cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-06-2015
Ran by Roidafou at 2015-06-18 18:47:48
Running from C:\Users\Roidafou\Downloads
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-2903997147-3103228020-1553762718-500 - Administrator - Disabled)
fbwuser (S-1-5-21-2903997147-3103228020-1553762718-1002 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-2903997147-3103228020-1553762718-1004 - Limited - Enabled)
Invité (S-1-5-21-2903997147-3103228020-1553762718-501 - Limited - Disabled)
Roidafou (S-1-5-21-2903997147-3103228020-1553762718-1000 - Administrator - Enabled) => C:\Users\Roidafou
UpdatusUser (S-1-5-21-2903997147-3103228020-1553762718-1001 - Limited - Enabled) => C:\Users\UpdatusUser

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (Version: 1.2.0 - Hewlett-Packard) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 18.0.0.144 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.8.1.451 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.9 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.8.158 - Adobe Systems, Inc.)
AI Manager (HKLM-x32\...\{4AF95DE2-B54D-4C3F-9494-FD3B558E2C2D}) (Version: 1.09.07 - ASUSTeK Computer Inc.)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 1.01.40 - ASUSTeK Computer Inc.)
ARK: Survival Evolved (HKLM-x32\...\Steam App 346110) (Version: - Studio Wildcard)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.23.0 - Asmedia Technology)
ASUS Backup Wizard (HKLM-x32\...\{124C9BD0-8C52-40AB-8238-0605703B1C28}) (Version: 1.01.00 - ASUSTeK Computer Inc.)
ASUS Easy Update (HKLM-x32\...\{9A9FEC4E-8696-43B4-8C19-5BE4D9038B55}) (Version: 2.00.22 - ASUSTeK Computer Inc.)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.104.216 - eCareme Technologies, Inc.)
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK)
avast! Free Antivirus (HKLM-x32\...\avast) (Version: 8.0.1506.0 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Car Pack V9.5 (HKU\S-1-5-21-2903997147-3103228020-1553762718-1000\...\Car Pack V9.5) (Version: - )
Control ActiveX de Windows Live Mesh para conexiones remotas (HKLM-x32\...\{04668DF2-D32F-4555-9C7E-35523DCD6544}) (Version: 15.4.5722.2 - Microsoft Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Euro Truck Simulator 2 (HKLM-x32\...\Steam App 227300) (Version: - SCS Software)
Galería fotográfica de Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 31.0.1650.63 - Google Inc.)
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Steam App 271590) (Version: - Rockstar North)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Java 7 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417025FF}) (Version: 7.0.250 - Oracle)
Java 7 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.450 - Oracle)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
League of Legends (HKLM-x32\...\{92606477-9366-4D3B-8AE3-6BE4B29727AB}) (Version: 1.3 - Riot Games)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LOLReplay (HKLM-x32\...\LOLReplay) (Version: 0.8.9.28 - www.leaguereplays.com)
Ma-Config.com (64 bits) (HKLM\...\{E1322B8A-6F66-44ED-95D5-7FEBC50AC814}) (Version: 7.1.5.0 - Cybelsoft)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE (HKLM-x32\...\{2C9EE786-1DDB-4C98-8FA4-B1B9B5A66B77}) (Version: 3.1.186.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Standard Edition 2003 (HKLM-x32\...\{9112040C-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{820B6609-4C97-3A2B-B644-573B06A0F0CC}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mises à jour NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
Module de compatibilité pour Microsoft Office System 2007 (HKLM-x32\...\{90120000-0020-040C-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
NVIDIA Pilote 3D Vision 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Pilote audio HD : 1.2.23.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.2.23.3 - NVIDIA Corporation)
NVIDIA Pilote graphique 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.1.116 - Electronic Arts, Inc.)
paint.net (HKLM\...\{F509C1F4-0029-49F9-B145-A4C4E8DF481A}) (Version: 4.0.3 - dotPDN LLC)
PaintTool SAI Ver.1 (HKLM-x32\...\PaintToolSAI) (Version: - )
Panneau de configuration NVIDIA 311.06 (Version: 311.06 - NVIDIA Corporation) Hidden
Photo Notifier and Animation Creator (HKLM-x32\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.)
puush (HKLM-x32\...\{C3592426-531E-4110-911D-BFECE2CE284B}) (Version: 1.0.0.0 - Dean Herbert)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.44.421.2011 - Realtek)
Realtek Ethernet Diagnostic Utility (HKLM-x32\...\{DADC7AB0-E554-4705-9F6A-83EA82ED708E}) (Version: 1.00.0000 - Realtek)
RocketDock 1.3.5 (HKLM-x32\...\RocketDock_is1) (Version: - Punk Software)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.6.0 - Rockstar Games)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
Skype™ 7.5 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.102 - Skype Technologies S.A.)
Software Update Helper (x32 Version: 1.3.25.0 - Google Inc.) Hidden <==== ATTENTION
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 Beta (HKLM-x32\...\Steam App 520) (Version: - Valve)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.38846 - TeamViewer)
Transformice (HKLM-x32\...\Transformice) (Version: 1.0.0 - UNKNOWN)
Transformice (x32 Version: 1.0.0 - UNKNOWN) Hidden
Vegas Pro 12.0 (64-bit) (HKLM\...\{BD91AC8F-5232-11E3-B420-F04DA23A5C58}) (Version: 12.0.770 - Sony)
Windows Installer Clean Up (HKLM-x32\...\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}) (Version: 3.00.00.0000 - Microsoft Corporation)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen (HKLM-x32\...\{C32CE55C-12BA-4951-8797-0967FDEF556F}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinRAR 4.20 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
Worms Ultimate Mayhem (HKLM-x32\...\Steam App 70600) (Version: - Team17 Software Ltd.)
ZHPDiag 2015 (HKLM-x32\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2903997147-3103228020-1553762718-1000_Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}\InprocServer32 -> C:\Users\Roidafou\AppData\Roaming\nitionto\terence.dll No File <==== ATTENTION

