Additional scan result of Farbar Recovery Scan Tool (x86) Version: 12-07-2015 Ran by laet at 2015-07-14 01:17:40 Running from C:\Users\laet\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-213642649-178377738-3602818869-500 - Administrator - Disabled) HomeGroupUser$ (S-1-5-21-213642649-178377738-3602818869-1002 - Limited - Enabled) Invité (S-1-5-21-213642649-178377738-3602818869-501 - Limited - Disabled) laet (S-1-5-21-213642649-178377738-3602818869-1001 - Administrator - Enabled) => C:\Users\laet ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Microsoft Security Essentials (Enabled - Up to date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A} AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Microsoft Security Essentials (Enabled - Up to date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 9.20 (HKLM\...\7-Zip) (Version: - ) Adobe AIR (HKLM\...\Adobe AIR) (Version: 14.0.0.178 - Adobe Systems Incorporated) Adobe Flash Player 14 ActiveX (HKLM\...\{C4B95D2E-BDE6-412D-AF7B-EC43A298C55B}) (Version: 14.0.0.145 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 18.0.0.194 - Adobe Systems Incorporated) Adobe Help Manager (HKLM\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated) Adobe Photoshop CS5 (HKLM\...\{15FEDA5F-141C-4127-8D7E-B962D1742728}) (Version: 12.0 - Adobe Systems Incorporated) Adobe Widget Browser (HKLM\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.) Adobe® Content Viewer (HKLM\...\com.adobe.dmp.contentviewer) (Version: 3.4.3 - Adobe Systems, Incorporated) ANT Drivers Installer x86 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden Apple Application Support (HKLM\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C0CC75CD-F5B7-46AD-B016-17C0F5171718}) (Version: 8.0.0.23 - Apple Inc.) Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team) Avast Free Antivirus (HKLM\...\Avast) (Version: 10.2.2218 - AVAST Software) bl (Version: 1.0.0 - Your Company Name) Hidden Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.) CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform) Cinema_Plus.v2.1V13.07 (HKLM\...\Cinema_Plus.v2.1V13.07) (Version: 1.36.01.22 - Cinema_PlusV13.07) <==== ATTENTION Dropbox (HKU\S-1-5-21-213642649-178377738-3602818869-1001\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.) Elevated Installer (Version: 3.2.27.0 - Garmin Ltd or its subsidiaries) Hidden FormatFactory 3.3.5.0 (HKLM\...\FormatFactory) (Version: 3.3.5.0 - Format Factory) Foxit Cloud (HKLM\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 2.6.36.116 - Foxit Software Inc.) Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 6.2.3.815 - Foxit Corporation) Garmin Express (HKLM\...\{855d8086-4275-4bd3-a7a8-b44da3a56d7a}) (Version: 3.2.27.0 - Garmin Ltd or its subsidiaries) Garmin Express (Version: 3.2.27.0 - Garmin Ltd or its subsidiaries) Hidden Garmin Express Tray (Version: 3.2.27.0 - Garmin Ltd or its subsidiaries) Hidden Google Chrome (HKLM\...\Google Chrome) (Version: 43.0.2357.132 - Google Inc.) Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (Version: 1.3.27.5 - Google Inc.) Hidden iTunes (HKLM\...\{F32DC846-4457-40A8-BECA-BCC0E960BC53}) (Version: 11.4.0.18 - Apple Inc.) Java 8 Update 45 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) LibreOffice 4.3.0.4 (HKLM\...\{5C005E2A-AEAE-4DF7-B7CA-1E6DCDD2AEA4}) (Version: 4.3.0.4 - The Document Foundation) MAGIX Speed burnR (MSI) (HKLM\...\MAGIX_{3A35E22E-3CBA-47FF-8F11-4DBEF21EC27A}) (Version: 7.0.1.27 - MAGIX AG) MAGIX Speed burnR (MSI) (Version: 7.0.1.27 - MAGIX AG) Hidden Microsoft .NET Framework 4.5.2 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Mozilla Firefox 31.8.0 ESR (x86 fr) (HKLM\...\Mozilla Firefox 31.8.0 ESR (x86 fr)) (Version: 31.8.0 - Mozilla) Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) NETGEAR WNA3100 wireless USB 2.0 adapter (HKLM\...\{C2425F91-1F7B-4037-9A05-9F290184798D}) (Version: 1.01.206 - NETGEAR) Notepad++ (HKLM\...\Notepad++) (Version: 6.6.8 - Notepad++ Team) Package de pilotes Windows - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.) Package de pilotes Windows - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software) PDF Settings CS5 (Version: 10.0 - Adobe Systems Incorporated) Hidden ph (Version: 1.0.0 - Your Company Name) Hidden Pilote vidéo Pinnacle (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.030 - Pinnacle Systems) Pinnacle Studio 15 (HKLM\...\{1362E602-9625-42D3-B57F-CDA9D26F9DA8}) (Version: 15.0.0.7593 - Pinnacle Systems) Python 2.7.3 (HKLM\...\{C0C31BCC-56FB-42A7-8766-D29E1BD74C7C}) (Version: 2.7.3150 - Python Software Foundation) qBittorrent 3.1.9.2 (HKLM\...\qbittorrent) (Version: 3.1.9.2 - The qBittorrent project) Samplitude Music Studio 2013 (HKLM\...\MAGIX_{30AEB310-7BAE-4735-96EA-5536B9CFE334}) (Version: 19.0.0.15 - MAGIX AG) Samplitude Music Studio 2013 (Version: 19.0.0.15 - MAGIX AG) Hidden SpyHunter 4 (HKLM\...\SpyHunter) (Version: 4.20.9.4533 - Enigma Software Group, LLC) VirtualDJ PRO Full (HKLM\...\{C515E2A3-4878-4C85-A519-52630C7AB08B}) (Version: 7.3 - Atomix Productions) VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN) Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation) WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{00b7e0ab-817a-44ad-a04b-d1148d524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{5B004CDE-0211-469C-B9B5-0552E7E63917}\InprocServer32 -> C:\Program Files\Pinnacle\Shared Files\Filter\MarvinAVRenderer.ax (Pinnacle Systems GmbH) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{77D8C8C7-6B46-4429-B876-DBC006C96EB1}\InprocServer32 -> C:\Program Files\Pinnacle\Shared Files\Filter\MarvinAVRenderer.ax (Pinnacle Systems GmbH) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{7c6e29bc-8b8b-4c3d-859e-af6cd158be0f}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969c0-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969c1-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969c2-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969c3-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969c4-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969c5-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969c6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969c8-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969c9-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969ca-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{88d969d6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{CD37ED08-860C-4B86-AD25-5587D8386587}\InprocServer32 -> C:\Program Files\Pinnacle\Shared Files\Filter\MarvinAVRenderer.ax (Pinnacle Systems GmbH) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> D:\Windows 7 complete activator is Here _ Windows 7 Loader v 2.2.2 by Daz.exe No File CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\laet\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\laet\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\laet\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-213642649-178377738-3602818869-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\laet\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll (Dropbox, Inc.) ==================== Restore Points ========================= 02-07-2015 13:04:53 Point de contrôle planifié 03-07-2015 12:59:45 Windows Update 08-07-2015 11:53:16 Windows Update 12-07-2015 21:03:42 Windows Update ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:04 - 2015-02-27 20:20 - 00001204 ____N C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost 127.0.0.1 activate.adobe.com 127.0.0.1 3dns-3.adobe.com 127.0.0.1 adobe-dns-2.adobe.com 127.0.0.1 adobe-dns-3.adobe.com 127.0.0.1 ereg.wip3.adobe.com 127.0.0.1 activate-sea.adobe.com 127.0.0.1 wip3.adobe.com 127.0.0.1 wwis-dubc1-vip60.adobe.com 127.0.0.1 activate-sjc0.adobe.com 127.0.0.1 practivate.adobe.com 127.0.0.1 ereg.adobe.com 127.0.0.1 activate.wip3.adobe.com 127.0.0.1 3dns-2.adobe.com 127.0.0.1 adobe-dns.adobe.com ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0A30B979-0033-4B38-B28C-370EE12B1026} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-07-23] (Piriform Ltd) Task: {11ECA6A8-411F-4D01-8BDF-73D9C1E7CF0A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-07-01] (Avast Software s.r.o.) Task: {16D6D32B-78C7-45B1-B33C-DC48C894BF58} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {219DB70B-FC7B-430B-A1F3-C07ADEA80D5C} - System32\Tasks\AdobeAAMUpdater-1.0-KG-box-laet => C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated) Task: {29C613D2-1BB3-466C-894E-585706B0CD10} - System32\Tasks\GarminUpdaterTask => C:\Program Files\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-12-31] () Task: {2FCBDFBB-0A71-4BB6-8850-A2C7E6936765} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2015-07-13] (Enigma Software Group USA, LLC.) Task: {522C71D7-BD91-4A15-ACC7-3E4C3B089BF4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-21] (Google Inc.) Task: {6E16DA82-AFBA-4974-BB7B-FADC258D3946} - System32\Tasks\{CBA6FDC8-EEFD-4778-8C7B-65331C23100E} => pcalua.exe -a C:\Users\laet\Downloads\jre-8u45-windows-i586.exe -d C:\Users\laet\Downloads Task: {786D5548-D677-4B72-B81E-8668BEC73C12} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-08-21] (Google Inc.) Task: {EB4B53DA-9D10-4631-8156-A8F6EAC9B77C} - System32\Tasks\{33612E3D-4D08-40FD-A2DA-BC2434B10981} => pcalua.exe -a "C:\Program Files\Cinema_Plus.v2.1V13.07\UninstallBrw.exe" -d "C:\Program Files\Cinema_Plus.v2.1V13.07" (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-07-01 20:15 - 2015-07-01 20:15 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-07-01 20:14 - 2015-07-01 20:14 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-07-13 12:33 - 2015-07-13 12:33 - 02956288 _____ () C:\Program Files\AVAST Software\Avast\defs\15071300\algo.dll 2015-07-13 18:49 - 2015-07-13 18:49 - 02956288 _____ () C:\Program Files\AVAST Software\Avast\defs\15071301\algo.dll 2014-07-31 12:16 - 2014-07-31 12:16 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2014-07-31 12:16 - 2014-07-31 12:16 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2015-07-01 20:15 - 2015-07-01 20:15 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-07-13 16:43 - 2015-06-16 08:50 - 00281088 ___SH () C:\Program Files\CzechsXness\CzechsXness.exe 2014-08-21 14:08 - 2010-08-26 17:47 - 04577760 _____ () C:\Program Files\NETGEAR\WNA3100\WNA3100.exe 2014-08-21 14:08 - 2010-02-03 11:31 - 00282624 _____ () C:\Program Files\NETGEAR\WNA3100\WifiSvcLib.dll 2014-08-21 14:08 - 2010-08-26 17:48 - 00285152 _____ () C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe 2014-08-21 14:08 - 2010-07-09 16:38 - 00331776 _____ () C:\Program Files\NETGEAR\WNA3100\WifiLib.dll 2015-07-03 14:09 - 2015-07-03 14:09 - 03790960 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll 2015-06-25 11:49 - 2015-06-25 11:49 - 17321648 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_18_0_0_194.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-213642649-178377738-3602818869-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\laet\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{031BA346-3A8A-4D88-8D1B-B54815B83E97}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe FirewallRules: [{D462729A-1864-4A8A-8C66-72839421C5A8}] => (Allow) C:\Program Files\qBittorrent\qbittorrent.exe FirewallRules: [{E11E17D4-B029-4C3A-8651-AC0994CE7F8E}] => (Allow) C:\Program Files\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe FirewallRules: [{5A0F982B-6914-4B01-BE00-7EEF62CA76C2}] => (Allow) C:\Program Files\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe FirewallRules: [{7E69F2B4-8719-4ECF-BD0E-3F55595F35D4}] => (Allow) LPort=7935 FirewallRules: [{04DA0ADC-08E9-4C16-A6F3-DB1AD30481A1}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [TCP Query User{3681BF34-4B63-4F61-9AE4-A4A8283C4D58}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe FirewallRules: [UDP Query User{8BF6ADC6-1215-4B68-BB0C-E798967BAA33}C:\program files\qbittorrent\qbittorrent.exe] => (Allow) C:\program files\qbittorrent\qbittorrent.exe FirewallRules: [{FC984969-19FF-4ED0-9C3E-BDA9E0A8EC3F}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{071347D2-286C-4BA3-9480-D5DE26AB6947}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{047E5ACD-B6B6-4128-BD1C-00F2AE5547E2}] => (Allow) C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe FirewallRules: [{F0430B69-ACC9-44C1-92D4-0279A60E95C7}] => (Allow) C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe FirewallRules: [{646FFB46-70DD-427D-BDF0-18CC8057D522}] => (Allow) C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe FirewallRules: [{5C3CE1F8-4740-4573-BB65-ABD98D374BF8}] => (Allow) C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe FirewallRules: [{568A28CC-999E-4EA4-9AA5-769009E0441D}] => (Allow) C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe FirewallRules: [{5D5B5FF3-0997-4063-BD07-676F80785399}] => (Allow) C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe FirewallRules: [{B73C653B-A236-4A26-8F30-479D38F1496C}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{29CF11B7-984F-4466-869C-6B482FBAF9BC}] => (Allow) E:\Pinnacle Studio 15 HD Ultimate Collection - by Mick\Programs\RM.exe FirewallRules: [{7E59ECDE-8B10-4436-B125-C6CC527F404B}] => (Allow) E:\Pinnacle Studio 15 HD Ultimate Collection - by Mick\Programs\RM.exe FirewallRules: [{ADB03D96-C7C2-42B7-9507-52A0B099D381}] => (Allow) E:\Pinnacle Studio 15 HD Ultimate Collection - by Mick\Programs\Studio.exe FirewallRules: [{FF45495D-0DF6-48F2-AAAB-11AF3B257B9E}] => (Allow) E:\Pinnacle Studio 15 HD Ultimate Collection - by Mick\Programs\Studio.exe FirewallRules: [{C7B4768C-223C-4764-ABC7-028A5C4DB5CC}] => (Allow) E:\Pinnacle Studio 15 HD Ultimate Collection - by Mick\Programs\umi.exe FirewallRules: [{68437413-A2EE-401A-84CE-24160CF46C61}] => (Allow) E:\Pinnacle Studio 15 HD Ultimate Collection - by Mick\Programs\umi.exe FirewallRules: [{44413D9E-4009-4226-B333-BC8DB225371E}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{AEC3EDE1-7844-4BE0-A9C3-24AF8CED50C3}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{C2EA0D30-5F43-4C63-9D21-ED561417BC89}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Faulty Device Manager Devices ============= Name: MpKsl3901aa52 Description: MpKsl3901aa52 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: MpKsl3901aa52 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. ==================== Event log errors: ========================= Application errors: ================== Error: (07/13/2015 07:13:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Uninstall.exe_unknown, version : 0.0.0.0, horodatage : 0x55a30095 Nom du module défaillant : Uninstall.exe, version : 0.0.0.0, horodatage : 0x55a30095 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00007b59 ID du processus défaillant : 0xc2c Heure de début de l’application défaillante : 0xUninstall.exe_unknown0 Chemin d’accès de l’application défaillante : Uninstall.exe_unknown1 Chemin d’accès du module défaillant: Uninstall.exe_unknown2 ID de rapport : Uninstall.exe_unknown3 Error: (07/13/2015 07:12:54 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Uninstall.exe_unknown, version : 0.0.0.0, horodatage : 0x55a30095 Nom du module défaillant : Uninstall.exe, version : 0.0.0.0, horodatage : 0x55a30095 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00007b59 ID du processus défaillant : 0x6e0 Heure de début de l’application défaillante : 0xUninstall.exe_unknown0 Chemin d’accès de l’application défaillante : Uninstall.exe_unknown1 Chemin d’accès du module défaillant: Uninstall.exe_unknown2 ID de rapport : Uninstall.exe_unknown3 Error: (07/13/2015 07:12:33 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Uninstall.exe_unknown, version : 0.0.0.0, horodatage : 0x55a30095 Nom du module défaillant : Uninstall.exe, version : 0.0.0.0, horodatage : 0x55a30095 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00007b59 ID du processus défaillant : 0x1acc Heure de début de l’application défaillante : 0xUninstall.exe_unknown0 Chemin d’accès de l’application défaillante : Uninstall.exe_unknown1 Chemin d’accès du module défaillant: Uninstall.exe_unknown2 ID de rapport : Uninstall.exe_unknown3 Error: (07/13/2015 07:12:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Uninstall.exe_unknown, version : 0.0.0.0, horodatage : 0x55a30095 Nom du module défaillant : Uninstall.exe, version : 0.0.0.0, horodatage : 0x55a30095 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00007b59 ID du processus défaillant : 0x11b4 Heure de début de l’application défaillante : 0xUninstall.exe_unknown0 Chemin d’accès de l’application défaillante : Uninstall.exe_unknown1 Chemin d’accès du module défaillant: Uninstall.exe_unknown2 ID de rapport : Uninstall.exe_unknown3 Error: (07/13/2015 07:11:58 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Uninstall.exe_unknown, version : 0.0.0.0, horodatage : 0x55a30095 Nom du module défaillant : Uninstall.exe, version : 0.0.0.0, horodatage : 0x55a30095 Code d’exception : 0xc0000005 Décalage d’erreur : 0x00007b59 ID du processus défaillant : 0xbd4 Heure de début de l’application défaillante : 0xUninstall.exe_unknown0 Chemin d’accès de l’application défaillante : Uninstall.exe_unknown1 Chemin d’accès du module défaillant: Uninstall.exe_unknown2 ID de rapport : Uninstall.exe_unknown3 Error: (07/13/2015 06:50:19 PM) (Source: Windows Search Service) (EventID: 1019) (User: ) Description: Le service de recherche Windows n’a pas pu traiter la liste des emplacements inclus et exclus à cause de l’erreur <30, 0x80040d07, "iehistory://{S-1-5-21-213642649-178377738-3602818869-1001}/">. Error: (07/13/2015 06:49:26 PM) (Source: Windows Search Service) (EventID: 1019) (User: ) Description: Le service de recherche Windows n’a pas pu traiter la liste des emplacements inclus et exclus à cause de l’erreur <30, 0x80040d07, "iehistory://{S-1-5-21-213642649-178377738-3602818869-1001}/">. Error: (07/13/2015 06:23:54 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/13/2015 05:30:06 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/13/2015 05:12:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 System errors: ============= Error: (07/13/2015 08:13:31 PM) (Source: Disk) (EventID: 11) (User: ) Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1. Error: (07/13/2015 08:13:30 PM) (Source: Disk) (EventID: 11) (User: ) Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1. Error: (07/13/2015 06:23:34 PM) (Source: Disk) (EventID: 11) (User: ) Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1. Error: (07/13/2015 06:23:33 PM) (Source: Disk) (EventID: 11) (User: ) Description: Le pilote a détecté une erreur du contrôleur sur \Device\Harddisk1\DR1. Error: (07/13/2015 06:22:00 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\Windows\System32\bcmihvsrv.dll Error: (07/13/2015 06:22:00 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: AUTORITE NT) Description: Le module d’extensibilité WLAN s’est arrêté de façon inattendue. Chemin d’accès du module : C:\Windows\System32\bcmihvsrv.dll Error: (07/13/2015 06:21:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Service Partage réseau du Lecteur Windows Media n’a pas pu démarrer en raison de l’erreur : %%1069 Error: (07/13/2015 06:21:53 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Le service WMPNetworkSvc n’a pas pu ouvrir de session en tant que NT AUTHORITY\NetworkService avec le mot de passe actuellement configuré en raison de l’erreur suivante : %%50 Pour vous assurer que le service est configuré correctement, utilisez le composant logiciel enfichable Services dans Microsoft Management Console (MMC). Error: (07/13/2015 06:21:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service Windows Search n’a pas pu démarrer en raison de l’erreur : %%1069 Error: (07/13/2015 06:21:53 PM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Le service WSearch n’a pas pu ouvrir de session en tant que NT AUTHORITY\SYSTEM avec le mot de passe actuellement configuré en raison de l’erreur suivante : %%50 Pour vous assurer que le service est configuré correctement, utilisez le composant logiciel enfichable Services dans Microsoft Management Console (MMC). Microsoft Office: ========================= Error: (07/13/2015 07:13:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Uninstall.exe_unknown0.0.0.055a30095Uninstall.exe0.0.0.055a30095c000000500007b59c2c01d0bd8f2b4cffd2C:\Program Files\Cinema_Plus.v2.1V13.07\Uninstall.exeC:\Program Files\Cinema_Plus.v2.1V13.07\Uninstall.exe694a797b-2982-11e5-b662-002618d46738 Error: (07/13/2015 07:12:54 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Uninstall.exe_unknown0.0.0.055a30095Uninstall.exe0.0.0.055a30095c000000500007b596e001d0bd8f27b91aa5C:\Program Files\Cinema_Plus.v2.1V13.07\Uninstall.exeC:\Program Files\Cinema_Plus.v2.1V13.07\Uninstall.exe65bb570f-2982-11e5-b662-002618d46738 Error: (07/13/2015 07:12:33 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Uninstall.exe_unknown0.0.0.055a30095Uninstall.exe0.0.0.055a30095c000000500007b591acc01d0bd8f1b0952ecC:\Program Files\Cinema_Plus.v2.1V13.07\Uninstall.exeC:\Program Files\Cinema_Plus.v2.1V13.07\Uninstall.exe590a5041-2982-11e5-b662-002618d46738 Error: (07/13/2015 07:12:25 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Uninstall.exe_unknown0.0.0.055a30095Uninstall.exe0.0.0.055a30095c000000500007b5911b401d0bd8f16443eebC:\Program Files\Cinema_Plus.v2.1V13.07\Uninstall.exeC:\Program Files\Cinema_Plus.v2.1V13.07\Uninstall.exe54821f14-2982-11e5-b662-002618d46738 Error: (07/13/2015 07:11:58 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Uninstall.exe_unknown0.0.0.055a30095Uninstall.exe0.0.0.055a30095c000000500007b59bd401d0bd8f057330a1C:\Program Files\Cinema_Plus.v2.1V13.07\Uninstall.exeC:\Program Files\Cinema_Plus.v2.1V13.07\Uninstall.exe44b58c4b-2982-11e5-b662-002618d46738 Error: (07/13/2015 06:50:19 PM) (Source: Windows Search Service) (EventID: 1019) (User: ) Description: 300x80040d07iehistory://{S-1-5-21-213642649-178377738-3602818869-1001}/ Error: (07/13/2015 06:49:26 PM) (Source: Windows Search Service) (EventID: 1019) (User: ) Description: 300x80040d07iehistory://{S-1-5-21-213642649-178377738-3602818869-1001}/ Error: (07/13/2015 06:23:54 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/13/2015 05:30:06 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 Error: (07/13/2015 05:12:49 PM) (Source: WinMgmt) (EventID: 10) (User: ) Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003 ==================== Memory info =========================== Processor: Pentium(R) Dual-Core CPU E5300 @ 2.60GHz Percentage of memory in use: 67% Total physical RAM: 3549.12 MB Available physical RAM: 1164.23 MB Total Virtual: 7096.55 MB Available Virtual: 4402.95 MB ==================== Drives ================================ Drive c: (SYSTEME) (Fixed) (Total:232.79 GB) (Free:172.71 GB) NTFS Drive e: (LAET) (Fixed) (Total:931.51 GB) (Free:469.96 GB) NTFS ==================== MBR & Partition Table ================== ==================== End of log ============================