virus

[roro54]

bonjour
j,ai fait une recherche de virus avec anti walware et j,aimerait que quelqun regarde et me dise comment arranger ca je suis pas tres bonne en informatique merci pour vos reponsesMalwarebytes' Anti-Malware 1.46
http://www.malwarebytes.org

Version de la base de données: 4473

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18943

2010-08-24 20:04:37
mbam-log-2010-08-24 (20-04-37).txt

Type d'examen: Examen complet (C:\|D:\|)
Elément(s) analysé(s): 286681
Temps écoulé: 1 heure(s), 16 minute(s), 55 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 25
Valeur(s) du Registre infectée(s): 3
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 6
Fichier(s) infecté(s): 4

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_CLASSES_ROOT\AppID\{0d82acd6-a652-4496-a298-2bde705f4227} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{7025e484-d4b0-441a-9f0b-69063bd679ce} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{8258b35c-05b8-4c0e-9525-9bccc70f8f2d} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{a89256ad-ec17-4a83-bef5-4b8bc4f39306} (Adware.ClickPotato) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{100eb1fd-d03e-47fd-81f3-ee91287f9465} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{258c9770-1713-4021-8d7e-1f184a2bd754} (Adware.ShoppingReport2) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{b7d3e479-cc68-42b5-a338-938ece35f419} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{2aa2fbf8-9c76-4e97-a226-25c5f4ab6358} (Adware.Hotbar) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00a6faf1-072e-44cf-8957-5838f569a31d} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18ea1-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{07b18ea9-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{a7cddcdc-beeb-4685-a062-978f5e07ceee} (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{bdea95cf-f0e6-41e0-bd3d-b00f39a4e939} (Adware.ShoppingReport2) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256a51-b582-467e-b8d4-7786eda79ae0} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\popcaploader.popcaploaderctrl2 (Adware.PopCap) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\popcaploader.popcaploaderctrl2.1 (Adware.PopCap) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\shopperreports.reporter (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\shopperreports.reporter.1 (Adware.ShopperReports) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{b7d3e479-cc68-42b5-a338-938ece35f419} (Adware.Softomate) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{90b8b761-df2b-48ac-bbe0-bcc03a819b3b} (Adware.Zango) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\5.0\User Agent\Post Platform\srs_it_e8790272b776545432ac94 (Malware.Trace) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7} (Adware.BarDiscover) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\defaults (Adware.BarDiscover) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\defaults\preferences (Adware.BarDiscover) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464} (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults\preferences (Adware.QueryExplorer) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\install.rdf (Adware.BarDiscover) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{AC57FCAF-E6FC-4BE9-ADC0-D00129C4C1E7}\defaults\preferences\prefs.js (Adware.BarDiscover) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\install.rdf (Adware.QueryExplorer) -> Quarantined and deleted successfully.
C:\Program Files\Mozilla Firefox\extensions\{27E679CC-6AAB-4B2A-BB87-096FE4178464}\defaults\preferences\prefs.js (Adware.QueryExplorer) -> Quarantined and deleted successfully.

[bernard53]

Bonsoir

OK pour Malwaresbytes

fait ceci pour voir si tu as encore des restes d'intrus.



* Télécharge >> OTL <<sur ton bureau.

* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case "Rapport minimal " soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL " Personnalisation"

netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
vstor32.sys
ahcix86s.sys
nvrd32.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles

* Cliques sur l'icône "Analyse" (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés

[roro54]

merci voila le rapportOTL logfile created on: 2010-08-25 14:43:10 - Run 2
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\ordinateur\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18943)
Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 52,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): ?:\pagefile.sys

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 43,95 Gb Total Space | 4,14 Gb Free Space | 9,41% Space Free | Partition Type: NTFS
Drive D: | 246,33 Gb Total Space | 244,44 Gb Free Space | 99,23% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-DE-ORDINATEU
Current User Name: ordinateur
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\ordinateur\Downloads\OTL(2).exe (OldTimer Tools)
PRC - C:\Users\ordinateur\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\AVG\AVG9\avgemc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Program Files\OfferBox\OfferBox.exe (Secure Digital Services)
PRC - C:\Users\ordinateur\AppData\Local\MétéoMédia\MétéoÉclair\WeatherEye.exe (Pelmorex Media Inc.)
PRC - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\System Control Manager\MGSysCtrl.exe (Mirco-Star International CO., LTD.)
PRC - C:\Program Files\System Control Manager\MSIService.exe ()
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\Atheros\ACU.exe (Atheros Communications, Inc.)
PRC - C:\Windows\System32\acs.exe (Atheros)
PRC - C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)


========== Modules (SafeList) ==========

MOD - C:\Users\ordinateur\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (Norton Internet Security) -- C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe File not found
SRV - (avg9emc) -- C:\Program Files\AVG\AVG9\avgemc.exe (AVG Technologies CZ, s.r.o.)
SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
SRV - (Micro Star SCM) -- C:\Program Files\System Control Manager\MSIService.exe ()
SRV - (ACS) -- C:\Windows\System32\acs.exe (Atheros)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (TOSHIBA Bluetooth Service) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)


========== Driver Services (SafeList) ==========

DRV - (USBCCID) -- C:\Windows\System32\DRIVERS\Rts5161ccid.sys File not found
DRV - (SRTSPX) -- C:\Windows\System32\drivers\NIS\1000000.07D\SRTSPX.SYS File not found
DRV - (SRTSP) -- C:\Windows\System32\drivers\NIS\1000000.07D\SRTSP.SYS File not found
DRV - (Rts516xIR) -- C:\Windows\System32\DRIVERS\Rts516xIR.sys File not found
DRV - (RSUSBSTOR) -- C:\Windows\System32\Drivers\RTS5121.sys File not found
DRV - (NwlnkFwd) -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- C:\Windows\System32\DRIVERS\nwlnkflt.sys File not found
DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVEX15.SYS File not found
DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVENG.SYS File not found
DRV - (IpInIp) -- C:\Windows\System32\DRIVERS\ipinip.sys File not found
DRV - (AvgTdiX) -- C:\Windows\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgLdx86) -- C:\Windows\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgMfx86) -- C:\Windows\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (fssfltr) -- C:\Windows\System32\drivers\fssfltr.sys (Microsoft Corporation)
DRV - (NuidFltr) -- C:\Windows\System32\drivers\nuidfltr.sys (Microsoft Corporation)
DRV - (usbaudio) Pilote USB audio (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (nvsmu) -- C:\Windows\System32\drivers\nvsmu.sys (NVIDIA Corporation)
DRV - (nvstor32) -- C:\Windows\system32\DRIVERS\nvstor32.sys (NVIDIA Corporation)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (RTSTOR) -- C:\Windows\System32\drivers\RTSTOR.sys (Realtek Semiconductor Corp.)
DRV - (RTLE8023xp) -- C:\Windows\System32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (enecir) -- C:\Windows\System32\drivers\enecir.sys (ENE TECHNOLOGY INC.)
DRV - (AR5416) -- C:\Windows\System32\drivers\athw.sys (Atheros Communications, Inc.)
DRV - (tosrfbd) -- C:\Windows\System32\drivers\tosrfbd.sys (TOSHIBA CORPORATION)
DRV - (WSIMD) -- C:\Windows\System32\drivers\wsimd.sys (Atheros Communications, Inc.)
DRV - (Tosrfhid) -- C:\Windows\System32\drivers\Tosrfhid.sys (TOSHIBA Corporation.)
DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek Corporation )
DRV - (TosRfSnd) -- C:\Windows\System32\drivers\TosRfSnd.sys (TOSHIBA Corporation)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (tosrfbnp) -- C:\Windows\System32\drivers\tosrfbnp.sys (TOSHIBA Corporation)
DRV - (smserial) -- C:\Windows\System32\drivers\smserial.sys (Motorola Inc.)
DRV - (Tosrfusb) -- C:\Windows\System32\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV - (Tosrfcom) -- C:\Windows\System32\drivers\tosrfcom.sys (TOSHIBA Corporation)
DRV - (netr28) -- C:\Windows\System32\drivers\netr28.sys (Ralink Technology, Corp.)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (tosporte) -- C:\Windows\System32\drivers\tosporte.sys (TOSHIBA Corporation)
DRV - (tosrfnds) -- C:\Windows\System32\drivers\tosrfnds.sys (TOSHIBA Corporation.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msi.com.tw

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/defaultf.aspx?lang=fr-ca&OCID=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-ca
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 63 3D B3 EC 29 43 CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Bing"
FF - prefs.js..browser.search.defaultthis.engineName: "Megavideolink Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://www.bing.com/search?FORM=IEFM1&q="
FF - prefs.js..browser.search.order.1: "iMesh Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://go.microsoft.com/fwlink/?LinkId=69157"
FF - prefs.js..extensions.enabledItems: ChoiceGuard@Microsoft:2.0
FF - prefs.js..keyword.URL: "http://www.bing.com/search?FORM=IEFM1&q="


FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-08-24 12:53:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-08-24 12:53:49 | 000,000,000 | ---D | M]

[2010-08-20 10:18:44 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Extensions
[2010-08-20 10:18:44 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Extensions\IMVUClientXUL@imvu.com
[2010-08-25 14:14:36 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Firefox\Profiles\ka4sw0e5.default\extensions
[2010-06-06 22:02:49 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Firefox\Profiles\ka4sw0e5.default\extensions\@FissaPlugin
[2010-08-24 13:00:23 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Firefox\Profiles\ka4sw0e5.default\extensions\@FissaPlugin-trash
[2010-04-27 16:05:19 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\ordinateur\AppData\Roaming\mozilla\Firefox\Profiles\ka4sw0e5.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010-08-23 20:37:07 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Firefox\Profiles\ka4sw0e5.default\extensions\ChoiceGuard@Microsoft
[2010-08-19 16:13:17 | 000,002,238 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\alot-search.xml
[2010-08-24 13:00:24 | 000,001,819 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\bing.xml
[2010-07-22 20:51:38 | 000,000,929 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\conduit.xml
[2010-04-12 14:01:34 | 000,002,456 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\iMeshWebSearch.xml
[2010-08-21 10:21:12 | 000,010,017 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\mywebsearch.xml
[2010-08-24 20:04:37 | 000,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2010-08-24 12:23:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-08-24 12:23:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-07-17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2006-09-10 07:35:08 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2008-09-28 03:10:26 | 000,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2006-09-10 07:35:08 | 000,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2008-03-29 09:59:44 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2006-09-12 14:49:04 | 000,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: ([2006-09-18 17:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [ACU] C:\Program Files\Atheros\ACU.exe (Atheros Communications, Inc.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [MGSysCtrl] C:\Program Files\System Control Manager\MGSysCtrl.exe (Mirco-Star International CO., LTD.)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [OfferBox] C:\Program Files\OfferBox\OfferBox.exe (Secure Digital Services)
O4 - HKCU..\Run: [WeatherEye] C:\Users\ordinateur\AppData\Local\MétéoMédia\MétéoÉclair\WeatherEye.exe (Pelmorex Media Inc.)
O4 - Startup: C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk = C:\Users\ordinateur\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe ()
O4 - Startup: C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sommaire de OneNote.onetoc2 ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMorePrograms = 0
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {038E2507-7A48-41E2-94AD-7F23D199AF4E} http://www.worldwinner.com/games/v54/ze ... engems.cab (ZenGems Control)
O16 - DPF: {1D082E71-DF20-4AAF-863B-596428C49874} http://www.worldwinner.com/games/v50/tpir/tpir.cab (TPIR Control)
O16 - DPF: {58FC4C77-71C2-4972-A8CD-78691AD85158} http://www.worldwinner.com/games/v63/bjattack/bja.cab (BJA Control)
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} http://www.worldwinner.com/games/shared/wwlaunch.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {8F6E7FB2-E56B-4F66-A4E1-9765D2565280} http://www.worldwinner.com/games/launch ... wwload.cab (WorldWinner ActiveX Launcher Control)
O16 - DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} http://games.bigfishgames.com/fr_bigcit ... Player.cab (Jolly Bear Games Player)
O16 - DPF: {95A311CD-EC8E-452A-BCEC-B844EB616D03} http://www.worldwinner.com/games/v51/be ... dtwist.cab (BejeweledTwist Control)
O16 - DPF: {BB637307-92FA-47EC-B3F7-6969078673CC} http://www.worldwinner.com/games/v45/royal/royal.cab (Royal Control)
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} http://game.zylom.com/activex/zylomgamesplayer.cab (Zylom Games Player)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://www.popcap.com/webgames/popcaploader_v10_fr.cab (PopCapLoader Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O22 - SharedTaskScheduler: {EC654325-1273-C2A9-2B7C-45D29BCE68FB} - Deskscapes - Reg Error: Key error. File not found
O24 - Desktop WallPaper: C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010-08-24 18:46:19 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\Malwarebytes
[2010-08-24 18:46:12 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010-08-24 18:46:11 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010-08-24 18:46:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010-08-24 18:46:10 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-08-24 18:35:51 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010-08-23 20:54:05 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2010-08-23 20:52:13 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2010-08-23 20:52:07 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2010-08-23 20:52:07 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2010-08-23 20:52:07 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2010-08-23 20:52:06 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2010-08-23 20:52:06 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2010-08-23 20:52:01 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2010-08-23 20:52:01 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2010-08-23 20:52:01 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2010-08-23 20:52:01 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2010-08-23 20:52:01 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2010-08-23 20:51:56 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2010-08-23 20:51:56 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2010-08-23 20:51:55 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2010-08-23 20:51:55 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2010-08-23 20:51:55 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2010-08-23 20:20:03 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Local\AskToolbar
[2010-08-23 17:45:02 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\GlarySoft
[2010-08-23 17:41:05 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2010-08-23 17:40:51 | 000,000,000 | ---D | C] -- C:\Program Files\Glary Utilities
[2010-08-23 17:11:15 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\Yahoo!
[2010-08-23 17:11:05 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-08-23 16:56:04 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\JAM Software
[2010-08-23 16:56:00 | 000,000,000 | ---D | C] -- C:\Program Files\JAM Software
[2010-08-22 16:06:04 | 000,000,000 | ---D | C] -- C:\ProgramData\MGS
[2010-08-22 16:04:23 | 000,000,000 | ---D | C] -- C:\Microgaming
[2010-08-20 10:21:41 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\Vivox
[2010-08-20 10:18:39 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\IMVU
[2010-08-20 10:18:18 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\IMVUClient
[2010-08-17 22:38:50 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\vlc
[2010-08-17 22:38:12 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010-08-17 06:57:08 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\FIXIO PC Utilities
[2010-08-17 06:56:32 | 000,000,000 | ---D | C] -- C:\Program Files\FIXIO PC Utilities
[2010-08-14 18:30:22 | 000,000,000 | ---D | C] -- C:\ProgramData\SpinTop Games
[2010-08-14 17:18:38 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap
[2010-08-11 17:48:16 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010-08-11 17:48:16 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010-08-11 17:48:16 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010-08-11 17:48:15 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010-08-11 17:48:15 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010-08-11 17:48:15 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010-08-11 17:48:14 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010-08-11 17:48:14 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010-08-11 17:48:14 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2010-08-11 17:48:14 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010-08-11 17:48:14 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010-08-11 17:48:14 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010-08-11 17:48:14 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010-08-11 17:48:13 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010-08-11 17:48:13 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2010-08-11 17:48:12 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010-08-11 17:48:03 | 002,037,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010-08-11 17:47:59 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010-08-11 17:47:38 | 003,600,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010-08-11 17:47:36 | 003,548,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010-08-10 16:44:43 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
[2010-08-06 07:02:34 | 000,000,000 | ---D | C] -- C:\Program Files\Neffy
[2010-08-05 09:29:25 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\Artogon
[2010-08-01 07:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010-07-27 11:20:12 | 000,000,000 | ---D | C] -- C:\ProgramData\C2E1
[2010-07-27 11:20:05 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Local\iMesh
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010-08-25 14:43:40 | 002,621,440 | -HS- | M] () -- C:\Users\ordinateur\NTUSER.DAT
[2010-08-25 14:41:59 | 000,000,428 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{50FDB7BE-F7B3-4434-8537-5A9848A22749}.job
[2010-08-25 14:00:00 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4156456547-1668062748-3056625404-1000UA.job
[2010-08-25 13:58:27 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010-08-25 13:58:27 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010-08-25 13:00:00 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4156456547-1668062748-3056625404-1000Core.job
[2010-08-25 10:35:42 | 000,057,818 | ---- | M] () -- C:\ProgramData\nvModes.001
[2010-08-25 10:35:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010-08-25 09:59:56 | 000,000,887 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk
[2010-08-25 09:58:47 | 000,000,322 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
[2010-08-25 09:58:30 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010-08-25 09:57:43 | 000,524,288 | -HS- | M] () -- C:\Users\ordinateur\NTUSER.DAT{c1312fd8-f1be-11de-a431-0024216af67a}.TMContainer00000000000000000001.regtrans-ms
[2010-08-25 09:57:43 | 000,065,536 | -HS- | M] () -- C:\Users\ordinateur\NTUSER.DAT{c1312fd8-f1be-11de-a431-0024216af67a}.TM.blf
[2010-08-25 09:20:31 | 063,808,567 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2010-08-24 23:08:56 | 001,173,484 | -H-- | M] () -- C:\Users\ordinateur\AppData\Local\IconCache.db
[2010-08-24 18:46:14 | 000,000,828 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010-08-24 18:44:33 | 000,002,533 | ---- | M] () -- C:\Users\ordinateur\Desktop\HiJackThis.lnk
[2010-08-24 12:56:40 | 000,002,124 | ---- | M] () -- C:\Users\ordinateur\Desktop\Google Chrome.lnk
[2010-08-24 12:56:40 | 000,002,086 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010-08-24 12:53:51 | 000,001,758 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010-08-24 12:53:51 | 000,001,734 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010-08-24 09:18:05 | 000,057,818 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2010-08-23 21:03:44 | 001,495,948 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010-08-23 21:03:44 | 000,679,042 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2010-08-23 21:03:44 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010-08-23 21:03:44 | 000,126,626 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2010-08-23 21:03:44 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010-08-23 19:13:54 | 000,279,416 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010-08-23 18:02:36 | 000,061,536 | ---- | M] () -- C:\Users\ordinateur\AppData\Local\GDIPFONTCACHEV1.DAT
[2010-08-23 17:14:54 | 000,073,866 | ---- | M] () -- C:\Users\ordinateur\Documents\cc_20100823_171439.reg
[2010-08-17 09:47:05 | 002,359,296 | -HS- | M] () -- C:\Users\ordinateur\ntuser.dat_previous
[2010-08-16 17:05:28 | 000,003,656 | -HS- | M] () -- C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sommaire de OneNote.onetoc2
[2010-08-16 10:38:45 | 000,000,142 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Facebook.URL
[2010-08-07 11:29:08 | 000,001,657 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\AVG Free 9.0.lnk
[2010-08-06 16:04:08 | 000,002,639 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\CameraRecorder.lnk
[2010-08-05 17:23:39 | 000,000,036 | ---- | M] () -- C:\Users\ordinateur\AppData\Local\housecall.guid.cache
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010-08-24 18:46:14 | 000,000,828 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010-08-24 18:35:52 | 000,002,533 | ---- | C] () -- C:\Users\ordinateur\Desktop\HiJackThis.lnk
[2010-08-24 12:56:40 | 000,002,124 | ---- | C] () -- C:\Users\ordinateur\Desktop\Google Chrome.lnk
[2010-08-24 12:56:40 | 000,002,086 | ---- | C] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010-08-24 12:55:38 | 000,001,096 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4156456547-1668062748-3056625404-1000UA.job
[2010-08-24 12:55:37 | 000,001,044 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4156456547-1668062748-3056625404-1000Core.job
[2010-08-24 12:53:51 | 000,001,758 | ---- | C] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010-08-24 12:53:51 | 000,001,734 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010-08-23 20:51:57 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2010-08-23 20:51:57 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2010-08-23 20:51:57 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2010-08-23 17:40:56 | 000,000,322 | ---- | C] () -- C:\Windows\tasks\GlaryInitialize.job
[2010-08-23 17:14:43 | 000,073,866 | ---- | C] () -- C:\Users\ordinateur\Documents\cc_20100823_171439.reg
[2010-08-20 10:19:11 | 000,000,887 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk
[2010-08-16 17:05:28 | 000,003,656 | -HS- | C] () -- C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sommaire de OneNote.onetoc2
[2010-08-07 11:32:43 | 000,001,897 | ---- | C] () -- C:\Users\ordinateur\Documents\Adobe Reader 9.lnk
[2010-08-07 11:32:29 | 000,001,121 | ---- | C] () -- C:\Users\ordinateur\Documents\MétéoÉclair.lnk
[2010-08-07 11:29:08 | 000,001,657 | ---- | C] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\AVG Free 9.0.lnk
[2010-08-05 17:23:39 | 000,000,036 | ---- | C] () -- C:\Users\ordinateur\AppData\Local\housecall.guid.cache
[2010-07-22 11:52:56 | 000,000,467 | ---- | C] () -- C:\Program Files\nonenone.bat
[2010-07-13 19:45:05 | 000,262,216 | ---- | C] () -- C:\Windows\System32\IPTests.dll
[2010-07-08 19:25:32 | 000,000,680 | ---- | C] () -- C:\Users\ordinateur\AppData\Local\d3d9caps.dat
[2010-02-15 08:32:53 | 000,000,140 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\top_ten
[2010-02-15 08:32:35 | 000,000,306 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\profile1
[2010-02-15 08:32:35 | 000,000,295 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\profile3
[2010-02-15 08:32:35 | 000,000,295 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\profile2
[2010-02-15 08:32:35 | 000,000,063 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\profiles
[2010-01-13 19:26:17 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010-01-11 15:22:54 | 000,005,817 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2010-01-11 12:31:56 | 000,000,040 | ---- | C] () -- C:\Windows\NAVIGMA.INI
[2009-12-25 21:27:58 | 000,000,104 | ---- | C] () -- C:\ProgramData\CameraRecorder.ini
[2009-12-23 08:48:37 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009-12-19 21:13:20 | 000,007,168 | ---- | C] () -- C:\Users\ordinateur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-12-19 12:49:59 | 000,076,407 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\Smiley.ico
[2009-03-05 15:07:06 | 000,057,818 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2008-04-04 10:19:13 | 000,000,000 | ---- | C] () -- C:\Windows\tosOBEX.INI
[2008-04-04 06:51:35 | 000,057,818 | ---- | C] () -- C:\ProgramData\nvModes.001
[2007-12-21 19:46:32 | 000,118,784 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll
[2006-11-02 08:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006-11-02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2005-07-23 00:30:18 | 000,065,536 | ---- | C] () -- C:\Windows\System32\TosCommAPI.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 229 bytes -> C:\ProgramData\TEMP:15265C4F
@Alternate Data Stream - 209 bytes -> C:\ProgramData\TEMP:569CEE83
@Alternate Data Stream - 207 bytes -> C:\ProgramData\TEMP:ED221572
@Alternate Data Stream - 198 bytes -> C:\ProgramData\TEMP:8D5A0C4E
@Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:9331E9D2
@Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:69D59C23
@Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:3651A580
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:9ACE4E8E
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:8944C195
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:4EE323A4
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:5EC637CB
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:3DF63AD7
@Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:43860CE8
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:C4AB79AE
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:E4E43015
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:92D91D7E
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:4F8B72C9
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:A4076A3B
@Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:D93AABC7
@Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:FBE5FDB9
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:E07EA07E
< End of report >

[bernard53]

OK fait ceci.

* Fait un double-clic sur l'icône d'OTL pour le lancer
/!\ pour Vista/Seven fais un clic-droit sur l'icône d'OTL et choisis "Exécuter en tant qu'administrateur"

* Assure-toi d'avoir fermé toutes les applications en court de fonctionnement.

* Quand la fenêtre d'OTL apparaît, assure toi que dans la section "Rapport" (en haut à droite) la case " Rapport minimal" soit cochée.

* Copies et colles le contenue de cette citation dans la partie inférieure d'OTL "Personnalisation"

:OTL
SRV - (Norton Internet Security) -- C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe File not found
DRV - (USBCCID) -- C:\Windows\System32\DRIVERS\Rts5161ccid.sys File not found
DRV - (SRTSPX) -- C:\Windows\System32\drivers\NIS\1000000.07D\SRTSPX.SYS File not found
DRV - (SRTSP) -- C:\Windows\System32\drivers\NIS\1000000.07D\SRTSP.SYS File not found
DRV - (Rts516xIR) -- C:\Windows\System32\DRIVERS\Rts516xIR.sys File not found
DRV - (RSUSBSTOR) -- C:\Windows\System32\Drivers\RTS5121.sys File not found
DRV - (NwlnkFwd) -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- C:\Windows\System32\DRIVERS\nwlnkflt.sys File not found
DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVEX15.SYS File not found
DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVENG.SYS File not found
DRV - (IpInIp) -- C:\Windows\System32\DRIVERS\ipinip.sys File not found
[2010-08-21 10:21:12 | 000,010,017 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\mywebsearch.xml
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://www.popcap.com/webgames/popcaploader_v10_fr.cab (PopCapLoader Object)
[2010-08-23 20:20:03 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Local\AskToolbar
[2010-08-23 17:41:05 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2010-08-14 17:18:38 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap
[2010-08-10 16:44:43 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
:Files
C:\Users\ordinateur\AppData\Local\AskToolbar
C:\Program Files\Ask.com
C:\ProgramData\PopCap
C:\ProgramData\PopCap Games

:Commands
[emptytemp]

* Cliques sur l'icône Correction (en haut à gauche) .
* Laisse le scan aller à son terme sans te servir du PC
* A la fin du scan un ou deux rapports vont s'ouvrir "OTL.Txt" et ( ou ) "Extras.Txt"( dans certains cas).
* Copie et colle le ou les rapports dans ta réponse stp...
* Au cas où, tu peux les retrouver dans le dossier C:\OTL ou sur ton bureau en fonction des cas rencontrés

dis moi comment va ton pc.

[roro54]

allo voila j,ai fait un scan mais quand je clic sur correction ca me dit qu,il ny a aucune correction a faire je sais pas si me suis trompe sinon tout va bien OTL logfile created on: 2010-08-25 15:45:09 - Run 3
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Users\ordinateur\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18943)
Locale: 00000C0C | Country: Canada | Language: FRC | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 50,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 81,00% Paging File free
Paging file location(s): ?:\pagefile.sys

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 43,95 Gb Total Space | 4,03 Gb Free Space | 9,18% Space Free | Partition Type: NTFS
Drive D: | 246,33 Gb Total Space | 244,44 Gb Free Space | 99,23% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: PC-DE-ORDINATEU
Current User Name: ordinateur
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Users\ordinateur\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\bfgclient\bfggameservices.exe ()
PRC - C:\Program Files\AVG\AVG9\avgemc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG9\avgchsvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Program Files\OfferBox\OfferBox.exe (Secure Digital Services)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Users\ordinateur\AppData\Local\MétéoMédia\MétéoÉclair\WeatherEye.exe (Pelmorex Media Inc.)
PRC - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe (Microsoft Corporation)
PRC - C:\Windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\System Control Manager\MGSysCtrl.exe (Mirco-Star International CO., LTD.)
PRC - C:\Program Files\System Control Manager\MSIService.exe ()
PRC - C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\Atheros\ACU.exe (Atheros Communications, Inc.)
PRC - C:\Windows\System32\acs.exe (Atheros)
PRC - C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
PRC - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)


========== Modules (SafeList) ==========

MOD - C:\Users\ordinateur\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
MOD - C:\Windows\System32\WindowsCodecs.dll (Microsoft Corporation)
MOD - C:\Program Files\Common Files\microsoft shared\ink\tiptsf.dll (Microsoft Corporation)
MOD - C:\Windows\System32\SLC.dll (Microsoft Corporation)
MOD - C:\Windows\System32\msshsq.dll (Microsoft Corporation)
MOD - C:\Windows\System32\EhStorShell.dll (Microsoft Corporation)
MOD - C:\Windows\System32\cscapi.dll (Microsoft Corporation)
MOD - C:\Windows\System32\rsaenh.dll (Microsoft Corporation)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\System32\duser.dll (Microsoft Corporation)
MOD - C:\Windows\System32\actxprxy.dll (Microsoft Corporation)
MOD - C:\Windows\System32\msscript.ocx (Microsoft Corporation)
MOD - C:\Windows\System32\thumbcache.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (Norton Internet Security) -- C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe File not found
SRV - (avg9emc) -- C:\Program Files\AVG\AVG9\avgemc.exe (AVG Technologies CZ, s.r.o.)
SRV - (avg9wd) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (fsssvc) -- C:\Program Files\Windows Live\Family Safety\fsssvc.exe (Microsoft Corporation)
SRV - (WPFFontCache_v0400) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (Microsoft Corporation)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (FontCache) -- C:\Windows\System32\FntCache.dll (Microsoft Corporation)
SRV - (wlidsvc) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
SRV - (Micro Star SCM) -- C:\Program Files\System Control Manager\MSIService.exe ()
SRV - (ACS) -- C:\Windows\System32\acs.exe (Atheros)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (Microsoft Corporation)
SRV - (TOSHIBA Bluetooth Service) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe (TOSHIBA CORPORATION)


========== Driver Services (SafeList) ==========

DRV - (USBCCID) -- C:\Windows\System32\DRIVERS\Rts5161ccid.sys File not found
DRV - (SRTSPX) -- C:\Windows\System32\drivers\NIS\1000000.07D\SRTSPX.SYS File not found
DRV - (SRTSP) -- C:\Windows\System32\drivers\NIS\1000000.07D\SRTSP.SYS File not found
DRV - (Rts516xIR) -- C:\Windows\System32\DRIVERS\Rts516xIR.sys File not found
DRV - (RSUSBSTOR) -- C:\Windows\System32\Drivers\RTS5121.sys File not found
DRV - (NwlnkFwd) -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys File not found
DRV - (NwlnkFlt) -- C:\Windows\System32\DRIVERS\nwlnkflt.sys File not found
DRV - (NAVEX15) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVEX15.SYS File not found
DRV - (NAVENG) -- C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVENG.SYS File not found
DRV - (IpInIp) -- C:\Windows\System32\DRIVERS\ipinip.sys File not found
DRV - (AvgTdiX) -- C:\Windows\System32\Drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgLdx86) -- C:\Windows\System32\Drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AvgMfx86) -- C:\Windows\System32\Drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (fssfltr) -- C:\Windows\System32\drivers\fssfltr.sys (Microsoft Corporation)
DRV - (NuidFltr) -- C:\Windows\System32\drivers\nuidfltr.sys (Microsoft Corporation)
DRV - (usbaudio) Pilote USB audio (WDM) -- C:\Windows\System32\drivers\USBAUDIO.sys (Microsoft Corporation)
DRV - (athr) -- C:\Windows\System32\drivers\athr.sys (Atheros Communications, Inc.)
DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation)
DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation)
DRV - (nvsmu) -- C:\Windows\System32\drivers\nvsmu.sys (NVIDIA Corporation)
DRV - (nvstor32) -- C:\Windows\system32\DRIVERS\nvstor32.sys (NVIDIA Corporation)
DRV - (IntcAzAudAddService) Service for Realtek HD Audio (WDM) -- C:\Windows\System32\drivers\RTKVHDA.sys (Realtek Semiconductor Corp.)
DRV - (RTSTOR) -- C:\Windows\System32\drivers\RTSTOR.sys (Realtek Semiconductor Corp.)
DRV - (RTLE8023xp) -- C:\Windows\System32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (enecir) -- C:\Windows\System32\drivers\enecir.sys (ENE TECHNOLOGY INC.)
DRV - (AR5416) -- C:\Windows\System32\drivers\athw.sys (Atheros Communications, Inc.)
DRV - (tosrfbd) -- C:\Windows\System32\drivers\tosrfbd.sys (TOSHIBA CORPORATION)
DRV - (WSIMD) -- C:\Windows\System32\drivers\wsimd.sys (Atheros Communications, Inc.)
DRV - (Tosrfhid) -- C:\Windows\System32\drivers\Tosrfhid.sys (TOSHIBA Corporation.)
DRV - (RTL8169) -- C:\Windows\System32\drivers\Rtlh86.sys (Realtek Corporation )
DRV - (TosRfSnd) -- C:\Windows\System32\drivers\TosRfSnd.sys (TOSHIBA Corporation)
DRV - (MegaSR) -- C:\Windows\system32\drivers\megasr.sys (LSI Corporation, Inc.)
DRV - (adpu320) -- C:\Windows\system32\drivers\adpu320.sys (Adaptec, Inc.)
DRV - (megasas) -- C:\Windows\system32\drivers\megasas.sys (LSI Corporation)
DRV - (adpu160m) -- C:\Windows\system32\drivers\adpu160m.sys (Adaptec, Inc.)
DRV - (SiSRaid4) -- C:\Windows\system32\drivers\sisraid4.sys (Silicon Integrated Systems)
DRV - (HpCISSs) -- C:\Windows\system32\drivers\hpcisss.sys (Hewlett-Packard Company)
DRV - (adpahci) -- C:\Windows\system32\drivers\adpahci.sys (Adaptec, Inc.)
DRV - (LSI_SAS) -- C:\Windows\system32\drivers\lsi_sas.sys (LSI Logic)
DRV - (ql2300) -- C:\Windows\system32\drivers\ql2300.sys (QLogic Corporation)
DRV - (E1G60) Intel(R) -- C:\Windows\System32\drivers\E1G60I32.sys (Intel Corporation)
DRV - (arcsas) -- C:\Windows\system32\drivers\arcsas.sys (Adaptec, Inc.)
DRV - (iaStorV) -- C:\Windows\system32\drivers\iastorv.sys (Intel Corporation)
DRV - (vsmraid) -- C:\Windows\system32\drivers\vsmraid.sys (VIA Technologies Inc.,Ltd)
DRV - (ulsata2) -- C:\Windows\system32\drivers\ulsata2.sys (Promise Technology, Inc.)
DRV - (LSI_SCSI) -- C:\Windows\system32\drivers\lsi_scsi.sys (LSI Logic)
DRV - (LSI_FC) -- C:\Windows\system32\drivers\lsi_fc.sys (LSI Logic)
DRV - (arc) -- C:\Windows\system32\drivers\arc.sys (Adaptec, Inc.)
DRV - (elxstor) -- C:\Windows\system32\drivers\elxstor.sys (Emulex)
DRV - (adp94xx) -- C:\Windows\system32\drivers\adp94xx.sys (Adaptec, Inc.)
DRV - (nvraid) -- C:\Windows\system32\drivers\nvraid.sys (NVIDIA Corporation)
DRV - (nvstor) -- C:\Windows\system32\drivers\nvstor.sys (NVIDIA Corporation)
DRV - (uliahci) -- C:\Windows\system32\drivers\uliahci.sys (ULi Electronics Inc.)
DRV - (viaide) -- C:\Windows\system32\drivers\viaide.sys (VIA Technologies, Inc.)
DRV - (cmdide) -- C:\Windows\system32\drivers\cmdide.sys (CMD Technology, Inc.)
DRV - (aliide) -- C:\Windows\system32\drivers\aliide.sys (Acer Laboratories Inc.)
DRV - (tosrfbnp) -- C:\Windows\System32\drivers\tosrfbnp.sys (TOSHIBA Corporation)
DRV - (smserial) -- C:\Windows\System32\drivers\smserial.sys (Motorola Inc.)
DRV - (Tosrfusb) -- C:\Windows\System32\drivers\tosrfusb.sys (TOSHIBA CORPORATION)
DRV - (Tosrfcom) -- C:\Windows\System32\drivers\tosrfcom.sys (TOSHIBA Corporation)
DRV - (netr28) -- C:\Windows\System32\drivers\netr28.sys (Ralink Technology, Corp.)
DRV - (ql40xx) -- C:\Windows\system32\drivers\ql40xx.sys (QLogic Corporation)
DRV - (UlSata) -- C:\Windows\system32\drivers\ulsata.sys (Promise Technology, Inc.)
DRV - (nfrd960) -- C:\Windows\system32\drivers\nfrd960.sys (IBM Corporation)
DRV - (iirsp) -- C:\Windows\system32\drivers\iirsp.sys (Intel Corp./ICP vortex GmbH)
DRV - (aic78xx) -- C:\Windows\system32\drivers\djsvs.sys (Adaptec, Inc.)
DRV - (iteraid) -- C:\Windows\system32\drivers\iteraid.sys (Integrated Technology Express, Inc.)
DRV - (iteatapi) -- C:\Windows\system32\drivers\iteatapi.sys (Integrated Technology Express, Inc.)
DRV - (Symc8xx) -- C:\Windows\system32\drivers\symc8xx.sys (LSI Logic)
DRV - (Sym_u3) -- C:\Windows\system32\drivers\sym_u3.sys (LSI Logic)
DRV - (Mraid35x) -- C:\Windows\system32\drivers\mraid35x.sys (LSI Logic Corporation)
DRV - (Sym_hi) -- C:\Windows\system32\drivers\sym_hi.sys (LSI Logic)
DRV - (Brserid) Brother MFC Serial Port Interface Driver (WDM) -- C:\Windows\system32\drivers\brserid.sys (Brother Industries Ltd.)
DRV - (BrUsbSer) -- C:\Windows\system32\drivers\brusbser.sys (Brother Industries Ltd.)
DRV - (BrFiltUp) -- C:\Windows\system32\drivers\brfiltup.sys (Brother Industries, Ltd.)
DRV - (BrFiltLo) -- C:\Windows\system32\drivers\brfiltlo.sys (Brother Industries, Ltd.)
DRV - (BrSerWdm) -- C:\Windows\system32\drivers\brserwdm.sys (Brother Industries Ltd.)
DRV - (BrUsbMdm) -- C:\Windows\system32\drivers\brusbmdm.sys (Brother Industries Ltd.)
DRV - (ntrigdigi) -- C:\Windows\system32\drivers\ntrigdigi.sys (N-trig Innovative Technologies)
DRV - (tosporte) -- C:\Windows\System32\drivers\tosporte.sys (TOSHIBA Corporation)
DRV - (tosrfnds) -- C:\Windows\System32\drivers\tosrfnds.sys (TOSHIBA Corporation.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.msi.com.tw

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ca.msn.com/defaultf.aspx?lang=fr-ca&OCID=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = fr-ca
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 63 3D B3 EC 29 43 CB 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Bing"
FF - prefs.js..browser.search.defaultthis.engineName: "Megavideolink Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://www.bing.com/search?FORM=IEFM1&q="
FF - prefs.js..browser.search.order.1: "iMesh Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://go.microsoft.com/fwlink/?LinkId=69157"
FF - prefs.js..extensions.enabledItems: ChoiceGuard@Microsoft:2.0
FF - prefs.js..keyword.URL: "http://www.bing.com/search?FORM=IEFM1&q="


FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-08-24 12:53:50 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.0.19\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-08-24 12:53:49 | 000,000,000 | ---D | M]

[2010-08-20 10:18:44 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Extensions
[2010-08-20 10:18:44 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Extensions\IMVUClientXUL@imvu.com
[2010-08-25 14:14:36 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Firefox\Profiles\ka4sw0e5.default\extensions
[2010-06-06 22:02:49 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Firefox\Profiles\ka4sw0e5.default\extensions\@FissaPlugin
[2010-08-24 13:00:23 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Firefox\Profiles\ka4sw0e5.default\extensions\@FissaPlugin-trash
[2010-04-27 16:05:19 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\ordinateur\AppData\Roaming\mozilla\Firefox\Profiles\ka4sw0e5.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010-08-23 20:37:07 | 000,000,000 | ---D | M] -- C:\Users\ordinateur\AppData\Roaming\mozilla\Firefox\Profiles\ka4sw0e5.default\extensions\ChoiceGuard@Microsoft
[2010-08-19 16:13:17 | 000,002,238 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\alot-search.xml
[2010-08-24 13:00:24 | 000,001,819 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\bing.xml
[2010-07-22 20:51:38 | 000,000,929 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\conduit.xml
[2010-04-12 14:01:34 | 000,002,456 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\iMeshWebSearch.xml
[2010-08-21 10:21:12 | 000,010,017 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\mywebsearch.xml
[2010-08-24 20:04:37 | 000,000,000 | ---D | M] -- C:\Program Files\mozilla firefox\extensions
[2010-08-24 12:23:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-08-24 12:23:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-07-17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2006-09-10 07:35:08 | 000,001,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-france.xml
[2008-09-28 03:10:26 | 000,000,757 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-france.xml
[2006-09-10 07:35:08 | 000,000,748 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\MediaDICO-fr.xml
[2008-03-29 09:59:44 | 000,001,426 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-fr.xml
[2006-09-12 14:49:04 | 000,000,652 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\yahoo-france.xml

O1 HOSTS File: ([2006-09-18 17:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (Windows Live Toolbar Helper) - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O4 - HKLM..\Run: [ACU] C:\Program Files\Atheros\ACU.exe (Atheros Communications, Inc.)
O4 - HKLM..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [MGSysCtrl] C:\Program Files\System Control Manager\MGSysCtrl.exe (Mirco-Star International CO., LTD.)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe (Motorola Inc.)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\Run: [OfferBox] C:\Program Files\OfferBox\OfferBox.exe (Secure Digital Services)
O4 - HKCU..\Run: [WeatherEye] C:\Users\ordinateur\AppData\Local\MétéoMédia\MétéoÉclair\WeatherEye.exe (Pelmorex Media Inc.)
O4 - Startup: C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk = C:\Users\ordinateur\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe ()
O4 - Startup: C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sommaire de OneNote.onetoc2 ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoStartMenuMorePrograms = 0
O9 - Extra Button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {038E2507-7A48-41E2-94AD-7F23D199AF4E} http://www.worldwinner.com/games/v54/ze ... engems.cab (ZenGems Control)
O16 - DPF: {1D082E71-DF20-4AAF-863B-596428C49874} http://www.worldwinner.com/games/v50/tpir/tpir.cab (TPIR Control)
O16 - DPF: {58FC4C77-71C2-4972-A8CD-78691AD85158} http://www.worldwinner.com/games/v63/bjattack/bja.cab (BJA Control)
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} http://www.worldwinner.com/games/shared/wwlaunch.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {8F6E7FB2-E56B-4F66-A4E1-9765D2565280} http://www.worldwinner.com/games/launch ... wwload.cab (WorldWinner ActiveX Launcher Control)
O16 - DPF: {935F9B04-0C7B-4454-A391-348C54AD7ADD} http://games.bigfishgames.com/fr_bigcit ... Player.cab (Jolly Bear Games Player)
O16 - DPF: {95A311CD-EC8E-452A-BCEC-B844EB616D03} http://www.worldwinner.com/games/v51/be ... dtwist.cab (BejeweledTwist Control)
O16 - DPF: {BB637307-92FA-47EC-B3F7-6969078673CC} http://www.worldwinner.com/games/v45/royal/royal.cab (Royal Control)
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} http://game.zylom.com/activex/zylomgamesplayer.cab (Zylom Games Player)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinsta ... s-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://www.popcap.com/webgames/popcaploader_v10_fr.cab (PopCapLoader Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL (Microsoft Corporation)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O22 - SharedTaskScheduler: {EC654325-1273-C2A9-2B7C-45D29BCE68FB} - Deskscapes - Reg Error: Key error. File not found
O24 - Desktop WallPaper: C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O24 - Desktop BackupWallPaper: C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows Photo Gallery\Papier peint de la Galerie de photos Windows.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010-08-25 15:04:35 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\HiT-MM
[2010-08-25 15:02:39 | 000,000,000 | ---D | C] -- C:\Program Files\Hidden in Time - Miroir Miroir
[2010-08-25 15:00:20 | 000,000,000 | ---D | C] -- C:\Program Files\bfgclient
[2010-08-25 14:59:29 | 000,000,000 | ---D | C] -- C:\BigFishGamesCache
[2010-08-24 18:46:19 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\Malwarebytes
[2010-08-24 18:46:12 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2010-08-24 18:46:11 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2010-08-24 18:46:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2010-08-24 18:46:10 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2010-08-24 18:35:51 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2010-08-23 20:54:05 | 000,000,000 | ---D | C] -- C:\Windows\System32\WindowsPowerShell
[2010-08-23 20:52:13 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrsmgr.dll
[2010-08-23 20:52:07 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrs.exe
[2010-08-23 20:52:07 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrshost.exe
[2010-08-23 20:52:07 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmprovhost.exe
[2010-08-23 20:52:06 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wsmplpxy.dll
[2010-08-23 20:52:06 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrssrv.dll
[2010-08-23 20:52:01 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wevtfwd.dll
[2010-08-23 20:52:01 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecutil.exe
[2010-08-23 20:52:01 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wecapi.dll
[2010-08-23 20:52:01 | 000,054,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmRes.dll
[2010-08-23 20:52:01 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pwrshplugin.dll
[2010-08-23 20:51:56 | 000,214,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmWmiPl.dll
[2010-08-23 20:51:56 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WsmAuto.dll
[2010-08-23 20:51:55 | 000,252,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManMigrationPlugin.dll
[2010-08-23 20:51:55 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSManHTTPConfig.exe
[2010-08-23 20:51:55 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winrscmd.dll
[2010-08-23 20:20:03 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Local\AskToolbar
[2010-08-23 17:45:02 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\GlarySoft
[2010-08-23 17:41:05 | 000,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2010-08-23 17:40:51 | 000,000,000 | ---D | C] -- C:\Program Files\Glary Utilities
[2010-08-23 17:11:15 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\Yahoo!
[2010-08-23 17:11:05 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010-08-23 16:56:04 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\JAM Software
[2010-08-23 16:56:00 | 000,000,000 | ---D | C] -- C:\Program Files\JAM Software
[2010-08-22 16:06:04 | 000,000,000 | ---D | C] -- C:\ProgramData\MGS
[2010-08-22 16:04:23 | 000,000,000 | ---D | C] -- C:\Microgaming
[2010-08-20 10:21:41 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\Vivox
[2010-08-20 10:18:39 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\IMVU
[2010-08-20 10:18:18 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\IMVUClient
[2010-08-17 22:38:50 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\vlc
[2010-08-17 22:38:12 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010-08-17 06:57:08 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\FIXIO PC Utilities
[2010-08-17 06:56:32 | 000,000,000 | ---D | C] -- C:\Program Files\FIXIO PC Utilities
[2010-08-14 18:30:22 | 000,000,000 | ---D | C] -- C:\ProgramData\SpinTop Games
[2010-08-14 17:18:38 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap
[2010-08-11 17:48:16 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010-08-11 17:48:16 | 000,387,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010-08-11 17:48:16 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010-08-11 17:48:15 | 001,469,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010-08-11 17:48:15 | 000,611,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010-08-11 17:48:15 | 000,164,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010-08-11 17:48:14 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010-08-11 17:48:14 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010-08-11 17:48:14 | 000,109,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesysprep.dll
[2010-08-11 17:48:14 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010-08-11 17:48:14 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010-08-11 17:48:14 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2010-08-11 17:48:14 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010-08-11 17:48:13 | 001,638,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010-08-11 17:48:13 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2010-08-11 17:48:12 | 000,081,920 | ---- | C] (Radius Inc.) -- C:\Windows\System32\iccvid.dll
[2010-08-11 17:48:03 | 002,037,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010-08-11 17:47:59 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll
[2010-08-11 17:47:38 | 003,600,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010-08-11 17:47:36 | 003,548,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010-08-10 16:44:43 | 000,000,000 | ---D | C] -- C:\ProgramData\PopCap Games
[2010-08-06 07:02:34 | 000,000,000 | ---D | C] -- C:\Program Files\Neffy
[2010-08-05 09:29:25 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Roaming\Artogon
[2010-08-01 07:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010-07-27 11:20:12 | 000,000,000 | ---D | C] -- C:\ProgramData\C2E1
[2010-07-27 11:20:05 | 000,000,000 | ---D | C] -- C:\Users\ordinateur\AppData\Local\iMesh
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010-08-25 15:46:49 | 002,621,440 | -HS- | M] () -- C:\Users\ordinateur\NTUSER.DAT
[2010-08-25 15:46:39 | 000,000,428 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{50FDB7BE-F7B3-4434-8537-5A9848A22749}.job
[2010-08-25 15:43:04 | 000,057,818 | ---- | M] () -- C:\ProgramData\nvModes.dat
[2010-08-25 15:43:04 | 000,057,818 | ---- | M] () -- C:\ProgramData\nvModes.001
[2010-08-25 15:03:16 | 000,001,928 | ---- | M] () -- C:\Users\Public\Desktop\Jouer à Hidden in Time - Miroir Miroir.lnk
[2010-08-25 15:03:16 | 000,001,226 | ---- | M] () -- C:\Users\Public\Desktop\Encore plus de jeux.lnk
[2010-08-25 15:00:21 | 000,001,734 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Game Manager.lnk
[2010-08-25 15:00:21 | 000,001,710 | ---- | M] () -- C:\Users\Public\Desktop\Game Manager.lnk
[2010-08-25 15:00:00 | 000,001,096 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4156456547-1668062748-3056625404-1000UA.job
[2010-08-25 13:58:27 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010-08-25 13:58:27 | 000,003,216 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010-08-25 13:00:00 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4156456547-1668062748-3056625404-1000Core.job
[2010-08-25 10:35:27 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010-08-25 09:59:56 | 000,000,887 | ---- | M] () -- C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk
[2010-08-25 09:58:47 | 000,000,322 | ---- | M] () -- C:\Windows\tasks\GlaryInitialize.job
[2010-08-25 09:58:30 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010-08-25 09:57:43 | 000,524,288 | -HS- | M] () -- C:\Users\ordinateur\NTUSER.DAT{c1312fd8-f1be-11de-a431-0024216af67a}.TMContainer00000000000000000001.regtrans-ms
[2010-08-25 09:57:43 | 000,065,536 | -HS- | M] () -- C:\Users\ordinateur\NTUSER.DAT{c1312fd8-f1be-11de-a431-0024216af67a}.TM.blf
[2010-08-25 09:20:31 | 063,808,567 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2010-08-24 23:08:56 | 001,173,484 | -H-- | M] () -- C:\Users\ordinateur\AppData\Local\IconCache.db
[2010-08-24 18:46:14 | 000,000,828 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010-08-24 18:44:33 | 000,002,533 | ---- | M] () -- C:\Users\ordinateur\Desktop\HiJackThis.lnk
[2010-08-24 12:56:40 | 000,002,124 | ---- | M] () -- C:\Users\ordinateur\Desktop\Google Chrome.lnk
[2010-08-24 12:56:40 | 000,002,086 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010-08-24 12:53:51 | 000,001,758 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010-08-24 12:53:51 | 000,001,734 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010-08-23 21:03:44 | 001,495,948 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010-08-23 21:03:44 | 000,679,042 | ---- | M] () -- C:\Windows\System32\perfh00C.dat
[2010-08-23 21:03:44 | 000,595,996 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010-08-23 21:03:44 | 000,126,626 | ---- | M] () -- C:\Windows\System32\perfc00C.dat
[2010-08-23 21:03:44 | 000,104,070 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010-08-23 19:13:54 | 000,279,416 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010-08-23 18:02:36 | 000,061,536 | ---- | M] () -- C:\Users\ordinateur\AppData\Local\GDIPFONTCACHEV1.DAT
[2010-08-23 17:14:54 | 000,073,866 | ---- | M] () -- C:\Users\ordinateur\Documents\cc_20100823_171439.reg
[2010-08-17 09:47:05 | 002,359,296 | -HS- | M] () -- C:\Users\ordinateur\ntuser.dat_previous
[2010-08-16 17:05:28 | 000,003,656 | -HS- | M] () -- C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sommaire de OneNote.onetoc2
[2010-08-16 10:38:45 | 000,000,142 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Facebook.URL
[2010-08-07 11:29:08 | 000,001,657 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\AVG Free 9.0.lnk
[2010-08-06 16:04:08 | 000,002,639 | ---- | M] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\CameraRecorder.lnk
[2010-08-05 17:23:39 | 000,000,036 | ---- | M] () -- C:\Users\ordinateur\AppData\Local\housecall.guid.cache
[3 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\*.tmp files -> C:\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010-08-25 15:03:16 | 000,001,928 | ---- | C] () -- C:\Users\Public\Desktop\Jouer à Hidden in Time - Miroir Miroir.lnk
[2010-08-25 15:03:16 | 000,001,226 | ---- | C] () -- C:\Users\Public\Desktop\Encore plus de jeux.lnk
[2010-08-25 15:00:21 | 000,001,734 | ---- | C] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Game Manager.lnk
[2010-08-25 15:00:21 | 000,001,710 | ---- | C] () -- C:\Users\Public\Desktop\Game Manager.lnk
[2010-08-24 18:46:14 | 000,000,828 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2010-08-24 18:35:52 | 000,002,533 | ---- | C] () -- C:\Users\ordinateur\Desktop\HiJackThis.lnk
[2010-08-24 12:56:40 | 000,002,124 | ---- | C] () -- C:\Users\ordinateur\Desktop\Google Chrome.lnk
[2010-08-24 12:56:40 | 000,002,086 | ---- | C] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2010-08-24 12:55:38 | 000,001,096 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4156456547-1668062748-3056625404-1000UA.job
[2010-08-24 12:55:37 | 000,001,044 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4156456547-1668062748-3056625404-1000Core.job
[2010-08-24 12:53:51 | 000,001,758 | ---- | C] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010-08-24 12:53:51 | 000,001,734 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2010-08-23 20:51:57 | 000,201,184 | ---- | C] () -- C:\Windows\System32\winrm.vbs
[2010-08-23 20:51:57 | 000,004,675 | ---- | C] () -- C:\Windows\System32\wsmanconfig_schema.xml
[2010-08-23 20:51:57 | 000,002,426 | ---- | C] () -- C:\Windows\System32\WsmTxt.xsl
[2010-08-23 17:40:56 | 000,000,322 | ---- | C] () -- C:\Windows\tasks\GlaryInitialize.job
[2010-08-23 17:14:43 | 000,073,866 | ---- | C] () -- C:\Users\ordinateur\Documents\cc_20100823_171439.reg
[2010-08-20 10:19:11 | 000,000,887 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\IMVU.lnk
[2010-08-16 17:05:28 | 000,003,656 | -HS- | C] () -- C:\Users\ordinateur\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sommaire de OneNote.onetoc2
[2010-08-07 11:32:43 | 000,001,897 | ---- | C] () -- C:\Users\ordinateur\Documents\Adobe Reader 9.lnk
[2010-08-07 11:32:29 | 000,001,121 | ---- | C] () -- C:\Users\ordinateur\Documents\MétéoÉclair.lnk
[2010-08-07 11:29:08 | 000,001,657 | ---- | C] () -- C:\Users\ordinateur\Application Data\Microsoft\Internet Explorer\Quick Launch\AVG Free 9.0.lnk
[2010-08-05 17:23:39 | 000,000,036 | ---- | C] () -- C:\Users\ordinateur\AppData\Local\housecall.guid.cache
[2010-07-22 11:52:56 | 000,000,467 | ---- | C] () -- C:\Program Files\nonenone.bat
[2010-07-13 19:45:05 | 000,262,216 | ---- | C] () -- C:\Windows\System32\IPTests.dll
[2010-07-08 19:25:32 | 000,000,680 | ---- | C] () -- C:\Users\ordinateur\AppData\Local\d3d9caps.dat
[2010-02-15 08:32:53 | 000,000,140 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\top_ten
[2010-02-15 08:32:35 | 000,000,306 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\profile1
[2010-02-15 08:32:35 | 000,000,295 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\profile3
[2010-02-15 08:32:35 | 000,000,295 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\profile2
[2010-02-15 08:32:35 | 000,000,063 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\profiles
[2010-01-13 19:26:17 | 000,000,290 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2010-01-11 15:22:54 | 000,005,817 | ---- | C] () -- C:\Windows\mgxoschk.ini
[2010-01-11 12:31:56 | 000,000,040 | ---- | C] () -- C:\Windows\NAVIGMA.INI
[2009-12-25 21:27:58 | 000,000,104 | ---- | C] () -- C:\ProgramData\CameraRecorder.ini
[2009-12-23 08:48:37 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009-12-19 21:13:20 | 000,007,168 | ---- | C] () -- C:\Users\ordinateur\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-12-19 12:49:59 | 000,076,407 | ---- | C] () -- C:\Users\ordinateur\AppData\Roaming\Smiley.ico
[2009-03-05 15:07:06 | 000,057,818 | ---- | C] () -- C:\ProgramData\nvModes.dat
[2008-04-04 10:19:13 | 000,000,000 | ---- | C] () -- C:\Windows\tosOBEX.INI
[2008-04-04 06:51:35 | 000,057,818 | ---- | C] () -- C:\ProgramData\nvModes.001
[2007-12-21 19:46:32 | 000,118,784 | ---- | C] () -- C:\Windows\System32\TosBtAcc.dll
[2006-11-02 08:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006-11-02 03:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2005-07-23 00:30:18 | 000,065,536 | ---- | C] () -- C:\Windows\System32\TosCommAPI.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 229 bytes -> C:\ProgramData\TEMP:15265C4F
@Alternate Data Stream - 209 bytes -> C:\ProgramData\TEMP:569CEE83
@Alternate Data Stream - 207 bytes -> C:\ProgramData\TEMP:ED221572
@Alternate Data Stream - 198 bytes -> C:\ProgramData\TEMP:8D5A0C4E
@Alternate Data Stream - 143 bytes -> C:\ProgramData\TEMP:9331E9D2
@Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:69D59C23
@Alternate Data Stream - 139 bytes -> C:\ProgramData\TEMP:3651A580
@Alternate Data Stream - 135 bytes -> C:\ProgramData\TEMP:9ACE4E8E
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:8944C195
@Alternate Data Stream - 134 bytes -> C:\ProgramData\TEMP:4EE323A4
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:5EC637CB
@Alternate Data Stream - 133 bytes -> C:\ProgramData\TEMP:3DF63AD7
@Alternate Data Stream - 132 bytes -> C:\ProgramData\TEMP:43860CE8
@Alternate Data Stream - 122 bytes -> C:\ProgramData\TEMP:C4AB79AE
@Alternate Data Stream - 121 bytes -> C:\ProgramData\TEMP:C07A6A6B
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:E4E43015
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:92D91D7E
@Alternate Data Stream - 120 bytes -> C:\ProgramData\TEMP:4F8B72C9
@Alternate Data Stream - 119 bytes -> C:\ProgramData\TEMP:A4076A3B
@Alternate Data Stream - 114 bytes -> C:\ProgramData\TEMP:D93AABC7
@Alternate Data Stream - 113 bytes -> C:\ProgramData\TEMP:FBE5FDB9
@Alternate Data Stream - 108 bytes -> C:\ProgramData\TEMP:E07EA07E
< End of report >
voila

[bernard53]

tu as fait une erreur dans la procédure de suppression, reprends la manip tranquillement s.t.p

[roro54]

oui j,avait fait une erreur la je pense que ces bon te vraiment fort merci beaucoup. All processes killed
========== OTL ==========
Service Norton Internet Security stopped successfully!
Service Norton Internet Security deleted successfully!
File C:\Program Files\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe File not found not found.
Service USBCCID stopped successfully!
Service USBCCID deleted successfully!
File C:\Windows\System32\DRIVERS\Rts5161ccid.sys File not found not found.
Service SRTSPX stopped successfully!
Service SRTSPX deleted successfully!
File C:\Windows\System32\drivers\NIS\1000000.07D\SRTSPX.SYS File not found not found.
Service SRTSP stopped successfully!
Service SRTSP deleted successfully!
File C:\Windows\System32\drivers\NIS\1000000.07D\SRTSP.SYS File not found not found.
Service Rts516xIR stopped successfully!
Service Rts516xIR deleted successfully!
File C:\Windows\System32\DRIVERS\Rts516xIR.sys File not found not found.
Service RSUSBSTOR stopped successfully!
Service RSUSBSTOR deleted successfully!
File C:\Windows\System32\Drivers\RTS5121.sys File not found not found.
Service NwlnkFwd stopped successfully!
Service NwlnkFwd deleted successfully!
File C:\Windows\System32\DRIVERS\nwlnkfwd.sys File not found not found.
Service NwlnkFlt stopped successfully!
Service NwlnkFlt deleted successfully!
File C:\Windows\System32\DRIVERS\nwlnkflt.sys File not found not found.
Service NAVEX15 stopped successfully!
Service NAVEX15 deleted successfully!
File C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVEX15.SYS File not found not found.
Service NAVENG stopped successfully!
Service NAVENG deleted successfully!
File C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20080829.024\NAVENG.SYS File not found not found.
Service IpInIp stopped successfully!
Service IpInIp deleted successfully!
File C:\Windows\System32\DRIVERS\ipinip.sys File not found not found.
C:\Users\ordinateur\AppData\Roaming\Mozilla\FireFox\Profiles\ka4sw0e5.default\searchplugins\mywebsearch.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
C:\Program Files\Ask.com\GenericAskToolbar.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}\ deleted successfully.
C:\Program Files\Windows Live\Toolbar\wltcore.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ deleted successfully.
File C:\Program Files\Windows Live\Toolbar\wltcore.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
File C:\Program Files\Windows Live\Toolbar\wltcore.dll not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
File C:\Program Files\Ask.com\GenericAskToolbar.dll not found.
Starting removal of ActiveX control {DF780F87-FF2B-4DF8-92D0-73DB16A1543A}
C:\Windows\Downloaded Program Files\popcaploader.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{DF780F87-FF2B-4DF8-92D0-73DB16A1543A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DF780F87-FF2B-4DF8-92D0-73DB16A1543A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{DF780F87-FF2B-4DF8-92D0-73DB16A1543A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DF780F87-FF2B-4DF8-92D0-73DB16A1543A}\ not found.
C:\Users\ordinateur\AppData\Local\AskToolbar\Downloaded Program Files\temp folder moved successfully.
C:\Users\ordinateur\AppData\Local\AskToolbar\Downloaded Program Files folder moved successfully.
C:\Users\ordinateur\AppData\Local\AskToolbar folder moved successfully.
C:\Program Files\Ask.com folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\savedgames\insaniquarium folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\savedgames folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\sounds folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\properties folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\levels folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\images\upsell folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\images\mainmenu folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\images\levelselect folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\images\levels folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\images\ip folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\images\interface folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\images\game folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\images\dialog folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\images folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\fonts folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle\characters folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\peggle folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\insaniquarium\sounds\CVS folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\insaniquarium\sounds folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\insaniquarium\images\upsell\CVS folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\insaniquarium\images\upsell folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\insaniquarium\images\CVS folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\insaniquarium\images folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\insaniquarium\data folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\insaniquarium folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\hammerheads\sounds folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\hammerheads\properties folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\hammerheads\images\gui\in-game folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\hammerheads\images\gui folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\hammerheads\images folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\hammerheads\gnomedata folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\hammerheads\fonts folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\hammerheads\boards folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\hammerheads folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\chuzzle\Upsells folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\chuzzle\Textures\Backdrops folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\chuzzle\Textures folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\chuzzle\Sounds folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\chuzzle\Fonts folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\chuzzle\Data folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR\chuzzle folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader\PopCapFR folder moved successfully.
C:\ProgramData\PopCap\PopCapLoader folder moved successfully.
C:\ProgramData\PopCap folder moved successfully.
C:\ProgramData\PopCap Games\BejeweledBlitz\users\_temp\webcache folder moved successfully.
C:\ProgramData\PopCap Games\BejeweledBlitz\users\_temp folder moved successfully.
C:\ProgramData\PopCap Games\BejeweledBlitz\users\Rolande Morin\webcache folder moved successfully.
C:\ProgramData\PopCap Games\BejeweledBlitz\users\Rolande Morin folder moved successfully.
C:\ProgramData\PopCap Games\BejeweledBlitz\users folder moved successfully.
C:\ProgramData\PopCap Games\BejeweledBlitz folder moved successfully.
C:\ProgramData\PopCap Games\.system\.downloading folder moved successfully.
C:\ProgramData\PopCap Games\.system folder moved successfully.
C:\ProgramData\PopCap Games folder moved successfully.
========== FILES ==========
File\Folder C:\Users\ordinateur\AppData\Local\AskToolbar not found.
File\Folder C:\Program Files\Ask.com not found.
File\Folder C:\ProgramData\PopCap not found.
File\Folder C:\ProgramData\PopCap Games not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrateur
->Temp folder emptied: 36050375 bytes
->Temporary Internet Files folder emptied: 1532236 bytes
->Java cache emptied: 25802292 bytes
->FireFox cache emptied: 85910565 bytes
->Flash cache emptied: 3309 bytes

User: Administrator

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: ordinateur
->Temp folder emptied: 78933809 bytes
->Temporary Internet Files folder emptied: 6665129 bytes
->Java cache emptied: 271978086 bytes
->FireFox cache emptied: 43203267 bytes
->Google Chrome cache emptied: 0 bytes
->Apple Safari cache emptied: 4682752 bytes
->Flash cache emptied: 1963189 bytes

User: Public

%systemdrive% .tmp files removed: 2 bytes
%systemroot% .tmp files removed: 2622 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 522416 bytes
RecycleBin emptied: 786258 bytes

Total Files Cleaned = 532,00 mb


OTL by OldTimer - Version 3.2.10.0 log created on 08262010_072830

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

[bernard53]

Ok très bien pour le rapport.

Par contre il faut mettre le rapport a suivre ton premier post.

topic14213.html

Fait un scan complet avec Ton antivirus et dis moi si tout va bien.