Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-06-2015 01 Ran by nadhir at 2015-07-04 00:55:02 Running from C:\Users\nadhir\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-453138559-2457903269-1361715002-500 - Administrator - Disabled) Invité (S-1-5-21-453138559-2457903269-1361715002-501 - Limited - Enabled) nadhir (S-1-5-21-453138559-2457903269-1361715002-1000 - Administrator - Enabled) => C:\Users\nadhir UpdatusUser (S-1-5-21-453138559-2457903269-1361715002-1001 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Antivirus (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Antivirus (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKU\S-1-5-21-453138559-2457903269-1361715002-1000\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.) Adobe Reader X (10.1.9) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.9 - Adobe Systems Incorporated) Airytec Switch Off (HKLM\...\Airytec Switch Off) (Version: 3.3.1 - Airytec) Any Video Converter Professional 3.3.8 (HKLM-x32\...\Any Video Converter Professional_is1) (Version: - ) ArcSoft Magic-i Visual Effects 2 (HKLM-x32\...\{61438020-DDD4-42FA-99A2-50225441980A}) (Version: 2.0.1.142 - ArcSoft) ArcSoft WebCam Companion 4 (HKLM-x32\...\{C793AD32-2BB8-4CC4-ABD3-A1469C21593C}) (Version: 4.0.21.484 - ArcSoft) Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 3.0 - Atheros) Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.11.574 - Avira Operations GmbH & Co. KG) Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.3.0.100 - Atheros Communications) BrowseToSave (HKLM\...\{BB987E86-7972-46D9-A432-3150607B5C70}) (Version: 1.0 - ) <==== ATTENTION Bytessence InstallMaker 4.42 (HKLM-x32\...\Bytessence InstallMaker 4.42) (Version: 4.42 - www.bytessence.com) CCleaner (HKLM\...\CCleaner) (Version: 5.04 - Piriform) CCleaner, версия 4.14.4808 (HKLM-x32\...\{80BD3FC0-9C5F-4ADA-83C7-91DC8E24D0B2}_is1) (Version: 4.14.4808 - Salat Production) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.54.18.51 - Conexant) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Corel WinDVD (HKLM-x32\...\{5C1F18D2-F6B7-4242-B803-B5A78648185D}) (Version: 10.0.5.800 - Corel Inc.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Détection de l'application Winamp (HKU\S-1-5-21-453138559-2457903269-1361715002-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc) Dim@net (HKLM-x32\...\Dim@net) (Version: 21.005.22.01.839 - Huawei Technologies Co.,Ltd) Driver Booster 2.1 (HKLM-x32\...\Driver Booster_is1) (Version: 2.1 - IObit) Free Download Manager 3.9.3 (HKLM-x32\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG) Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 38.0.2125.111 - Google Inc.) Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Index.dat Analyzer v2.5 (HKLM-x32\...\Index.dat Analyzer_is1) (Version: 2.5 - Systenance Software) Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.8.0.1003 - Intel Corporation) IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.1.6.27 - IObit) Java(TM) 6 Update 22 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86416022FF}) (Version: 6.0.220 - Oracle) Java(TM) 6 Update 22 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216022FF}) (Version: 6.0.220 - Oracle) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Manuel VAIO (HKLM-x32\...\{C6E893E7-E5EA-4CD5-917C-5443E753FCBD}) (Version: 2.0.0.02250 - Sony Corporation) Media Gallery (Version: 1.5.0.16020 - Your Company Name) Hidden Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office « Démarrer en un clic » 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Starter 2010 - Français (HKLM-x32\...\{90140011-0066-040C-0000-0000000FF1CE}) (Version: 14.0.5128.5002 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mises à jour NVIDIA 1.5.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.5.20 - NVIDIA Corporation) Mozilla Firefox 37.0.2 (x86 fr) (HKLM-x32\...\Mozilla Firefox 37.0.2 (x86 fr)) (Version: 37.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation) Nero Burning ROM 10 (HKLM-x32\...\{7A5D731D-B4B3-490E-B339-75685712BAAB}) (Version: 10.2.11000.12.100 - Nero AG) Nero Burning ROM 10 (HKLM-x32\...\{FE83F463-7E61-4B18-9FA0-B94B90A0B6B9}) (Version: 10.5.10300 - Nero AG) Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.2.10300.0.102 - Nero AG) NVIDIA Logiciel système PhysX 9.12.0507 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0507 - NVIDIA Corporation) Outil de restauration de données VAIO (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.6.0.13140 - Sony Corporation) Panneau de configuration NVIDIA 352.86 (Version: 352.86 - NVIDIA Corporation) Hidden PMB (HKLM-x32\...