cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL Extras logfile created on: 07/04/2016 21:23:03 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\thier_000\Downloads
Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.17607)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

1,99 Gb Total Physical Memory | 0,76 Gb Available Physical Memory | 38,31% Memory free
3,49 Gb Paging File | 1,93 Gb Available in Paging File | 55,47% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 220,59 Gb Total Space | 170,81 Gb Free Space | 77,43% Space Free | Partition Type: NTFS
Drive D: | 705,53 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: FIDA | User Name: Mosiham | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\WINDOWS\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-773629943-311881923-749761222-1004\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office15\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office15\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{069BF9F7-E10D-43F9-BED2-AF62AB75B90A}" = rport=10243 | protocol=6 | dir=out | app=system |
"{0BEA5958-D8C5-4892-99B2-1122DF8F8FEC}" = lport=137 | protocol=17 | dir=in | app=system |
"{11D08F8E-9DA6-468D-8995-3825F1E2FBA4}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{1B731A2E-3F66-4167-8FFA-F0DFA21E7101}" = lport=10243 | protocol=6 | dir=in | app=system |
"{222EF652-9607-4E8C-901C-26A1332DE431}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{24514FED-1F91-402D-A665-CE87F84672EB}" = lport=5353 | protocol=17 | dir=in | app=c:\users\thier_000\appdata\local\bobrowser\application\bobrowser.exe |
"{3823E53B-870E-48A5-B9C7-934BB9D9983A}" = rport=138 | protocol=17 | dir=out | app=system |
"{3A52F141-8603-4181-9DDF-E256F0F6AA76}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3F0CEC64-5AB0-438E-9F15-BC006983C163}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\google\chrome\application\chrome.exe |
"{41AA18F6-2333-48D3-AA9D-C1B9BAC32293}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{674697A4-075E-4A63-9E6F-7AA17ADAD169}" = lport=2869 | protocol=6 | dir=in | app=system |
"{6D6C6E2E-9709-49F3-B56E-20950BB9533A}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office15\outlook.exe |
"{737AE8BD-FBF6-4B9B-A63C-7B9CA62FD998}" = lport=138 | protocol=17 | dir=in | app=system |
"{831DD5F2-1FEC-416F-AB77-24C0C5FFB6DC}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{9DC8B803-C9F5-4C0B-A05A-4B2CADFDAE06}" = rport=445 | protocol=6 | dir=out | app=system |
"{A6345638-5D9A-41D7-8B99-470E783826AF}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A699E800-57AA-4062-A458-808479CCAA22}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{B1E8C1CF-AAC9-4C67-A041-8587841D2885}" = lport=445 | protocol=6 | dir=in | app=system |
"{BADF3D92-8383-446B-A2C8-51918709ADD3}" = lport=139 | protocol=6 | dir=in | app=system |
"{C062803D-0018-49B4-BAC4-A9D07C3C0C3E}" = rport=139 | protocol=6 | dir=out | app=system |
"{DC3F0930-1C0E-4B80-B3D3-F6884F744D5C}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DEBCA6B8-2276-41C0-9BEB-866446FA19B6}" = rport=137 | protocol=17 | dir=out | app=system |
"{DFA10D90-487D-42ED-A57A-2453011D84C2}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{E5D7BA07-8011-4701-81DB-BCB7BFC74561}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{05FF7761-7154-4C37-9EE6-7D9995FDBDA4}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{074C8C02-A558-46B2-9107-51D6D70388E9}" = dir=out | name=windows_ie_ac_001 |
"{0A67B698-501F-4229-9F9F-0E3AF635373A}" = dir=in | app=c:\program files\apowersoft\streaming video recorder\streaming video recorder.exe |
"{0CFC0D95-2479-42AD-A92D-34309BC21266}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{0FE81FA8-CBC6-4FF6-9ABC-3C55DA9F254E}" = dir=out | name=@{microsoft.reader_6.2.8516.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{1BC9F66C-9089-4F3C-885B-27BA21CE8F86}" = dir=in | app=c:\program files\rosetta stone\rosetta stone version 3\support\bin\win\rosettastoneltdservices.exe |
"{1D9B957B-A870-40D1-AAE6-1AB3F0313B85}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{1FA617DC-A96F-4B9B-8325-F996300FAF23}" = protocol=6 | dir=out | app=c:\program files\rosetta stone\rosetta stone version 3\rosettastoneversion3.exe |
"{1FA68008-5A39-4946-A4E6-8B117E4F4F22}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{21C49045-5FB4-4B93-88D4-4988386186BE}" = dir=out | name=vlc for windows 8 |
"{28E00CF8-4BF9-49BB-B650-B0CE856B4BF5}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{2DDA0FE0-45FD-4B05-AF95-D86C8A2E8D12}" = dir=out | name=@{microsoft.bingsports_1.2.0.135_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/bingsports} |
"{2F80E8C5-4C05-419A-A2D4-8DB9B6D34968}" = dir=in | name=@{microsoft.reader_6.2.9200.20780_x86__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{2F887ACB-E0A2-4D3E-93A8-B701AD818FE1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{307826EE-BFAF-4F8B-983D-64D8A17C91E0}" = dir=in | app=c:\program files\apowersoft\streaming video recorder\apowersoftdownloaderhelp.dll |
"{314B63BD-6665-41CD-8A43-924FD10A828A}" = dir=out | name=@{microsoft.reader_6.2.9200.20780_x86__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{334AF17C-6D79-4F82-89CC-289BD252E20B}" = dir=out | name=@{microsoft.bing_1.2.0.137_x86__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{3394C71F-F4F3-457C-8DA1-B9EFC0184E22}" = dir=out | name=@{microsoft.bingmaps_1.2.0.136_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{33F81105-155A-4901-842D-493703AC74BA}" = dir=in | app=c:\windows\explorer.exe |
"{35AC9BBE-AA74-4B61-A08C-9C556A3CA93C}" = protocol=6 | dir=out | app=system |
"{366BB2F9-714D-4FBF-A1DA-B7D611998EC7}" = dir=out | name=@{microsoft.bingnews_1.2.0.135_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{37B386B7-2CC1-490A-80CA-CBEA271D65F6}" = dir=out | name=@{microsoft.bing_1.2.0.137_x86__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{3865462C-FA78-4804-9EFB-75A32F955C05}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{397FA518-F1C7-4C31-9594-74218B634CDC}" = dir=out | app=c:\program files\apowersoft\streaming video recorder\apowersoftplayer.dll |
"{3FD9C022-B89D-48A1-B7AF-EE847BAF8EBE}" = dir=out | name=@{microsoft.windowsphotos_16.4.4204.712_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{43433178-B23F-41B5-8805-CFB64EF3874B}" = dir=in | name=@{microsoft.reader_6.2.8516.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{4753B1EE-D164-4B8A-A9CF-2F8A1C42F6DC}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{47C726C5-734B-47C1-88B2-45CD7F6EB934}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{4FC6D96B-7292-43CD-93FD-4D79BC7E2EFB}" = dir=out | name=@{microsoft.zunevideo_1.5.338.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{53A90C5D-3E1A-4F0E-A272-0E75C259F574}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{587F5D45-7EF2-46E9-83C0-BFCB39955C13}" = dir=out | name=@{microsoft.zunevideo_1.5.909.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{59996B49-0B21-452F-9F89-1749CCBC3EE4}" = protocol=6 | dir=out | app=c:\program files\rosetta stone\rosetta stone version 3\support\bin\win\rosettastoneltdservices.exe |
"{5C45B53C-2DAE-49E1-9AFF-DA31FE695E49}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{5E0EB70F-115A-4135-AC93-41D0F5562DEC}" = dir=out | name=@{microsoft.zunemusic_1.0.927.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/33273} |
"{5F49EE24-3A1A-4C88-8377-8E9D0439B394}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{632E2BDC-E2DC-4C42-9DFF-E861F68E87B2}" = dir=in | app=c:\program files\rosetta stone\rosetta stone version 3\rosettastoneversion3.exe |
"{663ED778-85E1-45D3-8CAE-B7F3AA3A6955}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{6713A056-03B4-40E6-BAEE-F274B7876D33}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{676E7B71-87AD-435F-83EA-D5B1B89FF0A8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{681E8BC2-2C1B-455F-83BF-013677DCDB21}" = dir=out | app=c:\program files\apowersoft\streaming video recorder\apowersoftdump.dll |
"{682BDE1C-2B3E-4BFC-A713-1B1EC6E17364}" = dir=in | app=c:\program files\apowersoft\streaming video recorder\apowersoftdump.dll |
"{688F0615-AF2C-468B-B4F9-4F3C3DCA822E}" = protocol=6 | dir=in | app=c:\users\thier_000\downloads\microtorrent_3.4.2.exe |
"{6B952A6E-DCDC-45FF-99B5-F453BC218582}" = dir=in | app=c:\program files\apowersoft\streaming video recorder\apowersoftsrv.dll |
"{6F2BDAA3-9F52-4F61-9AE8-1F01909C4B34}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{6F4C77C9-7FFB-494E-BE1B-FA4BF5E29FAD}" = dir=in | app=c:\program files\apowersoft\streaming video recorder\apowersoftac.dll |
"{6F5FB4F2-69B1-46DA-B210-EAED00574072}" = dir=in | name=@{microsoft.windowsphotos_16.4.4204.712_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{71E3E8DB-5DA3-4D64-B5CE-06A5748DC0BA}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{71EBC0B0-A2E3-4486-B284-003331B60B33}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{77C2D87D-0E8C-482E-A214-64BC5D93F597}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{7881E2FA-D106-4327-815A-017DD2A6DC4C}" = dir=out | name=@{microsoft.bingmaps_1.6.1821.2624_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{7D6A694A-6B96-4E20-B62B-67849CEB4BBD}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{7E048465-D1FF-4270-BB0B-EFFCFE5674DE}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{7F577FE9-49A9-4EFA-B802-21D134E8F518}" = dir=in | name=@{microsoft.bing_1.2.0.137_x86__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{89102A26-58AD-4574-9FDC-201C364D54C7}" = dir=out | name=@{microsoft.zunemusic_1.5.216.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{8B09303C-44EB-4F13-8AA6-311318A454E3}" = dir=in | name=@{microsoft.windowsphotos_16.4.4396.311_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{8D97B524-B4A1-4008-BA05-7FFF9BC6752B}" = dir=out | name=@{microsoft.bingweather_1.2.0.135_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{8E93E15F-EF1A-4245-8D8B-2B7E073C95E6}" = dir=out | name=@{microsoft.bingweather_2.0.0.310_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{8FF0B4D7-E907-4451-8FB5-858CB80C7AD5}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{937A0605-5C12-4D63-9AFE-711E944BA74B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{93C5717A-52DC-4EA8-8FB2-CA1FCFFC9E3A}" = dir=in | name=vlc for windows 8 |
"{969202F8-B050-4B1E-8727-7C1BBCF94839}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{97E86742-4786-4ADC-807C-F7F8768B37FA}" = dir=out | app=c:\program files\apowersoft\streaming video recorder\apowersoftsrv.dll |
"{9AD8B37D-3EB1-4755-83D8-FF25391DCAE9}" = dir=in | app=c:\program files\apowersoft\streaming video recorder\apowersofthdsdump.dll |
"{9E67E835-61E3-40D9-93F0-1EAD75E27958}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A57C4D93-D102-4ED9-82A8-8BF87A4C7022}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{AEE0E635-4667-45FA-B2A2-E063103A8022}" = dir=in | name=skype |
"{B917BEC9-187D-4CEB-8258-60D5BF96FD11}" = dir=out | name=skype |
"{C237CEBD-264B-4BCC-85D4-7372EA15B8AE}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{C71EEEEB-CBF1-4590-BF91-759873F4E516}" = dir=in | app=c:\program files\apowersoft\streaming video recorder\apowersoftplayer.dll |
"{C935A992-9DD1-413A-AB47-4DAA9421351E}" = dir=out | name=@{microsoft.xboxlivegames_1.0.927.0_x86__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{CCDB57C2-CCD5-49D4-B90B-EEC1AE617D0D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CEB89DCE-164B-4398-8B0A-794877CCE872}" = dir=in | app=c:\windows\system32\rundll32.exe |
"{CEC16BE3-F939-4B77-8006-94E9A8E7BCB8}" = dir=out | name=@{microsoft.bingtravel_1.2.0.145_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{D08F9473-C781-41FB-9B7B-77DF56471620}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{D25F3F7D-83D7-4A3B-8CAE-DD3D87BC8F1F}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{D72ACA6E-1E5B-455B-9731-7501DC2CED4F}" = dir=out | app=c:\program files\apowersoft\streaming video recorder\apowersoftdownloaderhelp.dll |
"{D9D7C23B-A196-4CFA-90B4-1A9B1790553A}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{E217AF73-146A-49A0-81E9-D7F8177257C8}" = dir=out | name=@{microsoft.bingfinance_1.2.0.135_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/apptitle} |
"{E306E403-175A-4441-B889-CDC27B4D07BD}" = dir=out | name=@{microsoft.windowsphotos_16.4.4396.311_x86__8wekyb3d8bbwe?ms-resource://microsoft.windowsphotos/photo/residappname} |
"{E32D8778-384C-4252-B670-97F275D5654B}" = dir=out | app=c:\program files\apowersoft\streaming video recorder\apowersofthdsdump.dll |
"{E6264E4E-7EAB-4A45-8F2E-F7E96B7D3E0B}" = dir=in | name=@{microsoft.bing_1.2.0.137_x86__8wekyb3d8bbwe?ms-resource://microsoft.bing/resources/app_name} |
"{E87C4EB6-6F4C-4E7F-8385-633B5F0CA2DD}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E9E1D307-C5D1-4D7E-9671-FFBF557F39F2}" = dir=out | name=@{microsoft.bingnews_2.0.0.308_x86__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{EF6C5864-2FF7-41D7-987B-F0CD7A84BE78}" = dir=out | name=@{microsoft.microsoftskydrive_16.4.4398.729_x86__8wekyb3d8bbwe?ms-resource://microsoft.microsoftskydrive/resources/shortproductname} |
"{EFC4A137-E9D3-4AE2-988F-A2092D8CBFDE}" = protocol=17 | dir=in | app=c:\users\thier_000\downloads\microtorrent_3.4.2.exe |
"{F058AE28-9865-445C-8C46-1C43737679E8}" = dir=out | app=c:\program files\apowersoft\streaming video recorder\streaming video recorder.exe |
"{F29F21AC-998C-4E41-A436-76613010B3AD}" = dir=out | app=c:\program files\apowersoft\streaming video recorder\apowersoftac.dll |
"{F7DF3813-1797-40A1-A684-CAF5DE28CACB}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{FFF950ED-5364-4D5B-8EF7-D6ED48638B55}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"TCP Query User{7032E871-58AC-4367-AB70-AC8FB80ECC14}C:\users\thier_000\appdata\roaming\utorrent\utorrent.exe" = protocol=6 | dir=in | app=c:\users\thier_000\appdata\roaming\utorrent\utorrent.exe |
"TCP Query User{74886ECB-B231-4D60-B3E1-C1993C84C7B5}C:\users\thier_000\appdata\roaming\utorrent\updates\3.4.3_40298.exe" = protocol=6 | dir=in | app=c:\users\thier_000\appdata\roaming\utorrent\updates\3.4.3_40298.exe |
"UDP Query User{78FD7572-4525-41BD-B266-876C4188FB7C}C:\users\thier_000\appdata\roaming\utorrent\updates\3.4.3_40298.exe" = protocol=17 | dir=in | app=c:\users\thier_000\appdata\roaming\utorrent\updates\3.4.3_40298.exe |
"UDP Query User{C97526BD-4D12-421F-9169-C3AF685EEE07}C:\users\thier_000\appdata\roaming\utorrent\utorrent.exe" = protocol=17 | dir=in | app=c:\users\thier_000\appdata\roaming\utorrent\utorrent.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1E34A754-84DE-43BB-80F6-3DD433A773E0}" = Easy Phone Sync
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{2CD65167-671F-49A3-B6C7-3B919DF028E2}_is1" = Streaming Video Recorder V5.0.3
"{538227C6-C74B-4A74-99E1-2C0B4F9DA5E1}" = Apple Mobile Device Support
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}" = Kaspersky Internet Security
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7FE25256-B7C1-480D-B736-10A67A833AEA}" = Apple Application Support (32 bits)
"{90120000-0015-040C-0000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2007
"{90120000-0016-040C-0000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2007
"{90120000-0018-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2007
"{90120000-0019-040C-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2007
"{90120000-001A-040C-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2007
"{90120000-001B-040C-0000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2007
"{90120000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2007
"{90120000-0044-040C-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2007
"{90120000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2007
"{90150000-0015-040C-0000-0000000FF1CE}" = Microsoft Access MUI (French) 2013
"{90150000-0016-040C-0000-0000000FF1CE}" = Microsoft Excel MUI (French) 2013
"{90150000-0018-040C-0000-0000000FF1CE}" = Microsoft PowerPoint MUI (French) 2013
"{90150000-0019-040C-0000-0000000FF1CE}" = Microsoft Publisher MUI (French) 2013
"{90150000-001A-040C-0000-0000000FF1CE}" = Microsoft Outlook MUI (French) 2013
"{90150000-001B-040C-0000-0000000FF1CE}" = Microsoft Word MUI (French) 2013
"{90150000-001F-0401-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - 'DD:) 'D91(J)
"{90150000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-040C-0000-0000000FF1CE}" = Outils de vérification linguistique 2013 de Microsoft Office - Français
"{90150000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Nederlands
"{90150000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Español
"{90150000-002C-040C-0000-0000000FF1CE}" = Microsoft Office Proofing (French) 2013
"{90150000-0044-040C-0000-0000000FF1CE}" = Microsoft InfoPath MUI (French) 2013
"{90150000-006E-040C-0000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2013
"{90150000-0090-040C-0000-0000000FF1CE}" = Microsoft DCF MUI (French) 2013
"{90150000-00A1-040C-0000-0000000FF1CE}" = Microsoft OneNote MUI (French) 2013
"{90150000-00BA-040C-0000-0000000FF1CE}" = Microsoft Groove MUI (French) 2013
"{90150000-00E1-040C-0000-0000000FF1CE}" = Microsoft Office OSM MUI (French) 2013
"{90150000-00E2-040C-0000-0000000FF1CE}" = Microsoft Office OSM UX MUI (French) 2013
"{90150000-012B-040C-0000-0000000FF1CE}" = Microsoft Lync MUI (French) 2013
"{91150000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{961D5D7E-3DEC-4E3B-9065-EA8074923B18}" = Assistant du gestionnaire de contenu pour PlayStation(R)
"{99011A6E-5200-11DE-BDB8-7ACD56D89593}" = Rosetta Stone Version 3
"{9DBBE7B8-EE7A-4FD9-9C7F-35E69A4C19D8}" = iTunes
"{A2438F5D-292B-4464-9535-379584ABD626}" = Easy Phone Tunes
"{AA8B2587-7198-44E6-858D-20EA0E833C9D}" = HP Wireless Comfort Mobile Mouse
"{AC76BA86-7AD7-1036-7B44-AB0000000001}" = Adobe Reader XI (11.0.14) - Français
"{B1FEA4EF-6F77-D32B-E9FA-7F09A1A2608A}" = Microsoft App Update for microsoft.windowscommunicationsapps_17.0.1119.516_x86__8wekyb3d8bbwe (x86)
"{CCF298AF-9CE1-4B26-B251-486E98A34789}" = Windows 7 USB/DVD Download Tool
"681737B1A79F1AA9707EF846D141007B21B2CC08" = Package de pilotes Windows - libusb-win32 PS Vita Type B (02/23/2013 1.2.6.0)
"CDisplay_is1" = CDisplay 1.8
"DAEMON Tools Lite" = DAEMON Tools Lite
"FileZilla Client" = FileZilla Client 3.16.1
"FormatFactory" = FormatFactory 3.6.0.0
"Google Chrome" = Google Chrome
"InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}" = Kaspersky Internet Security
"KLiteCodecPack_is1" = K-Lite Codec Pack 11.2.0 Full
"NST" = Norton Identity Safe
"Office15.PROPLUSR" = Microsoft Office Professionnel Plus 2013
"pymecavideo 6_is1" = pymecavideo 6.1
"VLC media player" = VLC media player
"WinRAR archiver" = WinRAR 5.00 (32-bit)

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-773629943-311881923-749761222-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"GoodGameEmpire" = GoodGameEmpire
"uTorrent" = µTorrent

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 06/04/2016 09:08:30 | Computer Name = Fida | Source = Microsoft Office 15 | ID = 2011
Description = Office Subscription licensing exception: Error Code: 0x9; CorrelationId:
{AED48210-6338-4168-A63A-A929EC9E8163}

Error - 06/04/2016 09:08:31 | Computer Name = Fida | Source = Microsoft Office 15 | ID = 2011
Description = Application: excel.exe; IdentityType: LiveId; HasToken: 0; AutoOrgId:
0; Roaming: 0; LvuxSqm: 0; SppReady: 1; CurrentHr: 0x803d0013; CorrelationId: {AED48210-6338-4168-A63A-A929EC9E8163};
OlsErrorCode: 0x9; AllProductReleaseIds (from store):

Error - 06/04/2016 09:36:49 | Computer Name = Fida | Source = Application Error | ID = 1000
Description = Nom de l application défaillante pymecavideo.exe, version : 0.0.0.0,
horodatage : 0x4918019c Nom du module défaillant : QtCore4.dll, version : 4.8.3.0,
horodatage : 0x505d8399 Code d exception : 0xc0000005 Décalage d erreur : 0x00002740
ID
du processus défaillant : 0x179c Heure de début de l application défaillante : 0x01d19005a2bb22b0
Chemin
d accès de l application défaillante : C:\Program Files\pymecavideo\bin\pymecavideo.exe
Chemin
d accès du module défaillant: C:\Program Files\pymecavideo\bin\QtCore4.dll ID de
rapport : 9cf48ecb-fbfc-11e5-afe1-7431708c56a2 Nom complet du package défaillant :
ID de l application relative au package défaillant :

Error - 07/04/2016 05:12:15 | Computer Name = Fida | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Les chaînes de performance dans la valeur de Registre Performance
sont endommagées lors du traitement du fournisseur de compteurs d extension Performance.
La valeur BaseIndex à partir du Registre de performance est le premier DWORD dans
la section Données, la valeur LastCounter est le deuxième DWORD dans la section
Données, et la valeur LastHelp est le troisième DWORD dans la section Données.

Error - 07/04/2016 05:12:16 | Computer Name = Fida | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Les chaînes de performance dans la valeur de Registre Performance
sont endommagées lors du traitement du fournisseur de compteurs d extension Performance.
La valeur BaseIndex à partir du Registre de performance est le premier DWORD dans
la section Données, la valeur LastCounter est le deuxième DWORD dans la section
Données, et la valeur LastHelp est le troisième DWORD dans la section Données.

Error - 07/04/2016 05:12:16 | Computer Name = Fida | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Le déchargement des chaînes de compteurs de performances pour le service
WmiApRpl (WmiApRpl) a échoué. Le premier DWORD de la section Data contient le code
d erreur.

Error - 07/04/2016 06:56:46 | Computer Name = Fida | Source = Application Hang | ID = 1002
Description = Le programme iexplore.exe version 10.0.9200.17568 a cessé d interagir
avec Windows et a été fermé. Pour déterminer si des informations supplémentaires
sont disponibles, consultez l historique du problème dans le Centre de maintenance.

ID
de processus : a48 Heure de début : 01d190bbfb69af34 Heure de fin : 60000 Chemin d accès
de l application : C:\Program Files\Internet Explorer\iexplore.exe ID de rapport
: 3f45b556-fcaf-11e5-afe2-7431708c56a2 Nom complet du package défaillant : ID de
l application relative au package défaillant :

Error - 07/04/2016 10:24:33 | Computer Name = Fida | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Les chaînes de performance dans la valeur de Registre Performance
sont endommagées lors du traitement du fournisseur de compteurs d extension Performance.
La valeur BaseIndex à partir du Registre de performance est le premier DWORD dans
la section Données, la valeur LastCounter est le deuxième DWORD dans la section
Données, et la valeur LastHelp est le troisième DWORD dans la section Données.

Error - 07/04/2016 10:24:33 | Computer Name = Fida | Source = Microsoft-Windows-LoadPerf | ID = 3012
Description = Les chaînes de performance dans la valeur de Registre Performance
sont endommagées lors du traitement du fournisseur de compteurs d extension Performance.
La valeur BaseIndex à partir du Registre de performance est le premier DWORD dans
la section Données, la valeur LastCounter est le deuxième DWORD dans la section
Données, et la valeur LastHelp est le troisième DWORD dans la section Données.

Error - 07/04/2016 10:24:33 | Computer Name = Fida | Source = Microsoft-Windows-LoadPerf | ID = 3011
Description = Le déchargement des chaînes de compteurs de performances pour le service
WmiApRpl (WmiApRpl) a échoué. Le premier DWORD de la section Data contient le code
d erreur.

[ System Events ]
Error - 07/04/2016 13:03:56 | Computer Name = Fida | Source = Service Control Manager | ID = 7022
Description = Le service Agent de stratégie IPsec est en attente de démarrage.

Error - 07/04/2016 13:04:07 | Computer Name = Fida | Source = WMPNetworkSvc | ID = 866306
Description =

Error - 07/04/2016 13:04:07 | Computer Name = Fida | Source = Service Control Manager | ID = 7022
Description = Le service Découverte SSDP est en attente de démarrage.

Error - 07/04/2016 13:04:07 | Computer Name = Fida | Source = Service Control Manager | ID = 7001
Description = Le service Hôte de périphérique UPnP dépend du service Découverte
SSDP qui n a pas pu démarrer en raison de l erreur : %%1070

Error - 07/04/2016 13:04:07 | Computer Name = Fida | Source = DCOM | ID = 10005
Description =

Error - 07/04/2016 13:05:08 | Computer Name = Fida | Source = WMPNetworkSvc | ID = 866306
Description =

Error - 07/04/2016 13:05:08 | Computer Name = Fida | Source = Service Control Manager | ID = 7022
Description = Le service Découverte SSDP est en attente de démarrage.

Error - 07/04/2016 13:05:08 | Computer Name = Fida | Source = Service Control Manager | ID = 7001
Description = Le service Hôte de périphérique UPnP dépend du service Découverte
SSDP qui n a pas pu démarrer en raison de l erreur : %%1070

Error - 07/04/2016 13:05:08 | Computer Name = Fida | Source = DCOM | ID = 10005
Description =

Error - 07/04/2016 13:05:22 | Computer Name = Fida | Source = Service Control Manager | ID = 7023
Description = Le service Centre de sécurité s est arrêté avec l erreur : %%16389


< End of report >

Publicité


Signaler le contenu de ce document

Publicité