Additional scan result of Farbar Recovery Scan Tool (x64) Version: 27-05-2015 01 Ran by kevin at 2015-05-31 12:55:23 Running from C:\Users\kevin\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-4285616394-42920220-2097449055-500 - Administrator - Disabled) Invité (S-1-5-21-4285616394-42920220-2097449055-501 - Limited - Disabled) kevin (S-1-5-21-4285616394-42920220-2097449055-1000 - Administrator - Enabled) => C:\Users\kevin ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Trend Micro Titanium Internet Security (Disabled - Up to date) {68F968AC-2AA0-091D-848C-803E83E35902} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Trend Micro Titanium Internet Security (Disabled - Up to date) {D3988948-0C9A-0693-BE3C-BB4CF86413BF} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.1.85.3 - Adobe Systems Incorporated) Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated) Adobe Reader XI (11.0.10) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated) Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.5.155 - Adobe Systems, Inc.) Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version: - ) Apple Application Support (HKLM-x32\...\{A83279FD-CA4B-4206-9535-90974DE76654}) (Version: 2.1.5 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Arma 2 (HKLM-x32\...\Steam App 33900) (Version: - Bohemia Interactive) ARMA 2 Army of The Czech Republic - Data cache removal (HKLM-x32\...\A2ACR Data cache removal) (Version: - ) ARMA 2: British Armed Forces - Data cache removal (HKLM-x32\...\A2BAF Data cache removal) (Version: - ) Arma 2: British Armed Forces (HKLM-x32\...\Steam App 65700) (Version: - Bohemia Interactive) Arma 2: DayZ Mod (HKLM-x32\...\Steam App 224580) (Version: - Bohemia Interactive) Arma 2: Operation Arrowhead (HKLM-x32\...\Steam App 33930) (Version: - Bohemia Interactive) Arma 2: Operation Arrowhead Beta (HKLM-x32\...\Steam App 219540) (Version: - ) ARMA 2: Private Military Company - Data cache removal (HKLM-x32\...\A2PMC Data cache removal) (Version: - ) Arma 2: Private Military Company (HKLM-x32\...\Steam App 65720) (Version: - Bohemia Interactive) ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: - ) ASUS AI Recovery (HKLM-x32\...\{38253529-D97D-4901-AE53-5CC9736D3A2E}) (Version: 1.0.13 - ASUS) ASUS Data Security Manager (HKLM-x32\...\{FA2092C5-7979-412D-A962-6485274AE1EE}) (Version: 1.00.0014 - ASUS) ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.30 - ASUS) ASUS Live Update (HKLM-x32\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS) ASUS Power4Gear Hybrid (HKLM\...\{33B98264-A889-4913-A0CA-C364A75032B3}) (Version: 1.1.45 - ASUS) ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0028 - ASUS) ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus) ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.84.161 - eCareme Technologies, Inc.) AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.4.617 - ASUSTEK) ATI AVIVO64 Codecs (Version: 11.6.0.51005 - ATI Technologies Inc.) Hidden ATI Catalyst Install Manager (HKLM\...\{583EE643-CF83-A1F2-A90F-ADB75F7B532D}) (Version: 3.0.795.0 - ATI Technologies, Inc.) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0009 - ASUS) Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2218 - AVAST Software) BattlEye for OA Uninstall (HKLM-x32\...\BattlEye for OA) (Version: - ) Beasts of Prey (HKLM-x32\...\Steam App 299860) (Version: - Octagon Interactive) BitTorrent (HKU\S-1-5-21-4285616394-42920220-2097449055-1000\...\BitTorrent) (Version: 7.9.3.40299 - BitTorrent Inc.) Blood Bowl: Chaos Edition (HKLM-x32\...\Steam App 216890) (Version: - Cyanide Studios) ccc-core-static (x32 Version: 2010.1005.2139.36978 - ATI) Hidden CCleaner (HKLM\...\CCleaner) (Version: 3.10 - Piriform) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.127.0.63 - Conexant) Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation) ControlDeck (HKLM-x32\...\{5B65EF64-1DFA-414A-8C94-7BB726158E21}) (Version: 1.0.8 - ASUS) Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) Controlo ActiveX do Windows Live Mesh para Ligações Remotas (HKLM-x32\...\{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}) (Version: 15.4.5722.2 - Microsoft Corporation) CyberLink PowerDVD 10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.2312.52 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DayZ Commander (HKLM-x32\...\{0B74EC0B-2A85-4542-A167-3DE2132E7DAA}) (Version: 0.92.85 - Dotjosh Studios) Dropbox (HKU\S-1-5-21-4285616394-42920220-2097449055-1000\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.) Drumaxx (HKLM-x32\...\Drumaxx) (Version: - Image-Line) ETDWare PS/2-x64 7.0.5.11_WHQL (HKLM\...\Elantech) (Version: 7.0.5.11 - ELAN Microelectronics Corp.) Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited) Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.9 - ASUS) Fate of the World (HKLM-x32\...\Steam App 80200) (Version: - ) FL Studio 9 (HKLM-x32\...\FL Studio 9) (Version: - Image-Line) Free Mp3 Wma Converter V 2.2 (HKLM-x32\...\Free Mp3 Wma Converter_is1) (Version: 2.2.0.0 - Koyote Lab Inc.) Free YouTube to MP3 Converter version 3.12.3.610 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.3.610 - DVDVideoSoft Ltd.) Galactic Civilizations II: Ultimate Edition (HKLM-x32\...\Steam App 202200) (Version: - Stardock Entertainment) Galeria de Fotografias do Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Game Park Console (HKLM-x32\...\{E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1) (Version: 6.2.1.1 - Oberon Media, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Heroes of Might & Magic III - HD Edition (HKLM-x32\...\Steam App 297000) (Version: - DotEmu) Hotline Miami (HKLM-x32\...\Steam App 219150) (Version: - Dennaton Games) HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.5192 - HP Photo Creations) HP Photosmart 5510 series - Enquête sur l'amélioration du produit (HKLM\...\{3F41FA0A-3465-46BC-9824-7DBD807B372B}) (Version: 24.0.342.0 - Hewlett-Packard Co.) HP Photosmart 5510 series Aide (HKLM-x32\...\{E02964EA-0E1B-4620-A26E-CBAB0341B1BB}) (Version: 140.0.2.2 - Hewlett Packard) HP Update (HKLM-x32\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard) IL Download Manager (HKLM-x32\...\IL Download Manager) (Version: - Image-Line) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation) Java 7 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217060FF}) (Version: 7.0.600 - Oracle) Java(TM) 6 Update 29 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216029FF}) (Version: 6.0.290 - Oracle) JavaFX 2.1.0 (HKLM-x32\...\{1111706F-666A-4037-7777-210328764D10}) (Version: 2.1.0 - Oracle Corporation) JDownloader 0.9 (HKLM-x32\...\5513-1208-7298-9440) (Version: 0.9 - AppWork GmbH) JMicron Ethernet Adapter NDIS Driver (HKLM-x32\...\{96DCEE2F-98EE-4F80-8C0F-7C04D1FB9D7F}) (Version: 6.0.27.6 - JMicron Technology Corp.) JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.33.2 - JMicron Technology Corp.) Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden K_Series_ScreenSaver_EN (HKLM-x32\...\K_Series_ScreenSaver_EN) (Version: - ) League of Legends (HKLM-x32\...\{918A9082-6287-4D25-9002-5E5D5E4971CB}) (Version: 1.02.0000 - Riot Games) Logiciel de base du périphérique HP Photosmart 5510 series (HKLM\...\{E924B2BE-0330-4753-BCEA-59D6971A183C}) (Version: 24.0.342.0 - Hewlett-Packard Co.) Mahjongg dimensions (HKLM-x32\...\Mahjongg dimensions) (Version: - Oberon Media Inc.) Malware Eraser version 1.2 (HKLM-x32\...\{D382E642-7EA5-4754-8DEB-1F9E931FF85F}_is1) (Version: 1.2 - TCPmonitor.altervista.org) Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Miasmata (HKLM-x32\...\Steam App 223510) (Version: - IonFx) Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office Professionnel Plus 2010 (HKLM-x32\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mumble 1.2.4 (HKLM-x32\...\{4D933DC4-EA10-4CDA-99F3-7F6AE9AE491F}) (Version: 1.2.4 - Thorvald Natvig) Nidhogg (HKLM-x32\...\Steam App 94400) (Version: - Messhof) Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenOffice 4.0.1 (HKLM-x32\...\{47F460DA-D1BE-4D85-8DF2-AA1F31D3445F}) (Version: 4.01.9714 - Apache Software Foundation) Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.3.6.0 - Pando Networks Inc.) PhotoFiltre Studio X (HKU\S-1-5-21-4285616394-42920220-2097449055-1000\...\PhotoFiltre Studio X) (Version: - ) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) PoiZone (HKLM-x32\...\PoiZone) (Version: - Image-Line) PokerStars.fr (HKLM-x32\...\PokerStars.fr) (Version: - PokerStars.fr) QuickTime (HKLM-x32\...\{7BE15435-2D3E-4B58-867F-9C75BED0208C}) (Version: 7.71.80.42 - Apple Inc.) Raccolta foto di Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Rolisteam 1.6.1 (HKLM-x32\...\{0AD9B759-512C-4B8E-A0ED-69DE0D361570}_is1) (Version: - rolisteamTeam) Rolistik 1.1 (HKLM-x32\...\Rolistik_is1) (Version: - Romain CAMPIONI) RomStation (HKLM-x32\...\{223B62A8-F6FF-4BEB-BC17-230D12723CD0}_is1) (Version: - RomStation) Sakura (HKLM-x32\...\Sakura) (Version: - Image-Line) Sawer (HKLM-x32\...\Sawer) (Version: - Image-Line) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Sid Meier's Civilization 4 - Beyond the Sword (HKLM-x32\...\{32E4F0D2-C135-475E-A841-1D59A0D22989}) (Version: 3.01 - Firaxis Games) Sid Meier's Civilization 4 (HKLM-x32\...\{CFBCE791-2D53-4FCE-B3FB-D6E01F4112E8}) (Version: 1.74 - Firaxis Games) Sid Meier's Civilization 4 (x32 Version: 1.00.0000 - Firaxis Games) Hidden Sid Meier's Civilization V (HKLM-x32\...\Steam App 8930) (Version: - 2K Games, Inc.) Sid Meier's Civilization V SDK (HKLM-x32\...\Steam App 16830) (Version: - Firaxis Games) Sid Meier's Pirates! (HKLM-x32\...\Steam App 3920) (Version: - Firaxis Games) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation) Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.) Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation) Stranded Deep (HKLM-x32\...\Steam App 313120) (Version: - Beam Team Games) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables) System Requirements Lab CYRI (HKLM-x32\...\{E77DA909-3532-4C95-AFEB-06310E88462A}) (Version: 6.0.3.0 - Husdawg, LLC) System Requirements Lab Detection (HKLM-x32\...\{A42C68AF-C399-4DF3-B4CE-25A88A223D80}) (Version: 6.1.4.0 - Husdawg, LLC) TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: - TeamSpeak Systems GmbH) The Elder Scrolls IV: Oblivion (HKLM-x32\...\Steam App 22330) (Version: - Bethesda Game Studios) theHunter: Primal (HKLM-x32\...\Steam App 322920) (Version: - Expansive Worlds) Trend Micro Titanium Internet Security (HKLM\...\{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}) (Version: 3.0 - Trend Micro Inc.) Trend Micro Titanium Internet Security (Version: 3.00 - Trend Micro Inc.) Hidden TuneUp Utilities 2014 (fr-FR) (x32 Version: 14.0.1000.93 - TuneUp Software) Hidden USB2.0 UVC VGA WebCam (HKLM\...\USB2.0 UVC VGA WebCam) (Version: 5.8.54000.207 - Sonix) VirtualDubMOD 1.5.10.3 Fr (HKLM-x32\...\{B158F76F-76AB-4115-A4F0-4C6EF6956093}_is1) (Version: 1.5.10.3 - Trad-Fr) VLC media player 2.1.0 (HKLM-x32\...\VLC media player) (Version: 2.1.0 - VideoLAN) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}) (Version: 15.4.5722.2 - Microsoft Corporation) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.30.3 - ASUS) WinZip 16.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240CD}) (Version: 16.0.9715 - WinZip Computing, S.L. ) Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.19 - ASUS) World of Goo (HKLM-x32\...\World of Goo) (Version: - Oberon Media Inc.) Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις (HKLM-x32\...\{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}) (Version: 15.4.5722.2 - Microsoft Corporation) Συλλογή φωτογραφιών του Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Основные компоненты Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Почта Windows Live (x32 Version: 15.4.3502.0922 - Корпорация Майкрософт) Hidden Фотоальбом Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Элемент управления Windows Live Mesh ActiveX для удаленных подключений (HKLM-x32\...\{BCB0D6F7-7EAB-4009-A6F2-8E0E7F317773}) (Version: 15.4.5722.2 - Microsoft Corporation) גלריית התמונות של Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden פקד ActiveX של Windows Live Mesh עבור חיבורים מרוחקים (HKLM-x32\...\{9D4C7DFA-CBBB-4F06-BDAC-94D831406DF0}) (Version: 15.4.5722.2 - Microsoft Corporation) بريد Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden عنصر تحكم ActiveX الخاص بـ Windows Live Mesh للاتصالات البعيدة (HKLM-x32\...\{E18B30AA-6E2D-480C-B918-AF61009F4010}) (Version: 15.4.5722.2 - Microsoft Corporation) معرض صور Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden 適用遠端連線的 Windows Live Mesh ActiveX 控制項 (HKLM-x32\...\{622DE1BE-9EDE-49D3-B349-29D64760342A}) (Version: 15.4.5722.2 - Microsoft Corporation) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-4285616394-42920220-2097449055-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-4285616394-42920220-2097449055-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-4285616394-42920220-2097449055-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-4285616394-42920220-2097449055-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-4285616394-42920220-2097449055-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-4285616394-42920220-2097449055-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-4285616394-42920220-2097449055-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-4285616394-42920220-2097449055-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-4285616394-42920220-2097449055-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-4285616394-42920220-2097449055-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\kevin\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.) ==================== Restore Points ========================= 18-05-2015 12:56:50 Supprimé Medieval II Total War 18-05-2015 17:54:22 DirectX est installé 20-05-2015 23:40:23 Windows Update 22-05-2015 10:57:54 Removed Google Earth. 22-05-2015 11:01:55 Configuré LabelPrint 22-05-2015 11:07:09 Configuré Power2Go 28-05-2015 10:35:03 avast! antivirus system restore point 30-05-2015 13:41:43 Restore Point Created by FRST ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2012-09-07 13:15 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 localhost ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {082DF164-CD89-4FFF-9E51-34D7D1CCA929} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-05-28] (Avast Software s.r.o.) Task: {0EF88098-E550-483C-870B-2E5D1DC29242} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated) Task: {299F7BD4-DC2D-44A6-B0E1-831CC11E830F} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS) Task: {2EFD4DB8-DD67-4C6A-B7ED-E4398B8552B3} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4285616394-42920220-2097449055-1000Core => C:\Users\kevin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-02-11] (Facebook Inc.) Task: {3CDB69F2-292E-4826-9C10-E834409ACF73} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2011-06-01] (ASUS) Task: {3E52FD29-6D72-4090-83B0-8FE1E7FF39E6} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {3F7FE773-8970-4EF3-B95E-2351A4E5AE6D} - System32\Tasks\{2D47111F-06E2-4E01-885E-021F4E43CC69} => pcalua.exe -a C:\Users\kevin\Downloads\ARMA2_OA_Build_106400.exe Task: {408020F0-5168-436E-9872-BF1DC5E3A818} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [2007-11-30] () Task: {57735E17-8015-44D7-ACE6-818C0B48C39B} - System32\Tasks\{BC22506C-E6F5-4C67-8EE1-B80E134D3CBC} => pcalua.exe -a "C:\Users\kevin\Downloads\shivle isle\setup.exe" -d "C:\Users\kevin\Downloads\shivle isle" Task: {590457B5-25F5-4E50-9D98-4AB90DC99F7E} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks Task: {62C67C0F-85AE-44D9-AE8F-C6FDD2EE11F7} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation) Task: {79F8C99D-7797-4750-9271-1F450F033530} - \Periodic Synchronize Task No Task File <==== ATTENTION Task: {8A38480D-5597-4B29-9C91-4CB1D53E949E} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2009-07-23] (ATK) Task: {91932A0D-F14F-47A3-8C03-2C2C99F0DB8C} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation) Task: {A7D9AC83-70EF-401A-A111-D1F01BB9DD36} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-18] (Google Inc.) Task: {B3873C42-CD24-4AD5-9CF4-3C961C5AB04C} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-03-18] (Google Inc.) Task: {B45D0DEF-C7FC-41F1-BFC5-6925BEEB0F92} - System32\Tasks\ASUSControlDeck => C:\Program Files (x86)\ASUS\ControlDeck\ControlDeck.exe [2010-06-09] (asus) Task: {B564C5A3-596B-48B1-8F1A-35627109BB2E} - System32\Tasks\{8465A068-1082-42EA-95B6-7A93E4120D15} => pcalua.exe -a "C:\Program Files\AVAST Software\Avast\aswRunDll.exe" -c "C:\Program Files\AVAST Software\Avast\Setup\setiface.dll" RunSetup Task: {B620FA2F-47F9-49BD-B83E-88BA7C0DFEE2} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17] (ASUS) Task: {C63DD8DE-1C2B-48FB-86B3-76C2D7D35E8F} - System32\Tasks\avastBCLRestartS-1-5-21-4285616394-42920220-2097449055-1000 => Chrome.exe Task: {CDC782B8-7866-44BD-BC85-3AE9A4B16079} - System32\Tasks\HPCustParticipation HP Photosmart 5510 series => C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPCustPartic.exe [2011-05-25] (Hewlett-Packard Co.) Task: {D1E32FAA-DF1E-4EE6-9703-A6E42E8C28D2} - System32\Tasks\SRS Premium Sound => C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\srspremiumpanel_64.exe [2010-11-19] (SRS Labs, Inc.) Task: {E8293EC4-9C43-4D0E-B1E4-EECEBD3E302B} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-4285616394-42920220-2097449055-1000UA => C:\Users\kevin\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-02-11] (Facebook Inc.) Task: {E8A6BE48-D3FF-486F-9D09-DF914FAFBAF5} - System32\Tasks\{A4F38729-2FFA-474D-8559-B394CE21D213} => C:\Program Files (x86)\Skype\\Phone\Skype.exe [2015-04-17] (Skype Technologies S.A.) Task: {EE64E2FE-5431-415A-A471-F07459C0E4B5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-15] (Adobe Systems Incorporated) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4285616394-42920220-2097449055-1000Core.job => C:\Users\kevin\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4285616394-42920220-2097449055-1000UA.job => C:\Users\kevin\AppData\Local\Facebook\Update\FacebookUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2012-07-04 22:55 - 2012-07-04 15:07 - 00087040 _____ () C:\Windows\System32\custmon64.dll 2013-08-30 13:46 - 2013-09-03 14:24 - 03233806 _____ () C:\Program Files (x86)\Tor\tor.exe 2011-04-13 04:51 - 2010-09-17 10:52 - 00047104 _____ () C:\Program Files\Trend Micro\AMSP\boost_thread-vc80-mt-1_36.dll 2011-04-13 04:51 - 2010-09-17 10:52 - 00042496 _____ () C:\Program Files\Trend Micro\AMSP\boost_date_time-vc80-mt-1_36.dll 2007-06-15 19:28 - 2007-06-15 19:28 - 00104960 _____ () C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt64.dll 2007-06-02 01:52 - 2007-06-02 01:52 - 00159744 _____ () C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll 2010-07-15 01:11 - 2010-07-15 01:11 - 00031360 _____ () C:\Program Files\P4G\DevMng.dll 2011-07-11 23:10 - 2007-11-30 20:20 - 00051768 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe 2008-10-01 08:02 - 2008-10-01 08:08 - 00011264 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll 2015-05-28 10:36 - 2015-05-28 10:36 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-05-28 10:36 - 2015-05-28 10:36 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-05-30 19:25 - 2015-05-30 19:25 - 02951680 _____ () C:\Program Files\AVAST Software\Avast\defs\15053001\algo.dll 2015-05-31 12:09 - 2015-05-31 12:09 - 02951680 _____ () C:\Program Files\AVAST Software\Avast\defs\15053100\algo.dll 2015-05-28 10:36 - 2015-05-28 10:36 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2010-02-23 15:14 - 2010-02-23 15:14 - 00041472 _____ () C:\Program Files (x86)\ASUS\ControlDeck\HelpFunc.dll 2010-02-23 15:14 - 2010-02-23 15:14 - 00071680 _____ () C:\Program Files (x86)\ASUS\ControlDeck\Brightness.dll 2010-02-23 15:11 - 2010-02-23 15:11 - 00076288 _____ () C:\Program Files (x86)\ASUS\ControlDeck\Volume.dll 2010-02-23 15:12 - 2010-02-23 15:12 - 00186880 _____ () C:\Program Files (x86)\ASUS\ControlDeck\Resolution.dll 2010-02-23 15:14 - 2010-02-23 15:14 - 00050688 _____ () C:\Program Files (x86)\ASUS\ControlDeck\P4GControl.dll 2011-01-18 22:21 - 2011-01-18 22:21 - 00204800 _____ () C:\Program Files (x86)\asus\VirtualCamera\virtualCamera.ax 2015-05-25 19:09 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libglesv2.dll 2015-05-25 19:09 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.81\libegl.dll 2007-06-15 19:28 - 2007-06-15 19:28 - 00147456 _____ () C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt.dll 2007-06-02 02:08 - 2007-06-02 02:08 - 00143360 _____ () C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-4285616394-42920220-2097449055-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\kevin\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 89.2.0.1 - 89.2.0.2 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AsusVibeLauncher.lnk => C:\Windows\pss\AsusVibeLauncher.lnk.CommonStartup MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk => C:\Windows\pss\LOLRecorder.lnk.CommonStartup MSCONFIG\startupfolder: C:^Users^kevin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup MSCONFIG\startupfolder: C:^Users^kevin^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^SmartWeb.lnk => C:\Windows\pss\SmartWeb.lnk.Startup MSCONFIG\startupreg: ADSMTray => C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe MSCONFIG\startupreg: APSDaemon => "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe MSCONFIG\startupreg: ASUSWebStorage => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S MSCONFIG\startupreg: ATKMEDIA => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe MSCONFIG\startupreg: ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe MSCONFIG\startupreg: BCSSync => "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices MSCONFIG\startupreg: BDRegion => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe" MSCONFIG\startupreg: ETDWare => %ProgramFiles%\Elantech\ETDCtrl.exe MSCONFIG\startupreg: Facebook Update => "C:\Users\kevin\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver MSCONFIG\startupreg: fssui => "C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe" -autorun MSCONFIG\startupreg: HControlUser => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe MSCONFIG\startupreg: Nuance PDF Reader-reminder => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini" MSCONFIG\startupreg: QuickTime Task => "D:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime MSCONFIG\startupreg: RemoteControl10 => "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" MSCONFIG\startupreg: SmartAudio => C:\Program Files\CONEXANT\SAII\SAIICpl.exe /t MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun MSCONFIG\startupreg: Steam => "D:\Program Files (x86)\Steam\Steam.exe" -silent MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" MSCONFIG\startupreg: Trend Micro Titanium => C:\Program Files\Trend Micro\Titanium\VizorShortCut.exe -ReFlush "none" "none" MSCONFIG\startupreg: UpdateLBPShortCut => "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5" MSCONFIG\startupreg: UpdateP2GoShortCut => "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" MSCONFIG\startupreg: VizorHtmlDialog.exe => "C:\Program Files\Trend Micro\Titanium\UIFramework\VizorHtmlDialog.exe" "DEF" "EULA" "C:\Program Files\Trend Micro\Titanium\UI\Installer.cmpt\resources\preinstall_01_welcome_trial.html" "DEF" "DEF" "DEF" MSCONFIG\startupreg: Wireless Console 3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{50D76052-134E-46DB-AF8E-63827F883C0F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{6D86BBA6-660B-4EA4-9C85-ADBCBF533D55}] => (Allow) LPort=2869 FirewallRules: [{B827E1C7-5A7A-484C-9653-2FE388A8B888}] => (Allow) LPort=1900 FirewallRules: [{8EF01BA1-D1F6-4D73-AADB-AB5E81F83EF1}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{A72233AF-337A-40D3-BCE9-4CBCFF8C6B0B}] => (Allow) LPort=5353 FirewallRules: [{506984D9-DE61-4E40-9679-2D3BDE5A3CB8}] => (Allow) LPort=8182 FirewallRules: [{CC87D9C6-3468-4732-80B0-6BA37A8B3D0E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe FirewallRules: [{945BB549-AD51-4619-B6D3-2B9646CE277F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD10\PowerDVD10.EXE FirewallRules: [{6D9D90B9-BC4A-44AA-929C-D67A5BB106A2}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{57CF52C3-8F51-4F01-B0CE-FAEC52D85D2D}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{7C058D04-F87E-435F-846C-D4EF87A98C99}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{F4588A75-4D95-4D5C-828E-0CC7EB258AA4}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [{6928E459-CFCE-4168-80D0-36E926441E98}] => (Allow) C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe FirewallRules: [TCP Query User{808F270F-25AF-450C-8B19-C4CBD28D263B}C:\program files (x86)\java\jre6\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre6\bin\javaw.exe FirewallRules: [UDP Query User{77880C34-8ECE-4356-82C9-61CA3A17430F}C:\program files (x86)\java\jre6\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre6\bin\javaw.exe FirewallRules: [{B36DB58C-6FF7-4BAA-8970-40BE2C4E4A93}] => (Allow) C:\Program Files (x86)\adslTV\adsltv.exe FirewallRules: [{62AA906E-3444-44CE-8EBD-2543A319F6D9}] => (Allow) C:\Program Files (x86)\adslTV\adsltv.exe FirewallRules: [{57B2EDED-FCED-4125-A747-DA76275B3D0A}] => (Allow) C:\Program Files (x86)\adslTV\VLC\vlc.exe FirewallRules: [{31398383-0F20-4A4D-93B7-11118CE931E2}] => (Allow) C:\Program Files (x86)\adslTV\VLC\vlc.exe FirewallRules: [TCP Query User{27680A4F-8CB4-4758-B162-492DC05F9D44}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [UDP Query User{FAC26D38-CC11-4171-9D5A-B5364FF1E663}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe FirewallRules: [{D5B375F4-0600-498F-AF94-0277D6801FF9}] => (Allow) C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword.exe FirewallRules: [{E147578B-2848-47C4-8423-9E82A5EAAD9C}] => (Allow) C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword.exe FirewallRules: [{91F977C6-6F08-4E0F-911B-ACF047541C80}] => (Allow) C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword_PitBoss.exe FirewallRules: [{8D0661F1-0CC7-430D-898C-A0607A1790FD}] => (Allow) C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword_PitBoss.exe FirewallRules: [{73F203B2-8906-41D9-ACAF-6BAB35AB9DC0}] => (Allow) C:\Program Files\HP\HP Photosmart 5510 series\Bin\DeviceSetup.exe FirewallRules: [{14D565A2-663B-4D34-B584-4E15FAA964F6}] => (Allow) C:\Program Files\HP\HP Photosmart 5510 series\Bin\HPNetworkCommunicator.exe FirewallRules: [TCP Query User{2145A521-6C8E-4FFA-A5A3-D0AD71EEBF97}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [UDP Query User{D0C951E0-19D8-47AF-A172-F8053842E7B2}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe FirewallRules: [{49D404FF-B91F-4B6E-926C-0EFDB12E8DCA}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{C9E9648D-CE79-4484-9162-C2A7DFA215AB}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe FirewallRules: [TCP Query User{31BDB675-A0BC-479D-8141-B306F928B3D3}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe FirewallRules: [UDP Query User{F535028D-7895-4FE2-9B21-D3FA08D20ACC}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe FirewallRules: [{4264CD5B-9E3E-41C4-B677-878B06BB17E9}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Fate of the World\bin\fotw.exe FirewallRules: [{D40A3BF5-0EB4-46F7-98FD-DD89182B521A}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Fate of the World\bin\fotw.exe FirewallRules: [{0BA884AE-33D4-4A04-B5E8-2025B58EC59F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe FirewallRules: [{80F0A2B8-9901-4D3C-899A-C328ADFA44CE}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V SDK\Sid Meier's Civilization V SDK.exe FirewallRules: [{218615E4-B607-4AB5-9B2C-4B20878893FB}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\DLCsetup\PMC\datacachepreprocessor.exe FirewallRules: [{49B6796E-EFCB-4846-837B-E7DB56B9589F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\DLCsetup\PMC\datacachepreprocessor.exe FirewallRules: [{E80DB70C-3E8E-4A0F-BC62-77D2FB31B729}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\DLCsetup\BAF\datacachepreprocessor.exe FirewallRules: [{8B5F5170-B2BA-4FB8-9E8D-217AC7D36C4F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\DLCsetup\BAF\datacachepreprocessor.exe FirewallRules: [{3D57CF64-88A2-4B3A-8663-55C1C05AD2AD}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe FirewallRules: [{D0804EFA-40C7-4326-96C6-74A417DF18BE}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Arma 