cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version:18-07-2015 01
Ran by DAOUD at 2015-07-19 10:16:00
Running from C:\Users\DAOUD\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-1991779760-1433113228-2895223285-500 - Administrator - Disabled)
DAOUD (S-1-5-21-1991779760-1433113228-2895223285-1000 - Administrator - Enabled) => C:\Users\DAOUD
HelpAssistant (S-1-5-21-1991779760-1433113228-2895223285-1006 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-1991779760-1433113228-2895223285-1004 - Limited - Enabled)
Invité (S-1-5-21-1991779760-1433113228-2895223285-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886}
AV: AVG Anti-Virus Free Edition 2012 (Disabled - Out of date) {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
AS: AVG Anti-Virus Free Edition 2012 (Disabled - Out of date) {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B}
AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD}
FW: AVG Internet Security 2012 (Disabled) {621CC794-9486-F902-D092-0484E8EA828B}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.191 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Archiveur WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - )
ATI Catalyst Install Manager (HKLM\...\{902004C7-2B12-4A4F-E1DB-E75C7B03EDD4}) (Version: 3.0.732.0 - ATI Technologies, Inc.)
AVG 2012 (Version: 12.0.2180 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2193 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2195 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2197 - AVG Technologies) Hidden
AVG 2012 (Version: 12.0.2221 - AVG Technologies) Hidden
AVG 2012 (Version: 12.1.2238 - AVG Technologies) Hidden
AVG 2012 (Version: 12.1.2241 - AVG Technologies) Hidden
AVG 2012 (Version: 12.1.2242 - AVG Technologies) Hidden
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.60.48.35 - Broadcom Corporation)
DHTML Editing Component (HKLM-x32\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation)
DigitalPersona Personal 4.10 (HKLM\...\{DD3BF908-F6B0-45A5-BED3-79E8888DDA93}) (Version: 4.10.3790 - DigitalPersona, Inc.)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Free PDF to Word Converter 1.3 (HKLM-x32\...\Free PDF to Word Converter_is1) (Version: - Free-PDF-to-Word.com)
Google Chrome (HKU\S-1-5-21-1991779760-1433113228-2895223285-1000\...\Google Chrome) (Version: 43.0.2357.132 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
HSPA USB Modem (HKLM-x32\...\InstallShield_{06ADE2A0-E46A-4A84-A211-64CF50520185}) (Version: 1.0 - Nom de votre société)
HSPA USB Modem (x32 Version: 1.0 - Nom de votre société) Hidden
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{653C1B5A-3287-47B1-8613-0745D4E771C4}) (Version: 15.0.0.463 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.0.463 - Kaspersky Lab) Hidden
LightScribe System Software (HKLM-x32\...\{82EF29B1-9B60-4142-A155-0599216DD053}) (Version: 1.18.6.1 - LightScribe)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040C-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISE_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft)
Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISE_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft)
Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISE_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft)
Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISE_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft)
MOBICONNECT (HKLM-x32\...\{BCE97917-E58C-41FA-9B53-859E3FDCE924}) (Version: 1.0.0.2 - ZTE Corporation)
Mozilla Firefox 10.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 10.0.2 (x86 fr)) (Version: 10.0.2 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Oracle Data Provider for .NET Help (HKLM-x32\...\{6AA003BF-73E5-4911-ADB7-71DD5674DDD4}) (Version: 10.2.000 - Oracle Corporation)
Oracle Database 10g Express Edition (HKLM-x32\...\InstallShield_{F0BC0F9E-C4A8-485C-93ED-424DB9EA3F75}) (Version: 10.2.1015 - Oracle Corporation)
Oracle Database 10g Express Edition (x32 Version: 10.2.1015 - Oracle Corporation) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Piste (HKLM-x32\...\{DB97AA1E-D966-43F7-8FB9-E05D58388D5E}) (Version: - )
Primavera P6 Professional R8.2 (HKLM-x32\...\{061D4D7B-EEF5-453D-B205-E89FA4E08F78}) (Version: 8.2.0.0 - Oracle Corporation)
REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{0DF70CB6-553A-4C57-8E6D-87635EECFB78}) (Version: 1.00.0145 - REALTEK Semiconductor Corp.)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Sublime Text 2.0.2 (HKLM\...\Sublime Text 2_is1) (Version: - )
unnm=Version Checker for Dealply (HKU\S-1-5-21-1991779760-1433113228-2895223285-1000\...\DealPly) (Version: - ) <==== ATTENTION
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
USB Disk Security (HKLM-x32\...\USB Disk Security_is1) (Version: - Zbshareware Lab)
Viber (HKU\S-1-5-21-1991779760-1433113228-2895223285-1000\...\Viber) (Version: 3.0.0.134193 - Viber Media Inc)
Visual Studio 2008 x64 Redistributables (HKLM-x32\...\{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}) (Version: 10.0.0.2 - AVG Technologies)
VLC media player 1.1.11 (HKLM-x32\...\VLC media player) (Version: 1.1.11 - VideoLAN)
Windows Searchqu Toolbar (HKLM-x32\...\Searchqu Toolbar) (Version: 4.1.0.2798 - Koyote-Lab Inc) <==== ATTENTION
Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1991779760-1433113228-2895223285-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\DAOUD\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-1991779760-1433113228-2895223285-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\DAOUD\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1991779760-1433113228-2895223285-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\DAOUD\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-1991779760-1433113228-2895223285-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\DAOUD\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-1991779760-1433113228-2895223285-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\DAOUD\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-1991779760-1433113228-2895223285-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\DAOUD\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-1991779760-1433113228-2895223285-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\DAOUD\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1991779760-1433113228-2895223285-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\DAOUD\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll No File

==================== Restore Points =========================

06-07-2015 09:25:34 Windows Update
13-07-2015 12:40:47 Point de contrôle planifié
14-07-2015 10:18:03 Windows Update
16-07-2015 13:35:32 Windows Update
19-07-2015 09:17:26 Windows Live Essentials
19-07-2015 09:20:36 WLSetup
19-07-2015 09:49:49 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1FC62E8B-207A-4542-9822-E9BA742FE1E9} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {437306BC-D762-4FBA-8581-5350E2C06E6A} - System32\Tasks\DealPly => C:\Users\DAOUD\AppData\Roaming\DealPly\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {47DD7494-A9B9-4E9F-B6DF-FB6FE67C50BD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {66666E27-1171-4B54-ACFA-80A414DDF455} - \DealPlyUpdate No Task File <==== ATTENTION
Task: {8559F7C6-8F49-4A3C-8FBF-AAAEC1318ECB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-06] (Google Inc.)
Task: {8B306795-9E50-4A96-B25A-5E871D9A0D75} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-14] (Adobe Systems Incorporated)
Task: {B32EE2A2-8ECA-4124-AC0B-A66A0886FE04} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1991779760-1433113228-2895223285-1000Core => C:\Users\DAOUD\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-16] (Facebook Inc.)
Task: {CB54B1E5-4DD2-4D86-AF34-269827588B22} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-1991779760-1433113228-2895223285-1000UA => C:\Users\DAOUD\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-16] (Facebook Inc.)
Task: {CF3E9AB1-242E-4135-9609-78CE0ED5DAEE} - \Funmoods No Task File <==== ATTENTION
Task: {D99C82FC-43D2-4B31-B1F0-59DA3A4030B5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1991779760-1433113228-2895223285-1000UA => C:\Users\DAOUD\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-21] (Google Inc.)
Task: {E8C01687-ADBC-4DD0-9102-10CA1206BE14} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1991779760-1433113228-2895223285-1000Core => C:\Users\DAOUD\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-21] (Google Inc.)
Task: {EA7F09F0-E7E4-4EF5-B6C8-3DFF776454A8} - System32\Tasks\{DB354B10-1AA8-45BC-8B46-6068A81E8B9C} => Chrome.exe http://ui.skype.com/ui/0/6.0.0.126/fr/abandoninstall?page=tsProgressBar
Task: {F089097A-E686-4E89-B597-E3DE78385888} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1991779760-1433113228-2895223285-1000
Task: {F64162A1-63EE-4DDF-B0C2-8083A148B4D0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-05-06] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1991779760-1433113228-2895223285-1000Core.job => C:\Users\DAOUD\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1991779760-1433113228-2895223285-1000UA.job => C:\Users\DAOUD\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\Funmoods.job => 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
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1991779760-1433113228-2895223285-1000Core.job => C:\Users\DAOUD\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1991779760-1433113228-2895223285-1000UA.job => C:\Users\DAOUD\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2006-02-02 00:49 - 2006-02-02 00:49 - 00204800 _____ () C:\oraclexe\app\oracle\product\10.2.0\server\BIN\tnslsnr.exe
2012-04-22 11:05 - 2006-12-11 02:14 - 00043008 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2012-01-10 21:12 - 2012-01-10 21:12 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2012-01-09 17:01 - 2012-01-09 17:01 - 00233472 _____ () C:\Program Files (x86)\HSPA USB Modem\HSPALauncher.exe
2014-03-06 15:00 - 2014-03-06 15:00 - 01269952 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\kpcengine.2.3.dll
2006-02-02 00:43 - 2006-02-02 00:43 - 00006144 _____ () c:\oraclexe\app\oracle\product\10.2.0\server\bin\orajox10.dll
2006-02-02 00:47 - 2006-02-02 00:47 - 00057344 _____ () C:\oraclexe\app\oracle\product\10.2.0\server\BIN\onsclient.dll
2013-05-22 20:18 - 2009-12-09 20:20 - 00126976 _____ () C:\Program Files (x86)\Realtek\RTL8187 Wireless LAN Utility\EnumDevLib.dll
2009-06-17 11:40 - 2009-06-17 11:40 - 02121728 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtCore4.dll
2009-06-17 11:40 - 2009-06-17 11:40 - 07745536 _____ () C:\Program Files (x86)\Common Files\LightScribe\QtGui4.dll
2009-06-17 11:40 - 2009-06-17 11:40 - 00135168 _____ () C:\Program Files (x86)\Common Files\LightScribe\plugins\imageformats\qjpeg4.dll
2015-07-16 11:35 - 2015-07-13 10:14 - 16307888 _____ () C:\Users\DAOUD\AppData\Local\Google\Chrome\User Data\PepperFlash\18.0.0.209\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1991779760-1433113228-2895223285-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\DAOUD\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 4.2.2.2

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{E2F95867-3A7A-4C3F-82DB-7A5B90C157C0}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [{F0D8230F-A96F-49B7-AFE0-EDBA5858272A}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [{1741DDAA-24ED-4C3C-BFD4-14662B76D704}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgmfapx.exe
FirewallRules: [{3418F9EF-B20B-4B3A-876F-F950D19661F9}] => (Allow) C:\Program Files (x86)\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe
FirewallRules: [{FADA4DDB-EB0E-4AF9-8C7C-FFA384EA6351}] => (Allow) C:\Program Files (x86)\Windows Searchqu Toolbar\Datamngr\ToolBar\dtUser.exe
FirewallRules: [{DEB779F8-DA5A-470A-B8E9-D236EF4BD6E5}] => (Allow) C:\Program Files (x86)\Realtek\RTL8187 Wireless LAN Utility\RtWLan.exe
FirewallRules: [{13EF23B3-D1A5-4DF0-9DB1-70EC49981392}] => (Allow) C:\Program Files (x86)\Realtek\RTL8187 Wireless LAN Utility\RtWLan.exe
FirewallRules: [{C935BFC7-87B6-49F5-A35A-627C46179D2E}] => (Allow) LPort=1542
FirewallRules: [{3FDE8878-FDA2-4683-9C12-5001AABA8147}] => (Allow) LPort=1542
FirewallRules: [{5BB7FDA2-C98D-4386-9B49-11BA1CDFE81F}] => (Allow) LPort=53
FirewallRules: [{5E941BBC-A91E-493D-A719-11D1B508A0AB}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
FirewallRules: [{B4E53EAE-4903-4413-A38C-BC2FA60AC7DC}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
FirewallRules: [{3FA5AF3E-461B-48B7-9584-B2C46BE7A97C}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
FirewallRules: [{7D783EBE-71C6-4FA7-B7CE-4BEBE441A244}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgdiagex.exe
FirewallRules: [{9DED85DC-5CA2-4B44-9F8F-3347D2002387}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
FirewallRules: [{5B12E480-77C5-49A8-B9AB-B1041D85377A}] => (Allow) C:\Program Files (x86)\AVG\AVG2012\avgemca.exe
FirewallRules: [{711FD1E2-AF9A-42CA-AE33-F37BBF849101}] => (Allow) C:\Users\DAOUD\AppData\Local\Viber\Viber.exe
FirewallRules: [{73FB34B0-CE81-4115-A0B0-5EE91D7A10C1}] => (Allow) C:\Users\DAOUD\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [{099F72FA-A363-4D95-9955-50CA23049425}] => (Allow) C:\Users\DAOUD\AppData\Local\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Carte graphique VGA standard
Description: Carte graphique VGA standard
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: (Types d’écrans standard)
Service: vga
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: Périphérique Bluetooth (réseau personnel)
Description: Périphérique Bluetooth (réseau personnel)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Carte réseau Realtek RTL8168D/8111D Family PCI-E Gigabit Ethernet (NDIS 6.20)
Description: Carte réseau Realtek RTL8168D/8111D Family PCI-E Gigabit Ethernet (NDIS 6.20)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8167
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/19/2015 09:56:58 AM) (Source: PrmJobSv) (EventID: 2) (User: )
Description: Failed to start Primavera Job Service: PRM DBAccess Error: Connection attempt to database failed with message Missing Database property

Error: (07/19/2015 09:56:07 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/19/2015 09:19:59 AM) (Source: MsiInstaller) (EventID: 11704) (User: DAOUD-PC)
Description: Product: Windows Live ID Sign-in Assistant -- Error 1704. An installation for Microsoft Office Enterprise 2007 is currently suspended. You must undo the changes made by that installation to continue. Do you want to undo those changes?

Error: (07/19/2015 09:14:59 AM) (Source: PrmJobSv) (EventID: 2) (User: )
Description: Failed to start Primavera Job Service: PRM DBAccess Error: Connection attempt to database failed with message Missing Database property

Error: (07/19/2015 09:14:17 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (07/19/2015 09:11:16 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Échec de la création d’un point de restauration (Processus = C:\Windows\system32\svchost.exe -k netsvcs ; Description = Windows Update ; Erreur = 0x80070005).

Error: (07/19/2015 08:44:09 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Échec de la création d’un point de restauration (Processus = C:\Windows\servicing\TrustedInstaller.exe ; Description = Programme d’installation pour les modules Windows ; Erreur = 0x80070005).

Error: (07/19/2015 08:43:42 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Échec de la création d’un point de restauration (Processus = C:\Windows\servicing\TrustedInstaller.exe ; Description = Programme d’installation pour les modules Windows ; Erreur = 0x80070005).

Error: (07/19/2015 08:42:09 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Échec de la création d’un point de restauration (Processus = C:\Windows\servicing\TrustedInstaller.exe ; Description = Programme d’installation pour les modules Windows ; Erreur = 0x80070005).

Error: (07/19/2015 08:41:48 AM) (Source: System Restore) (EventID: 8193) (User: )
Description: Échec de la création d’un point de restauration (Processus = C:\Windows\servicing\TrustedInstaller.exe ; Description = Programme d’installation pour les modules Windows ; Erreur = 0x80070005).


System errors:
=============
Error: (07/19/2015 09:54:43 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Le service AVG WatchDog s’est arrêté avec l’erreur service particulière %%-536805315.

Error: (07/19/2015 09:54:40 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Le service AVGIDSAgent dépend du service suivant : AVGIDSDriver. Ce dernier n’est peut-être pas installé.

Error: (07/19/2015 09:54:40 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Pare-feu AVG n’a pas pu démarrer en raison de l’erreur :
%%2

Error: (07/19/2015 09:52:20 AM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Le service Windows Update ne s’est pas fermé correctement après avoir reçu une commande d’anticipation de fermeture.

Error: (07/19/2015 09:22:36 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: L’appel ScRegSetValueExW a échoué pour Start avec l’erreur :
%%5

Error: (07/19/2015 09:18:23 AM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Windows Update est en attente de démarrage.

Error: (07/19/2015 09:13:05 AM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: L’appel ScRegSetValueExW a échoué pour Start avec l’erreur :
%%5

Error: (07/19/2015 09:13:06 AM) (Source: Microsoft Antimalware) (EventID: 3002) (User: )
Description: La fonctionnalité de protection en temps réel %%860 a rencontré une erreur et échoué.

Fonctionnalité : %%886

Code d'erreur : 0x80070005

Description de l'erreur : Accès refusé.

Raison : %%892

Error: (07/19/2015 09:12:45 AM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Le service AVG WatchDog s’est arrêté avec l’erreur service particulière %%-536805315.

Error: (07/19/2015 09:12:43 AM) (Source: Service Control Manager) (EventID: 7003) (User: )
Description: Le service AVGIDSAgent dépend du service suivant : AVGIDSDriver. Ce dernier n’est peut-être pas installé.


Microsoft Office:
=========================
Error: (10/30/2014 04:23:36 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 2129 seconds with 1740 seconds of active time. This session ended with a crash.


CodeIntegrity Errors:
===================================
Date: 2015-02-15 09:01:43.726
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-02-15 09:01:43.632
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-02-15 08:55:45.288
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2015-02-15 08:55:44.602
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2014-12-14 13:27:37.358
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2014-12-14 13:27:37.295
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2014-12-14 13:23:04.232
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2014-12-14 13:23:04.154
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2014-11-16 09:29:14.849
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.

Date: 2014-11-16 09:29:14.786
Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i3 CPU M 380 @ 2.53GHz
Percentage of memory in use: 81%
Total physical RAM: 3893.86 MB
Available physical RAM: 720.88 MB
Total Virtual: 7785.93 MB
Available Virtual: 3334.22 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:99.9 GB) (Free:42.32 GB) NTFS
Drive d: () (Fixed) (Total:496.17 GB) (Free:416.45 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 50F14FAC)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=99.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=496.2 GB) - (Type=07 NTFS)

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité