cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-06-2015
Ran by J.L at 2015-06-28 20:32:18
Running from F:\0, téléchargements
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-2785585495-646388960-3287457375-500 - Administrator - Disabled)
fbwuser3A4D (S-1-5-21-2785585495-646388960-3287457375-1004 - Limited - Enabled)
fbwuser780D (S-1-5-21-2785585495-646388960-3287457375-1005 - Limited - Enabled)
fbwuserA488 (S-1-5-21-2785585495-646388960-3287457375-1003 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2785585495-646388960-3287457375-1002 - Limited - Enabled)
Invité (S-1-5-21-2785585495-646388960-3287457375-501 - Limited - Disabled)
J.L (S-1-5-21-2785585495-646388960-3287457375-1000 - Administrator - Enabled) => C:\Users\J.L

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Disabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Disabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ABBYY FineReader 6.0 Sprint (HKLM-x32\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.1735.41615 - ABBYY Software House)
Active@ KillDisk 9.2 (HKLM\...\{81B939C1-0219-42B6-A352-D5E43F2BDFAE}_is1) (Version: 9.2 - LSoft Technologies Inc)
ADB Driver (HKLM\...\{B61F9010-3474-11E4-8C21-0800200C9A66}) (Version: 1.0.0 - )
Adblock Plus for IE (HKLM-x32\...\{fd97d1e2-368a-4cd9-af63-8eeff938044a}) (Version: 1.1 - )
Adblock Plus pour IE (32-bits et 64-bits) (HKLM\...\{92E167CC-3D19-47EB-AE7F-A135427C3220}) (Version: 1.4 - Eyeo GmbH)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.293 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.194 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.160 - Adobe Systems Incorporated)
AirDroid 3.0.4.0 (HKLM-x32\...\AirDroid) (Version: 3.0.4.0 - Sand Studio)
AMD Catalyst Install Manager (HKLM\...\{B9C542F2-31A8-8EC1-B349-28C74D2A865C}) (Version: 8.0.891.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Attribute Changer 7.11 (HKLM-x32\...\{27263813-8BDE-4CD2-84D3-02536743428A}_is1) (Version: 7.11 - Romain Petges)
AxCrypt 1.7.3156.0 (HKLM\...\{8B49CDB9-824C-44D6-A5D3-D0235D3030B8}) (Version: 1.7.3156.0 - Axantum Software AB)
Boost (Version: 1.0.2 - Reason Software Company Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5067 - CDBurnerXP)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
CodeStuff Starter (HKLM-x32\...\CodeStuff Starter) (Version: 5.6.2.9 - CodeStuff)
Complément Office 2007 - Microsoft Enregistrer en tant que PDF ou XPS (Beta) (HKLM-x32\...\{30120000-00B2-040C-0000-0000000FF1CE}) (Version: 12.0.4407.1005 - Microsoft Corporation)
Coolmuster Lab.Fone for Android (HKU\S-1-5-21-2785585495-646388960-3287457375-1000\...\Coolmuster Lab.Fone for Android) (Version: 2.1.0.11 - Coolmuster)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
DW WLAN Card Utility (HKLM\...\DW WLAN Card Utility) (Version: 6.30.223.99 - Dell Inc.)
e-Carte Bleue LCL (HKLM-x32\...\{3D6B54EF-65E4-4624-8709-03A3BBE2C240}) (Version: 2.2.7.0 - )
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
Google Earth (HKLM-x32\...\{1A295C25-6E02-49FB-826B-F0D2C56FFA4E}) (Version: 7.1.4.1529 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Hotspot Shield 3.42 (HKLM-x32\...\HotspotShield) (Version: 3.42 - AnchorFree Inc.)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.2.1000 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.8.251 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.3.0.122 - IObit)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Lexmark Pro200-S500 Series (HKLM\...\Lexmark Pro200-S500 Series) (Version: - Lexmark International, Inc.)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6514.5001 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Moniteur de la technologie Intel® Turbo Boost 2.6 (HKLM\...\{6C9365EB-1F9E-4893-9196-3EC77C88D0C5}) (Version: 2.6.2.0 - Intel)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
PowerXpressHybrid (x32 Version: 1.00.0000 - Nom de votre société) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek Ethernet Controller All-In-One Windows Driver (HKLM-x32\...\{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}) (Version: 7.61.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6788 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.52 - Piriform)
Revo Uninstaller Pro 3.1.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.2 - VS Revo Group, Ltd.)
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.33.0 - SAMSUNG Electronics Co., Ltd.)
Screen Video Recorder Gold 1.5 (HKLM-x32\...\{6A9D37B8-E00D-41A7-AD3E-3C9BAA59BA32}_is1) (Version: 1.5 - WordAddin Studio)
Should I Remove It (HKU\S-1-5-21-2785585495-646388960-3287457375-1000\...\Should I Remove It 1.0.4) (Version: 1.0.4 - Reason Software Company Inc.)
Should I Remove It (x32 Version: 1.0.4 - Reason Software Company Inc.) Hidden
SiSoftware Sandra Lite 2014.SP3 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2496}_is1) (Version: 20.42.2014.8 - SiSoftware)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
UsbFix (HKLM-x32\...\Usbfix) (Version: 7.968 - El Desaparecido - www.usbfix.net - www.sosvirus.net)
WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.4700 - Broadcom Corporation)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Xvid 1.1.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.1 - Xvid team (Koepi))
ZHPDiag 2015 (HKLM-x32\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2785585495-646388960-3287457375-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

28-06-2015 01:52:43 Windows Update
28-06-2015 02:00:31 Windows Update
28-06-2015 02:06:09 Opération de restauration
28-06-2015 04:03:34 Sauvegarde Windows
28-06-2015 07:00:21 Windows Update
28-06-2015 07:03:20 Windows Update
28-06-2015 07:51:22 Windows Update
28-06-2015 09:06:14 Windows Live Essentials
28-06-2015 09:07:06 WLSetup
28-06-2015 09:08:59 Revo Uninstaller Pro's restore point - Windows Live
28-06-2015 09:13:45 Windows Live Essentials
28-06-2015 09:14:40 WLSetup
28-06-2015 10:13:29 Revo Uninstaller Pro's restore point - Secunia PSI (3.0.0.10004)
28-06-2015 10:58:55 Opération de restauration

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2015-06-13 21:40 - 00450771 ___AC C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com

There are 1000 more lines.


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {044E9FEC-F5AA-4F10-855F-CDE7CE2697A4} - System32\Tasks\ShouldIRemoveIt => C:\Program Files (x86)\Reason\Should I Remove It\ShouldIRemoveIt.exe [2014-09-03] (Reason Software Company Inc.)
Task: {091A4EA6-5BF4-4FBF-912B-FE1C3FED3EBA} - \PCDEventLauncherTask No Task File <==== ATTENTION
Task: {2420063A-12D9-432A-B90A-37B9544C2FFD} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2014-10-06] (Microsoft Corporation)
Task: {24AAE45C-484C-41B9-98E5-2113D353D8E9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated)
Task: {441C5009-018E-4D45-84B5-4D48B721F135} - System32\Tasks\Uninstaller_SkipUac_J.L => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-06-25] (IObit)
Task: {5E50CC00-D633-4388-AD77-D5304AD8E713} - System32\Tasks\{D4B13CF1-BF92-4C80-B9BA-E8FC9459624B} => Chrome.exe http://ui.skype.com/ui/0/6.16.60.105/fr/abandoninstall?page=tsMain
Task: {60CAF8E0-3BBE-45DA-A441-C46D7CCA6181} - System32\Tasks\Boost => C:\Users\J.L\AppData\Roaming\Reason\Boost\boost.exe [2013-12-27] (Reason Software Company Inc.)
Task: {632EFF2E-B611-4BFC-B501-B591A1D5EE88} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-14] (Piriform Ltd)
Task: {63FD70B8-34BE-4686-AA75-C6F3B4630EA6} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-16] (Google Inc.)
Task: {6FC998ED-BFA3-4E4C-9200-C6B6DDDBDA51} - System32\Tasks\{D733E721-A37B-42A7-917F-B189B17E0348} => Chrome.exe http://ui.skype.com/ui/0/6.16.60.105/fr/abandoninstall?page=tsMain
Task: {7CFE5D05-35B8-43E9-BAEB-A52F86E4685E} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-16] (Google Inc.)
Task: {7F00832E-BF87-4661-A2E3-0753954A6391} - System32\Tasks\{550B702C-BB10-4DF1-A776-9AE68B80F48E} => pcalua.exe -a "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\Revouninstaller.exe" -d "C:\Program Files (x86)\VS Revo Group\Revo Uninstaller"
Task: {9B59AFAC-87EB-456A-8942-3BD41FE6E878} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {B9787843-BCBF-4C96-8A58-99B0A0B110EE} - \Crossbrowse No Task File <==== ATTENTION
Task: {C8713061-6CB3-4CC9-95B7-C1C67977CFB7} - System32\Tasks\{89BEF3E9-5CED-412E-A77B-346F82EFBC7A} => pcalua.exe -a "C:\Program Files (x86)\ZHPDiag\ZHPhep.exe" -d "C:\Program Files (x86)\ZHPDiag"
Task: {CCD34967-55B4-40C1-998E-6F5B7BA0BF72} - \temp_a4d6bac9-2ea8-47c6-a4ad-8a48e4d49cdd-10_user No Task File <==== ATTENTION
Task: {D66D878C-6F58-4D72-AC48-9407888BB024} - System32\Tasks\ShouldIRemoveIt_Notifications => C:\Program Files (x86)\Reason\Should I Remove It\ShouldIRemoveIt.exe [2014-09-03] (Reason Software Company Inc.)
Task: {EF47D46F-EFD2-4629-B6B0-480832C768C5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-24] (Adobe Systems Incorporated)
Task: {F5F99166-7697-4762-89D2-D70E7D9A6D8C} - System32\Tasks\{9900E1E4-C1DF-49DB-9E0F-8364F5762FA6} => pcalua.exe -a "K:\0, telechargements\Revo Uninstaller\Revouninstaller.exe" -d "K:\0, telechargements\Revo Uninstaller"
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe/cJ.Lu
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe/ua /installsource schedulerJ.Lu

==================== Loaded Modules (Whitelisted) ==============

2014-09-13 09:24 - 2009-11-04 08:17 - 00189440 ____C () C:\Windows\system32\spool\PRTPROCS\x64\lxebdrpp.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 ____C () C:\Program Files\Unlocker\UnlockerCOM.dll
2015-06-25 20:57 - 2013-01-23 13:29 - 00772712 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe
2015-06-25 20:57 - 2013-01-23 13:29 - 00150264 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe
2015-06-25 21:11 - 2015-06-25 21:11 - 00055576 ____C () C:\Program Files\CCleaner\branding.dll
2015-05-08 20:50 - 2015-05-08 20:50 - 00065536 ____C () C:\Program Files\CCleaner\lang\lang-1036.dll
2015-06-25 20:57 - 2010-04-01 12:23 - 00389120 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebscw.dll
2015-06-25 20:57 - 2009-05-27 07:16 - 00192512 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebdatr.dll
2015-06-25 20:57 - 2010-04-01 12:24 - 01159168 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebDRS.dll
2015-06-25 20:57 - 2009-03-10 00:43 - 00155648 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebcaps.dll
2014-09-13 09:18 - 2009-02-20 03:48 - 00381440 ____C () C:\Windows\system32\lxebsm.dll
2015-06-22 17:41 - 2009-04-28 02:56 - 00024064 ____C () C:\Windows\system32\lxebsmr.dll
2015-06-25 20:57 - 2010-04-05 05:56 - 00716954 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Epwizard.DLL
2015-06-25 20:57 - 2010-04-05 05:55 - 00159890 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\customui.dll
2015-06-25 20:57 - 2010-04-05 05:54 - 00123033 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Eputil.DLL
2015-06-25 20:57 - 2010-04-05 05:54 - 00143502 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Imagutil.DLL
2015-06-25 20:57 - 2010-04-05 05:55 - 00061604 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\Epfunct.DLL
2015-06-25 20:57 - 2009-06-23 06:09 - 02203648 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\EPWizRes.dll
2015-06-25 20:57 - 2009-06-23 06:10 - 00049152 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\epstring.dll
2015-06-25 20:57 - 2009-06-23 06:11 - 00094208 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\EPOEMDll.dll
2015-06-25 20:57 - 2009-04-07 14:25 - 00409600 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\iptk.dll
2015-06-25 20:57 - 2009-03-02 09:25 - 00151552 ____C () C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebptp.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ioloSystemService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ioloSystemService => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

There are 7867 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2785585495-646388960-3287457375-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\J.L\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeActiveFileMonitor13.0 => 2
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 2
MSCONFIG\Services: AERTFilters => 2
MSCONFIG\Services: AvastVBoxSvc => 3
MSCONFIG\Services: btwdins => 2
MSCONFIG\Services: cphs => 3
MSCONFIG\Services: Crypkey License => 2
MSCONFIG\Services: globalUpdate => 2
MSCONFIG\Services: globalUpdatem => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 2
MSCONFIG\Services: hshld => 2
MSCONFIG\Services: HssTrayService => 3
MSCONFIG\Services: HssWd => 2
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: ICCS => 2
MSCONFIG\Services: igfxCUIService1.0.0.0 => 2
MSCONFIG\Services: insvc_1.10.0.14 => 2
MSCONFIG\Services: Intel(R) Capability Licensing Service Interface => 2
MSCONFIG\Services: ioloSystemService => 2
MSCONFIG\Services: isx => 2
MSCONFIG\Services: jhi_service => 2
MSCONFIG\Services: kysykiti => 2
MSCONFIG\Services: LMS => 3
MSCONFIG\Services: lxebCATSCustConnectService => 2
MSCONFIG\Services: lxeb_device => 2
MSCONFIG\Services: lyhykomy => 2
MSCONFIG\Services: MaConfigAgent => 2
MSCONFIG\Services: misx => 2
MSCONFIG\Services: RtkAudioService => 2
MSCONFIG\Services: SandraAgentSrv => 2
MSCONFIG\Services: Sarcastic Life => 2
MSCONFIG\Services: scsvc_1.10.0.16 => 2
MSCONFIG\Services: SDScannerService => 2
MSCONFIG\Services: SDUpdateService => 2
MSCONFIG\Services: SDWSCService => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Software_update => 2
MSCONFIG\Services: Software_update_m => 3
MSCONFIG\Services: TurboBoost => 2
MSCONFIG\Services: UNS => 2
MSCONFIG\Services: vLGnmrdtMRy => 2
MSCONFIG\Services: wltrysvc => 2
MSCONFIG\Services: xoperoze => 2
MSCONFIG\Services: zedepory => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk => C:\Windows\pss\Bluetooth.lnk.CommonStartup
MSCONFIG\startupreg: 4B10E6673270C19A119C53C6723B13D8FCDFAC44._service_run => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Broadcom Wireless Manager UI => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: GoogleChromeAutoLaunch_E2660236D38211C6FFB02F69F3896BEB => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: IAStorIcon => "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: IntelTBRunOnce => wscript.exe //b //nologo "C:\Program Files\Intel\TurboBoost\RunTBGadgetOnce.vbs"
MSCONFIG\startupreg: lxebmon.exe => "C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe"
MSCONFIG\startupreg: MSC => "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX4
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{C0432FE9-54A5-4A8C-A5F0-5E9F502ECB74}] => (Allow) LPort=48113
FirewallRules: [{E7CA779C-0C94-47F0-AA8D-7EB96468C0E2}] => (Allow) LPort=48114
FirewallRules: [{E2F09DF1-E104-492A-B1F4-969EBBC64456}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP3\RpcAgentSrv.exe
FirewallRules: [{E01EC5F6-F608-4182-9499-2A6699631533}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2014.SP3\WNt500x64\RpcSandraSrv.exe
FirewallRules: [{8863A710-AEB7-4975-8697-098F6A471252}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{051803A1-D55D-4245-89BB-99CBC076412F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{F8B77707-5CE8-4603-BA43-0F2B898C7A89}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{36E181E0-30E9-497C-9EBA-3C191C14897A}] => (Allow) LPort=2869
FirewallRules: [{B4C4B5FE-225E-4926-88E5-2B9C6363D906}] => (Allow) LPort=1900
FirewallRules: [{7682296B-ACF0-40EE-A036-0098F0B86E7E}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{8F38C9BB-1ED4-4882-AFF3-51A264423EE8}] => (Allow) LPort=48113
FirewallRules: [{68C38B4D-FFE2-4762-A399-0EBA55A385B6}] => (Allow) LPort=48114
FirewallRules: [TCP Query User{90DAF782-9E7C-4F0D-AA3A-29731ED70677}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [UDP Query User{D27F9461-0FAB-41DD-9E0E-576F22DCA009}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe
FirewallRules: [{CDC74AB1-328F-4794-95D9-4F4181FE7BA6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{CFEF6FA0-9DC3-4FA0-A7BC-EE8AE579131F}C:\users\j.l\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\j.l\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
FirewallRules: [UDP Query User{22A53E09-BCE6-4DEB-ADF0-5BCADCCB64EC}C:\users\j.l\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe] => (Allow) C:\users\j.l\appdata\local\logmein rescue applet\lmir0001.tmp\lmi_rescue.exe
FirewallRules: [{A2F15D77-FA28-4193-8B1E-D0E672D760BA}] => (Allow) C:\Program Files\Lexmark\Dashboard\LX__Dashboard.exe
FirewallRules: [{FA6D4B37-89F2-4BC6-A5AE-0593D2879FC4}] => (Allow) C:\Program Files\Lexmark\Dashboard\LX__Dashboard.exe
FirewallRules: [{380A5A9C-78A3-47B3-A36C-4D5037D09424}] => (Allow) C:\Program Files\Lexmark\Dashboard\LX__Dashboard.exe
FirewallRules: [{8C9D855C-1203-40AE-B71B-25E4A3A1CFCD}] => (Allow) C:\Program Files\Lexmark\Dashboard\LX__Dashboard.exe
FirewallRules: [{55ED95C5-F252-407E-A439-6872276C2E74}] => (Allow) C:\Program Files\Lexmark Pro200-S500 Series\LXEBwbgw.exe
FirewallRules: [{217B8F59-68E2-49C0-B919-3F423D18E811}] => (Allow) C:\Program Files\Lexmark Pro200-S500 Series\LXEBwbgw.exe
FirewallRules: [{42C86C41-3248-4678-A8B4-36259042C6BC}] => (Allow) C:\Program Files\Lexmark Pro200-S500 Series\LXEBwbgw.exe
FirewallRules: [{C6205C25-679C-49EC-91DC-C131B05EAC3B}] => (Allow) C:\Program Files\Lexmark Pro200-S500 Series\LXEBwbgw.exe
FirewallRules: [{EA3E481D-5436-4AE3-A98F-AEB240CE43BE}] => (Allow) C:\Program Files\Lexmark Pro200-S500 Series\Job Status\x64\lxebupd.exe
FirewallRules: [{25E4CF1F-BDF6-4D44-8B83-7EAC753FB022}] => (Allow) C:\Program Files\Lexmark Pro200-S500 Series\Job Status\x64\lxebupd.exe
FirewallRules: [{610FD27B-167B-44E8-B146-6EC968E295B8}] => (Allow) C:\Program Files\Lexmark Pro200-S500 Series\Job Status\x64\lxebupd.exe
FirewallRules: [{EC9D1580-6F6D-4C02-9E09-7125B3A137BF}] => (Allow) C:\Program Files\Lexmark Pro200-S500 Series\Job Status\x64\lxebupd.exe
FirewallRules: [{18BF3976-B0C6-4DEA-9E13-23935FBBF0B8}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe
FirewallRules: [{8976B81D-6651-4129-A6A6-3B5C8872F382}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe
FirewallRules: [{D345B985-123E-41C5-84FD-318F152348C8}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe
FirewallRules: [{458CEE9D-AA3F-4DB6-8C6B-A559E15156ED}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\lxebmon.exe
FirewallRules: [{EB12B949-6398-458E-AB6D-B2E904EC146E}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe
FirewallRules: [{D225AA78-4F96-45AE-A7D1-E33691B8C612}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe
FirewallRules: [{F367BF56-2B3C-4203-B8C6-DFE2BD02C378}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe
FirewallRules: [{85F885D6-1197-4506-BF45-6A17DCD9AE68}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\ezprint.exe
FirewallRules: [{19D80F4C-2AD5-4632-A1EB-9A3F8E2A8BA3}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\AutoPrnt.exe
FirewallRules: [{D82D5B97-B5E2-40D5-9E8C-C30F224FB922}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\AutoPrnt.exe
FirewallRules: [{8B9D9E04-4B49-44BB-BA5D-C3BE61F855FD}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\AutoPrnt.exe
FirewallRules: [{9571293A-D2DD-435A-B2FB-39DEC32001F8}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\AutoPrnt.exe
FirewallRules: [{0E3BBA13-12A1-4FF5-AC07-C1217616A880}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\lexocr.exe
FirewallRules: [{1FA4373F-910A-494E-93EE-DC116F892C12}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\lexocr.exe
FirewallRules: [{CA916160-DC54-47D3-A60E-621AC436CE80}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\lexocr.exe
FirewallRules: [{818F0A6A-C438-43FA-A4FB-F208545EB419}] => (Allow) C:\Program Files (x86)\Lexmark Pro200-S500 Series\lexocr.exe
FirewallRules: [{839D1918-A57C-4F50-B39A-B3F6C739A1D3}] => (Allow) C:\Windows\System32\lxebcoms.exe
FirewallRules: [{40CE53A6-B64F-464B-BED1-5541F3C6EAE6}] => (Allow) C:\Windows\System32\lxebcoms.exe
FirewallRules: [{04C9EF80-AFBA-4249-AEA4-9E05578EE1C9}] => (Allow) C:\Windows\system32\LXEBcoms.exe

==================== Faulty Device Manager Devices =============

Name: Carte graphique VGA standard
Description: Carte graphique VGA standard
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: (Types d’écrans standard)
Service: vga
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Périphérique Bluetooth
Description: Périphérique Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/28/2015 04:53:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme boost.exe version 1.0.2.27680 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 878

Heure de début : 01d0b18da3df2a46

Heure de fin : 16

Chemin d’accès de l’application : C:\Users\J.L\AppData\Roaming\Reason\Boost\boost.exe

ID de rapport : 6625320a-1da5-11e5-a438-9c2a70bec88a

Error: (06/28/2015 00:41:46 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: La sauvegarde a échoué en raison d’une erreur d’écriture dans l’emplacement de sauvegarde, J:\. Erreur : Emplacement de sauvegarde introuvable ou incorrect. Vérifiez vos paramètres de sauvegarde, ainsi que l’emplacement de sauvegarde. (0x81000006).

Error: (06/28/2015 00:32:13 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (06/28/2015 10:26:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante rstrui.exe, version : 6.1.7601.18869, horodatage : 0x556355f1
Nom du module défaillant : rstrui.exe, version : 6.1.7601.18869, horodatage : 0x556355f1
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000001d4f9
ID du processus défaillant : 0x588
Heure de début de l’application défaillante : 0xrstrui.exe0
Chemin d’accès de l’application défaillante : rstrui.exe1
Chemin d’accès du module défaillant: rstrui.exe2
ID de rapport : rstrui.exe3

Error: (06/28/2015 10:13:18 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {0d520ca2-33a7-46e9-a1e7-8f4328183a18}

Error: (06/28/2015 09:14:12 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: JEAN-LOUIS-PC)
Description: Impossible de fermer l’application ou le service « Windows Search ».

Error: (06/28/2015 09:08:59 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {290fd0f4-9f9d-4d9a-8d9b-f68d2c96dae2}

Error: (06/28/2015 09:01:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante PSIA.exe, version : 3.0.0.10004, horodatage : 0x54784a82
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d’exception : 0xc0000005
Décalage d’erreur : 0x00000000
ID du processus défaillant : 0x6cc
Heure de début de l’application défaillante : 0xPSIA.exe0
Chemin d’accès de l’application défaillante : PSIA.exe1
Chemin d’accès du module défaillant: PSIA.exe2
ID de rapport : PSIA.exe3

Error: (06/28/2015 07:41:47 AM) (Source: Chrome) (EventID: 1) (User: AUTORITE NT)
Description: Chrome has encountered a fatal error.
ver=43.0.2357.130;lang=;guid=DD3159F59A5D477B962C7C6AD2C9C436;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\b0dc26c7-5e1e-4bc0-ad0f-9f85212ad98b.dmp

Error: (06/28/2015 06:58:03 AM) (Source: Chrome) (EventID: 1) (User: AUTORITE NT)
Description: Chrome has encountered a fatal error.
ver=43.0.2357.130;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\18030ec4-f6f8-4e2c-971a-e76cbf617f48.dmp


System errors:
=============
Error: (06/28/2015 07:31:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Hôte de périphérique UPnP n’a pas pu démarrer en raison de l’erreur :
%%1079

Error: (06/28/2015 07:31:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Hôte de périphérique UPnP n’a pas pu démarrer en raison de l’erreur :
%%1079

Error: (06/28/2015 07:31:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Hôte de périphérique UPnP n’a pas pu démarrer en raison de l’erreur :
%%1079

Error: (06/28/2015 07:31:38 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Hôte de périphérique UPnP n’a pas pu démarrer en raison de l’erreur :
%%1079

Error: (06/28/2015 07:31:38 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1079upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56}

Error: (06/28/2015 07:31:38 PM) (Source: WMPNetworkSvc) (EventID: 14338) (User: )
Description: 0x80070437

Error: (06/28/2015 07:31:38 PM) (Source: WMPNetworkSvc) (EventID: 14338) (User: )
Description: 0x80070437

Error: (06/28/2015 07:31:38 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1079upnphost{204810B9-73B2-11D4-BF42-00B0D0118B56}

Error: (06/28/2015 07:31:25 PM) (Source: Disk) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk2\DR2.

Error: (06/28/2015 07:31:23 PM) (Source: Disk) (EventID: 11) (User: )
Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk2\DR2.


Microsoft Office:
=========================
Error: (06/28/2015 04:53:18 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: boost.exe1.0.2.2768087801d0b18da3df2a4616C:\Users\J.L\AppData\Roaming\Reason\Boost\boost.exe6625320a-1da5-11e5-a438-9c2a70bec88a

Error: (06/28/2015 00:41:46 PM) (Source: Windows Backup) (EventID: 4103) (User: )
Description: J:\Emplacement de sauvegarde introuvable ou incorrect. Vérifiez vos paramètres de sauvegarde, ainsi que l’emplacement de sauvegarde. (0x81000006)

Error: (06/28/2015 00:32:13 PM) (Source: PerfNet) (EventID: 2004) (User: )
Description:

Error: (06/28/2015 10:26:27 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: rstrui.exe6.1.7601.18869556355f1rstrui.exe6.1.7601.18869556355f1c0000005000000000001d4f958801d0b17b7cee2271C:\Windows\system32\rstrui.exeC:\Windows\system32\rstrui.exe5e89a0ea-1d6f-11e5-a517-9c2a70bec88a

Error: (06/28/2015 10:13:18 AM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Accès refusé.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {0d520ca2-33a7-46e9-a1e7-8f4328183a18}

Error: (06/28/2015 09:14:12 AM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: JEAN-LOUIS-PC)
Description: 1SearchIndexer.exeWindows Search03026216137040

Error: (06/28/2015 09:08:59 AM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Accès refusé.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {290fd0f4-9f9d-4d9a-8d9b-f68d2c96dae2}

Error: (06/28/2015 09:01:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: PSIA.exe3.0.0.1000454784a82unknown0.0.0.000000000c0000005000000006cc01d0b16f946b38a9C:\Program Files (x86)\Secunia\PSI\PSIA.exeunknown9162117b-1d63-11e5-b15c-9c2a70bec88a

Error: (06/28/2015 07:41:47 AM) (Source: Chrome) (EventID: 1) (User: AUTORITE NT)
Description: Chrome has encountered a fatal error.
ver=43.0.2357.130;lang=;guid=DD3159F59A5D477B962C7C6AD2C9C436;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\b0dc26c7-5e1e-4bc0-ad0f-9f85212ad98b.dmp

Error: (06/28/2015 06:58:03 AM) (Source: Chrome) (EventID: 1) (User: AUTORITE NT)
Description: Chrome has encountered a fatal error.
ver=43.0.2357.130;lang=;guid=;is_machine=1;oop=1;upload=1;minidump=C:\Program Files (x86)\Google\CrashReports\18030ec4-f6f8-4e2c-971a-e76cbf617f48.dmp


CodeIntegrity Errors:
===================================
Date: 2015-05-03 17:04:08.751
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume1\Users\J.L\AppData\Local\Temp\EverestDriver.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.

Date: 2015-05-03 17:04:08.719
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume1\Users\J.L\AppData\Local\Temp\EverestDriver.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.

Date: 2015-05-03 17:04:07.939
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume4\EVEREST Home Edition\kerneld.amd64, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.

Date: 2015-05-03 17:04:07.908
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume4\EVEREST Home Edition\kerneld.amd64, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.

Date: 2015-04-30 10:42:58.642
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume1\Users\J.L\AppData\Local\Temp\EverestDriver.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.

Date: 2015-04-30 10:42:58.614
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume1\Users\J.L\AppData\Local\Temp\EverestDriver.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.

Date: 2015-04-30 10:42:56.834
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume12\EVEREST Home Edition\kerneld.amd64, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.

Date: 2015-04-30 10:42:56.806
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume12\EVEREST Home Edition\kerneld.amd64, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.

Date: 2015-04-18 20:57:20.686
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume1\Windows\System32\5E9A.tmp, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.

Date: 2015-04-18 20:57:20.655
Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume1\Windows\System32\5E9A.tmp, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-3537U CPU @ 2.00GHz
Percentage of memory in use: 31%
Total physical RAM: 8067.36 MB
Available physical RAM: 5508.13 MB
Total Pagefile: 16132.92 MB
Available Pagefile: 13194.03 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (Disque interne 1) (Fixed) (Total:687.37 GB) (Free:629.54 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (Disque local) (Fixed) (Total:204.1 GB) (Free:199.24 GB) NTFS
Drive e: (enregistrements telephone) (Fixed) (Total:40.04 GB) (Free:37.76 GB) NTFS
Drive f: () (Removable) (Total:14.83 GB) (Free:11.72 GB) FAT32
Drive g: (squipes 1) (Fixed) (Total:931.51 GB) (Free:305.44 GB) NTFS
Drive h: (Disque externe 2) (Fixed) (Total:931.51 GB) (Free:822.19 GB) NTFS
Drive i: (disque externe 3) (Fixed) (Total:931.51 GB) (Free:773.96 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 4FDF70FB)
Partition 1: (Active) - (Size=687.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=204.1 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=40 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 14.8 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: A2C65E16)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 4 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 92330468)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 5 (Size: 931.5 GB) (Disk ID: 167266DD)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité