Additional scan result of Farbar Recovery Scan Tool (x86) Version: 26-07-2015 Ran by Jack at 2015-07-26 17:16:39 Running from C:\Users\Jack\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-2838385541-2699793272-862096273-500 - Administrator - Disabled) => C:\Users\Administrateur Invité (S-1-5-21-2838385541-2699793272-862096273-501 - Limited - Disabled) IUSR_NMPR (S-1-5-21-2838385541-2699793272-862096273-1000 - Limited - Enabled) => C:\Users\IUSR_NMPR Jack (S-1-5-21-2838385541-2699793272-862096273-1001 - Administrator - Enabled) => C:\Users\Jack ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: G DATA ANTIVIRUS (Enabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0} AS: G DATA ANTIVIRUS (Enabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKLM\...\uTorrent) (Version: 2.2.1 - ) µTorrent (HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\uTorrent) (Version: 3.3.1.30017 - BitTorrent Inc.) Adobe ExtendScript Toolkit 2 (HKLM\...\Adobe_3e054d2218e7aa282c2369d939e58ff) (Version: 2.0.2 - Adobe Systems Incorporated) Adobe Flash Player 18 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 18.0.0.209 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated) Adobe Reader XI (11.0.08) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated) Adobe Soundbooth CS3 (HKLM\...\Adobe_19c4ee81f9cc4b3dffb9a17d9b648b2) (Version: 1 - Adobe Systems Incorporated) Aliens vs. Predator (HKLM\...\Steam App 10680) (Version: - Rebellion) Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Argente Utilities 1.0.6.5 (HKLM\...\Argente Utilities_is1) (Version: 1.0.6.5 - Raúl Argente) Ashampoo WinOptimizer 12 (HKLM\...\{4209F371-15B6-1CE4-15F7-A7BA46F431E3}_is1) (Version: 12.00.30 - Ashampoo GmbH & Co. KG) Auslogics Driver Updater (HKLM\...\{23BB1B18-3537-48F7-BEF7-42BC65DBF993}_is1) (Version: 1.4.0.0 - Auslogics Labs Pty Ltd) Bonjour (HKLM\...\{0CB9668D-F979-4F31-B8B8-67FE90F929F8}) (Version: 2.0.2.0 - Apple Inc.) BootRacer (HKLM\...\{4C0A858D-F1EA-4F56-86DA-3D455E351766}) (Version: 4.9.0.390 - Greatis Software, LLC) BootSkin Vista (Free) (HKLM\...\BootSkin Vista (Free)) (Version: - GameStop) Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.2700 - Broadcom Corporation) Browser Address Error Redirector (HKLM\...\{62230596-37E5-4618-A329-0D21F529A86F}) (Version: 1.00.0000 - Dell) CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform) Cisco EAP-FAST Module (Version: 2.2.14 - Cisco Systems, Inc.) Hidden Cisco LEAP Module (Version: 1.0.19 - Cisco Systems, Inc.) Hidden Cisco PEAP Module (Version: 1.1.6 - Cisco Systems, Inc.) Hidden CodeStuff Starter (HKLM\...\CodeStuff Starter) (Version: 5.6.2.9 - CodeStuff) Corel WinDVD (Version: 11 - Corel Inc.) Hidden CursorFX (HKLM\...\CursorFX) (Version: 2.13 - Stardock Corporation) CyberLink PowerDVD 12 (HKLM\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3519.58 - CyberLink Corp.) D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden Dell Data Vault (Version: 4.1.9.0 - Dell Inc.) Hidden Dell System Detect (HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\9204f5692a8faf3b) (Version: 5.6.0.4 - Dell) Dell Xcelerator(TM) for Portable Devices (HKLM\...\{ABA1C13F-D76E-4E8C-80CE-13BB88BBD955}) (Version: 1.2.5 - Nom de votre société) Diskeeper 12 (HKLM\...\{6AC5A728-8DEC-4595-8895-DC312781A520}) (Version: 16.0.1017.32 - Condusiv Technologies) DVD Region+CSS Free 5.9.8.3 (HKLM\...\DVD Region+CSS Free_is1) (Version: - Fengtao Software Inc.) eReg (Version: 1.20.138.34 - Logitech, Inc.) Hidden FileHippo App Manager (HKLM\...\FileHippo.com) (Version: - FileHippo.com) G DATA ANTIVIRUS (HKLM\...\{B6388178-D183-4AD3-A191-8211743B021C}) (Version: 25.1.0.7 - G DATA Software AG) Glary Utilities PRO 5.30 (HKLM\...\Glary Utilities 5) (Version: 5.30.0.50 - Glarysoft Ltd) Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google) Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6710.2136 - Google Inc.) Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (Version: 1.3.28.1 - Google Inc.) Hidden Hauppauge TV Tuner Driver (Version: 2.1.27057 - Hauppauge Computer Works) Hidden ICA (Version: 1.0 - Corel Inc.) Hidden IconManager (HKLM\...\IconManager) (Version: - ) Intel(R) Control Center (HKLM\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation) Intel(R) Network Connections 18.2.63.0 (HKLM\...\PROSetDX) (Version: 18.2.63.0 - Intel) Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation) Internet Download Manager (HKLM\...\Internet Download Manager) (Version: - Tonec Inc.) IPM (Version: 1.00.0000 - Corel Inc.) Hidden Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden KC Softwares SUMo (HKLM\...\KC Softwares SUMo_is1) (Version: 4.0.2.270 - KC Softwares) K-Lite Mega Codec Pack 11.3.0 (HKLM\...\KLiteCodecPack_is1) (Version: 11.3.0 - ) Logiciel Intel® Viiv™ (HKLM\...\Intel(R) Configuration Center) (Version: 1.7.512.0 - Intel Corporation) Logiciel Intel® Viiv™ (Version: 1.7.512.0 - Intel Corporation) Hidden Ma-Config.com (HKLM\...\{8FB2EC43-C390-4718-BE6E-AEB62CC7CE84}) (Version: 7.1.7.0 - Cybelsoft) Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 (HKLM\...\{5B1F2843-B379-3FF2-B0D3-64DD143ED53A}) (Version: 9.0.30729.4048 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Works (HKLM\...\{6B1CB38D-E2E4-4a30-933D-EFDEBA76AD9C}) (Version: 08.05.0822 - Microsoft Corporation) Mises à jour NVIDIA 2.5.11.45 (Version: 2.5.11.45 - NVIDIA Corporation) Hidden Mouse Suite for Desktop Computers (HKLM\...\{448E2D77-E504-4221-B2C2-93646B344729}) (Version: 2.50.025 - Dell) Mozilla Firefox 39.0 (x86 fr) (HKLM\...\Mozilla Firefox 39.0 (x86 fr)) (Version: 39.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 36.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP2 and SOAP Toolkit 3.0 (Version: 1.0.0.0 - Webroot Software, Inc.) Hidden NirSoft BlueScreenView (HKLM\...\NirSoft BlueScreenView) (Version: - ) Notepad++ (HKLM\...\Notepad++) (Version: 6.8 - Notepad++ Team) NTREGOPT 1.1j (HKLM\...\NTREGOPT_is1) (Version: - Lars Hederer) NVIDIA GeForce Experience 2.5.11.45 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.11.45 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) NVIDIA Pilote graphique 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation) OpenAL (HKLM\...\OpenAL) (Version: - ) Panneau de configuration NVIDIA 341.44 (Version: 341.44 - NVIDIA Corporation) Hidden Paragon Drive Backup™ 9.0 Free Edition (HKLM\...\{985F828E-0E98-429F-9C05-EF3BDE7568F7}) (Version: 90.00.0003 - Paragon Software) PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden Revo Uninstaller 1.95 (HKLM\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) RiccoVPN (HKLM\...\{C612075E-83E3-484D-BA64-6C0FAEBDB105}) (Version: 1.0.0 - eMBT sp. z o.o.) Roxio Creator Premier (HKLM\...\{BB2CB14A-F3A3-4BBF-9111-EBC82049ABA6}) (Version: 10.1 - ) Roxio Update Manager (HKLM\...\{30465B6C-B53F-49A1-9EBA-A3F187AD502E}) (Version: 6.0.0 - Roxio) Seagate Manager Installer (HKLM\...\InstallShield_{2A30052B-831C-41D3-8044-3C0388066350}) (Version: 2.01.0600 - Seagate) Seagate Manager Installer (Version: 2.01.0600 - Seagate) Hidden Segoe UI (Version: 15.4.2271.0615 - Microsoft Corp) Hidden Services d’impression Bonjour (HKLM\...\{9D210D79-AEC5-453B-960C-4DD2C73931E1}) (Version: 2.0.2.0 - Apple Inc.) Setup (Version: 11.0 - Corel Inc.) Hidden SpywareBlaster 5.2 (HKLM\...\SpywareBlaster_is1) (Version: 5.2.0 - BrightFort LLC) Stardock Impulse (Version: 3.11 - Stardock Corporation) Hidden Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve) SuperCopier2 (HKLM\...\SuperCopier2) (Version: - ) System Requirements Lab (HKLM\...\SystemRequirementsLab) (Version: - ) System Requirements Lab for Intel (HKLM\...\{1EBDF6D2-CEA0-484C-A23E-2DDAD7FD0DD0}) (Version: 4.5.22.0 - Husdawg, LLC) Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb) UpdateMyDrivers (Version: 9.0.0.6 - SmartTweak Software) Hidden Windows Live (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) WinRAR 5.10 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.0 - win.rar GmbH) Wise Disk Cleaner 8.65 (HKLM\...\Wise Disk Cleaner_is1) (Version: 8.65 - WiseCleaner.com, Inc.) Wise Registry Cleaner 8.64 (HKLM\...\Wise Registry Cleaner_is1) (Version: 8.64 - WiseCleaner.com, Inc.) XPS MiniView Gadget (HKLM\...\{A73BDB2A-E4A7-4FE8-960E-6A5C8BF76FCB}) (Version: 1.00.0000 - CompanionLink Software, Inc.) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{00b7e0ab-817a-44ad-a04b-d1148d524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{06A25241-9A21-4D61-A2EA-E8E8531C4FE2}\localserver32 -> C:\Program Files\CyberLink\PowerDVD12\ExecCmd.exe (CyberLink Corp.) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{4052D303-74C5-49EA-BC6B-66099C8D4007}\InprocServer32 -> C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll (Google) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{7c6e29bc-8b8b-4c3d-859e-af6cd158be0f}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969c0-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969c1-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969c2-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969c3-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969c4-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969c5-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969c6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969c8-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969c9-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969ca-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1000_Classes\CLSID\{88d969d6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{00b7e0ab-817a-44ad-a04b-d1148d524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{06A25241-9A21-4D61-A2EA-E8E8531C4FE2}\localserver32 -> C:\Program Files\CyberLink\PowerDVD12\ExecCmd.exe (CyberLink Corp.) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{4052D303-74C5-49EA-BC6B-66099C8D4007}\InprocServer32 -> C:\Program Files\Google\Google Desktop Search\GoogleDesktopAPI2.dll (Google) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{7c6e29bc-8b8b-4c3d-859e-af6cd158be0f}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969c0-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969c1-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969c2-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969c3-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969c4-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969c5-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969c6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969c8-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969c9-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969ca-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-2838385541-2699793272-862096273-1001_Classes\CLSID\{88d969d6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) ==================== Restore Points ========================= 20-07-2015 21:47:36 remise à zero 21-07-2015 15:38:25 avant glary 21-07-2015 18:30:09 avant nvidia pilote 21-07-2015 20:51:24 apres gdata 21-07-2015 21:03:29 apres gdata journaux 22-07-2015 21:30:27 avant mcafee siteadvisor 22-07-2015 21:41:17 Revo Uninstaller's restore point - McAfee SiteAdvisor 23-07-2015 18:28:29 avant faviconize google 23-07-2015 22:47:57 crystal disk info 24-07-2015 21:00:26 avant autopagerize 25-07-2015 13:48:30 avant idm 25-07-2015 18:43:23 avant googlemonkeyr 26-07-2015 17:07:16 avant frst ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2006-11-02 12:23 - 2015-05-06 14:28 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0AB8FBB1-E1C8-4103-9A8B-710187D061C7} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.) Task: {1DC01878-912D-435C-9903-65B5BCA0F358} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd) Task: {308F3940-11D0-4BC8-98C5-C28D99D3BCBD} - System32\Tasks\Microsoft\Windows\RestartManager\{E8014EFE-4C7C-4cd1-AEF0-07789368E325} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation) Task: {47C60652-D72F-443C-A788-BECAAE3C9CCE} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Signature Update => c:\program files\windows defender\MpCmdRun.exe [2008-01-19] (Microsoft Corporation) Task: {4F096DC2-3928-4010-B4FA-855B8FF89B28} - System32\Tasks\Microsoft\Windows\RestartManager\{DF6AF83F-3B40-407a-AC1C-59D1D59B118C} => C:\Windows\system32\rmclient.exe [2006-11-02] (Microsoft Corporation) Task: {51B85846-49B2-42BD-A046-CD534E095450} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-25] (Google Inc.) Task: {78DB3A4B-650F-4FCC-A072-DEF134226429} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-14] (Adobe Systems Incorporated) Task: {7E097355-0B75-4725-B5DA-2AF0F63C1E37} - System32\Tasks\GlaryInitialize 5 => C:\Program Files\Glary Utilities 5\Initialize.exe [2015-07-20] (Glarysoft Ltd) Task: {A18665DE-1CD4-4A1C-8714-A2A6E75CCC02} - \060184C3-9766-46a0-B258-F4518A0B2633 No Task File <==== ATTENTION Task: {A9080892-5D8C-4879-8C89-8621A990748E} - System32\Tasks\Driver Booster SkipUAC (Jack) => C:\Program Files\IObit\Driver Booster\DriverBooster.exe Task: {B7D002C0-4B11-4A6B-AB7E-245BBAE33E81} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {E6D2C4EB-6E04-46F7-9147-D2E2509165FC} - System32\Tasks\WiseCleaner\WRCSkipUAC => C:\Program Files\Wise\Wise Registry Cleaner\WiseRegCleaner.exe [2015-07-23] (WiseCleaner.com) Task: {F3094C46-1DB4-4A7F-AFA4-4A8AFBACD9C5} - System32\Tasks\klcp_update => C:\Program Files\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-07-21] () (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\User_Feed_Synchronization-{4902AA65-DC26-488B-818C-4A82EAABA173}.job => C:\Windows\system32\msfeedssync.exe ==================== Loaded Modules (Whitelisted) ============== 2010-07-04 23:32 - 2010-07-04 23:32 - 00010752 _____ () C:\Program Files\Unlocker\UnlockerCOM.dll 2015-04-15 22:13 - 2015-04-15 22:13 - 00260608 _____ () C:\Program Files\Notepad++\NppShell_06.dll 2007-09-11 02:45 - 2007-09-11 02:45 - 00124832 _____ () C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe 2015-06-16 11:17 - 2015-06-16 11:17 - 00318584 ____N () C:\Program Files\Common Files\G Data\AVKProxy\PktIcpt2.dll 2007-02-12 13:46 - 2007-02-12 13:46 - 00208896 _____ () C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe 2015-04-22 14:51 - 2015-07-14 21:06 - 00011920 _____ () C:\Program Files\NVIDIA Corporation\Update Core\detoured.dll 2010-01-30 20:49 - 2011-10-24 20:00 - 00067728 _____ () C:\Program Files\Stardock\CursorFX\zlib1.dll 2008-02-22 04:13 - 2009-02-06 19:52 - 00073728 _____ () C:\Windows\SYSTEM32\CmdRtr.DLL 2008-02-22 04:13 - 2009-03-26 15:46 - 00148480 _____ () C:\Windows\SYSTEM32\APOMngr.DLL 2007-08-23 17:58 - 2007-08-23 17:58 - 02070000 _____ () C:\Program Files\XPSMiniViewGadget\XPSMiniViewGadget.exe 2015-07-20 09:09 - 2015-07-20 09:09 - 00080160 _____ () C:\Program Files\Glary Utilities 5\zlib1.dll 2015-01-14 14:55 - 2015-01-14 14:55 - 00016384 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\bc9bcf53b97e0180a22783ef8b2567c2\PSIClient.ni.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:5C321E34 AlternateDataStreams: C:\ProgramData\TEMP:CD060F93 ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\S-1-5-21-2838385541-2699793272-862096273-1000\...\touslesdrivers.com -> hxxp://touslesdrivers.com IE restricted site: HKU\.DEFAULT\...\123topsearch.com -> www.123topsearch.com IE restricted site: HKU\.DEFAULT\...\125sms.co.uk -> www.125sms.co.uk IE restricted site: HKU\.DEFAULT\...\125sms.com -> www.125sms.com IE restricted site: HKU\.DEFAULT\...\12w.net -> download-video.12w.net IE restricted site: HKU\.DEFAULT\...\132.com -> www.132.com IE restricted site: HKU\.DEFAULT\...\1337-crew.to -> www.1337-crew.to IE restricted site: HKU\.DEFAULT\...\1337crew.info -> www.1337crew.info IE restricted site: HKU\.DEFAULT\...\136136.net -> down.136136.net IE restricted site: HKU\.DEFAULT\...\150freesms.de -> www.150freesms.de IE restricted site: HKU\.DEFAULT\...\163ns.com -> ert0003.e76.163ns.com IE restricted site: HKU\.DEFAULT\...\17-plus.com -> 17-plus.com IE restricted site: HKU\.DEFAULT\...\171203.com -> 171203.com IE restricted site: HKU\.DEFAULT\...\17concepts.info -> www.17concepts.info IE restricted site: HKU\.DEFAULT\...\1800searchonline.com -> www.1800searchonline.com IE restricted site: HKU\.DEFAULT\...\180searchassistant.com -> www.180searchassistant.com IE restricted site: HKU\.DEFAULT\...\180solutions.com -> bis.180solutions.com IE restricted site: HKU\.DEFAULT\...\1987324.com -> www.1987324.com IE restricted site: HKU\.DEFAULT\...\1gb.ru -> people.1gb.ru IE restricted site: HKU\.DEFAULT\...\1ghporn.info -> www.1ghporn.info IE restricted site: HKU\.DEFAULT\...\1importantiamreal.com -> www.1importantiamreal.com There are 12685 more restricted sites. ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2838385541-2699793272-862096273-1000\Control Panel\Desktop\\Wallpaper -> C:\windows\Web\Wallpaper\img24.jpg HKU\S-1-5-21-2838385541-2699793272-862096273-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\blue_matrix_by_bboisupafly.jpg DNS Servers: 129.250.35.251 - 212.27.40.241 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 1) (EnableLUA: 0) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\Services: FreeAgentGoNext Service => 2 MSCONFIG\Services: M1 Server => 2 MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [WinCollab-Out-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe FirewallRules: [WinCollab-In-UDP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe FirewallRules: [WinCollab-Out-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe FirewallRules: [WinCollab-In-TCP] => (Allow) %ProgramFiles%\Windows Collaboration\WinCollab.exe FirewallRules: [{ADDC8822-04FC-4475-BE82-C2BC799B9A13}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{B8B05715-808E-41F0-B4EC-71B23EBFC7DA}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [TCP Query User{28C053E3-8B45-46B3-9ECD-6B0343058EB8}C:\program files\riccovpn\privacyprotectorgvn.exe] => (Block) C:\program files\riccovpn\privacyprotectorgvn.exe FirewallRules: [UDP Query User{3098C83E-8D74-4880-B2B0-4FF20E23E346}C:\program files\riccovpn\privacyprotectorgvn.exe] => (Block) C:\program files\riccovpn\privacyprotectorgvn.exe FirewallRules: [{C180909E-CDCF-4B21-B659-4C96C7A8B1DD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{2C7DF82C-2727-4437-A5FB-14D83D827611}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe FirewallRules: [{0B35BC75-7F95-45D9-A0B4-774D23840F63}] => (Allow) LPort=48113 FirewallRules: [{A39038E0-F376-4F01-B93B-3837A7F5B87A}] => (Allow) LPort=48114 FirewallRules: [{C340F0B7-51A4-436E-AF48-2C48B9BCF326}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [{BAC4B0EC-DFAE-4208-9DA1-459E5A0FCEA1}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe FirewallRules: [TCP Query User{A6B2C4FB-FBC5-4C1A-AE01-1D37786E6681}C:\program files\cyberlink\powerdvd12\kernel\dmr\powerdvd12dmrengine.exe] => (Block) C:\program files\cyberlink\powerdvd12\kernel\dmr\powerdvd12dmrengine.exe FirewallRules: [UDP Query User{D6A5C0CD-86ED-4B5D-B47F-DA9F25DB957B}C:\program files\cyberlink\powerdvd12\kernel\dmr\powerdvd12dmrengine.exe] => (Block) C:\program files\cyberlink\powerdvd12\kernel\dmr\powerdvd12dmrengine.exe FirewallRules: [TCP Query User{4B5579CC-7D0D-4751-807F-419E603D53B9}C:\program files\cyberlink\powerdvd12\powerdvd12agent.exe] => (Block) C:\program files\cyberlink\powerdvd12\powerdvd12agent.exe FirewallRules: [UDP Query User{7596DF3B-F8E4-4376-A01E-958B190AFDC1}C:\program files\cyberlink\powerdvd12\powerdvd12agent.exe] => (Block) C:\program files\cyberlink\powerdvd12\powerdvd12agent.exe FirewallRules: [{465ED312-80B0-4788-AC9E-F7F7B8648082}] => (Allow) C:\Program Files\uTorrent\uTorrent.exe FirewallRules: [{B10A32F2-0BC5-4962-8C58-D475F980603F}] => (Allow) C:\Program Files\uTorrent\uTorrent.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/23/2015 10:46:16 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: La création du contexte d’activation a échoué pour « Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"1 ». Assembly dépendant Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" introuvable. Utilisez sxstrace.exe pour un diagnostic détaillé. Error: (07/22/2015 09:41:16 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005. Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {08a28f8a-5722-4804-a153-5c05a51c0d29} Error: (07/22/2015 04:47:49 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Application défaillante WiseDiskCleaner.exe, version 8.6.4.609, horodatage 0x55a4ac1c, module défaillant unknown, version 0.0.0.0, horodatage 0x00000000, code d’exception 0x00000000, décalage d’erreur 0x00000000, ID du processus 0xa60, heure de début de l’application 0xWiseDiskCleaner.exe0. Error: (07/21/2015 09:41:45 PM) (Source: EventSystem) (EventID: 4609) (User: ) Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c Error: (07/17/2015 04:18:41 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005. Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {a1fa35ff-ecd2-488a-b1fe-e665304674e6} Error: (07/16/2015 06:53:07 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Application défaillante Pareto_Update3.exe, version 3.0.3.0, horodatage 0x51b0e6d8, module défaillant Pareto_Update3.exe, version 3.0.3.0, horodatage 0x51b0e6d8, code d’exception 0x40000015, décalage d’erreur 0x0013585b, ID du processus 0xa58, heure de début de l’application 0xPareto_Update3.exe0. Error: (07/16/2015 05:15:52 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Application défaillante Pareto_Update3.exe, version 3.0.3.0, horodatage 0x51b0e6d8, module défaillant Pareto_Update3.exe, version 3.0.3.0, horodatage 0x51b0e6d8, code d’exception 0x40000015, décalage d’erreur 0x0013585b, ID du processus 0xa34, heure de début de l’application 0xPareto_Update3.exe0. Error: (07/15/2015 04:54:21 PM) (Source: Perflib) (EventID: 1010) (User: ) Description: EmdCacheC:\Windows\system32\emdmgmt.dll4 Error: (07/15/2015 04:52:08 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4 Error: (07/13/2015 06:18:39 PM) (Source: EventSystem) (EventID: 4609) (User: ) Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c System errors: ============= Error: (07/26/2015 05:12:22 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (07/26/2015 05:06:49 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (07/26/2015 04:46:41 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (07/26/2015 04:45:53 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (07/26/2015 04:39:19 PM) (Source: disk) (EventID: 7) (User: ) Description: Le périphérique \Device\Harddisk5\DR5 comporte un bloc défectueux. Error: (07/26/2015 04:27:37 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: ArcSec GDKBFlt NNSHTTPS RawDisk3 Error: (07/26/2015 04:27:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: SessionLauncher%%3 Error: (07/26/2015 04:26:22 PM) (Source: WMPNetworkSvc) (EventID: 14329) (User: ) Description: WMPNetworkSvc0x80070006 Error: (07/26/2015 04:25:43 PM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: AUTORITE NT) Description: 0xc000000dK:0x0 Error: (07/26/2015 04:25:43 PM) (Source: Microsoft-Windows-BitLocker-Driver) (EventID: 24620) (User: AUTORITE NT) Description: 0xc000000dI:0x0 Microsoft Office: ========================= Error: (07/23/2015 10:46:16 PM) (Source: SideBySide) (EventID: 33) (User: ) Description: Microsoft.Windows.Common-Controls,language="*",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0"C:\Users\Jack\Desktop\CrystalDiskInfo6_5_2\DiskInfoX64.exe Error: (07/22/2015 09:41:16 PM) (Source: VSS) (EventID: 8194) (User: ) Description: 0x80070005 Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {08a28f8a-5722-4804-a153-5c05a51c0d29} Error: (07/22/2015 04:47:49 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: WiseDiskCleaner.exe8.6.4.60955a4ac1cunknown0.0.0.0000000000000000000000000a6001d0c48d5d4a6ffe Error: (07/21/2015 09:41:45 PM) (Source: EventSystem) (EventID: 4609) (User: ) Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c Error: (07/17/2015 04:18:41 PM) (Source: VSS) (EventID: 8194) (User: ) Description: 0x80070005 Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {a1fa35ff-ecd2-488a-b1fe-e665304674e6} Error: (07/16/2015 06:53:07 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Pareto_Update3.exe3.0.3.051b0e6d8Pareto_Update3.exe3.0.3.051b0e6d8400000150013585ba5801d0bfe7e23a1504 Error: (07/16/2015 05:15:52 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Pareto_Update3.exe3.0.3.051b0e6d8Pareto_Update3.exe3.0.3.051b0e6d8400000150013585ba3401d0bfda4b200e9c Error: (07/15/2015 04:54:21 PM) (Source: Perflib) (EventID: 1010) (User: ) Description: EmdCacheC:\Windows\system32\emdmgmt.dll4 Error: (07/15/2015 04:52:08 PM) (Source: Perflib) (EventID: 1008) (User: ) Description: PNRPsvcC:\Windows\system32\pnrpperf.dll4 Error: (07/13/2015 06:18:39 PM) (Source: EventSystem) (EventID: 4609) (User: ) Description: d:\longhorn\com\complus\src\events\tier1\eventsystemobj.cpp458007043c CodeIntegrity Error: =================================== Date: 2015-07-26 17:16:23.431 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\drivers\HookCentre.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2015-07-26 17:16:23.135 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\drivers\HookCentre.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2015-07-26 17:16:22.833 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\drivers\HookCentre.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2015-07-26 17:16:22.535 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\drivers\HookCentre.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2015-07-26 17:16:22.155 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\drivers\GDBehave.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2015-07-26 17:16:21.858 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\drivers\GDBehave.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2015-07-26 17:16:21.560 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\drivers\GDBehave.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2015-07-26 17:16:21.118 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\drivers\GDBehave.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2015-07-26 17:15:44.372 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\drivers\NNSHttps.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2015-07-26 17:15:44.082 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume3\Windows\System32\drivers\NNSHttps.sys car le jeu de hachages d’images par page n’a pas été trouvé sur le système. ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz Percentage of memory in use: 69% Total physical RAM: 2045.22 MB Available physical RAM: 621.43 MB Total Virtual: 5051.32 MB Available Virtual: 2829.29 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:450.6 GB) (Free:290.22 GB) NTFS ==>[drive with boot components (obtained from BCD)] Drive d: (RECOVERY) (Fixed) (Total:15 GB) (Free:3.29 GB) NTFS Drive f: (PATRIOT) (Removable) (Total:3.73 GB) (Free:0.01 GB) FAT32 Drive j: (HYPERX) (Removable) (Total:3.72 GB) (Free:1.7 GB) FAT32 ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 465.7 GB) (Disk ID: 48000000) Partition 1: (Not Active) - (Size=55 MB) - (Type=DE) Partition 2: (Not Active) - (Size=15 GB) - (Type=07 NTFS) Partition 3: (Active) - (Size=450.6 GB) - (Type=07 NTFS) ======================================================== Disk: 5 (MBR Code: Windows XP) (Size: 3.7 GB) (Disk ID: 89BD64B2) Partition 1: (Not Active) - (Size=3.7 GB) - (Type=0C) ======================================================== Disk: 6 (Size: 3.7 GB) (Disk ID: 00000000) Partition: GPT Partition Type. ==================== End of log ============================