cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-05-2015
Ran by Panda Man at 2015-05-11 16:31:26
Running from C:\Users\Panda Man\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-4065231391-887270397-3060985364-500 - Administrator - Disabled)
Invité (S-1-5-21-4065231391-887270397-3060985364-501 - Limited - Disabled)
Panda Man (S-1-5-21-4065231391-887270397-3060985364-1000 - Administrator - Enabled) => C:\Users\Panda Man

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.2.0 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.0.0.74 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2014 (HKLM-x32\...\{663DEEEF-EF34-4DCB-8687-73A7AA146E02}) (Version: 8.2.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.2.0 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{1E9871B6-7C44-9A3A-A1C0-F9729663C7F5}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Apple Application Support (32 bits) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64 bits) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Canon MG5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.04 - Piriform)
Celtx (2.9.1) (HKLM-x32\...\Celtx (2.9.1)) (Version: 2.9.1 (en-US) - Greyfirst)
Dropbox (HKU\S-1-5-21-4065231391-887270397-3060985364-1000\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
FTL version 1.5.4 (HKLM-x32\...\{20E23A40-38E5-4DD6-B738-BC8097AE66B6}_is1) (Version: 1.5.4 - Subset Games)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mozilla Firefox 37.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 37.0.2 (x86 fr)) (Version: 37.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 24.5.0 (x86 fr) (HKLM-x32\...\Mozilla Thunderbird 24.5.0 (x86 fr)) (Version: 24.5.0 - Mozilla)
OpenOffice 4.1.0 (HKLM-x32\...\{B3B009FC-6909-4E00-9F43-FFB5CA93D606}) (Version: 4.10.9764 - Apache Software Foundation)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Skype™ 6.22 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.22.107 - Skype Technologies S.A.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.27614 - TeamViewer)
Unity Web Player (HKU\S-1-5-21-4065231391-887270397-3060985364-1000\...\UnityWebPlayer) (Version: 4.6.0f3 - Unity Technologies ApS)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WebM Project Directshow Filters (HKU\S-1-5-21-4065231391-887270397-3060985364-1000\...\webmdshow) (Version: - )
Xiph.Org Open Codecs 0.85.17777 (HKLM-x32\...\Open Codecs) (Version: 0.85.17777 - Xiph.Org)
ZHPDiag 2015 (HKLM-x32\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)
ZoneAlarm Antivirus (x32 Version: 11.0.780.000 - Check Point Software Technologies Ltd.) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Panda Man\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Panda Man\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Panda Man\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Panda Man\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Panda Man\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-4065231391-887270397-3060985364-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points =========================

08-05-2015 08:57:33 Point de contrôle planifié
08-05-2015 23:52:40 Windows Update
10-05-2015 16:41:22 Revo Uninstaller's restore point - µTorrent

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0056D3DA-3208-4032-B1FD-5D6CBFFC1FFF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated)
Task: {0C1B6EFB-CA82-49D5-9661-B64317A2C619} - System32\Tasks\AdobeAAMUpdater-1.0-PandaMan-PC-Panda Man => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-03-30] (Adobe Systems Incorporated)
Task: {2FC47A35-E099-4696-B7C3-A7E93A44019D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-27] (Adobe Systems Incorporated)
Task: {3CD6F655-5E71-4523-8FBB-4F2F0EA070CE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-20] (Google Inc.)
Task: {61009EAF-685E-4414-BACB-0DAF93DCE64B} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4065231391-887270397-3060985364-1000UA => C:\Users\Panda Man\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.)
Task: {643E5BDE-E3A5-40B0-B526-7C93AF807DCA} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {6A89DBF9-846F-4CEF-B14F-6B3DE395322C} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {920924BE-2842-4727-9835-790D64285BC3} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-13] (Piriform Ltd)
Task: {AA8F0E98-C2C1-4501-B8D0-E67508EE5FB9} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-25] (Microsoft Corporation)
Task: {AB960B58-A2F3-4361-92FB-92F0064913E3} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-25] (Microsoft Corporation)
Task: {AF261378-6987-4E95-A924-FF1534C85931} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-20] (Google Inc.)
Task: {B670AD97-3A95-4242-BEB1-9D8319262CBA} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {D87E70D4-E9CD-4335-B072-5B769C45B171} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-4065231391-887270397-3060985364-1000Core => C:\Users\Panda Man\AppData\Local\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.)
Task: {F6E0735A-2938-4E92-83B4-869FB19C2524} - System32\Tasks\{599DF0BB-CF43-4A6F-B51A-00EBAE3F8388} => pcalua.exe -a "C:\Users\Panda Man\Desktop\OpenOffice 4.1.0 (fr) Installation Files\setup.exe" -d "C:\Users\Panda Man\Desktop\OpenOffice 4.1.0 (fr) Installation Files"
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4065231391-887270397-3060985364-1000Core.job => C:\Users\Panda Man\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4065231391-887270397-3060985364-1000UA.job => C:\Users\Panda Man\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-04-16 17:42 - 2015-04-16 17:42 - 00997536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4065231391-887270397-3060985364-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Panda Man\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.254

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Users^Panda Man^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Facebook Update => "C:\Users\Panda Man\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: Google Update => "C:\Users\Panda Man\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LWS => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
MSCONFIG\startupreg: Malwarebytes Anti-Exploit => C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent

==================== FirewallRules (whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [{E1AAE8B2-3C90-4BA1-BBBD-75F35E949C6E}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{CC88014F-16FC-45B7-9837-3E9C0ADAA746}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{93FCE125-F973-46CC-B829-4F68ED502946}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{51478DE3-317C-456C-A8AC-8D7CC1C66670}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{15126487-ED0E-4902-9718-3E1FF8814DFF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{73DF54EC-BAFE-48D7-AF08-6A39B0C03253}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{2FE7512F-BE64-481D-BF0D-75DCEDE3E485}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{1B5A011E-2E4F-402A-9E03-C8BA13A54E35}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{5A055CFC-1416-4993-BDE0-9542E34DF2EE}C:\program files (x86)\hearthstone\hearthstone.exe] => (Allow) C:\program files (x86)\hearthstone\hearthstone.exe
FirewallRules: [{C3D13CC2-1B55-4427-9347-A36FCBFC221C}] => (Allow) C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{49CAA7B1-FB0C-40D5-BDE0-2228F697513F}] => (Allow) C:\Users\Panda Man\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{200A4C00-5AA1-41E2-A7C7-6F26FDB57D3B}] => (Allow) C:\Users\Panda Man\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{079F5ACE-ED98-4D09-9AE7-C593AEF2EE3B}] => (Allow) C:\Users\Panda Man\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{B604D396-FFA3-4718-8CF5-6193FEFE21F2}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{6F8B040A-F79F-49A7-9AA8-8402932F7B22}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2581\Agent.exe
FirewallRules: [{AA1FF4F7-B8F6-4C47-AEE8-D6E45987436B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{BF019857-38FE-4C48-A0A7-24470E399C59}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{F47F8435-264A-45D8-A3FC-42157B7D2454}] => (Allow) C:\Users\Panda Man\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{7CB1741E-BA5E-4339-9365-A4E9FF854A02}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{DADBFC33-B576-4ABC-A188-A11919292513}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe
FirewallRules: [{020F6B25-AE52-452D-990A-C879CFE583F9}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{ACDB9034-12B7-473A-AB52-E321CB501E9D}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{910EF6C9-A8A1-4E4A-A33D-19A103E40B5A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{2C00F7DA-84D8-420E-82B1-378509F3FF47}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{F05FA822-5B2B-4234-9FC0-EEF5DA36BCE7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{5473D301-2089-406A-A2C2-B7D4D587DCC4}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{D57302EC-DCB0-448B-965A-756FBF6AF6E7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C55D7BE4-FDE1-4783-8B08-EADF4B363653}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F2A2572A-0647-470F-B78B-6A8E6E90EE53}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{3E2166D4-1FF0-4424-AA0E-5AE255E42209}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{1EFD7933-FBD0-46A2-8105-5B5C32DA7616}C:\programdata\battle.net\agent\agent.3427\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.3427\agent.exe
FirewallRules: [UDP Query User{23467940-EB47-4331-BD7B-23F89B96412E}C:\programdata\battle.net\agent\agent.3427\agent.exe] => (Block) C:\programdata\battle.net\agent\agent.3427\agent.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/09/2015 04:28:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme ZHPFix.exe version 2015.4.9.5 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 12c4

Heure de début : 01d08a6110b6f2e9

Heure de fin : 124

Chemin d’accès de l’application : C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPFix.exe

ID de rapport : 96bd53ea-f657-11e4-8ec4-406186e69077

Error: (05/09/2015 04:26:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme DllHost.exe version 6.1.7600.16385 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 12f8

Heure de début : 01d08a62904ebd52

Heure de fin : 32

Chemin d’accès de l’application : C:\Windows\system32\DllHost.exe

ID de rapport : becf5e33-f656-11e4-8ec4-406186e69077

Error: (05/09/2015 03:54:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/09/2015 11:19:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/08/2015 01:46:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/08/2015 00:58:03 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme ZHPDiag.exe version 2015.5.5.46 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 1adc

Heure de début : 01d089102595b3ff

Heure de fin : 2

Chemin d’accès de l’application : C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe

ID de rapport : 7ebbded1-f50c-11e4-bb7d-406186e69077

Error: (05/07/2015 02:05:28 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/07/2015 01:13:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/06/2015 02:45:19 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: Windows ne peut pas accéder au fichier C:\Windows\System32\diagperf.dll pour une des raisons suivantes :
un problème s’est produit avec la connexion réseau, le disque sur lequel le fichier est enregistré, ou les
pilotes de stockage installés sur cet ordinateur, ou le disque est manquant.
Windows a fermé le programme Processus hôte pour les services Windows en raison de cette erreur.

Programme : Processus hôte pour les services Windows
Fichier : C:\Windows\System32\diagperf.dll

La valeur de l’erreur est affichée dans la section Données supplémentaires.
Action utilisateur
1. Ouvrez à nouveau le fichier.
Cette situation peut résulter d’un problème temporaire qui se corrigera de lui-même à la prochaine exécution du programme.
2.
Si le fichier est toujours inaccessible et
- Il se trouve sur le réseau :
votre administrateur réseau devrait vérifier qu’il n’y a aucun problème avec le réseau et que le serveur peut être contacté.
- Il se trouve sur un disque amovible, par exemple une disquette ou un CD-ROM : vérifiez que le disque est inséré correctement dans l’ordinateur.
3. Vérifiez et réparez le système de fichiers en exécutant CHKDSK. Pour exécuter CHKDSK, cliquez sur Démarrer, Exécuter, entrez CMD puis cliquez sur OK. À l’invite de commandes, entrez CHKDSK /F et appuyez sur Entrée.
4. Si le problème persiste, restaurez le fichier à partir d’une copie de sauvegarde.
5. Déterminez si d’autres fichiers du même disque peuvent être ouverts. Si ce n’est pas le cas, le disque est peut-être endommagé. S’il s’agit d’un disque dur, contactez votre administrateur ou le distributeur de votre ordinateur
pour obtenir une assistance supplémentaire.

Données supplémentaires
Valeur de l’erreur : C0000185
Type du disque : 3

Error: (05/06/2015 02:45:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante svchost.exe_DPS, version : 6.1.7600.16385, horodatage : 0x4a5bc3c1
Nom du module défaillant : diagperf.dll, version : 6.1.7601.17514, horodatage : 0x4ce7c5cc
Code d’exception : 0xc0000006
Décalage d’erreur : 0x0000000000003590
ID du processus défaillant : 0x5a8
Heure de début de l’application défaillante : 0xsvchost.exe_DPS0
Chemin d’accès de l’application défaillante : svchost.exe_DPS1
Chemin d’accès du module défaillant: svchost.exe_DPS2
ID de rapport : svchost.exe_DPS3


System errors:
=============
Error: (05/11/2015 03:53:32 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.

Error: (05/11/2015 09:53:28 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.

Error: (05/11/2015 04:06:51 AM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.

Error: (05/11/2015 04:06:51 AM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.

Error: (05/11/2015 04:06:51 AM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.

Error: (05/11/2015 04:06:51 AM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.

Error: (05/11/2015 04:06:51 AM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.

Error: (05/11/2015 04:06:51 AM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.

Error: (05/11/2015 03:53:06 AM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: AUTORITE NT)
Description: Une erreur s’est produite lors de la lecture du fichier d’hôtes local.

Error: (05/11/2015 03:46:59 AM) (Source: atapi) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Ide\IdePort0.


Microsoft Office Sessions:
=========================
Error: (05/09/2015 04:28:04 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: ZHPFix.exe2015.4.9.512c401d08a6110b6f2e9124C:\Program Files (x86)\ZHPDiag\ZHPFix\ZHPFix.exe96bd53ea-f657-11e4-8ec4-406186e69077

Error: (05/09/2015 04:26:12 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: DllHost.exe6.1.7600.1638512f801d08a62904ebd5232C:\Windows\system32\DllHost.exebecf5e33-f656-11e4-8ec4-406186e69077

Error: (05/09/2015 03:54:45 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/09/2015 11:19:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/08/2015 01:46:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/08/2015 00:58:03 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: ZHPDiag.exe2015.5.5.461adc01d089102595b3ff2C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe7ebbded1-f50c-11e4-bb7d-406186e69077

Error: (05/07/2015 02:05:28 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/07/2015 01:13:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/06/2015 02:45:19 AM) (Source: Application Error) (EventID: 1005) (User: )
Description: C:\Windows\System32\diagperf.dllProcessus hôte pour les services WindowsC00001853

Error: (05/06/2015 02:45:19 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_DPS6.1.7600.163854a5bc3c1diagperf.dll6.1.7601.175144ce7c5ccc000000600000000000035905a801d08778bb0c617cC:\Windows\system32\svchost.exeC:\Windows\system32\diagperf.dll2ae6e70d-f389-11e4-9a3f-406186e69077


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5 CPU 650 @ 3.20GHz
Percentage of memory in use: 78%
Total physical RAM: 4023.11 MB
Available physical RAM: 845.29 MB
Total Pagefile: 8044.42 MB
Available Pagefile: 4969.51 MB
Total Virtual: 8192 MB
Available Virtual: 8191.78 MB

==================== Drives ================================

Drive c: (Boot) (Fixed) (Total:910.41 GB) (Free:411.13 GB) NTFS
Drive d: (Recover) (Fixed) (Total:20 GB) (Free:19.91 GB) NTFS
Drive f: () (Fixed) (Total:298.08 GB) (Free:128.3 GB) exFAT
Drive j: () (Fixed) (Total:931.45 GB) (Free:347.34 GB) exFAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 9E13FD8C)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=910.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1 GB) - (Type=12)

========================================================
Disk: 4 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 00042ADA)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 5 (Size: 298.1 GB) (Disk ID: 2BCEB6B1)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Publicité


Signaler le contenu de ce document

Publicité