==================== Restore Points =========================


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0D823040-7B4E-4F00-B566-ECA78E899BA8} - System32\Tasks\{6A5EF9F2-BA54-4A54-B32D-B55F46745B69} => pcalua.exe -a "C:\Program Files (x86)\Windows Installer Clean Up\msicuu.exe" -d "C:\Users\Roidafou\AppData\Roaming\Microsoft\Windows\Start Menu\Programs"
Task: {1CBDF1CC-ADD8-4164-8C5A-6C1C6FB8F948} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-18] (Google Inc.)
Task: {208ABF4A-818C-4862-B6E5-548A36852405} - System32\Tasks\{510199EC-94A1-490E-92A3-27DEEB0D19EC} => C:\Program Files (x86)\Gameforge4D\Elsword_FR\elsword.exe
Task: {2104677F-ADEA-47FE-A23D-9FB9B83B799C} - System32\Tasks\{68E0BE57-7BCD-4FA5-84FC-2D22D898DC8C} => D:\Program Files (x86)\GameforgeLive\Games\FRA_fra\NosTale\Nostale.exe
Task: {24E55CD7-32D3-4179-9798-91B61BEFCFEE} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {27339A24-984F-4367-AAA9-5B89B6C99E5F} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2012-09-27] ()
Task: {2E53D0A8-680B-4CC2-9F94-5202CF4AB067} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {38958FA5-C9D7-44EB-8E4C-837263154DFD} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.)
Task: {4358928C-A4B8-4693-A291-BAA2C1B73575} - System32\Tasks\{B297E44C-4BFC-432D-A136-A09F84483811} => C:\Program Files (x86)\Gameforge4D\Elsword_FR\elsword.exe
Task: {4AB51010-672B-47FB-8EE9-DB00D351BA1E} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattel\DiagTrackRunner.exe [2015-03-16] (Microsoft Corporation)
Task: {501DE4E9-840B-459F-A8D5-640C2FB42237} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {660E1D9B-9E72-453B-8A50-AEA9FCC2E38F} - System32\Tasks\ASUS\AsBackupWizard_Run => C:\Program Files (x86)\ASUS\\AsBackupWizard\\AsRunBkWizardHelper.exe [2010-04-24] (ASUSTeK Computer Inc.)
Task: {6AD95F50-AEEA-40A7-A9EB-3693C5F92E18} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {71C2A400-D17F-429C-91F5-0BBF0739A542} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2010-11-27] (ASUSTeK Computer Inc.)
Task: {7E065D48-BB60-400F-872F-D141DC683D52} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-10] (Adobe Systems Incorporated)
Task: {83C9BE5C-6BB0-4A41-8510-0F2BCE59E0DA} - System32\Tasks\{75D378F2-628E-4E34-AEBC-5BE6AB4771C5} => C:\Program Files (x86)\Gameforge4D\Elsword_FR\elsword.exe
Task: {862555CC-D2E7-4041-896B-405AD1AAB639} - System32\Tasks\{944FFE4F-30CC-4326-99D2-FCCD108A5948} => C:\Program Files (x86)\Gameforge4D\Elsword_FR\elsword.exe
Task: {871E2CE9-B9BE-40F5-8A86-43CC3258B3AF} - System32\Tasks\{67B9A210-20E0-41E6-B897-C035931FE2EC} => D:\Program Files (x86)\GameforgeLive\Games\FRA_fra\NosTale\Nostale.exe
Task: {8A6D189E-3500-4A29-8DBB-4BC5F1880DA2} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {AED59D36-ECAE-4AEA-AD01-D1531E3C5E2E} - System32\Tasks\{094F5BE7-4A29-4E33-A6FB-93683B6774DF} => D:\Program Files (x86)\GameforgeLive\Games\FRA_fra\NosTale\Nostale.exe
Task: {C08B56BD-95BF-46B2-8E5E-F583C1E923F6} - System32\Tasks\{D972A549-7B56-4842-8A54-CD845DE2F154} => D:\Program Files (x86)\GameforgeLive\Games\FRA_fra\NosTale\Nostale.exe
Task: {CC9EF161-F16D-4166-BD01-4FEB3DED1E6C} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2013-01-02] (Microsoft Corporation)
Task: {D3812776-902E-4740-84D2-A77E7F7B0529} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {DB79C191-763C-49DA-B3BB-F64C25283DA9} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {DCB73A53-EA96-4A1D-BC14-345838E2ACAC} - System32\Tasks\{B101228E-D34A-4B8E-B11C-069A3DCC819B} => C:\Program Files (x86)\Gameforge4D\Elsword_FR\elsword.exe
Task: {F433D860-5A4B-4011-8423-714509F4AE44} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-18] (Google Inc.)
Task: {FB821101-F125-4CD3-89C4-BE4CF5476272} - System32\Tasks\{4F36089E-5BB9-46E5-96AE-AF65C3BED0CA} => D:\Program Files (x86)\GameforgeLive\Games\FRA_fra\NosTale\Nostale.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2013-01-03 00:25 - 2013-01-18 17:00 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2011-11-28 19:21 - 2011-06-13 10:36 - 00922240 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
2011-11-28 19:21 - 2010-12-02 04:15 - 00915584 _____ () C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
2011-11-28 19:22 - 2010-10-21 11:52 - 00586880 _____ () C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
2013-08-26 18:08 - 2014-12-29 18:38 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-09-26 15:41 - 2014-09-26 15:41 - 01021088 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2014-06-29 12:43 - 2007-09-02 13:58 - 00495616 _____ () D:\Program Files (x86)\RocketDock\RocketDock.exe
2014-09-26 15:40 - 2014-09-26 15:40 - 06237856 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2014-01-21 16:54 - 2015-04-30 07:41 - 01294336 _____ () D:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
2015-06-10 11:20 - 2015-06-10 11:20 - 02360312 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.247\deploy\LoLLauncher.exe
2015-06-10 11:20 - 2015-06-10 11:20 - 03924472 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.31\deploy\LoLPatcher.exe
2015-04-30 07:56 - 2015-04-30 07:56 - 00074752 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.148\deploy\LolClient.exe
2015-06-18 17:14 - 2015-06-18 13:08 - 02924032 _____ () C:\Program Files\AVAST Software\Avast\defs\15061800\algo.dll
2011-11-28 19:21 - 2015-06-18 17:32 - 00021504 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.14\PEbiosinterface32.dll
2011-11-28 19:21 - 2010-06-29 04:58 - 00104448 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.14\ATKEX.dll
2014-06-29 12:43 - 2007-09-02 13:57 - 00069632 _____ () D:\Program Files (x86)\RocketDock\RocketDock.dll
2014-01-31 18:15 - 2015-06-17 13:03 - 01007104 _____ () D:\Origin\platforms\qwindows.dll
2014-01-31 18:15 - 2015-06-17 13:03 - 00023552 _____ () D:\Origin\imageformats\qgif.dll
2014-01-31 18:15 - 2015-06-17 13:03 - 00024576 _____ () D:\Origin\imageformats\qico.dll
2014-01-31 18:15 - 2015-06-17 13:03 - 00216576 _____ () D:\Origin\imageformats\qjpeg.dll
2014-01-31 18:15 - 2015-06-17 13:03 - 00261120 _____ () D:\Origin\imageformats\qmng.dll
2014-01-31 18:15 - 2015-06-17 13:03 - 00019456 _____ () D:\Origin\imageformats\qtga.dll
2014-01-31 18:15 - 2015-06-17 13:03 - 00337408 _____ () D:\Origin\imageformats\qtiff.dll
2014-01-31 18:15 - 2015-06-17 13:03 - 00018944 _____ () D:\Origin\imageformats\qwbmp.dll
2011-11-28 19:25 - 2005-10-25 02:02 - 00050688 _____ () C:\Program Files (x86)\ASUS\ASUS Easy Update\AsMultiLang.dll
2014-09-28 22:01 - 2014-09-28 22:01 - 36730032 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\libcef.dll
2014-09-28 22:01 - 2014-09-28 22:01 - 00746160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\libglesv2.dll
2014-09-28 22:01 - 2014-09-28 22:01 - 00136368 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\libegl.dll
2015-06-10 11:20 - 2015-06-10 11:20 - 01672696 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_patcher\releases\0.0.0.31\deploy\RiotLauncher.dll
2015-04-30 07:49 - 2015-04-30 07:49 - 04774248 _____ () D:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.1.148\deploy\Adobe AIR\Versions\1.0\Resources\WebKit.dll
2013-12-06 18:38 - 2013-12-04 04:47 - 00702416 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libglesv2.dll
2013-12-06 18:38 - 2013-12-04 04:47 - 00099792 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\libegl.dll
2013-12-06 18:38 - 2013-12-04 04:48 - 04055504 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\pdf.dll
2013-12-06 18:38 - 2013-12-04 04:48 - 00399312 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ppGoogleNaClPluginChrome.dll
2013-12-06 18:38 - 2013-12-04 04:47 - 01619408 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\ffmpegsumo.dll
2013-12-06 18:38 - 2013-12-04 04:48 - 13586896 _____ () C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Windows:{DA6227CB-326B-4B4D-9A81-04B61F1538DD}
AlternateDataStreams: C:\ProgramData\TEMP:05EE1EEF

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-2903997147-3103228020-1553762718-1000\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-21-2903997147-3103228020-1553762718-1000\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-21-2903997147-3103228020-1553762718-1000\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-2903997147-3103228020-1553762718-1000\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-21-2903997147-3103228020-1553762718-1000\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-21-2903997147-3103228020-1553762718-1000\...\webcompanion.com -> hxxp://webcompanion.com


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2903997147-3103228020-1553762718-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Roidafou\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.254

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{4D287F30-4B37-4972-BE24-012C9D5CD819}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{94C6594B-624D-4511-8E76-AE0595DCB281}] => (Allow) LPort=2869
FirewallRules: [{450D9E6B-31B3-44A1-A2CB-F6F55FB06034}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{C810E328-E43C-4621-A5F0-E83A197849A6}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{828BAD74-63F7-4FEA-91DA-EE74828744BA}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{8433B567-46B3-482C-9746-19D21E69D2F5}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{CEB9FAE0-F864-467E-AD77-3BD33B7B5EEF}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe
FirewallRules: [{B34203FF-F91B-44F7-8379-155A4A2A5ABC}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{F23672AE-E741-4172-B75D-E2A6D1EB9CFB}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe
FirewallRules: [{D092D165-1B5F-4B57-8B86-6D48759CA345}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{9E75F706-B787-49DF-AD07-AE989579EB0E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe
FirewallRules: [{1F513751-2CB5-425A-86D5-713E06A6E9AA}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{10518EA3-58D2-4226-B6F0-494B3619EF21}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe
FirewallRules: [{41BD0134-5CE6-4957-927A-F0DEB8BD5016}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{1CA52148-C674-40E3-A7AD-9EF3DB11226C}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [TCP Query User{58544386-8CA5-4495-9A23-CABDDDB859C5}C:\windows\syswow64\javaw.exe] => (Block) C:\windows\syswow64\javaw.exe
FirewallRules: [UDP Query User{856C00D0-A33D-4525-B304-ACDA987958B4}C:\windows\syswow64\javaw.exe] => (Block) C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{448E0F0C-4144-4FE7-952A-2CCDAF6306D9}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{0F5FE236-78E3-403D-B941-22A72C3A7ADF}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{AE73A198-0DD5-45D0-BD30-E88D618E9063}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{C413C116-E923-4C01-90B8-890A1180950D}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [TCP Query User{39A058F8-B32D-4345-825A-088CEF90BB2C}D:\steam\steamapps\roidafou\team fortress 2 beta\hl2.exe] => (Allow) D:\steam\steamapps\roidafou\team fortress 2 beta\hl2.exe
FirewallRules: [UDP Query User{2450CFB8-5FC3-4DB6-A7BC-03CF361536B0}D:\steam\steamapps\roidafou\team fortress 2 beta\hl2.exe] => (Allow) D:\steam\steamapps\roidafou\team fortress 2 beta\hl2.exe
FirewallRules: [{300C639E-2439-40CA-A48A-410E039EAFB6}] => (Block) D:\steam\steamapps\roidafou\team fortress 2 beta\hl2.exe
FirewallRules: [{6E54350A-06B0-48B3-96FB-38AC2B5A8BC8}] => (Block) D:\steam\steamapps\roidafou\team fortress 2 beta\hl2.exe
FirewallRules: [{26B9C06E-A9FE-48FC-B997-6669D829E6AB}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2 Beta\hl2.exe
FirewallRules: [{FFBB7AD7-EFB4-4498-AC47-AF4466F207F9}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2 Beta\hl2.exe
FirewallRules: [{A3566364-49E0-4DA9-B044-D582470CAD87}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{0BC168E9-445E-40D0-B99A-9D0F0DADFD41}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [TCP Query User{4155281E-94A5-4FC8-9C2D-474FAB43E6AA}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{48ECFF29-CBF7-4FBB-927C-C0B85D19F45F}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{51509B1B-FBA3-4EEB-BB0A-0770E8E428FA}] => (Allow) D:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{DCEB0D21-75C7-4B2D-B40F-847916611446}] => (Allow) D:\Program Files (x86)\Origin Games\Dead Space 3\deadspace3.exe
FirewallRules: [{154DD6B0-BDC6-4ACB-B33A-5978AD275112}] => (Allow) D:\Steam\SteamApps\roidafou\garrysmod\hl2.exe
FirewallRules: [{14D6DCAB-7B46-4753-935B-16F65A416BC5}] => (Allow) D:\Steam\SteamApps\roidafou\garrysmod\hl2.exe
FirewallRules: [{EBBCB5BB-6424-41A3-8286-1CFA79B086A1}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{9C34EA05-D8A9-48CD-9B60-4B3E2697B744}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{2A19A687-B893-49F9-A825-C3DAE1B060B0}D:\program files (x86)\origin games\dead space 3\deadspace3.exe] => (Block) D:\program files (x86)\origin games\dead space 3\deadspace3.exe
FirewallRules: [UDP Query User{02A0E1D5-72D1-475C-9F91-C4F9338859F1}D:\program files (x86)\origin games\dead space 3\deadspace3.exe] => (Block) D:\program files (x86)\origin games\dead space 3\deadspace3.exe
FirewallRules: [TCP Query User{D345B460-CA30-4EA6-8D7E-3054222D194F}D:\steam\steam.exe] => (Allow) D:\steam\steam.exe
FirewallRules: [UDP Query User{FD567540-2807-4AB0-AA81-F1607FE34AA7}D:\steam\steam.exe] => (Allow) D:\steam\steam.exe
FirewallRules: [{4AFCB7A6-FCB8-4F89-970B-5A23243E10CE}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{73434924-910E-40B8-A59A-2B666BD09B47}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{24351E06-D6B1-4E35-B572-A902C8836412}] => (Allow) D:\Steam\SteamApps\roidafou\garrysmod\hl2.exe
FirewallRules: [{233B19E5-8C7C-4B5B-9C7C-9622B4FCD61B}] => (Allow) D:\Steam\SteamApps\roidafou\garrysmod\hl2.exe
FirewallRules: [{2AF7FC49-8FEE-44B3-B889-543DC4D3DE74}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [{3AAB414C-755C-4665-8733-3AC5F8C1C6E4}] => (Allow) D:\Steam\SteamApps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{8F0AA206-6429-4D54-AB3D-02D7411B60DE}D:\steam\steamapps\common\team fortress 2 beta\hl2.exe] => (Block) D:\steam\steamapps\common\team fortress 2 beta\hl2.exe
FirewallRules: [UDP Query User{56C8CC98-FF1D-4D8C-BA4B-9379D29D63C9}D:\steam\steamapps\common\team fortress 2 beta\hl2.exe] => (Block) D:\steam\steamapps\common\team fortress 2 beta\hl2.exe
FirewallRules: [{21A8DA1A-4699-4273-A932-C62BFBE4F457}] => (Allow) D:\Steam\SteamApps\common\WormsXHD\Launcher.exe
FirewallRules: [{EB0ABD7E-FDBC-4929-A23A-9C5D75BE2FF2}] => (Allow) D:\Steam\SteamApps\common\WormsXHD\Launcher.exe
FirewallRules: [{2442D745-EDBF-480B-8059-4ECE942A76FD}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{EF1E5F9C-F5BC-4BDC-B38E-9C6B92FE66D3}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{32782F58-BBD6-43CF-A19A-9FB85E97B98A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{D0833B6D-D273-43D8-8E5D-B7A14205C19A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{6CBD3870-5BDA-4049-8410-A8CA25E9CA27}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{7CDBFAA2-EA0E-43A5-A1EE-91F23C603EBB}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{F7902F81-93B8-4F72-94CE-FA11888EA563}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{EC7FCE66-310F-4AF4-AF67-44639DD72EDF}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{FC929729-8C6C-4F36-A649-FC38A8FA45D5}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{8F663384-7393-417A-A199-4A6C61B827C9}] => (Allow) D:\Steam\SteamApps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe
FirewallRules: [{989A38DB-8650-413C-AB6C-33B5E439DA18}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{5AF91036-7CFC-47C5-BB89-3DCFE7AC56A1}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{906DE106-403A-4BDF-AB5A-C92793686144}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{E4ACABF2-85AE-4AAB-A9DD-779691F3F97B}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{CFE86C6F-7270-4806-9861-A3FF0C5525D3}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{A07A5CBB-E5DF-492C-8163-55C1E81360BD}D:\lolreplay\lolreplay.exe] => (Allow) D:\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{ED0A687F-B7FF-4237-BA14-0A1C132B29E9}D:\lolreplay\lolreplay.exe] => (Allow) D:\lolreplay\lolreplay.exe
FirewallRules: [{0F5F1BC8-8AE4-4A09-9AEF-88AC2490A62D}] => (Block) D:\lolreplay\lolreplay.exe
FirewallRules: [{A5305990-0521-4CF6-8951-9693BC259FBD}] => (Block) D:\lolreplay\lolreplay.exe
FirewallRules: [TCP Query User{DD278D39-2AAE-4420-AFB9-49FFE27B1919}D:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) D:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [UDP Query User{317F3EC6-0A7A-40AA-B490-CD03101AC256}D:\program files (x86)\lolreplay\lolreplay.exe] => (Allow) D:\program files (x86)\lolreplay\lolreplay.exe
FirewallRules: [{2F766F32-BC20-44F2-92C5-5C026434A61F}] => (Allow) LPort=48113
FirewallRules: [{6CD456E8-35FE-4BF1-97BC-42F94C36B5C8}] => (Allow) LPort=48114
FirewallRules: [{C20996C7-541B-40E7-937D-F484B9DF0900}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{A0AE943C-B065-4C75-A296-94C6F60CDC4E}] => (Allow) C:\Program Files\ma-config.com\MaConfigAgent.exe
FirewallRules: [{9773898B-30A8-49C4-BAFD-19A47D0EFFE2}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{2B0D6809-44EA-43E3-BCF8-717C3D688E4A}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
FirewallRules: [{31295284-C8D0-4E2C-B6A9-D43A3AE9A59D}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{8E99326F-72A9-4F52-8328-5DC6F9AA8DB3}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
FirewallRules: [{8719CD40-AE4B-482F-9315-85F79040C2D8}] => (Allow) D:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{5B6EAD62-48A5-4310-9536-818C17BBDEAE}] => (Allow) D:\Program Files (x86)\Hearthstone\Hearthstone.exe
FirewallRules: [{BB44FB6F-12FF-4F1B-B8F6-6B09004D1E6D}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{76D25A15-5450-4140-BCD9-E9865469C78F}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D3B43D6E-77E2-4B2D-8BAE-49AEE402AB59}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{1CB23D20-FE6C-49B4-9F4B-19347BBA95CD}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{11B9C40B-5118-4F58-B0D3-92CFFEB0924C}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{2A0E1A9B-C95B-4CC6-989D-9617290D8AB1}D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{FD60FDE2-D957-4F3E-9DEA-B68FC5FD2F6D}] => (Allow) D:\Steam\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [{C485CD89-75FA-4669-9C4B-2A3E6C5C9893}] => (Allow) D:\Steam\SteamApps\common\Grand Theft Auto V\GTAVLauncher.exe
FirewallRules: [TCP Query User{5DDD7AD6-2E8E-4D8A-AEE0-171F2C38C256}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{66C4D7DA-A85A-426E-8CFD-8CDC937B4599}D:\steam\steamapps\common\grand theft auto v\gta5.exe] => (Allow) D:\steam\steamapps\common\grand theft auto v\gta5.exe
FirewallRules: [{96050215-7D9A-4853-B3FF-39625676D1EE}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{FF813370-866A-4420-88C9-AB8C249E7A70}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe
FirewallRules: [{9EA504EF-D288-4542-8045-58D570918EB7}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe
FirewallRules: [{7610A69A-4F8F-41D3-9FC5-E0EAD38E35B4}] => (Allow) D:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGameServer.exe

==================== Faulty Device Manager Devices =============

Name: 802.11n Wireless LAN Card
Description: 802.11n Wireless LAN Card
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Ralink Technology, Corp.
Service: netr28x
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (06/18/2015 06:47:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Nom du module défaillant : MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000004fa69
ID du processus défaillant : 0x195c
Heure de début de l’application défaillante : 0xMaConfigAgent.exe0
Chemin d’accès de l’application défaillante : MaConfigAgent.exe1
Chemin d’accès du module défaillant: MaConfigAgent.exe2
ID de rapport : MaConfigAgent.exe3

Error: (06/18/2015 06:47:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Nom du module défaillant : MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000004fa69
ID du processus défaillant : 0x1bec
Heure de début de l’application défaillante : 0xMaConfigAgent.exe0
Chemin d’accès de l’application défaillante : MaConfigAgent.exe1
Chemin d’accès du module défaillant: MaConfigAgent.exe2
ID de rapport : MaConfigAgent.exe3

Error: (06/18/2015 06:47:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Nom du module défaillant : MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000004fa69
ID du processus défaillant : 0x1b1c
Heure de début de l’application défaillante : 0xMaConfigAgent.exe0
Chemin d’accès de l’application défaillante : MaConfigAgent.exe1
Chemin d’accès du module défaillant: MaConfigAgent.exe2
ID de rapport : MaConfigAgent.exe3

Error: (06/18/2015 06:47:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Nom du module défaillant : MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000004fa69
ID du processus défaillant : 0x598
Heure de début de l’application défaillante : 0xMaConfigAgent.exe0
Chemin d’accès de l’application défaillante : MaConfigAgent.exe1
Chemin d’accès du module défaillant: MaConfigAgent.exe2
ID de rapport : MaConfigAgent.exe3

Error: (06/18/2015 06:47:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Nom du module défaillant : MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000004fa69
ID du processus défaillant : 0x1b14
Heure de début de l’application défaillante : 0xMaConfigAgent.exe0
Chemin d’accès de l’application défaillante : MaConfigAgent.exe1
Chemin d’accès du module défaillant: MaConfigAgent.exe2
ID de rapport : MaConfigAgent.exe3

Error: (06/18/2015 06:47:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Nom du module défaillant : MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000004fa69
ID du processus défaillant : 0x182c
Heure de début de l’application défaillante : 0xMaConfigAgent.exe0
Chemin d’accès de l’application défaillante : MaConfigAgent.exe1
Chemin d’accès du module défaillant: MaConfigAgent.exe2
ID de rapport : MaConfigAgent.exe3

Error: (06/18/2015 06:47:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Nom du module défaillant : MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000004fa69
ID du processus défaillant : 0x1950
Heure de début de l’application défaillante : 0xMaConfigAgent.exe0
Chemin d’accès de l’application défaillante : MaConfigAgent.exe1
Chemin d’accès du module défaillant: MaConfigAgent.exe2
ID de rapport : MaConfigAgent.exe3

Error: (06/18/2015 06:47:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Nom du module défaillant : MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000004fa69
ID du processus défaillant : 0x118c
Heure de début de l’application défaillante : 0xMaConfigAgent.exe0
Chemin d’accès de l’application défaillante : MaConfigAgent.exe1
Chemin d’accès du module défaillant: MaConfigAgent.exe2
ID de rapport : MaConfigAgent.exe3

Error: (06/18/2015 06:47:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Nom du module défaillant : MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000004fa69
ID du processus défaillant : 0x1540
Heure de début de l’application défaillante : 0xMaConfigAgent.exe0
Chemin d’accès de l’application défaillante : MaConfigAgent.exe1
Chemin d’accès du module défaillant: MaConfigAgent.exe2
ID de rapport : MaConfigAgent.exe3

Error: (06/18/2015 06:47:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l’application défaillante MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Nom du module défaillant : MaConfigAgent.exe, version : 7.1.5.0, horodatage : 0x543e4192
Code d’exception : 0xc0000005
Décalage d’erreur : 0x000000000004fa69
ID du processus défaillant : 0x1bdc
Heure de début de l’application défaillante : 0xMaConfigAgent.exe0
Chemin d’accès de l’application défaillante : MaConfigAgent.exe1
Chemin d’accès du module défaillant: MaConfigAgent.exe2
ID de rapport : MaConfigAgent.exe3


System errors:
=============
Error: (06/18/2015 06:47:58 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Ma-Config Agent s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (06/18/2015 06:47:53 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Ma-Config Agent s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (06/18/2015 06:47:48 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Ma-Config Agent s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (06/18/2015 06:47:43 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Ma-Config Agent s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (06/18/2015 06:47:37 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Ma-Config Agent s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (06/18/2015 06:47:32 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Ma-Config Agent s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (06/18/2015 06:47:27 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Ma-Config Agent s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (06/18/2015 06:47:22 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Ma-Config Agent s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (06/18/2015 06:47:17 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Ma-Config Agent s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (06/18/2015 06:47:11 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Ma-Config Agent s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.


