[Need help]Mon pc rame
Fermé
poppen
Messages postés
4
Date d'inscription
samedi 23 août 2014
Statut
Membre
Dernière intervention
25 août 2014
-
Modifié par poppen le 24/08/2014 à 17:04
Utilisateur anonyme - 25 août 2014 à 13:33
Utilisateur anonyme - 25 août 2014 à 13:33
A voir également:
- [Need help]Mon pc rame
- Mon pc rame que faire - Guide
- Test performance pc - Guide
- Reinitialiser pc - Guide
- Plus de son sur mon pc - Guide
- Mon pc s'allume mais ne démarre pas windows 10 - Guide
7 réponses
Utilisateur anonyme
24 août 2014 à 19:23
24 août 2014 à 19:23
La prochaine fois ne postes pas le rapport FRSt directement sur le forum mais héberge le rapport sur le site nommé dans mon 1er post.
AdwCleaner (suppression)
* Télécharge AdwCleaner sur ton Bureau. (Merci à Xplode)
*Double-clique sur l'icône AdwCleaner située sur ton Bureau.
*Sur la page, clique sur le bouton ===> Nettoyer
*Laisse travailler l'outil.
*Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\ AdwCleaner[SX].Txt)
AdwCleaner (suppression)
* Télécharge AdwCleaner sur ton Bureau. (Merci à Xplode)
*Double-clique sur l'icône AdwCleaner située sur ton Bureau.
*Sur la page, clique sur le bouton ===> Nettoyer
*Laisse travailler l'outil.
*Poste le rapport qui apparaît à la fin.
(Le rapport est sauvegardé aussi sous C:\ AdwCleaner[SX].Txt)
Utilisateur anonyme
24 août 2014 à 22:32
24 août 2014 à 22:32
Ton ordinateur été infecté par des logiciels publicitaires... Pour éviter ce genre de problème :
- Ne télécharge pas n'importe quel programme gratuit sans te renseigner dessus
- Ne télécharge aucun programme proposé dans des publicités ou sur des sites suspects.Privilégie le téléchargement directement sur le site de l'éditeur.
- Lis attentivement lorsque tu installes un programme gratuit, et décoches tous les programmes additionnels qui sont proposés, en particulier les barres d'outils !
*Télécharge et installe : Malwarebytes' Anti-Malware
* Installez puis lancez le programme (pensez à décocher la case "Activer l'essai gratuit de Malwarebytes Anti-Malware Premium" à la fin de l'installation) .
/!\Utilisateur de Vista, Windows 7 et 8 : Clique droit sur le logo de Malwarebytes' Anti-Malware, « exécuter en tant qu'Administrateur »/!\
* Vérifie l'onglet tableau de bord que ta version soit à jour.
* Si ce n'est pas le cas clic sur mettre a jour.
* Dans l'onglet examen sélectionne examen Menaces et clic sur examiner maintenant.
* Le scan démarre.
* L'analyse terminée un message s'affiche ===> L'examen terminé avec succès.
* Cliquez sur "Tout mettre en quarantaine" puis sur "Appliquez les actions".
(Si un message demande de redémarrer le PC pour terminer la suppression, acceptez).
* Le rapport est disponible dans Historique ===> Journaux de l'application ===> Double clic sur journal d'examen en date du dernier scan.
Dans journal de l'historique d'examen choisis exporter au format fichier.txt sur ton bureau et ok.
Héberge le rapport sur Cjoint et copie et colle son lien sur ton prochain message.
- Ne télécharge pas n'importe quel programme gratuit sans te renseigner dessus
- Ne télécharge aucun programme proposé dans des publicités ou sur des sites suspects.Privilégie le téléchargement directement sur le site de l'éditeur.
- Lis attentivement lorsque tu installes un programme gratuit, et décoches tous les programmes additionnels qui sont proposés, en particulier les barres d'outils !
*Télécharge et installe : Malwarebytes' Anti-Malware
* Installez puis lancez le programme (pensez à décocher la case "Activer l'essai gratuit de Malwarebytes Anti-Malware Premium" à la fin de l'installation) .
/!\Utilisateur de Vista, Windows 7 et 8 : Clique droit sur le logo de Malwarebytes' Anti-Malware, « exécuter en tant qu'Administrateur »/!\
* Vérifie l'onglet tableau de bord que ta version soit à jour.
* Si ce n'est pas le cas clic sur mettre a jour.
* Dans l'onglet examen sélectionne examen Menaces et clic sur examiner maintenant.
* Le scan démarre.
* L'analyse terminée un message s'affiche ===> L'examen terminé avec succès.
* Cliquez sur "Tout mettre en quarantaine" puis sur "Appliquez les actions".
(Si un message demande de redémarrer le PC pour terminer la suppression, acceptez).
* Le rapport est disponible dans Historique ===> Journaux de l'application ===> Double clic sur journal d'examen en date du dernier scan.
Dans journal de l'historique d'examen choisis exporter au format fichier.txt sur ton bureau et ok.
Héberge le rapport sur Cjoint et copie et colle son lien sur ton prochain message.
Utilisateur anonyme
24 août 2014 à 17:22
24 août 2014 à 17:22
Bonjour
On va faire une analyse de ton systéme.
Télécharge la version FRST de Farbar, compatible avec ton système et enregistre le fichier sur ton Bureau <== Important
Pour un système en 32 bits ==> FRST de Farbar
Pour un système en 64 bits ==> https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ FRST de Farbar]
Comment savoir quelle version 32 bits ou 64 bits est exécutée sur mon système ?
Patiente le temps que ton navigateur te propose le téléchargement à enregistrer, sans cliquer nulle part, surtout pas sur les sponsors de la page.
Ferme toutes les applications, y compris ton navigateur
Double-clique sur FRST.exe et clique sur Oui pour accepter le Disclaimer
/!\ Sous Vista, Windows 7 et 8, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
Sur le menu principal coche la case Addition.txt et clique sur Scan et patiente le temps de l'analyse
A la fin du scan, les rapports FRST.txt et Addition.txt sont créés.
Les rapports sont enregistrés au même emplacement que l'outil et sous C:\FRST\Logs
Héberge les rapports sur le site pjjoint.malekal.com ou cijoint puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
Sous IE9, IE10 ou IE11, le filtre SmartScreen déclenche une alerte. Cliquer sur Actions puis sur Exécuter quand même
On va faire une analyse de ton systéme.
Télécharge la version FRST de Farbar, compatible avec ton système et enregistre le fichier sur ton Bureau <== Important
Pour un système en 32 bits ==> FRST de Farbar
Pour un système en 64 bits ==> https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ FRST de Farbar]
Comment savoir quelle version 32 bits ou 64 bits est exécutée sur mon système ?
Patiente le temps que ton navigateur te propose le téléchargement à enregistrer, sans cliquer nulle part, surtout pas sur les sponsors de la page.
Ferme toutes les applications, y compris ton navigateur
Double-clique sur FRST.exe et clique sur Oui pour accepter le Disclaimer
/!\ Sous Vista, Windows 7 et 8, il faut lancer le fichier par clic-droit -> Exécuter en tant qu'administrateur
Sur le menu principal coche la case Addition.txt et clique sur Scan et patiente le temps de l'analyse
A la fin du scan, les rapports FRST.txt et Addition.txt sont créés.
Les rapports sont enregistrés au même emplacement que l'outil et sous C:\FRST\Logs
Héberge les rapports sur le site pjjoint.malekal.com ou cijoint puis copie/colle le lien fournit dans ta prochaine réponse sur le forum
Sous IE9, IE10 ou IE11, le filtre SmartScreen déclenche une alerte. Cliquer sur Actions puis sur Exécuter quand même
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
poppen
Messages postés
4
Date d'inscription
samedi 23 août 2014
Statut
Membre
Dernière intervention
25 août 2014
24 août 2014 à 18:04
24 août 2014 à 18:04
Tout d'abord un grand merci à toi pour ta réponse rapide!
Alors je te colle sa suivant tes instructions :
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-08-2014 03
Ran by Logan at 2014-08-24 17:55:15
Running from C:\Users\Logan\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.68 - NewTech Infosystems)
Acer Crystal Eye webcam (HKLM-x32\...\{51F026FA-5146-4232-A8BA-1364740BD053}) (Version: 1.0.5.4 - Liteon)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3005 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated)
Acer GameZone Console (HKLM-x32\...\{58F4D244-314F-4D26-B5EF-C28AB32E22CB}_is1) (Version: 6.1.0.9 - Oberon Media, Inc.)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0707.2010 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.178 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 14.0.0.178 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.176 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
aTube Catcher version 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
avast! Premier (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Backup Manager Basic (x32 Version: 2.0.0.68 - NewTech Infosystems) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 33.1.0.1 - Comodo)
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.3216.50 - CyberLink Corp.)
CyberLink PowerDVD 9 (x32 Version: 9.0.3216.50 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media)
Duel of Champions (HKCU\...\MMDoC-PDCLive) (Version: - Ubisoft)
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
FreeWifi Manager 1.0.15 (HKLM-x32\...\FreeWifi Manager) (Version: 1.0.15 - Michaël Monserrat)
Galerie de photos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Gyazo 2.0.2 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
HearthstoneTracker (HKLM-x32\...\HearthstoneTracker) (Version: 1.9.5.56756 - HearthstoneTracker.com)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.2.1001 - Intel Corporation)
Internet Updater (HKLM-x32\...\InternetUpdater) (Version: 2.6.57 - Parallel Lines Development, LLC) <==== ATTENTION
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 4.0.14 - Acer Inc.)
Microsoft .NET Framework 4.5.1 (FRA) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 31.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 fr)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Mumble 1.2.7 (HKLM-x32\...\{1FC198EF-5C3F-4C2A-99AC-22DE9B3FBFDE}) (Version: 1.2.7 - Thorvald Natvig)
MyWinLocker (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.212.0 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
OpenOffice 4.0.1 (HKLM-x32\...\{8D5D54B8-3D29-4AB4-8DA8-1868DAF941D8}) (Version: 4.01.9714 - Apache Software Foundation)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6151 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30121 - Realtek Semiconductor Corp.)
Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype(TM) 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)
Updater (HKLM-x32\...\{D54E3D9F-FEB8-4D2D-A138-B69A5C80080B}) (Version: 2.6.53 - Creative Island Media, LLC) <==== ATTENTION
Visionneuse Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3005 - Acer Incorporated)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-456767707-2278922208-3380423735-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Logan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-456767707-2278922208-3380423735-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Logan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-456767707-2278922208-3380423735-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Logan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-456767707-2278922208-3380423735-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Logan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)
==================== Restore Points =========================
10-08-2014 17:00:43 Sauvegarde Windows
11-08-2014 09:26:54 Windows Update
13-08-2014 15:10:54 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
14-08-2014 13:42:25 Windows Update
14-08-2014 17:40:28 Windows Update
18-08-2014 10:09:04 Windows Update
18-08-2014 10:18:10 Sauvegarde Windows
21-08-2014 06:45:17 Windows Update
21-08-2014 13:37:53 Windows Update
22-08-2014 07:29:13 avast! antivirus system restore point
22-08-2014 08:42:28 Installation du package de pilotes : Avast Service réseau
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {05DE744B-AE05-4688-9965-14F817B6C49F} - System32\Tasks\{13D1DE9E-77B2-407C-A1CC-2AEA59CB1C75} => Chrome.exe https://www.skype.com/en/get-skype/?source=lightinstaller&ver=4.1.0.179.367&LastError=404
Task: {2D35D7CB-8A54-47B8-83B7-4FDB026C649C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-23] (Adobe Systems Incorporated)
Task: {406E33DF-6B05-42E0-8CC4-1191380C430C} - System32\Tasks\{11004021-9EDD-4BCA-9EC4-5A4D4DE9DC8B} => Chrome.exe https://www.skype.com/en/get-skype/?source=lightinstaller&ver=4.1.0.179.367&LastError=404
Task: {688C3E2F-6165-42EF-B52E-9A665EA82913} - System32\Tasks\Digital Sites => C:\Users\Logan\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {85CE6750-64B8-4883-8E2B-583FD5F1E955} - System32\Tasks\MySearchDial => C:\Users\Logan\AppData\Roaming\mysearchdial\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {8FCC9EB9-636E-4AF6-B866-64EDAA7FAA53} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {94152307-98F1-41AE-AC06-6DEB3682E784} - System32\Tasks\{F5AF8EE3-02DA-4744-9ABD-91AFE9C1CD61} => Chrome.exe https://www.skype.com/en/get-skype/?source=lightinstaller&ver=4.1.0.179.367&LastError=404
Task: {A6CA8B3C-8D47-492F-8C11-DC24F9CBC71F} - System32\Tasks\{4366B888-95DD-4129-9560-2D1823EEFEA4} => C:\Program Files (x86)\FreeWifi Manager\FreeWifi_Manager.exe [2014-01-30] ()
Task: {AAEDAA09-4FD7-4A8E-9E5B-B32BF00922A2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-14] (Google Inc.)
Task: {AB51FC85-E852-47EB-B4D0-B6B18FB5FDE6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-22] (AVAST Software)
Task: {D302079C-C1CF-4A48-9BDA-2C64FD588646} - System32\Tasks\{DC2750DC-5691-452F-9BE4-D63556A2BC56} => Chrome.exe https://www.skype.com/en/get-skype/?source=lightinstaller&ver=4.1.0.179.367&LastError=404
Task: {D57087E5-D17A-4218-AEF1-D00577234704} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-14] (Google Inc.)
Task: {E4ABB2BB-4CB7-4EC7-B416-07DEDB9ED64C} - System32\Tasks\{741805A4-2967-4CC6-BF8F-9D9147E3E7D6} => Chrome.exe http://ui.skype.com/ui/0/6.14.0.104/fr/abandoninstall?page=tsProgressBar
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Digital Sites.job => C:\Users\Logan\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MySearchDial.job => C:\Users\Logan\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2013-09-30 13:55 - 2014-02-17 22:36 - 01209856 _____ () C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\FrozenWay.exe
2014-01-30 20:18 - 2014-01-30 20:18 - 00842543 _____ () C:\Program Files (x86)\FreeWifi Manager\FreeWifi_Manager.exe
2014-08-22 10:05 - 2014-08-22 10:05 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-08-24 00:58 - 2014-08-24 00:58 - 02801152 _____ () C:\Program Files\AVAST Software\Avast\defs\14082303\algo.dll
2014-08-24 17:52 - 2014-08-24 17:52 - 02801152 _____ () C:\Program Files\AVAST Software\Avast\defs\14082400\algo.dll
2014-08-22 10:05 - 2014-08-22 10:05 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-03-23 05:04 - 2014-02-17 22:17 - 00118272 _____ () C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\libgcc_s_sjlj-1.dll
2013-03-23 05:04 - 2014-02-17 22:36 - 00907264 _____ () C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\libstdc++-6.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:373E1720
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: DsiWMIService => 2
MSCONFIG\Services: ePowerSvc => 2
MSCONFIG\Services: FLEXnet Licensing Service => 3
MSCONFIG\Services: GREGService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: MWLService => 3
MSCONFIG\Services: NOBU => 2
MSCONFIG\Services: NTI IScheduleSvc => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: Updater Service => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FreeWifi Manager.lnk => C:\Windows\pss\FreeWifi Manager.lnk.CommonStartup
MSCONFIG\startupreg: Acer ePower Management => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: Aeria Ignite => "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Logan\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: BackupManagerTray => "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
MSCONFIG\startupreg: EgisTecPMMUpdate => "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
MSCONFIG\startupreg: EgisUpdate => "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
MSCONFIG\startupreg: FrozenWay => C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\FrozenWay.exe
MSCONFIG\startupreg: Gyazo => C:\Program Files (x86)\Gyazo\GyStation.exe
MSCONFIG\startupreg: HearthstoneTracker => "C:\Program Files (x86)\HearthstoneTracker\HearthCap.exe" -logon
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: LManager => C:\Program Files (x86)\Launch Manager\LManager.exe
MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
MSCONFIG\startupreg: MSC => "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: mwlDaemon => C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
MSCONFIG\startupreg: Norton Online Backup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\System32\StikyNot.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: SuiteTray => "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: Updater => C:\ProgramData\Updater\updater.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (08/24/2014 05:54:07 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: La création du contexte d'activation a échoué pour « C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1 ». Erreur dans le fichier de manifeste ou de stratégie « C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 » à la ligne C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Une version de composant nécessaire à l'application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (08/24/2014 02:51:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante updater.exe, version : 1.0.0.1, horodatage : 0x52b217a4
Nom du module défaillant : updater.exe, version : 1.0.0.1, horodatage : 0x52b217a4
Code d'exception : 0xc0000005
Décalage d'erreur : 0x0000bb62
ID du processus défaillant : 0xce0
Heure de début de l'application défaillante : 0xupdater.exe0
Chemin d'accès de l'application défaillante : updater.exe1
Chemin d'accès du module défaillant: updater.exe2
ID de rapport : updater.exe3
Error: (08/24/2014 02:34:12 PM) (Source: McLogEvent) (EventID: 5022) (User: AUTORITE NT)
Description: Échec de l'initialisation du moteur MCSCAN32.
Le moteur a renvoyé l'erreur : 1
Error: (08/24/2014 02:31:30 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Battle.net.exe version 1.1.7.4944 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.
ID de processus : 163c
Heure de début : 01cfbf041aca203f
Heure de fin : 1175
Chemin d'accès de l'application : C:\Program Files (x86)\Battle.net\Battle.net.4944\Battle.net.exe
ID de rapport : 874fb6af-2b8a-11e4-b4ce-1c7508e2cbb0
Error: (08/23/2014 08:50:18 PM) (Source: McLogEvent) (EventID: 5022) (User: AUTORITE NT)
Description: Échec de l'initialisation du moteur MCSCAN32.
Le moteur a renvoyé l'erreur : 1
Error: (08/23/2014 06:37:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante MsMpEng.exe, version : 4.5.216.0, horodatage : 0x531f64e3
Nom du module défaillant : msvcrt.dll, version : 7.0.7601.17744, horodatage : 0x4eeb033f
Code d'exception : 0xc0000005
Décalage d'erreur : 0x00000000000011fd
ID du processus défaillant : 0x3f8
Heure de début de l'application défaillante : 0xMsMpEng.exe0
Chemin d'accès de l'application défaillante : MsMpEng.exe1
Chemin d'accès du module défaillant: MsMpEng.exe2
ID de rapport : MsMpEng.exe3
Error: (08/23/2014 06:32:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante svchost.exe_MMCSS, version : 6.1.7600.16385, horodatage : 0x4a5bc3c1
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d'exception : 0xc0000005
Décalage d'erreur : 0x000000007705000a
ID du processus défaillant : 0x410
Heure de début de l'application défaillante : 0xsvchost.exe_MMCSS0
Chemin d'accès de l'application défaillante : svchost.exe_MMCSS1
Chemin d'accès du module défaillant: svchost.exe_MMCSS2
ID de rapport : svchost.exe_MMCSS3
Error: (08/23/2014 05:55:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme chrome.exe version 34.0.1847.131 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.
ID de processus : 9918
Heure de début : 01cfbeea9ace904c
Heure de fin : 142
Chemin d'accès de l'application : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
ID de rapport : eedd048c-2add-11e4-bd07-1c7508e2cbb0
Error: (08/22/2014 09:00:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Hearthstone.exe version 1.1.0.6284 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.
ID de processus : 1cfc
Heure de début : 01cfbe36db1930e0
Heure de fin : 426
Chemin d'accès de l'application : C:\Program Files (x86)\Hearthstone\Hearthstone.exe
ID de rapport : 8353ddbd-2a2e-11e4-bd07-1c7508e2cbb0
Error: (08/22/2014 06:57:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Hearthstone.exe version 1.1.0.6284 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.
ID de processus : 15c8
Heure de début : 01cfbe29d3f7313c
Heure de fin : 363
Chemin d'accès de l'application : C:\Program Files (x86)\Hearthstone\Hearthstone.exe
ID de rapport : 2cb13dae-2a1d-11e4-bd07-1c7508e2cbb0
System errors:
=============
Error: (08/24/2014 02:34:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service McAfee SiteAdvisor Service n'a pas pu démarrer en raison de l'erreur :
%%2
Error: (08/24/2014 02:33:54 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L'arrêt système précédant à 14:31:26 le ?24/?08/?2014 n'était pas prévu.
Error: (08/24/2014 01:58:51 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service ShellHWDetection.
Error: (08/24/2014 01:32:32 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service InternetUpdater.
Error: (08/24/2014 01:32:32 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service ShellHWDetection.
Error: (08/24/2014 00:10:54 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service ShellHWDetection.
Error: (08/24/2014 00:10:54 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service NlaSvc.
