Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-04-2015 Ran by oscar at 2015-04-21 19:23:03 Running from C:\Users\oscar\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\HS3LUM60 Boot Mode: Normal ========================================================== ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated) Agatha Christie - Peril at End House (x32 Version: 2.2.0.95 - WildTangent) Hidden Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2215 - AVAST Software) Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Bing Rewards Client Installer (x32 Version: 16.0.345.0 - Microsoft Corporation) Hidden Blasterball 3 (x32 Version: 2.2.0.95 - WildTangent) Hidden Bounce Symphony (x32 Version: 2.2.0.95 - WildTangent) Hidden Build-a-Lot - The Elizabethan Era (x32 Version: 2.2.0.95 - WildTangent) Hidden Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden CardRd81 (x32 Version: 4.00.0000.0004 - EASTMAN KODAK Company) Hidden CCleaner (HKLM\...\CCleaner) (Version: 5.04 - Piriform) CCScore (x32 Version: 5.02.0000.0001 - Nom de votre société) Hidden Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Contrôle Parental (HKLM-x32\...\{93094D10-9388-11D4-9886-0000B43F396D}) (Version: 9.4.1 - ) Contrôle Parental Orange (HKLM-x32\...\ocsvc) (Version: 6.5.1.0 - NordNet) CR2 (x32 Version: 4.00.0000.0003 - EASTMAN KODAK Company) Hidden CyberLink DVD Suite Deluxe (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 7.0.3210 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden DVD Menu Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{FB4BB287-37F9-4E27-9C4D-2D3882E08EFF}) (Version: 4.2.4412 - Hewlett-Packard) DVD Menu Pack for HP MediaSmart Video (x32 Version: 4.2.4412 - Hewlett-Packard) Hidden ESSBrwr (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden ESSCDBK (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden ESScore (x32 Version: 5.02.0000.0003 - Nom de votre société) Hidden ESSCT (x32 Version: 5.01.0000.0101 - EASTMAN KODAK Company) Hidden ESSEMAIL (x32 Version: 5.01.0000.0001 - EASTMAN KODAK Company) Hidden ESSgui (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden ESShelp (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden ESSini (x32 Version: 5.02.0000.0104 - Nom de votre société) Hidden ESSPCD (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden ESSPDock (x32 Version: 5.02.0000.0004 - Nom de votre société) Hidden ESSSONIC (x32 Version: 5.00.0000.0002 - EASTMAN KODAK Company) Hidden ESSTOOLS (x32 Version: 5.00.0000.0004 - EASTMAN KODAK Company) Hidden ESSTUTOR (x32 Version: 5.02.0000.0101 - Eastman Kodak Company) Hidden essvatgt (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden essvcpt (x32 Version: 5.01.0000.0002 - EASTMAN KODAK Company) Hidden ESSvpaht (x32 Version: 5.01.0000.0004 - EASTMAN KODAK Company) Hidden ESSvpot (x32 Version: 5.01.0000.0101 - EASTMAN KODAK Company) Hidden Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Google Update Helper (x32 Version: 1.3.21.169 - Google Inc.) Hidden Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden HLPIndex (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden HLPPDOCK (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden HLPSFO (x32 Version: 5.02.0000.0101 - EASTMAN KODAK Company) Hidden HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.1.5 - WildTangent) HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 4.2.4725 - Hewlett-Packard) HP MediaSmart Music (HKLM-x32\...\InstallShield_{91A34181-9FAD-43AB-A35F-E7A8945B7E1C}) (Version: 4.2.4517 - Hewlett-Packard) HP MediaSmart Photo (HKLM-x32\...\InstallShield_{6DAF8CDC-9B04-413B-A0F2-BCC13CF8A5BF}) (Version: 4.2.4513 - Hewlett-Packard) HP MediaSmart SmartMenu (HKLM\...\{A40F60B1-F1E1-452E-96A5-FF97F9A2D102}) (Version: 3.1.2.4 - Hewlett-Packard) HP MediaSmart Video (HKLM-x32\...\InstallShield_{D12E3E7F-1B13-4933-A915-16C7DD37A095}) (Version: 4.2.4522 - Hewlett-Packard) HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard) HP Setup (HKLM-x32\...\{53469506-A37E-4314-A9D9-38724EC23A75}) (Version: 8.4.4400.3525 - Hewlett-Packard Company) HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.0.12844.3519 - Hewlett-Packard Company) HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company) HP Support Information (HKLM-x32\...\{7F2A11F4-EAE8-4325-83EC-E3E99F85169E}) (Version: 10.1.1000 - Hewlett-Packard) HP Update (HKLM-x32\...\{DE77FE3F-A33D-499A-87AD-5FC406617B40}) (Version: 5.002.003.003 - Hewlett-Packard) HP Vision Hardware Diagnostics (HKLM\...\{D79A02E9-6713-4335-9668-AAC7474C0C0E}) (Version: 2.1.6.0 - Hewlett-Packard) Insaniquarium Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.5.0.1026 - Intel Corporation) Jewel Quest II (x32 Version: 2.2.0.95 - WildTangent) Hidden Jewel Quest Solitaire (x32 Version: 2.2.0.95 - WildTangent) Hidden John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden KSU (x32 Version: 632.62.0003.0003 - Nom de votre société) Hidden LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3130 - CyberLink Corp.) LabelPrint (x32 Version: 2.5.3130 - CyberLink Corp.) Hidden LightScribe System Software (HKLM-x32\...\{FD7F0DB8-0E96-4D64-AD4D-9B5A936AF2A8}) (Version: 1.18.20.1 - LightScribe) Logiciel Kodak EasyShare (HKLM-x32\...\{D32470A1-B10C-4059-BA53-CF0486F68EBC}) (Version: - Eastman Kodak Company) Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation) Microsoft .NET Framework 4.5.2 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation) Microsoft Office « Démarrer en un clic » 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft Office Starter 2010 - Français (HKLM-x32\...\{90140011-0066-040C-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Mises à jour NVIDIA 2.4.1.21 (Version: 2.4.1.21 - NVIDIA Corporation) Hidden Movie Theme Pack for HP MediaSmart Video (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 4.2.4412 - Hewlett-Packard) Movie Theme Pack for HP MediaSmart Video (x32 Version: 4.2.4412 - Hewlett-Packard) Hidden msvcrt_installer (HKLM-x32\...\{6068A42A-C1CF-45F2-9859-5DB16287FE5D}) (Version: 1.0.0 - SAH) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MusicStation (HKLM-x32\...\MusicStationNetstaller) (Version: 1.0.1.5 - Hewlett-Packard) Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation) Notification Mail (HKLM-x32\...\MailNotifier) (Version: 3.3.0-Fr1.0 - Orange) Notifier (x32 Version: 5.01.0000.0101 - EASTMAN KODAK Company) Hidden NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 6.14.12.5965 - NVIDIA Corporation) NVIDIA GeForce Experience 2.4.1.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.1.21 - NVIDIA Corporation) NVIDIA Logiciel système PhysX 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation) NVIDIA Pilote graphique 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation) OfotoXMI (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden Orange Inside (HKU\.DEFAULT\...\Orange Inside) (Version: V1.0.7.2 - Orange) OTtBP (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden OTtBPSDK (x32 Version: 4.00.0000.0000 - EASTMAN KODAK Company) Hidden Panneau de configuration NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.9 - PDF Complete, Inc) Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden PhotoNow! (HKLM-x32\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.7717 - CyberLink Corp.) PhotoNow! (x32 Version: 1.1.7717 - CyberLink Corp.) Hidden PictureMover (HKLM-x32\...\{264FE20A-757B-492a-B0C3-4009E2997D8A}) (Version: 3.5.0.33 - Hewlett-Packard Company) Plants vs. Zombies (x32 Version: 2.2.0.95 - WildTangent) Hidden PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.4329 - CyberLink Corp.) Power2Go (x32 Version: 6.1.4329 - CyberLink Corp.) Hidden PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.3129 - CyberLink Corp.) PowerDirector (x32 Version: 8.0.3129 - CyberLink Corp.) Hidden PressReader (HKLM-x32\...\{912CED74-88D3-4C5B-ACB0-13231864975E}) (Version: 5.10.1102.0 - NewspaperDirect Inc.) QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6196 - Realtek Semiconductor Corp.) Recovery Manager (x32 Version: 5.5.3219 - CyberLink Corp.) Hidden SFR (x32 Version: 5.00.0000.0005 - Eastman Kodak Company) Hidden SHASTA (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden SKIN0001 (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden SKINXSDK (x32 Version: 5.00.0000.0004 - EASTMAN KODAK Company) Hidden Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) ToolbarFR (HKLM-x32\...\{A047FE02-C91C-41CB-898C-4ED21B86025A}) (Version: 1.0.0 - Orange) Virtual Villagers - The Secret City (x32 Version: 2.2.0.95 - WildTangent) Hidden VPRINTOL (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) WIRELESS (x32 Version: 5.02.0000.0001 - EASTMAN KODAK Company) Hidden Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden ==================== Custom CLSID (selected items): ========================== (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.) ==================== Restore Points ========================= 24-02-2015 18:30:33 Installed Ma-Config.com (64 bits) 08-03-2015 19:16:26 Removed Ma-Config.com (64 bits) 08-03-2015 20:00:08 Sauvegarde Windows 07-04-2015 12:18:03 Point de contrôle planifié 11-04-2015 10:14:12 avast! antivirus system restore point 12-04-2015 19:15:34 Sauvegarde Windows 19-04-2015 19:00:09 Sauvegarde Windows ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= (If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.) Task: {01233D9F-C483-4044-8FF2-9DDAB345ABC0} - System32\Tasks\{98CA3BDC-EBF4-4DE9-8C24-A8F9A5F1B2AA} => pcalua.exe -a C:\ProgramData\PDFC\pdflnk.exe Task: {15700C17-E38D-451B-B428-6D6A3615820C} - System32\Tasks\HPCeeScheduleForoscar => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14] (Hewlett-Packard) Task: {190C6B6A-D006-4BEE-B386-CD46172E5B37} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc Task: {1E8C79D4-8536-4275-9978-8D81CB33C1AB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company) Task: {21113DDC-CBFA-4EF1-B184-01D9C979F7F6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-03-13] (Piriform Ltd) Task: {2FD89CED-7ABA-4301-87FB-EABCCB16C8BB} - System32\Tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-2939993395-1601202196-1339199659-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {33822F7F-BCAD-4051-BC29-9FCD81C2E9E8} - System32\Tasks\HPCeeScheduleForOSCAR-HP$ => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14] (Hewlett-Packard) Task: {5363F330-E056-4AF6-8A6C-036DF07558DA} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2010-09-27] () Task: {54F504BA-E074-4ED6-B011-C705E73253F3} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-2939993395-1601202196-1339199659-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {743A8F5B-FE86-451D-A711-9910F433DD32} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-03-30] (Hewlett-Packard) Task: {7872628C-A5E7-43C7-B454-7947A3FAB528} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-2939993395-1601202196-1339199659-1000 => C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe Task: {88CEBB9B-F599-44C0-B458-509FD9EBDE97} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company) Task: {945E9A7E-C3F7-43A8-9A6C-11A248EC816E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company) Task: {B95D9085-57A7-4404-943D-315014CFF207} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {D91EF1B9-105D-4708-B102-46F400DC0F66} - System32\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-2939993395-1601202196-1339199659-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe Task: {DC738FF0-3DD0-4FA1-BDF2-06E34CAEDCE9} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-04-11] (Avast Software s.r.o.) Task: {E55C9E05-7B6C-497F-B8D0-BE8791A76831} - System32\Tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-2939993395-1601202196-1339199659-1000 => C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe Task: {FBF77D85-5846-4950-B19C-1B5AD83C27A3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\HPCeeScheduleForOSCAR-HP$.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe Task: C:\Windows\Tasks\HPCeeScheduleForoscar.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Loaded Modules (whitelisted) ============== 2013-05-23 13:02 - 2015-02-04 04:21 - 00115400 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2010-09-15 19:31 - 2010-09-15 19:31 - 00611896 _____ () C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe 2015-03-13 15:54 - 2015-03-13 15:54 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2010-02-28 02:33 - 2010-02-28 02:33 - 00077664 _____ () C:\Program Files (x86)\Common Files\microsoft shared\virtualization handler\OfficeVirt.exe 2015-04-11 10:20 - 2015-04-11 10:20 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-04-11 10:20 - 2015-04-11 10:20 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-04-19 20:16 - 2015-04-19 20:16 - 02926080 _____ () C:\Program Files\AVAST Software\Avast\defs\15041901\algo.dll 2015-04-21 18:35 - 2015-04-21 18:35 - 02926080 _____ () C:\Program Files\AVAST Software\Avast\defs\15042101\algo.dll 2011-07-24 14:50 - 2006-03-02 17:03 - 00711872 _____ () C:\Program Files (x86)\Controle Parental\bin\filtro_dll.dll 2015-03-31 18:33 - 2015-03-28 05:45 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-04-11 10:20 - 2015-04-11 10:20 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2014-10-16 19:19 - 2014-10-16 19:19 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\c152a64e30c5b94894d75ac86aa7aad2\IsdiInterop.ni.dll 2011-04-27 10:49 - 2011-04-30 00:28 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll ==================== Alternate Data Streams (whitelisted) ========= (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.) ==================== Safe Mode (whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ocsvc => ""="service" ==================== EXE Association (whitelisted) =============== (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, the associated entry will be removed from the registry.) IE trusted site: HKU\.DEFAULT\...\orange.fr -> hxxp://logicielsgratuits.orange.fr ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2939993395-1601202196-1339199659-1000\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.1.1 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^KODAK Software Updater.lnk => C:\Windows\pss\KODAK Software Updater.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Logiciel Kodak EasyShare.lnk => C:\Windows\pss\Logiciel Kodak EasyShare.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Snapfish PictureMover.lnk => C:\Windows\pss\Snapfish PictureMover.lnk.CommonStartup MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" MSCONFIG\startupreg: HP Software Update => c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: Magic Desktop for HP notification => "C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe" MSCONFIG\startupreg: orangeinside => C:\Users\oscar\AppData\Roaming\Orange\OrangeInside\two\OrangeInside.exe MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime ==================== Accounts: ============================= Administrateur (S-1-5-21-2939993395-1601202196-1339199659-500 - Administrator - Disabled) HomeGroupUser$ (S-1-5-21-2939993395-1601202196-1339199659-1546 - Limited - Enabled) Invité (S-1-5-21-2939993395-1601202196-1339199659-501 - Limited - Disabled) oscar (S-1-5-21-2939993395-1601202196-1339199659-1000 - Administrator - Enabled) => C:\Users\oscar ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (04/21/2015 06:39:21 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17496, horodatage : 0x546fddcc Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x006e0072 ID du processus défaillant : 0x1164 Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (04/21/2015 06:34:08 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ocsvc.exe, version : 6.5.1.0, horodatage : 0x54f4926d Nom du module défaillant : asapsdk64.dll_unloaded, version : 0.0.0.0, horodatage : 0x50c8d3fc Code d’exception : 0xc0000005 Décalage d’erreur : 0x0000000010203052 ID du processus défaillant : 0x818 Heure de début de l’application défaillante : 0xocsvc.exe0 Chemin d’accès de l’application défaillante : ocsvc.exe1 Chemin d’accès du module défaillant: ocsvc.exe2 ID de rapport : ocsvc.exe3 Error: (04/21/2015 06:33:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamNetworkService.exe, version : 4.1.1943.6202, horodatage : 0x551399be Nom du module défaillant : NvStreamNetworkService.exe, version : 4.1.1943.6202, horodatage : 0x551399be Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000004e920f ID du processus défaillant : 0x900 Heure de début de l’application défaillante : 0xNvStreamNetworkService.exe0 Chemin d’accès de l’application défaillante : NvStreamNetworkService.exe1 Chemin d’accès du module défaillant: NvStreamNetworkService.exe2 ID de rapport : NvStreamNetworkService.exe3 Error: (04/21/2015 10:10:40 AM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Pour information uniquement. (Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Error: (04/21/2015 10:00:43 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamNetworkService.exe, version : 4.1.1943.6202, horodatage : 0x551399be Nom du module défaillant : NvStreamNetworkService.exe, version : 4.1.1943.6202, horodatage : 0x551399be Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000004e920f ID du processus défaillant : 0xa58 Heure de début de l’application défaillante : 0xNvStreamNetworkService.exe0 Chemin d’accès de l’application défaillante : NvStreamNetworkService.exe1 Chemin d’accès du module défaillant: NvStreamNetworkService.exe2 ID de rapport : NvStreamNetworkService.exe3 Error: (04/20/2015 08:13:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ocsvc.exe, version : 6.5.1.0, horodatage : 0x54f4926d Nom du module défaillant : asapsdk64.dll, version : 8.0.0.71, horodatage : 0x50c8d3fc Code d’exception : 0xc0000409 Décalage d’erreur : 0x00000000002777cd ID du processus défaillant : 0x81c Heure de début de l’application défaillante : 0xocsvc.exe0 Chemin d’accès de l’application défaillante : ocsvc.exe1 Chemin d’accès du module défaillant: ocsvc.exe2 ID de rapport : ocsvc.exe3 Error: (04/20/2015 08:13:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamNetworkService.exe, version : 4.1.1943.6202, horodatage : 0x551399be Nom du module défaillant : NvStreamNetworkService.exe, version : 4.1.1943.6202, horodatage : 0x551399be Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000004e920f ID du processus défaillant : 0x8f4 Heure de début de l’application défaillante : 0xNvStreamNetworkService.exe0 Chemin d’accès de l’application défaillante : NvStreamNetworkService.exe1 Chemin d’accès du module défaillant: NvStreamNetworkService.exe2 ID de rapport : NvStreamNetworkService.exe3 Error: (04/20/2015 04:25:30 PM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Pour information uniquement. (Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Error: (04/20/2015 04:15:43 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante NvStreamNetworkService.exe, version : 4.1.1943.6202, horodatage : 0x551399be Nom du module défaillant : NvStreamNetworkService.exe, version : 4.1.1943.6202, horodatage : 0x551399be Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000004e920f ID du processus défaillant : 0xa28 Heure de début de l’application défaillante : 0xNvStreamNetworkService.exe0 Chemin d’accès de l’application défaillante : NvStreamNetworkService.exe1 Chemin d’accès du module défaillant: NvStreamNetworkService.exe2 ID de rapport : NvStreamNetworkService.exe3 Error: (04/20/2015 00:41:13 PM) (Source: CVHSVC) (EventID: 100) (User: ) Description: Pour information uniquement. (Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: System errors: ============= Error: (04/21/2015 07:23:09 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est arrêté avec l’erreur : %%1009 Error: (04/21/2015 07:22:39 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est arrêté avec l’erreur : %%1009 Error: (04/21/2015 07:22:09 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est arrêté avec l’erreur : %%1009 Error: (04/21/2015 07:21:39 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est arrêté avec l’erreur : %%1009 Error: (04/21/2015 07:21:09 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est arrêté avec l’erreur : %%1009 Error: (04/21/2015 07:20:39 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est arrêté avec l’erreur : %%1009 Error: (04/21/2015 07:20:09 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est arrêté avec l’erreur : %%1009 Error: (04/21/2015 07:19:39 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est arrêté avec l’erreur : %%1009 Error: (04/21/2015 07:19:09 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est arrêté avec l’erreur : %%1009 Error: (04/21/2015 07:18:39 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Programme d’installation pour les modules Windows s’est arrêté avec l’erreur : %%1009 Microsoft Office Sessions: ========================= Error: (04/21/2015 06:39:21 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.17496546fddccunknown0.0.0.000000000c0000005006e0072116401d07c5169ff745cC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknownf5bd468d-e844-11e4-9e09-78e3b58fef76 Error: (04/21/2015 06:34:08 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: ocsvc.exe6.5.1.054f4926dasapsdk64.dll_unloaded0.0.0.050c8d3fcc0000005000000001020305281801d07c50e311d434C:\Program Files (x86)\Contrôle Parental Orange\ocsvc.exeasapsdk64.dll3b3c0f80-e844-11e4-9e09-78e3b58fef76 Error: (04/21/2015 06:33:57 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920f90001d07c50e5bcff22C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe347be87a-e844-11e4-9e09-78e3b58fef76 Error: (04/21/2015 10:10:40 AM) (Source: CVHSVC) (EventID: 100) (User: ) Description: (Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Error: (04/21/2015 10:00:43 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920fa5801d07c0931318bb3C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe81c3be3e-e7fc-11e4-b45f-78e3b58fef76 Error: (04/20/2015 08:13:12 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: ocsvc.exe6.5.1.054f4926dasapsdk64.dll8.0.0.7150c8d3fcc000040900000000002777cd81c01d07b958fb07f57C:\Program Files (x86)\Contrôle Parental Orange\ocsvc.exeC:\Program Files (x86)\Contrôle Parental Orange\asapsdk64.dlle750aad4-e788-11e4-b6eb-78e3b58fef76 Error: (04/20/2015 08:13:00 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920f8f401d07b9591ca7655C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exee04b7be6-e788-11e4-b6eb-78e3b58fef76 Error: (04/20/2015 04:25:30 PM) (Source: CVHSVC) (EventID: 100) (User: ) Description: (Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: Error: (04/20/2015 04:15:43 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: NvStreamNetworkService.exe4.1.1943.6202551399beNvStreamNetworkService.exe4.1.1943.6202551399bec000000500000000004e920fa2801d07b7463766d98C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeC:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exeba69901e-e767-11e4-919b-78e3b58fef76 Error: (04/20/2015 00:41:13 PM) (Source: CVHSVC) (EventID: 100) (User: ) Description: (Patch task for {90140011-0066-040C-0000-0000000FF1CE}): DownloadLatest Failed: ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3 CPU 550 @ 3.20GHz Percentage of memory in use: 57% Total physical RAM: 3959.08 MB Available physical RAM: 1674.43 MB Total Pagefile: 7916.34 MB Available Pagefile: 5056.55 MB Total Virtual: 8192 MB Available Virtual: 8191.82 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:917.58 GB) (Free:853.54 GB) NTFS Drive d: (HP_RECOVERY) (Fixed) (Total:13.83 GB) (Free:1.71 GB) NTFS ==>[System with boot components (obtained from reading drive)] ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: ECCC15E0) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=917.6 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=13.8 GB) - (Type=07 NTFS) ==================== End Of Log ============================