Il y a actuellement 141 visiteurs
Mardi 16 Avril 2024
accueilactualitésdossierscomparer les prixtélécharger gratuitement vos logicielsoffres d'emploiforum informatique
Connexion
Créer un compte

MIrc me dit que jai un virus ou trojan mais je trouve rien

Un ordinateur qui ralentit, des écrans publicitaires qui apparaissent, des applications qui refusent de démarrer ou encore votre navigateur qui s'obstine à ouvrir une page douteuse sont autant d'éléments qui indiquent que l'intégrité de votre ordinateur est menacée par un virus. Vous trouverez dans ce forum quelques conseils et logiciels pour surfer tranquillement.
Règles du forum
Pour afficher un rapport d'analyse ou un rapport d'infection (HijackThis, OTL, AdwCleaner etc...)‎, veuillez utiliser le système de fichiers joints interne au forum. Seuls les formats les .txt et .log de moins de 1Mo sont acceptés. Pour obtenir de l'aide pour insérer vos fichiers joints, veuillez consulter ce tutoriel
Répondre

MIrc me dit que jai un virus ou trojan mais je trouve rien

Message le 30 Juin 2010 17:57

Salut
voila depuis hier soir MIrc ne veut pas connecter il me dit j'ai un virus ou un trojan....apres plusieurs virusscan avec plusieurs anti-virus ou firewall je trouve rien. J'ai supprimer mes ficher %temp% en mode sans echec mais trjs rien.Jai fait un scan hijackthis mais je ne sais pas quoi faire avec...bref je ne sais pas comment faire pour arriver a supprimer ce virus ou trojan et je peux pas formater je nai pas de cd windows
voila le resultat du truc hijackthis
Code: Tout sélectionner
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:39:05, on 2010-06-30
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Roxio\BackOnTrack\Instant Restore\BOTService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\syncables\syncables desktop\Syncables.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxtray.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\HP\HPBTWD.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\SupportAppXL\AutoDect.exe
C:\Program Files\syncables\syncables desktop\jre\bin\javaw.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Fido Connection Manager\UIMain.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\syncables\syncables desktop\MigoMapi.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\idt\wdm\STacSV.exe
C:\Program Files\Roxio\BackOnTrack\Disaster Recovery\SaibSVC.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_ca&c=91&bd=Pavilion&pf=cnnb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [SysTrayApp] %ProgramFiles%\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Syncables] C:\Program Files\syncables\syncables desktop\Syncables.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [HP BTW Detect Program] C:\Program Files\HP\HPBTWD.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [autodetect] C:\WINDOWS\system32\SupportAppXL\AutoDect.exe
O4 - HKLM\..\Run: [AESTFltr] %SystemRoot%\system32\AESTFltr.exe /NoDlg
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{A1D41CC6-ACAD-4F72-A8E7-84E939DC3844}: NameServer = 64.71.255.198 64.71.255.253
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\FICHIE~1\Skype\SKYPE4~1.DLL
O23 - Service: Roxio SAIB Service (9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269) - Unknown owner - C:\Program Files\Roxio\BackOnTrack\Disaster Recovery\SaibSVC.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: BOTService - Sonic Solutions - C:\Program Files\Roxio\BackOnTrack\Instant Restore\BOTService.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Norton Internet Security - Unknown owner - C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - c:\program files\idt\wdm\STacSV.exe

--
End of file - 8660 bytes


EDIT Skynet : Topic déplacé.

EDIT Bis Skynet : balises [code] ajoutées.
desesperer12hrs
Visiteur
Visiteur
 
Messages: 9
Inscription: 30 Juin 2010 17:32
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 19:03

Bonjour desesperer12hrs

Fait ceci comme rapport plus précis car rien n'apparait dans HijackThis


* Télécharge >> OTL <<sur ton bureau.

* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport minimal " soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL " Personnalisation"

Code: Tout sélectionner
netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
 viasraid.sys
AGP440.sys
 vaxscsi.sys
 nvatabus.sys
 viamraid.sys
 nvata.sys
 nvgts.sys
 iastorv.sys
 ViPrt.sys
 eNetHook.dll
 ahcix86.sys
 KR10N.sys
 vstor32.sys
 ahcix86s.sys
 nvrd32.sys
 /md5stop
 %systemroot%\*. /mp /s
 %systemroot%\system32\*.dll /lockedfiles
 %systemroot%\Tasks\*.job /lockedfiles




* Cliques sur l'icône "Analyse" (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12778
Inscription: 08 Déc 2009 19:51
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 19:04

voila le log de malawarebites quelque chose que jai mnt supprimer mais jai garder le log
Code: Tout sélectionner
Malwarebytes' Anti-Malware 1.46
http://www.malwarebytes.org

Version de la base de données: 4260

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

2010-06-30 03:46:54
mbam-log-2010-06-30 (03-46-54).txt

Type d'examen: Examen complet (C:\|)
Elément(s) analysé(s): 171417
Temps écoulé: 39 minute(s), 51 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)



EDIT Skynet : balises [code] ajoutées. Merci de faire attention.
desesperer12hrs
Visiteur
Visiteur
 
Messages: 9
Inscription: 30 Juin 2010 17:32
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 19:18

jai telecharger OTL et fait tout ce vous avez dit mais quand je click analyse il se passe rien et OTL ne veut plus fermer
desesperer12hrs
Visiteur
Visiteur
 
Messages: 9
Inscription: 30 Juin 2010 17:32
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 19:27

oupps je voulais aller trop vite
voila le resultat
Code: Tout sélectionner
OTL Extras logfile created on: 2010-06-30 14:18:03 - Run 1
OTL by OldTimer - Version 3.2.7.0     Folder = C:\Documents and Settings\Alexandre II\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd
 
1 015,00 Mb Total Physical Memory | 480,00 Mb Available Physical Memory | 47,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 70,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,04 Gb Total Space | 137,06 Gb Free Space | 91,96% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: ALEXANDRE
Current User Name: Alexandre II
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"10243:TCP" = 10243:TCP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
"10280:UDP" = 10280:UDP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
"10281:UDP" = 10281:UDP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
"10282:UDP" = 10282:UDP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
"10283:UDP" = 10283:UDP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
"10284:UDP" = 10284:UDP:LocalSubNet:Enabled:Service Partage réseau du Lecteur Windows Media
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Program Files\Fichiers communs\AOL\Loader\aolload.exe" = C:\Program Files\Fichiers communs\AOL\Loader\aolload.exe:*:Enabled:AOL Loader -- File not found
"C:\Program Files\syncables\syncables desktop\jre\bin\javaw.exe" = C:\Program Files\syncables\syncables desktop\jre\bin\javaw.exe:*:Disabled:Java(TM) Platform SE binary -- (Sun Microsystems, Inc.)
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" = C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync -- (Microsoft Corporation)
"C:\Program Files\mIRC\mirc.exe" = C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.)
 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{082702D5-5DD8-4600-BCE5-48B15174687F}" = HP Doc Viewer
"{139E303E-1050-497F-98B1-9AE87B15C463}" = Windows Live Family Safety
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 15
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
"{350C940c-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3B160861-7250-451E-B5EE-8B92BF30A710}" = Microsoft Works
"{3B4E636E-9D65-4D67-BA61-189800823F52}" = Windows Live Communications Platform
"{45338B07-A236-4270-9A77-EBB4115517B5}" = Windows Live Sign-in Assistant
"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8
"{6412CECE-8172-4BE5-935B-6CECACD2CA87}" = Windows Live Mail
"{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites
"{69DAC00A-7665-4E9B-B441-093D40736429}" = HP BatteryCheck 2.10 A2
"{6FABA483-0BAD-4EFA-9B1C-599CC4F6677D}" = HP User Guides 0139
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{76EFFC7C-17A6-479D-9E47-8E658C1695AE}" = Utilitaire de sauvegarde Windows
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{84EBDF39-4B33-49D7-A0BD-EB6E2C4E81C1}" = Windows Live Sync
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0010-040C-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders  (French) 12
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0401-0000-0000000FF1CE}_HOMESTUDENTR_{14809F99-C601-4D4A-9391-F1E8FAA964C5}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_HOMESTUDENTR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-0020-040C-0000-0000000FF1CE}" = Module de compatibilité pour Microsoft Office System 2007
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}_HOMESTUDENTR_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-040C-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (French) 2007
"{90120000-00A1-040C-0000-0000000FF1CE}_HOMESTUDENTR_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{909B62B0-8ACA-4061-A83B-09CAEF609619}" = MSXML 6.0 Parser
"{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{918F4F34-2544-4519-9479-9239C8DD69DF}" = syncables desktop
"{93D34EE3-99B3-4DB1-8B0A-0A657466F90D}" = Fido Connection Manager
"{95120000-00AF-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (French)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = USB2.0 Card Reader Software
"{9A394342-4A68-4EBA-85A6-55B559F4E700}" = Microsoft .NET Framework 1.1 French Language Pack
"{9ADABDDE-9644-461B-9E73-83FA3EFCAB50}" = HP Wireless Assistant
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}" = HP Help and Support
"{AC76BA86-7AD7-1036-7B44-A90100000001}" = Adobe Reader 9.0.1 - Français
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D6C75F0B-3BC1-4FC9-B8C5-3F7E8ED059CA}" = Windows Live Photo Gallery
"{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
"{E2DFE069-083E-4631-9B6C-43C48E991DE5}" = Junk Mail filter update
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F196AC50-7C95-42E1-9947-BDAB18BF3C8C}" = Microsoft .NET Framework 2.0 Language Pack - FRA
"{F4F4F84E-804F-4E9A-84D7-C34283F0088F}" = RealUpgrade 1.0
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"avast!" = avast! Antivirus
"Broadcom 802.11b Network Adapter" = Carte réseau local sans fil 802.11 Broadcom
"CCleaner" = CCleaner
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HijackThis" = HijackThis 2.0.2
"HOMESTUDENTR" = Microsoft Office Home and Student 2007
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 2.0 Language Pack - FRA" = Module de prise en charge linguistique de Microsoft .NET Framework 2.0 - FRA
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"mIRC" = mIRC
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"RealPlayer 12.0" = RealPlayer
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"ViewpointMediaPlayer" = Viewpoint Media Player
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Lecteur Windows Media 11
"WinLiveSuite_Wave3" = Windows Live Essentials
"Yahoo! Companion" = Yahoo! Barre d'outils
 
[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
 
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
 
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 2010-06-06 12:17:07 | Computer Name = ALEXANDRE | Source = Windows Live Messenger | ID = 1000
Description =
 
Error - 2010-06-18 09:54:20 | Computer Name = ALEXANDRE | Source = RstMgr | ID = 0
Description =
 
Error - 2010-06-18 09:54:20 | Computer Name = ALEXANDRE | Source = RstIdle | ID = 0
Description =
 
[ System Events ]
Error - 2010-06-06 12:07:35 | Computer Name = ALEXANDRE | Source = WMPNetworkSvc | ID = 866312
Description = Un nouveau serveur de données multimédia n’a pas pu être initialisé
 en raison de l’erreur ‘0xc00d2781’ dans WMCreateDeviceRegistration(). Il se peut
 que les composants DRM de gestion des droits numériques installés sur votre ordinateur
 soient endommagés. Vérifiez que les fichiers protégés sont lisibles dans le Lecteur
 Windows Media, puis redémarrez le service WMPNetworkSvc.
 
Error - 2010-06-06 12:07:36 | Computer Name = ALEXANDRE | Source = WMPNetworkSvc | ID = 866312
Description = Un nouveau serveur de données multimédia n’a pas pu être initialisé
 en raison de l’erreur ‘0xc00d2781’ dans WMCreateDeviceRegistration(). Il se peut
 que les composants DRM de gestion des droits numériques installés sur votre ordinateur
 soient endommagés. Vérifiez que les fichiers protégés sont lisibles dans le Lecteur
 Windows Media, puis redémarrez le service WMPNetworkSvc.
 
Error - 2010-06-06 14:45:35 | Computer Name = ALEXANDRE | Source = Service Control Manager | ID = 7000
Description = Le service Norton Internet Security n'a pas pu démarrer en raison
de l'erreur :   %%3
 
Error - 2010-06-06 14:45:37 | Computer Name = ALEXANDRE | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
 charger :   SRTSP  SRTSPX
 
Error - 2010-06-06 14:45:40 | Computer Name = ALEXANDRE | Source = WMPNetworkSvc | ID = 866312
Description = Un nouveau serveur de données multimédia n’a pas pu être initialisé
 en raison de l’erreur ‘0xc00d2781’ dans WMCreateDeviceRegistration(). Il se peut
 que les composants DRM de gestion des droits numériques installés sur votre ordinateur
 soient endommagés. Vérifiez que les fichiers protégés sont lisibles dans le Lecteur
 Windows Media, puis redémarrez le service WMPNetworkSvc.
 
Error - 2010-06-06 14:45:41 | Computer Name = ALEXANDRE | Source = WMPNetworkSvc | ID = 866312
Description = Un nouveau serveur de données multimédia n’a pas pu être initialisé
 en raison de l’erreur ‘0xc00d2781’ dans WMCreateDeviceRegistration(). Il se peut
 que les composants DRM de gestion des droits numériques installés sur votre ordinateur
 soient endommagés. Vérifiez que les fichiers protégés sont lisibles dans le Lecteur
 Windows Media, puis redémarrez le service WMPNetworkSvc.
 
Error - 2010-06-06 15:26:36 | Computer Name = ALEXANDRE | Source = Service Control Manager | ID = 7000
Description = Le service Norton Internet Security n'a pas pu démarrer en raison
de l'erreur :   %%3
 
Error - 2010-06-06 15:26:38 | Computer Name = ALEXANDRE | Source = Service Control Manager | ID = 7026
Description = Le pilote de démarrage système ou d'amorçage suivant n'a pas pu se
 charger :   SRTSP  SRTSPX
 
Error - 2010-06-06 15:26:42 | Computer Name = ALEXANDRE | Source = WMPNetworkSvc | ID = 866312
Description = Un nouveau serveur de données multimédia n’a pas pu être initialisé
 en raison de l’erreur ‘0xc00d2781’ dans WMCreateDeviceRegistration(). Il se peut
 que les composants DRM de gestion des droits numériques installés sur votre ordinateur
 soient endommagés. Vérifiez que les fichiers protégés sont lisibles dans le Lecteur
 Windows Media, puis redémarrez le service WMPNetworkSvc.
 
Error - 2010-06-06 15:26:43 | Computer Name = ALEXANDRE | Source = WMPNetworkSvc | ID = 866312
Description = Un nouveau serveur de données multimédia n’a pas pu être initialisé
 en raison de l’erreur ‘0xc00d2781’ dans WMCreateDeviceRegistration(). Il se peut
 que les composants DRM de gestion des droits numériques installés sur votre ordinateur
 soient endommagés. Vérifiez que les fichiers protégés sont lisibles dans le Lecteur
 Windows Media, puis redémarrez le service WMPNetworkSvc.
 
 
< End of report >


EDIT Skynet : balises [code] ajoutées.
desesperer12hrs
Visiteur
Visiteur
 
Messages: 9
Inscription: 30 Juin 2010 17:32
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 19:31

Le temps que je regarde ton rapport remets celui-ci dans les balises comme signalées s.t.p
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12778
Inscription: 08 Déc 2009 19:51
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 19:32

Mets moi aussi le rapport nommé "OTL.Txt
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12778
Inscription: 08 Déc 2009 19:51
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 19:47

Code: Tout sélectionner
OTL logfile created on: 2010-06-30 14:16:18 - Run 1
OTL by OldTimer - Version 3.2.7.0     Folder = C:\Documents and Settings\Alexandre II\Bureau
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd
 
1 015,00 Mb Total Physical Memory | 538,00 Mb Available Physical Memory | 53,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 73,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149,04 Gb Total Space | 137,06 Gb Free Space | 91,96% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: ALEXANDRE
Current User Name: Alexandre II
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 30 Days
Output = Minimal
Quick Scan
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - C:\Documents and Settings\Alexandre II\Bureau\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Fido Connection Manager\UIMain.exe ()
PRC - C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
PRC - C:\Program Files\syncables\syncables desktop\MigoMapi.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\jre\bin\javaw.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\HP\HPBTWD.exe ()
PRC - c:\Program Files\IDT\WDM\stacsv.exe (IDT, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - C:\Documents and Settings\Alexandre II\Bureau\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - (Norton Internet Security) --  File not found
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (STacSV) -- c:\Program Files\IDT\WDM\stacsv.exe (IDT, Inc.)
SRV - (odserv) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IDriverT) -- c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software)
DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (BCM43XX) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS (Broadcom Corporation)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (IDT, Inc.)
DRV - (AESTAud) -- C:\WINDOWS\system32\drivers\AESTAud.sys (Andrea Electronics Corporation)
DRV - (L1c) -- C:\WINDOWS\system32\drivers\l1c51x86.sys (Atheros Communications, Inc.)
DRV - (SynTP) -- C:\WINDOWS\system32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (ZTEusbser6k) -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (massfilter) -- C:\WINDOWS\system32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (amdagp) -- C:\WINDOWS\system32\DRIVERS\amdagp.sys (Advanced Micro Devices, Inc.)
DRV - (sisagp) -- C:\WINDOWS\system32\DRIVERS\sisagp.sys (Silicon Integrated Systems Corporation)
DRV - (ialm) -- C:\WINDOWS\system32\drivers\igxpmp32.sys (Intel Corporation)
DRV - (CmdIde) -- C:\WINDOWS\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (Sparrow) -- C:\WINDOWS\system32\DRIVERS\sparrow.sys (Adaptec, Inc.)
DRV - (sym_u3) -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys (LSI Logic)
DRV - (sym_hi) -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys (LSI Logic)
DRV - (symc8xx) -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys (LSI Logic)
DRV - (symc810) -- C:\WINDOWS\system32\DRIVERS\symc810.sys (Symbios Logic Inc.)
DRV - (ultra) -- C:\WINDOWS\system32\DRIVERS\ultra.sys (Promise Technology, Inc.)
DRV - (ql12160) -- C:\WINDOWS\system32\DRIVERS\ql12160.sys (QLogic Corporation)
DRV - (ql1080) -- C:\WINDOWS\system32\DRIVERS\ql1080.sys (QLogic Corporation)
DRV - (ql1280) -- C:\WINDOWS\system32\DRIVERS\ql1280.sys (QLogic Corporation)
DRV - (dac2w2k) -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys (Mylex Corporation)
DRV - (mraid35x) -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys (American Megatrends Inc.)
DRV - (asc) -- C:\WINDOWS\system32\DRIVERS\asc.sys (Advanced System Products, Inc.)
DRV - (asc3550) -- C:\WINDOWS\system32\DRIVERS\asc3550.sys (Advanced System Products, Inc.)
DRV - (AliIde) -- C:\WINDOWS\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_ca&c=91&bd=Pavilion&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010-06-29 19:06:09 | 000,000,000 | ---D | M]
 
 
O1 HOSTS File: ([2008-04-15 08:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Yahoo! Barre d'outils) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation)
O4 - HKLM..\Run: [autodetect] C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [HP BTW Detect Program] C:\Program Files\HP\HPBTWD.exe ()
O4 - HKLM..\Run: [Syncables] C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010-06-30 14:08:10 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 11:18:12 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010-06-30 11:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AOL
[2010-06-30 11:05:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Alexandre II\Recent
[2010-06-30 11:05:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\BDOSCAN8
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Yahoo!
[2010-06-30 10:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010-06-30 10:55:47 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-06-30 10:54:45 | 003,396,176 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:34 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 03:02:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Malwarebytes
[2010-06-30 03:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010-06-30 03:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-06-30 02:50:05 | 000,000,000 | ---D | C] -- C:\Program Files\mIRC
[2010-06-30 02:49:12 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 02:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\.migoDesktop
[2010-06-30 00:28:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 00:28:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2010-06-30 00:26:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-30 00:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\PackageAware
[2010-06-29 23:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-29 23:41:18 | 000,000,000 | ---D | C] -- C:\Program Files\The Cleaner
[2010-06-29 19:05:06 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\xing shared
[2010-06-29 19:04:17 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-29 19:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2010-06-29 19:04:09 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Real
[2010-06-29 19:04:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010-06-26 10:26:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Real
[2010-06-25 07:33:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\skypePM
[2010-06-25 07:25:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Skype
[2010-06-25 07:25:11 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2010-06-25 07:25:10 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Skype
[2010-06-25 07:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2010-06-20 14:36:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Mes documents\My Received Files
[2010-06-04 10:16:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\mIRC
[2010-06-04 10:16:04 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:47:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys
[2010-06-03 12:38:55 | 000,007,680 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\massfilter.sys
[2010-06-03 12:38:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SupportAppXL
[2010-06-03 12:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\Fido Connection Manager
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010-06-30 14:12:22 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 12:35:52 | 000,000,292 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:35:51 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:16:28 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-06-30 12:07:24 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-06-30 12:07:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-06-30 12:07:08 | 1064,620,032 | -HS- | M] () -- C:\hiberfil.sys
[2010-06-30 12:06:33 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\NTUSER.DAT
[2010-06-30 12:06:33 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\Alexandre II\ntuser.ini
[2010-06-30 12:06:23 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-06-30 12:06:23 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-06-30 12:06:23 | 000,000,216 | RHS- | M] () -- C:\boot.ini
[2010-06-30 11:18:17 | 000,000,946 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:44 | 000,000,166 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:15 | 000,001,390 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:25 | 000,143,636 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 10:55:35 | 003,396,176 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:42 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 02:50:07 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 02:49:12 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-06-30 01:24:19 | 006,420,284 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\IconCache.db
[2010-06-29 19:04:17 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-28 23:34:56 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Skype.lnk
[2010-06-25 07:33:14 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-24 21:01:26 | 001,079,514 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-06-24 21:01:26 | 000,511,224 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2010-06-24 21:01:26 | 000,441,772 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-06-24 21:01:26 | 000,085,276 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2010-06-24 21:01:26 | 000,071,708 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-06-21 00:45:12 | 000,040,680 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-06-13 12:04:54 | 000,192,184 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-06-04 10:16:14 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:38:53 | 000,001,675 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010-06-30 11:06:56 | 000,000,946 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:42 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:14 | 000,001,390 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:02 | 000,143,636 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 02:50:07 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-06-29 19:06:14 | 000,000,292 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-29 19:06:13 | 000,000,300 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-25 07:33:14 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-03 12:38:23 | 000,001,675 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[2009-10-28 14:29:40 | 000,000,940 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2009-06-24 20:18:49 | 000,029,682 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2009-06-24 19:57:51 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2008-06-25 14:20:48 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2008-04-15 08:00:00 | 000,755,200 | ---- | C] () -- C:\WINDOWS\System32\ir50_32.dll
[2008-04-15 08:00:00 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\ir41_qcx.dll
[2008-04-15 08:00:00 | 000,200,192 | ---- | C] () -- C:\WINDOWS\System32\ir50_qc.dll
[2008-04-15 08:00:00 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\ir50_qcx.dll
[2008-04-15 08:00:00 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\ir41_qc.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-06-30 00:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-29 23:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-30 00:58:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 02:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Uninstall
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:AGP440.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008-04-13 21:36:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\AGP440.SYS
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:atapi.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-13 14:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-13 21:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
 
[color=#A23BEC]< MD5 for: EVENTLOG.DLL  >[/color]
[2008-04-15 08:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
 
[color=#A23BEC]< MD5 for: NETLOGON.DLL  >[/color]
[2008-04-15 08:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
 
[color=#A23BEC]< MD5 for: SCECLI.DLL  >[/color]
[2008-04-15 08:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009-03-08 04:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll
[2009-03-08 04:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]<  >[/color]
< End of report >
DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software)
DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (BCM43XX) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS (Broadcom Corporation)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (IDT, Inc.)
DRV - (AESTAud) -- C:\WINDOWS\system32\drivers\AESTAud.sys (Andrea Electronics Corporation)
DRV - (L1c) -- C:\WINDOWS\system32\drivers\l1c51x86.sys (Atheros Communications, Inc.)
DRV - (SynTP) -- C:\WINDOWS\system32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (ZTEusbser6k) -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (massfilter) -- C:\WINDOWS\system32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (amdagp) -- C:\WINDOWS\system32\DRIVERS\amdagp.sys (Advanced Micro Devices, Inc.)
DRV - (sisagp) -- C:\WINDOWS\system32\DRIVERS\sisagp.sys (Silicon Integrated Systems Corporation)
DRV - (ialm) -- C:\WINDOWS\system32\drivers\igxpmp32.sys (Intel Corporation)
DRV - (CmdIde) -- C:\WINDOWS\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (Sparrow) -- C:\WINDOWS\system32\DRIVERS\sparrow.sys (Adaptec, Inc.)
DRV - (sym_u3) -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys (LSI Logic)
DRV - (sym_hi) -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys (LSI Logic)
DRV - (symc8xx) -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys (LSI Logic)
DRV - (symc810) -- C:\WINDOWS\system32\DRIVERS\symc810.sys (Symbios Logic Inc.)
DRV - (ultra) -- C:\WINDOWS\system32\DRIVERS\ultra.sys (Promise Technology, Inc.)
DRV - (ql12160) -- C:\WINDOWS\system32\DRIVERS\ql12160.sys (QLogic Corporation)
DRV - (ql1080) -- C:\WINDOWS\system32\DRIVERS\ql1080.sys (QLogic Corporation)
DRV - (ql1280) -- C:\WINDOWS\system32\DRIVERS\ql1280.sys (QLogic Corporation)
DRV - (dac2w2k) -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys (Mylex Corporation)
DRV - (mraid35x) -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys (American Megatrends Inc.)
DRV - (asc) -- C:\WINDOWS\system32\DRIVERS\asc.sys (Advanced System Products, Inc.)
DRV - (asc3550) -- C:\WINDOWS\system32\DRIVERS\asc3550.sys (Advanced System Products, Inc.)
DRV - (AliIde) -- C:\WINDOWS\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_ca&c=91&bd=Pavilion&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010-06-29 19:06:09 | 000,000,000 | ---D | M]
 
 
O1 HOSTS File: ([2008-04-15 08:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Yahoo! Barre d'outils) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation)
O4 - HKLM..\Run: [autodetect] C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [HP BTW Detect Program] C:\Program Files\HP\HPBTWD.exe ()
O4 - HKLM..\Run: [Syncables] C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010-06-30 14:08:10 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 11:18:12 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010-06-30 11:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AOL
[2010-06-30 11:05:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Alexandre II\Recent
[2010-06-30 11:05:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\BDOSCAN8
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Yahoo!
[2010-06-30 10:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010-06-30 10:55:47 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-06-30 10:54:45 | 003,396,176 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:34 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 03:02:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Malwarebytes
[2010-06-30 03:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010-06-30 03:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-06-30 02:50:05 | 000,000,000 | ---D | C] -- C:\Program Files\mIRC
[2010-06-30 02:49:12 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 02:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\.migoDesktop
[2010-06-30 00:28:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 00:28:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2010-06-30 00:26:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-30 00:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\PackageAware
[2010-06-29 23:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-29 23:41:18 | 000,000,000 | ---D | C] -- C:\Program Files\The Cleaner
[2010-06-29 19:05:06 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\xing shared
[2010-06-29 19:04:17 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-29 19:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2010-06-29 19:04:09 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Real
[2010-06-29 19:04:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010-06-26 10:26:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Real
[2010-06-25 07:33:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\skypePM
[2010-06-25 07:25:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Skype
[2010-06-25 07:25:11 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2010-06-25 07:25:10 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Skype
[2010-06-25 07:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2010-06-20 14:36:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Mes documents\My Received Files
[2010-06-04 10:16:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\mIRC
[2010-06-04 10:16:04 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:47:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys
[2010-06-03 12:38:55 | 000,007,680 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\massfilter.sys
[2010-06-03 12:38:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SupportAppXL
[2010-06-03 12:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\Fido Connection Manager
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010-06-30 14:12:22 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 12:35:52 | 000,000,292 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:35:51 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:16:28 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-06-30 12:07:24 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-06-30 12:07:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-06-30 12:07:08 | 1064,620,032 | -HS- | M] () -- C:\hiberfil.sys
[2010-06-30 12:06:33 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\NTUSER.DAT
[2010-06-30 12:06:33 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\Alexandre II\ntuser.ini
[2010-06-30 12:06:23 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-06-30 12:06:23 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-06-30 12:06:23 | 000,000,216 | RHS- | M] () -- C:\boot.ini
[2010-06-30 11:18:17 | 000,000,946 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:44 | 000,000,166 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:15 | 000,001,390 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:25 | 000,143,636 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 10:55:35 | 003,396,176 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:42 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 02:50:07 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 02:49:12 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-06-30 01:24:19 | 006,420,284 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\IconCache.db
[2010-06-29 19:04:17 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-28 23:34:56 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Skype.lnk
[2010-06-25 07:33:14 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-24 21:01:26 | 001,079,514 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-06-24 21:01:26 | 000,511,224 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2010-06-24 21:01:26 | 000,441,772 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-06-24 21:01:26 | 000,085,276 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2010-06-24 21:01:26 | 000,071,708 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-06-21 00:45:12 | 000,040,680 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-06-13 12:04:54 | 000,192,184 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-06-04 10:16:14 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:38:53 | 000,001,675 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010-06-30 11:06:56 | 000,000,946 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:42 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:14 | 000,001,390 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:02 | 000,143,636 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 02:50:07 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-06-29 19:06:14 | 000,000,292 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-29 19:06:13 | 000,000,300 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-25 07:33:14 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-03 12:38:23 | 000,001,675 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[2009-10-28 14:29:40 | 000,000,940 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2009-06-24 20:18:49 | 000,029,682 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2009-06-24 19:57:51 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2008-06-25 14:20:48 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2008-04-15 08:00:00 | 000,755,200 | ---- | C] () -- C:\WINDOWS\System32\ir50_32.dll
[2008-04-15 08:00:00 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\ir41_qcx.dll
[2008-04-15 08:00:00 | 000,200,192 | ---- | C] () -- C:\WINDOWS\System32\ir50_qc.dll
[2008-04-15 08:00:00 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\ir50_qcx.dll
[2008-04-15 08:00:00 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\ir41_qc.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-06-30 00:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-29 23:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-30 00:58:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 02:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Uninstall
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:AGP440.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008-04-13 21:36:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\AGP440.SYS
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:atapi.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-13 14:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-13 21:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
 
[color=#A23BEC]< MD5 for: EVENTLOG.DLL  >[/color]
[2008-04-15 08:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
 
[color=#A23BEC]< MD5 for: NETLOGON.DLL  >[/color]
[2008-04-15 08:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
 
[color=#A23BEC]< MD5 for: SCECLI.DLL  >[/color]
[2008-04-15 08:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009-03-08 04:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll
[2009-03-08 04:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]<  >[/color]

< End of report >
PRC - C:\Documents and Settings\Alexandre II\Bureau\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Fido Connection Manager\UIMain.exe ()
PRC - C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
PRC - C:\Program Files\syncables\syncables desktop\MigoMapi.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\jre\bin\javaw.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\HP\HPBTWD.exe ()
PRC - c:\Program Files\IDT\WDM\stacsv.exe (IDT, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - C:\Documents and Settings\Alexandre II\Bureau\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\system32\cabinet.dll (Microsoft Corporation)
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - (Norton Internet Security) --  File not found
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (STacSV) -- c:\Program Files\IDT\WDM\stacsv.exe (IDT, Inc.)
SRV - (odserv) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IDriverT) -- c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software)
DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (BCM43XX) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS (Broadcom Corporation)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (IDT, Inc.)
DRV - (AESTAud) -- C:\WINDOWS\system32\drivers\AESTAud.sys (Andrea Electronics Corporation)
DRV - (L1c) -- C:\WINDOWS\system32\drivers\l1c51x86.sys (Atheros Communications, Inc.)
DRV - (SynTP) -- C:\WINDOWS\system32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (ZTEusbser6k) -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (massfilter) -- C:\WINDOWS\system32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (amdagp) -- C:\WINDOWS\system32\DRIVERS\amdagp.sys (Advanced Micro Devices, Inc.)
DRV - (sisagp) -- C:\WINDOWS\system32\DRIVERS\sisagp.sys (Silicon Integrated Systems Corporation)
DRV - (ialm) -- C:\WINDOWS\system32\drivers\igxpmp32.sys (Intel Corporation)
DRV - (CmdIde) -- C:\WINDOWS\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (Sparrow) -- C:\WINDOWS\system32\DRIVERS\sparrow.sys (Adaptec, Inc.)
DRV - (sym_u3) -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys (LSI Logic)
DRV - (sym_hi) -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys (LSI Logic)
DRV - (symc8xx) -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys (LSI Logic)
DRV - (symc810) -- C:\WINDOWS\system32\DRIVERS\symc810.sys (Symbios Logic Inc.)
DRV - (ultra) -- C:\WINDOWS\system32\DRIVERS\ultra.sys (Promise Technology, Inc.)
DRV - (ql12160) -- C:\WINDOWS\system32\DRIVERS\ql12160.sys (QLogic Corporation)
DRV - (ql1080) -- C:\WINDOWS\system32\DRIVERS\ql1080.sys (QLogic Corporation)
DRV - (ql1280) -- C:\WINDOWS\system32\DRIVERS\ql1280.sys (QLogic Corporation)
DRV - (dac2w2k) -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys (Mylex Corporation)
DRV - (mraid35x) -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys (American Megatrends Inc.)
DRV - (asc) -- C:\WINDOWS\system32\DRIVERS\asc.sys (Advanced System Products, Inc.)
DRV - (asc3550) -- C:\WINDOWS\system32\DRIVERS\asc3550.sys (Advanced System Products, Inc.)
DRV - (AliIde) -- C:\WINDOWS\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_ca&c=91&bd=Pavilion&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010-06-29 19:06:09 | 000,000,000 | ---D | M]
 
 
O1 HOSTS File: ([2008-04-15 08:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Yahoo! Barre d'outils) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation)
O4 - HKLM..\Run: [autodetect] C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [HP BTW Detect Program] C:\Program Files\HP\HPBTWD.exe ()
O4 - HKLM..\Run: [Syncables] C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010-06-30 14:08:10 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 11:18:12 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010-06-30 11:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AOL
[2010-06-30 11:05:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Alexandre II\Recent
[2010-06-30 11:05:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\BDOSCAN8
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Yahoo!
[2010-06-30 10:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010-06-30 10:55:47 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-06-30 10:54:45 | 003,396,176 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:34 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 03:02:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Malwarebytes
[2010-06-30 03:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010-06-30 03:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-06-30 02:50:05 | 000,000,000 | ---D | C] -- C:\Program Files\mIRC
[2010-06-30 02:49:12 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 02:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\.migoDesktop
[2010-06-30 00:28:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 00:28:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2010-06-30 00:26:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-30 00:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\PackageAware
[2010-06-29 23:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-29 23:41:18 | 000,000,000 | ---D | C] -- C:\Program Files\The Cleaner
[2010-06-29 19:05:06 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\xing shared
[2010-06-29 19:04:17 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-29 19:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2010-06-29 19:04:09 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Real
[2010-06-29 19:04:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010-06-26 10:26:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Real
[2010-06-25 07:33:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\skypePM
[2010-06-25 07:25:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Skype
[2010-06-25 07:25:11 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2010-06-25 07:25:10 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Skype
[2010-06-25 07:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2010-06-20 14:36:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Mes documents\My Received Files
[2010-06-04 10:16:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\mIRC
[2010-06-04 10:16:04 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:47:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys
[2010-06-03 12:38:55 | 000,007,680 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\massfilter.sys
[2010-06-03 12:38:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SupportAppXL
[2010-06-03 12:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\Fido Connection Manager
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010-06-30 14:12:22 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 12:35:52 | 000,000,292 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:35:51 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:16:28 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-06-30 12:07:24 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-06-30 12:07:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-06-30 12:07:08 | 1064,620,032 | -HS- | M] () -- C:\hiberfil.sys
[2010-06-30 12:06:33 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\NTUSER.DAT
[2010-06-30 12:06:33 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\Alexandre II\ntuser.ini
[2010-06-30 12:06:23 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-06-30 12:06:23 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-06-30 12:06:23 | 000,000,216 | RHS- | M] () -- C:\boot.ini
[2010-06-30 11:18:17 | 000,000,946 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:44 | 000,000,166 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:15 | 000,001,390 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:25 | 000,143,636 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 10:55:35 | 003,396,176 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:42 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 02:50:07 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 02:49:12 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-06-30 01:24:19 | 006,420,284 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\IconCache.db
[2010-06-29 19:04:17 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-28 23:34:56 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Skype.lnk
[2010-06-25 07:33:14 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-24 21:01:26 | 001,079,514 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-06-24 21:01:26 | 000,511,224 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2010-06-24 21:01:26 | 000,441,772 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-06-24 21:01:26 | 000,085,276 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2010-06-24 21:01:26 | 000,071,708 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-06-21 00:45:12 | 000,040,680 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-06-13 12:04:54 | 000,192,184 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-06-04 10:16:14 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:38:53 | 000,001,675 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010-06-30 11:06:56 | 000,000,946 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:42 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:14 | 000,001,390 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:02 | 000,143,636 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 02:50:07 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-06-29 19:06:14 | 000,000,292 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-29 19:06:13 | 000,000,300 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-25 07:33:14 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-03 12:38:23 | 000,001,675 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[2009-10-28 14:29:40 | 000,000,940 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2009-06-24 20:18:49 | 000,029,682 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2009-06-24 19:57:51 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2008-06-25 14:20:48 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2008-04-15 08:00:00 | 000,755,200 | ---- | C] () -- C:\WINDOWS\System32\ir50_32.dll
[2008-04-15 08:00:00 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\ir41_qcx.dll
[2008-04-15 08:00:00 | 000,200,192 | ---- | C] () -- C:\WINDOWS\System32\ir50_qc.dll
[2008-04-15 08:00:00 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\ir50_qcx.dll
[2008-04-15 08:00:00 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\ir41_qc.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-06-30 00:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-29 23:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-30 00:58:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 02:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Uninstall
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:AGP440.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008-04-13 21:36:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\AGP440.SYS
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:atapi.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-13 14:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-13 21:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
 
[color=#A23BEC]< MD5 for: EVENTLOG.DLL  >[/color]
[2008-04-15 08:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
 
[color=#A23BEC]< MD5 for: NETLOGON.DLL  >[/color]
[2008-04-15 08:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
 
[color=#A23BEC]< MD5 for: SCECLI.DLL  >[/color]
[2008-04-15 08:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009-03-08 04:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll
[2009-03-08 04:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]


Suite du même rapport :

Code: Tout sélectionner
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]<  >[/color]

< End of report >
PRC - C:\Documents and Settings\Alexandre II\Bureau\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Fido Connection Manager\UIMain.exe ()
PRC - C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
PRC - C:\Program Files\syncables\syncables desktop\MigoMapi.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\jre\bin\javaw.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\HP\HPBTWD.exe ()
PRC - c:\Program Files\IDT\WDM\stacsv.exe (IDT, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - C:\Documents and Settings\Alexandre II\Bureau\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\system32\cabinet.dll (Microsoft Corporation)
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - (Norton Internet Security) --  File not found
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (STacSV) -- c:\Program Files\IDT\WDM\stacsv.exe (IDT, Inc.)
SRV - (odserv) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IDriverT) -- c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software)
DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (BCM43XX) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS (Broadcom Corporation)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (IDT, Inc.)
DRV - (AESTAud) -- C:\WINDOWS\system32\drivers\AESTAud.sys (Andrea Electronics Corporation)
DRV - (L1c) -- C:\WINDOWS\system32\drivers\l1c51x86.sys (Atheros Communications, Inc.)
DRV - (SynTP) -- C:\WINDOWS\system32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (ZTEusbser6k) -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (massfilter) -- C:\WINDOWS\system32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (amdagp) -- C:\WINDOWS\system32\DRIVERS\amdagp.sys (Advanced Micro Devices, Inc.)
DRV - (sisagp) -- C:\WINDOWS\system32\DRIVERS\sisagp.sys (Silicon Integrated Systems Corporation)
DRV - (ialm) -- C:\WINDOWS\system32\drivers\igxpmp32.sys (Intel Corporation)
DRV - (CmdIde) -- C:\WINDOWS\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (Sparrow) -- C:\WINDOWS\system32\DRIVERS\sparrow.sys (Adaptec, Inc.)
DRV - (sym_u3) -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys (LSI Logic)
DRV - (sym_hi) -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys (LSI Logic)
DRV - (symc8xx) -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys (LSI Logic)
DRV - (symc810) -- C:\WINDOWS\system32\DRIVERS\symc810.sys (Symbios Logic Inc.)
DRV - (ultra) -- C:\WINDOWS\system32\DRIVERS\ultra.sys (Promise Technology, Inc.)
DRV - (ql12160) -- C:\WINDOWS\system32\DRIVERS\ql12160.sys (QLogic Corporation)
DRV - (ql1080) -- C:\WINDOWS\system32\DRIVERS\ql1080.sys (QLogic Corporation)
DRV - (ql1280) -- C:\WINDOWS\system32\DRIVERS\ql1280.sys (QLogic Corporation)
DRV - (dac2w2k) -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys (Mylex Corporation)
DRV - (mraid35x) -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys (American Megatrends Inc.)
DRV - (asc) -- C:\WINDOWS\system32\DRIVERS\asc.sys (Advanced System Products, Inc.)
DRV - (asc3550) -- C:\WINDOWS\system32\DRIVERS\asc3550.sys (Advanced System Products, Inc.)
DRV - (AliIde) -- C:\WINDOWS\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_ca&c=91&bd=Pavilion&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010-06-29 19:06:09 | 000,000,000 | ---D | M]
 
 
O1 HOSTS File: ([2008-04-15 08:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Yahoo! Barre d'outils) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation)
O4 - HKLM..\Run: [autodetect] C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [HP BTW Detect Program] C:\Program Files\HP\HPBTWD.exe ()
O4 - HKLM..\Run: [Syncables] C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010-06-30 14:08:10 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 11:18:12 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010-06-30 11:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AOL
[2010-06-30 11:05:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Alexandre II\Recent
[2010-06-30 11:05:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\BDOSCAN8
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Yahoo!
[2010-06-30 10:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010-06-30 10:55:47 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-06-30 10:54:45 | 003,396,176 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:34 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 03:02:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Malwarebytes
[2010-06-30 03:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010-06-30 03:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-06-30 02:50:05 | 000,000,000 | ---D | C] -- C:\Program Files\mIRC
[2010-06-30 02:49:12 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 02:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\.migoDesktop
[2010-06-30 00:28:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 00:28:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2010-06-30 00:26:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-30 00:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\PackageAware
[2010-06-29 23:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-29 23:41:18 | 000,000,000 | ---D | C] -- C:\Program Files\The Cleaner
[2010-06-29 19:05:06 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\xing shared
[2010-06-29 19:04:17 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-29 19:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2010-06-29 19:04:09 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Real
[2010-06-29 19:04:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010-06-26 10:26:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Real
[2010-06-25 07:33:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\skypePM
[2010-06-25 07:25:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Skype
[2010-06-25 07:25:11 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2010-06-25 07:25:10 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Skype
[2010-06-25 07:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2010-06-20 14:36:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Mes documents\My Received Files
[2010-06-04 10:16:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\mIRC
[2010-06-04 10:16:04 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:47:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys
[2010-06-03 12:38:55 | 000,007,680 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\massfilter.sys
[2010-06-03 12:38:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SupportAppXL
[2010-06-03 12:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\Fido Connection Manager
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010-06-30 14:12:22 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 12:35:52 | 000,000,292 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:35:51 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:16:28 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-06-30 12:07:24 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-06-30 12:07:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-06-30 12:07:08 | 1064,620,032 | -HS- | M] () -- C:\hiberfil.sys
[2010-06-30 12:06:33 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\NTUSER.DAT
[2010-06-30 12:06:33 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\Alexandre II\ntuser.ini
[2010-06-30 12:06:23 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-06-30 12:06:23 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-06-30 12:06:23 | 000,000,216 | RHS- | M] () -- C:\boot.ini
[2010-06-30 11:18:17 | 000,000,946 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:44 | 000,000,166 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:15 | 000,001,390 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:25 | 000,143,636 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 10:55:35 | 003,396,176 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:42 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 02:50:07 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 02:49:12 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-06-30 01:24:19 | 006,420,284 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\IconCache.db
[2010-06-29 19:04:17 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-28 23:34:56 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Skype.lnk
[2010-06-25 07:33:14 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-24 21:01:26 | 001,079,514 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-06-24 21:01:26 | 000,511,224 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2010-06-24 21:01:26 | 000,441,772 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-06-24 21:01:26 | 000,085,276 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2010-06-24 21:01:26 | 000,071,708 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-06-21 00:45:12 | 000,040,680 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-06-13 12:04:54 | 000,192,184 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-06-04 10:16:14 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:38:53 | 000,001,675 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010-06-30 11:06:56 | 000,000,946 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:42 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:14 | 000,001,390 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:02 | 000,143,636 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 02:50:07 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-06-29 19:06:14 | 000,000,292 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-29 19:06:13 | 000,000,300 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-25 07:33:14 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-03 12:38:23 | 000,001,675 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[2009-10-28 14:29:40 | 000,000,940 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2009-06-24 20:18:49 | 000,029,682 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2009-06-24 19:57:51 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2008-06-25 14:20:48 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2008-04-15 08:00:00 | 000,755,200 | ---- | C] () -- C:\WINDOWS\System32\ir50_32.dll
[2008-04-15 08:00:00 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\ir41_qcx.dll
[2008-04-15 08:00:00 | 000,200,192 | ---- | C] () -- C:\WINDOWS\System32\ir50_qc.dll
[2008-04-15 08:00:00 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\ir50_qcx.dll
[2008-04-15 08:00:00 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\ir41_qc.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-06-30 00:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-29 23:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-30 00:58:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 02:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Uninstall
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:AGP440.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008-04-13 21:36:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\AGP440.SYS
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:atapi.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-13 14:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-13 21:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
 
[color=#A23BEC]< MD5 for: EVENTLOG.DLL  >[/color]
[2008-04-15 08:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
 
[color=#A23BEC]< MD5 for: NETLOGON.DLL  >[/color]
[2008-04-15 08:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
 
[color=#A23BEC]< MD5 for: SCECLI.DLL  >[/color]
[2008-04-15 08:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009-03-08 04:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll
[2009-03-08 04:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]<  >[/color]

< End of report >
PRC - C:\Documents and Settings\Alexandre II\Bureau\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Fido Connection Manager\UIMain.exe ()
PRC - C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
PRC - C:\Program Files\syncables\syncables desktop\MigoMapi.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\jre\bin\javaw.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\HP\HPBTWD.exe ()
PRC - c:\Program Files\IDT\WDM\stacsv.exe (IDT, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - C:\Documents and Settings\Alexandre II\Bureau\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\system32\cabinet.dll (Microsoft Corporation)
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - (Norton Internet Security) --  File not found
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (STacSV) -- c:\Program Files\IDT\WDM\stacsv.exe (IDT, Inc.)
SRV - (odserv) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IDriverT) -- c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software)
DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (BCM43XX) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS (Broadcom Corporation)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (IDT, Inc.)
DRV - (AESTAud) -- C:\WINDOWS\system32\drivers\AESTAud.sys (Andrea Electronics Corporation)
DRV - (L1c) -- C:\WINDOWS\system32\drivers\l1c51x86.sys (Atheros Communications, Inc.)
DRV - (SynTP) -- C:\WINDOWS\system32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (ZTEusbser6k) -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (massfilter) -- C:\WINDOWS\system32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (amdagp) -- C:\WINDOWS\system32\DRIVERS\amdagp.sys (Advanced Micro Devices, Inc.)
DRV - (sisagp) -- C:\WINDOWS\system32\DRIVERS\sisagp.sys (Silicon Integrated Systems Corporation)
DRV - (ialm) -- C:\WINDOWS\system32\drivers\igxpmp32.sys (Intel Corporation)
DRV - (CmdIde) -- C:\WINDOWS\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (Sparrow) -- C:\WINDOWS\system32\DRIVERS\sparrow.sys (Adaptec, Inc.)
DRV - (sym_u3) -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys (LSI Logic)
DRV - (sym_hi) -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys (LSI Logic)
DRV - (symc8xx) -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys (LSI Logic)
DRV - (symc810) -- C:\WINDOWS\system32\DRIVERS\symc810.sys (Symbios Logic Inc.)
DRV - (ultra) -- C:\WINDOWS\system32\DRIVERS\ultra.sys (Promise Technology, Inc.)
DRV - (ql12160) -- C:\WINDOWS\system32\DRIVERS\ql12160.sys (QLogic Corporation)
DRV - (ql1080) -- C:\WINDOWS\system32\DRIVERS\ql1080.sys (QLogic Corporation)
DRV - (ql1280) -- C:\WINDOWS\system32\DRIVERS\ql1280.sys (QLogic Corporation)
DRV - (dac2w2k) -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys (Mylex Corporation)
DRV - (mraid35x) -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys (American Megatrends Inc.)
DRV - (asc) -- C:\WINDOWS\system32\DRIVERS\asc.sys (Advanced System Products, Inc.)
DRV - (asc3550) -- C:\WINDOWS\system32\DRIVERS\asc3550.sys (Advanced System Products, Inc.)
DRV - (AliIde) -- C:\WINDOWS\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_ca&c=91&bd=Pavilion&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010-06-29 19:06:09 | 000,000,000 | ---D | M]
 
 
O1 HOSTS File: ([2008-04-15 08:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Yahoo! Barre d'outils) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation)
O4 - HKLM..\Run: [autodetect] C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [HP BTW Detect Program] C:\Program Files\HP\HPBTWD.exe ()
O4 - HKLM..\Run: [Syncables] C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010-06-30 14:08:10 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 11:18:12 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010-06-30 11:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AOL
[2010-06-30 11:05:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Alexandre II\Recent
[2010-06-30 11:05:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\BDOSCAN8
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Yahoo!
[2010-06-30 10:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010-06-30 10:55:47 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-06-30 10:54:45 | 003,396,176 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:34 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 03:02:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Malwarebytes
[2010-06-30 03:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010-06-30 03:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-06-30 02:50:05 | 000,000,000 | ---D | C] -- C:\Program Files\mIRC
[2010-06-30 02:49:12 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 02:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\.migoDesktop
[2010-06-30 00:28:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 00:28:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2010-06-30 00:26:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-30 00:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\PackageAware
[2010-06-29 23:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-29 23:41:18 | 000,000,000 | ---D | C] -- C:\Program Files\The Cleaner
[2010-06-29 19:05:06 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\xing shared
[2010-06-29 19:04:17 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-29 19:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2010-06-29 19:04:09 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Real
[2010-06-29 19:04:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010-06-26 10:26:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Real
[2010-06-25 07:33:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\skypePM
[2010-06-25 07:25:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Skype
[2010-06-25 07:25:11 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2010-06-25 07:25:10 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Skype
[2010-06-25 07:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2010-06-20 14:36:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Mes documents\My Received Files
[2010-06-04 10:16:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\mIRC
[2010-06-04 10:16:04 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:47:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys
[2010-06-03 12:38:55 | 000,007,680 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\massfilter.sys
[2010-06-03 12:38:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SupportAppXL
[2010-06-03 12:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\Fido Connection Manager
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010-06-30 14:12:22 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 12:35:52 | 000,000,292 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:35:51 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:16:28 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-06-30 12:07:24 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-06-30 12:07:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-06-30 12:07:08 | 1064,620,032 | -HS- | M] () -- C:\hiberfil.sys
[2010-06-30 12:06:33 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\NTUSER.DAT
[2010-06-30 12:06:33 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\Alexandre II\ntuser.ini
[2010-06-30 12:06:23 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-06-30 12:06:23 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-06-30 12:06:23 | 000,000,216 | RHS- | M] () -- C:\boot.ini
[2010-06-30 11:18:17 | 000,000,946 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:44 | 000,000,166 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:15 | 000,001,390 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:25 | 000,143,636 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 10:55:35 | 003,396,176 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:42 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 02:50:07 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 02:49:12 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-06-30 01:24:19 | 006,420,284 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\IconCache.db
[2010-06-29 19:04:17 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-28 23:34:56 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Skype.lnk
[2010-06-25 07:33:14 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-24 21:01:26 | 001,079,514 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-06-24 21:01:26 | 000,511,224 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2010-06-24 21:01:26 | 000,441,772 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-06-24 21:01:26 | 000,085,276 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2010-06-24 21:01:26 | 000,071,708 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-06-21 00:45:12 | 000,040,680 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-06-13 12:04:54 | 000,192,184 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-06-04 10:16:14 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:38:53 | 000,001,675 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010-06-30 11:06:56 | 000,000,946 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:42 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:14 | 000,001,390 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:02 | 000,143,636 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 02:50:07 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-06-29 19:06:14 | 000,000,292 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-29 19:06:13 | 000,000,300 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-25 07:33:14 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-03 12:38:23 | 000,001,675 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[2009-10-28 14:29:40 | 000,000,940 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2009-06-24 20:18:49 | 000,029,682 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2009-06-24 19:57:51 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2008-06-25 14:20:48 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2008-04-15 08:00:00 | 000,755,200 | ---- | C] () -- C:\WINDOWS\System32\ir50_32.dll
[2008-04-15 08:00:00 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\ir41_qcx.dll
[2008-04-15 08:00:00 | 000,200,192 | ---- | C] () -- C:\WINDOWS\System32\ir50_qc.dll
[2008-04-15 08:00:00 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\ir50_qcx.dll
[2008-04-15 08:00:00 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\ir41_qc.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-06-30 00:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-29 23:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-30 00:58:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 02:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Uninstall
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:AGP440.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008-04-13 21:36:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\AGP440.SYS
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:atapi.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-13 14:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-13 21:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
 
[color=#A23BEC]< MD5 for: EVENTLOG.DLL  >[/color]
[2008-04-15 08:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
 
[color=#A23BEC]< MD5 for: NETLOGON.DLL  >[/color]
[2008-04-15 08:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
 
[color=#A23BEC]< MD5 for: SCECLI.DLL  >[/color]
[2008-04-15 08:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009-03-08 04:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll
[2009-03-08 04:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]<  >[/color]

< End of report >
PRC - C:\Documents and Settings\Alexandre II\Bureau\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
PRC - C:\Program Files\Fido Connection Manager\UIMain.exe ()
PRC - C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
PRC - C:\Program Files\syncables\syncables desktop\MigoMapi.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
PRC - C:\Program Files\syncables\syncables desktop\jre\bin\javaw.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\HP\HPBTWD.exe ()
PRC - c:\Program Files\IDT\WDM\stacsv.exe (IDT, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - C:\Documents and Settings\Alexandre II\Bureau\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)
MOD - C:\WINDOWS\system32\cabinet.dll (Microsoft Corporation)
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - (Norton Internet Security) --  File not found
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software)
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software)
SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (STacSV) -- c:\Program Files\IDT\WDM\stacsv.exe (IDT, Inc.)
SRV - (odserv) -- C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (ose) -- C:\Program Files\Fichiers communs\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (IDriverT) -- c:\Program Files\Fichiers communs\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software)
DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software)
DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software)
DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software)
DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software)
DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software)
DRV - (fssfltr) -- C:\WINDOWS\system32\drivers\fssfltr_tdi.sys (Microsoft Corporation)
DRV - (BCM43XX) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS (Broadcom Corporation)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (IDT, Inc.)
DRV - (AESTAud) -- C:\WINDOWS\system32\drivers\AESTAud.sys (Andrea Electronics Corporation)
DRV - (L1c) -- C:\WINDOWS\system32\drivers\l1c51x86.sys (Atheros Communications, Inc.)
DRV - (SynTP) -- C:\WINDOWS\system32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (ZTEusbser6k) -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (massfilter) -- C:\WINDOWS\system32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows (R) Server 2003 DDK provider)
DRV - (amdagp) -- C:\WINDOWS\system32\DRIVERS\amdagp.sys (Advanced Micro Devices, Inc.)
DRV - (sisagp) -- C:\WINDOWS\system32\DRIVERS\sisagp.sys (Silicon Integrated Systems Corporation)
DRV - (ialm) -- C:\WINDOWS\system32\drivers\igxpmp32.sys (Intel Corporation)
DRV - (CmdIde) -- C:\WINDOWS\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (Sparrow) -- C:\WINDOWS\system32\DRIVERS\sparrow.sys (Adaptec, Inc.)
DRV - (sym_u3) -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys (LSI Logic)
DRV - (sym_hi) -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys (LSI Logic)
DRV - (symc8xx) -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys (LSI Logic)
DRV - (symc810) -- C:\WINDOWS\system32\DRIVERS\symc810.sys (Symbios Logic Inc.)
DRV - (ultra) -- C:\WINDOWS\system32\DRIVERS\ultra.sys (Promise Technology, Inc.)
DRV - (ql12160) -- C:\WINDOWS\system32\DRIVERS\ql12160.sys (QLogic Corporation)
DRV - (ql1080) -- C:\WINDOWS\system32\DRIVERS\ql1080.sys (QLogic Corporation)
DRV - (ql1280) -- C:\WINDOWS\system32\DRIVERS\ql1280.sys (QLogic Corporation)
DRV - (dac2w2k) -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys (Mylex Corporation)
DRV - (mraid35x) -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys (American Megatrends Inc.)
DRV - (asc) -- C:\WINDOWS\system32\DRIVERS\asc.sys (Advanced System Products, Inc.)
DRV - (asc3550) -- C:\WINDOWS\system32\DRIVERS\asc3550.sys (Advanced System Products, Inc.)
DRV - (AliIde) -- C:\WINDOWS\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=fr_ca&c=91&bd=Pavilion&pf=cnnb
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\..\URLSearchHook: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
FF - HKLM\software\mozilla\Firefox\extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010-06-29 19:06:09 | 000,000,000 | ---D | M]
 
 
O1 HOSTS File: ([2008-04-15 08:00:00 | 000,000,790 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Skype add-on (mastermind)) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Windows Live Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (Yahoo! Barre d'outils) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.
O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation)
O4 - HKLM..\Run: [autodetect] C:\WINDOWS\system32\SupportAppXL\AutoDect.exe ()
O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software)
O4 - HKLM..\Run: [HP BTW Detect Program] C:\Program Files\HP\HPBTWD.exe ()
O4 - HKLM..\Run: [Syncables] C:\Program Files\syncables\syncables desktop\Syncables.exe (syncables, LLC)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLogOff = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSetFolders = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: DisallowRun = 0
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitdefender.com/resources/scanner/sources/fr/scan8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_15-windows-i586.cab (Java Plug-in 1.6.0_15)
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files\Fichiers communs\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Fichiers communs\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Fichiers communs\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Fichiers communs\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Fichiers communs\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop Components:0 (Ma page d'accueil) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Alexandre II\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2010-06-30 14:08:10 | 000,574,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 11:18:12 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2010-06-30 11:06:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AOL
[2010-06-30 11:05:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Alexandre II\Recent
[2010-06-30 11:05:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\BDOSCAN8
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
[2010-06-30 10:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Yahoo!
[2010-06-30 10:55:57 | 000,000,000 | ---D | C] -- C:\Program Files\Yahoo!
[2010-06-30 10:55:47 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-06-30 10:54:45 | 003,396,176 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:34 | 000,401,720 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 03:02:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Malwarebytes
[2010-06-30 03:02:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010-06-30 03:02:24 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-06-30 02:50:05 | 000,000,000 | ---D | C] -- C:\Program Files\mIRC
[2010-06-30 02:49:12 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 02:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\.migoDesktop
[2010-06-30 00:28:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 00:28:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2010-06-30 00:26:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-30 00:26:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\PackageAware
[2010-06-29 23:41:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-29 23:41:18 | 000,000,000 | ---D | C] -- C:\Program Files\The Cleaner
[2010-06-29 19:05:06 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\xing shared
[2010-06-29 19:04:17 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-29 19:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Real
[2010-06-29 19:04:09 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Real
[2010-06-29 19:04:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Real
[2010-06-26 10:26:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Real
[2010-06-25 07:33:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\skypePM
[2010-06-25 07:25:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\Skype
[2010-06-25 07:25:11 | 000,000,000 | ---D | C] -- C:\Program Files\Skype
[2010-06-25 07:25:10 | 000,000,000 | ---D | C] -- C:\Program Files\Fichiers communs\Skype
[2010-06-25 07:24:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Skype
[2010-06-20 14:36:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Mes documents\My Received Files
[2010-06-04 10:16:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Alexandre II\Application Data\mIRC
[2010-06-04 10:16:04 | 001,751,280 | ---- | C] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:47:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbser6k.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbnmea.sys
[2010-06-03 12:38:55 | 000,104,960 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\ZTEusbmdm6k.sys
[2010-06-03 12:38:55 | 000,007,680 | ---- | C] (ZTE Incorporated) -- C:\WINDOWS\System32\drivers\massfilter.sys
[2010-06-03 12:38:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SupportAppXL
[2010-06-03 12:38:23 | 000,000,000 | ---D | C] -- C:\Program Files\Fido Connection Manager
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2010-06-30 14:12:22 | 000,574,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Alexandre II\Bureau\OTL.exe
[2010-06-30 12:35:52 | 000,000,292 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:35:51 | 000,000,300 | ---- | M] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-30 12:16:28 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-06-30 12:07:24 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-06-30 12:07:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-06-30 12:07:08 | 1064,620,032 | -HS- | M] () -- C:\hiberfil.sys
[2010-06-30 12:06:33 | 003,407,872 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\NTUSER.DAT
[2010-06-30 12:06:33 | 000,000,184 | -HS- | M] () -- C:\Documents and Settings\Alexandre II\ntuser.ini
[2010-06-30 12:06:23 | 000,000,507 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-06-30 12:06:23 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-06-30 12:06:23 | 000,000,216 | RHS- | M] () -- C:\boot.ini
[2010-06-30 11:18:17 | 000,000,946 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:44 | 000,000,166 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:15 | 000,001,390 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:25 | 000,143,636 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 10:55:35 | 003,396,176 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Alexandre II\Bureau\ccsetup233.exe
[2010-06-30 10:38:42 | 000,401,720 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Alexandre II\Bureau\HiJackThis.exe
[2010-06-30 02:50:07 | 000,000,626 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 02:49:12 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Bureau\mirc635.exe
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010-06-30 01:24:19 | 006,420,284 | -H-- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\IconCache.db
[2010-06-29 19:04:17 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2010-06-28 23:34:56 | 000,002,257 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Skype.lnk
[2010-06-25 07:33:14 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-24 21:01:26 | 001,079,514 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-06-24 21:01:26 | 000,511,224 | ---- | M] () -- C:\WINDOWS\System32\perfh00C.dat
[2010-06-24 21:01:26 | 000,441,772 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-06-24 21:01:26 | 000,085,276 | ---- | M] () -- C:\WINDOWS\System32\perfc00C.dat
[2010-06-24 21:01:26 | 000,071,708 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-06-21 00:45:12 | 000,040,680 | ---- | M] () -- C:\Documents and Settings\Alexandre II\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-06-13 12:04:54 | 000,192,184 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-06-04 10:16:14 | 001,751,280 | ---- | M] (mIRC Co. Ltd.) -- C:\Documents and Settings\Alexandre II\Mes documents\mirc635.exe
[2010-06-03 12:38:53 | 000,001,675 | ---- | M] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2010-06-30 11:06:56 | 000,000,946 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-06-30 11:01:42 | 000,000,166 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110140.reg
[2010-06-30 11:01:14 | 000,001,390 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_110112.reg
[2010-06-30 11:00:02 | 000,143,636 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Mes documents\cc_20100630_105959.reg
[2010-06-30 10:55:52 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\Alexandre II\Bureau\CCleaner.lnk
[2010-06-30 02:50:07 | 000,000,626 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\mIRC.lnk
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010-06-30 01:41:11 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010-06-29 19:06:14 | 000,000,292 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeLogonTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-29 19:06:13 | 000,000,300 | ---- | C] () -- C:\WINDOWS\tasks\RealUpgradeScheduledTaskS-1-5-21-4199222296-349536829-1262608896-1006.job
[2010-06-25 07:33:14 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-03 12:38:23 | 000,001,675 | ---- | C] () -- C:\Documents and Settings\All Users\Bureau\Fido Connection Manager.lnk
[2009-10-28 14:29:40 | 000,000,940 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2009-06-24 20:18:49 | 000,029,682 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2009-06-24 19:57:51 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2008-06-25 14:20:48 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2008-04-15 08:00:00 | 000,755,200 | ---- | C] () -- C:\WINDOWS\System32\ir50_32.dll
[2008-04-15 08:00:00 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\ir41_qcx.dll
[2008-04-15 08:00:00 | 000,200,192 | ---- | C] () -- C:\WINDOWS\System32\ir50_qc.dll
[2008-04-15 08:00:00 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\ir50_qcx.dll
[2008-04-15 08:00:00 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\ir41_qc.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2010-06-30 00:26:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\Fighters
[2010-06-29 23:42:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Alexandre II\Application Data\thecleaner
[2010-06-30 00:58:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\clp
[2010-06-30 02:44:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Common Toolkit Suite
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Uninstall
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2009-09-15 01:11:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{174892B1-CBE7-44F5-86FF-AB555EFD73A3}
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %SYSTEMDRIVE%\*.exe >[/color]
 
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:AGP440.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008-04-13 21:36:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\AGP440.SYS
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2008-04-15 00:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\I386\sp3.cab:atapi.sys
[2008-04-15 08:00:00 | 020,102,028 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-13 14:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2008-04-13 21:40:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\ReinstallBackups\0005\DriverFiles\i386\atapi.sys
 
[color=#A23BEC]< MD5 for: EVENTLOG.DLL  >[/color]
[2008-04-15 08:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=4EC800BDF80521B0207BD2301DFC7D14 -- C:\WINDOWS\system32\eventlog.dll
 
[color=#A23BEC]< MD5 for: NETLOGON.DLL  >[/color]
[2008-04-15 08:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=04821179C3171554C1BD1F9888A113E2 -- C:\WINDOWS\system32\netlogon.dll
 
[color=#A23BEC]< MD5 for: SCECLI.DLL  >[/color]
[2008-04-15 08:00:00 | 000,187,392 | ---- | M] (Microsoft Corporation) MD5=973B36634C544948C663E8269AA1B3A3 -- C:\WINDOWS\system32\scecli.dll
 
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
 
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[2009-03-08 04:31:44 | 000,348,160 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtmsft.dll
[2009-03-08 04:31:38 | 000,216,064 | ---- | M] (Microsoft Corporation)[b] Unable to obtain MD5[/b] -- C:\WINDOWS\system32\dxtrans.dll
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]
 
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
 
[color=#A23BEC]<  >[/color]
 
[color=#A23BEC]<  >[/color]

< End of report >


EDIT Skynet : Balises [code] ajoutées.
desesperer12hrs
Visiteur
Visiteur
 
Messages: 9
Inscription: 30 Juin 2010 17:32
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 19:58

Ok rien dans le rapport juste ceci.

* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case " Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

:OTL
SRV - (Norton Internet Security) -- File not found
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {604BC32A-9680-40D1-9AC6-E06B23A1BA4C} - No CLSID value found.



* Cliques sur l'icône Correction (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...


Sinon tu as tenter en désinstallant MIRC puis nouvelle installe après et voir si tu as toujours cette alerte.


PS: n'oublies pas cela s.t.p

Image
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12778
Inscription: 08 Déc 2009 19:51
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 20:12

oui jai deja suprimer le mirc et retelecharger mais rien bon voici le rapport vous mavez demander
Code: Tout sélectionner
========== OTL ==========
Service Norton Internet Security stopped successfully!
Service Norton Internet Security deleted successfully!
File  File not found not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C}\ not found.
 
OTL by OldTimer - Version 3.2.7.0 log created on 06302010_150818
desesperer12hrs
Visiteur
Visiteur
 
Messages: 9
Inscription: 30 Juin 2010 17:32
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 20:16

voila ce que me dit mIRC quand jessaie de me connecter je ne sais si c utile a kelke chose mais bon
)
-
-us.undernet.org- *** Looking up your hostname
-
-us.undernet.org- *** Checking Ident
-
-us.undernet.org- *** Couldn't look up your hostname
-
-us.undernet.org- *** No ident response
-
AUTO [1] Infected with a virus or trojan, please clean your system. Cleaner @ http://www.moosoft.com (P321).
-
Closing Link: Zina25 by mesa.az.us.undernet.org (G-lined)
desesperer12hrs
Visiteur
Visiteur
 
Messages: 9
Inscription: 30 Juin 2010 17:32
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 20:26

Fait ceci.

Télécharge >> TFC.exe << impérativement sur ton bureau

Ferme tous les programmes en cour de fonctionnement...

Valide START pour lancer TFC

Une demande va apparaitre pour te demander de redémarrer ton pc, cliques sur "YES" et laisse faire TFC.

Cela va vider tous les fichiers temporaires

Puis.

Démarrer IE-->>Outils-->>Options Internet-->>Onglet avancé-->>REINITIALISER

Teste cela.
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12778
Inscription: 08 Déc 2009 19:51
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 20:37

ok cest fait mais trjs rien mIRC me donne trjs le meme message :o
desesperer12hrs
Visiteur
Visiteur
 
Messages: 9
Inscription: 30 Juin 2010 17:32
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 30 Juin 2010 20:43

bon désolé je ne connais que de nom ce logiciel et possible que cela ne soit qu'une fausse alerte. :cry:

Je ne connais pas les options de celui-ci mais tout les autres rapports indique que ton pc est OK.

Fait ceci pour supprimer les logiciels qui ont servis à cette désinfection.
>> Télécharge ToolsCleaner (de A.Rothstein & dj QUIOU) http://pc-system.fr/TC/ToolsCleaner2.exe

>> Double-clique dessus pour lancer le programme

>> Clique sur Recherche et laisse le scan se terminer (il peut durer une dizaine de minutes au maximum).

>> Une fois la recherche lancée, ne clique pas dans la fenêtre, cela provoquerait un léger bug du programme.

>> Si toutes fois la mention (ne réponds pas) apparaissait dans le titre de la fenêtre ToolsCleaner, ne t'en occupes pas et laisse quand même le programme terminer son travail

** Clique sur Suppression pour finaliser.

• Tu peux, si tu le souhaites, te servir des Options facultatives.

**Poste-moi le rapport qui apparait


Mets ensuite ton antivirus à jour et fait lui une analyse complète.

Ensuite si quelqu'un connais MIRC et peux indiquer une piste sur cette alerte, ne pas hésiter s.v.p
Avatar de l'utilisateur
bernard53
PC-Infopraticien
PC-Infopraticien
 
Messages: 12778
Inscription: 08 Déc 2009 19:51
 
Haut

Re: MIrc me dit que jai un virus ou trojan mais je trouve ri

Message le 01 Juil 2010 08:01

Bonjour,

Je n'utilise pas mIRC, et je le connais pas vraiment non plus :P , mais je pense qu'il s'agit d'un message d'alerte par défaut en cas d'impossibilité de connexion (message fourni par le serveur).
En cherchant le message "No ident response", il semblerait qu'il te faille ouvrir le port 113 afin de pouvoir t'identifier sur le serveur IRC (et éventuellement renseigner ce 'ident' sur ton client, mais là faut voir avec un utilisateur ^^).
Avatar de l'utilisateur
RobinSG
Moderateur
Moderateur
 
Messages: 1509
Inscription: 29 Juin 2004 14:26
Localisation: Atys
 
Haut
Suivante
Répondre

Sujets similaires

Message Aide suite à une analyse FRST contre un virus vbc.exe
Bonjour tout le monde, J'ai récemment constaté que j'étais infecté par un virus lié à vbc.exe, ce qui entraîne une utilisation du CPU allant jusqu'à 30% voire 40%. J'ai donc effectué mes analyses FRST et voici les rapports obtenus : - FRST.txt: https://pjjoint.malekal.com/files.php?id=FRST_20240315_ ...
Réponses: 3

Message [Réglé] recherche antivirus et anti trojan pour tel android
Salut tout le mondeje possede un Samsung GALAXY S23 ULTRA, système Android version 14 et version One Ui 6.0 je ne sais pas trop à quoi cela correspond exactement, c'est juste pour information il y a bien dessus maintenance de l'application un onglet protection des applications, mais comme je fais ...
Réponses: 5

Message [Réglé] Petite vérification virus
Salut Heravles ,Merci et bonne année a toi également et aussi a toute ta famille.Oui désolé j'ai pas fais attention quand j'ai téléchargé le logiciel alors que je sais très bien qu'il fallait le faire sur le bureau. Je ferais plus attention la prochaine fois.Nickel si mon Pc et pas infecté.Je t'envo ...
Réponses: 5

Message 22h2 bogues tpm et centre de sécurité: virus?
Salut,J'ai refait iso et formaté override le disque. Un reset électrique du PC.Je suis sur W11 PRO 64 v22621.525 (même bogue sur la première iso 22h2 fournie par Microsoft en 22621.382).WU est désactivé avant connexion a internet via gpedit.msc.J'ai installé à neuf en compte local. J'installe sans i ...
Réponses: 17

Message Ou se trouve mon répertoire tel ?
Bonjour à tous !Comme j'ai réussi à connecter entre eux, via mon réseau local, mon tel, ma tablette et mes pc, je cherche, pour le sauvegarder,le nom du répertoire téléphonique, et où il se cache dans mon tel Androïd .Il doit être sur la carte sim, bien sûr mais peut on le copier...Merci pour vos co ...
Réponses: 1

Message MSVCR120.dll n'a pas été trouvé n'est pas corrigé après la r
Bonjour j'essayais de jouer à Titanfall 2, mais quand je l'ai lancé, j'ai eu 2 ""L'exécution du code ne peut pas continuer car MSVCP120.dll n'a pas été trouvé. La réinstallation du programme peut résoudre ce problème"" erreurs et 2 ""L'exécution du code ne peut pas cont ...
Réponses: 1

Message anti virus gratuit
Bonjour,Avez-vous un anti virus nettoyeur gratuit en français a me conseiller pour mon j3 2016 samsung.Cordialement.
Réponses: 3

Haut

Qui est en ligne

Utilisateurs parcourant ce forum: Bing [Bot] et 2 invités

Forum Informatique aide pour le matériel sous Windows, Linux, Logiciels et Jeux Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group

.: Nous contacter :: Flux RSS :: Données personnelles :.