\{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}) (Version: 5.5.02.12220 - Sony Corporation) PMB VAIO Edition Guide (x32 Version: 1.6.00.06030 - Sony Corporation) Hidden PMB VAIO Edition Plug-in (Version: 1.5.10.05300 - Sony Corporation) Hidden PMB VAIO Edition Plug-in (x32 Version: 1.6.00.06010 - Sony Corporation) Hidden PMB VAIO Edition Plug-in (x32 Version: 1.6.00.06140 - Sony Corporation) Hidden Prise en charge du transfert VAIO (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.4.0.14230 - Sony Corporation) Qualcomm Atheros Direct Connect (x32 Version: 3.0 - Qualcomm Atheros) Hidden Quick Web Access (HKLM-x32\...\splashtop) (Version: 1.4.6.9 - Sony Corporation) Quick Web Access (x32 Version: 1.4.6.9 - Sony Corporation) Hidden Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.92 - Realtek Semiconductor Corp.) Remote Keyboard (x32 Version: 1.1.1.03020 - Sony Corporation) Hidden Search Assistant WebSearch 1.74 (HKLM-x32\...\SP_4e24eecb) (Version: - ) SimpleTV 0.4.6 r (HKLM-x32\...\{290A2821-B1F8-4565-B49A-25F349A5B5CB}_is1) (Version: - SergeyVS) Software Informer 1.0 BETA (HKLM-x32\...\Software Informer_is1) (Version: - Informer Technologies, Inc.) Sony Corporation (Version: 1.0.0 - Default Company Name) Hidden SopCast 3.8.3 (HKLM-x32\...\SopCast) (Version: 3.8.3 - www.sopcast.com) SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden SuperCopier2 (HKLM-x32\...\SuperCopier2) (Version: - ) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden TuneUp Utilities 2012 (x32 Version: 12.0.3000.140 - TuneUp Software) Hidden TuneUp Utilities Language Pack (en-US) (x32 Version: 12.0.3000.140 - TuneUp Software) Hidden Unity Web Player (HKU\S-1-5-21-453138559-2457903269-1361715002-1000\...\UnityWebPlayer) (Version: 4.6.0f3 - Unity Technologies ApS) VAIO - Clavier à distance (HKLM-x32\...\{7396FB15-9AB4-4B78-BDD8-24A9C15D2C65}) (Version: 1.0.1.03020 - Sony Corporation) VAIO - Media Gallery (HKLM-x32\...\{FA870BF1-44A1-4B7D-93E1-C101369AF0C1}) (Version: 1.5.0.16020 - Sony Corporation) VAIO - PMB VAIO Edition Guide (HKLM-x32\...\InstallShield_{66081CDD-C1FE-415F-BB3A-F2622BA27461}) (Version: 1.6.00.06030 - Sony Corporation) VAIO Control Center (HKLM-x32\...\{72042FA6-5609-489F-A8EA-3C2DD650F667}) (Version: 4.5.0.03040 - Sony Corporation) VAIO Data Restore Tool (x32 Version: 1.6.0.13140 - Sony Corporation) Hidden VAIO Easy Connect (HKLM-x32\...\InstallShield_{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 1.1.2.01120 - Sony Corporation) VAIO Easy Connect (x32 Version: 1.1.2.01120 - Sony Corporation) Hidden VAIO Event Service (HKLM-x32\...\{73D8886A-D416-4687-B609-0D3836BA410C}) (Version: 5.5.0.03040 - Sony Corporation) VAIO Gate (HKLM-x32\...\{A7C30414-2382-4086-B0D6-01A88ABA21C3}) (Version: 2.4.2.02200 - Sony Corporation) VAIO Gate Default (HKLM-x32\...\{B7546697-2A80-4256-A24B-1C33163F535B}) (Version: 2.4.0.03240 - Sony Corporation) VAIO Hardware Diagnostics (x32 Version: 4.2.0.14280 - Sony Corporation) Hidden VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 1.0.0.14150 - Sony Corporation) VAIO Sample Contents (HKLM-x32\...\{547C9EB4-4CA6-402F-9D1B-8BD30DC71E44}) (Version: 1.4.1.09010 - Sony Corporation) VAIO Smart Network (HKLM-x32\...\{0899D75A-C2FC-42EA-A702-5B9A5F24EAD5}) (Version: 3.8.0.08120 - Sony Corporation) VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.0.1.02280 - Sony Corporation) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VESx64 (Version: 1.0.0 - Sony Corporation) Hidden VESx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VGClientX86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VIx64 (Version: 1.0.0 - Sony Corporation) Hidden VIx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) VSNx64 (Version: 1.0.0 - Sony Corporation) Hidden VSNx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden VWSTx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden Webplayer Toolbar (HKLM-x32\...\Webplayer Toolbar) (Version: 6.8.10.0 - Webplayer) <==== ATTENTION Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation) WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) Yontoo 1.10.02 (HKLM\...\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}) (Version: 1.10.02 - Yontoo LLC) YTD Video Downloader 4.8.4 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.8.4 - GreenTree Applications SRL) <==== ATTENTION ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== Restore Points ========================= 03-07-2015 04:51:58 Windows Update 03-07-2015 05:01:14 Windows Update 03-07-2015 05:05:33 Windows Update 03-07-2015 05:14:21 Windows Update 03-07-2015 05:30:28 Windows Update 03-07-2015 18:44:36 Windows Update 03-07-2015 18:48:37 Windows Update 03-07-2015 18:53:56 Windows Update 03-07-2015 19:03:03 Windows Update 03-07-2015 19:11:18 Windows Update 03-07-2015 19:16:13 Windows Update 04-07-2015 00:30:37 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 03:34 - 2015-06-02 22:42 - 00000872 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ::1 localhost ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {046E1C4A-034B-47A5-AF37-370D2F196D6D} - System32\Tasks\{ED50884C-2522-4B08-BEF7-9FED20358EC9} => Chrome.exe