extras.txt

Cliquez pour partager vos propres fichiers

Format du document : text/plain

Prévisualisation

ÿþOTL Extras logfile created on: 14/10/2013 18:42:04 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Damien\Desktop
64bit- Enterprise Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16721)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

3,98 Gb Total Physical Memory | 2,85 Gb Available Physical Memory | 71,59% Memory free
7,97 Gb Paging File | 6,15 Gb Available in Paging File | 77,27% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 111,69 Gb Total Space | 58,36 Gb Free Space | 52,25% Space Free | Partition Type: NTFS
Drive G: | 298,09 Gb Total Space | 74,29 Gb Free Space | 24,92% Space Free | Partition Type: NTFS

Computer Name: DAMIEN-PC | User Name: Damien | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]

[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]

[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{132E9571-5F51-4DD6-9BE4-6CAAC03F38C1}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{1AC70D37-600E-43CF-90BD-F1A605AEE723}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=c:\windows\system32\spoolsv.exe |
"{25E5FA54-91BA-40F5-B972-264244FBF361}" = lport=8090 | protocol=6 | dir=in | name=war thunder |
"{2D749DD6-1F71-4368-A62A-B060AB5E162B}" = lport=33333 | protocol=6 | dir=in | name=war thunder |
"{3D7B6ABC-162C-4D79-A8DF-6979E1372E95}" = lport=6881 | protocol=6 | dir=in | name=war thunder |
"{3FC70CC1-AF6A-4E44-AB92-3021ED471440}" = lport=10243 | protocol=6 | dir=in | app=system |
"{4CD8558F-7A05-4B58-8AB9-EFBFFF320931}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{5148C813-E6FA-45BA-AEB3-4B0F6836B509}" = lport=445 | protocol=6 | dir=in | app=system |
"{5718FA4C-1650-4991-9C9B-1BB0BBDEF6EA}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=c:\windows\system32\svchost.exe |
"{64290232-2A35-4591-B887-557818603E5A}" = lport=443 | protocol=6 | dir=in | name=war thunder |
"{6990BC26-77AC-4F91-B28F-2CFBCF1870BD}" = rport=137 | protocol=17 | dir=out | app=system |
"{6EA332DC-20B3-4343-927A-52ADEE9406BB}" = rport=138 | protocol=17 | dir=out | app=system |
"{719A5C1C-6651-494D-B41B-2E0C4D2E98CD}" = lport=80 | protocol=6 | dir=in | name=war thunder |
"{74256A14-F597-40C5-ACF0-3BCB4C9A984A}" = lport=7850 | protocol=6 | dir=in | name=war thunder |
"{7560BF3E-9BE2-48D1-AEC0-EA8AD32332F4}" = lport=3478 | protocol=17 | dir=in | name=war thunder |
"{834FF4EA-C0B3-4965-AB10-C0664D32F4FA}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9FAD5462-0F64-46B5-9BAB-6F603E6E7F67}" = lport=2869 | protocol=6 | dir=in | app=system |
"{AD90E083-E3C3-49B2-9403-52EF1BA1379D}" = rport=139 | protocol=6 | dir=out | app=system |
"{AE508285-4AB6-40F0-812E-874A68405327}" = rport=445 | protocol=6 | dir=out | app=system |
"{BF9512EA-4560-4608-A833-359929B5481B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C0EA6D94-B890-440B-B58B-B23EB904480D}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=partage de fichiers et d imprimantes (service spouleur - rpc-epmap) |
"{C27E6507-F21D-457F-9F0A-742169D139BA}" = lport=138 | protocol=17 | dir=in | app=system |
"{C3313F5D-CE21-4592-913D-0D3D15C73BF7}" = lport=139 | protocol=6 | dir=in | app=system |
"{C878AF50-C861-4997-ACFA-3CBB7E78B9AA}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=c:\windows\system32\svchost.exe |
"{D101AD60-2D21-4DDE-8470-3B642C51CDA7}" = lport=20443 | protocol=6 | dir=in | name=war thunder |
"{D3E9A004-EF2F-4E18-AAC6-FFBDEBCD9B33}" = lport=20010 | protocol=17 | dir=in | name=war thunder |
"{D5666C3C-AF3A-4221-A476-08A9C11DB98F}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{DEADF2C9-5FB5-4C63-9FDC-723BA67B85E3}" = lport=137 | protocol=17 | dir=in | app=system |
"{EC6787C6-19CA-4193-B865-D3DB655AD542}" = lport=27022 | protocol=6 | dir=in | name=war thunder |
"{F4074665-3308-48CA-90C8-ABFBBE91F9A8}" = rport=10243 | protocol=6 | dir=out | app=system |
"{FE5043A2-F4FA-4E1D-9BA0-12882C46A7A2}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0258C309-ABEF-41EA-893A-E91AB278D196}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{02D015B5-65BC-48F7-843D-19470B0807D9}" = protocol=6 | dir=in | app=c:\program files (x86)\vmware\vmware workstation\vmware-authd.exe |
"{0EC7B455-7164-4534-B38E-CC0864288878}" = dir=in | app=c:\users\damien\appdata\local\microsoft\skydrive\skydrive.exe |
"{0FB1D0FC-C67C-4C47-A8A7-33C0E4FEFB9F}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{1367DAD7-E86A-4567-B20C-152FB850E089}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2163\agent.exe |
"{14821302-FABC-426A-B881-3FEE4ED0A534}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{1D5A416E-70F6-412E-828F-B6357A3BDEB7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{1D6F121E-2C38-48F6-824A-F3BDB2C38CBF}" = protocol=1 | dir=out | name=partage de fichiers et d imprimantes (demande d écho - trafic sortant icmpv4) |
"{2C79DE88-013F-4E07-9B25-A09C84ABB425}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{321E0EFD-37A1-4E63-B07C-70EE23050816}" = protocol=6 | dir=out | app=system |
"{34D45F20-BFE5-4E86-B529-A9BB8F8EA3A5}" = protocol=6 | dir=in | app=c:\program files (x86)\sfr\mediacenter evolution\mediacenter.exe |
"{391FD1D9-6A19-4A3A-B013-9AE681294753}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{3DCE4092-D024-4D53-9867-781C2FD30380}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2163\agent.exe |
"{421985C2-B109-4741-99FD-DFAD30D94766}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{45AF9FB5-0EAB-4AD8-BEBC-5144CF1BD2D6}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{4B37217D-4637-4893-BEB2-38A782F71E7C}" = protocol=17 | dir=in | app=c:\program files (x86)\vmware\vmware workstation\vmware-authd.exe |
"{4E05FD98-84E2-401D-940F-E0665CF881F7}" = protocol=6 | dir=in | app=c:\program files (x86)\vmware\vmware workstation\vmware-authd.exe |
"{5B38656C-BB00-47AB-9AD4-D06E96E3FE3F}" = protocol=58 | dir=out | name=partage de fichiers et d imprimantes (demande d écho - icmpv6 sortant) |
"{64948BD8-AAB5-4F39-9D2C-F8841D5781A2}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2045\agent.exe |
"{64E8C1CB-CE42-48EB-BD56-EE022C332174}" = protocol=17 | dir=in | app=c:\program files (x86)\vmware\vmware workstation\vmware-authd.exe |
"{69678743-4A96-4D77-A387-5422469F850B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{6C1FAB98-E74D-4F1A-BA8C-30B6713F7472}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{6DD08071-981C-4B8F-BA86-128BF5D67EBB}" = protocol=17 | dir=in | app=c:\program files (x86)\warthunder\launcher.exe |
"{6EAA32EF-A7AF-4655-8284-2C44690EF7ED}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{732C2A5E-1BF0-4103-A1B2-209B82C2736A}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{754A020C-4517-4B7E-9E33-DADB2D9BD980}" = protocol=58 | dir=in | name=partage de fichiers et d imprimantes (demande d écho - icmpv6 entrant) |
"{75B11DF5-FC45-4997-92D1-A8A93798D0AF}" = protocol=17 | dir=in | app=c:\users\damien\appdata\roaming\utorrent\utorrent.exe |
"{880BAAC2-1974-44ED-BBC2-47E98A4DDEAB}" = protocol=6 | dir=in | app=c:\users\damien\appdata\roaming\utorrent\utorrent.exe |
"{8A5A1303-A5D4-433F-81D3-A0D225917B54}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{8E6769EC-8855-49F9-91DC-3B668E3BAC65}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{913EC9AC-18C4-458B-9D4D-80000489E1FD}" = protocol=17 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{942B840D-E92D-497E-A270-256374DE9EF6}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{9D99E3E3-F314-4F91-952F-054BD14662F7}" = protocol=1 | dir=in | name=partage de fichiers et d imprimantes (demande d écho - trafic entrant icmpv4) |
"{A41F74AC-22E2-4CB4-9A12-8E533B5F9D5D}" = protocol=6 | dir=in | app=c:\program files (x86)\vmware\vmware workstation\vmware-authd.exe |
"{A6D6A401-65B7-42DC-B097-FCCA82A2DAF4}" = protocol=6 | dir=in | app=c:\program files (x86)\warthunder\launcher.exe |
"{A86612E9-4478-40C4-ACCD-4D14863FB8B0}" = protocol=6 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{AED63025-241F-426B-9D8A-2BEE3BB50AD3}" = protocol=17 | dir=in | app=c:\program files (x86)\vmware\vmware workstation\vmware-authd.exe |
"{B278BB13-6A2B-4E99-8800-93DEF7542677}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{BE316846-58F1-4E80-AF33-A6768702B2E0}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{D538A11B-900B-4BDE-8065-F6838C326F8C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{D5E18F9A-6E9C-4EF5-9D99-6CFAD9D803B4}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\counter-strike global offensive\csgo.exe |
"{D6DAB10F-067B-479D-8908-F564AEC1B96D}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{D7F05BAA-6327-40E2-ADAC-3718A04029BA}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{DB6655FE-2513-4B5B-9F65-B9220ABBF32A}" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{DBBA9B20-6F3C-45D7-91FF-17D8D493E61A}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe |
"{DDBFD57A-8E38-4169-8F6C-9E20BC814F41}" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{DE2FB5FA-29E8-4107-89F9-5A199B987970}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2045\agent.exe |
"{FF5FE20D-1E91-407F-A32E-765D3A57E8AC}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{FFF9CC3A-B96A-4F6C-B397-B2DD1D1E426E}" = protocol=17 | dir=in | app=c:\program files (x86)\sfr\mediacenter evolution\mediacenter.exe |
"TCP Query User{9466BC80-7670-46E8-B774-A789BF4ABBFE}C:\program files (x86)\warthunder\aces.exe" = protocol=6 | dir=in | app=c:\program files (x86)\warthunder\aces.exe |
"TCP Query User{D4FBE085-402E-450D-B416-27149B18E439}C:\program files (x86)\lolreplay\lolreplay.exe" = protocol=6 | dir=in | app=c:\program files (x86)\lolreplay\lolreplay.exe |
"TCP Query User{D71E4799-FD10-47FD-8FA1-1760A3C4C992}C:\program files (x86)\lolreplay\lolreplay.exe" = protocol=6 | dir=in | app=c:\program files (x86)\lolreplay\lolreplay.exe |
"TCP Query User{DE8A610D-83AD-40F1-9682-CC051D1B2871}C:\program files (x86)\warthunder\aces.exe" = protocol=6 | dir=in | app=c:\program files (x86)\warthunder\aces.exe |
"UDP Query User{5EC70EB9-5CE2-49D2-9721-FD3C33F67DBD}C:\program files (x86)\warthunder\aces.exe" = protocol=17 | dir=in | app=c:\program files (x86)\warthunder\aces.exe |
"UDP Query User{6212A1A1-C7C8-4C51-98CB-C71C1A80E8C1}C:\program files (x86)\warthunder\aces.exe" = protocol=17 | dir=in | app=c:\program files (x86)\warthunder\aces.exe |
"UDP Query User{ACBA010D-2C93-4254-A4E2-CDE57A55D843}C:\program files (x86)\lolreplay\lolreplay.exe" = protocol=17 | dir=in | app=c:\program files (x86)\lolreplay\lolreplay.exe |
"UDP Query User{C94B09F0-BD3F-4BAE-B17B-A10A3F9B75F7}C:\program files (x86)\lolreplay\lolreplay.exe" = protocol=17 | dir=in | app=c:\program files (x86)\lolreplay\lolreplay.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{015C5B35-B678-451C-9AEE-821E8D69621C}_is1" = PeerBlock 1.1 (r518)
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{4B5F58F7-C7D1-3CE3-9B37-B657F0852643}" = Microsoft .NET Framework 4 Client Profile FRA Language Pack
"{90140000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{7BC9B5EB-125A-4E9B-97E1-8D85B5E960B8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-040C-1000-0000000FF1CE}" = Microsoft Office Access MUI (French) 2010
"{90140000-0015-040C-1000-0000000FF1CE}_Office14.PROPLUS_{E3526022-672F-42D2-B23D-DB6C216525A8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-040C-1000-0000000FF1CE}" = Microsoft Office Excel MUI (French) 2010
"{90140000-0016-040C-1000-0000000FF1CE}_Office14.PROPLUS_{E3526022-672F-42D2-B23D-DB6C216525A8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-040C-1000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (French) 2010
"{90140000-0018-040C-1000-0000000FF1CE}_Office14.PROPLUS_{E3526022-672F-42D2-B23D-DB6C216525A8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-040C-1000-0000000FF1CE}" = Microsoft Office Publisher MUI (French) 2010
"{90140000-0019-040C-1000-0000000FF1CE}_Office14.PROPLUS_{E3526022-672F-42D2-B23D-DB6C216525A8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-040C-1000-0000000FF1CE}" = Microsoft Office Outlook MUI (French) 2010
"{90140000-001A-040C-1000-0000000FF1CE}_Office14.PROPLUS_{E3526022-672F-42D2-B23D-DB6C216525A8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-040C-1000-0000000FF1CE}" = Microsoft Office Word MUI (French) 2010
"{90140000-001B-040C-1000-0000000FF1CE}_Office14.PROPLUS_{E3526022-672F-42D2-B23D-DB6C216525A8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0401-1000-0000000FF1CE}" = Microsoft Office Proof (Arabic) 2010
"{90140000-001F-0401-1000-0000000FF1CE}_Office14.PROPLUS_{4D5950EA-6D1F-44DB-A814-C8B57FE8E883}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-1000-0000000FF1CE}_Office14.PROPLUS_{70A3169E-288F-454F-A08D-20DF66639B50}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUS_{0242505C-4E90-407F-9299-B5B275F50D86}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-040C-1000-0000000FF1CE}" = Microsoft Office Proof (French) 2010
"{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUS_{B51389C8-2890-4633-81D8-47D2A7402274}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0413-1000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2010
"{90140000-001F-0413-1000-0000000FF1CE}_Office14.PROPLUS_{AA4240DC-855A-477B-8E38-89FBC16056E3}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0C0A-1000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2010
"{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.PROPLUS_{1779650B-2E44-4A19-8DF6-3866D645764A}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-040C-1000-0000000FF1CE}" = Microsoft Office Proofing (French) 2010
"{90140000-002C-040C-1000-0000000FF1CE}_Office14.PROPLUS_{2509F305-2B34-41FD-ABBA-01B898C66110}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-0000-1000-0000000FF1CE}" = Microsoft Office Office 32-bit Components 2010
"{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUS_{E8B6D35B-0B6F-4DCE-9493-859BF3809A7F}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0043-040C-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (French) 2010
"{90140000-0043-040C-1000-0000000FF1CE}_Office14.PROPLUS_{0D103750-8493-40B1-A4C8-EF5E468CDD74}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-040C-1000-0000000FF1CE}" = Microsoft Office InfoPath MUI (French) 2010
"{90140000-0044-040C-1000-0000000FF1CE}_Office14.PROPLUS_{E3526022-672F-42D2-B23D-DB6C216525A8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-040C-1000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2010
"{90140000-006E-040C-1000-0000000FF1CE}_Office14.PROPLUS_{8360CFD4-3630-4F49-A1A0-31BB7A6CBAAC}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-040C-1000-0000000FF1CE}" = Microsoft Office OneNote MUI (French) 2010
"{90140000-00A1-040C-1000-0000000FF1CE}_Office14.PROPLUS_{E3526022-672F-42D2-B23D-DB6C216525A8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-040C-1000-0000000FF1CE}" = Microsoft Office Groove MUI (French) 2010
"{90140000-00BA-040C-1000-0000000FF1CE}_Office14.PROPLUS_{E3526022-672F-42D2-B23D-DB6C216525A8}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Pilote 3D Vision 311.06
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panneau de configuration NVIDIA 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Pilote graphique 311.06
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA 3D Vision Controller Driver 270.61
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Logiciel système PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Mises à jour NVIDIA 1.11.3
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Pilote audio HD : 1.2.22.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile FRA Language Pack" = Module linguistique Microsoft .NET Framework 4 Client Profile FRA
"Office14.PROPLUS" = Microsoft Office Professionnel Plus 2010

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator
"{003BFBBD-6C67-419E-A24D-0DCAFC3A5249}" = tools-freebsd
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{197597A7-AD33-4898-9D8E-73066818B464}" = tools-netware
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B11.0110.1
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype"! 6.9
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{82E73E8D-E1E7-45A4-A311-6D31492AA913}_is1" = AION Free-to-Play
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1" = Gameforge Live 1.9.0 "Legend"
"{A3FF5CB2-FB35-4658-8751-9EDE1D65B3AA}" = VMware Workstation
"{AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}" = tools-solaris
"{AC76BA86-7AD7-1036-7B44-AB0000000001}" = Adobe Reader XI (11.0.05) - Français
"{AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}" = tools-winPre2k
"{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}" = @BIOS
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{C75FAD21-EC08-42F3-92D6-C9C0AB355345}" = AutoGreen B10.1021.1
"{D102611A-6466-4101-A51D-51069303AC65}" = tools-linux
"{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"{E0FA1DC5-FEBF-4E7B-8FA3-DB94233E952D}" = Razer Lycosa
"{E1019541-10A2-464F-A23E-A4F23DA65160}" = Mumble 1.2.3
"{EB1B8449-CD8F-485B-ADB6-02FBCFE180D3}" = Razer DeathAdder(TM) Mouse
"{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1" = War Thunder Launcher 1.0.1.269
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel(R) Control Center
"{FFD9383C-01D5-4897-A954-43AF599AED30}" = tools-windows
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Avira AntiVir Desktop" = Avira Free Antivirus
"Battle.net" = Battle.net
"DAEMON Tools Lite" = DAEMON Tools Lite
"Hearthstone" = Hearthstone
"InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}" = AutoGreen B10.1021.1
"InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"LOLReplay" = LOLReplay
"MKVToolNix" = MKVToolNix 6.4.1
"NVIDIA StereoUSB Driver" = NVIDIA 3D Vision Controller Driver
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Open Broadcaster Software" = Open Broadcaster Software
"SFR_Mediacenter Evolution" = SFR - Mediacenter Evolution
"Steam App 730" = Counter-Strike: Global Offensive
"uTorrent" = µTorrent
"VLC media player" = VLC media player 2.0.6
"VMware_Workstation" = VMware Workstation
"WinRAR archiver" = Archiveur WinRAR

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-3619800690-4041355433-949304289-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"SkyDriveSetup.exe" = Microsoft SkyDrive
"TeamSpeak 3 Client" = TeamSpeak 3 Client

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 13/10/2013 05:00:41 | Computer Name = Damien-PC | Source = WinMgmt | ID = 10
Description =

Error - 13/10/2013 06:39:39 | Computer Name = Damien-PC | Source = WinMgmt | ID = 10
Description =

Error - 13/10/2013 08:22:25 | Computer Name = Damien-PC | Source = Application Hang | ID = 1002
Description = Le programme vmware.exe version 7.1.3.14951 a cessé d interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l historique du problème dans le Centre de maintenance. ID
de processus : 1228 Heure de début : 01cec800604dd94c Heure de fin : 7 Chemin d accès
de l application : C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe ID
de rapport :

Error - 13/10/2013 08:25:54 | Computer Name = Damien-PC | Source = WinMgmt | ID = 10
Description =

Error - 13/10/2013 08:53:40 | Computer Name = Damien-PC | Source = WinMgmt | ID = 10
Description =

Error - 13/10/2013 10:28:22 | Computer Name = Damien-PC | Source = WinMgmt | ID = 10
Description =

Error - 13/10/2013 11:20:15 | Computer Name = Damien-PC | Source = WinMgmt | ID = 10
Description =

Error - 13/10/2013 11:46:32 | Computer Name = Damien-PC | Source = WinMgmt | ID = 10
Description =

Error - 13/10/2013 19:57:24 | Computer Name = Damien-PC | Source = Application Hang | ID = 1002
Description = Le programme vmware.exe version 7.1.3.14951 a cessé d interagir avec
Windows et a été fermé. Pour déterminer si des informations supplémentaires sont
disponibles, consultez l historique du problème dans le Centre de maintenance. ID
de processus : 1270 Heure de début : 01cec86dc7b22bdd Heure de fin : 7 Chemin d accès
de l application : C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe ID
de rapport :

Error - 13/10/2013 20:00:55 | Computer Name = Damien-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 13/10/2013 08:53:59 | Computer Name = Damien-PC | Source = Service Control Manager | ID = 7000
Description = Le service NVIDIA Update Service Daemon n a pas pu démarrer en raison
de l erreur : %%1069

Error - 13/10/2013 10:20:13 | Computer Name = Damien-PC | Source = volsnap | ID = 393241
Description = Les clichés instantanés du volume C: ont été supprimés car le stockage
du cliché instantané n a pas pu s agrandir à temps. Réduisez la charge d E/S sur
le système ou choisissez un volume stockage de cliché instantané qui n est pas
mis en cliché instantané.

Error - 13/10/2013 10:28:40 | Computer Name = Damien-PC | Source = Service Control Manager | ID = 7038
Description = Le service nvUpdatusService n a pas pu ouvrir de session en tant que
.\UpdatusUser avec le mot de passe actuellement configuré en raison de l erreur
suivante : %%1330 Pour vous assurer que le service est configuré correctement, utilisez
le composant logiciel enfichable Services dans Microsoft Management Console (MMC).

Error - 13/10/2013 10:28:40 | Computer Name = Damien-PC | Source = Service Control Manager | ID = 7000
Description = Le service NVIDIA Update Service Daemon n a pas pu démarrer en raison
de l erreur : %%1069

Error - 13/10/2013 11:20:35 | Computer Name = Damien-PC | Source = Service Control Manager | ID = 7038
Description = Le service nvUpdatusService n a pas pu ouvrir de session en tant que
.\UpdatusUser avec le mot de passe actuellement configuré en raison de l erreur
suivante : %%1330 Pour vous assurer que le service est configuré correctement, utilisez
le composant logiciel enfichable Services dans Microsoft Management Console (MMC).

Error - 13/10/2013 11:20:35 | Computer Name = Damien-PC | Source = Service Control Manager | ID = 7000
Description = Le service NVIDIA Update Service Daemon n a pas pu démarrer en raison
de l erreur : %%1069

Error - 13/10/2013 11:46:51 | Computer Name = Damien-PC | Source = Service Control Manager | ID = 7038
Description = Le service nvUpdatusService n a pas pu ouvrir de session en tant que
.\UpdatusUser avec le mot de passe actuellement configuré en raison de l erreur
suivante : %%1330 Pour vous assurer que le service est configuré correctement, utilisez
le composant logiciel enfichable Services dans Microsoft Management Console (MMC).

Error - 13/10/2013 11:46:51 | Computer Name = Damien-PC | Source = Service Control Manager | ID = 7000
Description = Le service NVIDIA Update Service Daemon n a pas pu démarrer en raison
de l erreur : %%1069

Error - 13/10/2013 20:01:13 | Computer Name = Damien-PC | Source = Service Control Manager | ID = 7038
Description = Le service nvUpdatusService n a pas pu ouvrir de session en tant que
.\UpdatusUser avec le mot de passe actuellement configuré en raison de l erreur
suivante : %%1330 Pour vous assurer que le service est configuré correctement, utilisez
le composant logiciel enfichable Services dans Microsoft Management Console (MMC).

Error - 13/10/2013 20:01:13 | Computer Name = Damien-PC | Source = Service Control Manager | ID = 7000
Description = Le service NVIDIA Update Service Daemon n a pas pu démarrer en raison
de l erreur : %%1069

< End of report >

Signaler le contenu de ce document