Additional scan result of Farbar Recovery Scan Tool (x86) Version: 28-06-2015 01 Ran by sci usto at 2015-07-03 21:26:51 Running from C:\Users\sci usto\Downloads\Programs Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-1983233217-3244096975-1909044983-500 - Administrator - Enabled) => C:\Users\Administrateur HomeGroupUser$ (S-1-5-21-1983233217-3244096975-1909044983-1003 - Limited - Enabled) Invité (S-1-5-21-1983233217-3244096975-1909044983-501 - Limited - Disabled) sci usto (S-1-5-21-1983233217-3244096975-1909044983-1000 - Administrator - Enabled) => C:\Users\sci usto UpdatusUser (S-1-5-21-1983233217-3244096975-1909044983-1001 - Limited - Enabled) => C:\Users\UpdatusUser ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859} AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.190 - Adobe Systems Incorporated) Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.190 - Adobe Systems Incorporated) Adobe Reader XI (11.0.09) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated) Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.0.626 - Adobe Systems, Inc.) Avira Antivirus (HKLM\...\Avira Antivirus) (Version: 15.0.10.434 - Avira Operations GmbH & Co. KG) Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment) Call of Duty(R) 4 - Modern Warfare(TM) 1.2 Patch (Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.3 Patch (Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.4 Patch (Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.5 Multiplayer Patch (Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (Version: - ) Hidden Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (Version: - ) Hidden Camera RAW Plug-In for EPSON Creativity Suite (HKLM\...\{8DAC1AE4-33D1-4A78-8A42-00E09EDECC3E}) (Version: 2.1.0.0 - ) CCleaner (HKLM\...\CCleaner) (Version: 4.08 - Piriform) CX4300_5500_DX4400 Manuel (HKLM\...\CX4300_5500_DX4400 Manuel) (Version: - ) DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) Diablo II (HKLM\...\Diablo II) (Version: - ) EPSON Copy Utility 3 (HKLM\...\{67EDD823-135A-4D59-87BD-950616D6E857}) (Version: 3.2.0.0 - ) EPSON Easy Photo Print (HKLM\...\{B66E665A-DF96-4C38-9422-C7F74BC1B4E5}) (Version: 1.4.2.0 - ) EPSON File Manager (HKLM\...\{2EB81825-E9EE-44F4-8F51-1240C3898DC6}) (Version: 1.3.0.0 - ) EPSON Logiciel imprimante (HKLM\...\EPSON Printer and Utilities) (Version: - SEIKO EPSON Corporation) EPSON Scan Assistant (HKLM\...\{2A88F1BF-7041-4E42-84B1-6B4ACB83AC64}) (Version: 1.10.00 - ) FormatFactory 3.3.1.0 (HKLM\...\FormatFactory) (Version: 3.3.1.0 - Format Factory) Google Chrome (HKLM\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.) Google Update Helper (Version: 1.3.27.5 - Google Inc.) Hidden Internet Download Manager (HKLM\...\Internet Download Manager) (Version: - Tonec Inc.) Java 7 Update 75 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217075FF}) (Version: 7.0.750 - Oracle) K-Lite Codec Pack 7.8.0 (Full) (HKLM\...\KLiteCodecPack_is1) (Version: 7.8.0 - ) League of Legends (HKLM\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games) League of Legends (Version: 3.0.1 - Riot Games) Hidden Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation) Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft) Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation) Microsoft Office Professional Plus 2007 (HKLM\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{2e7a9943-de7b-4030-8f40-63502f679ace}) (Version: 12.0.21005.1 - Microsoft Corporation) Mise à jour Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-040C-0000-0000000FF1CE}_PROPLUS_{B761869A-B85C-40E2-994C-A1CE78AC8F2C}) (Version: - Microsoft) Mise à jour Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-040C-0000-0000000FF1CE}_PROPLUS_{51EFB347-1F3D-4BAC-8B79-F056B904FE21}) (Version: - Microsoft) Mise à jour Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-040C-0000-0000000FF1CE}_PROPLUS_{C3DCA38E-005E-41BA-A52A-7C3429F351C3}) (Version: - Microsoft) Mise à jour Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-040C-0000-0000000FF1CE}_PROPLUS_{81536A04-DBFB-4DB3-978F-0F284590C223}) (Version: - Microsoft) Mises à jour NVIDIA 1.10.8 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.10.8 - NVIDIA Corporation) NVIDIA Pilote graphique 307.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.74 - NVIDIA Corporation) Panneau de configuration NVIDIA 307.74 (Version: 307.74 - NVIDIA Corporation) Hidden PCSX2 - Playstation 2 Emulator (HKLM\...\pcsx2-r5350) (Version: - ) Skype™ 7.5 (HKLM\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.5.101 - Skype Technologies S.A.) SpeedConnect Internet Accelerator v.8.0 (HKLM\...\SpeedConnect Internet Accelerator v.8.0_is1) (Version: - CBS Software) TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH) TP-LINK TL-WN721N_TL-WN722N Driver (HKLM\...\{86A7EED0-02D0-4D91-8183-8D2F23F5E6AE}) (Version: 1.3.1 - TP-LINK) Twin USB Vibration Gamepad (HKLM\...\{1BBDD6C0-ED6F-43C3-8A9C-84E3249A5615}) (Version: 2007.01.01 - ) Unity Web Player (HKU\S-1-5-21-1983233217-3244096975-1909044983-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft) Vegas Pro 11.0 (HKLM\...\{B60CD35E-0296-11E2-945A-F04DA23A5C58}) (Version: 11.0.700 - Sony) VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN) Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.4.0.0 - Azureus Software, Inc.) Windows 7 USB/DVD Download Tool (HKLM\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) WinRAR 4.00 (32 bits) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH) World of Warcraft (HKLM\...\World of Warcraft) (Version: - ) ZHPDiag 2015 (HKLM\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-1983233217-3244096975-1909044983-1000_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\sci usto\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS) CustomCLSID: HKU\S-1-5-21-1983233217-3244096975-1909044983-1000_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\Users\SCIUST~1\AppData\Local\Temp\B300\temp\SpyHunter 4 Crack Patch plus keygen is Here [Latest]. (the data entry has 11 more characters). CustomCLSID: HKU\S-1-5-21-1983233217-3244096975-1909044983-1001_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Users\UpdatusUser\AppData\LocalLow\Unity\WebPlayer\loader\UnityWebPluginAX.ocx No File ==================== Restore Points ========================= ==================== Hosts content: ========================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2009-07-14 04:04 - 2015-06-04 15:02 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {065279E7-59FA-447C-85AF-47C6F4DF1088} - System32\Tasks\{90F3B67C-8D86-4798-B8CF-FA4FCFAC6CD1} => C:\Riot Games\League of Legends\lol.launcher.exe [2013-06-12] () Task: {0C052735-D296-48EB-9028-3F25FC386625} - \cb77fc70-c7a3-4cf8-bffc-859f797b5a0f-6 No Task File <==== ATTENTION Task: {0D2296D2-5FD3-4691-8E5E-6E9DFD619ED2} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1983233217-3244096975-1909044983-1000 Task: {1016399D-6BF2-4000-BFDA-234ACED32743} - System32\Tasks\{A66668F2-7673-433C-8402-1C8AA9236E22} => Chrome.exe http://ui.skype.com/ui/0/6.16.59.105/fr/abandoninstall?page=tsProgressBar Task: {134A278E-92E8-4617-8DB5-09FA9D9AF9C0} - System32\Tasks\{B1A91181-B9C9-4057-BA6C-7F3C9E5269AF} => pcalua.exe -a "D:\HIDDEN ET DANGEROUS\hddeluxe.exe" -d "D:\HIDDEN ET DANGEROUS" Task: {1425A78C-F492-45DB-8619-0E5BAA4BBC37} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd) Task: {1D4C9155-4ED1-4DA6-AB8C-4E01ADBE142E} - \cb77fc70-c7a3-4cf8-bffc-859f797b5a0f-2 No Task File <==== ATTENTION Task: {29A610BA-11BA-4876-B089-5ACE11B305D8} - \cb77fc70-c7a3-4cf8-bffc-859f797b5a0f-7 No Task File <==== ATTENTION Task: {2CB6E3DE-D9AA-4F97-B9EE-D5D6D1C5B572} - \cb77fc70-c7a3-4cf8-bffc-859f797b5a0f-3 No Task File <==== ATTENTION Task: {3993602E-3FCE-401F-8F44-AEA239EB2313} - System32\Tasks\Microsoft\Windows Defender\MP Scheduled Scan Task: {3ADFFA79-98DE-466D-8C46-A7503C348689} - \cb77fc70-c7a3-4cf8-bffc-859f797b5a0f-4 No Task File <==== ATTENTION Task: {5F0CFAC3-AE7D-4388-A1F6-57C5FCE9F2D3} - \cb77fc70-c7a3-4cf8-bffc-859f797b5a0f-5 No Task File <==== ATTENTION Task: {7F9054F3-DD12-4C58-95D9-DCC72741A95C} - \3fab51af-f62d-4b6f-8048-bd8d2866cbec No Task File <==== ATTENTION Task: {9A4F96FA-AC24-450E-8A1B-E89BF595422B} - \2e95d115-c98a-4405-ad8d-aae24851eb9b No Task File <==== ATTENTION Task: {AA3B8CEA-CC9B-4E8C-B703-ED4A00752721} - System32\Tasks\{242115DD-2260-43CA-A7AC-8C8DF4B1EDD7} => C:\Riot Games\League of Legends\lol.launcher.exe [2013-06-12] () Task: {B3CB8E7C-AEA8-48C2-B551-1C39229C657A} - System32\Tasks\{0CEE3552-B84E-4962-898F-B92ABAD3E6D8} => C:\Riot Games\League of Legends\lol.launcher.exe [2013-06-12] () Task: {B9F9EC8C-DB71-46C4-BF95-DF301BAE6E8B} - System32\Tasks\{068F8522-A9B4-467B-8D60-ED21BED88A2B} => C:\Riot Games\League of Legends\lol.launcher.exe [2013-06-12] () Task: {CC9B67CE-7C47-41CD-83D1-037622725FE5} - \4d264490-e381-47d0-912c-d1453905dea5 No Task File <==== ATTENTION Task: {CF4A9072-4C56-47C3-8BDA-D0D54D12339A} - \cb77fc70-c7a3-4cf8-bffc-859f797b5a0f-11 No Task File <==== ATTENTION Task: {D50C681D-78AC-42EA-9661-DBF56D77BA42} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-05-28] (Google Inc.) Task: {D8124995-E373-4D64-966B-B5C9CE439BE8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2014-05-28] (Google Inc.) Task: {E6F65384-4BAE-45DA-B551-646F40C3FF18} - \cb77fc70-c7a3-4cf8-bffc-859f797b5a0f-1 No Task File <==== ATTENTION Task: {F18EF581-ECCD-4EED-BCAB-55E4C4E72AE9} - \cb77fc70-c7a3-4cf8-bffc-859f797b5a0f-5_user No Task File <==== ATTENTION Task: {FA100F5B-6B2E-4D42-B379-637C2707A72B} - System32\Tasks\Microsoft\Windows Defender\MpIdleTask Task: {FE497AC9-3AB7-4B09-BE07-61E483C41B75} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-24] (Adobe Systems Incorporated) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2013-12-17 18:58 - 2013-01-03 10:38 - 00079800 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll 2014-05-22 15:22 - 2014-05-22 18:00 - 00066872 _____ () C:\Windows\system32\PnkBstrA.exe 2013-12-17 20:01 - 2011-03-02 13:40 - 00140288 _____ () C:\Program Files\WinRAR\rarext.dll 2015-05-25 21:20 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files\Google\Chrome\Application\43.0.2357.81\libglesv2.dll 2015-05-25 21:20 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files\Google\Chrome\Application\43.0.2357.81\libegl.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\ProgramData\TEMP:56E2E879 ==================== Safe Mode (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-1983233217-3244096975-1909044983-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\sci usto\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 37.48.127.131 - 8.8.8.8 ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{951ECB09-62CE-417A-BFC7-94D3B255D5BA}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{4A9935F1-AEE8-4414-8E41-B41C2A1077EC}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{DBD1E702-2059-47D5-ABB1-E70E06690E5D}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe FirewallRules: [{54ECB9F2-6520-4DA5-B032-6DC8C6856699}] => (Allow) LPort=80 FirewallRules: [{EA96BD03-07C8-46A1-A6D0-9C75CD93056A}] => (Allow) LPort=443 FirewallRules: [{CD25747D-1898-423C-BBEC-89E29D26B26C}] => (Allow) LPort=20010 FirewallRules: [{3E10EADF-A4E1-4A91-A922-DB83E3252BC3}] => (Allow) LPort=3478 FirewallRules: [{45EE7E96-9080-49B7-82FF-A1CCCFB9E30D}] => (Allow) LPort=7850 FirewallRules: [{9269BDD6-AC0B-4CC8-933F-3E4147B7DBD9}] => (Allow) LPort=7852 FirewallRules: [{43221D32-A7A3-4FD7-9CD5-9652DB643DFF}] => (Allow) LPort=7853 FirewallRules: [{7FCCE62D-ACC3-4C32-AB29-41699A0883F4}] => (Allow) LPort=27022 FirewallRules: [{3286ED13-CF77-4515-A410-E765C7702DE0}] => (Allow) LPort=6881 FirewallRules: [{BEF1AE3D-C38E-497E-A728-4528520BD86C}] => (Allow) LPort=33333 FirewallRules: [{707E8BAA-9EF0-46CA-8191-AD75CCAC34CE}] => (Allow) LPort=20443 FirewallRules: [{E5EBB904-7DFC-4805-98AB-FA143AA86B1B}] => (Allow) LPort=8090 FirewallRules: [{D7E4C1D8-47A0-4786-8A68-CE9751E6E63F}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe FirewallRules: [{22BA77E7-D56A-49EA-854A-0D63C86C4F61}] => (Allow) C:\Windows\System32\PnkBstrA.exe FirewallRules: [{CD36169D-DC94-4125-8E6B-C57078B135D6}] => (Allow) C:\Windows\System32\PnkBstrA.exe FirewallRules: [{5FB5217C-A252-4A12-A21A-4EEE05234A8D}] => (Allow) C:\Windows\System32\PnkBstrB.exe FirewallRules: [{DC9CB64F-F698-4A30-90C0-D70C944F990C}] => (Allow) C:\Windows\System32\PnkBstrB.exe FirewallRules: [{EE999AF9-0EBC-4C1F-8CE4-9068BFC98FF1}] => (Allow) LPort=1487 FirewallRules: [{F2945BC3-FF05-4788-9E04-7E3AAEF6689F}] => (Allow) C:\Program Files\Battle.net\Battle.net.exe FirewallRules: [{1D439F80-8B9F-499D-BA69-6C71957E5BB2}] => (Allow) C:\Program Files\Battle.net\Battle.net.exe FirewallRules: [{1B6997FB-00C3-4FAC-9A1A-79875DC581C0}] => (Allow) C:\Program Files\Hearthstone\Hearthstone.exe FirewallRules: [{49A515D1-E543-44FA-907F-FBA0519DF7EB}] => (Allow) C:\Program Files\Hearthstone\Hearthstone.exe FirewallRules: [TCP Query User{AC0549B4-3873-4C86-A917-B052BE824B31}C:\program files\hearthstone\hearthstone.exe] => (Block) C:\program files\hearthstone\hearthstone.exe FirewallRules: [UDP Query User{5F871E73-FFF4-42A7-98DB-326C0DB91486}C:\program files\hearthstone\hearthstone.exe] => (Block) C:\program files\hearthstone\hearthstone.exe FirewallRules: [TCP Query User{CC16F5FC-1455-40C4-94CB-429F9B19FEA2}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Block) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe FirewallRules: [UDP Query User{70D68678-3086-4445-B96E-7B6D80CD85AB}C:\program files (x86)\pro evolution soccer 2015\pes2015.exe] => (Block) C:\program files (x86)\pro evolution soccer 2015\pes2015.exe FirewallRules: [{1AFE7A40-C947-4EF4-AAA5-F500AE79D4A4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe FirewallRules: [{49650D61-C4D3-43D4-A090-E6E2B9069C2B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3715\Agent.exe FirewallRules: [TCP Query User{3E6EC93D-7A7C-463B-9382-523A0239C92E}C:\program files\valve\hl.exe] => (Allow) C:\program files\valve\hl.exe FirewallRules: [UDP Query User{BB499F70-BC04-41A1-9FC4-197E15D45277}C:\program files\valve\hl.exe] => (Allow) C:\program files\valve\hl.exe FirewallRules: [{81285EA4-8F32-42BF-86B2-8E0345881BCF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe FirewallRules: [TCP Query User{53FEB26F-2034-40CB-B915-BD5C98615E37}C:\program files\valve\hl.exe] => (Block) C:\program files\valve\hl.exe FirewallRules: [UDP Query User{F2BE7F4D-AF28-4FC8-8BEB-C329BEE10C7A}C:\program files\valve\hl.exe] => (Block) C:\program files\valve\hl.exe FirewallRules: [TCP Query User{2F62F244-B0EE-46B2-B8CE-89B6B105BE2C}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe FirewallRules: [UDP Query User{AB84BE67-CDB6-4404-B58E-9B077A3D5810}C:\program files\vuze\azureus.exe] => (Allow) C:\program files\vuze\azureus.exe ==================== Faulty Device Manager Devices ============= Name: MpKslbd29ad86 Description: MpKslbd29ad86 Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1} Manufacturer: Service: MpKslbd29ad86 Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24) Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed. Devices stay in this state if they have been prepared for removal. After you remove the device, this error disappears.Remove the device, and this error should be resolved. Name: Microsoft Teredo Tunneling Adapter Description: Microsoft Teredo Tunneling Adapter Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: tunnel Problem: : This device cannot start. (Code10) Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device. On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard. ==================== Event log errors: ========================= Application errors: ================== Error: (07/03/2015 09:22:12 PM) (Source: Avira Antivirus) (EventID: 4122) (User: AUTORITE NT) Description: Chargement du fichier AvShadow impossible. Code d'erreur renvoyé : 0x2 Error: (07/03/2015 06:44:23 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme rads_user_kernel.exe version 0.0.0.0 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 6f8 Heure de début : 01d0b5af750d69aa Heure de fin : 0 Chemin d’accès de l’application : C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe ID de rapport : c1114ba3-21a2-11e5-8f8b-d43d7ef98512 Error: (07/03/2015 04:13:49 PM) (Source: Avira Antivirus) (EventID: 4122) (User: AUTORITE NT) Description: Chargement du fichier AvShadow impossible. Code d'erreur renvoyé : 0x2 Error: (07/02/2015 02:01:34 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante svchost.exe_WinDefend, version : 6.1.7600.16385, horodatage : 0x4a5bc100 Nom du module défaillant : mprtp.dll, version : 6.1.7600.16385, horodatage : 0x4a5bda3c Code d’exception : 0xc0000005 Décalage d’erreur : 0x00013bb8 ID du processus défaillant : 0x7f0 Heure de début de l’application défaillante : 0xsvchost.exe_WinDefend0 Chemin d’accès de l’application défaillante : svchost.exe_WinDefend1 Chemin d’accès du module défaillant: svchost.exe_WinDefend2 ID de rapport : svchost.exe_WinDefend3 Error: (07/02/2015 02:01:33 PM) (Source: Avira Antivirus) (EventID: 4122) (User: AUTORITE NT) Description: Chargement du fichier AvShadow impossible. Code d'erreur renvoyé : 0x2 Error: (07/02/2015 01:57:48 PM) (Source: Avira Antivirus) (EventID: 4122) (User: AUTORITE NT) Description: Chargement du fichier AvShadow impossible. Code d'erreur renvoyé : 0x2 Error: (07/02/2015 01:54:36 PM) (Source: Avira Antivirus) (EventID: 4122) (User: AUTORITE NT) Description: Chargement du fichier AvShadow impossible. Code d'erreur renvoyé : 0x2 Error: (07/02/2015 02:37:33 AM) (Source: Avira Antivirus) (EventID: 4122) (User: AUTORITE NT) Description: Chargement du fichier AvShadow impossible. Code d'erreur renvoyé : 0x2 Error: (07/01/2015 11:18:41 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme rads_user_kernel.exe version 0.0.0.0 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 818 Heure de début : 01d0b4437a8901ce Heure de fin : 0 Chemin d’accès de l’application : C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe ID de rapport : be389d3e-2036-11e5-a352-d43d7ef98512 Error: (07/01/2015 11:18:28 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Le programme rads_user_kernel.exe version 0.0.0.0 a cessé d’interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l’historique du problème dans le Centre de maintenance. ID de processus : 1760 Heure de début : 01d0b44371ae9d86 Heure de fin : 0 Chemin d’accès de l’application : C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe ID de rapport : b64760b1-2036-11e5-a352-d43d7ef98512 System errors: ============= Error: (07/03/2015 09:22:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Windows Defender s’est arrêté avec l’erreur : %%-2147024891 Error: (07/03/2015 09:22:13 PM) (Source: Service Control Manager) (EventID: 7024) (User: ) Description: Le service Avira Protection temps réel s’est arrêté avec l’erreur service particulière %%310. Error: (07/03/2015 09:22:12 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Avira Protection Web dépend du service Avira Protection temps réel qui n’a pas pu démarrer en raison de l’erreur : %%0 Error: (07/03/2015 09:22:12 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Le service Avira Protection e-mail dépend du service Avira Protection temps réel qui n’a pas pu démarrer en raison de l’erreur : %%0 Error: (07/03/2015 09:22:11 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Windows Defender s’est arrêté avec l’erreur : %%-2147024891 Error: (07/03/2015 09:21:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service EPSON V3 Service4(01) n’a pas pu démarrer en raison de l’erreur : %%2 Error: (07/03/2015 09:21:49 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 34) (User: AUTORITE NT) Description: Les fonctionnalités de gestion de l’alimentation relatives à l’inactivité sur le processeur 1 du groupe 0 sont désactivées en raison d’un problème de microprogramme connu. Vérifiez si un microprogramme mis à jour est disponible auprès du fabricant de l’ordinateur. Error: (07/03/2015 09:21:49 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 34) (User: AUTORITE NT) Description: Les fonctionnalités de gestion de l’alimentation relatives à l’inactivité sur le processeur 0 du groupe 0 sont désactivées en raison d’un problème de microprogramme connu. Vérifiez si un microprogramme mis à jour est disponible auprès du fabricant de l’ordinateur. Error: (07/03/2015 04:18:56 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Windows Defender s’est arrêté avec l’erreur : %%-2147024891 Error: (07/03/2015 04:13:52 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service Windows Defender s’est arrêté avec l’erreur : %%-2147024891 Microsoft Office: ========================= ==================== Memory info =========================== Processor: Intel(R) Core(TM)2 Duo CPU E7500 @ 2.93GHz Percentage of memory in use: 47% Total physical RAM: 3583.24 MB Available physical RAM: 1888.48 MB Total Virtual: 7164.8 MB Available Virtual: 5383.74 MB ==================== Drives ================================ Drive c: () (Fixed) (Total:195.21 GB) (Free:4.14 GB) NTFS Drive d: () (Fixed) (Total:270.45 GB) (Free:227.74 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 11091108) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=195.2 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=270.4 GB) - (Type=07 NTFS) ==================== End of log ============================