Microsoft Office:
=========================
Error: (06/18/2015 06:47:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MaConfigAgent.exe7.1.5.0543e4192MaConfigAgent.exe7.1.5.0543e4192c0000005000000000004fa69195c01d0a9e6881d480cC:\Program Files\ma-config.com\MaConfigAgent.exeC:\Program Files\ma-config.com\MaConfigAgent.exec5d3cdcb-15d9-11e5-91ac-c860008c1906

Error: (06/18/2015 06:47:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MaConfigAgent.exe7.1.5.0543e4192MaConfigAgent.exe7.1.5.0543e4192c0000005000000000004fa691bec01d0a9e6850eeb28C:\Program Files\ma-config.com\MaConfigAgent.exeC:\Program Files\ma-config.com\MaConfigAgent.exec2c5bf07-15d9-11e5-91ac-c860008c1906

Error: (06/18/2015 06:47:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MaConfigAgent.exe7.1.5.0543e4192MaConfigAgent.exe7.1.5.0543e4192c0000005000000000004fa691b1c01d0a9e681e67631C:\Program Files\ma-config.com\MaConfigAgent.exeC:\Program Files\ma-config.com\MaConfigAgent.exebfa0304c-15d9-11e5-91ac-c860008c1906

Error: (06/18/2015 06:47:43 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MaConfigAgent.exe7.1.5.0543e4192MaConfigAgent.exe7.1.5.0543e4192c0000005000000000004fa6959801d0a9e67ed8194dC:\Program Files\ma-config.com\MaConfigAgent.exeC:\Program Files\ma-config.com\MaConfigAgent.exebc8eed2c-15d9-11e5-91ac-c860008c1906

Error: (06/18/2015 06:47:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MaConfigAgent.exe7.1.5.0543e4192MaConfigAgent.exe7.1.5.0543e4192c0000005000000000004fa691b1401d0a9e67bafa456C:\Program Files\ma-config.com\MaConfigAgent.exeC:\Program Files\ma-config.com\MaConfigAgent.exeb9667836-15d9-11e5-91ac-c860008c1906

Error: (06/18/2015 06:47:32 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MaConfigAgent.exe7.1.5.0543e4192MaConfigAgent.exe7.1.5.0543e4192c0000005000000000004fa69182c01d0a9e6789efd79C:\Program Files\ma-config.com\MaConfigAgent.exeC:\Program Files\ma-config.com\MaConfigAgent.exeb6581b51-15d9-11e5-91ac-c860008c1906

Error: (06/18/2015 06:47:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MaConfigAgent.exe7.1.5.0543e4192MaConfigAgent.exe7.1.5.0543e4192c0000005000000000004fa69195001d0a9e675768882C:\Program Files\ma-config.com\MaConfigAgent.exeC:\Program Files\ma-config.com\MaConfigAgent.exeb32d8373-15d9-11e5-91ac-c860008c1906

Error: (06/18/2015 06:47:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MaConfigAgent.exe7.1.5.0543e4192MaConfigAgent.exe7.1.5.0543e4192c0000005000000000004fa69118c01d0a9e67267413aC:\Program Files\ma-config.com\MaConfigAgent.exeC:\Program Files\ma-config.com\MaConfigAgent.exeb01f268e-15d9-11e5-91ac-c860008c1906

Error: (06/18/2015 06:47:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MaConfigAgent.exe7.1.5.0543e4192MaConfigAgent.exe7.1.5.0543e4192c0000005000000000004fa69154001d0a9e66f3f6886C:\Program Files\ma-config.com\MaConfigAgent.exeC:\Program Files\ma-config.com\MaConfigAgent.exeacf68a87-15d9-11e5-91ac-c860008c1906

Error: (06/18/2015 06:47:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MaConfigAgent.exe7.1.5.0543e4192MaConfigAgent.exe7.1.5.0543e4192c0000005000000000004fa691bdc01d0a9e66c2f84fcC:\Program Files\ma-config.com\MaConfigAgent.exeC:\Program Files\ma-config.com\MaConfigAgent.exea9e79160-15d9-11e5-91ac-c860008c1906


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-2320 CPU @ 3.00GHz
Percentage of memory in use: 56%
Total physical RAM: 6125.22 MB
Available physical RAM: 2689.33 MB
Total Pagefile: 12248.65 MB
Available Pagefile: 8330.09 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: (WIN7) (Fixed) (Total:59.23 GB) (Free:3.27 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (DATA) (Fixed) (Total:931.51 GB) (Free:693.82 GB) NTFS
Drive e: () (CDROM) (Total:4.38 GB) (Free:0.01 GB) UDF

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 59.6 GB) (Disk ID: 0CE34C3A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=300 MB) - (Type=1B)
Partition 3: (Not Active) - (Size=59.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 1020101F)
Partition 2: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of log ============================

Publicité


Signaler le contenu de ce document

Publicité