cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 27-05-2015 01
Ran by Mazi at 2015-05-28 17:01:55
Running from C:\Users\Mazi\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-941474947-1101879431-2883593184-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-941474947-1101879431-2883593184-1002 - Limited - Enabled)
Invité (S-1-5-21-941474947-1101879431-2883593184-501 - Limited - Disabled)
Mazi (S-1-5-21-941474947-1101879431-2883593184-1000 - Administrator - Enabled) => C:\Users\Mazi
UpdatusUser (S-1-5-21-941474947-1101879431-2883593184-1003 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.11 - Michael Tippach)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Edu App (HKLM\...\Edu App) (Version: 2015.05.27.102610 - Edu App) <==== ATTENTION
FL Studio 11 (HKLM\...\FL Studio 11) (Version: - Image-Line)
Galerie de photos Windows Live (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
GamesDesktop 001.578 (HKLM\...\gmsd_fr_578_is1) (Version: - GAMESDESKTOP) <==== ATTENTION
globalupdate Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: - ) <==== ATTENTION
Google Chrome (HKLM\...\Google Chrome) (Version: 24.0.1312.57 - Google Inc.)
GUPlayer (remove only) (HKLM\...\GUPlayer) (Version: - )
I - Cinema (HKLM\...\I - Cinema) (Version: 1.36.01.22 - iCinema)
Luxonix Purity VSTi v1.1.2 (HKLM\...\Luxonix Purity VSTi_is1) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Mises à jour NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation)
mystartsearch uninstall (HKLM\...\mystartsearch uninstall) (Version: - mystartsearch) <==== ATTENTION
NVIDIA Pilote graphique 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
OpenOffice.org 3.3 (HKLM\...\{05653DE1-6567-40C6-B930-39D399B64369}) (Version: 3.3.9567 - OpenOffice.org)
Opera 12.17 (HKLM\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 29.0.1795.60 (HKLM\...\Opera 29.0.1795.60) (Version: 29.0.1795.60 - Opera Software ASA)
oursurfing uninstall (HKLM\...\oursurfing uninstall) (Version: - oursurfing) <==== ATTENTION
Panneau de configuration NVIDIA 307.83 (Version: 307.83 - NVIDIA Corporation) Hidden
PhotoFiltre (HKU\S-1-5-21-941474947-1101879431-2883593184-1000\...\PhotoFiltre) (Version: - )
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Skype Click to Call (HKLM\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.4 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-941474947-1101879431-2883593184-1000\...\Spotify) (Version: 0.9.7.16.g4b197456 - Spotify AB)
TI Connect 1.6 (HKLM\...\{A8B94669-8654-4126-BD28-D0D2412CDED6}) (Version: 1.6 - Texas Instruments Incorporated)
TI-Nspire(TM) Computer Link (HKLM\...\{C0B7C804-B89F-47F7-91CC-21ACDC7D7AAC}) (Version: 3.2.0.123 - Texas Instruments Inc.)
TI-Nspire™ CAS Student Software (HKLM\...\{F03A8756-7FCB-4DCD-9AC1-12C63A6075F1}) (Version: 3.9.0.463 - Texas Instruments Inc.)
VLC media player 1.1.9 (HKLM\...\VLC media player) (Version: 1.1.9 - VideoLAN)
Windows Live (HKLM\...\WinLiveSuite) (Version: 15.4.3538.0513 - Microsoft Corporation)
WinRAR 4.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
ZHPDiag 2015 (HKLM\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{00b7e0ab-817a-44ad-a04b-d1148d524136}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{4C4E8F8D-08D7-41C1-A172-E44D66813EE3}\InprocServer32 -> C:\Users\Mazi\AppData\Roaming\AcroIEHelpe006288.dll ()
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{7c6e29bc-8b8b-4c3d-859e-af6cd158be0f}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969c0-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969c1-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969c2-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969c3-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969c4-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969c5-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969c6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969c8-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969c9-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969ca-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{88d969d6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> %SystemDrive%\Users\Mazi\AppData\Roaming\Microsoft\MSXML2\msxml4.dll No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{939A0D04-0E07-48FE-A463-6623B70C3A96}\localserver32 -> "C:\Users\Mazi\AppData\Roaming\ValueApps\IE\ValueApps.exe" No File
CustomCLSID: HKU\S-1-5-21-941474947-1101879431-2883593184-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\Mazi\AppData\Local\Temp\814307594250\Setup_product_18129.exe No File

==================== Restore Points =========================

26-05-2015 23:18:44 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2014-07-02 19:34 - 00000089 _RASH C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00975250-7C1F-4293-94C5-16751E01FB8D} - System32\Tasks\WIN-fdfEfEfAfC => C:\Users\Mazi\AppData\Roaming\~hytcyjt.exe
Task: {0954BA42-69CF-448A-B35A-6AD6A31FD2F0} - \At13 No Task File <==== ATTENTION
Task: {09F1942A-0BC2-44E9-A124-3B0F5768F77B} - \At16 No Task File <==== ATTENTION
Task: {14BA9CE8-1FD0-4DE6-A5DE-3CA0D2401BDC} - \At17 No Task File <==== ATTENTION
Task: {17EDB585-8482-4AE1-8AB7-03F927CBD3E5} - \At2 No Task File <==== ATTENTION
Task: {1807650B-1E09-4E8D-AAEB-4BA5798CC1B4} - System32\Tasks\{0D48537B-4B34-49DE-8BAB-A94536FB7C94} => pcalua.exe -a "C:\Users\Mazi\Desktop\Facebook Hack.exe" -d C:\Users\Mazi\Desktop
Task: {1E97C637-8187-452D-BFAD-208592626695} - System32\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-5 => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-5.exe [2015-05-27] (iCinema) <==== ATTENTION
Task: {1F2B6709-B71F-477D-96CC-76DBBF1C8F9C} - System32\Tasks\{3BC9D291-EE38-423B-AD4C-87B5C4E756BC} => pcalua.exe -a C:\Users\Mazi\AppData\Roaming\webssearches\UninstallManager.exe -c -ptid=ill <==== ATTENTION
Task: {28D4706C-AFA1-48A6-B4D7-63DD019DDA90} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-18] (Google Inc.)
Task: {2BAD695C-0B4C-4467-A4F7-61DDA75D4521} - System32\Tasks\Opera scheduled Autoupdate 1432216484 => C:\Program Files\Opera\launcher.exe [2015-05-18] (Opera Software)
Task: {3257531F-F4AF-4C06-9F6B-665A4EBF7D2E} - \At7 No Task File <==== ATTENTION
Task: {338CCDB7-D71F-44BE-BCDD-BD9F1C46C235} - System32\Tasks\{73E00A6B-44F0-4462-81A0-D04589A0D92C} => pcalua.exe -a C:\ProgramData\BreakingNewsAlert\uninstall.exe -c /kb=y /ic=1
Task: {3E8C31F7-B3D1-4C84-AF60-D6BB9E13A534} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: {4AE4607D-15E6-4B17-948D-394BEB0E7D5F} - \At19 No Task File <==== ATTENTION
Task: {4C17EA5A-E61E-4390-B7CA-93A378C0D755} - System32\Tasks\ProPCCleaner_Popup => C:\Program Files\Pro PC Cleaner\Splash.exe <==== ATTENTION
Task: {5175E947-3697-4759-8739-1BDF215E436A} - System32\Tasks\WIN-GGfIfEGCfEGbGffIfCfEGC => C:\Users\Mazi\AppData\Roaming\~bnausrh.exe
Task: {5245C429-1C8E-4026-B04E-14A257645928} - System32\Tasks\{47CAA235-E4FE-4793-A45E-96EFD974F37B} => pcalua.exe -a C:\Users\Mazi\AppData\Roaming\mystartsearch\UninstallManager.exe -c -ptid=ima
Task: {5573C022-BFF9-4D7F-8C7B-9FBB6FC88B13} - System32\Tasks\WIN-statsAdmin => C:\Users\Mazi\AppData\Local\Microsoft\WinU\~jiytgos.exe <==== ATTENTION
Task: {55B02B02-DD37-48C1-BA61-197A44B698B6} - System32\Tasks\WIN-statsSystem => C:\Users\Mazi\AppData\Local\Microsoft\WinU\~jwodarf.exe
Task: {56225E58-B8CD-45E6-9099-865961CC4EB6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {58DCCEF2-D5F0-4C8A-9D94-02460D5D293D} - \At6 No Task File <==== ATTENTION
Task: {5CB38853-A458-44A9-87D1-0CEC014BF9A9} - System32\Tasks\easyVPN => C:\Program Files\EasyVpn\app\easyvpn.exe
Task: {5DB6E040-794A-4C3C-BDBE-6A639380F1FF} - \At9 No Task File <==== ATTENTION
Task: {5E3D1E59-6922-420F-A446-B09FF4991377} - \At1 No Task File <==== ATTENTION
Task: {672D3242-A42F-4097-AEEA-EFCE51096F51} - \At4 No Task File <==== ATTENTION
Task: {6812A2C4-CD71-46ED-8BCF-EA55BFC01A6B} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-18] (Google Inc.)
Task: {6BB1E032-5FF4-485F-8CB8-D027D5B10797} - \At23 No Task File <==== ATTENTION
Task: {6DAACBB5-698E-4B21-BF10-24A3A95BF42B} - System32\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-5_user => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-5.exe [2015-05-27] (iCinema) <==== ATTENTION
Task: {797696E4-5FF6-4FF5-A15A-C7F9C76F2543} - System32\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-11 => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-11.exe [2015-05-27] (iCinema) <==== ATTENTION
Task: {7B51FE49-987E-44BE-AE33-FD6EF5C65552} - System32\Tasks\LaunchPreSignup => C:\Program Files\OLBPre\OLBPre.exe <==== ATTENTION
Task: {7FB15ECB-C93F-42FD-8FEC-7C7449CE9E3A} - System32\Tasks\ProPCCleaner_Start => C:\Program Files\Pro PC Cleaner\ProPCCleaner.exe <==== ATTENTION
Task: {8AEE4ADF-8148-4606-8880-C7964597CBE6} - \At3 No Task File <==== ATTENTION
Task: {8BA4F3BA-53D1-41A6-8FE0-1D422F151DB2} - System32\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-1-6 => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-1-6.exe [2015-05-27] (iCinema) <==== ATTENTION
Task: {9014DECF-0650-47D0-B0CA-39664E86B010} - \At15 No Task File <==== ATTENTION
Task: {928E37EE-BB27-42FB-9277-4CE664A423C8} - \At24 No Task File <==== ATTENTION
Task: {929A1D63-109B-4DB9-85AC-4D9DF2C336BD} - System32\Tasks\OptimizerProUpdaterTask{BEE95EE8-9724-4DC7-849E-77E48DCDE066} => C:\ProgramData\Premium\OptimizerPro\OptimizerPro.exe <==== ATTENTION
Task: {960DCBA7-B6C6-478B-8A61-E2A486F79643} - System32\Tasks\{59C2C9EF-B5D7-4CAE-A7AB-DC96F19ED2FA} => pcalua.exe -a C:\ProgramData\BrowserProtect\2.6.1095.52\{c16c1ccb-7046-4e5c-a2f3-533ad2fec8e8}\uninstall.exe -c /Uninstall /{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693} /su=6c3737bb8e806e20 /um
Task: {985AA1BD-EDB7-41F8-8870-CA94454AB4A8} - System32\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-10_user => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-10.exe [2015-05-27] (iCinema) <==== ATTENTION
Task: {9918D67C-6F21-4EF9-9494-DA0F6BE0BE7F} - \At20 No Task File <==== ATTENTION
Task: {9E6F7513-5DC3-4DE9-9BE9-34373AAD0366} - System32\Tasks\PrivacyDr_Splash => C:\Program Files\Privacy Dr\Splash.exe
Task: {B3408B0A-BEB3-4F78-BC4C-50A6C30EC55D} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: {B96E8DA3-D57D-4EFD-8EE6-222F28386BFB} - \At11 No Task File <==== ATTENTION
Task: {C5153137-2D83-42D4-BA76-238E05EBD2CC} - \At14 No Task File <==== ATTENTION
Task: {CE363A34-DA3E-4B2D-AF3A-A9103E417037} - \At8 No Task File <==== ATTENTION
Task: {CE4E328C-0CAE-4EC1-96D7-880092583254} - \At5 No Task File <==== ATTENTION
Task: {D68D8E83-5115-47A2-B879-DD0713C2BFA9} - \At10 No Task File <==== ATTENTION
Task: {D8075EA9-4FF4-438B-B986-FFA0E0EE19CC} - System32\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-6 => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-6.exe [2015-05-27] (iCinema) <==== ATTENTION
Task: {DADC69C6-E743-4425-A5F4-1372D0DCDE9A} - System32\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-3 => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-3.exe [2015-05-27] (iCinema) <==== ATTENTION
Task: {E11FC51A-CE21-4DC1-A8C9-64C4119BF53C} - System32\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-1-7 => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-1-7.exe [2015-05-27] (iCinema) <==== ATTENTION
Task: {E2648840-B439-4419-B78F-BA8CC5E8CF88} - System32\Tasks\{6FEA4E39-78A8-4D51-8716-19AA2F760AB4} => pcalua.exe -a C:\Users\Mazi\AppData\Roaming\oursurfing\UninstallManager.exe -c -ptid=cmi
Task: {EA6BFAD1-9369-4A9A-AFEA-FC24A3960C4A} - \At22 No Task File <==== ATTENTION
Task: {EB197E3F-D429-44E9-8A9C-49F332927866} - System32\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-7 => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-7.exe [2015-05-27] (iCinema) <==== ATTENTION
Task: {ED260400-4695-4665-BE60-D8768CE674C5} - System32\Tasks\{97874E5E-5152-4E78-9D19-7CE33ED78286} => pcalua.exe -a C:\ProgramData\AdPunisher\AdPunisher.exe -c /progname=AdPunisher /progver=3.4.2 /progpub=AdPunisher /proguninstallurl=asdahjka.com /deleteappfolder=0 /deletefile2="C:\Program Files\Google\Chrome\Applicationupdate.dll" /deletefile3="C:\Program Files\Google\Chrome\Applicationchrome.dll" /VERYSILENT
Task: {EDDCCFBD-27DE-4806-AC48-F75EC9988A19} - \At18 No Task File <==== ATTENTION
Task: {F1A15864-5946-4197-ACD4-C05C0A8FFF00} - \At12 No Task File <==== ATTENTION
Task: {FDCDEEC7-9084-4D89-B1C0-D761AAE9DB68} - \At21 No Task File <==== ATTENTION

