cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL Extras logfile created on: 24-11-15 19:07:42 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\CED\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.10586.0)
Locale: 0000080C | Country: Belgique | Language: FRB | Date Format: dd-MM-yy

32,00 Gb Total Physical Memory | 30,36 Gb Available Physical Memory | 94,88% Memory free
50,96 Gb Paging File | 49,37 Gb Available in Paging File | 96,89% Paging File free
Paging file location(s): c:\pagefile.sys 0 0d:\pagefile.sy [Binary data over 200 bytes]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 77,64 Gb Total Space | 38,75 Gb Free Space | 49,91% Space Free | Partition Type: NTFS
Drive D: | 33,66 Gb Total Space | 16,72 Gb Free Space | 49,66% Space Free | Partition Type: NTFS
Drive E: | 931,51 Gb Total Space | 821,58 Gb Free Space | 88,20% Space Free | Partition Type: NTFS
Drive F: | 931,51 Gb Total Space | 257,91 Gb Free Space | 27,69% Space Free | Partition Type: NTFS

Computer Name: SV1-CED | User Name: CED | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "D:\Office 2016 ins\Office16\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
htmlfile [print] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- "D:\Office 2016 ins\Office16\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- Reg Error: Key error.
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 90 1F 01 56 71 1E D1 01 [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{11F0B23F-F6DF-4F7D-9143-B7DAED0A9D1F}" = lport=445 | protocol=6 | dir=in | app=system |
"{3D7562ED-4212-42B9-AF0D-881691190A15}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{4A451590-8A45-47D2-9AF3-037981DD7096}" = lport=139 | protocol=6 | dir=in | app=system |
"{4DA73CA7-1BEB-4991-BD27-A719095E3AC5}" = lport=137 | protocol=17 | dir=in | app=system |
"{521E1575-4E56-4F27-8093-0F6CD5848DD4}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{524C3A7C-BA26-4D32-924B-EFD2C7E540D6}" = lport=138 | protocol=17 | dir=in | app=system |
"{5C166EC4-BC24-4270-BD92-A41C0CD279FA}" = lport=35043 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{5DF6AEF1-3333-4B98-A87B-071E51B515BC}" = lport=47998 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamuseragent.exe |
"{658FD081-D891-4FC7-BFA9-6D2F59E9D6D7}" = lport=6004 | protocol=17 | dir=in | app=d:\office 2016 ins\office16\outlook.exe |
"{6E3AF9AF-864C-403D-B553-82B1ECAF8A66}" = rport=137 | protocol=17 | dir=out | app=system |
"{7CC25430-98FB-495D-BD68-9BDD59DFA3D7}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{8AC65298-5A79-47B3-8350-F686568E57B3}" = rport=138 | protocol=17 | dir=out | app=system |
"{95CE2CBB-813E-4E9E-974D-3237A15E581B}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{97A4C520-44B3-47B5-AF95-40DF1DFA62AF}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{9D9ED89F-6638-47CC-9658-76E8741EAC48}" = rport=445 | protocol=6 | dir=out | app=system |
"{AC487206-9818-47C3-9AA5-B1FCC4A1A14C}" = rport=139 | protocol=6 | dir=out | app=system |
"{AE35CD9D-86C6-4FEB-B5A7-5CAD19E7C137}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{C82F10F1-95CF-417F-A701-324BC4DE18C2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D37AA161-886D-42A7-B3C6-340F36D59CDE}" = lport=47995 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{DB44E54D-B903-420A-A2FB-2C9531CBD5C5}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |
"{EB8E901F-2700-415B-9043-B7D584CC40DA}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{014BA2EA-81E6-4823-BA48-51691E98B706}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.6416.42001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{048FBFBF-0C89-4B10-BAB7-EFAD8FA12610}" = dir=out | name=@{microsoft.microsoftedge_25.10586.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{05578C81-956A-40DF-A180-AFB7EB4CB316}" = dir=in | name=@{microsoft.windows.cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{07F349F9-6FA5-4F95-B896-2689DE5E663B}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{10611832-D0D4-4293-8F57-7BA37F1CC69F}" = dir=in | name=@{microsoft.microsoftedge_25.10586.0.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.microsoftedge/resources/appname} |
"{11D77D87-39C2-44E0-BF3A-0F5AE2364EE5}" = dir=in | name=sway |
"{1CAA7701-304B-41F1-9708-54F9350302C2}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\sendafax.exe |
"{1CB3BD70-8A42-4F70-974D-511862200E6A}" = dir=out | name=windows_ie_ac_001 |
"{1DD5A907-0B9F-425C-9099-E9538F8AF330}" = dir=out | name=@{microsoft.bingweather_4.7.118.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{212047CC-3C48-4C64-A21D-04E4844EFD2F}" = dir=in | name=@{microsoft.bingsports_4.7.130.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{21987437-6622-420C-8BBC-DE261E0E1016}" = dir=out | name=@{microsoft.xboxgamecallableui_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxgamecallableui/resources/pkgdisplayname} |
"{2379A724-052A-4E59-BF0B-90B8B56D1030}" = dir=in | name=@{microsoft.bingfinance_4.7.118.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{24B7255A-AFC0-4765-A827-29DF29ED467F}" = dir=out | name=xbox |
"{281B0FD3-6764-4D4F-B665-DE8DAF7FAC88}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10240.16384_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{2A8A647D-ED8D-4718-BD7F-1BC2965EFDE9}" = dir=in | name=onenote |
"{2C9D018D-D29A-48A9-8A49-7E832BEB266E}" = dir=out | name=@{microsoft.getstarted_2.5.6.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.getstarted/resources/appstorename} |
"{347679CA-A4B8-4613-B2DB-989CEE3F270A}" = dir=out | name=@{windows.purchasedialog_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.purchasedialog/resources/displayname} |
"{35BEEC6D-0CC6-40CF-B455-65B0311AC242}" = dir=in | name=@{microsoft.messaging_1.11.19004.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/microsoft.apps.messaging.skype/skypemessaging.resources/skype_appstorename} |
"{3FC4D63F-FF17-41A3-98DF-5111AF03679D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{3FC60424-039F-4812-9D19-0A6D235759C9}" = dir=out | name=onenote |
"{4781BADA-32A0-4447-8A47-2D4D02C40611}" = dir=out | name=@{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{47886010-734C-4CE8-9B2D-5C913E22F3F0}" = dir=in | name=@{microsoft.windows.photos_15.1120.13270.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{4C9DEB73-A720-4E4E-9571-EEA9EF26BD41}" = protocol=17 | dir=in | app=d:\nero ins\nero blu-ray player\blu-rayplayer.exe |
"{4ED72A4B-7E10-436E-9DED-5BF97B33595E}" = dir=in | name=@{microsoft.commsphone_1.10.23004.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.commsphone/resources/appstorename} |
"{4F730A31-AA6E-497B-9C09-3FFA8C5E70DF}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\digitalwizards.exe |
"{5227C1BA-FC09-483A-8EC4-D0459A629356}" = dir=out | name=@{microsoft.windows.cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cortana/resources/displayname} |
"{58856D99-8CA1-408A-B798-D37549E74C25}" = dir=out | name=@{microsoft.people_10.0.3030.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.people/resources/appstorename} |
"{5AEAC892-CE83-44BA-B32F-E980FB056058}" = protocol=17 | dir=in | app=d:\teamviewer ins\teamviewer.exe |
"{5B55BAE2-1156-416E-BE21-CF18551D87EB}" = dir=out | name=@{microsoft.3dbuilder_10.9.50.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.3dbuilder/resources/appstorename} |
"{5BEE75C4-16EB-44F0-B379-8C7D12E5F74C}" = dir=out | name=@{windows.contactsupport_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{64BE9C3A-7E68-4ABD-81C8-C3C2C80129F8}" = dir=out | name=@{microsoft.windowsphone_10.1511.18010.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsphone/resources/appstorename} |
"{6680576F-9170-4FD4-9D9F-2E25DE2A7D2B}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\hpnetworkcommunicatorcom.exe |
"{6E2E9FC8-C004-4F20-8996-D822FE4B458F}" = dir=out | name=@{microsoft.xboxidentityprovider_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.xboxidentityprovider/resources/pkgdisplayname} |
"{6FEC8A6C-659A-40DD-A0EB-8388E130C7D6}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.6416.42001.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/hxcommintl/appmanifest_outlookdesktop_displayname} |
"{707D7E13-5EE5-4E29-9F2A-58E54D75FFA5}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\devicesetup.exe |
"{71519189-AF2C-4D17-9016-BC142147EEC4}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{75F9E7AA-E05A-4CC9-9C53-3DFB7A32DAB2}" = dir=out | name=@{microsoft.windowsfeedback_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windowsfeedback/feedbackapp.resources/appname/text} |
"{7E1D5188-D464-4C6C-AFEC-B17AC2B56836}" = dir=out | name=@{microsoft.zunemusic_3.6.15131.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{85A69F38-FFAB-44B9-AC93-92D3ED6F9FD1}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\hpnetworkcommunicator.exe |
"{891A3422-2729-4FBA-BC6A-5398924255CA}" = protocol=17 | dir=in | app=d:\teamviewer ins\teamviewer_service.exe |
"{8A216768-26F2-4A69-9E99-0011BDA2599C}" = dir=in | name=@{microsoft.windows.cloudexperiencehost_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.cloudexperiencehost/resources/appdescription} |
"{8B298C1F-5290-4C58-8307-E92903458446}" = dir=out | name=@{microsoft.microsoftofficehub_17.6418.23501.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{8DADDF0B-7265-4463-BA9D-54D91C27B962}" = dir=in | app=c:\program files\hp\hp officejet 6700\bin\faxapplications.exe |
"{8E4AAE36-6854-4899-87C3-8C5BA0CCA633}" = dir=in | name=@{microsoft.microsoftofficehub_17.6418.23501.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.microsoftofficehub/officehubintl/appmanifest_getoffice_displayname} |
"{8F5C8D8A-35F3-4FF6-AAB2-14DD27D88867}" = protocol=58 | dir=in | app=system |
"{9261FC4F-A102-43B3-9D9D-FF8B73F328E3}" = dir=in | name=@{microsoft.windowsstore_2015.23.23.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{94376701-E206-45B1-B61B-BDA63CDA9A75}" = dir=in | name=@{microsoft.bingnews_4.7.118.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{95F92301-43FB-4F54-9565-76B3A7FF1F44}" = dir=out | name=@{microsoft.windows.parentalcontrols_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.parentalcontrols/resources/displayname} |
"{9FB04D66-E97F-4767-B665-E67C7D924420}" = protocol=6 | dir=in | app=d:\nero ins\nero blu-ray player\blu-rayplayer.exe |
"{A6DD9776-E2FB-4630-B87E-2C91956AB4FC}" = dir=out | name=sway |
"{AB93AF05-D30E-4075-9343-67FE4A7717B2}" = dir=out | name=@{microsoft.zunevideo_3.6.15361.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{AC8926BC-B241-4EC4-83CC-35F6236E4E3F}" = dir=out | name=@{microsoft.windows.contentdeliverymanager_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.windows.contentdeliverymanager/resources/appdisplayname} |
"{B7CDC43F-4455-439E-B5F5-1339C49E1C6F}" = dir=out | name=@{microsoft.commsphone_1.10.23004.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.commsphone/resources/appstorename} |
"{B7CFDEAD-23BD-4963-B53A-E0455324F63A}" = dir=in | name=@{microsoft.bingweather_4.7.118.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/applicationtitlewithbranding} |
"{CA7858DE-9923-4B0B-AB38-991AD9565D9E}" = protocol=6 | dir=in | app=d:\nero ins\km\nmdllhost.exe |
"{CB30959E-F2B7-4AA4-B247-74AF6953562D}" = dir=out | name=@{microsoft.bingsports_4.7.130.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/applicationtitlewithbranding} |
"{CE856F6D-C2BF-474F-96E7-D99276ECED73}" = dir=out | name=@{microsoft.windowsmaps_4.1511.3161.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsmaps/resources/appstorename} |
"{CE957630-32AA-46BD-9F57-35E6176CC561}" = protocol=6 | dir=in | app=d:\teamviewer ins\teamviewer.exe |
"{D45E2F9D-3F1C-4EC1-BC49-8D71D488207E}" = dir=out | name=@{microsoft.messaging_1.11.19004.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.messaging/microsoft.apps.messaging.skype/skypemessaging.resources/skype_appstorename} |
"{D4C48A81-DE23-4835-9A2B-7BD8937B4960}" = dir=in | name=microsoft solitaire collection |
"{D7A4BE39-B5A4-472E-AA44-BA5288FBBAD8}" = dir=in | name=@{microsoft.aad.brokerplugin_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{D805AD2C-1109-4D41-8393-7C948FBCD77C}" = dir=out | name=@{microsoft.bingnews_4.7.118.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/applicationtitlewithbranding} |
"{D99D3323-6CCD-42CF-AF37-5AA7BCF7F4AC}" = dir=out | name=@{microsoft.connectivitystore_1.1511.1.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.connectivitystore/mswifiresources/appstorename} |
"{DB76EC3D-E573-4973-B6EC-0AB3FEA6F242}" = dir=out | name=@{microsoft.accountscontrol_10.0.10586.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.accountscontrol/resources/displayname} |
"{DEBA5C3C-7311-4306-A615-63446FF08FFC}" = dir=out | name=@{microsoft.appconnector_1.3.3.0_neutral__8wekyb3d8bbwe?ms-resource://microsoft.appconnector/resources/connectorstubtitle} |
"{DEBB63BC-5CD0-4F3B-B80B-55B82C516984}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{E9AED270-738D-4188-B190-7B46C04AB6F1}" = dir=out | name=@{microsoft.bingfinance_4.7.118.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/applicationtitlewithbranding} |
"{EBC4F9E3-521E-4E2E-85C0-A55C415CFFE0}" = dir=out | name=@{microsoft.windows.photos_15.1120.13270.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windows.photos/resources/appstorename} |
"{EF6E5EF1-2C8C-422F-8AA0-CB72BCB50F08}" = dir=out | name=microsoft solitaire collection |
"{F05DEF42-5BAC-4212-B36F-D840D9C70058}" = dir=in | name=@{windows.contactsupport_10.0.10586.0_neutral_neutral_cw5n1h2txyewy?ms-resource://windows.contactsupport/resources/appdisplayname} |
"{F21EBC5F-1593-4221-9A2A-F3CF656F79BF}" = dir=in | name=xbox |
"{F25E849C-826C-414E-8834-9A595A71C5DA}" = protocol=6 | dir=in | app=d:\teamviewer ins\teamviewer_service.exe |
"{F2B09848-0CDC-4C26-A777-5A9A756730B4}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{F59316AF-DDF0-49C3-9514-ACA93D945EF2}" = dir=out | name=@{microsoft.windowsstore_2015.23.23.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsstore/resources/storetitle} |
"{F63F13DC-61B0-4CD6-A403-23FF359CC080}" = dir=out | name=@{microsoft.lockapp_10.0.10586.0_neutral__cw5n1h2txyewy?ms-resource://microsoft.lockapp/resources/appdisplayname} |
"{F8125DBA-D379-4598-B855-96CC36A84CFB}" = dir=out | name=@{microsoft.aad.brokerplugin_1000.10586.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://microsoft.aad.brokerplugin/resources/packagedisplayname} |
"{FA97FFF5-41F2-43A4-9D82-C2A0534A19B3}" = protocol=17 | dir=in | app=d:\nero ins\km\nmdllhost.exe |
"{FED87053-D811-4108-9511-37CED883CCEF}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"TCP Query User{3E6E11A6-D8E8-48FC-B67E-9ED49D0FE176}C:\program files (x86)\raidar\raidar.exe" = protocol=6 | dir=in | app=c:\program files (x86)\raidar\raidar.exe |
"TCP Query User{7403B996-6460-4A8A-8D87-BB694887B80D}D:\kodi ins\kodi\kodi.exe" = protocol=6 | dir=in | app=d:\kodi ins\kodi\kodi.exe |
"TCP Query User{90785083-EF96-4CD1-9EED-5AE77246D09A}C:\program files (x86)\iomega\home storage manager\iomega discovery.exe" = protocol=6 | dir=in | app=c:\program files (x86)\iomega\home storage manager\iomega discovery.exe |
"TCP Query User{B79467B9-BEBA-4E77-8F94-C3DF6E0A33A5}C:\program files (x86)\iomega\home storage manager\iomega discovery.exe" = protocol=6 | dir=in | app=c:\program files (x86)\iomega\home storage manager\iomega discovery.exe |
"TCP Query User{BA78EC20-C488-4344-B058-B2CB5460D7A8}C:\program files (x86)\netgear readynas\raidar.exe" = protocol=6 | dir=in | app=c:\program files (x86)\netgear readynas\raidar.exe |
"TCP Query User{C3F0C032-B6A5-408D-AC43-9A37F332470C}D:\emule ins\emule\emule.exe" = protocol=6 | dir=in | app=d:\emule ins\emule\emule.exe |
"UDP Query User{23E2F0E7-F6C0-4A21-A3ED-71BA64A0C58D}D:\emule ins\emule\emule.exe" = protocol=17 | dir=in | app=d:\emule ins\emule\emule.exe |
"UDP Query User{36F1F524-D35D-46ED-BD12-D6287C333312}C:\program files (x86)\iomega\home storage manager\iomega discovery.exe" = protocol=17 | dir=in | app=c:\program files (x86)\iomega\home storage manager\iomega discovery.exe |
"UDP Query User{791CC20C-8768-4FB2-8646-A723CB4A4656}C:\program files (x86)\raidar\raidar.exe" = protocol=17 | dir=in | app=c:\program files (x86)\raidar\raidar.exe |
"UDP Query User{8447EA4F-2C41-4E76-94F7-42CCA9FD21F8}C:\program files (x86)\netgear readynas\raidar.exe" = protocol=17 | dir=in | app=c:\program files (x86)\netgear readynas\raidar.exe |
"UDP Query User{B37B9D05-737E-4AF3-ACAF-511A8C1CCDAD}C:\program files (x86)\iomega\home storage manager\iomega discovery.exe" = protocol=17 | dir=in | app=c:\program files (x86)\iomega\home storage manager\iomega discovery.exe |
"UDP Query User{EB436624-E0BC-4043-87A5-CBCA96E6B697}D:\kodi ins\kodi\kodi.exe" = protocol=17 | dir=in | app=d:\kodi ins\kodi\kodi.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{90160000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2016
"{90160000-0015-040C-1000-0000000FF1CE}" = Microsoft Access MUI (French) 2016
"{90160000-0016-040C-1000-0000000FF1CE}" = Microsoft Excel MUI (French) 2016
"{90160000-0018-040C-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (French) 2016
"{90160000-0019-040C-1000-0000000FF1CE}" = Microsoft Publisher MUI (French) 2016
"{90160000-001A-040C-1000-0000000FF1CE}" = Microsoft Outlook MUI (French) 2016
"{90160000-001B-040C-1000-0000000FF1CE}" = Microsoft Word MUI (French) 2016
"{90160000-001F-0401-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2016 - 'DD:) 'D91(J)
"{90160000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2016  Deutsch
"{90160000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2016 - English
"{90160000-001F-040C-1000-0000000FF1CE}" = Outils de vérification linguistique 2016 de Microsoft Office - Français
"{90160000-001F-0413-1000-0000000FF1CE}" = Taalprogramma's voor Microsoft Office 2016 - Nederlands
"{90160000-001F-0C0A-1000-0000000FF1CE}" = Herramientas de corrección de Microsoft Office 2016: español
"{90160000-002C-040C-1000-0000000FF1CE}" = Microsoft Office Proofing (French) 2016
"{90160000-0044-040C-1000-0000000FF1CE}" = Microsoft InfoPath MUI (French) 2016
"{90160000-006E-040C-1000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2016
"{90160000-0090-040C-1000-0000000FF1CE}" = Microsoft DCF MUI (French) 2016
"{90160000-00A1-040C-1000-0000000FF1CE}" = Microsoft OneNote MUI (French) 2016
"{90160000-00BA-040C-1000-0000000FF1CE}" = Microsoft Groove MUI (French) 2016
"{90160000-00C1-0000-1000-0000000FF1CE}" = Microsoft Office 32-bit Components 2016
"{90160000-00C1-040C-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (French) 2016
"{90160000-00E1-040C-1000-0000000FF1CE}" = Microsoft Office OSM MUI (French) 2016
"{90160000-00E2-040C-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (French) 2016
"{90160000-012B-040C-1000-0000000FF1CE}" = Microsoft Skype for Business MUI (French) 2016
"{A1CFA587-90D4-4DE6-B200-68CC0F92252F}" = HP Officejet 6700 Basic Device Software
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Pilote 3D Vision 358.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panneau de configuration NVIDIA 358.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Pilote graphique 358.50
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.5.14.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Pilote du contrôleur 3D Vision 352.65
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Logiciel système PhysX 9.15.0428
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Mises à jour NVIDIA 2.5.14.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Pilote audio HD : 1.3.34.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 2.5.14.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.31
"{DF3A46D9-67B3-44B2-9D01-25C8BA772C8A}" = paint.net
"7-Zip" = 7-Zip 15.10 beta (x64)
"CCleaner" = CCleaner
"KLiteCodecPack64_is1" = K-Lite Codec Pack 6.1.0 (64-bit)
"Office16.PROPLUS" = Microsoft Office Professionnel Plus 2016
"WinRAR archiver" = WinRAR 5.00 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{05C6B128-1B40-4495-9CB9-090B368BFA0A}" = Nero Video Samples
"{0CF7D22B-977C-43B2-9219-E03017FBAC6D}" = Nero Recode Help (CHM)
"{0F931735-0098-4FF6-A49D-17882A294F51}" = Microsoft VC90 CRT + OMP
"{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
"{150D88F1-40AF-4678-A39D-BCE2332F34E5}" = Nero Abstract Themes
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{1B6F5E51-575E-4693-BCA2-7543570D076D}" = Nero Kwik Themes Basic
"{204A26F0-01B8-4656-8607-5CCEDE820BC2}" = Nero 2014 Content Pack
"{22856BC3-F893-4CBF-95F2-E1F63CD2B1AB}" = Nero Video Transitions 1
"{2432E589-6256-4513-B0BF-EFA8E325D5F0}" = Nero SharedVideoCodecs
"{26A24AE4-039D-4CA4-87B4-2F83218066F0}" = Java 8 Update 66
"{29E2C1C6-D76A-41D3-980F-6E346AA9A6A8}" = Nero Cliparts
"{29F67D84-3A70-456E-806A-52301B02070B}" = Nero Effects Basic
"{36DA8969-4DCD-48FF-894A-6BD3936050C3}" = Nero Blu-ray Player Help (CHM)
"{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}" = Microsoft ASP.NET MVC 4 Runtime
"{40E51513-D917-4563-84F6-4EF6ADD46E2F}" = Nero Recode
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CA46F9F-174C-4766-9EA2-2325DF414B9E}" = Nero Express Help (CHM)
"{4D25D881-7183-462F-95C8-990CA1944E0B}" = Nero PiP Effects 1
"{4DB136AF-389B-4A34-AE34-50123559D08E}" = Nero MediaHome
"{504D84ED-AE75-4F85-A68B-BB3D4CB3E169}" = Nero Holiday and Sports Themes
"{511B5F54-CB1D-4F5B-BE0E-09B1D86BE586}" = Nero Video
"{5446D3AF-B060-49B6-9535-F300E1532022}" = Nero Video Help (CHM)
"{581DCE84-1948-4891-A4A7-A1222CC137C5}" = Nero RescueAgent
"{5909A89E-C97F-407C-AE2B-47BDED86BF5D}" = Prerequisite installer
"{5D0505B5-E723-43B9-A6CF-D0DDCE70F96C}" = Khi3 - Universal Scientific Calculator
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{75CA8AAE-5346-4312-A9A8-5CF89955930F}" = Nero MediaHome Help (CHM)
"{7BD7A4BF-EA64-4BFE-A9D3-3FDC9B6EFC23}" = Nero Football (Soccer) Themes
"{83A4E573-E2C2-46FB-9DA6-6A2BBBF5A588}" = Nero Retro Film Themes
"{8B5AD338-7ABC-4ECB-9C2C-687F84AEDDB1}" = Nero Platinum Effects 12
"{955BF340-C379-4375-AA2F-F3BCB2A498AB}" = Nero Family and Events Themes
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A2FE691E-3F8E-4E30-AA7D-FF17AC77EA87}" = Nero Blu-ray Player
"{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1
"{ABC88553-8770-4B97-B43E-5A90647A5B63}" = Nero ControlCenter
"{ACE49D50-19CD-44A6-B192-46F985283B26}" = Nero PiP Effects Basic
"{B166374C-105E-445E-8E5D-A86CA5742645}" = Nero Burning Core
"{B791E0AB-87A9-41A4-8D98-D13C2E37D928}" = Nero Info
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components
"{C03E2FB3-250B-44A1-8B9E-61DFCD544133}" = Nero Disc to Device
"{C08E4323-261D-4B2F-8F24-CDB26E2AA081}" = Iomega Home Storage Manager
"{C4C6DF25-0E59-46EE-B24B-DF8749D8FF3A}" = Nero Image Samples
"{CDFE8F95-F80F-4115-9C3F-0E1FD8F9F58C}" = Nero ControlCenter Help (CHM)
"{ce085a78-074e-4823-8dc1-8a721b94b76d}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005
"{CE675FBD-75C3-45F1-B6AF-8D250861D536}" = Nero Disc Menus 3
"{D5115C78-2D22-4668-A5E2-6C87DED3ED1B}" = Nero Launcher
"{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag
"{E17BCB76-9924-4BD5-B6D6-50D3407B4E74}" = Nero Disc Menus Basic
"{ED7943A4-2FF0-4096-BBEA-DE3CC206E3D4}" = Nero Express
"{EEBF1676-AF87-4266-93D8-0C14A34C4217}" = Nero Disc Menus 1
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F2B9C8D6-C69C-4BA7-95D2-66F1C68D15DA}" = Nero Burning ROM
"{F384C1E1-3A16-4073-95C3-7271FE0ED4C2}" = Nero 2014
"{F69D4104-5394-4F7C-801C-D96DC92E7F69}" = Nero RescueAgent Help (CHM)
"{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
"{FA78CC15-9F90-443B-BA61-A66595F06432}" = Nero Burning ROM Help (CHM)
"{FE81E6B5-652B-40E7-B3B2-7171C6F297DA}" = Nero Disc Menus 2
"1381-5408-0515-7060" = RAIDar 4.3.8
"DVD Decrypter 3.5.4.0 Fr" = DVD Decrypter 3.5.4.0 Fr
"DVD Shrink_is1" = DVD Shrink 3.2
"eMule" = eMule
"Glary Utilities 5" = Glary Utilities PRO 5.39
"Google Chrome" = Google Chrome
"Le Grand Robert" = Le Grand Robert
"Notepad++" = Notepad++
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"PrtScr_is1" = PrtScr 1.5
"RAIDar 2.00c1-p6" = RAIDar 2.00c1-p6
"SPlayer" = SPlayer
"TeamViewer" = TeamViewer 10
"Virtual DJ - Atomix Productions" = Virtual DJ - Atomix Productions
"WinAVI Video Converter" = WinAVI Video Converter
"WinThruster_is1" = WinThruster

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Kodi" = Kodi

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ System Events ]
Error - 24-11-15 14:02:40 | Computer Name = SV1-CED | Source = Service Control Manager | ID = 7009
Description = Le dépassement de délai (30000 millisecondes) a été atteint lors de
l attente de la connexion du service Service Google Update (gupdate).

Error - 24-11-15 14:02:40 | Computer Name = SV1-CED | Source = Service Control Manager | ID = 7000
Description = Le service Service Google Update (gupdate) n a pas pu démarrer en
raison de l erreur : %%1053


< End of report >

Publicité


Signaler le contenu de ce document

Publicité