cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL Extras logfile created on: 08/08/2016 18:38:07 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\MeMa\Desktop
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000454 | Country: ª.›.›. ¥²§ | Language: LAO | Date Format: dd/MM/yyyy

1.87 Gb Total Physical Memory | 1.33 Gb Available Physical Memory | 70.99% Memory free
3.74 Gb Paging File | 2.82 Gb Available in Paging File | 75.61% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 148.61 Gb Total Space | 135.29 Gb Free Space | 91.04% Space Free | Partition Type: NTFS

Computer Name: MEMA-PC | User Name: MeMa | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- Reg Error: Key error.
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{07DF3F69-640C-4743-9047-18D8B59E8E1E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{10119229-DA07-4BD3-B4B2-78D409DD85BC}" = rport=137 | protocol=17 | dir=out | app=system |
"{19EDDB7D-4CFE-4B77-9AF2-C8A328BB99FE}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{254514CC-1E61-4930-88D1-EA2F3D7E8F95}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{2FCBE6C5-CD53-4CCC-918F-4B9B126AC225}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{3872583B-6D41-432C-A737-8B834198958B}" = rport=445 | protocol=6 | dir=out | app=system |
"{3A2C621C-AE7B-4661-AC43-BCBC0088FCFE}" = lport=2869 | protocol=6 | dir=in | app=system |
"{46ED1264-E40E-4930-A08B-E256AD36025F}" = lport=139 | protocol=6 | dir=in | app=system |
"{601D6599-45F9-438E-930D-E21C15EF5EF0}" = lport=445 | protocol=6 | dir=in | app=system |
"{60C92BCB-FCB9-4221-A5D0-7C1CC19A1BCE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{7FD339F9-27AB-4D15-8F55-08267DBD8879}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{829AEDDC-B367-4479-823C-E05E6C3A9625}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{89EB13F7-35C3-47F7-9611-16B851FBCE2A}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{8B8FC107-1554-49CA-A056-C970DEBE6DBA}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8EB0215A-0EDA-41D0-B389-E5D9982E6D59}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{8EF0574C-34DC-409C-B8DA-2BBC34BFEA8B}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{935D668B-714E-46C2-898C-AFF8ACA5B049}" = lport=137 | protocol=17 | dir=in | app=system |
"{93B72490-1AEB-49B2-B130-80BE7312B195}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{99540E35-B27F-4F06-A7F4-8B9B74A4EAC2}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{A179BDE8-0291-40ED-964F-D18A3ADBDDD6}" = rport=138 | protocol=17 | dir=out | app=system |
"{A74DB2A5-174F-456A-8664-E949F6B6D94D}" = rport=139 | protocol=6 | dir=out | app=system |
"{B50104B4-42A2-48DC-9EB5-05B8D9238673}" = lport=10243 | protocol=6 | dir=in | app=system |
"{C08840C6-DB22-489C-8B57-3D4544513F1E}" = rport=10243 | protocol=6 | dir=out | app=system |
"{CAB28A58-B636-4FCB-BA92-2A8063712D10}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{CC89FF4F-1B8C-4594-8205-4757A6CE630D}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\root\office16\outlook.exe |
"{CCE43B0C-73EB-4CCB-9E27-8C19FF04174F}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{D93DCAC0-6D70-43AC-B845-72CEC4B1278B}" = lport=138 | protocol=17 | dir=in | app=system |
"{EB415517-B994-4AC7-A36C-A4F5F1E11D36}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{F41B56DD-3A6D-4F56-A72D-EB7C6250FB55}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FB117FE8-4936-4D43-B160-B40294EC1FDB}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{FCD5B18E-4B9D-4E0D-96D7-D0AF780B60FA}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{FE49D56B-8539-4030-8C98-37459979D707}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{034FBEB3-BA53-4B7E-AD12-2574C03F4D5C}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{06C7748E-0641-42DD-969E-9BF20AA2C4C1}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{0CE6E3FA-5130-4B52-9FEF-367029404B9E}" = dir=in | app=c:\users\mema\appdata\local\microsoft\onedrive\onedrive.exe |
"{157E4226-04A6-4E67-A229-7297E702F25C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{195A60CF-EF45-4008-A977-4BA6A3B6D78B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{2E57D277-0376-47C4-A7B8-30522F945250}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{3780D6C2-FA97-4F39-B211-F6B0C7737799}" = protocol=17 | dir=in | app=c:\program files\microsoft office\root\office16\lync.exe |
"{41A0C063-3DCA-4415-93E9-33718AFA51DD}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{4518B446-FB05-4FE3-B14D-30A72DFBAF2E}" = protocol=17 | dir=in | app=c:\program files\microsoft office\root\office16\ucmapi.exe |
"{4990102F-F046-49D3-A3CD-92C74CE2408F}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{518FE2D2-149C-489B-9E44-69CCF10E5319}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{659DB587-0472-41D3-872F-AF6B1E04D73D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{681D2E72-6041-4CF0-A8EB-B8AF32992278}" = protocol=6 | dir=in | app=c:\program files\microsoft office\root\office16\lync.exe |
"{98D9F6AF-F3E7-4044-B2CE-2A922104496E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A448C915-6F1A-4ACB-AC8C-7A8DFE41CABE}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{AACE3FB1-0A86-429A-AF45-657D04A4660E}" = protocol=6 | dir=in | app=c:\program files\microsoft office\root\office16\ucmapi.exe |
"{AECDF9E2-C18B-4A11-A482-128527C1DBAF}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{B38F00F5-ACAC-45C1-B4AC-4A439BD3B780}" = protocol=6 | dir=out | app=system |
"{B7A362F2-D8DF-4DC2-B53F-6606A36B98F4}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{C921E1B9-8F83-4949-8F0E-6E0B6F236322}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{D9996754-363D-4938-9243-27175574329F}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{F85F84DF-F961-4B3D-8CD9-49393D877F26}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{16793295-2366-40F7-A045-A3E42A81365E}" = Bing Bar
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{90160000-007E-0000-0000-0000000FF1CE}" = Office 16 Click-to-Run Licensing Component
"{90160000-008C-0000-0000-0000000FF1CE}" = Office 16 Click-to-Run Extensibility Component
"{90160000-008C-0409-0000-0000000FF1CE}" = Office 16 Click-to-Run Localization Component
"{92a7fd6b-31e5-472f-862e-79214c5032ef}" = Avira Launcher
"{A6634D1D-EA57-45DE-AF8F-0EDD35B912C3}" = Avira Launcher
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{F60DAD2D-8625-4467-AE01-EA0382187621}" = 8GadgetPack
"CCleaner" = CCleaner
"CleanUp!" = CleanUp!
"ProPlusRetail - en-us" = Microsoft Office Professional Plus 2016 - en-us
"WinRAR archiver" = Archiveur WinRAR