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-1-6.job => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-1-7.job => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-10_user.job => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-11.job => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-11.exe <==== ATTENTION
Task: C:\Windows\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-3.job => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-3.exe <==== ATTENTION
Task: C:\Windows\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-5.job => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-5_user.job => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-6.job => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\03740980-0cfd-4ede-baa0-6a0d519b8476-7.job => C:\Program Files\I - Cinema\03740980-0cfd-4ede-baa0-6a0d519b8476-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files\globalUpdate\Update\globalupdate.exe <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-05-10 13:21 - 2013-01-31 11:00 - 00079648 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2011-01-12 23:54 - 2011-01-13 00:12 - 00040448 ____N () C:\Users\Mazi\AppData\Local\Temp\CMDLIN~1.DLL
2015-05-28 13:20 - 2015-05-26 15:57 - 03288520 _____ () C:\Users\Mazi\AppData\Local\gmsd_fr_578\upgmsd_fr_578.exe
2015-05-28 13:20 - 2015-05-26 15:57 - 03980968 _____ () C:\Program Files\gmsd_fr_578\gmsd_fr_578.exe
2015-05-27 15:54 - 2015-05-27 15:54 - 00835584 _____ () C:\Program Files\Opera\gstreamer\gstreamer.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00093696 _____ () C:\Program Files\Opera\gstreamer\plugins\gstaudioconvert.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00094208 _____ () C:\Program Files\Opera\gstreamer\plugins\gstaudioresample.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00057344 _____ () C:\Program Files\Opera\gstreamer\plugins\gstautodetect.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00096256 _____ () C:\Program Files\Opera\gstreamer\plugins\gstcoreplugins.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00062976 _____ () C:\Program Files\Opera\gstreamer\plugins\gstdecodebin2.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00067072 _____ () C:\Program Files\Opera\gstreamer\plugins\gstdirectsound.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00158208 _____ () C:\Program Files\Opera\gstreamer\plugins\gstffmpegcolorspace.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00312832 _____ () C:\Program Files\Opera\gstreamer\plugins\gstoggdec.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00038912 _____ () C:\Program Files\Opera\gstreamer\plugins\gstwaveform.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00073728 _____ () C:\Program Files\Opera\gstreamer\plugins\gstwavparse.dll
2015-05-27 15:54 - 2015-05-27 15:54 - 00101888 _____ () C:\Program Files\Opera\gstreamer\plugins\gstwebmdec.dll
2015-05-11 21:44 - 2015-05-11 21:55 - 16863920 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Program Files\Common Files\System:HvwteQZtz3wuB6WicgOMKMyAs
AlternateDataStreams: C:\ProgramData\Microsoft:b1B81svK1uHT7yxtdLHOxvr
AlternateDataStreams: C:\ProgramData\TEMP:373E1720

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SecureAssist => ""="service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-941474947-1101879431-2883593184-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Mazi\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 89.2.0.1 - 89.2.0.2

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{C478C903-913B-4F1F-A147-7C1301FF7B14}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5AC821CE-5A37-4843-8860-C24560D3B253}] => (Allow) LPort=2869
FirewallRules: [{6522097F-4B4C-4B0F-8071-1B04B5EFB538}] => (Allow) LPort=1900
FirewallRules: [{DB1FD9FC-5599-498A-A4B4-E0416974BE05}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [TCP Query User{52519DBD-3ACC-4E5F-ADC1-21BA9658355A}C:\program files\amsn\bin\wish.exe] => (Allow) C:\program files\amsn\bin\wish.exe
FirewallRules: [UDP Query User{C08AC6F0-96DE-4725-BF97-FD534E31A019}C:\program files\amsn\bin\wish.exe] => (Allow) C:\program files\amsn\bin\wish.exe
FirewallRules: [TCP Query User{9F6D245B-D4E3-4EC6-8D7D-73DBCD9A90D1}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [UDP Query User{33198AF5-6D55-4CB7-ABBC-EF73518747A8}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [TCP Query User{A9F6EBA4-5E8E-4B3F-B8BE-CB02F2EA7922}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{AE29EB03-3746-48F4-9343-E247E9FD8BF8}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{8A3A945A-C769-461F-A4D4-13162F5E386C}C:\program files\mozilla firefox\plugin-container.exe] => (Block) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{6D0C2C15-312B-4CB6-86E5-2CF19C59EEBF}C:\program files\mozilla firefox\plugin-container.exe] => (Block) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{1E9B8BB2-8D38-4D1E-979D-BAA303CE27B9}G:\image-line\fl studio 9\fl.exe] => (Block) G:\image-line\fl studio 9\fl.exe
FirewallRules: [UDP Query User{1A2D2A43-540E-4272-A168-14F024724E10}G:\image-line\fl studio 9\fl.exe] => (Block) G:\image-line\fl studio 9\fl.exe
FirewallRules: [TCP Query User{B14062C0-E588-4F70-9908-662D78C0401A}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [UDP Query User{719170DB-4CBC-41EE-ABDA-E86BE2C70048}C:\windows\explorer.exe] => (Block) C:\windows\explorer.exe
FirewallRules: [TCP Query User{CE180D54-746A-41E8-9F70-B694474B115B}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{F6C6DC3A-B0AE-445F-966D-22910C7832EE}C:\program files\mozilla firefox\firefox.exe] => (Allow) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{8B8A21F7-64EC-413B-A9F0-6A336807F4D2}C:\users\mazi\appdata\roaming\microsoft\notification de cadeaux msn\lsnfier.exe] => (Block) C:\users\mazi\appdata\roaming\microsoft\notification de cadeaux msn\lsnfier.exe
FirewallRules: [UDP Query User{78516E7C-72D9-4F52-A756-9C096E070BB1}C:\users\mazi\appdata\roaming\microsoft\notification de cadeaux msn\lsnfier.exe] => (Block) C:\users\mazi\appdata\roaming\microsoft\notification de cadeaux msn\lsnfier.exe
FirewallRules: [TCP Query User{FCD4D33F-1631-40DB-B3A4-8650A3DC7B79}C:\program files\common files\java\java update\jusched.exe] => (Block) C:\program files\common files\java\java update\jusched.exe
FirewallRules: [UDP Query User{2B984A73-6B83-430F-B28C-156F15FC0594}C:\program files\common files\java\java update\jusched.exe] => (Block) C:\program files\common files\java\java update\jusched.exe
FirewallRules: [TCP Query User{7B28E405-40DF-4C77-8412-CAA9E3ABEF35}C:\program files\amsn\bin\wish.exe] => (Block) C:\program files\amsn\bin\wish.exe
FirewallRules: [UDP Query User{BFDD5133-CF49-476D-9633-08612E0BCEE4}C:\program files\amsn\bin\wish.exe] => (Block) C:\program files\amsn\bin\wish.exe
FirewallRules: [TCP Query User{50DDBAA1-B9F2-4FB8-BAA6-8085B6C0C94E}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{4E8061F3-C0BD-4E86-BEE6-46F3DC0CAF04}C:\program files\internet explorer\iexplore.exe] => (Block) C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{81B91976-A8C6-47B8-973C-336E86861CC8}C:\program files\common files\java\java update\jucheck.exe] => (Allow) C:\program files\common files\java\java update\jucheck.exe
FirewallRules: [UDP Query User{CA963A74-CBA0-4263-B02E-FA1EF21BC3B7}C:\program files\common files\java\java update\jucheck.exe] => (Allow) C:\program files\common files\java\java update\jucheck.exe
FirewallRules: [TCP Query User{897FCB26-2A04-413C-A86B-865DCB925EE2}G:\image-line\fl studio 9\fl.exe] => (Block) G:\image-line\fl studio 9\fl.exe
FirewallRules: [UDP Query User{DB5682B2-E62B-444C-9F6A-02BC58687331}G:\image-line\fl studio 9\fl.exe] => (Block) G:\image-line\fl studio 9\fl.exe
FirewallRules: [TCP Query User{6A27111C-798A-418F-A4E3-DBE4F7940AF7}C:\users\mazi\downloads\bittorrent-7.1(1).exe] => (Allow) C:\users\mazi\downloads\bittorrent-7.1(1).exe
FirewallRules: [UDP Query User{80A72877-FEA5-4950-AC42-AC0C823CCB41}C:\users\mazi\downloads\bittorrent-7.1(1).exe] => (Allow) C:\users\mazi\downloads\bittorrent-7.1(1).exe
FirewallRules: [TCP Query User{B4B9A682-277F-4FCD-BA97-8909207E9F75}C:\windows\system32\rundll32.exe] => (Block) C:\windows\system32\rundll32.exe
FirewallRules: [UDP Query User{7C320F9A-D3A3-4CC0-B5D2-7D68C3B72F2A}C:\windows\system32\rundll32.exe] => (Block) C:\windows\system32\rundll32.exe
FirewallRules: [TCP Query User{09E69C11-F16F-4659-AFFE-932594C3DA04}C:\program files\alcohol soft\alcohol 52\alcohol.exe] => (Allow) C:\program files\alcohol soft\alcohol 52\alcohol.exe
FirewallRules: [UDP Query User{68DFF0E5-454B-4EC1-9767-22694E1EC218}C:\program files\alcohol soft\alcohol 52\alcohol.exe] => (Allow) C:\program files\alcohol soft\alcohol 52\alcohol.exe
FirewallRules: [TCP Query User{A6F4FF89-3F76-4D95-BAF3-5E3AFBD22069}C:\program files\openoffice.org 3\program\soffice.bin] => (Block) C:\program files\openoffice.org 3\program\soffice.bin
FirewallRules: [UDP Query User{02EFC1C2-EC5A-4759-84B5-2875252997AF}C:\program files\openoffice.org 3\program\soffice.bin] => (Block) C:\program files\openoffice.org 3\program\soffice.bin
FirewallRules: [TCP Query User{06256A39-A2B8-49A0-A1ED-A65C69CBBBC7}C:\program files\common files\java\java update\jaucheck.exe] => (Block) C:\program files\common files\java\java update\jaucheck.exe
FirewallRules: [UDP Query User{F068FBB4-D1EB-41A7-BAC5-796CB571284F}C:\program files\common files\java\java update\jaucheck.exe] => (Block) C:\program files\common files\java\java update\jaucheck.exe
FirewallRules: [TCP Query User{F9950C82-2C08-4D54-8873-CB6E7679303D}C:\program files\java\jre6\bin\javaw.exe] => (Block) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [UDP Query User{F5B91FB3-E779-4D64-BAFA-0AAA8FD3A5B6}C:\program files\java\jre6\bin\javaw.exe] => (Block) C:\program files\java\jre6\bin\javaw.exe
FirewallRules: [{182B4EE5-4060-4945-A87A-896FC727101B}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{676E6969-22C7-4745-8B32-9D546DDC374F}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{EF93CCD2-3CDD-436C-9085-F195DA3B124A}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{2CFCDBDE-1370-44D9-ADFB-D2A6F38F73A5}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{48F7EDD0-5222-4912-A9C1-3925849DFC36}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{27FCE885-1720-40CB-BB61-6FB129B41682}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{AD4105B3-923F-473C-A055-E5825E49CDA0}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{EEEFA398-2E8A-456D-B64E-B87326D153A2}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{C6A1C38A-4683-431D-81FE-7064AC18B977}] => (Allow) LPort=48113
FirewallRules: [{EBC3F973-F8A1-4F3D-BAD4-6B14E818B465}] => (Allow) LPort=48113
FirewallRules: [{8D0960F3-018D-414D-91FE-E235FBF3813A}] => (Allow) C:\Program Files\ma-config.com\maconfservice.exe
FirewallRules: [{ED0B5CF9-276E-412A-941C-AF0E49736A47}] => (Allow) C:\Program Files\ma-config.com\maconfservice.exe
FirewallRules: [{581D0195-6BC5-48F3-8F02-D832DAE2A8DE}] => (Allow) C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{EBB2D9C9-441F-406E-974F-784B9BBE6147}] => (Allow) C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{8CFB3602-6CBD-42BD-BA37-86D67004EEEB}] => (Allow) C:\Users\Mazi\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{A42A1521-C537-4463-B4CC-C67244C47286}] => (Allow) C:\Users\Mazi\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{647315F8-94F0-4718-8694-3E2D2D74C020}] => (Allow) C:\Users\Mazi\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [{C08D4317-14B7-4119-8957-8702DE437775}] => (Allow) C:\Users\Mazi\AppData\Roaming\Spotify\spotify.exe
FirewallRules: [TCP Query User{612E27F7-99FC-41EC-83FF-86C4EDD7500F}C:\program files\counter-strike source\hl2.exe] => (Block) C:\program files\counter-strike source\hl2.exe
FirewallRules: [UDP Query User{8EEB4A92-6BFA-47B8-8D89-B9558A0C561D}C:\program files\counter-strike source\hl2.exe] => (Block) C:\program files\counter-strike source\hl2.exe
FirewallRules: [{30260CF9-F7D7-46A1-8A33-0165E4B32751}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{4D10958D-0D80-47FD-8EFB-6DE86AF55C3D}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [TCP Query User{25D24D96-FC7C-4A48-9797-25DCCF09F123}C:\program files\steam\steamapps\mazi77\condition zero deleted scenes\hl.exe] => (Block) C:\program files\steam\steamapps\mazi77\condition zero deleted scenes\hl.exe
FirewallRules: [UDP Query User{25A9AFE1-96C8-4F9B-BB69-C8D8E7C1DC69}C:\program files\steam\steamapps\mazi77\condition zero deleted scenes\hl.exe] => (Block) C:\program files\steam\steamapps\mazi77\condition zero deleted scenes\hl.exe
FirewallRules: [{E5501302-612D-4CB2-AC3C-B34ECAE91051}] => (Allow) C:\Program Files\Steam\SteamApps\mazi77\counter-strike\hl.exe
FirewallRules: [{A13C597E-F481-4991-9F49-E42550CD4C7E}] => (Allow) C:\Program Files\Steam\SteamApps\mazi77\counter-strike\hl.exe
FirewallRules: [{CC82C84E-30A4-4CFB-93B9-AEE4CD616C45}] => (Allow) C:\Windows\System32\msiexec.exe
FirewallRules: [{6E131DAF-58C0-451C-B225-D803BCE80BFB}] => (Allow) C:\Windows\System32\msiexec.exe
FirewallRules: [{BF5C9793-8893-4F32-99A7-CE24CC662662}] => (Allow) C:\Program Files\Steam\SteamApps\mazi77\condition zero\hl.exe
FirewallRules: [{14B018A2-61DB-426C-87DA-6DA8E322D388}] => (Allow) C:\Program Files\Steam\SteamApps\mazi77\condition zero\hl.exe
FirewallRules: [{3AEDE639-3590-40F4-ADE2-9DCAFF433A5E}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{E4D7B728-65C4-4C14-8985-8DBA98EC0948}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{10CAE55D-2E50-4FD2-8506-067D9E350027}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{8378CB6C-E219-48E0-AF6F-B08E33970ACA}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{A1A5C108-E056-4D60-BCA1-DD1EAF641E01}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{44FBFFA6-2A2C-4370-AF57-CB83F1D4A84C}] => (Allow) C:\Program Files\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{55DB3B82-BDB7-4ECF-8B3E-345DE48E6B3A}] => (Allow) C:\Program Files\mystarttb\ToolbarCleaner.exe
FirewallRules: [{1A32875F-F646-4DC0-A40F-C6C60453DB1C}] => (Allow) C:\Program Files\mystarttb\ToolbarCleaner.exe
FirewallRules: [{C9FF80CC-23A8-463F-A084-ABEC9F7B0E67}] => (Allow) C:\ProgramData\EmailNotifier\EmailNotifier.exe
FirewallRules: [{EF8ACC2A-6DEB-4F04-A2D8-5D18C2854DFD}] => (Allow) C:\ProgramData\EmailNotifier\EmailNotifier.exe
FirewallRules: [{31395169-8BD7-4B01-B497-D2625ED4C7B2}] => (Allow) C:\Program Files\ManyCam\ManyCam.exe
FirewallRules: [{62507582-2C12-4B89-9957-D930B37D377B}] => (Allow) C:\Program Files\ManyCam\ManyCam.exe
FirewallRules: [TCP Query User{035D3579-6AF3-4BD3-9F9F-3C3523894A40}C:\program files (x86)\counter-strike global offensive\csgo.exe] => (Block) C:\program files (x86)\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{D45F1135-35AA-447C-88F5-CE3DB0E2A521}C:\program files (x86)\counter-strike global offensive\csgo.exe] => (Block) C:\program files (x86)\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{0D5105A7-4662-48CA-BBA8-F78B08A8375C}C:\program files (x86)\counter-strike global offensive\tools\steamcmd.exe] => (Allow) C:\program files (x86)\counter-strike global offensive\tools\steamcmd.exe
FirewallRules: [UDP Query User{CFA058AF-57E8-422D-BC4F-0FC50E3BC2D1}C:\program files (x86)\counter-strike global offensive\tools\steamcmd.exe] => (Allow) C:\program files (x86)\counter-strike global offensive\tools\steamcmd.exe
FirewallRules: [{FECD4910-E9DF-4200-A910-99FDF12DD8CE}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{3FB2814F-84B1-4C0C-96E8-94191AD33A6D}] => (Allow) C:\Program Files\Steam\Steam.exe
FirewallRules: [{990503D4-407B-49F1-B235-F9A8AF6B95BA}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [{CDFC599B-584F-433C-8E43-B84E15C314A0}] => (Allow) C:\Program Files\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{89AA4AD0-F2CC-4A3F-93CB-2975B1B5E411}C:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe] => (Allow) C:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe
FirewallRules: [UDP Query User{DA8D96A2-432F-4F5E-B259-E48A8446254C}C:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe] => (Allow) C:\program files\ti education\ti-nspire computer link\ti-nspire computer link.exe
FirewallRules: [TCP Query User{DBA01CC4-F717-4D11-8E92-AE6FBD18FDD6}C:\program files\common files\ti shared\jre\3.2.0\bin\java.exe] => (Allow) C:\program files\common files\ti shared\jre\3.2.0\bin\java.exe
FirewallRules: [UDP Query User{E3F7F376-768B-4956-A8D1-45B0834BB58E}C:\program files\common files\ti shared\jre\3.2.0\bin\java.exe] => (Allow) C:\program files\common files\ti shared\jre\3.2.0\bin\java.exe
FirewallRules: [TCP Query User{76F16672-526E-4320-99F6-CBDEABA20CBB}C:\program files\ti education\ti-nspire cas student software\ti-nspire cas student software.exe] => (Allow) C:\program files\ti education\ti-nspire cas student software\ti-nspire cas student software.exe
FirewallRules: [UDP Query User{D9D8410D-E289-4019-A5F2-53C740272861}C:\program files\ti education\ti-nspire cas student software\ti-nspire cas student software.exe] => (Allow) C:\program files\ti education\ti-nspire cas student software\ti-nspire cas student software.exe
FirewallRules: [TCP Query User{0B0F15CC-207A-4F99-81DE-F8FC7876EB4F}C:\program files\ti education\ti-nspire cas student software\jre\bin\java.exe] => (Allow) C:\program files\ti education\ti-nspire cas student software\jre\bin\java.exe
FirewallRules: [UDP Query User{117862DA-13FD-46A1-BEBE-5AA07EF13AAA}C:\program files\ti education\ti-nspire cas student software\jre\bin\java.exe] => (Allow) C:\program files\ti education\ti-nspire cas student software\jre\bin\java.exe
FirewallRules: [{C3F07D9A-0DE0-4C90-A18E-97B6008A572B}] => (Allow) C:\Program Files\SimpleFiles\SimpleFiles.exe
FirewallRules: [{4CF1C584-7644-4767-A200-ABD033B442E4}] => (Allow) C:\Program Files\SimpleFiles\SimpleFiles.exe
FirewallRules: [{2F370CFF-AF5E-42D3-98AE-897C34FA4F9D}] => (Allow) C:\Program Files\SimpleFiles\downloader.exe
FirewallRules: [{E9AF8A06-AC72-4A0C-A519-FBF0E21FC6F2}] => (Allow) C:\Program Files\SimpleFiles\downloader.exe
FirewallRules: [{3805EF22-73BF-43C7-89E9-DBD730270AAB}] => (Allow) C:\Program Files\EasyVpn\app\EasyVpn.exe
FirewallRules: [{ACF492F2-F2BA-4024-8A49-F5F8905C5DC1}] => (Allow) C:\Program Files\EasyVpn\app\EasyVpn.exe
FirewallRules: [{F19CF1DA-50E4-4F45-865A-A9783112634A}] => (Allow) C:\Program Files\mystarttb\ToolbarCleaner.exe
FirewallRules: [{A977EAF5-A850-4087-9BF5-582F12F5F28F}] => (Allow) C:\Program Files\mystarttb\ToolbarCleaner.exe
FirewallRules: [{A4081D29-8D10-474B-B0FF-D43C10C5B4BD}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{C8966502-AE69-40CE-A73B-BC0126BC4C00}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{E0D0D377-E96B-4496-9DF8-03D77ECAD0AC}] => (Allow) C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{3DA003DA-9B01-43AE-96B2-25E523035320}] => (Allow) C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe
FirewallRules: [{74AA9A29-5F8E-4F8A-BCD0-4A4DA1953425}] => (Allow) C:\Program Files\Opera\opera.exe
FirewallRules: [{5DD5087A-15F3-4F52-85E9-58B7CD0B5DF7}] => (Allow) C:\Program Files\Opera\opera.exe

==================== Faulty Device Manager Devices =============

Name: Port de communication (COM1)
Description: Port de communication
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: (Types de port standard)
Service: Serial
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: ngiym2v2m3nibgf
Description: ngiym2v2m3nibgf
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: ngiym2v2m3nibgf
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: TSSTcorp CD/DVDW SH-S182D ATA Device
Description: Lecteur de CD-ROM
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Lecteurs de CD-ROM standard)
Service: cdrom
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Fichier en tant que pilote de volume
Description: Fichier en tant que pilote de volume
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: blbdrive
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: RWP
Description: Flash Disk
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: USB
Service: WUDFRd
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/28/2015 00:43:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Explorer.EXE, version : 6.1.7600.16385, horodatage : 0x4a5bc60d
Nom du module défaillant : CMDLIN~1.DLL_unloaded, version : 0.0.0.0, horodatage : 0x3f69c6af
Code d’exception : 0xc0000005
Décalage d’erreur : 0x100024b4
ID du processus défaillant : 0xac8
Heure de début de l’application défaillante : 0xExplorer.EXE0
Chemin d’accès de l’application défaillante : Explorer.EXE1
Chemin d’accès du module défaillant: Explorer.EXE2
ID de rapport : Explorer.EXE3

Error: (05/27/2015 09:31:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Explorer.EXE, version : 6.1.7600.16385, horodatage : 0x4a5bc60d
Nom du module défaillant : SupTab.dll_unloaded, version : 0.0.0.0, horodatage : 0x5553208a
Code d’exception : 0xc0000005
Décalage d’erreur : 0x68d91c20
ID du processus défaillant : 0x9b8
Heure de début de l’application défaillante : 0xExplorer.EXE0
Chemin d’accès de l’application défaillante : Explorer.EXE1
Chemin d’accès du module défaillant: Explorer.EXE2
ID de rapport : Explorer.EXE3

Error: (05/27/2015 03:54:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme iexplore.exe version 9.0.8112.16446 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 178c

Heure de début : 01d098849be0f648

Heure de fin : 30

Chemin d’accès de l’application : C:\Program Files\Internet Explorer\iexplore.exe

ID de rapport :

Error: (05/26/2015 11:43:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AnyProtect.exe, version : 1.0.0.4, horodatage : 0x54f88f35
Nom du module défaillant : Flash32_11_8_800_94.ocx, version : 11.8.800.94, horodatage : 0x51c4d6e5
Code d’exception : 0xc0000005
Décalage d’erreur : 0x001376b3
ID du processus défaillant : 0x450
Heure de début de l’application défaillante : 0xAnyProtect.exe0
Chemin d’accès de l’application défaillante : AnyProtect.exe1
Chemin d’accès du module défaillant: AnyProtect.exe2
ID de rapport : AnyProtect.exe3

Error: (05/25/2015 08:23:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AnyProtect.exe, version : 1.0.0.4, horodatage : 0x54f88f35
Nom du module défaillant : Flash32_11_8_800_94.ocx, version : 11.8.800.94, horodatage : 0x51c4d6e5
Code d’exception : 0xc0000005
Décalage d’erreur : 0x001376b3
ID du processus défaillant : 0x1774
Heure de début de l’application défaillante : 0xAnyProtect.exe0
Chemin d’accès de l’application défaillante : AnyProtect.exe1
Chemin d’accès du module défaillant: AnyProtect.exe2
ID de rapport : AnyProtect.exe3

Error: (05/25/2015 06:06:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante 1432566120.exe, version : 2015.525.150.64, horodatage : 0x55633901
Nom du module défaillant : 1432566120.exe, version : 2015.525.150.64, horodatage : 0x55633901
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00001c16
ID du processus défaillant : 0x3a4
Heure de début de l’application défaillante : 0x1432566120.exe0
Chemin d’accès de l’application défaillante : 1432566120.exe1
Chemin d’accès du module défaillant: 1432566120.exe2
ID de rapport : 1432566120.exe3

Error: (05/25/2015 05:52:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante HPNotify.exe, version : 4.0.1.2404, horodatage : 0x55547daf
Nom du module défaillant : BrowserAction.dll, version : 5.0.2.1701, horodatage : 0x54b7257b
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000bfada
ID du processus défaillant : 0xb88
Heure de début de l’application défaillante : 0xHPNotify.exe0
Chemin d’accès de l’application défaillante : HPNotify.exe1
Chemin d’accès du module défaillant: HPNotify.exe2
ID de rapport : HPNotify.exe3

Error: (05/25/2015 04:48:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante OptimizerPro.exe, version : 0.0.0.0, horodatage : 0x2a425e19
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x017e6d87
ID du processus défaillant : 0x758
Heure de début de l’application défaillante : 0xOptimizerPro.exe0
Chemin d’accès de l’application défaillante : OptimizerPro.exe1
Chemin d’accès du module défaillant: OptimizerPro.exe2
ID de rapport : OptimizerPro.exe3

Error: (05/25/2015 04:20:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante AnyProtect.exe, version : 1.0.0.4, horodatage : 0x54f88f35
Nom du module défaillant : Flash32_11_8_800_94.ocx, version : 11.8.800.94, horodatage : 0x51c4d6e5
Code d’exception : 0xc0000005
Décalage d’erreur : 0x001376b3
ID du processus défaillant : 0x121c
Heure de début de l’application défaillante : 0xAnyProtect.exe0
Chemin d’accès de l’application défaillante : AnyProtect.exe1
Chemin d’accès du module défaillant: AnyProtect.exe2
ID de rapport : AnyProtect.exe3

Error: (05/25/2015 03:45:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante HPNotify.exe, version : 4.0.1.2404, horodatage : 0x55547daf
Nom du module défaillant : BrowserAction.dll, version : 5.0.2.1701, horodatage : 0x54b7257b
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000bfada
ID du processus défaillant : 0xdfc
Heure de début de l’application défaillante : 0xHPNotify.exe0
Chemin d’accès de l’application défaillante : HPNotify.exe1
Chemin d’accès du module défaillant: HPNotify.exe2
ID de rapport : HPNotify.exe3


System errors:
=============
Error: (05/28/2015 01:13:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Numerical Value Typewriter s’est terminé de façon inattendue pour la 1ème fois.

Error: (05/28/2015 01:13:18 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Impression Internet s’est terminé de façon inattendue pour la 1ème fois.

Error: (05/28/2015 01:13:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service IHProtect Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (05/28/2015 01:10:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service globalUpdate Update Service (globalUpdate) n’a pas pu démarrer en raison de l’erreur :
%%2

Error: (05/28/2015 01:08:57 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Le service Assistance NetBIOS sur TCP/IP dépend du service suivant : NetBT. Ce dernier n’est peut-être pas installé.

Error: (05/28/2015 01:08:55 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Le pilote de démarrage système ou d’amorçage suivant n’a pas pu se charger :
ngiym2v2m3nibgf

Error: (05/28/2015 01:08:48 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Le service Assistance NetBIOS sur TCP/IP dépend du service suivant : NetBT. Ce dernier n’est peut-être pas installé.

Error: (05/28/2015 01:08:48 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Le service Fichiers hors connexion s’est arrêté avec l’erreur :
%%3

Error: (05/28/2015 00:56:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service globalUpdate Update Service (globalUpdate) n’a pas pu démarrer en raison de l’erreur :
%%2

Error: (05/28/2015 00:54:54 PM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Le service Assistance NetBIOS sur TCP/IP dépend du service suivant : NetBT. Ce dernier n’est peut-être pas installé.


Microsoft Office:
=========================
Error: (05/28/2015 00:43:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7600.163854a5bc60dCMDLIN~1.DLL_unloaded0.0.0.03f69c6afc0000005100024b4ac801d0992fe9e74990C:\Windows\Explorer.EXECMDLIN~1.DLL60161c10-0526-11e5-bbc7-6c626d9ea8c0

Error: (05/27/2015 09:31:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7600.163854a5bc60dSupTab.dll_unloaded0.0.0.05553208ac000000568d91c209b801d098a66298b340C:\Windows\Explorer.EXESupTab.dllee61df70-04a6-11e5-a377-6c626d9ea8c0

Error: (05/27/2015 03:54:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: iexplore.exe9.0.8112.16446178c01d098849be0f64830C:\Program Files\Internet Explorer\iexplore.exe

Error: (05/26/2015 11:43:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AnyProtect.exe1.0.0.454f88f35Flash32_11_8_800_94.ocx11.8.800.9451c4d6e5c0000005001376b345001d097fd046f2fa0C:\Program Files\AnyProtectEx\AnyProtect.exeC:\Windows\system32\Flash\Flash32_11_8_800_94.ocx47196870-03f0-11e5-bd37-6c626d9ea8c0

Error: (05/25/2015 08:23:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AnyProtect.exe1.0.0.454f88f35Flash32_11_8_800_94.ocx11.8.800.9451c4d6e5c0000005001376b3177401d09717dfa9ce90C:\Program Files\AnyProtectEx\AnyProtect.exeC:\Windows\system32\Flash\Flash32_11_8_800_94.ocx240c3eb0-030b-11e5-96e5-6c626d9ea8c0

Error: (05/25/2015 06:06:09 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 1432566120.exe2015.525.150.64556339011432566120.exe2015.525.150.6455633901c000000500001c163a401d09704b4bdc780C:\Users\Mazi\AppData\Local\Temp\1432566120.exeC:\Users\Mazi\AppData\Local\Temp\1432566120.exef45edf00-02f7-11e5-96e5-6c626d9ea8c0

Error: (05/25/2015 05:52:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPNotify.exe4.0.1.240455547dafBrowserAction.dll5.0.2.170154b7257bc0000005000bfadab8801d09702c437b3d0C:\Program Files\XTab\HPNotify.exeC:\Program Files\XTab\BrowserAction.dll03e8c910-02f6-11e5-96e5-6c626d9ea8c0

Error: (05/25/2015 04:48:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: OptimizerPro.exe0.0.0.02a425e19unknown0.0.0.000000000c0000005017e6d8775801d096f986fbbf88C:\Program Files\Optimizer Pro 3.93\OptimizerPro.exeunknown2918dc60-02ed-11e5-bf7c-6c626d9ea8c0

Error: (05/25/2015 04:20:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: AnyProtect.exe1.0.0.454f88f35Flash32_11_8_800_94.ocx11.8.800.9451c4d6e5c0000005001376b3121c01d096f5e0a1a420C:\Program Files\AnyProtectEx\AnyProtect.exeC:\Windows\system32\Flash\Flash32_11_8_800_94.ocx2334f990-02e9-11e5-bf7c-6c626d9ea8c0

Error: (05/25/2015 03:45:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: HPNotify.exe4.0.1.240455547dafBrowserAction.dll5.0.2.170154b7257bc0000005000bfadadfc01d096f118a89ae0C:\Program Files\XTab\HPNotify.exeC:\Program Files\XTab\BrowserAction.dll5b099d80-02e4-11e5-bf7c-6c626d9ea8c0


==================== Memory info ===========================

Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4600+
Percentage of memory in use: 59%
Total physical RAM: 3071.24 MB
Available physical RAM: 1232.88 MB
Total Pagefile: 6140.76 MB
Available Pagefile: 4659.64 MB
Total Virtual: 2047.88 MB
Available Virtual: 1860.82 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:175.78 GB) (Free:129.51 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive e: () (Fixed) (Total:58.59 GB) (Free:47.24 GB) NTFS
Drive f: () (Fixed) (Total:41.01 GB) (Free:5.71 GB) NTFS
Drive g: (M ! L a D(E:)) (Fixed) (Total:49.43 GB) (Free:2.68 GB) NTFS
Drive j: (RWP) (Removable) (Total:7.47 GB) (Free:2 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: B93931E2)
Partition 1: (Active) - (Size=175.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 149.1 GB) (Disk ID: EE85EE85)
Partition 1: (Active) - (Size=58.6 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=90.4 GB) - (Type=OF Extended)

========================================================
Disk: 2 (MBR Code: Windows 7 or Vista) (Size: 7.5 GB) (Disk ID: 00001511)
Partition 1: (Active) - (Size=7.5 GB) - (Type=07 NTFS)

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité