OTL Extras logfile created on: 11/04/2013 01:41:35 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\SEBASTIEN CALVAYRAC\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy 1,93 Gb Total Physical Memory | 0,79 Gb Available Physical Memory | 40,75% Memory free 3,86 Gb Paging File | 2,19 Gb Available in Paging File | 56,59% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 219,78 Gb Total Space | 163,08 Gb Free Space | 74,20% Space Free | Partition Type: NTFS Computer Name: PCMAITE | User Name: SEBASTIEN CALVAYRAC | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0E6EAAD3-6A10-4CEE-B0A9-34AD8C357600}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{132CD196-6ECB-4DA6-9E49-B2A755DA45D7}" = lport=445 | protocol=6 | dir=in | app=system | "{17FC1BF0-9076-4476-A8CE-1740D622391B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{1A09F0F0-DF2A-4F8A-A823-B848BEC19AC4}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{22729306-CB96-4F73-9A89-7906CF285AE5}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{2DAD0787-D7D9-492E-B690-2568AB3E9581}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{31BB54A9-30BD-41FB-B42C-7A818E5A27B2}" = lport=53 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | "{3E1DAC9B-3F29-44BF-ADBA-40B1227D3DAD}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{3F4A93A0-2C3B-4B00-9174-D89A660420F4}" = rport=139 | protocol=6 | dir=out | app=system | "{43DA433B-2311-405A-896C-C8E79951DC2E}" = lport=2869 | protocol=6 | dir=in | app=system | "{4F50DC5E-1D03-4551-8C1F-3097320E723F}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{53706CC1-E196-4A30-91C5-871EA4A39B94}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{61B3E9C8-49EF-43A3-BA0B-DED961D0367D}" = rport=10243 | protocol=6 | dir=out | app=system | "{64EE6FF7-AF2D-45F8-8E33-98192A7ADF64}" = lport=139 | protocol=6 | dir=in | app=system | "{6598A770-79CA-4657-AEA2-3236F12C27D3}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{716E980E-C391-4ADE-9B08-ECAEFFD1CF09}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{744BB506-4F34-4612-ACC1-A1C98F891C19}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{7D013B5C-D7AF-40CD-9F46-3758B8A18EFA}" = rport=138 | protocol=17 | dir=out | app=system | "{8653EF9F-DD5E-40FF-A307-3E4C564A3355}" = rport=137 | protocol=17 | dir=out | app=system | "{887854CD-D0AF-4A09-876F-783648D187F2}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{8898E4FB-934B-4989-8C0F-B8A4CCD5B7C0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{948F2537-ED0A-4F19-BDD1-9C612D6CFC55}" = lport=68 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | "{9A839E6A-8490-4990-AB26-E886378EF640}" = lport=10243 | protocol=6 | dir=in | app=system | "{9BC69961-7CF5-466F-B49C-F906AB4C8A28}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | "{AA585DB8-0C94-42F1-89CF-5062D0A87478}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{AB1C516B-D567-43CE-8241-31105396DFBA}" = rport=2869 | protocol=6 | dir=out | app=system | "{B0FB831B-CCB2-4E73-A173-6692E2BA54F9}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{CE21D58A-8C44-4955-9996-A835E77BA828}" = lport=67 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | "{CF6F6288-25B4-4AE5-935C-6F8BB31EA60B}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | "{D36244DD-8E91-4DC8-BE1E-71F9FA015E3D}" = rport=445 | protocol=6 | dir=out | app=system | "{D4F70153-DC6E-47C6-80B5-1728A167EF58}" = lport=547 | protocol=17 | dir=in | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | "{D5157D26-14AD-4B99-9057-FFECD8BD8104}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{DF687CFE-4162-423D-89AD-627B0F307CA4}" = lport=137 | protocol=17 | dir=in | app=system | "{E2024C82-7141-46FA-B7E5-9C868EE29B13}" = lport=138 | protocol=17 | dir=in | app=system | "{E861E01F-9C45-4E12-9461-127CA404396A}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{EDE28A51-333D-4170-A8B9-1B1A3931D20E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{F52D6C14-AB1E-485B-8748-BFBE61D82BF4}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{F87E836D-DB7E-4983-88A7-BED50873E1D2}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | "{FEFF62E9-3B25-47C6-8D57-B134D2AC11C1}" = lport=2869 | protocol=6 | dir=in | app=system | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{10FF9FE2-27B9-460D-9D93-0C1804FB36A7}" = protocol=58 | dir=in | name=@hnetcfg.dll,-148 | "{11EEB205-BF80-437E-8165-110A633B6324}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe | "{1706DF06-8777-4E58-B4DB-ACDEB3BDDBAB}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2012\avgmfapx.exe | "{1BE8DE13-32ED-4255-B3A3-F09B6C8533E2}" = protocol=17 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\schedulersvc.exe | "{1F539C76-0451-4369-AE6D-7E23726FC407}" = protocol=6 | dir=out | app=system | "{2226760E-6D99-461C-9F58-039D9BBDE5B4}" = protocol=6 | dir=in | app=c:\windows\syswow64\muzapp.exe | "{242486AC-BAE5-4C60-88A4-031B2E1EEEA4}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{2E948A3C-50B2-40E5-B865-8B50E68CB543}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{3176D868-0580-43DB-9D3E-4BE704D2AC2C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{3323E8B4-D239-4205-8BEA-6E84244839E6}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | "{33517A2C-38DC-469E-887F-B3501D2AC76D}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{3E4D9CC0-70E4-45A3-B5C3-9FBF55E16671}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{4D6EBD52-0BC0-4FCC-9339-2758CBDF3F00}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{54DB9206-E16E-4BAB-A07C-D1F9B2A4FCBB}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{55BA9984-2980-4E6C-806F-DE124FD31B34}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{5A4D89E6-818E-4295-8FD5-32EEE6FF7CB8}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{76087D5D-214B-4CE9-A615-CD346B238844}" = dir=out | svc=sharedaccess | app=%systemroot%\system32\svchost.exe | "{79BAE0E0-EEA3-47C6-9C16-C88585B14AAD}" = protocol=17 | dir=in | app=c:\windows\syswow64\muzapp.exe | "{7CBEB978-7410-4A05-A73E-1673FC1D2E3E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{7E9D55DC-5936-4279-AF5A-C980F6D790D9}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | "{87611E9F-0FCD-43D7-B0C7-295EC454D1A6}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{8AF16A22-EAED-49A8-83D8-891290D620D6}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{8EBE5764-FC75-417C-8B45-D9700A965450}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{9417DEA9-0682-4F3C-8948-287B04581EB2}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{A64AF25C-56BD-42DC-B1D2-E209E416D049}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{A89E44E2-47B5-443E-9024-19428004F83A}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{B3E19F4E-2DB2-4B93-8375-2CB2A45DCB91}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{BA0E8269-305E-4E52-BFCB-722DBBBFDC0F}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{BBB0F3D2-30A5-4082-848D-8D6BE6EE3915}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{C415C99C-A346-4178-BFC1-0444B0905233}" = protocol=17 | dir=in | app=c:\program files (x86)\limewire\limewire.exe | "{C7F7A9FA-78D2-40DC-A4BA-915667D612E7}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{CFA68C1B-7C37-477C-8723-ECC73699C866}" = protocol=6 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\schedulersvc.exe | "{D5E42750-5564-4A5D-8319-24DFBA1FC97E}" = protocol=6 | dir=in | app=c:\program files (x86)\limewire\limewire.exe | "{D737F813-7F12-47B5-9E54-995997D5A744}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{DB1B8CE0-D456-4E3F-8165-3CF63DFD3660}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{DFB6E08E-6F8A-4F5D-927C-1E378DBE2E2C}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | "{E40950C8-44E7-4F4D-AC56-D6DA07BFB8D2}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{E96D5C3B-C45E-4345-8DE2-FB5B7E35CCD1}" = dir=in | app=c:\users\sebastien calvayrac\appdata\local\facebook\video\skype\facebookvideocalling.exe | "{E997DA0B-880A-422E-8467-6E68FE7D8061}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{EAA61BF6-9C46-45A3-8BAA-0ADC0E751C6E}" = protocol=6 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\backupsvc.exe | "{F553EBEB-6D8A-4BC5-89F3-622135017EDE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{F6942719-9911-455A-9EBA-66F3A612E4AF}" = protocol=17 | dir=in | app=c:\program files (x86)\newtech infosystems\nti backup now 5\backupsvc.exe | "{FB0751BA-2112-4FF5-B15C-1B434E9F7084}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{FB8C6A76-4FFB-4800-A010-33BA53644302}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | "{FBCF2C48-24C8-43D0-A4ED-270BC7DDE5F6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "TCP Query User{01B0CCD0-C40A-4357-B58A-AA9F5FBFEFF3}C:\program files (x86)\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ares\ares.exe | "TCP Query User{028CBDC4-A0D8-4DA7-98DE-492D8CA23444}C:\program files (x86)\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sopcast\adv\sopadver.exe | "TCP Query User{05DB6495-A7C7-4C96-AB09-3F6F70901280}C:\program files (x86)\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe | "TCP Query User{248755B7-741E-4B3B-95C6-5B9806CD26D2}C:\hager\taloha\apps\rteng6.exe" = protocol=6 | dir=in | app=c:\hager\taloha\apps\rteng6.exe | "TCP Query User{2D0D2B1E-7E68-4FC0-9E73-DA34D46AF838}C:\program files (x86)\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe | "TCP Query User{5CAEB399-B9DD-4C97-88E4-3AFD9ACEE2F2}C:\users\sebastien calvayrac\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\sebastien calvayrac\appdata\local\google\chrome\application\chrome.exe | "TCP Query User{718161B1-8E4F-4CBB-9203-5C98A4BCE333}C:\program files (x86)\ares\ares.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ares\ares.exe | "TCP Query User{8189D0E3-2290-404C-8FED-6E1148177658}C:\hager\taloha\apps\rteng6.exe" = protocol=6 | dir=in | app=c:\hager\taloha\apps\rteng6.exe | "TCP Query User{9C2ED8A0-928C-48E6-97AA-74942ABABF6A}C:\program files (x86)\emule\emule.exe" = protocol=6 | dir=in | app=c:\program files (x86)\emule\emule.exe | "TCP Query User{BCD14DD5-3774-4EC1-8310-19CCC3EEA915}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | "TCP Query User{D96A0CC6-C4A5-40FF-9581-897DB6A659D8}C:\users\sebastien calvayrac\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\sebastien calvayrac\appdata\local\google\chrome\application\chrome.exe | "TCP Query User{EE7FB712-5E0C-4191-B3EA-F4F6BA8F211B}C:\program files (x86)\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sopcast\adv\sopadver.exe | "UDP Query User{3354005C-9079-4C43-AA02-F570DDB61B92}C:\program files (x86)\emule\emule.exe" = protocol=17 | dir=in | app=c:\program files (x86)\emule\emule.exe | "UDP Query User{4345CBFB-DBAC-4179-B5F3-38DC4335748B}C:\program files (x86)\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sopcast\adv\sopadver.exe | "UDP Query User{48494247-21B4-487C-B9D1-01F0C4CCF715}C:\program files (x86)\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe | "UDP Query User{4B10FA44-0715-4088-98CB-9B4B9A996C3D}C:\program files (x86)\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sopcast\sopcast.exe | "UDP Query User{63989035-080B-4854-A03C-BE95A32F84C3}C:\program files (x86)\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sopcast\adv\sopadver.exe | "UDP Query User{66A09CF7-8F74-4509-8A9E-9565C08676F2}C:\program files (x86)\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre6\bin\java.exe | "UDP Query User{772621FB-0610-4738-B9DB-0493F7771F87}C:\users\sebastien calvayrac\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\sebastien calvayrac\appdata\local\google\chrome\application\chrome.exe | "UDP Query User{96CA70B5-4E80-4B55-81D6-9121646050CF}C:\users\sebastien calvayrac\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\sebastien calvayrac\appdata\local\google\chrome\application\chrome.exe | "UDP Query User{9B3F792C-0CE0-495C-A66A-13CEC4122A0C}C:\hager\taloha\apps\rteng6.exe" = protocol=17 | dir=in | app=c:\hager\taloha\apps\rteng6.exe | "UDP Query User{AF1083AA-3D4D-4253-A64B-4949D7BCDDA9}C:\program files (x86)\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ares\ares.exe | "UDP Query User{C217DE0E-3C8D-4E35-AF75-FD01AE8ED684}C:\hager\taloha\apps\rteng6.exe" = protocol=17 | dir=in | app=c:\hager\taloha\apps\rteng6.exe | "UDP Query User{F8DF289B-C5DA-4C43-AA62-4AED6E62F591}C:\program files (x86)\ares\ares.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ares\ares.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0214A441-A4AB-43A8-8DEF-2F73C5364673}" = Microsoft Works "{05653DE1-6567-40C6-B930-39D399B64369}" = OpenOffice.org 3.3 "{0B568EF0-5280-4E27-BE21-74D15F0BD8AF}" = Samsung PC Studio 3 "{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now Standard "{133742BA-6F46-4D3E-85AF-78631D9AD8B8}" = Installation Windows Live "{17C50809-F2E0-4DD8-84D7-55FF74615723}" = Video Web Camera Ver:1.0.31.325 "{1EE04769-91C4-4A06-92B7-FCAFE6BABDD9}" = Galerie de photos Windows Live "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Outil de téléchargement Windows Live "{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT "{230B83A5-7D88-4B95-B71E-F44C0C78B002}" = Windows Live Movie Maker "{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8 "{26A24AE4-039D-4CA4-87B4-2F83216035FF}" = Java(TM) 6 Update 39 "{26A24AE4-039D-4CA4-87B4-2F83217017FF}" = Java 7 Update 17 "{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com "{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App" = Update Installer for WildTangent Games App "{3175E049-F9A9-4A3D-8F19-AC9FB04514D1}" = Windows Live Communications Platform "{34B32B70-8081-11E2-89AF-B8AC6F98CCE3}" = Google Earth Plug-in "{3DB0448D-AD82-4923-B305-D001E521A964}" = eMachines Power Management "{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology "{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}" = Apple Application Support "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{523C9099-D182-448B-9473-FD5AA3520267}" = Ciel Auto-entrepreneur Standard 5.0 "{6965F2F4-1CD2-4F42-A8EF-9EF433F9AA72}" = IPTInstaller "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2 "{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-emachines" = WildTangent Games App (eMachines Games) "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{7E84FAC8-C518-40F9-9807-7455301D6D25}" = SamsungConnectivityCableDriver "{7F811A54-5A09-4579-90E1-C93498E230D9}" = eMachines Recovery Management "{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{95120000-00AF-040C-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (French) "{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.6) "{AC76BA86-7AD7-1036-7B44-AA1000000001}" = Adobe Reader X (10.1.6) - Français "{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime "{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86 "{B92C5909-1D37-4C51-8397-A28BB28E5DC3}" = Facebook Video Calling 1.2.0.287 "{C4A4722E-79F9-417C-BD72-8D359A090C97}" = Samsung PC Studio 3 "{D5B35376-6F9E-47B3-A9F8-791824EBFE0D}" = Samsung PC Studio 3 "{E0B19DF7-B1C7-4937-82C4-0E4B1E346965}" = eBay Worldwide "{E3B64CC5-C011-40C0-92BC-7316CD5E5688}" = Microsoft_VC100_CRT_SP1_x86 "{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}" = Microsoft Office Suite Activation Assistant "{EB2D7803-D46E-44A0-B544-6DF35815F07D}" = Modèles pour Office "{EE171732-BEB4-4576-887D-CB62727F01CA}" = eMachines Updater "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center "{FCDBEA60-79F0-4FAE-BBA8-55A26C609A49}" = Visual Studio 2008 x64 Redistributables "{FDB3B167-F4FA-461D-976F-286304A57B2A}" = Adobe AIR "1-2-3 Schéma" = 1-2-3 Schéma "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Ad-Remover" = Ad-Remover By C_XX "ATOOWINGestion_concours" = Atoowin "Canon_IJ_Network_UTILITY" = Canon IJ Network Tool "CANONIJPLM100" = Canon Inkjet Printer/Scanner/Fax Extended Survey Program "CanonMyPrinter" = Canon My Printer "CanonSolutionMenuEX" = Canon Solution Menu EX "DAEMON Tools Lite" = DAEMON Tools Lite "DFX for Windows Media Player" = DFX for Windows Media Player "Easy-PhotoPrint EX" = Canon Easy-PhotoPrint EX "Easy-WebPrint EX" = Canon Easy-WebPrint EX "eMachines Registration" = eMachines Registration "eMachines Screensaver" = eMachines ScreenSaver "eMachines Welcome Center" = Welcome Center "Enregistrement utilisateur de Canon MP495 series" = Enregistrement utilisateur de Canon MP495 series "Identity Card" = Identity Card "InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}" = NTI Backup Now 5 "InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}" = NTI Media Maker 8 "InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies "InstallShield_{EB2D7803-D46E-44A0-B544-6DF35815F07D}" = Modèles pour Office "LManager" = Launch Manager "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.70.0.1100 "MP Navigator EX 4.0" = Canon MP Navigator EX 4.0 "Semiolog2" = Semiolog "SopCast" = SopCast 3.2.9 "Veetle TV" = Veetle TV 0.9.18 "VLC media player" = VLC media player 1.1.11 "WildTangent emachines Master Uninstall" = eMachines Games "WinLiveSuite_Wave3" = Installation Windows Live "WinRAR archiver" = WinRAR 4.20 (32-bit) "WT078910" = Bejeweled 2 Deluxe "WT078919" = Insaniquarium Deluxe "WT078930" = Zuma Deluxe "WT078958" = Blasterball 3 "WT078962" = Bob the Builder Can-Do-Zoo "WT079018" = Faerie Solitaire "WT079022" = FATE - The Traitor Soul "WT079062" = Jewel Quest "WT079066" = Jewel Quest Solitaire 3 "WT079106" = Penguins! "WT079114" = Polar Bowler "WT079118" = Polar Golfer "WT079122" = Polar Pool "WT079175" = Virtual Villagers - A New Home "WT079180" = Yahtzee "WT079283" = Build-a-lot 2 "WT079296" = Chicken Invaders 3 - Revenge of the Yolk "WT079316" = Escape Rosecliff Island "WT079329" = Mahjongg Artifacts "WT079418" = Virtual Families "ZHPDiag_is1" = ZHPDiag 2013 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-3521845584-3582443301-2805107734-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome "MyFreeCodec" = MyFreeCodec [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 07/04/2013 06:41:34 | Computer Name = PCMAITE | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledSPRetry 5628173 Error - 07/04/2013 06:41:35 | Computer Name = PCMAITE | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: Continuously busy for more than a second Error - 07/04/2013 06:41:35 | Computer Name = PCMAITE | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledEvent 5629172 Error - 07/04/2013 06:41:35 | Computer Name = PCMAITE | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledSPRetry 5629172 Error - 07/04/2013 06:41:36 | Computer Name = PCMAITE | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: Continuously busy for more than a second Error - 07/04/2013 06:41:36 | Computer Name = PCMAITE | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledEvent 5630981 Error - 07/04/2013 06:41:36 | Computer Name = PCMAITE | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledSPRetry 5630981 Error - 08/04/2013 09:36:45 | Computer Name = PCMAITE | Source = SideBySide | ID = 16842787 Description = La création du contexte d’activation a échoué pour « c:\program files (x86)\windows live\photo gallery\MovieMaker.Exe ». Erreur dans le fichier de manifeste ou de stratégie « c:\program files (x86)\windows live\photo gallery\WLMFDS.DLL » à la ligne 8. L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé. La référence est WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". La définition est WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Utilisez sxstrace.exe pour un diagnostic détaillé. Error - 09/04/2013 10:44:46 | Computer Name = PCMAITE | Source = SideBySide | ID = 16842787 Description = La création du contexte d’activation a échoué pour « c:\program files (x86)\windows live\photo gallery\MovieMaker.Exe ». Erreur dans le fichier de manifeste ou de stratégie « c:\program files (x86)\windows live\photo gallery\WLMFDS.DLL » à la ligne 8. L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé. La référence est WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". La définition est WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Utilisez sxstrace.exe pour un diagnostic détaillé. Error - 10/04/2013 19:30:05 | Computer Name = PCMAITE | Source = SideBySide | ID = 16842787 Description = La création du contexte d’activation a échoué pour « c:\program files (x86)\windows live\photo gallery\MovieMaker.Exe ». Erreur dans le fichier de manifeste ou de stratégie « c:\program files (x86)\windows live\photo gallery\WLMFDS.DLL » à la ligne 8. L’identité de composant trouvé dans le manifeste ne correspond pas à celle du composant demandé. La référence est WLMFDS,processorArchitecture="AMD64",type="win32",version="1.0.0.1". La définition est WLMFDS,processorArchitecture="x86",type="win32",version="1.0.0.1". Utilisez sxstrace.exe pour un diagnostic détaillé. [ Media Center Events ] Error - 10/12/2011 14:12:06 | Computer Name = LUMINELEC64 | Source = MCUpdate | ID = 0 Description = 19:12:06 - Erreur de connexion à Internet. 19:12:06 - Impossible de contacter le service.. Error - 10/12/2011 14:12:18 | Computer Name = LUMINELEC64 | Source = MCUpdate | ID = 0 Description = 19:12:11 - Erreur de connexion à Internet. 19:12:11 - Impossible de contacter le service.. Error - 14/12/2011 07:24:18 | Computer Name = LUMINELEC64 | Source = MCUpdate | ID = 0 Description = 12:24:18 - Erreur de connexion à Internet. 12:24:18 - Impossible de contacter le service.. Error - 14/12/2011 07:25:04 | Computer Name = LUMINELEC64 | Source = MCUpdate | ID = 0 Description = 12:24:57 - Erreur de connexion à Internet. 12:24:57 - Impossible de contacter le service.. Error - 21/02/2012 21:15:59 | Computer Name = LUMINELEC64 | Source = MCUpdate | ID = 0 Description = 02:15:57 - Erreur de connexion à Internet. 02:15:58 - Impossible de contacter le service.. Error - 21/02/2012 21:16:13 | Computer Name = LUMINELEC64 | Source = MCUpdate | ID = 0 Description = 02:16:04 - Erreur de connexion à Internet. 02:16:04 - Impossible de contacter le service.. Error - 22/02/2012 05:07:12 | Computer Name = LUMINELEC64 | Source = MCUpdate | ID = 0 Description = 10:07:12 - Erreur de connexion à Internet. 10:07:12 - Impossible de contacter le service.. Error - 22/02/2012 05:07:58 | Computer Name = LUMINELEC64 | Source = MCUpdate | ID = 0 Description = 10:07:53 - Erreur de connexion à Internet. 10:07:53 - Impossible de contacter le service.. Error - 15/03/2012 15:45:30 | Computer Name = LUMINELEC64 | Source = MCUpdate | ID = 0 Description = 20:45:30 - Erreur de connexion à Internet. 20:45:30 - Impossible de contacter le service.. Error - 15/03/2012 15:46:09 | Computer Name = LUMINELEC64 | Source = MCUpdate | ID = 0 Description = 20:46:02 - Erreur de connexion à Internet. 20:46:02 - Impossible de contacter le service.. [ System Events ] Error - 10/04/2013 01:15:30 | Computer Name = PCMAITE | Source = Service Control Manager | ID = 7034 Description = Le service Bitdefender Antivirus Essential s’est terminé de façon inattendue pour la 4ème fois. Error - 10/04/2013 17:30:17 | Computer Name = PCMAITE | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20 Description = Échec de l’installation : l’installation de la mise à jour suivante a échoue avec l’erreur 0x80070490 : Mise à jour de sécurité pour Windows 7 pour ordinateurs à processeur x64 (KB2808735). Error - 10/04/2013 18:55:34 | Computer Name = PCMAITE | Source = Application Popup | ID = 1060 Description = Le chargement de \SystemRoot\SysWow64\Drivers\StarOpen.SYS a été bloqué en raison d’une incompatibilité avec ce système. Contactez l’éditeur de votre logiciel pour obtenir une version compatible du pilote. Error - 10/04/2013 18:56:43 | Computer Name = PCMAITE | Source = Application Popup | ID = 1060 Description = Le chargement de \SystemRoot\SysWow64\Drivers\StarOpen.SYS a été bloqué en raison d’une incompatibilité avec ce système. Contactez l’éditeur de votre logiciel pour obtenir une version compatible du pilote. Error - 10/04/2013 18:57:26 | Computer Name = PCMAITE | Source = Service Control Manager | ID = 7026 Description = Le pilote de démarrage système ou d’amorçage suivant n’a pas pu se charger : StarOpen Error - 10/04/2013 18:57:39 | Computer Name = PCMAITE | Source = Service Control Manager | ID = 7031 Description = Le service Bitdefender Antivirus Essential s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 1000 millisecondes : Redémarrer le service. Error - 10/04/2013 18:58:03 | Computer Name = PCMAITE | Source = Service Control Manager | ID = 7031 Description = Le service Bitdefender Antivirus Essential s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service. Error - 10/04/2013 18:58:40 | Computer Name = PCMAITE | Source = DCOM | ID = 10016 Description = Error - 10/04/2013 18:58:40 | Computer Name = PCMAITE | Source = Service Control Manager | ID = 7031 Description = Le service Bitdefender Antivirus Essential s’est terminé de manière inattendue. Ceci s’est produit 3 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Redémarrer le service. Error - 10/04/2013 18:58:59 | Computer Name = PCMAITE | Source = Service Control Manager | ID = 7034 Description = Le service Bitdefender Antivirus Essential s’est terminé de façon inattendue pour la 4ème fois. < End of report >