cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015
Ran by zebulon at 2015-06-02 09:28:32
Running from C:\Users\zebulon\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-3093916708-2786188081-4252862163-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-3093916708-2786188081-4252862163-1006 - Limited - Enabled)
Invité (S-1-5-21-3093916708-2786188081-4252862163-501 - Limited - Disabled)
zebulon (S-1-5-21-3093916708-2786188081-4252862163-1002 - Administrator - Enabled) => C:\Users\zebulon

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Antispyware (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Bitdefender Pare-feu (Enabled) {A23392FD-84B9-F933-2C71-81E751F6EF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3012 - Acer Incorporated)
Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.007.20033 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
AppNHost 1.0.5.1 (HKLM-x32\...\{A8CB86C7-CD4C-4C4F-AF6A-33D1CAC63562}) (Version: 1.0.5.1 - Mixesoft Project)
Auslogics DiskDefrag (HKLM-x32\...\{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1) (Version: 5.4.0.0 - Auslogics Labs Pty Ltd)
Auslogics Registry Cleaner (HKLM-x32\...\{8D8024F1-2945-49A5-9B78-5AB7B11D7942}_is1) (Version: 4.4.0.0 - Auslogics Labs Pty Ltd)
Bitdefender Internet Security (HKLM\...\Bitdefender) (Version: 17.31.0.1328 - Bitdefender)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: - )
Canon MP Navigator EX 3.0 (HKLM-x32\...\MP Navigator EX 3.0) (Version: - )
Canon MP550 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP550_series) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
clear.fi SDK - Video 2 (x32 Version: 2.1.1925 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2008 - CyberLink Corp.) Hidden
Cloud System Booster (HKLM-x32\...\Cloud System Booster) (Version: 3.6 - Anvisoft)
Comptes Bancaires 8.2.1 (HKLM-x32\...\Comptes Bancaires_is1) (Version: - Ymsoft)
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3318_45364 - CyberLink Corp.)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
Enregistrement utilisateur de Canon MP550 series (HKLM-x32\...\Enregistrement utilisateur de Canon MP550 series) (Version: - )
Etron USB3.0 Host Controller (x32 Version: 0.115 - Etron Technology) Hidden
Glary Utilities 5.26 (HKLM-x32\...\Glary Utilities 5) (Version: 5.26.0.45 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
gpedt.msc 1.0 (HKLM-x32\...\{10B9C608-BF7C-4CCF-A658-C01D969DCA21}_is1) (Version: - Richard)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
ITE Infrared Transceiver (HKLM-x32\...\{40580068-9B10-40B5-9548-536CE88AB23C}) (Version: 1.02.0013 - ITE)
LibreOffice 4.4.3.2 (HKLM-x32\...\{A651A592-2F6C-4D66-AEA8-9BFE4B61BCB3}) (Version: 4.4.3.2 - The Document Foundation)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3004 - Acer Incorporated)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{14297226-E0A0-3781-8911-E9D529552663}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mises à jour NVIDIA 2.4.3.22 (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
MyDefrag v4.3.1 (HKLM\...\MyDefrag v4.3.1_is1) (Version: 4.0.0.0 - J.C. Kessels)
MyWinLocker (Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.35 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.24 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.24 - Egis Technology Inc.) Hidden
Nero 12 Essentials OEM.a01 (HKLM-x32\...\{9BF0D9FE-9893-4647-81B9-17B7BEA4E6FD}) (Version: 12.5.00000 - Nero AG)
NVIDIA GeForce Experience 2.4.3.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.22 - NVIDIA Corporation)
NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 352.86 - NVIDIA Corporation)
NVIDIA Pilote du contrôleur 3D Vision 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA Pilote graphique 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3202 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.01.3202 - Acer)
Panneau de configuration NVIDIA 352.86 (Version: 352.86 - NVIDIA Corporation) Hidden
Prerequisite installer (x32 Version: 12.0.0002 - Nero AG) Hidden
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.338 - Qualcomm Atheros Communications)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 12.55 - Qualcomm Atheros)
Quicksys RegDefrag 2.9 (HKLM-x32\...\{5D26BF7B-BEF6-477D-8FC1-0C1C159B6364}_is1) (Version: - )
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.370.70 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.36.826.2014 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7455 - Realtek Semiconductor Corp.)
RegSeeker (HKLM-x32\...\RegSeeker) (Version: 2.57.2212 - HoverDesk)
Revo Uninstaller Pro 3.1.2 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.2 - VS Revo Group, Ltd.)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - )
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
SlimDrivers (HKLM-x32\...\{5AD12E7A-D739-4451-9BD1-3610EC56D8F5}) (Version: 2.2.45206 - SlimWare Utilities, Inc.)
TuneUp Utilities 2014 (fr-FR) (x32 Version: 14.0.1000.342 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.342 - TuneUp Software)
TuneUp Utilities 2014 (x32 Version: 14.0.1000.342 - TuneUp Software) Hidden
Unchecky v0.3.7.5 (HKLM-x32\...\Unchecky) (Version: 0.3.7.5 - RaMMicHaeL)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Visual Studio 2005 Tools pour Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
ZHPDiag 2015 (HKLM-x32\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3093916708-2786188081-4252862163-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)

==================== Restore Points =========================

02-06-2015 08:43:15 Revo Uninstaller Pro's restore point - Emsisoft Anti-Malware

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2015-06-02 09:07 - 00001993 ____A C:\WINDOWS\system32\Drivers\etc\hosts
0.0.0.0 0.0.0.0 # fix for traceroute and netstat display anomaly
0.0.0.0 tracking.opencandy.com.s3.amazonaws.com
0.0.0.0 media.opencandy.com
0.0.0.0 cdn.opencandy.com
0.0.0.0 tracking.opencandy.com
0.0.0.0 api.opencandy.com
0.0.0.0 installer.betterinstaller.com
0.0.0.0 installer.filebulldog.com
0.0.0.0 d3oxtn1x3b8d7i.cloudfront.net
0.0.0.0 inno.bisrv.com
0.0.0.0 nsis.bisrv.com
0.0.0.0 cdn.file2desktop.com
0.0.0.0 cdn.goateastcach.us
0.0.0.0 cdn.guttastatdk.us
0.0.0.0 cdn.inskinmedia.com
0.0.0.0 cdn.insta.oibundles2.com
0.0.0.0 cdn.insta.playbryte.com
0.0.0.0 cdn.llogetfastcach.us
0.0.0.0 cdn.montiera.com
0.0.0.0 cdn.msdwnld.com
0.0.0.0 cdn.mypcbackup.com
0.0.0.0 cdn.ppdownload.com
0.0.0.0 cdn.riceateastcach.us
0.0.0.0 cdn.shyapotato.us
0.0.0.0 cdn.solimba.com
0.0.0.0 cdn.tuto4pc.com
0.0.0.0 cdn.appround.biz
0.0.0.0 cdn.bigspeedpro.com
0.0.0.0 cdn.bispd.com

There are 4 more lines.


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {09F95D42-B37E-48D3-906C-4C66A5CFAC90} - System32\Tasks\MyDefrag v4.3.1 Daily => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticDaily.MyD [2010-05-21] ()
Task: {1020D8E9-28E6-4C7E-A30C-F1064B65BF37} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-05-27] (Adobe Systems Incorporated)
Task: {106A2D5F-D677-480F-8ED1-EE9B5AAACFAA} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2012-10-08] (Acer Incorporated)
Task: {18AC94F5-CEFF-4F55-8920-E6D6D05AB58C} - \avastBCLS-1-5-21-3093916708-2786188081-4252862163-1002 No Task File <==== ATTENTION
Task: {1CC5D700-2F5F-4923-AE24-DC45579C5391} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-08-23] (Acer Incorporated)
Task: {1F872A9C-4CF6-4C0E-B22B-13B34F131E65} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-03-07] (Adobe Systems Incorporated)
Task: {26ACDC4C-79AA-42EC-9745-383268D2FFB9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-05-08] (Piriform Ltd)
Task: {2CFC50C2-E0A1-4174-8593-1E9B9F205541} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-27] (Google Inc.)
Task: {34CDED6F-AC5D-46A6-8E0F-C26C95D78C66} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2015-05-25] (Glarysoft Ltd)
Task: {35965517-B5EE-4BB8-BFF6-0D68F96B4A0A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {3717C561-6686-4856-B192-650ADF613C9E} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2012-09-20] (Acer Incorporated)
Task: {436D0A9F-9908-448F-A945-F10B70E9AE23} - \avast! BCU UpdateS-1-5-21-3093916708-2786188081-4252862163-1002 No Task File <==== ATTENTION
Task: {44668775-6AF0-46D5-9D4A-B4409141FA5C} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {51F413E7-E9BC-4776-9EA0-A44EEF1BD531} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2015-05-25] (Glarysoft Ltd)
Task: {562D5A98-8AD2-4982-B3BF-64F921BD75C0} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {5D67FB7B-3CC1-4FCE-9914-488C7FA9DB44} - System32\Tasks\Dolby Selector => C:\Dolby PCEE4\pcee4.exe [2012-08-31] (Dolby Laboratories Inc.)
Task: {694134C4-3892-47F1-9D7F-9588974A5985} - System32\Tasks\Bitdefender Auto Scan => C:\Program Files\Bitdefender\Bitdefender\mtasklaunch.exe [2014-08-05] (Bitdefender)
Task: {6BE8E0FC-4032-4451-80C8-572C7CAFB099} - System32\Tasks\EgisUpdate => C:\Program Files\EgisTec IPS\EgisUpdate.exe [2012-07-12] (Egis Technology Inc.)
Task: {752791AD-4A7F-4C20-9394-0BBBAEBC93FE} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2012-06-22] ()
Task: {7B635C4C-2513-44AC-8A57-AA87C8208A14} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2012-08-30] ()
Task: {7D25E0C0-F668-428C-A5B1-F3E2EF72B7BA} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-27] (Google Inc.)
Task: {8251B3A3-FB4A-47EF-94E2-C538906DE98B} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {83B1F477-ACE9-49E8-9995-30987D0C38BC} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2014-07-21] (TuneUp Software)
Task: {AFC26B47-A74D-4132-AF34-0774FE1D6A10} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-09-20] (CyberLink)
Task: {B3E3D386-6953-448D-B766-DC4482703127} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-04-30] (Microsoft Corporation)
Task: {E36633A6-39F4-46CC-BEE2-84014F49B5E5} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {E5BD71AD-9664-4B0F-99FC-5864DC35E641} - System32\Tasks\MyDefrag v4.3.1 Monthly => C:\Program Files\MyDefrag v4.3.1\Scripts\AutomaticMonthly.MyD [2010-05-21] ()
Task: {F2F6637E-51F1-4852-8975-85D496C6EFE3} - System32\Tasks\PMMUpdate => C:\Program Files\EgisTec IPS\PMMUpdate.exe [2012-07-12] (Egis Technology Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-05-27 11:57 - 2014-09-01 11:00 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2015-05-27 11:57 - 2015-01-09 19:35 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui
2015-05-27 11:57 - 2011-11-14 19:17 - 00153680 _____ () C:\Program Files\Bitdefender\Bitdefender\bdfwcore.dll
2015-05-27 11:57 - 2015-01-09 19:35 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2015-05-27 12:02 - 2015-05-27 12:02 - 00790368 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00350_002\ashttpbr.mdl
2015-05-27 12:02 - 2015-05-27 12:02 - 00711064 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00350_002\ashttpdsp.mdl
2015-05-27 12:02 - 2015-05-27 12:02 - 02683520 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00350_002\ashttpph.mdl
2015-05-27 12:02 - 2015-05-27 12:02 - 01326504 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_00350_002\ashttprbl.mdl
2015-05-29 14:20 - 2009-02-10 18:01 - 00116104 _____ () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2014-07-21 12:27 - 2014-07-21 12:27 - 00699704 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll
2010-07-15 06:44 - 2010-07-15 06:44 - 00020032 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll
2012-06-22 04:12 - 2012-06-22 04:12 - 01407568 _____ () C:\Program Files (x86)\EgisTec MyWinLocker\x64\LIBEAY32.dll
2015-05-29 15:34 - 2000-01-01 02:00 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-05-27 11:51 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll
2015-05-27 11:51 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\zebulon\OneDrive:ms-properties
AlternateDataStreams: C:\Users\zebulon\Downloads\AcroRdrDC1500720033_fr_FR.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\adwcleaner_4.206.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\csbsetup.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\FRST64.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\Install (1).exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\Install.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\JRT.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\MyDefrag-v4.3.1.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\qregdefrag_setup-2.9.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\registry-cleaner-setup.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\registry-defrag-setup.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\speedyfox.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\unchecky_setup.exe:BDU
AlternateDataStreams: C:\Users\zebulon\Downloads\ZHPDiag2.exe:BDU

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3093916708-2786188081-4252862163-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\zebulon\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\papier peint de la visionneuse de photos windows.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "CanonMyPrinter"
HKLM\...\StartupApproved\Run: => "CanonSolutionMenu"
HKLM\...\StartupApproved\Run32: => "CIRAP"
HKU\S-1-5-21-3093916708-2786188081-4252862163-1002\...\StartupApproved\Run: => "GUDelayStartup"
HKU\S-1-5-21-3093916708-2786188081-4252862163-1002\...\StartupApproved\Run: => "CCleaner Monitoring"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{7F59259E-361C-47F5-AD5B-7540805FD4C3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{26965A6C-685E-4AEA-957F-33C5DC34EE1F}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{E942FDBD-6C6C-4218-9C38-8F33E898A843}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{BDD5EA79-CEC6-499D-A890-4B4B8416AB4E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{AC604A4A-DEF4-4A74-A5E1-AB42151FBB46}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{4C291DD9-17FD-4684-8CBB-FB1B679DB6B3}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{79C6CB4F-E357-4E56-BFDD-22DB738D3C9A}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{9A1E1919-6471-417F-B4AA-41AEF9F7394D}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe
FirewallRules: [{3133FC50-7E15-404B-A7A7-5D78A9D755D0}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{8EAFF46F-16E4-4D84-9571-47D6CF222B1A}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{26DA5BE4-EC25-40AC-BBA4-089A4CA6549B}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{D9A204E9-8E49-4463-814B-BD2DF491C138}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{868BAF96-9740-4B47-94B9-10E93C76436C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5668E9E0-0781-4785-9C7C-576787E047D3}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{CA785B62-8399-44D0-887A-C371D9F058A9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{BD2254BF-DCD0-41F6-9A53-CC623839978A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{2D9A6D5B-C2D8-44FE-B138-998A47F7C25B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4CB914E7-6A65-4709-98A9-C1F5F1C6BF24}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/02/2015 08:43:14 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé.
.
Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {e1d7fb92-7081-4a62-b042-cbe2b9ce2502}

Error: (06/01/2015 08:09:05 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [0]

Error: (06/01/2015 05:21:11 PM) (Source: ESENT) (EventID: 455) (User: )
Description: LiveComm (5900) C:\Users\zebulon\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\e5a91ec58cd48a4d\120712-0049\: L'Erreur -1811 (0xfffff8ed) s'est produite lors de l'ouverture du fichier journal C:\Users\zebulon\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\e5a91ec58cd48a4d\120712-0049\DBStore\LogFiles\edb00031.log.

Error: (06/01/2015 01:45:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante Notification.exe, version : 6.0.3005.0, horodatage : 0x5072a5b0
Nom du module défaillant : KERNELBASE.dll, version : 6.3.9600.17415, horodatage : 0x54505737
Code d’exception : 0xe0434352
Décalage d’erreur : 0x0000000000008b9c
ID du processus défaillant : 0x1588
Heure de début de l’application défaillante : 0xNotification.exe0
Chemin d’accès de l’application défaillante : Notification.exe1
Chemin d’accès du module défaillant: Notification.exe2
ID de rapport : Notification.exe3
Nom complet du package défaillant : Notification.exe4
ID de l’application relative au package défaillant : Notification.exe5

Error: (06/01/2015 01:45:41 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : Notification.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.ComponentModel.Win32Exception
Pile :
à System.Diagnostics.Process.GetProcessHandle(Int32, Boolean)
à System.Diagnostics.Process.OpenProcessHandle(Int32)
à System.Diagnostics.Process.get_Handle()
à Notification.App.CheckAppContainer(System.Diagnostics.Process)
à Notification.App.CheckResolution()
à Notification.App.Main(System.String[])

Error: (06/01/2015 00:15:17 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (06/01/2015 00:12:26 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/01/2015 00:01:36 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/01/2015 11:46:08 AM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/01/2015 10:29:04 AM) (Source: ESENT) (EventID: 455) (User: )
Description: LiveComm (3424) C:\Users\zebulon\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\e5a91ec58cd48a4d\120712-0049\: L'Erreur -1811 (0xfffff8ed) s'est produite lors de l'ouverture du fichier journal C:\Users\zebulon\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\e5a91ec58cd48a4d\120712-0049\DBStore\LogFiles\edb00025.log.


System errors:
=============
Error: (06/02/2015 09:12:41 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Programme d’installation pour les modules Windows s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 120000 millisecondes : Redémarrer le service.

Error: (06/02/2015 09:12:40 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Service Partage réseau du Lecteur Windows Media s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.

Error: (06/02/2015 09:12:40 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Nero Update s’est terminé de façon inattendue pour la 1ème fois.

Error: (06/02/2015 09:12:40 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Intel(R) Dynamic Application Loader Host Interface Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (06/02/2015 09:12:40 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service ePower Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (06/02/2015 09:12:38 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service.

Error: (06/02/2015 09:12:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Unchecky s’est terminé de façon inattendue pour la 1ème fois.

Error: (06/02/2015 09:12:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service NVIDIA Streamer Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (06/02/2015 09:12:38 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service NVIDIA Network Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (06/02/2015 09:12:38 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Intel(R) Capability Licensing Service Interface s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service.


Microsoft Office:
=========================
Error: (06/02/2015 08:43:14 AM) (Source: VSS) (EventID: 8194) (User: )
Description: 0x80070005, Accès refusé.


Opération :
Données du rédacteur en cours de collecte

Contexte :
ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220}
Nom du rédacteur: System Writer
ID d’instance du rédacteur: {e1d7fb92-7081-4a62-b042-cbe2b9ce2502}

Error: (06/01/2015 08:09:05 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [0]

Error: (06/01/2015 05:21:11 PM) (Source: ESENT) (EventID: 455) (User: )
Description: LiveComm5900C:\Users\zebulon\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\e5a91ec58cd48a4d\120712-0049\: C:\Users\zebulon\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\e5a91ec58cd48a4d\120712-0049\DBStore\LogFiles\edb00031.log-1811 (0xfffff8ed)

Error: (06/01/2015 01:45:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Notification.exe6.0.3005.05072a5b0KERNELBASE.dll6.3.9600.1741554505737e04343520000000000008b9c158801d09c607bc7b0afC:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exeC:\WINDOWS\system32\KERNELBASE.dllbaaef726-0853-11e5-be82-2016d8d4e902

Error: (06/01/2015 01:45:41 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application : Notification.exe
Version du Framework : v4.0.30319
Description : le processus a été arrêté en raison d'une exception non gérée.
Informations sur l'exception : System.ComponentModel.Win32Exception
Pile :
à System.Diagnostics.Process.GetProcessHandle(Int32, Boolean)
à System.Diagnostics.Process.OpenProcessHandle(Int32)
à System.Diagnostics.Process.get_Handle()
à Notification.App.CheckAppContainer(System.Diagnostics.Process)
à Notification.App.CheckResolution()
à Notification.App.Main(System.String[])

Error: (06/01/2015 00:15:17 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [6]

Error: (06/01/2015 00:12:26 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/01/2015 00:01:36 PM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/01/2015 11:46:08 AM) (Source: Adobe Reader) (EventID: 16) (User: )
Description:

Error: (06/01/2015 10:29:04 AM) (Source: ESENT) (EventID: 455) (User: )
Description: LiveComm3424C:\Users\zebulon\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\e5a91ec58cd48a4d\120712-0049\: C:\Users\zebulon\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\e5a91ec58cd48a4d\120712-0049\DBStore\LogFiles\edb00025.log-1811 (0xfffff8ed)


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3-3220 CPU @ 3.30GHz
Percentage of memory in use: 56%
Total physical RAM: 3982.47 MB
Available physical RAM: 1743.71 MB
Total Pagefile: 5390.47 MB
Available Pagefile: 2919 MB
Total Virtual: 131072 MB
Available Virtual: 131071.77 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:457.41 GB) (Free:421.23 GB) NTFS
Drive d: (DATA) (Fixed) (Total:457.85 GB) (Free:457.1 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 06FBD814)

Partition: GPT Partition Type.

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité