Votre question

Espace du disque dur qui varie plus ou moins

Tags :
  • Sécurité
Dernière réponse : dans Sécurité et virus
2 Juillet 2011 00:40:58

Bonjour à tous,


depuis 2 jours, je me suis rendu compte, passant très souvent par Ordinateur et donc par les indicateurs d'espace libre de mes deux HDD, que cet espace libre variait quelque fois pour mon disque C: .
Ça baissait de quelques gigas, puis quelques temps après ça remontait.

Il y a quelques minutes, mon Kaspersky a fait une analyse assez longue (ni rapide, ni complète, mais "temps réel"), plus longue que d'habitude, et de 37,2 Go, je suis passé à 36,8 Go.

Une minute environ plus tard, c'est repassé à 37,2. Il m'a déjà fait le coup de "l'analyse longue" hier (l'icône de l'antivirus qui "clignote": rétrécit, agrandit, rétrécit...). EDIT: Kaspersky faisait une analyse des objets de démarrage. Mais ça ne change visiblement rien à cette histoire de variations.

Qu'en pensez-vous ?
Un virus ? Une bombe de décompression ? En gardant un œil sur O&O DiskStat, le disque dur n'a pas l'air très mobilisé.
Il l'a été à plus de 30% durant une petite partie de cette analyse.

Merci pour votre aide.

Autres pages sur : espace disque dur varie

2 Juillet 2011 11:14:21

Bonjour,

*Télécharge RSIT (merci random/random) sur le Bureau : Ici
Double-clique sur RSIT.exe, il ne nécessite pas d' installation.
Clique Continue à l' écran Disclaimer si tu acceptes les conditions.
-Si HijackThis est non détecté sur ton Pc, il le téléchargera (autorise l' accès via ton pare-feu si demandé et accepte la licence).
Lorsque l' analyse sera terminée, deux fichiers texte s' ouvriront.
Poste le contenu de log.txt (celui qui s' ouvre) ainsi qu' info.txt qui est dans la Barre des Tâches

NB : Ces rapports sont enregistrés dans le dossier C:\rsit

A+
2 Juillet 2011 12:03:04

Salut,

merci de t'intéresser à mon cas!

Voici le rapport RSIT.
Petite question annexe: je vois sur plusieurs topics que l'outil de diagnostic à télécharger varie selon les cas. Il y a une "procédure" à suivre pour déterminer l'outil à utiliser ?

Mes fichiers host sont modifiés voilàvoilà... [:thedarklord:20]

A part ça:


Citation :
Logfile of random's system information tool 1.08 (written by random/random)
Run by Axel at 2011-07-02 11:37:05
Microsoft Windows 7 Édition Familiale Premium
System drive C: has 45 GB (15%) free of 300 GB
Total RAM: 4095 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:37:35, on 02/07/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\RocketDock\RocketDock.exe
C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Axel\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\Axel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files (x86)\Megaupload\Mega Manager\MegaIEMn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe"
O4 - HKLM\..\Run: [Razer Imperator Driver] C:\Program Files (x86)\Razer\Imperator\RazerImperatorTray.exe
O4 - HKLM\..\Run: [Norton Ghost 15.0] "C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe"
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Global Startup: Assistant SMART WIZARD NETGEAR pour WG111v3.lnk = C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe
O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe
O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - (no file)
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll
O23 - Service: 3d-io License Server v2.0 - 3d-io GmbH - C:\Program Files (x86)\3d-io plugins\licensing_v2\ActiveLockServerV2.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: AfterFLICS v3 - Unknown owner - C:\Program Files (x86)\AFLICS\AfterFLICS.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: DCPFLICS - Unknown owner - C:\Program Files (x86)\DCPFLICS\DCPFLICS.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: FlowFinder3MonstersAE64 - Unknown owner - C:\Program Files\GenArts\Monsters-AE64\bin\FlowFinder3MonstersAE64.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GenericMount Helper Service - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HASP License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing)
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: HoudiniLicenseServer - Unknown owner - C:\Windows\system32\sesinetd.exe (file missing)
O23 - Service: HoudiniServer - Unknown owner - C:\Windows\system32\hserver.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: IP-Clamp Licensing by cebas VISUAL TECHNOLOGY Inc. (IPClampService) - Unknown owner - C:\Program Files (x86)\cebas\ip-clamp\ipclamp.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: JawsServerAE64 - Unknown owner - C:\Program Files (x86)\GenArts\Monsters-AE64\bin\JawsServerAE64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files (x86)\ma-config.com\maconfservice.exe
O23 - Service: mental ray 3.8 Satellite for Autodesk 3ds Max 2011 64-bit 64-bit (mi-raysat_3dsmax2011_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_64server.exe
O23 - Service: mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - English 64-bit (mi-raysat_3dsmax2012_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nlssrv32.exe
O23 - Service: nl_license_manager - Unknown owner - C:\Program Files (x86)\Next Limit\Licence Manager\nl_license_manager.exe
O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtectionServer - Mankua & Di-O-Matic - C:\PROGRA~2\ALPSER~1\PROTEC~1.EXE
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: RLM-GenArts - Reprise Software Inc. - C:\Program Files (x86)\GenArts\rlm\rlm.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: SymSnapService - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Windows Update (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 27182 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27 164312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-02-15 381656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll [2010-07-01 68280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - C:\Program Files (x86)\Megaupload\Mega Manager\MegaIEMn.dll [2010-11-03 109568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll [2010-07-01 191160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27 164312]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [2010-09-14 352976]
"Razer Imperator Driver"=C:\Program Files (x86)\Razer\Imperator\RazerImperatorTray.exe [2010-09-07 2787224]
"Norton Ghost 15.0"=C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe [2009-10-01 2596712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files (x86)\RocketDock\RocketDock.exe [2007-09-02 495616]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Assistant SMART WIZARD NETGEAR pour WG111v3.lnk - C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe
NETGEAR WG111v3 Smart Wizard.lnk - C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5ECD31F0-F91A-11d4-B3CA-00D0B70A09D2}"=C:\Windows\system32\WDSHELL.DLL [2010-11-30 208896]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"AllowLegacyWebView"=1
"AllowUnhashedWebView"=1
"NoDriveTypeAutoRun"=24

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\Dreamweaver.exe","%1"

======List of files/folders created in the last 1 months======

2011-07-02 11:37:05 ----D---- C:\rsit
2011-07-02 11:37:05 ----D---- C:\Program Files (x86)\trend micro
2011-07-01 16:33:54 ----D---- C:\Program Files (x86)\Common Files\DivX Shared
2011-07-01 16:33:44 ----D---- C:\Program Files (x86)\DivX
2011-07-01 16:32:40 ----D---- C:\ProgramData\DivX
2011-07-01 00:42:35 ----D---- C:\Users\Axel\AppData\Roaming\OpenOffice.org
2011-07-01 00:39:46 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2011-06-29 18:55:14 ----HDC---- C:\ProgramData\{1A677C8B-80B4-4F82-9993-B82FB9D8B903}
2011-06-29 16:02:41 ----D---- C:\Program Files (x86)\Ant Renamer
2011-06-29 09:29:57 ----D---- C:\Windows\pss
2011-06-27 16:49:41 ----D---- C:\Users\Axel\AppData\Roaming\pfprep
2011-06-27 16:49:26 ----D---- C:\Users\Axel\AppData\Roaming\pfmatchit
2011-06-27 16:48:59 ----D---- C:\Users\Axel\AppData\Roaming\pfclean
2011-06-27 16:48:42 ----D---- C:\Users\Axel\AppData\Roaming\pftrack
2011-06-27 16:39:01 ----D---- C:\Program Files (x86)\The Pixel Farm
2011-06-25 16:18:25 ----D---- C:\Program Files (x86)\Sega
2011-06-20 21:35:06 ----D---- C:\Program Files (x86)\ColladaCGF
2011-06-20 21:33:51 ----D---- C:\Python26
2011-06-20 20:35:09 ----D---- C:\Users\Axel\AppData\Roaming\Blender Foundation
2011-06-20 20:35:05 ----D---- C:\Program Files (x86)\Blender Foundation
2011-06-19 22:49:37 ----D---- C:\ProgramData\PoserFusion
2011-06-19 19:44:13 ----D---- C:\Users\Axel\AppData\Roaming\.minecraft
2011-06-19 19:43:26 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2011-06-17 18:43:49 ----D---- C:\Users\Axel\AppData\Roaming\Filter Forge 2
2011-06-17 18:43:28 ----A---- C:\Windows\SysWOW64\dbghelp-xfw.dll
2011-06-17 18:43:21 ----D---- C:\Program Files (x86)\Filter Forge 2
2011-06-16 14:24:52 ----D---- C:\Program Files (x86)\Common Files\Java
2011-06-16 14:24:40 ----A---- C:\Windows\SysWOW64\javaws.exe
2011-06-16 14:24:40 ----A---- C:\Windows\SysWOW64\javaw.exe
2011-06-16 14:24:40 ----A---- C:\Windows\SysWOW64\java.exe
2011-06-14 19:47:09 ----D---- C:\Program Files (x86)\Hoo Technologies
2011-06-14 19:41:02 ----D---- C:\Program Files (x86)\WAV MP3 Converter 4
2011-06-10 19:01:23 ----D---- C:\Program Files (x86)\Duke Nukem Forever
2011-06-07 19:39:23 ----D---- C:\Program Files (x86)\Common Files\Softimage
2011-06-06 22:53:12 ----A---- C:\Windows\SysWOW64\msstdfmt.dll
2011-06-06 22:52:02 ----D---- C:\Program Files (x86)\Eye On Network
2011-06-06 22:41:09 ----D---- C:\Users\Axel\AppData\Roaming\NetMeter
2011-06-05 17:17:09 ----A---- C:\Windows\{B688D716-6A1A-47F7-9734-11A24071909A}_WiseFW.ini
2011-06-05 17:14:45 ----A---- C:\cebas_licence.TXT
2011-06-05 17:09:01 ----A---- C:\Windows\{6BC52438-5DE4-4102-846E-64C225A0A04E}_WiseFW.ini
2011-06-03 20:03:31 ----D---- C:\Users\Axel\AppData\Roaming\Serif
2011-06-03 20:01:29 ----D---- C:\Program Files (x86)\Common Files\MSSoap
2011-06-03 19:58:24 ----D---- C:\Program Files (x86)\Serif
2011-06-03 19:55:15 ----D---- C:\Users\Axel\AppData\Roaming\Symantec
2011-06-03 19:42:23 ----A---- C:\Windows\SysWOW64\capicom.dll
2011-06-03 19:42:22 ----A---- C:\Windows\SysWOW64\MSVCR71.DLL
2011-06-03 19:42:22 ----A---- C:\Windows\SysWOW64\MSVCP71.DLL
2011-06-03 19:42:22 ----A---- C:\Windows\SysWOW64\MFC71.DLL
2011-06-03 19:42:19 ----D---- C:\Program Files (x86)\Symantec
2011-06-03 19:40:13 ----D---- C:\Program Files (x86)\Common Files\Symantec Shared
2011-06-03 19:40:02 ----D---- C:\ProgramData\Symantec
2011-06-03 19:40:02 ----D---- C:\ProgramData\{1C6FDDD8-FC9E-4C12-9FA5-1AAD377097B3}
2011-06-03 19:40:02 ----D---- C:\Program Files (x86)\Norton Ghost

======List of files/folders modified in the last 1 months======

2011-07-02 11:37:19 ----D---- C:\Windows\Prefetch
2011-07-02 11:37:09 ----D---- C:\Windows\Temp
2011-07-02 11:37:05 ----RD---- C:\Program Files (x86)
2011-07-02 10:59:06 ----D---- C:\Windows\System32
2011-07-02 10:59:06 ----D---- C:\Windows\inf
2011-07-02 10:53:49 ----D---- C:\ProgramData\Kaspersky Lab
2011-07-02 10:53:07 ----AD---- C:\Windows
2011-07-02 00:16:40 ----D---- C:\Windows\Minidump
2011-07-02 00:16:40 ----D---- C:\Windows\debug
2011-07-02 00:11:34 ----RD---- C:\Program Files
2011-07-02 00:11:09 ----A---- C:\startvrlservice_log.txt
2011-07-01 16:34:06 ----D---- C:\Windows\SysWOW64
2011-07-01 16:34:03 ----SHD---- C:\Windows\Installer
2011-07-01 16:34:02 ----SHD---- C:\Config.Msi
2011-07-01 16:33:54 ----D---- C:\Program Files (x86)\Common Files
2011-07-01 16:32:40 ----HD---- C:\ProgramData
2011-07-01 16:31:08 ----D---- C:\Users\Axel\AppData\Roaming\uTorrent
2011-07-01 16:22:48 ----D---- C:\Users\Axel\AppData\Roaming\vlc
2011-07-01 00:41:24 ----SHD---- C:\System Volume Information
2011-07-01 00:40:55 ----RSD---- C:\Windows\assembly
2011-07-01 00:40:23 ----RSD---- C:\Windows\Fonts
2011-06-30 18:53:22 ----A---- C:\vraylog.txt
2011-06-30 17:21:05 ----D---- C:\ProgramData\e-onsoftware
2011-06-29 18:54:10 ----D---- C:\Program Files (x86)\Autodesk
2011-06-29 01:40:07 ----A---- C:\Windows\SysWOW64\PnkBstrB.exe
2011-06-27 23:50:05 ----AD---- C:\ProgramData\TEMP
2011-06-26 20:18:43 ----D---- C:\Users\Axel\AppData\Roaming\e-on software
2011-06-26 13:36:07 ----D---- C:\Users\Axel\AppData\Roaming\Spiral Graphics
2011-06-25 16:23:36 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2011-06-24 22:41:40 ----D---- C:\Users\Axel\AppData\Roaming\Audacity
2011-06-24 12:24:34 ----D---- C:\Program Files (x86)\Steam
2011-06-23 11:30:13 ----D---- C:\ProgramData\boost_interprocess
2011-06-23 01:39:02 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-06-19 21:19:22 ----D---- C:\Program Files (x86)\Common Files\Adobe AIR
2011-06-19 19:36:38 ----D---- C:\Users\Axel\AppData\Roaming\TS3Client
2011-06-16 14:24:34 ----D---- C:\Program Files (x86)\Java
2011-06-16 14:00:45 ----SD---- C:\Users\Axel\AppData\Roaming\Microsoft
2011-06-16 13:55:24 ----D---- C:\Program Files (x86)\MSECache
2011-06-12 14:26:41 ----D---- C:\Users\Axel\AppData\Roaming\Autodesk
2011-06-12 14:26:41 ----D---- C:\ProgramData\Autodesk
2011-06-07 20:00:15 ----D---- C:\flexlm
2011-06-07 19:52:30 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2011-06-07 09:14:19 ----D---- C:\Users\Axel\AppData\Roaming\Skype
2011-06-07 09:13:50 ----D---- C:\Users\Axel\AppData\Roaming\skypePM
2011-06-05 15:50:27 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-06-03 19:44:46 ----D---- C:\Windows\Registration
2011-06-03 17:48:01 ----D---- C:\Autodesk
2011-06-03 17:44:14 ----D---- C:\ProgramData\The Foundry

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 KL1;kl1; C:\Windows\system32\DRIVERS\kl1.sys []
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys []
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
R0 symsnap;Symantec Volume Snap Shot Driver; C:\Windows\system32\DRIVERS\symsnap.sys []
R0 Tpkd;Tpkd; C:\Windows\SysWOW64\drivers\Tpkd.sys []
R1 kl2;kl2; C:\Windows\system32\DRIVERS\kl2.sys []
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys []
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys []
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys []
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 aksdf;aksdf; C:\Windows\system32\DRIVERS\aksdf.sys []
R2 aksfridge;aksfridge; \??\C:\Windows\system32\drivers\aksfridge.sys []
R2 Hardlock;Hardlock; \??\C:\Windows\system32\drivers\hardlock.sys []
R2 multikey;Virtual USB MultiKey; C:\Windows\system32\DRIVERS\multikey.sys []
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys []
R3 akshasp;Aladdin HASP Key; C:\Windows\system32\DRIVERS\akshasp.sys []
R3 aksusb;Aladdin USB Key; C:\Windows\system32\DRIVERS\aksusb.sys []
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys []
R3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys []
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys []
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys []
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys []
R3 NVENETFD;Pilote du contrôleur de réseau NVIDIA nForce; C:\Windows\system32\DRIVERS\nvm62x64.sys []
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys []
R3 RTL8187B;NETGEAR WG111v3 Wireless-G USB Adapter Win7 Driver; C:\Windows\system32\DRIVERS\wg111v3.sys []
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [2010-10-07 11856]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys []
R3 VBoxNetFlt;VBoxNetFlt Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 driverhardwarev2x64;driverhardwarev2x64; \??\C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys [2010-08-30 15872]
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys []
S3 TIEHDUSB;TI Core USB Driver; C:\Windows\system32\DRIVERS\tiehdusb.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys []
S3 VProEventMonitor;Symantec Event Monitor Driver; C:\Windows\system32\DRIVERS\vproeventmonitor.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys []
S3 WinUSB;WinUSB FSL; C:\Windows\system32\DRIVERS\WinUSB.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 3d-io License Server v2.0;3d-io License Server v2.0; C:\Program Files (x86)\3d-io plugins\licensing_v2\ActiveLockServerV2.exe [2009-12-15 34816]
R2 AfterFLICS v3;AfterFLICS v3; C:\Program Files (x86)\AFLICS\AfterFLICS.exe [2011-04-15 135170]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176]
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [2010-09-14 352976]
R2 Bonjour Service;Service Bonjour; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-05-18 345376]
R2 DCPFLICS;DCPFLICS; C:\Program Files (x86)\DCPFLICS\DCPFLICS.exe [2007-10-24 139268]
R2 FlowFinder3MonstersAE64;FlowFinder3MonstersAE64; C:\Program Files\GenArts\Monsters-AE64\bin\FlowFinder3MonstersAE64.exe [2010-06-03 751104]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2011-05-25 2275720]
R2 hasplms;HASP License Manager; C:\Windows\system32\hasplms.exe -run []
R2 HoudiniLicenseServer;HoudiniLicenseServer; C:\Windows\system32\sesinetd.exe []
R2 HoudiniServer;HoudiniServer; C:\Windows\system32\hserver.exe []
R2 IPClampService;IP-Clamp Licensing by cebas VISUAL TECHNOLOGY Inc.; C:\Program Files (x86)\cebas\ip-clamp\ipclamp.exe [2007-11-20 45700]
R2 JawsServerAE64;JawsServerAE64; C:\Program Files (x86)\GenArts\Monsters-AE64\bin\JawsServerAE64.exe [2010-06-03 393216]
R2 mi-raysat_3dsmax2011_64;mental ray 3.8 Satellite for Autodesk 3ds Max 2011 64-bit 64-bit; C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_64server.exe [2010-03-10 86016]
R2 mi-raysat_3dsmax2012_64;mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - English 64-bit; C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe [2011-02-22 86016]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\SysWOW64\nlssrv32.exe [2010-08-10 63488]
R2 Norton Ghost;Norton Ghost; C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe [2009-10-01 4584288]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-03-18 75136]
R2 ProtectionServer;ProtectionServer; C:\PROGRA~2\ALPSER~1\PROTEC~1.EXE [2010-02-03 203968]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2010-08-19 386344]
R2 RLM-GenArts;RLM-GenArts; C:\Program Files (x86)\GenArts\rlm\rlm.exe [2010-06-03 1540096]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2010-10-28 1974080]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 2291568]
R3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2009-09-21 2963960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-04-08 1431888]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-08-22 1045256]
S3 GenericMount Helper Service;GenericMount Helper Service; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [2009-09-21 1571336]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-07-21 654112]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE [2007-09-26 2999664]
S3 maconfservice;Ma-Config Service; C:\Program Files (x86)\ma-config.com\maconfservice.exe [2010-09-12 251248]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
S3 nl_license_manager;nl_license_manager; C:\Program Files (x86)\Next Limit\Licence Manager\nl_license_manager.exe [2010-05-20 167424]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2010-06-25 117264]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-04-19 403240]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 Symantec SymSnap VSS Provider;Symantec SymSnap VSS Provider; C:\Windows\system32\dllhost.exe [2009-07-14 7168]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S4 mi-raysat_3dsmax9_32;mental ray 3.5 Satellite (32-bit); C:\Program Files (x86)\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Contenus similaires
2 Juillet 2011 12:05:06

Citation :
info.txt logfile of random's system information tool 1.08 2011-07-02 11:37:38

======Uninstall list======

-->"C:\Program Files (x86)\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" /z-uninstall
-->C:\ProgramData\{018739C5-9E1C-4C10-A298-77A80A04AD61}\FM8 Setup PC.exe
-->C:\ProgramData\{07D9EF15-1E96-4C9C-911C-4C7AAC443789}\Acoustic Refractions Setup PC.exe
-->C:\ProgramData\{13E67FA2-BFF0-4FB9-99FF-F2B7E480E626}\Vintage Organs Setup PC.exe
-->C:\ProgramData\{1A0CEBBD-67B3-4885-B366-8B4637B04899}\Dfx-AfterEffects-x64-v2.0.2.1.exe
-->C:\ProgramData\{1CF3FE7A-4381-41EA-A1FD-F70233A9A42E}\Upright Piano Setup PC.exe
-->C:\ProgramData\{458F3F08-8039-46F2-BF3A-F5115518ED16}\New York Concert Grand Setup PC.exe
-->C:\ProgramData\{5D4AD7AA-51B3-4EF1-8DBC-4D6CBFF4668D}\Reaktor Spark R2 Setup PC.exe
-->C:\ProgramData\{6268CC84-62BB-4890-B980-FC891FC3470E}\Guitar Rig 4 Setup PC.exe
-->C:\ProgramData\{6950C305-E192-4B91-836B-2D1DA29770D8}\PowerMatte-AfterEffects-x64-v2.0.1.exe
-->C:\ProgramData\{6BA6A5D8-137C-4CEA-8BBE-6AE00E2D8863}\Scarbee Mark I Setup PC.exe
-->C:\ProgramData\{7541281F-A993-4E9D-9A45-AEB57F64D333}\zMatte-AfterEffects-x64-v3.exe
-->C:\ProgramData\{7989FF88-7C99-4E86-9CEE-937493D5A176}\Traktors 12 Setup PC.exe
-->C:\ProgramData\{86190A21-318C-4B3A-9297-DC38C1C465BC}\Abbey Road 60s Drums Setup PC.exe
-->C:\ProgramData\{8692837D-F407-48D3-8C40-007AFB9613C0}\PFToolsBox2ProMax2011x64Setup.exe
-->C:\ProgramData\{926857A0-22B7-4033-9F19-CF68454D8D0D}\PowerStroke-AfterEffects-x64-v1.0.7.exe
-->C:\ProgramData\{954361E8-665B-4E93-918D-21C1F708FBD8}\Massive Setup PC.exe
-->C:\ProgramData\{9987279E-51AC-4B83-89D4-CDBBE5F7A826}\CompositeSuitePro-AfterEffects-x64-v1.0.0.exe
-->C:\ProgramData\{9A2A3E5C-C9D5-46BD-9031-F6E91E419956}\The Finger R2 Setup PC.exe
-->C:\ProgramData\{9EA9F3B6-4422-49A7-8BC0-B8C3C310B956}\Battery 3 Setup PC.exe
-->C:\ProgramData\{A1CE61C9-A3B8-4E0E-ADEE-E237C381C954}\Berlin Concert Grand Setup PC.exe
-->C:\ProgramData\{AE681438-D566-42AE-BBB8-7141C47E0985}\Komplete 7 Setup PC.exe
-->C:\ProgramData\{B2E03B0D-9848-462A-9AC1-6E4676488C5C}\Reaktor 5 Setup PC.exe
-->C:\ProgramData\{B5F0C192-874D-49A8-88D7-8431E3714756}\Service Center Setup PC.exe
-->C:\ProgramData\{B7478C7F-3B59-4A91-8444-8F818E5672C0}\Reflektor Setup PC.exe
-->C:\ProgramData\{BAF9AC5D-AA3E-4138-92BE-340E0F0D21EA}\Rammfire Setup PC.exe
-->C:\ProgramData\{BC727A25-34B7-4B46-9D69-E54457E6DD1C}\Absynth 5 Setup PC.exe
-->C:\ProgramData\{C8183278-0B84-457C-AE54-DCA354CEDDD7}\Reaktor Prism Setup PC.exe
-->C:\ProgramData\{D15CE785-FD15-4860-807A-3B68400084D3}\Kore Player Setup PC.exe
-->C:\ProgramData\{D57FC652-C588-47E5-96A5-2064740A56A5}\Kontakt 4 Setup PC.exe
-->C:\ProgramData\{D60B3BBC-C177-4D7A-B4F6-13B5AF452E04}\Scarbee MM-Bass Setup PC.exe
-->C:\ProgramData\{DCB3384C-CF87-4E37-8561-DAD854BEBFCD}\Scarbee Clavinet Pianet Setup PC.exe
-->C:\ProgramData\{F463979C-CD03-4473-8248-CB81ADEA0124}\PFToolsMax2012x64Setup.exe
-->C:\ProgramData\{F72E3A60-3111-406A-B539-69D64E8BF25B}\Scarbee A-200 Setup PC.exe
-->C:\ProgramData\{FCB4E5DF-D134-4F71-861A-5EB315418DA1}\Vienna Concert Grand Setup PC.exe
-->MsiExec /X{F9835182-794B-4F24-902A-E2CA9D43380F}
-->MsiExec.exe /I{9A346205-EA92-4406-B1AB-50379DA3F057}
-->MsiExec.exe /X{354D00E0-C7C9-4BC1-BC12-08C4977AA827}
µTorrent-->"C:\Program Files (x86)\uTorrent\uTorrent.exe" /UNINSTALL
3dsmax ancillary install-->MsiExec.exe /I{7C8B5E63-821A-4DFB-BDFA-19854D88EC5C}
Adobe AIR-->c:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{FDB3B167-F4FA-461D-976F-286304A57B2A}
Adobe Community Help-->msiexec /qb /x {0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
Adobe Community Help-->MsiExec.exe /I{0D2DBE8A-43D0-7830-7AE7-CA6C99A832E7}
Adobe Creative Suite 5 Master Collection-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="1.0" --mode="Uninstall" --mediaSignature="{1BBD8D70-721A-41AD-AC8F-7308A0C8FA92}"
Adobe Encore CS5 Third Party Royalty Content-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="1.0" --mode="Uninstall" --mediaSignature="{0E3C6C75-872D-4B0D-B0B2-31C717250691}"
Adobe Flash Player 10 ActiveX-->MsiExec.exe /X{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}
Adobe Flash Player 10 Plugin-->C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10p_Plugin.exe -maintain plugin
Adobe Media Encoder CS5 Dolby X64-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="1.0" --mode="Uninstall" --mediaSignature="{5DDABB74-A879-4BE7-A4C6-FD41793942DB}"
Adobe Media Encoder CS5 PCI X64-->C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe --appletID="DWA_UI" --appletVersion="1.0" --mode="Uninstall" --mediaSignature="{F9C71630-0EE3-475C-9E2B-ED95AE197DBD}"
Adobe Reader 9.4.5 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A94000000001}
AfterBurn 4.0b R2011 64-bit-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{E3B19E89-6FA2-4075-828F-9B892EB56814}\setup.exe"
Allegorithmic Substance Designer 1.x-->"C:\Program Files (x86)\Allegorithmic\Substance\Designer\1.x\uninstall.exe"
Animeeple 0.2.10-->"C:\Program Files (x86)\Animeeple\unins000.exe"
Ant Renamer-->"C:\Program Files (x86)\Ant Renamer\unins000.exe"
AoA Audio Extractor-->"C:\Program Files (x86)\AoA Audio Extractor\unins000.exe"
Apple Application Support-->MsiExec.exe /I{A93944F2-D2D4-4750-BFE7-9A288FEAF2CF}
Apple Software Update-->MsiExec.exe /I{C41300B9-185D-475E-BFEC-39EF732F19B1}
ASCII Art Maker 1.7-->"C:\Program Files (x86)\ASCII Art Maker 1.7\uninstall.exe"
Audacity 1.3.13 (Unicode)-->"C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)\unins000.exe"
Autodesk Backburner 2012.0.0-->MsiExec.exe /I{3D347E6D-5A03-4342-B5BA-6A771885F379}
Autodesk DirectConnect 2010 R1-->MsiExec.exe /I{702EC1FF-A081-48AE-8363-8D78A0919F86}
Autodesk DWF Viewer 7-->MsiExec.exe /I{9A346205-EA92-4406-B1AB-50379DA3F057}
Autodesk MatchMover 2011 32-bit-->MsiExec.exe /I{8A864555-554E-4DE2-BB36-BC4810355525}
Autodesk Material Library 2011 Base Image library-->MsiExec.exe /I{CD1E078C-A6B9-47DA-B035-6365C85C7832}
Autodesk Material Library 2011 Medium Image library-->MsiExec.exe /I{975951E7-14D0-49AF-A630-89680D12D7F6}
Autodesk Material Library 2011-->MsiExec.exe /I{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}
Autodesk Material Library 2012-->MsiExec.exe /I{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}
Autodesk Material Library Base Resolution Image Library 2012-->MsiExec.exe /I{65420DC9-306E-4371-905F-F4DC3B418E52}
Autodesk Material Library Low Resolution Image Library 2012-->MsiExec.exe /I{24FF088D-CDCF-480C-8A4B-98F14A54CAA8}
Autodesk Material Library Medium Resolution Image Library 2012-->MsiExec.exe /I{B5751715-EC10-43D9-8C95-62E1368433EF}
Autodesk Maya 2011 English Documentation 32-bit-->MsiExec.exe /I{AC075837-7071-4c07-B9A1-CF5586060FE1}
AV Voice Changer Software DIAMOND 6.0-->C:\PROGRA~2\AVVCS6~1.0DI\UNWISE.EXE C:\PROGRA~2\AVVCS6~1.0DI\INSTALL.LOG
AviSynth 2.5-->"C:\Program Files (x86)\AviSynth 2.5\Uninstall.exe"
BioShock 2-->"C:\Program Files (x86)\InstallShield Installation Information\{4A8B461A-9336-4CF9-98F4-14DD38E673F0}\setup.exe" -runfromtemp -l0x040c -removeonly
Blender (remove only)-->"C:\Program Files (x86)\Blender Foundation\Blender\uninstall.exe"
BonesPro 4.21-->C:\Program Files (x86)\3d-io plugins\BonesPro\uninst.exe
Box Shot 3D-->C:\Program Files (x86)\BoxShot3D\Uninstall.exe
bvhacker-->MsiExec.exe /I{35FE49CA-600F-4C60-9D87-C3904720FECC}
Camtasia Studio 7-->MsiExec.exe /I{DE042823-C359-4B87-B66B-308057E8B6AF}
CCleaner-->"C:\Program Files (x86)\CCleaner\uninst.exe"
CityEngine-->C:\Program Files\Procedural\CityEngine\uninstall.exe
ColladaCGF (remove only)-->C:\Program Files (x86)\ColladaCGF\uninstall.exe
COLLADAMaya (1.2.2)-->MsiExec.exe /I{BF1BDC10-4366-4231-0102-000201000000}
Color Efex Pro 3.0 Complete-->C:\Program Files\Nik Software\Color Efex Pro 3.0 Complete for Lightroom\Uninstall.exe
Color Finesse-->"C:\Program Files (x86)\Color Finesse\uninstall.exe" "/U:C:\Program Files (x86)\Color Finesse\Uninstall\uninstall.xml"
Composite Suite Pro for Adobe After Effects (64 Bit)-->"C:\ProgramData\{9987279E-51AC-4B83-89D4-CDBBE5F7A826}\CompositeSuitePro-AfterEffects-x64-v1.0.0.exe" REMOVE=TRUE MODIFY=FALSE
Configuration DivX-->C:\ProgramData\DivX\Setup\DivXSetup.exe /uninstall /bundleGroupId divx.com
Counter-Strike: Source-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/240
CryEngine(R)2 Sandbox(TM)2-->MsiExec.exe /I{7E4B7FD9-4ECE-4298-A910-3160B7918059}
Crysis 2(R) Mod SDK 1.0-->"C:\ProgramData\{1A677C8B-80B4-4F82-9993-B82FB9D8B903}\Crysis2_ModSDK_v1.0.exe" REMOVE=TRUE MODIFY=FALSE
Crysis 2(R) Mod SDK 1.0-->C:\ProgramData\{1A677C8B-80B4-4F82-9993-B82FB9D8B903}\Crysis2_ModSDK_v1.0.exe
Crysis ModSDK-->"C:\Program Files (x86)\InstallShield Installation Information\{566664F6-B34E-41A6-AD1D-4ED22DA334AE}\setup.exe" -runfromtemp -l0x0009 -removeonly
Crysis WARHEAD(R) Patch-->"C:\ProgramData\{7451F7D5-591C-4490-8D3B-C73A69A0E782}\setup.exe" REMOVE=TRUE MODIFY=FALSE
Crysis WARHEAD(R) Patch-->C:\ProgramData\{7451F7D5-591C-4490-8D3B-C73A69A0E782}\setup.exe
Crysis WARHEAD(R)-->"C:\ProgramData\{0691F710-1ECA-4B5A-9727-25554F1BFDC6}\setup.exe" REMOVE=TRUE MODIFY=FALSE
Crysis WARHEAD(R)-->C:\ProgramData\{0691F710-1ECA-4B5A-9727-25554F1BFDC6}\setup.exe
Crysis Wars(R) Patch-->"C:\ProgramData\{5794CDCB-FAB7-4C15-9069-4D8AC02592DE}\CrysisWars_patch5.exe" REMOVE=TRUE MODIFY=FALSE
Crysis Wars(R) Patch-->C:\ProgramData\{5794CDCB-FAB7-4C15-9069-4D8AC02592DE}\CrysisWars_patch5.exe
Crysis Wars(R)-->"C:\ProgramData\{0151C9FC-719D-4459-B1E2-4685CC6E62A8}\setup.exe" REMOVE=TRUE MODIFY=FALSE
Crysis Wars(R)-->C:\ProgramData\{0151C9FC-719D-4459-B1E2-4685CC6E62A8}\setup.exe
Crysis(R)-->MsiExec.exe /I{000E79B7-E725-4F01-870A-C12942B7F8E4}
Crysis® 2-->MsiExec.exe /X{6033673D-2530-4587-8AD0-EB059FC263F9}
CyberLink PowerDirector-->"C:\Program Files (x86)\InstallShield Installation Information\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}\setup.exe" /z-uninstall
CyberLink PowerDVD 10-->"C:\Program Files (x86)\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\Setup.exe" /z-uninstall
CyberLink PowerDVD 10-->"C:\Program Files (x86)\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\Setup.exe" /z-uninstall
CyberLink WaveEditor-->"C:\Program Files (x86)\InstallShield Installation Information\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}\Setup.exe" /z-uninstall
CyberLink WaveEditor-->"C:\Program Files (x86)\InstallShield Installation Information\{324F76CC-D8DD-4D87-B77D-D4AF5E1AA7B3}\Setup.exe" /z-uninstall
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Dfx for Adobe After Effects (64 Bit)-->"C:\ProgramData\{1A0CEBBD-67B3-4885-B366-8B4637B04899}\Dfx-AfterEffects-x64-v2.0.2.1.exe" REMOVE=TRUE MODIFY=FALSE
Di-O-Matic Character Pack v1.4-->C:\PROGRA~1\Autodesk\3DSMAX~1\plugcfg\UNWISE.EXE C:\PROGRA~1\Autodesk\3DSMAX~1\plugcfg\CharacterPack.LOG
DreamScape 2.5f R2011 64-bit-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{6B39725E-2782-432D-B72A-10C53231538A}\setup.exe"
Elephorm-->msiexec /qb /x {B2BDC80D-9F77-7C1A-4D75-D1F24272B01F}
Elephorm-->MsiExec.exe /I{B2BDC80D-9F77-7C1A-4D75-D1F24272B01F}
EphereZookeeper 1.7.6 Flux-->C:\Program Files (x86)\Ephere\uninstall.exe
Etats & Requêtes-->"C:\Program Files (x86)\PC SOFT\Etats et Requêtes 15\WDUninst.exe" /REG="HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Etats & Requêtes"
Etats && Requêtes-->"C:\Program Files (x86)\PC SOFT\Etats et Requêtes 15\WDUninst.exe" /REG="HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\Etats && Requêtes"
FBX Plugin 2006.08 for Max 9.0-->C:\Program Files (x86)\Autodesk\FBX\FbxPlugins\2006.08\Max90\Uninstall.exe
FBX Plugin 2006.11.1 for Max 2008 64-->C:\Program Files (x86)\Autodesk\FBX\FbxPlugins\2006.11.1\Max2008_64\Uninstall.exe
FBX Plugin 2006.11.1 for Max 2008-->C:\Program Files (x86)\Autodesk\FBX\FbxPlugins\2006.11.1\Max2008\Uninstall.exe
Filter Forge 2.010-->"C:\Program Files (x86)\Filter Forge 2\unins000.exe"
Flatiron 1.55-->C:\Program Files (x86)\3d-io plugins\Flatiron\uninst.exe
FMOD Designer-->"C:\Program Files (x86)\FMOD SoundSystem\FMOD Designer\uninstall.exe"
Forest Pack Pro 3.4.0-->C:\Program Files (x86)\Itoo Software\Forest Pack Pro\uninst.exe
Fraps (remove only)-->"C:\Fraps\uninstall.exe"
Free iPod Video Converter V 2.93-->"C:\Program Files (x86)\Ipod Video Converter\unins001.exe"
FumeFX 1.2 R2011 64-bit-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{93653337-B908-412A-A24A-D2047E1890A6}\setup.exe"
FumeFX 2.1 R2012 64-bit-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{199A019C-739D-4BA1-9B4B-90AB3EE31900}\setup.exe"
Galerie de photos Windows Live-->MsiExec.exe /X{488F0347-C4A7-4374-91A7-30818BEDA710}
GenArts Sapphire RLM Server 8.0.5.1-->"C:\Program Files (x86)\GenArts\rlm\unins000.exe"
GeoControl2-->MsiExec.exe /I{7915A08A-07E0-476A-9AC4-4D46075607FB}
glu3D for 3dsMax-->"C:\Program Files (x86)\3Daliens.com\glu3D\uninst\unins000.exe"
Google Earth-->MsiExec.exe /X{6DB7AD00-F781-11DF-9EEF-001279CD8240}
Grand Theft Auto IV-->MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8301}
Grand Theft Auto IV-->MsiExec.exe /I{5454083B-1308-4485-BF17-1110000D8302}
Grand Theft Auto: Episodes from Liberty City-->MsiExec.exe /I{5454083B-1308-4485-BF17-111000028701}
Grand Theft Auto: Episodes from Liberty City-->MsiExec.exe /I{5454083B-1308-4485-BF17-111000038701}
Grand Theft Auto: Episodes from Liberty City-->MsiExec.exe /I{5454083B-1308-4485-BF17-111000038702}
GridModeler-->"C:\Program Files (x86)\GridModeler\unins000.exe"
Image Lounge 64 bit-->"C:\Program Files (x86)\InstallShield Installation Information\{53CF3CBB-6C48-45E8-BB72-A0CC448A8C79}\setup.exe" -runfromtemp -l0x0409 -removeonly
Imagesynth 2 Standalone-->MsiExec.exe /I{274D87F9-1FD1-4E5E-81D1-5A060743298E}
IP-Clamp Service-->MsiExec.exe /I{6BC52438-5DE4-4102-846E-64C225A0A04E}
Java(TM) 6 Update 26-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF}
Kaspersky Internet Security 2011-->MsiExec.exe /I{66F1F013-008F-4875-B283-5A814B820347}
Kaspersky Internet Security 2011-->MsiExec.exe /I{66F1F013-008F-4875-B283-5A814B820347}
Key Correct-->"C:\Program Files (x86)\InstallShield Installation Information\{1BA00585-7306-48AC-B423-D0BDE592B4B7}\setup.exe" -runfromtemp -l0x0409 -removeonly
KeyShot2 2.0 64 bit-->C:\Program Files\KeyShot2\uninst.exe
K-Lite Codec Pack 4.9.5 (Full)-->"C:\Program Files (x86)\K-Lite Codec Pack\unins000.exe"
Knoll 3D Flares-->"C:\Program Files (x86)\InstallShield Installation Information\{48A97A6D-BDB0-4BD2-9F48-48107D902477}\setup.exe" -runfromtemp -l0x0409 -removeonly
Knoll Light Factory EZ Studio 15-->C:\Windows\unvise32.exe C:\Program Files (x86)\Pinnacle\Studio 15\Plugins\RTFx\klfezstudio.log
Knoll Light Factory-->"C:\Program Files (x86)\InstallShield Installation Information\{2226CE02-C89A-444A-96F5-C4B355BFFE29}\setup.exe" -runfromtemp -l0x0409 -removeonly
Krakatoa 1.6.1.43756 for 3ds Max-->MsiExec.exe /I{9ED41D19-5FB9-4694-BA41-B2889F1B8579}
LAME v3.98.2 for Audacity-->"C:\Program Files (x86)\Lame for Audacity\unins000.exe"
Left 4 Dead 2.0.1.1-->"C:\Program Files (x86)\Left 4 Dead 2\unins000.exe"
Licence Manager-->C:\Program Files (x86)\Next Limit\Licence Manager\uninstall.exe
LiveUpdate 3.2 (Symantec Corporation)-->"C:\Program Files (x86)\Symantec\LiveUpdate\LSETUP.EXE" /U
LogMeIn Hamachi-->C:\Windows\SysWOW64\\msiexec.exe /i {EEF985E8-8B36-4230-B174-117A2381C17F} REMOVE=ALL
LogMeIn Hamachi-->MsiExec.exe /I{EEF985E8-8B36-4230-B174-117A2381C17F}
Luxology modo 501 64-bit build 40017-->C:\Users\Axel\AppData\Local\Luxology\modo\501\40017\uninstall.exe
Ma-Config.com-->MsiExec.exe /X{96EB95A2-5245-4EA2-B6EA-B8BA2FBF64C4}
Magic Bullet Colorista-->"C:\Program Files (x86)\InstallShield Installation Information\{FC1E827C-2E78-425E-8407-E1927A31C1A3}\setup.exe" -runfromtemp -l0x0409 -removeonly
Magic Bullet Denoiser 64 bit-->"C:\Program Files (x86)\InstallShield Installation Information\{340910E2-118B-4C1E-AE83-5C8360C3880B}\setup.exe" -runfromtemp -l0x0409 -removeonly
Magic Bullet Frames-->"C:\Program Files (x86)\InstallShield Installation Information\{4D881A76-565A-460D-B748-3DD363329839}\setup.exe" -runfromtemp -l0x0409 -removeonly
Magic Bullet Instant HD-->"C:\Program Files (x86)\InstallShield Installation Information\{872A4FC4-5F94-484C-BB6A-FAA0CFDAD916}\setup.exe" -runfromtemp -l0x0409 -removeonly
Magic Bullet Looks-->"C:\Program Files (x86)\InstallShield Installation Information\{AEC9311A-90AC-4083-B3CD-428C3BB3891C}\setup.exe" -runfromtemp -l0x0409 -removeonly
Magic Bullet Mojo-->"C:\Program Files (x86)\InstallShield Installation Information\{40E89076-E040-421E-AEB7-D931F8B07401}\setup.exe" -runfromtemp -l0x0409 -removeonly
Magic Bullet QuickLooks-->"C:\Program Files (x86)\InstallShield Installation Information\{C5A8BFA2-1694-4B69-861E-4A31CDAB1307}\setup.exe" -runfromtemp -l0x0409 -removeonly
MAGIX Web Designer 6 Content-->MsiExec.exe /X{F32DDA26-E697-4DDC-BE65-A5A7DD163930}
MAGIX Web Designer 6 Version à télécharger-->"C:\Program Files (x86)\MAGIX\Web_Designer_6\Web_Designer_6_fr-FR_setup.exe"
MAGIX Web Designer 6 Version à télécharger-->MsiExec.exe /I{DB75DFF5-ED39-417A-AB0C-9B3C7DB60274}
Maya 2010-->MsiExec.exe /I{310AFA6B-094D-45DA-8389-4712074B6A22}
Mega Manager-->"C:\Program Files (x86)\InstallShield Installation Information\{3B6E3FC6-274C-4B6C-BC85-5C3B15DE18E2}\setup.exe" -runfromtemp -l0x0409 -removeonly
Microsoft Chart Controls for Microsoft .NET Framework 3.5-->MsiExec.exe /X{41785C66-90F2-40CE-8CB5-1C94BFC97280}
Microsoft Games for Windows - LIVE Redistributable-->MsiExec.exe /X{F2508213-9989-4E85-A078-72BE483917EF}
Microsoft Games for Windows Marketplace-->MsiExec.exe /X{4CB0307C-565E-4441-86BE-0DF2E4FB828C}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729-->MsiExec.exe /X{820B6609-4C97-3A2B-B644-573B06A0F0CC}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319-->MsiExec.exe /X{196BB40D-1578-3D01-B289-BEFC77A11A1E}
Microsoft WorldWide Telescope-->MsiExec.exe /I{88704942-56A8-4EEC-A121-77687677DEE5}
Microsoft XNA Framework Redistributable 3.0-->MsiExec.exe /I{3898934B-05AE-41CD-96BE-70DA9BFBCE1F}
Microsoft_VC80_ATL_x86-->MsiExec.exe /I{0F3647F8-E51D-4FCC-8862-9A8D0C5ACF25}
Microsoft_VC80_CRT_x86-->MsiExec.exe /I{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}
Microsoft_VC80_MFC_x86-->MsiExec.exe /I{D1A19B02-817E-4296-A45B-07853FD74D57}
Microsoft_VC80_MFCLOC_x86-->MsiExec.exe /I{D92BBB52-82FF-42ED-8A3C-4E062F944AB7}
Microsoft_VC90_ATL_x86-->MsiExec.exe /I{033E378E-6AD3-4AD5-BDEB-CBD69B31046C}
Microsoft_VC90_CRT_x86-->MsiExec.exe /I{08D2E121-7F6A-43EB-97FD-629B44903403}
Microsoft_VC90_MFC_x86-->MsiExec.exe /I{635FED5B-2C6D-49BE-87E6-7A6FCD22BC5A}
modo 401 Content-->MsiExec.exe /I{9C31978A-E8DF-4CFE-879B-BB449B59C431}
Mozilla Firefox 5.0 (x86 fr)-->C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe
Mp3tag v2.47a-->C:\Program Files (x86)\Mp3tag\Mp3tagUninstall.EXE
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
Multiupload Batch Uploader 1.0-->"C:\Program Files (x86)\Multiupload Batch Uploader\unins000.exe"
Native Instruments Abbey Road 60s Drums-->"C:\ProgramData\{86190A21-318C-4B3A-9297-DC38C1C465BC}\Abbey Road 60s Drums Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Absynth 5-->"C:\ProgramData\{BC727A25-34B7-4B46-9D69-E54457E6DD1C}\Absynth 5 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Acoustic Refractions-->"C:\ProgramData\{07D9EF15-1E96-4C9C-911C-4C7AAC443789}\Acoustic Refractions Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Battery 3-->"C:\ProgramData\{9EA9F3B6-4422-49A7-8BC0-B8C3C310B956}\Battery 3 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Berlin Concert Grand-->"C:\ProgramData\{A1CE61C9-A3B8-4E0E-ADEE-E237C381C954}\Berlin Concert Grand Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments FM8-->"C:\ProgramData\{018739C5-9E1C-4C10-A298-77A80A04AD61}\FM8 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Guitar Rig 4-->"C:\ProgramData\{6268CC84-62BB-4890-B980-FC891FC3470E}\Guitar Rig 4 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Komplete 7-->"C:\ProgramData\{AE681438-D566-42AE-BBB8-7141C47E0985}\Komplete 7 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Kontakt 4-->"C:\ProgramData\{D57FC652-C588-47E5-96A5-2064740A56A5}\Kontakt 4 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Kore Player-->"C:\ProgramData\{D15CE785-FD15-4860-807A-3B68400084D3}\Kore Player Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Massive-->"C:\ProgramData\{954361E8-665B-4E93-918D-21C1F708FBD8}\Massive Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments New York Concert Grand-->"C:\ProgramData\{458F3F08-8039-46F2-BF3A-F5115518ED16}\New York Concert Grand Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Rammfire-->"C:\ProgramData\{BAF9AC5D-AA3E-4138-92BE-340E0F0D21EA}\Rammfire Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Reaktor 5-->"C:\ProgramData\{B2E03B0D-9848-462A-9AC1-6E4676488C5C}\Reaktor 5 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Reaktor Prism-->"C:\ProgramData\{C8183278-0B84-457C-AE54-DCA354CEDDD7}\Reaktor Prism Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Reaktor Spark R2-->"C:\ProgramData\{5D4AD7AA-51B3-4EF1-8DBC-4D6CBFF4668D}\Reaktor Spark R2 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Reflektor-->"C:\ProgramData\{B7478C7F-3B59-4A91-8444-8F818E5672C0}\Reflektor Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Scarbee A-200-->"C:\ProgramData\{F72E3A60-3111-406A-B539-69D64E8BF25B}\Scarbee A-200 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Scarbee Clavinet Pianet-->"C:\ProgramData\{DCB3384C-CF87-4E37-8561-DAD854BEBFCD}\Scarbee Clavinet Pianet Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Scarbee Mark I-->"C:\ProgramData\{6BA6A5D8-137C-4CEA-8BBE-6AE00E2D8863}\Scarbee Mark I Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Scarbee MM-Bass-->"C:\ProgramData\{D60B3BBC-C177-4D7A-B4F6-13B5AF452E04}\Scarbee MM-Bass Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Service Center-->"C:\ProgramData\{B5F0C192-874D-49A8-88D7-8431E3714756}\Service Center Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments The Finger R2-->"C:\ProgramData\{9A2A3E5C-C9D5-46BD-9031-F6E91E419956}\The Finger R2 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Traktors 12-->"C:\ProgramData\{7989FF88-7C99-4E86-9CEE-937493D5A176}\Traktors 12 Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Upright Piano-->"C:\ProgramData\{1CF3FE7A-4381-41EA-A1FD-F70233A9A42E}\Upright Piano Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Vienna Concert Grand-->"C:\ProgramData\{FCB4E5DF-D134-4F71-861A-5EB315418DA1}\Vienna Concert Grand Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
Native Instruments Vintage Organs-->"C:\ProgramData\{13E67FA2-BFF0-4FB9-99FF-F2B7E480E626}\Vintage Organs Setup PC.exe" REMOVE=TRUE MODIFY=FALSE
NaturalMotion endorphin 2.5.2-->"C:\Program Files (x86)\NaturalMotion\endorphin 2.5.2\unins000.exe"
NETGEAR WG111v3 wireless USB 2.0 adapter-->C:\Program Files (x86)\InstallShield Installation Information\{5396FBD8-8BD7-47F9-92AE-F62F13D5A11D}\setup.exe -runfromtemp -l0x040c
NewBlue Art Effects for Windows-->"C:\Program Files (x86)\NewBlue\Art Effects for Windows\Uninstall.exe"
NewBlue Film Effects for Windows-->"C:\Program Files (x86)\NewBlue\Film Effects for Windows\Uninstall.exe"
NewBlue Motion Effects for Windows-->"C:\Program Files (x86)\NewBlue\Motion Effects for Windows\Uninstall.exe"
NewBlue Paint Effects for Windows-->"C:\Program Files (x86)\NewBlue\Paint Effects for Windows\Uninstall.exe"
NewBlue Sampler Pack for Windows-->"C:\Program Files (x86)\NewBlue\Sampler Pack for Windows\Uninstall.exe"
NewBlue Stabilizer for Windows-->"C:\Program Files (x86)\NewBlue\Stabilizer for Windows\Uninstall.exe"
NewBlue Video Essentials for Windows-->"C:\Program Files (x86)\NewBlue\Video Essentials for Windows\Uninstall.exe"
NewBlue Video Essentials II for Windows-->"C:\Program Files (x86)\NewBlue\Video Essentials II for Windows\Uninstall.exe"
NewBlue Video Essentials III for Windows-->"C:\Program Files (x86)\NewBlue\Video Essentials III for Windows\Uninstall.exe"
Norton Ghost-->MsiExec.exe /I{B0255743-165B-4BD5-8DA8-37DFB9930015}
NVIDIA CUDA Toolkit-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{AF68235B-7FA7-4B91-AD10-C22867154174}\setup.exe" -l0x9
NVIDIA Photoshop Plug-ins-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{23F79416-CAD1-41BF-99A3-040F6C814AAA}\setup.exe" -l0x9
NVIDIA PhysX-->MsiExec.exe /X{F9835182-794B-4F24-902A-E2CA9D43380F}
NVIDIA Texture Tools 2 - 64 bit-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{65C967FA-29D8-4A5F-99C5-BC9AF1F8F9D2}\setup.exe" -l0x9
OpenAL-->"C:\Program Files (x86)\OpenAL\oalinst.exe" /U
OpenOffice.org 3.3-->MsiExec.exe /I{7E0610A2-E336-40B3-B685-C4905E97EC9A}
Particle Flow Tools Box#2 Pro for 3ds max 2011 (64-bit)-->"C:\ProgramData\{8692837D-F407-48D3-8C40-007AFB9613C0}\PFToolsBox2ProMax2011x64Setup.exe" REMOVE=TRUE MODIFY=FALSE
Particle Flow Tools for 3ds max 2012 (64-bit)-->"C:\ProgramData\{F463979C-CD03-4473-8248-CB81ADEA0124}\PFToolsMax2012x64Setup.exe" REMOVE=TRUE MODIFY=FALSE
particleIllusion 3.0.2-->"C:\Program Files (x86)\particleIllusion_3\uninstall\unins000.exe"
particleIllusion 3.0-->C:\Windows\IsUninst.exe -f"C:\Program Files (x86)\particleIllusion_3\Uninst.isu"
PC Inspector File Recovery-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{0DD140D3-9563-481E-AA75-BA457CBDAEF2}\Setup.exe" -l0x40c
PDF Settings CS5-->MsiExec.exe /I{A78FE97A-C0C8-49CE-89D0-EDD524A17392}
PFClip-->MsiExec.exe /I{58D5054F-6880-40A6-9B4B-AF913D1EFD91}
PFHoe Pro V2.2-->MsiExec.exe /I{C752E49C-CC2B-4BA8-9587-E32B6DCE1210}
PhotoSculpt Textures Demo v1.01-->"C:\Program Files (x86)\PhotoSculpt Textures Demo\uninstall.exe"
Pinnacle Studio 15 Ultimate Plugins-->MsiExec.exe /I{EB5DF19E-75D5-4FF1-AE23-2A9A2E0F2BDD}
Pinnacle Studio 15-->MsiExec.exe /I{1362E602-9625-42D3-B57F-CDA9D26F9DA8}
Pose-O-Matic v0.96-->C:\PROGRA~1\Autodesk\3DSMAX~1\plugcfg\UNWISE.EXE C:\PROGRA~1\Autodesk\3DSMAX~1\plugcfg\VIP_pom.LOG
Power Matte for Adobe After Effects (64 Bit)-->"C:\ProgramData\{6950C305-E192-4B91-836B-2D1DA29770D8}\PowerMatte-AfterEffects-x64-v2.0.1.exe" REMOVE=TRUE MODIFY=FALSE
Power Stroke for Adobe After Effects (64 Bit)-->"C:\ProgramData\{926857A0-22B7-4033-9F19-CF68454D8D0D}\PowerStroke-AfterEffects-x64-v1.0.7.exe" REMOVE=TRUE MODIFY=FALSE
Primatte Keyer-->"C:\Program Files (x86)\InstallShield Installation Information\{86F96E86-EF51-4F16-9C50-9CE9F599ECC9}\setup.exe" -runfromtemp -l0x0409 -removeonly
proDAD Heroglyph 2.5-->"C:\Program Files (x86)\proDAD\Heroglyph-2.5\uninstall.exe" uninstall spcp PATHVERSION 2.5 MAINNAME Heroglyph
PunkBuster Services-->C:\Users\Axel\AppData\Roaming\PunkBuster\pbsetup\pbsvc.exe -u
Pwrapper for 3dsMax-->"C:\Program Files (x86)\3Daliens.com\glu3D\uninst\unins001.exe"
PxMergeModule-->MsiExec.exe /I{024521CF-C07E-4F8E-8481-0D75695E03AF}
PyFFI 2.1.5-->C:\Program Files (x86)\PyFFI\PyFFI_uninstall.exe
Python 2.6-->MsiExec.exe /I{110EB5C4-E995-4CFB-AB80-A5F315BEA9E8}
QuickTime-->MsiExec.exe /I{EB900AF8-CC61-4E15-871B-98D1EA3E8025}
Razer Imperator Firmware Updater-->MsiExec.exe /I{D9292112-253F-438D-B1AB-432E5A1FE1B5}
Razer Imperator-->MsiExec.exe /X{A1E1A376-49D4-4960-8599-D5D26A4C2E7B}
RealFlow 5-->C:\Program Files\Next Limit\RealFlow 5\uninstall.exe
RealFlow Plugin for 3D Studio Max-->C:\Windows\RFMaxPluginUninstall.exe
RealFlow RenderKit 2 For 3D Studio Max-->C:\Program Files\Next Limit\RF RenderKit For mental ray - Max\RFRenderKitMaxMrUninstall.exe
RealNetworks - Microsoft Visual C++ 2008 Runtime-->MsiExec.exe /X{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}
RealPlayer-->C:\Program Files (x86)\Real\RealPlayer\Update\r1puninst.exe RealNetworks|RealPlayer|12.0
RealUpgrade 1.1-->MsiExec.exe /I{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}
Red Giant Holomatrix 64 bit-->"C:\Program Files (x86)\InstallShield Installation Information\{CD81FB4A-4771-489C-BCDD-B7D44414360D}\setup.exe" -runfromtemp -l0x0409 -removeonly
Red Giant PlaneSpace 64 bit-->"C:\Program Files (x86)\InstallShield Installation Information\{D22915B9-8288-46E3-B55F-0EE2A903F274}\setup.exe" -runfromtemp -l0x0409 -removeonly
Red Giant Psunami-->"C:\Program Files (x86)\InstallShield Installation Information\{97F381E0-CCC3-4F22-9078-033CBC597391}\setup.exe" -runfromtemp -l0x0409 -removeonly
Red Giant Text Anarchy-->"C:\Program Files (x86)\InstallShield Installation Information\{4D0EB6AA-93C6-452F-A540-6A105AB3A02C}\setup.exe" -runfromtemp -l0x0409 -removeonly
Red Giant ToonIt Studio 15-->C:\Windows\unvise32.exe C:\Program Files (x86)\Pinnacle\Studio 15\Plugins\RTFx\rgtoonitstudio.log
Red Giant Warp 64 bit-->"C:\Program Files (x86)\InstallShield Installation Information\{E461228B-1C3D-4A34-BA5B-1DDBCB63387E}\setup.exe" -runfromtemp -l0x0409 -removeonly
RocketDock 1.3.5-->"C:\Program Files (x86)\RocketDock\unins000.exe"
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {FD8D7C9A-E56A-3E7B-BA6D-FE68F13296E3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {F66C3466-1FDB-347C-B3AE-FB6C50627B10} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Extended\setup.exe /uninstallpatch {3162617C-537F-3BB6-8D0C-C6021F442391} /parameterfolder Extended
Serif WebPlus X5-->MsiExec.exe /X{7D427BD1-1C88-4007-BBFB-C2DD2ED48C63}
Sharpener Pro 3.0-->C:\Program Files (x86)\Adobe\Adobe Photoshop CS5\Plug-ins\Nik Software\Sharpener Pro 3.0\uninstall.exe
Skype Toolbars-->MsiExec.exe /I{981029E0-7FC9-4CF3-AB39-6F133621921A}
Skype™ 4.2-->MsiExec.exe /X{D103C4BA-F905-437A-8049-DB24763BBE36}
SmartSound Quicktracks 5-->"C:\Program Files (x86)\InstallShield Installation Information\{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}\setup.exe" -runfromtemp -l0x0409 -removeonly
SmartSound Quicktracks 5-->MsiExec.exe /I{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}
SolidRocks 0.98(.9)-->C:\Program Files\Autodesk\3ds Max 2011\SRB098_uninst.exe
Steam-->MsiExec.exe /X{048298C9-A4D3-490B-9FF9-AB023A9238F3}
StudioGPU MachStudio Pro-->"C:\Program Files\StudioGPU\MachStudio_uninst.exe"
SUPER © Version 2010.bld.38 (May 2, 2010)-->C:\PROGRA~2\ERIGHT~1\SUPER\Setup.exe /remove /q0
TeamSpeak 2 RC2-->"C:\Program Files (x86)\Teamspeak2_RC2\unins000.exe"
TeamSpeak 3 Client-->"C:\Program Files (x86)\TeamSpeak 3 Client\uninstall.exe"
Test Gear-->"C:\Program Files (x86)\Test Gear\uninstall.exe" "/U:C:\Program Files (x86)\Test Gear\Uninstall\uninstall.xml"
TI Connect 1.6-->MsiExec.exe /I{A8B94669-8654-4126-BD28-D0D2412CDED6}
TimelineFX Editor v1.25-->"C:\Program Files (x86)\TimelineFX\unins000.exe"
ToonIt-->"C:\Program Files (x86)\InstallShield Installation Information\{BD5D2BEF-8EDE-4CEA-AF85-4BF665699D26}\setup.exe" -runfromtemp -l0x0409 -removeonly
Trapcode 3D Stroke-->"C:\Program Files (x86)\InstallShield Installation Information\{C503B73F-3DE3-419D-9807-0282C340CDE8}\setup.exe" -runfromtemp -l0x0409 -removeonly
Trapcode EchoSpace-->"C:\Program Files (x86)\InstallShield Installation Information\{5CE0BE99-8B5C-4C32-B562-91BF3EF1F48F}\setup.exe" -runfromtemp -l0x0409 -removeonly
Trapcode Form-->"C:\Program Files (x86)\InstallShield Installation Information\{6D14F459-DA76-42A5-982F-CDE6BC7D64B2}\setup.exe" -runfromtemp -l0x0409 -removeonly
Trapcode Horizon-->"C:\Program Files (x86)\InstallShield Installation Information\{F5456E56-BBFA-414A-965B-987A2C96A9E1}\setup.exe" -runfromtemp -l0x0409 -removeonly
Trapcode Lux-->"C:\Program Files (x86)\InstallShield Installation Information\{14A6AE78-F4D9-4E9A-B27B-BC1E47C93185}\setup.exe" -runfromtemp -l0x0409 -removeonly
Trapcode Particular-->"C:\Program Files (x86)\InstallShield Installation Information\{E489BCB7-D57D-4751-AAB6-589AF66E2F7F}\setup.exe" -runfromtemp -l0x0409 -removeonly
Trapcode Shine-->"C:\Program Files (x86)\InstallShield Installation Information\{D4C0D93D-7924-486F-9B30-27ABD4EA3BB3}\setup.exe" -runfromtemp -l0x0409 -removeonly
Trapcode SoundKeys-->"C:\Program Files (x86)\InstallShield Installation Information\{CCF27C3E-E659-4132-8E1A-56F1AC604BE4}\setup.exe" -runfromtemp -l0x0409 -removeonly
Trapcode Starglow-->"C:\Program Files (x86)\InstallShield Installation Information\{71AC1C1B-CF68-4380-B040-AFBDF381C481}\setup.exe" -runfromtemp -l0x0409 -removeonly
TubeMaster++ 2.1-->C:\Program Files (x86)\TubeMaster++\uninst.exe
TuneUp Utilities 2011-->C:\Program Files (x86)\TuneUp Utilities 2011\TUInstallHelper.exe --Trigger-Uninstall
Turbo Squid Tentacles 3ds Max 2008-->MsiExec.exe /X{72019134-3A61-4C39-A540-245600C4CDFA}
UltraISO Premium V9.36-->"C:\Program Files (x86)\UltraISO\unins000.exe"
Ultra-Res Nanosuit Configuration Utility-->C:\Program Files (x86)\Electronic Arts\Crytek\Crysis\Game\Uninstall_UltraResConfigUtility.exe
Unity-->C:\Program Files (x86)\Unity\Editor\Uninstall.exe
Unwrella2 2.12-->C:\Program Files (x86)\3d-io plugins\Unwrella2\uninst.exe
Update for Microsoft .NET Framework 4 Client Profile (KB2473228)-->C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {A45DD0BE-3CD9-3F1E-B233-B90C6983AE77} /parameterfolder Client
UV-Packer 1.10-->C:\Program Files (x86)\3d-io plugins\UV-Packer\uninst.exe
VC80CRTRedist - 8.0.50727.4053-->MsiExec.exe /I{5EE7D259-D137-4438-9A5F-42F432EC0421}
Vicon Blade 1.7.0-->MsiExec.exe /I{8A7D840D-25BA-43FA-826A-27F8AE8F7DEC}
Vicon boujou 5.0-->MsiExec.exe /X{A70B1A8B-24B4-4204-9E46-D14CBC49093E}
Vidalia 0.2.10-->MsiExec.exe /I{65DC4C06-95ED-4AD2-98CE-BEB82D47F84C}
Video Fixer 3.23-->"C:\Program Files (x86)\videofixer\unins000.exe"
Vimeo Video Downloader 3.19-->"C:\Program Files (x86)\DownloadToolz\Vimeo Video Downloader\unins000.exe"
Virtua Tennis 4™-->MsiExec.exe /I{53450FA2-E900-456E-9715-501000008200}
Virtua Tennis 4™-->MsiExec.exe /X{53450FA2-E900-456E-9715-501000008200}
VisualMarker-->C:\Windows\IsUninst.exe -f"C:\Program Files (x86)\Capoeira Software\VisualMarker\Uninst.isu"
Viveza 2-->C:\Program Files\Nik Software\Viveza 2\Uninstall Viveza 2.exe
VLC media player 1.1.4-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
VOMBatch-->C:\PROGRA~1\Autodesk\3DSMAX~1\plugcfg\UNWISE.EXE C:\PROGRA~1\Autodesk\3DSMAX~1\plugcfg\VIP_vombatch.LOG
Vue 9 xStream 64bit-->C:\Program Files\e-on software\Vue 9 xStream\Uninstall.exe
Vue 9.5 xStream 64bit-->C:\Program Files\e-on software\Vue 9.5 xStream\Uninstall.exe
WAV MP3 Converter 4.2 Build 1259-->C:\Program Files (x86)\Hoo Technologies\WAV MP3 Converter\Uninstall.exe
WAV MP3 Converter v4.4 build 1429-->"C:\Program Files (x86)\WAV MP3 Converter 4\unins000.exe"
Wikikou Messenger Cleaner-->C:\Program Files (x86)\Wikikou\Wikikou Messenger Cleaner\Uninstall.exe
Windows Live Communications Platform-->MsiExec.exe /I{D45240D3-B6B3-4FF9-B243-54ECE3E10066}
Windows Live FolderShare-->MsiExec.exe /X{76810709-A7D3-468D-9167-A1780C1E766C}
Windows Live Installer-->MsiExec.exe /I{0B0F231F-CE6A-483D-AA23-77B364F75917}
Windows Live Movie Maker-->MsiExec.exe /X{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}
Windows Live Movie Maker-->MsiExec.exe /X{92EA4134-10D1-418A-91E1-5A0453131A38}
Windows Live Photo Common-->MsiExec.exe /X{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}
Windows Live Photo Common-->MsiExec.exe /X{C893D8C0-1BA0-4517-B11C-E89B65E72F70}
Windows Live Photo Gallery-->MsiExec.exe /X{3336F667-9049-4D46-98B6-4C743EEBC5B1}
Windows Live PIMT Platform-->MsiExec.exe /I{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}
Windows Live SOXE Definitions-->MsiExec.exe /I{200FEC62-3C34-4D60-9CE8-EC372E01C08F}
Windows Live SOXE-->MsiExec.exe /I{682B3E4F-696A-42DE-A41C-4C07EA1678B4}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{09F56A49-A7B1-4AAB-95B9-D13094254AD1}
Windows Live UX Platform-->MsiExec.exe /I{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}
Windows Live-->MsiExec.exe /I{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
WinMerge 2.12.4-->"C:\Program Files (x86)\WinMerge\unins000.exe"
WinPcap 4.1.2-->C:\Program Files (x86)\WinPcap\uninstall.exe
x264vfw - H.264/MPEG-4 AVC codec (remove only)-->C:\Program Files (x86)\x264vfw\x264vfw-uninstall.exe
Xfrog 3.5-->C:\Windows\IsUninst.exe -f"C:\Program Files (x86)\Greenworks\Xfrog 3.5\Uninst.isu"
XfrogTUNE 1.0-->C:\Windows\IsUninst.exe -f"C:\Program Files (x86)\Greenworks\XfrogTUNE 1.0\Uninst.isu"
Xilisoft Blu Ray Ripper-->C:\Program Files (x86)\Xilisoft\Blu Ray Ripper\Uninstall.exe
ZBrush 4-->"C:\Program Files (x86)\InstallShield Installation Information\{4BF62C05-3943-4ECB-B233-6E37E3FB5BCF}\setup.exe" -runfromtemp -l0x0409 -removeonly
ZBrush 4-->MsiExec.exe /I{4BF62C05-3943-4ECB-B233-6E37E3FB5BCF}
zMatte for Adobe After Effects (64 Bit)-->"C:\ProgramData\{7541281F-A993-4E9D-9A45-AEB57F64D333}\zMatte-AfterEffects-x64-v3.exe" REMOVE=TRUE MODIFY=FALSE

======Hosts File======

127.0.0.1 www.happy-digital.com



======System event log======

Computer Name: Axel-PC
Event Code: 1014
Message: La résolution du nom smarking.com a expiré lorsqu’aucun des serveurs DNS configurés n’a répondu.
Record Number: 56414
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20110116215126.511600-000
Event Type: Avertissement
User: AUTORITE NT\SERVICE RÉSEAU

Computer Name: Axel-PC
Event Code: 1014
Message: La résolution du nom www.yahoo.com a expiré lorsqu’aucun des serveurs DNS configurés n’a répondu.
Record Number: 56407
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20110116210906.257000-000
Event Type: Avertissement
User: AUTORITE NT\SERVICE RÉSEAU

Computer Name: Axel-PC
Event Code: 7030
Message: Le service nl_license_manager est marqué comme étant interactif. Cependant, le système est configuré pour ne pas autoriser les services interactifs. Ce service peut ne pas fonctionner correctement.
Record Number: 56384
Source Name: Service Control Manager
Time Written: 20110116184145.944400-000
Event Type: Erreur
User:

Computer Name: Axel-PC
Event Code: 1014
Message: La résolution du nom www.ionicmall.co.za a expiré lorsqu’aucun des serveurs DNS configurés n’a répondu.
Record Number: 56346
Source Name: Microsoft-Windows-DNS-Client
Time Written: 20110116164047.998800-000
Event Type: Avertissement
User: AUTORITE NT\SERVICE RÉSEAU

Computer Name: Axel-PC
Event Code: 4227
Message: TCP/IP n’a pas pu établir une connexion sortante car le point de terminaison local sélectionné a été récemment utilisé pour se connecter au même point de terminaison distant. Cette erreur se produit généralement lorsque les connexions sortantes sont ouvertes et fermées à un débit élevé, provoquant l’utilisation de tous les ports locaux disponibles et obligeant TCP/IP à réutiliser un port local pour une connexion sortante. Pour réduire le risque d’altération des données, la norme TCP/IP exige qu’un laps de temps minimal s’écoule entre des connexions successives d’un point de terminaison local à un point de terminaison distant.
Record Number: 56329
Source Name: Tcpip
Time Written: 20110116163138.121000-000
Event Type: Avertissement
User:

=====Application event log=====

Computer Name: Axel-PC
Event Code: 1000
Message: Nom de l’application défaillante Explorer.EXE, version : 6.1.7600.16450, horodatage : 0x4aebab8d
Nom du module défaillant : ShellEx.dll_unloaded, version : 0.0.0.0, horodatage : 0x4c4f0679
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0000000180001a52
ID du processus défaillant : 0x990
Heure de début de l’application défaillante : 0x01cb4065fbc6f610
Chemin d’accès de l’application défaillante : C:\Windows\Explorer.EXE
Chemin d’accès du module défaillant: ShellEx.dll
ID de rapport : 730def1c-ac68-11df-9ebf-001d929783cf
Record Number: 550
Source Name: Application Error
Time Written: 20100820143726.000000-000
Event Type: Erreur
User:

Computer Name: Axel-PC
Event Code: 6004
Message: Échec de l’abonné aux notifications Winlogon <TrustedInstaller> lors d’un événement de notification critique.
Record Number: 309
Source Name: Microsoft-Windows-Winlogon
Time Written: 20100820101610.000000-000
Event Type: Avertissement
User:

Computer Name: Axel-PC
Event Code: 1000
Message: Nom de l’application défaillante WG111v3_v2.0.0_Setup.exe, version : 12.0.0.58851, horodatage : 0x45e5fc0e
Nom du module défaillant : ISSetup.dll, version : 12.0.0.58851, horodatage : 0x45e5fbd0
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00092e5f
ID du processus défaillant : 0xb98
Heure de début de l’application défaillante : 0x01cb3ff3a3ae96d0
Chemin d’accès de l’application défaillante : K:\LOGICIELS\WG111v3_v2.0.0_Setup\WG111v3_v2.0.0_Setup.exe
Chemin d’accès du module défaillant: C:\Users\Axel\AppData\Local\Temp\{4BCADC81-C641-40E6-B3CD-D194ED9674EA}\ISSetup.dll
ID de rapport : 12f7e050-abe7-11df-be45-001d929783cf
Record Number: 249
Source Name: Application Error
Time Written: 20100819231119.000000-000
Event Type: Erreur
User:

Computer Name: Axel-PC
Event Code: 1530
Message: Windows a détecté que votre fichier de Registre est toujours utilisé par d’autres applications ou services. Le fichier va être déchargé. Les applications ou services qui ont accès à votre Registre risquent de ne pas fonctionner correctement après cela.

DÉTAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-538240459-1360118106-1390755237-1000:
Process 472 (\Device\HarddiskVolume2\Windows\System32\winlogon.exe) has opened key \REGISTRY\USER\S-1-5-21-538240459-1360118106-1390755237-1000

Record Number: 213
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20100819230414.455000-000
Event Type: Avertissement
User: AUTORITE NT\Système

Computer Name: Axel-PC
Event Code: 1008
Message: Le service Windows Search démarre et tente de supprimer l’ancien index de recherche {Raison : Réinitialisation totale de l’index}.

Record Number: 172
Source Name: Microsoft-Windows-Search
Time Written: 20100819225124.000000-000
Event Type: Avertissement
User:

=====Security event log=====

Computer Name: Axel-PC
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : AXEL-PC$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x268
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 7394
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101120180346.482400-000
Event Type: Succès de l’audit
User:

Computer Name: Axel-PC
Event Code: 4672
Message: Privilèges spéciaux attribués à la nouvelle ouverture de session.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7

Privilèges : SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 7393
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101120175832.142400-000
Event Type: Succès de l’audit
User:

Computer Name: Axel-PC
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : AXEL-PC$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x268
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 7392
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101120175832.142400-000
Event Type: Succès de l’audit
User:

Computer Name: Axel-PC
Event Code: 4672
Message: Privilèges spéciaux attribués à la nouvelle ouverture de session.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7

Privilèges : SeAssignPrimaryTokenPrivilege
SeTcbPrivilege
SeSecurityPrivilege
SeTakeOwnershipPrivilege
SeLoadDriverPrivilege
SeBackupPrivilege
SeRestorePrivilege
SeDebugPrivilege
SeAuditPrivilege
SeSystemEnvironmentPrivilege
SeImpersonatePrivilege
Record Number: 7391
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101120164957.053200-000
Event Type: Succès de l’audit
User:

Computer Name: Axel-PC
Event Code: 4624
Message: L’ouverture de session d’un compte s’est correctement déroulée.

Sujet :
ID de sécurité : S-1-5-18
Nom du compte : AXEL-PC$
Domaine du compte : WORKGROUP
ID d’ouverture de session : 0x3e7

Type d’ouverture de session : 5

Nouvelle ouverture de session :
ID de sécurité : S-1-5-18
Nom du compte : Système
Domaine du compte : AUTORITE NT
ID d’ouverture de session : 0x3e7
GUID d’ouverture de session : {00000000-0000-0000-0000-000000000000}

Informations sur le processus :
ID du processus : 0x268
Nom du processus : C:\Windows\System32\services.exe

Informations sur le réseau :
Nom de la station de travail :
Adresse du réseau source : -
Port source : -

Informations détaillées sur l’authentification :
Processus d’ouverture de session : Advapi
Package d’authentification : Negotiate
Services en transit : -
Nom du package (NTLM uniquement) : -
Longueur de la clé : 0

Cet événement est généré lors de la création d’une ouverture de session. Il est généré sur l’ordinateur sur lequel l’ouverture de session a été effectuée.

Le champ Objet indique le compte sur le système local qui a demandé l’ouverture de session. Il s’agit le plus souvent d’un service, comme le service Serveur, ou un processus local tel que Winlogon.exe ou Services.exe.

Le champ Type d’ouverture de session indique le type d’ouverture de session qui s’est produit. Les types les plus courants sont 2 (interactif) et 3 (réseau).

Le champ Nouvelle ouverture de session indique le compte pour lequel la nouvelle ouverture de session a été créée, par exemple, le compte qui s’est connecté.

Les champs relatifs au réseau indiquent la provenance d’une demande d’ouverture de session à distance. Le nom de la station de travail n’étant pas toujours disponible, peut être laissé vide dans certains cas.

Les champs relatifs aux informations d’authentification fournissent des détails sur cette demande d’ouverture de session spécifique.
- Le GUID d’ouverture de session est un identificateur unique pouvant servir à associer cet événement à un événement KDC .
- Les services en transit indiquent les services intermédiaires qui ont participé à cette demande d’ouverture de session.
- Nom du package indique quel est le sous-protocole qui a été utilisé parmi les protocoles NTLM.
- La longueur de la clé indique la longueur de la clé de session générée. Elle a la valeur 0 si aucune clé de session n’a été demandée.
Record Number: 7390
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20101120164957.053200-000
Event Type: Succès de l’audit
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=%CommonProgramFiles%\Microsoft Shared\Windows Live;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\QuickTime\QTSystem\;C:\Program Files\Common Files\Autodesk Shared\;C:\PROGRA~2\ALPSER~1;C:\PROGRA~2\ALPSER~1\(x86);C:\Program Files (x86)\Common Files\Autodesk Shared\;C:\CUDA\bin64;C:\Program Files (x86)\Pinnacle\Shared Files\;C:\Program Files (x86)\Autodesk\Backburner\;%ProgramFiles%\digieffects\bin;C:\Program Files (x86)\Windows Live\Shared
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=Intel64 Family 6 Model 15 Stepping 11, GenuineIntel
"PROCESSOR_REVISION"=0f0b
"CLASSPATH"=.;C:\Program Files (x86)\QuickTime\QTSystem\QTJava.zip
"QTJAVA"=C:\Program Files (x86)\QuickTime\QTSystem\QTJava.zip
"3DSMAX_2011x64_PATH"=C:\Program Files\Autodesk\3ds Max 2011\
"KEYSHOT"=C:\Users\Axel\Documents\KeyShot
"asl.log"=Destination=file;OnFirstLog=command,environment,parent
"MAYA_SCRIPT_PATH"=C:\PROGRAM FILES (X86)\NATURALMOTION\ENDORPHIN 2.5.2\RESOURCES\THIRD PARTY\SCRIPTS\MAYA
"CUDA_BIN_PATH"=C:\CUDA\bin64
"CUDA_INC_PATH"=C:\CUDA\include
"CUDA_LIB_PATH"=C:\CUDA\lib64
"VBOX_INSTALL_PATH"=C:\Program Files\Oracle\VirtualBox\
"CM2012DIR"=C:\Program Files (x86)\Common Files\Autodesk Shared\Materials\
"ILBDIR"=C:\Program Files (x86)\Common Files\Autodesk Shared\Materials\
"ILMDIR"=C:\Program Files (x86)\Common Files\Autodesk Shared\Materials\
"ADSK_3DSMAX_x64_2012"=C:\Program Files\Autodesk\3ds Max 2012\
"S6GA_HOME_DIR"=C:\ProgramData\GenArts\MonstersRaptors
"VRAY_RT_FOR_3DSMAX2012_MAIN_x64"=C:\Program Files\Chaos Group\V-Ray\RT for 3ds Max 2012 for x64/bin
"VRAY_RT_FOR_3DSMAX2012_PLUGINS_x64"=C:\Program Files\Chaos Group\V-Ray\RT for 3ds Max 2012 for x64/bin/plugins
"RF5PATH"=C:\Program Files\Next Limit\RealFlow 5
"RMANTREE"=C:\Program Files\Pixar\RenderManProServer-15.2\
"ILLDIR"=C:\Program Files (x86)\Common Files\Autodesk Shared\Materials\
"VRAY_RT_FOR_3DSMAX2011_MAIN_x64"=C:\Program Files\Chaos Group\V-Ray\RT for 3ds Max 2011 for x64/bin
"VRAY_RT_FOR_3DSMAX2011_PLUGINS_x64"=C:\Program Files\Chaos Group\V-Ray\RT for 3ds Max 2011 for x64/bin/plugins

-----------------EOF-----------------
2 Juillet 2011 13:05:45

thedarklord a dit :
> Petite question annexe: je vois sur plusieurs topics que l'outil de diagnostic à télécharger varie selon les cas. Il y a une "procédure" à suivre pour déterminer l'outil à utiliser ?


Re,

> Cela dépend du symptôme décrit par l' helpé et de la technicité de l' helpeur.

¤Télécharge Lop S&D2 (merci Eric_71) : Ici
Lance-le puis clique sur Start scan
Poste le rapport généré


2 Juillet 2011 13:11:18

Le scan commence mais "LopSD2.exe a cessé de fonctionner" au bout d'une petite minute...je suis sous Seven x64, authentifiée.
2 Juillet 2011 14:04:44

Il a trouvé plein de trucs bizarres :lol: 

Citation :
Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Version de la base de données: 7003

Windows 6.1.7600
Internet Explorer 8.0.7600.16385 Firefox 5.0 [:thedarklord:15]

02/07/2011 14:03:00
mbam-log-2011-07-02 (14-03-00).txt

Type d'examen: Examen rapide
Elément(s) analysé(s): 166865
Temps écoulé: 4 minute(s), 44 seconde(s)

Processus mémoire infecté(s): 0
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 0
Valeur(s) du Registre infectée(s): 0
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 0
Fichier(s) infecté(s): 0

Processus mémoire infecté(s):
(Aucun élément nuisible détecté)

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Valeur(s) du Registre infectée(s):
(Aucun élément nuisible détecté)

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
(Aucun élément nuisible détecté)

Fichier(s) infecté(s):
(Aucun élément nuisible détecté)


A moins que je fasse plutôt un examen complet ?
3 Juillet 2011 16:00:47

Bonjour,

où en es-tu?

A+
7 Juillet 2011 18:24:13

Excuse-moi de t'avoir fait poireauter pour rien, j'étais dans la période du bac ('fin bon je l'ai au final, après oral, 73 points rattrapés... :D  bref)
Voici:

Citation :
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6528
# api_version=3.0.2
# EOSSerial=8f4be5e59bcccc40a41539f9878ced7f
# end=stopped
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2011-07-07 07:46:44
# local_time=2011-07-07 09:46:44 )
# country="France"
# lang=1036
# osver=6.1.7600 NT
# compatibility_mode=512 16777215 100 0 452835 452835 0 0
# compatibility_mode=1280 16777215 100 0 27744658 27744658 0 0
# compatibility_mode=5893 16776573 100 94 1824944 62467242 0 0
# compatibility_mode=8192 67108863 100 0 99 99 0 0
# scanned=506756
# found=2
# cleaned=0
# scan_time=15714
C:\Media\mediabolik.sys une variante de Win32/Packed.VMProtect.AAA cheval de troie (impossible de nettoyer) 00000000000000000000000000000000 I
C:\Users\Axel\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\21\5b794d55-1ba4c47a menaces multiples (impossible de nettoyer) 00000000000000000000000000000000 I


8 Juillet 2011 11:40:25

thedarklord a dit :
> ('fin bon je l'ai au final, après oral, 73 points rattrapés... :D  bref)


Bonjour,

> Félicitations.

1) Télécharge :
CCleaner : Ici
Lance-le puis clique sur Options>Avancé et décoche Effacer uniquement les fichiers Temp de Windows datant de plus de 24 heures. Ferme le programme.

2) Lance CCleaner :
Dans le menu Nettoyeur, clique sur Analyse (laisse-le travailler) puis sur le bouton Lancer le nettoyage.
Fais cela plusieurs fois.

A+
10 Juillet 2011 22:47:06

Bonjour,

(bis)où en es-tu?

A+
15 Juillet 2011 01:55:28

Ah ben CCleaner je le passe assez souvent :D 
Enfin bon, là il semble que "ça se soit stabilisé".

En fait, j'y pense maintenant, mais il se peut que ça soit un truc dans le genre du cache pour mes applications de création 3D... [:thedarklord:14]
Au pire, dès la rentrée, je réinstalle le système...

Merci pour ton aide !
15 Juillet 2011 20:20:09

Bonjour,

poste un dernier rapport RSIT.

A+
15 Juillet 2011 22:26:47

Salut ! Voici:

Citation :
Logfile of random's system information tool 1.08 (written by random/random)
Run by Axel at 2011-07-15 22:24:06
Microsoft Windows 7 Édition Familiale Premium
System drive C: has 70 GB (23%) free of 300 GB
Total RAM: 4095 MB (37% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:24:25, on 15/07/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\RocketDock\RocketDock.exe
C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
C:\Program Files (x86)\Razer\Imperator\RazerImperatorTray.exe
C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Adobe\Adobe Photoshop CS5\Photoshop.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Users\Axel\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\Axel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files (x86)\Megaupload\Mega Manager\MegaIEMn.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: link filter bho - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll
O4 - HKLM\..\Run: [AVP] "C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe"
O4 - HKLM\..\Run: [Razer Imperator Driver] C:\Program Files (x86)\Razer\Imperator\RazerImperatorTray.exe
O4 - HKLM\..\Run: [Norton Ghost 15.0] "C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe"
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files (x86)\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE LOCAL')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'SERVICE RÉSEAU')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'SERVICE RÉSEAU')
O4 - Global Startup: Assistant SMART WIZARD NETGEAR pour WG111v3.lnk = C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe
O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe
O8 - Extra context menu item: &Envoyer à OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Ajouter à l'Anti-bannière - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ie_banner_deny.htm
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Clavier &virtuel - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O9 - Extra button: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: Notes &liées OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Analyse des &liens - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll
O23 - Service: 3d-io License Server v2.0 - 3d-io GmbH - C:\Program Files (x86)\3d-io plugins\licensing_v2\ActiveLockServerV2.exe
O23 - Service: @%SystemRoot%\system32\aelupsvc.dll,-1 (AeLookupSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: AfterFLICS v3 - Unknown owner - C:\Program Files (x86)\AFLICS\AfterFLICS.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%systemroot%\system32\appidsvc.dll,-100 (AppIDSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\appinfo.dll,-100 (Appinfo) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-204 (AudioEndpointBuilder) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\audiosrv.dll,-200 (AudioSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Kaspersky Anti-Virus Service (AVP) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe
O23 - Service: @%SystemRoot%\system32\AxInstSV.dll,-103 (AxInstSV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bdesvc.dll,-100 (BDESVC) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\bfe.dll,-1001 (BFE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\qmgr.dll,-1000 (BITS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service Bonjour (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%systemroot%\system32\browser.dll,-100 (Browser) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\bthserv.dll,-101 (bthserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-11 (CertPropSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\cryptsvc.dll,-1001 (CryptSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @oleres.dll,-5012 (DcomLaunch) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: DCPFLICS - Unknown owner - C:\Program Files (x86)\DCPFLICS\DCPFLICS.exe
O23 - Service: @%SystemRoot%\system32\defragsvc.dll,-101 (defragsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dhcpcore.dll,-100 (Dhcp) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\dnsapi.dll,-101 (Dnscache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dot3svc.dll,-1102 (dot3svc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\dps.dll,-500 (DPS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\eapsvc.dll,-1 (EapHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\ehome\ehrecvr.exe,-101 (ehRecvr) - Unknown owner - C:\Windows\ehome\ehRecvr.exe
O23 - Service: @%SystemRoot%\ehome\ehsched.exe,-101 (ehSched) - Unknown owner - C:\Windows\ehome\ehsched.exe
O23 - Service: @%SystemRoot%\system32\wevtsvc.dll,-200 (eventlog) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @comres.dll,-2450 (EventSystem) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\fdPHost.dll,-100 (fdPHost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\fdrespub.dll,-100 (FDResPub) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: FlowFinder3MonstersAE64 - Unknown owner - C:\Program Files\GenArts\Monsters-AE64\bin\FlowFinder3MonstersAE64.exe
O23 - Service: @%systemroot%\system32\FntCache.dll,-100 (FontCache) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: GenericMount Helper Service - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe
O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: HASP License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing)
O23 - Service: @%SystemRoot%\System32\hidserv.dll,-101 (hidserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\kmsvc.dll,-6 (hkmsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\ListSvc.dll,-100 (HomeGroupListener) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\provsvc.dll,-100 (HomeGroupProvider) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: HoudiniLicenseServer - Unknown owner - C:\Windows\system32\sesinetd.exe (file missing)
O23 - Service: HoudiniServer - Unknown owner - C:\Windows\system32\hserver.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ikeext.dll,-501 (IKEEXT) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\IPBusEnum.dll,-102 (IPBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: IP-Clamp Licensing by cebas VISUAL TECHNOLOGY Inc. (IPClampService) - Unknown owner - C:\Program Files (x86)\cebas\ip-clamp\ipclamp.exe
O23 - Service: @%SystemRoot%\system32\iphlpsvc.dll,-500 (iphlpsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Service de l’iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: JawsServerAE64 - Unknown owner - C:\Program Files (x86)\GenArts\Monsters-AE64\bin\JawsServerAE64.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2946 (KtmRm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\srvsvc.dll,-100 (LanmanServer) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wkssvc.dll,-100 (LanmanWorkstation) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: @%SystemRoot%\system32\lltdres.dll,-1 (lltdsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\lmhsvc.dll,-101 (lmhosts) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Ma-Config Service (maconfservice) - Unknown owner - C:\Program Files (x86)\ma-config.com\maconfservice.exe
O23 - Service: mental ray 3.8 Satellite for Autodesk 3ds Max 2011 64-bit 64-bit (mi-raysat_3dsmax2011_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_64server.exe
O23 - Service: mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - English 64-bit (mi-raysat_3dsmax2012_64) - Unknown owner - C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-100 (MMCSS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\FirewallAPI.dll,-23090 (MpsSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\iscsidsc.dll,-5000 (MSiSCSI) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\msimsg.dll,-27 (msiserver) - Unknown owner - C:\Windows\system32\msiexec.exe
O23 - Service: @%SystemRoot%\system32\qagentrt.dll,-6 (napagent) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\netman.dll,-109 (Netman) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\netprofm.dll,-202 (netprofm) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\nlasvc.dll,-1 (NlaSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\nlssrv32.exe
O23 - Service: nl_license_manager - Unknown owner - C:\Program Files (x86)\Next Limit\Licence Manager\nl_license_manager.exe
O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe
O23 - Service: @%SystemRoot%\system32\nsisvc.dll,-200 (nsi) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8004 (p2pimsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\p2psvc.dll,-8006 (p2psvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pcasvc.dll,-1 (PcaSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\sysWow64\perfhost.exe,-2 (PerfHost) - Unknown owner - C:\Windows\SysWow64\perfhost.exe
O23 - Service: @%systemroot%\system32\pla.dll,-500 (pla) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpnpmgr.dll,-100 (PlugPlay) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%SystemRoot%\system32\pnrpauto.dll,-8002 (PNRPAutoReg) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\pnrpsvc.dll,-8000 (PNRPsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\polstore.dll,-5010 (PolicyAgent) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\umpo.dll,-100 (Power) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\profsvc.dll,-300 (ProfSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ProtectionServer - Mankua & Di-O-Matic - C:\PROGRA~2\ALPSER~1\PROTEC~1.EXE
O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasauto.dll,-200 (RasAuto) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%Systemroot%\system32\rasmans.dll,-200 (RasMan) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe (file missing)
O23 - Service: RLM-GenArts - Reprise Software Inc. - C:\Program Files (x86)\GenArts\rlm\rlm.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%windir%\system32\RpcEpMap.dll,-1001 (RpcEptMapper) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @oleres.dll,-5010 (RpcSs) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\SCardSvr.dll,-1 (SCardSvr) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\schedsvc.dll,-100 (Schedule) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\certprop.dll,-13 (SCPolicySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sdrsvc.dll,-107 (SDRSVC) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Sens.dll,-200 (SENS) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\sensrsvc.dll,-1000 (SensrSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\SessEnv.dll,-1026 (SessionEnv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\shsvcs.dll,-12288 (ShellHWDetection) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppuinotify.dll,-103 (sppuinotify) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\ssdpsrv.dll,-100 (SSDPSRV) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\sstpsvc.dll,-200 (SstpSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\wiaservc.dll,-9 (stisvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\System32\swprv.dll,-103 (swprv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: SymSnapService - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
O23 - Service: @%SystemRoot%\system32\sysmain.dll,-1000 (SysMain) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\TabSvc.dll,-100 (TabletInputService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tapisrv.dll,-10100 (TapiSrv) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\tbssvc.dll,-100 (TBS) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\termsrv.dll,-268 (TermService) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\themeservice.dll,-8192 (Themes) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\mmcss.dll,-102 (THREADORDER) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\trkwks.dll,-1 (TrkWks) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\servicing\TrustedInstaller.exe,-100 (TrustedInstaller) - Unknown owner - C:\Windows\servicing\TrustedInstaller.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%systemroot%\system32\upnphost.dll,-213 (upnphost) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\dwm.exe,-2000 (UxSms) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\uxtuneup.dll,-4096 (UxTuneUp) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\w32time.dll,-200 (W32Time) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%systemroot%\system32\wbiosrvc.dll,-100 (WbioSrvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wcncsvc.dll,-3 (wcncsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\WcsPlugInService.dll,-200 (WcsPlugInService) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-502 (WdiServiceHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\wdi.dll,-500 (WdiSystemHost) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%systemroot%\system32\webclnt.dll,-100 (WebClient) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wecsvc.dll,-200 (Wecsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wercplsupport.dll,-101 (wercplsupport) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wersvc.dll,-100 (WerSvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%ProgramFiles%\Windows Defender\MsMpRes.dll,-103 (WinDefend) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\system32\winhttp.dll,-100 (WinHttpAutoProxySvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmisvc.dll,-205 (Winmgmt) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wsmsvc.dll,-101 (WinRM) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wlansvc.dll,-257 (Wlansvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\wpcsvc.dll,-100 (WPCSvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wpdbusenum.dll,-100 (WPDBusEnum) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wscsvc.dll,-200 (wscsvc) - Unknown owner - C:\Windows\System32\svchost.exe
O23 - Service: Windows Update (wuauserv) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\system32\wudfsvc.dll,-1000 (wudfsvc) - Unknown owner - C:\Windows\system32\svchost.exe
O23 - Service: @%SystemRoot%\System32\wwansvc.dll,-257 (WwanSvc) - Unknown owner - C:\Windows\system32\svchost.exe

--
End of file - 27519 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{074C1DC5-9320-4A9A-947D-C042949C6216}]
ContributeBHO Class - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27 164312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-02-15 381656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\ievkbd.dll [2010-07-01 68280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d'aide de l'Assistant de connexion Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~3\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - C:\Program Files (x86)\Megaupload\Mega Manager\MegaIEMn.dll [2010-11-03 109568]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E33CF602-D945-461A-83F0-819F76A199F8}]
FilterBHO Class - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\klwtbbho.dll [2010-07-01 191160]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll [2010-03-27 164312]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AVP"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [2010-09-14 352976]
"Razer Imperator Driver"=C:\Program Files (x86)\Razer\Imperator\RazerImperatorTray.exe [2010-09-07 2787224]
"Norton Ghost 15.0"=C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe [2009-10-01 2596712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"=C:\Program Files (x86)\RocketDock\RocketDock.exe [2007-09-02 495616]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Assistant SMART WIZARD NETGEAR pour WG111v3.lnk - C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe
NETGEAR WG111v3 Smart Wizard.lnk - C:\Program Files (x86)\NETGEAR\WG111v3\WG111v3.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~2\KASPER~1\KASPER~1\mzvkbd3.dll,C:\PROGRA~2\KASPER~1\KASPER~1\sbhook.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5ECD31F0-F91A-11d4-B3CA-00D0B70A09D2}"=C:\Windows\system32\WDSHELL.DLL [2010-11-30 208896]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~3\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"AllowLegacyWebView"=1
"AllowUnhashedWebView"=1
"NoDriveTypeAutoRun"=24

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2011\TUAutoReactivator64.exe"

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - "C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\Dreamweaver.exe","%1"

======List of files/folders created in the last 1 months======

2011-07-15 12:36:26 ----HDC---- C:\ProgramData\{91A6AF7F-6DAD-4AE6-91C6-74D71193471A}
2011-07-15 12:35:58 ----HDC---- C:\ProgramData\{738BC746-5FBD-4969-B3F1-6A065E31C7BE}
2011-07-15 12:35:18 ----HDC---- C:\ProgramData\{E314972B-E8D6-465D-AE74-6CC08535701F}
2011-07-15 12:34:51 ----HDC---- C:\ProgramData\{EC2F7042-ADE8-4F04-9A7E-2316AD6311E2}
2011-07-15 12:34:12 ----HDC---- C:\ProgramData\{63B3AF69-722B-4FA9-965F-94DEB1E78796}
2011-07-15 12:33:54 ----HDC---- C:\ProgramData\{83F263BF-0076-4C4C-93DC-A3EA0CEB7184}
2011-07-15 12:33:46 ----HDC---- C:\ProgramData\{C1169140-5167-4191-93E0-F84195AF54A4}
2011-07-15 12:33:04 ----HDC---- C:\ProgramData\{DD44E1C4-AD22-4508-8355-744AA998F06D}
2011-07-15 12:32:24 ----HDC---- C:\ProgramData\{4D790C15-A3FF-476F-9F6C-FA6FF12EFFC3}
2011-07-15 12:32:06 ----HDC---- C:\ProgramData\{682FE305-7958-4875-9B95-34673E7151AD}
2011-07-15 12:31:54 ----HDC---- C:\ProgramData\{B2DCFF49-8E43-4A91-B043-7CCB41EA24CE}
2011-07-15 12:31:33 ----HDC---- C:\ProgramData\{529BBEB3-0369-420C-BD9C-37553D289203}
2011-07-15 12:31:28 ----HDC---- C:\ProgramData\{E25B3CC7-9347-4C9D-9339-1E15F9DA7A07}
2011-07-15 12:31:05 ----HDC---- C:\ProgramData\{E6AF2639-F710-4F5B-8830-95A396FB523F}
2011-07-15 12:30:58 ----HDC---- C:\ProgramData\{16996CC6-7043-45AD-9C8D-A784409115E4}
2011-07-15 12:30:27 ----HDC---- C:\ProgramData\{AB404F93-CDCE-40D9-8D4E-8606C84D368C}
2011-07-15 12:30:18 ----HDC---- C:\ProgramData\{9DE75BC9-6CF5-4972-8A4E-86BAAD477DC6}
2011-07-15 12:29:48 ----HDC---- C:\ProgramData\{8265C354-3D13-4FE5-95C7-65F277FF3041}
2011-07-15 12:29:44 ----D---- C:\Program Files (x86)\Topaz Labs
2011-07-15 12:29:44 ----D---- C:\Program Files (x86)\Common Files\Topaz Labs
2011-07-15 12:15:44 ----D---- C:\Program Files (x86)\Digital Element
2011-07-15 01:49:19 ----D---- C:\Users\Axel\AppData\Roaming\ThePluginSite
2011-07-14 12:47:58 ----HDC---- C:\ProgramData\{629D8B17-22B3-46F8-A281-BD604EBA3ED7}
2011-07-13 17:48:20 ----D---- C:\ProgramData\IKinema
2011-07-13 17:48:19 ----D---- C:\Program Files (x86)\IKinema
2011-07-13 16:56:33 ----A---- C:\Windows\The Setup Machine for Maya 2012 (64-bit edition) Uninstaller.exe
2011-07-13 16:55:44 ----A---- C:\Windows\The Face Machine for Maya 2012 (64-bit edition) Uninstaller.exe
2011-07-08 21:15:50 ----D---- C:\Program Files (x86)\HD Tune
2011-07-08 15:44:15 ----D---- C:\Riot Games
2011-07-08 15:18:23 ----D---- C:\Program Files (x86)\Leage of Legends Pourri
2011-07-08 15:17:31 ----D---- C:\ProgramData\PMB Files
2011-07-08 15:17:10 ----D---- C:\Program Files (x86)\Pando Networks
2011-07-08 11:41:48 ----D---- C:\GDImage
2011-07-07 17:23:11 ----D---- C:\Program Files (x86)\ESET
2011-07-04 22:19:17 ----A---- C:\Windows\RFMayaPluginUninstall.exe
2011-07-04 21:02:26 ----D---- C:\Windows\fr
2011-07-04 20:58:12 ----D---- C:\Program Files (x86)\Windows Live
2011-07-04 20:55:48 ----A---- C:\Windows\SysWOW64\UIRibbonRes.dll
2011-07-04 20:55:47 ----A---- C:\Windows\SysWOW64\UIRibbon.dll
2011-07-04 16:29:36 ----D---- C:\My Web Sites
2011-07-03 17:26:25 ----D---- C:\Program Files (x86)\Smart Projects
2011-07-03 17:08:05 ----D---- C:\Program Files (x86)\WinHTTrack
2011-07-03 01:00:21 ----D---- C:\Program Files (x86)\aMSN
2011-07-02 13:56:43 ----D---- C:\Users\Axel\AppData\Roaming\Malwarebytes
2011-07-02 13:56:36 ----N---- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
2011-07-02 13:56:35 ----D---- C:\ProgramData\Malwarebytes
2011-07-02 13:56:31 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-07-02 11:37:05 ----D---- C:\rsit
2011-07-02 11:37:05 ----D---- C:\Program Files (x86)\trend micro
2011-07-01 16:33:54 ----D---- C:\Program Files (x86)\Common Files\DivX Shared
2011-07-01 16:33:44 ----D---- C:\Program Files (x86)\DivX
2011-07-01 16:32:40 ----D---- C:\ProgramData\DivX
2011-07-01 00:42:35 ----D---- C:\Users\Axel\AppData\Roaming\OpenOffice.org
2011-07-01 00:39:46 ----D---- C:\Program Files (x86)\OpenOffice.org 3
2011-06-29 16:02:41 ----D---- C:\Program Files (x86)\Ant Renamer
2011-06-29 09:29:57 ----D---- C:\Windows\pss
2011-06-27 16:49:41 ----D---- C:\Users\Axel\AppData\Roaming\pfprep
2011-06-27 16:49:26 ----D---- C:\Users\Axel\AppData\Roaming\pfmatchit
2011-06-27 16:48:59 ----D---- C:\Users\Axel\AppData\Roaming\pfclean
2011-06-27 16:48:42 ----D---- C:\Users\Axel\AppData\Roaming\pftrack
2011-06-27 16:39:01 ----D---- C:\Program Files (x86)\The Pixel Farm
2011-06-20 21:35:06 ----D---- C:\Program Files (x86)\ColladaCGF
2011-06-20 21:33:51 ----D---- C:\Python26
2011-06-20 20:35:09 ----D---- C:\Users\Axel\AppData\Roaming\Blender Foundation
2011-06-20 20:35:05 ----D---- C:\Program Files (x86)\Blender Foundation
2011-06-19 22:49:37 ----D---- C:\ProgramData\PoserFusion
2011-06-19 19:44:13 ----D---- C:\Users\Axel\AppData\Roaming\.minecraft
2011-06-19 19:43:26 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2011-06-17 18:43:49 ----D---- C:\Users\Axel\AppData\Roaming\Filter Forge 2
2011-06-17 18:43:28 ----N---- C:\Windows\SysWOW64\dbghelp-xfw.dll
2011-06-17 18:43:21 ----D---- C:\Program Files (x86)\Filter Forge 2
2011-06-16 14:24:52 ----D---- C:\Program Files (x86)\Common Files\Java
2011-06-16 14:24:40 ----N---- C:\Windows\SysWOW64\javaws.exe
2011-06-16 14:24:40 ----N---- C:\Windows\SysWOW64\javaw.exe
2011-06-16 14:24:40 ----N---- C:\Windows\SysWOW64\java.exe

======List of files/folders modified in the last 1 months======

2011-07-15 22:24:20 ----D---- C:\Windows\Prefetch
2011-07-15 22:24:12 ----D---- C:\Windows\Temp
2011-07-15 21:31:36 ----D---- C:\ProgramData\Kaspersky Lab
2011-07-15 19:54:10 ----D---- C:\Users\Axel\AppData\Roaming\uTorrent
2011-07-15 12:36:26 ----SHD---- C:\Windows\Installer
2011-07-15 12:36:26 ----SHD---- C:\Config.Msi
2011-07-15 12:36:26 ----HD---- C:\ProgramData
2011-07-15 12:29:44 ----RD---- C:\Program Files (x86)
2011-07-15 12:29:44 ----D---- C:\Program Files (x86)\Common Files
2011-07-15 12:25:41 ----D---- C:\Windows\System32
2011-07-15 12:25:13 ----RD---- C:\Program Files
2011-07-15 12:15:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-07-15 12:10:26 ----D---- C:\ProgramData\e-onsoftware
2011-07-15 09:40:04 ----D---- C:\Windows\inf
2011-07-15 00:07:02 ----A---- C:\vraylog.txt
2011-07-14 12:42:12 ----D---- C:\Program Files (x86)\Autodesk
2011-07-13 19:11:01 ----D---- C:\ProgramData\boost_interprocess
2011-07-13 16:56:33 ----AD---- C:\Windows
2011-07-12 15:43:29 ----D---- C:\Users\Axel\AppData\Roaming\Audacity
2011-07-12 15:39:56 ----AD---- C:\ProgramData\TEMP
2011-07-10 00:00:23 ----SHD---- C:\System Volume Information
2011-07-09 14:46:58 ----D---- C:\Users\Axel\AppData\Roaming\Skype
2011-07-09 14:20:06 ----D---- C:\Program Files (x86)\Steam
2011-07-09 11:38:25 ----D---- C:\Users\Axel\AppData\Roaming\skypePM
2011-07-08 20:55:26 ----D---- C:\Program Files (x86)\Thinkbox
2011-07-08 19:04:14 ----D---- C:\Program Files (x86)\Common Files\Adobe AIR
2011-07-08 13:26:31 ----D---- C:\Program Files (x86)\Pixologic
2011-07-08 11:32:28 ----SD---- C:\Mes Projets
2011-07-07 19:38:24 ----D---- C:\Program Files (x86)\Pinnacle
2011-07-07 19:35:27 ----D---- C:\ProgramData\Pinnacle
2011-07-07 19:34:09 ----D---- C:\Windows\SysWOW64
2011-07-04 20:57:29 ----D---- C:\Program Files (x86)\Common Files\microsoft shared
2011-07-04 20:55:52 ----D---- C:\Windows\winsxs
2011-07-02 13:56:36 ----D---- C:\Windows\SysWOW64\drivers
2011-07-02 00:16:40 ----D---- C:\Windows\Minidump
2011-07-02 00:16:40 ----D---- C:\Windows\debug
2011-07-01 16:22:48 ----D---- C:\Users\Axel\AppData\Roaming\vlc
2011-07-01 00:40:55 ----RSD---- C:\Windows\assembly
2011-07-01 00:40:23 ----RSD---- C:\Windows\Fonts
2011-06-29 01:40:07 ----N---- C:\Windows\SysWOW64\PnkBstrB.exe
2011-06-26 20:18:43 ----D---- C:\Users\Axel\AppData\Roaming\e-on software
2011-06-26 13:36:07 ----D---- C:\Users\Axel\AppData\Roaming\Spiral Graphics
2011-06-23 01:39:02 ----D---- C:\Program Files (x86)\Mozilla Firefox
2011-06-19 19:36:38 ----D---- C:\Users\Axel\AppData\Roaming\TS3Client
2011-06-16 14:24:34 ----D---- C:\Program Files (x86)\Java
2011-06-16 14:00:45 ----SD---- C:\Users\Axel\AppData\Roaming\Microsoft
2011-06-16 13:55:24 ----D---- C:\Program Files (x86)\MSECache

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 KL1;kl1; C:\Windows\system32\DRIVERS\kl1.sys []
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys []
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys []
R0 symsnap;Symantec Volume Snap Shot Driver; C:\Windows\system32\DRIVERS\symsnap.sys []
R0 Tpkd;Tpkd; C:\Windows\SysWOW64\drivers\Tpkd.sys []
R1 kl2;kl2; C:\Windows\system32\DRIVERS\kl2.sys []
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys []
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys []
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys []
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 aksdf;aksdf; C:\Windows\system32\DRIVERS\aksdf.sys []
R2 aksfridge;aksfridge; \??\C:\Windows\system32\drivers\aksfridge.sys []
R2 Hardlock;Hardlock; \??\C:\Windows\system32\drivers\hardlock.sys []
R2 multikey;Virtual USB MultiKey; C:\Windows\system32\DRIVERS\multikey.sys []
R2 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys []
R3 akshasp;Aladdin HASP Key; C:\Windows\system32\DRIVERS\akshasp.sys []
R3 aksusb;Aladdin USB Key; C:\Windows\system32\DRIVERS\aksusb.sys []
R3 GEARAspiWDM;GearAspiWDM; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys []
R3 GenericMount;Generic Mount Driver; C:\Windows\system32\DRIVERS\GenericMount.sys []
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys []
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys []
R3 NVENETFD;Pilote du contrôleur de réseau NVIDIA nForce; C:\Windows\system32\DRIVERS\nvm62x64.sys []
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys []
R3 RTL8187B;NETGEAR WG111v3 Wireless-G USB Adapter Win7 Driver; C:\Windows\system32\DRIVERS\wg111v3.sys []
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys [2010-10-07 11856]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys []
R3 VBoxNetFlt;VBoxNetFlt Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 driverhardwarev2x64;driverhardwarev2x64; \??\C:\Program Files (x86)\ma-config.com\Drivers\driverhardwarev2x64.sys [2010-08-30 15872]
S3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys []
S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys []
S3 TIEHDUSB;TI Core USB Driver; C:\Windows\system32\DRIVERS\tiehdusb.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys []
S3 VProEventMonitor;Symantec Event Monitor Driver; C:\Windows\system32\DRIVERS\vproeventmonitor.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys []
S3 WinUSB;WinUSB FSL; C:\Windows\system32\DRIVERS\WinUSB.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 3d-io License Server v2.0;3d-io License Server v2.0; C:\Program Files (x86)\3d-io plugins\licensing_v2\ActiveLockServerV2.exe [2009-12-15 34816]
R2 AfterFLICS v3;AfterFLICS v3; C:\Program Files (x86)\AFLICS\AfterFLICS.exe [2011-04-15 135170]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-06-10 144176]
R2 AVP;Kaspersky Anti-Virus Service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 2011\avp.exe [2010-09-14 352976]
R2 Bonjour Service;Service Bonjour; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-05-18 345376]
R2 DCPFLICS;DCPFLICS; C:\Program Files (x86)\DCPFLICS\DCPFLICS.exe [2007-10-24 139268]
R2 FlowFinder3MonstersAE64;FlowFinder3MonstersAE64; C:\Program Files\GenArts\Monsters-AE64\bin\FlowFinder3MonstersAE64.exe [2010-06-03 751104]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2011-05-25 2275720]
R2 hasplms;HASP License Manager; C:\Windows\system32\hasplms.exe -run []
R2 HoudiniLicenseServer;HoudiniLicenseServer; C:\Windows\system32\sesinetd.exe []
R2 HoudiniServer;HoudiniServer; C:\Windows\system32\hserver.exe []
R2 IPClampService;IP-Clamp Licensing by cebas VISUAL TECHNOLOGY Inc.; C:\Program Files (x86)\cebas\ip-clamp\ipclamp.exe [2007-11-20 45700]
R2 JawsServerAE64;JawsServerAE64; C:\Program Files (x86)\GenArts\Monsters-AE64\bin\JawsServerAE64.exe [2010-06-03 393216]
R2 mi-raysat_3dsmax2011_64;mental ray 3.8 Satellite for Autodesk 3ds Max 2011 64-bit 64-bit; C:\Program Files\Autodesk\3ds Max 2011\mentalimages\satellite\raysat_3dsmax2011_64server.exe [2010-03-10 86016]
R2 mi-raysat_3dsmax2012_64;mental ray 3.9 Satellite for Autodesk 3ds Max 2012 64-bit - English 64-bit; C:\Program Files\Autodesk\3ds Max 2012\mentalimages\satellite\raysat_3dsmax2012_64server.exe [2011-02-22 86016]
R2 nlsX86cc;Nalpeiron Licensing Service; C:\Windows\SysWOW64\nlssrv32.exe [2010-08-10 63488]
R2 Norton Ghost;Norton Ghost; C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe [2009-10-01 4584288]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe []
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2011-03-18 75136]
R2 ProtectionServer;ProtectionServer; C:\PROGRA~2\ALPSER~1\PROTEC~1.EXE [2010-02-03 203968]
R2 RLM-GenArts;RLM-GenArts; C:\Program Files (x86)\GenArts\rlm\rlm.exe [2010-06-03 1540096]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe [2010-10-28 1974080]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 SymSnapService;SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2009-09-21 2963960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe []
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2011-04-08 1431888]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-08-22 1045256]
S3 GenericMount Helper Service;GenericMount Helper Service; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [2009-09-21 1571336]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 iPod Service;Service de l’iPod; C:\Program Files\iPod\bin\iPodService.exe [2010-07-21 654112]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE [2007-09-26 2999664]
S3 maconfservice;Ma-Config Service; C:\Program Files (x86)\ma-config.com\maconfservice.exe [2010-09-12 251248]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
S3 nl_license_manager;nl_license_manager; C:\Program Files (x86)\Next Limit\Licence Manager\nl_license_manager.exe [2010-05-20 167424]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2010-06-25 117264]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-04-19 403240]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 Symantec SymSnap VSS Provider;Symantec SymSnap VSS Provider; C:\Windows\system32\dllhost.exe [2009-07-14 7168]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S4 mi-raysat_3dsmax9_32;mental ray 3.5 Satellite (32-bit); C:\Program Files (x86)\Autodesk\3ds Max 9\mentalray\satellite\raysat_3dsmax9_32server.exe []
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------
16 Juillet 2011 10:46:03

Ok pour Reader.
C'est possible de virer IE plutôt que de le mettre à jour ? :D 
16 Juillet 2011 19:49:43

thedarklord a dit :
> C'est possible de virer IE plutôt que de le mettre à jour ? :D 


Re,

> Non :whistle: .

Analyse du dernier rapport en cours...
17 Juillet 2011 16:01:08

Bonjour,

fais la manip' de ComboFix (merci sUBs) et poste le rapport : Ici

A+
Tom's guide dans le monde
  • Allemagne
  • Italie
  • Irlande
  • Royaume Uni
  • Etats Unis
Suivre Tom's Guide
Inscrivez-vous à la Newsletter
  • ajouter à twitter
  • ajouter à facebook
  • ajouter un flux RSS