oh oh , c'est quoi çà? (résolu)

Bonsoir, je fait un scan journalier avec Malwarebytes et j\'ai la surprise de trouver tout çà dans le rapport. Je fais quoi avec tout ces bricoles : Ne faites pas attention, Windows est dans le \"E\"
Malwarebytes\' Anti-Malware 1.41
Version de la base de données: 3175
Windows 5.1.2600 Service Pack 3

15/11/2009 20:33:03
mbam-log-2009-11-15 (20-33-02).txt

Type de recherche: Examen rapide
Eléments examinés: 115320
Temps écoulé: 9 minute(s), 2 second(s)

Processus mémoire infecté(s): 2
Module(s) mémoire infecté(s): 0
Clé(s) du Registre infectée(s): 3
Valeur(s) du Registre infectée(s): 1
Elément(s) de données du Registre infecté(s): 0
Dossier(s) infecté(s): 1
Fichier(s) infecté(s): 5

Processus mémoire infecté(s):
E:\\Program Files\\Winsudate\\gibusr.exe (Adware.Gibmedia) -> Unloaded process successfully.
E:\\Program Files\\Winsudate\\gibsvc.exe (Adware.Gibmedia) -> Unloaded process successfully.

Module(s) mémoire infecté(s):
(Aucun élément nuisible détecté)

Clé(s) du Registre infectée(s):
HKEY_LOCAL_MACHINE\\SYSTEM\\ControlSet001\\Services\\winsvc (Adware.Gibmedia) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\\SYSTEM\\ControlSet003\\Services\\winsvc (Adware.Gibmedia) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Services\\winsvc (Adware.Gibmedia) -> Quarantined and deleted successfully.

Valeur(s) du Registre infectée(s):
HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run\\winusr (Adware.Gibmedia) -> Quarantined and deleted successfully.

Elément(s) de données du Registre infecté(s):
(Aucun élément nuisible détecté)

Dossier(s) infecté(s):
E:\\Program Files\\Winsudate (Adware.Gibmedia) -> Quarantined and deleted successfully.

Fichier(s) infecté(s):
E:\\Program Files\\Winsudate\\gibusr.exe (Adware.Gibmedia) -> Quarantined and deleted successfully.
E:\\Program Files\\Winsudate\\gibsvc.exe (Adware.Gibmedia) -> Quarantined and deleted successfully.
E:\\Program Files\\Winsudate\\gibcom.dll (Adware.Gibmedia) -> Quarantined and deleted successfully.
E:\\Program Files\\Winsudate\\gibidl.dll (Adware.Gibmedia) -> Quarantined and deleted successfully.
E:\\Program Files\\Winsudate\\gibupt.exe (Adware.Gibmedia) -> Quarantined and deleted successfully.
et de plus, malgré que j\'ai décoché les fichiers cachés et ceux du système d\'explotation dans \"affichage dossiers\" je ne trouve pas de \"Winsudate \"nulle part

MBAM a fait son boulot mais il serait mieux de faire un rapport rsit pour vérifier ce qu\'il en est

• Télécharge Random\'s system information tool (RSIT) et enregistre le sur ton bureau
  
• Double clique sur RSIT.exe pour lancer l\'outil. (il est possible que le .exe ne soit pas visible sur ton ordinateur)
  
• Sous vista ,cliques droit sur le fichier et choisis \"Exécuter en tant qu\'administrateur\".
  
• Clique sur \"continue\" à l\'écran Disclaimer.
  
• Si l\'outil HIjackThis (version à jour) n\'est pas présent ou non détecté sur l\'ordinateur, RSIT le téléchargera et tu devras accepter la licence.
  
• Une fois le scan fini , deux rapports vont être générés, un seul va apparaitre,c\'est le log.txt, le second info.txt sera ouvert mais dans la barre de tache.
  

les deux rapports sont enregistrés sur ton disque dur, à la racine de C:\\

voici les chemins d\'accès=> C:\\RSIT\\log.txt & C:\\RSIT\\info.txt

poste les dans ta réponse sur ce forum dans deux messages distincts,stp .

Rappel: (CTRL+A Pour tout sélectionner , CTRL+C pour copier et CTRL+V pour coller )

Salut,

On peut se rendre compte jllg le changement de détection de Winsudate par MBAM depuis la dernière fois sur le pc de chardon29.

Il supprime maintenant à priori l\'ensemble de la chaîne d\'installation de l\'infection : clés de registre, services, fichiers et dossiers.

Comme quoi les remontées d\'informations ça sert à quelque chose.

On va vérifier tout ça si siannoyl nous poste un RSIT.

Pour ton information siannoyl, tu as attrapé cette infection en acceptant une inscription sur un site infecté, maintenant lequel !?

voil@

Logfile of random\'s system information tool 1.06 (written by random/random)
Run by Utilisateur at 2009-11-15 21:16:27
Microsoft Windows XP Édition familiale Service Pack 3
System drive E: has 10 GB (34%) free of 29 GB
Total RAM: 1022 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:16:45, on 15/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
E:\\WINDOWS\\System32\\smss.exe
E:\\WINDOWS\\system32\\winlogon.exe
E:\\WINDOWS\\system32\\services.exe
E:\\WINDOWS\\system32\\lsass.exe
E:\\WINDOWS\\system32\\Ati2evxx.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\WINDOWS\\system32\\Ati2evxx.exe
E:\\WINDOWS\\Explorer.EXE
E:\\WINDOWS\\system32\\spoolsv.exe
E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe
E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe
E:\\Program Files\\Java\\jre6\\bin\\jusched.exe
E:\\WINDOWS\\system32\\ctfmon.exe
E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe
E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe
E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe
E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\Program Files\\Java\\jre6\\bin\\jqs.exe
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe
E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\Program Files\\Mozilla Firefox\\firefox.exe
E:\\Program Files\\Google\\Gmail Notifier\\gnotify.exe
C:\\Téléchargements\\RSIT.exe
E:\\Program Files\\trend micro\\Utilisateur.exe

R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.wibeez.com/france
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://fr.msn.com/
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyServer = 127.0.0.1:8080
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = local
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Liens
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItBHO.dll
O2 - BHO: G Data WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\\Program Files\\Fichiers communs\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - E:\\Program Files\\Microsoft\\Search Enhancement Pack\\Search Helper\\SearchHelper.dll
O2 - BHO: Programme d\'aide de l\'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\\Program Files\\Google\\GoogleToolbarNotifier\\5.3.4501.1418\\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - E:\\Program Files\\Google\\Google Toolbar\\Component\\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: ZeonIEEventHelper Class - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItIEAddin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O3 - Toolbar: G Data WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - (no file)
O3 - Toolbar: Nuance PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll
O4 - HKLM\\..\\Run: [GDFirewallTray] E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe
O4 - HKLM\\..\\Run: [G DATA AntiVirus Trayapplication] E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe
O4 - HKLM\\..\\Run: [Malwarebytes\' Anti-Malware] \"E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe\" /starttray
O4 - HKLM\\..\\Run: [Nuance OmniPage 17-reminder] \"E:\\Program Files\\Nuance\\OmniPage17\\Ereg\\Ereg.exe\" -r \"E:\\Documents and Settings\\All Users\\Application Data\\ScanSoft\\OmniPage 17\\Ereg\\Ereg.ini\"
O4 - HKLM\\..\\Run: [PPort11reminder] \"E:\\Program Files\\ScanSoft\\PaperPort\\Ereg\\Ereg.exe\" -r \"E:\\Documents and Settings\\All Users\\Application Data\\ScanSoft\\PaperPort\\11\\Config\\Ereg\\Ereg.ini\"
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"E:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"
O4 - HKLM\\..\\Run: [Malwarebytes Anti-Malware (reboot)] \"E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbam.exe\" /runcleanupscript
O4 - HKCU\\..\\Run: [ctfmon.exe] E:\\WINDOWS\\system32\\ctfmon.exe
O4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] E:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')
O4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] E:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')
O4 - Startup: Notification de cadeaux MSN.lnk = E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe
O8 - Extra context menu item: Ajouter au fichier PDF existant - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 - Extra context menu item: Ajouter le contenu des liens sélectionnés à un fichier PDF existant - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
O8 - Extra context menu item: Ajouter le contenu du lien à un fichier PDF existant - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 - Extra context menu item: Créer des fichiers PDF à partir des liens sélectionnés - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
O8 - Extra context menu item: Créer fichier PDF - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 - Extra context menu item: Créer un fichier PDF depuis le contenu du lien - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://E:\\PROGRA~1\\MICROS~2\\Office10\\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra \'Tools\' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\\Program Files\\Messenger\\msmsgs.exe (file missing)
O9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\\Program Files\\Messenger\\msmsgs.exe (file missing)
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1214644255671
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\\WINDOWS\\system32\\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - E:\\WINDOWS\\system32\\ati2sgag.exe
O23 - Service: G Data AntiVirus Proxy (AVKProxy) - G DATA Software AG - E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe
O23 - Service: Planificateur G Data (AVKService) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe
O23 - Service: G Data Gardien (AVKWCtl) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe
O23 - Service: G Data Tuner Service - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVKTuner\\AVKTunerService.exe
O23 - Service: Pare-feu personnel G Data (GDFwSvc) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe
O23 - Service: G Data Scanner (GDScan) - G Data Software AG - E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\\Program Files\\Java\\jre6\\bin\\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - E:\\Program Files\\WinPcap\\rpcapd.exe
O23 - Service: Service G Data Backup - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVKBackup\\AVKBackupService.exe

--
End of file - 10309 bytes

======Scheduled tasks folder======

E:\\WINDOWS\\tasks\\Defraggler Volume E Task.job
E:\\WINDOWS\\tasks\\Maintenance en 1 clic.job
E:\\WINDOWS\\tasks\\Malwarebytes\' Scheduled Scan for Utilisateur.job
E:\\WINDOWS\\tasks\\Malwarebytes\' Scheduled Update for Utilisateur.job

======Registry dump======

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
SnagIt Toolbar Loader - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItBHO.dll [2007-05-16 63048]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{0124123D-61B4-456f-AF86-78C53A0790C5}]
G Data WebFilter - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll [2009-09-07 594504]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - E:\\Program Files\\Fichiers communs\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - E:\\Program Files\\Microsoft\\Search Enhancement Pack\\Search Helper\\SearchHelper.dll [2008-12-04 92504]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d\'aide de l\'Assistant de connexion Windows Live - E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll [2009-09-13 256112]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - E:\\Program Files\\Google\\GoogleToolbarNotifier\\5.3.4501.1418\\swg.dll [2009-09-15 762864]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - E:\\Program Files\\Google\\Google Toolbar\\Component\\fastsearch_B7C5AC242193BB3E.dll [2009-09-13 458736]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9}]
ZeonIEEventHelper Class - E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll [2008-11-19 479232]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - E:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll [2009-10-11 41760]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - E:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll [2009-10-11 73728]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Internet Explorer\\Toolbar]
{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - SnagIt - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItIEAddin.dll [2007-05-16 161352]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll [2009-02-06 1068904]
{0124123D-61B4-456f-AF86-78C53A0790C5} - G Data WebFilter - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll [2009-09-07 594504]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll [2009-09-13 256112]
{3041d03e-fd4b-44e0-b742-2d9b88305f98}
{E3286BF1-E654-42FF-B4A6-5E111731DF6B} - Nuance PDF - E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll [2008-11-19 479232]

[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"GDFirewallTray\"=E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe [2009-08-12 1124424]
\"G DATA AntiVirus Trayapplication\"=E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe [2009-09-07 925768]
\"Malwarebytes\' Anti-Malware\"=E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe [2009-09-10 420176]
\"Nuance OmniPage 17-reminder\"=E:\\Program Files\\Nuance\\OmniPage17\\Ereg\\Ereg.exe [2008-11-03 54560]
\"PPort11reminder\"=E:\\Program Files\\ScanSoft\\PaperPort\\Ereg\\Ereg.exe [2007-08-31 328992]
\"SunJavaUpdateSched\"=E:\\Program Files\\Java\\jre6\\bin\\jusched.exe [2009-10-11 149280]
\"Malwarebytes Anti-Malware (reboot)\"=E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbam.exe [2009-09-10 1312080]

[HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"ctfmon.exe\"=E:\\WINDOWS\\system32\\ctfmon.exe [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Acronis Scheduler2 Service]
E:\\Program Files\\Fichiers communs\\Acronis\\Schedule2\\schedhlp.exe [2007-10-07 140568]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\AcronisTimounterMonitor]
E:\\Program Files\\Acronis\\TrueImageHome\\TimounterMonitor.exe [2007-10-07 904880]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Adobe ARM]
E:\\Program Files\\Fichiers communs\\Adobe\\ARM\\1.0\\AdobeARM.exe [2009-09-04 935288]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
E:\\Program Files\\Fichiers communs\\Ahead\\Lib\\NMBgMonitor.exe [2007-03-12 153136]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Clavier+]
E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\Clavier.exe [2007-10-21 88576]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\CTFMON.EXE]
E:\\WINDOWS\\system32\\ctfmon.exe [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\EPSON Stylus DX4400 Series]
E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\E_FATICAE.EXE [2007-03-01 180736]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\EverioService]
E:\\Program Files\\CyberLink\\PCM4Everio\\EverioService.exe [2006-11-22 151552]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\H/PC Connection Agent]
E:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe [2006-06-26 1211176]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\IndexSearch]
E:\\Program Files\\ScanSoft\\PaperPort\\IndexSearch.exe [2008-05-10 46368]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Kernel and Hardware Abstraction Layer]
E:\\WINDOWS\\KHALMNPR.EXE [2008-02-29 76304]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Logitech Hardware Abstraction Layer]
E:\\WINDOWS\\KHALMNPR.EXE [2008-02-29 76304]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Malwarebytes Anti-Malware (reboot)]
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbam.exe [2009-09-10 1312080]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\PaperPort PTD]
E:\\Program Files\\ScanSoft\\PaperPort\\pptd40nt.exe [2008-05-10 29984]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\PDF5 Registry Controller]
E:\\Program Files\\Nuance\\PDF Create 5\\RegistryController.exe [2008-12-13 58656]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\PDFHook]
E:\\Program Files\\Nuance\\PDF Create 5\\pdfcreate5hook.exe [2009-04-10 1277952]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\RadioSure]
[]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Sony Ericsson PC Suite]
E:\\Program Files\\Sony Ericsson\\Sony Ericsson PC Suite\\SEPCSuite.exe [2008-07-10 397312]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\SoundMan]
E:\\WINDOWS\\SOUNDMAN.EXE [2006-08-02 577536]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\SSBkgdUpdate]
E:\\Program Files\\Fichiers communs\\Scansoft Shared\\SSBkgdUpdate\\SSBkgdupdate.exe [2006-10-25 210472]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\SunJavaUpdateSched]
E:\\Program Files\\Java\\jre6\\bin\\jusched.exe [2009-10-11 149280]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\swg]
E:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe [2008-09-06 68856]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\TrueImageMonitor.exe]
E:\\Program Files\\Acronis\\TrueImageHome\\TrueImageMonitor.exe [2007-10-07 2620336]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupfolder\\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk]
E:\\PROGRA~1\\FICHIE~1\\Adobe\\CALIBR~1\\ADOBEG~1.EXE [2000-08-24 110592]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupfolder\\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]
E:\\PROGRA~1\\MICROS~2\\Office10\\OSA.EXE [2001-02-13 83360]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupfolder\\E:^Documents and Settings^Utilisateur^Menu Démarrer^Programmes^Démarrage^ERUNT AutoBackup.lnk]
[]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupfolder\\E:^Documents and Settings^Utilisateur^Menu Démarrer^Programmes^Démarrage^GigaTribe.lnk]
[]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\services]
\"ERSvc\"=2
\"WMPNetworkSvc\"=3
\"WLSetupSvc\"=3
\"usnjsvc\"=3
\"RichVideo\"=2
\"PD91Engine\"=3
\"PD91Agent\"=3
\"NMIndexingService\"=3
\"NBService\"=3
\"gusvc\"=3
\"TuneUp.ProgramStatisticsSvc\"=2
\"TuneUp.Defrag\"=3
\"TryAndDecideService\"=2
\"Service de sauvegarde G DATA\"=3
\"SeaPort\"=2
\"FLEXnet Licensing Service\"=3
\"AdobeActiveFileMonitor7.0\"=3
\"AcrSch2Svc\"=2

E:\\Documents and Settings\\Utilisateur\\Menu Démarrer\\Programmes\\Démarrage
Notification de cadeaux MSN.lnk - E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\AtiExtEvent]
E:\\WINDOWS\\system32\\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\\WINDOWS\\system32\\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Lsa]
\"authentication packages\"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\SafeBoot\\network\\nm]

[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\SafeBoot\\network\\nm.sys]

[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System]
\"dontdisplaylastusername\"=0
\"legalnoticecaption\"=
\"legalnoticetext\"=
\"undockwithoutlogon\"=1
\"ShutdownWithoutLogon\"=0

[HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\explorer]
\"NoDriveAutoRun\"=67108863
\"HonorAutoRunSetting\"=1
\"NoDrives\"=0

[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\explorer]
\"HonorAutoRunSetting\"=
\"NoDriveAutoRun\"=
\"NoDriveTypeAutoRun\"=
\"NoDrives\"=

[HKEY_LOCAL_MACHINE\\system\\currentcontrolset\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\authorizedapplications\\list]
\"%windir%\\system32\\sessmgr.exe\"=\"%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019\"
\"%windir%\\Network Diagnostic\\xpnetdiag.exe\"=\"%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000\"
\"E:\\Program Files\\TeamViewer3\\TeamViewer.exe\"=\"E:\\Program Files\\TeamViewer3\\TeamViewer.exe:*:Enabled:Application de pilotage à distance TeamViewer\"
\"E:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager\"
\"E:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager\"
\"E:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application\"
\"E:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\"=\"E:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger\"

[HKEY_LOCAL_MACHINE\\system\\currentcontrolset\\services\\sharedaccess\\parameters\\firewallpolicy\\domainprofile\\authorizedapplications\\list]
\"%windir%\\system32\\sessmgr.exe\"=\"%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019\"
\"%windir%\\Network Diagnostic\\xpnetdiag.exe\"=\"%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000\"
\"E:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager\"
\"E:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager\"
\"E:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application\"
\"I:\\malware bytes\\MalwarebytesPortable\\App\\Malwarebytes\\mbam.exe\"=\"I:\\malware bytes\\MalwarebytesPortable\\App\\Malwarebytes\\mbam.exe:*:Enabled:Malwarebytes\"
\"E:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\"=\"E:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger\"

======List of files/folders created in the last 1 months======

2009-11-14 22:59:08 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\dvdcss
2009-11-14 22:57:11 ----D---- E:\\Program Files\\VideoLAN
2009-11-14 20:34:56 ----A---- E:\\Program Files\\rdmp3faq.txt
2009-11-14 20:34:56 ----A---- E:\\Program Files\\RaMp3Cfg.exe
2009-11-14 20:30:39 ----A---- E:\\WINDOWS\\UNWISE.EXE
2009-11-14 09:49:36 ----A---- E:\\WINDOWS\\system32\\javaws.exe
2009-11-14 09:49:36 ----A---- E:\\WINDOWS\\system32\\javaw.exe
2009-11-14 09:49:36 ----A---- E:\\WINDOWS\\system32\\java.exe
2009-11-14 09:47:28 ----D---- E:\\Program Files\\WinPcap
2009-11-14 09:47:08 ----D---- E:\\Program Files\\TubeMaster++
2009-11-08 22:02:10 ----SHD---- E:\\#GDATA.Trash.Store#
2009-11-06 21:58:16 ----D---- E:\\Program Files\\Fichiers communs\\ODBC
2009-11-06 21:07:25 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\FLEXnet
2009-11-06 21:06:58 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\Zeon
2009-11-06 21:06:50 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\ScanSoft
2009-11-06 20:51:50 ----A---- E:\\WINDOWS\\maxlink.ini
2009-11-06 20:51:29 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\.oit
2009-11-06 20:51:20 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\InstallShield
2009-11-06 20:49:33 ----D---- E:\\Program Files\\Fichiers communs\\ScanSoft Shared
2009-11-06 20:49:30 ----D---- E:\\Program Files\\ScanSoft
2009-11-06 20:47:04 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\Nuance
2009-11-06 20:46:37 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\zeon
2009-11-06 20:46:25 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\Macrovision
2009-11-06 20:45:11 ----AD---- E:\\Documents and Settings\\All Users\\Application Data\\TEMP
2009-11-06 20:45:05 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\Nuance
2009-11-06 20:44:04 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\ScanSoft
2009-11-06 20:42:09 ----D---- E:\\Program Files\\Nuance
2009-11-06 20:42:09 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\FLEXnet
2009-11-02 20:43:00 ----D---- E:\\Program Files\\Dictionnaire le Littré 2.0
2009-10-28 19:48:27 ----D---- E:\\Program Files\\nLite
2009-10-26 18:47:21 ----D---- E:\\Program Files\\QuickPar
2009-10-26 14:40:21 ----D---- E:\\WINDOWS\\setup.pss
2009-10-26 14:39:54 ----D---- E:\\WINDOWS\\setupupd
2009-10-24 08:15:44 ----D---- E:\\Program Files\\Lavalys

======List of files/folders modified in the last 1 months======

2009-11-15 21:16:38 ----D---- E:\\WINDOWS\\temp
2009-11-15 21:16:30 ----D---- E:\\Program Files\\trend micro
2009-11-15 21:16:11 ----D---- E:\\WINDOWS\\Prefetch
2009-11-15 20:38:30 ----D---- E:\\WINDOWS\\system32
2009-11-15 20:38:30 ----A---- E:\\WINDOWS\\system32\\PerfStringBackup.INI
2009-11-15 20:36:01 ----D---- E:\\Program Files\\Mozilla Firefox
2009-11-15 20:34:32 ----D---- E:\\WINDOWS
2009-11-15 20:33:36 ----A---- E:\\WINDOWS\\SchedLgU.Txt
2009-11-15 20:33:02 ----D---- E:\\Program Files
2009-11-15 16:15:13 ----SHD---- E:\\WINDOWS\\Installer
2009-11-15 16:15:13 ----D---- E:\\Config.Msi
2009-11-15 16:15:05 ----D---- E:\\Program Files\\Windows Media Player
2009-11-15 16:12:07 ----D---- E:\\WINDOWS\\system32\\CatRoot2
2009-11-14 23:34:37 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\vlc
2009-11-14 20:24:11 ----D---- E:\\WINDOWS\\Help
2009-11-14 20:12:42 ----HD---- E:\\WINDOWS\\inf
2009-11-14 19:53:50 ----A---- E:\\WINDOWS\\NeroDigital.ini
2009-11-14 09:49:01 ----D---- E:\\Program Files\\Java
2009-11-14 09:47:29 ----D---- E:\\WINDOWS\\system32\\drivers
2009-11-08 23:07:34 ----A---- E:\\WINDOWS\\win.ini
2009-11-08 23:07:34 ----A---- E:\\WINDOWS\\system.ini
2009-11-08 22:19:12 ----SD---- E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft
2009-11-08 22:07:26 ----D---- E:\\WINDOWS\\system32\\Restore
2009-11-08 22:07:25 ----SHD---- E:\\System Volume Information
2009-11-08 22:02:10 ----D---- E:\\WINDOWS\\Downloaded Installations
2009-11-06 21:58:16 ----D---- E:\\Program Files\\Fichiers communs
2009-11-06 20:49:33 ----SD---- E:\\WINDOWS\\Downloaded Program Files
2009-11-06 20:44:49 ----D---- E:\\WINDOWS\\WinSxS
2009-11-02 18:22:30 ----SD---- E:\\Documents and Settings\\All Users\\Application Data\\Microsoft
2009-10-30 11:43:35 ----HD---- E:\\Program Files\\InstallShield Installation Information
2009-10-30 11:26:15 ----SD---- E:\\WINDOWS\\Tasks
2009-10-26 14:40:23 ----A---- E:\\WINDOWS\\UPGRADE.TXT
2009-10-26 08:37:38 ----RSHDC---- E:\\WINDOWS\\system32\\dllcache
2009-10-23 06:24:15 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\Adobe
2009-10-22 16:36:53 ----D---- E:\\Program Files\\Fichiers communs\\Adobe
2009-10-17 13:21:19 ----A---- E:\\WINDOWS\\Kyor.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 GRD;G Data Rootkit Detector Driver; \\??\\E:\\WINDOWS\\system32\\drivers\\GRD.sys []
R1 InCDPass;InCDPass; E:\\WINDOWS\\system32\\drivers\\InCDPass.sys [2007-03-12 37040]
R1 incdrm;InCD Reader; E:\\WINDOWS\\system32\\drivers\\InCDRm.sys [2007-03-12 38576]
R1 intelppm;Pilote de processeur Intel; E:\\WINDOWS\\system32\\DRIVERS\\intelppm.sys [2008-04-13 40576]
R1 PQNTDrv;PQNTDrv; E:\\WINDOWS\\system32\\drivers\\PQNTDrv.sys [2002-09-16 4228]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; E:\\WINDOWS\\System32\\drivers\\ws2ifsl.sys [2004-08-05 12032]
R2 GDTdiInterceptor;GDTdiInterceptor; \\??\\E:\\WINDOWS\\system32\\drivers\\GDTdiIcpt.sys []
R2 tifsfilter;Acronis True Image FS Filter; E:\\WINDOWS\\system32\\DRIVERS\\tifsfilt.sys [2008-09-05 44384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); E:\\WINDOWS\\system32\\drivers\\ALCXWDM.SYS [2006-11-06 4024832]
R3 ati2mtag;ati2mtag; E:\\WINDOWS\\system32\\DRIVERS\\ati2mtag.sys [2006-05-03 1540608]
R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; E:\\WINDOWS\\system32\\DRIVERS\\fetnd5.sys [2001-08-17 27165]
R3 GDMnIcpt;GDMnIcpt; \\??\\E:\\WINDOWS\\system32\\drivers\\MiniIcpt.sys []
R3 GearAspiWDM;GEARAspiWDM; E:\\WINDOWS\\System32\\drivers\\GEARAspiWDM.sys [2008-02-22 16168]
R3 HookCentre;HookCentre; \\??\\E:\\WINDOWS\\system32\\drivers\\HookCentre.sys []
R3 MBAMProtector;MBAMProtector; \\??\\E:\\WINDOWS\\system32\\drivers\\mbam.sys []
R3 usbehci;Pilote miniport de contrôleur d\'hôte amélioré Microsoft USB 2.0; E:\\WINDOWS\\system32\\DRIVERS\\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; E:\\WINDOWS\\system32\\DRIVERS\\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; E:\\WINDOWS\\system32\\DRIVERS\\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; E:\\WINDOWS\\system32\\DRIVERS\\usbuhci.sys [2008-04-13 20608]
R3 W8335XP;Marvell Libertas 802.11b/g Driver for Windows XP (8335); E:\\WINDOWS\\system32\\DRIVERS\\MRV8335XP.sys [2006-08-15 265984]
R4 InCDfs;InCD File System; E:\\WINDOWS\\system32\\drivers\\InCDFs.sys [2007-03-12 118064]
S3 CCDECODE;Décodeur sous-titre fermé; E:\\WINDOWS\\system32\\DRIVERS\\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \\??\\G:\\INSTALL\\GMSIPCI.SYS []
S3 hidusb;Pilote de classe HID Microsoft; E:\\WINDOWS\\system32\\DRIVERS\\hidusb.sys [2008-04-13 10368]
S3 L8042Kbd;Logitech SetPoint Keyboard Driver; E:\\WINDOWS\\system32\\DRIVERS\\L8042Kbd.sys [2008-02-29 20240]
S3 L8042mou;SetPoint PS/2 Mouse Filter Driver; E:\\WINDOWS\\system32\\DRIVERS\\L8042mou.Sys [2008-02-29 63120]
S3 LMouKE;SetPoint Mouse Filter Driver; E:\\WINDOWS\\system32\\DRIVERS\\LMouKE.Sys [2008-02-29 79120]
S3 mouhid;Pilote HID de souris; E:\\WINDOWS\\system32\\DRIVERS\\mouhid.sys [2004-08-05 12288]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; E:\\WINDOWS\\system32\\drivers\\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; E:\\WINDOWS\\system32\\DRIVERS\\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; E:\\WINDOWS\\system32\\DRIVERS\\NdisIP.sys [2008-04-13 10880]
S3 nm;Pilote du Moniteur réseau; E:\\WINDOWS\\system32\\DRIVERS\\NMnt.sys [2008-04-13 40320]
S3 NPF;NetGroup Packet Filter Driver; E:\\WINDOWS\\system32\\drivers\\npf.sys [2007-11-06 34064]
S3 ovt530;Hercules Webcam Deluxe; E:\\WINDOWS\\System32\\Drivers\\ov530vid.sys [2005-03-15 161792]
S3 s117bus;Sony Ericsson Device 117 driver (WDM); E:\\WINDOWS\\system32\\DRIVERS\\s117bus.sys [2007-06-25 82984]
S3 s117mdfl;Sony Ericsson Device 117 USB WMC Modem Filter; E:\\WINDOWS\\system32\\DRIVERS\\s117mdfl.sys [2007-06-25 14888]
S3 s117mdm;Sony Ericsson Device 117 USB WMC Modem Driver; E:\\WINDOWS\\system32\\DRIVERS\\s117mdm.sys [2007-06-25 108456]
S3 s117mgmt;Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM); E:\\WINDOWS\\system32\\DRIVERS\\s117mgmt.sys [2007-06-25 100264]
S3 s117nd5;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS); E:\\WINDOWS\\system32\\DRIVERS\\s117nd5.sys [2007-06-25 22952]
S3 s117obex;Sony Ericsson Device 117 USB WMC OBEX Interface; E:\\WINDOWS\\system32\\DRIVERS\\s117obex.sys [2007-06-25 98344]
S3 s117unic;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM); E:\\WINDOWS\\system32\\DRIVERS\\s117unic.sys [2007-06-25 98856]
S3 SLIP;Détrameur décalage BDA; E:\\WINDOWS\\system32\\DRIVERS\\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; E:\\WINDOWS\\system32\\DRIVERS\\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Pilote USB audio (WDM); E:\\WINDOWS\\system32\\drivers\\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; E:\\WINDOWS\\system32\\DRIVERS\\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d\'imprimantes USB Microsoft; E:\\WINDOWS\\system32\\DRIVERS\\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; E:\\WINDOWS\\system32\\DRIVERS\\usbscan.sys [2008-04-13 15104]
S3 wceusbsh;Windows CE USB Serial Host Driver; E:\\WINDOWS\\system32\\DRIVERS\\wceusbsh.sys [2004-12-30 104576]
S3 WpdUsb;WpdUsb; E:\\WINDOWS\\system32\\DRIVERS\\wpdusb.sys [2004-08-11 18944]
S3 WSTCODEC;Codec Teletext standard; E:\\WINDOWS\\system32\\DRIVERS\\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\\WINDOWS\\system32\\DRIVERS\\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; E:\\WINDOWS\\system32\\drivers\\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; E:\\WINDOWS\\system32\\Ati2evxx.exe [2006-05-03 413696]
R2 AVKProxy;G Data AntiVirus Proxy; E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe [2009-08-12 1046088]
R2 AVKService;Planificateur G Data; E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe [2009-08-12 397896]
R2 AVKWCtl;G Data Gardien; E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe [2009-07-30 1244760]
R2 JavaQuickStarterService;Java Quick Starter; E:\\Program Files\\Java\\jre6\\bin\\jqs.exe [2009-10-11 153376]
R2 MBAMService;MBAMService; E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe [2009-09-10 269648]
R2 UMWdf;Windows User Mode Driver Framework; E:\\WINDOWS\\system32\\wdfmgr.exe [2004-08-11 38912]
R2 UxTuneUp;TuneUp Extension de thème; E:\\WINDOWS\\System32\\svchost.exe [2008-04-13 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\\WINDOWS\\system32\\svchost.exe [2008-04-13 14336]
R3 GDFwSvc;Pare-feu personnel G Data; E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe [2009-08-03 1538352]
R3 GDScan;G Data Scanner; E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe [2009-07-27 300616]
S2 ATI Smart;ATI Smart; E:\\WINDOWS\\system32\\ati2sgag.exe [2006-05-03 520192]
S3 aspnet_state;ASP.NET State Service; E:\\WINDOWS\\Microsoft.NET\\Framework\\v2.0.50727\\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\\WINDOWS\\Microsoft.NET\\Framework\\v2.0.50727\\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.0\\WPF\\PresentationFontCache.exe [2008-07-29 46104]
S3 G Data Tuner Service;G Data Tuner Service; E:\\Program Files\\G DATA\\TotalCare\\AVKTuner\\AVKTunerService.exe [2009-04-20 918600]
S3 idsvc;Windows CardSpace; E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.0\\Windows Communication Foundation\\infocard.exe [2008-07-29 881664]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); E:\\Program Files\\WinPcap\\rpcapd.exe [2007-11-06 92792]
S3 Service G Data Backup;Service G Data Backup; E:\\Program Files\\G DATA\\TotalCare\\AVKBackup\\AVKBackupService.exe [2009-07-09 863304]
S4 AcrSch2Svc;Acronis Scheduler2 Service; E:\\Program Files\\Fichiers communs\\Acronis\\Schedule2\\schedul2.exe [2007-10-07 427288]
S4 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7; E:\\Program Files\\Adobe\\Photoshop Elements 7.0\\PhotoshopElementsFileAgent.exe [2008-09-16 163840]
S4 FLEXnet Licensing Service;FLEXnet Licensing Service; E:\\Program Files\\Fichiers communs\\Macrovision Shared\\FLEXnet Publisher\\FNPLicensingService.exe [2009-04-18 651720]
S4 gusvc;Google Software Updater; E:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe [2009-05-03 182768]
S4 InCDsrv;InCD Helper; E:\\Program Files\\Nero\\Nero 7\\InCD\\InCDsrv.exe [2007-03-12 931376]
S4 NBService;NBService; E:\\Program Files\\Nero\\Nero 7\\Nero BackItUp\\NBService.exe [2007-03-14 779824]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.0\\Windows Communication Foundation\\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; E:\\Program Files\\Fichiers communs\\Ahead\\Lib\\NMIndexingService.exe [2007-03-12 271920]
S4 SeaPort;SeaPort; E:\\Program Files\\Microsoft\\Search Enhancement Pack\\SeaPort\\SeaPort.exe [2009-01-14 226656]
S4 TryAndDecideService;Acronis Try And Decide Service; E:\\Program Files\\Fichiers communs\\Acronis\\Fomatik\\TrueImageTryStartService.exe [2007-10-08 493200]
S4 TuneUp.Defrag;TuneUp Drive Defrag Service; E:\\WINDOWS\\System32\\TuneUpDefragService.exe [2009-08-10 362240]
S4 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; E:\\WINDOWS\\System32\\TUProgSt.exe [2009-08-10 603904]
S4 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; E:\\Program Files\\Windows Media Player\\WMPNetwk.exe [2006-11-03 918016]

-----------------EOF-----------------
et le 2ème:
info.txt logfile of random\'s system information tool 1.06 2009-10-13 08:30:38

======Uninstall list======

-->E:\\Program Files\\Nero\\Nero 7\\\\nero\\uninstall\\UNNERO.exe /UNINSTALL
-->E:\\WINDOWS\\NuNInst.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroBackItUp.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroMediaHome.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroShowTime.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroVision.exe /UNINSTALL
-->E:\\WINDOWS\\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\\WINDOWS\\INF\\PCHealth.inf
Acronis True Image Home-->MsiExec.exe /X{E5343B27-55DF-40BD-9FCF-A643C1331E8A}
Adobe Flash Player 10 ActiveX-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_plugin.exe
Adobe Photoshop 7.0-->E:\\WINDOWS\\ISUN040C.EXE -f\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.isu\" -c\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.dll\"
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->E:\\Program Files\\WinRAR\\uninstall.exe
Ask Toolbar-->\"E:\\Program Files\\AskBarDis\\unins000.exe\"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->E:\\Program Files\\ATI Technologies\\UninstallAll\\AtiCimUn.exe
ATI Display Driver-->rundll32 E:\\WINDOWS\\system32\\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avanquest update-->E:\\Program Files\\InstallShield Installation Information\\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\\Setup.exe -runfromtemp -l0x0009 -removeonly
AVIcodec (remove only)-->\"E:\\Program Files\\AVIcodec\\uninst.exe\"
AviSynth 2.5-->\"E:\\Program Files\\AviSynth 2.5\\Uninstall.exe\"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\\SETUP.EXE\" -l0x40c UNINST
CCleaner (remove only)-->\"E:\\Program Files\\CCleaner\\uninst.exe\"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clavier+ 10.6.1-->\"E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\unins000.exe\"
CursorXP-->E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Themes\\CurXPUtil.exe -u
CX4300_5500_DX4400 Manuel-->E:\\Program Files\\EPSON\\TPMANUAL\\CX4300_5500_DX4400\\FRA\\USE_G\\DOCUNINS.EXE
Defraggler-->\"E:\\Program Files\\Defraggler\\uninst.exe\"
Digital Photo Navigator 1.5-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}\\setup.EXE\" -l0x9
DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
EPSON Attach To Email-->E:\\Program Files\\Fichiers communs\\InstallShield\\Driver\\8\\Intel 32\\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{67EDD823-135A-4D59-87BD-950616D6E857}\\SETUP.EXE\" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\\SETUP.EXE\" -l0x40c UNINST
EPSON File Manager-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\\Setup.exe\" -l0x40c UNINST
EPSON Logiciel imprimante-->E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\\Setup.exe\" -l0x40c -u
EPSON Scan-->E:\\Program Files\\epson\\escndv\\setup\\setup.exe /r
G Data TotalCare-->MsiExec.exe /I{C8D55041-A13C-4620-8DF4-9C5A9C16908D}
Glary Utilities Pro 2.16.0.758-->\"E:\\Program Files\\Glary Utilities\\unins000.exe\"
Google Gmail Notifier-->\"E:\\Program Files\\Google\\Gmail Notifier\\UninstallGmail.exe\"
Google Toolbar for Internet Explorer-->\"E:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarManager_E582EA556D8DE101.exe\" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules Deluxe Webcam Drivers-->E:\\Program Files\\InstallShield Installation Information\\{B77C6FD0-770A-489A-81CA-1BFEEF7CEA85}\\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->\"E:\\Program Files\\trend micro\\HijackThis.exe\" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=\"\"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=\"\"
Installation Windows Live-->E:\\Program Files\\Windows Live\\Installer\\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Lecteur Windows Media 11-->\"E:\\Program Files\\Windows Media Player\\Setup_wm.exe\" /Uninstall
Malwarebytes\' Anti-Malware-->\"E:\\Program Files\\Malwarebytes\' Anti-Malware\\unins000.exe\"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.5\\Microsoft .NET Framework 3.5 SP1\\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 4.0-->MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->\"E:\\WINDOWS\\ie8updates\\KB971961-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->\"E:\\WINDOWS\\ie8updates\\KB972260-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows XP (KB923789)-->E:\\WINDOWS\\system32\\MacroMed\\Flash\\genuinst.exe E:\\WINDOWS\\system32\\MacroMed\\Flash\\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB972636)-->\"E:\\WINDOWS\\ie8updates\\KB972636-IE8\\spuninst\\spuninst.exe\"
Mozilla Firefox (3.5.3)-->E:\\Program Files\\Mozilla Firefox\\uninstall\\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 7 Ultra Edition-->MsiExec.exe /I{43FFE159-3199-4188-A1CD-629166AD1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuf - Kit de connexion-->E:\\Program Files\\Neuf\\Kit\\uninstall.exe
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerCinema NE for Everio-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{39CEE1F2-12B6-4C50-9131-04BFCA110578}\\setup.exe\" -uninstall
PowerProducer-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\\setup.exe\" -uninstall
PowerQuest PartitionMagic 8.0-->E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\Driver\\7\\INTEL3~1\\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Realtek AC\'97 Audio-->Alcrmv.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SIW version 2009-02-24-->\"E:\\Program Files\\SIW\\unins000.exe\"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
Sony Ericsson PC Suite 4.010.00-->E:\\Program Files\\InstallShield Installation Information\\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\\Setup.exe -runfromtemp -l0x040c -removeonly
TeamViewer 3-->E:\\Program Files\\TeamViewer3\\uninstall.exe
TerraExplorer-->E:\\Program Files\\Skyline\\TerraExplorer\\Setup.exe [OP]/U
Total Video Converter 3.12 080330-->\"E:\\Program Files\\Total Video Converter\\unins000.exe\"
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=\"\"
ViaMichelin Navigation PND-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\11\\00\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\\setup.exe\" -l0x40c -removeonly
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual C++ CRT 9.0-->MsiExec.exe /I{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}
Windows Internet Explorer 8-->\"E:\\WINDOWS\\ie8\\spuninst\\spuninst.exe\"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->\"E:\\Program Files\\Windows Media Player\\wmsetsdk.exe\" /UninstallAll
Windows XP Service Pack 3-->\"E:\\WINDOWS\\$NtServicePackUninstall$\\spuninst\\spuninst.exe\"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: G Data TotalCare 2010
FW: Pare-feu personnel G Data

======System event log======

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service G Data Scanner est entré dans l\'état : en cours d\'exécution.

Record Number: 124382
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l\'état : en cours d\'exécution.

Record Number: 124381
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 124380
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service G Data Scanner.

Record Number: 124379
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l\'état : en cours d\'exécution.

Record Number: 124378
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service démarré

Record Number: 5152
Source Name: GDFwSvc
Time Written: 20090430081418.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5151
Source Name: SecurityCenter
Time Written: 20090430081411.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message:
Record Number: 5150
Source Name: SeaPort
Time Written: 20090430081402.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service started

Record Number: 5149
Source Name: AVKProxy
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 105
Message: The service was started.

Record Number: 5148
Source Name: ATI Smart
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

======Environment variables======

\"ComSpec\"=%SystemRoot%\\system32\\cmd.exe
\"Path\"=%SystemRoot%\\system32;%SystemRoot%;%SystemRoot%\\system32\\WBEM
\"windir\"=%SystemRoot%
\"FP_NO_HOST_CHECK\"=NO
\"OS\"=Windows_NT
\"PROCESSOR_ARCHITECTURE\"=x86
\"PROCESSOR_LEVEL\"=15
\"PROCESSOR_IDENTIFIER\"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
\"PROCESSOR_REVISION\"=0209
\"NUMBER_OF_PROCESSORS\"=2
\"PATHEXT\"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
\"TEMP\"=%SystemRoot%\\TEMP
\"TMP\"=%SystemRoot%\\TEMP

-----------------EOF-----------------
info.txt logfile of random\'s system information tool 1.06 2009-10-13 08:30:38

======Uninstall list======

-->E:\\Program Files\\Nero\\Nero 7\\\\nero\\uninstall\\UNNERO.exe /UNINSTALL
-->E:\\WINDOWS\\NuNInst.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroBackItUp.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroMediaHome.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroShowTime.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroVision.exe /UNINSTALL
-->E:\\WINDOWS\\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\\WINDOWS\\INF\\PCHealth.inf
Acronis True Image Home-->MsiExec.exe /X{E5343B27-55DF-40BD-9FCF-A643C1331E8A}
Adobe Flash Player 10 ActiveX-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_plugin.exe
Adobe Photoshop 7.0-->E:\\WINDOWS\\ISUN040C.EXE -f\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.isu\" -c\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.dll\"
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->E:\\Program Files\\WinRAR\\uninstall.exe
Ask Toolbar-->\"E:\\Program Files\\AskBarDis\\unins000.exe\"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->E:\\Program Files\\ATI Technologies\\UninstallAll\\AtiCimUn.exe
ATI Display Driver-->rundll32 E:\\WINDOWS\\system32\\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avanquest update-->E:\\Program Files\\InstallShield Installation Information\\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\\Setup.exe -runfromtemp -l0x0009 -removeonly
AVIcodec (remove only)-->\"E:\\Program Files\\AVIcodec\\uninst.exe\"
AviSynth 2.5-->\"E:\\Program Files\\AviSynth 2.5\\Uninstall.exe\"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\\SETUP.EXE\" -l0x40c UNINST
CCleaner (remove only)-->\"E:\\Program Files\\CCleaner\\uninst.exe\"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clavier+ 10.6.1-->\"E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\unins000.exe\"
CursorXP-->E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Themes\\CurXPUtil.exe -u
CX4300_5500_DX4400 Manuel-->E:\\Program Files\\EPSON\\TPMANUAL\\CX4300_5500_DX4400\\FRA\\USE_G\\DOCUNINS.EXE
Defraggler-->\"E:\\Program Files\\Defraggler\\uninst.exe\"
Digital Photo Navigator 1.5-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}\\setup.EXE\" -l0x9
DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
EPSON Attach To Email-->E:\\Program Files\\Fichiers communs\\InstallShield\\Driver\\8\\Intel 32\\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{67EDD823-135A-4D59-87BD-950616D6E857}\\SETUP.EXE\" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\\SETUP.EXE\" -l0x40c UNINST
EPSON File Manager-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\\Setup.exe\" -l0x40c UNINST
EPSON Logiciel imprimante-->E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\\Setup.exe\" -l0x40c -u
EPSON Scan-->E:\\Program Files\\epson\\escndv\\setup\\setup.exe /r
G Data TotalCare-->MsiExec.exe /I{C8D55041-A13C-4620-8DF4-9C5A9C16908D}
Glary Utilities Pro 2.16.0.758-->\"E:\\Program Files\\Glary Utilities\\unins000.exe\"
Google Gmail Notifier-->\"E:\\Program Files\\Google\\Gmail Notifier\\UninstallGmail.exe\"
Google Toolbar for Internet Explorer-->\"E:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarManager_E582EA556D8DE101.exe\" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules Deluxe Webcam Drivers-->E:\\Program Files\\InstallShield Installation Information\\{B77C6FD0-770A-489A-81CA-1BFEEF7CEA85}\\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->\"E:\\Program Files\\trend micro\\HijackThis.exe\" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=\"\"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=\"\"
Installation Windows Live-->E:\\Program Files\\Windows Live\\Installer\\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Lecteur Windows Media 11-->\"E:\\Program Files\\Windows Media Player\\Setup_wm.exe\" /Uninstall
Malwarebytes\' Anti-Malware-->\"E:\\Program Files\\Malwarebytes\' Anti-Malware\\unins000.exe\"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.5\\Microsoft .NET Framework 3.5 SP1\\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 4.0-->MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->\"E:\\WINDOWS\\ie8updates\\KB971961-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->\"E:\\WINDOWS\\ie8updates\\KB972260-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows XP (KB923789)-->E:\\WINDOWS\\system32\\MacroMed\\Flash\\genuinst.exe E:\\WINDOWS\\system32\\MacroMed\\Flash\\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB972636)-->\"E:\\WINDOWS\\ie8updates\\KB972636-IE8\\spuninst\\spuninst.exe\"
Mozilla Firefox (3.5.3)-->E:\\Program Files\\Mozilla Firefox\\uninstall\\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 7 Ultra Edition-->MsiExec.exe /I{43FFE159-3199-4188-A1CD-629166AD1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuf - Kit de connexion-->E:\\Program Files\\Neuf\\Kit\\uninstall.exe
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerCinema NE for Everio-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{39CEE1F2-12B6-4C50-9131-04BFCA110578}\\setup.exe\" -uninstall
PowerProducer-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\\setup.exe\" -uninstall
PowerQuest PartitionMagic 8.0-->E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\Driver\\7\\INTEL3~1\\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Realtek AC\'97 Audio-->Alcrmv.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SIW version 2009-02-24-->\"E:\\Program Files\\SIW\\unins000.exe\"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
Sony Ericsson PC Suite 4.010.00-->E:\\Program Files\\InstallShield Installation Information\\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\\Setup.exe -runfromtemp -l0x040c -removeonly
TeamViewer 3-->E:\\Program Files\\TeamViewer3\\uninstall.exe
TerraExplorer-->E:\\Program Files\\Skyline\\TerraExplorer\\Setup.exe [OP]/U
Total Video Converter 3.12 080330-->\"E:\\Program Files\\Total Video Converter\\unins000.exe\"
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=\"\"
ViaMichelin Navigation PND-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\11\\00\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\\setup.exe\" -l0x40c -removeonly
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual C++ CRT 9.0-->MsiExec.exe /I{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}
Windows Internet Explorer 8-->\"E:\\WINDOWS\\ie8\\spuninst\\spuninst.exe\"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->\"E:\\Program Files\\Windows Media Player\\wmsetsdk.exe\" /UninstallAll
Windows XP Service Pack 3-->\"E:\\WINDOWS\\$NtServicePackUninstall$\\spuninst\\spuninst.exe\"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: G Data TotalCare 2010
FW: Pare-feu personnel G Data

======System event log======

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service G Data Scanner est entré dans l\'état : en cours d\'exécution.

Record Number: 124382
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l\'état : en cours d\'exécution.

Record Number: 124381
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 124380
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service G Data Scanner.

Record Number: 124379
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l\'état : en cours d\'exécution.

Record Number: 124378
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service démarré

Record Number: 5152
Source Name: GDFwSvc
Time Written: 20090430081418.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5151
Source Name: SecurityCenter
Time Written: 20090430081411.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message:
Record Number: 5150
Source Name: SeaPort
Time Written: 20090430081402.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service started

Record Number: 5149
Source Name: AVKProxy
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 105
Message: The service was started.

Record Number: 5148
Source Name: ATI Smart
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

======Environment variables======

\"ComSpec\"=%SystemRoot%\\system32\\cmd.exe
\"Path\"=%SystemRoot%\\system32;%SystemRoot%;%SystemRoot%\\system32\\WBEM
\"windir\"=%SystemRoot%
\"FP_NO_HOST_CHECK\"=NO
\"OS\"=Windows_NT
\"PROCESSOR_ARCHITECTURE\"=x86
\"PROCESSOR_LEVEL\"=15
\"PROCESSOR_IDENTIFIER\"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
\"PROCESSOR_REVISION\"=0209
\"NUMBER_OF_PROCESSORS\"=2
\"PATHEXT\"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
\"TEMP\"=%SystemRoot%\\TEMP
\"TMP\"=%SystemRoot%\\TEMP

-----------------EOF-----------------
info.txt logfile of random\'s system information tool 1.06 2009-10-13 08:30:38

======Uninstall list======

-->E:\\Program Files\\Nero\\Nero 7\\\\nero\\uninstall\\UNNERO.exe /UNINSTALL
-->E:\\WINDOWS\\NuNInst.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroBackItUp.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroMediaHome.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroShowTime.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroVision.exe /UNINSTALL
-->E:\\WINDOWS\\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\\WINDOWS\\INF\\PCHealth.inf
Acronis True Image Home-->MsiExec.exe /X{E5343B27-55DF-40BD-9FCF-A643C1331E8A}
Adobe Flash Player 10 ActiveX-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_plugin.exe
Adobe Photoshop 7.0-->E:\\WINDOWS\\ISUN040C.EXE -f\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.isu\" -c\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.dll\"
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->E:\\Program Files\\WinRAR\\uninstall.exe
Ask Toolbar-->\"E:\\Program Files\\AskBarDis\\unins000.exe\"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->E:\\Program Files\\ATI Technologies\\UninstallAll\\AtiCimUn.exe
ATI Display Driver-->rundll32 E:\\WINDOWS\\system32\\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avanquest update-->E:\\Program Files\\InstallShield Installation Information\\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\\Setup.exe -runfromtemp -l0x0009 -removeonly
AVIcodec (remove only)-->\"E:\\Program Files\\AVIcodec\\uninst.exe\"
AviSynth 2.5-->\"E:\\Program Files\\AviSynth 2.5\\Uninstall.exe\"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\\SETUP.EXE\" -l0x40c UNINST
CCleaner (remove only)-->\"E:\\Program Files\\CCleaner\\uninst.exe\"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clavier+ 10.6.1-->\"E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\unins000.exe\"
CursorXP-->E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Themes\\CurXPUtil.exe -u
CX4300_5500_DX4400 Manuel-->E:\\Program Files\\EPSON\\TPMANUAL\\CX4300_5500_DX4400\\FRA\\USE_G\\DOCUNINS.EXE
Defraggler-->\"E:\\Program Files\\Defraggler\\uninst.exe\"
Digital Photo Navigator 1.5-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}\\setup.EXE\" -l0x9
DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
EPSON Attach To Email-->E:\\Program Files\\Fichiers communs\\InstallShield\\Driver\\8\\Intel 32\\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{67EDD823-135A-4D59-87BD-950616D6E857}\\SETUP.EXE\" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\\SETUP.EXE\" -l0x40c UNINST
EPSON File Manager-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\\Setup.exe\" -l0x40c UNINST
EPSON Logiciel imprimante-->E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\\Setup.exe\" -l0x40c -u
EPSON Scan-->E:\\Program Files\\epson\\escndv\\setup\\setup.exe /r
G Data TotalCare-->MsiExec.exe /I{C8D55041-A13C-4620-8DF4-9C5A9C16908D}
Glary Utilities Pro 2.16.0.758-->\"E:\\Program Files\\Glary Utilities\\unins000.exe\"
Google Gmail Notifier-->\"E:\\Program Files\\Google\\Gmail Notifier\\UninstallGmail.exe\"
Google Toolbar for Internet Explorer-->\"E:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarManager_E582EA556D8DE101.exe\" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules Deluxe Webcam Drivers-->E:\\Program Files\\InstallShield Installation Information\\{B77C6FD0-770A-489A-81CA-1BFEEF7CEA85}\\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->\"E:\\Program Files\\trend micro\\HijackThis.exe\" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=\"\"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=\"\"
Installation Windows Live-->E:\\Program Files\\Windows Live\\Installer\\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Lecteur Windows Media 11-->\"E:\\Program Files\\Windows Media Player\\Setup_wm.exe\" /Uninstall
Malwarebytes\' Anti-Malware-->\"E:\\Program Files\\Malwarebytes\' Anti-Malware\\unins000.exe\"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.5\\Microsoft .NET Framework 3.5 SP1\\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 4.0-->MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->\"E:\\WINDOWS\\ie8updates\\KB971961-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->\"E:\\WINDOWS\\ie8updates\\KB972260-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows XP (KB923789)-->E:\\WINDOWS\\system32\\MacroMed\\Flash\\genuinst.exe E:\\WINDOWS\\system32\\MacroMed\\Flash\\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB972636)-->\"E:\\WINDOWS\\ie8updates\\KB972636-IE8\\spuninst\\spuninst.exe\"
Mozilla Firefox (3.5.3)-->E:\\Program Files\\Mozilla Firefox\\uninstall\\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 7 Ultra Edition-->MsiExec.exe /I{43FFE159-3199-4188-A1CD-629166AD1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuf - Kit de connexion-->E:\\Program Files\\Neuf\\Kit\\uninstall.exe
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerCinema NE for Everio-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{39CEE1F2-12B6-4C50-9131-04BFCA110578}\\setup.exe\" -uninstall
PowerProducer-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\\setup.exe\" -uninstall
PowerQuest PartitionMagic 8.0-->E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\Driver\\7\\INTEL3~1\\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Realtek AC\'97 Audio-->Alcrmv.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SIW version 2009-02-24-->\"E:\\Program Files\\SIW\\unins000.exe\"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
Sony Ericsson PC Suite 4.010.00-->E:\\Program Files\\InstallShield Installation Information\\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\\Setup.exe -runfromtemp -l0x040c -removeonly
TeamViewer 3-->E:\\Program Files\\TeamViewer3\\uninstall.exe
TerraExplorer-->E:\\Program Files\\Skyline\\TerraExplorer\\Setup.exe [OP]/U
Total Video Converter 3.12 080330-->\"E:\\Program Files\\Total Video Converter\\unins000.exe\"
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=\"\"
ViaMichelin Navigation PND-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\11\\00\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\\setup.exe\" -l0x40c -removeonly
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual C++ CRT 9.0-->MsiExec.exe /I{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}
Windows Internet Explorer 8-->\"E:\\WINDOWS\\ie8\\spuninst\\spuninst.exe\"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->\"E:\\Program Files\\Windows Media Player\\wmsetsdk.exe\" /UninstallAll
Windows XP Service Pack 3-->\"E:\\WINDOWS\\$NtServicePackUninstall$\\spuninst\\spuninst.exe\"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: G Data TotalCare 2010
FW: Pare-feu personnel G Data

======System event log======

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service G Data Scanner est entré dans l\'état : en cours d\'exécution.

Record Number: 124382
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l\'état : en cours d\'exécution.

Record Number: 124381
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 124380
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service G Data Scanner.

Record Number: 124379
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l\'état : en cours d\'exécution.

Record Number: 124378
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service démarré

Record Number: 5152
Source Name: GDFwSvc
Time Written: 20090430081418.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5151
Source Name: SecurityCenter
Time Written: 20090430081411.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message:
Record Number: 5150
Source Name: SeaPort
Time Written: 20090430081402.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service started

Record Number: 5149
Source Name: AVKProxy
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 105
Message: The service was started.

Record Number: 5148
Source Name: ATI Smart
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

======Environment variables======

\"ComSpec\"=%SystemRoot%\\system32\\cmd.exe
\"Path\"=%SystemRoot%\\system32;%SystemRoot%;%SystemRoot%\\system32\\WBEM
\"windir\"=%SystemRoot%
\"FP_NO_HOST_CHECK\"=NO
\"OS\"=Windows_NT
\"PROCESSOR_ARCHITECTURE\"=x86
\"PROCESSOR_LEVEL\"=15
\"PROCESSOR_IDENTIFIER\"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
\"PROCESSOR_REVISION\"=0209
\"NUMBER_OF_PROCESSORS\"=2
\"PATHEXT\"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
\"TEMP\"=%SystemRoot%\\TEMP
\"TMP\"=%SystemRoot%\\TEMP

-----------------EOF-----------------
info.txt logfile of random\'s system information tool 1.06 2009-10-13 08:30:38

======Uninstall list======

-->E:\\Program Files\\Nero\\Nero 7\\\\nero\\uninstall\\UNNERO.exe /UNINSTALL
-->E:\\WINDOWS\\NuNInst.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroBackItUp.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroMediaHome.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroShowTime.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroVision.exe /UNINSTALL
-->E:\\WINDOWS\\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\\WINDOWS\\INF\\PCHealth.inf
Acronis True Image Home-->MsiExec.exe /X{E5343B27-55DF-40BD-9FCF-A643C1331E8A}
Adobe Flash Player 10 ActiveX-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_plugin.exe
Adobe Photoshop 7.0-->E:\\WINDOWS\\ISUN040C.EXE -f\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.isu\" -c\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.dll\"
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->E:\\Program Files\\WinRAR\\uninstall.exe
Ask Toolbar-->\"E:\\Program Files\\AskBarDis\\unins000.exe\"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->E:\\Program Files\\ATI Technologies\\UninstallAll\\AtiCimUn.exe
ATI Display Driver-->rundll32 E:\\WINDOWS\\system32\\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avanquest update-->E:\\Program Files\\InstallShield Installation Information\\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\\Setup.exe -runfromtemp -l0x0009 -removeonly
AVIcodec (remove only)-->\"E:\\Program Files\\AVIcodec\\uninst.exe\"
AviSynth 2.5-->\"E:\\Program Files\\AviSynth 2.5\\Uninstall.exe\"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\\SETUP.EXE\" -l0x40c UNINST
CCleaner (remove only)-->\"E:\\Program Files\\CCleaner\\uninst.exe\"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clavier+ 10.6.1-->\"E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\unins000.exe\"
CursorXP-->E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Themes\\CurXPUtil.exe -u
CX4300_5500_DX4400 Manuel-->E:\\Program Files\\EPSON\\TPMANUAL\\CX4300_5500_DX4400\\FRA\\USE_G\\DOCUNINS.EXE
Defraggler-->\"E:\\Program Files\\Defraggler\\uninst.exe\"
Digital Photo Navigator 1.5-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}\\setup.EXE\" -l0x9
DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
EPSON Attach To Email-->E:\\Program Files\\Fichiers communs\\InstallShield\\Driver\\8\\Intel 32\\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{67EDD823-135A-4D59-87BD-950616D6E857}\\SETUP.EXE\" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\\SETUP.EXE\" -l0x40c UNINST
EPSON File Manager-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\\Setup.exe\" -l0x40c UNINST
EPSON Logiciel imprimante-->E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\\Setup.exe\" -l0x40c -u
EPSON Scan-->E:\\Program Files\\epson\\escndv\\setup\\setup.exe /r
G Data TotalCare-->MsiExec.exe /I{C8D55041-A13C-4620-8DF4-9C5A9C16908D}
Glary Utilities Pro 2.16.0.758-->\"E:\\Program Files\\Glary Utilities\\unins000.exe\"
Google Gmail Notifier-->\"E:\\Program Files\\Google\\Gmail Notifier\\UninstallGmail.exe\"
Google Toolbar for Internet Explorer-->\"E:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarManager_E582EA556D8DE101.exe\" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules Deluxe Webcam Drivers-->E:\\Program Files\\InstallShield Installation Information\\{B77C6FD0-770A-489A-81CA-1BFEEF7CEA85}\\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->\"E:\\Program Files\\trend micro\\HijackThis.exe\" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=\"\"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=\"\"
Installation Windows Live-->E:\\Program Files\\Windows Live\\Installer\\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Lecteur Windows Media 11-->\"E:\\Program Files\\Windows Media Player\\Setup_wm.exe\" /Uninstall
Malwarebytes\' Anti-Malware-->\"E:\\Program Files\\Malwarebytes\' Anti-Malware\\unins000.exe\"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.5\\Microsoft .NET Framework 3.5 SP1\\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 4.0-->MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->\"E:\\WINDOWS\\ie8updates\\KB971961-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->\"E:\\WINDOWS\\ie8updates\\KB972260-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows XP (KB923789)-->E:\\WINDOWS\\system32\\MacroMed\\Flash\\genuinst.exe E:\\WINDOWS\\system32\\MacroMed\\Flash\\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB972636)-->\"E:\\WINDOWS\\ie8updates\\KB972636-IE8\\spuninst\\spuninst.exe\"
Mozilla Firefox (3.5.3)-->E:\\Program Files\\Mozilla Firefox\\uninstall\\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 7 Ultra Edition-->MsiExec.exe /I{43FFE159-3199-4188-A1CD-629166AD1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuf - Kit de connexion-->E:\\Program Files\\Neuf\\Kit\\uninstall.exe
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerCinema NE for Everio-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{39CEE1F2-12B6-4C50-9131-04BFCA110578}\\setup.exe\" -uninstall
PowerProducer-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\\setup.exe\" -uninstall
PowerQuest PartitionMagic 8.0-->E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\Driver\\7\\INTEL3~1\\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Realtek AC\'97 Audio-->Alcrmv.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SIW version 2009-02-24-->\"E:\\Program Files\\SIW\\unins000.exe\"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
Sony Ericsson PC Suite 4.010.00-->E:\\Program Files\\InstallShield Installation Information\\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\\Setup.exe -runfromtemp -l0x040c -removeonly
TeamViewer 3-->E:\\Program Files\\TeamViewer3\\uninstall.exe
TerraExplorer-->E:\\Program Files\\Skyline\\TerraExplorer\\Setup.exe [OP]/U
Total Video Converter 3.12 080330-->\"E:\\Program Files\\Total Video Converter\\unins000.exe\"
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=\"\"
ViaMichelin Navigation PND-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\11\\00\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\\setup.exe\" -l0x40c -removeonly
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual C++ CRT 9.0-->MsiExec.exe /I{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}
Windows Internet Explorer 8-->\"E:\\WINDOWS\\ie8\\spuninst\\spuninst.exe\"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->\"E:\\Program Files\\Windows Media Player\\wmsetsdk.exe\" /UninstallAll
Windows XP Service Pack 3-->\"E:\\WINDOWS\\$NtServicePackUninstall$\\spuninst\\spuninst.exe\"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: G Data TotalCare 2010
FW: Pare-feu personnel G Data

======System event log======

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service G Data Scanner est entré dans l\'état : en cours d\'exécution.

Record Number: 124382
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l\'état : en cours d\'exécution.

Record Number: 124381
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 124380
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service G Data Scanner.

Record Number: 124379
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l\'état : en cours d\'exécution.

Record Number: 124378
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service démarré

Record Number: 5152
Source Name: GDFwSvc
Time Written: 20090430081418.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5151
Source Name: SecurityCenter
Time Written: 20090430081411.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message:
Record Number: 5150
Source Name: SeaPort
Time Written: 20090430081402.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service started

Record Number: 5149
Source Name: AVKProxy
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 105
Message: The service was started.

Record Number: 5148
Source Name: ATI Smart
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

======Environment variables======

\"ComSpec\"=%SystemRoot%\\system32\\cmd.exe
\"Path\"=%SystemRoot%\\system32;%SystemRoot%;%SystemRoot%\\system32\\WBEM
\"windir\"=%SystemRoot%
\"FP_NO_HOST_CHECK\"=NO
\"OS\"=Windows_NT
\"PROCESSOR_ARCHITECTURE\"=x86
\"PROCESSOR_LEVEL\"=15
\"PROCESSOR_IDENTIFIER\"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
\"PROCESSOR_REVISION\"=0209
\"NUMBER_OF_PROCESSORS\"=2
\"PATHEXT\"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
\"TEMP\"=%SystemRoot%\\TEMP
\"TMP\"=%SystemRoot%\\TEMP

-----------------EOF-----------------
info.txt logfile of random\'s system information tool 1.06 2009-10-13 08:30:38

======Uninstall list======

-->E:\\Program Files\\Nero\\Nero 7\\\\nero\\uninstall\\UNNERO.exe /UNINSTALL
-->E:\\WINDOWS\\NuNInst.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroBackItUp.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroMediaHome.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroShowTime.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroVision.exe /UNINSTALL
-->E:\\WINDOWS\\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\\WINDOWS\\INF\\PCHealth.inf
Acronis True Image Home-->MsiExec.exe /X{E5343B27-55DF-40BD-9FCF-A643C1331E8A}
Adobe Flash Player 10 ActiveX-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_plugin.exe
Adobe Photoshop 7.0-->E:\\WINDOWS\\ISUN040C.EXE -f\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.isu\" -c\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.dll\"
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->E:\\Program Files\\WinRAR\\uninstall.exe
Ask Toolbar-->\"E:\\Program Files\\AskBarDis\\unins000.exe\"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->E:\\Program Files\\ATI Technologies\\UninstallAll\\AtiCimUn.exe
ATI Display Driver-->rundll32 E:\\WINDOWS\\system32\\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avanquest update-->E:\\Program Files\\InstallShield Installation Information\\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\\Setup.exe -runfromtemp -l0x0009 -removeonly
AVIcodec (remove only)-->\"E:\\Program Files\\AVIcodec\\uninst.exe\"
AviSynth 2.5-->\"E:\\Program Files\\AviSynth 2.5\\Uninstall.exe\"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\\SETUP.EXE\" -l0x40c UNINST
CCleaner (remove only)-->\"E:\\Program Files\\CCleaner\\uninst.exe\"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clavier+ 10.6.1-->\"E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\unins000.exe\"
CursorXP-->E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Themes\\CurXPUtil.exe -u
CX4300_5500_DX4400 Manuel-->E:\\Program Files\\EPSON\\TPMANUAL\\CX4300_5500_DX4400\\FRA\\USE_G\\DOCUNINS.EXE
Defraggler-->\"E:\\Program Files\\Defraggler\\uninst.exe\"
Digital Photo Navigator 1.5-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}\\setup.EXE\" -l0x9
DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
EPSON Attach To Email-->E:\\Program Files\\Fichiers communs\\InstallShield\\Driver\\8\\Intel 32\\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{67EDD823-135A-4D59-87BD-950616D6E857}\\SETUP.EXE\" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\\SETUP.EXE\" -l0x40c UNINST
EPSON File Manager-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\\Setup.exe\" -l0x40c UNINST
EPSON Logiciel imprimante-->E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\\Setup.exe\" -l0x40c -u
EPSON Scan-->E:\\Program Files\\epson\\escndv\\setup\\setup.exe /r
G Data TotalCare-->MsiExec.exe /I{C8D55041-A13C-4620-8DF4-9C5A9C16908D}
Glary Utilities Pro 2.16.0.758-->\"E:\\Program Files\\Glary Utilities\\unins000.exe\"
Google Gmail Notifier-->\"E:\\Program Files\\Google\\Gmail Notifier\\UninstallGmail.exe\"
Google Toolbar for Internet Explorer-->\"E:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarManager_E582EA556D8DE101.exe\" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules Deluxe Webcam Drivers-->E:\\Program Files\\InstallShield Installation Information\\{B77C6FD0-770A-489A-81CA-1BFEEF7CEA85}\\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->\"E:\\Program Files\\trend micro\\HijackThis.exe\" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=\"\"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=\"\"
Installation Windows Live-->E:\\Program Files\\Windows Live\\Installer\\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Lecteur Windows Media 11-->\"E:\\Program Files\\Windows Media Player\\Setup_wm.exe\" /Uninstall
Malwarebytes\' Anti-Malware-->\"E:\\Program Files\\Malwarebytes\' Anti-Malware\\unins000.exe\"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.5\\Microsoft .NET Framework 3.5 SP1\\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 4.0-->MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->\"E:\\WINDOWS\\ie8updates\\KB971961-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->\"E:\\WINDOWS\\ie8updates\\KB972260-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows XP (KB923789)-->E:\\WINDOWS\\system32\\MacroMed\\Flash\\genuinst.exe E:\\WINDOWS\\system32\\MacroMed\\Flash\\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB972636)-->\"E:\\WINDOWS\\ie8updates\\KB972636-IE8\\spuninst\\spuninst.exe\"
Mozilla Firefox (3.5.3)-->E:\\Program Files\\Mozilla Firefox\\uninstall\\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 7 Ultra Edition-->MsiExec.exe /I{43FFE159-3199-4188-A1CD-629166AD1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuf - Kit de connexion-->E:\\Program Files\\Neuf\\Kit\\uninstall.exe
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerCinema NE for Everio-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{39CEE1F2-12B6-4C50-9131-04BFCA110578}\\setup.exe\" -uninstall
PowerProducer-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\\setup.exe\" -uninstall
PowerQuest PartitionMagic 8.0-->E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\Driver\\7\\INTEL3~1\\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Realtek AC\'97 Audio-->Alcrmv.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SIW version 2009-02-24-->\"E:\\Program Files\\SIW\\unins000.exe\"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
Sony Ericsson PC Suite 4.010.00-->E:\\Program Files\\InstallShield Installation Information\\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\\Setup.exe -runfromtemp -l0x040c -removeonly
TeamViewer 3-->E:\\Program Files\\TeamViewer3\\uninstall.exe
TerraExplorer-->E:\\Program Files\\Skyline\\TerraExplorer\\Setup.exe [OP]/U
Total Video Converter 3.12 080330-->\"E:\\Program Files\\Total Video Converter\\unins000.exe\"
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=\"\"
ViaMichelin Navigation PND-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\11\\00\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\\setup.exe\" -l0x40c -removeonly
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual C++ CRT 9.0-->MsiExec.exe /I{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}
Windows Internet Explorer 8-->\"E:\\WINDOWS\\ie8\\spuninst\\spuninst.exe\"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->\"E:\\Program Files\\Windows Media Player\\wmsetsdk.exe\" /UninstallAll
Windows XP Service Pack 3-->\"E:\\WINDOWS\\$NtServicePackUninstall$\\spuninst\\spuninst.exe\"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: G Data TotalCare 2010
FW: Pare-feu personnel G Data

======System event log======

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service G Data Scanner est entré dans l\'état : en cours d\'exécution.

Record Number: 124382
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l\'état : en cours d\'exécution.

Record Number: 124381
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 124380
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service G Data Scanner.

Record Number: 124379
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l\'état : en cours d\'exécution.

Record Number: 124378
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service démarré

Record Number: 5152
Source Name: GDFwSvc
Time Written: 20090430081418.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5151
Source Name: SecurityCenter
Time Written: 20090430081411.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message:
Record Number: 5150
Source Name: SeaPort
Time Written: 20090430081402.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service started

Record Number: 5149
Source Name: AVKProxy
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 105
Message: The service was started.

Record Number: 5148
Source Name: ATI Smart
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

======Environment variables======

\"ComSpec\"=%SystemRoot%\\system32\\cmd.exe
\"Path\"=%SystemRoot%\\system32;%SystemRoot%;%SystemRoot%\\system32\\WBEM
\"windir\"=%SystemRoot%
\"FP_NO_HOST_CHECK\"=NO
\"OS\"=Windows_NT
\"PROCESSOR_ARCHITECTURE\"=x86
\"PROCESSOR_LEVEL\"=15
\"PROCESSOR_IDENTIFIER\"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
\"PROCESSOR_REVISION\"=0209
\"NUMBER_OF_PROCESSORS\"=2
\"PATHEXT\"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
\"TEMP\"=%SystemRoot%\\TEMP
\"TMP\"=%SystemRoot%\\TEMP

-----------------EOF-----------------
info.txt logfile of random\'s system information tool 1.06 2009-10-13 08:30:38

======Uninstall list======

-->E:\\Program Files\\Nero\\Nero 7\\\\nero\\uninstall\\UNNERO.exe /UNINSTALL
-->E:\\WINDOWS\\NuNInst.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroBackItUp.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroMediaHome.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroShowTime.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroVision.exe /UNINSTALL
-->E:\\WINDOWS\\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\\WINDOWS\\INF\\PCHealth.inf
Acronis True Image Home-->MsiExec.exe /X{E5343B27-55DF-40BD-9FCF-A643C1331E8A}
Adobe Flash Player 10 ActiveX-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_plugin.exe
Adobe Photoshop 7.0-->E:\\WINDOWS\\ISUN040C.EXE -f\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.isu\" -c\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.dll\"
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->E:\\Program Files\\WinRAR\\uninstall.exe
Ask Toolbar-->\"E:\\Program Files\\AskBarDis\\unins000.exe\"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->E:\\Program Files\\ATI Technologies\\UninstallAll\\AtiCimUn.exe
ATI Display Driver-->rundll32 E:\\WINDOWS\\system32\\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avanquest update-->E:\\Program Files\\InstallShield Installation Information\\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\\Setup.exe -runfromtemp -l0x0009 -removeonly
AVIcodec (remove only)-->\"E:\\Program Files\\AVIcodec\\uninst.exe\"
AviSynth 2.5-->\"E:\\Program Files\\AviSynth 2.5\\Uninstall.exe\"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\\SETUP.EXE\" -l0x40c UNINST
CCleaner (remove only)-->\"E:\\Program Files\\CCleaner\\uninst.exe\"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clavier+ 10.6.1-->\"E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\unins000.exe\"
CursorXP-->E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Themes\\CurXPUtil.exe -u
CX4300_5500_DX4400 Manuel-->E:\\Program Files\\EPSON\\TPMANUAL\\CX4300_5500_DX4400\\FRA\\USE_G\\DOCUNINS.EXE
Defraggler-->\"E:\\Program Files\\Defraggler\\uninst.exe\"
Digital Photo Navigator 1.5-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}\\setup.EXE\" -l0x9
DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
EPSON Attach To Email-->E:\\Program Files\\Fichiers communs\\InstallShield\\Driver\\8\\Intel 32\\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{67EDD823-135A-4D59-87BD-950616D6E857}\\SETUP.EXE\" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\\SETUP.EXE\" -l0x40c UNINST
EPSON File Manager-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\\Setup.exe\" -l0x40c UNINST
EPSON Logiciel imprimante-->E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\\Setup.exe\" -l0x40c -u
EPSON Scan-->E:\\Program Files\\epson\\escndv\\setup\\setup.exe /r
G Data TotalCare-->MsiExec.exe /I{C8D55041-A13C-4620-8DF4-9C5A9C16908D}
Glary Utilities Pro 2.16.0.758-->\"E:\\Program Files\\Glary Utilities\\unins000.exe\"
Google Gmail Notifier-->\"E:\\Program Files\\Google\\Gmail Notifier\\UninstallGmail.exe\"
Google Toolbar for Internet Explorer-->\"E:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarManager_E582EA556D8DE101.exe\" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules Deluxe Webcam Drivers-->E:\\Program Files\\InstallShield Installation Information\\{B77C6FD0-770A-489A-81CA-1BFEEF7CEA85}\\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->\"E:\\Program Files\\trend micro\\HijackThis.exe\" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=\"\"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=\"\"
Installation Windows Live-->E:\\Program Files\\Windows Live\\Installer\\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Lecteur Windows Media 11-->\"E:\\Program Files\\Windows Media Player\\Setup_wm.exe\" /Uninstall
Malwarebytes\' Anti-Malware-->\"E:\\Program Files\\Malwarebytes\' Anti-Malware\\unins000.exe\"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.5\\Microsoft .NET Framework 3.5 SP1\\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 4.0-->MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->\"E:\\WINDOWS\\ie8updates\\KB971961-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->\"E:\\WINDOWS\\ie8updates\\KB972260-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows XP (KB923789)-->E:\\WINDOWS\\system32\\MacroMed\\Flash\\genuinst.exe E:\\WINDOWS\\system32\\MacroMed\\Flash\\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB972636)-->\"E:\\WINDOWS\\ie8updates\\KB972636-IE8\\spuninst\\spuninst.exe\"
Mozilla Firefox (3.5.3)-->E:\\Program Files\\Mozilla Firefox\\uninstall\\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 7 Ultra Edition-->MsiExec.exe /I{43FFE159-3199-4188-A1CD-629166AD1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuf - Kit de connexion-->E:\\Program Files\\Neuf\\Kit\\uninstall.exe
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerCinema NE for Everio-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{39CEE1F2-12B6-4C50-9131-04BFCA110578}\\setup.exe\" -uninstall
PowerProducer-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\\setup.exe\" -uninstall
PowerQuest PartitionMagic 8.0-->E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\Driver\\7\\INTEL3~1\\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Realtek AC\'97 Audio-->Alcrmv.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SIW version 2009-02-24-->\"E:\\Program Files\\SIW\\unins000.exe\"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
Sony Ericsson PC Suite 4.010.00-->E:\\Program Files\\InstallShield Installation Information\\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\\Setup.exe -runfromtemp -l0x040c -removeonly
TeamViewer 3-->E:\\Program Files\\TeamViewer3\\uninstall.exe
TerraExplorer-->E:\\Program Files\\Skyline\\TerraExplorer\\Setup.exe [OP]/U
Total Video Converter 3.12 080330-->\"E:\\Program Files\\Total Video Converter\\unins000.exe\"
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=\"\"
ViaMichelin Navigation PND-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\11\\00\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\\setup.exe\" -l0x40c -removeonly
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual C++ CRT 9.0-->MsiExec.exe /I{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}
Windows Internet Explorer 8-->\"E:\\WINDOWS\\ie8\\spuninst\\spuninst.exe\"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->\"E:\\Program Files\\Windows Media Player\\wmsetsdk.exe\" /UninstallAll
Windows XP Service Pack 3-->\"E:\\WINDOWS\\$NtServicePackUninstall$\\spuninst\\spuninst.exe\"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: G Data TotalCare 2010
FW: Pare-feu personnel G Data

======System event log======

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service G Data Scanner est entré dans l\'état : en cours d\'exécution.

Record Number: 124382
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l\'état : en cours d\'exécution.

Record Number: 124381
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 124380
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service G Data Scanner.

Record Number: 124379
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l\'état : en cours d\'exécution.

Record Number: 124378
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service démarré

Record Number: 5152
Source Name: GDFwSvc
Time Written: 20090430081418.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5151
Source Name: SecurityCenter
Time Written: 20090430081411.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message:
Record Number: 5150
Source Name: SeaPort
Time Written: 20090430081402.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service started

Record Number: 5149
Source Name: AVKProxy
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 105
Message: The service was started.

Record Number: 5148
Source Name: ATI Smart
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

======Environment variables======

\"ComSpec\"=%SystemRoot%\\system32\\cmd.exe
\"Path\"=%SystemRoot%\\system32;%SystemRoot%;%SystemRoot%\\system32\\WBEM
\"windir\"=%SystemRoot%
\"FP_NO_HOST_CHECK\"=NO
\"OS\"=Windows_NT
\"PROCESSOR_ARCHITECTURE\"=x86
\"PROCESSOR_LEVEL\"=15
\"PROCESSOR_IDENTIFIER\"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
\"PROCESSOR_REVISION\"=0209
\"NUMBER_OF_PROCESSORS\"=2
\"PATHEXT\"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
\"TEMP\"=%SystemRoot%\\TEMP
\"TMP\"=%SystemRoot%\\TEMP

-----------------EOF-----------------
info.txt logfile of random\'s system information tool 1.06 2009-10-13 08:30:38

======Uninstall list======

-->E:\\Program Files\\Nero\\Nero 7\\\\nero\\uninstall\\UNNERO.exe /UNINSTALL
-->E:\\WINDOWS\\NuNInst.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroBackItUp.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroMediaHome.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroShowTime.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroVision.exe /UNINSTALL
-->E:\\WINDOWS\\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\\WINDOWS\\INF\\PCHealth.inf
Acronis True Image Home-->MsiExec.exe /X{E5343B27-55DF-40BD-9FCF-A643C1331E8A}
Adobe Flash Player 10 ActiveX-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_plugin.exe
Adobe Photoshop 7.0-->E:\\WINDOWS\\ISUN040C.EXE -f\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.isu\" -c\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.dll\"
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->E:\\Program Files\\WinRAR\\uninstall.exe
Ask Toolbar-->\"E:\\Program Files\\AskBarDis\\unins000.exe\"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->E:\\Program Files\\ATI Technologies\\UninstallAll\\AtiCimUn.exe
ATI Display Driver-->rundll32 E:\\WINDOWS\\system32\\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avanquest update-->E:\\Program Files\\InstallShield Installation Information\\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\\Setup.exe -runfromtemp -l0x0009 -removeonly
AVIcodec (remove only)-->\"E:\\Program Files\\AVIcodec\\uninst.exe\"
AviSynth 2.5-->\"E:\\Program Files\\AviSynth 2.5\\Uninstall.exe\"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\\SETUP.EXE\" -l0x40c UNINST
CCleaner (remove only)-->\"E:\\Program Files\\CCleaner\\uninst.exe\"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clavier+ 10.6.1-->\"E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\unins000.exe\"
CursorXP-->E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Themes\\CurXPUtil.exe -u
CX4300_5500_DX4400 Manuel-->E:\\Program Files\\EPSON\\TPMANUAL\\CX4300_5500_DX4400\\FRA\\USE_G\\DOCUNINS.EXE
Defraggler-->\"E:\\Program Files\\Defraggler\\uninst.exe\"
Digital Photo Navigator 1.5-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}\\setup.EXE\" -l0x9
DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
EPSON Attach To Email-->E:\\Program Files\\Fichiers communs\\InstallShield\\Driver\\8\\Intel 32\\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{67EDD823-135A-4D59-87BD-950616D6E857}\\SETUP.EXE\" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\\SETUP.EXE\" -l0x40c UNINST
EPSON File Manager-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\\Setup.exe\" -l0x40c UNINST
EPSON Logiciel imprimante-->E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\\Setup.exe\" -l0x40c -u
EPSON Scan-->E:\\Program Files\\epson\\escndv\\setup\\setup.exe /r
G Data TotalCare-->MsiExec.exe /I{C8D55041-A13C-4620-8DF4-9C5A9C16908D}
Glary Utilities Pro 2.16.0.758-->\"E:\\Program Files\\Glary Utilities\\unins000.exe\"
Google Gmail Notifier-->\"E:\\Program Files\\Google\\Gmail Notifier\\UninstallGmail.exe\"
Google Toolbar for Internet Explorer-->\"E:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarManager_E582EA556D8DE101.exe\" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules Deluxe Webcam Drivers-->E:\\Program Files\\InstallShield Installation Information\\{B77C6FD0-770A-489A-81CA-1BFEEF7CEA85}\\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->\"E:\\Program Files\\trend micro\\HijackThis.exe\" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=\"\"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=\"\"
Installation Windows Live-->E:\\Program Files\\Windows Live\\Installer\\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Lecteur Windows Media 11-->\"E:\\Program Files\\Windows Media Player\\Setup_wm.exe\" /Uninstall
Malwarebytes\' Anti-Malware-->\"E:\\Program Files\\Malwarebytes\' Anti-Malware\\unins000.exe\"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.5\\Microsoft .NET Framework 3.5 SP1\\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 4.0-->MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->\"E:\\WINDOWS\\ie8updates\\KB971961-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->\"E:\\WINDOWS\\ie8updates\\KB972260-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows XP (KB923789)-->E:\\WINDOWS\\system32\\MacroMed\\Flash\\genuinst.exe E:\\WINDOWS\\system32\\MacroMed\\Flash\\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB972636)-->\"E:\\WINDOWS\\ie8updates\\KB972636-IE8\\spuninst\\spuninst.exe\"
Mozilla Firefox (3.5.3)-->E:\\Program Files\\Mozilla Firefox\\uninstall\\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 7 Ultra Edition-->MsiExec.exe /I{43FFE159-3199-4188-A1CD-629166AD1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuf - Kit de connexion-->E:\\Program Files\\Neuf\\Kit\\uninstall.exe
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerCinema NE for Everio-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{39CEE1F2-12B6-4C50-9131-04BFCA110578}\\setup.exe\" -uninstall
PowerProducer-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\\setup.exe\" -uninstall
PowerQuest PartitionMagic 8.0-->E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\Driver\\7\\INTEL3~1\\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Realtek AC\'97 Audio-->Alcrmv.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SIW version 2009-02-24-->\"E:\\Program Files\\SIW\\unins000.exe\"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
Sony Ericsson PC Suite 4.010.00-->E:\\Program Files\\InstallShield Installation Information\\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\\Setup.exe -runfromtemp -l0x040c -removeonly
TeamViewer 3-->E:\\Program Files\\TeamViewer3\\uninstall.exe
TerraExplorer-->E:\\Program Files\\Skyline\\TerraExplorer\\Setup.exe [OP]/U
Total Video Converter 3.12 080330-->\"E:\\Program Files\\Total Video Converter\\unins000.exe\"
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=\"\"
ViaMichelin Navigation PND-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\11\\00\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\\setup.exe\" -l0x40c -removeonly
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual C++ CRT 9.0-->MsiExec.exe /I{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}
Windows Internet Explorer 8-->\"E:\\WINDOWS\\ie8\\spuninst\\spuninst.exe\"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->\"E:\\Program Files\\Windows Media Player\\wmsetsdk.exe\" /UninstallAll
Windows XP Service Pack 3-->\"E:\\WINDOWS\\$NtServicePackUninstall$\\spuninst\\spuninst.exe\"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: G Data TotalCare 2010
FW: Pare-feu personnel G Data

======System event log======

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service G Data Scanner est entré dans l\'état : en cours d\'exécution.

