cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL Extras logfile created on: 13/08/2015 22:11:23 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\IMAD\Downloads
64bit- An unknown product (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16384)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,88 Gb Total Physical Memory | 2,52 Gb Available Physical Memory | 64,90% Memory free
7,38 Gb Paging File | 5,79 Gb Available in Paging File | 78,41% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 228,37 Gb Total Space | 193,52 Gb Free Space | 84,74% Space Free | Partition Type: NTFS
Drive D: | 1,99 Gb Total Space | 1,99 Gb Free Space | 99,96% Space Free | Partition Type: FAT32
Drive F: | 220,33 Gb Total Space | 18,61 Gb Free Space | 8,45% Space Free | Partition Type: NTFS
Drive G: | 13,86 Gb Total Space | 2,18 Gb Free Space | 15,69% Space Free | Partition Type: NTFS

Computer Name: MODO-NAEL-NACH | User Name: IMAD | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2091781041-2774533407-4003921093-1002\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = CE 37 E6 AF FF 6A CD 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05E32AA3-D349-4CC5-A1E0-98AE1A3B5EC9}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{14F81035-DBB8-4594-9FC1-DC2FEE9AFA6F}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{15C6C238-E13A-4718-BFEE-036FEF2DE8F8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{2244AE78-6776-46BB-96D9-3AA2BC858163}" = lport=138 | protocol=17 | dir=in | app=system |
"{230FC0BB-044D-4B28-9301-9D91C18A8FDF}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{334B121A-6C18-4A62-A2D1-8E940C4130CC}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5B90DDDC-38A8-4F4D-88A0-ABCDF635867C}" = rport=139 | protocol=6 | dir=out | app=system |
"{692D4E65-4B46-41BC-9045-395797C3D23F}" = lport=139 | protocol=6 | dir=in | app=system |
"{6D74943E-487F-4281-9904-B36B3000AACB}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{70F36BC6-9C77-434C-8F40-E4B174722C3A}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7E96C4CA-8EA8-44BD-92E9-69C3A693FEC7}" = rport=137 | protocol=17 | dir=out | app=system |
"{8C076A79-6E92-4831-918B-8F15DA88E106}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9002730D-D020-483C-829F-56BC8AD1B87E}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{ABD26F9E-05B4-4120-A8DD-43297CA6BB19}" = rport=445 | protocol=6 | dir=out | app=system |
"{B146F456-59F1-4722-9784-C3219251B1BB}" = lport=10243 | protocol=6 | dir=in | app=system |
"{B679847C-378C-4FD9-8F79-2521B38B5EE1}" = lport=445 | protocol=6 | dir=in | app=system |
"{C93E1266-06B4-4638-A4C9-EB552677E0F0}" = lport=137 | protocol=17 | dir=in | app=system |
"{CE0D1DF0-4CD8-4281-BFFC-880019BD6DE7}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{E30A9A6B-A74F-44ED-BC6C-C2A2C79EF311}" = rport=138 | protocol=17 | dir=out | app=system |
"{EF1ACD82-A16F-4A75-938F-DE7CF82C8670}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{F5C8A26E-D4F8-4A1E-ACE6-03CF1E17A83D}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{F9F13E93-DDD5-49BB-96CB-DD844192A755}" = rport=10243 | protocol=6 | dir=out | app=system |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{012FD99A-8006-4C49-8E5B-0B9FA02456A2}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0464C17E-6766-4CF1-8DD4-F15F6F03A74F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{06B5E12E-9DF1-4D25-910E-24F9CA18E43F}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{15BB30E4-1481-4E73-A9B5-1EFC1F4E0E83}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{174668BE-3D2B-40F3-952E-C9E5302A60B6}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{1D41B809-74BC-4077-8D8A-910FD305BBB0}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{1DCFFB82-06F4-4C34-8F40-48B8E5CAD22A}" = dir=out | name=youcam for hp |
"{24BC6E77-3655-4C3D-BCC3-3A2603EA405F}" = dir=out | name=getting started with windows 8 |
"{264C596A-3B4E-443D-B488-8EC6D6021C1A}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{27642D5A-C709-4E63-8114-AC8366C5D487}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{28B5E2F1-73B7-4D9B-BC8E-AA7C9661AFAA}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{2A83F81C-420D-409D-9CA1-362B3C644734}" = protocol=6 | dir=out | app=system |
"{3142183A-9A72-4E4C-BDDC-A24A1DE1E708}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{34F24BF1-CFCA-4598-A0F4-0E6D8A05E386}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3C110A79-3E4B-4168-A000-1D8DEE6DE6C0}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{3CABCA3B-E27C-4799-80B3-8CE1D1EF2365}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{3FBDFF8C-873E-4CAA-8415-BAC533D91917}" = dir=out | name=hp registration |
"{4065B2C3-980A-4341-B3DD-49D0D820116B}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{49811C21-E2D4-4B4D-9E35-D796B73CE7B3}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{4A258AE6-C6CA-49B9-A2D5-312A825C9A4F}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{4A895C83-5C64-49A4-9214-BEA90D84E2A4}" = dir=out | name=media suite for hp |
"{4CEDBF15-C61E-40B0-AE35-11C89FB942BB}" = dir=out | name=hp registration |
"{4D945348-5A4C-4845-83D8-63DBA070C9FA}" = dir=out | name=getting started with windows 8 |
"{50820BAF-4DC7-496F-BDCF-D18460DD19E5}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{51817DDB-4087-4FC9-92E8-A237CDA6C9EF}" = dir=out | name=media suite for hp |
"{52229FEA-1DA5-4E30-B6D0-144DF81EA7F1}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{546E60B7-C767-4969-8E13-2BB1DE87ADE3}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{55B837DC-D00E-4C8F-94D0-FB1261B21E7B}" = dir=in | name=skype |
"{5ED47AFC-3F74-44BA-A1D3-D6997726C9BD}" = dir=out | name=youcam for hp |
"{600E9C59-5816-4ED9-BB6A-45FA64835DFB}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{64B2AF5B-6530-4E4D-B0F5-F474319B819B}" = dir=out | name=skype |
"{66F73CB2-8071-493D-A3A8-49D42DC88140}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{68AD6962-9C3B-41F4-86FF-BDF7F768EF9F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{6AE19434-9BEF-4587-A607-772B01F5A75B}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{6EAE51AC-44E7-4F1B-BFB3-0A5F5BE6DCEA}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{7740E62E-6148-4F35-84D9-D1BA943D0F37}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7BE74552-47EA-4BF2-8300-44CDA97DE6E8}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{7FECFA84-415B-4BAE-B796-4E7E8A3ADF9B}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{8E23E311-161E-4B8D-B52D-C5036F7DA750}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{8EADD9DF-1C7E-4EAD-B7D2-0E09E6C83D05}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{8F2725A5-69D3-49B5-813C-D4F1E73EE2A1}" = dir=out | name=evernote |
"{90191F44-F668-49CE-9392-43DEB2B336A9}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{906466A4-7CEE-4945-B29A-47C2C9340435}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{93C5E6CB-2EF1-455C-A757-77E31C8B4F3D}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{99A46DAE-8CB8-4158-93EB-6F170EF3E807}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{9AEE4A04-8CCE-4ED1-A79D-6EDB20B1622C}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{9FD80F92-B18F-4056-8BE3-D4F4DD8E7C5E}" = dir=out | name=skype |
"{A119BBDD-A196-4A13-8BD6-C043CA4DBECE}" = dir=in | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{A1969B5C-5386-4E1F-99E0-4AA7BF3ACEE4}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{A20986DF-18FD-4AA0-81BC-18FBDD07669A}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{A2E8C558-C2BE-4E62-B720-14CB6C6E8935}" = dir=out | name=evernote |
"{A39CF8FD-F593-4431-9AA4-1D2259621786}" = dir=out | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{AB047F18-E894-42BD-B833-4453C69264B2}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{B9C97E23-27B3-4ED4-B1EF-B371E3BB9AD8}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{BA1CB80C-1878-4E7E-A2FF-FD402C0741B8}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{BBB05608-D3FB-4B11-8A71-AAB173FAC4AB}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{BCBE45EC-689F-4906-8949-D7F41776AE14}" = dir=in | name=skype |
"{BF2BC1E7-C573-4568-AF48-AA43117F62C0}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{C0F1CDC9-5741-4BF1-9E87-115214ADDD3C}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{C4042C21-655A-4BAB-9937-E462DA95D324}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{C61E1470-5CB2-4E24-8E8C-0AF62D6CD1B3}" = dir=in | name=@{microsoft.bing_1.2.0.137_x64__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{C8094746-58A6-4CF9-95F4-8E5B2F8BF810}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{D1590E16-CC2C-4B96-A9DE-BD6292CB3844}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{D3CE0106-28D3-46B4-8CED-15C931430D80}" = dir=in | app=c:\program files (x86)\cyberlink\powerdvd10\powerdvd10.exe |
"{DA50C6B7-B727-4B25-B444-DA703721F019}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{DC9E5846-463A-45E3-A0C2-7786F6A7AD7B}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{DCA38A64-CE68-4120-B8C1-26AB7513900E}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{E3CD3FD4-2550-465D-97F6-895A2A400263}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E4E71234-1F80-49FF-8F07-FE2EBE456DAD}" = dir=in | app=c:\program files (x86)\cyberlink\powerdirector10\pdr10.exe |
"{E564F445-92CB-4423-910C-85FB8C545EE8}" = dir=out | name=@{microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{E6B52635-0695-432C-B67B-751C181C710E}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E733BEA5-E713-452A-83E1-1252CDFD0C64}" = dir=out | name=windows_ie_ac_001 |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E857B819-586C-4FF5-961B-FA91F479228F}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{F0B966F7-5E3F-464D-AC70-1EACF93B0CC0}" = dir=in | name=evernote |
"{F1033DA4-4DF9-48D9-9F15-9F92E141BE49}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{F88CBF18-55D7-46F3-97A0-CCE10EAC9513}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{F934FDD3-BBAB-4A2C-A15B-FD7196CA606B}" = dir=in | name=evernote |
"{FCBDFF93-1041-4597-BDFF-A5EBC340C12E}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{FD977473-17F0-46DB-8AF4-1FD9620E136A}" = dir=out | name=@{microsoft.zunevideo_1.0.927.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/33270} |
"{FE1195C2-C786-40FF-AAFC-8DD2C06DEE84}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{0FA995CC-C849-4755-B14B-5404CC75DC24}" = Energy Star
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{29989969-FED8-4EFB-8FB2-39429D37E471}" = HP 3D DriveGuard
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{4B4FBA41-7ABF-4DFF-94AC-5C85640CF557}" = HP ProtectTools Security Manager
"{55B52830-024A-443E-AF61-61E1E71AFA1B}" = Device Access Manager for HP ProtectTools
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E14E6D6-3175-4E1A-B934-CAB5A86367CD}" = HP Postscript Converter
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{977D1ABF-4089-4CA7-BA33-CC75808B7ACE}" = Intel® Trusted Connect Service Client
"{AA51ED2E-DCE7-415F-9C32-CB9B561D216D}" = Validity Fingerprint Sensor Driver
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{D3A775F2-2674-4452-8D80-1FC1446052EE}" = Face Recognition for HP ProtectTools
"{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}" = HP Registration Service
"Face Recognition for HP ProtectTools" = Face Recognition for HP ProtectTools
"HPProtectTools" = HP ProtectTools Security Manager
"SynTPDeinstKey" = Synaptics Pointing Device Driver

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{07FA4960-B038-49EB-891B-9F95930AA544}" = HP Customer Experience Enhancements
"{0BE73D3C-B5AF-11E1-933A-984BE15F174E}" = Evernote v. 4.5.7
"{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}" = Theft Recovery for HP ProtectTools
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite 10
"{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron Flash Media Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83218060F0}" = Java 8 Update 60
"{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}" = CyberLink Power2Go 8
"{399C37FB-08AF-493B-BFED-20FBD85EDF7F}" = HP HD Webcam Driver
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{4862344A-A39C-4897-ACD4-A1BED5163C5A}" = CyberLink PhotoDirector
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{50F16F43-54B8-43DB-B96F-255546DFB990}" = HP ESU for Microsoft Windows 8
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.2.0.0
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{835B275B-F29B-464B-BD4B-097FD55FAB0A}" = HP Software Framework
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{941DE69D-6CEE-4171-8F1F-3D7E352AA498}" = HP Wireless Button Driver
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{A9088865-5AB9-4E37-A82F-CB264E0B5415}" = HP System Default Settings
"{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}" = CyberLink PowerDirector 10
"{B50981AD-95E8-4E4D-912A-7C4B738387CA}" = HP SoftPaq Download Manager
"{C3A32068-8AB1-4327-BB16-BED9C6219DC7}" = Qualcomm Atheros Driver Installation Program
"{C97CC14E-4789-4FC5-BC75-79191F7CE009}" = HP Hotkey Support
"{D1E7D876-6B86-4B35-A93D-15B0D6C43EAF}" = HP Software Setup
"{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F7E7F0CB-AA41-4D5A-B6F2-8E6738EB063F}" = Realtek Ethernet Controller All-In-One Windows Driver
"{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package
"{FCD58C04-324A-40D1-BA9E-1A754DF1736D}" = HP Documentation
"{FF27F674-821E-4BA2-985B-DDF539C2CD03}" = HP Support Assistant
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe Flash Player NPAPI" = Adobe Flash Player 18 NPAPI
"Google Chrome" = Google Chrome
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{10F5A72A-1E07-4FAE-A7E7-14B10CC66B17}" = Theft Recovery for HP ProtectTools
"InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite 10
"InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}" = CyberLink Power2Go 8
"InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}" = CyberLink PhotoDirector
"InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}" = CyberLink PowerDirector 10
"InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}" = CyberLink PowerDVD
"Mozilla Firefox 40.0.2 (x86 fr)" = Mozilla Firefox 40.0.2 (x86 fr)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"PDF Complete" = PDF Complete Corporate Edition

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 12/08/2015 21:23:04 | Computer Name = MODO-NAEL-NACH | Source = Microsoft-Windows-Immersive-Shell | ID = 2484
Description = Le package microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe
a été interrompu, car sa suspension a été trop longue.

Error - 12/08/2015 21:23:09 | Computer Name = MODO-NAEL-NACH | Source = Application Hang | ID = 1002
Description = Le programme wwahost.exe version 6.2.9200.16384 a cessé d interagir
avec Windows et a été fermé. Pour déterminer si des informations supplémentaires
sont disponibles, consultez l historique du problème dans le Centre de maintenance.

ID
de processus : cac Heure de début : 01d0d5668c01e6fb Heure de fin : 4294967295 Chemin
d accès de l application : C:\Windows\system32\wwahost.exe ID de rapport : d7f335f7-4159-11e5-be7a-a45d3616606a

Nom
complet du package défaillant : microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe

ID
de l application relative au package défaillant : Microsoft.WindowsLive.ModernPhotos


Error - 12/08/2015 22:39:59 | Computer Name = MODO-NAEL-NACH | Source = HP Registration Service | ID = 0
Description = Le fichier spécifié est introuvable. (Exception de HRESULT : 0x80070002)
à TaskScheduler.ITaskFolder.DeleteTask(String Name, Int32 flags) à HPMetrics.ScheduleTask.DeleteTask(String
TaskName)

Error - 12/08/2015 22:40:00 | Computer Name = MODO-NAEL-NACH | Source = HP Registration Service | ID = 0
Description = Le fichier spécifié est introuvable. (Exception de HRESULT : 0x80070002)
à TaskScheduler.ITaskFolder.DeleteTask(String Name, Int32 flags) à RegDataUtil.ScheduleTask.DeleteTask(String
TaskName)

[ System Events ]
Error - 23/07/2013 18:57:35 | Computer Name = AU4JG1MQK7VI7 | Source = DCOM | ID = 10010
Description =

Error - 12/08/2015 16:36:28 | Computer Name = MODO-NAEL-NACH | Source = volmgr | ID = 262190
Description = L'initialisation du fichier de vidage sur incident a échoué.

Error - 13/08/2015 00:09:41 | Computer Name = MODO-NAEL-NACH | Source = DCOM | ID = 10016
Description =

Error - 13/08/2015 03:33:32 | Computer Name = MODO-NAEL-NACH | Source = DCOM | ID = 10016
Description =

Error - 13/08/2015 03:37:19 | Computer Name = MODO-NAEL-NACH | Source = DCOM | ID = 10029
Description =

Error - 13/08/2015 03:43:33 | Computer Name = MODO-NAEL-NACH | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20
Description = Échec de l installation : l installation de la mise à jour suivante
a échoue avec l erreur 0x8007041d : Windows Update Setup Handler.

Error - 13/08/2015 12:41:52 | Computer Name = MODO-NAEL-NACH | Source = Schannel | ID = 36888
Description = Une alerte irrécupérable a été générée et envoyée au point de terminaison
distant. Ceci peut entraîner l arrêt de la connexion. Le code d erreur irrécupérable
défini par le protocole TLS est 51. L état d erreur de Windows SChannel est 900.


< End of report >

Publicité


Signaler le contenu de ce document

Publicité