Additional scan result of Farbar Recovery Scan Tool (x64) Version:28-07-2015 Ran by Alex M (2015-07-30 10:16:18) Running from C:\Users\Alex M\Desktop Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-640650399-36811433-875279925-500 - Administrator - Disabled) Alex M (S-1-5-21-640650399-36811433-875279925-1000 - Administrator - Enabled) => C:\Users\Alex M HomeGroupUser$ (S-1-5-21-640650399-36811433-875279925-1046 - Limited - Enabled) Invité (S-1-5-21-640650399-36811433-875279925-501 - Limited - Disabled) UpdatusUser (S-1-5-21-640650399-36811433-875279925-1001 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - ) 802.11n Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 3.01.18.0 - Ralink) Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.209 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.209 - Adobe Systems Incorporated) Adobe Photoshop Lightroom 5.3 64-bit (HKLM\...\{2DD71ACB-552D-402C-9529-7906ACB95C30}) (Version: 5.3.1 - Adobe Systems Incorporated) Adobe Reader XI (11.0.12) - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated) Agatha Christie - Peril at End House (x32 Version: 2.2.0.95 - WildTangent) Hidden AllShare Framework DMS (HKLM\...\{3C98731D-98BC-4D0D-9366-0306B4B36A36}) (Version: 1.3.18 - Samsung) Apple Application Support (HKLM-x32\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{BDD99690-3541-4619-9D2A-3CDDB3E15F9E}) (Version: 8.0.5.6 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Audacity 2.0 (HKLM-x32\...\Audacity_is1) (Version: - Audacity Team) AuthenTec TrueAPI (Version: 1.3.0.116 - AuthenTec, Inc.) Hidden AutoWebCam (HKLM-x32\...\AutoWebCam) (Version: - ) Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.2.2218 - AVAST Software) Battlefield Heroes (HKLM-x32\...\{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}) (Version: - EA Digital illusions) Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden Blasterball 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Bounce Symphony (x32 Version: 2.2.0.97 - WildTangent) Hidden Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden Camera Control Pro 2 (HKLM-x32\...\{FE96C49B-DB90-405E-A00E-09E38372F880}) (Version: 2.16.0 - Nikon) CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform) Cheat Engine 6.1 (HKLM-x32\...\Cheat Engine 6.1_is1) (Version: - Dark Byte) Chronicles of Albian (x32 Version: 2.2.0.95 - WildTangent) Hidden Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Complément Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Contrôle ActiveX Windows Live Mesh pour connexions à distance (HKLM-x32\...\{55D003F4-9599-44BF-BA9E-95D060730DD3}) (Version: 15.4.5722.2 - Microsoft Corporation) CopyTrans Suite désinstallation uniquement (HKU\S-1-5-21-640650399-36811433-875279925-1000\...\CopyTrans Suite) (Version: 2.37 - WindSolutions) Cradle of Rome 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Désinstallation du Vidéo Futur Video Manager (HKLM-x32\...\Vidéo Futur) (Version: - ) digiCamControl (HKLM-x32\...\digiCamControl) (Version: 1.2.16 - Duka Istvan) Dropbox (HKU\S-1-5-21-640650399-36811433-875279925-1000\...\Dropbox) (Version: 3.6.9 - Dropbox, Inc.) F4WebPlugin 0.2.20 (HKLM-x32\...\{909AA7E1-95FD-4EF4-8819-5DEFA5900BC7}) (Version: 0.2.20 - F4) Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden FFmpeg for Audacity on Windows (HKLM-x32\...\FFmpeg for Audacity on Windows_is1) (Version: - ) Fitbit Connect (HKLM-x32\...\{0C5B7BE1-1327-49BF-AAE9-4CA4E8C16C46}) (Version: 2.0.0.6518 - Fitbit Inc.) Free PDF to Word Converter 2.0 (HKLM-x32\...\Free PDF to Word Converter_is1) (Version: - Free-PDF-to-Word.com) Galerie de photos Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.125 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Governor of Poker 2 Premium Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden HandBrake 0.9.9.1 (HKLM-x32\...\HandBrake) (Version: 0.9.9.1 - ) Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden Hex Race (HKU\S-1-5-21-640650399-36811433-875279925-1000\...\hexrace-bdbe5bf528092de05a8922fc65d77242) (Version: 0.1 - Erlin Hysenbelliu) HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.2.5 - WildTangent) HP LinkUp (HKLM-x32\...\{DB3147AB-4024-4773-8EC0-A1FE5B44933D}) (Version: 2.01.028 - Hewlett-Packard) HP Odometer (HKLM-x32\...\{B8AC1A89-FFD1-4F97-8051-E505A160F562}) (Version: 2.10.0000 - Hewlett-Packard) HP Officejet 6500 E710n-z Aide (HKLM-x32\...\{130E5108-547F-4482-91EE-F45C784E08C7}) (Version: 140.0.2.2 - Hewlett Packard) HP Setup (HKLM-x32\...\{D35B72B6-F0E4-462B-BDEB-E08032B3B681}) (Version: 8.7.4747.3786 - Hewlett-Packard Company) HP Setup Manager (HKLM-x32\...\{AE856388-AFAD-4753-81DF-D96B19D0A17C}) (Version: 1.1.13880.3792 - Hewlett-Packard Company) HP SimplePass PE 2011 (HKLM-x32\...\{00FF4EB6-6AAC-4E9D-A60A-8F388691BB27}) (Version: 5.3.0.194 - Hewlett-Packard) HP Support Assistant (HKLM-x32\...\{E35A3B13-78CD-4967-8AC8-AA9FDA693EDE}) (Version: 7.4.45.4 - Hewlett-Packard Company) HP Support Information (HKLM-x32\...\{7F2A11F4-EAE8-4325-83EC-E3E99F85169E}) (Version: 10.1.1000 - Hewlett-Packard) HP Update (HKLM-x32\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.001.001 - Hewlett-Packard) HP Vision Hardware Diagnostics (HKLM\...\{D79A02E9-6713-4335-9668-AAC7474C0C0E}) (Version: 2.9.0.0 - Hewlett-Packard) iCloud (HKLM\...\{EAFB2AD8-D92B-464C-8D97-B9CB94703C4A}) (Version: 3.0.2.163 - Apple Inc.) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6346.0 - IDT) ImageMixer 3 SE Ver.6 Transfer Utility (HKLM-x32\...\{3A2AD071-AABD-4712-A43E-11D06BAA661D}) (Version: 6.00.018 - PIXELA) ImageMixer 3 SE Ver.6 Video Tools (HKLM-x32\...\{62CA119E-C5A7-42FC-85E8-4B55AA9E4072}) (Version: 6.00.018 - PIXELA) Intel(R) Identity Protection Technology 1.1.2.0 (HKLM-x32\...\{C01A86F5-56E7-101F-9BC9-E3F1025EB779}) (Version: 1.1.2.0 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation) iPhoneSMSExport (HKLM-x32\...\iPhoneSMSExport) (Version: - ) iTunes (HKLM\...