windows\system32\tzres.dll
2008-12-13 19:51:27 ----A---- C:\Windows\system32\mshtml.dll
2008-12-13 19:51:26 ----A---- C:\Windows\system32\urlmon.dll
2008-12-13 19:51:26 ----A---- C:\Windows\system32\ieframe.dll
2008-12-13 19:51:25 ----A---- C:\Windows\system32\wininet.dll
2008-12-13 19:51:25 ----A---- C:\Windows\system32\mstime.dll
2008-12-13 19:51:25 ----A---- C:\Windows\system32\iertutil.dll
2008-12-13 19:51:24 ----A---- C:\Windows\system32\jsproxy.dll
2008-12-13 19:51:20 ----A---- C:\Windows\system32\shell32.dll
2008-12-13 19:51:15 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-12-13 19:51:14 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-12-13 19:51:12 ----A---- C:\Windows\system32\mf.dll
2008-12-13 19:51:11 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-12-13 19:51:11 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-12-13 19:51:11 ----A---- C:\Windows\system32\logagent.exe
2008-12-13 19:50:30 ----A---- C:\Windows\explorer.exe
2008-12-13 19:50:29 ----A---- C:\Windows\system32\gdi32.dll
2008-12-13 09:56:35 ----D---- C:\ProgramData\eMule
2008-12-13 09:55:43 ----D---- C:\Program Files\eMule
2008-12-11 10:26:57 ----D---- C:\Users\Charly\AppData\Roaming\InfraRecorder
2008-12-11 10:26:56 ----D---- C:\Program Files\InfraRecorder
2008-12-07 21:32:22 ----D---- C:\Program Files\TVAnts
2008-12-06 16:57:47 ----D---- C:\Program Files\SopCast
2008-12-06 14:50:58 ----A---- C:\Windows\system32\ShellManager310E2D762.dll
2008-12-06 14:50:27 ----A---- C:\Windows\Irremote.ini
2008-12-06 14:50:24 ----D---- C:\Users\Charly\AppData\Roaming\Nero
2008-12-06 09:16:40 ----D---- C:\Program Files\Axon Data
2008-12-03 11:23:19 ----D---- C:\Users\Charly\AppData\Roaming\Leadertech
2008-12-03 11:01:14 ----D---- C:\Program Files\EA Sports
2008-12-03 11:01:13 ----A---- C:\Windows\system32\D3DX9_37.dll
2008-12-03 11:01:12 ----A---- C:\Windows\system32\d3dx9_35.dll
2008-12-03 11:01:11 ----A---- C:\Windows\system32\xinput1_3.dll
2008-12-03 11:01:11 ----A---- C:\Windows\system32\d3dx9_34.dll
2008-12-03 11:01:10 ----A---- C:\Windows\system32\d3dx9_33.dll
2008-12-03 11:01:10 ----A---- C:\Windows\system32\d3dx9_32.dll
2008-12-03 11:01:09 ----A---- C:\Windows\system32\d3dx9_31.dll
2008-12-03 11:01:03 ----A---- C:\Windows\system32\d3dx9_30.dll
2008-12-03 11:01:03 ----A---- C:\Windows\system32\d3dx9_29.dll
2008-12-03 11:01:02 ----A---- C:\Windows\system32\d3dx9_28.dll
2008-12-03 11:01:02 ----A---- C:\Windows\system32\d3dx9_27.dll
2008-12-03 11:01:01 ----A---- C:\Windows\system32\d3dx9_26.dll
2008-12-03 11:01:01 ----A---- C:\Windows\system32\d3dx9_25.dll
2008-12-03 11:01:00 ----A---- C:\Windows\system32\d3dx9_24.dll
2008-11-29 18:33:02 ----D---- C:\Program Files\Cartoonist
2008-11-26 18:23:17 ----D---- C:\Program Files\directx
2008-11-18 17:02:04 ----A---- C:\Windows\system32\W32N50.dll
2008-11-18 16:58:41 ----RA---- C:\Windows\system32\stmctrl.dll
2008-11-18 16:58:41 ----RA---- C:\Windows\system32\stmcfg32.dll
2008-11-18 16:58:37 ----D---- C:\Program Files\BeWAN ADSL V1.9.0.3
2008-11-18 16:56:24 ----D---- C:\Program Files\Common Files\AOL
2008-11-18 12:01:46 ----A---- C:\Windows\system32\wups2.dll
2008-11-18 12:01:46 ----A---- C:\Windows\system32\wucltux.dll
2008-11-18 12:01:46 ----A---- C:\Windows\system32\wuaueng.dll
2008-11-18 12:01:46 ----A---- C:\Windows\system32\wuauclt.exe
2008-11-18 12:01:35 ----A---- C:\Windows\system32\wups.dll
2008-11-18 12:01:35 ----A---- C:\Windows\system32\wudriver.dll
2008-11-18 12:01:35 ----A---- C:\Windows\system32\wuapi.dll
2008-11-18 12:01:29 ----A---- C:\Windows\system32\wuwebv.dll
2008-11-18 12:01:29 ----A---- C:\Windows\system32\wuapp.exe
2008-11-17 13:42:53 ----D---- C:\ProgramData\WLInstaller