Error: (08/23/2014 09:16:46 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %AUTORITE NT60 a rencontré une erreur lors de la tentative de mise à jour des signatures.
Nouvelle version des signatures :
Version précédente des signatures : 1.183.96.0
Source de la mise à jour : %AUTORITE NT59
Étape de la mise à jour : 4.5.0216.00
Chemin d'accès source : 4.5.0216.01
Type de signature : %AUTORITE NT602
Type de la mise à jour : %AUTORITE NT604
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur : %AUTORITE NT605
Version précédente du moteur : %AUTORITE NT606
Code d'erreur : %AUTORITE NT607
Description de l'erreur : %AUTORITE NT608
Error: (08/23/2014 09:16:46 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %AUTORITE NT60 a rencontré une erreur lors de la tentative de mise à jour des signatures.
Nouvelle version des signatures :
Version précédente des signatures : 1.183.96.0
Source de la mise à jour : %AUTORITE NT59
Étape de la mise à jour : 4.5.0216.00
Chemin d'accès source : 4.5.0216.01
Type de signature : %AUTORITE NT602
Type de la mise à jour : %AUTORITE NT604
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur : %AUTORITE NT605
Version précédente du moteur : %AUTORITE NT606
Code d'erreur : %AUTORITE NT607
Description de l'erreur : %AUTORITE NT608
Error: (08/23/2014 08:56:26 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Windows Update est en attente de démarrage.
Microsoft Office Sessions:
=========================
Error: (08/24/2014 05:54:07 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Logan\Downloads\SoftonicDownloader_pour_atube-catcher.exe
Error: (08/24/2014 02:51:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: updater.exe1.0.0.152b217a4updater.exe1.0.0.152b217a4c00000050000bb62ce001cfbf99813e72c0C:\ProgramData\Updater\updater.exeC:\ProgramData\Updater\updater.exe4dca445e-2b8d-11e4-9a37-1c7508e2cbb0
Error: (08/24/2014 02:34:12 PM) (Source: McLogEvent) (EventID: 5022) (User: AUTORITE NT)
Description: 1
Error: (08/24/2014 02:31:30 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Battle.net.exe1.1.7.4944163c01cfbf041aca203f1175C:\Program Files (x86)\Battle.net\Battle.net.4944\Battle.net.exe874fb6af-2b8a-11e4-b4ce-1c7508e2cbb0
Error: (08/23/2014 08:50:18 PM) (Source: McLogEvent) (EventID: 5022) (User: AUTORITE NT)
Description: 1
Error: (08/23/2014 06:37:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.5.216.0531f64e3msvcrt.dll7.0.7601.177444eeb033fc000000500000000000011fd3f801cfbe28b6378c91c:\Program Files\Microsoft Security Client\MsMpEng.exeC:\Windows\system32\msvcrt.dllc1bcffa2-2ae3-11e4-bd07-1c7508e2cbb0
Error: (08/23/2014 06:32:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_MMCSS6.1.7600.163854a5bc3c1unknown0.0.0.000000000c0000005000000007705000a41001cfbe28b6d96a23C:\Windows\system32\svchost.exeunknown1bc55e93-2ae3-11e4-bd07-1c7508e2cbb0
Error: (08/23/2014 05:55:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe34.0.1847.131991801cfbeea9ace904c142C:\Program Files (x86)\Google\Chrome\Application\chrome.exeeedd048c-2add-11e4-bd07-1c7508e2cbb0
Error: (08/22/2014 09:00:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Hearthstone.exe1.1.0.62841cfc01cfbe36db1930e0426C:\Program Files (x86)\Hearthstone\Hearthstone.exe8353ddbd-2a2e-11e4-bd07-1c7508e2cbb0
Error: (08/22/2014 06:57:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Hearthstone.exe1.1.0.628415c801cfbe29d3f7313c363C:\Program Files (x86)\Hearthstone\Hearthstone.exe2cb13dae-2a1d-11e4-bd07-1c7508e2cbb0
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-08-2014 03
Ran by Logan (administrator) on FAMILLEAIMÉ-PC on 24-08-2014 17:50:57
Running from C:\Users\Logan\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Français (France)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Parallel Lines Development, LLC) C:\ProgramData\InternetUpdater\InternetUpdaterService.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\FrozenWay.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.4944\Battle.net.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
() C:\Program Files (x86)\FreeWifi Manager\FreeWifi_Manager.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-08-22] (AVAST Software)
HKLM-x32\...\Run: [FrozenWay] => C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\FrozenWay.exe [1209856 2014-02-17] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-01-17] (Microsoft Corporation)
HKU\S-1-5-21-456767707-2278922208-3380423735-1000\...\Run: [Updater] => C:\ProgramData\Updater\updater.exe [486264 2013-12-18] (Updater)
HKU\S-1-5-21-456767707-2278922208-3380423735-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-456767707-2278922208-3380423735-1000\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe [2869808 2014-08-22] (Blizzard Entertainment)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FreeWifi Manager.lnk
ShortcutTarget: FreeWifi Manager.lnk -> C:\Program Files (x86)\FreeWifi Manager\FWM_Start.exe ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x64\psdprotect.dll (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll (Egis Technology Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=acer.msn.com&ocid=AARDHP&pc=MAAR
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/...
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/...
SearchScopes: HKLM - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
BHO: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\progra~1\mcafee\msk\mskapbho.dll No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Programme d'aide de l'Assistant de connexion au compte Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} -> No File
Toolbar: HKLM-x32 - No Name - {3004627E-F8E9-4E8B-909D-316753CBA923} - No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 109.0.66.10 109.0.66.20
FireFox:
========
FF ProfilePath: C:\Users\Logan\AppData\Roaming\Mozilla\Firefox\Profiles\7mr2m1ev.default
FF DefaultSearchEngine: Yahoo! (Avast)
FF SearchEngineOrder.1: Yahoo! (Avast)
FF SelectedSearchEngine: Yahoo! (Avast)
FF Homepage: https://fr.yahoo.com?fr=hp-avast&type=avastbcl
FF Keyword.URL: https://fr.search.yahoo.com/web?fr=yhs-invalid
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Users\Logan\AppData\Roaming\Mozilla\Firefox\Profiles\7mr2m1ev.default\searchplugins\yahoo-avast.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-france.xml
FF Extension: Adblock Plus - C:\Users\Logan\AppData\Roaming\Mozilla\Firefox\Profiles\7mr2m1ev.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-05-01]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-08-22]
Chrome:
=======
CHR HomePage: hxxp://www.google.fr/
CHR StartupUrls: "hxxp://www.google.fr/", "https://fr.yahoo.com?fr=hp-avast&type=avastbcl"
CHR DefaultSuggestURL: {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Extension: (Google Docs) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-30]
CHR Extension: (Google Drive) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-30]
CHR Extension: (Eredan iTCG) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakdeclmfcolipiknbfealnjddfibfo [2014-04-30]
CHR Extension: (YouTube) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-30]
CHR Extension: (Adblock Plus) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-04-30]
CHR Extension: (Recherche Google) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-30]
CHR Extension: (Skype Click to Call) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-04-30]
CHR Extension: (Google Wallet) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-30]
CHR Extension: (Gmail) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-30]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-22]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-22] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [106488 2014-08-22] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
R2 InternetUpdater; C:\ProgramData\InternetUpdater\InternetUpdaterService.exe [45568 2014-01-15] (Parallel Lines Development, LLC) [File not signed]
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [199032 2010-01-06] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-11-04] (McAfee, Inc.)
R2 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [182752 2013-11-04] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
S4 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
S4 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)
S2 McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-22] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-08-22] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-22] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [448400 2014-08-22] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-22] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-22] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [426848 2014-08-22] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-22] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-22] ()
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-11-04] (McAfee, Inc.)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179792 2013-11-04] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311120 2013-11-04] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519576 2013-11-04] (McAfee, Inc.)
R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782360 2013-11-04] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [93840 2010-01-06] (McAfee, Inc.)
R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343696 2013-11-04] (McAfee, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-24 17:50 - 2014-08-24 17:51 - 00000000 ____D () C:\FRST
2014-08-24 17:48 - 2014-08-24 17:49 - 02103296 _____ (Farbar) C:\Users\Logan\Downloads\FRST64.exe
2014-08-24 16:41 - 2014-08-24 16:41 - 00895120 _____ (Google Inc.) C:\Users\Logan\Downloads\ChromeSetup (1).exe
2014-08-22 10:48 - 2014-08-22 10:48 - 00000000 ____D () C:\Users\Logan\AppData\Roaming\AVAST Software
2014-08-22 10:46 - 2014-08-22 10:46 - 00002016 _____ () C:\Users\Public\Desktop\avast! SafeZone.lnk
2014-08-22 10:46 - 2014-08-22 10:46 - 00001956 _____ () C:\Users\Public\Desktop\avast! Premier.lnk
2014-08-22 10:46 - 2014-08-22 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-22 10:41 - 2014-08-24 15:50 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-08-22 10:06 - 2014-08-22 10:06 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00426848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-22 10:06 - 2014-08-22 10:06 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-22 10:06 - 2014-08-22 10:04 - 00028184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-08-22 10:05 - 2014-08-22 10:05 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-22 10:04 - 2014-08-22 10:04 - 00448400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-08-22 09:34 - 2014-08-22 09:34 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-22 09:24 - 2014-08-22 09:26 - 04834344 _____ (AVAST Software) C:\Users\Logan\Downloads\avast_premier_antivirus_setup_online.exe
2014-08-21 08:47 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-21 08:47 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-21 08:47 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-21 08:47 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-21 08:46 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-21 08:46 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-21 08:46 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-21 08:46 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-21 08:46 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-21 08:46 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-21 08:46 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-21 08:46 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-21 08:46 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-21 08:46 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-08-20 20:07 - 2014-08-20 20:13 - 35007882 _____ () C:\Users\Logan\Downloads\Eredan Arena 1.7.5_[ApkSteed.com].apk
