Rapport hijackthis(urgent)
Fermé
jjj3
-
toptitbal Messages postés 26224 Date d'inscription Statut Contributeur sécurité Dernière intervention -
toptitbal Messages postés 26224 Date d'inscription Statut Contributeur sécurité Dernière intervention -
Bonjour voici les deux rapports merci de m'aider.
Voici le rapport log.txt
Logfile of random's system information tool 1.06 (written by random/random)
Run by Scenic at 2009-08-25 16:02:12
Microsoft Windows XP Professionnel
System drive C: has 12 GB (60%) free of 19 GB
Total RAM: 631 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:02:22, on 25/08/2009
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\mslsrv32.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\mset.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Scenic\mset.exe
C:\WINDOWS\new4.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Documents and Settings\Scenic\Bureau\RSIT.exe
C:\Program Files\trend micro\Scenic.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com/?SearchSource=10&ctid=CT1750559
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll
O3 - Toolbar: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Microsoft Driver Setup] C:\WINDOWS\mslsrv32.exe
O4 - HKLM\..\Run: [Universal Bus device] usb_drv.exe
O4 - HKLM\..\Run: [Windows Data Serivce] new4.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [mset] C:\WINDOWS\system32\mset.exe
O4 - HKLM\..\Run: [Regedit32] C:\WINDOWS\system32\regedit.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [mset] C:\Documents and Settings\Scenic\mset.exe
O4 - HKLM\..\Policies\Explorer\Run: [Microsoft Driver Setup] C:\WINDOWS\mslsrv32.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-583907252-2111687655-725345543-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'postgres')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Unibet - {00000000-0000-0000-0000-000000000000} - C:\MicroGaming\Poker\unibetpokerMPP\MPPoker.exe (file missing) (HKCU)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/default.aspx
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PostgreSQL Database Server 8.3 (pgsql-8.3) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe
End of file - 6539 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-08-17 312928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-01 41368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-01 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
BS Player Toolbar - C:\Program Files\BS_Player\tbBS_P.dll [2009-07-02 2215960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - BS Player Toolbar - C:\Program Files\BS_Player\tbBS_P.dll [2009-07-02 2215960]
{8E718888-423F-11D2-876E-00A0C9082467} - &Radio - C:\WINDOWS\System32\msdxm.ocx [2001-08-28 847900]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\System32\i [2009-08-25 88]
"HotKeysCmds"=C:\WINDOWS\System32\hkcmd.exe [2003-10-02 118784]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-01 148888]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-08-17 198160]
"Microsoft Driver Setup"=C:\WINDOWS\mslsrv32.exe [2009-08-25 57344]
"Universal Bus device"=C:\WINDOWS\usb_drv.exe [2009-08-25 114688]
"Windows Data Serivce"=C:\WINDOWS\new4.exe [2009-08-25 462848]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"mset"=C:\WINDOWS\system32\mset.exe [2009-08-25 29506]
"Regedit32"=C:\WINDOWS\system32\regedit.exe []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"Microsoft Driver Setup"=C:\WINDOWS\mslsrv32.exe [2009-08-25 57344]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\System32\ctfmon.exe [2001-08-28 13312]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2001-08-02 1077277]
"mset"=C:\Documents and Settings\Scenic\mset.exe [2009-08-25 29506]
C:\Documents and Settings\Scenic\Menu Démarrer\Programmes\Démarrage
OpenOffice.org 3.1.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2003-10-02 319488]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\PPMate\ppmate.exe"="C:\Program Files\PPMate\ppmate.exe:*:Enabled:PPMate"
"C:\Program Files\PPMate\ppamnet.exe"="C:\Program Files\PPMate\ppamnet.exe:*:Enabled:PPMate"
"\??\C:\WINDOWS\system32\winlogon.exe"="\??\C:\WINDOWS\system32\winlogon.exe:*:enabled:@shell32.dll,-1"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======List of files/folders created in the last 1 months======
2009-08-25 16:02:13 ----D---- C:\Program Files\trend micro
2009-08-25 16:02:12 ----D---- C:\rsit
2009-08-25 15:54:39 ----AH---- C:\WINDOWS\System32\qngno.exe
2009-08-25 15:38:24 ----ASH---- C:\WINDOWS\System32\.exe
2009-08-25 15:36:57 ----AH---- C:\WINDOWS\System32\aaglk.exe
2009-08-25 15:16:19 ----RA---- C:\WINDOWS\System32\ssms.exe
2009-08-25 15:15:06 ----A---- C:\WINDOWS\System32\mset.exe
2009-08-25 15:14:01 ----A---- C:\windowsupd.exe
2009-08-25 14:51:59 ----SHD---- C:\Config.Msi
2009-08-25 14:48:23 ----D---- C:\WINDOWS\Minidump
2009-08-25 14:46:51 ----D---- C:\Program Files\Avira
2009-08-25 14:46:51 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-08-25 14:44:41 ----A---- C:\WINDOWS\nigzss.txt
2009-08-25 14:44:28 ----RSH---- C:\WINDOWS\new4.exe
2009-08-25 14:44:01 ----A---- C:\WINDOWS\System32\4new.exe
2009-08-25 14:42:47 ----RSH---- C:\WINDOWS\usb_drv.exe
2009-08-25 14:39:02 ----A---- C:\WINDOWS\System32\Ms14.exe
2009-08-25 14:08:30 ----A---- C:\WINDOWS\logfile32.txt
2009-08-25 14:08:28 ----RSH---- C:\WINDOWS\mslsrv32.exe
2009-08-21 12:14:15 ----D---- C:\Program Files\TVAnts
2009-08-21 12:01:30 ----D---- C:\ppmaterecord
2009-08-21 12:01:30 ----D---- C:\Documents and Settings\Scenic\Application Data\ppStream
2009-08-21 12:01:28 ----A---- C:\WINDOWS\psnetwork.ini
2009-08-21 11:40:10 ----D---- C:\Documents and Settings\Scenic\Application Data\PPMate
2009-08-21 11:40:01 ----D---- C:\Program Files\Fichiers communs\Synacast
2009-08-18 15:38:19 ----D---- C:\Documents and Settings\All Users\Application Data\PixelPlanet
2009-08-18 15:37:18 ----D---- C:\Program Files\Fichiers communs\XPressUpdate
2009-08-18 15:37:18 ----D---- C:\Documents and Settings\Scenic\Application Data\PixelPlanet
2009-08-18 15:10:48 ----D---- C:\Documents and Settings\Scenic\Application Data\OpenOffice.org
2009-08-18 15:01:53 ----D---- C:\Program Files\JRE
2009-08-18 15:00:52 ----D---- C:\Program Files\OpenOffice.org 3
2009-08-18 14:59:39 ----A---- C:\WINDOWS\System32\javaws.exe
2009-08-18 14:59:39 ----A---- C:\WINDOWS\System32\javaw.exe
2009-08-18 14:59:39 ----A---- C:\WINDOWS\System32\java.exe
2009-08-17 15:32:50 ----D---- C:\Program Files\Fichiers communs\xing shared
2009-08-17 15:32:37 ----A---- C:\WINDOWS\System32\rmoc3260.dll
2009-08-17 15:32:18 ----A---- C:\WINDOWS\System32\pndx5032.dll
2009-08-17 15:32:18 ----A---- C:\WINDOWS\System32\pndx5016.dll
2009-08-17 15:32:14 ----D---- C:\Program Files\Real
2009-08-17 15:32:13 ----A---- C:\WINDOWS\System32\pncrt.dll
2009-08-17 15:32:08 ----D---- C:\Program Files\Fichiers communs\Real
2009-08-17 15:32:05 ----D---- C:\Documents and Settings\Scenic\Application Data\Real
2009-08-15 15:39:33 ----D---- C:\Program Files\PokerStove
2009-08-13 23:23:12 ----D---- C:\Program Files\PokerStars
2009-08-12 19:41:34 ----D---- C:\Interwetten
2009-08-07 20:30:25 ----D---- C:\Documents and Settings\Scenic\Application Data\dvdcss
2009-08-07 17:32:30 ----D---- C:\Program Files\B2BPOKER
2009-08-05 19:09:44 ----D---- C:\Documents and Settings\Scenic\Application Data\Microgaming
2009-08-05 19:06:03 ----D---- C:\MicroGaming
2009-08-05 14:51:05 ----D---- C:\WINDOWS\System32\appmgmt
2009-08-04 23:54:56 ----D---- C:\Program Files\PlayersOnly Poker
2009-08-04 23:35:36 ----D---- C:\Poker