\{2ABBBD91-91E5-4AD7-929A-FE15D1DC0576}) (Version: 12.0.1.26 - Apple Inc.) Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation) Java(TM) 6 Update 37 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216035FF}) (Version: 6.0.370 - Oracle) Jewel Quest Solitaire (x32 Version: 2.2.0.95 - WildTangent) Hidden Jewel Quest: The Sleepless Star - Collector's Edition (x32 Version: 2.2.0.95 - WildTangent) Hidden Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden K-Lite Codec Pack 9.3.0 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.3.0 - ) LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.3925 - CyberLink Corp.) LabelPrint (x32 Version: 2.5.3925 - CyberLink Corp.) Hidden LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - ) Logiciel d'archivage WinRAR (HKLM-x32\...\WinRAR archiver) (Version: - ) Logiciel de base du périphérique HP Officejet 6500 E710n-z (HKLM\...\{57C8FA8B-189E-43BD-8FF6-E91FAE1CA80A}) (Version: 22.50.231.0 - Hewlett-Packard Co.) Lux Delux 6.22 (HKLM-x32\...\Lux Delux_is1) (Version: - Sillysoft Games) Mah Jong Medley (x32 Version: 2.2.0.95 - WildTangent) Hidden Malwarebytes Anti-Malware version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Mathematics (HKLM-x32\...\{4D090F70-6F08-4B60-9357-A1DFD4458F09}) (Version: 4.0 - Microsoft Corporation) Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-040C-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation) Microsoft Office Professionnel Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit (HKLM-x32\...\{95140000-007D-0409-0000-0000000FF1CE}) (Version: 14.0.5120.5000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Mises à jour NVIDIA 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation) Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 39.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 39.0 (x86 fr)) (Version: 39.0 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) Mystery of Mortlake Mansion (x32 Version: 2.2.0.97 - WildTangent) Hidden MyTomTom 3.2.0.700 (HKLM-x32\...\MyTomTom) (Version: 3.2.0.700 - TomTom) Namco All-Stars: PAC-MAN (x32 Version: 2.2.0.95 - WildTangent) Hidden Nikon Message Center (HKLM-x32\...\{D2FCC1AE-6311-47C5-8130-C6C66D77DD71}) (Version: 0.92.000 - Nikon) Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.0 - Nikon) Nikon Movie Editor (HKLM-x32\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.8.0 - Nikon) NVIDIA Logiciel système PhysX 9.12.0213 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0213 - NVIDIA Corporation) NVIDIA Pilote 3D Vision 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation) NVIDIA Pilote audio HD : 1.3.16.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.16.0 - NVIDIA Corporation) NVIDIA Pilote du contrôleur 3D Vision 301.42 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 301.42 - NVIDIA Corporation) NVIDIA Pilote graphique 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM-x32\...\{121727D5-FDF3-4723-BA57-EB383440ED72}) (Version: 4.11.9775 - Apache Software Foundation) Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC) Panneau de configuration NVIDIA 311.06 (Version: 311.06 - NVIDIA Corporation) Hidden PDF Complete Special Edition (HKLM-x32\...\PDF Complete) (Version: 4.0.54 - PDF Complete, Inc) Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.4.15 - Nikon) Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95 - WildTangent) Hidden PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden presmar (HKLM-x32\...\{1e578da5-a7c9-479c-c72b-3ddc74a54243}) (Version: 1.0.0 - tentyed) <==== ATTENTION! PS3 Media Server (HKLM-x32\...\PS3 Media Server) (Version: 1.90.1 - PS3 Media Server) PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.) QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.) Recovery Manager (x32 Version: 5.5.0.4320 - CyberLink Corp.) Hidden Remote Graphics Receiver (HKLM-x32\...\{16FC3056-90C0-4757-8A68-64D8DA846ADA}) (Version: 5.4.5 - Hewlett-Packard) Réussir son Code de la Route 2013 (HKLM-x32\...\{8000A55E-6BB3-4206-AEED-CFD25F36FBC8}) (Version: 5.00.000 - Micro Application) Samsung Link 1.7.0.1309231724 (HKLM\...\8474-7877-9059-0204) (Version: 1.7.0.1309231724 - Copyright 2013 SAMSUNG) Seagate File Recovery for Windows 2.0 (HKLM-x32\...\Seagate File Recovery for WindowsNSIS) (Version: 2.0.7631 - Seagate) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.8.8855 - Skype Technologies S.A.) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden Spotify (HKU\S-1-5-21-640650399-36811433-875279925-1000\...\Spotify) (Version: 1.0.9.133.gcedaee38 - Spotify AB) Sweet Home 3D version 4.1 (HKLM-x32\...\Sweet Home 3D_is1) (Version: - eTeks) TANX (HKU\S-1-5-21-640650399-36811433-875279925-1000\...\tanx-318e6438285c101c2d763992c6af7383) (Version: - PlayCanvas) TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.26297 - TeamViewer) unincar (HKLM-x32\...\{eb4c7b00-66dd-43cc-6fd4-201961863adc}) (Version: 1.0.0 - citgen) Unity Web Player (HKU\S-1-5-21-640650399-36811433-875279925-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden Vacation Quest - The Hawaiian Islands (x32 Version: 2.2.0.97 - WildTangent) Hidden ViewNX 2 (HKLM\...\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}) (Version: 2.8.2 - Nikon) VIP Access SDK (1.0.1.4) (HKLM-x32\...\VIP Access SDK) (Version: 1.0.1.4 - Symantec Inc.) Virtual Villagers - The Secret City (x32 Version: 2.2.0.95 - WildTangent) Hidden Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.) VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN) WildTangent Games App (x32 Version: 4.0.10.2 - WildTangent) Hidden WinDirStat 1.1.2 (HKU\S-1-5-21-640650399-36811433-875279925-1000\...\WinDirStat) (Version: - ) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation) Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation) WinZip 16.5 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240D3}) (Version: 16.5.10095 - WinZip Computing, S.L. ) Wondershare Dr.Fone pour iOS(Build 4.1.1.5) (HKLM-x32\...\{A26F8BBD-EC10-4bdc-8AD8-F146825A8A63}_is1) (Version: 4.1.1.5 - Wondershare Software Co.,Ltd.) ZHPFix 2015 (HKLM-x32\...\ZHPFix_is1) (Version: 2015 - Nicolas Coolman) Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Alex M\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}\InprocServer32 -> C:\Users\Alex M\AppData\Roaming\presmar\unrydiro.dll () <==== ATTENTION CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Alex M\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Alex M\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Alex M\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Alex M\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Alex M\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Alex M\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Alex M\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Alex M\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-640650399-36811433-875279925-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Alex M\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.) ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:34 - 2015-03-03 11:52 - 00000916 __RAS C:\Windows\system32\Drivers\etc\hosts 127.0.0.1 tools.avanquest.com 127.0.0.1 aims.avanquest.com ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {0EE1077C-A96E-4D2B-B7B8-7FACA04B26D7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company) Task: {1F74DEA1-D659-4350-B9AB-556ABD9A5115} - \Plus-HD-1.7-chromeinstaller No Task File <==== ATTENTION Task: {29DFACAF-D503-4E7B-B5E3-6747C7D85502} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {3213CD77-6FF3-4B40-929A-85B8BA919164} - \Plus-HD-1.7-firefoxinstaller No Task File <==== ATTENTION Task: {3B915513-EFD5-44FB-B4B3-A55A64900A13} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-640650399-36811433-875279925-1000Core => C:\Users\Alex M\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.) Task: {3D9A9729-88B1-4C5D-85E7-3FC31503BBB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.) Task: {3E5A3DB7-5377-4DD9-947E-9A90679B098A} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-18] (Avast Software s.r.o.) Task: {41EAB917-204A-40E4-A089-1F070B83BBD6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2015-07-07] (Hewlett-Packard) Task: {437A1D11-7C8D-4C6A-8004-0704E4C55DB8} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-07-19] (Adobe Systems Incorporated) Task: {43D689CA-5F42-4FE4-B8C8-470278730A87} - System32\Tasks\Registration => C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe [2011-06-15] () Task: {53F74DC8-5847-43A1-BE3C-A7E090EBF0AC} - \Plus-HD-1.7-codedownloader No Task File <==== ATTENTION Task: {7DAAF8B5-82AD-48DB-81F6-8AB4280E3CF3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-11-04] (Hewlett-Packard Company) Task: {88DB03A3-6607-4990-A81A-5F7A61E1CDEE} - System32\Tasks\{44B04E10-05AF-46BC-9DC8-EACBB480E9AA} => pcalua.exe -a "C:\Program Files (x86)\EA Games\Battlefield Heroes\uninstaller.exe" -c "C:\Program Files (x86)\EA Games\Battlefield Heroes\Uninstall.xml" Task: {B5F07213-57BF-46D5-A18F-C425401764ED} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.) Task: {BA630C4D-FE57-4CDF-8611-51F286949F10} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-640650399-36811433-875279925-1000UA => C:\Users\Alex M\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.) Task: {C3C2AB4C-9FB8-46E2-A4E3-C0B2F198F758} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company) Task: {DD439EB6-1704-4613-9597-F52BA8B3D180} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-01-20] (Piriform Ltd) Task: {F43EFE22-88E3-49E0-BBF1-A36B033D091E} - \Plus-HD-1.7-enabler No Task File <==== ATTENTION Task: {F6741B8A-B006-4A89-B707-8872FE99525B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-10-23] (Google Inc.) Task: {F8573EDC-B581-4A18-B56F-1161A8B471CD} - \Plus-HD-1.7-updater No Task File <==== ATTENTION (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-640650399-36811433-875279925-1000Core.job => C:\Users\Alex M\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-640650399-36811433-875279925-1000UA.job => C:\Users\Alex M\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2012-08-30 16:21 - 2013-01-18 17:00 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2012-08-30 13:18 - 2013-09-20 14:57 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe 2013-09-13 16:34 - 2013-09-23 17:24 - 00012800 _____ () C:\Program Files\Samsung\Samsung Link\JniSys.dll 2013-07-23 20:42 - 2013-07-23 20:42 - 00515584 ____N () C:\Windows\Temp\sqlite-3.7.2-sqlitejdbc.dll 2013-09-07 13:04 - 2013-09-23 17:24 - 01386496 _____ () C:\Program Files\Samsung\Samsung Link\scone_proxy.dll 2013-09-07 13:04 - 2013-09-23 17:24 - 01427456 _____ () C:\Program Files\Samsung\Samsung Link\scone_stub.dll 2013-09-10 10:11 - 2013-09-10 10:11 - 00036864 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\64bit\JNIInterface.dll 2013-09-10 10:12 - 2013-09-10 10:12 - 00144384 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\64bit\ASFAPI.dll 2013-09-10 10:14 - 2013-09-10 10:14 - 00018944 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\64bit\MediaDB_Manager.dll 2013-08-23 14:34 - 2013-08-23 14:34 - 00030720 _____ () C:\Windows\system32\MediaDB64.dll 2013-08-23 14:34 - 2013-08-23 14:34 - 00908800 _____ () C:\Windows\system32\ContentDirectoryPresenter64.dll 2013-09-10 10:13 - 2013-09-10 10:13 - 00521728 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\64bit\DMS_Manager.dll 2013-07-23 19:19 - 2013-07-23 19:19 - 00049152 _____ () C:\Windows\system32\boost_date_time-vc90-mt-1_47.dll 2013-07-23 19:19 - 2013-07-23 19:19 - 00016896 _____ () C:\Windows\system32\boost_system-vc90-mt-1_47.dll 2013-07-23 19:19 - 2013-07-23 19:19 - 00058880 _____ () C:\Windows\system32\boost_thread-vc90-mt-1_47.dll 2013-07-23 19:19 - 2013-07-23 19:19 - 00299520 _____ () C:\Windows\system32\boost_serialization-vc90-mt-1_47.dll 2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF 2012-12-18 17:33 - 2009-12-12 16:12 - 00052224 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll 2015-07-06 17:36 - 2015-07-19 19:40 - 00161792 _____ () C:\Users\Alex M\AppData\Roaming\presmar\unrydiro.dll 2013-09-13 16:34 - 2013-09-23 17:24 - 00043520 _____ () C:\Program Files\Samsung\Samsung Link\JniIO.dll 2015-01-06 15:18 - 2015-02-12 19:00 - 00022336 _____ () C:\Program Files\CCleaner\branding.dll 2015-05-21 15:40 - 2015-05-21 15:40 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-05-21 15:40 - 2015-05-21 15:40 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-07-29 14:31 - 2015-07-29 14:31 - 02960384 _____ () C:\Program Files\AVAST Software\Avast\defs\15072900\algo.dll 2013-08-23 14:34 - 2013-08-23 14:34 - 01112576 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\DMSManager.dll 2013-08-23 14:34 - 2013-08-23 14:34 - 00706560 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\ContentDirectoryPresenter.dll 2013-08-23 14:34 - 2013-08-23 14:34 - 00107008 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\DCMCDP.dll 2013-08-23 14:34 - 2013-08-23 14:34 - 00102400 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\FolderCDP.dll 2013-08-23 14:34 - 2013-08-23 14:34 - 00077312 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\MetadataFramework.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00520234 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\sqlite3.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00450560 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\MoodExtractor.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 05717504 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\DCMImgExtractor.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 00028672 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\AutoChaptering.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00147456 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\libexpat.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\VideoThumb.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 04671488 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\avcodec-52.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00070656 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\avutil-50.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00686080 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\avformat-52.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00152064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\swscale-0.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 00028160 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\AudioExtractor.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 00064000 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\ID3Driver.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00366592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\tag.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00289792 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\libThumbnail.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 00023040 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\RichInfoDriver.dll 2013-08-23 14:34 - 2013-08-23 14:34 - 00017920 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\VideoExtractor.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 00117248 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\ThumbnailMaker.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 01033216 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\ImageMagickWrapper.dll 2013-08-23 14:34 - 2013-08-23 14:34 - 00134144 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\VideoMetadataDriver.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 00290816 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\libKeyFrame.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\SECMetaDriver.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 00012288 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\ImageExtractor.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00024064 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\photoDriver.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00399826 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\libexif-12.dll.dll 2013-08-14 08:29 - 2013-08-14 08:29 - 00013824 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\TextExtractor.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00032768 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\Autobackup.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00055808 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\RosettaAllShare.dll 2013-07-23 19:18 - 2013-07-23 19:18 - 00227840 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\boost_serialization-vc90-mt-1_47.dll 2013-07-23 19:18 - 2013-07-23 19:18 - 00038912 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\boost_date_time-vc90-mt-1_47.dll 2013-07-23 19:18 - 2013-07-23 19:18 - 00012800 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\boost_system-vc90-mt-1_47.dll 2013-07-23 19:18 - 2013-07-23 19:18 - 00046592 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\boost_thread-vc90-mt-1_47.dll 2013-07-23 19:30 - 2013-07-23 19:30 - 00044032 _____ () C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\us.dll 2014-02-12 21:58 - 2014-02-12 21:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll 2014-10-11 14:05 - 2014-10-11 14:05 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll 2012-05-18 11:04 - 2012-05-18 11:04 - 00019456 _____ () C:\Program Files (x86)\MyTomTom 3\DeviceDetection.dll 2012-05-18 11:04 - 2012-05-18 11:04 - 00067576 _____ () C:\Program Files (x86)\MyTomTom 3\TomTomSupporterBase.dll 2012-05-18 11:04 - 2012-05-18 11:04 - 02302464 _____ () C:\Program Files (x86)\MyTomTom 3\QtCore4.dll 2012-05-18 11:04 - 2012-05-18 11:04 - 00252408 _____ () C:\Program Files (x86)\MyTomTom 3\TomTomSupporterProxy.dll 2012-05-18 11:04 - 2012-05-18 11:04 - 00980480 _____ () C:\Program Files (x86)\MyTomTom 3\QtNetwork4.dll 2012-05-18 11:04 - 2012-05-18 11:04 - 00357888 _____ () C:\Program Files (x86)\MyTomTom 3\QtXml4.dll 2012-05-18 11:04 - 2012-05-18 11:04 - 07964160 _____ () C:\Program Files (x86)\MyTomTom 3\QtGui4.dll 2014-11-19 22:02 - 2014-11-19 22:02 - 40622592 ____R () K:\Programme files\libcef.dll 2015-01-23 12:09 - 2009-07-21 15:42 - 00364544 _____ () K:\canon\pxl_m17n_tool.dll 2015-07-30 08:58 - 2015-07-30 08:58 - 00043008 _____ () c:\users\alexm~1\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmppigq4x.dll 2015-03-04 23:45 - 2015-03-19 09:15 - 00750080 _____ () C:\Users\Alex M\AppData\Roaming\Dropbox\bin\libGLESv2.dll 2015-03-04 23:45 - 2015-03-19 09:15 - 00047616 _____ () C:\Users\Alex M\AppData\Roaming\Dropbox\bin\libEGL.dll 2015-03-04 23:45 - 2015-03-19 09:15 - 00865280 _____ () C:\Users\Alex M\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll 2015-03-04 23:45 - 2015-03-19 09:15 - 00200704 _____ () C:\Users\Alex M\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll 2015-03-04 23:45 - 2015-03-19 09:15 - 00010240 _____ () C:\Users\Alex M\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll 2015-03-04 23:45 - 2015-03-19 09:15 - 00726016 _____ () C:\Users\Alex M\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-03-04 23:45 - 2015-03-19 09:15 - 00010240 _____ () C:\Users\Alex M\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll 2015-05-21 15:40 - 2015-05-21 15:40 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf 2015-07-06 17:36 - 2015-07-19 19:40 - 00135168 _____ () C:\Users\Alex M\AppData\Roaming\presmar\mainward.dll 2013-02-14 15:46 - 2013-02-14 15:46 - 01044048 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll 2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Alex M\Desktop\Bijoux Bruno:com.dropbox.attributes AlternateDataStreams: C:\Users\Alex M\Desktop\St V de Réno Plan RDC III.pdf:com.dropbox.attributes ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) IE trusted site: HKU\S-1-5-21-640650399-36811433-875279925-1000\...\video-futur.com -> hxxps://video-futur.com ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-640650399-36811433-875279925-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Alex M\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 208.67.222.222 - 208.67.220.220 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe" MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [{984FBA6C-7A24-41EC-80D3-5A8496D717E3}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Remote Graphics Receiver\rgreceiver.exe FirewallRules: [{81888307-172F-4AF0-B088-43FDD83616E9}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\Remote Graphics Receiver\rgreceiver.exe FirewallRules: [{2587333B-B668-4BF2-A0C8-DE50B5B99B1E}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\HP LinkUp Viewer.exe FirewallRules: [{CD5E0606-71EF-4619-9C96-2FD16768717B}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP LinkUp\HP LinkUp Viewer.exe FirewallRules: [{638B51CC-0D42-499D-9308-0DF6C4E4003B}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{43FD0C75-612B-4B34-9D02-1CF769EE9951}] => (Allow) LPort=2869 FirewallRules: [{9F70ADAF-392F-4370-A425-E2D617B3E5E1}] => (Allow) LPort=1900 FirewallRules: [{C673CA0E-24E1-492E-85BA-914DD9EAB3FA}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe FirewallRules: [{AA75F80D-63DD-4DE1-92DD-415AB9D136F0}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe FirewallRules: [{945A729E-DCAB-4DDE-A57F-0254CA37B1CD}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{2553A370-1376-476A-9A2A-1F247C3545E0}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{5654ADDD-251A-4CE8-A199-1CAD1BD4DE5A}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{52789548-EFC1-414D-9189-C3135CE2DC56}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [TCP Query User{9B21EB95-BA53-4938-8258-8F93D1495A5F}C:\users\alex m\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alex m\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{9BDFBDB1-CD3C-439C-951E-DFDE16956E7D}C:\users\alex m\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alex m\appdata\roaming\spotify\spotify.exe FirewallRules: [{0E2CFC67-53D3-4F80-9D41-91C3C2AC2B55}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{BB5B86D1-FA5B-4F68-9EB3-AB5963E4CD0F}] => (Allow) C:\Program Files\hp\HP Officejet 6500 E710n-z\Bin\DeviceSetup.exe FirewallRules: [{5189F958-D533-4589-A5C6-0AEA647BC918}] => (Allow) C:\Program Files\hp\HP Officejet 6500 E710n-z\Bin\DeviceSetup.exe FirewallRules: [{711603A2-0E7E-4D9E-AF92-59F914C58317}] => (Allow) C:\Program Files\hp\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicator.exe FirewallRules: [{7A63F7F6-B191-46FE-8990-0E9EB699E994}] => (Allow) C:\Program Files\hp\HP Officejet 6500 E710n-z\Bin\HPNetworkCommunicator.exe FirewallRules: [{54E59BB7-15DD-4E28-BF50-637047E9A4AF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{8D82FB58-A327-4E86-BDE6-C8FB21C643F2}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe FirewallRules: [{F5DE014B-7DAE-4836-B6BD-5C68781DAAF1}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [{0936199D-D11D-44DA-B966-274B7C5120DA}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe FirewallRules: [TCP Query User{E662582D-4635-4F6A-B1CD-3A45A67FACEF}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe] => (Allow) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe FirewallRules: [UDP Query User{6EE9B76B-7429-43AF-B248-BEA2F56788DB}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe] => (Allow) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe FirewallRules: [{2F2FE1EF-313A-4E68-B496-43371570F103}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{2B2DFA36-F473-4C2F-89BF-299847638D01}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{04FFD13D-96E6-4FF1-9D1F-E8A20BA55DDE}] => (Allow) LPort=8743 FirewallRules: [{73631DD5-A01C-4918-91BD-7FE80A21520B}] => (Allow) LPort=8643 FirewallRules: [{7263ADEB-3A79-4E54-94C1-A686DFA4A496}] => (Allow) LPort=7676 FirewallRules: [{358A8DF7-8086-4837-BA66-BB254B8EA869}] => (Allow) LPort=7679 FirewallRules: [{8940E7BC-8927-4349-B3AA-607343E84502}] => (Allow) LPort=24234 FirewallRules: [{EB552FDA-C727-4DEF-890D-3B8CF50CD643}] => (Allow) LPort=7900 FirewallRules: [{FE8FA9B7-BA27-4C93-9C06-AAA385E570B6}] => (Allow) LPort=1900 FirewallRules: [TCP Query User{70FC7B1C-E722-4A6F-8FCB-9AD2A660A2F2}C:\users\alex m\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alex m\appdata\roaming\spotify\spotify.exe FirewallRules: [UDP Query User{E2DA6C01-2D2D-4912-B966-534497A4F282}C:\users\alex m\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\alex m\appdata\roaming\spotify\spotify.exe FirewallRules: [{66E2343C-2AFE-4743-A698-57F43F33308A}] => (Allow) LPort=8743 FirewallRules: [{2F7999C0-3517-454A-BD8F-0ECE808CA4B8}] => (Allow) LPort=8643 FirewallRules: [{2540CAE9-4E63-4143-B325-6FE1BA7B487F}] => (Allow) LPort=7676 FirewallRules: [{8B3B155D-8C86-478A-B289-14E47E3797D0}] => (Allow) LPort=7679 FirewallRules: [{59AF4EB5-8933-4911-98C1-B8C1C1180B2E}] => (Allow) LPort=24234 FirewallRules: [{EBAAE0BE-398F-4EB0-AC8C-88E02E581C46}] => (Allow) LPort=7900 FirewallRules: [{4B3F959D-EEF1-4E79-B773-98FC491464F7}] => (Allow) LPort=1900 FirewallRules: [{B5E1BEBC-BB8F-43EB-B5E0-620DE0B2CDA8}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe FirewallRules: [{8C31FEF5-2E2C-4398-87D4-51228ACEB71C}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe FirewallRules: [{CB772DE8-C344-4A96-A342-7F51D309DDFA}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe FirewallRules: [{22F18110-FD95-41E5-96C5-BBFBC0C80BD8}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe FirewallRules: [TCP Query User{F1EB5E30-6727-4280-BBA3-73097529B3F4}C:\program files\hp\hp officejet 6500 e710n-z\bin\hpnetworkcommunicator.exe] => (Allow) C:\program files\hp\hp officejet 6500 e710n-z\bin\hpnetworkcommunicator.exe FirewallRules: [UDP Query User{371BAF4D-2DF4-4DAF-8B92-793935C18465}C:\program files\hp\hp officejet 6500 e710n-z\bin\hpnetworkcommunicator.exe] => (Allow) C:\program files\hp\hp officejet 6500 e710n-z\bin\hpnetworkcommunicator.exe FirewallRules: [TCP Query User{8A845F39-C829-426D-98C5-04834953CA25}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe] => (Allow) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe FirewallRules: [UDP Query User{66350F3A-5F17-4FD1-8200-89F628EDE316}C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe] => (Allow) C:\program files (x86)\ea games\battlefield heroes\bfheroes.exe FirewallRules: [{2AA2DF5C-3151-4536-9E84-F1CB774AD9DF}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe FirewallRules: [{8642AEBD-6126-4DE6-A3C6-C12F37489245}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe FirewallRules: [{5BAD5270-97B4-4901-9A16-EA5A08830DD2}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe FirewallRules: [{583209DF-7A4B-4B4B-BC89-2AAC1B362BC6}] => (Allow) C:\Program Files\Samsung\Samsung Link\Samsung Link.exe FirewallRules: [{67C725FA-8E0F-421E-9ADB-BBAF626F707C}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\AllShareFrameworkDMS.exe FirewallRules: [{1B908D85-6F1F-48F1-9150-7ABAE03FBC72}] => (Allow) C:\Program Files\Samsung\AllShare Framework DMS\1.3.18\AllShareFrameworkDMS.exe FirewallRules: [TCP Query User{8DC6D226-D0AB-456E-BB37-3FD224B55128}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe FirewallRules: [UDP Query User{8FEF0FD8-9056-436F-9355-CB32D18CFFF3}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe FirewallRules: [TCP Query User{1EE6BBA0-ED44-44E4-A0B8-3BA5D07AF743}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe FirewallRules: [UDP Query User{944B4FAC-C458-4B1C-870E-00995FB01A7B}C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe] => (Allow) C:\program files (x86)\ps3 media server\jre64\bin\javaw.exe FirewallRules: [{78BAA543-BE75-429F-857C-CE3629ABADC1}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{339AA9E0-D936-4EE5-BA32-70C83E3408C7}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{D78C1994-326B-4700-8525-6EAB9C946AFC}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{5728B024-82EA-45BD-A651-348440458803}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{D4B42907-69ED-4CFD-BF35-3059D8B4B796}] => (Allow) C:\Users\Alex M\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{19A06539-48A7-465F-85C6-F41CA2B09E5F}] => (Allow) C:\Users\Alex M\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{FBB970B7-60FD-4084-A038-7FFDA2600D4A}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [{2F468E3F-A6AA-45C3-81F5-2B31E8D55ABB}] => (Allow) C:\Program Files (x86)\uTorrent\uTorrent.exe FirewallRules: [TCP Query User{7E411FD9-18F4-4937-8114-B9A1322B2A1E}C:\users\alex m\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\alex m\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{789C53B1-E58F-4187-A35D-6488501A55ED}C:\users\alex m\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\alex m\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [{9170A545-DADD-446F-BDB0-3B2ECC41144C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{FA888EE1-87D7-49CD-9306-00ED22FA0D1B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{38FDF6CD-899A-4E92-BA17-CE3D73322D23}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe FirewallRules: [TCP Query User{E10E7082-2400-4402-89F8-C44F11A2A0FC}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{BBF6FD4A-D0FE-450B-A460-4F756003A03E}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{4F82242D-3CF1-453F-9A40-4C465960302F}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe FirewallRules: [{F0E569DF-CD19-4F43-A079-2EAD9C1D59F8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Faulty Device Manager Devices ============= Name: Realtek PCIe GBE Family Controller Description: Realtek PCIe GBE Family Controller Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Realtek Service: RTL8167 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Event log errors: ========================= Application errors: ================== Error: (07/30/2015 10:06:46 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17909, horodatage : 0x55844c24 Nom du module défaillant : IEFRAME.dll, version : 11.0.9600.17924, horodatage : 0x55959ca0 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0002eaa7 ID du processus défaillant : 0x5bc0 Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (07/30/2015 09:45:01 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17909, horodatage : 0x55844c24 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x748fcb49 ID du processus défaillant : 0xb21c Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (07/30/2015 09:41:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17909, horodatage : 0x55844c24 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x02fc45c6 ID du processus défaillant : 0xb4cc Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (07/30/2015 09:17:04 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17909, horodatage : 0x55844c24 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0xe84a8b0c ID du processus défaillant : 0x669c Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (07/30/2015 09:09:19 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17909, horodatage : 0x55844c24 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0xc833fc4a ID du processus défaillant : 0x8dfc Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (07/30/2015 09:03:01 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17909, horodatage : 0x55844c24 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x7018e9b0 ID du processus défaillant : 0x5b88 Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (07/29/2015 10:30:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17909, horodatage : 0x55844c24 Nom du module défaillant : IEFRAME.dll, version : 11.0.9600.17924, horodatage : 0x55959ca0 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0002eaa7 ID du processus défaillant : 0x9abc Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (07/29/2015 09:13:13 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17909, horodatage : 0x55844c24 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0xe84d8dff ID du processus défaillant : 0x3ffc Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (07/29/2015 04:43:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17909, horodatage : 0x55844c24 Nom du module défaillant : IEFRAME.dll, version : 11.0.9600.17924, horodatage : 0x55959ca0 Code d’exception : 0xc0000005 Décalage d’erreur : 0x0006c833 ID du processus défaillant : 0x3784 Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 Error: (07/29/2015 03:48:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IEXPLORE.EXE, version : 11.0.9600.17909, horodatage : 0x55844c24 Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000 Code d’exception : 0xc0000005 Décalage d’erreur : 0x7503cb49 ID du processus défaillant : 0x35b4 Heure de début de l’application défaillante : 0xIEXPLORE.EXE0 Chemin d’accès de l’application défaillante : IEXPLORE.EXE1 Chemin d’accès du module défaillant: IEXPLORE.EXE2 ID de rapport : IEXPLORE.EXE3 System errors: ============= Error: (07/30/2015 08:59:41 AM) (Source: volsnap) (EventID: 36) (User: ) Description: Les clichés instantanés du volume C: ont été annulés car le stockage du cliché instantané n’a pas pu s’agrandir en raison d’une limite utilisateur. Error: (07/30/2015 08:57:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service NVIDIA Update Service Daemon n’a pas pu démarrer en raison de l’erreur : %%1069 Error: (07/30/2015 08:57:20 AM) (Source: Service Control Manager) (EventID: 7038) (User: ) Description: Le service nvUpdatusService n’a pas pu ouvrir de session en tant que .\UpdatusUser avec le mot de passe actuellement configuré en raison de l’erreur suivante : %%1330 Pour vous assurer que le service est configuré correctement, utilisez le composant logiciel enfichable Services dans Microsoft Management Console (MMC). Error: (07/30/2015 08:56:17 AM) (Source: DCOM) (EventID: 10016) (User: AUTORITE NT) Description: spécifiques à l’applicationLocalExécution{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}AUTORITE NTSystèmeS-1-5-18LocalHost (utilisation de LRPC) Error: (07/29/2015 10:21:48 PM) (Source: Schannel) (EventID: 4119) (User: AUTORITE NT) Description: L’alerte fatale suivante a été reçue : 40. Error: (07/29/2015 05:35:21 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Le chargement de \??\C:\Users\ALEXM~1\AppData\Local\Temp\catchme.sys a été bloqué en raison d’une incompatibilité avec ce système. Contactez l’éditeur de votre logiciel pour obtenir une version compatible du pilote. Error: (07/29/2015 05:35:21 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Le chargement de \??\C:\Users\ALEXM~1\AppData\Local\Temp\catchme.sys a été bloqué en raison d’une incompatibilité avec ce système. Contactez l’éditeur de votre logiciel pour obtenir une version compatible du pilote. Error: (07/29/2015 05:35:20 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Le chargement de \??\C:\Users\ALEXM~1\AppData\Local\Temp\catchme.sys a été bloqué en raison d’une incompatibilité avec ce système. Contactez l’éditeur de votre logiciel pour obtenir une version compatible du pilote. Error: (07/29/2015 05:35:20 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Le chargement de \??\C:\Users\ALEXM~1\AppData\Local\Temp\catchme.sys a été bloqué en raison d’une incompatibilité avec ce système. Contactez l’éditeur de votre logiciel pour obtenir une version compatible du pilote. Error: (07/29/2015 05:35:20 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Le chargement de \??