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"OneDriveSetup.exe" = Microsoft OneDrive

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 07/08/2016 08:35:00 | Computer Name = MeMa-pc | Source = Windows 7 Loader | ID = 1000
Description =

Error - 07/08/2016 08:35:00 | Computer Name = MeMa-pc | Source = Windows 7 Loader | ID = 1000
Description =

Error - 07/08/2016 08:35:01 | Computer Name = MeMa-pc | Source = Windows 7 Loader | ID = 1000
Description =

Error - 07/08/2016 08:35:01 | Computer Name = MeMa-pc | Source = Windows 7 Loader | ID = 1000
Description =

Error - 07/08/2016 08:35:02 | Computer Name = MeMa-pc | Source = Windows 7 Loader | ID = 1000
Description =

Error - 07/08/2016 08:35:02 | Computer Name = MeMa-pc | Source = Windows 7 Loader | ID = 1000
Description =

Error - 07/08/2016 08:35:03 | Computer Name = MeMa-pc | Source = Windows 7 Loader | ID = 1000
Description =

Error - 07/08/2016 09:05:42 | Computer Name = MeMa-pc | Source = Avira Service Host | ID = 0
Description = Le traitement du changement de session à échoué. System.ArgumentException:
userSid à Avira.OE.ServiceHost.ServiceModelListStorage.GetServiceModel(String
userSid, String serviceIdentifier) à Avira.OE.BrowserExtensionConnector.BrowserExtensionConnector.InitializeMonitors(Session
userSession) à Avira.OE.BrowserExtensionConnector.BrowserExtensionConnector.OnLogOn(Object
sender, SessionChangedEventArgs e) à System.EventHandler`1.Invoke(Object sender,
TEventArgs e) à Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHandler`1
eventHandler, Object sender, T eventArgs) à Avira.OE.ServiceHost.SessionManager.OnSessionChange(Int32
sessionId, SessionChangeReason reason) à Avira.OE.ServiceHost.ServiceHost.OnSessionChange(Object
sender, SessionChangeEventArgs args) à Avira.OE.WinCore.EventHandlerExtensions.SafeInvoke[T](EventHandler`1
eventHandler, Object sender, T eventArgs) à Avira.OE.ServiceHost.WindowsService.OnSessionChange(SessionChangeDescription
changeDescription) à System.ServiceProcess.ServiceBase.DeferredSess...

Error - 07/08/2016 15:22:52 | Computer Name = MeMa-pc | Source = VSS | ID = 8194
Description =

Error - 08/08/2016 07:36:46 | Computer Name = MeMa-pc | Source = Application Hang | ID = 1002
Description = Le programme OTL.exe version 3.2.69.0 a cessé d interagir avec Windows
et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles,
consultez l historique du problème dans le Centre de maintenance. ID de processus :
9d0 Heure de début : 01d1f168fab4381a Heure de fin : 0 Chemin d accès de l application
: C:\Users\MeMa\Desktop\OTL.exe ID de rapport :

[ System Events ]
Error - 28/05/2012 00:50:38 | Computer Name = MeMa-pc | Source = DCOM | ID = 10010
Description =

Error - 28/05/2012 10:06:42 | Computer Name = MeMa-pc | Source = EventLog | ID = 6008
Description = L arrêt système précédant à 19:56:03 le ?28/?05/?2012 n était pas
prévu.

Error - 07/08/2016 08:02:12 | Computer Name = MeMa-pc | Source = Service Control Manager | ID = 7024
Description = Le service Windows Search s est arrêté avec l erreur service particulière
%%-1073473535.

Error - 07/08/2016 08:02:12 | Computer Name = MeMa-pc | Source = Service Control Manager | ID = 7031
Description = Le service Windows Search s est terminé de manière inattendue. Ceci
s est produit 1 fois. L action corrective suivante va être effectuée dans 30000
millisecondes : Redémarrer le service.

Error - 07/08/2016 08:52:04 | Computer Name = MeMa-pc | Source = Service Control Manager | ID = 7031
Description = Le service Avira Service Host s est terminé de manière inattendue.
Ceci s est produit 1 fois. L action corrective suivante va être effectuée dans
10000 millisecondes : Redémarrer le service.

Error - 07/08/2016 09:05:23 | Computer Name = MeMa-pc | Source = Service Control Manager | ID = 7023
Description = Le service Programme d installation pour les modules Windows s est
arrêté avec l erreur : %%16405

Error - 07/08/2016 14:17:57 | Computer Name = MeMa-pc | Source = Service Control Manager | ID = 7034
Description = Le service Google Update Service (gupdate) s est terminé de façon
inattendue pour la 1ème fois.

Error - 08/08/2016 07:30:17 | Computer Name = MeMa-pc | Source = EventLog | ID = 6008
Description = L arrêt système précédant à 18:15:09 le ?08/?08/?2016 n était pas
prévu.


< End of report >

Publicité


Signaler le contenu de ce document

Publicité