2014-08-20 19:47 - 2014-08-23 10:37 - 00000000 ____D () C:\Users\Logan\AppData\Local\Adobe
2014-08-20 18:27 - 2014-08-20 18:33 - 34870009 _____ () C:\Users\Logan\Downloads\eredan arena apk.apk
2014-08-14 19:45 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 19:45 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-14 19:45 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 19:45 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 19:45 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-14 19:45 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-14 19:44 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-14 19:44 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 16:34 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 16:34 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-14 16:34 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 16:34 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 16:34 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 16:34 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-14 16:34 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 16:34 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 16:34 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-14 16:34 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 16:34 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-14 16:34 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 16:34 - 2014-
Alors je te colle sa suivant tes instructions :
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 24-08-2014 03
Ran by Logan at 2014-08-24 17:55:15
Running from C:\Users\Logan\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Acer Backup Manager (HKLM-x32\...\InstallShield_{72B776E5-4530-4C4B-9453-751DF87D9D93}) (Version: 2.0.0.68 - NewTech Infosystems)
Acer Crystal Eye webcam (HKLM-x32\...\{51F026FA-5146-4232-A8BA-1364740BD053}) (Version: 1.0.5.4 - Liteon)
Acer ePower Management (HKLM-x32\...\{3DB0448D-AD82-4923-B305-D001E521A964}) (Version: 5.00.3005 - Acer Incorporated)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 4.05.3013 - Acer Incorporated)
Acer GameZone Console (HKLM-x32\...\{58F4D244-314F-4D26-B5EF-C28AB32E22CB}_is1) (Version: 6.1.0.9 - Oberon Media, Inc.)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.03.3003 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0707.2010 - Acer Incorporated)
Acer Updater (HKLM-x32\...\{EE171732-BEB4-4576-887D-CB62727F01CA}) (Version: 1.02.3001 - Acer Incorporated)
Acrobat.com (HKLM-x32\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.178 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 14.0.0.178 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 14 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 14.0.0.176 - Adobe Systems Incorporated)
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.179 - Adobe Systems Incorporated)
Adobe Reader 9.5.5 MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)
aTube Catcher version 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
avast! Premier (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Backup Manager Basic (x32 Version: 2.0.0.68 - NewTech Infosystems) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Comodo Dragon (HKLM-x32\...\Comodo Dragon) (Version: 33.1.0.1 - Comodo)
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.3216.50 - CyberLink Corp.)
CyberLink PowerDVD 9 (x32 Version: 9.0.3216.50 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dream Day First Home (HKLM-x32\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version: - Oberon Media)
Duel of Champions (HKCU\...\MMDoC-PDCLive) (Version: - Ubisoft)
eSobi v2 (HKLM-x32\...\InstallShield_{15D967B5-A4BE-42AE-9E84-64CD062B25AA}) (Version: 2.0.4.000274 - esobi Inc.)
eSobi v2 (x32 Version: 2.0.4.000274 - esobi Inc.) Hidden
FreeWifi Manager 1.0.15 (HKLM-x32\...\FreeWifi Manager) (Version: 1.0.15 - Michaël Monserrat)
Galerie de photos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.143 - Google Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Gyazo 2.0.2 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version: - Nota Inc.)
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
HearthstoneTracker (HKLM-x32\...\HearthstoneTracker) (Version: 1.9.5.56756 - HearthstoneTracker.com)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3003 - Acer Incorporated)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.2.1001 - Intel Corporation)
Internet Updater (HKLM-x32\...\InternetUpdater) (Version: 2.6.57 - Parallel Lines Development, LLC) <==== ATTENTION
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Junk Mail filter update (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Launch Manager (HKLM-x32\...\LManager) (Version: 4.0.14 - Acer Inc.)
Microsoft .NET Framework 4.5.1 (FRA) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Français) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1036) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Client (Version: 4.5.0216.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.5.216.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SkyDrive (HKCU\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{3bcf8c72-b231-4d28-9f39-3405c22d8b5a}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 31.0 (x86 fr) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 fr)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
Mumble 1.2.7 (HKLM-x32\...\{1FC198EF-5C3F-4C2A-99AC-22DE9B3FBFDE}) (Version: 1.2.7 - Thorvald Natvig)
MyWinLocker (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{738BF5C3-AF7B-4BB0-B7EF-E505EFC756BE}) (Version: 3.1.212.0 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 3.1.212.0 - Egis Technology Inc.) Hidden
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.1.17869 - Symantec Corporation)
OpenOffice 4.0.1 (HKLM-x32\...\{8D5D54B8-3D29-4AB4-8DA8-1868DAF941D8}) (Version: 4.01.9714 - Apache Software Foundation)
Pando Media Booster (HKLM-x32\...\{980A182F-E0A2-4A40-94C1-AE0C1235902E}) (Version: 2.6.0.7 - Pando Networks Inc.)
Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6151 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30121 - Realtek Semiconductor Corp.)
