voila le rapport diaghelp:
DiagHelp version v1.4 -
http://www.malekal.com
excute le 03/12/2007 à 21:39:05,15
Liste des derniers fichies modifies/crees dans windir\system32 et prefetch
C:\WINDOWS\prefetch\CHCP.COM-17EDBDC9.pf -->03/12/2007 21:38:40 Bose
C:\WINDOWS\prefetch\CMD.EXE-034B0549.pf -->03/12/2007 21:37:04 Bose
C:\WINDOWS\prefetch\EXPLORER.EXE-02121B1A.pf -->03/12/2007 21:36:00 Bose
C:\WINDOWS\prefetch\VERCLSID.EXE-28F52AD2.pf -->03/12/2007 21:35:10 Bose
C:\WINDOWS\prefetch\NOTEPAD.EXE-2DAE2DE6.pf -->03/12/2007 21:32:06 Bose
C:\WINDOWS\prefetch\WMIPRVSE.EXE-0D449B4F.pf -->03/12/2007 21:29:36 Bose
C:\WINDOWS\prefetch\HIJACKTHIS_V2.EXE-251BEFC6.pf -->03/12/2007 21:29:28 Bose
C:\WINDOWS\prefetch\NOTEPAD.EXE-2F2D61E1.pf -->03/12/2007 21:27:22 Bose
C:\WINDOWS\prefetch\FIREFOX.EXE-06188867.pf -->03/12/2007 21:00:44 Bose
C:\WINDOWS\prefetch\WUAUCLT.EXE-1360D60A.pf -->03/12/2007 21:00:18 Bose
C:\WINDOWS\System32\drivers\AnyDVD.sys -->30/11/2007 16:23:04 Bose
C:\WINDOWS\System32\drivers\avipbb.sys -->10/10/2007 18:04:16 Bose
C:\WINDOWS\System32\drivers\nchssvad.sys -->05/10/2007 13:40:34 Bose
C:\WINDOWS\System32\drivers\ativvpxx.vp -->22/08/2007 04:33:06 Bose
C:\WINDOWS\System32\drivers\ati2mtag.sys -->22/08/2007 04:07:40 Bose
C:\WINDOWS\System32\drivers\ati2erec.dll -->22/08/2007 03:13:02 Bose
C:\WINDOWS\System32\drivers\ElbyCDIO.sys -->07/08/2007 20:48:34 Bose
C:\WINDOWS\System32\wpa.dbl -->03/12/2007 20:59:40 Bose
C:\WINDOWS\System32\Filzip.ini -->04/11/2007 10:09:48 Bose
C:\WINDOWS\System32\MRT.exe -->02/11/2007 08:12:58 Bose
C:\WINDOWS\System32\xpsp3res.dll -->29/10/2007 16:07:16 Bose
C:\WINDOWS\System32\FNTCACHE.DAT -->28/10/2007 08:10:42 Bose
C:\WINDOWS\System32\shell32.dll -->25/10/2007 17:43:26 Bose
C:\WINDOWS\System32\QuickTimeVR.qtx -->19/10/2007 20:16:46 Bose
C:\WINDOWS\System32\QuickTime.qts -->19/10/2007 20:16:46 Bose
C:\WINDOWS\System32\sirenacm.dll -->18/10/2007 11:31:46 Bose
C:\WINDOWS\System32\jupdate-1.6.0_03-b05.log -->05/10/2007 07:49:06 Bose
C:\WINDOWS\System32\javacpl.cpl -->24/09/2007 23:31:42 Bose
C:\WINDOWS\System32\javaws.exe -->24/09/2007 23:31:42 Bose
C:\WINDOWS\System32\javaw.exe -->24/09/2007 22:30:30 Bose
C:\WINDOWS\System32\java.exe -->24/09/2007 22:30:28 Bose
C:\WINDOWS\System32\d3d9caps.dat -->17/09/2007 17:25:44 Bose
C:\WINDOWS\System32\jupdate-1.6.0_02-b06.log -->06/09/2007 08:12:14 Bose
C:\WINDOWS\System32\NetFerret.dll -->01/09/2007 08:44:14 Bose
C:\WINDOWS\System32\TZLog.log -->30/08/2007 01:54:08 Bose
C:\WINDOWS\System32\ATIDEMGX.dll -->22/08/2007 04:09:12 Bose
C:\WINDOWS\System32\ati2dvag.dll -->22/08/2007 04:08:00 Bose
C:\WINDOWS\System32\atiiiexx.dll -->22/08/2007 04:07:22 Bose
C:\WINDOWS\System32\atipdlxx.dll -->22/08/2007 03:59:28 Bose
C:\WINDOWS\System32\Ati2mdxx.exe -->22/08/2007 03:59:06 Bose
C:\WINDOWS\System32\ati2edxx.dll -->22/08/2007 03:58:58 Bose
C:\WINDOWS\System32\ati2evxx.dll -->22/08/2007 03:58:44 Bose
C:\WINDOWS\Filzip.ini -->03/12/2007 21:35:52 Bose
C:\WINDOWS\msnfix.txt -->03/12/2007 21:00:38 Bose
C:\WINDOWS\0.log -->03/12/2007 20:59:28 Bose
C:\WINDOWS\wiadebug.log -->03/12/2007 20:59:22 Bose
C:\WINDOWS\bootstat.dat -->03/12/2007 20:59:00 Bose
C:\WINDOWS\SchedLgU.Txt -->03/12/2007 20:58:10 Bose
C:\WINDOWS\wiaservc.log -->03/12/2007 20:58:10 Bose
C:\WINDOWS\WindowsUpdate.log -->03/12/2007 20:57:58 Bose
C:\WINDOWS\QTFont.for -->02/12/2007 14:55:22 Bose
C:\WINDOWS\QTFont.qfn -->02/12/2007 14:55:22 Bose
C:\WINDOWS\SB8FC43C8.tmp -->02/12/2007 10:06:26 Bose
C:\WINDOWS\NeroDigital.ini -->02/12/2007 08:39:48 Bose
C:\WINDOWS\AUTOLNCH.REG -->22/11/2007 11:54:36 Bose
C:\WINDOWS\setupapi.log.0.old -->18/11/2007 19:53:30 Bose
C:\WINDOWS\mozver.dat -->28/10/2007 09:47:26 Bose
winlogon.exe
Verified: Signed
svchost.exe
Verified: Signed
ws2_32.dll
Verified: Signed
user32.dll
Verified: Signed
tcpip.sys
Verified: Signed
ndis.sys
Verified: Signed
null.sys
Verified: Signed
ListDLLs v2.25 - DLL lister for Win9x/NT
Copyright (C) 1997-2004 Mark Russinovich
Sysinternals -
http://www.sysinternals.com
------------------------------------------------------------------------------
Explorer.EXE pid: 1828
Command line: C:\WINDOWS\Explorer.EXE