Actualité informatique
Test comparatif matériel informatique
Jeux vidéo
Astuces informatique
Vidéo
Télécharger
Services en ligne
Forum informatique
01Business

|-  SECURITE


|||-  

PC infecté par trojan [RESOLU]

 

LOGICIELS : Peter07c
Ajouter une réponse
 

 
Page photos
 
     
Vider la liste des messages à citer
 
 Page :
1  2
Dernière Page
Page Suivante
Page Précédente
Première Page
Auteur
 Sujet :

PC infecté par trojan [RESOLU]

Prévenir les modérateurs en cas d'abus 
loulou75
loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 29/04/2010 à 18:15:07  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
bonjour
 mon pc est infecté par un trojan, pouvez vous m'aider ?
 merci d'avance


  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 29/04/2010 à 18:42:52  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello: Bonjour,

 pour plus d'information, :

 Telecharge RSIT (de random/random) ici:
 http://images.malwareremoval.com/random/RSIT.exe

 --> Enregistre le sur ton burreau, et clique droit de ta souris et selectionne executer en tant qu'administrateur (POUR VISTA/7)
 --> une page va safficher, clique sur continue,
 --> Tu sera peut etre amener a accepter les contrat de license si hijackthis n'est pas installer sur la machine, Accepte le...
 --> en fin de scan deux fenetre saffiche automatiquement..( log.txt.....info.txt...)
 --> poste les deux rapport ici STP..

(Publicité)
loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 29/04/2010 à 19:20:28  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Logfile of random's system information tool 1.06 (written by random/random)
 Run by Loulou at 2010-04-29 20:15:35
 Microsoft Windows XP Professionnel Service Pack 2
 System drive C: has 71 GB (61%) free of 117 GB
 Total RAM: 511 MB (9% free)

 Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 20:15:58, on 29/04/2010
 Platform: Windows XP SP2 (WinNT 5.01.2600)
 MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
 Boot mode: Normal

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\Ahead\InCD\InCDsrv.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\Explorer.EXE
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\SOUNDMAN.EXE
 C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe
 C:\Program Files\Eset\nod32kui.exe
 C:\WINDOWS\system32\RUNDLL32.E​XE
 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
 C:\WINDOWS\system32\ctfmon.exe
 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
 C:\WINDOWS\system32\rundll32.e​xe
 C:\Program Files\Eset\nod32krn.exe
 C:\WINDOWS\system32\nvsvc32.ex​e
 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\system32\wscntfy.ex​e
 C:\WINDOWS\system32\wuauclt.ex​e
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Windows Live\Toolbar\wltuser.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Mes documents\RSIT.exe
 C:\Program Files\trend micro\Loulou.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Bar = http://search.live.com/sphome.aspx
 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Page = http://search.live.com
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://www.yahoo.fr/
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t =
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelper.dll
 O2 - BHO: SuggestMeYesBHO - {0FB6A909-6086-458F-BD92-1F8EE​10042A0} - C:\Program Files\AutocompletePro\Autocomp​letePro.dll
 O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7​942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
 O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3A​AC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files\Google\GoogleToolbarNoti​fier\5.5.4723.1820\swg.dll
 O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94E​C1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D​3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.e​xe
 O4 - HKLM\..\Run: [mouseElf] C:\PROGRA~1\GENIUS~1\mouseElf.​exe
 O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
 O4 - HKLM\..\Run: [EasyTuneIV] C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\ET4\et4Tray.exe
 O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
 O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,​NvStartup
 O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
 O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe"  -osboot
 O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
 O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.d​ll,NvTaskbarInit
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
 O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
 O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
 O4 - HKCU\..\Run: [LaCie Backup] C:\Program Files\LaCie\Backup Software\\LaCieBackup.exe /background
 O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe​"
 O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
 O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\F​lash\FlashUtil10b.exe
 O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
 O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
 O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
 O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
 O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Off​ice10\EXCEL.EXE/3000
 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolba​rDynamic_mui_en_96D6FF0C6D236B​F8.dll/cmsidewiki.html
 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
 O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin4.d​ll
 O16 - DPF: {17492023-C23A-453E-A040-C7C58​0BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
 O17 - HKLM\System\CCS\Services\Tcpip​\..\{75ABF2F1-B6E7-46E2-BC30-0​9F575832968}: NameServer = 86.64.145.144 84.103.237.144
 O18 - Protocol: bw+0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw+0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9​B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: offline-8876480 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
 O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
 O23 - Service: Service Google Update (gupdate1c99c4ac4a14aac) (gupdate1c99c4ac4a14aac) - Google Inc. - C:\Program Files\Google\Update\GoogleUpda​te.exe
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1​1\Intel 32\IDriverT.exe
 O23 - Service: InCD Helper (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe
 O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset  - C:\Program Files\Eset\nod32krn.exe
 O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.ex​e
 O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe

 --
 End of file - 20205 bytes

 ======Scheduled tasks folder======

 C:\WINDOWS\tasks\At1.job
 C:\WINDOWS\tasks\At10.job
 C:\WINDOWS\tasks\At100.job
 C:\WINDOWS\tasks\At101.job
 C:\WINDOWS\tasks\At102.job
 C:\WINDOWS\tasks\At103.job
 C:\WINDOWS\tasks\At104.job
 C:\WINDOWS\tasks\At105.job
 C:\WINDOWS\tasks\At106.job
 C:\WINDOWS\tasks\At107.job
 C:\WINDOWS\tasks\At108.job
 C:\WINDOWS\tasks\At109.job
 C:\WINDOWS\tasks\At11.job
 C:\WINDOWS\tasks\At110.job
 C:\WINDOWS\tasks\At111.job
 C:\WINDOWS\tasks\At112.job
 C:\WINDOWS\tasks\At113.job
 C:\WINDOWS\tasks\At114.job
 C:\WINDOWS\tasks\At115.job
 C:\WINDOWS\tasks\At116.job
 C:\WINDOWS\tasks\At117.job
 C:\WINDOWS\tasks\At118.job
 C:\WINDOWS\tasks\At119.job
 C:\WINDOWS\tasks\At12.job
 C:\WINDOWS\tasks\At120.job
 C:\WINDOWS\tasks\At121.job
 C:\WINDOWS\tasks\At122.job
 C:\WINDOWS\tasks\At123.job
 C:\WINDOWS\tasks\At124.job
 C:\WINDOWS\tasks\At125.job
 C:\WINDOWS\tasks\At126.job
 C:\WINDOWS\tasks\At127.job
 C:\WINDOWS\tasks\At128.job
 C:\WINDOWS\tasks\At129.job
 C:\WINDOWS\tasks\At13.job
 C:\WINDOWS\tasks\At130.job
 C:\WINDOWS\tasks\At131.job
 C:\WINDOWS\tasks\At132.job
 C:\WINDOWS\tasks\At133.job
 C:\WINDOWS\tasks\At134.job
 C:\WINDOWS\tasks\At135.job
 C:\WINDOWS\tasks\At136.job
 C:\WINDOWS\tasks\At137.job
 C:\WINDOWS\tasks\At138.job
 C:\WINDOWS\tasks\At139.job
 C:\WINDOWS\tasks\At14.job
 C:\WINDOWS\tasks\At140.job
 C:\WINDOWS\tasks\At141.job
 C:\WINDOWS\tasks\At142.job
 C:\WINDOWS\tasks\At143.job
 C:\WINDOWS\tasks\At144.job
 C:\WINDOWS\tasks\At145.job
 C:\WINDOWS\tasks\At146.job
 C:\WINDOWS\tasks\At147.job
 C:\WINDOWS\tasks\At148.job
 C:\WINDOWS\tasks\At149.job
 C:\WINDOWS\tasks\At15.job
 C:\WINDOWS\tasks\At150.job
 C:\WINDOWS\tasks\At151.job
 C:\WINDOWS\tasks\At152.job
 C:\WINDOWS\tasks\At153.job
 C:\WINDOWS\tasks\At154.job
 C:\WINDOWS\tasks\At155.job
 C:\WINDOWS\tasks\At156.job
 C:\WINDOWS\tasks\At157.job
 C:\WINDOWS\tasks\At158.job
 C:\WINDOWS\tasks\At159.job
 C:\WINDOWS\tasks\At16.job
 C:\WINDOWS\tasks\At160.job
 C:\WINDOWS\tasks\At161.job
 C:\WINDOWS\tasks\At162.job
 C:\WINDOWS\tasks\At163.job
 C:\WINDOWS\tasks\At164.job
 C:\WINDOWS\tasks\At165.job
 C:\WINDOWS\tasks\At166.job
 C:\WINDOWS\tasks\At167.job
 C:\WINDOWS\tasks\At168.job
 C:\WINDOWS\tasks\At169.job
 C:\WINDOWS\tasks\At17.job
 C:\WINDOWS\tasks\At170.job
 C:\WINDOWS\tasks\At171.job
 C:\WINDOWS\tasks\At172.job
 C:\WINDOWS\tasks\At173.job
 C:\WINDOWS\tasks\At174.job
 C:\WINDOWS\tasks\At175.job
 C:\WINDOWS\tasks\At176.job
 C:\WINDOWS\tasks\At177.job
 C:\WINDOWS\tasks\At178.job
 C:\WINDOWS\tasks\At179.job
 C:\WINDOWS\tasks\At18.job
 C:\WINDOWS\tasks\At180.job
 C:\WINDOWS\tasks\At181.job
 C:\WINDOWS\tasks\At182.job
 C:\WINDOWS\tasks\At183.job
 C:\WINDOWS\tasks\At184.job
 C:\WINDOWS\tasks\At185.job
 C:\WINDOWS\tasks\At186.job
 C:\WINDOWS\tasks\At187.job
 C:\WINDOWS\tasks\At188.job
 C:\WINDOWS\tasks\At189.job
 C:\WINDOWS\tasks\At19.job
 C:\WINDOWS\tasks\At190.job
 C:\WINDOWS\tasks\At191.job
 C:\WINDOWS\tasks\At192.job
 C:\WINDOWS\tasks\At193.job
 C:\WINDOWS\tasks\At194.job
 C:\WINDOWS\tasks\At195.job
 C:\WINDOWS\tasks\At196.job
 C:\WINDOWS\tasks\At197.job
 C:\WINDOWS\tasks\At198.job
 C:\WINDOWS\tasks\At199.job
 C:\WINDOWS\tasks\At2.job
 C:\WINDOWS\tasks\At20.job
 C:\WINDOWS\tasks\At200.job
 C:\WINDOWS\tasks\At201.job
 C:\WINDOWS\tasks\At202.job
 C:\WINDOWS\tasks\At203.job
 C:\WINDOWS\tasks\At204.job
 C:\WINDOWS\tasks\At205.job
 C:\WINDOWS\tasks\At206.job
 C:\WINDOWS\tasks\At207.job
 C:\WINDOWS\tasks\At208.job
 C:\WINDOWS\tasks\At209.job
 C:\WINDOWS\tasks\At21.job
 C:\WINDOWS\tasks\At210.job
 C:\WINDOWS\tasks\At211.job
 C:\WINDOWS\tasks\At212.job
 C:\WINDOWS\tasks\At213.job
 C:\WINDOWS\tasks\At214.job
 C:\WINDOWS\tasks\At215.job
 C:\WINDOWS\tasks\At216.job
 C:\WINDOWS\tasks\At217.job
 C:\WINDOWS\tasks\At218.job
 C:\WINDOWS\tasks\At219.job
 C:\WINDOWS\tasks\At22.job
 C:\WINDOWS\tasks\At220.job
 C:\WINDOWS\tasks\At221.job
 C:\WINDOWS\tasks\At222.job
 C:\WINDOWS\tasks\At223.job
 C:\WINDOWS\tasks\At224.job
 C:\WINDOWS\tasks\At225.job
 C:\WINDOWS\tasks\At226.job
 C:\WINDOWS\tasks\At227.job
 C:\WINDOWS\tasks\At228.job
 C:\WINDOWS\tasks\At229.job
 C:\WINDOWS\tasks\At23.job
 C:\WINDOWS\tasks\At230.job
 C:\WINDOWS\tasks\At231.job
 C:\WINDOWS\tasks\At232.job
 C:\WINDOWS\tasks\At233.job
 C:\WINDOWS\tasks\At234.job
 C:\WINDOWS\tasks\At235.job
 C:\WINDOWS\tasks\At236.job
 C:\WINDOWS\tasks\At237.job
 C:\WINDOWS\tasks\At238.job
 C:\WINDOWS\tasks\At239.job
 C:\WINDOWS\tasks\At24.job
 C:\WINDOWS\tasks\At240.job
 C:\WINDOWS\tasks\At241.job
 C:\WINDOWS\tasks\At242.job
 C:\WINDOWS\tasks\At243.job
 C:\WINDOWS\tasks\At244.job
 C:\WINDOWS\tasks\At245.job
 C:\WINDOWS\tasks\At246.job
 C:\WINDOWS\tasks\At247.job
 C:\WINDOWS\tasks\At248.job
 C:\WINDOWS\tasks\At249.job
 C:\WINDOWS\tasks\At25.job
 C:\WINDOWS\tasks\At250.job
 C:\WINDOWS\tasks\At251.job
 C:\WINDOWS\tasks\At252.job
 C:\WINDOWS\tasks\At253.job
 C:\WINDOWS\tasks\At254.job
 C:\WINDOWS\tasks\At255.job
 C:\WINDOWS\tasks\At256.job
 C:\WINDOWS\tasks\At257.job
 C:\WINDOWS\tasks\At258.job
 C:\WINDOWS\tasks\At259.job
 C:\WINDOWS\tasks\At26.job
 C:\WINDOWS\tasks\At260.job
 C:\WINDOWS\tasks\At261.job
 C:\WINDOWS\tasks\At262.job
 C:\WINDOWS\tasks\At263.job
 C:\WINDOWS\tasks\At264.job
 C:\WINDOWS\tasks\At265.job
 C:\WINDOWS\tasks\At266.job
 C:\WINDOWS\tasks\At267.job
 C:\WINDOWS\tasks\At268.job
 C:\WINDOWS\tasks\At269.job
 C:\WINDOWS\tasks\At27.job
 C:\WINDOWS\tasks\At270.job
 C:\WINDOWS\tasks\At271.job
 C:\WINDOWS\tasks\At272.job
 C:\WINDOWS\tasks\At273.job
 C:\WINDOWS\tasks\At274.job
 C:\WINDOWS\tasks\At275.job
 C:\WINDOWS\tasks\At276.job
 C:\WINDOWS\tasks\At277.job
 C:\WINDOWS\tasks\At278.job
 C:\WINDOWS\tasks\At279.job
 C:\WINDOWS\tasks\At28.job
 C:\WINDOWS\tasks\At280.job
 C:\WINDOWS\tasks\At281.job
 C:\WINDOWS\tasks\At282.job
 C:\WINDOWS\tasks\At283.job
 C:\WINDOWS\tasks\At284.job
 C:\WINDOWS\tasks\At285.job
 C:\WINDOWS\tasks\At286.job
 C:\WINDOWS\tasks\At287.job
 C:\WINDOWS\tasks\At288.job
 C:\WINDOWS\tasks\At289.job
 C:\WINDOWS\tasks\At29.job
 C:\WINDOWS\tasks\At290.job
 C:\WINDOWS\tasks\At291.job
 C:\WINDOWS\tasks\At292.job
 C:\WINDOWS\tasks\At293.job
 C:\WINDOWS\tasks\At294.job
 C:\WINDOWS\tasks\At295.job
 C:\WINDOWS\tasks\At296.job
 C:\WINDOWS\tasks\At297.job
 C:\WINDOWS\tasks\At298.job
 C:\WINDOWS\tasks\At299.job
 C:\WINDOWS\tasks\At3.job
 C:\WINDOWS\tasks\At30.job
 C:\WINDOWS\tasks\At300.job
 C:\WINDOWS\tasks\At301.job
 C:\WINDOWS\tasks\At302.job
 C:\WINDOWS\tasks\At303.job
 C:\WINDOWS\tasks\At304.job
 C:\WINDOWS\tasks\At305.job
 C:\WINDOWS\tasks\At306.job
 C:\WINDOWS\tasks\At307.job
 C:\WINDOWS\tasks\At308.job
 C:\WINDOWS\tasks\At309.job
 C:\WINDOWS\tasks\At31.job
 C:\WINDOWS\tasks\At310.job
 C:\WINDOWS\tasks\At311.job
 C:\WINDOWS\tasks\At312.job
 C:\WINDOWS\tasks\At313.job
 C:\WINDOWS\tasks\At314.job
 C:\WINDOWS\tasks\At315.job
 C:\WINDOWS\tasks\At316.job
 C:\WINDOWS\tasks\At317.job
 C:\WINDOWS\tasks\At318.job
 C:\WINDOWS\tasks\At319.job
 C:\WINDOWS\tasks\At32.job
 C:\WINDOWS\tasks\At320.job
 C:\WINDOWS\tasks\At321.job
 C:\WINDOWS\tasks\At322.job
 C:\WINDOWS\tasks\At323.job
 C:\WINDOWS\tasks\At324.job
 C:\WINDOWS\tasks\At325.job
 C:\WINDOWS\tasks\At326.job
 C:\WINDOWS\tasks\At327.job
 C:\WINDOWS\tasks\At328.job
 C:\WINDOWS\tasks\At329.job
 C:\WINDOWS\tasks\At33.job
 C:\WINDOWS\tasks\At330.job
 C:\WINDOWS\tasks\At331.job
 C:\WINDOWS\tasks\At332.job
 C:\WINDOWS\tasks\At333.job
 C:\WINDOWS\tasks\At334.job
 C:\WINDOWS\tasks\At335.job
 C:\WINDOWS\tasks\At336.job
 C:\WINDOWS\tasks\At337.job
 C:\WINDOWS\tasks\At338.job
 C:\WINDOWS\tasks\At339.job
 C:\WINDOWS\tasks\At34.job
 C:\WINDOWS\tasks\At340.job
 C:\WINDOWS\tasks\At341.job
 C:\WINDOWS\tasks\At342.job
 C:\WINDOWS\tasks\At343.job
 C:\WINDOWS\tasks\At344.job
 C:\WINDOWS\tasks\At345.job
 C:\WINDOWS\tasks\At346.job
 C:\WINDOWS\tasks\At347.job
 C:\WINDOWS\tasks\At348.job
 C:\WINDOWS\tasks\At349.job
 C:\WINDOWS\tasks\At35.job
 C:\WINDOWS\tasks\At350.job
 C:\WINDOWS\tasks\At351.job
 C:\WINDOWS\tasks\At352.job
 C:\WINDOWS\tasks\At353.job
 C:\WINDOWS\tasks\At354.job
 C:\WINDOWS\tasks\At355.job
 C:\WINDOWS\tasks\At356.job
 C:\WINDOWS\tasks\At357.job
 C:\WINDOWS\tasks\At358.job
 C:\WINDOWS\tasks\At359.job
 C:\WINDOWS\tasks\At36.job
 C:\WINDOWS\tasks\At360.job
 C:\WINDOWS\tasks\At361.job
 C:\WINDOWS\tasks\At362.job
 C:\WINDOWS\tasks\At363.job
 C:\WINDOWS\tasks\At364.job
 C:\WINDOWS\tasks\At365.job
 C:\WINDOWS\tasks\At366.job
 C:\WINDOWS\tasks\At367.job
 C:\WINDOWS\tasks\At368.job
 C:\WINDOWS\tasks\At369.job
 C:\WINDOWS\tasks\At37.job
 C:\WINDOWS\tasks\At370.job
 C:\WINDOWS\tasks\At371.job
 C:\WINDOWS\tasks\At372.job
 C:\WINDOWS\tasks\At373.job
 C:\WINDOWS\tasks\At374.job
 C:\WINDOWS\tasks\At375.job
 C:\WINDOWS\tasks\At376.job
 C:\WINDOWS\tasks\At377.job
 C:\WINDOWS\tasks\At378.job
 C:\WINDOWS\tasks\At379.job
 C:\WINDOWS\tasks\At38.job
 C:\WINDOWS\tasks\At380.job
 C:\WINDOWS\tasks\At381.job
 C:\WINDOWS\tasks\At382.job
 C:\WINDOWS\tasks\At383.job
 C:\WINDOWS\tasks\At384.job
 C:\WINDOWS\tasks\At385.job
 C:\WINDOWS\tasks\At386.job
 C:\WINDOWS\tasks\At387.job
 C:\WINDOWS\tasks\At388.job
 C:\WINDOWS\tasks\At389.job
 C:\WINDOWS\tasks\At39.job
 C:\WINDOWS\tasks\At390.job
 C:\WINDOWS\tasks\At391.job
 C:\WINDOWS\tasks\At392.job
 C:\WINDOWS\tasks\At393.job
 C:\WINDOWS\tasks\At394.job
 C:\WINDOWS\tasks\At395.job
 C:\WINDOWS\tasks\At396.job
 C:\WINDOWS\tasks\At397.job
 C:\WINDOWS\tasks\At398.job
 C:\WINDOWS\tasks\At399.job
 C:\WINDOWS\tasks\At4.job
 C:\WINDOWS\tasks\At40.job
 C:\WINDOWS\tasks\At400.job
 C:\WINDOWS\tasks\At401.job
 C:\WINDOWS\tasks\At402.job
 C:\WINDOWS\tasks\At403.job
 C:\WINDOWS\tasks\At404.job
 C:\WINDOWS\tasks\At405.job
 C:\WINDOWS\tasks\At406.job
 C:\WINDOWS\tasks\At407.job
 C:\WINDOWS\tasks\At408.job
 C:\WINDOWS\tasks\At409.job
 C:\WINDOWS\tasks\At41.job
 C:\WINDOWS\tasks\At410.job
 C:\WINDOWS\tasks\At411.job
 C:\WINDOWS\tasks\At412.job
 C:\WINDOWS\tasks\At413.job
 C:\WINDOWS\tasks\At414.job
 C:\WINDOWS\tasks\At415.job
 C:\WINDOWS\tasks\At416.job
 C:\WINDOWS\tasks\At417.job
 C:\WINDOWS\tasks\At418.job
 C:\WINDOWS\tasks\At419.job
 C:\WINDOWS\tasks\At42.job
 C:\WINDOWS\tasks\At420.job
 C:\WINDOWS\tasks\At421.job
 C:\WINDOWS\tasks\At422.job
 C:\WINDOWS\tasks\At423.job
 C:\WINDOWS\tasks\At424.job
 C:\WINDOWS\tasks\At425.job
 C:\WINDOWS\tasks\At426.job
 C:\WINDOWS\tasks\At427.job
 C:\WINDOWS\tasks\At428.job
 C:\WINDOWS\tasks\At429.job
 C:\WINDOWS\tasks\At43.job
 C:\WINDOWS\tasks\At430.job
 C:\WINDOWS\tasks\At431.job
 C:\WINDOWS\tasks\At432.job
 C:\WINDOWS\tasks\At433.job
 C:\WINDOWS\tasks\At434.job
 C:\WINDOWS\tasks\At435.job
 C:\WINDOWS\tasks\At436.job
 C:\WINDOWS\tasks\At437.job
 C:\WINDOWS\tasks\At438.job
 C:\WINDOWS\tasks\At439.job
 C:\WINDOWS\tasks\At44.job
 C:\WINDOWS\tasks\At440.job
 C:\WINDOWS\tasks\At441.job
 C:\WINDOWS\tasks\At442.job
 C:\WINDOWS\tasks\At443.job
 C:\WINDOWS\tasks\At444.job
 C:\WINDOWS\tasks\At445.job
 C:\WINDOWS\tasks\At446.job
 C:\WINDOWS\tasks\At447.job
 C:\WINDOWS\tasks\At448.job
 C:\WINDOWS\tasks\At449.job
 C:\WINDOWS\tasks\At45.job
 C:\WINDOWS\tasks\At450.job
 C:\WINDOWS\tasks\At451.job
 C:\WINDOWS\tasks\At452.job
 C:\WINDOWS\tasks\At453.job
 C:\WINDOWS\tasks\At454.job
 C:\WINDOWS\tasks\At455.job
 C:\WINDOWS\tasks\At456.job
 C:\WINDOWS\tasks\At457.job
 C:\WINDOWS\tasks\At458.job
 C:\WINDOWS\tasks\At459.job
 C:\WINDOWS\tasks\At46.job
 C:\WINDOWS\tasks\At460.job
 C:\WINDOWS\tasks\At461.job
 C:\WINDOWS\tasks\At462.job
 C:\WINDOWS\tasks\At463.job
 C:\WINDOWS\tasks\At464.job
 C:\WINDOWS\tasks\At465.job
 C:\WINDOWS\tasks\At466.job
 C:\WINDOWS\tasks\At467.job
 C:\WINDOWS\tasks\At468.job
 C:\WINDOWS\tasks\At469.job
 C:\WINDOWS\tasks\At47.job
 C:\WINDOWS\tasks\At470.job
 C:\WINDOWS\tasks\At471.job
 C:\WINDOWS\tasks\At472.job
 C:\WINDOWS\tasks\At473.job
 C:\WINDOWS\tasks\At474.job
 C:\WINDOWS\tasks\At475.job
 C:\WINDOWS\tasks\At476.job
 C:\WINDOWS\tasks\At477.job
 C:\WINDOWS\tasks\At478.job
 C:\WINDOWS\tasks\At479.job
 C:\WINDOWS\tasks\At48.job
 C:\WINDOWS\tasks\At480.job
 C:\WINDOWS\tasks\At481.job
 C:\WINDOWS\tasks\At482.job
 C:\WINDOWS\tasks\At483.job
 C:\WINDOWS\tasks\At484.job
 C:\WINDOWS\tasks\At485.job
 C:\WINDOWS\tasks\At486.job
 C:\WINDOWS\tasks\At487.job
 C:\WINDOWS\tasks\At488.job
 C:\WINDOWS\tasks\At489.job
 C:\WINDOWS\tasks\At49.job
 C:\WINDOWS\tasks\At490.job
 C:\WINDOWS\tasks\At491.job
 C:\WINDOWS\tasks\At492.job
 C:\WINDOWS\tasks\At493.job
 C:\WINDOWS\tasks\At494.job
 C:\WINDOWS\tasks\At495.job
 C:\WINDOWS\tasks\At496.job
 C:\WINDOWS\tasks\At497.job
 C:\WINDOWS\tasks\At498.job
 C:\WINDOWS\tasks\At499.job
 C:\WINDOWS\tasks\At5.job
 C:\WINDOWS\tasks\At50.job
 C:\WINDOWS\tasks\At500.job
 C:\WINDOWS\tasks\At501.job
 C:\WINDOWS\tasks\At502.job
 C:\WINDOWS\tasks\At503.job
 C:\WINDOWS\tasks\At504.job
 C:\WINDOWS\tasks\At505.job
 C:\WINDOWS\tasks\At506.job
 C:\WINDOWS\tasks\At507.job
 C:\WINDOWS\tasks\At508.job
 C:\WINDOWS\tasks\At509.job
 C:\WINDOWS\tasks\At51.job
 C:\WINDOWS\tasks\At510.job
 C:\WINDOWS\tasks\At511.job
 C:\WINDOWS\tasks\At512.job
 C:\WINDOWS\tasks\At513.job
 C:\WINDOWS\tasks\At514.job
 C:\WINDOWS\tasks\At515.job
 C:\WINDOWS\tasks\At516.job
 C:\WINDOWS\tasks\At517.job
 C:\WINDOWS\tasks\At518.job
 C:\WINDOWS\tasks\At519.job
 C:\WINDOWS\tasks\At52.job
 C:\WINDOWS\tasks\At520.job
 C:\WINDOWS\tasks\At521.job
 C:\WINDOWS\tasks\At522.job
 C:\WINDOWS\tasks\At523.job
 C:\WINDOWS\tasks\At524.job
 C:\WINDOWS\tasks\At525.job
 C:\WINDOWS\tasks\At526.job
 C:\WINDOWS\tasks\At527.job
 C:\WINDOWS\tasks\At528.job
 C:\WINDOWS\tasks\At529.job
 C:\WINDOWS\tasks\At53.job
 C:\WINDOWS\tasks\At530.job
 C:\WINDOWS\tasks\At531.job
 C:\WINDOWS\tasks\At532.job
 C:\WINDOWS\tasks\At533.job
 C:\WINDOWS\tasks\At534.job
 C:\WINDOWS\tasks\At535.job
 C:\WINDOWS\tasks\At536.job
 C:\WINDOWS\tasks\At537.job
 C:\WINDOWS\tasks\At538.job
 C:\WINDOWS\tasks\At539.job
 C:\WINDOWS\tasks\At54.job
 C:\WINDOWS\tasks\At540.job
 C:\WINDOWS\tasks\At541.job
 C:\WINDOWS\tasks\At542.job
 C:\WINDOWS\tasks\At543.job
 C:\WINDOWS\tasks\At544.job
 C:\WINDOWS\tasks\At545.job
 C:\WINDOWS\tasks\At546.job
 C:\WINDOWS\tasks\At547.job
 C:\WINDOWS\tasks\At548.job
 C:\WINDOWS\tasks\At549.job
 C:\WINDOWS\tasks\At55.job
 C:\WINDOWS\tasks\At550.job
 C:\WINDOWS\tasks\At551.job
 C:\WINDOWS\tasks\At552.job
 C:\WINDOWS\tasks\At553.job
 C:\WINDOWS\tasks\At554.job
 C:\WINDOWS\tasks\At555.job
 C:\WINDOWS\tasks\At556.job
 C:\WINDOWS\tasks\At557.job
 C:\WINDOWS\tasks\At558.job
 C:\WINDOWS\tasks\At559.job
 C:\WINDOWS\tasks\At56.job
 C:\WINDOWS\tasks\At560.job
 C:\WINDOWS\tasks\At561.job
 C:\WINDOWS\tasks\At562.job
 C:\WINDOWS\tasks\At563.job
 C:\WINDOWS\tasks\At564.job
 C:\WINDOWS\tasks\At565.job
 C:\WINDOWS\tasks\At566.job
 C:\WINDOWS\tasks\At567.job
 C:\WINDOWS\tasks\At568.job
 C:\WINDOWS\tasks\At569.job
 C:\WINDOWS\tasks\At57.job
 C:\WINDOWS\tasks\At570.job
 C:\WINDOWS\tasks\At571.job
 C:\WINDOWS\tasks\At572.job
 C:\WINDOWS\tasks\At573.job
 C:\WINDOWS\tasks\At574.job
 C:\WINDOWS\tasks\At575.job
 C:\WINDOWS\tasks\At576.job
 C:\WINDOWS\tasks\At577.job
 C:\WINDOWS\tasks\At578.job
 C:\WINDOWS\tasks\At579.job
 C:\WINDOWS\tasks\At58.job
 C:\WINDOWS\tasks\At580.job
 C:\WINDOWS\tasks\At581.job
 C:\WINDOWS\tasks\At582.job
 C:\WINDOWS\tasks\At583.job
 C:\WINDOWS\tasks\At584.job
 C:\WINDOWS\tasks\At585.job
 C:\WINDOWS\tasks\At586.job
 C:\WINDOWS\tasks\At587.job
 C:\WINDOWS\tasks\At588.job
 C:\WINDOWS\tasks\At589.job
 C:\WINDOWS\tasks\At59.job
 C:\WINDOWS\tasks\At590.job
 C:\WINDOWS\tasks\At591.job
 C:\WINDOWS\tasks\At592.job
 C:\WINDOWS\tasks\At593.job
 C:\WINDOWS\tasks\At594.job
 C:\WINDOWS\tasks\At595.job
 C:\WINDOWS\tasks\At596.job
 C:\WINDOWS\tasks\At597.job
 C:\WINDOWS\tasks\At598.job
 C:\WINDOWS\tasks\At599.job
 C:\WINDOWS\tasks\At6.job
 C:\WINDOWS\tasks\At60.job
 C:\WINDOWS\tasks\At600.job
 C:\WINDOWS\tasks\At601.job
 C:\WINDOWS\tasks\At602.job
 C:\WINDOWS\tasks\At603.job
 C:\WINDOWS\tasks\At604.job
 C:\WINDOWS\tasks\At605.job
 C:\WINDOWS\tasks\At606.job
 C:\WINDOWS\tasks\At607.job
 C:\WINDOWS\tasks\At608.job
 C:\WINDOWS\tasks\At609.job
 C:\WINDOWS\tasks\At61.job
 C:\WINDOWS\tasks\At610.job
 C:\WINDOWS\tasks\At611.job
 C:\WINDOWS\tasks\At612.job
 C:\WINDOWS\tasks\At613.job
 C:\WINDOWS\tasks\At614.job
 C:\WINDOWS\tasks\At615.job
 C:\WINDOWS\tasks\At616.job
 C:\WINDOWS\tasks\At617.job
 C:\WINDOWS\tasks\At618.job
 C:\WINDOWS\tasks\At619.job
 C:\WINDOWS\tasks\At62.job
 C:\WINDOWS\tasks\At620.job
 C:\WINDOWS\tasks\At621.job
 C:\WINDOWS\tasks\At622.job
 C:\WINDOWS\tasks\At623.job
 C:\WINDOWS\tasks\At624.job
 C:\WINDOWS\tasks\At625.job
 C:\WINDOWS\tasks\At626.job
 C:\WINDOWS\tasks\At627.job
 C:\WINDOWS\tasks\At628.job
 C:\WINDOWS\tasks\At629.job
 C:\WINDOWS\tasks\At63.job
 C:\WINDOWS\tasks\At630.job
 C:\WINDOWS\tasks\At631.job
 C:\WINDOWS\tasks\At632.job
 C:\WINDOWS\tasks\At633.job
 C:\WINDOWS\tasks\At634.job
 C:\WINDOWS\tasks\At635.job
 C:\WINDOWS\tasks\At636.job
 C:\WINDOWS\tasks\At637.job
 C:\WINDOWS\tasks\At638.job
 C:\WINDOWS\tasks\At639.job
 C:\WINDOWS\tasks\At64.job
 C:\WINDOWS\tasks\At640.job
 C:\WINDOWS\tasks\At641.job
 C:\WINDOWS\tasks\At642.job
 C:\WINDOWS\tasks\At643.job
 C:\WINDOWS\tasks\At644.job
 C:\WINDOWS\tasks\At645.job
 C:\WINDOWS\tasks\At646.job
 C:\WINDOWS\tasks\At647.job
 C:\WINDOWS\tasks\At648.job
 C:\WINDOWS\tasks\At649.job
 C:\WINDOWS\tasks\At65.job
 C:\WINDOWS\tasks\At650.job
 C:\WINDOWS\tasks\At651.job
 C:\WINDOWS\tasks\At652.job
 C:\WINDOWS\tasks\At653.job
 C:\WINDOWS\tasks\At654.job
 C:\WINDOWS\tasks\At655.job
 C:\WINDOWS\tasks\At656.job
 C:\WINDOWS\tasks\At657.job
 C:\WINDOWS\tasks\At658.job
 C:\WINDOWS\tasks\At659.job
 C:\WINDOWS\tasks\At66.job
 C:\WINDOWS\tasks\At660.job
 C:\WINDOWS\tasks\At661.job
 C:\WINDOWS\tasks\At662.job
 C:\WINDOWS\tasks\At663.job
 C:\WINDOWS\tasks\At664.job
 C:\WINDOWS\tasks\At665.job
 C:\WINDOWS\tasks\At666.job
 C:\WINDOWS\tasks\At667.job
 C:\WINDOWS\tasks\At668.job
 C:\WINDOWS\tasks\At669.job
 C:\WINDOWS\tasks\At67.job
 C:\WINDOWS\tasks\At670.job
 C:\WINDOWS\tasks\At671.job
 C:\WINDOWS\tasks\At672.job
 C:\WINDOWS\tasks\At673.job
 C:\WINDOWS\tasks\At674.job
 C:\WINDOWS\tasks\At675.job
 C:\WINDOWS\tasks\At676.job
 C:\WINDOWS\tasks\At677.job
 C:\WINDOWS\tasks\At678.job
 C:\WINDOWS\tasks\At679.job
 C:\WINDOWS\tasks\At68.job
 C:\WINDOWS\tasks\At680.job
 C:\WINDOWS\tasks\At681.job
 C:\WINDOWS\tasks\At682.job
 C:\WINDOWS\tasks\At683.job
 C:\WINDOWS\tasks\At684.job
 C:\WINDOWS\tasks\At685.job
 C:\WINDOWS\tasks\At686.job
 C:\WINDOWS\tasks\At687.job
 C:\WINDOWS\tasks\At688.job
 C:\WINDOWS\tasks\At689.job
 C:\WINDOWS\tasks\At69.job
 C:\WINDOWS\tasks\At690.job
 C:\WINDOWS\tasks\At691.job
 C:\WINDOWS\tasks\At692.job
 C:\WINDOWS\tasks\At693.job
 C:\WINDOWS\tasks\At694.job
 C:\WINDOWS\tasks\At695.job
 C:\WINDOWS\tasks\At696.job
 C:\WINDOWS\tasks\At697.job
 C:\WINDOWS\tasks\At698.job
 C:\WINDOWS\tasks\At699.job
 C:\WINDOWS\tasks\At7.job
 C:\WINDOWS\tasks\At70.job
 C:\WINDOWS\tasks\At700.job
 C:\WINDOWS\tasks\At701.job
 C:\WINDOWS\tasks\At702.job
 C:\WINDOWS\tasks\At703.job
 C:\WINDOWS\tasks\At704.job
 C:\WINDOWS\tasks\At705.job
 C:\WINDOWS\tasks\At706.job
 C:\WINDOWS\tasks\At707.job
 C:\WINDOWS\tasks\At708.job
 C:\WINDOWS\tasks\At709.job
 C:\WINDOWS\tasks\At71.job
 C:\WINDOWS\tasks\At710.job
 C:\WINDOWS\tasks\At711.job
 C:\WINDOWS\tasks\At712.job
 C:\WINDOWS\tasks\At713.job
 C:\WINDOWS\tasks\At714.job
 C:\WINDOWS\tasks\At715.job
 C:\WINDOWS\tasks\At716.job
 C:\WINDOWS\tasks\At717.job
 C:\WINDOWS\tasks\At718.job
 C:\WINDOWS\tasks\At719.job
 C:\WINDOWS\tasks\At72.job
 C:\WINDOWS\tasks\At720.job
 C:\WINDOWS\tasks\At721.job
 C:\WINDOWS\tasks\At722.job
 C:\WINDOWS\tasks\At723.job
 C:\WINDOWS\tasks\At724.job
 C:\WINDOWS\tasks\At725.job
 C:\WINDOWS\tasks\At726.job
 C:\WINDOWS\tasks\At727.job
 C:\WINDOWS\tasks\At728.job
 C:\WINDOWS\tasks\At729.job
 C:\WINDOWS\tasks\At73.job
 C:\WINDOWS\tasks\At730.job
 C:\WINDOWS\tasks\At731.job
 C:\WINDOWS\tasks\At732.job
 C:\WINDOWS\tasks\At733.job
 C:\WINDOWS\tasks\At734.job
 C:\WINDOWS\tasks\At735.job
 C:\WINDOWS\tasks\At736.job
 C:\WINDOWS\tasks\At737.job
 C:\WINDOWS\tasks\At738.job
 C:\WINDOWS\tasks\At739.job
 C:\WINDOWS\tasks\At74.job
 C:\WINDOWS\tasks\At740.job
 C:\WINDOWS\tasks\At741.job
 C:\WINDOWS\tasks\At742.job
 C:\WINDOWS\tasks\At743.job
 C:\WINDOWS\tasks\At744.job
 C:\WINDOWS\tasks\At75.job
 C:\WINDOWS\tasks\At76.job
 C:\WINDOWS\tasks\At77.job
 C:\WINDOWS\tasks\At78.job
 C:\WINDOWS\tasks\At79.job
 C:\WINDOWS\tasks\At8.job
 C:\WINDOWS\tasks\At80.job
 C:\WINDOWS\tasks\At81.job
 C:\WINDOWS\tasks\At82.job
 C:\WINDOWS\tasks\At83.job
 C:\WINDOWS\tasks\At84.job
 C:\WINDOWS\tasks\At85.job
 C:\WINDOWS\tasks\At86.job
 C:\WINDOWS\tasks\At87.job
 C:\WINDOWS\tasks\At88.job
 C:\WINDOWS\tasks\At89.job
 C:\WINDOWS\tasks\At9.job
 C:\WINDOWS\tasks\At90.job
 C:\WINDOWS\tasks\At91.job
 C:\WINDOWS\tasks\At92.job
 C:\WINDOWS\tasks\At93.job
 C:\WINDOWS\tasks\At94.job
 C:\WINDOWS\tasks\At95.job
 C:\WINDOWS\tasks\At96.job
 C:\WINDOWS\tasks\At97.job
 C:\WINDOWS\tasks\At98.job
 C:\WINDOWS\tasks\At99.job
 C:\WINDOWS\tasks\Google Software Updater.job
 C:\WINDOWS\tasks\GoogleUpdateT​askMachineCore.job
 C:\WINDOWS\tasks\GoogleUpdateT​askMachineUA.job
 C:\WINDOWS\tasks\WGASetup.job

 ======Registry dump======

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
 Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelper.dll [2006-10-22 62080]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
 AC-Pro - C:\Program Files\AutocompletePro\Autocomp​letePro.dll [2010-04-22 97760]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
 Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2009-01-26 1879896]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
 Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
 Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
 Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-29 279664]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
 Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNoti​fier\5.5.4723.1820\swg.dll [2010-02-04 812528]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
 Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\Toolbar]
 {21FA44EF-376D-4D53-9B0F-8A89D​3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
 {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-29 279664]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run]
 "LogitechVideoRepair"=C:\Progr​am Files\Logitech\Video\ISStart.e​xe []
 "mouseElf"=C:\PROGRA~1\GENIUS~​1\mouseElf.exe []
 "InCD"=C:\Program Files\Ahead\InCD\InCD.exe []
 "EasyTuneIV"=C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\ET4\et4Tray.exe []
 "SoundMan"=C:\WINDOWS\SOUNDMAN​.EXE [2003-08-15 57344]
 "NvCplDaemon"=C:\WINDOWS\syste​m32\NvCpl.dll [2007-06-29 8466432]
 "nwiz"=nwiz.exe /install []
 "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe [2007-08-16 185632]
 "nod32kui"=C:\Program Files\Eset\nod32kui.exe [2007-08-18 949376]
 "NvMediaCenter"=C:\WINDOWS\sys​tem32\NvMcTray.dll [2007-06-29 81920]
 "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-05-11 40048]
 "KernelFaultCheck"=C:\WINDOWS\​system32\dumprep 0 -k []

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Run]
 "MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
 "ctfmon.exe"=C:\WINDOWS\system​32\ctfmon.exe [2004-08-04 15360]
 "LaCie Backup"=C:\Program Files\LaCie\Backup Software\\LaCieBackup.exe /background []
 "swg"=C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe [2009-01-17 39408]
 "SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​RunOnce]
 "FlashPlayerUpdate"=C:\WINDOWS​\system32\Macromed\Flash\Flash​Util10b.exe [2009-02-03 240544]

 C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
 Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
 C:\WINDOWS\system32\WgaLogon.d​ll [2006-06-27 3584]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\ShellServiceObjectDelayLoad]
 WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D52​4869DB5} - C:\WINDOWS\system32\WPDShServi​ceObj.dll [2006-10-18 133632]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\System]
 "dontdisplaylastusername"=0
 "legalnoticecaption"=
 "legalnoticetext"=
 "shutdownwithoutlogon"=1
 "undockwithoutlogon"=1

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Policies\explorer]
 "NoDriveTypeAutoRun"=145

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\explorer]
 "HonorAutoRunSetting"=

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\standardprofile\authorizedap​plications\list]
 "%windir%\system32\sessmgr.exe​"="%windir%\system32\sessmgr.e​xe:*:enabled:@xpsp2res.dll,-22​019"
 "C:\Program Files\Messenger\msmsgs.exe"="C​:\Program Files\Messenger\msmsgs.exe:*:E​nabled:Windows Messenger"
 "C:\Program Files\Yahoo!\Messenger\YPager.​exe"="C:\Program Files\Yahoo!\Messenger\YPager.​exe:*:Enabled:Yahoo! Messenger"
 "C:\Program Files\Yahoo!\Messenger\YServer​.exe"="C:\Program Files\Yahoo!\Messenger\YServer​.exe:*:Enabled:Yahoo! FT Server"
 "C:\Program Files\eMule\emule.exe"="C:\Pro​gram Files\eMule\emule.exe:*:Disabl​ed:eMule"
 "C:\Program Files\Adobe\Acrobat eBook Reader\ReaderApp.exe"="C:\Prog​ram Files\Adobe\Acrobat eBook Reader\ReaderApp.exe:*:Enabled​:Acrobat eBook Reader"
 "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe"="C:\​Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe:*:Ena​bled:Logitech Desktop Messenger"
 "C:\Program Files\iTunes\iTunes.exe"="C:\P​rogram Files\iTunes\iTunes.exe:*:Enab​led:iTunes"
 "C:\Program Files\Microsoft Games\Flight Simulator 9\fs9.exe"="C:\Program Files\Microsoft Games\Flight Simulator 9\fs9.exe:*:Enabled:Microsoft Flight Simulator"
 "C:\WINDOWS\system32\dpnsvr.ex​e"="C:\WINDOWS\system32\dpnsvr​.exe:*:Enabled:Microsoft DirectPlay8 Server"
 "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:​\Program Files\Windows Live\Messenger\wlcsdk.exe:*:En​abled:Windows Live Call"
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C​:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger"
 "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"​="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:​*:Enabled:Windows Live FolderShare"
 "C:\WINDOWS\Temp\~TME8D.tmp"="​C:\WINDOWS\Temp\~TME8D.tmp:*:D​isabled:Sandboxie Start"
 "C:\WINDOWS\Temp\~TM5A.tmp"="C​:\WINDOWS\Temp\~TM5A.tmp:*:Ena​bled:services"

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\domainprofile\authorizedappl​ications\list]
 "%windir%\system32\sessmgr.exe​"="%windir%\system32\sessmgr.e​xe:*:enabled:@xpsp2res.dll,-22​019"
 "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe"="C:\​Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe:*:Ena​bled:Logitech Desktop Messenger"
 "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:​\Program Files\Windows Live\Messenger\wlcsdk.exe:*:En​abled:Windows Live Call"
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C​:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger"
 "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"​="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:​*:Enabled:Windows Live FolderShare"

 ======List of files/folders created in the last 1 months======

 2010-04-29 20:15:37 ----D---- C:\Program Files\trend micro
 2010-04-29 20:15:35 ----D---- C:\rsit
 2010-04-25 13:12:34 ----D---- C:\Program Files\AutocompletePro
 2010-04-14 19:44:22 ----HDC---- C:\WINDOWS\$NtUninstallKB97968​3$
 2010-04-14 19:44:11 ----HDC---- C:\WINDOWS\$NtUninstallKB98023​2$
 2010-04-14 19:44:01 ----HDC---- C:\WINDOWS\$NtUninstallKB98135​0$
 2010-04-14 19:43:53 ----HDC---- C:\WINDOWS\$NtUninstallKB97833​8$
 2010-04-14 19:43:45 ----HDC---- C:\WINDOWS\$NtUninstallKB97781​6$
 2010-04-14 19:42:33 ----HDC---- C:\WINDOWS\$NtUninstallKB97940​2_WM9L$
 2010-04-13 23:31:14 ----HDC---- C:\WINDOWS\$NtUninstallKB97860​1$
 2010-04-13 23:31:01 ----HDC---- C:\WINDOWS\$NtUninstallKB97930​9$
 2010-03-31 23:04:51 ----HDC---- C:\WINDOWS\$NtUninstallKB98018​2$

 ======List of files/folders modified in the last 1 months======

 2010-04-29 20:15:40 ----D---- C:\WINDOWS\Prefetch
 2010-04-29 20:15:37 ----RAD---- C:\Program Files
 2010-04-29 19:46:32 ----D---- C:\WINDOWS\Temp
 2010-04-29 19:00:00 ----A---- C:\WINDOWS\SchedLgU.Txt
 2010-04-29 18:52:49 ----SD---- C:\WINDOWS\Tasks
 2010-04-27 22:11:11 ----D---- C:\WINDOWS\system32\CatRoot2
 2010-04-27 19:54:54 ----D---- C:\WINDOWS\system32\drivers
 2010-04-26 20:19:03 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Google Updater
 2010-04-25 13:17:11 ----D---- C:\Program Files\eMule
 2010-04-24 20:39:07 ----D---- C:\WINDOWS
 2010-04-24 19:22:07 ----SD---- C:\WINDOWS\Downloaded Program Files
 2010-04-24 19:22:06 ----D---- C:\WINDOWS\system32
 2010-04-24 18:41:28 ----HD---- C:\WINDOWS\inf
 2010-04-14 19:44:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
 2010-04-14 19:44:18 ----HD---- C:\WINDOWS\$hf_mig$
 2010-04-14 19:44:15 ----A---- C:\WINDOWS\imsins.BAK
 2010-04-13 22:29:32 ----A---- C:\WINDOWS\IE4 Error Log.txt
 2010-04-12 22:38:56 ----SHD---- C:\WINDOWS\Installer
 2010-04-12 22:37:45 ----D---- C:\Program Files\Google
 2010-04-12 22:17:34 ----SHD---- C:\WINDOWS\CSC
 2010-03-31 23:04:58 ----D---- C:\Program Files\Internet Explorer

 ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\am​dk7.sys [2004-08-04 41600]
 R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\In​CDPass.sys [2003-12-17 28752]
 R1 incdrm;InCD EasyWrite Reader; C:\WINDOWS\system32\drivers\in​cdrm.sys [2003-08-21 25520]
 R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kb​dhid.sys [2004-08-04 14848]
 R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\no​d32drv.sys [2007-08-18 15424]
 R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws​2ifsl.sys [2001-08-28 12032]
 R2 AMON;AMON; C:\WINDOWS\system32\drivers\am​on.sys [2007-08-18 512096]
 R2 ETDrv;ETDrv; C:\WINDOWS\system32\drivers\ET​Drv.sys [2003-08-07 161060]
 R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fs​sfltr_tdi.sys [2009-08-05 54752]
 R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\AL​CXSENS.SYS [2003-08-14 404736]
 R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\AL​CXWDM.SYS [2003-08-15 462684]
 R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fe​tnd5.sys [2001-08-17 27165]
 R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GE​ARAspiWDM.sys [2005-02-02 14408]
 R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hi​dusb.sys [2001-08-28 9600]
 R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mo​uhid.sys [2001-08-28 12288]
 R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv​4_mini.sys [2007-06-29 6807328]
 R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​bccgp.sys [2004-08-03 31616]
 R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\us​behci.sys [2004-08-03 26624]
 R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​bhub.sys [2004-08-03 57600]
 R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​buhci.sys [2004-08-03 20480]
 R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\In​CDfs.sys [2003-12-17 91712]
 S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CC​DECODE.sys [2004-08-04 17024]
 S3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fe​tnd5b.sys [2003-09-01 41984]
 S3 genmcmnUSB;Genius USB Mouse Driver; C:\WINDOWS\system32\DRIVERS\gf​lmouhid.sys [2002-09-20 6834]
 S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GV​CplDrv.sys [2003-09-30 22880]
 S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MS​TEE.sys [2004-08-03 5504]
 S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NA​BTSFEC.sys [2004-08-04 85376]
 S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\Nd​isIP.sys [2004-08-04 10880]
 S3 QCMerced;Logitech QuickCam Communicate; C:\WINDOWS\system32\DRIVERS\LV​CM.sys []
 S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SL​IP.sys [2004-08-03 11136]
 S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SO​NYPVU1.SYS [2001-08-17 7552]
 S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\St​reamIP.sys [2004-08-03 15360]
 S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\us​baudio.sys [2004-08-04 59264]
 S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\us​bscan.sys [2004-08-03 15104]
 S3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\US​BSTOR.SYS [2004-08-03 26496]
 S3 WMIBIOS;%WMIBIOS.ServiceName%; C:\WINDOWS\System32\Drivers\wm​ibios.sys [2002-10-15 18272]
 S3 WMIINFO;WMIINFO Driver; C:\WINDOWS\System32\Drivers\wm​iinfo.sys [2002-05-13 21184]
 S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wp​dusb.sys [2006-10-18 38528]
 S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WS​TCODEC.SYS [2004-08-04 19328]
 S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wu​dfrd.sys [2006-09-28 82944]
 S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\In​telIde.sys []

 ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R2 InCDsrv;InCD Helper; C:\Program Files\Ahead\InCD\InCDsrv.exe [2003-12-17 802868]
 R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2007-08-18 552064]
 R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.ex​e [2007-06-29 155716]
 R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
 R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.ex​e [2004-08-04 14336]
 S2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe [2004-03-31 242784]
 S2 gupdate1c99c4ac4a14aac;Service Google Update (gupdate1c99c4ac4a14aac); C:\Program Files\Google\Update\GoogleUpda​te.exe [2009-03-03 133104]
 S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe [2009-03-25 183280]
 S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Frame​work\v2.0.50727\aspnet_state.e​xe [2008-07-25 34312]
 S3 ccPwdSvc;Symantec Password Validation; C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe [2004-03-31 87136]
 S3 clr_optimization_v2.0.50727_32​;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Frame​work\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
 S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Frame​work\v3.0\WPF\PresentationFont​Cache.exe [2008-07-29 46104]
 S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
 S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1​1\Intel 32\IDriverT.exe [2005-04-04 69632]
 S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Frame​work\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
 S3 iPodService;iPodService; C:\Program Files\iPod\bin\iPodService.exe [2006-06-14 323584]
 S3 SNDSrvc;Symantec Network Drivers Service; C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe [2004-03-11 193760]
 S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Frame​work\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

 -----------------EOF----------​-------


 info.txt logfile of random's system information tool 1.06 2010-04-29 20:16:03

 ======Uninstall list======

 -->C:\Program Files\DivX\DivXConverterUninst​all.exe /CONVERTER
 -->C:\Program Files\Fichiers communs\Real\Update_OB\r1punin​st.exe RealNetworks|RealPlayer|6.0
 -->rundll32.exe setupapi.dll,InstallHinfSectio​n DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
 Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\​Macromed\Flash\uninstall_activ​eX.exe
 Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\M​acromed\Flash\uninstall_plugin​.exe
 Adobe Reader 8.1.0 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A81​000000003}
 Ahead InCD EasyWrite Reader-->C:\WINDOWS\unmrw.exe /UNINSTALL
 Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18​E473546C7}
 AutocompletePro-->"C:\Program Files\AutocompletePro\unins000​.exe"
 Correctif pour Windows XP (KB952287)-->"C:\WINDOWS\$NtUn​installKB952287$\spuninst\spun​inst.exe"
 Correctif pour Windows XP (KB961118)-->"C:\WINDOWS\$NtUn​installKB961118$\spuninst\spun​inst.exe"
 Correctif pour Windows XP (KB970653-v3)-->"C:\WINDOWS\$N​tUninstallKB970653-v3$\spunins​t\spuninst.exe"
 Correctif pour Windows XP (KB976098-v2)-->"C:\WINDOWS\$N​tUninstallKB976098-v2$\spunins​t\spuninst.exe"
 Correctif pour Windows XP (KB979306)-->"C:\WINDOWS\$NtUn​installKB979306$\spuninst\spun​inst.exe"
 Correctif Windows XP - KB873339-->C:\WINDOWS\$NtUnins​tallKB873339$\spuninst\spunins​t.exe
 Correctif Windows XP - KB885835-->C:\WINDOWS\$NtUnins​tallKB885835$\spuninst\spunins​t.exe
 Correctif Windows XP - KB885836-->C:\WINDOWS\$NtUnins​tallKB885836$\spuninst\spunins​t.exe
 Correctif Windows XP - KB885884-->C:\WINDOWS\$NtUnins​tallKB885884$\spuninst\spunins​t.exe
 Correctif Windows XP - KB886185-->C:\WINDOWS\$NtUnins​tallKB886185$\spuninst\spunins​t.exe
 Correctif Windows XP - KB888302-->C:\WINDOWS\$NtUnins​tallKB888302$\spuninst\spunins​t.exe
 Correctif Windows XP - KB890859-->"C:\WINDOWS\$NtUnin​stallKB890859$\spuninst\spunin​st.exe"
 Correctif Windows XP - KB891781-->C:\WINDOWS\$NtUnins​tallKB891781$\spuninst\spunins​t.exe
 Disc2Phone-->MsiExec.exe /I{FFAB5ABB-8AAB-42E2-847F-174​3E51E01E9}
 DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.​exe /CODEC
 DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploader​Uninstall.exe /CUPLOADER
 DivX Converter-->C:\Program Files\DivX\DivXConverterUninst​all.exe /CONVERTER
 DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall​.exe /PLAYER
 DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninst​all.exe /PLUGIN
 Drivers Comtrend CT-56x-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\​engine\6\INTEL3~1\Ctor.dll,Lau​nchSetup "C:\Program Files\InstallShield Installation Information\{58ADBB59-B279-4B6​5-9705-D393891840FF}\setup.exe​" -l0x40c
 EasyTune4-->C:\WINDOWS\IsUnins​t.exe -f"C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\ET4\Uninst.isu"
 eMule-->"C:\Program Files\eMule\Uninstall.exe"
 Enable S3 for USB Device-->C:\WINDOWS\IsUninst.e​xe -f"C:\Program Files\Gigabyte\Enable S3 for USB Device\Uninst.isu"
 Galerie de photos Windows Live-->MsiExec.exe /X{B131E59D-202C-43C6-84C9-68F​0C37541F1}
 Genius Wireless TwinTouch Optical Office-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\​PROFES~1\RunTime\0701\Intel32\​Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D838F7B7-3D29-4F4​4-8A09-D4AA6A332E41}\setup.exe​" -l0x40c
 Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolba​rManager_E85CDE7661A53A6A.exe" /uninstall
 Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34​B2F06600C}
 Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC4​4E68B55E2}
 Google Earth-->MsiExec.exe /X{08C0729E-3E50-11DF-9D81-005​056806466}
 HijackThis 2.0.2-->"C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Mes documents\HijackThis.exe" /uninstall
 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system​32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DC​F5C5BD9} /uninstall  /qb+ REBOOTPROMPT=""
 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system​32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DC​F5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A​786E658} /qb+ REBOOTPROMPT=""
 Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUn​installKB929399$\spuninst\spun​inst.exe"
 Hotfix for Windows XP (KB926239)-->"C:\WINDOWS\$NtUn​installKB926239$\spuninst\spun​inst.exe"
 InCD-->C:\WINDOWS\NuNInst.exe /UNINSTALL
 Installation Windows Live-->C:\Program Files\Windows Live\Installer\wlarp.exe
 Installation Windows Live-->MsiExec.exe /I{46ABBC54-1872-4AA3-95E2-F2C​063A63F31}
 iTunes-->C:\PROGRA~1\FICHIE~1\​INSTAL~1\Driver\11\INTEL3~1\ID​river.exe /M{54C0D94A-F467-4ABC-9D02-6E5​8748668D4} /l1036
 Junk Mail filter update-->MsiExec.exe /I{E2DFE069-083E-4631-9B6C-43C​48E991DE5}
 Kit de connexion ADSL-->RunDll32 C:\PROGRA~1\FICHIE~1\INSTAL~1\​engine\6\INTEL3~1\Ctor.dll,Lau​nchSetup "C:\Program Files\InstallShield Installation Information\{BA39772B-D674-4FF​F-ADC3-16333DC83232}\setup.exe​" -l040c -ct35x
 LaCie Backup Software v1.5.2215-->MsiExec.exe /I{6DD9963C-271A-4A14-82B0-4DC​148C52E58}
 Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
 Microsoft .NET Framework 1.1 French Language Pack-->MsiExec.exe /X{9A394342-4A68-4EBA-85A6-55B​559F4E700}
 Microsoft .NET Framework 1.1 Security Update (KB953297)-->"C:\WINDOWS\Micro​soft.NET\Framework\v1.1.4322\U​pdates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Fram​ework\v1.1.4322\Updates\M95329​7\M953297Uninstall.msp"
 Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52E​AE172A1}
 Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F5​2EAE172A1}
 Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1​D67F2073F}
 Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8D​CCDE8F8C7}
 Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET​\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
 Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4​DCF5C5BD9}
 Microsoft Choice Guard-->MsiExec.exe /X{F0E12BBA-AD66-4022-A453-A1C​8A0C4D570}
 Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallM​SCompPackV1$\spuninst\spuninst​.exe"
 Microsoft Office Live Add-in 1.3-->MsiExec.exe /I{57F0ED40-8F11-41AA-B926-4A6​6D0D1A9CC}
 Microsoft Office XP Professional avec FrontPage-->MsiExec.exe /I{9028040C-6000-11D3-8CFE-005​0048383C9}
 Microsoft Search Enhancement Pack-->MsiExec.exe /X{4C

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 29/04/2010 à 19:36:05  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Oui en effet tu ai bien infecter... on va s'en ocuper  ;)

 --> Rend toi ici sur ce lien : http://cjoint.com/
 --> ou il ai marquer joindre un fichier clique sur parcourir et recherche ce fichier :
 C:/RSIT/info.txt
 ->> Clic sur OK/Envoyer
 --> a la fin du chargement de la page un lien va ce former copie le et colle le ici.

 Puis :

 Telecharge >>> Malwarebytes <<<
 http://www.malwarebytes.org/mb [...] -setup.exe
 --> Une fois installer ouvre le en mode administrateur pour windows Vista/7
 --> Clique sur l'onglet mise a jour, et mets le a jour (sinon ineficace),
 --> Retourne dans l'onglet recherche, et execute un examen complet,
 --> Tu pourra si infection trouver, cliquer sur effacer la selection et poste le rapport ici :...

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 29/04/2010 à 20:35:57  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
http://cjoint.com/?eDvvihYtln

 j'ai déjà fait tourner malwerbytes hier donc voici le rapport:

 Malwarebytes' Anti-Malware 1.43
 Version de la base de données: 3462
 Windows 5.1.2600 Service Pack 2
 Internet Explorer 6.0.2900.2180

 29/04/2010 21:33:33
 mbam-log-2010-04-29 (21-33-33).txt

 Type de recherche: Examen complet (C:\|)
 Eléments examinés: 204865
 Temps écoulé: 39 minute(s), 18 second(s)

 Processus mémoire infecté(s): 0
 Module(s) mémoire infecté(s): 0
 Clé(s) du Registre infectée(s): 0
 Valeur(s) du Registre infectée(s): 0
 Elément(s) de données du Registre infecté(s): 0
 Dossier(s) infecté(s): 0
 Fichier(s) infecté(s): 0

 Processus mémoire infecté(s):
 (Aucun élément nuisible détecté)

 Module(s) mémoire infecté(s):
 (Aucun élément nuisible détecté)

 Clé(s) du Registre infectée(s):
 (Aucun élément nuisible détecté)

 Valeur(s) du Registre infectée(s):
 (Aucun élément nuisible détecté)

 Elément(s) de données du Registre infecté(s):
 (Aucun élément nuisible détecté)

 Dossier(s) infecté(s):
 (Aucun élément nuisible détecté)

 Fichier(s) infecté(s):
 (Aucun élément nuisible détecté)

(Publicité)
  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 29/04/2010 à 20:48:17  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
ok,
 Version de la base de données: 3462
 (Non mis a jour)

 Relance malwarebytes, met ce cou si, met le a jour, et relance un examen complet, puis post le rapport en fin d'analyse STP ;-)
 :fume:

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 29/04/2010 à 22:02:47  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Malwarebytes' Anti-Malware 1.46
 www.malwarebytes.org

 Version de la base de données: 4052

 Windows 5.1.2600 Service Pack 2
 Internet Explorer 6.0.2900.2180

 29/04/2010 23:00:40
 mbam-log-2010-04-29 (23-00-40).txt

 Type d'examen: Examen complet (C:\|)
 Elément(s) analysé(s): 207075
 Temps écoulé: 40 minute(s), 42 seconde(s)

 Processus mémoire infecté(s): 0
 Module(s) mémoire infecté(s): 1
 Clé(s) du Registre infectée(s): 6
 Valeur(s) du Registre infectée(s): 1
 Elément(s) de données du Registre infecté(s): 0
 Dossier(s) infecté(s): 6
 Fichier(s) infecté(s): 14

 Processus mémoire infecté(s):
 (Aucun élément nuisible détecté)

 Module(s) mémoire infecté(s):
 C:\Program Files\AutocompletePro\Autocomp​letePro.dll (Adware.PredictAd) -> No action taken.

 Clé(s) du Registre infectée(s):
 HKEY_CLASSES_ROOT\TypeLib\{01b​cb858-2f62-4f06-a8f4-48f927c15​333} (Adware.PredictAd) -> No action taken.
 HKEY_CLASSES_ROOT\Interface\{c​9ae652b-8c99-4ac2-b556-8b50118​2874e} (Adware.PredictAd) -> No action taken.
 HKEY_CLASSES_ROOT\CLSID\{0fb6a​909-6086-458f-bd92-1f8ee10042a​0} (Adware.PredictAd) -> No action taken.
 HKEY_CURRENT_USER\SOFTWARE\Mic​rosoft\Windows\CurrentVersion\​Ext\Stats\{0fb6a909-6086-458f-​bd92-1f8ee10042a0} (Adware.PredictAd) -> No action taken.
 HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{0fb6a909-6086-458f-bd​92-1f8ee10042a0} (Adware.PredictAd) -> No action taken.
 HKEY_CLASSES_ROOT\AppID\Autoco​mpletePro.DLL (Adware.PredictAd) -> No action taken.

 Valeur(s) du Registre infectée(s):
 HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zilla\Firefox\Extensions\suppo​rt@predictad.com (Adware.PredictAd) -> No action taken.

 Elément(s) de données du Registre infecté(s):
 (Aucun élément nuisible détecté)

 Dossier(s) infecté(s):
 C:\Program Files\AutocompletePro (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome\content (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\defaults (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\defaults\prefere​nces (Adware.PredictAd) -> No action taken.

 Fichier(s) infecté(s):
 C:\Program Files\AutocompletePro\Autocomp​letePro.dll (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\AcRemote​Update.exe (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\InstTrac​ker.exe (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\TaskSche​duler.dll (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\unins000​.dat (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\unins000​.exe (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome.manifest (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\install.rdf (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome\content\b​rowserOverlay.xul (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome\content\o​ptions.js (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome\content\o​ptions.xul (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome\content\u​tils.js (Adware.PredictAd) -> No action taken.
 C:\Program Files\AutocompletePro\support@​predictad.com\defaults\prefere​nces\predictad.js (Adware.PredictAd) -> No action taken.
 C:\WINDOWS\system32\config\sys​temprofile\Application Data\fvgqad.dat (Malware.Trace) -> No action taken.

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 29/04/2010 à 22:05:41  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:
 Pourquois je vois No action taken Partout ??

 A tu bien cliquer sur effacer la selection ??  :whistle:

(Publicité)
loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 29/04/2010 à 22:13:04  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
oui après que j'ai posté le scan :pleure:

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 29/04/2010 à 22:24:11  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Pas grave ;-)...  :sol:
 Ouvre malwarebytes, Rentre dans l'onglet rapport/logs..
 Post moi le dernier dans la liste STP  :fume:  ;-)..

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/05/2010 à 11:07:17  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
ok  :fume:

 Malwarebytes' Anti-Malware 1.46
 www.malwarebytes.org

 Version de la base de données: 4052

 Windows 5.1.2600 Service Pack 2
 Internet Explorer 6.0.2900.2180

 29/04/2010 23:02:06
 mbam-log-2010-04-29 (23-02-06).txt

 Type d'examen: Examen complet (C:\|)
 Elément(s) analysé(s): 207075
 Temps écoulé: 40 minute(s), 42 seconde(s)

 Processus mémoire infecté(s): 0
 Module(s) mémoire infecté(s): 1
 Clé(s) du Registre infectée(s): 6
 Valeur(s) du Registre infectée(s): 1
 Elément(s) de données du Registre infecté(s): 0
 Dossier(s) infecté(s): 6
 Fichier(s) infecté(s): 14

 Processus mémoire infecté(s):
 (Aucun élément nuisible détecté)

 Module(s) mémoire infecté(s):
 C:\Program Files\AutocompletePro\Autocomp​letePro.dll (Adware.PredictAd) -> Delete on reboot.

 Clé(s) du Registre infectée(s):
 HKEY_CLASSES_ROOT\TypeLib\{01b​cb858-2f62-4f06-a8f4-48f927c15​333} (Adware.PredictAd) -> Quarantined and deleted successfully.
 HKEY_CLASSES_ROOT\Interface\{c​9ae652b-8c99-4ac2-b556-8b50118​2874e} (Adware.PredictAd) -> Quarantined and deleted successfully.
 HKEY_CLASSES_ROOT\CLSID\{0fb6a​909-6086-458f-bd92-1f8ee10042a​0} (Adware.PredictAd) -> Quarantined and deleted successfully.
 HKEY_CURRENT_USER\SOFTWARE\Mic​rosoft\Windows\CurrentVersion\​Ext\Stats\{0fb6a909-6086-458f-​bd92-1f8ee10042a0} (Adware.PredictAd) -> Quarantined and deleted successfully.
 HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{0fb6a909-6086-458f-bd​92-1f8ee10042a0} (Adware.PredictAd) -> Quarantined and deleted successfully.
 HKEY_CLASSES_ROOT\AppID\Autoco​mpletePro.DLL (Adware.PredictAd) -> Quarantined and deleted successfully.

 Valeur(s) du Registre infectée(s):
 HKEY_LOCAL_MACHINE\SOFTWARE\Mo​zilla\Firefox\Extensions\suppo​rt@predictad.com (Adware.PredictAd) -> Quarantined and deleted successfully.

 Elément(s) de données du Registre infecté(s):
 (Aucun élément nuisible détecté)

 Dossier(s) infecté(s):
 C:\Program Files\AutocompletePro (Adware.PredictAd) -> Delete on reboot.
 C:\Program Files\AutocompletePro\support@​predictad.com (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome\content (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\defaults (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\defaults\prefere​nces (Adware.PredictAd) -> Quarantined and deleted successfully.

 Fichier(s) infecté(s):
 C:\Program Files\AutocompletePro\Autocomp​letePro.dll (Adware.PredictAd) -> Delete on reboot.
 C:\Program Files\AutocompletePro\AcRemote​Update.exe (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\InstTrac​ker.exe (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\TaskSche​duler.dll (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\unins000​.dat (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\unins000​.exe (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome.manifest (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\install.rdf (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome\content\b​rowserOverlay.xul (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome\content\o​ptions.js (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome\content\o​ptions.xul (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\chrome\content\u​tils.js (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\Program Files\AutocompletePro\support@​predictad.com\defaults\prefere​nces\predictad.js (Adware.PredictAd) -> Quarantined and deleted successfully.
 C:\WINDOWS\system32\config\sys​temprofile\Application Data\fvgqad.dat (Malware.Trace) -> Quarantined and deleted successfully.

(Publicité)
  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 01/05/2010 à 12:19:50  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:super:  OK, Suprime la quarantaine de MBAM  :super:

 Télécharge USBFix ( El Desaparecido , C_XX & Chimay8 ) sur ton bureau.
 http://pagesperso-orange.fr/No [...] UsbFix.exe

 (!) Branche tes sources de données externes à ton PC, (clé USB, disque dur externe, etc...) sans les ouvrir
 1.
 --> Double clic (Clique droit executer en tant qu'administrateur"POUR VISTA/7) sur UsbFix.exe présent sur ton bureau .
 --> Au menu principal choisis l'option " F " pour français et tape sur [entrée] .
 --> Au second menu Choisis l'option " 1 " (recherche) et tape sur [entrée]
 -> Laisse travailler l'outil.
 --> Ensuite post le rapport UsbFix.txt qui apparaitra.
 (!) Le menu démarrer et les icônes Risque de disparaître, ou de s'intiller.. c'est normal (!)

 Note : Le rapport UsbFix.txt est sauvegardé a la racine du disque. ( C:\UsbFix.txt )

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/05/2010 à 13:38:44  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:  :jap: merci pour ta précieuse aide:


 ############################## | UsbFix V6.110 |

 User : Loulou (Administrateurs) # LOULOU-7984AD02
 Update on 29/04/2010 by El Desaparecido , C_XX & Chimay8
 Start at: 14:33:22 | 01/05/2010
 Website : http://pagesperso-orange.fr/NosTools/index.html
 Contact : FindyKill.Contact@gmail.com

 AMD Athlon(tm) XP 2800+
 Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
 Internet Explorer 6.0.2900.2180
 Windows Firewall Status : Enabled
 AV : ESET NOD32 antivirus system 2.70 2.70 [ Enabled | (!) Outdated ]

 A:\ -> Lecteur de disquettes 3 ½ pouces
 C:\ -> Disque fixe local # 114,48 Go (69,2 Go free) # NTFS
 E:\ -> Disque CD-ROM
 F:\ -> Disque CD-ROM

 ################## | Elements infectieux |

 C:\WINDOWS\Tasks\At1.job  
 C:\WINDOWS\Tasks\At2.job  
 C:\WINDOWS\Tasks\At3.job  
 C:\WINDOWS\Tasks\At4.job  
 C:\WINDOWS\Tasks\At5.job  
 C:\WINDOWS\Tasks\At6.job  
 C:\WINDOWS\Tasks\At7.job  
 C:\WINDOWS\Tasks\At8.job  
 C:\WINDOWS\Tasks\At9.job  
 C:\WINDOWS\Tasks\At1.job  
 C:\WINDOWS\Tasks\At10.job  
 C:\WINDOWS\Tasks\At11.job  
 C:\WINDOWS\Tasks\At12.job  
 C:\WINDOWS\Tasks\At13.job  
 C:\WINDOWS\Tasks\At14.job  
 C:\WINDOWS\Tasks\At15.job  
 C:\WINDOWS\Tasks\At16.job  
 C:\WINDOWS\Tasks\At17.job  
 C:\WINDOWS\Tasks\At18.job  
 C:\WINDOWS\Tasks\At19.job  
 C:\WINDOWS\Tasks\At2.job  
 C:\WINDOWS\Tasks\At20.job  
 C:\WINDOWS\Tasks\At21.job  
 C:\WINDOWS\Tasks\At22.job  
 C:\WINDOWS\Tasks\At23.job  
 C:\WINDOWS\Tasks\At24.job  
 C:\WINDOWS\Tasks\At25.job  
 C:\WINDOWS\Tasks\At26.job  
 C:\WINDOWS\Tasks\At27.job  
 C:\WINDOWS\Tasks\At28.job  
 C:\WINDOWS\Tasks\At29.job  
 C:\WINDOWS\Tasks\At3.job  
 C:\WINDOWS\Tasks\At30.job  
 C:\WINDOWS\Tasks\At31.job  
 C:\WINDOWS\Tasks\At32.job  
 C:\WINDOWS\Tasks\At33.job  
 C:\WINDOWS\Tasks\At34.job  
 C:\WINDOWS\Tasks\At35.job  
 C:\WINDOWS\Tasks\At36.job  
 C:\WINDOWS\Tasks\At37.job  
 C:\WINDOWS\Tasks\At38.job  
 C:\WINDOWS\Tasks\At39.job  
 C:\WINDOWS\Tasks\At4.job  
 C:\WINDOWS\Tasks\At40.job  
 C:\WINDOWS\Tasks\At41.job  
 C:\WINDOWS\Tasks\At42.job  
 C:\WINDOWS\Tasks\At43.job  
 C:\WINDOWS\Tasks\At44.job  
 C:\WINDOWS\Tasks\At45.job  
 C:\WINDOWS\Tasks\At46.job  
 C:\WINDOWS\Tasks\At47.job  
 C:\WINDOWS\Tasks\At48.job  
 C:\WINDOWS\Tasks\At49.job  
 C:\WINDOWS\Tasks\At5.job  
 C:\WINDOWS\Tasks\At50.job  
 C:\WINDOWS\Tasks\At51.job  
 C:\WINDOWS\Tasks\At52.job  
 C:\WINDOWS\Tasks\At53.job  
 C:\WINDOWS\Tasks\At54.job  
 C:\WINDOWS\Tasks\At55.job  
 C:\WINDOWS\Tasks\At56.job  
 C:\WINDOWS\Tasks\At57.job  
 C:\WINDOWS\Tasks\At58.job  
 C:\WINDOWS\Tasks\At59.job  
 C:\WINDOWS\Tasks\At6.job  
 C:\WINDOWS\Tasks\At60.job  
 C:\WINDOWS\Tasks\At61.job  
 C:\WINDOWS\Tasks\At62.job  
 C:\WINDOWS\Tasks\At63.job  
 C:\WINDOWS\Tasks\At64.job  
 C:\WINDOWS\Tasks\At65.job  
 C:\WINDOWS\Tasks\At66.job  
 C:\WINDOWS\Tasks\At67.job  
 C:\WINDOWS\Tasks\At68.job  
 C:\WINDOWS\Tasks\At69.job  
 C:\WINDOWS\Tasks\At7.job  
 C:\WINDOWS\Tasks\At70.job  
 C:\WINDOWS\Tasks\At71.job  
 C:\WINDOWS\Tasks\At72.job  
 C:\WINDOWS\Tasks\At73.job  
 C:\WINDOWS\Tasks\At74.job  
 C:\WINDOWS\Tasks\At75.job  
 C:\WINDOWS\Tasks\At76.job  
 C:\WINDOWS\Tasks\At77.job  
 C:\WINDOWS\Tasks\At78.job  
 C:\WINDOWS\Tasks\At79.job  
 C:\WINDOWS\Tasks\At8.job  
 C:\WINDOWS\Tasks\At80.job  
 C:\WINDOWS\Tasks\At81.job  
 C:\WINDOWS\Tasks\At82.job  
 C:\WINDOWS\Tasks\At83.job  
 C:\WINDOWS\Tasks\At84.job  
 C:\WINDOWS\Tasks\At85.job  
 C:\WINDOWS\Tasks\At86.job  
 C:\WINDOWS\Tasks\At87.job  
 C:\WINDOWS\Tasks\At88.job  
 C:\WINDOWS\Tasks\At89.job  
 C:\WINDOWS\Tasks\At9.job  
 C:\WINDOWS\Tasks\At90.job  
 C:\WINDOWS\Tasks\At91.job  
 C:\WINDOWS\Tasks\At92.job  
 C:\WINDOWS\Tasks\At93.job  
 C:\WINDOWS\Tasks\At94.job  
 C:\WINDOWS\Tasks\At95.job  
 C:\WINDOWS\Tasks\At96.job  
 C:\WINDOWS\Tasks\At97.job  
 C:\WINDOWS\Tasks\At98.job  
 C:\WINDOWS\Tasks\At99.job  

 ################## | Registre |


 ################## | Mountpoints2 |


 ################## | Vaccin |

 (!) Cet ordinateur n'est pas vacciné !  

 ################## | ! Fin du rapport # UsbFix V6.110 ! |

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 01/05/2010 à 13:52:52  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Impec,  :super:

 2.
 --> Double clic (clique "droit executer en tant qu'administrateur pour VISTA/7) Sur USBfix.exe présent sur ton bureau
 --> Au menu principale choisis l'option "F" pour français, et tape sur [entrée]
 --> Au second menu choisis l'option "2" (Supression) et tape sur [entrée]
 -> Laisse travailler l'outil
 --> Ensuite post le rapport qui apparaitra
 (!) Le menu démarrer et les icônes vont disparaître.. c'est normal (!)
 :fume:  :fume:

(Publicité)
loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/05/2010 à 14:22:00  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:  :jap:


 ############################## | UsbFix V6.110 |

 User : Loulou (Administrateurs) # LOULOU-7984AD02
 Update on 29/04/2010 by El Desaparecido , C_XX & Chimay8
 Start at: 15:09:36 | 01/05/2010
 Website : http://pagesperso-orange.fr/NosTools/index.html
 Contact : FindyKill.Contact@gmail.com

 AMD Athlon(tm) XP 2800+
 Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
 Internet Explorer 6.0.2900.2180
 Windows Firewall Status : Enabled
 AV : ESET NOD32 antivirus system 2.70 2.70 [ Enabled | (!) Outdated ]

 A:\ -> Lecteur de disquettes 3 ½ pouces
 C:\ -> Disque fixe local # 114,48 Go (69,17 Go free) # NTFS
 E:\ -> Disque CD-ROM
 F:\ -> Disque CD-ROM

 ################## | Elements infectieux |

 Supprimé ! C:\WINDOWS\Tasks\At1.job
 Supprimé ! C:\WINDOWS\Tasks\At2.job
 Supprimé ! C:\WINDOWS\Tasks\At3.job
 Supprimé ! C:\WINDOWS\Tasks\At4.job
 Supprimé ! C:\WINDOWS\Tasks\At5.job
 Supprimé ! C:\WINDOWS\Tasks\At6.job
 Supprimé ! C:\WINDOWS\Tasks\At7.job
 Supprimé ! C:\WINDOWS\Tasks\At8.job
 Supprimé ! C:\WINDOWS\Tasks\At9.job
 Supprimé ! C:\WINDOWS\Tasks\At10.job
 Supprimé ! C:\WINDOWS\Tasks\At11.job
 Supprimé ! C:\WINDOWS\Tasks\At12.job
 Supprimé ! C:\WINDOWS\Tasks\At13.job
 Supprimé ! C:\WINDOWS\Tasks\At14.job
 Supprimé ! C:\WINDOWS\Tasks\At15.job
 Supprimé ! C:\WINDOWS\Tasks\At16.job
 Supprimé ! C:\WINDOWS\Tasks\At17.job
 Supprimé ! C:\WINDOWS\Tasks\At18.job
 Supprimé ! C:\WINDOWS\Tasks\At19.job
 Supprimé ! C:\WINDOWS\Tasks\At20.job
 Supprimé ! C:\WINDOWS\Tasks\At21.job
 Supprimé ! C:\WINDOWS\Tasks\At22.job
 Supprimé ! C:\WINDOWS\Tasks\At23.job
 Supprimé ! C:\WINDOWS\Tasks\At24.job
 Supprimé ! C:\WINDOWS\Tasks\At25.job
 Supprimé ! C:\WINDOWS\Tasks\At26.job
 Supprimé ! C:\WINDOWS\Tasks\At27.job
 Supprimé ! C:\WINDOWS\Tasks\At28.job
 Supprimé ! C:\WINDOWS\Tasks\At29.job
 Supprimé ! C:\WINDOWS\Tasks\At30.job
 Supprimé ! C:\WINDOWS\Tasks\At31.job
 Supprimé ! C:\WINDOWS\Tasks\At32.job
 Supprimé ! C:\WINDOWS\Tasks\At33.job
 Supprimé ! C:\WINDOWS\Tasks\At34.job
 Supprimé ! C:\WINDOWS\Tasks\At35.job
 Supprimé ! C:\WINDOWS\Tasks\At36.job
 Supprimé ! C:\WINDOWS\Tasks\At37.job
 Supprimé ! C:\WINDOWS\Tasks\At38.job
 Supprimé ! C:\WINDOWS\Tasks\At39.job
 Supprimé ! C:\WINDOWS\Tasks\At40.job
 Supprimé ! C:\WINDOWS\Tasks\At41.job
 Supprimé ! C:\WINDOWS\Tasks\At42.job
 Supprimé ! C:\WINDOWS\Tasks\At43.job
 Supprimé ! C:\WINDOWS\Tasks\At44.job
 Supprimé ! C:\WINDOWS\Tasks\At45.job
 Supprimé ! C:\WINDOWS\Tasks\At46.job
 Supprimé ! C:\WINDOWS\Tasks\At47.job
 Supprimé ! C:\WINDOWS\Tasks\At48.job
 Supprimé ! C:\WINDOWS\Tasks\At49.job
 Supprimé ! C:\WINDOWS\Tasks\At50.job
 Supprimé ! C:\WINDOWS\Tasks\At51.job
 Supprimé ! C:\WINDOWS\Tasks\At52.job
 Supprimé ! C:\WINDOWS\Tasks\At53.job
 Supprimé ! C:\WINDOWS\Tasks\At54.job
 Supprimé ! C:\WINDOWS\Tasks\At55.job
 Supprimé ! C:\WINDOWS\Tasks\At56.job
 Supprimé ! C:\WINDOWS\Tasks\At57.job
 Supprimé ! C:\WINDOWS\Tasks\At58.job
 Supprimé ! C:\WINDOWS\Tasks\At59.job
 Supprimé ! C:\WINDOWS\Tasks\At60.job
 Supprimé ! C:\WINDOWS\Tasks\At61.job
 Supprimé ! C:\WINDOWS\Tasks\At62.job
 Supprimé ! C:\WINDOWS\Tasks\At63.job
 Supprimé ! C:\WINDOWS\Tasks\At64.job
 Supprimé ! C:\WINDOWS\Tasks\At65.job
 Supprimé ! C:\WINDOWS\Tasks\At66.job
 Supprimé ! C:\WINDOWS\Tasks\At67.job
 Supprimé ! C:\WINDOWS\Tasks\At68.job
 Supprimé ! C:\WINDOWS\Tasks\At69.job
 Supprimé ! C:\WINDOWS\Tasks\At70.job
 Supprimé ! C:\WINDOWS\Tasks\At71.job
 Supprimé ! C:\WINDOWS\Tasks\At72.job
 Supprimé ! C:\WINDOWS\Tasks\At73.job
 Supprimé ! C:\WINDOWS\Tasks\At74.job
 Supprimé ! C:\WINDOWS\Tasks\At75.job
 Supprimé ! C:\WINDOWS\Tasks\At76.job
 Supprimé ! C:\WINDOWS\Tasks\At77.job
 Supprimé ! C:\WINDOWS\Tasks\At78.job
 Supprimé ! C:\WINDOWS\Tasks\At79.job
 Supprimé ! C:\WINDOWS\Tasks\At80.job
 Supprimé ! C:\WINDOWS\Tasks\At81.job
 Supprimé ! C:\WINDOWS\Tasks\At82.job
 Supprimé ! C:\WINDOWS\Tasks\At83.job
 Supprimé ! C:\WINDOWS\Tasks\At84.job
 Supprimé ! C:\WINDOWS\Tasks\At85.job
 Supprimé ! C:\WINDOWS\Tasks\At86.job
 Supprimé ! C:\WINDOWS\Tasks\At87.job
 Supprimé ! C:\WINDOWS\Tasks\At88.job
 Supprimé ! C:\WINDOWS\Tasks\At89.job
 Supprimé ! C:\WINDOWS\Tasks\At90.job
 Supprimé ! C:\WINDOWS\Tasks\At91.job
 Supprimé ! C:\WINDOWS\Tasks\At92.job
 Supprimé ! C:\WINDOWS\Tasks\At93.job
 Supprimé ! C:\WINDOWS\Tasks\At94.job
 Supprimé ! C:\WINDOWS\Tasks\At95.job
 Supprimé ! C:\WINDOWS\Tasks\At96.job
 Supprimé ! C:\WINDOWS\Tasks\At97.job
 Supprimé ! C:\WINDOWS\Tasks\At98.job
 Supprimé ! C:\WINDOWS\Tasks\At99.job
 Supprimé ! C:\Recycler\S-1-5-21-175798126​6-1214440339-839522115-1003
 Supprimé ! C:\Recycler\S-1-5-21-202542926​5-1390067357-725345543-1003

 ################## | Registre |


 ################## | Mountpoints2 |


 ################## | Listing des fichiers présent |

 [04/07/2004 01:29|--a------|0] C:\AUTOEXEC.BAT
 [15/08/2007 16:29|---hs----|212] C:\boot.ini
 [28/08/2001 17:00|-rahs----|4952] C:\Bootfont.bin
 [04/07/2004 01:29|--a------|0] C:\CONFIG.SYS
 [?|?|?] C:\hiberfil.sys
 [01/05/2010 12:50|--a------|5458776] C:\immudebug.log
 [04/07/2004 01:29|-rahs----|0] C:\IO.SYS
 [11/11/2008 13:13|--a------|90] C:\LogiSetup.log
 [04/07/2004 01:29|-rahs----|0] C:\MSDOS.SYS
 [03/08/2004 22:38|-rahs----|47564] C:\NTDETECT.COM
 [03/08/2004 22:59|-rahs----|251712] C:\ntldr
 [?|?|?] C:\pagefile.sys
 [01/05/2010 15:13|--a------|5393] C:\UsbFix.txt

 ################## | Vaccination |

 # C:\autorun.inf -> Dossier créé par UsbFix (El Desaparecido).

 ################## | Upload |

 Veuillez envoyer le fichier : C:\UsbFix_Upload_Me_LOULOU-798​4AD02.zip : http://chiquitine.changelog.fr/Sample/Upload.php
 Merci pour votre contribution .  

 ################## | ! Fin du rapport # UsbFix V6.110 ! |

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 01/05/2010 à 14:26:12  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Ok, :sol:

 par prevention, on va vacciner tous sa :

 3.
 --> Double clic (clique "droit executer en tant qu'administrateur pour VISTA/7) Sur USBfix.exe présent sur ton bureau
 --> Au menu principale choisis l'option "F" pour français, et tape sur [entrée]
 --> Au second menu choisis l'option "Vacciner" et tape sur [entrée]
 -> Laisse travailler l'outil
 --> Ensuite post le rapport qui apparaitra

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/05/2010 à 14:33:06  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 

 ############################## | UsbFix V6.110 |

 User : Loulou (Administrateurs) # LOULOU-7984AD02
 Update on 29/04/2010 by El Desaparecido , C_XX & Chimay8
 Start at: 15:30:13 | 01/05/2010
 Website : http://pagesperso-orange.fr/NosTools/index.html
 Contact : FindyKill.Contact@gmail.com

 AMD Athlon(tm) XP 2800+
 Microsoft Windows XP Professionnel (5.1.2600 32-bit) # Service Pack 2
 Internet Explorer 6.0.2900.2180
 Windows Firewall Status : Enabled
 AV : ESET NOD32 antivirus system 2.70 2.70 [ Enabled | (!) Outdated ]

 A:\ -> Lecteur de disquettes 3 ½ pouces
 C:\ -> Disque fixe local # 114,48 Go (70,6 Go free) # NTFS
 E:\ -> Disque CD-ROM
 F:\ -> Disque CD-ROM

 ################## | Vaccination |

 # C:\autorun.inf -> Dossier créé par UsbFix (El Desaparecido).

 ################## | ! Fin du rapport # UsbFix V6.110 ! |

 :fume:

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 01/05/2010 à 14:40:22  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Niquel  :super:


 Télécharge AD-Remover (de C_XX) sur ton Bureau.
 http://pagesperso-orange.fr/NosTools/C_XX/AD-R.exe

 Déconnecte-toi de internet et ferme toutes applications en cours(Le meilleur moyen et de debrancher le cable Ethernet)

 --> Lance le programme d'installation, installe-le dans son emplacement par défaut (C:\Program files).
 --> Clique droit sur l'icône AD-Remover située sur ton Bureau et choisir exécuter en tant qu'administrateur.(Pour VISTA/7)
 --> Au menu principal, choisis l'option L ou Nettoyer.
 --> Poste le rapport qui apparaît à la fin. STP

 (Le rapport est sauvegardé aussi sous C:\Ad-report(date).log)
 

 P.S : "Process.exe", une composante de l'outil, est détecté A tore par certains antivirus comme une infection, ne pas en tenir compte, il s'agit d'un faux positif, continue la procédure

 Aide : http://kerio.probb.fr/logiciel [...] -t3786.htm

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/05/2010 à 15:26:56  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
je n'ai pas trace d'un rapport C:\Ad-report(date).log) par ailleurs après avoir cherché le rapport que je n'ai pas trouvé jai due supprimer du C sans faire exprès toute trace de AD  :(
 es tu sur que je suis infecté ? en fait ya spybot qui me dit régulièrement et surtout à l allumage de ma machine que fichier a été détruit ou remplacé par un autre ... :sweat:

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 01/05/2010 à 15:35:03  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:sol:  :sol:
 Vu les rapport qui mon ete presenter (RSIT,Hijackthis, etc...etc...) oui je peux te confirmer que tu et infecter,  :paf:

 Par ailleur,
 Le rapport et sauvegarder sous un nom du type..
 C:\Ad-report(01/05/2010).log

 Sinon si tu ne retrouve pas ad-remover (present sur ton burreau), retelecharge le et recommance la manip,
 (En principe, le rapport s'ouvre automatiquement)
 Puis :

 Relance un scan RSIT...
 Seul le (log.txt) aparait en fin de scan..Poste le ici STP ;-) :fume:  :fume:

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/05/2010 à 16:18:35  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
pppffff  c'est compliqué  :pt1cable:

 .
 ======= RAPPORT D'AD-REMOVER 2.0.0.0,D | UNIQUEMENT XP/VISTA/7 =======
 .
 Mis à jour par C_XX le 30/04/10 à 18:40
 Contact: AdRemover.contact@gmail.com
 Site web: http://pagesperso-orange.fr/No [...] mover.html
 .
 Lancé à: 16:51:53 le 01/05/2010 | Mode normal | Option: CLEAN
 Exécuté de: C:\Ad-Remover\ADR.exe
 SE: Microsoft® Windows XP™  Service Pack 2 - X86
 Nom du PC: LOULOU-7984AD02
 Utilisateur actuel: Loulou
 .
 ============== ÉLÉMENT(S) NEUTRALISÉ(S) ==============
 .
 .

 (!) -- Fichiers temporaires supprimés.
 .
 .
 (Orpheline) HKLM,Run - mouseElf - C:\PROGRA~1\GENIUS~1\mouseElf.​exe (Fichier manquant)
 .
 ============== SCAN ADDITIONNEL ==============
 .
 * Mozilla FireFox Version 2.0 (fr) *
 .
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\..\k8qx5yl5.default\prefs.js - browser.startup.homepage: hxxp://fr.msn.com/
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\..\k8qx5yl5.default\prefs.js - keyword.URL: hxxp://search.live.com/results​.aspx?mkt=fr-fr&FORM=MIMWA5&q=
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\..\k8qx5yl5.default\prefs.js - browser.search.selectedEngine: Live Search
 .
 .
 * Internet Explorer Version 6.0.2900.2180 *
 .
 [HKCU\Software\Microsoft\Intern​et Explorer\Main]
 .
 Default_Page_URL: hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&pver=6&ar=ms​nhome
 Default_Search_URL: hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&ar=iesearch
 Do404Search: 0x01000000
 Enable Browser Extensions: yes
 Local Page: C:\windows\system32\blank.htm
 Search bar: hxxp://go.microsoft.com/fwlink​/?linkid=54896
 Show_ToolBar: yes
 Start Page: hxxp://fr.msn.com/
 Use Custom Search URL: 1
 .
 [HKLM\Software\Microsoft\Intern​et Explorer\Main]
 .
 Default_Page_URL: hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&pver=6&ar=ms​nhome
 Default_Search_URL: hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&ar=iesearch
 Delete_Temp_Files_On_Exit: yes
 Local Page: %SystemRoot%\system32\blank.ht​m
 Search bar: hxxp://search.msn.com/spbasic.​htm
 Search Page: hxxp://www.microsoft.com/isapi​/redir.dll?prd=ie&ar=iesearch
 Start Page: hxxp://fr.msn.com/
 .
 [HKLM\Software\Microsoft\Intern​et Explorer\ABOUTURLS]
 .
 Tabs: res://ieframe.dll/tabswelcome.​htm
 Blank: res://mshtml.dll/blank.htm
 .
 ==============================​==========
 .
 C:\Ad-Remover\Quarantine: 0 Fichier(s)
 C:\Ad-Remover\Backup: 14 Fichier(s)
 .
 C:\Ad-Report-CLEAN[1].txt - 2354 Octet(s)
 .
 Fin à: 16:55:51, 01/05/2010
 .
 ============== E.O.F - CLEAN[1] ==============

 et heuf heuf  :fume:  :fume:

 Logfile of random's system information tool 1.06 (written by random/random)
 Run by Loulou at 2010-05-01 17:14:17
 Microsoft Windows XP Professionnel Service Pack 2
 System drive C: has 74 GB (63%) free of 117 GB
 Total RAM: 511 MB (30% free)

 Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 17:14:48, on 01/05/2010
 Platform: Windows XP SP2 (WinNT 5.01.2600)
 MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
 Boot mode: Normal

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\Ahead\InCD\InCDsrv.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\Explorer.EXE
 C:\WINDOWS\SOUNDMAN.EXE
 C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe
 C:\Program Files\Eset\nod32kui.exe
 C:\WINDOWS\system32\RUNDLL32.E​XE
 C:\WINDOWS\system32\rundll32.e​xe
 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
 C:\WINDOWS\system32\ctfmon.exe
 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
 C:\Program Files\Eset\nod32krn.exe
 C:\WINDOWS\system32\nvsvc32.ex​e
 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\system32\wuauclt.ex​e
 C:\WINDOWS\system32\wscntfy.ex​e
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Windows Live\Toolbar\wltuser.exe
 C:\WINDOWS\system32\wuauclt.ex​e
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Bureau\RSIT.exe
 C:\Program Files\trend micro\Loulou.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://fr.yahoo.com/
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://fr.msn.com/
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,CustomizeSearc​h =
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelper.dll
 O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7​942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3A​AC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files\Google\GoogleToolbarNoti​fier\5.5.4723.1820\swg.dll
 O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94E​C1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D​3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O4 - HKLM\..\Run: [EasyTuneIV] C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\ET4\et4Tray.exe
 O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
 O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,​NvStartup
 O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
 O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe"  -osboot
 O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
 O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.d​ll,NvTaskbarInit
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
 O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
 O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
 O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe​"
 O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
 O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
 O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
 O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
 O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
 O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Off​ice10\EXCEL.EXE/3000
 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolba​rDynamic_mui_en_96D6FF0C6D236B​F8.dll/cmsidewiki.html
 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin4.d​ll
 O16 - DPF: {17492023-C23A-453E-A040-C7C58​0BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
 O17 - HKLM\System\CCS\Services\Tcpip​\..\{75ABF2F1-B6E7-46E2-BC30-0​9F575832968}: NameServer = 109.0.64.249 84.103.237.148
 O18 - Protocol: bw+0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw+0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9​B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: offline-8876480 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
 O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
 O23 - Service: Service Google Update (gupdate1c99c4ac4a14aac) (gupdate1c99c4ac4a14aac) - Google Inc. - C:\Program Files\Google\Update\GoogleUpda​te.exe
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1​1\Intel 32\IDriverT.exe
 O23 - Service: InCD Helper (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe
 O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset  - C:\Program Files\Eset\nod32krn.exe
 O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.ex​e
 O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe

 --
 End of file - 19508 bytes

 ======Scheduled tasks folder======

 C:\WINDOWS\tasks\At100.job
 C:\WINDOWS\tasks\At101.job
 C:\WINDOWS\tasks\At102.job
 C:\WINDOWS\tasks\At103.job
 C:\WINDOWS\tasks\At104.job
 C:\WINDOWS\tasks\At105.job
 C:\WINDOWS\tasks\At106.job
 C:\WINDOWS\tasks\At107.job
 C:\WINDOWS\tasks\At108.job
 C:\WINDOWS\tasks\At109.job
 C:\WINDOWS\tasks\At110.job
 C:\WINDOWS\tasks\At111.job
 C:\WINDOWS\tasks\At112.job
 C:\WINDOWS\tasks\At113.job
 C:\WINDOWS\tasks\At114.job
 C:\WINDOWS\tasks\At115.job
 C:\WINDOWS\tasks\At116.job
 C:\WINDOWS\tasks\At117.job
 C:\WINDOWS\tasks\At118.job
 C:\WINDOWS\tasks\At119.job
 C:\WINDOWS\tasks\At120.job
 C:\WINDOWS\tasks\At121.job
 C:\WINDOWS\tasks\At122.job
 C:\WINDOWS\tasks\At123.job
 C:\WINDOWS\tasks\At124.job
 C:\WINDOWS\tasks\At125.job
 C:\WINDOWS\tasks\At126.job
 C:\WINDOWS\tasks\At127.job
 C:\WINDOWS\tasks\At128.job
 C:\WINDOWS\tasks\At129.job
 C:\WINDOWS\tasks\At130.job
 C:\WINDOWS\tasks\At131.job
 C:\WINDOWS\tasks\At132.job
 C:\WINDOWS\tasks\At133.job
 C:\WINDOWS\tasks\At134.job
 C:\WINDOWS\tasks\At135.job
 C:\WINDOWS\tasks\At136.job
 C:\WINDOWS\tasks\At137.job
 C:\WINDOWS\tasks\At138.job
 C:\WINDOWS\tasks\At139.job
 C:\WINDOWS\tasks\At140.job
 C:\WINDOWS\tasks\At141.job
 C:\WINDOWS\tasks\At142.job
 C:\WINDOWS\tasks\At143.job
 C:\WINDOWS\tasks\At144.job
 C:\WINDOWS\tasks\At145.job
 C:\WINDOWS\tasks\At146.job
 C:\WINDOWS\tasks\At147.job
 C:\WINDOWS\tasks\At148.job
 C:\WINDOWS\tasks\At149.job
 C:\WINDOWS\tasks\At150.job
 C:\WINDOWS\tasks\At151.job
 C:\WINDOWS\tasks\At152.job
 C:\WINDOWS\tasks\At153.job
 C:\WINDOWS\tasks\At154.job
 C:\WINDOWS\tasks\At155.job
 C:\WINDOWS\tasks\At156.job
 C:\WINDOWS\tasks\At157.job
 C:\WINDOWS\tasks\At158.job
 C:\WINDOWS\tasks\At159.job
 C:\WINDOWS\tasks\At160.job
 C:\WINDOWS\tasks\At161.job
 C:\WINDOWS\tasks\At162.job
 C:\WINDOWS\tasks\At163.job
 C:\WINDOWS\tasks\At164.job
 C:\WINDOWS\tasks\At165.job
 C:\WINDOWS\tasks\At166.job
 C:\WINDOWS\tasks\At167.job
 C:\WINDOWS\tasks\At168.job
 C:\WINDOWS\tasks\At169.job
 C:\WINDOWS\tasks\At170.job
 C:\WINDOWS\tasks\At171.job
 C:\WINDOWS\tasks\At172.job
 C:\WINDOWS\tasks\At173.job
 C:\WINDOWS\tasks\At174.job
 C:\WINDOWS\tasks\At175.job
 C:\WINDOWS\tasks\At176.job
 C:\WINDOWS\tasks\At177.job
 C:\WINDOWS\tasks\At178.job
 C:\WINDOWS\tasks\At179.job
 C:\WINDOWS\tasks\At180.job
 C:\WINDOWS\tasks\At181.job
 C:\WINDOWS\tasks\At182.job
 C:\WINDOWS\tasks\At183.job
 C:\WINDOWS\tasks\At184.job
 C:\WINDOWS\tasks\At185.job
 C:\WINDOWS\tasks\At186.job
 C:\WINDOWS\tasks\At187.job
 C:\WINDOWS\tasks\At188.job
 C:\WINDOWS\tasks\At189.job
 C:\WINDOWS\tasks\At190.job
 C:\WINDOWS\tasks\At191.job
 C:\WINDOWS\tasks\At192.job
 C:\WINDOWS\tasks\At193.job
 C:\WINDOWS\tasks\At194.job
 C:\WINDOWS\tasks\At195.job
 C:\WINDOWS\tasks\At196.job
 C:\WINDOWS\tasks\At197.job
 C:\WINDOWS\tasks\At198.job
 C:\WINDOWS\tasks\At199.job
 C:\WINDOWS\tasks\At200.job
 C:\WINDOWS\tasks\At201.job
 C:\WINDOWS\tasks\At202.job
 C:\WINDOWS\tasks\At203.job
 C:\WINDOWS\tasks\At204.job
 C:\WINDOWS\tasks\At205.job
 C:\WINDOWS\tasks\At206.job
 C:\WINDOWS\tasks\At207.job
 C:\WINDOWS\tasks\At208.job
 C:\WINDOWS\tasks\At209.job
 C:\WINDOWS\tasks\At210.job
 C:\WINDOWS\tasks\At211.job
 C:\WINDOWS\tasks\At212.job
 C:\WINDOWS\tasks\At213.job
 C:\WINDOWS\tasks\At214.job
 C:\WINDOWS\tasks\At215.job
 C:\WINDOWS\tasks\At216.job
 C:\WINDOWS\tasks\At217.job
 C:\WINDOWS\tasks\At218.job
 C:\WINDOWS\tasks\At219.job
 C:\WINDOWS\tasks\At220.job
 C:\WINDOWS\tasks\At221.job
 C:\WINDOWS\tasks\At222.job
 C:\WINDOWS\tasks\At223.job
 C:\WINDOWS\tasks\At224.job
 C:\WINDOWS\tasks\At225.job
 C:\WINDOWS\tasks\At226.job
 C:\WINDOWS\tasks\At227.job
 C:\WINDOWS\tasks\At228.job
 C:\WINDOWS\tasks\At229.job
 C:\WINDOWS\tasks\At230.job
 C:\WINDOWS\tasks\At231.job
 C:\WINDOWS\tasks\At232.job
 C:\WINDOWS\tasks\At233.job
 C:\WINDOWS\tasks\At234.job
 C:\WINDOWS\tasks\At235.job
 C:\WINDOWS\tasks\At236.job
 C:\WINDOWS\tasks\At237.job
 C:\WINDOWS\tasks\At238.job
 C:\WINDOWS\tasks\At239.job
 C:\WINDOWS\tasks\At240.job
 C:\WINDOWS\tasks\At241.job
 C:\WINDOWS\tasks\At242.job
 C:\WINDOWS\tasks\At243.job
 C:\WINDOWS\tasks\At244.job
 C:\WINDOWS\tasks\At245.job
 C:\WINDOWS\tasks\At246.job
 C:\WINDOWS\tasks\At247.job
 C:\WINDOWS\tasks\At248.job
 C:\WINDOWS\tasks\At249.job
 C:\WINDOWS\tasks\At250.job
 C:\WINDOWS\tasks\At251.job
 C:\WINDOWS\tasks\At252.job
 C:\WINDOWS\tasks\At253.job
 C:\WINDOWS\tasks\At254.job
 C:\WINDOWS\tasks\At255.job
 C:\WINDOWS\tasks\At256.job
 C:\WINDOWS\tasks\At257.job
 C:\WINDOWS\tasks\At258.job
 C:\WINDOWS\tasks\At259.job
 C:\WINDOWS\tasks\At260.job
 C:\WINDOWS\tasks\At261.job
 C:\WINDOWS\tasks\At262.job
 C:\WINDOWS\tasks\At263.job
 C:\WINDOWS\tasks\At264.job
 C:\WINDOWS\tasks\At265.job
 C:\WINDOWS\tasks\At266.job
 C:\WINDOWS\tasks\At267.job
 C:\WINDOWS\tasks\At268.job
 C:\WINDOWS\tasks\At269.job
 C:\WINDOWS\tasks\At270.job
 C:\WINDOWS\tasks\At271.job
 C:\WINDOWS\tasks\At272.job
 C:\WINDOWS\tasks\At273.job
 C:\WINDOWS\tasks\At274.job
 C:\WINDOWS\tasks\At275.job
 C:\WINDOWS\tasks\At276.job
 C:\WINDOWS\tasks\At277.job
 C:\WINDOWS\tasks\At278.job
 C:\WINDOWS\tasks\At279.job
 C:\WINDOWS\tasks\At280.job
 C:\WINDOWS\tasks\At281.job
 C:\WINDOWS\tasks\At282.job
 C:\WINDOWS\tasks\At283.job
 C:\WINDOWS\tasks\At284.job
 C:\WINDOWS\tasks\At285.job
 C:\WINDOWS\tasks\At286.job
 C:\WINDOWS\tasks\At287.job
 C:\WINDOWS\tasks\At288.job
 C:\WINDOWS\tasks\At289.job
 C:\WINDOWS\tasks\At290.job
 C:\WINDOWS\tasks\At291.job
 C:\WINDOWS\tasks\At292.job
 C:\WINDOWS\tasks\At293.job
 C:\WINDOWS\tasks\At294.job
 C:\WINDOWS\tasks\At295.job
 C:\WINDOWS\tasks\At296.job
 C:\WINDOWS\tasks\At297.job
 C:\WINDOWS\tasks\At298.job
 C:\WINDOWS\tasks\At299.job
 C:\WINDOWS\tasks\At300.job
 C:\WINDOWS\tasks\At301.job
 C:\WINDOWS\tasks\At302.job
 C:\WINDOWS\tasks\At303.job
 C:\WINDOWS\tasks\At304.job
 C:\WINDOWS\tasks\At305.job
 C:\WINDOWS\tasks\At306.job
 C:\WINDOWS\tasks\At307.job
 C:\WINDOWS\tasks\At308.job
 C:\WINDOWS\tasks\At309.job
 C:\WINDOWS\tasks\At310.job
 C:\WINDOWS\tasks\At311.job
 C:\WINDOWS\tasks\At312.job
 C:\WINDOWS\tasks\At313.job
 C:\WINDOWS\tasks\At314.job
 C:\WINDOWS\tasks\At315.job
 C:\WINDOWS\tasks\At316.job
 C:\WINDOWS\tasks\At317.job
 C:\WINDOWS\tasks\At318.job
 C:\WINDOWS\tasks\At319.job
 C:\WINDOWS\tasks\At320.job
 C:\WINDOWS\tasks\At321.job
 C:\WINDOWS\tasks\At322.job
 C:\WINDOWS\tasks\At323.job
 C:\WINDOWS\tasks\At324.job
 C:\WINDOWS\tasks\At325.job
 C:\WINDOWS\tasks\At326.job
 C:\WINDOWS\tasks\At327.job
 C:\WINDOWS\tasks\At328.job
 C:\WINDOWS\tasks\At329.job
 C:\WINDOWS\tasks\At330.job
 C:\WINDOWS\tasks\At331.job
 C:\WINDOWS\tasks\At332.job
 C:\WINDOWS\tasks\At333.job
 C:\WINDOWS\tasks\At334.job
 C:\WINDOWS\tasks\At335.job
 C:\WINDOWS\tasks\At336.job
 C:\WINDOWS\tasks\At337.job
 C:\WINDOWS\tasks\At338.job
 C:\WINDOWS\tasks\At339.job
 C:\WINDOWS\tasks\At340.job
 C:\WINDOWS\tasks\At341.job
 C:\WINDOWS\tasks\At342.job
 C:\WINDOWS\tasks\At343.job
 C:\WINDOWS\tasks\At344.job
 C:\WINDOWS\tasks\At345.job
 C:\WINDOWS\tasks\At346.job
 C:\WINDOWS\tasks\At347.job
 C:\WINDOWS\tasks\At348.job
 C:\WINDOWS\tasks\At349.job
 C:\WINDOWS\tasks\At350.job
 C:\WINDOWS\tasks\At351.job
 C:\WINDOWS\tasks\At352.job
 C:\WINDOWS\tasks\At353.job
 C:\WINDOWS\tasks\At354.job
 C:\WINDOWS\tasks\At355.job
 C:\WINDOWS\tasks\At356.job
 C:\WINDOWS\tasks\At357.job
 C:\WINDOWS\tasks\At358.job
 C:\WINDOWS\tasks\At359.job
 C:\WINDOWS\tasks\At360.job
 C:\WINDOWS\tasks\At361.job
 C:\WINDOWS\tasks\At362.job
 C:\WINDOWS\tasks\At363.job
 C:\WINDOWS\tasks\At364.job
 C:\WINDOWS\tasks\At365.job
 C:\WINDOWS\tasks\At366.job
 C:\WINDOWS\tasks\At367.job
 C:\WINDOWS\tasks\At368.job
 C:\WINDOWS\tasks\At369.job
 C:\WINDOWS\tasks\At370.job
 C:\WINDOWS\tasks\At371.job
 C:\WINDOWS\tasks\At372.job
 C:\WINDOWS\tasks\At373.job
 C:\WINDOWS\tasks\At374.job
 C:\WINDOWS\tasks\At375.job
 C:\WINDOWS\tasks\At376.job
 C:\WINDOWS\tasks\At377.job
 C:\WINDOWS\tasks\At378.job
 C:\WINDOWS\tasks\At379.job
 C:\WINDOWS\tasks\At380.job
 C:\WINDOWS\tasks\At381.job
 C:\WINDOWS\tasks\At382.job
 C:\WINDOWS\tasks\At383.job
 C:\WINDOWS\tasks\At384.job
 C:\WINDOWS\tasks\At385.job
 C:\WINDOWS\tasks\At386.job
 C:\WINDOWS\tasks\At387.job
 C:\WINDOWS\tasks\At388.job
 C:\WINDOWS\tasks\At389.job
 C:\WINDOWS\tasks\At390.job
 C:\WINDOWS\tasks\At391.job
 C:\WINDOWS\tasks\At392.job
 C:\WINDOWS\tasks\At393.job
 C:\WINDOWS\tasks\At394.job
 C:\WINDOWS\tasks\At395.job
 C:\WINDOWS\tasks\At396.job
 C:\WINDOWS\tasks\At397.job
 C:\WINDOWS\tasks\At398.job
 C:\WINDOWS\tasks\At399.job
 C:\WINDOWS\tasks\At400.job
 C:\WINDOWS\tasks\At401.job
 C:\WINDOWS\tasks\At402.job
 C:\WINDOWS\tasks\At403.job
 C:\WINDOWS\tasks\At404.job
 C:\WINDOWS\tasks\At405.job
 C:\WINDOWS\tasks\At406.job
 C:\WINDOWS\tasks\At407.job
 C:\WINDOWS\tasks\At408.job
 C:\WINDOWS\tasks\At409.job
 C:\WINDOWS\tasks\At410.job
 C:\WINDOWS\tasks\At411.job
 C:\WINDOWS\tasks\At412.job
 C:\WINDOWS\tasks\At413.job
 C:\WINDOWS\tasks\At414.job
 C:\WINDOWS\tasks\At415.job
 C:\WINDOWS\tasks\At416.job
 C:\WINDOWS\tasks\At417.job
 C:\WINDOWS\tasks\At418.job
 C:\WINDOWS\tasks\At419.job
 C:\WINDOWS\tasks\At420.job
 C:\WINDOWS\tasks\At421.job
 C:\WINDOWS\tasks\At422.job
 C:\WINDOWS\tasks\At423.job
 C:\WINDOWS\tasks\At424.job
 C:\WINDOWS\tasks\At425.job
 C:\WINDOWS\tasks\At426.job
 C:\WINDOWS\tasks\At427.job
 C:\WINDOWS\tasks\At428.job
 C:\WINDOWS\tasks\At429.job
 C:\WINDOWS\tasks\At430.job
 C:\WINDOWS\tasks\At431.job
 C:\WINDOWS\tasks\At432.job
 C:\WINDOWS\tasks\At433.job
 C:\WINDOWS\tasks\At434.job
 C:\WINDOWS\tasks\At435.job
 C:\WINDOWS\tasks\At436.job
 C:\WINDOWS\tasks\At437.job
 C:\WINDOWS\tasks\At438.job
 C:\WINDOWS\tasks\At439.job
 C:\WINDOWS\tasks\At440.job
 C:\WINDOWS\tasks\At441.job
 C:\WINDOWS\tasks\At442.job
 C:\WINDOWS\tasks\At443.job
 C:\WINDOWS\tasks\At444.job
 C:\WINDOWS\tasks\At445.job
 C:\WINDOWS\tasks\At446.job
 C:\WINDOWS\tasks\At447.job
 C:\WINDOWS\tasks\At448.job
 C:\WINDOWS\tasks\At449.job
 C:\WINDOWS\tasks\At450.job
 C:\WINDOWS\tasks\At451.job
 C:\WINDOWS\tasks\At452.job
 C:\WINDOWS\tasks\At453.job
 C:\WINDOWS\tasks\At454.job
 C:\WINDOWS\tasks\At455.job
 C:\WINDOWS\tasks\At456.job
 C:\WINDOWS\tasks\At457.job
 C:\WINDOWS\tasks\At458.job
 C:\WINDOWS\tasks\At459.job
 C:\WINDOWS\tasks\At460.job
 C:\WINDOWS\tasks\At461.job
 C:\WINDOWS\tasks\At462.job
 C:\WINDOWS\tasks\At463.job
 C:\WINDOWS\tasks\At464.job
 C:\WINDOWS\tasks\At465.job
 C:\WINDOWS\tasks\At466.job
 C:\WINDOWS\tasks\At467.job
 C:\WINDOWS\tasks\At468.job
 C:\WINDOWS\tasks\At469.job
 C:\WINDOWS\tasks\At470.job
 C:\WINDOWS\tasks\At471.job
 C:\WINDOWS\tasks\At472.job
 C:\WINDOWS\tasks\At473.job
 C:\WINDOWS\tasks\At474.job
 C:\WINDOWS\tasks\At475.job
 C:\WINDOWS\tasks\At476.job
 C:\WINDOWS\tasks\At477.job
 C:\WINDOWS\tasks\At478.job
 C:\WINDOWS\tasks\At479.job
 C:\WINDOWS\tasks\At480.job
 C:\WINDOWS\tasks\At481.job
 C:\WINDOWS\tasks\At482.job
 C:\WINDOWS\tasks\At483.job
 C:\WINDOWS\tasks\At484.job
 C:\WINDOWS\tasks\At485.job
 C:\WINDOWS\tasks\At486.job
 C:\WINDOWS\tasks\At487.job
 C:\WINDOWS\tasks\At488.job
 C:\WINDOWS\tasks\At489.job
 C:\WINDOWS\tasks\At490.job
 C:\WINDOWS\tasks\At491.job
 C:\WINDOWS\tasks\At492.job
 C:\WINDOWS\tasks\At493.job
 C:\WINDOWS\tasks\At494.job
 C:\WINDOWS\tasks\At495.job
 C:\WINDOWS\tasks\At496.job
 C:\WINDOWS\tasks\At497.job
 C:\WINDOWS\tasks\At498.job
 C:\WINDOWS\tasks\At499.job
 C:\WINDOWS\tasks\At500.job
 C:\WINDOWS\tasks\At501.job
 C:\WINDOWS\tasks\At502.job
 C:\WINDOWS\tasks\At503.job
 C:\WINDOWS\tasks\At504.job
 C:\WINDOWS\tasks\At505.job
 C:\WINDOWS\tasks\At506.job
 C:\WINDOWS\tasks\At507.job
 C:\WINDOWS\tasks\At508.job
 C:\WINDOWS\tasks\At509.job
 C:\WINDOWS\tasks\At510.job
 C:\WINDOWS\tasks\At511.job
 C:\WINDOWS\tasks\At512.job
 C:\WINDOWS\tasks\At513.job
 C:\WINDOWS\tasks\At514.job
 C:\WINDOWS\tasks\At515.job
 C:\WINDOWS\tasks\At516.job
 C:\WINDOWS\tasks\At517.job
 C:\WINDOWS\tasks\At518.job
 C:\WINDOWS\tasks\At519.job
 C:\WINDOWS\tasks\At520.job
 C:\WINDOWS\tasks\At521.job
 C:\WINDOWS\tasks\At522.job
 C:\WINDOWS\tasks\At523.job
 C:\WINDOWS\tasks\At524.job
 C:\WINDOWS\tasks\At525.job
 C:\WINDOWS\tasks\At526.job
 C:\WINDOWS\tasks\At527.job
 C:\WINDOWS\tasks\At528.job
 C:\WINDOWS\tasks\At529.job
 C:\WINDOWS\tasks\At530.job
 C:\WINDOWS\tasks\At531.job
 C:\WINDOWS\tasks\At532.job
 C:\WINDOWS\tasks\At533.job
 C:\WINDOWS\tasks\At534.job
 C:\WINDOWS\tasks\At535.job
 C:\WINDOWS\tasks\At536.job
 C:\WINDOWS\tasks\At537.job
 C:\WINDOWS\tasks\At538.job
 C:\WINDOWS\tasks\At539.job
 C:\WINDOWS\tasks\At540.job
 C:\WINDOWS\tasks\At541.job
 C:\WINDOWS\tasks\At542.job
 C:\WINDOWS\tasks\At543.job
 C:\WINDOWS\tasks\At544.job
 C:\WINDOWS\tasks\At545.job
 C:\WINDOWS\tasks\At546.job
 C:\WINDOWS\tasks\At547.job
 C:\WINDOWS\tasks\At548.job
 C:\WINDOWS\tasks\At549.job
 C:\WINDOWS\tasks\At550.job
 C:\WINDOWS\tasks\At551.job
 C:\WINDOWS\tasks\At552.job
 C:\WINDOWS\tasks\At553.job
 C:\WINDOWS\tasks\At554.job
 C:\WINDOWS\tasks\At555.job
 C:\WINDOWS\tasks\At556.job
 C:\WINDOWS\tasks\At557.job
 C:\WINDOWS\tasks\At558.job
 C:\WINDOWS\tasks\At559.job
 C:\WINDOWS\tasks\At560.job
 C:\WINDOWS\tasks\At561.job
 C:\WINDOWS\tasks\At562.job
 C:\WINDOWS\tasks\At563.job
 C:\WINDOWS\tasks\At564.job
 C:\WINDOWS\tasks\At565.job
 C:\WINDOWS\tasks\At566.job
 C:\WINDOWS\tasks\At567.job
 C:\WINDOWS\tasks\At568.job
 C:\WINDOWS\tasks\At569.job
 C:\WINDOWS\tasks\At570.job
 C:\WINDOWS\tasks\At571.job
 C:\WINDOWS\tasks\At572.job
 C:\WINDOWS\tasks\At573.job
 C:\WINDOWS\tasks\At574.job
 C:\WINDOWS\tasks\At575.job
 C:\WINDOWS\tasks\At576.job
 C:\WINDOWS\tasks\At577.job
 C:\WINDOWS\tasks\At578.job
 C:\WINDOWS\tasks\At579.job
 C:\WINDOWS\tasks\At580.job
 C:\WINDOWS\tasks\At581.job
 C:\WINDOWS\tasks\At582.job
 C:\WINDOWS\tasks\At583.job
 C:\WINDOWS\tasks\At584.job
 C:\WINDOWS\tasks\At585.job
 C:\WINDOWS\tasks\At586.job
 C:\WINDOWS\tasks\At587.job
 C:\WINDOWS\tasks\At588.job
 C:\WINDOWS\tasks\At589.job
 C:\WINDOWS\tasks\At590.job
 C:\WINDOWS\tasks\At591.job
 C:\WINDOWS\tasks\At592.job
 C:\WINDOWS\tasks\At593.job
 C:\WINDOWS\tasks\At594.job
 C:\WINDOWS\tasks\At595.job
 C:\WINDOWS\tasks\At596.job
 C:\WINDOWS\tasks\At597.job
 C:\WINDOWS\tasks\At598.job
 C:\WINDOWS\tasks\At599.job
 C:\WINDOWS\tasks\At600.job
 C:\WINDOWS\tasks\At601.job
 C:\WINDOWS\tasks\At602.job
 C:\WINDOWS\tasks\At603.job
 C:\WINDOWS\tasks\At604.job
 C:\WINDOWS\tasks\At605.job
 C:\WINDOWS\tasks\At606.job
 C:\WINDOWS\tasks\At607.job
 C:\WINDOWS\tasks\At608.job
 C:\WINDOWS\tasks\At609.job
 C:\WINDOWS\tasks\At610.job
 C:\WINDOWS\tasks\At611.job
 C:\WINDOWS\tasks\At612.job
 C:\WINDOWS\tasks\At613.job
 C:\WINDOWS\tasks\At614.job
 C:\WINDOWS\tasks\At615.job
 C:\WINDOWS\tasks\At616.job
 C:\WINDOWS\tasks\At617.job
 C:\WINDOWS\tasks\At618.job
 C:\WINDOWS\tasks\At619.job
 C:\WINDOWS\tasks\At620.job
 C:\WINDOWS\tasks\At621.job
 C:\WINDOWS\tasks\At622.job
 C:\WINDOWS\tasks\At623.job
 C:\WINDOWS\tasks\At624.job
 C:\WINDOWS\tasks\At625.job
 C:\WINDOWS\tasks\At626.job
 C:\WINDOWS\tasks\At627.job
 C:\WINDOWS\tasks\At628.job
 C:\WINDOWS\tasks\At629.job
 C:\WINDOWS\tasks\At630.job
 C:\WINDOWS\tasks\At631.job
 C:\WINDOWS\tasks\At632.job
 C:\WINDOWS\tasks\At633.job
 C:\WINDOWS\tasks\At634.job
 C:\WINDOWS\tasks\At635.job
 C:\WINDOWS\tasks\At636.job
 C:\WINDOWS\tasks\At637.job
 C:\WINDOWS\tasks\At638.job
 C:\WINDOWS\tasks\At639.job
 C:\WINDOWS\tasks\At640.job
 C:\WINDOWS\tasks\At641.job
 C:\WINDOWS\tasks\At642.job
 C:\WINDOWS\tasks\At643.job
 C:\WINDOWS\tasks\At644.job
 C:\WINDOWS\tasks\At645.job
 C:\WINDOWS\tasks\At646.job
 C:\WINDOWS\tasks\At647.job
 C:\WINDOWS\tasks\At648.job
 C:\WINDOWS\tasks\At649.job
 C:\WINDOWS\tasks\At650.job
 C:\WINDOWS\tasks\At651.job
 C:\WINDOWS\tasks\At652.job
 C:\WINDOWS\tasks\At653.job
 C:\WINDOWS\tasks\At654.job
 C:\WINDOWS\tasks\At655.job
 C:\WINDOWS\tasks\At656.job
 C:\WINDOWS\tasks\At657.job
 C:\WINDOWS\tasks\At658.job
 C:\WINDOWS\tasks\At659.job
 C:\WINDOWS\tasks\At660.job
 C:\WINDOWS\tasks\At661.job
 C:\WINDOWS\tasks\At662.job
 C:\WINDOWS\tasks\At663.job
 C:\WINDOWS\tasks\At664.job
 C:\WINDOWS\tasks\At665.job
 C:\WINDOWS\tasks\At666.job
 C:\WINDOWS\tasks\At667.job
 C:\WINDOWS\tasks\At668.job
 C:\WINDOWS\tasks\At669.job
 C:\WINDOWS\tasks\At670.job
 C:\WINDOWS\tasks\At671.job
 C:\WINDOWS\tasks\At672.job
 C:\WINDOWS\tasks\At673.job
 C:\WINDOWS\tasks\At674.job
 C:\WINDOWS\tasks\At675.job
 C:\WINDOWS\tasks\At676.job
 C:\WINDOWS\tasks\At677.job
 C:\WINDOWS\tasks\At678.job
 C:\WINDOWS\tasks\At679.job
 C:\WINDOWS\tasks\At680.job
 C:\WINDOWS\tasks\At681.job
 C:\WINDOWS\tasks\At682.job
 C:\WINDOWS\tasks\At683.job
 C:\WINDOWS\tasks\At684.job
 C:\WINDOWS\tasks\At685.job
 C:\WINDOWS\tasks\At686.job
 C:\WINDOWS\tasks\At687.job
 C:\WINDOWS\tasks\At688.job
 C:\WINDOWS\tasks\At689.job
 C:\WINDOWS\tasks\At690.job
 C:\WINDOWS\tasks\At691.job
 C:\WINDOWS\tasks\At692.job
 C:\WINDOWS\tasks\At693.job
 C:\WINDOWS\tasks\At694.job
 C:\WINDOWS\tasks\At695.job
 C:\WINDOWS\tasks\At696.job
 C:\WINDOWS\tasks\At697.job
 C:\WINDOWS\tasks\At698.job
 C:\WINDOWS\tasks\At699.job
 C:\WINDOWS\tasks\At700.job
 C:\WINDOWS\tasks\At701.job
 C:\WINDOWS\tasks\At702.job
 C:\WINDOWS\tasks\At703.job
 C:\WINDOWS\tasks\At704.job
 C:\WINDOWS\tasks\At705.job
 C:\WINDOWS\tasks\At706.job
 C:\WINDOWS\tasks\At707.job
 C:\WINDOWS\tasks\At708.job
 C:\WINDOWS\tasks\At709.job
 C:\WINDOWS\tasks\At710.job
 C:\WINDOWS\tasks\At711.job
 C:\WINDOWS\tasks\At712.job
 C:\WINDOWS\tasks\At713.job
 C:\WINDOWS\tasks\At714.job
 C:\WINDOWS\tasks\At715.job
 C:\WINDOWS\tasks\At716.job
 C:\WINDOWS\tasks\At717.job
 C:\WINDOWS\tasks\At718.job
 C:\WINDOWS\tasks\At719.job
 C:\WINDOWS\tasks\At720.job
 C:\WINDOWS\tasks\At721.job
 C:\WINDOWS\tasks\At722.job
 C:\WINDOWS\tasks\At723.job
 C:\WINDOWS\tasks\At724.job
 C:\WINDOWS\tasks\At725.job
 C:\WINDOWS\tasks\At726.job
 C:\WINDOWS\tasks\At727.job
 C:\WINDOWS\tasks\At728.job
 C:\WINDOWS\tasks\At729.job
 C:\WINDOWS\tasks\At730.job
 C:\WINDOWS\tasks\At731.job
 C:\WINDOWS\tasks\At732.job
 C:\WINDOWS\tasks\At733.job
 C:\WINDOWS\tasks\At734.job
 C:\WINDOWS\tasks\At735.job
 C:\WINDOWS\tasks\At736.job
 C:\WINDOWS\tasks\At737.job
 C:\WINDOWS\tasks\At738.job
 C:\WINDOWS\tasks\At739.job
 C:\WINDOWS\tasks\At740.job
 C:\WINDOWS\tasks\At741.job
 C:\WINDOWS\tasks\At742.job
 C:\WINDOWS\tasks\At743.job
 C:\WINDOWS\tasks\At744.job
 C:\WINDOWS\tasks\Google Software Updater.job
 C:\WINDOWS\tasks\GoogleUpdateT​askMachineCore.job
 C:\WINDOWS\tasks\GoogleUpdateT​askMachineUA.job
 C:\WINDOWS\tasks\WGASetup.job

 ======Registry dump======

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
 Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelper.dll [2006-10-22 62080]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
 Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll [2009-01-26 1879896]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
 Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
 Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
 Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-29 279664]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
 Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNoti​fier\5.5.4723.1820\swg.dll [2010-02-04 812528]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
 Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\Toolbar]
 {21FA44EF-376D-4D53-9B0F-8A89D​3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
 {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-29 279664]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run]
 "EasyTuneIV"=C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\ET4\et4Tray.exe []
 "SoundMan"=C:\WINDOWS\SOUNDMAN​.EXE [2003-08-15 57344]
 "NvCplDaemon"=C:\WINDOWS\syste​m32\NvCpl.dll [2007-06-29 8466432]
 "nwiz"=nwiz.exe /install []
 "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe [2007-08-16 185632]
 "nod32kui"=C:\Program Files\Eset\nod32kui.exe [2007-08-18 949376]
 "NvMediaCenter"=C:\WINDOWS\sys​tem32\NvMcTray.dll [2007-06-29 81920]
 "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-05-11 40048]
 "KernelFaultCheck"=C:\WINDOWS\​system32\dumprep 0 -k []

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Run]
 "MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
 "ctfmon.exe"=C:\WINDOWS\system​32\ctfmon.exe [2004-08-04 15360]
 "swg"=C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe [2009-01-17 39408]
 "SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]

 C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
 Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
 C:\WINDOWS\system32\WgaLogon.d​ll [2006-06-27 3584]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\ShellServiceObjectDelayLoad]
 WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D52​4869DB5} - C:\WINDOWS\system32\WPDShServi​ceObj.dll [2006-10-18 133632]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\System]
 "dontdisplaylastusername"=0
 "legalnoticecaption"=
 "legalnoticetext"=
 "shutdownwithoutlogon"=1
 "undockwithoutlogon"=1

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Policies\explorer]
 "NoDriveTypeAutoRun"=255
 "NoDriveAutoRun"=255
 "HonorAutoRunSetting"=0

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\explorer]
 "HonorAutoRunSetting"=
 "NoDriveAutoRun"=
 "NoDriveTypeAutoRun"=

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\standardprofile\authorizedap​plications\list]
 "%windir%\system32\sessmgr.exe​"="%windir%\system32\sessmgr.e​xe:*:enabled:@xpsp2res.dll,-22​019"
 "C:\Program Files\Messenger\msmsgs.exe"="C​:\Program Files\Messenger\msmsgs.exe:*:E​nabled:Windows Messenger"
 "C:\Program Files\Yahoo!\Messenger\YPager.​exe"="C:\Program Files\Yahoo!\Messenger\YPager.​exe:*:Enabled:Yahoo! Messenger"
 "C:\Program Files\Yahoo!\Messenger\YServer​.exe"="C:\Program Files\Yahoo!\Messenger\YServer​.exe:*:Enabled:Yahoo! FT Server"
 "C:\Program Files\eMule\emule.exe"="C:\Pro​gram Files\eMule\emule.exe:*:Disabl​ed:eMule"
 "C:\Program Files\Adobe\Acrobat eBook Reader\ReaderApp.exe"="C:\Prog​ram Files\Adobe\Acrobat eBook Reader\ReaderApp.exe:*:Enabled​:Acrobat eBook Reader"
 "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe"="C:\​Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe:*:Ena​bled:Logitech Desktop Messenger"
 "C:\Program Files\iTunes\iTunes.exe"="C:\P​rogram Files\iTunes\iTunes.exe:*:Enab​led:iTunes"
 "C:\Program Files\Microsoft Games\Flight Simulator 9\fs9.exe"="C:\Program Files\Microsoft Games\Flight Simulator 9\fs9.exe:*:Enabled:Microsoft Flight Simulator"
 "C:\WINDOWS\system32\dpnsvr.ex​e"="C:\WINDOWS\system32\dpnsvr​.exe:*:Enabled:Microsoft DirectPlay8 Server"
 "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:​\Program Files\Windows Live\Messenger\wlcsdk.exe:*:En​abled:Windows Live Call"
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C​:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger"
 "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"​="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:​*:Enabled:Windows Live FolderShare"
 "C:\WINDOWS\Temp\~TME8D.tmp"="​C:\WINDOWS\Temp\~TME8D.tmp:*:D​isabled:Sandboxie Start"
 "C:\WINDOWS\Temp\~TM5A.tmp"="C​:\WINDOWS\Temp\~TM5A.tmp:*:Ena​bled:services"

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\domainprofile\authorizedappl​ications\list]
 "%windir%\system32\sessmgr.exe​"="%windir%\system32\sessmgr.e​xe:*:enabled:@xpsp2res.dll,-22​019"
 "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe"="C:\​Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe:*:Ena​bled:Logitech Desktop Messenger"
 "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:​\Program Files\Windows Live\Messenger\wlcsdk.exe:*:En​abled:Windows Live Call"
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C​:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger"
 "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"​="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:​*:Enabled:Windows Live FolderShare"

 ======List of files/folders created in the last 1 months======

 2010-05-01 16:52:08 ----A---- C:\Ad-Report-CLEAN[1].txt
 2010-05-01 16:51:45 ----D---- C:\Ad-Remover
 2010-05-01 15:30:11 ----A---- C:\UsbFix.txt
 2010-05-01 15:13:47 ----RASHD---- C:\autorun.inf
 2010-05-01 14:32:09 ----D---- C:\UsbFix
 2010-04-29 23:04:04 ----D---- C:\Avenger
 2010-04-29 20:15:37 ----D---- C:\Program Files\trend micro
 2010-04-29 20:15:35 ----D---- C:\rsit
 2010-04-14 19:44:22 ----HDC---- C:\WINDOWS\$NtUninstallKB97968​3$
 2010-04-14 19:44:11 ----HDC---- C:\WINDOWS\$NtUninstallKB98023​2$
 2010-04-14 19:44:01 ----HDC---- C:\WINDOWS\$NtUninstallKB98135​0$
 2010-04-14 19:43:53 ----HDC---- C:\WINDOWS\$NtUninstallKB97833​8$
 2010-04-14 19:43:45 ----HDC---- C:\WINDOWS\$NtUninstallKB97781​6$
 2010-04-14 19:42:33 ----HDC---- C:\WINDOWS\$NtUninstallKB97940​2_WM9L$
 2010-04-13 23:31:14 ----HDC---- C:\WINDOWS\$NtUninstallKB97860​1$
 2010-04-13 23:31:01 ----HDC---- C:\WINDOWS\$NtUninstallKB97930​9$

 ======List of files/folders modified in the last 1 months======

 2010-05-01 17:14:51 ----D---- C:\WINDOWS\Temp
 2010-05-01 17:14:24 ----D---- C:\WINDOWS\Prefetch
 2010-05-01 17:07:02 ----SD---- C:\WINDOWS\Tasks
 2010-05-01 17:00:38 ----A---- C:\WINDOWS\SchedLgU.Txt
 2010-05-01 15:13:46 ----SHD---- C:\System Volume Information
 2010-05-01 15:13:00 ----SHD---- C:\RECYCLER
 2010-05-01 11:08:36 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Google Updater
 2010-04-29 23:04:04 ----RAD---- C:\Program Files
 2010-04-29 23:04:04 ----HDC---- C:\WINDOWS\$NtUninstallKB95076​2$
 2010-04-29 23:04:04 ----D---- C:\WINDOWS\system32\drivers
 2010-04-29 21:53:58 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
 2010-04-27 22:11:11 ----D---- C:\WINDOWS\system32\CatRoot2
 2010-04-27 19:54:54 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist​11$
 2010-04-25 13:17:11 ----D---- C:\Program Files\eMule
 2010-04-24 20:39:07 ----D---- C:\WINDOWS
 2010-04-24 19:22:07 ----SD---- C:\WINDOWS\Downloaded Program Files
 2010-04-24 19:22:06 ----D---- C:\WINDOWS\system32
 2010-04-24 18:41:28 ----HD---- C:\WINDOWS\inf
 2010-04-14 19:44:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
 2010-04-14 19:44:18 ----HD---- C:\WINDOWS\$hf_mig$
 2010-04-14 19:44:15 ----A---- C:\WINDOWS\imsins.BAK
 2010-04-13 22:29:32 ----A---- C:\WINDOWS\IE4 Error Log.txt
 2010-04-12 22:38:56 ----SHD---- C:\WINDOWS\Installer
 2010-04-12 22:37:45 ----D---- C:\Program Files\Google
 2010-04-12 22:17:34 ----SHD---- C:\WINDOWS\CSC

 ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\am​dk7.sys [2004-08-04 41600]
 R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\In​CDPass.sys [2003-12-17 28752]
 R1 incdrm;InCD EasyWrite Reader; C:\WINDOWS\system32\drivers\in​cdrm.sys [2003-08-21 25520]
 R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kb​dhid.sys [2004-08-04 14848]
 R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\no​d32drv.sys [2007-08-18 15424]
 R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws​2ifsl.sys [2001-08-28 12032]
 R2 AMON;AMON; C:\WINDOWS\system32\drivers\am​on.sys [2007-08-18 512096]
 R2 ETDrv;ETDrv; C:\WINDOWS\system32\drivers\ET​Drv.sys [2003-08-07 161060]
 R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fs​sfltr_tdi.sys [2009-08-05 54752]
 R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\AL​CXSENS.SYS [2003-08-14 404736]
 R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\AL​CXWDM.SYS [2003-08-15 462684]
 R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fe​tnd5.sys [2001-08-17 27165]
 R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GE​ARAspiWDM.sys [2005-02-02 14408]
 R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hi​dusb.sys [2001-08-28 9600]
 R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mo​uhid.sys [2001-08-28 12288]
 R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv​4_mini.sys [2007-06-29 6807328]
 R3 usbccgp;Pilote parent générique USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​bccgp.sys [2004-08-03 31616]
 R3 usbehci;Pilote miniport de contrôleur d'hôte amélioré Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\us​behci.sys [2004-08-03 26624]
 R3 usbhub;Pilote de concentrateur standard USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​bhub.sys [2004-08-03 57600]
 R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; C:\WINDOWS\system32\DRIVERS\us​buhci.sys [2004-08-03 20480]
 R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\In​CDfs.sys [2003-12-17 91712]
 S3 CCDECODE;Décodeur sous-titre fermé; C:\WINDOWS\system32\DRIVERS\CC​DECODE.sys [2004-08-04 17024]
 S3 FETNDISB;VIA Rhine Family Fast Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fe​tnd5b.sys [2003-09-01 41984]
 S3 genmcmnUSB;Genius USB Mouse Driver; C:\WINDOWS\system32\DRIVERS\gf​lmouhid.sys [2002-09-20 6834]
 S3 GVCplDrv;GVCplDrv; C:\WINDOWS\system32\drivers\GV​CplDrv.sys [2003-09-30 22880]
 S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; C:\WINDOWS\system32\drivers\MS​TEE.sys [2004-08-03 5504]
 S3 NABTSFEC;Codec NABTS/FEC VBI; C:\WINDOWS\system32\DRIVERS\NA​BTSFEC.sys [2004-08-04 85376]
 S3 NdisIP;Connection TV/vidéo Microsoft; C:\WINDOWS\system32\DRIVERS\Nd​isIP.sys [2004-08-04 10880]
 S3 QCMerced;Logitech QuickCam Communicate; C:\WINDOWS\system32\DRIVERS\LV​CM.sys []
 S3 SLIP;Détrameur décalage BDA; C:\WINDOWS\system32\DRIVERS\SL​IP.sys [2004-08-03 11136]
 S3 SONYPVU1;Pilote de filtrage Sony USB (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SO​NYPVU1.SYS [2001-08-17 7552]
 S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\St​reamIP.sys [2004-08-03 15360]
 S3 usbaudio;Pilote USB audio (WDM); C:\WINDOWS\system32\drivers\us​baudio.sys [2004-08-04 59264]
 S3 usbscan;Pilote de scanneur USB; C:\WINDOWS\system32\DRIVERS\us​bscan.sys [2004-08-03 15104]
 S3 usbstor;Pilote de stockage de masse USB; C:\WINDOWS\system32\DRIVERS\US​BSTOR.SYS [2004-08-03 26496]
 S3 WMIBIOS;%WMIBIOS.ServiceName%; C:\WINDOWS\System32\Drivers\wm​ibios.sys [2002-10-15 18272]
 S3 WMIINFO;WMIINFO Driver; C:\WINDOWS\System32\Drivers\wm​iinfo.sys [2002-05-13 21184]
 S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wp​dusb.sys [2006-10-18 38528]
 S3 WSTCODEC;Codec Teletext standard; C:\WINDOWS\system32\DRIVERS\WS​TCODEC.SYS [2004-08-04 19328]
 S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wu​dfrd.sys [2006-09-28 82944]
 S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\In​telIde.sys []

 ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R2 InCDsrv;InCD Helper; C:\Program Files\Ahead\InCD\InCDsrv.exe [2003-12-17 802868]
 R2 NOD32krn;NOD32 Kernel Service; C:\Program Files\Eset\nod32krn.exe [2007-08-18 552064]
 R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.ex​e [2007-06-29 155716]
 R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-05-19 240512]
 R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.ex​e [2004-08-04 14336]
 S2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe [2004-03-31 242784]
 S2 gupdate1c99c4ac4a14aac;Service Google Update (gupdate1c99c4ac4a14aac); C:\Program Files\Google\Update\GoogleUpda​te.exe [2009-03-03 133104]
 S2 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe [2009-03-25 183280]
 S3 aspnet_state;Service d'état ASP.NET; C:\WINDOWS\Microsoft.NET\Frame​work\v2.0.50727\aspnet_state.e​xe [2008-07-25 34312]
 S3 ccPwdSvc;Symantec Password Validation; C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe [2004-03-31 87136]
 S3 clr_optimization_v2.0.50727_32​;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Frame​work\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
 S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Frame​work\v3.0\WPF\PresentationFont​Cache.exe [2008-07-29 46104]
 S3 fsssvc;Service Windows Live Contrôle parental; C:\Program Files\Windows Live\Family Safety\fsssvc.exe [2009-08-05 704864]
 S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Fichiers communs\InstallShield\Driver\1​1\Intel 32\IDriverT.exe [2005-04-04 69632]
 S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Frame​work\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
 S3 iPodService;iPodService; C:\Program Files\iPod\bin\iPodService.exe [2006-06-14 323584]
 S3 SNDSrvc;Symantec Network Drivers Service; C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe [2004-03-11 193760]
 S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Frame​work\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

 -----------------EOF----------​-------

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 01/05/2010 à 16:35:18  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
/!\Desactive ton Antivirus, Parfeux etc...etc... le temps de la manipulation/!\ (car il et detecter a tort comme infection par certain Antivirus)/!\

 --> Telecharge List&kill'em, et enregistre le sur ton burreau,:
 http://sd-1.archive-host.com/m [...] nstall.exe

 --> Branche clef USB, Disque dur externe, MP3, MP4 etc.. a ton ordinateur,
 Clique droit (executer en tant qu'administrateur pour VISTA/7) sur le raccourci sur ton bureau pour lancer l'instalation

 -> Coche la case "creer un icone sur le bureau"
 Une fois terminer, clique sur "terminer" et le programme se lancera seul

 --> choisis la langue puis choisis l'option 1 = MODE RECHERCHE
 Laisse travailler l'outil
 - A l'apparition de la fenetre blanche, c'est un peu long, c'est normal, le programme n'est pas bloqué

 --> Un rapport du nom de catchme apparait sur ton bureau, ignore le, ne le poste pas, mais ne le suprime pas pour l'instant, le scan n'est pas Terminer

 --> poste le rapport qui s'ouvre ici a la fin des 100% du scan à l'ecran "COMPLETED"

 -> une fois poster, tu peux suprimer le rapport de ton bureau;-) :fume:  :fume:

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/05/2010 à 17:21:16  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
pare désactivé ok :super:

 par contre impossible de Telecharger List&kill'em car :"la page est introuvable" :??:

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 01/05/2010 à 17:55:24  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
ok, on va faire autrement,

 --> Télécharge OTM (de Old_Timer) sur ton Bureau
 http://oldtimer.geekstogo.com/OTM.exe

 -> Sous XP : Double clique sur OTM.exe
 -> Sous Vista/7 : Fais un clic droit sur OTM.exe et sélectionne "Exécuter en tant qu'administrateur"

 --> Copie la liste ci-dessous en gras, et colle-la dans le cadre jaune (celui de gauche) de OTM sous "Paste Instructions for Items to be Moved"




 :Services
 explorer.exe

 :files
 C:\WINDOWS\tasks\At100.job
 C:\WINDOWS\tasks\At101.job
 C:\WINDOWS\tasks\At102.job
 C:\WINDOWS\tasks\At103.job
 C:\WINDOWS\tasks\At104.job
 C:\WINDOWS\tasks\At105.job
 C:\WINDOWS\tasks\At106.job
 C:\WINDOWS\tasks\At107.job
 C:\WINDOWS\tasks\At108.job
 C:\WINDOWS\tasks\At109.job
 C:\WINDOWS\tasks\At110.job
 C:\WINDOWS\tasks\At111.job
 C:\WINDOWS\tasks\At112.job
 C:\WINDOWS\tasks\At113.job
 C:\WINDOWS\tasks\At114.job
 C:\WINDOWS\tasks\At115.job
 C:\WINDOWS\tasks\At116.job
 C:\WINDOWS\tasks\At117.job
 C:\WINDOWS\tasks\At118.job
 C:\WINDOWS\tasks\At119.job
 C:\WINDOWS\tasks\At120.job
 C:\WINDOWS\tasks\At121.job
 C:\WINDOWS\tasks\At122.job
 C:\WINDOWS\tasks\At123.job
 C:\WINDOWS\tasks\At124.job
 C:\WINDOWS\tasks\At125.job
 C:\WINDOWS\tasks\At126.job
 C:\WINDOWS\tasks\At127.job
 C:\WINDOWS\tasks\At128.job
 C:\WINDOWS\tasks\At129.job
 C:\WINDOWS\tasks\At130.job
 C:\WINDOWS\tasks\At131.job
 C:\WINDOWS\tasks\At132.job
 C:\WINDOWS\tasks\At133.job
 C:\WINDOWS\tasks\At134.job
 C:\WINDOWS\tasks\At135.job
 C:\WINDOWS\tasks\At136.job
 C:\WINDOWS\tasks\At137.job
 C:\WINDOWS\tasks\At138.job
 C:\WINDOWS\tasks\At139.job
 C:\WINDOWS\tasks\At140.job
 C:\WINDOWS\tasks\At141.job
 C:\WINDOWS\tasks\At142.job
 C:\WINDOWS\tasks\At143.job
 C:\WINDOWS\tasks\At144.job
 C:\WINDOWS\tasks\At145.job
 C:\WINDOWS\tasks\At146.job
 C:\WINDOWS\tasks\At147.job
 C:\WINDOWS\tasks\At148.job
 C:\WINDOWS\tasks\At149.job
 C:\WINDOWS\tasks\At150.job
 C:\WINDOWS\tasks\At151.job
 C:\WINDOWS\tasks\At152.job
 C:\WINDOWS\tasks\At153.job
 C:\WINDOWS\tasks\At154.job
 C:\WINDOWS\tasks\At155.job
 C:\WINDOWS\tasks\At156.job
 C:\WINDOWS\tasks\At157.job
 C:\WINDOWS\tasks\At158.job
 C:\WINDOWS\tasks\At159.job
 C:\WINDOWS\tasks\At160.job
 C:\WINDOWS\tasks\At161.job
 C:\WINDOWS\tasks\At162.job
 C:\WINDOWS\tasks\At163.job
 C:\WINDOWS\tasks\At164.job
 C:\WINDOWS\tasks\At165.job
 C:\WINDOWS\tasks\At166.job
 C:\WINDOWS\tasks\At167.job
 C:\WINDOWS\tasks\At168.job
 C:\WINDOWS\tasks\At169.job
 C:\WINDOWS\tasks\At170.job
 C:\WINDOWS\tasks\At171.job
 C:\WINDOWS\tasks\At172.job
 C:\WINDOWS\tasks\At173.job
 C:\WINDOWS\tasks\At174.job
 C:\WINDOWS\tasks\At175.job
 C:\WINDOWS\tasks\At176.job
 C:\WINDOWS\tasks\At177.job
 C:\WINDOWS\tasks\At178.job
 C:\WINDOWS\tasks\At179.job
 C:\WINDOWS\tasks\At180.job
 C:\WINDOWS\tasks\At181.job
 C:\WINDOWS\tasks\At182.job
 C:\WINDOWS\tasks\At183.job
 C:\WINDOWS\tasks\At184.job
 C:\WINDOWS\tasks\At185.job
 C:\WINDOWS\tasks\At186.job
 C:\WINDOWS\tasks\At187.job
 C:\WINDOWS\tasks\At188.job
 C:\WINDOWS\tasks\At189.job
 C:\WINDOWS\tasks\At190.job
 C:\WINDOWS\tasks\At191.job
 C:\WINDOWS\tasks\At192.job
 C:\WINDOWS\tasks\At193.job
 C:\WINDOWS\tasks\At194.job
 C:\WINDOWS\tasks\At195.job
 C:\WINDOWS\tasks\At196.job
 C:\WINDOWS\tasks\At197.job
 C:\WINDOWS\tasks\At198.job
 C:\WINDOWS\tasks\At199.job
 C:\WINDOWS\tasks\At200.job
 C:\WINDOWS\tasks\At201.job
 C:\WINDOWS\tasks\At202.job
 C:\WINDOWS\tasks\At203.job
 C:\WINDOWS\tasks\At204.job
 C:\WINDOWS\tasks\At205.job
 C:\WINDOWS\tasks\At206.job
 C:\WINDOWS\tasks\At207.job
 C:\WINDOWS\tasks\At208.job
 C:\WINDOWS\tasks\At209.job
 C:\WINDOWS\tasks\At210.job
 C:\WINDOWS\tasks\At211.job
 C:\WINDOWS\tasks\At212.job
 C:\WINDOWS\tasks\At213.job
 C:\WINDOWS\tasks\At214.job
 C:\WINDOWS\tasks\At215.job
 C:\WINDOWS\tasks\At216.job
 C:\WINDOWS\tasks\At217.job
 C:\WINDOWS\tasks\At218.job
 C:\WINDOWS\tasks\At219.job
 C:\WINDOWS\tasks\At220.job
 C:\WINDOWS\tasks\At221.job
 C:\WINDOWS\tasks\At222.job
 C:\WINDOWS\tasks\At223.job
 C:\WINDOWS\tasks\At224.job
 C:\WINDOWS\tasks\At225.job
 C:\WINDOWS\tasks\At226.job
 C:\WINDOWS\tasks\At227.job
 C:\WINDOWS\tasks\At228.job
 C:\WINDOWS\tasks\At229.job
 C:\WINDOWS\tasks\At230.job
 C:\WINDOWS\tasks\At231.job
 C:\WINDOWS\tasks\At232.job
 C:\WINDOWS\tasks\At233.job
 C:\WINDOWS\tasks\At234.job
 C:\WINDOWS\tasks\At235.job
 C:\WINDOWS\tasks\At236.job
 C:\WINDOWS\tasks\At237.job
 C:\WINDOWS\tasks\At238.job
 C:\WINDOWS\tasks\At239.job
 C:\WINDOWS\tasks\At240.job
 C:\WINDOWS\tasks\At241.job
 C:\WINDOWS\tasks\At242.job
 C:\WINDOWS\tasks\At243.job
 C:\WINDOWS\tasks\At244.job
 C:\WINDOWS\tasks\At245.job
 C:\WINDOWS\tasks\At246.job
 C:\WINDOWS\tasks\At247.job
 C:\WINDOWS\tasks\At248.job
 C:\WINDOWS\tasks\At249.job
 C:\WINDOWS\tasks\At250.job
 C:\WINDOWS\tasks\At251.job
 C:\WINDOWS\tasks\At252.job
 C:\WINDOWS\tasks\At253.job
 C:\WINDOWS\tasks\At254.job
 C:\WINDOWS\tasks\At255.job
 C:\WINDOWS\tasks\At256.job
 C:\WINDOWS\tasks\At257.job
 C:\WINDOWS\tasks\At258.job
 C:\WINDOWS\tasks\At259.job
 C:\WINDOWS\tasks\At260.job
 C:\WINDOWS\tasks\At261.job
 C:\WINDOWS\tasks\At262.job
 C:\WINDOWS\tasks\At263.job
 C:\WINDOWS\tasks\At264.job
 C:\WINDOWS\tasks\At265.job
 C:\WINDOWS\tasks\At266.job
 C:\WINDOWS\tasks\At267.job
 C:\WINDOWS\tasks\At268.job
 C:\WINDOWS\tasks\At269.job
 C:\WINDOWS\tasks\At270.job
 C:\WINDOWS\tasks\At271.job
 C:\WINDOWS\tasks\At272.job
 C:\WINDOWS\tasks\At273.job
 C:\WINDOWS\tasks\At274.job
 C:\WINDOWS\tasks\At275.job
 C:\WINDOWS\tasks\At276.job
 C:\WINDOWS\tasks\At277.job
 C:\WINDOWS\tasks\At278.job
 C:\WINDOWS\tasks\At279.job
 C:\WINDOWS\tasks\At280.job
 C:\WINDOWS\tasks\At281.job
 C:\WINDOWS\tasks\At282.job
 C:\WINDOWS\tasks\At283.job
 C:\WINDOWS\tasks\At284.job
 C:\WINDOWS\tasks\At285.job
 C:\WINDOWS\tasks\At286.job
 C:\WINDOWS\tasks\At287.job
 C:\WINDOWS\tasks\At288.job
 C:\WINDOWS\tasks\At289.job
 C:\WINDOWS\tasks\At290.job
 C:\WINDOWS\tasks\At291.job
 C:\WINDOWS\tasks\At292.job
 C:\WINDOWS\tasks\At293.job
 C:\WINDOWS\tasks\At294.job
 C:\WINDOWS\tasks\At295.job
 C:\WINDOWS\tasks\At296.job
 C:\WINDOWS\tasks\At297.job
 C:\WINDOWS\tasks\At298.job
 C:\WINDOWS\tasks\At299.job
 C:\WINDOWS\tasks\At300.job
 C:\WINDOWS\tasks\At301.job
 C:\WINDOWS\tasks\At302.job
 C:\WINDOWS\tasks\At303.job
 C:\WINDOWS\tasks\At304.job
 C:\WINDOWS\tasks\At305.job
 C:\WINDOWS\tasks\At306.job
 C:\WINDOWS\tasks\At307.job
 C:\WINDOWS\tasks\At308.job
 C:\WINDOWS\tasks\At309.job
 C:\WINDOWS\tasks\At310.job
 C:\WINDOWS\tasks\At311.job
 C:\WINDOWS\tasks\At312.job
 C:\WINDOWS\tasks\At313.job
 C:\WINDOWS\tasks\At314.job
 C:\WINDOWS\tasks\At315.job
 C:\WINDOWS\tasks\At316.job
 C:\WINDOWS\tasks\At317.job
 C:\WINDOWS\tasks\At318.job
 C:\WINDOWS\tasks\At319.job
 C:\WINDOWS\tasks\At320.job
 C:\WINDOWS\tasks\At321.job
 C:\WINDOWS\tasks\At322.job
 C:\WINDOWS\tasks\At323.job
 C:\WINDOWS\tasks\At324.job
 C:\WINDOWS\tasks\At325.job
 C:\WINDOWS\tasks\At326.job
 C:\WINDOWS\tasks\At327.job
 C:\WINDOWS\tasks\At328.job
 C:\WINDOWS\tasks\At329.job
 C:\WINDOWS\tasks\At330.job
 C:\WINDOWS\tasks\At331.job
 C:\WINDOWS\tasks\At332.job
 C:\WINDOWS\tasks\At333.job
 C:\WINDOWS\tasks\At334.job
 C:\WINDOWS\tasks\At335.job
 C:\WINDOWS\tasks\At336.job
 C:\WINDOWS\tasks\At337.job
 C:\WINDOWS\tasks\At338.job
 C:\WINDOWS\tasks\At339.job
 C:\WINDOWS\tasks\At340.job
 C:\WINDOWS\tasks\At341.job
 C:\WINDOWS\tasks\At342.job
 C:\WINDOWS\tasks\At343.job
 C:\WINDOWS\tasks\At344.job
 C:\WINDOWS\tasks\At345.job
 C:\WINDOWS\tasks\At346.job
 C:\WINDOWS\tasks\At347.job
 C:\WINDOWS\tasks\At348.job
 C:\WINDOWS\tasks\At349.job
 C:\WINDOWS\tasks\At350.job
 C:\WINDOWS\tasks\At351.job
 C:\WINDOWS\tasks\At352.job
 C:\WINDOWS\tasks\At353.job
 C:\WINDOWS\tasks\At354.job
 C:\WINDOWS\tasks\At355.job
 C:\WINDOWS\tasks\At356.job
 C:\WINDOWS\tasks\At357.job
 C:\WINDOWS\tasks\At358.job
 C:\WINDOWS\tasks\At359.job
 C:\WINDOWS\tasks\At360.job
 C:\WINDOWS\tasks\At361.job
 C:\WINDOWS\tasks\At362.job
 C:\WINDOWS\tasks\At363.job
 C:\WINDOWS\tasks\At364.job
 C:\WINDOWS\tasks\At365.job
 C:\WINDOWS\tasks\At366.job
 C:\WINDOWS\tasks\At367.job
 C:\WINDOWS\tasks\At368.job
 C:\WINDOWS\tasks\At369.job
 C:\WINDOWS\tasks\At370.job
 C:\WINDOWS\tasks\At371.job
 C:\WINDOWS\tasks\At372.job
 C:\WINDOWS\tasks\At373.job
 C:\WINDOWS\tasks\At374.job
 C:\WINDOWS\tasks\At375.job
 C:\WINDOWS\tasks\At376.job
 C:\WINDOWS\tasks\At377.job
 C:\WINDOWS\tasks\At378.job
 C:\WINDOWS\tasks\At379.job
 C:\WINDOWS\tasks\At380.job
 C:\WINDOWS\tasks\At381.job
 C:\WINDOWS\tasks\At382.job
 C:\WINDOWS\tasks\At383.job
 C:\WINDOWS\tasks\At384.job
 C:\WINDOWS\tasks\At385.job
 C:\WINDOWS\tasks\At386.job
 C:\WINDOWS\tasks\At387.job
 C:\WINDOWS\tasks\At388.job
 C:\WINDOWS\tasks\At389.job
 C:\WINDOWS\tasks\At390.job
 C:\WINDOWS\tasks\At391.job
 C:\WINDOWS\tasks\At392.job
 C:\WINDOWS\tasks\At393.job
 C:\WINDOWS\tasks\At394.job
 C:\WINDOWS\tasks\At395.job
 C:\WINDOWS\tasks\At396.job
 C:\WINDOWS\tasks\At397.job
 C:\WINDOWS\tasks\At398.job
 C:\WINDOWS\tasks\At399.job
 C:\WINDOWS\tasks\At400.job
 C:\WINDOWS\tasks\At401.job
 C:\WINDOWS\tasks\At402.job
 C:\WINDOWS\tasks\At403.job
 C:\WINDOWS\tasks\At404.job
 C:\WINDOWS\tasks\At405.job
 C:\WINDOWS\tasks\At406.job
 C:\WINDOWS\tasks\At407.job
 C:\WINDOWS\tasks\At408.job
 C:\WINDOWS\tasks\At409.job
 C:\WINDOWS\tasks\At410.job
 C:\WINDOWS\tasks\At411.job
 C:\WINDOWS\tasks\At412.job
 C:\WINDOWS\tasks\At413.job
 C:\WINDOWS\tasks\At414.job
 C:\WINDOWS\tasks\At415.job
 C:\WINDOWS\tasks\At416.job
 C:\WINDOWS\tasks\At417.job
 C:\WINDOWS\tasks\At418.job
 C:\WINDOWS\tasks\At419.job
 C:\WINDOWS\tasks\At420.job
 C:\WINDOWS\tasks\At421.job
 C:\WINDOWS\tasks\At422.job
 C:\WINDOWS\tasks\At423.job
 C:\WINDOWS\tasks\At424.job
 C:\WINDOWS\tasks\At425.job
 C:\WINDOWS\tasks\At426.job
 C:\WINDOWS\tasks\At427.job
 C:\WINDOWS\tasks\At428.job
 C:\WINDOWS\tasks\At429.job
 C:\WINDOWS\tasks\At430.job
 C:\WINDOWS\tasks\At431.job
 C:\WINDOWS\tasks\At432.job
 C:\WINDOWS\tasks\At433.job
 C:\WINDOWS\tasks\At434.job
 C:\WINDOWS\tasks\At435.job
 C:\WINDOWS\tasks\At436.job
 C:\WINDOWS\tasks\At437.job
 C:\WINDOWS\tasks\At438.job
 C:\WINDOWS\tasks\At439.job
 C:\WINDOWS\tasks\At440.job
 C:\WINDOWS\tasks\At441.job
 C:\WINDOWS\tasks\At442.job
 C:\WINDOWS\tasks\At443.job
 C:\WINDOWS\tasks\At444.job
 C:\WINDOWS\tasks\At445.job
 C:\WINDOWS\tasks\At446.job
 C:\WINDOWS\tasks\At447.job
 C:\WINDOWS\tasks\At448.job
 C:\WINDOWS\tasks\At449.job
 C:\WINDOWS\tasks\At450.job
 C:\WINDOWS\tasks\At451.job
 C:\WINDOWS\tasks\At452.job
 C:\WINDOWS\tasks\At453.job
 C:\WINDOWS\tasks\At454.job
 C:\WINDOWS\tasks\At455.job
 C:\WINDOWS\tasks\At456.job
 C:\WINDOWS\tasks\At457.job
 C:\WINDOWS\tasks\At458.job
 C:\WINDOWS\tasks\At459.job
 C:\WINDOWS\tasks\At460.job
 C:\WINDOWS\tasks\At461.job
 C:\WINDOWS\tasks\At462.job
 C:\WINDOWS\tasks\At463.job
 C:\WINDOWS\tasks\At464.job
 C:\WINDOWS\tasks\At465.job
 C:\WINDOWS\tasks\At466.job
 C:\WINDOWS\tasks\At467.job
 C:\WINDOWS\tasks\At468.job
 C:\WINDOWS\tasks\At469.job
 C:\WINDOWS\tasks\At470.job
 C:\WINDOWS\tasks\At471.job
 C:\WINDOWS\tasks\At472.job
 C:\WINDOWS\tasks\At473.job
 C:\WINDOWS\tasks\At474.job
 C:\WINDOWS\tasks\At475.job
 C:\WINDOWS\tasks\At476.job
 C:\WINDOWS\tasks\At477.job
 C:\WINDOWS\tasks\At478.job
 C:\WINDOWS\tasks\At479.job
 C:\WINDOWS\tasks\At480.job
 C:\WINDOWS\tasks\At481.job
 C:\WINDOWS\tasks\At482.job
 C:\WINDOWS\tasks\At483.job
 C:\WINDOWS\tasks\At484.job
 C:\WINDOWS\tasks\At485.job
 C:\WINDOWS\tasks\At486.job
 C:\WINDOWS\tasks\At487.job
 C:\WINDOWS\tasks\At488.job
 C:\WINDOWS\tasks\At489.job
 C:\WINDOWS\tasks\At490.job
 C:\WINDOWS\tasks\At491.job
 C:\WINDOWS\tasks\At492.job
 C:\WINDOWS\tasks\At493.job
 C:\WINDOWS\tasks\At494.job
 C:\WINDOWS\tasks\At495.job
 C:\WINDOWS\tasks\At496.job
 C:\WINDOWS\tasks\At497.job
 C:\WINDOWS\tasks\At498.job
 C:\WINDOWS\tasks\At499.job
 C:\WINDOWS\tasks\At500.job
 C:\WINDOWS\tasks\At501.job
 C:\WINDOWS\tasks\At502.job
 C:\WINDOWS\tasks\At503.job
 C:\WINDOWS\tasks\At504.job
 C:\WINDOWS\tasks\At505.job
 C:\WINDOWS\tasks\At506.job
 C:\WINDOWS\tasks\At507.job
 C:\WINDOWS\tasks\At508.job
 C:\WINDOWS\tasks\At509.job
 C:\WINDOWS\tasks\At510.job
 C:\WINDOWS\tasks\At511.job
 C:\WINDOWS\tasks\At512.job
 C:\WINDOWS\tasks\At513.job
 C:\WINDOWS\tasks\At514.job
 C:\WINDOWS\tasks\At515.job
 C:\WINDOWS\tasks\At516.job
 C:\WINDOWS\tasks\At517.job
 C:\WINDOWS\tasks\At518.job
 C:\WINDOWS\tasks\At519.job
 C:\WINDOWS\tasks\At520.job
 C:\WINDOWS\tasks\At521.job
 C:\WINDOWS\tasks\At522.job
 C:\WINDOWS\tasks\At523.job
 C:\WINDOWS\tasks\At524.job
 C:\WINDOWS\tasks\At525.job
 C:\WINDOWS\tasks\At526.job
 C:\WINDOWS\tasks\At527.job
 C:\WINDOWS\tasks\At528.job
 C:\WINDOWS\tasks\At529.job
 C:\WINDOWS\tasks\At530.job
 C:\WINDOWS\tasks\At531.job
 C:\WINDOWS\tasks\At532.job
 C:\WINDOWS\tasks\At533.job
 C:\WINDOWS\tasks\At534.job
 C:\WINDOWS\tasks\At535.job
 C:\WINDOWS\tasks\At536.job
 C:\WINDOWS\tasks\At537.job
 C:\WINDOWS\tasks\At538.job
 C:\WINDOWS\tasks\At539.job
 C:\WINDOWS\tasks\At540.job
 C:\WINDOWS\tasks\At541.job
 C:\WINDOWS\tasks\At542.job
 C:\WINDOWS\tasks\At543.job
 C:\WINDOWS\tasks\At544.job
 C:\WINDOWS\tasks\At545.job
 C:\WINDOWS\tasks\At546.job
 C:\WINDOWS\tasks\At547.job
 C:\WINDOWS\tasks\At548.job
 C:\WINDOWS\tasks\At549.job
 C:\WINDOWS\tasks\At550.job
 C:\WINDOWS\tasks\At551.job
 C:\WINDOWS\tasks\At552.job
 C:\WINDOWS\tasks\At553.job
 C:\WINDOWS\tasks\At554.job
 C:\WINDOWS\tasks\At555.job
 C:\WINDOWS\tasks\At556.job
 C:\WINDOWS\tasks\At557.job
 C:\WINDOWS\tasks\At558.job
 C:\WINDOWS\tasks\At559.job
 C:\WINDOWS\tasks\At560.job
 C:\WINDOWS\tasks\At561.job
 C:\WINDOWS\tasks\At562.job
 C:\WINDOWS\tasks\At563.job
 C:\WINDOWS\tasks\At564.job
 C:\WINDOWS\tasks\At565.job
 C:\WINDOWS\tasks\At566.job
 C:\WINDOWS\tasks\At567.job
 C:\WINDOWS\tasks\At568.job
 C:\WINDOWS\tasks\At569.job
 C:\WINDOWS\tasks\At570.job
 C:\WINDOWS\tasks\At571.job
 C:\WINDOWS\tasks\At572.job
 C:\WINDOWS\tasks\At573.job
 C:\WINDOWS\tasks\At574.job
 C:\WINDOWS\tasks\At575.job
 C:\WINDOWS\tasks\At576.job
 C:\WINDOWS\tasks\At577.job
 C:\WINDOWS\tasks\At578.job
 C:\WINDOWS\tasks\At579.job
 C:\WINDOWS\tasks\At580.job
 C:\WINDOWS\tasks\At581.job
 C:\WINDOWS\tasks\At582.job
 C:\WINDOWS\tasks\At583.job
 C:\WINDOWS\tasks\At584.job
 C:\WINDOWS\tasks\At585.job
 C:\WINDOWS\tasks\At586.job
 C:\WINDOWS\tasks\At587.job
 C:\WINDOWS\tasks\At588.job
 C:\WINDOWS\tasks\At589.job
 C:\WINDOWS\tasks\At590.job
 C:\WINDOWS\tasks\At591.job
 C:\WINDOWS\tasks\At592.job
 C:\WINDOWS\tasks\At593.job
 C:\WINDOWS\tasks\At594.job
 C:\WINDOWS\tasks\At595.job
 C:\WINDOWS\tasks\At596.job
 C:\WINDOWS\tasks\At597.job
 C:\WINDOWS\tasks\At598.job
 C:\WINDOWS\tasks\At599.job
 C:\WINDOWS\tasks\At600.job
 C:\WINDOWS\tasks\At601.job
 C:\WINDOWS\tasks\At602.job
 C:\WINDOWS\tasks\At603.job
 C:\WINDOWS\tasks\At604.job
 C:\WINDOWS\tasks\At605.job
 C:\WINDOWS\tasks\At606.job
 C:\WINDOWS\tasks\At607.job
 C:\WINDOWS\tasks\At608.job
 C:\WINDOWS\tasks\At609.job
 C:\WINDOWS\tasks\At610.job
 C:\WINDOWS\tasks\At611.job
 C:\WINDOWS\tasks\At612.job
 C:\WINDOWS\tasks\At613.job
 C:\WINDOWS\tasks\At614.job
 C:\WINDOWS\tasks\At615.job
 C:\WINDOWS\tasks\At616.job
 C:\WINDOWS\tasks\At617.job
 C:\WINDOWS\tasks\At618.job
 C:\WINDOWS\tasks\At619.job
 C:\WINDOWS\tasks\At620.job
 C:\WINDOWS\tasks\At621.job
 C:\WINDOWS\tasks\At622.job
 C:\WINDOWS\tasks\At623.job
 C:\WINDOWS\tasks\At624.job
 C:\WINDOWS\tasks\At625.job
 C:\WINDOWS\tasks\At626.job
 C:\WINDOWS\tasks\At627.job
 C:\WINDOWS\tasks\At628.job
 C:\WINDOWS\tasks\At629.job
 C:\WINDOWS\tasks\At630.job
 C:\WINDOWS\tasks\At631.job
 C:\WINDOWS\tasks\At632.job
 C:\WINDOWS\tasks\At633.job
 C:\WINDOWS\tasks\At634.job
 C:\WINDOWS\tasks\At635.job
 C:\WINDOWS\tasks\At636.job
 C:\WINDOWS\tasks\At637.job
 C:\WINDOWS\tasks\At638.job
 C:\WINDOWS\tasks\At639.job
 C:\WINDOWS\tasks\At640.job
 C:\WINDOWS\tasks\At641.job
 C:\WINDOWS\tasks\At642.job
 C:\WINDOWS\tasks\At643.job
 C:\WINDOWS\tasks\At644.job
 C:\WINDOWS\tasks\At645.job
 C:\WINDOWS\tasks\At646.job
 C:\WINDOWS\tasks\At647.job
 C:\WINDOWS\tasks\At648.job
 C:\WINDOWS\tasks\At649.job
 C:\WINDOWS\tasks\At650.job
 C:\WINDOWS\tasks\At651.job
 C:\WINDOWS\tasks\At652.job
 C:\WINDOWS\tasks\At653.job
 C:\WINDOWS\tasks\At654.job
 C:\WINDOWS\tasks\At655.job
 C:\WINDOWS\tasks\At656.job
 C:\WINDOWS\tasks\At657.job
 C:\WINDOWS\tasks\At658.job
 C:\WINDOWS\tasks\At659.job
 C:\WINDOWS\tasks\At660.job
 C:\WINDOWS\tasks\At661.job
 C:\WINDOWS\tasks\At662.job
 C:\WINDOWS\tasks\At663.job
 C:\WINDOWS\tasks\At664.job
 C:\WINDOWS\tasks\At665.job
 C:\WINDOWS\tasks\At666.job
 C:\WINDOWS\tasks\At667.job
 C:\WINDOWS\tasks\At668.job
 C:\WINDOWS\tasks\At669.job
 C:\WINDOWS\tasks\At670.job
 C:\WINDOWS\tasks\At671.job
 C:\WINDOWS\tasks\At672.job
 C:\WINDOWS\tasks\At673.job
 C:\WINDOWS\tasks\At674.job
 C:\WINDOWS\tasks\At675.job
 C:\WINDOWS\tasks\At676.job
 C:\WINDOWS\tasks\At677.job
 C:\WINDOWS\tasks\At678.job
 C:\WINDOWS\tasks\At679.job
 C:\WINDOWS\tasks\At680.job
 C:\WINDOWS\tasks\At681.job
 C:\WINDOWS\tasks\At682.job
 C:\WINDOWS\tasks\At683.job
 C:\WINDOWS\tasks\At684.job
 C:\WINDOWS\tasks\At685.job
 C:\WINDOWS\tasks\At686.job
 C:\WINDOWS\tasks\At687.job
 C:\WINDOWS\tasks\At688.job
 C:\WINDOWS\tasks\At689.job
 C:\WINDOWS\tasks\At690.job
 C:\WINDOWS\tasks\At691.job
 C:\WINDOWS\tasks\At692.job
 C:\WINDOWS\tasks\At693.job
 C:\WINDOWS\tasks\At694.job
 C:\WINDOWS\tasks\At695.job
 C:\WINDOWS\tasks\At696.job
 C:\WINDOWS\tasks\At697.job
 C:\WINDOWS\tasks\At698.job
 C:\WINDOWS\tasks\At699.job
 C:\WINDOWS\tasks\At700.job
 C:\WINDOWS\tasks\At701.job
 C:\WINDOWS\tasks\At702.job
 C:\WINDOWS\tasks\At703.job
 C:\WINDOWS\tasks\At704.job
 C:\WINDOWS\tasks\At705.job
 C:\WINDOWS\tasks\At706.job
 C:\WINDOWS\tasks\At707.job
 C:\WINDOWS\tasks\At708.job
 C:\WINDOWS\tasks\At709.job
 C:\WINDOWS\tasks\At710.job
 C:\WINDOWS\tasks\At711.job
 C:\WINDOWS\tasks\At712.job
 C:\WINDOWS\tasks\At713.job
 C:\WINDOWS\tasks\At714.job
 C:\WINDOWS\tasks\At715.job
 C:\WINDOWS\tasks\At716.job
 C:\WINDOWS\tasks\At717.job
 C:\WINDOWS\tasks\At718.job
 C:\WINDOWS\tasks\At719.job
 C:\WINDOWS\tasks\At720.job
 C:\WINDOWS\tasks\At721.job
 C:\WINDOWS\tasks\At722.job
 C:\WINDOWS\tasks\At723.job
 C:\WINDOWS\tasks\At724.job
 C:\WINDOWS\tasks\At725.job
 C:\WINDOWS\tasks\At726.job
 C:\WINDOWS\tasks\At727.job
 C:\WINDOWS\tasks\At728.job
 C:\WINDOWS\tasks\At729.job
 C:\WINDOWS\tasks\At730.job
 C:\WINDOWS\tasks\At731.job
 C:\WINDOWS\tasks\At732.job
 C:\WINDOWS\tasks\At733.job
 C:\WINDOWS\tasks\At734.job
 C:\WINDOWS\tasks\At735.job
 C:\WINDOWS\tasks\At736.job
 C:\WINDOWS\tasks\At737.job
 C:\WINDOWS\tasks\At738.job
 C:\WINDOWS\tasks\At739.job
 C:\WINDOWS\tasks\At740.job
 C:\WINDOWS\tasks\At741.job
 C:\WINDOWS\tasks\At742.job
 C:\WINDOWS\tasks\At743.job
 C:\WINDOWS\tasks\At744.job

 :reg

 :commands
 [purity]
 [emptytemp]
 [reboot]



 --> Clique sur le bouton MoveIt! pour lancer la suppression.

 --> Si redemarage du pc demander clique sur le bouton YES

 --> Un rapport s'ouvre au redémarrage du PC, copie/colle le dans ta réponse

 P.S : Le rapport est sauvegardé dans C:\_OTM\MovedFiles

 PUIS :

 Relance un scan RSIT...
 Seul le (log.txt) aparait en fin de scan..Poste le ici STP ;-)

 :fume:  :fume:

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/05/2010 à 19:19:39  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:pt1cable:

 All processes killed
 ========== SERVICES/DRIVERS ==========
 Error: No service named explorer.exe was found to stop!
 Service\Driver key explorer.exe not found.
 ========== FILES ==========
 C:\WINDOWS\tasks\At100.job moved successfully.
 C:\WINDOWS\tasks\At101.job moved successfully.
 C:\WINDOWS\tasks\At102.job moved successfully.
 C:\WINDOWS\tasks\At103.job moved successfully.
 C:\WINDOWS\tasks\At104.job moved successfully.
 C:\WINDOWS\tasks\At105.job moved successfully.
 C:\WINDOWS\tasks\At106.job moved successfully.
 C:\WINDOWS\tasks\At107.job moved successfully.
 C:\WINDOWS\tasks\At108.job moved successfully.
 C:\WINDOWS\tasks\At109.job moved successfully.
 C:\WINDOWS\tasks\At110.job moved successfully.
 C:\WINDOWS\tasks\At111.job moved successfully.
 C:\WINDOWS\tasks\At112.job moved successfully.
 C:\WINDOWS\tasks\At113.job moved successfully.
 C:\WINDOWS\tasks\At114.job moved successfully.
 C:\WINDOWS\tasks\At115.job moved successfully.
 C:\WINDOWS\tasks\At116.job moved successfully.
 C:\WINDOWS\tasks\At117.job moved successfully.
 C:\WINDOWS\tasks\At118.job moved successfully.
 C:\WINDOWS\tasks\At119.job moved successfully.
 C:\WINDOWS\tasks\At120.job moved successfully.
 C:\WINDOWS\tasks\At121.job moved successfully.
 C:\WINDOWS\tasks\At122.job moved successfully.
 C:\WINDOWS\tasks\At123.job moved successfully.
 C:\WINDOWS\tasks\At124.job moved successfully.
 C:\WINDOWS\tasks\At125.job moved successfully.
 C:\WINDOWS\tasks\At126.job moved successfully.
 C:\WINDOWS\tasks\At127.job moved successfully.
 C:\WINDOWS\tasks\At128.job moved successfully.
 C:\WINDOWS\tasks\At129.job moved successfully.
 C:\WINDOWS\tasks\At130.job moved successfully.
 C:\WINDOWS\tasks\At131.job moved successfully.
 C:\WINDOWS\tasks\At132.job moved successfully.
 C:\WINDOWS\tasks\At133.job moved successfully.
 C:\WINDOWS\tasks\At134.job moved successfully.
 C:\WINDOWS\tasks\At135.job moved successfully.
 C:\WINDOWS\tasks\At136.job moved successfully.
 C:\WINDOWS\tasks\At137.job moved successfully.
 C:\WINDOWS\tasks\At138.job moved successfully.
 C:\WINDOWS\tasks\At139.job moved successfully.
 C:\WINDOWS\tasks\At140.job moved successfully.
 C:\WINDOWS\tasks\At141.job moved successfully.
 C:\WINDOWS\tasks\At142.job moved successfully.
 C:\WINDOWS\tasks\At143.job moved successfully.
 C:\WINDOWS\tasks\At144.job moved successfully.
 C:\WINDOWS\tasks\At145.job moved successfully.
 C:\WINDOWS\tasks\At146.job moved successfully.
 C:\WINDOWS\tasks\At147.job moved successfully.
 C:\WINDOWS\tasks\At148.job moved successfully.
 C:\WINDOWS\tasks\At149.job moved successfully.
 C:\WINDOWS\tasks\At150.job moved successfully.
 C:\WINDOWS\tasks\At151.job moved successfully.
 C:\WINDOWS\tasks\At152.job moved successfully.
 C:\WINDOWS\tasks\At153.job moved successfully.
 C:\WINDOWS\tasks\At154.job moved successfully.
 C:\WINDOWS\tasks\At155.job moved successfully.
 C:\WINDOWS\tasks\At156.job moved successfully.
 C:\WINDOWS\tasks\At157.job moved successfully.
 C:\WINDOWS\tasks\At158.job moved successfully.
 C:\WINDOWS\tasks\At159.job moved successfully.
 C:\WINDOWS\tasks\At160.job moved successfully.
 C:\WINDOWS\tasks\At161.job moved successfully.
 C:\WINDOWS\tasks\At162.job moved successfully.
 C:\WINDOWS\tasks\At163.job moved successfully.
 C:\WINDOWS\tasks\At164.job moved successfully.
 C:\WINDOWS\tasks\At165.job moved successfully.
 C:\WINDOWS\tasks\At166.job moved successfully.
 C:\WINDOWS\tasks\At167.job moved successfully.
 C:\WINDOWS\tasks\At168.job moved successfully.
 C:\WINDOWS\tasks\At169.job moved successfully.
 C:\WINDOWS\tasks\At170.job moved successfully.
 C:\WINDOWS\tasks\At171.job moved successfully.
 C:\WINDOWS\tasks\At172.job moved successfully.
 C:\WINDOWS\tasks\At173.job moved successfully.
 C:\WINDOWS\tasks\At174.job moved successfully.
 C:\WINDOWS\tasks\At175.job moved successfully.
 C:\WINDOWS\tasks\At176.job moved successfully.
 C:\WINDOWS\tasks\At177.job moved successfully.
 C:\WINDOWS\tasks\At178.job moved successfully.
 C:\WINDOWS\tasks\At179.job moved successfully.
 C:\WINDOWS\tasks\At180.job moved successfully.
 C:\WINDOWS\tasks\At181.job moved successfully.
 C:\WINDOWS\tasks\At182.job moved successfully.
 C:\WINDOWS\tasks\At183.job moved successfully.
 C:\WINDOWS\tasks\At184.job moved successfully.
 C:\WINDOWS\tasks\At185.job moved successfully.
 C:\WINDOWS\tasks\At186.job moved successfully.
 C:\WINDOWS\tasks\At187.job moved successfully.
 C:\WINDOWS\tasks\At188.job moved successfully.
 C:\WINDOWS\tasks\At189.job moved successfully.
 C:\WINDOWS\tasks\At190.job moved successfully.
 C:\WINDOWS\tasks\At191.job moved successfully.
 C:\WINDOWS\tasks\At192.job moved successfully.
 C:\WINDOWS\tasks\At193.job moved successfully.
 C:\WINDOWS\tasks\At194.job moved successfully.
 C:\WINDOWS\tasks\At195.job moved successfully.
 C:\WINDOWS\tasks\At196.job moved successfully.
 C:\WINDOWS\tasks\At197.job moved successfully.
 C:\WINDOWS\tasks\At198.job moved successfully.
 C:\WINDOWS\tasks\At199.job moved successfully.
 C:\WINDOWS\tasks\At200.job moved successfully.
 C:\WINDOWS\tasks\At201.job moved successfully.
 C:\WINDOWS\tasks\At202.job moved successfully.
 C:\WINDOWS\tasks\At203.job moved successfully.
 C:\WINDOWS\tasks\At204.job moved successfully.
 C:\WINDOWS\tasks\At205.job moved successfully.
 C:\WINDOWS\tasks\At206.job moved successfully.
 C:\WINDOWS\tasks\At207.job moved successfully.
 C:\WINDOWS\tasks\At208.job moved successfully.
 C:\WINDOWS\tasks\At209.job moved successfully.
 C:\WINDOWS\tasks\At210.job moved successfully.
 C:\WINDOWS\tasks\At211.job moved successfully.
 C:\WINDOWS\tasks\At212.job moved successfully.
 C:\WINDOWS\tasks\At213.job moved successfully.
 C:\WINDOWS\tasks\At214.job moved successfully.
 C:\WINDOWS\tasks\At215.job moved successfully.
 C:\WINDOWS\tasks\At216.job moved successfully.
 C:\WINDOWS\tasks\At217.job moved successfully.
 C:\WINDOWS\tasks\At218.job moved successfully.
 C:\WINDOWS\tasks\At219.job moved successfully.
 C:\WINDOWS\tasks\At220.job moved successfully.
 C:\WINDOWS\tasks\At221.job moved successfully.
 C:\WINDOWS\tasks\At222.job moved successfully.
 C:\WINDOWS\tasks\At223.job moved successfully.
 C:\WINDOWS\tasks\At224.job moved successfully.
 C:\WINDOWS\tasks\At225.job moved successfully.
 C:\WINDOWS\tasks\At226.job moved successfully.
 C:\WINDOWS\tasks\At227.job moved successfully.
 C:\WINDOWS\tasks\At228.job moved successfully.
 C:\WINDOWS\tasks\At229.job moved successfully.
 C:\WINDOWS\tasks\At230.job moved successfully.
 C:\WINDOWS\tasks\At231.job moved successfully.
 C:\WINDOWS\tasks\At232.job moved successfully.
 C:\WINDOWS\tasks\At233.job moved successfully.
 C:\WINDOWS\tasks\At234.job moved successfully.
 C:\WINDOWS\tasks\At235.job moved successfully.
 C:\WINDOWS\tasks\At236.job moved successfully.
 File move failed. C:\WINDOWS\tasks\At237.job scheduled to be moved on reboot.
 C:\WINDOWS\tasks\At238.job moved successfully.
 C:\WINDOWS\tasks\At239.job moved successfully.
 C:\WINDOWS\tasks\At240.job moved successfully.
 C:\WINDOWS\tasks\At241.job moved successfully.
 C:\WINDOWS\tasks\At242.job moved successfully.
 C:\WINDOWS\tasks\At243.job moved successfully.
 C:\WINDOWS\tasks\At244.job moved successfully.
 C:\WINDOWS\tasks\At245.job moved successfully.
 C:\WINDOWS\tasks\At246.job moved successfully.
 C:\WINDOWS\tasks\At247.job moved successfully.
 C:\WINDOWS\tasks\At248.job moved successfully.
 C:\WINDOWS\tasks\At249.job moved successfully.
 C:\WINDOWS\tasks\At250.job moved successfully.
 C:\WINDOWS\tasks\At251.job moved successfully.
 C:\WINDOWS\tasks\At252.job moved successfully.
 C:\WINDOWS\tasks\At253.job moved successfully.
 C:\WINDOWS\tasks\At254.job moved successfully.
 C:\WINDOWS\tasks\At255.job moved successfully.
 C:\WINDOWS\tasks\At256.job moved successfully.
 C:\WINDOWS\tasks\At257.job moved successfully.
 C:\WINDOWS\tasks\At258.job moved successfully.
 C:\WINDOWS\tasks\At259.job moved successfully.
 C:\WINDOWS\tasks\At260.job moved successfully.
 C:\WINDOWS\tasks\At261.job moved successfully.
 C:\WINDOWS\tasks\At262.job moved successfully.
 C:\WINDOWS\tasks\At263.job moved successfully.
 C:\WINDOWS\tasks\At264.job moved successfully.
 C:\WINDOWS\tasks\At265.job moved successfully.
 C:\WINDOWS\tasks\At266.job moved successfully.
 C:\WINDOWS\tasks\At267.job moved successfully.
 C:\WINDOWS\tasks\At268.job moved successfully.
 C:\WINDOWS\tasks\At269.job moved successfully.
 C:\WINDOWS\tasks\At270.job moved successfully.
 C:\WINDOWS\tasks\At271.job moved successfully.
 C:\WINDOWS\tasks\At272.job moved successfully.
 C:\WINDOWS\tasks\At273.job moved successfully.
 C:\WINDOWS\tasks\At274.job moved successfully.
 C:\WINDOWS\tasks\At275.job moved successfully.
 C:\WINDOWS\tasks\At276.job moved successfully.
 C:\WINDOWS\tasks\At277.job moved successfully.
 C:\WINDOWS\tasks\At278.job moved successfully.
 C:\WINDOWS\tasks\At279.job moved successfully.
 C:\WINDOWS\tasks\At280.job moved successfully.
 C:\WINDOWS\tasks\At281.job moved successfully.
 C:\WINDOWS\tasks\At282.job moved successfully.
 C:\WINDOWS\tasks\At283.job moved successfully.
 C:\WINDOWS\tasks\At284.job moved successfully.
 C:\WINDOWS\tasks\At285.job moved successfully.
 C:\WINDOWS\tasks\At286.job moved successfully.
 C:\WINDOWS\tasks\At287.job moved successfully.
 C:\WINDOWS\tasks\At288.job moved successfully.
 C:\WINDOWS\tasks\At289.job moved successfully.
 C:\WINDOWS\tasks\At290.job moved successfully.
 C:\WINDOWS\tasks\At291.job moved successfully.
 C:\WINDOWS\tasks\At292.job moved successfully.
 C:\WINDOWS\tasks\At293.job moved successfully.
 C:\WINDOWS\tasks\At294.job moved successfully.
 C:\WINDOWS\tasks\At295.job moved successfully.
 C:\WINDOWS\tasks\At296.job moved successfully.
 C:\WINDOWS\tasks\At297.job moved successfully.
 C:\WINDOWS\tasks\At298.job moved successfully.
 C:\WINDOWS\tasks\At299.job moved successfully.
 C:\WINDOWS\tasks\At300.job moved successfully.
 C:\WINDOWS\tasks\At301.job moved successfully.
 C:\WINDOWS\tasks\At302.job moved successfully.
 C:\WINDOWS\tasks\At303.job moved successfully.
 C:\WINDOWS\tasks\At304.job moved successfully.
 C:\WINDOWS\tasks\At305.job moved successfully.
 C:\WINDOWS\tasks\At306.job moved successfully.
 C:\WINDOWS\tasks\At307.job moved successfully.
 C:\WINDOWS\tasks\At308.job moved successfully.
 C:\WINDOWS\tasks\At309.job moved successfully.
 C:\WINDOWS\tasks\At310.job moved successfully.
 C:\WINDOWS\tasks\At311.job moved successfully.
 C:\WINDOWS\tasks\At312.job moved successfully.
 C:\WINDOWS\tasks\At313.job moved successfully.
 C:\WINDOWS\tasks\At314.job moved successfully.
 C:\WINDOWS\tasks\At315.job moved successfully.
 C:\WINDOWS\tasks\At316.job moved successfully.
 C:\WINDOWS\tasks\At317.job moved successfully.
 C:\WINDOWS\tasks\At318.job moved successfully.
 C:\WINDOWS\tasks\At319.job moved successfully.
 C:\WINDOWS\tasks\At320.job moved successfully.
 C:\WINDOWS\tasks\At321.job moved successfully.
 C:\WINDOWS\tasks\At322.job moved successfully.
 C:\WINDOWS\tasks\At323.job moved successfully.
 C:\WINDOWS\tasks\At324.job moved successfully.
 C:\WINDOWS\tasks\At325.job moved successfully.
 C:\WINDOWS\tasks\At326.job moved successfully.
 C:\WINDOWS\tasks\At327.job moved successfully.
 C:\WINDOWS\tasks\At328.job moved successfully.
 C:\WINDOWS\tasks\At329.job moved successfully.
 C:\WINDOWS\tasks\At330.job moved successfully.
 C:\WINDOWS\tasks\At331.job moved successfully.
 C:\WINDOWS\tasks\At332.job moved successfully.
 C:\WINDOWS\tasks\At333.job moved successfully.
 C:\WINDOWS\tasks\At334.job moved successfully.
 C:\WINDOWS\tasks\At335.job moved successfully.
 C:\WINDOWS\tasks\At336.job moved successfully.
 C:\WINDOWS\tasks\At337.job moved successfully.
 C:\WINDOWS\tasks\At338.job moved successfully.
 C:\WINDOWS\tasks\At339.job moved successfully.
 C:\WINDOWS\tasks\At340.job moved successfully.
 C:\WINDOWS\tasks\At341.job moved successfully.
 C:\WINDOWS\tasks\At342.job moved successfully.
 C:\WINDOWS\tasks\At343.job moved successfully.
 C:\WINDOWS\tasks\At344.job moved successfully.
 C:\WINDOWS\tasks\At345.job moved successfully.
 C:\WINDOWS\tasks\At346.job moved successfully.
 C:\WINDOWS\tasks\At347.job moved successfully.
 C:\WINDOWS\tasks\At348.job moved successfully.
 C:\WINDOWS\tasks\At349.job moved successfully.
 C:\WINDOWS\tasks\At350.job moved successfully.
 C:\WINDOWS\tasks\At351.job moved successfully.
 C:\WINDOWS\tasks\At352.job moved successfully.
 C:\WINDOWS\tasks\At353.job moved successfully.
 C:\WINDOWS\tasks\At354.job moved successfully.
 C:\WINDOWS\tasks\At355.job moved successfully.
 C:\WINDOWS\tasks\At356.job moved successfully.
 C:\WINDOWS\tasks\At357.job moved successfully.
 C:\WINDOWS\tasks\At358.job moved successfully.
 C:\WINDOWS\tasks\At359.job moved successfully.
 C:\WINDOWS\tasks\At360.job moved successfully.
 C:\WINDOWS\tasks\At361.job moved successfully.
 C:\WINDOWS\tasks\At362.job moved successfully.
 C:\WINDOWS\tasks\At363.job moved successfully.
 C:\WINDOWS\tasks\At364.job moved successfully.
 C:\WINDOWS\tasks\At365.job moved successfully.
 C:\WINDOWS\tasks\At366.job moved successfully.
 C:\WINDOWS\tasks\At367.job moved successfully.
 C:\WINDOWS\tasks\At368.job moved successfully.
 C:\WINDOWS\tasks\At369.job moved successfully.
 C:\WINDOWS\tasks\At370.job moved successfully.
 C:\WINDOWS\tasks\At371.job moved successfully.
 C:\WINDOWS\tasks\At372.job moved successfully.
 C:\WINDOWS\tasks\At373.job moved successfully.
 C:\WINDOWS\tasks\At374.job moved successfully.
 C:\WINDOWS\tasks\At375.job moved successfully.
 C:\WINDOWS\tasks\At376.job moved successfully.
 C:\WINDOWS\tasks\At377.job moved successfully.
 C:\WINDOWS\tasks\At378.job moved successfully.
 C:\WINDOWS\tasks\At379.job moved successfully.
 C:\WINDOWS\tasks\At380.job moved successfully.
 C:\WINDOWS\tasks\At381.job moved successfully.
 C:\WINDOWS\tasks\At382.job moved successfully.
 C:\WINDOWS\tasks\At383.job moved successfully.
 C:\WINDOWS\tasks\At384.job moved successfully.
 C:\WINDOWS\tasks\At385.job moved successfully.
 C:\WINDOWS\tasks\At386.job moved successfully.
 C:\WINDOWS\tasks\At387.job moved successfully.
 C:\WINDOWS\tasks\At388.job moved successfully.
 C:\WINDOWS\tasks\At389.job moved successfully.
 C:\WINDOWS\tasks\At390.job moved successfully.
 C:\WINDOWS\tasks\At391.job moved successfully.
 C:\WINDOWS\tasks\At392.job moved successfully.
 C:\WINDOWS\tasks\At393.job moved successfully.
 C:\WINDOWS\tasks\At394.job moved successfully.
 C:\WINDOWS\tasks\At395.job moved successfully.
 C:\WINDOWS\tasks\At396.job moved successfully.
 C:\WINDOWS\tasks\At397.job moved successfully.
 C:\WINDOWS\tasks\At398.job moved successfully.
 C:\WINDOWS\tasks\At399.job moved successfully.
 C:\WINDOWS\tasks\At400.job moved successfully.
 C:\WINDOWS\tasks\At401.job moved successfully.
 C:\WINDOWS\tasks\At402.job moved successfully.
 C:\WINDOWS\tasks\At403.job moved successfully.
 C:\WINDOWS\tasks\At404.job moved successfully.
 C:\WINDOWS\tasks\At405.job moved successfully.
 C:\WINDOWS\tasks\At406.job moved successfully.
 C:\WINDOWS\tasks\At407.job moved successfully.
 C:\WINDOWS\tasks\At408.job moved successfully.
 C:\WINDOWS\tasks\At409.job moved successfully.
 C:\WINDOWS\tasks\At410.job moved successfully.
 C:\WINDOWS\tasks\At411.job moved successfully.
 C:\WINDOWS\tasks\At412.job moved successfully.
 C:\WINDOWS\tasks\At413.job moved successfully.
 C:\WINDOWS\tasks\At414.job moved successfully.
 C:\WINDOWS\tasks\At415.job moved successfully.
 C:\WINDOWS\tasks\At416.job moved successfully.
 C:\WINDOWS\tasks\At417.job moved successfully.
 C:\WINDOWS\tasks\At418.job moved successfully.
 C:\WINDOWS\tasks\At419.job moved successfully.
 C:\WINDOWS\tasks\At420.job moved successfully.
 C:\WINDOWS\tasks\At421.job moved successfully.
 C:\WINDOWS\tasks\At422.job moved successfully.
 C:\WINDOWS\tasks\At423.job moved successfully.
 C:\WINDOWS\tasks\At424.job moved successfully.
 C:\WINDOWS\tasks\At425.job moved successfully.
 C:\WINDOWS\tasks\At426.job moved successfully.
 C:\WINDOWS\tasks\At427.job moved successfully.
 C:\WINDOWS\tasks\At428.job moved successfully.
 C:\WINDOWS\tasks\At429.job moved successfully.
 C:\WINDOWS\tasks\At430.job moved successfully.
 C:\WINDOWS\tasks\At431.job moved successfully.
 C:\WINDOWS\tasks\At432.job moved successfully.
 C:\WINDOWS\tasks\At433.job moved successfully.
 C:\WINDOWS\tasks\At434.job moved successfully.
 C:\WINDOWS\tasks\At435.job moved successfully.
 C:\WINDOWS\tasks\At436.job moved successfully.
 C:\WINDOWS\tasks\At437.job moved successfully.
 C:\WINDOWS\tasks\At438.job moved successfully.
 C:\WINDOWS\tasks\At439.job moved successfully.
 C:\WINDOWS\tasks\At440.job moved successfully.
 C:\WINDOWS\tasks\At441.job moved successfully.
 C:\WINDOWS\tasks\At442.job moved successfully.
 C:\WINDOWS\tasks\At443.job moved successfully.
 C:\WINDOWS\tasks\At444.job moved successfully.
 C:\WINDOWS\tasks\At445.job moved successfully.
 C:\WINDOWS\tasks\At446.job moved successfully.
 C:\WINDOWS\tasks\At447.job moved successfully.
 C:\WINDOWS\tasks\At448.job moved successfully.
 C:\WINDOWS\tasks\At449.job moved successfully.
 C:\WINDOWS\tasks\At450.job moved successfully.
 C:\WINDOWS\tasks\At451.job moved successfully.
 C:\WINDOWS\tasks\At452.job moved successfully.
 C:\WINDOWS\tasks\At453.job moved successfully.
 C:\WINDOWS\tasks\At454.job moved successfully.
 C:\WINDOWS\tasks\At455.job moved successfully.
 C:\WINDOWS\tasks\At456.job moved successfully.
 C:\WINDOWS\tasks\At457.job moved successfully.
 C:\WINDOWS\tasks\At458.job moved successfully.
 C:\WINDOWS\tasks\At459.job moved successfully.
 C:\WINDOWS\tasks\At460.job moved successfully.
 C:\WINDOWS\tasks\At461.job moved successfully.
 C:\WINDOWS\tasks\At462.job moved successfully.
 C:\WINDOWS\tasks\At463.job moved successfully.
 C:\WINDOWS\tasks\At464.job moved successfully.
 C:\WINDOWS\tasks\At465.job moved successfully.
 C:\WINDOWS\tasks\At466.job moved successfully.
 C:\WINDOWS\tasks\At467.job moved successfully.
 C:\WINDOWS\tasks\At468.job moved successfully.
 C:\WINDOWS\tasks\At469.job moved successfully.
 C:\WINDOWS\tasks\At470.job moved successfully.
 C:\WINDOWS\tasks\At471.job moved successfully.
 C:\WINDOWS\tasks\At472.job moved successfully.
 C:\WINDOWS\tasks\At473.job moved successfully.
 C:\WINDOWS\tasks\At474.job moved successfully.
 C:\WINDOWS\tasks\At475.job moved successfully.
 C:\WINDOWS\tasks\At476.job moved successfully.
 C:\WINDOWS\tasks\At477.job moved successfully.
 C:\WINDOWS\tasks\At478.job moved successfully.
 C:\WINDOWS\tasks\At479.job moved successfully.
 C:\WINDOWS\tasks\At480.job moved successfully.
 C:\WINDOWS\tasks\At481.job moved successfully.
 C:\WINDOWS\tasks\At482.job moved successfully.
 C:\WINDOWS\tasks\At483.job moved successfully.
 C:\WINDOWS\tasks\At484.job moved successfully.
 C:\WINDOWS\tasks\At485.job moved successfully.
 C:\WINDOWS\tasks\At486.job moved successfully.
 C:\WINDOWS\tasks\At487.job moved successfully.
 C:\WINDOWS\tasks\At488.job moved successfully.
 C:\WINDOWS\tasks\At489.job moved successfully.
 C:\WINDOWS\tasks\At490.job moved successfully.
 C:\WINDOWS\tasks\At491.job moved successfully.
 C:\WINDOWS\tasks\At492.job moved successfully.
 C:\WINDOWS\tasks\At493.job moved successfully.
 C:\WINDOWS\tasks\At494.job moved successfully.
 C:\WINDOWS\tasks\At495.job moved successfully.
 C:\WINDOWS\tasks\At496.job moved successfully.
 C:\WINDOWS\tasks\At497.job moved successfully.
 C:\WINDOWS\tasks\At498.job moved successfully.
 C:\WINDOWS\tasks\At499.job moved successfully.
 C:\WINDOWS\tasks\At500.job moved successfully.
 C:\WINDOWS\tasks\At501.job moved successfully.
 C:\WINDOWS\tasks\At502.job moved successfully.
 C:\WINDOWS\tasks\At503.job moved successfully.
 C:\WINDOWS\tasks\At504.job moved successfully.
 C:\WINDOWS\tasks\At505.job moved successfully.
 C:\WINDOWS\tasks\At506.job moved successfully.
 C:\WINDOWS\tasks\At507.job moved successfully.
 C:\WINDOWS\tasks\At508.job moved successfully.
 C:\WINDOWS\tasks\At509.job moved successfully.
 C:\WINDOWS\tasks\At510.job moved successfully.
 C:\WINDOWS\tasks\At511.job moved successfully.
 C:\WINDOWS\tasks\At512.job moved successfully.
 C:\WINDOWS\tasks\At513.job moved successfully.
 C:\WINDOWS\tasks\At514.job moved successfully.
 C:\WINDOWS\tasks\At515.job moved successfully.
 C:\WINDOWS\tasks\At516.job moved successfully.
 C:\WINDOWS\tasks\At517.job moved successfully.
 C:\WINDOWS\tasks\At518.job moved successfully.
 C:\WINDOWS\tasks\At519.job moved successfully.
 C:\WINDOWS\tasks\At520.job moved successfully.
 C:\WINDOWS\tasks\At521.job moved successfully.
 C:\WINDOWS\tasks\At522.job moved successfully.
 C:\WINDOWS\tasks\At523.job moved successfully.
 C:\WINDOWS\tasks\At524.job moved successfully.
 C:\WINDOWS\tasks\At525.job moved successfully.
 C:\WINDOWS\tasks\At526.job moved successfully.
 C:\WINDOWS\tasks\At527.job moved successfully.
 C:\WINDOWS\tasks\At528.job moved successfully.
 C:\WINDOWS\tasks\At529.job moved successfully.
 C:\WINDOWS\tasks\At530.job moved successfully.
 C:\WINDOWS\tasks\At531.job moved successfully.
 C:\WINDOWS\tasks\At532.job moved successfully.
 C:\WINDOWS\tasks\At533.job moved successfully.
 C:\WINDOWS\tasks\At534.job moved successfully.
 C:\WINDOWS\tasks\At535.job moved successfully.
 C:\WINDOWS\tasks\At536.job moved successfully.
 C:\WINDOWS\tasks\At537.job moved successfully.
 C:\WINDOWS\tasks\At538.job moved successfully.
 C:\WINDOWS\tasks\At539.job moved successfully.
 C:\WINDOWS\tasks\At540.job moved successfully.
 C:\WINDOWS\tasks\At541.job moved successfully.
 C:\WINDOWS\tasks\At542.job moved successfully.
 C:\WINDOWS\tasks\At543.job moved successfully.
 C:\WINDOWS\tasks\At544.job moved successfully.
 C:\WINDOWS\tasks\At545.job moved successfully.
 C:\WINDOWS\tasks\At546.job moved successfully.
 C:\WINDOWS\tasks\At547.job moved successfully.
 C:\WINDOWS\tasks\At548.job moved successfully.
 C:\WINDOWS\tasks\At549.job moved successfully.
 C:\WINDOWS\tasks\At550.job moved successfully.
 C:\WINDOWS\tasks\At551.job moved successfully.
 C:\WINDOWS\tasks\At552.job moved successfully.
 C:\WINDOWS\tasks\At553.job moved successfully.
 C:\WINDOWS\tasks\At554.job moved successfully.
 C:\WINDOWS\tasks\At555.job moved successfully.
 C:\WINDOWS\tasks\At556.job moved successfully.
 C:\WINDOWS\tasks\At557.job moved successfully.
 C:\WINDOWS\tasks\At558.job moved successfully.
 C:\WINDOWS\tasks\At559.job moved successfully.
 C:\WINDOWS\tasks\At560.job moved successfully.
 C:\WINDOWS\tasks\At561.job moved successfully.
 C:\WINDOWS\tasks\At562.job moved successfully.
 C:\WINDOWS\tasks\At563.job moved successfully.
 C:\WINDOWS\tasks\At564.job moved successfully.
 C:\WINDOWS\tasks\At565.job moved successfully.
 C:\WINDOWS\tasks\At566.job moved successfully.
 C:\WINDOWS\tasks\At567.job moved successfully.
 C:\WINDOWS\tasks\At568.job moved successfully.
 C:\WINDOWS\tasks\At569.job moved successfully.
 C:\WINDOWS\tasks\At570.job moved successfully.
 C:\WINDOWS\tasks\At571.job moved successfully.
 C:\WINDOWS\tasks\At572.job moved successfully.
 C:\WINDOWS\tasks\At573.job moved successfully.
 C:\WINDOWS\tasks\At574.job moved successfully.
 C:\WINDOWS\tasks\At575.job moved successfully.
 C:\WINDOWS\tasks\At576.job moved successfully.
 C:\WINDOWS\tasks\At577.job moved successfully.
 C:\WINDOWS\tasks\At578.job moved successfully.
 C:\WINDOWS\tasks\At579.job moved successfully.
 C:\WINDOWS\tasks\At580.job moved successfully.
 C:\WINDOWS\tasks\At581.job moved successfully.
 C:\WINDOWS\tasks\At582.job moved successfully.
 C:\WINDOWS\tasks\At583.job moved successfully.
 C:\WINDOWS\tasks\At584.job moved successfully.
 C:\WINDOWS\tasks\At585.job moved successfully.
 C:\WINDOWS\tasks\At586.job moved successfully.
 C:\WINDOWS\tasks\At587.job moved successfully.
 C:\WINDOWS\tasks\At588.job moved successfully.
 C:\WINDOWS\tasks\At589.job moved successfully.
 C:\WINDOWS\tasks\At590.job moved successfully.
 C:\WINDOWS\tasks\At591.job moved successfully.
 C:\WINDOWS\tasks\At592.job moved successfully.
 C:\WINDOWS\tasks\At593.job moved successfully.
 C:\WINDOWS\tasks\At594.job moved successfully.
 C:\WINDOWS\tasks\At595.job moved successfully.
 C:\WINDOWS\tasks\At596.job moved successfully.
 C:\WINDOWS\tasks\At597.job moved successfully.
 C:\WINDOWS\tasks\At598.job moved successfully.
 C:\WINDOWS\tasks\At599.job moved successfully.
 C:\WINDOWS\tasks\At600.job moved successfully.
 C:\WINDOWS\tasks\At601.job moved successfully.
 C:\WINDOWS\tasks\At602.job moved successfully.
 C:\WINDOWS\tasks\At603.job moved successfully.
 C:\WINDOWS\tasks\At604.job moved successfully.
 C:\WINDOWS\tasks\At605.job moved successfully.
 C:\WINDOWS\tasks\At606.job moved successfully.
 C:\WINDOWS\tasks\At607.job moved successfully.
 C:\WINDOWS\tasks\At608.job moved successfully.
 C:\WINDOWS\tasks\At609.job moved successfully.
 C:\WINDOWS\tasks\At610.job moved successfully.
 C:\WINDOWS\tasks\At611.job moved successfully.
 C:\WINDOWS\tasks\At612.job moved successfully.
 C:\WINDOWS\tasks\At613.job moved successfully.
 C:\WINDOWS\tasks\At614.job moved successfully.
 C:\WINDOWS\tasks\At615.job moved successfully.
 C:\WINDOWS\tasks\At616.job moved successfully.
 C:\WINDOWS\tasks\At617.job moved successfully.
 C:\WINDOWS\tasks\At618.job moved successfully.
 C:\WINDOWS\tasks\At619.job moved successfully.
 C:\WINDOWS\tasks\At620.job moved successfully.
 C:\WINDOWS\tasks\At621.job moved successfully.
 C:\WINDOWS\tasks\At622.job moved successfully.
 C:\WINDOWS\tasks\At623.job moved successfully.
 C:\WINDOWS\tasks\At624.job moved successfully.
 C:\WINDOWS\tasks\At625.job moved successfully.
 C:\WINDOWS\tasks\At626.job moved successfully.
 C:\WINDOWS\tasks\At627.job moved successfully.
 C:\WINDOWS\tasks\At628.job moved successfully.
 C:\WINDOWS\tasks\At629.job moved successfully.
 C:\WINDOWS\tasks\At630.job moved successfully.
 C:\WINDOWS\tasks\At631.job moved successfully.
 C:\WINDOWS\tasks\At632.job moved successfully.
 C:\WINDOWS\tasks\At633.job moved successfully.
 C:\WINDOWS\tasks\At634.job moved successfully.
 C:\WINDOWS\tasks\At635.job moved successfully.
 C:\WINDOWS\tasks\At636.job moved successfully.
 C:\WINDOWS\tasks\At637.job moved successfully.
 C:\WINDOWS\tasks\At638.job moved successfully.
 C:\WINDOWS\tasks\At639.job moved successfully.
 C:\WINDOWS\tasks\At640.job moved successfully.
 C:\WINDOWS\tasks\At641.job moved successfully.
 C:\WINDOWS\tasks\At642.job moved successfully.
 C:\WINDOWS\tasks\At643.job moved successfully.
 C:\WINDOWS\tasks\At644.job moved successfully.
 C:\WINDOWS\tasks\At645.job moved successfully.
 C:\WINDOWS\tasks\At646.job moved successfully.
 C:\WINDOWS\tasks\At647.job moved successfully.
 C:\WINDOWS\tasks\At648.job moved successfully.
 C:\WINDOWS\tasks\At649.job moved successfully.
 C:\WINDOWS\tasks\At650.job moved successfully.
 C:\WINDOWS\tasks\At651.job moved successfully.
 C:\WINDOWS\tasks\At652.job moved successfully.
 C:\WINDOWS\tasks\At653.job moved successfully.
 C:\WINDOWS\tasks\At654.job moved successfully.
 C:\WINDOWS\tasks\At655.job moved successfully.
 C:\WINDOWS\tasks\At656.job moved successfully.
 C:\WINDOWS\tasks\At657.job moved successfully.
 C:\WINDOWS\tasks\At658.job moved successfully.
 C:\WINDOWS\tasks\At659.job moved successfully.
 C:\WINDOWS\tasks\At660.job moved successfully.
 C:\WINDOWS\tasks\At661.job moved successfully.
 C:\WINDOWS\tasks\At662.job moved successfully.
 C:\WINDOWS\tasks\At663.job moved successfully.
 C:\WINDOWS\tasks\At664.job moved successfully.
 C:\WINDOWS\tasks\At665.job moved successfully.
 C:\WINDOWS\tasks\At666.job moved successfully.
 C:\WINDOWS\tasks\At667.job moved successfully.
 C:\WINDOWS\tasks\At668.job moved successfully.
 C:\WINDOWS\tasks\At669.job moved successfully.
 C:\WINDOWS\tasks\At670.job moved successfully.
 C:\WINDOWS\tasks\At671.job moved successfully.
 C:\WINDOWS\tasks\At672.job moved successfully.
 C:\WINDOWS\tasks\At673.job moved successfully.
 C:\WINDOWS\tasks\At674.job moved successfully.
 C:\WINDOWS\tasks\At675.job moved successfully.
 C:\WINDOWS\tasks\At676.job moved successfully.
 C:\WINDOWS\tasks\At677.job moved successfully.
 C:\WINDOWS\tasks\At678.job moved successfully.
 C:\WINDOWS\tasks\At679.job moved successfully.
 C:\WINDOWS\tasks\At680.job moved successfully.
 C:\WINDOWS\tasks\At681.job moved successfully.
 C:\WINDOWS\tasks\At682.job moved successfully.
 C:\WINDOWS\tasks\At683.job moved successfully.
 C:\WINDOWS\tasks\At684.job moved successfully.
 C:\WINDOWS\tasks\At685.job moved successfully.
 C:\WINDOWS\tasks\At686.job moved successfully.
 C:\WINDOWS\tasks\At687.job moved successfully.
 C:\WINDOWS\tasks\At688.job moved successfully.
 C:\WINDOWS\tasks\At689.job moved successfully.
 C:\WINDOWS\tasks\At690.job moved successfully.
 C:\WINDOWS\tasks\At691.job moved successfully.
 C:\WINDOWS\tasks\At692.job moved successfully.
 C:\WINDOWS\tasks\At693.job moved successfully.
 C:\WINDOWS\tasks\At694.job moved successfully.
 C:\WINDOWS\tasks\At695.job moved successfully.
 C:\WINDOWS\tasks\At696.job moved successfully.
 C:\WINDOWS\tasks\At697.job moved successfully.
 C:\WINDOWS\tasks\At698.job moved successfully.
 C:\WINDOWS\tasks\At699.job moved successfully.
 C:\WINDOWS\tasks\At700.job moved successfully.
 C:\WINDOWS\tasks\At701.job moved successfully.
 C:\WINDOWS\tasks\At702.job moved successfully.
 C:\WINDOWS\tasks\At703.job moved successfully.
 C:\WINDOWS\tasks\At704.job moved successfully.
 C:\WINDOWS\tasks\At705.job moved successfully.
 C:\WINDOWS\tasks\At706.job moved successfully.
 C:\WINDOWS\tasks\At707.job moved successfully.
 C:\WINDOWS\tasks\At708.job moved successfully.
 C:\WINDOWS\tasks\At709.job moved successfully.
 C:\WINDOWS\tasks\At710.job moved successfully.
 C:\WINDOWS\tasks\At711.job moved successfully.
 C:\WINDOWS\tasks\At712.job moved successfully.
 C:\WINDOWS\tasks\At713.job moved successfully.
 C:\WINDOWS\tasks\At714.job moved successfully.
 C:\WINDOWS\tasks\At715.job moved successfully.
 C:\WINDOWS\tasks\At716.job moved successfully.
 C:\WINDOWS\tasks\At717.job moved successfully.
 C:\WINDOWS\tasks\At718.job moved successfully.
 C:\WINDOWS\tasks\At719.job moved successfully.
 C:\WINDOWS\tasks\At720.job moved successfully.
 C:\WINDOWS\tasks\At721.job moved successfully.
 C:\WINDOWS\tasks\At722.job moved successfully.
 C:\WINDOWS\tasks\At723.job moved successfully.
 C:\WINDOWS\tasks\At724.job moved successfully.
 C:\WINDOWS\tasks\At725.job moved successfully.
 C:\WINDOWS\tasks\At726.job moved successfully.
 C:\WINDOWS\tasks\At727.job moved successfully.
 C:\WINDOWS\tasks\At728.job moved successfully.
 C:\WINDOWS\tasks\At729.job moved successfully.
 C:\WINDOWS\tasks\At730.job moved successfully.
 C:\WINDOWS\tasks\At731.job moved successfully.
 C:\WINDOWS\tasks\At732.job moved successfully.
 C:\WINDOWS\tasks\At733.job moved successfully.
 C:\WINDOWS\tasks\At734.job moved successfully.
 C:\WINDOWS\tasks\At735.job moved successfully.
 C:\WINDOWS\tasks\At736.job moved successfully.
 C:\WINDOWS\tasks\At737.job moved successfully.
 C:\WINDOWS\tasks\At738.job moved successfully.
 C:\WINDOWS\tasks\At739.job moved successfully.
 C:\WINDOWS\tasks\At740.job moved successfully.
 C:\WINDOWS\tasks\At741.job moved successfully.
 C:\WINDOWS\tasks\At742.job moved successfully.
 C:\WINDOWS\tasks\At743.job moved successfully.
 C:\WINDOWS\tasks\At744.job moved successfully.
 ========== REGISTRY ==========
 ========== COMMANDS ==========
 
 [EMPTYTEMP]
 
 User: Administrateur
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 33170 bytes
 
 User: All Users.WINDOWS
 
 User: Default User.WINDOWS
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 33170 bytes
 ->Flash cache emptied: 41 bytes
 
 User: LocalService
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 32902 bytes
 
 User: LocalService.AUTORITE NT
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 49286 bytes
 
 User: Loulou.LOULOU-7984AD02
 ->Temp folder emptied: 72577644 bytes
 ->Temporary Internet Files folder emptied: 13963885 bytes
 ->Java cache emptied: 1119504 bytes
 ->FireFox cache emptied: 742882 bytes
 ->Flash cache emptied: 1922542 bytes
 
 User: LOULOU~1~LOU
 
 User: NetworkService
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 57750 bytes
 
 User: NetworkService.AUTORITE NT
 ->Temp folder emptied: 0 bytes
 ->Temporary Internet Files folder emptied: 33170 bytes
 
 %systemdrive% .tmp files removed: 0 bytes
 %systemroot% .tmp files removed: 6345670 bytes
 %systemroot%\System32 .tmp files removed: 3148800 bytes
 %systemroot%\System32\dllcache .tmp files removed: 0 bytes
 %systemroot%\System32\drivers .tmp files removed: 0 bytes
 Windows Temp folder emptied: 0 bytes
 %systemroot%\system32\config\s​ystemprofile\Local Settings\Temp folder emptied: 23967928 bytes
 %systemroot%\system32\config\s​ystemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
 RecycleBin emptied: 125482152 bytes
 
 Total Files Cleaned = 238,00 mb
 
 
 OTM by OldTimer - Version 3.1.11.0 log created on 05012010_195426

 :fume:

 Logfile of random's system information tool 1.06 (written by random/random)
 Run by Loulou at 2010-05-01 20:09:52
 Microsoft Windows XP Professionnel Service Pack 2
 System drive C: has 73 GB (62%) free of 117 GB
 Total RAM: 511 MB (18% free)

 Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 20:10:20, on 01/05/2010
 Platform: Windows XP SP2 (WinNT 5.01.2600)
 MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
 Boot mode: Normal

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\Ahead\InCD\InCDsrv.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\Explorer.EXE
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\Program Files\Eset\nod32krn.exe
 C:\WINDOWS\system32\nvsvc32.ex​e
 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\system32\wscntfy.ex​e
 C:\WINDOWS\SOUNDMAN.EXE
 C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe
 C:\Program Files\Eset\nod32kui.exe
 C:\WINDOWS\system32\RUNDLL32.E​XE
 C:\WINDOWS\system32\rundll32.e​xe
 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
 C:\WINDOWS\system32\ctfmon.exe
 C:\WINDOWS\system32\wuauclt.ex​e
 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Windows Live\Toolbar\wltuser.exe
 C:\WINDOWS\system32\NOTEPAD.EX​E
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Mes documents\RSIT.exe
 C:\Program Files\trend micro\Loulou.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://fr.yahoo.com/
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://fr.msn.com/
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,CustomizeSearc​h =
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelper.dll
 O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7​942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3A​AC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files\Google\GoogleToolbarNoti​fier\5.5.4723.1820\swg.dll
 O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94E​C1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D​3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O4 - HKLM\..\Run: [EasyTuneIV] C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\ET4\et4Tray.exe
 O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
 O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,​NvStartup
 O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
 O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe"  -osboot
 O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
 O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.d​ll,NvTaskbarInit
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
 O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
 O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe​"
 O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
 O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
 O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
 O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
 O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
 O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Off​ice10\EXCEL.EXE/3000
 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolba​rDynamic_mui_en_96D6FF0C6D236B​F8.dll/cmsidewiki.html
 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin4.d​ll
 O16 - DPF: {17492023-C23A-453E-A040-C7C58​0BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
 O17 - HKLM\System\CCS\Services\Tcpip​\..\{75ABF2F1-B6E7-46E2-BC30-0​9F575832968}: NameServer = 109.0.64.249 84.103.237.148
 O18 - Protocol: bw+0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw+0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9​B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: offline-8876480 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
 O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
 O23 - Service: Service Google Update (gupdate1c99c4ac4a14aac) (gupdate1c99c4ac4a14aac) - Google Inc. - C:\Program Files\Google\Update\GoogleUpda​te.exe
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1​1\Intel 32\IDriverT.exe
 O23 - Service: InCD Helper (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe
 O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset  - C:\Program Files\Eset\nod32krn.exe
 O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.ex​e
 O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe

 --
 End of file - 19442 bytes

 ======Scheduled tasks folder======

 C:\WINDOWS\tasks\At237.job
 C:\WINDOWS\tasks\Google Software Updater.job
 C:\WINDOWS\tasks\GoogleUpdateT​askMachineCore.job
 C:\WINDOWS\tasks\GoogleUpdateT​askMachineUA.job
 C:\WINDOWS\tasks\WGASetup.job

 ======Registry dump======

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
 Aide pour le lien d'Adobe PDF Reader - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelper.dll [2006-10-22 62080]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
 Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll [2009-01-26 1879896]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
 Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2009-05-19 137600]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
 Programme d'aide de l'Assistant de connexion Windows Live - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
 Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-29 279664]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
 Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNoti​fier\5.5.4723.1820\swg.dll [2010-02-04 812528]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
 Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Internet Explorer\Toolbar]
 {21FA44EF-376D-4D53-9B0F-8A89D​3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
 {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-01-29 279664]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Run]
 "EasyTuneIV"=C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\ET4\et4Tray.exe []
 "SoundMan"=C:\WINDOWS\SOUNDMAN​.EXE [2003-08-15 57344]
 "NvCplDaemon"=C:\WINDOWS\syste​m32\NvCpl.dll [2007-06-29 8466432]
 "nwiz"=nwiz.exe /install []
 "TkBellExe"=C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe [2007-08-16 185632]
 "nod32kui"=C:\Program Files\Eset\nod32kui.exe [2007-08-18 949376]
 "NvMediaCenter"=C:\WINDOWS\sys​tem32\NvMcTray.dll [2007-06-29 81920]
 "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2007-05-11 40048]

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Run]
 "MsnMsgr"=C:\Program Files\Windows Live\Messenger\msnmsgr.exe [2009-07-26 3883856]
 "ctfmon.exe"=C:\WINDOWS\system​32\ctfmon.exe [2004-08-04 15360]
 "swg"=C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe [2009-01-17 39408]
 "SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2009-01-26 2144088]

 C:\Documents and Settings\All Users.WINDOWS\Menu Démarrer\Programmes\Démarrage
 Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
 C:\WINDOWS\system32\WgaLogon.d​ll [2006-06-27 3584]

 [HKEY_LOCAL_MACHINE\SOFTWARE\Mi​crosoft\Windows\CurrentVersion​\ShellServiceObjectDelayLoad]
 WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D52​4869DB5} - C:\WINDOWS\system32\WPDShServi​ceObj.dll [2006-10-18 133632]

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\System]
 "dontdisplaylastusername"=0
 "legalnoticecaption"=
 "legalnoticetext"=
 "shutdownwithoutlogon"=1
 "undockwithoutlogon"=1

 [HKEY_CURRENT_USER\Software\Mic​rosoft\Windows\CurrentVersion\​Policies\explorer]
 "NoDriveTypeAutoRun"=255
 "NoDriveAutoRun"=255
 "HonorAutoRunSetting"=0

 [HKEY_LOCAL_MACHINE\Software\Mi​crosoft\Windows\CurrentVersion​\Policies\explorer]
 "HonorAutoRunSetting"=
 "NoDriveAutoRun"=
 "NoDriveTypeAutoRun"=

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\standardprofile\authorizedap​plications\list]
 "%windir%\system32\sessmgr.exe​"="%windir%\system32\sessmgr.e​xe:*:enabled:@xpsp2res.dll,-22​019"
 "C:\Program Files\Messenger\msmsgs.exe"="C​:\Program Files\Messenger\msmsgs.exe:*:E​nabled:Windows Messenger"
 "C:\Program Files\Yahoo!\Messenger\YPager.​exe"="C:\Program Files\Yahoo!\Messenger\YPager.​exe:*:Enabled:Yahoo! Messenger"
 "C:\Program Files\Yahoo!\Messenger\YServer​.exe"="C:\Program Files\Yahoo!\Messenger\YServer​.exe:*:Enabled:Yahoo! FT Server"
 "C:\Program Files\eMule\emule.exe"="C:\Pro​gram Files\eMule\emule.exe:*:Disabl​ed:eMule"
 "C:\Program Files\Adobe\Acrobat eBook Reader\ReaderApp.exe"="C:\Prog​ram Files\Adobe\Acrobat eBook Reader\ReaderApp.exe:*:Enabled​:Acrobat eBook Reader"
 "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe"="C:\​Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe:*:Ena​bled:Logitech Desktop Messenger"
 "C:\Program Files\iTunes\iTunes.exe"="C:\P​rogram Files\iTunes\iTunes.exe:*:Enab​led:iTunes"
 "C:\Program Files\Microsoft Games\Flight Simulator 9\fs9.exe"="C:\Program Files\Microsoft Games\Flight Simulator 9\fs9.exe:*:Enabled:Microsoft Flight Simulator"
 "C:\WINDOWS\system32\dpnsvr.ex​e"="C:\WINDOWS\system32\dpnsvr​.exe:*:Enabled:Microsoft DirectPlay8 Server"
 "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:​\Program Files\Windows Live\Messenger\wlcsdk.exe:*:En​abled:Windows Live Call"
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C​:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger"
 "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"​="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:​*:Enabled:Windows Live FolderShare"
 "C:\WINDOWS\Temp\~TME8D.tmp"="​C:\WINDOWS\Temp\~TME8D.tmp:*:D​isabled:Sandboxie Start"
 "C:\WINDOWS\Temp\~TM5A.tmp"="C​:\WINDOWS\Temp\~TM5A.tmp:*:Ena​bled:services"

 [HKEY_LOCAL_MACHINE\system\curr​entcontrolset\services\shareda​ccess\parameters\firewallpolic​y\domainprofile\authorizedappl​ications\list]
 "%windir%\system32\sessmgr.exe​"="%windir%\system32\sessmgr.e​xe:*:enabled:@xpsp2res.dll,-22​019"
 "C:\Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe"="C:\​Program Files\Logitech\Desktop Messenger\8876480\Program\Logi​techDesktopMessenger.exe:*:Ena​bled:Logitech Desktop Messenger"
 "C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:​\Program Files\Windows Live\Messenger\wlcsdk.exe:*:En​abled:Windows Live Call"
 "C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C​:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:E​nabled:Windows Live Messenger"
 "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"​="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:​*:Enabled:Windows Live FolderShare"

 ======List of files/folders created in the last 1 months======

 2010-05-01 19:54:26 ----D---- C:\_OTM
 2010-05-01 19:40:52 ----D---- C:\Program Files\AutocompletePro
 2010-05-01 18:49:15 ----D---- C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Application Data\Yahoo!
 2010-05-01 18:49:15 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Yahoo! Companion
 2010-05-01 16:52:08 ----A---- C:\Ad-Report-CLEAN[1].txt
 2010-05-01 16:51:45 ----D---- C:\Ad-Remover
 2010-05-01 15:30:11 ----A---- C:\UsbFix.txt
 2010-05-01 15:13:47 ----RASHD---- C:\autorun.inf
 2010-05-01 14:32:09 ----D---- C:\UsbFix
 2010-04-29 23:04:04 ----D---- C:\Avenger
 2010-04-29 20:15:37 ----D---- C:\Program Files\trend micro
 2010-04-29 20:15:35 ----D---- C:\rsit
 2010-04-14 19:44:22 ----HDC---- C:\WINDOWS\$NtUninstallKB97968​3$
 2010-04-14 19:44:11 ----HDC---- C:\WINDOWS\$NtUninstallKB98023​2$
 2010-04-14 19:44:01 ----HDC---- C:\WINDOWS\$NtUninstallKB98135​0$
 2010-04-14 19:43:53 ----HDC---- C:\WINDOWS\$NtUninstallKB97833​8$
 2010-04-14 19:43:45 ----HDC---- C:\WINDOWS\$NtUninstallKB97781​6$
 2010-04-14 19:42:33 ----HDC---- C:\WINDOWS\$NtUninstallKB97940​2_WM9L$
 2010-04-13 23:31:14 ----HDC---- C:\WINDOWS\$NtUninstallKB97860​1$
 2010-04-13 23:31:01 ----HDC---- C:\WINDOWS\$NtUninstallKB97930​9$

 ======List of files/folders modified in the last 1 months======

 2010-05-01 20:04:30 ----D---- C:\WINDOWS\Temp
 2010-05-01 20:02:15 ----D---- C:\WINDOWS\Prefetch
 2010-05-01 20:00:02 ----SD---- C:\WINDOWS\Tasks
 2010-05-01 20:00:02 ----D---- C:\WINDOWS
 2010-05-01 19:55:22 ----A---- C:\WINDOWS\SchedLgU.Txt
 2010-05-01 19:54:54 ----D---- C:\WINDOWS\system32
 2010-05-01 19:40:52 ----RAD---- C:\Program Files
 2010-05-01 19:28:00 ----D---- C:\Mes téléchargements
 2010-05-01 19:23:08 ----D---- C:\Program Files\eMule
 2010-05-01 18:50:25 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
 2010-05-01 18:49:11 ----D---- C:\Program Files\Yahoo!
 2010-05-01 18:23:28 ----D---- C:\WINDOWS\system32\CatRoot2
 2010-05-01 15:13:46 ----SHD---- C:\System Volume Information
 2010-05-01 15:13:00 ----SHD---- C:\RECYCLER
 2010-05-01 11:08:36 ----D---- C:\Documents and Settings\All Users.WINDOWS\Application Data\Google Updater
 2010-04-29 23:04:04 ----HDC---- C:\WINDOWS\$NtUninstallKB95076​2$
 2010-04-29 23:04:04 ----D---- C:\WINDOWS\system32\drivers
 2010-04-29 21:53:58 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
 2010-04-27 19:54:54 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist​11$
 2010-04-24 19:22:07 ----SD---- C:\WINDOWS\Downloaded Program Files
 2010-04-24 18:41:28 ----HD---- C:\WINDOWS\inf
 2010-04-14 19:44:28 ----RSHDC---- C:\WINDOWS\system32\dllcache
 2010-04-14 19:44:18 ----HD---- C:\WINDOWS\$hf_mig$
 2010-04-12 22:38:56 ----SHD---- C:\WINDOWS\Installer
 2010-04-12 22:37:45 ----D---- C:\Program Files\Google
 2010-04-12 22:17:34 ----SHD---- C:\WINDOWS\CSC

 ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

 R1 AmdK7;Pilote de processeur AMD K7; C:\WINDOWS\system32\DRIVERS\am​dk7.sys [2004-08-04 41600]
 R1 InCDPass;InCDPass; C:\WINDOWS\System32\DRIVERS\In​CDPass.sys [2003-12-17 28752]
 R1 incdrm;InCD EasyWrite Reader; C:\WINDOWS\system32\drivers\in​cdrm.sys [2003-08-21 25520]
 R1 kbdhid;Pilote HID de clavier; C:\WINDOWS\system32\DRIVERS\kb​dhid.sys [2004-08-04 14848]
 R1 nod32drv;nod32drv; C:\WINDOWS\system32\drivers\no​d32drv.sys [2007-08-18 15424]
 R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; C:\WINDOWS\System32\drivers\ws​2ifsl.sys [2001-08-28 12032]
 R2 AMON;AMON; C:\WINDOWS\system32\drivers\am​on.sys [2007-08-18 512096]
 R2 ETDrv;ETDrv; C:\WINDOWS\system32\drivers\ET​Drv.sys [2003-08-07 161060]
 R2 fssfltr;FssFltr; C:\WINDOWS\system32\DRIVERS\fs​sfltr_tdi.sys [2009-08-05 54752]
 R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\AL​CXSENS.SYS [2003-08-14 404736]
 R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\AL​CXWDM.SYS [2003-08-15 462684]
 R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fe​tnd5.sys [2001-08-17 27165]
 R3 GEARAspiWDM;GEARAspiWDM; C:\WINDOWS\System32\Drivers\GE​ARAspiWDM.sys [2005-02-02 14408]
 R3 hidusb;Pilote de classe HID Microsoft; C:\WINDOWS\system32\DRIVERS\hi​dusb.sys [2001-08-28 9600]
 R3 mouhid;Pilote HID de souris; C:\WINDOWS\system32\DRIVERS\mo​uhid.sys [2001-08-28 12288]
 R3 nv;nv; C:\WINDOWS\system32\DRIV

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 01/05/2010 à 19:39:52  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Bien c'est deja un peu plus propre  :super:

 ---> Télécharge Dr.Web sur ton Bureau :
 ftp://ftp.drweb.com/pub/drweb/ [...] cureit.exe

 --> Double clique sur  >>drweb-cureit.exe<<  et ensuite clique sur Analyse,

 --> Clique sur Ok à l'invite de l'analyse rapide,
 (Si il trouve des processus infectés alors clique sur Oui)
 
 /!\ une fenêtre Va s'ouvrir avec l'options pour Commander ou 50% de réduction : Quitte en cliquant le X./!\
 
 --> Une fois le scan rapide  terminé, clique sur le menu Options,
 -> Selectionne Changer la configuration, Puis dans l'onglet Scanner,
 -> Décoche Analyse heuristique. clique ensuite sur Ok.

 --> De retour à la fenêtre principale : clique sur Analyse complète
 --> Clique sur le bouton avec flèche verte sur ta droite, et le scan débutera.
 --> Clique  sur Oui pour tout à l'invite --Désinfecter ?-- si un fichier est détecté, et ensuite clique sur --Désinfecter--.
 --> Une fois le scan terminer, si tu peux cliquer sur l' icône, adjacente aux fichiers détectés (page l'une sur l'autres). Si oui, clique dessus puis clique sur Suivant, au dessous, puis choisis --Déplacer en quarantaine l'objet indésirable--

 --> Au menu principal, en haut à gauche, clique sur "Fichier" Selectionne "Enregistrer le rapport". Sauvegarde le rapport sur ton Bureau. Il sera nommer DrWeb.csv

 --> Ferme Dr.Web
 
 --> Redémarre ton ordi

 --> Copie et Colle le rapport ici STP

 /!\ Suite au redemarage des fichiers peuvent être "déplacés/réparés" c'est pour cela qu'il et necessaire de redemarer /!\

 Aide et tuto : http://www.malekal.com/tutorial_DrWebCureIt.php

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 01/05/2010 à 21:21:19  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
ben voila:  :sweat:

 Process.exe C:\WINDOWS\system32 Tool.Prockill Irréparable.Supprimé.


 c'est grave docteur  :hebe: ?

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 01/05/2010 à 21:52:20  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
Non je pense que c'est un trojan (ou u faux positif) vu que tu a des fix de desinfection, pas d'inquietude.. :whistle:
 Met a tu bien enregistrer le rapport sur ton bureau comme je te l'avais demander, et comme il etait ecrit ?? :??:

 Il me le faut  :whistle:

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 02/05/2010 à 19:04:56  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:

 oui j'ai tout fait comme tu ma demandé mais le rapport émis que jai enregistré sur mon bureau est un fichier excel avec la simple indication dedans : Process.exe C:\WINDOWS\system32 Tool.Prockill Irréparable.Supprimé.

 c'est bizarre non ?

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 02/05/2010 à 19:20:53  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:
 Bien dans ce cas..  :)

 Comment ve la pc ??
 A tu toujour la detection ??

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 02/05/2010 à 19:33:26  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
la détection semble avoir disparu  :youpi:
 merci pour ta précieuse aide :jap:  :jap:
 c'est cool :fume:  :fume:  :fume:
 par contre je ne sais pas comment afficher pb résolu dans mon premier message...

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 02/05/2010 à 19:36:32  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
pas si vite se n'est pas fini  :fume:

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 02/05/2010 à 19:39:00  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
on va entammer la fin de la desinfection ,
 Rend toi ici :
 C:\Program Files\trend micro\Loulou.exe

 Ouvre le fichier nommer en gras,
 clic sur, Do a system scan and save a log file

 Laisse travailler l'outil, a la fin du scan, un rapport s'ouvre post le ici STP  :fume:  :fume:

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 02/05/2010 à 20:06:32  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:pt1cable: bon ok

 Logfile of Trend Micro HijackThis v2.0.2
 Scan saved at 21:03:54, on 02/05/2010
 Platform: Windows XP SP2 (WinNT 5.01.2600)
 MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
 Boot mode: Normal

 Running processes:
 C:\WINDOWS\System32\smss.exe
 C:\WINDOWS\system32\winlogon.e​xe
 C:\WINDOWS\system32\services.e​xe
 C:\WINDOWS\system32\lsass.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\System32\svchost.ex​e
 C:\Program Files\Ahead\InCD\InCDsrv.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\Explorer.EXE
 C:\WINDOWS\system32\spoolsv.ex​e
 C:\WINDOWS\SOUNDMAN.EXE
 C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe
 C:\Program Files\Eset\nod32kui.exe
 C:\WINDOWS\system32\RUNDLL32.E​XE
 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
 C:\WINDOWS\system32\ctfmon.exe
 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
 C:\WINDOWS\system32\rundll32.e​xe
 C:\Program Files\Eset\nod32krn.exe
 C:\WINDOWS\system32\nvsvc32.ex​e
 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
 C:\WINDOWS\system32\svchost.ex​e
 C:\WINDOWS\system32\wscntfy.ex​e
 C:\WINDOWS\system32\wuauclt.ex​e
 C:\Program Files\Windows Live\Contacts\wlcomm.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Windows Live\Toolbar\wltuser.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\Internet Explorer\iexplore.exe
 C:\Program Files\trend micro\Loulou.exe

 R1 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?linkid=54896
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://fr.yahoo.com/
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Main,Start Page = http://fr.msn.com/
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,SearchAssistan​t =
 R0 - HKLM\Software\Microsoft\Intern​et Explorer\Search,CustomizeSearc​h =
 R0 - HKCU\Software\Microsoft\Intern​et Explorer\Toolbar,LinksFolderNa​me = Liens
 O2 - BHO: Aide pour le lien d'Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7​D6BE0B3} - C:\Program Files\Fichiers communs\Adobe\Acrobat\ActiveX\​AcroIEHelper.dll
 O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7​942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3A​AC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
 O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-51647​60863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
 O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF105​77473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B​5AD205D} - C:\Program Files\Google\GoogleToolbarNoti​fier\5.5.4723.1820\swg.dll
 O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94E​C1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D​3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
 O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-00902​7A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
 O4 - HKLM\..\Run: [EasyTuneIV] C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\ET4\et4Tray.exe
 O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
 O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,​NvStartup
 O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
 O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsch​ed.exe"  -osboot
 O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
 O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.d​ll,NvTaskbarInit
 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
 O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
 O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNoti​fier\GoogleToolbarNotifier.exe​"
 O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
 O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE LOCAL')
 O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU')
 O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
 O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
 O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
 O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
 O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Off​ice10\EXCEL.EXE/3000
 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolba​rDynamic_mui_en_96D6FF0C6D236B​F8.dll/cmsidewiki.html
 O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCD​DC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExten​sion.dll
 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll
 O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04​F795683} - C:\Program Files\Messenger\msmsgs.exe
 O12 - Plugin for .mpeg: C:\Program Files\Internet Explorer\PLUGINS\npqtplugin4.d​ll
 O16 - DPF: {17492023-C23A-453E-A040-C7C58​0BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
 O17 - HKLM\System\CCS\Services\Tcpip​\..\{75ABF2F1-B6E7-46E2-BC30-0​9F575832968}: NameServer = 86.64.233.82 109.0.64.240
 O18 - Protocol: bw+0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw+0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw-0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw00s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw10s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw20s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw30s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw40s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw50s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw60s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw70s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw80s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bw90s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwa0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwb0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwc0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwd0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwe0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwf0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9​B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwg0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwh0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwi0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwj0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwk0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwl0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwm0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwn0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwo0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwp0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwq0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwr0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bws0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwt0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwu0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwv0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bww0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwx0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwy0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: bwz0s - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O18 - Protocol: offline-8876480 - {F4ABB50B-5FD2-474F-89F8-5B02A​94FECE9} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPl​ugProtocol-8876480.dll
 O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccPwdSvc.exe
 O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSetMgr.exe
 O23 - Service: Service Google Update (gupdate1c99c4ac4a14aac) (gupdate1c99c4ac4a14aac) - Google Inc. - C:\Program Files\Google\Update\GoogleUpda​te.exe
 O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.e​xe
 O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\1​1\Intel 32\IDriverT.exe
 O23 - Service: InCD Helper (InCDsrv) - AHEAD Software - C:\Program Files\Ahead\InCD\InCDsrv.exe
 O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
 O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset  - C:\Program Files\Eset\nod32krn.exe
 O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.ex​e
 O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe

 --
 End of file - 19483 bytes

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 02/05/2010 à 20:37:31  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
ok,
 Relance ce fichier :
 C:\Program Files\trend micro\Loulou.exe

 Mais ce cous si clic sur Do a system scan only

 Laisse le travailler, une fois fini, coche les cases suivante :

 O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94E​C1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

 O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"

 O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

 O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx

 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolba​rDynamic_mui_en_96D6FF0C6D236B​F8.dll/cmsidewiki.html

 O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB​36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.​dll


 Puis clic sur fix checked..

 PUIS :

 Pour supprimer toutes les traces des logiciels qui ont servi à traiter les infections :

 Télécharge Toolscleaner sur ton Bureau
 http://pc-system.fr/TC/ToolsCleaner2.exe

 --> Clique droit sur ToolsCleaner2.exe et clique sur "Exécuter en tant qu'administrateur" pour le lancer. Laisse le travailler (même s'il est écrit "Ne répond plus" ).
 --> Clique sur Recherche et laisse le scan se terminer.
 --> Clique sur Suppression pour finaliser.
 --> Tu peux, si tu le souhaites, te servir des Options facultatives.
 --> Clique sur Quitter, pour que le rapport puisse se créer.
 --> Le rapport (TCleaner.txt) se trouve à la racine de ton disque dur (C:\)...colle le dans ta réponse.

 On passera a la suite une fois fait.. :super:  :fume:  :fume:

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 02/05/2010 à 21:09:13  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:paf:  :pt1cable:  :pt1cable:

 bon ben euh c'est pas fini ?

 [ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

 --> Recherche:

 C:\UsbFix.txt: trouvé !
 C:\avenger: trouvé !
 C:\SDFIX: trouvé !
 C:\_OTM: trouvé !
 C:\UsbFix: trouvé !
 C:\Rsit: trouvé !
 C:\Ad-remover: trouvé !
 C:\Ad-Remover\Backup\Ad-R.exe: trouvé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Bureau\OTM.exe: trouvé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Bureau\Ad-R.exe: trouvé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Bureau\UsbFix.exe: trouvé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Bureau\Rsit.exe: trouvé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Mes documents\hijackthis.log: trouvé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Mes documents\Rsit.exe: trouvé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Recent\HijackThis.lnk: trouvé !
 C:\Program Files\HijackThis: trouvé !
 C:\Program Files\trend micro\HijackThis.exe: trouvé !
 C:\Program Files\trend micro\hijackthis.log: trouvé !

 ------------------------------​---
 --> Suppression:

 C:\Ad-Remover\Backup\Ad-R.exe: supprimé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Bureau\OTM.exe: supprimé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Bureau\Ad-R.exe: supprimé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Recent\HijackThis.lnk: supprimé !
 C:\Program Files\trend micro\HijackThis.exe: supprimé !
 C:\UsbFix.txt: supprimé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Bureau\UsbFix.exe: supprimé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Bureau\Rsit.exe: supprimé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Mes documents\hijackthis.log: supprimé !
 C:\Documents and Settings\Loulou.LOULOU-7984AD0​2\Mes documents\Rsit.exe: supprimé !
 C:\Program Files\trend micro\hijackthis.log: supprimé !
 C:\avenger: supprimé !
 C:\SDFIX: supprimé !
 C:\_OTM: supprimé !
 C:\UsbFix: supprimé !
 C:\Rsit: supprimé !
 C:\Ad-remover: supprimé !
 C:\Program Files\HijackThis: supprimé !

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 02/05/2010 à 21:41:22  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:fume:

 :fume: Maintenant on va purger, la restauration system, pour recreer un point de restauration tous propre :

 Pour ce faire, suit bien les instruction ici:
 http://www.jenyburn.com/home/c [...] -et-vista/

 Pour recreer un point de retauration system fait comme suit :

 Menu Démarrer", "Tous les programmes", "Accessoires", "Outils système" et "Restauration du système".
 selectionne creer un point de restauration system et suit les indication, PUIS....
 au moment ou tu devra lui donner un nom, donne lui ce com
 PC SAINT


 Voicis quelque conseil a garder a porter de main :

 ->> Windows Update Regulierement à jour http://www.windowsupdate.com/

 ->> Pare-feu bien paramétré, je te Recomande Comodo :
 http://www.01net.com/telecharg [...] 39911.html

 ->> antivirus bien paramétré et mis à jour régulièrement, avec un scan complet régulier (Tous les jour, de preference).
 
 ->> Faire un peu plus atention vis à vis de ta navigation (Evite les sites douteux : cracks, warez, sexe...) et Messenger ou hotmail, toujour scanner les fichiers joints, Evite en partie les toolbars
 
 ->> Evite le telechargement (P2P), qui reste un des principale facteur d'infection : http://forum.malekal.com/ftopic893.php
 
 ->> Toujour verifier l'etat de ton ordinateur,

 ->> Nettoyer ton ordinateur une fois par mois minimum (suppression des fichiers inutiles, nettoyage de la base de registre, scandisk, defragmentation etc...etc...)
 
 ->> Scan journalier antiespion, Malwarebytes super efficace :
 http://www.malekal.com/tutoria [...] alware.php
 
 ->> Toujour verifier si Java et bien a jour :
 http://www.java.com/en/download/help/testvm.xml
 
 Voila quelque information, sur le type de menace que tu peux rencontrer,ou autre :
 http://www.malekal.com/menu_windows_securite.php

 Pourquois garder son navigateur a jour :
 http://forum.malekal.com/ie6-p [...] tml#p95936


 Pour mettre à jour les logiciels sur ton PC,
 Je te conseil se logiciel qui reste tres Utile :

 --> Télécharge Update Checker : http://www.filehippo.com/updatechecker/FHSetup.exe
 --> Installe le avec les paramètres par défaut en cliquant chaques fois sur Suivant.
 --> Une fois installé, patiente quelques secondes et tu verras apparaître une icône verte dans ta barre des tâches te signalant qu'il y a des mises à jour disponibles.
 --> Double-cliques sur l'icône pour être redirrigé sur le site de téléchargement des mises à jour.
 --> Un conseil : n'installe pas les BETA qui sont listées en dessous.
 --> Tu installes les mises à jour que tu désires, les plus importantes sont :

 * Java
 * Adobe Reader
 * Adobe Flash Player
 * Internet explorer


 /!\ Assure toi bien que les logiciel sont en français /!\


 Si tu considères ton problème comme résolu, tu pourras effectivement le mettre en tant que tel :

 Voila ce cou si c'est fini pour de bon :super:  

 Bonne fin de journer et bon surf  ;-)


 @ + + +

 A tu d'autre problemes ou questions ??

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 03/05/2010 à 20:30:09  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:  :jap:  :jap:  :jap:

 c'est cool  :youpi:

 merci pour tous ces conseils :super:  :super:

 par d'autres problèmes ni questions, mais si j'en ai je reviendrai :sol:
 :fume:  :fume:  :fume:

loulou75
Sur la bonne voie (de 100 à 499 messages postés)
  1. Posté le 03/05/2010 à 20:33:40  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
euh je fais comment pour indiquer résolu dans le sujet ? :pt1cable:

  1. homepage
hacker-tool
Débutant confirmé (de 1 000 à 4 999 messages postés)
  1. Posté le 03/05/2010 à 20:49:20  
  1. answer
  1. Prévenir les modérateurs en cas d'abus
 
:hello:

 Tu a juse a editer ton tous premier message et a ajouter

 [RESOLU] au titre voila  :super:

 BOn surf  :hello:  :hello:

 Page :
1  2
Dernière Page
Page Suivante
Page Précédente
Première Page

Aller à :
 

Sujets relatifs
Plus de sujets relatifs à : PC infecté par trojan [RESOLU]

Les 5 sujets de discussion précédents Nombre de réponses Dernier message
Plantage & Fermeture aleatoire du pc et autres problemes 0
Virus 1
Virus après avoir dl VLC sur 01net 1
publicites intempestives 1
Ecran noir après avoir lancer un jeu 2