2\arma2.exe FirewallRules: [{AC4031CE-9E78-4C09-8CDF-94E2B9AB1AC6}] => (Allow) C:\Users\kevin\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{B772ED1E-27D0-4178-9961-E788917DA659}] => (Allow) C:\Users\kevin\AppData\Roaming\BitTorrent\BitTorrent.exe FirewallRules: [{496A3A35-2FEA-4148-A841-CD0FC6962147}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\ArmA2OA.exe FirewallRules: [{D361B9A7-7E54-44B0-AA04-47476DFD310A}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\ArmA2OA.exe FirewallRules: [{A83BCFB9-D44D-4692-898F-9A7F9E9880AC}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\arma2oa.exe FirewallRules: [{D3A50039-8207-4A16-9B75-B63EAE9A0034}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\Expansion\beta\arma2oa.exe FirewallRules: [{98C68CAE-28E6-400A-ADBD-B2CCFECA36E2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{8725EC3E-1A47-4EB8-AA42-5C6E3B633C1F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe FirewallRules: [{11A8F4AD-CF07-4494-8699-0FD8B9FC73B7}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe FirewallRules: [{867E4B9D-F658-4830-9AF7-D1F16926110F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Galactic Civilizations II - Ultimate Edition\Twilight\GC2TwilightOfTheArnor.exe FirewallRules: [{5D68BD02-0582-46EE-BE6F-40F466B64BE7}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Galactic Civilizations II - Ultimate Edition\Twilight\GC2TwilightOfTheArnor.exe FirewallRules: [{E35349E7-8ED6-4A56-83D3-E7E033D4B597}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Blood Bowl Chaos Edition\BB_Chaos.exe FirewallRules: [{41832DDA-48E7-4D8C-B626-779019935F22}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Blood Bowl Chaos Edition\BB_Chaos.exe FirewallRules: [{7ADAD67E-3F84-4695-9EEA-27011C5729FE}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{DE94C76B-2F26-427F-B6E1-E6505F7267FE}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Civilization V\Launcher.exe FirewallRules: [{C7AC661E-D457-4E57-84C5-426BA1C2332A}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\ArmA2OA_BE.exe FirewallRules: [{AE2F7C62-0BE6-4014-A782-000306B112DD}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\ArmA2OA_BE.exe FirewallRules: [{D2C059D1-778F-4424-AD33-6F1DAE5C8221}] => (Allow) C:\Users\kevin\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe FirewallRules: [{4FA5FE97-3799-461A-8AA7-E6B12D738FEA}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{28561B23-7DFA-4BA9-BECD-D22ED77EE9FD}] => (Allow) D:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{E9C4556D-2891-476C-A40F-88BD3626689B}] => (Allow) C:\Users\kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{01C18F4E-BB68-413C-9008-D93CD1E0D8DF}] => (Allow) C:\Users\kevin\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{0A7A66F7-4E4B-4E7F-9004-765AF13335DC}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Nidhogg\Nidhogg.exe FirewallRules: [{A0BD533A-99AB-4633-827E-51AE31011C6C}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Nidhogg\Nidhogg.exe FirewallRules: [{A9D3929C-6A55-4E33-8D51-C7E7B08C87D0}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\DLCsetup\ACR\datacachepreprocessor.exe FirewallRules: [{BBF17297-26B6-4BCC-B802-F90302097A2C}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\arma 2 operation arrowhead\DLCsetup\ACR\datacachepreprocessor.exe FirewallRules: [{067E833D-1AA3-4BCB-8761-68F3D14EC6F2}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Pirates!\Pirates!.exe FirewallRules: [{E0F5F39F-93CA-4BE5-A981-57743500BE7B}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Sid Meier's Pirates!\Pirates!.exe FirewallRules: [{7E6AB712-EF05-40FD-A346-4CB4378A085F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe FirewallRules: [{4CAB3EDE-7FCF-4D6E-BC33-E7F98B75D885}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Stranded Deep\Stranded_Deep_x64.exe FirewallRules: [{E4932F29-2A61-4289-827E-D6C32DA45BDD}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Stranded Deep\Stranded_Deep_x64.exe FirewallRules: [{B99955D2-5398-4FC8-B10B-C0A456ED61D1}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\theHunterPrimal\launcher\launcher.exe FirewallRules: [{03DCE448-4F5C-499F-B41A-FE3179665EEF}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\theHunterPrimal\launcher\launcher.exe FirewallRules: [{55B852DA-179A-4E52-8E88-17BB359EF10E}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe FirewallRules: [{9873D4BA-712E-4B0D-AF49-EA38E9F10806}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\hotline_miami\HotlineMiami.exe FirewallRules: [{B6B09866-909F-4B5B-8AE9-32DBFCBC1DB3}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Miasmata\Miasmata.exe FirewallRules: [{508280B6-B889-4399-8301-7C0E0AE88375}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Miasmata\Miasmata.exe FirewallRules: [{6829D745-2412-426B-9066-B6F95BAEFD50}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe FirewallRules: [{D6C136E4-E70D-4B62-BA91-76B4B004F43E}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Heroes of Might & Magic III - HD Edition\HOMM3Launcher.exe FirewallRules: [{E3D2C5F7-D037-4AB2-8C8E-97895017502C}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\theHunterPrimal\launcher\launcher.exe FirewallRules: [{4936958E-588E-4ABC-8C1E-74666CBB034F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\theHunterPrimal\launcher\launcher.exe FirewallRules: [{0F864AC3-40A0-4CAD-8E33-B62AC578CF85}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\BeastsOfPrey\BoPServer.exe FirewallRules: [{101CE72C-4728-4D96-A74E-36C897A942FC}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\BeastsOfPrey\BoPServer.exe FirewallRules: [{A32CC823-2C23-4846-A439-2B89C1B74316}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\BeastsOfPrey\BoP.exe FirewallRules: [{B12DF287-95B6-4F0F-A03F-D5BBFFAFDB18}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\BeastsOfPrey\BoP.exe FirewallRules: [{76F6EC74-B217-4942-A860-8702B75943C4}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Oblivion\OblivionLauncher.exe FirewallRules: [{7716F090-F711-4A8D-BA21-0FA7906CA873}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Oblivion\OblivionLauncher.exe FirewallRules: [{0989C85E-D734-470B-A1EE-AA320E1A4BB1}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{61C13368-B1C3-4810-8982-4C9AD7D88834}] => (Allow) D:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{7F19D0CC-9E72-482F-9C21-69BAA9FF3100}] => (Allow) D:\Program Files (x86)\Winamp\winamp.exe ==================== Faulty Device Manager Devices ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Teredo Tunneling Pseudo-Interface Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (05/31/2015 00:23:52 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme chrome.exe version 43.0.2357.81 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : fb8 Heure de début : 01d09b8a765e651b Heure de fin : 3 Chemin d’accès de l’application : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ID de rapport : 1a5c0665-077f-11e5-94f0-722f682be8c0 Error: (05/31/2015 00:12:37 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhost (2584) WebCacheLocal: Une tentative d'ouverture du fichier "C:\Users\kevin\AppData\Local\Microsoft\Windows\WebCache\V01.chk" pour accès en lecture/écriture a échoué en indiquant l'erreur système 32 (0x00000020) : "Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. ". L'opération d'ouverture de fichier échouera en indiquant l'erreur -1032 (0xfffffbf8). Error: (05/30/2015 01:41:42 PM) (Source: VSS) (EventID: 8194) (User: ) Description: Erreur du service de cliché instantané des volumes : erreur lors de l’interrogation de l’interface IVssWriterCallback. hr = 0x80070005, Accès refusé. . Cette erreur est souvent due à des paramètres de sécurité incorrects dans le processus du rédacteur ou du demandeur. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {7286fa1d-5c21-4289-b25e-d86366eece1c} Error: (05/29/2015 07:17:20 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17801, horodatage : 0x5536642c Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0xfffb6b88 ID du processus défaillant : 0x97c Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (05/27/2015 07:54:58 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme chrome.exe version 43.0.2357.81 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 1438 Heure de début : 01d098a4f524864f Heure de fin : 8 Chemin d’accès de l’application : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ID de rapport : 795717cc-0499-11e5-b55f-f46d04f8d56d Error: (05/27/2015 04:36:23 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante thehunterprimal.exe, version : 1.0.0.1, horodatage : 0x554b4d8c Nom du module défaillant : MSVCR80.dll, version : 8.0.50727.6195, horodatage : 0x4dcddbf3 Code d’exception : 0xc000000d Décalage d’erreur : 0x00008aa0 ID du processus défaillant : 0x15cc Heure de début de l’application défaillante : 0xthehunterprimal.exe0 Chemin d’accès de l’application défaillante : thehunterprimal.exe1 Chemin d’accès du module défaillant: thehunterprimal.exe2 ID de rapport : thehunterprimal.exe3 Error: (05/27/2015 01:15:22 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: La création du contexte d’activation a échoué pour « C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest1 ». Erreur dans le fichier de manifeste ou de stratégie « C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest2 » à la ligne C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest3. Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active. Les composants en conflit sont : Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest. Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifest. Error: (05/26/2015 04:33:05 PM) (Source: Google Update) (EventID: 20) (User: kevin-PC) Description: Network Request Error. Error: 0x80072ee7. Http status code: 0. Url=https://www.facebook.com/omaha/update.php Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http s Error: (05/26/2015 03:12:44 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: La création du contexte d’activation a échoué pour « C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest1 ». Erreur dans le fichier de manifeste ou de stratégie « C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest2 » à la ligne C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest3. Une version de composant nécessaire à l’application est en conflit avec une autre version de composant déjà active. Les composants en conflit sont : Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifest. Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifest. Error: (05/24/2015 00:32:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante java.exe, version : 8.0.25.18, horodatage : 0x54345ca0 Nom du module défaillant : awt.dll, version : 8.0.25.18, horodatage : 0x543462c4 Code d’exception : 0xc000041d Décalage d’erreur : 0x0000000000024a40 ID du processus défaillant : 0x674 Heure de début de l’application défaillante : 0xjava.exe0 Chemin d’accès de l’application défaillante : java.exe1 Chemin d’accès du module défaillant: java.exe2 ID de rapport : java.exe3 System errors: ============= Error: (05/31/2015 00:07:45 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: AUTORITE NT) Description: 0x8000002a36\SystemRoot\System32\Config\SOFTWARE Error: (05/31/2015 00:07:48 PM) (Source: EventLog) (EventID: 6008) (User: ) Description: L’arrêt système précédant à 22:27:56 le ‎30/‎05/‎2015 n’était pas prévu. Error: (05/30/2015 10:18:39 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {995C996E-D918-4A8C-A302-45719A6F4EA7} Error: (05/30/2015 03:23:58 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: spécifiques à l’applicationLocalExécution{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORITE NTSystèmeS-1-5-18LocalHost (utilisation de LRPC) Error: (05/30/2015 03:21:13 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: AUTORITE NT) Description: 0x8000002a36\SystemRoot\System32\Config\SOFTWARE Error: (05/30/2015 02:05:46 PM) (Source: Schannel) (EventID: 4120) (User: AUTORITE NT) Description: L’alerte fatale suivante a été générée : 10. L’état d’erreur interne est 10. Error: (05/30/2015 01:51:47 PM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: spécifiques à l’applicationLocalExécution{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORITE NTSystèmeS-1-5-18LocalHost (utilisation de LRPC) Error: (05/30/2015 01:48:29 PM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: AUTORITE NT) Description: 0x8000002a36\SystemRoot\System32\Config\SOFTWARE Error: (05/30/2015 01:41:30 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Cache de police de Windows Presentation Foundation 3.0.0.0 s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Error: (05/30/2015 01:41:28 PM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Windows Live Family Safety Service s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 0 millisecondes : Redémarrer le service. Microsoft Office: ========================= Error: (05/31/2015 00:23:52 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: chrome.exe43.0.2357.81fb801d09b8a765e651b3C:\Program Files (x86)\Google\Chrome\Application\chrome.exe1a5c0665-077f-11e5-94f0-722f682be8c0 Error: (05/31/2015 00:12:37 PM) (Source: ESENT) (EventID: 490) (User: ) Description: taskhost2584WebCacheLocal: C:\Users\kevin\AppData\Local\Microsoft\Windows\WebCache\V01.chk-1032 (0xfffffbf8)32 (0x00000020)Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. Error: (05/30/2015 01:41:42 PM) (Source: VSS) (EventID: 8194) (User: ) Description: 0x80070005, Accès refusé. Opération : Données du rédacteur en cours de collecte Contexte : ID de classe du rédacteur: {e8132975-6f93-4464-a53e-1050253ae220} Nom du rédacteur: System Writer ID d’instance du rédacteur: {7286fa1d-5c21-4289-b25e-d86366eece1c} Error: (05/29/2015 07:17:20 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.178015536642cunknown0.0.0.000000000c0000005fffb6b8897c01d09a3038b87f55C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown8fd0a956-0626-11e5-9697-f46d04f8d56d Error: (05/27/2015 07:54:58 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: chrome.exe43.0.2357.81143801d098a4f524864f8C:\Program Files (x86)\Google\Chrome\Application\chrome.exe795717cc-0499-11e5-b55f-f46d04f8d56d Error: (05/27/2015 04:36:23 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: thehunterprimal.exe1.0.0.1554b4d8cMSVCR80.dll8.0.50727.61954dcddbf3c000000d00008aa015cc01d0988a7e836117D:\Program Files (x86)\Steam\steamapps\common\theHunterPrimal\game\thehunterprimal.exeC:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d09154e044272b9a\MSVCR80.dllbed0c80a-047d-11e5-b55f-f46d04f8d56d Error: (05/27/2015 01:15:22 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifestd:\program files (x86)\steam\steamapps\common\thehunterprimal\launcher\launcher.exe Error: (05/26/2015 04:33:05 PM) (Source: Google Update) (EventID: 20) (User: kevin-PC) Description: Network Request Error. Error: 0x80072ee7. Http status code: 0. Url=https://www.facebook.com/omaha/update.php Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=IE, wpad=1, script=. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying WinHTTP. Send request returned 0x80072ee7. Http status code 0. trying CUP:iexplore. Send request returned 0x80004005. Http status code 0. Trying config: source=, direct connection. trying CUP:WinHTTP. Send request returned 0x80072ee7. Http s Error: (05/26/2015 03:12:44 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_fa381d5f175bfb52.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18807_none_41e554362bd82458.manifestd:\program files (x86)\steam\steamapps\common\thehunterprimal\launcher\launcher.exe Error: (05/24/2015 00:32:05 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: java.exe8.0.25.1854345ca0awt.dll8.0.25.18543462c4c000041d0000000000024a4067401d0960b9b082201D:\Program Files (x86)\Minecraft\runtime\jre-x64\1.8.0_25\bin\java.exeD:\Program Files (x86)\Minecraft\runtime\jre-x64\1.8.0_25\bin\awt.dll1f1bb3a5-0200-11e5-a9ce-f46d04f8d56d CodeIntegrity Errors: =================================== Date: 2012-09-07 13:10:38.166 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\ComboFix\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2012-09-07 13:10:38.088 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\ComboFix\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i3 CPU M 380 @ 2.53GHz Percentage of memory in use: 50% Total physical RAM: 3948.54 MB Available physical RAM: 1939.75 MB Total Pagefile: 7895.29 MB Available Pagefile: 5218.91 MB Total Virtual: 8192 MB Available Virtual: 8191.86 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:254.37 GB) (Free:168.51 GB) NTFS ==>[Drive with boot components (obtained from BCD)] Drive d: (DATA) (Fixed) (Total:316.8 GB) (Free:221.84 GB) NTFS Drive e: (ASSHINMP3-2) (CDROM) (Total:0.6 GB) (Free:0 GB) CDFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: EF24B474) Partition 1: (Not Active) - (Size=25 GB) - (Type=1C) Partition 2: (Active) - (Size=254.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=316.8 GB) - (Type=OF Extended) ==================== End of log ============================