\C:\Users\ALEXM~1\AppData\Local\Temp\catchme.sys a été bloqué en raison d’une incompatibilité avec ce système. Contactez l’éditeur de votre logiciel pour obtenir une version compatible du pilote. Microsoft Office: ========================= Error: (07/30/2015 10:06:46 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.1790955844c24IEFRAME.dll11.0.9600.1792455959ca0c00000050002eaa75bc001d0ca9e3a421450C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\system32\IEFRAME.dlleb5eb25f-3691-11e5-9248-c0affc537d38 Error: (07/30/2015 09:45:01 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.1790955844c24unknown0.0.0.000000000c0000005748fcb49b21c01d0ca9b41f5179eC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknowne18b5e7c-368e-11e5-9248-c0affc537d38 Error: (07/30/2015 09:41:31 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.1790955844c24unknown0.0.0.000000000c000000502fc45c6b4cc01d0ca9ac961b215C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown645f9aea-368e-11e5-9248-c0affc537d38 Error: (07/30/2015 09:17:04 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.1790955844c24unknown0.0.0.000000000c0000005e84a8b0c669c01d0ca9745d64a80C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknownf9f7a860-368a-11e5-9248-c0affc537d38 Error: (07/30/2015 09:09:19 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.1790955844c24unknown0.0.0.000000000c0000005c833fc4a8dfc01d0ca966389985bC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknowne4ccabed-3689-11e5-9248-c0affc537d38 Error: (07/30/2015 09:03:01 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.1790955844c24unknown0.0.0.000000000c00000057018e9b05b8801d0ca9580a75ac5C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown03827971-3689-11e5-9248-c0affc537d38 Error: (07/29/2015 10:30:30 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.1790955844c24IEFRAME.dll11.0.9600.1792455959ca0c00000050002eaa79abc01d0ca3d19f543d9C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\system32\IEFRAME.dlla6f657b2-3630-11e5-8635-b77ce790ae39 Error: (07/29/2015 09:13:13 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.1790955844c24unknown0.0.0.000000000c0000005e84d8dff3ffc01d0ca320d48e02dC:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknowndb16b704-3625-11e5-8635-b77ce790ae39 Error: (07/29/2015 04:43:55 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.1790955844c24IEFRAME.dll11.0.9600.1792455959ca0c00000050006c833378401d0ca0c8471d9f7C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEC:\Windows\system32\IEFRAME.dll3c297447-3600-11e5-8635-b77ce790ae39 Error: (07/29/2015 03:48:35 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: IEXPLORE.EXE11.0.9600.1790955844c24unknown0.0.0.000000000c00000057503cb4935b401d0ca04f42fa7c0C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXEunknown81463ad9-35f8-11e5-8635-b77ce790ae39 CodeIntegrity: =================================== Date: 2015-07-29 17:35:21.226 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\ALEXM~1\AppData\Local\Temp\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2015-07-29 17:35:21.184 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\ALEXM~1\AppData\Local\Temp\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2015-07-29 17:35:21.144 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\ALEXM~1\AppData\Local\Temp\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2015-07-29 17:35:21.104 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\ALEXM~1\AppData\Local\Temp\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2015-07-29 17:35:20.909 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\ALEXM~1\AppData\Local\Temp\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2015-07-29 17:35:20.856 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\ALEXM~1\AppData\Local\Temp\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2015-07-29 17:35:20.801 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\ALEXM~1\AppData\Local\Temp\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2015-07-29 17:35:20.764 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\ALEXM~1\AppData\Local\Temp\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2015-07-29 17:35:20.571 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\ALEXM~1\AppData\Local\Temp\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. Date: 2015-07-29 17:35:20.529 Description: Windows ne peut pas vérifier l’intégrité d’image du fichier \Device\HarddiskVolume2\Users\ALEXM~1\AppData\Local\Temp\catchme.sys, car le fichier à hacher est introuvable sur le système. Une modification matérielle ou logicielle récente a peut-être installé un fichier incorrectement signé ou endommagé ou il s’agit éventuellement d’un logiciel malveillant d’une source inconnue. ==================== Memory info =========================== Processor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz Percentage of memory in use: 39% Total physical RAM: 8172.31 MB Available physical RAM: 4968.04 MB Total Virtual: 16342.83 MB Available Virtual: 12112.37 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:98.74 GB) (Free:7.29 GB) NTFS Drive d: (HP_RECOVERY) (Fixed) (Total:12.95 GB) (Free:1.58 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive e: (DATADRIVE1) (Fixed) (Total:1863.02 GB) (Free:136.63 GB) NTFS Drive g: (THE_LAST_DAYS_ON_MARS) (CDROM) (Total:4.36 GB) (Free:0 GB) UDF Drive h: () (Removable) (Total:14.83 GB) (Free:0.26 GB) FAT32 Drive k: (Disque III) (Fixed) (Total:3725.9 GB) (Free:3351.41 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 4C93305F) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=98.7 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=12.9 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (Size: 1863 GB) (Disk ID: EF00C080) Partition: GPT Partition Type. ======================================================== Disk: 2 (MBR Code: Windows 7 or 8) (Size: 3726 GB) (Disk ID: 00000000) Partition: GPT Partition Type. ======================================================== Disk: 3 (Size: 14.8 GB) (Disk ID: 00000000) Partition: GPT Partition Type. ==================== End of log ============================