2009-08-04 21:41:12 ----D---- C:\Program Files\PartyGaming
2009-08-04 20:39:41 ----D---- C:\Program Files\Everest Poker
2009-08-04 20:38:02 ----D---- C:\WINDOWS\Sun
2009-08-04 20:31:40 ----D---- C:\Betsson
2009-08-04 13:59:11 ----D---- C:\Documents and Settings\All Users\Application Data\Boss Media
2009-08-03 13:31:11 ----HDC---- C:\WINDOWS\$NtUninstallQ329834$
2009-08-03 13:30:49 ----HDC---- C:\WINDOWS\$NtUninstallKB823559$
2009-08-03 13:30:10 ----HDC---- C:\WINDOWS\$NtUninstallQ329048$
2009-08-03 13:29:36 ----HDC---- C:\WINDOWS\$NtUninstallQ810577$
2009-08-03 13:28:51 ----HDC---- C:\WINDOWS\$NtUninstallQ810833$
2009-08-03 13:08:32 ----HDC---- C:\WINDOWS\$NtUninstallQ815021$
2009-08-03 13:07:27 ----HDC---- C:\WINDOWS\$NtUninstallQ329441$
2009-08-03 13:06:44 ----A---- C:\WINDOWS\System32\srrstr.dll
2009-08-03 13:04:45 ----A---- C:\WINDOWS\System32\MRT.exe
2009-08-03 13:03:29 ----HDC---- C:\WINDOWS\$NtUninstallQ329170$
2009-08-03 13:02:36 ----HDC---- C:\WINDOWS\$NtUninstallQ329115$
2009-08-03 13:02:20 ----HDC---- C:\WINDOWS\$NtUninstallQ329390$
2009-08-03 13:02:19 ----HDC---- C:\WINDOWS\$xpsp1hfm$
2009-08-03 13:02:19 ----A---- C:\WINDOWS\System32\xpsp1hfm.exe
2009-08-02 19:36:08 ----D---- C:\Program Files\Conduit
2009-08-02 19:36:03 ----D---- C:\Program Files\BS_Player
2009-08-02 19:35:48 ----D---- C:\Documents and Settings\Scenic\Application Data\BSplayer Pro
2009-08-02 19:35:48 ----D---- C:\Documents and Settings\Scenic\Application Data\BSplayer
2009-08-02 19:35:44 ----D---- C:\Program Files\Webteh
2009-08-01 11:14:02 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-08-01 11:13:38 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-08-01 11:13:38 ----D---- C:\Program Files\Adobe
2009-08-01 11:08:30 ----D---- C:\Program Files\NOS
2009-08-01 11:08:30 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
2009-08-01 01:10:19 ----D---- C:\Documents and Settings\Scenic\Application Data\FTP-Image2SVG
2009-08-01 01:07:57 ----A---- C:\WINDOWS\System32\deploytk.dll
2009-08-01 01:06:51 ----D---- C:\Program Files\Java
2009-08-01 01:03:11 ----D---- C:\Documents and Settings\Scenic\Application Data\Sun
2009-07-31 12:12:00 ----SD---- C:\WINDOWS\System32\Microsoft
2009-07-31 12:06:46 ----D---- C:\WINDOWS\System32\bits
2009-07-31 12:06:37 ----HDC---- C:\WINDOWS\$NtUninstallKB842773$
2009-07-31 12:06:11 ----N---- C:\WINDOWS\System32\bitsprx3.dll
2009-07-31 12:06:11 ----N---- C:\WINDOWS\System32\bitsprx2.dll
2009-07-31 12:06:11 ----A---- C:\WINDOWS\System32\winhttp.dll
2009-07-31 12:06:11 ----A---- C:\WINDOWS\System32\qmgrprxy.dll
2009-07-31 12:03:56 ----A---- C:\WINDOWS\System32\wups2.dll
2009-07-31 12:03:55 ----A---- C:\WINDOWS\System32\wups.dll
2009-07-31 12:03:55 ----A---- C:\WINDOWS\System32\wucltui.dll.mui
2009-07-31 12:03:55 ----A---- C:\WINDOWS\System32\wucltui.dll
2009-07-31 12:03:55 ----A---- C:\WINDOWS\System32\wuaueng.dll.mui
2009-07-31 12:03:53 ----A---- C:\WINDOWS\System32\wuapi.dll.mui
2009-07-31 12:03:53 ----A---- C:\WINDOWS\System32\wuapi.dll
2009-07-31 12:03:03 ----D---- C:\WINDOWS\SoftwareDistribution
2009-07-31 11:46:26 ----D---- C:\Program Files\7-Zip
2009-07-30 18:56:40 ----D---- C:\Program Files\Full Tilt Poker
2009-07-30 17:46:26 ----A---- C:\WINDOWS\HMHud.INI
2009-07-30 17:22:50 ----D---- C:\Program Files\PostgreSQL
2009-07-30 17:09:47 ----D---- C:\Program Files\RVG Software
2009-07-30 16:52:10 ----HDC---- C:\WINDOWS\$MSI30UninstallMSI30-KB884016$
2009-07-30 16:25:02 ----D---- C:\Program Files\UltimateBet
2009-07-30 16:03:03 ----D---- C:\Documents and Settings\Scenic\Application Data\Thunderbird
2009-07-30 16:02:49 ----D---- C:\Program Files\Mozilla Thunderbird
2009-07-30 15:56:04 ----D---- C:\Program Files\CamStudio
2009-07-30 15:39:32 ----D---- C:\Program Files\Pense-bete
2009-07-30 15:39:32 ----D---- C:\Documents and Settings\Scenic\Application Data\Pense-bete
2009-07-30 13:35:52 ----D---- C:\Documents and Settings\Scenic\Application Data\vlc
2009-07-30 13:33:30 ----D---- C:\Program Files\VideoLAN
2009-07-30 13:16:17 ----A---- C:\WINDOWS\System32\MSVCR71.dll
2009-07-30 13:16:17 ----A---- C:\WINDOWS\System32\MSVCP71.dll
2009-07-30 13:16:17 ----A---- C:\WINDOWS\System32\MFC71.dll
2009-07-30 13:16:17 ----A---- C:\WINDOWS\System32\aswBoot.exe
2009-07-30 13:16:12 ----D---- C:\Program Files\Alwil Software
2009-07-30 13:08:22 ----D---- C:\WINDOWS\System32\NtmsData
2009-07-30 12:52:42 ----D---- C:\Documents and Settings\Scenic\Application Data\Macromedia
2009-07-30 12:52:42 ----D---- C:\Documents and Settings\Scenic\Application Data\Adobe
2009-07-30 12:42:20 ----A---- C:\WINDOWS\System32\d3dx10_41.dll
2009-07-30 12:42:20 ----A---- C:\WINDOWS\System32\D3DCompiler_41.dll
2009-07-30 12:42:19 ----A---- C:\WINDOWS\System32\D3DX9_41.dll
2009-07-30 12:42:17 ----A---- C:\WINDOWS\System32\XAudio2_4.dll
2009-07-30 12:42:17 ----A---- C:\WINDOWS\System32\XAPOFX1_3.dll
2009-07-30 12:42:16 ----A---- C:\WINDOWS\System32\xactengine3_4.dll
2009-07-30 12:42:16 ----A---- C:\WINDOWS\System32\X3DAudio1_6.dll
2009-07-30 12:42:15 ----A---- C:\WINDOWS\System32\d3dx10_40.dll
2009-07-30 12:42:15 ----A---- C:\WINDOWS\System32\D3DCompiler_40.dll
2009-07-30 12:42:14 ----A---- C:\WINDOWS\System32\D3DX9_40.dll
2009-07-30 12:42:13 ----A---- C:\WINDOWS\System32\XAudio2_3.dll
2009-07-30 12:42:13 ----A---- C:\WINDOWS\System32\XAPOFX1_2.dll
2009-07-30 12:42:13 ----A---- C:\WINDOWS\System32\xactengine3_3.dll
2009-07-30 12:42:13 ----A---- C:\WINDOWS\System32\X3DAudio1_5.dll
2009-07-30 12:42:12 ----A---- C:\WINDOWS\System32\XAudio2_2.dll
2009-07-30 12:42:12 ----A---- C:\WINDOWS\System32\XAPOFX1_1.dll
2009-07-30 12:42:11 ----A---- C:\WINDOWS\System32\xactengine3_2.dll
2009-07-30 12:42:10 ----A---- C:\WINDOWS\System32\D3DX9_39.dll
2009-07-30 12:42:10 ----A---- C:\WINDOWS\System32\d3dx10_39.dll
2009-07-30 12:42:10 ----A---- C:\WINDOWS\System32\D3DCompiler_39.dll
2009-07-30 12:42:09 ----A---- C:\WINDOWS\System32\XAudio2_1.dll
2009-07-30 12:42:09 ----A---- C:\WINDOWS\System32\XAPOFX1_0.dll
2009-07-30 12:42:09 ----A---- C:\WINDOWS\System32\xactengine3_1.dll
2009-07-30 12:42:09 ----A---- C:\WINDOWS\System32\X3DAudio1_4.dll
2009-07-30 12:42:08 ----A---- C:\WINDOWS\System32\D3DX9_38.dll
2009-07-30 12:42:08 ----A---- C:\WINDOWS\System32\d3dx10_38.dll
2009-07-30 12:42:08 ----A---- C:\WINDOWS\System32\D3DCompiler_38.dll
2009-07-30 12:42:07 ----A---- C:\WINDOWS\System32\XAudio2_0.dll
2009-07-30 12:42:07 ----A---- C:\WINDOWS\System32\xactengine3_0.dll
2009-07-30 12:42:07 ----A---- C:\WINDOWS\System32\X3DAudio1_3.dll
2009-07-30 12:42:06 ----A---- C:\WINDOWS\System32\D3DX9_37.dll
2009-07-30 12:42:06 ----A---- C:\WINDOWS\System32\d3dx10_37.dll
2009-07-30 12:42:06 ----A---- C:\WINDOWS\System32\D3DCompiler_37.dll
2009-07-30 12:42:05 ----A---- C:\WINDOWS\System32\xactengine2_10.dll
2009-07-30 12:42:04 ----A---- C:\WINDOWS\System32\d3dx9_36.dll
2009-07-30 12:42:04 ----A---- C:\WINDOWS\System32\d3dx10_36.dll
2009-07-30 12:42:04 ----A---- C:\WINDOWS\System32\D3DCompiler_36.dll
2009-07-30 12:42:03 ----A---- C:\WINDOWS\System32\xactengine2_9.dll
2009-07-30 12:42:03 ----A---- C:\WINDOWS\System32\d3dx10_35.dll
2009-07-30 12:42:03 ----A---- C:\WINDOWS\System32\D3DCompiler_35.dll
2009-07-30 12:42:02 ----A---- C:\WINDOWS\System32\d3dx9_35.dll
2009-07-30 12:42:01 ----A---- C:\WINDOWS\System32\xactengine2_8.dll
2009-07-30 12:42:01 ----A---- C:\WINDOWS\System32\X3DAudio1_2.dll
2009-07-30 12:42:01 ----A---- C:\WINDOWS\System32\d3dx10_34.dll
2009-07-30 12:42:01 ----A---- C:\WINDOWS\System32\D3DCompiler_34.dll
2009-07-30 12:42:00 ----A---- C:\WINDOWS\System32\xinput1_3.dll
2009-07-30 12:42:00 ----A---- C:\WINDOWS\System32\xactengine2_7.dll
2009-07-30 12:42:00 ----A---- C:\WINDOWS\System32\d3dx9_34.dll
2009-07-30 12:41:59 ----A---- C:\WINDOWS\System32\d3dx10_33.dll
2009-07-30 12:41:59 ----A---- C:\WINDOWS\System32\D3DCompiler_33.dll
2009-07-30 12:41:58 ----A---- C:\WINDOWS\System32\d3dx9_33.dll
2009-07-30 12:41:57 ----A---- C:\WINDOWS\System32\xactengine2_6.dll
2009-07-30 12:41:57 ----A---- C:\WINDOWS\System32\xactengine2_5.dll
2009-07-30 12:41:57 ----A---- C:\WINDOWS\System32\d3dx9_32.dll
2009-07-30 12:41:56 ----A---- C:\WINDOWS\System32\xactengine2_4.dll
2009-07-30 12:41:56 ----A---- C:\WINDOWS\System32\x3daudio1_1.dll
2009-07-30 12:41:56 ----A---- C:\WINDOWS\System32\d3dx9_31.dll
2009-07-30 12:41:55 ----A---- C:\WINDOWS\System32\xinput1_2.dll
2009-07-30 12:41:55 ----A---- C:\WINDOWS\System32\xinput1_1.dll
2009-07-30 12:41:55 ----A---- C:\WINDOWS\System32\xactengine2_3.dll
2009-07-30 12:41:55 ----A---- C:\WINDOWS\System32\xactengine2_2.dll
2009-07-30 12:41:54 ----A---- C:\WINDOWS\System32\xactengine2_1.dll
2009-07-30 12:41:52 ----A---- C:\WINDOWS\System32\xactengine2_0.dll
2009-07-30 12:41:52 ----A---- C:\WINDOWS\System32\x3daudio1_0.dll
2009-07-30 12:41:52 ----A---- C:\WINDOWS\System32\d3dx9_30.dll
2009-07-30 12:41:51 ----A---- C:\WINDOWS\System32\d3dx9_29.dll
2009-07-30 12:41:51 ----A---- C:\WINDOWS\System32\d3dx9_28.dll
2009-07-30 12:41:50 ----A---- C:\WINDOWS\System32\xinput9_1_0.dll
2009-07-30 12:41:50 ----A---- C:\WINDOWS\System32\d3dx9_27.dll
2009-07-30 12:41:50 ----A---- C:\WINDOWS\System32\d3dx9_26.dll
2009-07-30 12:41:48 ----A---- C:\WINDOWS\System32\d3dx9_25.dll
2009-07-30 12:41:48 ----A---- C:\WINDOWS\System32\d3dx9_24.dll
2009-07-30 12:41:30 ----D---- C:\WINDOWS\RegisteredPackages
2009-07-30 12:41:20 ----D---- C:\Documents and Settings\Scenic\Application Data\Mozilla
2009-07-30 12:40:38 ----A---- C:\WINDOWS\System32\wstdecod.dll
2009-07-30 12:40:37 ----A---- C:\WINDOWS\System32\psisdecd.dll
2009-07-30 12:40:37 ----A---- C:\WINDOWS\System32\msyuv.dll
2009-07-30 12:40:37 ----A---- C:\WINDOWS\System32\msvidctl.dll
2009-07-30 12:40:34 ----A---- C:\WINDOWS\System32\quartz.dll
2009-07-30 12:40:34 ----A---- C:\WINDOWS\System32\ddraw.dll
2009-07-30 12:40:34 ----A---- C:\WINDOWS\System32\d3d9.dll
2009-07-30 12:40:33 ----D---- C:\Program Files\Mozilla Firefox
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\qedit.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\qdvd.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\qdv.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\qcap.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\mswebdvd.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\ksuser.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dxdiagn.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dxdiag.exe
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dsound.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dsdmoprp.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dpwsockx.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dpvoice.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dpnsvr.exe
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dpnet.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dpmodemx.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dmusic.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dinput8.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dinput.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\devenum.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\d3d8.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\qedwipes.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\pid.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\msdmo.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\mciqtz32.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\encapi.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dx8vb.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dx7vb.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpvvox.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpvsetup.exe
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpvacm.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpnlobby.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpnhupnp.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpnhpast.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpnaddr.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dplayx.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dplaysvr.exe
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\ddrawex.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\d3dim700.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\d3d8thk.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\amstream.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dxdllreg.exe
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dswave.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dsound3d.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dsdmo.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmsynth.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmstyle.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmscript.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmloader.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmime.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmcompos.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmband.dll
2009-07-30 12:36:10 ----HD---- C:\WINDOWS\msdownld.tmp
2009-07-30 12:36:03 ----D---- C:\WINDOWS\Logs
2009-07-30 12:33:38 ----D---- C:\Program Files\Betfair
======List of files/folders modified in the last 1 months======
2009-08-25 16:02:13 ----RD---- C:\Program Files
2009-08-25 16:00:22 ----D---- C:\WINDOWS\system32
2009-08-25 15:59:31 ----D---- C:\WINDOWS\Temp
2009-08-25 15:57:45 ----D---- C:\WINDOWS\Debug
2009-08-25 15:57:12 ----D---- C:\WINDOWS\System32\CatRoot2
2009-08-25 15:19:35 ----D---- C:\WINDOWS\Prefetch
2009-08-25 15:11:46 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-08-25 14:52:25 ----SHD---- C:\WINDOWS\Installer
2009-08-25 14:52:24 ----D---- C:\WINDOWS\WinSxS
2009-08-25 14:52:01 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-08-25 14:48:23 ----D---- C:\WINDOWS
2009-08-25 14:47:04 ----D---- C:\WINDOWS\System32\drivers
2009-08-22 22:57:29 ----SD---- C:\WINDOWS\Tasks
2009-08-21 12:02:39 ----D---- C:\WINDOWS\security
2009-08-21 11:56:40 ----RSHDC---- C:\WINDOWS\System32\dllcache
2009-08-21 11:56:37 ----HD---- C:\WINDOWS\inf
2009-08-21 11:56:36 ----D---- C:\Program Files\Windows Media Player
2009-08-21 11:56:31 ----D---- C:\WINDOWS\LastGood
2009-08-21 11:55:47 ----A---- C:\WINDOWS\win.ini
2009-08-21 11:54:19 ----D---- C:\WINDOWS\Help
2009-08-21 11:53:25 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-08-21 11:40:01 ----D---- C:\Program Files\Fichiers communs
2009-08-18 15:07:54 ----RSD---- C:\WINDOWS\assembly
2009-08-18 15:03:05 ----RSD---- C:\WINDOWS\Fonts
2009-08-10 14:26:05 ----HD---- C:\Program Files\InstallShield Installation Information
2009-08-03 13:31:06 ----A---- C:\WINDOWS\imsins.BAK
2009-08-03 13:29:45 ----D---- C:\WINDOWS\System32\CatRoot
2009-08-02 16:51:22 ----SD---- C:\Documents and Settings\Scenic\Application Data\Microsoft
2009-07-31 12:03:59 ----HD---- C:\Program Files\WindowsUpdate
2009-07-31 12:03:03 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-07-31 10:13:09 ----D---- C:\WINDOWS\Microsoft.NET
2009-07-30 17:24:03 ----D---- C:\Documents and Settings
2009-07-30 17:08:58 ----A---- C:\WINDOWS\System32\PerfStringBackup.INI
2009-07-30 17:00:36 ----D---- C:\WINDOWS\Registration
2009-07-30 16:56:56 ----D---- C:\WINDOWS\PCHEALTH
2009-07-30 14:39:57 ----D---- C:\WINDOWS\System32\config
2009-07-30 12:42:24 ----D---- C:\WINDOWS\System32\DirectX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\System32\drivers\Aavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\System32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\System32\drivers\aswTdi.sys [2009-08-17 51376]
R1 avgntdd;avgntdd; C:\WINDOWS\SYSTEM32\DRIVERS\avgntdd.sys [2009-02-13 45416]
R1 avipbb;avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 ssmdrv;ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [2009-02-13 28376]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\System32\drivers\aswMon2.sys [2009-08-17 94160]
R3 {6080A529-897E-4629-A488-ABA0C29B635E};Intel(R) Graphics Platform (SoftBIOS) Driver; C:\WINDOWS\system32\drivers\ialmsbw.sys [2003-10-08 120830]
R3 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91};Intel(R) Graphics Chipset (KCH) Driver; C:\WINDOWS\system32\drivers\ialmkchw.sys [2003-10-08 98842]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 aswRdr;aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [2009-08-17 23152]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\System32\DRIVERS\e100b325.sys [2003-09-22 145408]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-28 9600]
R3 ialm;ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [2003-10-08 93979]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-28 12288]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2002-11-25 537152]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-05 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2001-08-17 50688]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2001-08-17 18944]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2001-08-17 24960]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2001-08-17 24832]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2001-08-17 21760]
S4 IntelIde;IntelIde; C:\WINDOWS\System32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-04-01 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-01 152984]
R2 pgsql-8.3;PostgreSQL Database Server 8.3; C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe [2009-03-13 65536]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\System32\wdfmgr.exe [2005-01-28 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
-----------------EOF-----------------
et le rapport info.txt
info.txt logfile of random's system information tool 1.06 2009-08-25 16:02:30
======Uninstall list======
-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\System32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\System32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
Betsson Poker-->"C:\Betsson\unins000.exe"
BS.Player FREE-->"C:\Program Files\Webteh\BSplayer\uninstall.exe"
BS_Player Toolbar-->C:\PROGRA~1\BS_PLA~1\UNWISE.EXE /U C:\PROGRA~1\BS_PLA~1\INSTALL.LOG
CamStudio-->C:\Program Files\CamStudio\uninstall.exe
Correctif Windows XP - KB823559-->C:\WINDOWS\$NtUninstallKB823559$\spuninst\spuninst.exe
Correctif Windows XP - KB842773-->C:\WINDOWS\$NtUninstallKB842773$\spuninst\spuninst.exe
Everest Poker (Remove Only)-->C:\Program Files\Everest Poker\cstart.exe /uninstall
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Holdem Manager-->MsiExec.exe /I{42DE940E-8037-4266-9FBF-5A3AEDA39E96}
Intel(R) Extreme Graphics Driver-->RUNDLL32.EXE C:\WINDOWS\System32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2562
Intel(R) PRO Network Adapters and Drivers-->Prounstl.exe
Interwetten Poker-->"C:\Interwetten\unins000.exe"
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013F0}
Java(TM) 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
MansionPoker-->"C:\Poker\MansionPoker\_SetupPoker_5a8b.exe" /uninstall
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mozilla Firefox (3.5.2)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (2.0.0.23)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
OpenOffice.org 3.1-->MsiExec.exe /I{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}
Package du correctif Windows XP [voir Q329115 pour plus de détails]-->C:\WINDOWS\$NtUninstallQ329115$\spuninst\spuninst.exe
PlayersOnly Poker-->C:\Program Files\PlayersOnly Poker\uninstall.exe
PokerStove version 1.23-->"C:\Program Files\PokerStove\unins000.exe"
PostgreSQL 8.3-->MsiExec.exe /I{B823632F-3B72-4514-8861-B961CE263224}
RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
TVAnts 1.0-->C:\PROGRA~1\TVAnts\UNWISE.EXE C:\PROGRA~1\TVAnts\INSTALL.LOG
VLC media player 1.0.1-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Installer 3.0 (KB884016)-->C:\WINDOWS\$MSI30UninstallMSI30-KB884016$\spuninst\spuninst.exe
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows XP Hotfix (SP1) [See Q329048 for more information]-->C:\WINDOWS\$NtUninstallQ329048$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q329390 for more information]-->C:\WINDOWS\$NtUninstallQ329390$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q329441 for more information]-->C:\WINDOWS\$NtUninstallQ329441$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q329834 for more information]-->C:\WINDOWS\$NtUninstallQ329834$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q329170-->C:\WINDOWS\$NtUninstallQ329170$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q810577-->C:\WINDOWS\$NtUninstallQ810577$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q810833-->C:\WINDOWS\$NtUninstallQ810833$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q815021-->C:\WINDOWS\$NtUninstallQ815021$\spuninst\spuninst.exe
======Hosts File======
127.0.0.1 NtKrnlpa.info
======System event log======
Computer Name: CEL-FFOOG42X105
Event Code: 4359
Message: Windows XP Hotfix Q305691 was installed.
Record Number: 5
Source Name: Q305691
Time Written: 20090602210233.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: CEL-FFOOG42X105
Event Code: 6011
Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers CEL-FFOOG42X105.
Record Number: 4
Source Name: EventLog
Time Written: 20090602205600.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.
Record Number: 3
Source Name: EventLog
Time Written: 20090602211453.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Uniprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20090602211453.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 2
Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.
Record Number: 1
Source Name: Serial
Time Written: 20090602211510.000000+120
Event Type: Informations
User:
=====Application event log=====
Computer Name: CEL-FFOOG42X105
Event Code: 11707
Message: Produit : Betfair Poker -- Installation terminée.
Record Number: 64
Source Name: MsiInstaller
Time Written: 20090730123345.000000+120
Event Type: Informations
User:
Computer Name: CEL-FFOOG42X105
Event Code: 1000
Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 63
Source Name: LoadPerf
Time Written: 20090730123217.000000+120
Event Type: Informations
User:
Computer Name: CEL-FFOOG42X105
Event Code: 1001
Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été supprimés.
Les données d'enregistrement contiennent les nouvelles valeurs du dernier compteur système
et les dernières entrées du registre d'aide.
Record Number: 62
Source Name: LoadPerf
Time Written: 20090730123217.000000+120
Event Type: Informations
User:
Computer Name: CEL-FFOOG42X105
Event Code: 4354
Message: Le système d'événements de COM+ n'a pas pu déclencher la méthode ConnectionMade de l'abonnement {3D74AAA4-0010-44E5-8D1C-E2CB9EABD84B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. L'abonné a renvoyé HRESULT 80004001.
Record Number: 61
Source Name: EventSystem
Time Written: 20090730123150.000000+120
Event Type: Avertissement
User:
Computer Name: CEL-FFOOG42X105
Event Code: 2001
Message: Le service EAPOL a été démarré correctement
Record Number: 60
Source Name: EAPOL
Time Written: 20090730123131.000000+120
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 1 Stepping 3, GenuineIntel
"PROCESSOR_REVISION"=0103
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
-----------------EOF-----------------
Voici le rapport log.txt
Logfile of random's system information tool 1.06 (written by random/random)
Run by Scenic at 2009-08-25 16:02:12
Microsoft Windows XP Professionnel
System drive C: has 12 GB (60%) free of 19 GB
Total RAM: 631 MB (45% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:02:22, on 25/08/2009
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\mslsrv32.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\mset.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Documents and Settings\Scenic\mset.exe
C:\WINDOWS\new4.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\wuauclt.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Documents and Settings\Scenic\Bureau\RSIT.exe
C:\Program Files\trend micro\Scenic.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com/?SearchSource=10&ctid=CT1750559
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
R3 - URLSearchHook: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll
O3 - Toolbar: BS Player Toolbar - {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - C:\Program Files\BS_Player\tbBS_P.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Microsoft Driver Setup] C:\WINDOWS\mslsrv32.exe
O4 - HKLM\..\Run: [Universal Bus device] usb_drv.exe
O4 - HKLM\..\Run: [Windows Data Serivce] new4.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [mset] C:\WINDOWS\system32\mset.exe
O4 - HKLM\..\Run: [Regedit32] C:\WINDOWS\system32\regedit.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [mset] C:\Documents and Settings\Scenic\mset.exe
O4 - HKLM\..\Policies\Explorer\Run: [Microsoft Driver Setup] C:\WINDOWS\mslsrv32.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-21-583907252-2111687655-725345543-1005\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'postgres')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Unibet - {00000000-0000-0000-0000-000000000000} - C:\MicroGaming\Poker\unibetpokerMPP\MPPoker.exe (file missing) (HKCU)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/default.aspx
O23 - Service: Avira AntiVir Planificateur (AntiVirSchedulerService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: PostgreSQL Database Server 8.3 (pgsql-8.3) - PostgreSQL Global Development Group - C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe
End of file - 6539 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [2009-08-17 312928]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-08-01 41368]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-08-01 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}]
BS Player Toolbar - C:\Program Files\BS_Player\tbBS_P.dll [2009-07-02 2215960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - BS Player Toolbar - C:\Program Files\BS_Player\tbBS_P.dll [2009-07-02 2215960]
{8E718888-423F-11D2-876E-00A0C9082467} - &Radio - C:\WINDOWS\System32\msdxm.ocx [2001-08-28 847900]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\System32\i [2009-08-25 88]
"HotKeysCmds"=C:\WINDOWS\System32\hkcmd.exe [2003-10-02 118784]
"avast!"=C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe [2009-08-17 81000]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-08-01 148888]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
"TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe [2009-08-17 198160]
"Microsoft Driver Setup"=C:\WINDOWS\mslsrv32.exe [2009-08-25 57344]
"Universal Bus device"=C:\WINDOWS\usb_drv.exe [2009-08-25 114688]
"Windows Data Serivce"=C:\WINDOWS\new4.exe [2009-08-25 462848]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2009-03-02 209153]
"mset"=C:\WINDOWS\system32\mset.exe [2009-08-25 29506]
"Regedit32"=C:\WINDOWS\system32\regedit.exe []
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"Microsoft Driver Setup"=C:\WINDOWS\mslsrv32.exe [2009-08-25 57344]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\System32\ctfmon.exe [2001-08-28 13312]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2001-08-02 1077277]
"mset"=C:\Documents and Settings\Scenic\mset.exe [2009-08-25 29506]
C:\Documents and Settings\Scenic\Menu Démarrer\Programmes\Démarrage
OpenOffice.org 3.1.lnk - C:\Program Files\OpenOffice.org 3\program\quickstart.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2003-10-02 319488]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\PPMate\ppmate.exe"="C:\Program Files\PPMate\ppmate.exe:*:Enabled:PPMate"
"C:\Program Files\PPMate\ppamnet.exe"="C:\Program Files\PPMate\ppamnet.exe:*:Enabled:PPMate"
"\??\C:\WINDOWS\system32\winlogon.exe"="\??\C:\WINDOWS\system32\winlogon.exe:*:enabled:@shell32.dll,-1"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======List of files/folders created in the last 1 months======
2009-08-25 16:02:13 ----D---- C:\Program Files\trend micro
2009-08-25 16:02:12 ----D---- C:\rsit
2009-08-25 15:54:39 ----AH---- C:\WINDOWS\System32\qngno.exe
2009-08-25 15:38:24 ----ASH---- C:\WINDOWS\System32\.exe
2009-08-25 15:36:57 ----AH---- C:\WINDOWS\System32\aaglk.exe
2009-08-25 15:16:19 ----RA---- C:\WINDOWS\System32\ssms.exe
2009-08-25 15:15:06 ----A---- C:\WINDOWS\System32\mset.exe
2009-08-25 15:14:01 ----A---- C:\windowsupd.exe
2009-08-25 14:51:59 ----SHD---- C:\Config.Msi
2009-08-25 14:48:23 ----D---- C:\WINDOWS\Minidump
2009-08-25 14:46:51 ----D---- C:\Program Files\Avira
2009-08-25 14:46:51 ----D---- C:\Documents and Settings\All Users\Application Data\Avira
2009-08-25 14:44:41 ----A---- C:\WINDOWS\nigzss.txt
2009-08-25 14:44:28 ----RSH---- C:\WINDOWS\new4.exe
2009-08-25 14:44:01 ----A---- C:\WINDOWS\System32\4new.exe
2009-08-25 14:42:47 ----RSH---- C:\WINDOWS\usb_drv.exe
2009-08-25 14:39:02 ----A---- C:\WINDOWS\System32\Ms14.exe
2009-08-25 14:08:30 ----A---- C:\WINDOWS\logfile32.txt
2009-08-25 14:08:28 ----RSH---- C:\WINDOWS\mslsrv32.exe
2009-08-21 12:14:15 ----D---- C:\Program Files\TVAnts
2009-08-21 12:01:30 ----D---- C:\ppmaterecord
2009-08-21 12:01:30 ----D---- C:\Documents and Settings\Scenic\Application Data\ppStream
2009-08-21 12:01:28 ----A---- C:\WINDOWS\psnetwork.ini
2009-08-21 11:40:10 ----D---- C:\Documents and Settings\Scenic\Application Data\PPMate
2009-08-21 11:40:01 ----D---- C:\Program Files\Fichiers communs\Synacast
2009-08-18 15:38:19 ----D---- C:\Documents and Settings\All Users\Application Data\PixelPlanet
2009-08-18 15:37:18 ----D---- C:\Program Files\Fichiers communs\XPressUpdate
2009-08-18 15:37:18 ----D---- C:\Documents and Settings\Scenic\Application Data\PixelPlanet
2009-08-18 15:10:48 ----D---- C:\Documents and Settings\Scenic\Application Data\OpenOffice.org
2009-08-18 15:01:53 ----D---- C:\Program Files\JRE
2009-08-18 15:00:52 ----D---- C:\Program Files\OpenOffice.org 3
2009-08-18 14:59:39 ----A---- C:\WINDOWS\System32\javaws.exe
2009-08-18 14:59:39 ----A---- C:\WINDOWS\System32\javaw.exe
2009-08-18 14:59:39 ----A---- C:\WINDOWS\System32\java.exe
2009-08-17 15:32:50 ----D---- C:\Program Files\Fichiers communs\xing shared
2009-08-17 15:32:37 ----A---- C:\WINDOWS\System32\rmoc3260.dll
2009-08-17 15:32:18 ----A---- C:\WINDOWS\System32\pndx5032.dll
2009-08-17 15:32:18 ----A---- C:\WINDOWS\System32\pndx5016.dll
2009-08-17 15:32:14 ----D---- C:\Program Files\Real
2009-08-17 15:32:13 ----A---- C:\WINDOWS\System32\pncrt.dll
2009-08-17 15:32:08 ----D---- C:\Program Files\Fichiers communs\Real
2009-08-17 15:32:05 ----D---- C:\Documents and Settings\Scenic\Application Data\Real
2009-08-15 15:39:33 ----D---- C:\Program Files\PokerStove
2009-08-13 23:23:12 ----D---- C:\Program Files\PokerStars
2009-08-12 19:41:34 ----D---- C:\Interwetten
2009-08-07 20:30:25 ----D---- C:\Documents and Settings\Scenic\Application Data\dvdcss
2009-08-07 17:32:30 ----D---- C:\Program Files\B2BPOKER
2009-08-05 19:09:44 ----D---- C:\Documents and Settings\Scenic\Application Data\Microgaming
2009-08-05 19:06:03 ----D---- C:\MicroGaming
2009-08-05 14:51:05 ----D---- C:\WINDOWS\System32\appmgmt
2009-08-04 23:54:56 ----D---- C:\Program Files\PlayersOnly Poker
2009-08-04 23:35:36 ----D---- C:\Poker
2009-08-04 21:41:12 ----D---- C:\Program Files\PartyGaming
2009-08-04 20:39:41 ----D---- C:\Program Files\Everest Poker
2009-08-04 20:38:02 ----D---- C:\WINDOWS\Sun
2009-08-04 20:31:40 ----D---- C:\Betsson
2009-08-04 13:59:11 ----D---- C:\Documents and Settings\All Users\Application Data\Boss Media
2009-08-03 13:31:11 ----HDC---- C:\WINDOWS\$NtUninstallQ329834$
2009-08-03 13:30:49 ----HDC---- C:\WINDOWS\$NtUninstallKB823559$
2009-08-03 13:30:10 ----HDC---- C:\WINDOWS\$NtUninstallQ329048$
2009-08-03 13:29:36 ----HDC---- C:\WINDOWS\$NtUninstallQ810577$
2009-08-03 13:28:51 ----HDC---- C:\WINDOWS\$NtUninstallQ810833$
2009-08-03 13:08:32 ----HDC---- C:\WINDOWS\$NtUninstallQ815021$
2009-08-03 13:07:27 ----HDC---- C:\WINDOWS\$NtUninstallQ329441$
2009-08-03 13:06:44 ----A---- C:\WINDOWS\System32\srrstr.dll
2009-08-03 13:04:45 ----A---- C:\WINDOWS\System32\MRT.exe
2009-08-03 13:03:29 ----HDC---- C:\WINDOWS\$NtUninstallQ329170$
2009-08-03 13:02:36 ----HDC---- C:\WINDOWS\$NtUninstallQ329115$
2009-08-03 13:02:20 ----HDC---- C:\WINDOWS\$NtUninstallQ329390$
2009-08-03 13:02:19 ----HDC---- C:\WINDOWS\$xpsp1hfm$
2009-08-03 13:02:19 ----A---- C:\WINDOWS\System32\xpsp1hfm.exe
2009-08-02 19:36:08 ----D---- C:\Program Files\Conduit
2009-08-02 19:36:03 ----D---- C:\Program Files\BS_Player
2009-08-02 19:35:48 ----D---- C:\Documents and Settings\Scenic\Application Data\BSplayer Pro
2009-08-02 19:35:48 ----D---- C:\Documents and Settings\Scenic\Application Data\BSplayer
2009-08-02 19:35:44 ----D---- C:\Program Files\Webteh
2009-08-01 11:14:02 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2009-08-01 11:13:38 ----D---- C:\Program Files\Fichiers communs\Adobe
2009-08-01 11:13:38 ----D---- C:\Program Files\Adobe
2009-08-01 11:08:30 ----D---- C:\Program Files\NOS
2009-08-01 11:08:30 ----D---- C:\Documents and Settings\All Users\Application Data\NOS
2009-08-01 01:10:19 ----D---- C:\Documents and Settings\Scenic\Application Data\FTP-Image2SVG
2009-08-01 01:07:57 ----A---- C:\WINDOWS\System32\deploytk.dll
2009-08-01 01:06:51 ----D---- C:\Program Files\Java
2009-08-01 01:03:11 ----D---- C:\Documents and Settings\Scenic\Application Data\Sun
2009-07-31 12:12:00 ----SD---- C:\WINDOWS\System32\Microsoft
2009-07-31 12:06:46 ----D---- C:\WINDOWS\System32\bits
2009-07-31 12:06:37 ----HDC---- C:\WINDOWS\$NtUninstallKB842773$
2009-07-31 12:06:11 ----N---- C:\WINDOWS\System32\bitsprx3.dll
2009-07-31 12:06:11 ----N---- C:\WINDOWS\System32\bitsprx2.dll
2009-07-31 12:06:11 ----A---- C:\WINDOWS\System32\winhttp.dll
2009-07-31 12:06:11 ----A---- C:\WINDOWS\System32\qmgrprxy.dll
2009-07-31 12:03:56 ----A---- C:\WINDOWS\System32\wups2.dll
2009-07-31 12:03:55 ----A---- C:\WINDOWS\System32\wups.dll
2009-07-31 12:03:55 ----A---- C:\WINDOWS\System32\wucltui.dll.mui
2009-07-31 12:03:55 ----A---- C:\WINDOWS\System32\wucltui.dll
2009-07-31 12:03:55 ----A---- C:\WINDOWS\System32\wuaueng.dll.mui
2009-07-31 12:03:53 ----A---- C:\WINDOWS\System32\wuapi.dll.mui
2009-07-31 12:03:53 ----A---- C:\WINDOWS\System32\wuapi.dll
2009-07-31 12:03:03 ----D---- C:\WINDOWS\SoftwareDistribution
2009-07-31 11:46:26 ----D---- C:\Program Files\7-Zip
2009-07-30 18:56:40 ----D---- C:\Program Files\Full Tilt Poker
2009-07-30 17:46:26 ----A---- C:\WINDOWS\HMHud.INI
2009-07-30 17:22:50 ----D---- C:\Program Files\PostgreSQL
2009-07-30 17:09:47 ----D---- C:\Program Files\RVG Software
2009-07-30 16:52:10 ----HDC---- C:\WINDOWS\$MSI30UninstallMSI30-KB884016$
2009-07-30 16:25:02 ----D---- C:\Program Files\UltimateBet
2009-07-30 16:03:03 ----D---- C:\Documents and Settings\Scenic\Application Data\Thunderbird
2009-07-30 16:02:49 ----D---- C:\Program Files\Mozilla Thunderbird
2009-07-30 15:56:04 ----D---- C:\Program Files\CamStudio
2009-07-30 15:39:32 ----D---- C:\Program Files\Pense-bete
2009-07-30 15:39:32 ----D---- C:\Documents and Settings\Scenic\Application Data\Pense-bete
2009-07-30 13:35:52 ----D---- C:\Documents and Settings\Scenic\Application Data\vlc
2009-07-30 13:33:30 ----D---- C:\Program Files\VideoLAN
2009-07-30 13:16:17 ----A---- C:\WINDOWS\System32\MSVCR71.dll
2009-07-30 13:16:17 ----A---- C:\WINDOWS\System32\MSVCP71.dll
2009-07-30 13:16:17 ----A---- C:\WINDOWS\System32\MFC71.dll
2009-07-30 13:16:17 ----A---- C:\WINDOWS\System32\aswBoot.exe
2009-07-30 13:16:12 ----D---- C:\Program Files\Alwil Software
2009-07-30 13:08:22 ----D---- C:\WINDOWS\System32\NtmsData
2009-07-30 12:52:42 ----D---- C:\Documents and Settings\Scenic\Application Data\Macromedia
2009-07-30 12:52:42 ----D---- C:\Documents and Settings\Scenic\Application Data\Adobe
2009-07-30 12:42:20 ----A---- C:\WINDOWS\System32\d3dx10_41.dll
2009-07-30 12:42:20 ----A---- C:\WINDOWS\System32\D3DCompiler_41.dll
2009-07-30 12:42:19 ----A---- C:\WINDOWS\System32\D3DX9_41.dll
2009-07-30 12:42:17 ----A---- C:\WINDOWS\System32\XAudio2_4.dll
2009-07-30 12:42:17 ----A---- C:\WINDOWS\System32\XAPOFX1_3.dll
2009-07-30 12:42:16 ----A---- C:\WINDOWS\System32\xactengine3_4.dll
2009-07-30 12:42:16 ----A---- C:\WINDOWS\System32\X3DAudio1_6.dll
2009-07-30 12:42:15 ----A---- C:\WINDOWS\System32\d3dx10_40.dll
2009-07-30 12:42:15 ----A---- C:\WINDOWS\System32\D3DCompiler_40.dll
2009-07-30 12:42:14 ----A---- C:\WINDOWS\System32\D3DX9_40.dll
2009-07-30 12:42:13 ----A---- C:\WINDOWS\System32\XAudio2_3.dll
2009-07-30 12:42:13 ----A---- C:\WINDOWS\System32\XAPOFX1_2.dll
2009-07-30 12:42:13 ----A---- C:\WINDOWS\System32\xactengine3_3.dll
2009-07-30 12:42:13 ----A---- C:\WINDOWS\System32\X3DAudio1_5.dll
2009-07-30 12:42:12 ----A---- C:\WINDOWS\System32\XAudio2_2.dll
2009-07-30 12:42:12 ----A---- C:\WINDOWS\System32\XAPOFX1_1.dll
2009-07-30 12:42:11 ----A---- C:\WINDOWS\System32\xactengine3_2.dll
2009-07-30 12:42:10 ----A---- C:\WINDOWS\System32\D3DX9_39.dll
2009-07-30 12:42:10 ----A---- C:\WINDOWS\System32\d3dx10_39.dll
2009-07-30 12:42:10 ----A---- C:\WINDOWS\System32\D3DCompiler_39.dll
2009-07-30 12:42:09 ----A---- C:\WINDOWS\System32\XAudio2_1.dll
2009-07-30 12:42:09 ----A---- C:\WINDOWS\System32\XAPOFX1_0.dll
2009-07-30 12:42:09 ----A---- C:\WINDOWS\System32\xactengine3_1.dll
2009-07-30 12:42:09 ----A---- C:\WINDOWS\System32\X3DAudio1_4.dll
2009-07-30 12:42:08 ----A---- C:\WINDOWS\System32\D3DX9_38.dll
2009-07-30 12:42:08 ----A---- C:\WINDOWS\System32\d3dx10_38.dll
2009-07-30 12:42:08 ----A---- C:\WINDOWS\System32\D3DCompiler_38.dll
2009-07-30 12:42:07 ----A---- C:\WINDOWS\System32\XAudio2_0.dll
2009-07-30 12:42:07 ----A---- C:\WINDOWS\System32\xactengine3_0.dll
2009-07-30 12:42:07 ----A---- C:\WINDOWS\System32\X3DAudio1_3.dll
2009-07-30 12:42:06 ----A---- C:\WINDOWS\System32\D3DX9_37.dll
2009-07-30 12:42:06 ----A---- C:\WINDOWS\System32\d3dx10_37.dll
2009-07-30 12:42:06 ----A---- C:\WINDOWS\System32\D3DCompiler_37.dll
2009-07-30 12:42:05 ----A---- C:\WINDOWS\System32\xactengine2_10.dll
2009-07-30 12:42:04 ----A---- C:\WINDOWS\System32\d3dx9_36.dll
2009-07-30 12:42:04 ----A---- C:\WINDOWS\System32\d3dx10_36.dll
2009-07-30 12:42:04 ----A---- C:\WINDOWS\System32\D3DCompiler_36.dll
2009-07-30 12:42:03 ----A---- C:\WINDOWS\System32\xactengine2_9.dll
2009-07-30 12:42:03 ----A---- C:\WINDOWS\System32\d3dx10_35.dll
2009-07-30 12:42:03 ----A---- C:\WINDOWS\System32\D3DCompiler_35.dll
2009-07-30 12:42:02 ----A---- C:\WINDOWS\System32\d3dx9_35.dll
2009-07-30 12:42:01 ----A---- C:\WINDOWS\System32\xactengine2_8.dll
2009-07-30 12:42:01 ----A---- C:\WINDOWS\System32\X3DAudio1_2.dll
2009-07-30 12:42:01 ----A---- C:\WINDOWS\System32\d3dx10_34.dll
2009-07-30 12:42:01 ----A---- C:\WINDOWS\System32\D3DCompiler_34.dll
2009-07-30 12:42:00 ----A---- C:\WINDOWS\System32\xinput1_3.dll
2009-07-30 12:42:00 ----A---- C:\WINDOWS\System32\xactengine2_7.dll
2009-07-30 12:42:00 ----A---- C:\WINDOWS\System32\d3dx9_34.dll
2009-07-30 12:41:59 ----A---- C:\WINDOWS\System32\d3dx10_33.dll
2009-07-30 12:41:59 ----A---- C:\WINDOWS\System32\D3DCompiler_33.dll
2009-07-30 12:41:58 ----A---- C:\WINDOWS\System32\d3dx9_33.dll
2009-07-30 12:41:57 ----A---- C:\WINDOWS\System32\xactengine2_6.dll
2009-07-30 12:41:57 ----A---- C:\WINDOWS\System32\xactengine2_5.dll
2009-07-30 12:41:57 ----A---- C:\WINDOWS\System32\d3dx9_32.dll
2009-07-30 12:41:56 ----A---- C:\WINDOWS\System32\xactengine2_4.dll
2009-07-30 12:41:56 ----A---- C:\WINDOWS\System32\x3daudio1_1.dll
2009-07-30 12:41:56 ----A---- C:\WINDOWS\System32\d3dx9_31.dll
2009-07-30 12:41:55 ----A---- C:\WINDOWS\System32\xinput1_2.dll
2009-07-30 12:41:55 ----A---- C:\WINDOWS\System32\xinput1_1.dll
2009-07-30 12:41:55 ----A---- C:\WINDOWS\System32\xactengine2_3.dll
2009-07-30 12:41:55 ----A---- C:\WINDOWS\System32\xactengine2_2.dll
2009-07-30 12:41:54 ----A---- C:\WINDOWS\System32\xactengine2_1.dll
2009-07-30 12:41:52 ----A---- C:\WINDOWS\System32\xactengine2_0.dll
2009-07-30 12:41:52 ----A---- C:\WINDOWS\System32\x3daudio1_0.dll
2009-07-30 12:41:52 ----A---- C:\WINDOWS\System32\d3dx9_30.dll
2009-07-30 12:41:51 ----A---- C:\WINDOWS\System32\d3dx9_29.dll
2009-07-30 12:41:51 ----A---- C:\WINDOWS\System32\d3dx9_28.dll
2009-07-30 12:41:50 ----A---- C:\WINDOWS\System32\xinput9_1_0.dll
2009-07-30 12:41:50 ----A---- C:\WINDOWS\System32\d3dx9_27.dll
2009-07-30 12:41:50 ----A---- C:\WINDOWS\System32\d3dx9_26.dll
2009-07-30 12:41:48 ----A---- C:\WINDOWS\System32\d3dx9_25.dll
2009-07-30 12:41:48 ----A---- C:\WINDOWS\System32\d3dx9_24.dll
2009-07-30 12:41:30 ----D---- C:\WINDOWS\RegisteredPackages
2009-07-30 12:41:20 ----D---- C:\Documents and Settings\Scenic\Application Data\Mozilla
2009-07-30 12:40:38 ----A---- C:\WINDOWS\System32\wstdecod.dll
2009-07-30 12:40:37 ----A---- C:\WINDOWS\System32\psisdecd.dll
2009-07-30 12:40:37 ----A---- C:\WINDOWS\System32\msyuv.dll
2009-07-30 12:40:37 ----A---- C:\WINDOWS\System32\msvidctl.dll
2009-07-30 12:40:34 ----A---- C:\WINDOWS\System32\quartz.dll
2009-07-30 12:40:34 ----A---- C:\WINDOWS\System32\ddraw.dll
2009-07-30 12:40:34 ----A---- C:\WINDOWS\System32\d3d9.dll
2009-07-30 12:40:33 ----D---- C:\Program Files\Mozilla Firefox
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\qedit.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\qdvd.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\qdv.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\qcap.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\mswebdvd.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\ksuser.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dxdiagn.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dxdiag.exe
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dsound.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dsdmoprp.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dpwsockx.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dpvoice.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dpnsvr.exe
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dpnet.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dpmodemx.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dmusic.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dinput8.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\dinput.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\devenum.dll
2009-07-30 12:40:33 ----A---- C:\WINDOWS\System32\d3d8.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\qedwipes.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\pid.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\msdmo.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\mciqtz32.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\encapi.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dx8vb.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dx7vb.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpvvox.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpvsetup.exe
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpvacm.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpnlobby.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpnhupnp.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpnhpast.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dpnaddr.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dplayx.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\dplaysvr.exe
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\ddrawex.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\d3dim700.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\d3d8thk.dll
2009-07-30 12:40:32 ----A---- C:\WINDOWS\System32\amstream.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dxdllreg.exe
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dswave.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dsound3d.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dsdmo.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmsynth.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmstyle.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmscript.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmloader.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmime.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmcompos.dll
2009-07-30 12:40:31 ----A---- C:\WINDOWS\System32\dmband.dll
2009-07-30 12:36:10 ----HD---- C:\WINDOWS\msdownld.tmp
2009-07-30 12:36:03 ----D---- C:\WINDOWS\Logs
2009-07-30 12:33:38 ----D---- C:\Program Files\Betfair
======List of files/folders modified in the last 1 months======
2009-08-25 16:02:13 ----RD---- C:\Program Files
2009-08-25 16:00:22 ----D---- C:\WINDOWS\system32
2009-08-25 15:59:31 ----D---- C:\WINDOWS\Temp
2009-08-25 15:57:45 ----D---- C:\WINDOWS\Debug
2009-08-25 15:57:12 ----D---- C:\WINDOWS\System32\CatRoot2
2009-08-25 15:19:35 ----D---- C:\WINDOWS\Prefetch
2009-08-25 15:11:46 ----A---- C:\WINDOWS\SchedLgU.Txt
2009-08-25 14:52:25 ----SHD---- C:\WINDOWS\Installer
2009-08-25 14:52:24 ----D---- C:\WINDOWS\WinSxS
2009-08-25 14:52:01 ----D---- C:\Program Files\Fichiers communs\Microsoft Shared
2009-08-25 14:48:23 ----D---- C:\WINDOWS
2009-08-25 14:47:04 ----D---- C:\WINDOWS\System32\drivers
2009-08-22 22:57:29 ----SD---- C:\WINDOWS\Tasks
2009-08-21 12:02:39 ----D---- C:\WINDOWS\security
2009-08-21 11:56:40 ----RSHDC---- C:\WINDOWS\System32\dllcache
2009-08-21 11:56:37 ----HD---- C:\WINDOWS\inf
2009-08-21 11:56:36 ----D---- C:\Program Files\Windows Media Player
2009-08-21 11:56:31 ----D---- C:\WINDOWS\LastGood
2009-08-21 11:55:47 ----A---- C:\WINDOWS\win.ini
2009-08-21 11:54:19 ----D---- C:\WINDOWS\Help
2009-08-21 11:53:25 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-08-21 11:40:01 ----D---- C:\Program Files\Fichiers communs
2009-08-18 15:07:54 ----RSD---- C:\WINDOWS\assembly
2009-08-18 15:03:05 ----RSD---- C:\WINDOWS\Fonts
2009-08-10 14:26:05 ----HD---- C:\Program Files\InstallShield Installation Information
2009-08-03 13:31:06 ----A---- C:\WINDOWS\imsins.BAK
2009-08-03 13:29:45 ----D---- C:\WINDOWS\System32\CatRoot
2009-08-02 16:51:22 ----SD---- C:\Documents and Settings\Scenic\Application Data\Microsoft
2009-07-31 12:03:59 ----HD---- C:\Program Files\WindowsUpdate
2009-07-31 12:03:03 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-07-31 10:13:09 ----D---- C:\WINDOWS\Microsoft.NET
2009-07-30 17:24:03 ----D---- C:\Documents and Settings
2009-07-30 17:08:58 ----A---- C:\WINDOWS\System32\PerfStringBackup.INI
2009-07-30 17:00:36 ----D---- C:\WINDOWS\Registration
2009-07-30 16:56:56 ----D---- C:\WINDOWS\PCHEALTH
2009-07-30 14:39:57 ----D---- C:\WINDOWS\System32\config
2009-07-30 12:42:24 ----D---- C:\WINDOWS\System32\DirectX
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\System32\drivers\Aavmker4.sys [2009-08-17 26944]
R1 aswSP;avast! Self Protection; C:\WINDOWS\System32\drivers\aswSP.sys [2009-08-17 114768]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\System32\drivers\aswTdi.sys [2009-08-17 51376]
R1 avgntdd;avgntdd; C:\WINDOWS\SYSTEM32\DRIVERS\avgntdd.sys [2009-02-13 45416]
R1 avipbb;avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [2009-03-30 96104]
R1 ssmdrv;ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [2009-02-13 28376]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\System32\drivers\aswMon2.sys [2009-08-17 94160]
R3 {6080A529-897E-4629-A488-ABA0C29B635E};Intel(R) Graphics Platform (SoftBIOS) Driver; C:\WINDOWS\system32\drivers\ialmsbw.sys [2003-10-08 120830]
R3 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91};Intel(R) Graphics Chipset (KCH) Driver; C:\WINDOWS\system32\drivers\ialmkchw.sys [2003-10-08 98842]
R3 aeaudio;aeaudio; C:\WINDOWS\system32\drivers\aeaudio.sys [2002-04-01 4816]
R3 aswRdr;aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [2009-08-17 23152]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\System32\DRIVERS\e100b325.sys [2003-09-22 145408]
R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-28 9600]
R3 ialm;ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [2003-10-08 93979]
R3 mouhid;Pilote HID de souris; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-28 12288]
R3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2002-11-25 537152]
R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2004-08-05 26624]
R3 usbhub;Concentrateur USB2; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2001-08-17 50688]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2001-08-17 18944]
S3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2001-08-17 24960]
S3 usbprint;Classe d'imprimantes USB Microsoft; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2001-08-17 24832]
S3 USBSTOR;Pilote de stockage de masse USB; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2001-08-17 21760]
S4 IntelIde;IntelIde; C:\WINDOWS\System32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AntiVirSchedulerService;Avira AntiVir Planificateur; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2009-04-01 108289]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2009-03-02 185089]
R2 aswUpdSv;avast! iAVS4 Control Service; C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe [2009-08-17 18752]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast4\ashServ.exe [2009-08-17 138680]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-08-01 152984]
R2 pgsql-8.3;PostgreSQL Database Server 8.3; C:\Program Files\PostgreSQL\8.3\bin\pg_ctl.exe [2009-03-13 65536]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\System32\wdfmgr.exe [2005-01-28 38912]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe [2009-08-17 254040]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast4\ashWebSv.exe [2009-08-17 352920]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
-----------------EOF-----------------
et le rapport info.txt
info.txt logfile of random's system information tool 1.06 2009-08-25 16:02:30
======Uninstall list======
-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
7-Zip 4.65-->"C:\Program Files\7-Zip\Uninstall.exe"
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\System32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\System32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
avast! Antivirus-->C:\Program Files\Alwil Software\Avast4\aswRunDll.exe "C:\Program Files\Alwil Software\Avast4\Setup\setiface.dll",RunSetup
Avira AntiVir Personal - Free Antivirus-->C:\Program Files\Avira\AntiVir Desktop\setup.exe /REMOVE
Betsson Poker-->"C:\Betsson\unins000.exe"
BS.Player FREE-->"C:\Program Files\Webteh\BSplayer\uninstall.exe"
BS_Player Toolbar-->C:\PROGRA~1\BS_PLA~1\UNWISE.EXE /U C:\PROGRA~1\BS_PLA~1\INSTALL.LOG
CamStudio-->C:\Program Files\CamStudio\uninstall.exe
Correctif Windows XP - KB823559-->C:\WINDOWS\$NtUninstallKB823559$\spuninst\spuninst.exe
Correctif Windows XP - KB842773-->C:\WINDOWS\$NtUninstallKB842773$\spuninst\spuninst.exe
Everest Poker (Remove Only)-->C:\Program Files\Everest Poker\cstart.exe /uninstall
HijackThis 2.0.2-->"C:\Program Files\trend micro\HijackThis.exe" /uninstall
Holdem Manager-->MsiExec.exe /I{42DE940E-8037-4266-9FBF-5A3AEDA39E96}
Intel(R) Extreme Graphics Driver-->RUNDLL32.EXE C:\WINDOWS\System32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2562
Intel(R) PRO Network Adapters and Drivers-->Prounstl.exe
Interwetten Poker-->"C:\Interwetten\unins000.exe"
Java(TM) 6 Update 13-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216013F0}
Java(TM) 6 Update 14-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Lecteur Windows Media 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
MansionPoker-->"C:\Poker\MansionPoker\_SetupPoker_5a8b.exe" /uninstall
Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B559F4E700}
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0\install.exe
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Mozilla Firefox (3.5.2)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Thunderbird (2.0.0.23)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
OpenOffice.org 3.1-->MsiExec.exe /I{0FA44E79-CD7D-4E8D-A2EE-26FE05F509B6}
Package du correctif Windows XP [voir Q329115 pour plus de détails]-->C:\WINDOWS\$NtUninstallQ329115$\spuninst\spuninst.exe
PlayersOnly Poker-->C:\Program Files\PlayersOnly Poker\uninstall.exe
PokerStove version 1.23-->"C:\Program Files\PokerStove\unins000.exe"
PostgreSQL 8.3-->MsiExec.exe /I{B823632F-3B72-4514-8861-B961CE263224}
RealPlayer-->C:\Program Files\Fichiers communs\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
TVAnts 1.0-->C:\PROGRA~1\TVAnts\UNWISE.EXE C:\PROGRA~1\TVAnts\INSTALL.LOG
VLC media player 1.0.1-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Installer 3.0 (KB884016)-->C:\WINDOWS\$MSI30UninstallMSI30-KB884016$\spuninst\spuninst.exe
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows XP Hotfix (SP1) [See Q329048 for more information]-->C:\WINDOWS\$NtUninstallQ329048$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q329390 for more information]-->C:\WINDOWS\$NtUninstallQ329390$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q329441 for more information]-->C:\WINDOWS\$NtUninstallQ329441$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q329834 for more information]-->C:\WINDOWS\$NtUninstallQ329834$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q329170-->C:\WINDOWS\$NtUninstallQ329170$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q810577-->C:\WINDOWS\$NtUninstallQ810577$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q810833-->C:\WINDOWS\$NtUninstallQ810833$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q815021-->C:\WINDOWS\$NtUninstallQ815021$\spuninst\spuninst.exe
======Hosts File======
127.0.0.1 NtKrnlpa.info
======System event log======
Computer Name: CEL-FFOOG42X105
Event Code: 4359
Message: Windows XP Hotfix Q305691 was installed.
Record Number: 5
Source Name: Q305691
Time Written: 20090602210233.000000+120
Event Type: Informations
User: AUTORITE NT\SYSTEM
Computer Name: CEL-FFOOG42X105
Event Code: 6011
Message: Le nom NetBIOS et le nom de l'hôte DNS de cet ordinateur ont été modifiés de MACHINENAME vers CEL-FFOOG42X105.
Record Number: 4
Source Name: EventLog
Time Written: 20090602205600.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6005
Message: Le service d'Enregistrement d'événement a démarré.
Record Number: 3
Source Name: EventLog
Time Written: 20090602211453.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 6009
Message: Microsoft (R) Windows (R) 5.01. 2600 Uniprocessor Free.
Record Number: 2
Source Name: EventLog
Time Written: 20090602211453.000000+120
Event Type: Informations
User:
Computer Name: MACHINENAME
Event Code: 2
Message: Pendant la validation de \Device\Serial0 en tant que port série, une FIFO a été détectée. La FIFO sera utilisée.
Record Number: 1
Source Name: Serial
Time Written: 20090602211510.000000+120
Event Type: Informations
User:
=====Application event log=====
Computer Name: CEL-FFOOG42X105
Event Code: 11707
Message: Produit : Betfair Poker -- Installation terminée.
Record Number: 64
Source Name: MsiInstaller
Time Written: 20090730123345.000000+120
Event Type: Informations
User:
Computer Name: CEL-FFOOG42X105
Event Code: 1000
Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été chargés.
Les données d'enregistrement contiennent les nouvelles valeurs d'index
assignées à ce service.
Record Number: 63
Source Name: LoadPerf
Time Written: 20090730123217.000000+120
Event Type: Informations
User:
Computer Name: CEL-FFOOG42X105
Event Code: 1001
Message: Les compteurs de performances pour le service WmiApRpl (WmiApRpl) ont été supprimés.
Les données d'enregistrement contiennent les nouvelles valeurs du dernier compteur système
et les dernières entrées du registre d'aide.
Record Number: 62
Source Name: LoadPerf
Time Written: 20090730123217.000000+120
Event Type: Informations
User:
Computer Name: CEL-FFOOG42X105
Event Code: 4354
Message: Le système d'événements de COM+ n'a pas pu déclencher la méthode ConnectionMade de l'abonnement {3D74AAA4-0010-44E5-8D1C-E2CB9EABD84B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. L'abonné a renvoyé HRESULT 80004001.
Record Number: 61
Source Name: EventSystem
Time Written: 20090730123150.000000+120
Event Type: Avertissement
User:
Computer Name: CEL-FFOOG42X105
Event Code: 2001
Message: Le service EAPOL a été démarré correctement
Record Number: 60
Source Name: EAPOL
Time Written: 20090730123131.000000+120
Event Type: Informations
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 1 Stepping 3, GenuineIntel
"PROCESSOR_REVISION"=0103
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
-----------------EOF-----------------
A voir également:
- Rapport hijackthis(urgent)
- Hijackthis - Télécharger - Antivirus & Antimalwares
- Plan rapport de stage - Guide
- Rapport de crash windows - Guide
- Impression rapport de stage ✓ - Forum Word
- Modifier rapport d'échelle pdf xchange viewer ✓ - Forum PDF
