cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-07-2015
Ran by Nicolas at 2015-07-14 13:52:58
Running from C:\Users\Nicolas\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-1915553525-2121697839-1046317699-500 - Administrator - Disabled)
HomeGroupUser$ (S-1-5-21-1915553525-2121697839-1046317699-1002 - Limited - Enabled)
Invité (S-1-5-21-1915553525-2121697839-1046317699-501 - Limited - Disabled)
Nicolas (S-1-5-21-1915553525-2121697839-1046317699-1000 - Administrator - Enabled) => C:\Users\Nicolas

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.68 - NewTech Infosystems)
Acer Crystal Eye webcam (HKLM-x32\...\{51F026FA-5146-4232-A8BA-1364740BD053}) (Version: 1.0.5.4 - Liteon)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3005 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated)
Acer GameZone Console (HKLM-x32\...\{58F4D244-314F-4D26-B5EF-C28AB32E22CB}_is1) (Version: 6.1.0.9 - Oberon Media, Inc.)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.1124.2010 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 13.0.0.83 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Airport Mania First Flight (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11505173}) (Version: - Oberon Media)
Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{DD89CE29-BC88-40C6-A845-E2548682C5D6}) (Version: 1.9.17.06019 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 1.9.17.06019 - Alcor Micro Corp.) Hidden
ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 7.105.2015.1107 - Alps Electric)
Amazonia (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11273477}) (Version: - Oberon Media)
ATI Catalyst Install Manager (HKLM\...\{84CC4DD9-03B2-C31A-537E-9BBC18ACC602}) (Version: 3.0.786.0 - ATI Technologies, Inc.)
AVS Video Converter 8.5 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 8.5.1.551 - Online Media Technologies Ltd.)
Backup Manager Basic (x32 Version: 2.0.0.68 - NewTech Infosystems) Hidden
BitTorrent (HKU\S-1-5-21-1915553525-2121697839-1046317699-1000\...\BitTorrent) (Version: 7.9.3.40634 - BitTorrent Inc.)
Broadcom Gigabit NetLink Controller (HKLM\...\{A84DB02B-9C2B-4272-9D2D-A80E00A56513}) (Version: 14.2.4.2 - Broadcom Corporation)
Cake Mania (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}) (Version: - Oberon Media)
CamStudio 2.0 Fr (HKLM-x32\...\CamStudio 2.0 Fr_is1) (Version: - )
ccc-core-static (x32 Version: 2010.0828.2240.38829 - Nom de votre société) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Cinergy T-Stick MKII V9.06.3.01 (HKLM-x32\...\Cinergy T-Stick MKII) (Version: 9.06.3.01 - )
Complément Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.3216.50 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media)
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Farm Frenzy 2 (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11531173}) (Version: - Oberon Media)
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Free Mp3 Wma Converter V 1.7.3 (HKLM-x32\...\Free Mp3 Wma Converter_is1) (Version: - Koyote Soft)
Galapago (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version: - Oberon Media)
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Gestionnaire de Connexion SFR 2009.11 (HKLM-x32\...\Gestionnaire de Connexion SFR_is1) (Version: - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.132 - Google Inc.)
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
GoPanda2 (HKLM-x32\...\{D0AC6435-7546-45DF-9797-2F5BB23F0F19}) (Version: 2.4.0 - PANDANET Inc.)
Heroes of Hellas (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}) (Version: - Oberon Media)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217071FF}) (Version: 7.0.710 - Oracle)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 4.0.14 - Acer Inc.)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Ma-Config.com (64 bits) (HKLM\...\{50A9E459-A2CF-4109-BB73-9079702BEBF2}) (Version: 7.0.108 - Cybelsoft)
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Merriam Websters Spell Jam (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112662477}) (Version: - Oberon Media)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040C-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mumble 1.2.7 (HKLM-x32\...\{1FC198EF-5C3F-4C2A-99AC-22DE9B3FBFDE}) (Version: 1.2.7 - Thorvald Natvig)
MyWinLocker (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.212.0 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
NC Launcher (GameForge) (HKLM-x32\...\NCLauncher_GameForge) (Version: - NCsoft)
NTI Backup Now 5 (HKLM-x32\...\InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.630 - NewTech Infosystems)
NTI Backup Now Standard (x32 Version: 5.1.2.630 - NewTech Infosystems) Hidden
NTI Media Maker 8 (HKLM-x32\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.12.6636 - NewTech Infosystems)
NTI Media Maker 8 (x32 Version: 8.0.12.6636 - NewTech Infosystems) Hidden
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6167 - Realtek Semiconductor Corp.)
Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.)
Spin & Win (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110300453}) (Version: - Oberon Media)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamSpeak 3 Client (HKU\S-1-5-21-1915553525-2121697839-1046317699-1000\...\TeamSpeak 3 Client) (Version: 3.0.14 - TeamSpeak Systems GmbH)
TerraTec Home Cinema (HKLM-x32\...\{63B9BAB5-F36A-4A3B-9E5C-68A7F212BFB9}) (Version: 6.17.2 - )
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VideoLAN VLC media player 0.8.6a (HKLM-x32\...\VLC media player) (Version: 0.8.6a - VideoLAN Team)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3007 - Acer Incorporated)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Restore Points =========================

05-07-2015 01:53:49 Windows Update
05-07-2015 19:00:10 Sauvegarde Windows
08-07-2015 19:55:07 Windows Update
09-07-2015 00:37:43 Removed Boxore Client
12-07-2015 00:07:44 Windows Update
12-07-2015 13:58:11 ZHPFix Restore System Point

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 __RSH C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0377C876-221E-45DC-8E00-DD0F655CD9EC} - System32\Tasks\{FBD79FFF-CF24-4A0E-9126-D4F7E1EEAF0A} => pcalua.exe -a C:\Users\Nicolas\AppData\Local\Temp\{66F1F013-008F-4875-B283-5A814B820347}\CleanerUI\cleanapi.exe -d C:\Users\Nicolas\AppData\Local\Temp\{66F1F013-008F-4875-B283-5A814B820347}\CleanerUI -c -d -s
Task: {363DAE6E-758E-438C-968D-36A4F9C7BDC7} - System32\Tasks\{D4F8D56E-F360-4171-8771-00257A3C1DFD} => Chrome.exe http://ui.skype.com/ui/0/6.0.0.120/fr/abandoninstall?source=lightinstaller&page=tsInstall
Task: {4353D060-6750-41DE-94D7-96717D6E634E} - System32\Tasks\{95E15A14-1F31-437B-80DE-96ED64F3F198} => C:\Riot Games\League of Legends\lol.launcher.exe [2014-01-21] ()
Task: {61EB36E7-7A9F-4DD6-A67D-27E765D2AC3A} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1915553525-2121697839-1046317699-1000Core => C:\Users\Nicolas\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-10-18] (Facebook Inc.)
Task: {75F2374A-3DA2-4A8D-BFF5-D04D175624A5} - System32\Tasks\ProtectedSearch\Protected Search => C:\Program Files (x86)\Protected Search\ProtectedSearch.exe <==== ATTENTION
Task: {84488265-A36D-4B27-BCB4-0C94F39E84E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {A62CF9D6-6829-44FB-A531-CA118919E1BE} - System32\Tasks\Vnoafbnar => C:\ProgramData\Vnoafbnar\1.0.4.1\sloelaha.exe [2015-07-10] ()
Task: {D8BD7EA9-1F6B-4607-958E-20F9F70A9714} - System32\Tasks\{C1EDC7C7-D070-46C2-92DE-613CE6092612} => Iexplore.exe http://ui.skype.com/ui/0/4.1.0.179.367/fr/abandoninstall?source=lightinstaller&page=tsMain&installinfo=google-toolbar:notoffered;notincluded,google-chrome:notoffered;notincluded
Task: {DF247BD0-79B3-4624-9F28-CE34A1942461} - System32\Tasks\{503C6B9B-B2B8-4CDC-ADDB-D9344C7AC63E} => Iexplore.exe http://ui.skype.com/ui/0/5.5.0.113/fr/go/help.faq.installer?source=lightinstaller&LastError=1618

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1915553525-2121697839-1046317699-1000Core.job => C:\Users\Nicolas\AppData\Local\Facebook\Update\FacebookUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-07-10 23:46 - 2015-07-10 23:46 - 00157184 _____ () C:\ProgramData\Vnoafbnar\1.0.4.1\sloelaha.exe
2014-09-25 20:44 - 2014-09-25 20:44 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2010-08-26 16:45 - 2010-08-26 16:45 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-08-28 23:39 - 2010-08-28 23:39 - 00270336 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2010-06-29 01:20 - 2010-06-29 01:20 - 00465576 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\sqlite3.dll
2010-06-29 01:12 - 2010-06-29 01:12 - 01081600 _____ () C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\ACE.dll
2011-03-11 21:15 - 2009-05-21 00:02 - 00072200 _____ () C:\Program Files (x86)\Launch Manager\CdDirIo.dll
2015-07-07 18:58 - 2015-07-07 05:49 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.132\libglesv2.dll
2015-07-07 18:58 - 2015-07-07 05:49 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.132\libegl.dll
2015-07-07 18:58 - 2015-07-07 05:49 - 16285512 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.132\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:93EB7685

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1915553525-2121697839-1046317699-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Nicolas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Facebook Update => "C:\Users\Nicolas\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{9296F18D-9768-459F-BDF1-826C0906D50A}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{6E95A8FF-CEBC-4079-88E1-9108BB4FDFCF}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{4074498A-BEB1-43BB-B938-1DD35EF9C412}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
FirewallRules: [{B98F2776-F853-4276-84B1-2146BD86F99D}] => (Allow) C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
FirewallRules: [{D620BCAE-FAB8-42F9-91E1-231AC0889435}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{AB63CF29-144C-42C9-BB54-622182E44C65}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{A830FE08-7BDD-49A0-A7E5-FC5E15CB343C}] => (Allow) LPort=2869
FirewallRules: [{59DB7425-B9DD-43A2-8E57-5E0AE91DCEBE}] => (Allow) LPort=1900
FirewallRules: [{D18BA216-9328-4BA2-B68A-99CE27E18438}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{A2AA3825-0BC0-4201-AFF9-29878C2A93BB}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{623DB586-E1C8-4CAE-A20F-C875933352D9}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{C4F221D6-6EE5-46A5-BF07-9D65C558B668}] => (Allow) C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\InstTool.exe
FirewallRules: [{B86A92BD-E2F0-4796-B107-AE00EB25CB9C}] => (Allow) C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\InstTool.exe
FirewallRules: [{29A9ECC4-37F2-4F59-B304-D9E82225E193}] => (Allow) C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\CinergyDvr.exe
FirewallRules: [{6707199C-05FE-4CE3-B56B-51A430EBBFF7}] => (Allow) C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\CinergyDvr.exe
FirewallRules: [{0DC0DFE2-7502-4FA8-9A6A-8D81C570590A}] => (Allow) C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\tvtvSetup\tvtv_Wizard.exe
FirewallRules: [{2AE2D39A-B459-4FAD-8616-9B6A2B0B119F}] => (Allow) C:\Program Files (x86)\TerraTec\TerraTec Home Cinema\tvtvSetup\tvtv_Wizard.exe
FirewallRules: [TCP Query User{FA07F130-C0DC-4281-A2B2-64FF89239C8B}C:\program files (x86)\terratec\terratec home cinema\versioncheck\versioncheck.exe] => (Allow) C:\program files (x86)\terratec\terratec home cinema\versioncheck\versioncheck.exe
FirewallRules: [UDP Query User{347634B7-1784-4D28-8E34-3B63949234E1}C:\program files (x86)\terratec\terratec home cinema\versioncheck\versioncheck.exe] => (Allow) C:\program files (x86)\terratec\terratec home cinema\versioncheck\versioncheck.exe
FirewallRules: [TCP Query User{EB022C9C-C4AF-471C-A57B-2FC73F95E24E}C:\program files (x86)\terratec\terratec home cinema\versioncheck\versioncheck.exe] => (Allow) C:\program files (x86)\terratec\terratec home cinema\versioncheck\versioncheck.exe
FirewallRules: [UDP Query User{EDFF8F73-336E-494F-95C1-D66615EED298}C:\program files (x86)\terratec\terratec home cinema\versioncheck\versioncheck.exe] => (Allow) C:\program files (x86)\terratec\terratec home cinema\versioncheck\versioncheck.exe
FirewallRules: [{FFFC93CE-BBDB-497A-BB53-86FF3759B0BD}] => (Allow) C:\Program Files (x86)\SFR\Gestionnaire de Connexion SFR\ABCd_ZTE.exe
FirewallRules: [{EB2B5498-CDA0-4B54-BA42-DF279B783457}] => (Allow) C:\Program Files (x86)\SFR\Gestionnaire de Connexion SFR\ABCd_ZTE.exe
FirewallRules: [TCP Query User{E8D036E0-9DF5-44F7-92A2-0FA72C42255B}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{C44B6411-ED88-44C1-A09D-D72B8F91E9CC}C:\program files (x86)\internet explorer\iexplore.exe] => (Block) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{4B56DC61-7A62-4632-A308-5C07242A36CE}C:\windows\syswow64\javaw.exe] => (Block) C:\windows\syswow64\javaw.exe
FirewallRules: [UDP Query User{200CE070-F3E6-43B9-9F41-4715DE2D1E8C}C:\windows\syswow64\javaw.exe] => (Block) C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{55FBF09F-425F-4890-8247-2E4F86CE7C33}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{D9E7C571-47FB-4A5D-A8EC-543F9AE8EB8A}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{25482ED7-8462-4480-A0DB-E1AD002ABCB6}] => (Allow) LPort=48113
FirewallRules: [{8267DD37-629D-4669-93E0-57CE98E4BE57}] => (Allow) LPort=48114
FirewallRules: [{E75C27DE-DECF-4605-BB6A-E3BB499928C3}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{9A45F155-1F41-42BF-91C8-933D1C22B82D}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{E47A4F7C-BA43-47B0-B3E5-FD3015199923}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{663EC1A6-B1FF-4FF2-9C71-ADD313682147}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D146F82F-E912-4CC9-A7AD-450882467869}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{B2C52328-C435-4DF9-B7E5-9EB6D26CD43F}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{8D630BB0-2CAB-49AB-924B-18C2C864588C}] => (Allow) C:\Users\Nicolas\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{17D92BAC-8A20-487E-B136-D7651920CAAB}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{CC9ABC5A-0F3F-4304-B159-1496C1AC0083}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{9CBF1024-C373-40C9-BA49-E8F84C0C4AFD}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{39F8C120-6884-4992-BEA6-73EA8A93797B}] => (Allow) C:\Riot Games\League of Legends\lol.launcher.exe
FirewallRules: [{CCFAD4D3-E1BA-4C6A-A333-25989ED97CA5}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{324374F0-6A84-4574-8205-97246AD9BCD3}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{8786CA28-235D-449C-8419-3990945CFAC7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{81E279DB-83DB-41E2-A134-133A8E2C0BC9}] => (Allow) C:\Users\Nicolas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{4FFF9267-2FEC-4BDA-8D7F-00311AD01AC4}] => (Allow) C:\Users\Nicolas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{8E191A1D-7590-4EC3-9F54-A66CBD31F9DF}] => (Allow) C:\Users\Nicolas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{23F43DD9-5B8D-4096-BDC5-86EFEA57F7E5}] => (Allow) C:\Users\Nicolas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{1516FF0C-52E8-469D-B825-4A6420A89FA9}] => (Allow) C:\Users\Nicolas\AppData\Roaming\BitTorrent\BitTorrent.exe
FirewallRules: [{EFEB726C-F766-43E1-A255-EA3E9191B03F}] => (Allow) C:\Users\Nicolas\AppData\Roaming\BitTorrent\BitTorrent.exe

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/11/2015 11:56:59 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme chrome.exe version 43.0.2357.132 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 136c

Heure de début : 01d0bc246e6b71a6

Heure de fin : 8

Chemin d’accès de l’application : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID de rapport :

Error: (07/11/2015 10:31:58 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme chrome.exe version 43.0.2357.132 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 11d0

Heure de début : 01d0bc187d4971c9

Heure de fin : 13

Chemin d’accès de l’application : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID de rapport :

Error: (07/11/2015 12:06:53 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme chrome.exe version 43.0.2357.132 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : ee0

Heure de début : 01d0bb5c86c496c1

Heure de fin : 16

Chemin d’accès de l’application : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID de rapport : f296ef12-274f-11e5-bb06-206a8a35fa09

Error: (07/10/2015 11:43:17 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme ZHPCleaner.exe version 2015.7.10.293 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 121c

Heure de début : 01d0bb593d8a5c40

Heure de fin : 0

Chemin d’accès de l’application : C:\Users\Nicolas\AppData\Roaming\ZHP\ZHPCleaner.exe

ID de rapport :

Error: (07/10/2015 09:48:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante nsq720B.tmp, version : 0.0.0.0, horodatage : 0x2a425e19
Nom du module défaillant : ntdll.dll, version : 6.1.7601.18869, horodatage : 0x55636317
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0005b942
ID du processus défaillant : 0x16b4
Heure de début de l’application défaillante : 0xnsq720B.tmp0
Chemin d’accès de l’application défaillante : nsq720B.tmp1
Chemin d’accès du module défaillant: nsq720B.tmp2
ID de rapport : nsq720B.tmp3

Error: (07/09/2015 11:40:50 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante nsi6D89.tmp, version : 0.0.0.0, horodatage : 0x2a425e19
Nom du module défaillant : ntdll.dll, version : 6.1.7601.18869, horodatage : 0x55636317
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0005b942
ID du processus défaillant : 0x12d4
Heure de début de l’application défaillante : 0xnsi6D89.tmp0
Chemin d’accès de l’application défaillante : nsi6D89.tmp1
Chemin d’accès du module défaillant: nsi6D89.tmp2
ID de rapport : nsi6D89.tmp3

Error: (07/09/2015 08:15:38 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme chrome.exe version 43.0.2357.132 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 7e0

Heure de début : 01d0ba72e7e2c1bd

Heure de fin : 10

Chemin d’accès de l’application : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID de rapport : 77ed2002-2666-11e5-bbdc-206a8a35fa09

Error: (07/09/2015 08:09:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante nsv2034.tmp, version : 0.0.0.0, horodatage : 0x2a425e19
Nom du module défaillant : ntdll.dll, version : 6.1.7601.18869, horodatage : 0x55636317
Code d’exception : 0xc0000005
Décalage d’erreur : 0x0005b942
ID du processus défaillant : 0x14a0
Heure de début de l’application défaillante : 0xnsv2034.tmp0
Chemin d’accès de l’application défaillante : nsv2034.tmp1
Chemin d’accès du module défaillant: nsv2034.tmp2
ID de rapport : nsv2034.tmp3

Error: (07/09/2015 12:54:00 AM) (Source: ESENT) (EventID: 215) (User: )
Description: WinMail (3420) WindowsMail0: La sauvegarde a été arrêtée car elle a été interrompue par le client ou la connexion avec le client a échoué.

Error: (07/09/2015 12:51:52 AM) (Source: ESENT) (EventID: 455) (User: )
Description: DllHost (6716) WebCacheLocal: L'Erreur -1811 s'est produite lors de l'ouverture du fichier journal C:\Users\Nicolas\AppData\Local\Microsoft\Windows\WebCache\V010015F.log.


System errors:
=============
Error: (07/14/2015 01:40:08 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur :
%%2

Error: (07/14/2015 01:38:59 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: spécifiques à l’applicationLocalExécution{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORITE NTSystèmeS-1-5-18LocalHost (utilisation de LRPC)

Error: (07/13/2015 11:15:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur :
%%2

Error: (07/13/2015 11:14:00 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: spécifiques à l’applicationLocalExécution{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORITE NTSystèmeS-1-5-18LocalHost (utilisation de LRPC)

Error: (07/13/2015 05:44:41 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur :
%%2

Error: (07/13/2015 05:43:17 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT)
Description: spécifiques à l’applicationLocalExécution{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORITE NTSystèmeS-1-5-18LocalHost (utilisation de LRPC)

Error: (07/13/2015 05:40:21 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Windows Installer n’a pas pu démarrer en raison de l’erreur :
%%1053

Error: (07/13/2015 05:40:21 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service Windows Installer.

Error: (07/12/2015 04:46:41 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Programme d’installation pour les modules Windows s’est terminé de façon inattendue pour la 4ème fois.

Error: (07/12/2015 04:43:48 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Programme d’installation pour les modules Windows s’est terminé de façon inattendue pour la 3ème fois.


Microsoft Office:
=========================
Error: (06/09/2014 07:45:03 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6695.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 77364 seconds with 22800 seconds of active time. This session ended with a crash.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3 CPU M 380 @ 2.53GHz
Percentage of memory in use: 40%
Total physical RAM: 6004.43 MB
Available physical RAM: 3601.58 MB
Total Virtual: 12007.07 MB
Available Virtual: 8970.18 MB

==================== Drives ================================

Drive c: (ACER) (Fixed) (Total:683.89 GB) (Free:517.9 GB) NTFS
Drive d: (LNCDG) (CDROM) (Total:4.88 GB) (Free:0 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 698.6 GB) (Disk ID: 84248424)
Partition 1: (Not Active) - (Size=14.6 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=683.9 GB) - (Type=07 NTFS)

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité