Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-05-2015 Ran by Arnaud at 2015-06-03 18:57:11 Running from C:\Users\Arnaud\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-1226102475-216154221-3269304523-500 - Administrator - Disabled) Arnaud (S-1-5-21-1226102475-216154221-3269304523-1001 - Administrator - Enabled) => C:\Users\Arnaud Invité (S-1-5-21-1226102475-216154221-3269304523-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 64 Bit HP CIO Components Installer (Version: 18.2.4 - Hewlett-Packard) Hidden Ad-Aware Web Companion (x32 Version: 1.1.987.2028 - Lavasoft) Hidden Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.3.9120 - Adobe Systems Inc.) Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated) Adobe Creative Suite 5 Master Collection (HKLM-x32\...\{1BBD8D70-721A-41AD-AC8F-7308A0C8FA92}) (Version: 5.0 - Adobe Systems Incorporated) Adobe Flash Player 10 ActiveX (HKLM-x32\...\{6E9EF98E-259E-416D-B5F8-0ABDB99942CE}) (Version: 10.1.52.14 - Adobe Systems, Inc.) Adobe Flash Player 10 Plugin (HKLM-x32\...\{BC41C09D-FAA9-4346-9FE6-1E0017BC551A}) (Version: 10.1.52.14 - Adobe Systems, Inc.) Apple Application Support (32 bits) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.) Apple Application Support (64 bits) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS) ASUS ROG Gaming Mouse (HKLM-x32\...\{3B9E171F-A955-4834-B877-447C0A437260}) (Version: 2.00.026 - ASUS) ASUS ROG MacroKey (HKLM-x32\...\{348022C5-F497-4333-AFEE-208F22F169F2}_is1) (Version: 1.0.0.28 - G-spy Co., Ltd) ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.0.8 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.02.0001 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.0.2 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0037 - ASUS) Avast Pro Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) CopyTrans Control Center Uninstall Only (HKU\S-1-5-21-1226102475-216154221-3269304523-1001\...\CopyTrans Suite) (Version: 3.01 - WindSolutions) CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.) Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.18 - ASUSTek Computer Inc.) ELAN Touchpad 11.5.16.2_X64_WHQL (HKLM\...\Elantech) (Version: 11.5.16.2 - ELAN Microelectronic Corp.) FileZilla Client 3.10.3 (HKLM-x32\...\FileZilla Client) (Version: 3.10.3 - Tim Kosse) Genesys USB Mass Storage Device (HKLM-x32\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 4.3.1.1 - Genesys Logic) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.) Google Earth (HKLM-x32\...\{1A295C25-6E02-49FB-826B-F0D2C56FFA4E}) (Version: 7.1.4.1529 - Google) Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden HP LaserJet 200 color MFP M276 (HKLM-x32\...\{CC38C23C-7824-4DBB-AC73-997CD0BBFEC7}) (Version: 5.0.14057.1503 - Hewlett-Packard) HP ScanjetPlugin (HKLM-x32\...\{0D118BA9-4706-49DE-8E2F-1A12317EDBF3}) (Version: 28.11.0.0 - Hewlett-Packard Co.) HP Smart Document Scan Software (HKLM-x32\...\{E8AFCC0E-3B42-42F3-B0DC-5CBF4F244292}) (Version: 3.70.1000 - Nuance Communications, Inc.) HP Support Solutions Framework (HKLM-x32\...\{FC3C2B77-6800-48C6-A15D-9D1031130C16}) (Version: 11.51.0049 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard) hpbDSService (x32 Version: 002.002.07399 - Hewlett-Packard) Hidden hpbM276DSService (x32 Version: 001.001.05874 - Hewlett-Packard) Hidden HPDXP (x32 Version: 3.0.26.8 - HP) Hidden HPLaserJet200color-MFPM276_HelpLearnCenter_SI (HKLM-x32\...\{0F044C7A-6EE1-4F03-90AC-329AAF2FCF12}) (Version: 1.01.0000 - Hewlett-Packard) HPLJDXPHelper (x32 Version: 020.021.004 - HP) Hidden HPLJUTCore (x32 Version: 004.005.0001 - HP) Hidden HPLJUTM276 (x32 Version: 3.00.0003 - HP) Hidden hppFaxDrvM276 (x32 Version: 003.000.00002 - Hewlett-Packard) Hidden hppLaserJetService (x32 Version: 009.027.00856 - Hewlett-Packard) Hidden hppM276LaserJetService (x32 Version: 001.019.00639 - Hewlett-Packard) Hidden hppSendFaxM276 (x32 Version: 003.000.00002 - Hewlett-Packard) Hidden hpStatusAlerts (x32 Version: 050.037.00142 - Hewlett Packard) Hidden hpStatusAlertsM276 (x32 Version: 050.034.00131 - Hewlett-Packard) Hidden Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1016 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.6.0.1038 - Intel Corporation) Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology(patch version 17.0.1419.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0464 - Intel Corporation) Intel® PROSet/Wireless Software (HKLM-x32\...\{85b9d34f-7397-4e39-8600-07942ef6ca04}) (Version: 17.0.5 - Intel Corporation) iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.) iziSpot (HKLM-x32\...\{862F30D5-C72F-4A38-9AF5-D1CCD3254628}) (Version: 4.60 - iziSoftware) KompoZer 0.8b3 (HKLM-x32\...\{20aa4150-b5f4-11de-8a39-0800200c9a66}_is1) (Version: - KompoZer) LJDXPHelperUI (x32 Version: 020.021.004 - HP) Hidden Maxx Audio Installer (x64) (Version: 1.6.4711.71 - Waves Audio Ltd.) Hidden Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4641.3004 - Microsoft Corporation) Microsoft Office Professionnel Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mises à jour NVIDIA 2.4.3.22 (Version: 2.4.3.22 - NVIDIA Corporation) Hidden Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) NVIDIA GeForce Experience 2.4.3.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.22 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 352.86 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation) NVIDIA Pilote graphique 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 352.86 - NVIDIA Corporation) NVIDIA Son virtuel Miracast 352.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 352.86 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation) Panneau de configuration NVIDIA 352.86 (Version: 352.86 - NVIDIA Corporation) Hidden PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.1 - pdfforge) PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.34.617.2014 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7368 - Realtek Semiconductor Corp.) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.3.22 - NVIDIA Corporation) Hidden Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) WebStorage (HKLM-x32\...\WebStorage) (Version: 2.2.1.513 - ASUS Cloud Corporation) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS) WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ZHPDiag 2015 (HKLM-x32\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 19-05-2015 14:42:26 avast! antivirus system restore point 20-05-2015 20:54:13 Installed HP Update. 29-05-2015 15:56:34 Point de contrôle planifié 31-05-2015 18:37:20 AA11 ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0AF1F1D1-6D60-49BC-9C8B-744A3CCFA557} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe [2014-02-26] () Task: {1AEE732F-967C-4067-AB93-9B6473744BCD} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2014-10-21] (Realtek Semiconductor) Task: {27804D6D-1FCB-4A96-9EAC-7075D2B443BE} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation) Task: {36E27157-D0DB-4D2D-A708-3BCE4417161E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-09-02] (ASUSTek Computer Inc.) Task: {402913D7-F64D-4193-83F2-6C1DC638CAA9} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-09-01] (Realtek Semiconductor) Task: {4519BDDA-9F54-4188-9619-3EF197E59C17} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.) Task: {4A4FF99C-220C-4A90-964F-14039D543D48} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation) Task: {5F080999-80B3-47E6-A988-616AD7137A1C} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation) Task: {6B0F82FF-FCC3-4D38-A999-D24BF1A018EA} - System32\Tasks\AdobeAAMUpdater-1.0-Arno-Arnaud => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-03-30] (Adobe Systems Incorporated) Task: {7798F9C3-C99A-4346-B9AB-8967121B8E50} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.) Task: {7B74E8C6-3D08-4BA1-9E2C-7A4E1604BAD1} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks Task: {88E1DE14-AE9C-4E9F-B082-9B4581E34420} - System32\Tasks\Microsoft\Office\Microsoft Office Touchless Attach Notification => C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exe [2014-08-20] (Microsoft Corporation) Task: {90171996-9F74-4648-8A04-F045209BF51C} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] () Task: {9D48870C-71F1-4420-8853-47BF32C79990} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-05-07] (Avast Software s.r.o.) Task: {A0CB202A-9FAF-42E8-9F81-BED74AC48326} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-09-11] (ASUSTek Computer Inc.) Task: {A7C81845-1317-4B2B-B826-B88720A2B84E} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-06-03] (ASUS) Task: {B9C22155-3117-4EDF-83DA-361EEBB1895F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-16] (Google Inc.) Task: {C1510DE4-4076-479A-B389-7FF9A9453727} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-06-11] (ASUSTek Computer Inc.) Task: {C9F1CFC6-0DBD-4174-8DF8-B5A02FB84119} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2012-06-14] (Hewlett Packard) Task: {DCA4C362-4903-40D7-992D-A82EF655C472} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation) Task: {DCAE3DA9-75B7-4ACF-B7E0-EA314D91374D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-05-16] (Google Inc.) Task: {EF361511-E679-4441-8521-B61C6952C377} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-05-13] (Microsoft Corporation) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-01-27 14:46 - 2015-05-12 05:30 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-03-20 18:12 - 2015-03-20 18:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-03-20 18:12 - 2015-03-20 18:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF 2015-01-27 14:55 - 2013-05-15 16:39 - 00463872 _____ () C:\Program Files (x86)\ASUS Gaming Mouse\hid.exe 2015-01-27 14:52 - 2014-02-26 05:13 - 00053248 _____ () C:\Windows\SysWOW64\UMonit64.exe 2015-05-08 08:24 - 2015-05-08 08:24 - 01378600 _____ () C:\Program Files (x86)\ASUS\WebStorage\2.2.1.513\AsusWSService.exe 2015-05-07 12:48 - 2015-05-07 12:48 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-05-07 12:48 - 2015-05-07 12:48 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-06-03 09:02 - 2015-06-03 09:02 - 02951680 _____ () C:\Program Files\AVAST Software\Avast\defs\15060300\algo.dll 2014-06-03 22:01 - 2014-06-03 22:01 - 00117248 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2014-06-03 22:01 - 2014-06-03 22:01 - 00037936 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2014-06-03 22:01 - 2014-06-03 22:01 - 00018992 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDColorEnhance.dll 2014-06-03 22:01 - 2014-06-03 22:01 - 00020528 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDRegammaAndGamut.dll 2015-05-04 22:45 - 2015-05-01 18:52 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-05-07 12:48 - 2015-05-07 12:48 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf 2013-02-14 15:46 - 2013-02-14 15:46 - 01044048 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll 2015-01-27 14:50 - 2013-10-23 15:44 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2013-04-27 10:24 - 2013-04-27 10:24 - 00071680 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\checkmetro.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\S-1-5-21-1226102475-216154221-3269304523-1001\...\localhost -> hxxp://localhost ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1226102475-216154221-3269304523-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\asus\wallpapers\asus.jpg DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{D48F6F7F-BD46-41F0-BD6B-37F58504FF32}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{061D66F4-7B39-4F61-9413-9892F684C4E0}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{8B92E960-CD24-4D72-88C0-A0934591AB21}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{3649B5B5-4DCD-40AA-92F7-B835A90E24D1}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{C46A577F-17E4-4CD1-AF8F-3083B1236AAB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{0DB6433A-5AE9-41CF-A44B-A84B6CF1622C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{E5A4C0DE-91C4-4140-9BDF-0EB99DEBF619}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{D39BD284-2A57-4E01-91E6-5F0CA2AB70C9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{EE7111B2-1D63-495C-B83F-A6882746A42F}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{62224F26-5299-4E47-B915-D7CE43AEA0E1}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{6F17837A-7224-4DEE-82ED-2FC350372FDE}] => (Allow) C:\Windows\system32\ftp.exe FirewallRules: [{4DD06BB8-F93A-47D4-B842-5C9F0F273E07}] => (Allow) C:\Windows\system32\ftp.exe FirewallRules: [{1A6B35A5-BEE1-4919-B4BC-4A769C618C59}] => (Allow) C:\Windows\SysWOW64\ftp.exe FirewallRules: [{51CDD0BD-C390-4249-BB04-0EF4AD840B75}] => (Allow) C:\Windows\SysWOW64\ftp.exe FirewallRules: [{52D070DF-81A7-4E1A-A488-E5E4D48998CE}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{A087F323-DCA4-4EA6-90B8-5EA72CC9E937}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{FE592DF7-6BD1-455D-8196-87497077D5C8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{9D2DCD3E-A71C-4631-A1A8-42E6E70B5E5F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{D4A5DF8C-D05E-4902-903C-944C4E1E69EF}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{D7EFA08B-5490-4F9C-B334-094D165AB617}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{1D67FFBA-4715-49F0-B73C-B2BB110EFC38}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{198F49EF-C144-4167-837F-A3B408733809}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet 200 color MFP M276\bin\FaxApplications.exe FirewallRules: [{794B4146-E8DF-492D-A57F-B2A186EB1719}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet 200 color MFP M276\bin\DigitalWizards.exe FirewallRules: [{DE62CCE6-D0C5-4C1B-A4F8-C996C0C3F503}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet 200 color MFP M276\Bin\HPNetworkCommunicator.exe FirewallRules: [{E1DD774F-F6FD-4A8C-AD36-5A3847D2167F}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet 200 color MFP M276\bin\EWSProxy.exe FirewallRules: [TCP Query User{F19329D0-CB06-4909-AE30-3BC108F7E475}C:\program files (x86)\izisoftware\izispot\izispot.exe] => (Allow) C:\program files (x86)\izisoftware\izispot\izispot.exe FirewallRules: [UDP Query User{7E9D18FE-6DEE-4F5E-82EF-3670B010B880}C:\program files (x86)\izisoftware\izispot\izispot.exe] => (Allow) C:\program files (x86)\izisoftware\izispot\izispot.exe FirewallRules: [{542C1707-B9EA-403F-B6CF-C3865E544E8E}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{CF41BC3C-4C31-45EA-AA7B-28E6E30EF647}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [TCP Query User{D9AEDA8C-B395-4DCA-89A5-677293DBC16C}C:\program files (x86)\hp\hp laserjet 200 color mfp m276\hppefax_m276.exe] => (Allow) C:\program files (x86)\hp\hp laserjet 200 color mfp m276\hppefax_m276.exe FirewallRules: [UDP Query User{F6122E23-9ABA-4A52-B246-606A1DEEAB97}C:\program files (x86)\hp\hp laserjet 200 color mfp m276\hppefax_m276.exe] => (Allow) C:\program files (x86)\hp\hp laserjet 200 color mfp m276\hppefax_m276.exe FirewallRules: [{91244124-77CD-4C61-A64B-0EFDCD600CE6}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (06/03/2015 03:56:25 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed continue stopping. [6] Error: (06/03/2015 03:11:25 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed continue stopping. [0] Error: (06/03/2015 00:59:00 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed continue stopping. [6] Error: (06/03/2015 09:01:59 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante FirstRun.exe, version : 15.0.4641.1000, horodatage : 0x53c5c139 Nom du module défaillant : MSVCR100.dll, version : 10.0.40219.325, horodatage : 0x4df2be1e Code d’exception : 0x40000015 Décalage d’erreur : 0x0008d6fd ID du processus défaillant : 0x1214 Heure de début de l’application défaillante : 0xFirstRun.exe0 Chemin d’accès de l’application défaillante : FirstRun.exe1 Chemin d’accès du module défaillant: FirstRun.exe2 ID de rapport : FirstRun.exe3 Nom complet du package défaillant : FirstRun.exe4 ID de l’application relative au package défaillant : FirstRun.exe5 Error: (06/03/2015 08:59:08 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed continue stopping. [6] Error: (06/02/2015 04:09:33 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17416, horodatage : 0x5452eed9 Nom du module défaillant : IEFRAME.dll, version : 11.0.9600.17801, horodatage : 0x553669ec Code d’exception : 0xc0000005 Décalage d’erreur : 0x0009f8f0 ID du processus défaillant : 0x620 Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Nom complet du package défaillant : IEXPLORE.EXE4 ID de l’application relative au package défaillant : IEXPLORE.EXE5 Error: (06/02/2015 02:37:39 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed continue stopping. [6] Error: (06/02/2015 00:40:27 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Setup.exe_Microsoft Setup Bootstrapper, version : 14.0.7011.1000, horodatage : 0x513700af Nom du module défaillant : combase.dll, version : 6.3.9600.17415, horodatage : 0x54503d84 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0002b8d0 ID du processus défaillant : 0x1d70 Heure de début de l’application défaillante : 0xSetup.exe_Microsoft Setup Bootstrapper0 Chemin d’accès de l’application défaillante : Setup.exe_Microsoft Setup Bootstrapper1 Chemin d’accès du module défaillant: Setup.exe_Microsoft Setup Bootstrapper2 ID de rapport : Setup.exe_Microsoft Setup Bootstrapper3 Nom complet du package défaillant : Setup.exe_Microsoft Setup Bootstrapper4 ID de l’application relative au package défaillant : Setup.exe_Microsoft Setup Bootstrapper5 Error: (06/02/2015 09:44:31 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 14703 Error: (06/02/2015 09:44:31 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 14703 System errors: ============= Error: (06/03/2015 04:23:25 PM) (Source: DCOM) (EventID: 10010) (User: Arno) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Error: (06/03/2015 03:30:22 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070002 : Microsoft.Office.OneNote. Error: (06/03/2015 02:30:22 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070002 : Microsoft.Office.OneNote. Error: (06/03/2015 00:59:12 PM) (Source: disk) (EventID: 11) (User: ) Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk2\DR2. Error: (06/03/2015 09:23:28 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070002 : Microsoft.Office.OneNote. Error: (06/03/2015 09:12:14 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Asus WebStorage Windows Service n’a pas pu démarrer en raison de l’erreur : %%2 Error: (06/03/2015 09:09:13 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070002 : Microsoft.Office.OneNote. Error: (06/02/2015 03:47:12 PM) (Source: DCOM) (EventID: 10010) (User: Arno) Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Error: (06/02/2015 02:05:00 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070002 : Microsoft.Office.OneNote. Error: (06/02/2015 01:22:34 PM) (Source: DCOM) (EventID: 10010) (User: Arno) Description: {1B1F472E-3221-4826-97DB-2C2324D389AE} Microsoft Office: ========================= Error: (06/03/2015 03:56:25 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed continue stopping. [6] Error: (06/03/2015 03:11:25 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed continue stopping. [0] Error: (06/03/2015 00:59:00 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed continue stopping. [6] Error: (06/03/2015 09:01:59 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: FirstRun.exe15.0.4641.100053c5c139MSVCR100.dll10.0.40219.3254df2be1e400000150008d6fd121401d09dcb2d60d617C:\Program Files (x86)\Microsoft Office\Office15\FirstRun.exeC:\Windows\SYSTEM32\MSVCR100.dll6d650afb-09be-11e5-826f-5cc5d43a71ee Error: (06/03/2015 08:59:08 AM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed continue stopping. [6] Error: (06/02/2015 04:09:33 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.174165452eed9IEFRAME.dll11.0.9600.17801553669ecc00000050009f8f062001d09d1ecfb9189bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\SYSTEM32\IEFRAME.dllfdda7962-0930-11e5-826f-5cc5d43a71ee Error: (06/02/2015 02:37:39 PM) (Source: NvStreamSvc) (EventID: 2001) (User: ) Description: NvStreamSvcFailed continue stopping. [6] Error: (06/02/2015 00:40:27 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Setup.exe_Microsoft Setup Bootstrapper14.0.7011.1000513700afcombase.dll6.3.9600.1741554503d84c00000050002b8d01d7001d09d208965a6ebC:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exeC:\Windows\SYSTEM32\combase.dllc7ed9a5b-0913-11e5-826f-5cc5d43a71ee Error: (06/02/2015 09:44:31 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 14703 Error: (06/02/2015 09:44:31 AM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 14703 ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-4710HQ CPU @ 2.50GHz Percentage of memory in use: 21% Total physical RAM: 16333.12 MB Available physical RAM: 12890.1 MB Total Pagefile: 32717.12 MB Available Pagefile: 28450.33 MB Total Virtual: 131072 MB Available Virtual: 131071.78 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:107.02 GB) (Free:19.97 GB) NTFS ==>[System with boot components (obtained from reading drive)] Drive d: (AJ) (Fixed) (Total:465.75 GB) (Free:422.8 GB) NTFS Drive e: (Data2) (Fixed) (Total:465.76 GB) (Free:320.49 GB) NTFS Drive g: (Elements) (Fixed) (Total:1397.26 GB) (Free:831.76 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 119.2 GB) (Disk ID: 6D1F4A15) Partition: GPT Partition Type. ======================================================== Disk: 1 (Size: 931.5 GB) (Disk ID: CF06E87E) Partition: GPT Partition Type. ======================================================== Disk: 2 (MBR Code: Windows XP) (Size: 1397.3 GB) (Disk ID: 00059060) Partition 1: (Not Active) - (Size=1397.3 GB) - (Type=07 NTFS) ==================== End of log ============================