Task: {084E7DAD-EE19-4F1A-B5DF-9149C9B0518D} - System32\Tasks\{ADD0183C-C1A0-4C60-AB3C-BDAE7D77EB2D} => Chrome.exe http://ui.skype.com/ui/0/7.4.64.102/fr/go/help.faq.installer?LastError=1601 Task: {094BC56F-2C87-46F1-A750-C25E2088BC7D} - System32\Tasks\{A28BA51B-7DBB-4C39-A361-AA1FD15A7FCC} => pcalua.exe -a "E:\LOGICIEL 2012\deepburner_gravage.exe" -d "E:\LOGICIEL 2012" Task: {0A3A49F9-DA40-47C1-99C7-A4F9BF35B7F4} - System32\Tasks\{5AC9F279-5A58-4B64-AE5C-7155A16FB42D} => pcalua.exe -a "E:\LOGICIEL 2012\Avira Antivirus Premium 2012 12.0.0.114 Incl.Keys-{Aru}\Avira Antivirus Premium 2012 12.0.0.114 Incl.Key-{Aru}\AVIRA_11.05.2012\Avira AntiVir Premium, Version 10.exe" -d "E:\LOGICIEL 2012\Avira Antivirus Premium 2012 12.0.0.114 Incl.Keys-{Aru}\Avira Antivirus Premium 2012 12.0.0.114 Incl.Key-{Aru}\AVIRA_11.05.2012" Task: {0E3C609C-73B6-4B33-98AC-343E7640FD2A} - System32\Tasks\{FC6CD2EF-E5B1-4DCF-8824-E1D69AE1B87C} => Chrome.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=5.5.0.117&LastError=12007 Task: {1E3539C0-20C2-481D-B9D9-DC6610B9957F} - System32\Tasks\{260482BE-97A9-4524-A9D9-B00C1C541BF8} => Chrome.exe http://ui.skype.com/ui/0/7.5.80.101/fr/go/help.faq.installer?LastError=1601 Task: {2729DF6C-7DB4-485F-A993-6C1FC8D56D63} - System32\Tasks\Sony Corporation\VAIO Gate\StartExecuteProxy => C:\Program Files\Sony\VAIO Gate\ExecutionProxy.exe [2012-02-20] (Sony Corporation) Task: {2E3014D2-F8A9-4939-B43C-C1F13D2618D9} - System32\Tasks\wp_update => C:\Users\nadhir\AppData\Roaming\~ippsmqm.exe <==== ATTENTION Task: {2FE63182-DE24-4E20-BC20-35F404FDAFE0} - System32\Tasks\{2435FC0F-5117-441E-A5FB-F25DC78A098D} => Chrome.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=7.5.0.101&LastError=12007 Task: {3186CB49-882D-4471-BB7A-A42163E32D5A} - System32\Tasks\Sony Corporation\VAIO Smart Network\VSN Logon Start => C:\Program Files\Sony\VAIO Smart Network\VSNClient Task: {31CA79DC-1644-4200-965B-1213A2999D5B} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe Task: {33A51F9D-19EC-425D-9A96-FDBD84BAD6AE} - System32\Tasks\Uninstaller_SkipUac_nadhir => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe Task: {40953E90-F23E-4D27-A36B-74A7F3B8CBD9} - System32\Tasks\{A1612F9F-A3C5-47B5-89F7-38BBB8DC0C0D} => pcalua.exe -a C:\Users\nadhir\Desktop\LockFolder.XP.3.7.7\lockfldr.exe -d C:\Users\nadhir\Desktop\LockFolder.XP.3.7.7 Task: {49296CA6-EB83-493B-8F9C-1BD2BC7B1AA8} - System32\Tasks\{C0F5BCBA-4231-46A7-AE04-C60EDFF53802} => Chrome.exe http://ui.skype.com/ui/0/7.1.0.105/fr/go/help.faq.installer?source=lightinstaller&LastError=1601 Task: {4D62491E-2C9B-4851-B7A5-BC42B9750E39} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-13] (Piriform Ltd) Task: {4DAA66E6-BB02-4573-A15D-A8EF5B3350D2} - System32\Tasks\ASCU8_SkipUac_nadhir => C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASC.exe Task: {59C80EC1-B7CB-47A8-96FC-021BC4A7B55F} - System32\Tasks\{F3D0CC24-D84D-4146-B2A9-9D2DC3B5B3E2} => Chrome.exe Task: {5B628F10-8FF1-436A-83FF-D4BC51D3D257} - System32\Tasks\{AB3D3CE4-3BA3-4FF7-A63A-28CFC1F8C2DA} => Chrome.exe Task: {6AB53A40-5053-48EF-A2D1-4014E7D3E656} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2014-02-28] (Sony Corporation) Task: {6C177BC0-5C73-40E5-A2EC-FA7B5BBA65A2} - System32\Tasks\{2E7EFDA2-7F82-4DF7-9563-F3A17AE0F1A7} => pcalua.exe -a "C:\Program Files (x86)\F-Secure\Uninstall\fsuninst.exe" -c /UninstRegKey:"F-Secure HIPS" Task: {6F0B81EB-CD53-4A1F-8942-71EDA60759B3} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-02-20] (Sony Corporation) Task: {74F9AE2F-58E7-444E-A04B-2DFD15888D8C} - System32\Tasks\{ABCCDA43-8656-4B96-829A-E007DE5D57CD} => pcalua.exe -a "E:\LOGICIEL 2012\Avira.internet.security.12.0.0.760\avira_antivir_personal_free.exe" -d "E:\LOGICIEL 2012\Avira.internet.security.12.0.0.760" Task: {7C7023EB-C749-4AF9-80FB-76D830972571} - System32\Tasks\{62A3B0A9-BC12-4800-8226-2125173BADA4} => Chrome.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=5.5.0.117&LastError=12007 Task: {7DD14FD8-FEFE-4CFA-8F14-8D13ECB62CA8} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2014-03-01] (Sony Corporation) Task: {8082CAB2-BE7F-4133-99D2-AD0926D67D0D} - System32\Tasks\{95523A54-A363-4C4C-AECB-00673B077ED3} => Chrome.exe Task: {83BD0A14-E824-4FE3-8C19-02F5A5328B09} - System32\Tasks\{D7E6C59C-59E1-4E8E-A7F4-6F26C78E967F} => Chrome.exe http://ui.skype.com/ui/0/6.16.0.105/fr/go/help.faq.installer?LastError=1601 Task: {89C770EF-229D-428F-BF77-222C104CA264} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate Restart => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-02-20] (Sony Corporation) Task: {8A0F8525-034E-43EA-A39B-088DCD141744} - System32\Tasks\{6ED4F819-8C22-4C17-828D-EBB97E4773CE} => Chrome.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=6.22.0.107&LastError=12007 Task: {8C1804A1-CB7E-4C68-AC66-7D69085271C2} - System32\Tasks\{550338D9-6D08-42AA-9E0D-4DBBC2F6002F} => Chrome.exe http://ui.skype.com/ui/0/6.22.0.107/fr/go/help.faq.installer?source=lightinstaller&LastError=1601 Task: {92DB03F3-0D65-42E0-92D8-DB0C532210BA} - System32\Tasks\{876201B2-94BD-4ABD-BFF7-94AC3FBC4E21} => pcalua.exe -a C:\Users\nadhir\Downloads\eMule0.50a-Installer.exe -d C:\Users\nadhir\Downloads Task: {93EEDF7A-E59E-4F52-ADB9-067170421C43} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2011-02-15] (Sony Corporation) Task: {96A47091-C37D-420C-8351-96B05B5E6E0F} - System32\Tasks\Driver Booster Scan => C:\Program Files (x86)\IObit\Driver Booster\Scheduler.exe Task: {97A6B0ED-9A95-4AB7-935A-39328F06C184} - \YourFile DownloaderUpdate No Task File <==== ATTENTION Task: {A55BC72A-4383-4B61-8F3D-4B3410FF1395} - System32\Tasks\Driver Booster SkipUAC (nadhir) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {A7119619-C5BA-4506-8388-542ADFC52DEB} - System32\Tasks\{FCF7F1F0-EE6F-4F61-ACBA-1EC34E98B0E1} => Chrome.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=7.2.0.103&LastError=404 Task: {A80ADA1B-B928-48AF-B04A-1D2436648C32} - System32\Tasks\{E4B61737-D23E-4195-96DB-16275F49BE26} => Chrome.exe http://ui.skype.com/ui/0/7.4.64.102/fr/go/help.faq.installer?LastError=1601 Task: {A91539C4-7488-46BA-9830-560C52DE070E} - System32\Tasks\{5EE79BE5-826F-4BBF-BBFA-054B8A3172E8} => Iexplore.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=6.22.64.107&LastError=12002 Task: {AB6B3885-7937-478B-A7CC-4CA2132CA1EC} - System32\Tasks\{EAC0F65C-2D53-4688-9049-A9BF58590DF3} => Chrome.exe http://ui.skype.com/ui/0/7.4.64.102/fr/go/help.faq.installer?LastError=1601 Task: {ABE37C2E-99B7-4476-A951-ED019CDC366F} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe Task: {B56C8B1E-0E4B-49BB-85DB-A8585FFFC6D9} - System32\Tasks\{939781F3-64B2-413D-9AC5-05D2951A6C9A} => Iexplore.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=6.22.64.107&LastError=12002 Task: {BFED68B4-56EC-4C64-89AA-0F7009DEC881} - System32\Tasks\{DB12F429-50BF-435B-B177-3C4AF16BB6DD} => Chrome.exe http://ui.skype.com/ui/0/5.9.0.115/fr/go/help.faq.installer?LastError=1618 Task: {C5477622-5D61-4E68-9793-9CA8101AD205} - System32\Tasks\{ED959750-2ACA-48BF-9539-D3EB0A0B45EF} => Iexplore.exe http://www.skype.com/go/downloading?source=lightinstaller&ver=6.22.0.107&LastError=12002 Task: {C671AE3B-F6FD-44F1-AEB2-33CDE6C203CE} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [2014-02-28] (Sony Corporation) Task: {D20CCA1F-37EB-45E5-B0CE-27B1B3A6C9B2} - System32\Tasks\{088D7F54-4D13-491A-BDFD-D18190FCE5EA} => Iexplore.exe http://ui.skype.com/ui/0/6.22.0.107/fr/go/help.faq.installer?LastError=1601 Task: {D6FB48BA-7140-4BF0-BBD0-6CE252BA4FF4} - System32\Tasks\{0362FBFD-CC7C-48EF-BB50-04E263361C1D} => Chrome.exe http://ui.skype.com/ui/0/6.16.0.105/fr/go/help.faq.installer?LastError=1601 Task: {DC03360F-2639-4D27-B61C-E0DB68BD2C17} - System32\Tasks\Driver Booster Update => C:\Program Files (x86)\IObit\Driver Booster\AutoUpdate.exe Task: {E69998E1-B89F-4834-BB25-F8BC6FD0DF12} - System32\Tasks\{B2648F7F-6B14-4EF4-B457-34467795B10B} => Chrome.exe http://ui.skype.com/ui/0/7.6.0.103/fr/go/help.faq.installer?source=lightinstaller&LastError=1601 Task: {FABB4603-D6E4-4F8E-8236-C55DE2BFE1B0} - System32\Tasks\Driver Booster SkipUAC (Système) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {FBC994AA-EC4C-4C7B-A3D5-C93AE4DA0E61} - System32\Tasks\{BEE744D4-C520-4A6D-B1FB-6FDBBF172B37} => pcalua.exe -a "C:\Program Files (x86)\Lock Folder XP\Uninstall.exe" -c "C:\Program Files (x86)\Common Files\Everstrike Software\Lock Folder XP\install.log" -u ==================== Loaded Modules (Whitelisted) ============== 2012-05-25 04:25 - 2015-05-12 04:30 - 00116368 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2012-09-09 12:34 - 2015-06-29 01:05 - 00655712 _____ () C:\ProgramData\Dim@net\OnlineUpdate\ouc.exe 2011-03-14 16:27 - 2011-03-14 16:27 - 00346976 _____ () C:\ProgramData\DatacardService\HWDeviceService64.exe 2014-04-13 22:41 - 2014-04-13 22:41 - 00159768 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\loggingserver.exe 2015-03-13 14:54 - 2015-03-13 14:54 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00514048 _____ () C:\Program Files (x86)\Dim@net\Dim@net.exe 2012-07-03 11:05 - 2012-07-03 11:04 - 00011362 _____ () C:\ProgramData\Dim@net\OnlineUpdate\mingwm10.dll 2012-07-03 11:05 - 2012-07-03 11:04 - 00043008 _____ () C:\ProgramData\Dim@net\OnlineUpdate\libgcc_s_dw2-1.dll 2012-07-03 11:05 - 2012-07-03 11:04 - 02415104 _____ () C:\ProgramData\Dim@net\OnlineUpdate\QtCore4.dll 2012-07-03 11:05 - 2012-07-03 11:04 - 01148416 _____ () C:\ProgramData\Dim@net\OnlineUpdate\QtNetwork4.dll 2012-07-03 11:05 - 2012-07-03 11:04 - 00835072 _____ () C:\ProgramData\Dim@net\OnlineUpdate\QueryStrategy.dll 2012-07-03 11:05 - 2012-07-03 11:04 - 00398336 _____ () C:\ProgramData\Dim@net\OnlineUpdate\QtXml4.dll 2011-09-24 13:47 - 2011-03-05 15:42 - 00013824 _____ () C:\Program Files (x86)\Sony\VAIO Event Service\VESBasePS.dll 2014-04-13 22:41 - 2014-04-13 22:41 - 00519704 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.0.5\log4cplusU.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00431104 _____ () C:\Program Files (x86)\Dim@net\core.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00264192 _____ () C:\Program Files (x86)\Dim@net\sdk.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 02415104 _____ () C:\Program Files (x86)\Dim@net\QtCore4.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00011362 _____ () C:\Program Files (x86)\Dim@net\mingwm10.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00043008 _____ () C:\Program Files (x86)\Dim@net\libgcc_s_dw2-1.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 09515520 _____ () C:\Program Files (x86)\Dim@net\QtGui4.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00382464 _____ () C:\Program Files (x86)\Dim@net\Proxy.DLL 2015-06-29 01:05 - 2015-06-29 01:05 - 00218112 _____ () C:\Program Files (x86)\Dim@net\Common.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00135168 _____ () C:\Program Files (x86)\Dim@net\Trace.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00545280 _____ () C:\Program Files (x86)\Dim@net\PluginContainer.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00238080 _____ () C:\Program Files (x86)\Dim@net\AtCodec.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00304128 _____ () C:\Program Files (x86)\Dim@net\DeviceSrvPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00238592 _____ () C:\Program Files (x86)\Dim@net\NetSrvPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00133120 _____ () C:\Program Files (x86)\Dim@net\OSDialup.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00161792 _____ () C:\Program Files (x86)\Dim@net\XCodec.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00157184 _____ () C:\Program Files (x86)\Dim@net\DataServicePlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00176128 _____ () C:\Program Files (x86)\Dim@net\CallSrvPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00264704 _____ () C:\Program Files (x86)\Dim@net\AddrBookSrvPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00217600 _____ () C:\Program Files (x86)\Dim@net\SmsSrvPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00142336 _____ () C:\Program Files (x86)\Dim@net\USSDSrvPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00156672 _____ () C:\Program Files (x86)\Dim@net\STKSrvPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00339968 _____ () C:\Program Files (x86)\Dim@net\DeviceAppPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00065536 _____ () C:\Program Files (x86)\Dim@net\OSPowerMgr.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00114688 _____ () C:\Program Files (x86)\Dim@net\Win7Support.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 01078272 _____ () C:\Program Files (x86)\Dim@net\AddrBookPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00670720 _____ () C:\Program Files (x86)\Dim@net\SmsAppPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00182272 _____ () C:\Program Files (x86)\Dim@net\CallAppPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00547840 _____ () C:\Program Files (x86)\Dim@net\CallLogSrvPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00158720 _____ () C:\Program Files (x86)\Dim@net\NetConnectSrvPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00211968 _____ () C:\Program Files (x86)\Dim@net\DialUpPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00102400 _____ () C:\Program Files (x86)\Dim@net\OSAdapt.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00180736 _____ () C:\Program Files (x86)\Dim@net\NDISPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00131072 _____ () C:\Program Files (x86)\Dim@net\OSNDIS.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 01101824 _____ () C:\Program Files (x86)\Dim@net\NDISAPI.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00278528 _____ () C:\Program Files (x86)\Dim@net\NetInfoSrvPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00062976 _____ () C:\Program Files (x86)\Dim@net\OSCall.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00539648 _____ () C:\Program Files (x86)\Dim@net\DeviceMgrUIPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00398336 _____ () C:\Program Files (x86)\Dim@net\QtXml4.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00184832 _____ () C:\Program Files (x86)\Dim@net\XFramePlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00123392 _____ () C:\Program Files (x86)\Dim@net\ATR2SMgr.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00309760 _____ () C:\Program Files (x86)\Dim@net\StatusBarMgrPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00117760 _____ () C:\Program Files (x86)\Dim@net\LayoutPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00443392 _____ () C:\Program Files (x86)\Dim@net\DialupUIPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00093184 _____ () C:\Program Files (x86)\Dim@net\NotifyServicePlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00335360 _____ () C:\Program Files (x86)\Dim@net\NetConnectPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00297472 _____ () C:\Program Files (x86)\Dim@net\MenuMgrPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00419328 _____ () C:\Program Files (x86)\Dim@net\USSDUIPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00487936 _____ () C:\Program Files (x86)\Dim@net\NetInfoUIExPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00827392 _____ () C:\Program Files (x86)\Dim@net\SMSUIPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00771584 _____ () C:\Program Files (x86)\Dim@net\AddrBookUIPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00212480 _____ () C:\Program Files (x86)\Dim@net\ToolBarMgrPlugin.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00693760 _____ () C:\Program Files (x86)\Dim@net\LiveUpdateInterface.DLL 2015-06-29 01:05 - 2015-06-29 01:05 - 01148416 _____ () C:\Program Files (x86)\Dim@net\QtNetwork4.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00082944 _____ () C:\Program Files (x86)\Dim@net\plugins\imageformats\qgif4.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00081920 _____ () C:\Program Files (x86)\Dim@net\plugins\imageformats\qico4.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00192000 _____ () C:\Program Files (x86)\Dim@net\plugins\imageformats\qjpeg4.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00350720 _____ () C:\Program Files (x86)\Dim@net\plugins\imageformats\qmng4.dll 2015-06-29 01:05 - 2015-06-29 01:05 - 00370176 _____ () C:\Program Files (x86)\Dim@net\plugins\imageformats\qtiff4.dll 2014-10-20 23:57 - 2014-10-20 23:57 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\88e3415c925c0dae49f82c5e2c485dbd\IsdiInterop.ni.dll 2011-09-24 13:35 - 2011-10-17 14:08 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Windows:{4B9A1497-0817-47C4-9612-D6A1C53ACF57} AlternateDataStreams: C:\ProgramData\TEMP:07BF512B ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinFLAdrv.sys => ""="Driver" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com IE restricted site: HKU\.DEFAULT\...\008k.com -> 008k.com IE restricted site: HKU\.DEFAULT\...\00hq.com -> 00hq.com IE restricted site: HKU\.DEFAULT\...\0190-dialers.com -> 0190-dialers.com IE restricted site: HKU\.DEFAULT\...\01i.info -> 01i.info IE restricted site: HKU\.DEFAULT\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com IE restricted site: HKU\.DEFAULT\...\05p.com -> 05p.com IE restricted site: HKU\.DEFAULT\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com IE restricted site: HKU\.DEFAULT\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com IE restricted site: HKU\.DEFAULT\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com IE restricted site: HKU\.DEFAULT\...\0calories.net -> 0calories.net IE restricted site: HKU\.DEFAULT\...\0cj.net -> 0cj.net IE restricted site: HKU\.DEFAULT\...\0scan.com -> 0scan.com IE restricted site: HKU\.DEFAULT\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> 1-domains-registrations.com IE restricted site: HKU\.DEFAULT\...\1-se.com -> 1-se.com IE restricted site: HKU\.DEFAULT\...\1001movie.com -> 1001movie.com IE restricted site: HKU\.DEFAULT\...\1001night.biz -> 1001night.biz IE restricted site: HKU\.DEFAULT\...\100gal.net -> 100gal.net IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> 100sexlinks.com There are 4790 more restricted sites. ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-453138559-2457903269-1361715002-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\nadhir\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 41.226.21.58 - 196.203.82.4 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe" MSCONFIG\startupreg: Advanced SystemCare Ultimate => "C:\Program Files (x86)\IObit\Advanced SystemCare Ultimate 8\ASCTray.exe" /Auto MSCONFIG\startupreg: ApnTBMon => MSCONFIG\startupreg: chromium => MSCONFIG\startupreg: E09FXLRD_1289972 => MSCONFIG\startupreg: E09FXLRD_18703552 => MSCONFIG\startupreg: E09FXLRD_19771956 => MSCONFIG\startupreg: E09FXLRD_22422320 => MSCONFIG\startupreg: E09FXLRD_2680611 => MSCONFIG\startupreg: E09FXLRD_5056850 => MSCONFIG\startupreg: E09FXLRD_5320008 => MSCONFIG\startupreg: E09FXLRD_8431963 => MSCONFIG\startupreg: GoogleChromeAutoLaunch_832A3D8FB1BCA1E02F02CEAE7E4 => "c:\program files (x86)\google\chrome\application\chrome.exe" --no-startup-window MSCONFIG\startupreg: GoogleChromeAutoLaunch_832A3D8FB1BCA1E02F02CEAE7E4A65CD => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window MSCONFIG\startupreg: iMesh => MSCONFIG\startupreg: pdiface => MSCONFIG\startupreg: SearchSettings => MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun MSCONFIG\startupreg: uTorrent => MSCONFIG\startupreg: VNT => c:\program files (x86)\vnt\vntldr.exe ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{C3771ECA-485F-4FD2-B26C-229A270D9469}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{E82B2691-5B12-42A0-A83D-C5ED6A2D06D5}] => (Allow) LPort=2869 FirewallRules: [{284481D5-B7DF-4A3D-99B9-ECEB5B1CD7CF}] => (Allow) LPort=1900 FirewallRules: [{E1234737-0F21-456C-904A-5BC4AB521634}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{167ACC5C-C654-47E4-BD17-9DB06A6B91A3}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{EB41E855-3F93-4035-8F92-66589FBB271E}] => (Allow) C:\Program Files\Sony\VAIO Smart Network\WFDA\DCDhcpService.exe FirewallRules: [{0E4B62C5-64AA-48CA-83BB-3D72F99AA541}] => (Allow) C:\Program Files\Sony\VAIO Smart Network\WFDA\WiFiDirectApplication.exe FirewallRules: [{AA15C603-55E3-422A-A0DC-6F69F67954B8}] => (Allow) C:\Program Files\Sony\VAIO Smart Network\WFDA\WiFiDirectApplication.exe FirewallRules: [{804DC20D-35A0-43BD-AA8A-4F7D36281A1B}] => (Allow) C:\Program Files\Sony\VAIO Smart Network\WFDA\WiFiDirectApplication.exe FirewallRules: [TCP Query User{98333BC0-36EC-4E9D-8343-EF93DD570C2F}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe FirewallRules: [UDP Query User{41598530-9F46-455C-826F-547B5A123842}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe FirewallRules: [TCP Query User{816B1E7B-8FD1-46EA-9DC7-7D23673C6512}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe FirewallRules: [UDP Query User{8B1212CF-3F45-47DD-B71A-22E2EABB7C04}C:\program files (x86)\free download manager\fdm.exe] => (Allow) C:\program files (x86)\free download manager\fdm.exe FirewallRules: [{995F8F5B-858B-4529-9C8D-39D104378643}] => (Allow) C:\Users\nadhir\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{F59996E9-3A9B-4C08-94EE-0EE9FDED8AF8}] => (Allow) C:\Users\nadhir\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{3F66C777-B80B-4B58-9F1D-9CE25E6E0A73}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{867FBB87-BFB6-448C-BB23-FDEECBCB8D1D}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{254B87DE-4503-42E4-9FF4-47A1CCADE533}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{366ED7F5-FF34-474C-A9C5-F9068CCB2470}] => (Allow) C:\Users\nadhir\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{96150CDC-DE6E-432B-8AC9-E92781D475D2}] => (Allow) C:\Users\nadhir\AppData\Roaming\uTorrent\uTorrent.exe FirewallRules: [{63405FA5-E8C7-4040-B342-5E21F7967C35}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{65B8B2E5-D89E-4AF3-B175-E5F4C2D61DA3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{9A9B8BCA-C7C4-4BA9-91AB-3260735FDC8F}C:\users\nadhir\appdata\roaming\utorrent\updates\3.4.3_40097.exe] => (Block) C:\users\nadhir\appdata\roaming\utorrent\updates\3.4.3_40097.exe FirewallRules: [UDP Query User{2072D084-D6F5-47CC-BE84-27A4167EB1A1}C:\users\nadhir\appdata\roaming\utorrent\updates\3.4.3_40097.exe] => (Block) C:\users\nadhir\appdata\roaming\utorrent\updates\3.4.3_40097.exe FirewallRules: [SNMP-In-UDP] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-Out-UDP] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-In-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe FirewallRules: [SNMP-Out-UDP-NoScope] => (Allow) %SystemRoot%\system32\snmp.exe ==================== Faulty Device Manager Devices ============= Name: Qualcomm Atheros AR3011 Bluetooth(R) Adapter Description: Qualcomm Atheros AR3011 Bluetooth(R) Adapter Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974} Manufacturer: Qualcomm Atheros Communications Service: BTHUSB Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. ==================== Event log errors: ========================= Application errors: ================== Error: (07/03/2015 11:31:45 PM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Pour information uniquement. Error: La connexion avec le serveur a été interrompue anormalement ErrorCode: 14007(0x36b7). Error: (07/03/2015 11:20:44 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/03/2015 08:29:36 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework64\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 08:28:51 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 08:28:51 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 07:06:46 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework64\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 07:05:27 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 07:05:27 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 06:52:58 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 06:50:54 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory System errors: ============= Error: (07/04/2015 00:31:35 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070641 : Mise à jour pour Microsoft Office 2010 (KB2986257) Édition 32 bits. Error: (07/04/2015 00:31:35 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070641 : Mise à jour pour Microsoft Office 2010 (KB2883019) Édition 32 bits. Error: (07/04/2015 00:31:35 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070643 : Mise à jour de Skype pour Bureau Windows 6.11 (KB2876229). Error: (07/04/2015 00:31:28 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070643 : Mise à jour recommandée de Skype pour Bureau Windows 7.0 (kb2876229). Error: (07/04/2015 00:31:12 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Avira Real-Time Protection s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Error: (07/04/2015 00:31:09 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: AUTORITE NT) Description: Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070641 : Mise à jour pour Microsoft Filter Pack 2.0 (KB2881026) Édition 32 bits. Error: (07/03/2015 11:21:40 PM) (Source: BTHUSB) (EventID: 17) (User: ) Description: La carte locale Bluetooth a échoué d'une manière indéterminée et ne sera pas utilisée. Le pilote a été déchargée. Error: (07/03/2015 11:20:55 PM) (Source: BTHUSB) (EventID: 17) (User: ) Description: La carte locale Bluetooth a échoué d'une manière indéterminée et ne sera pas utilisée. Le pilote a été déchargée. Error: (07/03/2015 11:19:52 PM) (Source: BTHUSB) (EventID: 17) (User: ) Description: La carte locale Bluetooth a échoué d'une manière indéterminée et ne sera pas utilisée. Le pilote a été déchargée. Error: (07/03/2015 11:19:50 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Service d'activation des processus Windows s’est arrêté avec l’erreur : %%3 Microsoft Office: ========================= Error: (07/03/2015 11:31:45 PM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Error: La connexion avec le serveur a été interrompue anormalement ErrorCode: 14007(0x36b7). Error: (07/03/2015 11:20:44 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/03/2015 08:29:36 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework64\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 08:28:51 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 08:28:51 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 07:06:46 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework64\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 07:05:27 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 07:05:27 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 06:52:58 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory Error: (07/03/2015 06:50:54 PM) (Source: .NET Runtime) (EventID: 1024) (User: ) Description: Shim database version C:\Windows\Microsoft.NET\Framework\v4.0.30319 doesn't have a matching runtime directory CodeIntegrity Errors: =================================== Date: 2013-11-22 21:18:01.017 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00216_002\avcuf64.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2013-11-22 20:30:41.184 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender 2013\active virus control\Avc3_00216_002\avcuf64.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2013-11-22 19:58:44.691 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2013-11-22 19:43:56.762 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2013-11-22 18:47:21.975 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2013-11-22 18:12:43.748 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2013-11-22 17:25:46.217 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2013-11-22 17:20:05.778 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2013-11-22 17:13:34.879 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. Date: 2013-11-22 16:56:41.100 Description: Le module d’intégrité du code ne peut pas vérifier l’intégrité image du fichier \Device\HarddiskVolume4\Program Files\Bitdefender\Bitdefender 2013\active virus control\avc3_000_001\avcuf64.dll car le jeu de hachages d’images par page n’a pas été trouvé sur le système. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3-2330M CPU @ 2.20GHz Percentage of memory in use: 45% Total physical RAM: 4077.86 MB Available physical RAM: 2221.03 MB Total Pagefile: 8153.93 MB Available Pagefile: 5606 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:86.37 GB) (Free:41.18 GB) NTFS Drive e: () (Fixed) (Total:368.65 GB) (Free:181.06 GB) NTFS Drive f: (Dim@net) (CDROM) (Total:0.03 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7C554B97) Partition 1: (Not Active) - (Size=10.6 GB) - (Type=27) Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=86.4 GB) - (Type=07 NTFS) Partition 4: (Not Active) - (Size=368.6 GB) - (Type=OF Extended) ==================== End of log ============================