cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL Extras logfile created on: 18/10/2015 20:58:13 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = D:\Users\Bryan\Downloads
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17728)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,89 Gb Total Physical Memory | 2,24 Gb Available Physical Memory | 57,63% Memory free
4,27 Gb Paging File | 2,25 Gb Available in Paging File | 52,70% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 95,00 Gb Total Space | 52,17 Gb Free Space | 54,92% Space Free | Partition Type: NTFS
Drive D: | 121,27 Gb Total Space | 114,01 Gb Free Space | 94,01% Space Free | Partition Type: NTFS

Computer Name: LEGUERN | User Name: Bryan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-682487850-1341855315-2669799507-1002\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{175FF4BE-BC6A-4CB7-9684-D068D3A5670D}" = lport=445 | protocol=6 | dir=in | app=system |
"{2221611F-E778-4526-BCAF-ADA74599363F}" = lport=8501 | protocol=6 | dir=in | name=novapdftcpportexception |
"{318EC490-B037-4068-B076-4DBA84EB5483}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{35CC1299-2E6F-47BF-B5AA-F145DBACECE7}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3D7800BE-79D5-4E63-9615-E6E556548627}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{439D6E59-DF12-4544-9802-317BC2B9D062}" = rport=137 | protocol=17 | dir=out | app=system |
"{4FAF3434-63AB-445B-BE9E-83C28F357694}" = lport=138 | protocol=17 | dir=in | app=system |
"{590A321F-7EB3-44E2-9ED1-73AE1FE011E7}" = lport=10243 | protocol=6 | dir=in | app=system |
"{630AA665-D669-4714-9E55-8348158E3DB6}" = lport=2869 | protocol=6 | dir=in | app=system |
"{699DB83F-B931-40EA-93A4-4C64EF3DE17F}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{6A2603AF-03E6-4BB1-A52D-7A0401DB9DD2}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{70F25EB7-ABE2-43B0-B7D9-5207B7ACA78B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{73A42CAC-E118-4895-AE71-958EAB19EBB9}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{856B196E-412F-4544-87E2-96F846F6287F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{857F9C3F-8C54-48F6-B9BB-5FDB2D4A107E}" = lport=137 | protocol=17 | dir=in | app=system |
"{8D84AF57-2F9A-4D5F-9AB0-E8CFCB684FBA}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\mybrowser\mybrowser\application\mybrowser.exe |
"{9FC68257-8C6A-44AD-BC77-EC455FA1BD02}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BDEE1E9D-9C48-4331-A943-7A82AA40C900}" = rport=139 | protocol=6 | dir=out | app=system |
"{C16A9986-8DF5-463C-B886-E11BCCE42B1A}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C1DB3A12-BF1D-41CD-86DF-C9535F49D232}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CE5F20FF-3A89-432C-A3DB-7808370B5B1E}" = rport=10243 | protocol=6 | dir=out | app=system |
"{CF685D60-9BCA-4137-AB59-CC773606C4DE}" = rport=138 | protocol=17 | dir=out | app=system |
"{DA4A3F86-685F-4DBF-BADD-782A61E2059D}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DEA4D566-8E21-4B8C-96CC-CF5D52C45FB6}" = rport=445 | protocol=6 | dir=out | app=system |
"{E3856440-179F-4827-AF34-EFD66813A4B6}" = lport=8501 | protocol=6 | dir=in | name=novapdfudpportexception |
"{FA9D790A-C81F-479A-8D5C-E9AB83A439E8}" = lport=139 | protocol=6 | dir=in | app=system |
"{FB6D8FCD-9AF6-42FC-ABCA-536F16EFF825}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0126210B-6F6C-447E-9F3A-29209532D8A3}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\av\avgemca.exe |
"{03D17725-1F62-4C47-B6D4-DC46738559AB}" = dir=in | name=skype |
"{0D9ED22A-4AE7-4FC6-BF08-7D8B08C95468}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{189776EA-683B-4823-969D-650FBF19833B}" = dir=out | name=skype |
"{1AA44EF4-5122-4C05-B47E-93A950165EC0}" = dir=out | name=onenote |
"{1EFB4B15-5814-4E92-A7ED-2845E9BA842E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{243D05A6-9477-4F38-B9D0-8D2DF44EFD4E}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{26CEB5E5-8D31-4695-ACA3-107C17D4B25A}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\av\avgmfapx.exe |
"{28C7B309-6D65-4726-B616-1609106F8307}" = dir=in | name=skype |
"{28DEC71A-CBCD-4A7A-8A4E-BFE019D1C23B}" = dir=out | name=@{microsoft.zunemusic_2.6.672.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{303CCEE8-BD15-4F7D-BCFB-78031C278E3A}" = dir=out | name=@{microsoft.zunevideo_2.6.441.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{31F166B0-DD7C-4462-B103-5C3EB5E53E05}" = dir=out | name=@{microsoft.bingweather_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{35F01395-EF24-4AC0-8FC1-886D0F76BFAD}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{36F32B06-6EC8-417F-BF6B-302135CB5EEC}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\av\avgnsa.exe |
"{37A8843A-309C-4D9F-B31A-27BB26F5A2F1}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.313_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{39042719-72B5-4ABE-A95B-DE0D4459DF95}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3EC5319B-AFFF-4780-ACD6-6808D1ADAC20}" = dir=in | name=onenote |
"{3F656ADC-7366-42A6-A983-4BE7C9CC94BB}" = dir=out | name=@{microsoft.bingtravel_3.0.4.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{4202F5BA-0214-44C4-A21A-2FF5E5C07D81}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{4B53978B-8952-484D-83D4-F986E838D580}" = dir=out | name=windows_ie_ac_001 |
"{4B5B65FD-C8AC-4383-9444-5F6415959CFB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{4F3A160D-AE17-41DE-B98C-695BEDB830C1}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20947_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{550266AC-6487-45D8-827F-DE4C3E96965B}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{568DA550-6078-4742-BD4D-2F9E62028D01}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\av\avgnsa.exe |
"{592A0C58-71AA-45F6-928A-96027EC4DA25}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{5F09FA26-F1A8-4CEC-9A63-D844992B794E}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{5FA9BC7B-10A6-4752-8570-6BECCF8E7A95}" = dir=out | name=@{microsoft.bingsports_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{65CFD26B-3565-4D7D-94B8-62043DDE4CD9}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{6DAB0BD1-E6A2-43D0-A0CA-53931E1BD4F2}" = dir=out | name=@{microsoft.bingnews_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{6EDA5902-7FB9-40C1-A7F0-7D00F47AF754}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\av\avgdiagex.exe |
"{7114FF52-6151-4430-9A6A-32F15C9E02D9}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\av\avgdiagex.exe |
"{73408C48-576B-4616-974A-1049AB583B15}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7616D3B8-1D68-4C1D-A6E9-F68581825F30}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{76B6B962-8BE9-4C07-B209-0E43582193CF}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{79BAE6C3-8234-4850-A6ED-5E02A4805F7B}" = protocol=6 | dir=out | app=system |
"{7C095801-D665-482D-970D-1F120C47B08D}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{81716003-6EB3-4511-8E7F-5C0CC4BC34D2}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8291F652-DFE4-4CE2-8AAA-690BCB6A3E3D}" = dir=out | name=@{microsoft.bingweather_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{8304E7B1-6FF8-4BDF-A6D6-658B5843FF20}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{855B6E5A-F4D3-46E1-A06F-3BD6E5ECB373}" = dir=out | name=@{microsoft.bingnews_3.0.4.268_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{87B38A74-AEE7-4319-A0D0-B091CA2AB5A6}" = dir=out | name=windows_ie_ac_001 |
"{9052A3B5-04B9-4D1F-8D7D-102BA839DBC6}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\av\avgmfapx.exe |
"{9080EFE2-39EE-4C8E-9441-A7E7DB44ED69}" = dir=out | name=@{microsoft.zunemusic_2.6.672.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{91DAB6CE-5597-443C-A39F-DED795324B50}" = dir=out | name=@{microsoft.bingfinance_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{9F37FC78-8993-4BBD-AFA4-681B2FD8E870}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{A1A2B654-F71E-476C-8F50-14546BE0C2E7}" = dir=out | name=windows_ie_ac_001 |
"{A4A1758A-F693-49F4-8A3A-BA8B4DB69F31}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{A84981B9-CE88-4C39-8714-8DF345255184}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{A91B0B74-F25A-40E9-BD91-37235EA395ED}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{AE96EBC8-F438-499F-8BF1-F71920269A35}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{B2BDE82F-AEFE-4569-94D7-4AA55BB66B8B}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{C086DE20-AA54-4C20-8FB2-90A3EE1CCD77}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{C209A845-DB39-4EBC-95B6-246E430F6A5C}" = dir=in | name=onenote |
"{CD3C355F-C25C-4EBF-8543-3C54D874A6A6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D5F08B6A-4C8B-4898-9229-8907B4A3D0B7}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DC0D59D9-7127-4022-80AD-C1C0F6E6D2D9}" = dir=out | name=onenote |
"{DD7BABF7-4E30-4CEB-9B0C-8C8B89988558}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{E4C355E5-6B2B-4D1B-A2F7-4A863D7F4482}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E5003CE9-9F81-4142-93E6-38AF5ED163D4}" = dir=out | name=@{microsoft.bingsports_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{E576EA3B-9D4B-4965-8A91-8F466348D68C}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{E8844E16-D4C1-4775-AD3B-0513F681C271}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{E8BB9C03-4296-459C-B84A-7D88869EFD2C}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{E9C83559-20DE-4E92-9077-AF9E55330A1E}" = dir=out | name=@{microsoft.bingfinance_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{EA5040EE-8567-4FE4-93B9-98CA48238440}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{ED411D35-4768-485E-AA32-D1D11F5F837F}" = dir=out | name=@{microsoft.zunevideo_2.6.440.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{EE04BCE0-6072-4CD3-9EC9-5D89FE6F8B15}" = dir=out | name=skype |
"{F388982F-F6A4-46E9-A150-543ABC8FA75F}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{F3A8EBC8-DCD1-4FDE-8B8A-345407590B35}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F4F34D2A-29D9-4553-AA51-63472BFF1618}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20947_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{FBEC1792-BBE4-442E-AD9D-16B7E22ABD3D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FE4D30B9-BD3E-469C-A930-9C2B108DCE66}" = dir=out | name=@{microsoft.bingtravel_3.0.4.336_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{FF2F5611-62AE-4284-89BB-70D816ED1F81}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{FF924AC8-D942-4F6B-BD47-53AB40BAD116}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\av\avgemca.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{176E2755-0A17-42C6-88E2-192AB2131278}" = Intel(R) Trusted Execution Engine
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1F72FDD5-A069-45B4-928F-D0F16492DC69}" = Apple Application Support (64 bits)
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86418045F0}" = Java 8 Update 45 (64-bit)
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{3685B5E8-A0A8-494B-B035-B221547A4B63}" = Intel(R) Trusted Execution Engine Driver
"{3F851172-E6A8-EB23-2654-41E62654EC1A}" = Mediatek Bluetooth
"{48CFCB4B-0488-4711-B54E-E8E3F5929166}" = novaPDF 8 Printer Driver
"{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}" = Bonjour
"{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}" = Cyberlink PhotoDirector
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C775E70-A791-4DA8-BCC3-6AB7136F4484}" = Visual Studio 2012 x64 Redistributables
"{91BBDE8E-7611-4016-9A96-8D6956BB6EE5}" = AVG
"{96984DE8-1DB8-425C-AC8C-3098BC696F04}" = iTunes
"{B0AB7310-2503-4E4F-BBDF-A0085A536E8A}" = FMW 1
"{B5ADC77D-81D7-483D-9373-3D00A69E5854}" = Intel(R) Smart Connect Technology
"{B80AFB51-7CD1-43F7-9D26-E496C5CD0453}" = doPDF
"{BCCACFE6-91A0-4F32-80A0-ADC0CA048C7B}" = Intel(R) Trusted Execution Engine
"{C95CF442-7229-4025-A4F0-E970BF801432}" = AVG 2016
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240E9}" = WinZip 19.5
"{D4BD27CF-BFBC-11E3-9B8F-F04DA23A5C58}" = MSVCRT Redists
"{FD244E19-6EFE-4A2D-948A-0D45D4C168BE}" = Apple Mobile Device Support
"AVG" = AVG Protection
"CCleaner" = CCleaner
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VLC media player" = VLC media player

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{1922fb50-7bb8-4221-8187-60436f4e3f87}" = doPDF 8
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite 10
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype"! 7.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}" = Realtek Card Reader
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{6F340107-F9AA-47C6-B54C-C3A19F11553F}" = Hewlett-Packard ACLM.NET v1.2.2.3
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8ED4A1FC-56CF-414C-A9AB-A37714AA9EA7}" = LibreOffice 4.3.7.2
"{941DE69D-6CEE-4171-8F1F-3D7E352AA498}" = HP Wireless Button Driver
"{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A50679D9-6CBD-4FCD-BACB-62EF3894F6F3}" = Apple Application Support (32 bits)
"{A5107464-AA9B-4177-8129-5FF2F42DD322}" = REALTEK Wireless LAN Driver
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Software Update Helper
"{AA67D612-0BE5-44D6-9A91-592958F754A1}" = Intel(R) C++ Redistributables on Intel(R) 64
"{AC76BA86-7AD7-1036-7B44-AC0F074E4100}" = Adobe Acrobat Reader DC - Français
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}" = Apple Software Update
"1992736F-C90A-481C-B21B-EE34CAD07387" = Intel(R) Virtual Buttons
"Adobe Flash Player NPAPI" = Adobe Flash Player 17 NPAPI
"Adobe Shockwave Player" = Adobe Shockwave Player 12.1
"C5A8BC6E-723A-4C0F-96E1-C426D1A4BCA9" = Intel(R) Sideband Fabric Device Driver
"Clean Master" = Clean Master
"Google Chrome" = Google Chrome
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite 10
"InstallShield_{5A454EC5-217A-42a5-8CE1-2DDEC4E70E01}" = Cyberlink PhotoDirector
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.2.0.1024
"MEGAsync" = MEGAsync

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-682487850-1341855315-2669799507-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 18/10/2015 10:05:19 | Computer Name = LeGuern | Source = Application Error | ID = 1000
Description = Nom de l application défaillante WINZIP64.EXE, version : 30.0.11475.0,
horodatage : 0x5537efed Nom du module défaillant : KERNELBASE.dll, version : 6.3.9600.17415,
horodatage : 0x54505737 Code d exception : 0xe0434352 Décalage d erreur : 0x0000000000008b9c
ID
du processus défaillant : 0x18fc Heure de début de l application défaillante : 0x01d109adedef7742
Chemin
d accès de l application défaillante : C:\Program Files\WinZip\WINZIP64.EXE Chemin
d accès du module défaillant: C:\windows\system32\KERNELBASE.dll ID de rapport :
43434e3a-75a1-11e5-8290-5820b17dcd3a Nom complet du package défaillant : ID de l application
relative au package défaillant :

Error - 18/10/2015 10:09:52 | Computer Name = LeGuern | Source = Microsoft-Windows-Immersive-Shell | ID = 2484
Description = Le package Microsoft.ZuneVideo_2.6.440.0_x64__8wekyb3d8bbwe+Microsoft.ZuneVideo
a été interrompu, car sa suspension a été trop longue.

Error - 18/10/2015 10:19:06 | Computer Name = LeGuern | Source = MsiInstaller | ID = 11316
Description =

Error - 18/10/2015 10:19:14 | Computer Name = LeGuern | Source = SideBySide | ID = 16842785
Description = La création du contexte d activation a échoué pour « D:\Users\Bryan\Desktop\GFX\Cinema
4D R16 by Traylix\CINEMA 4D R16\resource\modules\okino\okinocomlib.dll64 ». Assembly
dépendant Microsoft.VC80.MFC,processorArchitecture="amd64",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.4053"
introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé.

Error - 18/10/2015 10:28:12 | Computer Name = LeGuern | Source = ESENT | ID = 215
Description = WinMail (5676) WindowsMail0: La sauvegarde a été arrêtée car elle
a été interrompue par le client ou la connexion avec le client a échoué.

Error - 18/10/2015 10:30:04 | Computer Name = LeGuern | Source = Application Hang | ID = 1002
Description = Le programme Explorer.EXE version 6.3.9600.17667 a cessé d interagir
avec Windows et a été fermé. Pour déterminer si des informations supplémentaires
sont disponibles, consultez l historique du problème dans le Centre de maintenance.

ID
de processus : f84 Heure de début : 01d109b12aa88bfb Heure de fin : 0 Chemin d accès
de l application : C:\windows\Explorer.EXE ID de rapport : 9fcbbc4a-75a4-11e5-8291-5820b17dcd3a

Nom
complet du package défaillant : ID de l application relative au package défaillant :


Error - 18/10/2015 10:48:43 | Computer Name = LeGuern | Source = SideBySide | ID = 16842785
Description = La création du contexte d activation a échoué pour « C:\Program Files\CyberLink\PhotoDirector\Kernel\CES\CES_AudioCacheAgent.exe.Manifest ».
Assembly
dépendant PDR.X,type="win32",version="1.0.0.0" introuvable. Utilisez sxstrace.exe
pour un diagnostic détaillé.

Error - 18/10/2015 10:48:43 | Computer Name = LeGuern | Source = SideBySide | ID = 16842785
Description = La création du contexte d activation a échoué pour « C:\Program Files\CyberLink\PhotoDirector\Kernel\CES\CES_CacheAgent.exe.Manifest ».
Assembly
dépendant PDR.X,type="win32",version="1.0.0.0" introuvable. Utilisez sxstrace.exe
pour un diagnostic détaillé.

Error - 18/10/2015 11:05:47 | Computer Name = LeGuern | Source = MsiInstaller | ID = 11316
Description =

Error - 18/10/2015 13:20:28 | Computer Name = LeGuern | Source = Application Error | ID = 1000
Description = Nom de l application défaillante delegate_execute.exe, version : 46.0.2490.71,
horodatage : 0x5616e65d Nom du module défaillant : delegate_execute.exe, version
: 46.0.2490.71, horodatage : 0x5616e65d Code d exception : 0x80000003 Décalage d erreur
: 0x00007f41 ID du processus défaillant : 0x1a20 Heure de début de l application
défaillante : 0x01d109c948915013 Chemin d accès de l application défaillante : C:\Program
Files (x86)\Google\Chrome\Application\46.0.2490.71\delegate_execute.exe Chemin d accès
du module défaillant: C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.71\delegate_execute.exe
ID
de rapport : 86a705cf-75bc-11e5-8296-5820b17dcd3a Nom complet du package défaillant :
ID de l application relative au package défaillant :

[ System Events ]
Error - 18/10/2015 12:27:29 | Computer Name = LeGuern | Source = Service Control Manager | ID = 7030
Description = Le service Clean Master Core Service est marqué comme étant interactif.
Cependant, le système est configuré pour ne pas autoriser les services interactifs.
Ce service peut ne pas fonctionner correctement.

Error - 18/10/2015 12:46:06 | Computer Name = LeGuern | Source = Service Control Manager | ID = 7034
Description = Le service Clean Master Core Service s est terminé de façon inattendue
pour la 1ème fois.

Error - 18/10/2015 13:15:07 | Computer Name = LeGuern | Source = Service Control Manager | ID = 7000
Description = Le service Virtualisation de fichier UAC n a pas pu démarrer en raison
de l erreur : %%1275

Error - 18/10/2015 13:15:08 | Computer Name = LeGuern | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Le module d extensibilité WLAN n a pas pu démarrer. Chemin d accès
du module : C:\windows\system32\Rtlihvs.dll Code d erreur : 126

Error - 18/10/2015 13:21:41 | Computer Name = LeGuern | Source = Service Control Manager | ID = 7000
Description = Le service Virtualisation de fichier UAC n a pas pu démarrer en raison
de l erreur : %%1275

Error - 18/10/2015 13:21:42 | Computer Name = LeGuern | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Le module d extensibilité WLAN n a pas pu démarrer. Chemin d accès
du module : C:\windows\system32\Rtlihvs.dll Code d erreur : 126

Error - 18/10/2015 13:35:12 | Computer Name = LeGuern | Source = Service Control Manager | ID = 7000
Description = Le service Virtualisation de fichier UAC n a pas pu démarrer en raison
de l erreur : %%1275

Error - 18/10/2015 13:35:12 | Computer Name = LeGuern | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Le module d extensibilité WLAN n a pas pu démarrer. Chemin d accès
du module : C:\windows\system32\Rtlihvs.dll Code d erreur : 126

Error - 18/10/2015 14:35:41 | Computer Name = LeGuern | Source = Service Control Manager | ID = 7000
Description = Le service Virtualisation de fichier UAC n a pas pu démarrer en raison
de l erreur : %%1275

Error - 18/10/2015 14:35:41 | Computer Name = LeGuern | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000
Description = Le module d extensibilité WLAN n a pas pu démarrer. Chemin d accès
du module : C:\windows\system32\Rtlihvs.dll Code d erreur : 126


< End of report >

Publicité


Signaler le contenu de ce document

Publicité