Record Number: 124382
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l\'état : en cours d\'exécution.

Record Number: 124381
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 124380
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service G Data Scanner.

Record Number: 124379
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l\'état : en cours d\'exécution.

Record Number: 124378
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service démarré

Record Number: 5152
Source Name: GDFwSvc
Time Written: 20090430081418.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5151
Source Name: SecurityCenter
Time Written: 20090430081411.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message:
Record Number: 5150
Source Name: SeaPort
Time Written: 20090430081402.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service started

Record Number: 5149
Source Name: AVKProxy
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 105
Message: The service was started.

Record Number: 5148
Source Name: ATI Smart
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

======Environment variables======

\"ComSpec\"=%SystemRoot%\\system32\\cmd.exe
\"Path\"=%SystemRoot%\\system32;%SystemRoot%;%SystemRoot%\\system32\\WBEM
\"windir\"=%SystemRoot%
\"FP_NO_HOST_CHECK\"=NO
\"OS\"=Windows_NT
\"PROCESSOR_ARCHITECTURE\"=x86
\"PROCESSOR_LEVEL\"=15
\"PROCESSOR_IDENTIFIER\"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
\"PROCESSOR_REVISION\"=0209
\"NUMBER_OF_PROCESSORS\"=2
\"PATHEXT\"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
\"TEMP\"=%SystemRoot%\\TEMP
\"TMP\"=%SystemRoot%\\TEMP

-----------------EOF-----------------
info.txt logfile of random\'s system information tool 1.06 2009-10-13 08:30:38

======Uninstall list======

-->E:\\Program Files\\Nero\\Nero 7\\\\nero\\uninstall\\UNNERO.exe /UNINSTALL
-->E:\\WINDOWS\\NuNInst.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroBackItUp.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroMediaHome.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroShowTime.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroVision.exe /UNINSTALL
-->E:\\WINDOWS\\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\\WINDOWS\\INF\\PCHealth.inf
Acronis True Image Home-->MsiExec.exe /X{E5343B27-55DF-40BD-9FCF-A643C1331E8A}
Adobe Flash Player 10 ActiveX-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_plugin.exe
Adobe Photoshop 7.0-->E:\\WINDOWS\\ISUN040C.EXE -f\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.isu\" -c\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.dll\"
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->E:\\Program Files\\WinRAR\\uninstall.exe
Ask Toolbar-->\"E:\\Program Files\\AskBarDis\\unins000.exe\"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->E:\\Program Files\\ATI Technologies\\UninstallAll\\AtiCimUn.exe
ATI Display Driver-->rundll32 E:\\WINDOWS\\system32\\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avanquest update-->E:\\Program Files\\InstallShield Installation Information\\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\\Setup.exe -runfromtemp -l0x0009 -removeonly
AVIcodec (remove only)-->\"E:\\Program Files\\AVIcodec\\uninst.exe\"
AviSynth 2.5-->\"E:\\Program Files\\AviSynth 2.5\\Uninstall.exe\"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\\SETUP.EXE\" -l0x40c UNINST
CCleaner (remove only)-->\"E:\\Program Files\\CCleaner\\uninst.exe\"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clavier+ 10.6.1-->\"E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\unins000.exe\"
CursorXP-->E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Themes\\CurXPUtil.exe -u
CX4300_5500_DX4400 Manuel-->E:\\Program Files\\EPSON\\TPMANUAL\\CX4300_5500_DX4400\\FRA\\USE_G\\DOCUNINS.EXE
Defraggler-->\"E:\\Program Files\\Defraggler\\uninst.exe\"
Digital Photo Navigator 1.5-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}\\setup.EXE\" -l0x9
DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
EPSON Attach To Email-->E:\\Program Files\\Fichiers communs\\InstallShield\\Driver\\8\\Intel 32\\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{67EDD823-135A-4D59-87BD-950616D6E857}\\SETUP.EXE\" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\\SETUP.EXE\" -l0x40c UNINST
EPSON File Manager-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\\Setup.exe\" -l0x40c UNINST
EPSON Logiciel imprimante-->E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\\Setup.exe\" -l0x40c -u
EPSON Scan-->E:\\Program Files\\epson\\escndv\\setup\\setup.exe /r
G Data TotalCare-->MsiExec.exe /I{C8D55041-A13C-4620-8DF4-9C5A9C16908D}
Glary Utilities Pro 2.16.0.758-->\"E:\\Program Files\\Glary Utilities\\unins000.exe\"
Google Gmail Notifier-->\"E:\\Program Files\\Google\\Gmail Notifier\\UninstallGmail.exe\"
Google Toolbar for Internet Explorer-->\"E:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarManager_E582EA556D8DE101.exe\" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules Deluxe Webcam Drivers-->E:\\Program Files\\InstallShield Installation Information\\{B77C6FD0-770A-489A-81CA-1BFEEF7CEA85}\\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->\"E:\\Program Files\\trend micro\\HijackThis.exe\" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=\"\"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=\"\"
Installation Windows Live-->E:\\Program Files\\Windows Live\\Installer\\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Lecteur Windows Media 11-->\"E:\\Program Files\\Windows Media Player\\Setup_wm.exe\" /Uninstall
Malwarebytes\' Anti-Malware-->\"E:\\Program Files\\Malwarebytes\' Anti-Malware\\unins000.exe\"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.5\\Microsoft .NET Framework 3.5 SP1\\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 4.0-->MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->\"E:\\WINDOWS\\ie8updates\\KB971961-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->\"E:\\WINDOWS\\ie8updates\\KB972260-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows XP (KB923789)-->E:\\WINDOWS\\system32\\MacroMed\\Flash\\genuinst.exe E:\\WINDOWS\\system32\\MacroMed\\Flash\\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB972636)-->\"E:\\WINDOWS\\ie8updates\\KB972636-IE8\\spuninst\\spuninst.exe\"
Mozilla Firefox (3.5.3)-->E:\\Program Files\\Mozilla Firefox\\uninstall\\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 7 Ultra Edition-->MsiExec.exe /I{43FFE159-3199-4188-A1CD-629166AD1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuf - Kit de connexion-->E:\\Program Files\\Neuf\\Kit\\uninstall.exe
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerCinema NE for Everio-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{39CEE1F2-12B6-4C50-9131-04BFCA110578}\\setup.exe\" -uninstall
PowerProducer-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\\setup.exe\" -uninstall
PowerQuest PartitionMagic 8.0-->E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\Driver\\7\\INTEL3~1\\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Realtek AC\'97 Audio-->Alcrmv.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SIW version 2009-02-24-->\"E:\\Program Files\\SIW\\unins000.exe\"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
Sony Ericsson PC Suite 4.010.00-->E:\\Program Files\\InstallShield Installation Information\\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\\Setup.exe -runfromtemp -l0x040c -removeonly
TeamViewer 3-->E:\\Program Files\\TeamViewer3\\uninstall.exe
TerraExplorer-->E:\\Program Files\\Skyline\\TerraExplorer\\Setup.exe [OP]/U
Total Video Converter 3.12 080330-->\"E:\\Program Files\\Total Video Converter\\unins000.exe\"
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=\"\"
ViaMichelin Navigation PND-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\11\\00\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\\setup.exe\" -l0x40c -removeonly
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual C++ CRT 9.0-->MsiExec.exe /I{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}
Windows Internet Explorer 8-->\"E:\\WINDOWS\\ie8\\spuninst\\spuninst.exe\"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->\"E:\\Program Files\\Windows Media Player\\wmsetsdk.exe\" /UninstallAll
Windows XP Service Pack 3-->\"E:\\WINDOWS\\$NtServicePackUninstall$\\spuninst\\spuninst.exe\"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: G Data TotalCare 2010
FW: Pare-feu personnel G Data

======System event log======

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service G Data Scanner est entré dans l\'état : en cours d\'exécution.

Record Number: 124382
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l\'état : en cours d\'exécution.

Record Number: 124381
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 124380
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service G Data Scanner.

Record Number: 124379
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l\'état : en cours d\'exécution.

Record Number: 124378
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service démarré

Record Number: 5152
Source Name: GDFwSvc
Time Written: 20090430081418.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5151
Source Name: SecurityCenter
Time Written: 20090430081411.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message:
Record Number: 5150
Source Name: SeaPort
Time Written: 20090430081402.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service started

Record Number: 5149
Source Name: AVKProxy
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 105
Message: The service was started.

Record Number: 5148
Source Name: ATI Smart
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

======Environment variables======

\"ComSpec\"=%SystemRoot%\\system32\\cmd.exe
\"Path\"=%SystemRoot%\\system32;%SystemRoot%;%SystemRoot%\\system32\\WBEM
\"windir\"=%SystemRoot%
\"FP_NO_HOST_CHECK\"=NO
\"OS\"=Windows_NT
\"PROCESSOR_ARCHITECTURE\"=x86
\"PROCESSOR_LEVEL\"=15
\"PROCESSOR_IDENTIFIER\"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
\"PROCESSOR_REVISION\"=0209
\"NUMBER_OF_PROCESSORS\"=2
\"PATHEXT\"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
\"TEMP\"=%SystemRoot%\\TEMP
\"TMP\"=%SystemRoot%\\TEMP

-----------------EOF-----------------
info.txt logfile of random\'s system information tool 1.06 2009-10-13 08:30:38

======Uninstall list======

-->E:\\Program Files\\Nero\\Nero 7\\\\nero\\uninstall\\UNNERO.exe /UNINSTALL
-->E:\\WINDOWS\\NuNInst.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroBackItUp.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroMediaHome.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroShowTime.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroVision.exe /UNINSTALL
-->E:\\WINDOWS\\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\\WINDOWS\\INF\\PCHealth.inf
Acronis True Image Home-->MsiExec.exe /X{E5343B27-55DF-40BD-9FCF-A643C1331E8A}
Adobe Flash Player 10 ActiveX-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_plugin.exe
Adobe Photoshop 7.0-->E:\\WINDOWS\\ISUN040C.EXE -f\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.isu\" -c\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.dll\"
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->E:\\Program Files\\WinRAR\\uninstall.exe
Ask Toolbar-->\"E:\\Program Files\\AskBarDis\\unins000.exe\"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->E:\\Program Files\\ATI Technologies\\UninstallAll\\AtiCimUn.exe
ATI Display Driver-->rundll32 E:\\WINDOWS\\system32\\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avanquest update-->E:\\Program Files\\InstallShield Installation Information\\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\\Setup.exe -runfromtemp -l0x0009 -removeonly
AVIcodec (remove only)-->\"E:\\Program Files\\AVIcodec\\uninst.exe\"
AviSynth 2.5-->\"E:\\Program Files\\AviSynth 2.5\\Uninstall.exe\"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\\SETUP.EXE\" -l0x40c UNINST
CCleaner (remove only)-->\"E:\\Program Files\\CCleaner\\uninst.exe\"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clavier+ 10.6.1-->\"E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\unins000.exe\"
CursorXP-->E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Themes\\CurXPUtil.exe -u
CX4300_5500_DX4400 Manuel-->E:\\Program Files\\EPSON\\TPMANUAL\\CX4300_5500_DX4400\\FRA\\USE_G\\DOCUNINS.EXE
Defraggler-->\"E:\\Program Files\\Defraggler\\uninst.exe\"
Digital Photo Navigator 1.5-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}\\setup.EXE\" -l0x9
DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
EPSON Attach To Email-->E:\\Program Files\\Fichiers communs\\InstallShield\\Driver\\8\\Intel 32\\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{67EDD823-135A-4D59-87BD-950616D6E857}\\SETUP.EXE\" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\\SETUP.EXE\" -l0x40c UNINST
EPSON File Manager-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\\Setup.exe\" -l0x40c UNINST
EPSON Logiciel imprimante-->E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\\Setup.exe\" -l0x40c -u
EPSON Scan-->E:\\Program Files\\epson\\escndv\\setup\\setup.exe /r
G Data TotalCare-->MsiExec.exe /I{C8D55041-A13C-4620-8DF4-9C5A9C16908D}
Glary Utilities Pro 2.16.0.758-->\"E:\\Program Files\\Glary Utilities\\unins000.exe\"
Google Gmail Notifier-->\"E:\\Program Files\\Google\\Gmail Notifier\\UninstallGmail.exe\"
Google Toolbar for Internet Explorer-->\"E:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarManager_E582EA556D8DE101.exe\" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules Deluxe Webcam Drivers-->E:\\Program Files\\InstallShield Installation Information\\{B77C6FD0-770A-489A-81CA-1BFEEF7CEA85}\\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->\"E:\\Program Files\\trend micro\\HijackThis.exe\" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=\"\"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=\"\"
Installation Windows Live-->E:\\Program Files\\Windows Live\\Installer\\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Lecteur Windows Media 11-->\"E:\\Program Files\\Windows Media Player\\Setup_wm.exe\" /Uninstall
Malwarebytes\' Anti-Malware-->\"E:\\Program Files\\Malwarebytes\' Anti-Malware\\unins000.exe\"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.5\\Microsoft .NET Framework 3.5 SP1\\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 4.0-->MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->\"E:\\WINDOWS\\ie8updates\\KB971961-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->\"E:\\WINDOWS\\ie8updates\\KB972260-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows XP (KB923789)-->E:\\WINDOWS\\system32\\MacroMed\\Flash\\genuinst.exe E:\\WINDOWS\\system32\\MacroMed\\Flash\\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB972636)-->\"E:\\WINDOWS\\ie8updates\\KB972636-IE8\\spuninst\\spuninst.exe\"
Mozilla Firefox (3.5.3)-->E:\\Program Files\\Mozilla Firefox\\uninstall\\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 7 Ultra Edition-->MsiExec.exe /I{43FFE159-3199-4188-A1CD-629166AD1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuf - Kit de connexion-->E:\\Program Files\\Neuf\\Kit\\uninstall.exe
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerCinema NE for Everio-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{39CEE1F2-12B6-4C50-9131-04BFCA110578}\\setup.exe\" -uninstall
PowerProducer-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\\setup.exe\" -uninstall
PowerQuest PartitionMagic 8.0-->E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\Driver\\7\\INTEL3~1\\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Realtek AC\'97 Audio-->Alcrmv.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SIW version 2009-02-24-->\"E:\\Program Files\\SIW\\unins000.exe\"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
Sony Ericsson PC Suite 4.010.00-->E:\\Program Files\\InstallShield Installation Information\\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\\Setup.exe -runfromtemp -l0x040c -removeonly
TeamViewer 3-->E:\\Program Files\\TeamViewer3\\uninstall.exe
TerraExplorer-->E:\\Program Files\\Skyline\\TerraExplorer\\Setup.exe [OP]/U
Total Video Converter 3.12 080330-->\"E:\\Program Files\\Total Video Converter\\unins000.exe\"
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=\"\"
ViaMichelin Navigation PND-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\11\\00\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\\setup.exe\" -l0x40c -removeonly
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual C++ CRT 9.0-->MsiExec.exe /I{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}
Windows Internet Explorer 8-->\"E:\\WINDOWS\\ie8\\spuninst\\spuninst.exe\"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->\"E:\\Program Files\\Windows Media Player\\wmsetsdk.exe\" /UninstallAll
Windows XP Service Pack 3-->\"E:\\WINDOWS\\$NtServicePackUninstall$\\spuninst\\spuninst.exe\"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: G Data TotalCare 2010
FW: Pare-feu personnel G Data

======System event log======

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service G Data Scanner est entré dans l\'état : en cours d\'exécution.

Record Number: 124382
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l\'état : en cours d\'exécution.

Record Number: 124381
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 124380
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service G Data Scanner.

Record Number: 124379
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l\'état : en cours d\'exécution.

Record Number: 124378
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service démarré

Record Number: 5152
Source Name: GDFwSvc
Time Written: 20090430081418.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5151
Source Name: SecurityCenter
Time Written: 20090430081411.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message:
Record Number: 5150
Source Name: SeaPort
Time Written: 20090430081402.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service started

Record Number: 5149
Source Name: AVKProxy
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 105
Message: The service was started.

Record Number: 5148
Source Name: ATI Smart
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

======Environment variables======

\"ComSpec\"=%SystemRoot%\\system32\\cmd.exe
\"Path\"=%SystemRoot%\\system32;%SystemRoot%;%SystemRoot%\\system32\\WBEM
\"windir\"=%SystemRoot%
\"FP_NO_HOST_CHECK\"=NO
\"OS\"=Windows_NT
\"PROCESSOR_ARCHITECTURE\"=x86
\"PROCESSOR_LEVEL\"=15
\"PROCESSOR_IDENTIFIER\"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
\"PROCESSOR_REVISION\"=0209
\"NUMBER_OF_PROCESSORS\"=2
\"PATHEXT\"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
\"TEMP\"=%SystemRoot%\\TEMP
\"TMP\"=%SystemRoot%\\TEMP

-----------------EOF-----------------info.txt logfile of random\'s system information tool 1.06 2009-10-13 08:30:38

======Uninstall list======

-->E:\\Program Files\\Nero\\Nero 7\\\\nero\\uninstall\\UNNERO.exe /UNINSTALL
-->E:\\WINDOWS\\NuNInst.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroBackItUp.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroMediaHome.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroShowTime.exe /UNINSTALL
-->E:\\WINDOWS\\UNNeroVision.exe /UNINSTALL
-->E:\\WINDOWS\\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 E:\\WINDOWS\\INF\\PCHealth.inf
Acronis True Image Home-->MsiExec.exe /X{E5343B27-55DF-40BD-9FCF-A643C1331E8A}
Adobe Flash Player 10 ActiveX-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->E:\\WINDOWS\\system32\\Macromed\\Flash\\uninstall_plugin.exe
Adobe Photoshop 7.0-->E:\\WINDOWS\\ISUN040C.EXE -f\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.isu\" -c\"E:\\Program Files\\Adobe\\Photoshop 7.0\\Uninst.dll\"
Adobe Photoshop Elements 7.0-->msiexec /i {CB6075D9-F912-40AE-BEA6-E590DA24F16B}
Adobe Reader 9.1.3 - Français-->MsiExec.exe /I{AC76BA86-7AD7-1036-7B44-A91000000001}
Archiveur WinRAR-->E:\\Program Files\\WinRAR\\uninstall.exe
Ask Toolbar-->\"E:\\Program Files\\AskBarDis\\unins000.exe\"
Assistant de connexion Windows Live-->MsiExec.exe /I{DCE8CD14-FBF5-4464-B9A4-E18E473546C7}
ATI - Software Uninstall Utility-->E:\\Program Files\\ATI Technologies\\UninstallAll\\AtiCimUn.exe
ATI Display Driver-->rundll32 E:\\WINDOWS\\system32\\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Avanquest update-->E:\\Program Files\\InstallShield Installation Information\\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\\Setup.exe -runfromtemp -l0x0009 -removeonly
AVIcodec (remove only)-->\"E:\\Program Files\\AVIcodec\\uninst.exe\"
AviSynth 2.5-->\"E:\\Program Files\\AviSynth 2.5\\Uninstall.exe\"
Camera RAW Plug-In for EPSON Creativity Suite-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}\\SETUP.EXE\" -l0x40c UNINST
CCleaner (remove only)-->\"E:\\Program Files\\CCleaner\\uninst.exe\"
Choice Guard-->MsiExec.exe /I{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}
Clavier+ 10.6.1-->\"E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\unins000.exe\"
CursorXP-->E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Themes\\CurXPUtil.exe -u
CX4300_5500_DX4400 Manuel-->E:\\Program Files\\EPSON\\TPMANUAL\\CX4300_5500_DX4400\\FRA\\USE_G\\DOCUNINS.EXE
Defraggler-->\"E:\\Program Files\\Defraggler\\uninst.exe\"
Digital Photo Navigator 1.5-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{CF9CD37C-E29A-11D5-AE3D-005004B8E30C}\\setup.EXE\" -l0x9
DriverAgent by TouchStone Software-->RunDll32.exe advpack.dll,LaunchINFSection driveragent_exe.inf,TVICHW32Remove
EPSON Attach To Email-->E:\\Program Files\\Fichiers communs\\InstallShield\\Driver\\8\\Intel 32\\IDriver.exe /M{20C45B32-5AB6-46A4-94EF-58950CAF05E5} /l1033 ADDREMOVEDLG
EPSON Copy Utility 3-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{67EDD823-135A-4D59-87BD-950616D6E857}\\SETUP.EXE\" -l0x40c -UnInstall
EPSON Easy Photo Print-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}\\SETUP.EXE\" -l0x40c UNINST
EPSON File Manager-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}\\Setup.exe\" -l0x40c UNINST
EPSON Logiciel imprimante-->E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\EPUPDATE.EXE /R
EPSON Scan Assistant-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\0701\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}\\Setup.exe\" -l0x40c -u
EPSON Scan-->E:\\Program Files\\epson\\escndv\\setup\\setup.exe /r
G Data TotalCare-->MsiExec.exe /I{C8D55041-A13C-4620-8DF4-9C5A9C16908D}
Glary Utilities Pro 2.16.0.758-->\"E:\\Program Files\\Glary Utilities\\unins000.exe\"
Google Gmail Notifier-->\"E:\\Program Files\\Google\\Gmail Notifier\\UninstallGmail.exe\"
Google Toolbar for Internet Explorer-->\"E:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarManager_E582EA556D8DE101.exe\" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Hercules Deluxe Webcam Drivers-->E:\\Program Files\\InstallShield Installation Information\\{B77C6FD0-770A-489A-81CA-1BFEEF7CEA85}\\setup.exe -runfromtemp -l0x040c -removeonly
HijackThis 2.0.2-->\"E:\\Program Files\\trend micro\\HijackThis.exe\" /uninstall
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=\"\"
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=\"\"
Installation Windows Live-->E:\\Program Files\\Windows Live\\Installer\\wlarp.exe
Installation Windows Live-->MsiExec.exe /I{7370DF47-B4F9-4279-BFC3-3F09919F720D}
Java(TM) 6 Update 15-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216014FF}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Junk Mail filter update-->MsiExec.exe /I{4DE3E3D9-AE81-45DE-9195-3015F7B1DBF3}
Lecteur Windows Media 11-->\"E:\\Program Files\\Windows Media Player\\Setup_wm.exe\" /Uninstall
Malwarebytes\' Anti-Malware-->\"E:\\Program Files\\Malwarebytes\' Anti-Malware\\unins000.exe\"
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.5\\Microsoft .NET Framework 3.5 SP1\\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft ActiveSync 4.0-->MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Office XP Professional-->MsiExec.exe /I{9211040C-6000-11D3-8CFE-0050048383C9}
Microsoft Search Enhancement Pack-->MsiExec.exe /I{9C9CEB9D-53FD-49A7-85D2-FE674F72F24E}
Microsoft Sync Framework Runtime Native v1.0 (x86)-->MsiExec.exe /I{8A74E887-8F0F-4017-AF53-CBA42211AAA5}
Microsoft Sync Framework Services Native v1.0 (x86)-->MsiExec.exe /I{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB971961)-->\"E:\\WINDOWS\\ie8updates\\KB971961-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows Internet Explorer 8 (KB972260)-->\"E:\\WINDOWS\\ie8updates\\KB972260-IE8\\spuninst\\spuninst.exe\"
Mise à jour de sécurité pour Windows XP (KB923789)-->E:\\WINDOWS\\system32\\MacroMed\\Flash\\genuinst.exe E:\\WINDOWS\\system32\\MacroMed\\Flash\\KB923789.inf
Mise à jour pour Windows Internet Explorer 8 (KB972636)-->\"E:\\WINDOWS\\ie8updates\\KB972636-IE8\\spuninst\\spuninst.exe\"
Mozilla Firefox (3.5.3)-->E:\\Program Files\\Mozilla Firefox\\uninstall\\helper.exe
MSVCRT-->MsiExec.exe /I{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Nero 7 Ultra Edition-->MsiExec.exe /I{43FFE159-3199-4188-A1CD-629166AD1036}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuf - Kit de connexion-->E:\\Program Files\\Neuf\\Kit\\uninstall.exe
Outil de téléchargement Windows Live-->MsiExec.exe /I{205C6BDD-7B73-42DE-8505-9A093F35A238}
PowerCinema NE for Everio-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{39CEE1F2-12B6-4C50-9131-04BFCA110578}\\setup.exe\" -uninstall
PowerProducer-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\engine\\6\\INTEL3~1\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{B7A0CE06-068E-11D6-97FD-0050BACBF861}\\setup.exe\" -uninstall
PowerQuest PartitionMagic 8.0-->E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\Driver\\7\\INTEL3~1\\IDriver.exe /M{6BE2A4A4-99FB-48ED-AE1E-4E850389F804}
Realtek AC\'97 Audio-->Alcrmv.exe -r -m
Segoe UI-->MsiExec.exe /I{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}
SIW version 2009-02-24-->\"E:\\Program Files\\SIW\\unins000.exe\"
SnagIt 8-->MsiExec.exe /I{DA0BF7AB-88EB-4675-8FA1-531EAD938821}
Sony Ericsson PC Suite 4.010.00-->E:\\Program Files\\InstallShield Installation Information\\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\\Setup.exe -runfromtemp -l0x040c -removeonly
TeamViewer 3-->E:\\Program Files\\TeamViewer3\\uninstall.exe
TerraExplorer-->E:\\Program Files\\Skyline\\TerraExplorer\\Setup.exe [OP]/U
Total Video Converter 3.12 080330-->\"E:\\Program Files\\Total Video Converter\\unins000.exe\"
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->E:\\WINDOWS\\system32\\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=\"\"
ViaMichelin Navigation PND-->RunDll32 E:\\PROGRA~1\\FICHIE~1\\INSTAL~1\\PROFES~1\\RunTime\\11\\00\\Intel32\\Ctor.dll,LaunchSetup \"E:\\Program Files\\InstallShield Installation Information\\{47FF921C-E834-47A6-8CE4-F0A99CDE347F}\\setup.exe\" -l0x40c -removeonly
Vista Codec Package-->MsiExec.exe /I{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}
Visual C++ CRT 9.0-->MsiExec.exe /I{9ED38F62-7A50-4145-8C5D-0FCFFBF10A7B}
Windows Internet Explorer 8-->\"E:\\WINDOWS\\ie8\\spuninst\\spuninst.exe\"
Windows Live Call-->MsiExec.exe /I{82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41}
Windows Live Communications Platform-->MsiExec.exe /I{3B4E636E-9D65-4D67-BA61-189800823F52}
Windows Live Mail-->MsiExec.exe /I{63DC2DA0-2A6C-4C38-9249-B75395458657}
Windows Live Messenger-->MsiExec.exe /X{059C042E-796A-4ACC-A81A-ECC2010BB78C}
Windows Live Toolbar-->MsiExec.exe /X{F7D27C70-90F5-49B9-B188-0A133C0CE353}
Windows Media Format Runtime-->\"E:\\Program Files\\Windows Media Player\\wmsetsdk.exe\" /UninstallAll
Windows XP Service Pack 3-->\"E:\\WINDOWS\\$NtServicePackUninstall$\\spuninst\\spuninst.exe\"

======Hosts File======

127.0.0.1 localhost

======Security center information======

AV: G Data TotalCare 2010
FW: Pare-feu personnel G Data

======System event log======

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service G Data Scanner est entré dans l\'état : en cours d\'exécution.

Record Number: 124382
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service NLA (Network Location Awareness) est entré dans l\'état : en cours d\'exécution.

Record Number: 124381
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service NLA (Network Location Awareness).

Record Number: 124380
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7035
Message: Un contrôle Démarrer a correctement été envoyé au service G Data Scanner.

Record Number: 124379
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User: AUTORITE NT\\SYSTEM

Computer Name: RAYMONDBUREAU
Event Code: 7036
Message: Le service Service COM de gravage de CD IMAPI est entré dans l\'état : en cours d\'exécution.

Record Number: 124378
Source Name: Service Control Manager
Time Written: 20090923082112.000000+120
Event Type: Informations
User:

=====Application event log=====

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service démarré

Record Number: 5152
Source Name: GDFwSvc
Time Written: 20090430081418.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 1800
Message: Le service Centre de sécurité Windows a démarré.

Record Number: 5151
Source Name: SecurityCenter
Time Written: 20090430081411.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message:
Record Number: 5150
Source Name: SeaPort
Time Written: 20090430081402.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 0
Message: Service started

Record Number: 5149
Source Name: AVKProxy
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

Computer Name: RAYMONDBUREAU
Event Code: 105
Message: The service was started.

Record Number: 5148
Source Name: ATI Smart
Time Written: 20090430081401.000000+120
Event Type: Informations
User:

======Environment variables======

\"ComSpec\"=%SystemRoot%\\system32\\cmd.exe
\"Path\"=%SystemRoot%\\system32;%SystemRoot%;%SystemRoot%\\system32\\WBEM
\"windir\"=%SystemRoot%
\"FP_NO_HOST_CHECK\"=NO
\"OS\"=Windows_NT
\"PROCESSOR_ARCHITECTURE\"=x86
\"PROCESSOR_LEVEL\"=15
\"PROCESSOR_IDENTIFIER\"=x86 Family 15 Model 2 Stepping 9, GenuineIntel
\"PROCESSOR_REVISION\"=0209
\"NUMBER_OF_PROCESSORS\"=2
\"PATHEXT\"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
\"TEMP\"=%SystemRoot%\\TEMP
\"TMP\"=%SystemRoot%\\TEMP

-----------------EOF-----------------
Je n\'arrive pas à coller le \"info txt\"

je reessaie:
Logfile of random\'s system information tool 1.06 (written by random/random)
Run by Utilisateur at 2009-11-15 21:16:27
Microsoft Windows XP Édition familiale Service Pack 3
System drive E: has 10 GB (34%) free of 29 GB
Total RAM: 1022 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:16:45, on 15/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
E:\\WINDOWS\\System32\\smss.exe
E:\\WINDOWS\\system32\\winlogon.exe
E:\\WINDOWS\\system32\\services.exe
E:\\WINDOWS\\system32\\lsass.exe
E:\\WINDOWS\\system32\\Ati2evxx.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\WINDOWS\\system32\\Ati2evxx.exe
E:\\WINDOWS\\Explorer.EXE
E:\\WINDOWS\\system32\\spoolsv.exe
E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe
E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe
E:\\Program Files\\Java\\jre6\\bin\\jusched.exe
E:\\WINDOWS\\system32\\ctfmon.exe
E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe
E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe
E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe
E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\Program Files\\Java\\jre6\\bin\\jqs.exe
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe
E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\Program Files\\Mozilla Firefox\\firefox.exe
E:\\Program Files\\Google\\Gmail Notifier\\gnotify.exe
C:\\Téléchargements\\RSIT.exe
E:\\Program Files\\trend micro\\Utilisateur.exe

R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.wibeez.com/france
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://fr.msn.com/
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyServer = 127.0.0.1:8080
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = local
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Liens
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItBHO.dll
O2 - BHO: G Data WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\\Program Files\\Fichiers communs\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - E:\\Program Files\\Microsoft\\Search Enhancement Pack\\Search Helper\\SearchHelper.dll
O2 - BHO: Programme d\'aide de l\'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\\Program Files\\Google\\GoogleToolbarNotifier\\5.3.4501.1418\\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - E:\\Program Files\\Google\\Google Toolbar\\Component\\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: ZeonIEEventHelper Class - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItIEAddin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O3 - Toolbar: G Data WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - (no file)
O3 - Toolbar: Nuance PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll
O4 - HKLM\\..\\Run: [GDFirewallTray] E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe
O4 - HKLM\\..\\Run: [G DATA AntiVirus Trayapplication] E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe
O4 - HKLM\\..\\Run: [Malwarebytes\' Anti-Malware] \"E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe\" /starttray
O4 - HKLM\\..\\Run: [Nuance OmniPage 17-reminder] \"E:\\Program Files\\Nuance\\OmniPage17\\Ereg\\Ereg.exe\" -r \"E:\\Documents and Settings\\All Users\\Application Data\\ScanSoft\\OmniPage 17\\Ereg\\Ereg.ini\"
O4 - HKLM\\..\\Run: [PPort11reminder] \"E:\\Program Files\\ScanSoft\\PaperPort\\Ereg\\Ereg.exe\" -r \"E:\\Documents and Settings\\All Users\\Application Data\\ScanSoft\\PaperPort\\11\\Config\\Ereg\\Ereg.ini\"
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"E:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"
O4 - HKLM\\..\\Run: [Malwarebytes Anti-Malware (reboot)] \"E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbam.exe\" /runcleanupscript
O4 - HKCU\\..\\Run: [ctfmon.exe] E:\\WINDOWS\\system32\\ctfmon.exe
O4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] E:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')
O4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] E:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')
O4 - Startup: Notification de cadeaux MSN.lnk = E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe
O8 - Extra context menu item: Ajouter au fichier PDF existant - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 - Extra context menu item: Ajouter le contenu des liens sélectionnés à un fichier PDF existant - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
O8 - Extra context menu item: Ajouter le contenu du lien à un fichier PDF existant - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIEAppend.HTML
O8 - Extra context menu item: Créer des fichiers PDF à partir des liens sélectionnés - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
O8 - Extra context menu item: Créer fichier PDF - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 - Extra context menu item: Créer un fichier PDF depuis le contenu du lien - res://E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll/ZeonIECapture.HTML
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://E:\\PROGRA~1\\MICROS~2\\Office10\\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra \'Tools\' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\\Program Files\\Messenger\\msmsgs.exe (file missing)
O9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\\Program Files\\Messenger\\msmsgs.exe (file missing)
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1214644255671
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\\WINDOWS\\system32\\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - E:\\WINDOWS\\system32\\ati2sgag.exe
O23 - Service: G Data AntiVirus Proxy (AVKProxy) - G DATA Software AG - E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe
O23 - Service: Planificateur G Data (AVKService) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe
O23 - Service: G Data Gardien (AVKWCtl) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe
O23 - Service: G Data Tuner Service - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVKTuner\\AVKTunerService.exe
O23 - Service: Pare-feu personnel G Data (GDFwSvc) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe
O23 - Service: G Data Scanner (GDScan) - G Data Software AG - E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\\Program Files\\Java\\jre6\\bin\\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - E:\\Program Files\\WinPcap\\rpcapd.exe
O23 - Service: Service G Data Backup - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVKBackup\\AVKBackupService.exe

--
End of file - 10309 bytes

======Scheduled tasks folder======

E:\\WINDOWS\\tasks\\Defraggler Volume E Task.job
E:\\WINDOWS\\tasks\\Maintenance en 1 clic.job
E:\\WINDOWS\\tasks\\Malwarebytes\' Scheduled Scan for Utilisateur.job
E:\\WINDOWS\\tasks\\Malwarebytes\' Scheduled Update for Utilisateur.job

======Registry dump======

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
SnagIt Toolbar Loader - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItBHO.dll [2007-05-16 63048]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{0124123D-61B4-456f-AF86-78C53A0790C5}]
G Data WebFilter - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll [2009-09-07 594504]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - E:\\Program Files\\Fichiers communs\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll [2009-02-27 75128]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - E:\\Program Files\\Microsoft\\Search Enhancement Pack\\Search Helper\\SearchHelper.dll [2008-12-04 92504]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Programme d\'aide de l\'Assistant de connexion Windows Live - E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll [2009-09-13 256112]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - E:\\Program Files\\Google\\GoogleToolbarNotifier\\5.3.4501.1418\\swg.dll [2009-09-15 762864]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - E:\\Program Files\\Google\\Google Toolbar\\Component\\fastsearch_B7C5AC242193BB3E.dll [2009-09-13 458736]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9}]
ZeonIEEventHelper Class - E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll [2008-11-19 479232]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - E:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll [2009-10-11 41760]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll [2009-02-06 1068904]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Browser Helper Objects\\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - E:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll [2009-10-11 73728]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Internet Explorer\\Toolbar]
{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - SnagIt - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItIEAddin.dll [2007-05-16 161352]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll [2009-02-06 1068904]
{0124123D-61B4-456f-AF86-78C53A0790C5} - G Data WebFilter - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll [2009-09-07 594504]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll [2009-09-13 256112]
{3041d03e-fd4b-44e0-b742-2d9b88305f98}
{E3286BF1-E654-42FF-B4A6-5E111731DF6B} - Nuance PDF - E:\\Program Files\\Nuance\\PDF Create 5\\Bin\\ZeonIEFavClient.dll [2008-11-19 479232]

[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"GDFirewallTray\"=E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe [2009-08-12 1124424]
\"G DATA AntiVirus Trayapplication\"=E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe [2009-09-07 925768]
\"Malwarebytes\' Anti-Malware\"=E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe [2009-09-10 420176]
\"Nuance OmniPage 17-reminder\"=E:\\Program Files\\Nuance\\OmniPage17\\Ereg\\Ereg.exe [2008-11-03 54560]
\"PPort11reminder\"=E:\\Program Files\\ScanSoft\\PaperPort\\Ereg\\Ereg.exe [2007-08-31 328992]
\"SunJavaUpdateSched\"=E:\\Program Files\\Java\\jre6\\bin\\jusched.exe [2009-10-11 149280]
\"Malwarebytes Anti-Malware (reboot)\"=E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbam.exe [2009-09-10 1312080]

[HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Run]
\"ctfmon.exe\"=E:\\WINDOWS\\system32\\ctfmon.exe [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Acronis Scheduler2 Service]
E:\\Program Files\\Fichiers communs\\Acronis\\Schedule2\\schedhlp.exe [2007-10-07 140568]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\AcronisTimounterMonitor]
E:\\Program Files\\Acronis\\TrueImageHome\\TimounterMonitor.exe [2007-10-07 904880]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Adobe ARM]
E:\\Program Files\\Fichiers communs\\Adobe\\ARM\\1.0\\AdobeARM.exe [2009-09-04 935288]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
E:\\Program Files\\Fichiers communs\\Ahead\\Lib\\NMBgMonitor.exe [2007-03-12 153136]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Clavier+]
E:\\Documents and Settings\\Utilisateur\\Local Settings\\Application Data\\Clavier+\\Clavier.exe [2007-10-21 88576]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\CTFMON.EXE]
E:\\WINDOWS\\system32\\ctfmon.exe [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\EPSON Stylus DX4400 Series]
E:\\WINDOWS\\System32\\spool\\DRIVERS\\W32X86\\3\\E_FATICAE.EXE [2007-03-01 180736]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\EverioService]
E:\\Program Files\\CyberLink\\PCM4Everio\\EverioService.exe [2006-11-22 151552]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\H/PC Connection Agent]
E:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe [2006-06-26 1211176]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\IndexSearch]
E:\\Program Files\\ScanSoft\\PaperPort\\IndexSearch.exe [2008-05-10 46368]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Kernel and Hardware Abstraction Layer]
E:\\WINDOWS\\KHALMNPR.EXE [2008-02-29 76304]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Logitech Hardware Abstraction Layer]
E:\\WINDOWS\\KHALMNPR.EXE [2008-02-29 76304]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Malwarebytes Anti-Malware (reboot)]
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbam.exe [2009-09-10 1312080]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\PaperPort PTD]
E:\\Program Files\\ScanSoft\\PaperPort\\pptd40nt.exe [2008-05-10 29984]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\PDF5 Registry Controller]
E:\\Program Files\\Nuance\\PDF Create 5\\RegistryController.exe [2008-12-13 58656]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\PDFHook]
E:\\Program Files\\Nuance\\PDF Create 5\\pdfcreate5hook.exe [2009-04-10 1277952]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\RadioSure]
[]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Sony Ericsson PC Suite]
E:\\Program Files\\Sony Ericsson\\Sony Ericsson PC Suite\\SEPCSuite.exe [2008-07-10 397312]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\SoundMan]
E:\\WINDOWS\\SOUNDMAN.EXE [2006-08-02 577536]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\SSBkgdUpdate]
E:\\Program Files\\Fichiers communs\\Scansoft Shared\\SSBkgdUpdate\\SSBkgdupdate.exe [2006-10-25 210472]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\SunJavaUpdateSched]
E:\\Program Files\\Java\\jre6\\bin\\jusched.exe [2009-10-11 149280]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\swg]
E:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe [2008-09-06 68856]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\TrueImageMonitor.exe]
E:\\Program Files\\Acronis\\TrueImageHome\\TrueImageMonitor.exe [2007-10-07 2620336]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupfolder\\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Adobe Gamma Loader.lnk]
E:\\PROGRA~1\\FICHIE~1\\Adobe\\CALIBR~1\\ADOBEG~1.EXE [2000-08-24 110592]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupfolder\\E:^Documents and Settings^All Users^Menu Démarrer^Programmes^Démarrage^Microsoft Office.lnk]
E:\\PROGRA~1\\MICROS~2\\Office10\\OSA.EXE [2001-02-13 83360]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupfolder\\E:^Documents and Settings^Utilisateur^Menu Démarrer^Programmes^Démarrage^ERUNT AutoBackup.lnk]
[]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupfolder\\E:^Documents and Settings^Utilisateur^Menu Démarrer^Programmes^Démarrage^GigaTribe.lnk]
[]

[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\services]
\"ERSvc\"=2
\"WMPNetworkSvc\"=3
\"WLSetupSvc\"=3
\"usnjsvc\"=3
\"RichVideo\"=2
\"PD91Engine\"=3
\"PD91Agent\"=3
\"NMIndexingService\"=3
\"NBService\"=3
\"gusvc\"=3
\"TuneUp.ProgramStatisticsSvc\"=2
\"TuneUp.Defrag\"=3
\"TryAndDecideService\"=2
\"Service de sauvegarde G DATA\"=3
\"SeaPort\"=2
\"FLEXnet Licensing Service\"=3
\"AdobeActiveFileMonitor7.0\"=3
\"AcrSch2Svc\"=2

E:\\Documents and Settings\\Utilisateur\\Menu Démarrer\\Programmes\\Démarrage
Notification de cadeaux MSN.lnk - E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows NT\\CurrentVersion\\Winlogon\\Notify\\AtiExtEvent]
E:\\WINDOWS\\system32\\Ati2evxx.dll [2006-05-03 61440]

[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\\WINDOWS\\system32\\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Lsa]
\"authentication packages\"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\SafeBoot\\network\\nm]

[HKEY_LOCAL_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\SafeBoot\\network\\nm.sys]

[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\System]
\"dontdisplaylastusername\"=0
\"legalnoticecaption\"=
\"legalnoticetext\"=
\"undockwithoutlogon\"=1
\"ShutdownWithoutLogon\"=0

[HKEY_CURRENT_USER\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\explorer]
\"NoDriveAutoRun\"=67108863
\"HonorAutoRunSetting\"=1
\"NoDrives\"=0

[HKEY_LOCAL_MACHINE\\Software\\Microsoft\\Windows\\CurrentVersion\\Policies\\explorer]
\"HonorAutoRunSetting\"=
\"NoDriveAutoRun\"=
\"NoDriveTypeAutoRun\"=
\"NoDrives\"=

[HKEY_LOCAL_MACHINE\\system\\currentcontrolset\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\authorizedapplications\\list]
\"%windir%\\system32\\sessmgr.exe\"=\"%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019\"
\"%windir%\\Network Diagnostic\\xpnetdiag.exe\"=\"%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000\"
\"E:\\Program Files\\TeamViewer3\\TeamViewer.exe\"=\"E:\\Program Files\\TeamViewer3\\TeamViewer.exe:*:Enabled:Application de pilotage à distance TeamViewer\"
\"E:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager\"
\"E:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager\"
\"E:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application\"
\"E:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\"=\"E:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger\"

[HKEY_LOCAL_MACHINE\\system\\currentcontrolset\\services\\sharedaccess\\parameters\\firewallpolicy\\domainprofile\\authorizedapplications\\list]
\"%windir%\\system32\\sessmgr.exe\"=\"%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019\"
\"%windir%\\Network Diagnostic\\xpnetdiag.exe\"=\"%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000\"
\"E:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager\"
\"E:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager\"
\"E:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe\"=\"E:\\Program Files\\Microsoft ActiveSync\\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application\"
\"I:\\malware bytes\\MalwarebytesPortable\\App\\Malwarebytes\\mbam.exe\"=\"I:\\malware bytes\\MalwarebytesPortable\\App\\Malwarebytes\\mbam.exe:*:Enabled:Malwarebytes\"
\"E:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\"=\"E:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger\"

======List of files/folders created in the last 1 months======

2009-11-14 22:59:08 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\dvdcss
2009-11-14 22:57:11 ----D---- E:\\Program Files\\VideoLAN
2009-11-14 20:34:56 ----A---- E:\\Program Files\\rdmp3faq.txt
2009-11-14 20:34:56 ----A---- E:\\Program Files\\RaMp3Cfg.exe
2009-11-14 20:30:39 ----A---- E:\\WINDOWS\\UNWISE.EXE
2009-11-14 09:49:36 ----A---- E:\\WINDOWS\\system32\\javaws.exe
2009-11-14 09:49:36 ----A---- E:\\WINDOWS\\system32\\javaw.exe
2009-11-14 09:49:36 ----A---- E:\\WINDOWS\\system32\\java.exe
2009-11-14 09:47:28 ----D---- E:\\Program Files\\WinPcap
2009-11-14 09:47:08 ----D---- E:\\Program Files\\TubeMaster++
2009-11-08 22:02:10 ----SHD---- E:\\#GDATA.Trash.Store#
2009-11-06 21:58:16 ----D---- E:\\Program Files\\Fichiers communs\\ODBC
2009-11-06 21:07:25 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\FLEXnet
2009-11-06 21:06:58 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\Zeon
2009-11-06 21:06:50 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\ScanSoft
2009-11-06 20:51:50 ----A---- E:\\WINDOWS\\maxlink.ini
2009-11-06 20:51:29 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\.oit
2009-11-06 20:51:20 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\InstallShield
2009-11-06 20:49:33 ----D---- E:\\Program Files\\Fichiers communs\\ScanSoft Shared
2009-11-06 20:49:30 ----D---- E:\\Program Files\\ScanSoft
2009-11-06 20:47:04 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\Nuance
2009-11-06 20:46:37 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\zeon
2009-11-06 20:46:25 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\Macrovision
2009-11-06 20:45:11 ----AD---- E:\\Documents and Settings\\All Users\\Application Data\\TEMP
2009-11-06 20:45:05 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\Nuance
2009-11-06 20:44:04 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\ScanSoft
2009-11-06 20:42:09 ----D---- E:\\Program Files\\Nuance
2009-11-06 20:42:09 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\FLEXnet
2009-11-02 20:43:00 ----D---- E:\\Program Files\\Dictionnaire le Littré 2.0
2009-10-28 19:48:27 ----D---- E:\\Program Files\\nLite
2009-10-26 18:47:21 ----D---- E:\\Program Files\\QuickPar
2009-10-26 14:40:21 ----D---- E:\\WINDOWS\\setup.pss
2009-10-26 14:39:54 ----D---- E:\\WINDOWS\\setupupd
2009-10-24 08:15:44 ----D---- E:\\Program Files\\Lavalys

======List of files/folders modified in the last 1 months======

2009-11-15 21:16:38 ----D---- E:\\WINDOWS\\temp
2009-11-15 21:16:30 ----D---- E:\\Program Files\\trend micro
2009-11-15 21:16:11 ----D---- E:\\WINDOWS\\Prefetch
2009-11-15 20:38:30 ----D---- E:\\WINDOWS\\system32
2009-11-15 20:38:30 ----A---- E:\\WINDOWS\\system32\\PerfStringBackup.INI
2009-11-15 20:36:01 ----D---- E:\\Program Files\\Mozilla Firefox
2009-11-15 20:34:32 ----D---- E:\\WINDOWS
2009-11-15 20:33:36 ----A---- E:\\WINDOWS\\SchedLgU.Txt
2009-11-15 20:33:02 ----D---- E:\\Program Files
2009-11-15 16:15:13 ----SHD---- E:\\WINDOWS\\Installer
2009-11-15 16:15:13 ----D---- E:\\Config.Msi
2009-11-15 16:15:05 ----D---- E:\\Program Files\\Windows Media Player
2009-11-15 16:12:07 ----D---- E:\\WINDOWS\\system32\\CatRoot2
2009-11-14 23:34:37 ----D---- E:\\Documents and Settings\\Utilisateur\\Application Data\\vlc
2009-11-14 20:24:11 ----D---- E:\\WINDOWS\\Help
2009-11-14 20:12:42 ----HD---- E:\\WINDOWS\\inf
2009-11-14 19:53:50 ----A---- E:\\WINDOWS\\NeroDigital.ini
2009-11-14 09:49:01 ----D---- E:\\Program Files\\Java
2009-11-14 09:47:29 ----D---- E:\\WINDOWS\\system32\\drivers
2009-11-08 23:07:34 ----A---- E:\\WINDOWS\\win.ini
2009-11-08 23:07:34 ----A---- E:\\WINDOWS\\system.ini
2009-11-08 22:19:12 ----SD---- E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft
2009-11-08 22:07:26 ----D---- E:\\WINDOWS\\system32\\Restore
2009-11-08 22:07:25 ----SHD---- E:\\System Volume Information
2009-11-08 22:02:10 ----D---- E:\\WINDOWS\\Downloaded Installations
2009-11-06 21:58:16 ----D---- E:\\Program Files\\Fichiers communs
2009-11-06 20:49:33 ----SD---- E:\\WINDOWS\\Downloaded Program Files
2009-11-06 20:44:49 ----D---- E:\\WINDOWS\\WinSxS
2009-11-02 18:22:30 ----SD---- E:\\Documents and Settings\\All Users\\Application Data\\Microsoft
2009-10-30 11:43:35 ----HD---- E:\\Program Files\\InstallShield Installation Information
2009-10-30 11:26:15 ----SD---- E:\\WINDOWS\\Tasks
2009-10-26 14:40:23 ----A---- E:\\WINDOWS\\UPGRADE.TXT
2009-10-26 08:37:38 ----RSHDC---- E:\\WINDOWS\\system32\\dllcache
2009-10-23 06:24:15 ----D---- E:\\Documents and Settings\\All Users\\Application Data\\Adobe
2009-10-22 16:36:53 ----D---- E:\\Program Files\\Fichiers communs\\Adobe
2009-10-17 13:21:19 ----A---- E:\\WINDOWS\\Kyor.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 GRD;G Data Rootkit Detector Driver; \\??\\E:\\WINDOWS\\system32\\drivers\\GRD.sys []
R1 InCDPass;InCDPass; E:\\WINDOWS\\system32\\drivers\\InCDPass.sys [2007-03-12 37040]
R1 incdrm;InCD Reader; E:\\WINDOWS\\system32\\drivers\\InCDRm.sys [2007-03-12 38576]
R1 intelppm;Pilote de processeur Intel; E:\\WINDOWS\\system32\\DRIVERS\\intelppm.sys [2008-04-13 40576]
R1 PQNTDrv;PQNTDrv; E:\\WINDOWS\\system32\\drivers\\PQNTDrv.sys [2002-09-16 4228]
R1 WS2IFSL;Environnement de prise en charge de Fournisseur de services non-IFS Windows Sockets 2.0; E:\\WINDOWS\\System32\\drivers\\ws2ifsl.sys [2004-08-05 12032]
R2 GDTdiInterceptor;GDTdiInterceptor; \\??\\E:\\WINDOWS\\system32\\drivers\\GDTdiIcpt.sys []
R2 tifsfilter;Acronis True Image FS Filter; E:\\WINDOWS\\system32\\DRIVERS\\tifsfilt.sys [2008-09-05 44384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); E:\\WINDOWS\\system32\\drivers\\ALCXWDM.SYS [2006-11-06 4024832]
R3 ati2mtag;ati2mtag; E:\\WINDOWS\\system32\\DRIVERS\\ati2mtag.sys [2006-05-03 1540608]
R3 FETNDIS;Pilote NT de carte VIA PCI 10/100Mo Fast Ethernet; E:\\WINDOWS\\system32\\DRIVERS\\fetnd5.sys [2001-08-17 27165]
R3 GDMnIcpt;GDMnIcpt; \\??\\E:\\WINDOWS\\system32\\drivers\\MiniIcpt.sys []
R3 GearAspiWDM;GEARAspiWDM; E:\\WINDOWS\\System32\\drivers\\GEARAspiWDM.sys [2008-02-22 16168]
R3 HookCentre;HookCentre; \\??\\E:\\WINDOWS\\system32\\drivers\\HookCentre.sys []
R3 MBAMProtector;MBAMProtector; \\??\\E:\\WINDOWS\\system32\\drivers\\mbam.sys []
R3 usbehci;Pilote miniport de contrôleur d\'hôte amélioré Microsoft USB 2.0; E:\\WINDOWS\\system32\\DRIVERS\\usbehci.sys [2008-04-13 30208]
R3 usbhub;Concentrateur USB2; E:\\WINDOWS\\system32\\DRIVERS\\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;Pilote de stockage de masse USB; E:\\WINDOWS\\system32\\DRIVERS\\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Pilote miniport de contrôleur hôte universel USB Microsoft; E:\\WINDOWS\\system32\\DRIVERS\\usbuhci.sys [2008-04-13 20608]
R3 W8335XP;Marvell Libertas 802.11b/g Driver for Windows XP (8335); E:\\WINDOWS\\system32\\DRIVERS\\MRV8335XP.sys [2006-08-15 265984]
R4 InCDfs;InCD File System; E:\\WINDOWS\\system32\\drivers\\InCDFs.sys [2007-03-12 118064]
S3 CCDECODE;Décodeur sous-titre fermé; E:\\WINDOWS\\system32\\DRIVERS\\CCDECODE.sys [2008-04-13 17024]
S3 GMSIPCI;GMSIPCI; \\??\\G:\\INSTALL\\GMSIPCI.SYS []
S3 hidusb;Pilote de classe HID Microsoft; E:\\WINDOWS\\system32\\DRIVERS\\hidusb.sys [2008-04-13 10368]
S3 L8042Kbd;Logitech SetPoint Keyboard Driver; E:\\WINDOWS\\system32\\DRIVERS\\L8042Kbd.sys [2008-02-29 20240]
S3 L8042mou;SetPoint PS/2 Mouse Filter Driver; E:\\WINDOWS\\system32\\DRIVERS\\L8042mou.Sys [2008-02-29 63120]
S3 LMouKE;SetPoint Mouse Filter Driver; E:\\WINDOWS\\system32\\DRIVERS\\LMouKE.Sys [2008-02-29 79120]
S3 mouhid;Pilote HID de souris; E:\\WINDOWS\\system32\\DRIVERS\\mouhid.sys [2004-08-05 12288]
S3 MSTEE;Convertisseur en T/site-à-site de répartition Microsoft; E:\\WINDOWS\\system32\\drivers\\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;Codec NABTS/FEC VBI; E:\\WINDOWS\\system32\\DRIVERS\\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Connection TV/vidéo Microsoft; E:\\WINDOWS\\system32\\DRIVERS\\NdisIP.sys [2008-04-13 10880]
S3 nm;Pilote du Moniteur réseau; E:\\WINDOWS\\system32\\DRIVERS\\NMnt.sys [2008-04-13 40320]
S3 NPF;NetGroup Packet Filter Driver; E:\\WINDOWS\\system32\\drivers\\npf.sys [2007-11-06 34064]
S3 ovt530;Hercules Webcam Deluxe; E:\\WINDOWS\\System32\\Drivers\\ov530vid.sys [2005-03-15 161792]
S3 s117bus;Sony Ericsson Device 117 driver (WDM); E:\\WINDOWS\\system32\\DRIVERS\\s117bus.sys [2007-06-25 82984]
S3 s117mdfl;Sony Ericsson Device 117 USB WMC Modem Filter; E:\\WINDOWS\\system32\\DRIVERS\\s117mdfl.sys [2007-06-25 14888]
S3 s117mdm;Sony Ericsson Device 117 USB WMC Modem Driver; E:\\WINDOWS\\system32\\DRIVERS\\s117mdm.sys [2007-06-25 108456]
S3 s117mgmt;Sony Ericsson Device 117 USB WMC Device Management Drivers (WDM); E:\\WINDOWS\\system32\\DRIVERS\\s117mgmt.sys [2007-06-25 100264]
S3 s117nd5;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (NDIS); E:\\WINDOWS\\system32\\DRIVERS\\s117nd5.sys [2007-06-25 22952]
S3 s117obex;Sony Ericsson Device 117 USB WMC OBEX Interface; E:\\WINDOWS\\system32\\DRIVERS\\s117obex.sys [2007-06-25 98344]
S3 s117unic;Sony Ericsson Device 117 USB Ethernet Emulation SEMC117 (WDM); E:\\WINDOWS\\system32\\DRIVERS\\s117unic.sys [2007-06-25 98856]
S3 SLIP;Détrameur décalage BDA; E:\\WINDOWS\\system32\\DRIVERS\\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; E:\\WINDOWS\\system32\\DRIVERS\\StreamIP.sys [2008-04-13 15232]
S3 usbaudio;Pilote USB audio (WDM); E:\\WINDOWS\\system32\\drivers\\usbaudio.sys [2008-04-13 60032]
S3 usbccgp;Pilote parent générique USB Microsoft; E:\\WINDOWS\\system32\\DRIVERS\\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Classe d\'imprimantes USB Microsoft; E:\\WINDOWS\\system32\\DRIVERS\\usbprint.sys [2008-04-13 25856]
S3 usbscan;Pilote de scanneur USB; E:\\WINDOWS\\system32\\DRIVERS\\usbscan.sys [2008-04-13 15104]
S3 wceusbsh;Windows CE USB Serial Host Driver; E:\\WINDOWS\\system32\\DRIVERS\\wceusbsh.sys [2004-12-30 104576]
S3 WpdUsb;WpdUsb; E:\\WINDOWS\\system32\\DRIVERS\\wpdusb.sys [2004-08-11 18944]
S3 WSTCODEC;Codec Teletext standard; E:\\WINDOWS\\system32\\DRIVERS\\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\\WINDOWS\\system32\\DRIVERS\\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; E:\\WINDOWS\\system32\\drivers\\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; E:\\WINDOWS\\system32\\Ati2evxx.exe [2006-05-03 413696]
R2 AVKProxy;G Data AntiVirus Proxy; E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe [2009-08-12 1046088]
R2 AVKService;Planificateur G Data; E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe [2009-08-12 397896]
R2 AVKWCtl;G Data Gardien; E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe [2009-07-30 1244760]
R2 JavaQuickStarterService;Java Quick Starter; E:\\Program Files\\Java\\jre6\\bin\\jqs.exe [2009-10-11 153376]
R2 MBAMService;MBAMService; E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe [2009-09-10 269648]
R2 UMWdf;Windows User Mode Driver Framework; E:\\WINDOWS\\system32\\wdfmgr.exe [2004-08-11 38912]
R2 UxTuneUp;TuneUp Extension de thème; E:\\WINDOWS\\System32\\svchost.exe [2008-04-13 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\\WINDOWS\\system32\\svchost.exe [2008-04-13 14336]
R3 GDFwSvc;Pare-feu personnel G Data; E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe [2009-08-03 1538352]
R3 GDScan;G Data Scanner; E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe [2009-07-27 300616]
S2 ATI Smart;ATI Smart; E:\\WINDOWS\\system32\\ati2sgag.exe [2006-05-03 520192]
S3 aspnet_state;ASP.NET State Service; E:\\WINDOWS\\Microsoft.NET\\Framework\\v2.0.50727\\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\\WINDOWS\\Microsoft.NET\\Framework\\v2.0.50727\\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.0\\WPF\\PresentationFontCache.exe [2008-07-29 46104]
S3 G Data Tuner Service;G Data Tuner Service; E:\\Program Files\\G DATA\\TotalCare\\AVKTuner\\AVKTunerService.exe [2009-04-20 918600]
S3 idsvc;Windows CardSpace; E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.0\\Windows Communication Foundation\\infocard.exe [2008-07-29 881664]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); E:\\Program Files\\WinPcap\\rpcapd.exe [2007-11-06 92792]
S3 Service G Data Backup;Service G Data Backup; E:\\Program Files\\G DATA\\TotalCare\\AVKBackup\\AVKBackupService.exe [2009-07-09 863304]
S4 AcrSch2Svc;Acronis Scheduler2 Service; E:\\Program Files\\Fichiers communs\\Acronis\\Schedule2\\schedul2.exe [2007-10-07 427288]
S4 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7; E:\\Program Files\\Adobe\\Photoshop Elements 7.0\\PhotoshopElementsFileAgent.exe [2008-09-16 163840]
S4 FLEXnet Licensing Service;FLEXnet Licensing Service; E:\\Program Files\\Fichiers communs\\Macrovision Shared\\FLEXnet Publisher\\FNPLicensingService.exe [2009-04-18 651720]
S4 gusvc;Google Software Updater; E:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe [2009-05-03 182768]
S4 InCDsrv;InCD Helper; E:\\Program Files\\Nero\\Nero 7\\InCD\\InCDsrv.exe [2007-03-12 931376]
S4 NBService;NBService; E:\\Program Files\\Nero\\Nero 7\\Nero BackItUp\\NBService.exe [2007-03-14 779824]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; E:\\WINDOWS\\Microsoft.NET\\Framework\\v3.0\\Windows Communication Foundation\\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; E:\\Program Files\\Fichiers communs\\Ahead\\Lib\\NMIndexingService.exe [2007-03-12 271920]
S4 SeaPort;SeaPort; E:\\Program Files\\Microsoft\\Search Enhancement Pack\\SeaPort\\SeaPort.exe [2009-01-14 226656]
S4 TryAndDecideService;Acronis Try And Decide Service; E:\\Program Files\\Fichiers communs\\Acronis\\Fomatik\\TrueImageTryStartService.exe [2007-10-08 493200]
S4 TuneUp.Defrag;TuneUp Drive Defrag Service; E:\\WINDOWS\\System32\\TuneUpDefragService.exe [2009-08-10 362240]
S4 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; E:\\WINDOWS\\System32\\TUProgSt.exe [2009-08-10 603904]
S4 WMPNetworkSvc;Service Partage réseau du Lecteur Windows Media; E:\\Program Files\\Windows Media Player\\WMPNetwk.exe [2006-11-03 918016]

-----------------EOF-----------------
voil@

Pour ton information siannoyl, tu as attrapé cette infection en acceptant une inscription sur un site infecté, maintenant lequel !?

je me suis inscrit là:
www.planeterenault.com/forum/
et des fichiers MP3 là


et c\'est tout ce qu\'il y a de légal

le info .txt a été posté après le premier log.txt,n\'en mets plus stp

je viens de regarder les rapports de MBAM, et hier je n\'avais rien et j\'avis déjà télécharé les fichiers. Et aujourd\'hui je me suis inscrit seulement sur le site donc çà viendrait de là

Un site même parfaitement légal peut être infecté sans même que son webmaster ne soit encore au courant, il finira par le savoir à un moment ou un autre.

Je ne peux pas te dire sur quel site que tu as visité tu as été infecté, ma seule certitude c\'est que c\'est sur internet et lors d\'une inscription que l\'on est infecté par Winsudate.

Je laisse jllg tirer les conclusions sur tes rapports RSIT. Mais je surveille de loin ne t\'inquiète pas. Il a toute ma confiance et n\'hésites pas à me demander conseil en cas de doute.

Ce que je peux dire c\'est que le 14 j\'avais çà:


et le 15 j\'ai ceci:


Voil@

siannoyl ,connais tu et utilises tu un programme du nom de nuancePDF ?

Merci pour tes infos, on peut donc suspecter que le site Tubemaster est infecté.

Tu peux éventuellement alerter le webmaster dans le doute, c\'est lui rendre service ainsi qu\'à tous ses membres.

qu\'elles sont tes conclusions jllg sur le programme que tu suspectes, je me doutais que tu allais poser la question, c\'est pour cela que je t\'ai laissé la main....

siannoyl ,connais tu et utilises tu un programme du nom de nuancePDF ?

yes sir mais je ne m\'en suis pas servi depuis3/4 jours

je pense qu\'il s\'agit de celui-ci,donc légitime en tout cas pas classé malveillant sur mes recherches

donc je fais quoi avec çà?

je suis entrain de refaire un scan minitieux avec MBam

, pas malveillant en effet. Il s\'agit en fait de l\'exécutable de demande d\'enregistrement, tu pourras faire fixer la ligne.

passe en phase finale directement et n\'oublies pas de faire supprimer la quarantaine de MBAM, on sait maintenant qu\'il vire toute la chaîne de Winsudate, et c\'est tant mieux.

Bonne semaine à tous les deux

Excuses siannoyl, tu peux arrêter ton scan, l\'infection a été totalement supprimée par malwarebytes.

Tu n\'as pas d\'autres infections sur ton ordinateur.

Jllg va terminer avec toi.

tu pourras faire fixer la ligne.

çà veut dire quoi?

merci à toi et Bonne semaine à toi aussi

tu pourras faire fixer la ligne.

il s\'adresse à moi tu vas comprendre sous peu

c\'est par rapport à la ligne de la canne à pêche

à ta place je me méfierais de ton tube-master similaire à un log P2P et donc vecteur d\'infection
le téléchargement de ce log a été suspendu sur 01net qu\'en pense malwarebleach?

ah ah , donc je vais m\'en défaire

Après quelques recherches, on apprend effectivement que se site est infecté et vecteur d\'infections qui vont jusqu\'à planter les ordinateurs. Plusieurs cas recensés ces derniers temps....

Ne te rends donc plus sur ce site et fait le connaitre comme spam auprès de service de messagerie.

Merci et bonne nuit

comment \"bonne nuit,c\'est pas fini

suis ce chemin E:\\Program Files\\trend micro\\Utilisateur.exe

• lance hijackthis en cliquant sur utilisateur.exe
  
• clique ensuite sur \"do a system scan only\"
  
• coche les cases devant les lignes indiquées ci dessous
  O3 - Toolbar: (no name) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - (no file)
  O4 - HKLM\\..\\Run: [Nuance OmniPage 17-reminder] \"E:\\Program Files\\Nuance\\OmniPage17\\Ereg\\Ereg.exe\" -r \"E:\\Documents and Settings\\All Users\\Application Data\\ScanSoft\\OmniPage 17\\Ereg\\Ereg.ini\"
  O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
  
• clique en suite sur \"Fix checked\"

çà te vas:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:53:38, on 15/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
E:\\WINDOWS\\System32\\smss.exe
E:\\WINDOWS\\system32\\winlogon.exe
E:\\WINDOWS\\system32\\services.exe
E:\\WINDOWS\\system32\\lsass.exe
E:\\WINDOWS\\system32\\Ati2evxx.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\WINDOWS\\system32\\Ati2evxx.exe
E:\\WINDOWS\\Explorer.EXE
E:\\WINDOWS\\system32\\spoolsv.exe
E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe
E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe
E:\\Program Files\\Java\\jre6\\bin\\jusched.exe
E:\\WINDOWS\\system32\\ctfmon.exe
E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe
E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe
E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe
E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\Program Files\\Java\\jre6\\bin\\jqs.exe
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe
E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\Program Files\\Google\\Gmail Notifier\\gnotify.exe
E:\\Program Files\\Java\\jre6\\launch4j-tmp\\tm++.exe
E:\\Program Files\\TechSmith\\SnagIt 8\\SnagIt32.exe
E:\\Program Files\\TechSmith\\SnagIt 8\\TSCHelp.exe
E:\\Program Files\\TechSmith\\SnagIt 8\\SnagPriv.exe
E:\\Program Files\\Mozilla Firefox\\firefox.exe
E:\\Program Files\\trend micro\\hijackthis.exe

R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.wibeez.com/france
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://fr.msn.com/
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyServer = 127.0.0.1:8080
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = local
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Liens
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItBHO.dll
O2 - BHO: G Data WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\\Program Files\\Fichiers communs\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - E:\\Program Files\\Microsoft\\Search Enhancement Pack\\Search Helper\\SearchHelper.dll
O2 - BHO: Programme d\'aide de l\'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\\Program Files\\Google\\GoogleToolbarNotifier\\5.3.4501.1418\\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - E:\\Program Files\\Google\\Google Toolbar\\Component\\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItIEAddin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O3 - Toolbar: G Data WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O4 - HKLM\\..\\Run: [GDFirewallTray] E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe
O4 - HKLM\\..\\Run: [G DATA AntiVirus Trayapplication] E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe
O4 - HKLM\\..\\Run: [Malwarebytes\' Anti-Malware] \"E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe\" /starttray
O4 - HKLM\\..\\Run: [PPort11reminder] \"E:\\Program Files\\ScanSoft\\PaperPort\\Ereg\\Ereg.exe\" -r \"E:\\Documents and Settings\\All Users\\Application Data\\ScanSoft\\PaperPort\\11\\Config\\Ereg\\Ereg.ini\"
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"E:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"
O4 - HKLM\\..\\Run: [Malwarebytes Anti-Malware (reboot)] \"E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbam.exe\" /runcleanupscript
O4 - HKCU\\..\\Run: [ctfmon.exe] E:\\WINDOWS\\system32\\ctfmon.exe
O4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] E:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')
O4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] E:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')
O4 - Startup: Notification de cadeaux MSN.lnk = E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://E:\\PROGRA~1\\MICROS~2\\Office10\\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra \'Tools\' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\\Program Files\\Messenger\\msmsgs.exe (file missing)
O9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\\Program Files\\Messenger\\msmsgs.exe (file missing)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1214644255671
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\\WINDOWS\\system32\\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - E:\\WINDOWS\\system32\\ati2sgag.exe
O23 - Service: G Data AntiVirus Proxy (AVKProxy) - G DATA Software AG - E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe
O23 - Service: Planificateur G Data (AVKService) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe
O23 - Service: G Data Gardien (AVKWCtl) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe
O23 - Service: G Data Tuner Service - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVKTuner\\AVKTunerService.exe
O23 - Service: Pare-feu personnel G Data (GDFwSvc) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe
O23 - Service: G Data Scanner (GDScan) - G Data Software AG - E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\\Program Files\\Java\\jre6\\bin\\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - E:\\Program Files\\WinPcap\\rpcapd.exe
O23 - Service: Service G Data Backup - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVKBackup\\AVKBackupService.exe

--
End of file - 8803 bytes

Fais fixer toutes les lignes 016 jllg et la ligne 04 [PPort11reminder].

tu peux aussi fixer ces lignes ,les activeX si tu en as besoin se réinstallent tres facilement

O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1214644255671
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab

ensuite fais ceci:

• Télécharge Toolscleaner sur ton Bureau
  
  
• Double-clique sur ToolsCleaner2.exe et laisse le travailler
  
  
• Clique sur Recherche et laisse le scan se terminer.
  
  
• Clique sur Suppression pour finaliser.
  
  
• Tu peux, si tu le souhaites, te servir des Options facultatives.
  
  
• Clique sur Quitter, pour que le rapport puisse se créer.
  
  
• Le rapport (TCleaner.txt) se trouve à la racine de votre disque dur (C:\\)...colle le dans ta prochaine réponse
  

bonne nuit !

les lignes o16 je ne les trouves pas. J\'ai passé tunes UP, c\'est peut être lui qui as fait leménage




Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:04:40, on 15/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
E:\\WINDOWS\\System32\\smss.exe
E:\\WINDOWS\\system32\\winlogon.exe
E:\\WINDOWS\\system32\\services.exe
E:\\WINDOWS\\system32\\lsass.exe
E:\\WINDOWS\\system32\\Ati2evxx.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\WINDOWS\\system32\\spoolsv.exe
E:\\WINDOWS\\system32\\Ati2evxx.exe
E:\\WINDOWS\\Explorer.EXE
E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe
E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe
E:\\Program Files\\Java\\jre6\\bin\\jusched.exe
E:\\WINDOWS\\system32\\ctfmon.exe
E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe
E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe
E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe
E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\Program Files\\Java\\jre6\\bin\\jqs.exe
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe
E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\Program Files\\Google\\Gmail Notifier\\gnotify.exe
E:\\Program Files\\Mozilla Firefox\\firefox.exe
E:\\Program Files\\trend micro\\hijackthis.exe
E:\\Program Files\\TechSmith\\SnagIt 8\\SnagIt32.exe
E:\\Program Files\\TechSmith\\SnagIt 8\\TSCHelp.exe
E:\\Program Files\\TechSmith\\SnagIt 8\\SnagPriv.exe

R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.wibeez.com/france
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://fr.msn.com/
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyServer = 127.0.0.1:8080
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = local
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Liens
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItBHO.dll
O2 - BHO: G Data WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\\Program Files\\Fichiers communs\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - E:\\Program Files\\Microsoft\\Search Enhancement Pack\\Search Helper\\SearchHelper.dll
O2 - BHO: Programme d\'aide de l\'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\\Program Files\\Google\\GoogleToolbarNotifier\\5.3.4501.1418\\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - E:\\Program Files\\Google\\Google Toolbar\\Component\\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItIEAddin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O3 - Toolbar: G Data WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O4 - HKLM\\..\\Run: [GDFirewallTray] E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe
O4 - HKLM\\..\\Run: [G DATA AntiVirus Trayapplication] E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe
O4 - HKLM\\..\\Run: [Malwarebytes\' Anti-Malware] \"E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe\" /starttray
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"E:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"
O4 - HKLM\\..\\Run: [Malwarebytes Anti-Malware (reboot)] \"E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbam.exe\" /runcleanupscript
O4 - HKCU\\..\\Run: [ctfmon.exe] E:\\WINDOWS\\system32\\ctfmon.exe
O4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] E:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')
O4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] E:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')
O4 - Startup: Notification de cadeaux MSN.lnk = E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://E:\\PROGRA~1\\MICROS~2\\Office10\\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra \'Tools\' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\\Program Files\\Messenger\\msmsgs.exe (file missing)
O9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\\Program Files\\Messenger\\msmsgs.exe (file missing)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1214644255671
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\\WINDOWS\\system32\\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - E:\\WINDOWS\\system32\\ati2sgag.exe
O23 - Service: G Data AntiVirus Proxy (AVKProxy) - G DATA Software AG - E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe
O23 - Service: Planificateur G Data (AVKService) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe
O23 - Service: G Data Gardien (AVKWCtl) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe
O23 - Service: G Data Tuner Service - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVKTuner\\AVKTunerService.exe
O23 - Service: Pare-feu personnel G Data (GDFwSvc) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe
O23 - Service: G Data Scanner (GDScan) - G Data Software AG - E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\\Program Files\\Java\\jre6\\bin\\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - E:\\Program Files\\WinPcap\\rpcapd.exe
O23 - Service: Service G Data Backup - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVKBackup\\AVKBackupService.exe

--
End of file - 8563 bytes

elles sont encore là les 016 sur ton dernier rapport

croisés malwarebleach

donc siannoyl

• lance hijackthis en cliquant sur utilisateur.exe
  
• clique ensuite sur \"do a system scan only\"
  
• coche les cases devant les lignes indiquées ci dessous
  O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - http://www.bitdefender.fr/scan_fr/scan8/oscan8.cab
  O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1214644255671
  O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
  O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
  
  
• clique en suite sur \"Fix checked\"

[ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

E:\\Rsit: trouvé !
E:\\Documents and Settings\\Utilisateur\\Bureau\\hijackthis.log: trouvé !
E:\\Program Files\\trend micro\\HijackThis.exe: trouvé !
E:\\Program Files\\trend micro\\hijackthis.log: trouvé !
E:\\WINDOWS\\system32\\*.msnfix: trouvé !

---------------------------------
--> Suppression:

E:\\Program Files\\trend micro\\HijackThis.exe: supprimé !
E:\\Documents and Settings\\Utilisateur\\Bureau\\hijackthis.log: supprimé !
E:\\Program Files\\trend micro\\hijackthis.log: supprimé !
E:\\WINDOWS\\system32\\*.msnfix: ERREUR DE SUPPRESSION !!
E:\\Rsit: supprimé !

Fichiers temporaires nettoyés !
Corbeille vidée!

Whooaouh, tu vas trop vite, siannoyl !!

Trop tard jllg, toolscleaner est passé par là.

redemande à sionnoyl l\'installation de HJT fais poster un log et refais les manips

Vous allez me faire mourir


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:18:17, on 15/11/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
E:\\WINDOWS\\System32\\smss.exe
E:\\WINDOWS\\system32\\winlogon.exe
E:\\WINDOWS\\system32\\services.exe
E:\\WINDOWS\\system32\\lsass.exe
E:\\WINDOWS\\system32\\Ati2evxx.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\WINDOWS\\system32\\spoolsv.exe
E:\\WINDOWS\\system32\\Ati2evxx.exe
E:\\WINDOWS\\Explorer.EXE
E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe
E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe
E:\\Program Files\\Java\\jre6\\bin\\jusched.exe
E:\\WINDOWS\\system32\\ctfmon.exe
E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe
E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe
E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe
E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\Program Files\\Java\\jre6\\bin\\jqs.exe
E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe
E:\\WINDOWS\\system32\\svchost.exe
E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe
E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe
E:\\WINDOWS\\System32\\svchost.exe
E:\\Program Files\\Google\\Gmail Notifier\\gnotify.exe
E:\\Program Files\\Mozilla Firefox\\firefox.exe
E:\\Program Files\\TechSmith\\SnagIt 8\\SnagIt32.exe
E:\\Program Files\\TechSmith\\SnagIt 8\\TSCHelp.exe
E:\\Program Files\\TechSmith\\SnagIt 8\\SnagPriv.exe
E:\\WINDOWS\\system32\\NOTEPAD.EXE
E:\\Program Files\\trend micro\\Utilisateur.exe

R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.wibeez.com/france
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://fr.msn.com/
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyServer = 127.0.0.1:8080
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = local
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Liens
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItBHO.dll
O2 - BHO: G Data WebFilter Class - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\\Program Files\\Fichiers communs\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - E:\\Program Files\\Microsoft\\Search Enhancement Pack\\Search Helper\\SearchHelper.dll
O2 - BHO: Programme d\'aide de l\'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - E:\\Program Files\\Fichiers communs\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\\Program Files\\Google\\GoogleToolbarNotifier\\5.3.4501.1418\\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - E:\\Program Files\\Google\\Google Toolbar\\Component\\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - E:\\Program Files\\TechSmith\\SnagIt 8\\SnagItIEAddin.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - E:\\Program Files\\Windows Live\\Toolbar\\wltcore.dll
O3 - Toolbar: G Data WebFilter - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\\Program Files\\G Data\\TotalCare\\Webfilter\\AVKWebIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - E:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll
O4 - HKLM\\..\\Run: [GDFirewallTray] E:\\Program Files\\G Data\\TotalCare\\Firewall\\GDFirewallTray.exe
O4 - HKLM\\..\\Run: [G DATA AntiVirus Trayapplication] E:\\Program Files\\G Data\\TotalCare\\AVKTray\\AVKTray.exe
O4 - HKLM\\..\\Run: [Malwarebytes\' Anti-Malware] \"E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamgui.exe\" /starttray
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"E:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"
O4 - HKLM\\..\\Run: [Malwarebytes Anti-Malware (reboot)] \"E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbam.exe\" /runcleanupscript
O4 - HKCU\\..\\Run: [ctfmon.exe] E:\\WINDOWS\\system32\\ctfmon.exe
O4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] E:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')
O4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] E:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')
O4 - Startup: Notification de cadeaux MSN.lnk = E:\\Documents and Settings\\Utilisateur\\Application Data\\Microsoft\\Notification de cadeaux MSN\\lsnfier.exe
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://E:\\PROGRA~1\\MICROS~2\\Office10\\EXCEL.EXE/3000
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra \'Tools\' menuitem: Créer un favori mobile... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - E:\\PROGRA~1\\MICROS~3\\INetRepl.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\\Program Files\\Messenger\\msmsgs.exe (file missing)
O9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\\Program Files\\Messenger\\msmsgs.exe (file missing)
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - E:\\WINDOWS\\system32\\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - E:\\WINDOWS\\system32\\ati2sgag.exe
O23 - Service: G Data AntiVirus Proxy (AVKProxy) - G DATA Software AG - E:\\Program Files\\Fichiers communs\\G DATA\\AVKProxy\\AVKProxy.exe
O23 - Service: Planificateur G Data (AVKService) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKService.exe
O23 - Service: G Data Gardien (AVKWCtl) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVK\\AVKWCtl.exe
O23 - Service: G Data Tuner Service - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVKTuner\\AVKTunerService.exe
O23 - Service: Pare-feu personnel G Data (GDFwSvc) - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\Firewall\\GDFwSvc.exe
O23 - Service: G Data Scanner (GDScan) - G Data Software AG - E:\\Program Files\\Fichiers communs\\G DATA\\GDScan\\GDScan.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\\Program Files\\Java\\jre6\\bin\\jqs.exe
O23 - Service: MBAMService - Malwarebytes Corporation - E:\\Program Files\\Malwarebytes\' Anti-Malware\\mbamservice.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - E:\\Program Files\\WinPcap\\rpcapd.exe
O23 - Service: Service G Data Backup - G Data Software AG - E:\\Program Files\\G DATA\\TotalCare\\AVKBackup\\AVKBackupService.exe

--
End of file - 8051 bytes

[ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

E:\\WINDOWS\\system32\\*.msnfix: trouvé !

---------------------------------
--> Suppression:

E:\\WINDOWS\\system32\\*.msnfix: ERREUR DE SUPPRESSION !!
je peux aller coucher?

a demain et merci beaucoup.
Toumorrow debout 6h30 . Cà ne vaut rien de vieillir

et bin voilà y a pu rien
t\'as tout fait tout seul

pour desactiver le ctfmon.exe au démarrage(inutile) tu peux regarder sur ce lien

bonne nuit!

Bonjour, je suis déjà de retour,
Merci pour la soirée d\'hier, ce fût constructif. Il va falloir que j\'essaie de décrypter tout ce qui est mauvais dans le rapport HijackThis. Bonne journée

Salut,

Il n\'y a plus rien de mauvais dans ton rapport HijackThis

Pour le fichier msnfix, tu le retrouves pas le chemin d\'accès et tu le supprimes tout simplement. Il est probable qu\'il te soit nécessaire d\'afficher les fichiers et dossiers cachés pour le retrouver.

Bonne fin de journée.

Voil@, je l\'ai viré.Merci

Salut,

Bien vu siannoyl

fais ceci maintenant :

Pour supprimer toutes les traces des logiciels qui ont servi à traiter les infections spécifiques :

• Télécharge ToolsCleaner sur ton Bureau
  
• Double-clique sur ToolsCleaner2.exe et laisse le travailler
  
• Clique sur Recherche et laisse le scan se terminer.
  
• Clique sur Suppression pour finaliser.
  
• Tu peux, si tu le souhaites, te servir des Options facultatives.
  
• Clique sur Quitter, pour que le rapport puisse se créer.
  
• Le rapport (TCleaner.txt) se trouve à la racine de votre disque dur (C:\\)...colle le dans ta prochaine réponse

============================================================================

Si tu ne l\'as pas déjà :

Télécharges et installes C Cleaner

• Lance CCleaner puis Clique sur \"Options\", \"Avancé\" et décoche la case \"Effacer uniquement les fichiers, du dossier Temp de Windows, plus vieux que 24 heures\".
  
• Dans le menu nettoyeur , clique sur \"Analyse.
  
• Ensuite clique sur le bouton \"Lancer le nettoyage\" et laisse le faire.
  
• Maintenant dans l\'onglet \"Registre\" , clique sur \"Chercher des erreurs\"
  
• Réponds a OUI a la question qui te sera posée.
  
• Enfin , répare les erreurs en cliquant sur \" Réparer les erreurs sélectionnés \"
  
• recommence la recherche et la suppression des erreurs jusqu\'à ce qu\'il ne reste plus rien.
  
• un tutoriel pour t\'aider

Tu peux conserver ce logiciel et l\'utiliser régulièrement.

============================================================================

Cette étape est indispensable pour finaliser la désinfection, elle permet de supprimer les points de restauration et du même coup les éventuels malwares qui s\'y seraient logés.

Très Important

• Il faut désactiver et réactiver la restauration système suis ce tutoriel pour t\'aider.
  
• Il faut ensuite créer un point de restauration manuellement, pour t\'aider suis celui là

.


Je te souhaite une bonne continuation sur mémoclic et excuses nous de t\'avoir un peu fait tourner en bourrique.

Bonne soirée.

excuses nous de t\'avoir un peu fait tourner en bourrique

oh!oh! il va pas faire sa chochote ,c\'est pas pire que de démonter et remonter une boite automatique

[ Rapport ToolsCleaner version 2.3.11 (par A.Rothstein & dj QUIOU) ]

--> Recherche:

E:\\RECYCLER\\S-1-5-21-746137067-484061587-1801674531-1004\\*.msnfix: trouvé !

---------------------------------
--> Suppression:

E:\\RECYCLER\\S-1-5-21-746137067-484061587-1801674531-1004\\*.msnfix: ERREUR DE SUPPRESSION !!
en voil@

c\'est pas pire que de démonter et remonter une boite automatique

tout s\'apprend. A condition de ne pas prendre le train en marche

A condition de ne pas prendre le train en marche

mon premier PC (un win98) je l\'ai acheté en 1999,je n\'avais jamais touché un clavier avant,mais j\'ai encore des wagons à raccrocher et d\'autres à attraper