cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 02-05-2015
Ran by claudie at 2015-05-02 18:10:58
Running from C:\Users\claudie\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-213342816-4162653591-1413925725-500 - Administrator - Disabled)
claudie (S-1-5-21-213342816-4162653591-1413925725-1000 - Administrator - Enabled) => C:\Users\claudie
Invité (S-1-5-21-213342816-4162653591-1413925725-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.34 alpha (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader X (10.1.13) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AA1000000001}) (Version: 10.1.13 - Adobe Systems Incorporated)
Apple Application Support (32 bits) (HKLM\...\{2FE00055-C4F3-4F7A-AEDD-E198D54CF12F}) (Version: 3.1.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{28ED482A-56DB-47D9-8D9E-990FA8CD7D3D}) (Version: 8.1.0.18 - Apple Inc.)
Avast Internet Security (HKLM\...\Avast) (Version: 10.2.2215 - AVAST Software)
Brother MFL-Pro Suite DCP-385C (HKLM\...\{3A08B59E-A9F0-4F4D-B7E5-6875D7F13327}) (Version: 1.1.8.0 - Brother Industries, Ltd.)
Dropbox (HKU\S-1-5-21-213342816-4162653591-1413925725-1000\...\Dropbox) (Version: 3.4.4 - Dropbox, Inc.)
Free Studio version 6.4.3.128 (HKLM\...\Free Studio_is1) (Version: 6.4.3.128 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.52.113 (HKLM\...\Free YouTube Download_is1) (Version: 3.2.52.113 - DVDVideoSoft Ltd.)
Free YouTube to DVD Converter version 3.1.53.113 (HKLM\...\Free YouTube to DVD Converter_is1) (Version: 3.1.53.113 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.53.113 (HKLM\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.53.113 - DVDVideoSoft Ltd.)
Glary Utilities 5.19 (HKLM\...\Glary Utilities 5) (Version: 5.19.0.32 - Glarysoft Ltd)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6227.252 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Google+ Auto Backup (HKU\S-1-5-21-213342816-4162653591-1413925725-1000\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.)
HP Wireless Mouse Suite 2.5 (HKLM\...\{CCA357C1-4637-492E-81DF-B6F4E9F47DDE}) (Version: 2.5 - Nom de votre société)
InPixio Photo Clip (HKLM\...\{385677FD-EA78-4945-9AA5-6816F3646529}) (Version: 1.0.23833 - Micro Application)
InPixio Photo Maximizer (HKLM\...\{33DB8C17-40C9-4629-B6D4-05A4C7E8AA86}) (Version: 1.20.25799 - Micro Application)
Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Ma-Config.com (HKLM\...\{2188D50C-BA8A-47AD-8477-17B5BE12532D}) (Version: 7.1.5.0 - Cybelsoft)
Malwarebytes Anti-Malware version 2.1.4.1018 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052B-02A4-4627-81F2-1818DA5D550D}) (Version: - )
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 10.0.2 (x86 fr) (HKLM\...\Mozilla Firefox 10.0.2 (x86 fr)) (Version: 10.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla)
PaperPort Image Printer (HKLM\...\{2BC2781A-F7F6-452E-95EB-018A522F1B2C}) (Version: - )
Photo Collage Master 4.0 (HKLM\...\Photo Collage Master_is1) (Version: - Photo Collage Software, Inc.)
Photo Notifier and Animation Creator (HKLM\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.)
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Samsung Master (HKLM\...\{AEC0CEBC-0FC7-4716-8222-1C4A742719B1}) (Version: 1.1.14 - Samsung)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
ScanSoft PaperPort 11 (HKLM\...\{7A8FF745-BBC5-482B-88E4-18D3178249A9}) (Version: - )
Skype™ 7.0 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
TomTom HOME (HKLM\...\{7A2BB1C8-903D-4585-9F3B-CADD67D07D37}) (Version: 2.9.8 - Nom de votre société)
TomTom HOME (HKLM\...\{BB05590A-6602-43F3-A400-77EA0976BC0A}) (Version: 2.9.8 - Nom de votre société)
TomTom HOME 2.7.3.1894 (HKLM\...\TomTom HOME) (Version: 2.7.3.1894 - TomTom)
Visual Studio C++ 10.0 Runtime (HKLM\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
ZedTV version 2.5.3 (HKLM\...\{7B4E06B9-2FA4-4F3E-85C5-1DCF1BA4B999}_is1) (Version: 2.5.3 - czmaster)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\claudie\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\claudie\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\claudie\AppData\Local\Google\Update\1.3.25.5\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> "C:\Users\claudie\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe" No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> "C:\Users\claudie\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe" No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> "C:\Users\claudie\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe" No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\claudie\AppData\Local\Google\Update\1.3.24.15\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> C:\Users\claudie\AppData\Local\Google\Update\1.3.22.3\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\claudie\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\claudie\AppData\Local\Google\Update\1.3.25.11\npGoogleUpdate3.dll No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\claudie\AppData\Local\Google\Update\1.3.25.11\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> "C:\Users\claudie\AppData\Local\Google\Update\1.3.25.11\GoogleUpdateOnDemand.exe" No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\claudie\AppData\Local\Google\Update\1.3.25.11\psuser.dll No File
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\claudie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\claudie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\claudie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\claudie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\claudie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\claudie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\claudie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\claudie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-213342816-4162653591-1413925725-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\claudie\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

02-05-2015 16:55:32 Restore Point Created by FRST
02-05-2015 17:31:09 Restore Point Created by FRST

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {03434F35-7A46-443F-BAB0-09A994748A5B} - System32\Tasks\claudie Local Autobackup => C:\Program Files\Nero\Nero BackItUp & Burn\Nero BackItUp\NBCore.exe [2010-03-14] (Nero AG)
Task: {065289C8-B3D0-4437-B91F-C3593339F3C6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-28] (Google Inc.)
Task: {0D1915D4-B7AC-4D1D-BFFC-457A2EF88273} - System32\Tasks\claudie NBAgent => C:\Program Files\Nero\Nero BackItUp & Burn\Nero BackItUp\NBAgent.exe [2010-03-14] (Nero AG)
Task: {35DEA633-CC02-4F8B-8BEF-20605D13254F} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe
Task: {44FD36D9-2A80-48C2-9B9D-40CDB3688221} - System32\Tasks\Go to RoboForm Install page => Rundll32.exe url.dll,FileProtocolHandler "http://www.roboform.com/test-pass.html?aaa=KICMMJGMKJMJLMJMOJKJCNKMNJIMJMCNLMPMIMKJCNGMJMOMNJCNMMPMNMOJNJLJHMKJJMPMJMPMJNJICMIMCNNMCNPMFMHMCNPMCNJMPMPMOMFMJMCNPMCNJMPMPMOMCNNMJNPICMLMFMEKMICNJJCKFMPMJNHICMEKMICNJJCKJNBJCMMJDJOJKILJGJKJJNKJCMJNNICMJNDJCMJJNI"
Task: {4D7A6C51-FE69-48A8-B40C-A87746DAA65D} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-04-11] (Avast Software s.r.o.)
Task: {7557F510-D6B3-4F42-9E93-0D114C7CE22F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: {80FF6571-2AD0-4B6F-B92A-B9DF2C8308D5} - System32\Tasks\GU5SkipUAC => C:\Program Files\Glary Utilities 5\Integrator.exe [2015-02-12] (Glarysoft Ltd)
Task: {9859EF35-F72C-4D46-8C4B-27875B835C17} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-213342816-4162653591-1413925725-1000Core => C:\Users\claudie\AppData\Local\Google\Update\GoogleUpdate.exe [2014-07-31] (Google Inc.)
Task: {9878E1BF-2525-48D1-AB4D-DD2D27B0234E} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - claudie => C:\Program Files\Windows Calendar\WinCal.exe [2009-04-11] (Microsoft Corporation)
Task: {A4F2C145-9C0F-4A6F-BD34-B634B6CD33DC} - \Advanced System Protector_startup No Task File <==== ATTENTION
Task: {B837757D-A374-4BEC-BAA1-BB4C0B2D4CD4} - System32\Tasks\GlaryInitialize 5 => C:\Program Files\Glary Utilities 5\Initialize.exe [2015-02-12] (Glarysoft Ltd)
Task: {C485159C-ECA1-4BDF-987C-0E471AA2FF52} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {C7EEF14A-D62D-4C00-8544-86788A0D02FC} - System32\Tasks\0 => Iexplore.exe <==== ATTENTION
Task: {C8D8B43D-07F3-4C5B-B735-09FE1907981F} - System32\Tasks\Advanced System Protector => C:\Program Files\RegClean Pro\SystweakASP.exe <==== ATTENTION
Task: {CC27C975-38BD-4FB8-B8A2-0A2CE96941EE} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-213342816-4162653591-1413925725-1000UA => C:\Users\claudie\AppData\Local\Google\Update\GoogleUpdate.exe [2014-07-31] (Google Inc.)
Task: {D21D212D-ED9E-49D2-850C-3180EBEB6EFB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-28] (Google Inc.)
Task: {E1308087-890F-425C-B27D-E13D3F456C79} - System32\Tasks\{4893EB32-1A3D-4605-8486-04C7E0744F85} => pcalua.exe -a C:\WINDOWS\st6unst.exe -c -n "C:\Program Files\AZ Paint\ST6UNST.LOG"
Task: {E3A34AB4-2BE8-4655-BBAC-8542CFE983CE} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GlaryInitialize 5.job => C:\Program Files\Glary Utilities 5\Initialize.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-213342816-4162653591-1413925725-1000Core.job => C:\Users\claudie\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-213342816-4162653591-1413925725-1000UA.job => C:\Users\claudie\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2015-03-22 12:54 - 2015-04-11 07:32 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-03-22 12:54 - 2015-04-11 07:32 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-05-02 15:25 - 2015-05-02 15:25 - 02926592 _____ () C:\Program Files\AVAST Software\Avast\defs\15050201\algo.dll
2011-01-25 13:15 - 2006-09-14 01:20 - 00126464 _____ () C:\Program Files\WinRAR\rarext.dll
2006-11-02 12:25 - 2007-01-18 23:54 - 00159744 _____ () C:\Windows\system32\atitmmxx.dll
2014-01-20 14:17 - 2014-01-20 14:17 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2010-11-30 17:04 - 2010-11-30 17:04 - 00172032 _____ () C:\ProgramData\HP Wireless Mouse Suite Config\PelLinkS.exe
2011-03-09 11:18 - 2011-03-09 11:18 - 01060864 _____ () C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
2011-03-09 11:29 - 2011-03-09 11:29 - 00886272 _____ () C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\System.Data.SQLite.dll
2011-03-09 11:16 - 2011-03-09 11:16 - 00484352 _____ () C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
2015-03-13 20:35 - 2015-03-22 12:56 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-05-02 18:06 - 2015-05-02 18:06 - 00043008 _____ () c:\users\claudie\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpzqnogu.dll
2015-03-04 23:45 - 2015-03-04 23:45 - 00750080 _____ () C:\Users\claudie\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 23:45 - 2015-03-04 23:45 - 00047616 _____ () C:\Users\claudie\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 23:45 - 2015-03-04 23:45 - 00865280 _____ () C:\Users\claudie\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 23:45 - 2015-03-04 23:45 - 00200704 _____ () C:\Users\claudie\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2011-01-25 21:15 - 2007-03-29 13:52 - 00097280 _____ () C:\Program Files\Pense-bete\resourc.dll
2011-01-25 21:15 - 2003-12-08 16:15 - 00304128 _____ () C:\Program Files\Pense-bete\voix.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-213342816-4162653591-1413925725-1000\...\babylon.com -> hxxp://search.babylon.com
IE restricted site: HKU\S-1-5-21-213342816-4162653591-1413925725-1000\...\iminent.com -> hxxp://www.iminent.com

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-213342816-4162653591-1413925725-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\claudie\Pictures\FONDS d'écran\3038.jpg
DNS Servers: 192.168.0.254

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [SLSVC-In-TCP] => (Allow) %SystemRoot%\system32\slsvc.exe
FirewallRules: [SLSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\slsvc.exe
FirewallRules: [WinCollab-DFSR-In-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-DFSR-Out-TCP] => (Allow) %SystemRoot%\system32\dfsr.exe
FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe
FirewallRules: [{DC6A9EB4-A9E1-4EC2-9310-DD951701E0C7}] => (Allow) LPort=80
FirewallRules: [{1B76780D-C036-4DD7-A151-9C9CDAC7E20C}] => (Allow) LPort=80
FirewallRules: [{E085399E-75D8-44D4-B769-41B73D3970F5}] => (Allow) LPort=80
FirewallRules: [{29844F19-2121-4FD4-A409-936CAB636BCF}] => (Allow) C:\Program Files\Microsoft Office\Office12\outlook.exe
FirewallRules: [{84A7BF1C-2084-4723-B002-0E040E23A308}] => (Allow) C:\Users\claudie\AppData\Local\IM\Runtime\IncrediMail_Install.exe
FirewallRules: [{97AC8B8E-4139-4AE6-B553-0F10764B450A}] => (Allow) C:\Users\claudie\AppData\Local\IM\Runtime\IncrediMail_Install.exe
FirewallRules: [{57B8FE94-A0F9-4E62-971B-DFA5C4972113}] => (Allow) C:\Windows\System32\muzapp.exe
FirewallRules: [{15AF9159-B84E-4769-9742-982E65A38211}] => (Allow) C:\Windows\System32\muzapp.exe
FirewallRules: [TCP Query User{6D083D9E-3102-4597-BEC5-CA47332E8F2C}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{DD03A231-E59D-4B3A-82B1-51ED9DD0684B}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [TCP Query User{A8DAAC16-3E00-46F8-86D6-F3C10F3014CA}C:\program files\freeplayer\vlc\vlc.exe] => (Allow) C:\program files\freeplayer\vlc\vlc.exe
FirewallRules: [UDP Query User{F364C10E-B63D-4AE7-9086-1BD19D97157C}C:\program files\freeplayer\vlc\vlc.exe] => (Allow) C:\program files\freeplayer\vlc\vlc.exe
FirewallRules: [TCP Query User{003EF4A5-A623-4760-A758-C0FA3DC66538}C:\program files\freemi upnp media server\freemi upnp media server.exe] => (Allow) C:\program files\freemi upnp media server\freemi upnp media server.exe
FirewallRules: [UDP Query User{A99FF209-C53E-4079-AF57-BB6E6FEFB5AE}C:\program files\freemi upnp media server\freemi upnp media server.exe] => (Allow) C:\program files\freemi upnp media server\freemi upnp media server.exe
FirewallRules: [TCP Query User{88CF07D9-BE6D-4F0E-9065-6015F83176BB}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{E230D40C-F3CD-4BAD-B3E4-3A252E5ABEA9}C:\program files\java\jre7\bin\javaw.exe] => (Block) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{A0F81E0E-43F8-415F-87F2-38CDA6D6BB0F}] => (Allow) C:\Program Files\WinRAR\WinRAR.exe
FirewallRules: [{7429AB8E-0733-47E2-B64D-7FD9B0112C69}] => (Allow) C:\Program Files\WinRAR\WinRAR.exe
FirewallRules: [{4D49F374-9F2D-42B9-B34F-5D31EF280BC9}] => (Allow) C:\Users\claudie\Downloads\JewelQuest3SDM.exe
FirewallRules: [{7920438A-4104-4E6B-98D9-069F0863B22F}] => (Allow) C:\Users\claudie\Downloads\JewelQuest3SDM.exe
FirewallRules: [{00A7171D-E0CA-44D0-BE13-D4CFA972A253}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D1405ECB-A2C7-4CF5-B9D1-B118FEA7C271}] => (Allow) LPort=2869
FirewallRules: [{5C01F505-1421-4D5E-87DE-4BF93FE5F46E}] => (Allow) LPort=1900
FirewallRules: [{34D26D12-57A8-4B09-B089-B14B36B16F9B}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{64B80228-7578-4FD1-926E-BFE27D080D46}] => (Allow) C:\Windows\Installer\{0420F95C-11FF-4E02-B967-6CC22B188F9F}\ScDesktopBackItUp._AB9F1F47710540918A47B78D2BED5DAD.exe
FirewallRules: [{87DF6A73-7E7F-4603-87E9-0415C83DD927}] => (Allow) C:\Windows\Installer\{0420F95C-11FF-4E02-B967-6CC22B188F9F}\ScDesktopBackItUp._AB9F1F47710540918A47B78D2BED5DAD.exe
FirewallRules: [TCP Query User{F9E5E14D-8B21-47EE-9D8D-A21E1E0A3B87}C:\program files\mozilla firefox\plugin-container.exe] => (Block) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{033ECC46-B818-49C7-A0A2-9FEF0B6185C4}C:\program files\mozilla firefox\plugin-container.exe] => (Block) C:\program files\mozilla firefox\plugin-container.exe
FirewallRules: [{BB8994D9-11A2-466A-BB04-AEF7DD62CECA}] => (Allow) C:\Users\claudie\Downloads\incredimail_install(3).exe
FirewallRules: [{27A97102-153E-4474-AD17-9CE03AD446F3}] => (Allow) C:\Users\claudie\Downloads\incredimail_install(3).exe
FirewallRules: [{0A4DC373-5782-4775-A9B7-2584B4F8C557}] => (Allow) C:\Program Files\IncrediMail\Bin\ImApp.exe
FirewallRules: [{01D5D9BD-2481-48B3-8468-C98AC361B9DA}] => (Allow) C:\Program Files\IncrediMail\Bin\ImApp.exe
FirewallRules: [{121CC736-65EB-4C26-B623-0BA9E44E88BA}] => (Allow) C:\Program Files\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{DAC739AD-AD63-4416-A4D2-9B82980E1AB7}] => (Allow) C:\Program Files\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{1839206A-CE6F-4157-85F5-6393EAEADB9D}] => (Allow) C:\Program Files\Pense-bete\pb79g.exe
FirewallRules: [{5316DE40-26DD-4384-9095-A7A645131274}] => (Allow) C:\Program Files\Pense-bete\pb79g.exe
FirewallRules: [{1F25598C-FC82-429C-B68B-174132436FD0}] => (Allow) C:\Windows\System32\WindowsAnytimeUpgrade.exe
FirewallRules: [{8F8816DF-D612-489C-A3A7-5DB09C1D9CAE}] => (Allow) C:\Windows\System32\WindowsAnytimeUpgrade.exe
FirewallRules: [{640AD318-D854-495B-936E-7EA7A9D8FCBC}] => (Allow) C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
FirewallRules: [{64222941-BB78-4237-AE6C-6385568FB25D}] => (Allow) C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe
FirewallRules: [{34F38509-2740-48D6-9084-B292AE3824C8}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{70A61497-5586-4818-B31D-88032FDED51C}] => (Allow) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{CED8C65B-8404-46F2-9C87-F5600A313EEB}] => (Allow) C:\Program Files\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{74481B48-7F2D-4B15-801F-2324F6F1CB06}] => (Allow) C:\Program Files\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{D768493F-B7C4-4E52-B2F5-17E7EFA019BD}] => (Allow) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{F0A890D3-4472-4E46-A87A-B31B619E1E03}] => (Allow) C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{BD8CC24D-DA06-401E-BDDE-84376CB04188}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{382D775E-B0A8-4BC0-AC40-FD71E136C1B7}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{5731428A-331C-43DB-8CA4-B4DB7739EC76}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{0C539E7C-B7BD-4A95-9EDD-8D8343CBC5DB}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{642AD2D0-2059-4A12-A998-FDB54B3A4230}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{7D84CE35-6542-4016-AEFA-3F85F93569EA}] => (Allow) C:\Windows\System32\dmwu.exe
FirewallRules: [{027762B3-9B51-489F-8569-37BC0C7B7D2E}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{430E2057-8F86-4A53-88A1-CEFA66628D65}] => (Allow) C:\Windows\System32\ARFC\wrtc.exe
FirewallRules: [{EB3386CE-6651-47CA-92DD-9E20B65A42D8}] => (Allow) C:\Program Files\AVG\AVG2013\avgmfapx.exe
FirewallRules: [{E7D95F5C-FE0A-4CF9-A5A9-0AF9DF972972}] => (Allow) C:\Program Files\AVG\AVG2013\avgmfapx.exe
FirewallRules: [{ECE3D4D0-164A-46BC-A86B-3AD2925A65CC}] => (Allow) C:\Program Files\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{E10C6CFF-F2A5-4D69-A82C-1E282C51C89E}] => (Allow) C:\Program Files\AVG\AVG2014\avgmfapx.exe
FirewallRules: [{97D79178-6B93-4202-B0A2-D3A46DD0F3C7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{DD6B1247-2F44-4466-B0B7-CFA38D22D4DE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3F5D42D5-92FE-4533-8459-A61F74F9DB0C}] => (Allow) C:\Users\claudie\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{F35DCB15-C759-44B7-BDAA-A6958E290B27}] => (Allow) C:\Users\claudie\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{CA65A5B7-F79F-4B24-8EEC-73898747847A}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{AF971251-29A2-4CFC-9846-40C1C9F8D194}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{DB28CDA2-0603-40DD-ACCA-55BED078B6F0}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{858E1A91-A2D5-4DAE-9CD7-6A0DF8086E89}] => (Allow) C:\Users\claudie\AppData\Local\Temp\nsz9C9D.tmp\MainOffer\incredimail_install_FR1036.exe
FirewallRules: [{EF002C28-2918-4A51-9A8B-C83484214021}] => (Allow) C:\Users\claudie\AppData\Local\Temp\nsz9C9D.tmp\MainOffer\incredimail_install_FR1036.exe
FirewallRules: [{66665EC3-A273-4AE0-824F-F15D19CBB380}] => (Allow) LPort=48113
FirewallRules: [{5C8C9A41-3100-48BE-A625-A769B10A32E4}] => (Allow) LPort=48114
FirewallRules: [{31D6EEC5-DDBA-41BB-A348-B19879EBEA6C}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{BB7A8B72-E594-4CF1-8B73-4F0F7CCB0909}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{569CF06A-697B-4EBF-9522-A6404511B69A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{1F8C8876-0570-41A3-A0AA-5D91BD7BDEE3}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C5475AE4-398F-4225-9225-A0ED4D69215C}] => (Allow) C:\Program Files\IncrediMail\Bin\IncMail.exe
FirewallRules: [{6358A35B-5BDE-4AFC-9A56-929BD5CEE1EA}] => (Allow) C:\Program Files\IncrediMail\Bin\IncMail.exe
FirewallRules: [TCP Query User{D363E8FC-0A08-49F1-92D8-B35A3909F33A}C:\users\claudie\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\claudie\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{125C9861-ABB2-46AE-A8A5-B9C841CED246}C:\users\claudie\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\claudie\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{0984201A-79C2-4D75-A560-2A23C255F94C}] => (Allow) C:\Program Files\ScanSoft\PaperPort\PaprPort.exe
FirewallRules: [{8AA4FB84-D3C7-445F-BA10-DE89D85A4F90}] => (Allow) C:\Program Files\ScanSoft\PaperPort\PaprPort.exe
FirewallRules: [{CC659188-101A-40EE-B4D9-38F52C00CE60}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{CB4C25C9-274C-46B6-8B24-9BA43C34DDAB}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{5AB3A0F5-9772-44FE-949C-233BD2E855C1}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Carte miniport Microsoft Tun
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunmp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Teredo Tunneling Pseudo-Interface
Description: Carte miniport Microsoft Tun
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunmp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Clavier standard PS/2
Description: Clavier standard PS/2
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Claviers standard)
Service: i8042prt
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/02/2015 05:31:02 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {a0c54929-8cee-4e68-9587-156078b7eb82}

Error: (05/02/2015 04:55:20 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {7caa2479-9464-4073-bfd8-b03bd95c060d}

Error: (05/02/2015 04:51:38 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: La sauvegarde de fichiers a échoué en raison d’une erreur survenue lors de l’écriture vers l’emplacement de sauvegarde F:\. Le code d’erreur est : Emplacement de sauvegarde introuvable ou incorrect. Vérifiez les paramètres de sauvegarde, ainsi que la configuration matérielle. (0x81000006)

Error: (05/02/2015 04:47:15 PM) (Source: BackItUp5) (EventID: 3361) (User: )
Description: Unable to open last backup information file

Error: (05/02/2015 04:38:46 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {8136e76d-3141-409a-9653-d637d88219a6}

Error: (05/02/2015 04:11:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Application défaillante chrome.exe, version 42.0.2311.90, horodatage 0x552c2225, module défaillant ntdll.dll, version 6.0.6002.19346, horodatage 0x55024174, code d’exception 0xc0000005, décalage d’erreur 0x000392f7,
ID du processus 0x1534, heure de début de l’application 0xchrome.exe0.

Error: (05/02/2015 03:23:33 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {7407f495-9cd9-40cc-b0c6-7118c44044d4}

Error: (05/02/2015 00:44:07 PM) (Source: BackItUp5) (EventID: 3361) (User: )
Description: Unable to open last backup information file

Error: (05/02/2015 11:55:58 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {417534bb-a79b-47d1-8817-38354bc2c65c}

Error: (05/02/2015 10:43:51 AM) (Source: BackItUp5) (EventID: 3361) (User: )
Description: Unable to open last backup information file


System errors:
=============
Error: (05/02/2015 06:04:32 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: MBAMService

Error: (05/02/2015 05:31:35 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: 1Redémarrer le serviceWindows Search%%1056

Error: (05/02/2015 05:31:07 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Licence du logiciel11200001Redémarrer le service

Error: (05/02/2015 05:31:05 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Windows Search1300001Redémarrer le service

Error: (05/02/2015 05:31:02 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: WD File Management Engine1

Error: (05/02/2015 05:31:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Spouleur d'impression1600001Redémarrer le service

Error: (05/02/2015 05:31:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: TeamViewer 8120001Redémarrer le service

Error: (05/02/2015 05:31:01 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Ma-Config Agent150001Redémarrer le service

Error: (05/02/2015 05:31:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: WDDMService1

Error: (05/02/2015 05:31:01 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Nero BackItUp Scheduler 31


Microsoft Office Sessions:
=========================
Error: (02/21/2015 00:06:16 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6715.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 45605 seconds with 40860 seconds of active time. This session ended with a crash.

Error: (02/18/2015 11:03:47 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6715.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 11499 seconds with 9120 seconds of active time. This session ended with a crash.

Error: (12/14/2014 11:30:53 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6713.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 13722 seconds with 6660 seconds of active time. This session ended with a crash.

Error: (11/20/2014 04:17:20 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6707.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 113360 seconds with 1920 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2015-05-02 18:10:28.813
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-05-02 18:10:27.965
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-05-02 18:10:27.062
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-05-02 18:10:26.175
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-05-02 18:10:24.822
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-05-02 18:10:23.947
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-05-02 18:10:23.070
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-05-02 18:10:22.186
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\mbamchameleon.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-05-02 18:09:05.497
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-05-02 18:09:04.657
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume1\Windows\System32\drivers\mwac.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) Dual CPU E2140 @ 1.60GHz
Percentage of memory in use: 48%
Total physical RAM: 3070.51 MB
Available physical RAM: 1567.23 MB
Total Pagefile: 6373.27 MB
Available Pagefile: 4611.36 MB
Total Virtual: 2047.88 MB
Available Virtual: 1909.62 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.76 GB) (Free:317.08 GB) NTFS ==>[Drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.8 GB) (Disk ID: 7C7E350D)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité