OTL

OTL logfile created on: 19/03/2011 12:27:16 - Run 2
OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Julien\Desktop

64bit- Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy
4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 65,00% Memor
y free
7,00 Gb Paging File | 6,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Fil
es (x86)
Drive C: | 442,83 Gb Total Space | 295,56 Gb Free Space | 66,74% Space Free | Pa
rtition Type: NTFS
Drive D: | 22,64 Gb Total Space | 3,30 Gb Free Space | 14,60% Space Free | Parti
tion Type: NTFS
Drive E: | 99,02 Mb Total Space | 92,75 Mb Free Space | 93,66% Space Free | Part
ition Type: FAT32
Drive H: | 7,60 Gb Total Space | 6,35 Gb Free Space | 83,45% Space Free | Partit
ion Type: FAT32
Computer Name: JULIEN-PC | User Name: Julien | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitel
ist: On | File Age = 30 Days
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - C:\Users\Julien\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporatio
n)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe (Hewlett-Pac
kard Company)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Program Files (x86)\Winamp\winampa.exe (Nullsoft, Inc.)
PRC - C:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin (OpenOffice.or
g)
PRC - C:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe (OpenOffice.or
g)
PRC - C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
PRC - C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe (DeviceVM, Inc.)
PRC - C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe (Bro
adcom Corporation.)
PRC - C:\Windows\SysWOW64\ezSharedSvcHost.exe (EasyBits Software AS)
[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - C:\Users\Julien\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6
.0.7600.16661_none_420fe3fa2b8113bd\comctl32.dll (Microsoft Corporation)
MOD - C:\Windows\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
MOD - C:\Windows\SysWOW64\imagehlp.dll (Microsoft Corporation)
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - (AMD External Events Utility) -- C:\Windows\SysNative\atiesr
xx.exe (AMD)
SRV:[b]64bit:[/b] - (STacSV) -- C:\Windows\SysNative\DriverStore\FileRepository\
stwrt64.inf_amd64_neutral_471277d5d45019ea\stacsv64.exe (IDT, Inc.)
SRV:[b]64bit:[/b] - (btwdins) -- C:\Program Files\WIDCOMM\Bluetooth Software\btw
dins.exe (Broadcom Corporation.)
SRV:[b]64bit:[/b] - (HP Wireless Assistant Service) -- C:\Program Files\Hewlett-
Packard\HP Wireless Assistant\HPWA_Service.exe (Hewlett-Packard)
SRV:[b]64bit:[/b] - (HPWMISVC) -- C:\Program Files\Hewlett-Packard\HP Quick Laun
ch\HPWMISVC.exe ()
SRV:[b]64bit:[/b] - (WinDefend) -- C:\Program Files\Windows Defender\mpsvc.dll (
Microsoft Corporation)
SRV:[b]64bit:[/b] - (hpsrv) -- C:\Windows\SysNative\hpservice.exe (Hewlett-Packa
rd)
SRV:[b]64bit:[/b] - (AESTFilters) -- C:\Windows\SysNative\DriverStore\FileReposi
tory\stwrt64.inf_amd64_neutral_471277d5d45019ea\AESTSr64.exe (Andrea Electronics
Corporation)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamS
ervice.exe (Valve Corporation)
SRV - (BBSvc) -- C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE (Microsoft C
orporation.)
SRV - (SeaPort) -- C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE (Microso
ft Corporation)
SRV - (AntiVirService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.e
xe (Avira GmbH)
SRV - (HPDrvMntSvc.exe) -- C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMn
tSvc.exe (Hewlett-Packard Company)
SRV - (AntiVirSchedulerService) -- C:\Program Files (x86)\Avira\AntiVir Desktop\
sched.exe (Avira GmbH)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.
0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (DvmMDES) -- C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe (Devic
eVM, Inc.)
SRV - (GameConsoleService) -- C:\Program Files (x86)\HP Games\HP Game Console\Ga
meConsoleService.exe (WildTangent, Inc.)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.
0.50727\mscorsvw.exe (Microsoft Corporation)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - (avgntflt) -- C:\Windows\SysNative\drivers\avgntflt.sys (Avi
ra GmbH)
DRV:[b]64bit:[/b] - (sptd) -- C:\Windows\SysNative\drivers\sptd.sys ()
DRV:[b]64bit:[/b] - (avipbb) -- C:\Windows\SysNative\drivers\avipbb.sys (Avira G
mbH)
DRV:[b]64bit:[/b] - (BCM43XX) -- C:\Windows\SysNative\drivers\BCMWL664.SYS (Broa
dcom Corporation)
DRV:[b]64bit:[/b] - (amdkmdag) -- C:\Windows\SysNative\drivers\atipmdag.sys (ATI
Technologies Inc.)
DRV:[b]64bit:[/b] - (amdkmdap) -- C:\Windows\SysNative\drivers\atikmpag.sys (Adv
anced Micro Devices, Inc.)
DRV:[b]64bit:[/b] - (SynTP) -- C:\Windows\SysNative\drivers\SynTP.sys (Synaptics
Incorporated)
DRV:[b]64bit:[/b] - (RSUSBSTOR) -- C:\Windows\SysNative\drivers\RtsUStor.sys (Re
altek Semiconductor Corp.)
DRV:[b]64bit:[/b] - (btwavdt) -- C:\Windows\SysNative\drivers\btwavdt.sys (Broad
com Corporation.)
DRV:[b]64bit:[/b] - (btwaudio) -- C:\Windows\SysNative\drivers\btwaudio.sys (Bro
adcom Corporation.)
DRV:[b]64bit:[/b] - (btwl2cap) -- C:\Windows\SysNative\drivers\btwl2cap.sys (Bro
adcom Corporation.)
DRV:[b]64bit:[/b] - (btwrchid) -- C:\Windows\SysNative\drivers\btwrchid.sys (Bro
adcom Corporation.)
DRV:[b]64bit:[/b] - (btwampfl) -- C:\Windows\SysNative\drivers\btwampfl.sys (Bro
adcom Corporation.)
DRV:[b]64bit:[/b] - (STHDA) -- C:\Windows\SysNative\drivers\stwrt64.sys (IDT, In
c.)
DRV:[b]64bit:[/b] - (AtiHdmiService) -- C:\Windows\SysNative\drivers\AtiHdmi.sys
(ATI Technologies, Inc.)
DRV:[b]64bit:[/b] - (usbfilter) -- C:\Windows\SysNative\drivers\usbfilter.sys (A
dvanced Micro Devices)
DRV:[b]64bit:[/b] - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Real
tek )
DRV:[b]64bit:[/b] - (DVMIO) -- C:\Windows\SysNative\drivers\dvmio.sys (DeviceVM,
Inc.)
DRV:[b]64bit:[/b] - (AtiPcie) AMD PCI Express (3GIO) -- C:\Windows\SysNative\dri
vers\AtiPcie.sys (Advanced Micro Devices Inc.)
DRV:[b]64bit:[/b] - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advan
ced Micro Devices)
DRV:[b]64bit:[/b] - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advan
ced Micro Devices)
DRV:[b]64bit:[/b] - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Tec
hnologies Inc.)
DRV:[b]64bit:[/b] - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI
Corporation)
DRV:[b]64bit:[/b] - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett
-Packard Company)
DRV:[b]64bit:[/b] - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Pro
mise Technology)
DRV:[b]64bit:[/b] - (sdbus) -- C:\Windows\SysNative\drivers\sdbus.sys (Microsoft
Corporation)
DRV:[b]64bit:[/b] - (hpdskflt) -- C:\Windows\SysNative\drivers\hpdskflt.sys (Hew
lett-Packard)
DRV:[b]64bit:[/b] - (Accelerometer) -- C:\Windows\SysNative\drivers\Acceleromete
r.sys (Hewlett-Packard)
DRV:[b]64bit:[/b] - (SrvHsfV92) -- C:\Windows\SysNative\drivers\VSTDPV6.SYS (Con
exant Systems, Inc.)
DRV:[b]64bit:[/b] - (SrvHsfWinac) -- C:\Windows\SysNative\drivers\VSTCNXT6.SYS (
Conexant Systems, Inc.)
DRV:[b]64bit:[/b] - (SrvHsfHDA) -- C:\Windows\SysNative\drivers\VSTAZL6.SYS (Con
exant Systems, Inc.)
DRV:[b]64bit:[/b] - (Ntfs) -- C:\Windows\SysNative\wbem\ntfs.mof ()
DRV:[b]64bit:[/b] - (igfx) -- C:\Windows\SysNative\drivers\igdkmd64.sys (Intel C
orporation)
DRV:[b]64bit:[/b] - (yukonw7) -- C:\Windows\SysNative\drivers\yk62x64.sys (Marve
ll)
DRV:[b]64bit:[/b] - (netw5v64) Intel(R) -- C:\Windows\SysNative\drivers\netw5v64
.sys (Intel Corporation)
DRV:[b]64bit:[/b] - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom
Corporation)
DRV:[b]64bit:[/b] - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadc
om Corporation)
DRV:[b]64bit:[/b] - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Bro
adcom Corporation)
DRV:[b]64bit:[/b] - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hau
ppauge Computer Works, Inc.)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.
uk.msn.com/HPNOT/3
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysW
OW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn
.com/HPNOT/3
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.
uk.msn.com/HPNOT/3
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn
.com/HPNOT/3
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEna
ble" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.startup.homepage: "http://www.orange.fr/portail"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6
.0.20
.0.21
.0.22
.0.23
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1
.3.3
.0.24
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Components: C:\Pro
gram Files (x86)\Mozilla Firefox\components [2011/03/12 13:39:37 | 000,000,000 |
---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.15\extensions\\Plugins: C:\Progra
m Files (x86)\Mozilla Firefox\plugins [2011/03/12 13:39:35 | 000,000,000 | ---D
| M]
[2011/03/12 13:39:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Julie
n\AppData\Roaming\mozilla\Extensions
[2011/03/18 09:32:08 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Julie
n\AppData\Roaming\mozilla\Firefox\Profiles\nzt8knjz.default\extensions
[2011/03/12 13:42:50 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Users\Julien
\AppData\Roaming\mozilla\Firefox\Profiles\nzt8knjz.default\extensions\{d10d0bf8-
f5b5-c8b4-a8b2-2b9879e08c5d}
[2011/03/13 02:34:17 | 000,000,000 | ---D | M] (No name found) -- C:\Program Fil
es (x86)\Mozilla Firefox\extensions
[2010/10/02 16:56:13 | 000,000,000 | ---D | M] (Java Console) -- C:\Program File
s (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/02/02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Pr
ogram Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
[2010/07/12 17:33:56 | 000,012,800 | ---- | M] (Nullsoft, Inc.) -- C:\Program Fi
les (x86)\Mozilla Firefox\plugins\npwachk.dll
[2011/03/03 18:23:50 | 000,001,516 | ---- | M] () -- C:\Program Files (x86)\Mozi
lla Firefox\searchplugins\amazon-france.xml
lla Firefox\searchplugins\cnrtl-tlfi-fr.xml
lla Firefox\searchplugins\eBay-france.xml
lla Firefox\searchplugins\wikipedia-fr.xml
lla Firefox\searchplugins\yahoo-france.xml
O1 HOSTS File: ([2009/06/10 22:00:26 | 000,000,824 | ---- | M]) - C:\Windows\Sys
Native\drivers\etc\hosts
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value fo
und.
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Progra
m Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\P
rogram Files (x86)\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O4:[b]64bit:[/b] - HKLM..\Run: [HP Quick Launch] C:\Program Files\Hewlett-Packar
d\HP Quick Launch\HPMSGSVC.exe (Hewlett-Packard Company)
O4:[b]64bit:[/b] - HKLM..\Run: [HPToneControl] C:\Program Files\Hewlett-Packard\
HPToneControl\HPTonectl.exe (Hewlett-Packard )
O4:[b]64bit:[/b] - HKLM..\Run: [HPWirelessAssistant] C:\Program Files\Hewlett-Pa
ckard\HP Wireless Assistant\DelayedAppStarter.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [SmartMenu] C:\Program Files\Hewlett-Packard\HP M
ediaSmart\SmartMenu.exe ()
O4:[b]64bit:[/b] - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.ex
e (IDT, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Avira GmbH)
O4 - HKLM..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ez
Recover.exe (EasyBits Software AS)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core
-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files (x86)\Winamp\winampa.exe (Nullso
ft, Inc.)
O4 - HKCU..\Run: [DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DT
Lite.exe (DT Soft Ltd)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\Steam.exe (Valve Corporati
on)
O4 - Startup: C:\Users\Julien\AppData\Roaming\Microsoft\Windows\Start Menu\Progr
ams\Startup\OpenOffice.org 3.2.lnk = C:\Program Files (x86)\OpenOffice.org 3\pro
gram\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveD
esktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveD
esktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShe
llExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentProm
ptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentProm
ptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: HideFastUse
rSwitching = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableLock
Workstation = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableChan
gePassword = 0
O8:[b]64bit:[/b] - Extra context menu item: Envoyer au périphérique &Bluetooth... -
C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8:[b]64bit:[/b] - Extra context menu item: Envoyer l'&image au périphérique Bluetoo
th... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O8 - Extra context menu item: Envoyer au périphérique &Bluetooth... - C:\Program Fil
es\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O8 - Extra context menu item: Envoyer l'&image au périphérique Bluetooth... - C:\Pro
gram Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9:[b]64bit:[/b] - Extra Button: @C:\Program Files\WIDCOMM\Bluetooth Software\bt
rez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOM
M\Bluetooth Software\btsendto_ie.htm ()
O9:[b]64bit:[/b] - Extra 'Tools' menuitem : @C:\Program Files\WIDCOMM\Bluetooth
Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program
Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra Button: Envoyer à Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} -
C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm ()
O9 - Extra 'Tools' menuitem : Envoyer au périphérique &Bluetooth... - {CCA281CA-C863
-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_
ie.htm ()
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6
.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 19
2.168.1.1
O18:[b]64bit:[/b] - Protocol\Handler\livecall {828030A1-22C1-4009-854F-8E3052023
13F} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec2
94} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F81057
54} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\msnim {828030A1-22C1-4009-854F-8E305202313F
} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1
653C0} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E9
45} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation
)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.
exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe)
- C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (
Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C
LSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File n
ot found.
O28 - HKLM ShellExecuteHooks: {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Window
s\SysWOW64\ezUPBHook.dll (EasyBits Software Corp.)
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{233873a3-ce28-11df-9861-002713dce4b0}\Shell - "" = AutoRun
O33 - MountPoints2\{233873a3-ce28-11df-9861-002713dce4b0}\Shell\AutoRun\command
- "" = G:\autoplay.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/col

or]
[2011/03/18 18:05:12 | 000,000,000 | ---D | C] -- C:\Users\Julien\AppData\Roamin
g\Microsoft\Windows\Start Menu\Programs\Périphériques Bluetooth
[2011/03/18 12:46:52 | 000,000,000 | R--D | C] -- C:\32788R22FWJFW
[2011/03/15 14:39:25 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Users\Juli
en\Desktop\OTL.exe
[2011/03/14 23:04:20 | 000,000,000 | -HSD | C] -- C:\Windows\SysWow64\%APPDATA%
g\Malwarebytes
[2011/03/14 22:43:25 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\
Windows\SysWow64\drivers\mbamswissarmy.sys
[2011/03/14 22:43:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windo
ws\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/03/14 22:43:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/03/14 22:43:20 | 000,024,152 | ---- | C] (Malwarebytes Corporation) -- C:\
Windows\SysNative\drivers\mbam.sys
[2011/03/14 22:43:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malware
bytes' Anti-Malware
[2011/03/13 02:34:58 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common
Files\Java
[2011/03/13 02:34:15 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Wi
ndows\SysWow64\javaws.exe
ndows\SysWow64\javaw.exe
ndows\SysWow64\java.exe
[2011/03/13 01:18:22 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
ws\Start Menu\Programs\Mozilla Firefox
[2011/03/12 12:01:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Spybot - Search
& Destroy
[2011/03/09 07:25:06 | 001,540,608 | ---- | C] (Microsoft Corporation) -- C:\Win
dows\SysNative\DWrite.dll
dows\SysWow64\DWrite.dll
dows\SysNative\d2d1.dll
dows\SysWow64\d2d1.dll
dows\SysNative\CPFilters.dll
dows\SysNative\EncDec.dll
dows\SysWow64\CPFilters.dll
dows\SysNative\sbe.dll
dows\SysWow64\EncDec.dll
dows\SysNative\mpg2splt.ax
dows\SysWow64\sbe.dll
dows\SysWow64\mpg2splt.ax
dows\SysNative\mstscax.dll
dows\SysWow64\mstscax.dll
dows\SysNative\mstsc.exe
dows\SysWow64\mstsc.exe
[2011/03/08 19:56:51 | 000,000,000 | ---D | C] -- C:\Users\Julien\Documents\EA G
ames
[2011/03/08 19:54:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Electronic Arts
[2011/03/08 19:46:44 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\EA Game
s
ws\Start Menu\Programs\NVIDIA Corporation
[2011/03/08 19:44:51 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA T
echnologies
[2011/03/08 19:44:51 | 000,000,000 | ---D | C] -- C:\Windows\SysWow64\AGEIA
[2011/03/08 19:44:36 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common
Files\Wise Installation Wizard
[2011/03/08 19:35:09 | 000,000,000 | ---D | C] -- C:\Users\Julien\Documents\Film
s
g\teamspeak2
dows\SysWow64\lhacm.acm
ws\Start Menu\Programs\Teamspeak2 RC2
[2011/03/03 20:53:56 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Teamspe
ak2_RC2
g\LolClient
dows\SysWow64\D3DX9_39.dll
dows\SysWow64\D3DCompiler_39.dll
dows\SysWow64\d3dx10_39.dll
ws\Start Menu\Programs\Riot Games
[2011/03/01 11:29:06 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\League
of Legends
[2011/03/01 11:28:53 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Leg
dows\SysNative\XpsPrint.dll
dows\SysNative\XpsGdiConverter.dll
dows\SysWow64\XpsPrint.dll
dows\SysWow64\XpsGdiConverter.dll
[2011/02/22 13:59:23 | 000,000,000 | ---D | C] -- C:\Users\Julien\Desktop\Crysis
2 _BETA
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2011/03/19 12:20:55 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2011/03/19 12:19:29 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296F
B0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/03/19 12:19:29 | 000,023,248 | -H-- | M] () -- C:\Windows\SysNative\7B296F
B0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/03/19 12:11:52 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/03/19 12:11:44 | 3015,884,800 | -HS- | M] () -- C:\hiberfil.sys
[2011/03/19 00:46:19 | 000,007,600 | ---- | M] () -- C:\Users\Julien\AppData\Loc
al\Resmon.ResmonCfg
[2011/03/18 09:32:00 | 000,879,069 | ---- | M] () -- C:\Users\Julien\Desktop\Sec
urityCheck.exe
[2011/03/18 09:31:59 | 004,289,814 | ---- | M] () -- C:\Users\Julien\Desktop\Com
boFix.exe
[2011/03/18 09:20:41 | 406,616,827 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2011/03/16 11:23:45 | 000,001,998 | ---- | M] () -- C:\Users\Public\Desktop\Jou
er à League of Legends.lnk
[2011/03/15 14:39:44 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Juli
en\Desktop\OTL.exe
[2011/03/14 22:43:25 | 000,001,113 | ---- | M] () -- C:\Users\Public\Desktop\Mal
warebytes' Anti-Malware.lnk
[2011/03/14 22:16:17 | 000,126,586 | ---- | M] () -- C:\Users\Julien\Desktop\Tom
sDownloader15149.exe
[2011/03/14 19:23:03 | 000,051,593 | ---- | M] () -- C:\Users\Julien\Desktop\sex
ytrollface.jpg
[2011/03/14 13:19:23 | 000,008,432 | ---- | M] () -- C:\Users\Julien\untitled1_M
AS.bak
[2011/03/13 17:34:24 | 001,562,454 | ---- | M] () -- C:\Windows\SysNative\PerfSt
ringBackup.INI
[2011/03/13 17:34:24 | 000,708,852 | ---- | M] () -- C:\Windows\SysNative\perfh0
0C.dat
[2011/03/13 17:34:24 | 000,620,150 | ---- | M] () -- C:\Windows\SysNative\perfh0
09.dat
[2011/03/13 17:34:24 | 000,132,834 | ---- | M] () -- C:\Windows\SysNative\perfc0
0C.dat
[2011/03/13 17:34:24 | 000,108,332 | ---- | M] () -- C:\Windows\SysNative\perfc0
09.dat
[2011/03/12 13:39:39 | 000,001,967 | ---- | M] () -- C:\Users\Julien\Application
Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/03/12 13:39:39 | 000,001,943 | ---- | M] () -- C:\Users\Public\Desktop\Moz
illa Firefox.lnk
[2011/03/08 19:53:41 | 000,002,181 | ---- | M] () -- C:\Users\Public\Desktop\Mir
ror's Edge™.lnk
[2011/03/08 07:15:24 | 000,000,336 | ---- | M] () -- C:\Windows\tasks\HPCeeSched
uleForJulien.job
[2011/03/03 20:54:02 | 000,034,064 | ---- | M] (Microsoft Corporation) -- C:\Win
dows\SysWow64\lhacm.acm
[2011/03/03 20:53:59 | 000,000,982 | ---- | M] () -- C:\Users\Julien\Desktop\Tea
mspeak 2 RC2.lnk
[2011/02/21 21:29:50 | 000,001,854 | ---- | M] () -- C:\Users\Julien\AppData\Roa
ming\GhostObjGAFix.xml
dows\SysNative\DWrite.dll
dows\SysNative\d2d1.dll
dows\SysWow64\DWrite.dll
dows\SysWow64\d2d1.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2011/03/19 12:20:55 | 000,000,512 | ---- | C] () -- C:\PhysicalMBR.bin
[2011/03/18 09:30:57 | 000,879,069 | ---- | C] () -- C:\Users\Julien\Desktop\Sec
urityCheck.exe
[2011/03/18 09:27:56 | 004,289,814 | ---- | C] () -- C:\Users\Julien\Desktop\Com
boFix.exe
[2011/03/15 12:51:44 | 000,007,600 | ---- | C] () -- C:\Users\Julien\AppData\Loc
al\Resmon.ResmonCfg
[2011/03/14 22:43:25 | 000,001,113 | ---- | C] () -- C:\Users\Public\Desktop\Mal
warebytes' Anti-Malware.lnk
[2011/03/14 22:16:16 | 000,126,586 | ---- | C] () -- C:\Users\Julien\Desktop\Tom
sDownloader15149.exe
[2011/03/14 19:23:00 | 000,051,593 | ---- | C] () -- C:\Users\Julien\Desktop\sex
ytrollface.jpg
[2011/03/14 13:19:23 | 000,008,432 | ---- | C] () -- C:\Users\Julien\untitled1_M
AS.bak
[2011/03/12 13:39:39 | 000,001,967 | ---- | C] () -- C:\Users\Julien\Application
Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2011/03/12 13:39:39 | 000,001,943 | ---- | C] () -- C:\Users\Public\Desktop\Moz
illa Firefox.lnk
[2011/03/08 19:53:41 | 000,002,181 | ---- | C] () -- C:\Users\Public\Desktop\Mir
ror's Edge™.lnk
[2011/03/07 21:59:57 | 000,000,336 | ---- | C] () -- C:\Windows\tasks\HPCeeSched
uleForJulien.job
[2011/03/03 20:53:59 | 000,000,982 | ---- | C] () -- C:\Users\Julien\Desktop\Tea
mspeak 2 RC2.lnk
[2011/03/01 11:32:34 | 000,001,998 | ---- | C] () -- C:\Users\Public\Desktop\Jou
er à League of Legends.lnk
[2011/02/21 21:29:50 | 000,001,854 | ---- | C] () -- C:\Users\Julien\AppData\Roa
ming\GhostObjGAFix.xml
[2010/11/20 22:39:57 | 000,004,608 | ---- | C] () -- C:\Users\Julien\AppData\Loc
al\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/02 10:01:23 | 000,000,056 | -H-- | C] () -- C:\Windows\SysWow64\ezsidmv
.dat
[2010/05/22 00:54:43 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2010/05/22 00:44:05 | 000,000,299 | ---- | C] () -- C:\Windows\SysWow64\RStoneL
og2.ini
[2010/05/22 00:44:05 | 000,000,240 | ---- | C] () -- C:\Windows\SysWow64\RStoneL
og.ini
[2010/05/08 04:46:31 | 000,000,211 | ---- | C] () -- C:\Windows\SysWow64\HPWA.in
i
[2010/05/08 03:35:20 | 000,009,988 | ---- | C] () -- C:\Windows\SysWow64\ezdigsg
n.dat
[2010/02/23 20:15:02 | 000,001,105 | ---- | C] () -- C:\Windows\SysWow64\atipbla
g.dat
[2010/02/09 17:58:12 | 000,012,800 | ---- | C] () -- C:\Windows\LPRES.DLL
[2009/07/14 06:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 03:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.D
AT
[2009/07/14 03:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.d
at
[2009/07/14 01:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWConte
xtHandler.dll
[2009/07/13 22:59:36 | 001,498,564 | ---- | C] () -- C:\Windows\SysWow64\igkrng4
00.bin
[2009/07/13 22:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetol
edb40.dll
[2009/07/09 20:03:56 | 000,370,312 | ---- | C] () -- C:\Windows\SysWow64\sqlite3
.dll
[2009/06/10 22:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.d
at
[2008/10/07 09:13:30 | 000,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcu
dart_20.dll
[2008/10/07 09:13:22 | 000,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPane
lTraditionalChinese.dll
lSwedish.dll
lSpanish.dll
lSimplifiedChinese.dll
lPortugese.dll
lKorean.dll
lJapanese.dll
lGerman.dll
lFrench.dll
[1997/06/14 09:56:08 | 000,056,832 | ---- | C] () -- C:\Windows\SysWow64\iyvu9_3
2.dll
[color=#E56717]========== Custom Scans ==========[/color]
[color=#A23BEC]< %SYSTEMDRIVE%\*.* >[/color]

[2009/07/14 02:38:58 | 000,383,562 | RHS- | M] () -- C:\bootmgr
[2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1028.txt
[2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1031.txt
[2007/11/07 07:00:40 | 000,010,134 | ---- | M] () -- C:\eula.1033.txt
[2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1036.txt
[2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1040.txt
[2007/11/07 07:00:40 | 000,000,118 | ---- | M] () -- C:\eula.1041.txt
[2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.1042.txt
[2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.2052.txt
[2007/11/07 07:00:40 | 000,017,734 | ---- | M] () -- C:\eula.3082.txt
[2007/11/07 07:00:40 | 000,001,110 | ---- | M] () -- C:\globdata.ini
[2011/03/19 12:11:44 | 3015,884,800 | -HS- | M] () -- C:\hiberfil.sys
[2007/11/07 07:44:20 | 000,855,040 | ---- | M] (Microsoft Corporation) -- C:\ins
tall.exe
[2007/11/07 07:00:40 | 000,000,843 | ---- | M] () -- C:\install.ini
tall.res.1028.dll
tall.res.1031.dll
tall.res.1033.dll
tall.res.1036.dll
tall.res.1040.dll
tall.res.1041.dll
tall.res.1042.dll
tall.res.2052.dll
tall.res.3082.dll
[2006/12/01 22:37:14 | 000,904,704 | ---- | M] (Microsoft Corporation) -- C:\msd
ia80.dll
[2011/03/19 12:11:49 | 4021,182,464 | -HS- | M] () -- C:\pagefile.sys
[2011/03/19 12:20:55 | 000,000,512 | ---- | M] () -- C:\PhysicalMBR.bin
[2007/11/07 07:00:40 | 000,005,686 | ---- | M] () -- C:\vcredist.bmp
[2007/11/07 07:50:40 | 001,927,956 | ---- | M] () -- C:\VC_RED.cab
[2007/11/07 07:53:12 | 000,242,176 | ---- | M] () -- C:\VC_RED.MSI
[color=#A23BEC]< %systemroot%\*. /mp /s >[/color]
[color=#A23BEC]< %systemroot%\system32\*.dll /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\Tasks\*.job /lockedfiles >[/color]
[color=#A23BEC]< %systemroot%\System32\config\*.sav >[/color]
[color=#A23BEC]< %systemroot%\system32\drivers\*.sys /90 >[/color]
[2010/12/20 18:09:00 | 000,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\
Windows\SysWOW64\drivers\mbamswissarmy.sys
[color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsU
pdate\AU >[/color]
[color=#A23BEC]< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Wi
ndowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >[/color]
< End of report >

OTL

Загружено:

Сведения о документе

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

OTL

Загружено:

Авторское право:

Доступные форматы

OTL logfile created on: 19/03/2011 12:27:16 - Run 2

OTL by OldTimer - Version 3.2.22.3 Folder = C:\Users\Julien\Desktop

Computer Name: JULIEN-PC | User Name: Julien | Logged in as Administrator.

[color=#E56717]========== Modules (SafeList) ==========[/color]

[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

[color=#E56717]========== Driver Services (SafeList) ==========[/color]

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/col

[color=#A23BEC]< %SYSTEMDRIVE%\. >[/color]

Вам также может понравиться