======List of files/folders modified in the last 1 months======

2008-12-15 21:51:48 ----D---- C:\Windows\Prefetch
2008-12-15 21:51:40 ----D---- C:\Windows\Temp
2008-12-15 21:04:28 ----D---- C:\Windows\System32
2008-12-15 21:04:28 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-12-15 21:04:27 ----D---- C:\Windows\inf
2008-12-15 18:59:32 ----D---- C:\Windows\system32\drivers
2008-12-15 18:09:43 ----RD---- C:\Program Files
2008-12-15 15:40:28 ----SHD---- C:\System Volume Information
2008-12-14 07:11:56 ----D---- C:\Windows\rescache
2008-12-13 19:55:13 ----D---- C:\Windows\system32\fr-FR
2008-12-13 19:55:13 ----D---- C:\Windows\AppPatch
2008-12-13 19:55:13 ----D---- C:\Windows
2008-12-13 19:54:39 ----D---- C:\Windows\winsxs
2008-12-13 19:53:01 ----D---- C:\Windows\system32\catroot
2008-12-13 19:51:01 ----D---- C:\Windows\system32\catroot2
2008-12-13 09:56:35 ----HD---- C:\ProgramData
2008-12-10 00:24:37 ----A---- C:\Windows\system32\mrt.exe
2008-12-10 00:04:57 ----D---- C:\Windows\system32\config
2008-12-10 00:04:53 ----D---- C:\Windows\Tasks
2008-12-10 00:04:53 ----D---- C:\Windows\system32\Tasks
2008-12-10 00:04:53 ----D---- C:\Windows\system32\spool
2008-12-10 00:04:53 ----D---- C:\Windows\system32\Msdtc
2008-12-10 00:04:51 ----D---- C:\Windows\system32\wbem
2008-12-10 00:04:51 ----D---- C:\Windows\registration
2008-12-08 12:08:53 ----SD---- C:\Users\Charly\AppData\Roaming\Microsoft
2008-12-06 14:51:35 ----SHD---- C:\Windows\Installer
2008-12-06 14:51:35 ----A---- C:\Windows\system32\MsiExec.exe.log
2008-12-06 14:51:22 ----D---- C:\Program Files\Common Files\Nero
2008-12-06 14:51:21 ----D---- C:\ProgramData\Nero
2008-12-05 23:10:40 ----SD---- C:\ProgramData\Microsoft
2008-12-03 19:07:12 ----D---- C:\Program Files\Common Files\InstallShield
2008-12-03 19:07:07 ----HD---- C:\Program Files\InstallShield Installation Information
2008-12-03 16:22:38 ----HD---- C:\Windows\system32\GroupPolicy
2008-12-03 16:19:27 ----D---- C:\Program Files\Mozilla Firefox
2008-12-03 11:01:09 ----RSD---- C:\Windows\assembly
2008-12-03 11:00:19 ----D---- C:\Program Files\Common Files\microsoft shared
2008-12-02 19:45:34 ----D---- C:\Users\Charly\AppData\Roaming\LimeWire
2008-11-26 18:21:30 ----A---- C:\Windows\system32\aswBoot.exe
2008-11-26 07:42:24 ----D---- C:\Program Files\a-squared Free
2008-11-18 16:56:24 ----D---- C:\Program Files\Common Files
2008-11-18 16:56:23 ----D---- C:\Users\Charly\AppData\Roaming\Mozilla
2008-11-17 20:31:53 ----D---- C:\Windows\system32\NDF

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2008-11-26 23152]
R1 aswSP;avast! Self Protection; C:\Windows\system32\drivers\aswSP.sys [2008-11-26 111184]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2008-11-26 50864]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\DRIVERS\aswFsBlk.sys [2008-11-26 20560]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\DRIVERS\aswMonFlt.sys [2008-11-26 51792]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-06-02 2147544]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2008-01-29 1042464]
R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2008-03-19 7438432]
R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2008-02-15 14336]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
S3 drmkaud;Filtre de décodeur DRM (Noyau Microsoft); C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 HdAudAddService;Pilote de fonction UAA 1.1 Microsoft pour le service High Definition Audio; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MSKSSRV;Proxy de service de répartition Microsoft; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Proxy d’horloge de répartition Microsoft; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Proxy de gestion de qualité de répartition Microsoft; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-21 39936]
S4 ahcix86s;ahcix86s; C:\Windows\system32\drivers\ahcix86s.sys [2007-12-19 170000]
S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]
S4 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iastor.sys [2007-09-29 308248]
S4 JRAID;JRAID; C:\Windows\system32\drivers\jraid.sys [2008-04-03 76688]
S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 a2free;a-squared Free Service; C:\Program Files\a-squared Free\a2service.exe [2008-11-26 419448]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2008-11-26 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2008-11-26 155160]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2008-03-19 118784]
R2 TestHandler;Fujitsu Siemens Computers Diagnostic Testhandler; C:\Program Files\Fujitsu Siemens Computers\SystemDiagnostics\OnlineDiagnostic\TestManager\TestHandler.exe [2008-04-25 303104]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2008-11-26 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2008-11-26 352920]
S3 GoogleDesktopManager-022208-143751;Google Desktop Manager 5.7.802.22438; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-11-05 29744]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-05 138168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------

merci…:wink:

Re,

C’est quoi ton problème exactement?:ouch:

@+

j’ai toujours eu ces messages mais avec un clic droit sur l’icone “hijackthis”,
selection “admin” ca fonctionne…:slight_smile:

merci de votre aide…bonne continuation à tous…;):slight_smile: