cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-07-2015
Ran by ninja at 2015-07-15 15:03:39
Running from C:\Users\ninja\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-1292446459-3909301494-1491828545-500 - Administrator - Disabled)
Invité (S-1-5-21-1292446459-3909301494-1491828545-501 - Limited - Disabled)
ninja (S-1-5-21-1292446459-3909301494-1491828545-1001 - Administrator - Enabled) => C:\Users\ninja

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ALPS Touch Pad Driver (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.100.2020.106 - Alps Electric)
AMD Catalyst Install Manager (HKLM\...\{DDC218E1-E342-62E5-EDE9-4838A6574085}) (Version: 8.0.881.0 - Advanced Micro Devices, Inc.)
Anglais CE1 (HKLM-x32\...\{9BF80BF6-85E3-4087-8092-DF244F9E714A}) (Version: 1.0 - Mindscape)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.4 - Atheros Communications Inc.)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2218 - AVAST Software)
Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
CCleaner (HKLM\...\CCleaner) (Version: 5.06 - Piriform)
CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4220.52 - CyberLink Corp.)
Dropbox (HKU\S-1-5-21-1292446459-3909301494-1491828545-1001\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
eMule (HKLM-x32\...\eMule) (Version: - )
Enregistrement utilisateur de Canon MP230 series (HKLM-x32\...\Enregistrement utilisateur de Canon MP230 series) (Version: - Canon Inc.‎)
Evaluations Diagnostiques FAR GS (HKLM-x32\...\EvalFarGS) (Version: - )
Frankie Les Aventuriers du Temps (HKLM-x32\...\Frankie Les Aventuriers du Temps) (Version: - )
Freeplane (HKLM\...\{D3941722-C4DD-4509-88C4-0E87F675A859}_is1) (Version: 1.2.23 - Open source)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.134 - Google Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Update Helper (x32 Version: 1.3.21.123 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3002 - Packard Bell)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.4 - Packard Bell)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.3002 - Packard Bell)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.6120.5004 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
MonAlbumPhoto (HKLM-x32\...\MonAlbumPhoto_is1) (Version: 6.3.4.1 - MonAlbumPhoto)
MoneyManagerEX 0.9.9.0 (HKLM-x32\...\{2C48DC11-E113-4912-8AFC-366D1918101E}_is1) (Version: 0.9.9.0 - CodeLathe, LLC)
Mozilla Firefox 39.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 fr)) (Version: 39.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.2.3.45 - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.1.0.10 - Symantec Corporation) Hidden
OpenOffice.org 3.4.1 (HKLM-x32\...\{7DA1C06F-C913-46C7-8A0F-DA2CBA17EA1D}) (Version: 3.41.9593 - Apache Software Foundation)
Packard Bell Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3003 - Packard Bell)
Packard Bell Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3003 - Packard Bell)
Packard Bell Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3006 - Packard Bell)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 11.02 - Qualcomm Atheros)
QuickTime (HKLM-x32\...\QuickTime) (Version: - )
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.2.8400.28123 - Realtek Semiconductor Corp.)
Sethi et le Sorcier Inca (HKLM-x32\...\Sethi et le Sorcier Inca) (Version: - )
Skype™ 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Steinberg Cubase 5 (HKLM-x32\...\{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}) (Version: 5.1.0 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Expression Set (HKLM-x32\...\{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}) (Version: 1.0.1.0 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Drum Set (HKLM-x32\...\{AC997F93-0757-4ED4-A701-F40C2D654D09}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Set (HKLM-x32\...\{F057965A-D974-4C64-ADB1-4381CD4B8956}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Pro Set (HKLM-x32\...\{D82CDA0D-C182-42C8-8FF2-5649C98D6003}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Drum Set (HKLM-x32\...\{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Set (HKLM-x32\...\{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Switch Sound File Converter (HKLM-x32\...\Switch) (Version: 4.79 - NCH Software)
VideoPad - Logiciel de montage vidéo (HKLM-x32\...\VideoPad) (Version: - NCH Software)
Wi-Fi Modem (HKLM-x32\...\Wi-Fi Modem) (Version: 1.09.01.314 - Huawei Technologies Co.,Ltd)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1292446459-3909301494-1491828545-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ninja\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1292446459-3909301494-1491828545-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ninja\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1292446459-3909301494-1491828545-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ninja\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1292446459-3909301494-1491828545-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\ninja\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Restore Points =========================

22-06-2015 22:34:27 Removed Google Earth.
11-07-2015 11:04:17 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {05EB59AE-BDEA-4B8A-8FA2-CE5B0F39153E} - System32\Tasks\{1EFF4229-1BA6-4A3C-A039-D76C1F4DEAAC} => pcalua.exe -a C:\Users\ninja\AppData\Local\WikiBrowser\Uninstaller.exe -c /S /SOURCE=cp
Task: {0FAB5BFC-73AC-48C6-92EA-2A40F2EF66C7} - \ProPCCleaner_Start No Task File <==== ATTENTION
Task: {2490AEC5-E287-4E13-802C-71425C8DEB39} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-06-16] (Microsoft Corporation)
Task: {27F147BE-21B7-43BB-8EB1-FCF8671B3630} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Packard Bell\Live Updater\liveupdater_agent.exe [2012-06-22] ()
Task: {3A1F887C-2EB3-4E72-B840-7A60B0C0F419} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {4EBBC338-8D8E-4591-8CFD-9A07A6FF3B49} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.)
Task: {863CF148-1F29-4962-B407-AF4D4ABED98A} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-05-08] (Piriform Ltd)
Task: {99BBD799-9801-4EFD-9D37-8BB783E05D0D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-30] (Google Inc.)
Task: {9A492B15-501B-4532-B766-276F27F80403} - System32\Tasks\Power Management => C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [2012-07-31] (Acer Incorporated)
Task: {9C264F25-FC92-4154-98C8-303AAD7D17E6} - System32\Tasks\ALU => C:\Program Files (x86)\Packard Bell\Live Updater\updater.exe [2012-07-13] ()
Task: {D25EBBB9-1BBB-4EFB-8C8C-FAE82345F544} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-30] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2014-07-04 22:33 - 2014-07-04 22:33 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2011-03-14 17:27 - 2011-03-14 17:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe
2014-07-04 22:33 - 2014-07-04 22:33 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2015-05-08 20:50 - 2015-05-08 20:50 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2015-05-02 18:17 - 2015-05-02 18:17 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-05-02 18:17 - 2015-05-02 18:17 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-07-14 22:09 - 2015-07-14 22:09 - 02956288 _____ () C:\Program Files\AVAST Software\Avast\defs\15071401\algo.dll
2015-07-15 14:20 - 2015-07-15 14:20 - 02956800 _____ () C:\Program Files\AVAST Software\Avast\defs\15071500\algo.dll
2015-05-02 18:17 - 2015-05-02 18:18 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-07-14 20:43 - 2015-07-13 23:55 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libglesv2.dll
2015-07-14 20:43 - 2015-07-13 23:55 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\libegl.dll
2012-08-10 16:51 - 2012-08-10 16:51 - 00985088 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxml2.dll
2012-08-10 16:50 - 2012-08-10 16:50 - 00170496 _____ () C:\Program Files (x86)\OpenOffice.org 3\program\libxslt.dll
2015-07-14 20:43 - 2015-07-13 23:55 - 16308040 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.134\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1292446459-3909301494-1491828545-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Theme1\img6.jpg
DNS Servers: 192.168.1.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1292446459-3909301494-1491828545-1001\...\StartupApproved\StartupFolder: => "OpenOffice.org 3.4.1.lnk"
HKU\S-1-5-21-1292446459-3909301494-1491828545-1001\...\StartupApproved\Run: => "cacaoweb"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [UDP Query User{DFD1DF03-6BF6-4B35-A7CF-49569684FF78}C:\program files (x86)\symantec\norton online backup\nobuclient.exe] => (Block) C:\program files (x86)\symantec\norton online backup\nobuclient.exe
FirewallRules: [TCP Query User{CB4E9B32-5620-43E5-840B-9DDF1F467474}C:\program files (x86)\symantec\norton online backup\nobuclient.exe] => (Block) C:\program files (x86)\symantec\norton online backup\nobuclient.exe
FirewallRules: [{3AD8B391-9A4F-4540-9C02-B71C70C53BCF}] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{20F27CAB-9F59-4C95-92C8-5D4416988203}] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{C334B60D-DF80-40FC-B6ED-47E3C0B758E5}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{03A3B11A-A5F4-4559-8842-1ABD12590033}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{899165DA-0EEB-432C-BDF3-3DA710F801A1}C:\program files (x86)\symantec\norton online backup\nobuclient.exe] => (Block) C:\program files (x86)\symantec\norton online backup\nobuclient.exe
FirewallRules: [TCP Query User{95AC8F2A-25FC-4B56-88F5-DA8E7ED6B802}C:\program files (x86)\symantec\norton online backup\nobuclient.exe] => (Block) C:\program files (x86)\symantec\norton online backup\nobuclient.exe
FirewallRules: [UDP Query User{B00A42C2-B4B3-4067-99B7-33DCD1232FF8}C:\users\ninja\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\ninja\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [TCP Query User{A74C767D-7880-4EB4-93A6-834AF8F9DDF8}C:\users\ninja\appdata\roaming\cacaoweb\cacaoweb.exe] => (Allow) C:\users\ninja\appdata\roaming\cacaoweb\cacaoweb.exe
FirewallRules: [UDP Query User{0DEE0A35-94B1-48B4-A42B-31D4072A1EBC}C:\program files (x86)\emule\emule.exe] => (Block) C:\program files (x86)\emule\emule.exe
FirewallRules: [TCP Query User{C7E6D691-5ACE-4E30-89CA-F1A7DD82DAB2}C:\program files (x86)\emule\emule.exe] => (Block) C:\program files (x86)\emule\emule.exe
FirewallRules: [UDP Query User{AB6FB06A-07A2-44F4-A5AA-6D24B08017C0}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe
FirewallRules: [TCP Query User{98FA94A3-46DE-4D8E-93A1-F8A6247564F2}C:\program files (x86)\emule\emule.exe] => (Allow) C:\program files (x86)\emule\emule.exe
FirewallRules: [UDP Query User{A3AE531B-41B9-4AAF-BDDE-8BE6088D383A}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{31BCCEDE-A08A-45B0-9724-3957CC2B1007}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{EB306C63-F280-43F0-9B5D-53C979F0E367}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{B98F4B69-A59E-43C8-8BEC-F5ED3D7831D6}] => (Allow) C:\program files (x86)\nero\nero 12\nero backitup\backitup.exe
FirewallRules: [{3C6E9C07-9859-417C-AD48-437E93D49BA4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3A9B7530-856A-488A-BDC4-EE9C7BF9FB71}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{5994BCD0-D368-451E-AF1A-C9D1A7B670C5}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{CA06D63C-8F03-45D2-9BF8-90C3949173C2}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{A004CD13-23AE-4DB7-B2D4-6D47BD7AF11A}C:\users\ninja\downloads\cacaoweb(68).exe] => (Block) C:\users\ninja\downloads\cacaoweb(68).exe
FirewallRules: [UDP Query User{2790459B-7456-4068-8DC4-6947CF371B3D}C:\users\ninja\downloads\cacaoweb(68).exe] => (Block) C:\users\ninja\downloads\cacaoweb(68).exe
FirewallRules: [TCP Query User{91BBCA66-4017-4C06-B2E4-EA5193A25271}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [UDP Query User{A9A40654-84C9-4966-B744-301DF30A6B3A}C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre1.8.0_45\bin\javaw.exe
FirewallRules: [{73FEBA55-0980-475F-B12D-9B925E0325BC}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{41DE8C8F-02F2-4DCB-9972-80D1B7768729}] => (Allow) C:\Users\ninja\AppData\Local\WikiBrowser\Application\wikibrowser.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/15/2015 02:56:54 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/14/2015 11:19:41 PM) (Source: ESENT) (EventID: 215) (User: )
Description: WinMail (3992) WindowsMail0: La sauvegarde a été arrêtée car elle a été interrompue par le client ou la connexion avec le client a échoué.

Error: (07/14/2015 10:01:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme IEXPLORE.EXE version 11.0.9600.17840 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 828

Heure de début : 01d0be6fa128ac57

Heure de fin : 240

Chemin d’accès de l’application : C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

ID de rapport : 0cf25662-2a63-11e5-81eb-4c72b9adaba6

Nom complet du package défaillant :

ID de l’application relative au package défaillant :

Error: (07/14/2015 08:38:57 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: AUTORITE NT)
Description: There was an error with the Windows Location Provider database

Error: (07/10/2015 08:59:42 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme PhotosApp.exe version 6.3.9600.17418 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance.

ID de processus : 538

Heure de début : 01d0bb41e7b92f0d

Heure de fin : 4294967295

Chemin d’accès de l’application : C:\WINDOWS\FileManager\PhotosApp.exe

ID de rapport : 5092e6c1-2735-11e5-81ea-4c72b9adaba6

Nom complet du package défaillant : FileManager_6.3.9600.16384_neutral_neutral_cw5n1h2txyewy

ID de l’application relative au package défaillant : Microsoft.Windows.PhotoManager

Error: (07/10/2015 08:56:02 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: pacardbell)
Description: Le package FileManager_6.3.9600.16384_neutral_neutral_cw5n1h2txyewy+Microsoft.Windows.PhotoManager a été interrompu, car sa suspension a été trop longue.

Error: (07/07/2015 01:17:43 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/03/2015 02:41:43 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (07/02/2015 10:47:14 AM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005

Error: (06/30/2015 06:54:05 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: 80070005


System errors:
=============
Error: (07/15/2015 08:11:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service avast! Firewall n’a pas pu démarrer en raison de l’erreur :
%%1053

Error: (07/15/2015 08:11:10 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service avast! Firewall.

Error: (07/15/2015 08:10:23 AM) (Source: Microsoft-Windows-HAL) (EventID: 13) (User: AUTORITE NT)
Description: Le temporisateur de surveillance du système a été déclenché.

Error: (07/14/2015 11:49:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service avast! Firewall n’a pas pu démarrer en raison de l’erreur :
%%1053

Error: (07/14/2015 11:49:17 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service avast! Firewall.

Error: (07/14/2015 11:47:59 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Windows Search, mais cette action a échoué en raison de l’erreur suivante :
%%1056

Error: (07/14/2015 11:47:53 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Windows Search, mais cette action a échoué en raison de l’erreur suivante :
%%1056

Error: (07/14/2015 11:47:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Spouleur d’impression s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (07/14/2015 11:47:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.

Error: (07/14/2015 11:47:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Dritek RF Button Command Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 3000 millisecondes : Redémarrer le service.


Microsoft Office:
=========================
Error: (11/05/2013 10:14:23 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 1531 seconds with 0 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2015-05-02 19:07:20.108
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: AMD E-300 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 59%
Total physical RAM: 3658.26 MB
Available physical RAM: 1487.68 MB
Total Virtual: 4298.26 MB
Available Virtual: 1727.17 MB

==================== Drives ================================

Drive c: (Packard Bell) (Fixed) (Total:447.51 GB) (Free:393.1 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: E2E4B1F6)

Partition: GPT Partition Type.

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité