A voir également:
- Enlever trojan zlob
- Enlever pub youtube - Accueil - Streaming
- Trojan remover - Télécharger - Antivirus & Antimalwares
- Comment enlever le rond bleu sur whatsapp - Guide
- Enlever mode sécurisé samsung - Guide
- Comment enlever une page sur word - Guide
3 réponses
bonsoir :
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):
- Vas dans "Démarrer" puis Panneau de configuration.
- Double Clique sur l'icône Comptes d'utilisateurs et sur Activer ou désactiver le contrôle des comptes d'utilisateurs.
- Clique sur Continuer.
- Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur.
- Valide par OK et redémarre.
Tuto
ensuite :
Télécharge Random's System Information Tool (RSIT) de random/random et enregistre l'exécutable sur ton Bureau.
! Déconnecte toi et ferme toutes tes applications en cours !
Double-clique sur " RSIT.exe " pour le lancer .
-> Une première fenêtre s'ouvre avec en titre : " Disclaimer of warranty " .
* Devant l'option "List files/folders created ..." , tu choisis : 2 months
* clique ensuite sur " Continue " pour lancer l'analyse ...
-> laisse faire le scan et ne touche pas au PC ...
Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront (probablement avec le bloc-note).
Poste le contenu de " log.txt " (c'est celui qui apparait à l'écran), ainsi que de " info.txt " (que tu verras dans la barre des tâches), pour analyse et attends la suite ...
Important : poste un rapport, puis l'autre dans la réponse suivante
Si tu essaies de poster les deux en même temps, cela risque d'être trop long pour le forum
( Note : les rapports seront en outre sauvegardés dans ce dossier -> C:\rsit )
Désactive le contrôle des comptes utilisateurs (tu le réactiveras après ta désinfection):
- Vas dans "Démarrer" puis Panneau de configuration.
- Double Clique sur l'icône Comptes d'utilisateurs et sur Activer ou désactiver le contrôle des comptes d'utilisateurs.
- Clique sur Continuer.
- Décoche la case Utiliser le contrôle des comptes d'utilisateurs pour vous aider à protéger votre ordinateur.
- Valide par OK et redémarre.
Tuto
ensuite :
Télécharge Random's System Information Tool (RSIT) de random/random et enregistre l'exécutable sur ton Bureau.
! Déconnecte toi et ferme toutes tes applications en cours !
Double-clique sur " RSIT.exe " pour le lancer .
-> Une première fenêtre s'ouvre avec en titre : " Disclaimer of warranty " .
* Devant l'option "List files/folders created ..." , tu choisis : 2 months
* clique ensuite sur " Continue " pour lancer l'analyse ...
-> laisse faire le scan et ne touche pas au PC ...
Lorsque l'analyse sera terminée, deux fichiers texte s'ouvriront (probablement avec le bloc-note).
Poste le contenu de " log.txt " (c'est celui qui apparait à l'écran), ainsi que de " info.txt " (que tu verras dans la barre des tâches), pour analyse et attends la suite ...
Important : poste un rapport, puis l'autre dans la réponse suivante
Si tu essaies de poster les deux en même temps, cela risque d'être trop long pour le forum
( Note : les rapports seront en outre sauvegardés dans ce dossier -> C:\rsit )
Logfile of random's system information tool 1.05 (written by random/random)
Run by Stan at 2009-03-09 18:54:12
Microsoft® Windows Vista™ Professionnel Service Pack 1
System drive C: has 207 GB (90%) free of 228 GB
Total RAM: 1976 MB (43% free)
HijackThis download failed
======Scheduled tasks folder======
C:\windows\tasks\User_Feed_Synchronization-{0C110F0B-FC0C-4344-84E3-CF2A61FFF20E}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2008-07-28 882416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{089FD14D-132B-48FC-8861-0048AE113215}]
C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28 910624]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
BHO_Startup Class - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2008-05-02 110592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll [2008-03-25 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9}]
AOL Toolbar BHO - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-03 1185120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2008-05-21 58128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll [2008-07-28 160496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0} - McAfee SiteAdvisor - C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28 910624]
{DE9C389F-3316-41A7-809B-AA305ED9D922} - AOL Toolbar - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-03 1185120]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2008-07-28 882416]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
""= []
"accrdsub"=c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
"PTHOSTTR"=c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2008-05-08 238984]
"CognizanceTS"=c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2008-05-21 24848]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2008-05-12 318488]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1045800]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
"MVS Splash"=C:\Program Files\McAfee\Managed VirusScan\Agent\Splash.exe [2008-05-05 550208]
"McAfee Managed Services Tray"=C:\Program Files\McAfee\Managed VirusScan\Agent\StartMyAgtTry.Exe [2008-05-05 91456]
"SiteAdvisor"=C:\Program Files\SiteAdvisor\6173\SiteAdv.exe [2007-08-28 36640]
"File Sanitizer"=C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2008-05-02 10244096]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe [2008-03-25 144784]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-05-14 177456]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-04-21 197904]
"HP Software Update"=c:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2007-05-09 54840]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2008-03-19 3842048]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2008-06-10 150040]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2008-06-10 170520]
"Persistence"=C:\windows\system32\igfxpers.exe [2008-06-10 145944]
"VirusKeeper"=C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\VirusKeeper.exe [2009-02-20 3824512]
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2008-07-11 223984]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2009-02-11 399504]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-03-18 2289664]
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2008-07-11 223984]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2008-05-21 208896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======List of files/folders created in the last 2 months======
2009-03-09 18:54:13 ----D---- C:\Program Files\trend micro
2009-03-09 18:54:12 ----D---- C:\rsit
2009-03-09 14:02:31 ----A---- C:\fixnavi.txt
2009-03-09 13:35:04 ----D---- C:\Program Files\Navilog1
2009-03-09 12:22:04 ----A---- C:\windows\system32\tmp.txt
2009-03-09 12:22:00 ----A---- C:\rapport.txt
2009-03-09 12:21:05 ----A---- C:\windows\system32\Agent.OMZ.Fix.exe
2009-03-09 12:21:04 ----A---- C:\windows\system32\o4Patch.exe
2009-03-09 12:21:04 ----A---- C:\windows\system32\IEDFix.C.exe
2009-03-09 12:21:04 ----A---- C:\windows\system32\404Fix.exe
2009-03-09 12:21:03 ----A---- C:\windows\system32\WS2Fix.exe
2009-03-09 12:21:03 ----A---- C:\windows\system32\VCCLSID.exe
2009-03-09 12:21:03 ----A---- C:\windows\system32\VACFix.exe
2009-03-09 12:21:03 ----A---- C:\windows\system32\IEDFix.exe
2009-03-09 12:21:02 ----A---- C:\windows\system32\swxcacls.exe
2009-03-09 12:21:02 ----A---- C:\windows\system32\swsc.exe
2009-03-09 12:21:02 ----A---- C:\windows\system32\swreg.exe
2009-03-09 12:21:02 ----A---- C:\windows\system32\SrchSTS.exe
2009-03-09 12:21:02 ----A---- C:\windows\system32\dumphive.exe
2009-03-09 12:20:54 ----D---- C:\windows\system32\SmitfraudFix
2009-03-09 12:00:34 ----D---- C:\Rustbfix
2009-03-09 10:15:27 ----D---- C:\Program Files\CCleaner
2009-03-08 23:35:55 ----D---- C:\Users\Stan\AppData\Roaming\Malwarebytes
2009-03-08 23:35:43 ----D---- C:\ProgramData\Malwarebytes
2009-03-08 23:35:43 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-03-06 18:39:37 ----D---- C:\Users\Stan\AppData\Roaming\Spamihilator
2009-03-06 18:27:13 ----HD---- C:\ProgramData\yahoo!
2009-03-06 18:26:52 ----D---- C:\Users\Stan\AppData\Roaming\Yahoo!
2009-03-06 18:26:52 ----D---- C:\ProgramData\Yahoo! Companion
2009-03-06 18:26:05 ----D---- C:\Program Files\Yahoo!
2009-03-06 13:42:54 ----D---- C:\Users\Stan\AppData\Roaming\Mozilla
2009-03-06 13:41:59 ----D---- C:\Users\Stan\AppData\Roaming\LimeWire
2009-03-06 13:40:47 ----D---- C:\Program Files\LimeWire
2009-03-06 08:02:41 ----AD---- C:\ProgramData\TEMP
2009-03-06 02:38:49 ----A---- C:\windows\system32\msshooks.dll
2009-03-06 02:38:49 ----A---- C:\windows\system32\msscb.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\SearchFilterHost.exe
2009-03-06 02:38:48 ----A---- C:\windows\system32\propsys.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\propdefs.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\msstrc.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\mssprxy.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\mssitlb.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\msshsq.dll
2009-03-06 02:38:47 ----A---- C:\windows\system32\wsepno.dll
2009-03-06 02:38:47 ----A---- C:\windows\system32\thawbrkr.dll
2009-03-06 02:38:47 ----A---- C:\windows\system32\srchadmin.dll
2009-03-06 02:38:47 ----A---- C:\windows\system32\rtffilt.dll
2009-03-06 02:38:47 ----A---- C:\windows\system32\korwbrkr.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\xmlfilter.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\SearchProtocolHost.exe
2009-03-06 02:38:46 ----A---- C:\windows\system32\offfilt.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\nlhtml.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\msscntrs.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\mimefilt.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\chtbrkr.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\chsbrkr.dll
2009-03-06 02:38:45 ----A---- C:\windows\system32\tquery.dll
2009-03-06 02:38:45 ----A---- C:\windows\system32\SearchIndexer.exe
2009-03-06 02:38:45 ----A---- C:\windows\system32\mssvp.dll
2009-03-06 02:38:45 ----A---- C:\windows\system32\mssrch.dll
2009-03-06 02:38:45 ----A---- C:\windows\system32\mssphtb.dll
2009-03-06 02:38:45 ----A---- C:\windows\system32\mssph.dll
2009-03-06 02:37:13 ----A---- C:\windows\system32\tzres.dll
2009-03-06 02:08:45 ----D---- C:\Program Files\AxBx
2009-03-06 02:06:20 ----A---- C:\windows\system32\NlsLexicons0007.dll
2009-03-06 02:06:14 ----A---- C:\windows\system32\NlsLexicons0009.dll
2009-03-06 02:05:38 ----A---- C:\windows\system32\NaturalLanguage6.dll
2009-03-06 02:04:39 ----A---- C:\windows\system32\rpcrt4.dll
2009-03-06 02:04:36 ----A---- C:\windows\system32\pacerprf.dll
2009-03-06 02:04:34 ----A---- C:\windows\system32\gdi32.dll
2009-03-06 02:03:29 ----A---- C:\windows\system32\mshtml.dll
2009-03-06 02:03:26 ----A---- C:\windows\system32\urlmon.dll
2009-03-06 02:03:26 ----A---- C:\windows\system32\ieframe.dll
2009-03-06 02:03:24 ----A---- C:\windows\system32\wininet.dll
2009-03-06 02:03:24 ----A---- C:\windows\system32\iertutil.dll
2009-03-06 02:03:23 ----A---- C:\windows\system32\mstime.dll
2009-03-06 02:03:23 ----A---- C:\windows\system32\msfeeds.dll
2009-03-06 02:03:20 ----A---- C:\windows\system32\jsproxy.dll
2009-03-06 02:03:09 ----A---- C:\windows\system32\shell32.dll
2009-03-06 02:02:52 ----A---- C:\windows\system32\Apphlpdm.dll
2009-03-06 02:02:50 ----A---- C:\windows\system32\GameUXLegacyGDFs.dll
2009-03-06 02:02:50 ----A---- C:\windows\system32\gameux.dll
2009-03-06 02:02:17 ----A---- C:\windows\system32\ntoskrnl.exe
2009-03-06 02:02:17 ----A---- C:\windows\system32\ntkrnlpa.exe
2009-03-06 02:02:14 ----A---- C:\windows\system32\msxml3.dll
2009-03-06 02:02:11 ----A---- C:\windows\explorer.exe
2009-03-06 02:02:10 ----A---- C:\windows\system32\PortableDeviceApi.dll
2009-03-06 02:02:08 ----A---- C:\windows\system32\es.dll
2009-03-06 02:02:03 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2009-03-06 02:02:03 ----A---- C:\windows\system32\WindowsCodecs.dll
2009-03-06 02:02:03 ----A---- C:\windows\system32\PhotoMetadataHandler.dll
2009-03-06 02:02:01 ----A---- C:\windows\system32\wmpeffects.dll
2009-03-06 02:01:57 ----A---- C:\windows\system32\netapi32.dll
2009-03-06 02:01:55 ----A---- C:\windows\system32\IPSECSVC.DLL
2009-03-06 02:01:52 ----A---- C:\windows\system32\quartz.dll
2009-03-06 02:01:51 ----A---- C:\windows\system32\win32spl.dll
2009-03-06 02:01:43 ----A---- C:\windows\system32\wshext.dll
2009-03-06 02:01:43 ----A---- C:\windows\system32\wscript.exe
2009-03-06 02:01:43 ----A---- C:\windows\system32\vbscript.dll
2009-03-06 02:01:43 ----A---- C:\windows\system32\jscript.dll
2009-03-06 02:01:43 ----A---- C:\windows\system32\cscript.exe
2009-03-06 02:01:42 ----A---- C:\windows\system32\scrrun.dll
2009-03-06 02:01:42 ----A---- C:\windows\system32\scrobj.dll
2009-03-06 02:01:40 ----A---- C:\windows\system32\wersvc.dll
2009-03-06 02:01:40 ----A---- C:\windows\system32\Faultrep.dll
2009-03-06 02:01:38 ----A---- C:\windows\system32\emdmgmt.dll
2009-03-06 02:01:37 ----A---- C:\windows\system32\dataclen.dll
2009-03-06 02:01:37 ----A---- C:\windows\system32\cdd.dll
2009-03-06 02:01:34 ----A---- C:\windows\system32\connect.dll
2009-03-06 02:01:30 ----A---- C:\windows\system32\inetcomm.dll
2009-03-06 02:01:28 ----A---- C:\windows\system32\fsquirt.exe
2009-03-06 01:55:27 ----A---- C:\windows\system32\infocardapi.dll
2009-03-06 01:55:23 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-03-06 01:55:19 ----A---- C:\windows\system32\icardagt.exe
2009-03-06 01:55:17 ----A---- C:\windows\system32\PresentationHostProxy.dll
2009-03-06 01:55:17 ----A---- C:\windows\system32\icardres.dll
2009-03-06 01:55:13 ----A---- C:\windows\system32\PresentationNative_v0300.dll
2009-03-06 01:55:01 ----A---- C:\windows\system32\PresentationHost.exe
2009-03-06 01:54:08 ----A---- C:\windows\system32\mf.dll
2009-03-06 01:54:06 ----A---- C:\windows\system32\WMVCORE.DLL
2009-03-06 01:54:06 ----A---- C:\windows\system32\WMNetMgr.dll
2009-03-06 01:54:05 ----A---- C:\windows\system32\logagent.exe
2009-03-06 01:52:25 ----A---- C:\windows\system32\msxml6.dll
2009-03-06 01:45:12 ----A---- C:\windows\system32\dfshim.dll
2009-03-06 01:44:55 ----A---- C:\windows\system32\mscoree.dll
2009-03-06 01:44:48 ----A---- C:\windows\system32\netfxperf.dll
2009-03-06 01:43:39 ----A---- C:\windows\system32\mscorier.dll
2009-03-06 01:43:16 ----A---- C:\windows\system32\mscories.dll
2009-03-06 01:42:12 ----D---- C:\Program Files\MSXML 4.0
2009-03-06 01:10:58 ----D---- C:\Program Files\Alwil Software
2009-03-06 01:05:03 ----A---- C:\windows\system32\wups2.dll
2009-03-06 01:05:03 ----A---- C:\windows\system32\wuauclt.exe
2009-03-06 01:05:02 ----A---- C:\windows\system32\wucltux.dll
2009-03-06 01:05:02 ----A---- C:\windows\system32\wuaueng.dll
2009-03-06 01:03:52 ----A---- C:\windows\system32\wups.dll
2009-03-06 01:03:52 ----A---- C:\windows\system32\wudriver.dll
2009-03-06 01:03:52 ----A---- C:\windows\system32\wuapi.dll
2009-03-06 01:03:35 ----A---- C:\windows\system32\wuwebv.dll
2009-03-06 01:03:35 ----A---- C:\windows\system32\wuapp.exe
2009-03-05 22:26:43 ----D---- C:\Users\Stan\AppData\Roaming\InterVideo
2009-03-05 22:19:07 ----D---- C:\Users\Stan\AppData\Roaming\HPQLOG
2009-03-05 22:18:31 ----D---- C:\Users\Stan\AppData\Roaming\SiteAdvisor
2009-03-05 22:17:57 ----D---- C:\Users\Stan\AppData\Roaming\Identities
2009-03-05 22:03:53 ----D---- C:\Users\Stan\AppData\Roaming\Macromedia
2009-03-05 22:03:41 ----D---- C:\Users\Stan\AppData\Roaming\Adobe
2009-03-05 22:03:37 ----D---- C:\Users\Stan\AppData\Roaming\Hewlett-Packard
2009-03-05 22:01:45 ----D---- C:\Program Files\MSN Messenger
2009-03-05 22:00:56 ----D---- C:\Program Files\HP Webcam Application
2009-03-05 22:00:06 ----D---- C:\Program Files\Common Files\SNP2UVC
2009-03-05 22:00:06 ----A---- C:\windows\system32\rsnp2uvc.dll
2009-03-05 22:00:06 ----A---- C:\windows\system32\csnp2uvc.dll
2009-03-05 22:00:06 ----A---- C:\windows\snp2uvc.ini
2009-03-05 21:59:10 ----D---- C:\windows\Hewlett-Packard
2009-03-05 21:58:06 ----A---- C:\windows\system32\BtwRSupport.dll
2009-03-05 21:57:50 ----D---- C:\windows\system32\es-MX
2009-03-05 21:57:50 ----D---- C:\windows\system32\es-AR
2009-03-05 21:57:45 ----D---- C:\Program Files\WIDCOMM
2009-03-05 21:53:55 ----D---- C:\Users\Stan\AppData\Roaming\InstallShield
2009-03-05 21:53:31 ----SD---- C:\Users\Stan\AppData\Roaming\Microsoft
2009-03-05 21:47:59 ----SHD---- C:\ProgramData\Modèles
2009-03-05 21:47:59 ----SHD---- C:\ProgramData\Menu Démarrer
2009-03-05 21:47:59 ----SHD---- C:\ProgramData\Favoris
2009-03-05 21:47:59 ----SHD---- C:\ProgramData\Bureau
2009-03-05 21:47:59 ----SHD---- C:\Program Files\Fichiers communs
2009-03-05 20:30:02 ----D---- C:\windows\SoftwareDistribution
2009-03-05 20:25:30 ----D---- C:\windows\Prefetch
======List of files/folders modified in the last 2 months======
2009-03-09 18:54:14 ----D---- C:\windows\Temp
2009-03-09 18:54:13 ----RD---- C:\Program Files
2009-03-09 17:20:57 ----SHD---- C:\System Volume Information
2009-03-09 16:14:05 ----D---- C:\windows\System32
2009-03-09 16:14:05 ----A---- C:\windows\system32\PerfStringBackup.INI
2009-03-09 16:14:04 ----D---- C:\windows\inf
2009-03-09 10:17:38 ----D---- C:\windows\Debug
2009-03-09 10:17:38 ----D---- C:\Windows
2009-03-08 23:35:49 ----D---- C:\windows\system32\drivers
2009-03-08 23:35:43 ----HD---- C:\ProgramData
2009-03-08 22:59:57 ----D---- C:\windows\rescache
2009-03-08 22:43:36 ----D---- C:\ProgramData\hpqLog
2009-03-08 22:28:16 ----D---- C:\windows\winsxs
2009-03-08 22:11:08 ----D---- C:\windows\system32\catroot
2009-03-08 22:11:04 ----D---- C:\windows\system32\catroot2
2009-03-08 19:35:58 ----SD---- C:\ProgramData\Microsoft
2009-03-08 19:22:30 ----D---- C:\windows\system32\Tasks
2009-03-08 18:47:03 ----D---- C:\windows\system32\Msdtc
2009-03-08 18:46:58 ----D---- C:\windows\system32\wbem
2009-03-08 18:45:44 ----D---- C:\windows\system32\config
2009-03-08 18:41:19 ----D---- C:\windows\system32\nl
2009-03-08 18:41:14 ----AD---- C:\windows\system32\it-IT
2009-03-08 18:41:08 ----D---- C:\windows\nl-NL
2009-03-08 18:34:51 ----D---- C:\windows\WindowsMobile
2009-03-08 18:34:51 ----D---- C:\windows\Tasks
2009-03-08 18:34:51 ----D---- C:\windows\system32\winrm
2009-03-08 18:34:51 ----D---- C:\windows\system32\WCN
2009-03-08 18:34:51 ----D---- C:\windows\system32\sysprep
2009-03-08 18:34:51 ----D---- C:\windows\system32\spool
2009-03-08 18:34:51 ----D---- C:\windows\system32\slmgr
2009-03-08 18:34:51 ----D---- C:\windows\system32\Printing_Admin_Scripts
2009-03-08 18:34:50 ----D---- C:\windows\system32\oobe
2009-03-08 18:34:50 ----D---- C:\windows\system32\MUI
2009-03-08 18:34:50 ----D---- C:\windows\system32\migwiz
2009-03-08 18:34:50 ----D---- C:\windows\system32\migration
2009-03-08 18:34:50 ----D---- C:\windows\system32\DriverStore
2009-03-08 18:34:50 ----D---- C:\windows\system32\com
2009-03-08 18:34:50 ----D---- C:\windows\system32\CodeIntegrity
2009-03-08 18:34:48 ----D---- C:\windows\system32\Boot
2009-03-08 18:34:43 ----D---- C:\windows\servicing
2009-03-08 18:34:43 ----D---- C:\windows\PolicyDefinitions
2009-03-08 18:34:43 ----D---- C:\windows\MSAgent
2009-03-08 18:34:42 ----D---- C:\windows\IME
2009-03-08 18:34:42 ----D---- C:\windows\DigitalLocker
2009-03-08 18:34:42 ----D---- C:\windows\AppPatch
2009-03-08 18:34:42 ----D---- C:\Program Files\Windows Sidebar
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Photo Gallery
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Media Player
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Mail
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Journal
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Defender
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Collaboration
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Calendar
2009-03-08 18:34:41 ----D---- C:\Program Files\Movie Maker
2009-03-08 18:34:41 ----D---- C:\Program Files\Internet Explorer
2009-03-08 18:34:41 ----D---- C:\Program Files\Common Files\System
2009-03-08 18:27:42 ----D---- C:\windows\registration
2009-03-08 01:44:08 ----D---- C:\windows\system32\WDI
2009-03-07 18:48:27 ----D---- C:\windows\system32\en-US
2009-03-06 20:26:53 ----D---- C:\windows\ModemLogs
2009-03-06 18:39:37 ----SHD---- C:\windows\Installer
2009-03-06 13:29:06 ----D---- C:\windows\system32\NDF
2009-03-06 04:20:48 ----D---- C:\windows\Logs
2009-03-06 03:10:00 ----D---- C:\windows\Microsoft.NET
2009-03-06 03:09:46 ----RSD---- C:\windows\assembly
2009-03-06 03:05:09 ----RD---- C:\Users
2009-03-06 02:54:47 ----AD---- C:\windows\system32\nl-NL
2009-03-06 02:54:47 ----AD---- C:\windows\system32\fr-FR
2009-03-06 02:54:46 ----AD---- C:\windows\system32\de-DE
2009-03-06 02:54:32 ----D---- C:\windows\system32\XPSViewer
2009-03-06 01:41:14 ----D---- C:\windows\system32\LogFiles
2009-03-05 22:18:17 ----SHD---- C:\$Recycle.Bin
2009-03-05 22:17:46 ----D---- C:\windows\system
2009-03-05 22:03:24 ----D---- C:\ProgramData\Hewlett-Packard
2009-03-05 22:03:06 ----HD---- C:\System.sav
2009-03-05 22:03:06 ----D---- C:\Swsetup
2009-03-05 22:00:55 ----HD---- C:\Program Files\InstallShield Installation Information
2009-03-05 22:00:25 ----D---- C:\windows\twain_32
2009-03-05 22:00:06 ----D---- C:\Program Files\Common Files
2009-03-05 21:57:50 ----D---- C:\windows\system32\zh-TW
2009-03-05 21:57:50 ----D---- C:\windows\system32\zh-CN
2009-03-05 21:57:50 ----D---- C:\windows\system32\sv-SE
2009-03-05 21:57:50 ----D---- C:\windows\system32\ru-RU
2009-03-05 21:57:50 ----D---- C:\windows\system32\pt-BR
2009-03-05 21:57:50 ----D---- C:\windows\system32\pl-PL
2009-03-05 21:57:50 ----D---- C:\windows\system32\nb-NO
2009-03-05 21:57:50 ----D---- C:\windows\system32\ko-KR
2009-03-05 21:57:50 ----D---- C:\windows\system32\ja-JP
2009-03-05 21:57:50 ----D---- C:\windows\system32\fi-FI
2009-03-05 21:57:50 ----D---- C:\windows\system32\es-ES
2009-03-05 21:57:50 ----D---- C:\windows\system32\da-DK
2009-03-05 21:56:38 ----D---- C:\windows\Panther
2009-03-05 21:54:17 ----D---- C:\Program Files\Analog Devices
2009-03-05 21:54:12 ----D---- C:\ProgramData\SonicFocus
2009-03-05 21:54:00 ----D---- C:\windows\system32\restore
2009-03-05 21:47:59 ----D---- C:\Program Files\Windows NT
2009-02-11 20:56:18 ----A---- C:\windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 CSC;Offline Files Driver; C:\windows\system32\drivers\csc.sys [2008-01-21 350720]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2008-04-29 205608]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2008-04-29 55112]
R1 MPFP;MPFP; C:\windows\System32\Drivers\Mpfp.sys [2007-03-02 120360]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2008-05-14 12496]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 BthEnum;Service d'énumérateur Bluetooth; C:\windows\system32\DRIVERS\BthEnum.sys [2008-01-21 19456]
R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
R3 BTHUSB;Pilote USB radio Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2008-04-29 29184]
R3 btwaudio;Périphérique audio Bluetooth; C:\windows\system32\drivers\btwaudio.sys [2008-02-01 80424]
R3 btwavdt;Bluetooth AVDT; C:\windows\system32\drivers\btwavdt.sys [2008-02-01 80936]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2008-02-01 16168]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2008-04-14 9344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2008-05-21 2369536]
R3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2008-04-29 79560]
R3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2008-04-29 35240]
R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\windows\system32\DRIVERS\rfcomm.sys [2008-01-21 49664]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2008-03-27 199472]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\windows\system32\DRIVERS\yk60x86.sys [2008-01-17 298496]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712]
S3 BCM43XX;Pilote pour carte réseau Broadcom 802.11; C:\windows\system32\DRIVERS\bcmwl6.sys [2008-03-21 1207288]
S3 BTHPORT;Pilote de port Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2008-04-29 220160]
S3 catchme;catchme; \??\C:\Users\Stan\AppData\Local\Temp\catchme.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2008-04-29 34088]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 usbvideo;Périphérique vidéo USB (WDM); C:\windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 ASBroker;Logon Session Broker; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 EngineServer;EngineServer; C:\PROGRA~1\McAfee\MANAGE~1\VScan\ENGINE~1.EXE [2008-04-29 13632]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-05-14 34184]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-05-14 256512]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-05-02 77824]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 McAfee HackerWatch Service;McAfee HackerWatch Service; C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe [2007-02-13 540776]
R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2007-05-23 841256]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service; C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [2008-05-05 202048]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2008-05-12 576024]
R2 SiteAdvisor Service;SiteAdvisor Service; C:\Program Files\SiteAdvisor\6173\SAService.exe [2008-06-18 341280]
R2 vkservice;VirusKeeper antivirus/antispyware; C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe [2008-09-26 1119584]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-04-16 165192]
R3 McShield;McShield; C:\PROGRA~1\McAfee\MANAGE~1\VScan\McShield.exe [2008-04-29 144704]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2008-01-21 21504]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-27 34312]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\windows\system32\fxssvc.exe [2008-01-21 523776]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-27 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2008-01-21 21504]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\windows\system32\wbengine.exe [2008-01-21 917504]
-----------------EOF-----------------
Run by Stan at 2009-03-09 18:54:12
Microsoft® Windows Vista™ Professionnel Service Pack 1
System drive C: has 207 GB (90%) free of 228 GB
Total RAM: 1976 MB (43% free)
HijackThis download failed
======Scheduled tasks folder======
C:\windows\tasks\User_Feed_Synchronization-{0C110F0B-FC0C-4344-84E3-CF2A61FFF20E}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2008-07-28 882416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{089FD14D-132B-48FC-8861-0048AE113215}]
C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28 910624]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3134413B-49B4-425C-98A5-893C1F195601}]
BHO_Startup Class - C:\Program Files\Hewlett-Packard\File Sanitizer\IEBHO.dll [2008-05-02 110592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll [2008-03-25 509328]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C554162-8CB7-45A4-B8F4-8EA1C75885F9}]
AOL Toolbar BHO - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-03 1185120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DF21F1DB-80C6-11D3-9483-B03D0EC10000}]
Credential Manager for HP ProtectTools - c:\Program Files\Hewlett-Packard\IAM\Bin\ItIEAddIn.dll [2008-05-21 58128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll [2008-07-28 160496]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0} - McAfee SiteAdvisor - C:\Program Files\SiteAdvisor\6173\SiteAdv.dll [2007-08-28 910624]
{DE9C389F-3316-41A7-809B-AA305ED9D922} - AOL Toolbar - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll [2008-02-03 1185120]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2008-07-28 882416]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2008-04-18 178712]
""= []
"accrdsub"=c:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [2007-05-16 293168]
"PTHOSTTR"=c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTHOSTTR.EXE [2008-05-08 238984]
"CognizanceTS"=c:\PROGRA~1\HEWLET~1\IAM\Bin\ASTSVCC.dll [2008-05-21 24848]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2008-05-12 318488]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-03-27 1045800]
"hpWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2008-04-15 488752]
"HP Health Check Scheduler"=c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [2008-04-15 70912]
"MVS Splash"=C:\Program Files\McAfee\Managed VirusScan\Agent\Splash.exe [2008-05-05 550208]
"McAfee Managed Services Tray"=C:\Program Files\McAfee\Managed VirusScan\Agent\StartMyAgtTry.Exe [2008-05-05 91456]
"SiteAdvisor"=C:\Program Files\SiteAdvisor\6173\SiteAdv.exe [2007-08-28 36640]
"File Sanitizer"=C:\Program Files\Hewlett-Packard\File Sanitizer\CoreShredder.exe [2008-05-02 10244096]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe [2008-03-25 144784]
"QlbCtrl.exe"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2008-05-14 177456]
"WatchDog"=C:\Program Files\InterVideo\DVD Check\DVDCheck.exe [2008-04-21 197904]
"HP Software Update"=c:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2007-05-09 54840]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2008-04-04 1314816]
"SoundMAX"=C:\Program Files\Analog Devices\SoundMAX\soundmax.exe [2008-03-19 3842048]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2008-06-10 150040]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2008-06-10 170520]
"Persistence"=C:\windows\system32\igfxpers.exe [2008-06-10 145944]
"VirusKeeper"=C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\VirusKeeper.exe [2009-02-20 3824512]
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2008-07-11 223984]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2009-02-11 399504]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-21 1233920]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2008-03-18 2289664]
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2008-07-11 223984]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
DVD Check.lnk - C:\Program Files\InterVideo\DVD Check\DVDCheck.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="APSHook.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2008-05-21 208896]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ASWLNPkg
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableLUA"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableUIADesktopToggle"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======List of files/folders created in the last 2 months======
2009-03-09 18:54:13 ----D---- C:\Program Files\trend micro
2009-03-09 18:54:12 ----D---- C:\rsit
2009-03-09 14:02:31 ----A---- C:\fixnavi.txt
2009-03-09 13:35:04 ----D---- C:\Program Files\Navilog1
2009-03-09 12:22:04 ----A---- C:\windows\system32\tmp.txt
2009-03-09 12:22:00 ----A---- C:\rapport.txt
2009-03-09 12:21:05 ----A---- C:\windows\system32\Agent.OMZ.Fix.exe
2009-03-09 12:21:04 ----A---- C:\windows\system32\o4Patch.exe
2009-03-09 12:21:04 ----A---- C:\windows\system32\IEDFix.C.exe
2009-03-09 12:21:04 ----A---- C:\windows\system32\404Fix.exe
2009-03-09 12:21:03 ----A---- C:\windows\system32\WS2Fix.exe
2009-03-09 12:21:03 ----A---- C:\windows\system32\VCCLSID.exe
2009-03-09 12:21:03 ----A---- C:\windows\system32\VACFix.exe
2009-03-09 12:21:03 ----A---- C:\windows\system32\IEDFix.exe
2009-03-09 12:21:02 ----A---- C:\windows\system32\swxcacls.exe
2009-03-09 12:21:02 ----A---- C:\windows\system32\swsc.exe
2009-03-09 12:21:02 ----A---- C:\windows\system32\swreg.exe
2009-03-09 12:21:02 ----A---- C:\windows\system32\SrchSTS.exe
2009-03-09 12:21:02 ----A---- C:\windows\system32\dumphive.exe
2009-03-09 12:20:54 ----D---- C:\windows\system32\SmitfraudFix
2009-03-09 12:00:34 ----D---- C:\Rustbfix
2009-03-09 10:15:27 ----D---- C:\Program Files\CCleaner
2009-03-08 23:35:55 ----D---- C:\Users\Stan\AppData\Roaming\Malwarebytes
2009-03-08 23:35:43 ----D---- C:\ProgramData\Malwarebytes
2009-03-08 23:35:43 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-03-06 18:39:37 ----D---- C:\Users\Stan\AppData\Roaming\Spamihilator
2009-03-06 18:27:13 ----HD---- C:\ProgramData\yahoo!
2009-03-06 18:26:52 ----D---- C:\Users\Stan\AppData\Roaming\Yahoo!
2009-03-06 18:26:52 ----D---- C:\ProgramData\Yahoo! Companion
2009-03-06 18:26:05 ----D---- C:\Program Files\Yahoo!
2009-03-06 13:42:54 ----D---- C:\Users\Stan\AppData\Roaming\Mozilla
2009-03-06 13:41:59 ----D---- C:\Users\Stan\AppData\Roaming\LimeWire
2009-03-06 13:40:47 ----D---- C:\Program Files\LimeWire
2009-03-06 08:02:41 ----AD---- C:\ProgramData\TEMP
2009-03-06 02:38:49 ----A---- C:\windows\system32\msshooks.dll
2009-03-06 02:38:49 ----A---- C:\windows\system32\msscb.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\SearchFilterHost.exe
2009-03-06 02:38:48 ----A---- C:\windows\system32\propsys.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\propdefs.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\msstrc.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\mssprxy.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\mssitlb.dll
2009-03-06 02:38:48 ----A---- C:\windows\system32\msshsq.dll
2009-03-06 02:38:47 ----A---- C:\windows\system32\wsepno.dll
2009-03-06 02:38:47 ----A---- C:\windows\system32\thawbrkr.dll
2009-03-06 02:38:47 ----A---- C:\windows\system32\srchadmin.dll
2009-03-06 02:38:47 ----A---- C:\windows\system32\rtffilt.dll
2009-03-06 02:38:47 ----A---- C:\windows\system32\korwbrkr.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\xmlfilter.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\SearchProtocolHost.exe
2009-03-06 02:38:46 ----A---- C:\windows\system32\offfilt.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\nlhtml.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\msscntrs.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\mimefilt.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\chtbrkr.dll
2009-03-06 02:38:46 ----A---- C:\windows\system32\chsbrkr.dll
2009-03-06 02:38:45 ----A---- C:\windows\system32\tquery.dll
2009-03-06 02:38:45 ----A---- C:\windows\system32\SearchIndexer.exe
2009-03-06 02:38:45 ----A---- C:\windows\system32\mssvp.dll
2009-03-06 02:38:45 ----A---- C:\windows\system32\mssrch.dll
2009-03-06 02:38:45 ----A---- C:\windows\system32\mssphtb.dll
2009-03-06 02:38:45 ----A---- C:\windows\system32\mssph.dll
2009-03-06 02:37:13 ----A---- C:\windows\system32\tzres.dll
2009-03-06 02:08:45 ----D---- C:\Program Files\AxBx
2009-03-06 02:06:20 ----A---- C:\windows\system32\NlsLexicons0007.dll
2009-03-06 02:06:14 ----A---- C:\windows\system32\NlsLexicons0009.dll
2009-03-06 02:05:38 ----A---- C:\windows\system32\NaturalLanguage6.dll
2009-03-06 02:04:39 ----A---- C:\windows\system32\rpcrt4.dll
2009-03-06 02:04:36 ----A---- C:\windows\system32\pacerprf.dll
2009-03-06 02:04:34 ----A---- C:\windows\system32\gdi32.dll
2009-03-06 02:03:29 ----A---- C:\windows\system32\mshtml.dll
2009-03-06 02:03:26 ----A---- C:\windows\system32\urlmon.dll
2009-03-06 02:03:26 ----A---- C:\windows\system32\ieframe.dll
2009-03-06 02:03:24 ----A---- C:\windows\system32\wininet.dll
2009-03-06 02:03:24 ----A---- C:\windows\system32\iertutil.dll
2009-03-06 02:03:23 ----A---- C:\windows\system32\mstime.dll
2009-03-06 02:03:23 ----A---- C:\windows\system32\msfeeds.dll
2009-03-06 02:03:20 ----A---- C:\windows\system32\jsproxy.dll
2009-03-06 02:03:09 ----A---- C:\windows\system32\shell32.dll
2009-03-06 02:02:52 ----A---- C:\windows\system32\Apphlpdm.dll
2009-03-06 02:02:50 ----A---- C:\windows\system32\GameUXLegacyGDFs.dll
2009-03-06 02:02:50 ----A---- C:\windows\system32\gameux.dll
2009-03-06 02:02:17 ----A---- C:\windows\system32\ntoskrnl.exe
2009-03-06 02:02:17 ----A---- C:\windows\system32\ntkrnlpa.exe
2009-03-06 02:02:14 ----A---- C:\windows\system32\msxml3.dll
2009-03-06 02:02:11 ----A---- C:\windows\explorer.exe
2009-03-06 02:02:10 ----A---- C:\windows\system32\PortableDeviceApi.dll
2009-03-06 02:02:08 ----A---- C:\windows\system32\es.dll
2009-03-06 02:02:03 ----A---- C:\windows\system32\WindowsCodecsExt.dll
2009-03-06 02:02:03 ----A---- C:\windows\system32\WindowsCodecs.dll
2009-03-06 02:02:03 ----A---- C:\windows\system32\PhotoMetadataHandler.dll
2009-03-06 02:02:01 ----A---- C:\windows\system32\wmpeffects.dll
2009-03-06 02:01:57 ----A---- C:\windows\system32\netapi32.dll
2009-03-06 02:01:55 ----A---- C:\windows\system32\IPSECSVC.DLL
2009-03-06 02:01:52 ----A---- C:\windows\system32\quartz.dll
2009-03-06 02:01:51 ----A---- C:\windows\system32\win32spl.dll
2009-03-06 02:01:43 ----A---- C:\windows\system32\wshext.dll
2009-03-06 02:01:43 ----A---- C:\windows\system32\wscript.exe
2009-03-06 02:01:43 ----A---- C:\windows\system32\vbscript.dll
2009-03-06 02:01:43 ----A---- C:\windows\system32\jscript.dll
2009-03-06 02:01:43 ----A---- C:\windows\system32\cscript.exe
2009-03-06 02:01:42 ----A---- C:\windows\system32\scrrun.dll
2009-03-06 02:01:42 ----A---- C:\windows\system32\scrobj.dll
2009-03-06 02:01:40 ----A---- C:\windows\system32\wersvc.dll
2009-03-06 02:01:40 ----A---- C:\windows\system32\Faultrep.dll
2009-03-06 02:01:38 ----A---- C:\windows\system32\emdmgmt.dll
2009-03-06 02:01:37 ----A---- C:\windows\system32\dataclen.dll
2009-03-06 02:01:37 ----A---- C:\windows\system32\cdd.dll
2009-03-06 02:01:34 ----A---- C:\windows\system32\connect.dll
2009-03-06 02:01:30 ----A---- C:\windows\system32\inetcomm.dll
2009-03-06 02:01:28 ----A---- C:\windows\system32\fsquirt.exe
2009-03-06 01:55:27 ----A---- C:\windows\system32\infocardapi.dll
2009-03-06 01:55:23 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-03-06 01:55:19 ----A---- C:\windows\system32\icardagt.exe
2009-03-06 01:55:17 ----A---- C:\windows\system32\PresentationHostProxy.dll
2009-03-06 01:55:17 ----A---- C:\windows\system32\icardres.dll
2009-03-06 01:55:13 ----A---- C:\windows\system32\PresentationNative_v0300.dll
2009-03-06 01:55:01 ----A---- C:\windows\system32\PresentationHost.exe
2009-03-06 01:54:08 ----A---- C:\windows\system32\mf.dll
2009-03-06 01:54:06 ----A---- C:\windows\system32\WMVCORE.DLL
2009-03-06 01:54:06 ----A---- C:\windows\system32\WMNetMgr.dll
2009-03-06 01:54:05 ----A---- C:\windows\system32\logagent.exe
2009-03-06 01:52:25 ----A---- C:\windows\system32\msxml6.dll
2009-03-06 01:45:12 ----A---- C:\windows\system32\dfshim.dll
2009-03-06 01:44:55 ----A---- C:\windows\system32\mscoree.dll
2009-03-06 01:44:48 ----A---- C:\windows\system32\netfxperf.dll
2009-03-06 01:43:39 ----A---- C:\windows\system32\mscorier.dll
2009-03-06 01:43:16 ----A---- C:\windows\system32\mscories.dll
2009-03-06 01:42:12 ----D---- C:\Program Files\MSXML 4.0
2009-03-06 01:10:58 ----D---- C:\Program Files\Alwil Software
2009-03-06 01:05:03 ----A---- C:\windows\system32\wups2.dll
2009-03-06 01:05:03 ----A---- C:\windows\system32\wuauclt.exe
2009-03-06 01:05:02 ----A---- C:\windows\system32\wucltux.dll
2009-03-06 01:05:02 ----A---- C:\windows\system32\wuaueng.dll
2009-03-06 01:03:52 ----A---- C:\windows\system32\wups.dll
2009-03-06 01:03:52 ----A---- C:\windows\system32\wudriver.dll
2009-03-06 01:03:52 ----A---- C:\windows\system32\wuapi.dll
2009-03-06 01:03:35 ----A---- C:\windows\system32\wuwebv.dll
2009-03-06 01:03:35 ----A---- C:\windows\system32\wuapp.exe
2009-03-05 22:26:43 ----D---- C:\Users\Stan\AppData\Roaming\InterVideo
2009-03-05 22:19:07 ----D---- C:\Users\Stan\AppData\Roaming\HPQLOG
2009-03-05 22:18:31 ----D---- C:\Users\Stan\AppData\Roaming\SiteAdvisor
2009-03-05 22:17:57 ----D---- C:\Users\Stan\AppData\Roaming\Identities
2009-03-05 22:03:53 ----D---- C:\Users\Stan\AppData\Roaming\Macromedia
2009-03-05 22:03:41 ----D---- C:\Users\Stan\AppData\Roaming\Adobe
2009-03-05 22:03:37 ----D---- C:\Users\Stan\AppData\Roaming\Hewlett-Packard
2009-03-05 22:01:45 ----D---- C:\Program Files\MSN Messenger
2009-03-05 22:00:56 ----D---- C:\Program Files\HP Webcam Application
2009-03-05 22:00:06 ----D---- C:\Program Files\Common Files\SNP2UVC
2009-03-05 22:00:06 ----A---- C:\windows\system32\rsnp2uvc.dll
2009-03-05 22:00:06 ----A---- C:\windows\system32\csnp2uvc.dll
2009-03-05 22:00:06 ----A---- C:\windows\snp2uvc.ini
2009-03-05 21:59:10 ----D---- C:\windows\Hewlett-Packard
2009-03-05 21:58:06 ----A---- C:\windows\system32\BtwRSupport.dll
2009-03-05 21:57:50 ----D---- C:\windows\system32\es-MX
2009-03-05 21:57:50 ----D---- C:\windows\system32\es-AR
2009-03-05 21:57:45 ----D---- C:\Program Files\WIDCOMM
2009-03-05 21:53:55 ----D---- C:\Users\Stan\AppData\Roaming\InstallShield
2009-03-05 21:53:31 ----SD---- C:\Users\Stan\AppData\Roaming\Microsoft
2009-03-05 21:47:59 ----SHD---- C:\ProgramData\Modèles
2009-03-05 21:47:59 ----SHD---- C:\ProgramData\Menu Démarrer
2009-03-05 21:47:59 ----SHD---- C:\ProgramData\Favoris
2009-03-05 21:47:59 ----SHD---- C:\ProgramData\Bureau
2009-03-05 21:47:59 ----SHD---- C:\Program Files\Fichiers communs
2009-03-05 20:30:02 ----D---- C:\windows\SoftwareDistribution
2009-03-05 20:25:30 ----D---- C:\windows\Prefetch
======List of files/folders modified in the last 2 months======
2009-03-09 18:54:14 ----D---- C:\windows\Temp
2009-03-09 18:54:13 ----RD---- C:\Program Files
2009-03-09 17:20:57 ----SHD---- C:\System Volume Information
2009-03-09 16:14:05 ----D---- C:\windows\System32
2009-03-09 16:14:05 ----A---- C:\windows\system32\PerfStringBackup.INI
2009-03-09 16:14:04 ----D---- C:\windows\inf
2009-03-09 10:17:38 ----D---- C:\windows\Debug
2009-03-09 10:17:38 ----D---- C:\Windows
2009-03-08 23:35:49 ----D---- C:\windows\system32\drivers
2009-03-08 23:35:43 ----HD---- C:\ProgramData
2009-03-08 22:59:57 ----D---- C:\windows\rescache
2009-03-08 22:43:36 ----D---- C:\ProgramData\hpqLog
2009-03-08 22:28:16 ----D---- C:\windows\winsxs
2009-03-08 22:11:08 ----D---- C:\windows\system32\catroot
2009-03-08 22:11:04 ----D---- C:\windows\system32\catroot2
2009-03-08 19:35:58 ----SD---- C:\ProgramData\Microsoft
2009-03-08 19:22:30 ----D---- C:\windows\system32\Tasks
2009-03-08 18:47:03 ----D---- C:\windows\system32\Msdtc
2009-03-08 18:46:58 ----D---- C:\windows\system32\wbem
2009-03-08 18:45:44 ----D---- C:\windows\system32\config
2009-03-08 18:41:19 ----D---- C:\windows\system32\nl
2009-03-08 18:41:14 ----AD---- C:\windows\system32\it-IT
2009-03-08 18:41:08 ----D---- C:\windows\nl-NL
2009-03-08 18:34:51 ----D---- C:\windows\WindowsMobile
2009-03-08 18:34:51 ----D---- C:\windows\Tasks
2009-03-08 18:34:51 ----D---- C:\windows\system32\winrm
2009-03-08 18:34:51 ----D---- C:\windows\system32\WCN
2009-03-08 18:34:51 ----D---- C:\windows\system32\sysprep
2009-03-08 18:34:51 ----D---- C:\windows\system32\spool
2009-03-08 18:34:51 ----D---- C:\windows\system32\slmgr
2009-03-08 18:34:51 ----D---- C:\windows\system32\Printing_Admin_Scripts
2009-03-08 18:34:50 ----D---- C:\windows\system32\oobe
2009-03-08 18:34:50 ----D---- C:\windows\system32\MUI
2009-03-08 18:34:50 ----D---- C:\windows\system32\migwiz
2009-03-08 18:34:50 ----D---- C:\windows\system32\migration
2009-03-08 18:34:50 ----D---- C:\windows\system32\DriverStore
2009-03-08 18:34:50 ----D---- C:\windows\system32\com
2009-03-08 18:34:50 ----D---- C:\windows\system32\CodeIntegrity
2009-03-08 18:34:48 ----D---- C:\windows\system32\Boot
2009-03-08 18:34:43 ----D---- C:\windows\servicing
2009-03-08 18:34:43 ----D---- C:\windows\PolicyDefinitions
2009-03-08 18:34:43 ----D---- C:\windows\MSAgent
2009-03-08 18:34:42 ----D---- C:\windows\IME
2009-03-08 18:34:42 ----D---- C:\windows\DigitalLocker
2009-03-08 18:34:42 ----D---- C:\windows\AppPatch
2009-03-08 18:34:42 ----D---- C:\Program Files\Windows Sidebar
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Photo Gallery
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Media Player
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Mail
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Journal
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Defender
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Collaboration
2009-03-08 18:34:41 ----D---- C:\Program Files\Windows Calendar
2009-03-08 18:34:41 ----D---- C:\Program Files\Movie Maker
2009-03-08 18:34:41 ----D---- C:\Program Files\Internet Explorer
2009-03-08 18:34:41 ----D---- C:\Program Files\Common Files\System
2009-03-08 18:27:42 ----D---- C:\windows\registration
2009-03-08 01:44:08 ----D---- C:\windows\system32\WDI
2009-03-07 18:48:27 ----D---- C:\windows\system32\en-US
2009-03-06 20:26:53 ----D---- C:\windows\ModemLogs
2009-03-06 18:39:37 ----SHD---- C:\windows\Installer
2009-03-06 13:29:06 ----D---- C:\windows\system32\NDF
2009-03-06 04:20:48 ----D---- C:\windows\Logs
2009-03-06 03:10:00 ----D---- C:\windows\Microsoft.NET
2009-03-06 03:09:46 ----RSD---- C:\windows\assembly
2009-03-06 03:05:09 ----RD---- C:\Users
2009-03-06 02:54:47 ----AD---- C:\windows\system32\nl-NL
2009-03-06 02:54:47 ----AD---- C:\windows\system32\fr-FR
2009-03-06 02:54:46 ----AD---- C:\windows\system32\de-DE
2009-03-06 02:54:32 ----D---- C:\windows\system32\XPSViewer
2009-03-06 01:41:14 ----D---- C:\windows\system32\LogFiles
2009-03-05 22:18:17 ----SHD---- C:\$Recycle.Bin
2009-03-05 22:17:46 ----D---- C:\windows\system
2009-03-05 22:03:24 ----D---- C:\ProgramData\Hewlett-Packard
2009-03-05 22:03:06 ----HD---- C:\System.sav
2009-03-05 22:03:06 ----D---- C:\Swsetup
2009-03-05 22:00:55 ----HD---- C:\Program Files\InstallShield Installation Information
2009-03-05 22:00:25 ----D---- C:\windows\twain_32
2009-03-05 22:00:06 ----D---- C:\Program Files\Common Files
2009-03-05 21:57:50 ----D---- C:\windows\system32\zh-TW
2009-03-05 21:57:50 ----D---- C:\windows\system32\zh-CN
2009-03-05 21:57:50 ----D---- C:\windows\system32\sv-SE
2009-03-05 21:57:50 ----D---- C:\windows\system32\ru-RU
2009-03-05 21:57:50 ----D---- C:\windows\system32\pt-BR
2009-03-05 21:57:50 ----D---- C:\windows\system32\pl-PL
2009-03-05 21:57:50 ----D---- C:\windows\system32\nb-NO
2009-03-05 21:57:50 ----D---- C:\windows\system32\ko-KR
2009-03-05 21:57:50 ----D---- C:\windows\system32\ja-JP
2009-03-05 21:57:50 ----D---- C:\windows\system32\fi-FI
2009-03-05 21:57:50 ----D---- C:\windows\system32\es-ES
2009-03-05 21:57:50 ----D---- C:\windows\system32\da-DK
2009-03-05 21:56:38 ----D---- C:\windows\Panther
2009-03-05 21:54:17 ----D---- C:\Program Files\Analog Devices
2009-03-05 21:54:12 ----D---- C:\ProgramData\SonicFocus
2009-03-05 21:54:00 ----D---- C:\windows\system32\restore
2009-03-05 21:47:59 ----D---- C:\Program Files\Windows NT
2009-02-11 20:56:18 ----A---- C:\windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 CSC;Offline Files Driver; C:\windows\system32\drivers\csc.sys [2008-01-21 350720]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2008-04-29 205608]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2008-04-29 55112]
R1 MPFP;MPFP; C:\windows\System32\Drivers\Mpfp.sys [2007-03-02 120360]
R1 RsvLock;RsvLock; C:\windows\system32\drivers\RsvLock.sys [2008-05-14 12496]
R3 Accelerometer;HP Accelerometer; C:\windows\system32\DRIVERS\Accelerometer.sys [2008-04-07 34664]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\ADIHdAud.sys [2008-04-11 382464]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2008-02-29 1202560]
R3 BthEnum;Service d'énumérateur Bluetooth; C:\windows\system32\DRIVERS\BthEnum.sys [2008-01-21 19456]
R3 BthPan;Périphérique Bluetooth (réseau personnel); C:\windows\system32\DRIVERS\bthpan.sys [2008-01-21 92160]
R3 BTHUSB;Pilote USB radio Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2008-04-29 29184]
R3 btwaudio;Périphérique audio Bluetooth; C:\windows\system32\drivers\btwaudio.sys [2008-02-01 80424]
R3 btwavdt;Bluetooth AVDT; C:\windows\system32\drivers\btwavdt.sys [2008-02-01 80936]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2008-02-01 16168]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\windows\system32\DRIVERS\CmBatt.sys [2008-01-21 14208]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2008-04-14 9344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2007-06-19 16768]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2008-05-21 2369536]
R3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2008-04-29 79560]
R3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2008-04-29 35240]
R3 RFCOMM;Périphérique Bluetooth (TDI protocole RFCOMM); C:\windows\system32\DRIVERS\rfcomm.sys [2008-01-21 49664]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2008-04-10 1804160]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2008-03-27 199472]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\windows\system32\DRIVERS\wmiacpi.sys [2008-01-21 11264]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\windows\system32\DRIVERS\yk60x86.sys [2008-01-17 298496]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712]
S3 BCM43XX;Pilote pour carte réseau Broadcom 802.11; C:\windows\system32\DRIVERS\bcmwl6.sys [2008-03-21 1207288]
S3 BTHPORT;Pilote de port Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2008-04-29 220160]
S3 catchme;catchme; \??\C:\Users\Stan\AppData\Local\Temp\catchme.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\windows\system32\drivers\drmkaud.sys [2008-01-21 5632]
S3 ErrDev;Microsoft Hardware Error Device Driver; C:\windows\system32\drivers\errdev.sys [2008-01-21 6656]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2008-04-29 34088]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\windows\system32\drivers\MSPQM.sys [2008-01-21 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\windows\system32\drivers\MSTEE.sys [2008-01-21 6016]
S3 usbvideo;Périphérique vidéo USB (WDM); C:\windows\System32\Drivers\usbvideo.sys [2008-01-21 134016]
S3 WUDFRd;WUDFRd; C:\windows\system32\DRIVERS\WUDFRd.sys [2008-01-21 83328]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 accoca;ActivClient Middleware Service; c:\Program Files\ActivIdentity\ActivClient\accoca.exe [2007-05-16 182576]
R2 AEADIFilters;Andrea ADI Filters Service; C:\windows\system32\AEADISRV.EXE [2007-10-19 86016]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Windows\system32\agrsmsvc.exe [2007-12-11 12800]
R2 ASBroker;Logon Session Broker; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 ASChannel;Local Communication Channel; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 BthServ;@%SystemRoot%\System32\bthserv.dll,-101; C:\windows\system32\svchost.exe [2008-01-21 21504]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2008-01-21 21504]
R2 EngineServer;EngineServer; C:\PROGRA~1\McAfee\MANAGE~1\VScan\ENGINE~1.EXE [2008-04-29 13632]
R2 HP Health Check Service;HP Health Check Service; c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2008-04-15 94208]
R2 HP ProtectTools Service;HP ProtectTools Service; c:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\PTChangeFilterService.exe [2008-05-14 34184]
R2 HpFkCryptService;Drive Encryption Service; c:\Program Files\Hewlett-Packard\Drive Encryption\HpFkCrypt.exe [2008-05-14 256512]
R2 HPFSService;File Sanitizer for HP ProtectTools; C:\Program Files\Hewlett-Packard\File Sanitizer\HPFSService.exe [2008-05-02 77824]
R2 hpsrv;HP Service; C:\windows\system32\Hpservice.exe [2008-04-07 24936]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-04-18 354840]
R2 IviRegMgr;IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2008-03-18 73728]
R2 McAfee HackerWatch Service;McAfee HackerWatch Service; C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe [2007-02-13 540776]
R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2007-05-23 841256]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service; C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [2008-05-05 202048]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2008-05-12 576024]
R2 SiteAdvisor Service;SiteAdvisor Service; C:\Program Files\SiteAdvisor\6173\SAService.exe [2008-06-18 341280]
R2 vkservice;VirusKeeper antivirus/antispyware; C:\Program Files\AxBx\VirusKeeper 2009 Pro Evaluation\vk_service.exe [2008-09-26 1119584]
R3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-04-03 193840]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2008-04-16 165192]
R3 McShield;McShield; C:\PROGRA~1\McAfee\MANAGE~1\VScan\McShield.exe [2008-04-29 144704]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2008-01-21 21504]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2008-01-21 21504]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-27 34312]
S3 Fax;@%systemroot%\system32\fxsresm.dll,-118; C:\windows\system32\fxssvc.exe [2008-01-21 523776]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-27 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2008-04-08 1112560]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2008-01-21 21504]
S3 usnjsvc;Service Messenger Sharing Folders USN Journal Reader; C:\Program Files\MSN Messenger\usnsvc.exe [2007-01-19 97136]
S3 wbengine;@%systemroot%\system32\wbengine.exe,-104; C:\windows\system32\wbengine.exe [2008-01-21 917504]
-----------------EOF-----------------
---> Télécharge OTMoveIt3 (OldTimer) sur ton Bureau :
OtMoveIt 3
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant ci-dessous :
:processes
explorer.exe
:files
C:\WINDOWS\005517_.tmp
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""=-
:commands
[purity]
[emptytemp]
[start explorer]
[reboot]
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
ensuite :
Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.
Télécharge MalwareByte's :
Malwarebytes ou :
Malwarebytes
* Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .
(NB : S'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX
* Potasse le tuto pour te familiariser avec le prg :
Tuto
( cela dis, il est très simple d'utilisation ).
relance malwarebytes en suivant scrupuleusement ces consignes :
! Déconnecte toi et ferme toutes applications en cours !
* Lance Malwarebyte's .
Fais un examen dit "Complet" .
--> Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
--> à la fin tu cliques sur "résultat" .
--> Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .
Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !
Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)
OtMoveIt 3
---> Double-clique sur OTMoveIt3.exe afin de le lancer.
---> Copie (Ctrl+C) le texte suivant ci-dessous :
:processes
explorer.exe
:files
C:\WINDOWS\005517_.tmp
:reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
""=-
:commands
[purity]
[emptytemp]
[start explorer]
[reboot]
---> Colle (Ctrl+V) le texte précédemment copié dans le cadre Paste Instructions for Items to be Moved.
---> Clique maintenant sur le bouton MoveIt! puis ferme OTMoveIt3.
Si un fichier ou dossier ne peut pas être supprimé immédiatement, le logiciel te demandera de redémarrer.
Accepte en cliquant sur YES.
---> Poste le rapport situé dans ce dossier : C:\_OTMoveIt\MovedFiles\
Le nom du rapport correspond au moment de sa création : date_heure.log
ensuite :
Imprime ces instructions car il faudra fermer toutes les fenêtres et applications lors de l'installation et de l'analyse.
Télécharge MalwareByte's :
Malwarebytes ou :
Malwarebytes
* Installe le ( choisis bien "francais" ; ne modifie pas les paramètres d'installe ) et mets le à jour .
(NB : S'il te manque "COMCTL32.OCX" lors de l'installe, alors télécharge le ici : COMCTL32.OCX
* Potasse le tuto pour te familiariser avec le prg :
Tuto
( cela dis, il est très simple d'utilisation ).
relance malwarebytes en suivant scrupuleusement ces consignes :
! Déconnecte toi et ferme toutes applications en cours !
* Lance Malwarebyte's .
Fais un examen dit "Complet" .
--> Laisse le programme travailler ( et ne rien faire d'autre avec le PC durant le scan ).
--> à la fin tu cliques sur "résultat" .
--> Vérifie que tous les objets infectés soient validés, puis clique sur " suppression " .
Note : si il faut redémarrer ton PC pour finir le nettoyage, fais le !
Poste le rapport sauvegardé après la suppression des objets infectés (dans l'onglet "rapport/log"de Malwarebytes, le dernier en date)