Shredder (Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.3 - Egis Technology Inc.) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype(TM) 6.16 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.16.105 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)
Updater (HKLM-x32\...\{D54E3D9F-FEB8-4D2D-A138-B69A5C80080B}) (Version: 2.6.53 - Creative Island Media, LLC) <==== ATTENTION
Visionneuse Microsoft PowerPoint (HKLM-x32\...\{95140000-00AF-040C-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3005 - Acer Incorporated)
Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows Live (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Family Safety (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-456767707-2278922208-3380423735-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Logan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-456767707-2278922208-3380423735-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Logan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-456767707-2278922208-3380423735-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Logan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-456767707-2278922208-3380423735-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Logan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)
==================== Restore Points =========================
10-08-2014 17:00:43 Sauvegarde Windows
11-08-2014 09:26:54 Windows Update
13-08-2014 15:10:54 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
14-08-2014 13:42:25 Windows Update
14-08-2014 17:40:28 Windows Update
18-08-2014 10:09:04 Windows Update
18-08-2014 10:18:10 Sauvegarde Windows
21-08-2014 06:45:17 Windows Update
21-08-2014 13:37:53 Windows Update
22-08-2014 07:29:13 avast! antivirus system restore point
22-08-2014 08:42:28 Installation du package de pilotes : Avast Service réseau
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {05DE744B-AE05-4688-9965-14F817B6C49F} - System32\Tasks\{13D1DE9E-77B2-407C-A1CC-2AEA59CB1C75} => Chrome.exe https://www.skype.com/en/get-skype/?source=lightinstaller&ver=4.1.0.179.367&LastError=404
Task: {2D35D7CB-8A54-47B8-83B7-4FDB026C649C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-23] (Adobe Systems Incorporated)
Task: {406E33DF-6B05-42E0-8CC4-1191380C430C} - System32\Tasks\{11004021-9EDD-4BCA-9EC4-5A4D4DE9DC8B} => Chrome.exe https://www.skype.com/en/get-skype/?source=lightinstaller&ver=4.1.0.179.367&LastError=404
Task: {688C3E2F-6165-42EF-B52E-9A665EA82913} - System32\Tasks\Digital Sites => C:\Users\Logan\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: {85CE6750-64B8-4883-8E2B-583FD5F1E955} - System32\Tasks\MySearchDial => C:\Users\Logan\AppData\Roaming\mysearchdial\UpdateProc\UpdateTask.exe [2013-04-12] () <==== ATTENTION
Task: {8FCC9EB9-636E-4AF6-B866-64EDAA7FAA53} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {94152307-98F1-41AE-AC06-6DEB3682E784} - System32\Tasks\{F5AF8EE3-02DA-4744-9ABD-91AFE9C1CD61} => Chrome.exe https://www.skype.com/en/get-skype/?source=lightinstaller&ver=4.1.0.179.367&LastError=404
Task: {A6CA8B3C-8D47-492F-8C11-DC24F9CBC71F} - System32\Tasks\{4366B888-95DD-4129-9560-2D1823EEFEA4} => C:\Program Files (x86)\FreeWifi Manager\FreeWifi_Manager.exe [2014-01-30] ()
Task: {AAEDAA09-4FD7-4A8E-9E5B-B32BF00922A2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-14] (Google Inc.)
Task: {AB51FC85-E852-47EB-B4D0-B6B18FB5FDE6} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-08-22] (AVAST Software)
Task: {D302079C-C1CF-4A48-9BDA-2C64FD588646} - System32\Tasks\{DC2750DC-5691-452F-9BE4-D63556A2BC56} => Chrome.exe https://www.skype.com/en/get-skype/?source=lightinstaller&ver=4.1.0.179.367&LastError=404
Task: {D57087E5-D17A-4218-AEF1-D00577234704} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-14] (Google Inc.)
Task: {E4ABB2BB-4CB7-4EC7-B416-07DEDB9ED64C} - System32\Tasks\{741805A4-2967-4CC6-BF8F-9D9147E3E7D6} => Chrome.exe http://ui.skype.com/ui/0/6.14.0.104/fr/abandoninstall?page=tsProgressBar
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\Digital Sites.job => C:\Users\Logan\AppData\Roaming\DIGITA~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MySearchDial.job => C:\Users\Logan\AppData\Roaming\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
==================== Loaded Modules (whitelisted) =============
2013-09-30 13:55 - 2014-02-17 22:36 - 01209856 _____ () C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\FrozenWay.exe
2014-01-30 20:18 - 2014-01-30 20:18 - 00842543 _____ () C:\Program Files (x86)\FreeWifi Manager\FreeWifi_Manager.exe
2014-08-22 10:05 - 2014-08-22 10:05 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-08-24 00:58 - 2014-08-24 00:58 - 02801152 _____ () C:\Program Files\AVAST Software\Avast\defs\14082303\algo.dll
2014-08-24 17:52 - 2014-08-24 17:52 - 02801152 _____ () C:\Program Files\AVAST Software\Avast\defs\14082400\algo.dll
2014-08-22 10:05 - 2014-08-22 10:05 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2013-03-23 05:04 - 2014-02-17 22:17 - 00118272 _____ () C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\libgcc_s_sjlj-1.dll
2013-03-23 05:04 - 2014-02-17 22:36 - 00907264 _____ () C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\libstdc++-6.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:373E1720
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: DsiWMIService => 2
MSCONFIG\Services: ePowerSvc => 2
MSCONFIG\Services: FLEXnet Licensing Service => 3
MSCONFIG\Services: GREGService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IAStorDataMgrSvc => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: MWLService => 3
MSCONFIG\Services: NOBU => 2
MSCONFIG\Services: NTI IScheduleSvc => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: Updater Service => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FreeWifi Manager.lnk => C:\Windows\pss\FreeWifi Manager.lnk.CommonStartup
MSCONFIG\startupreg: Acer ePower Management => C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: Aeria Ignite => "C:\Program Files (x86)\Aeria Games\Ignite\aeriaignite.exe" silent
MSCONFIG\startupreg: Akamai NetSession Interface => "C:\Users\Logan\AppData\Local\Akamai\netsession_win.exe"
MSCONFIG\startupreg: BackupManagerTray => "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
MSCONFIG\startupreg: EgisTecPMMUpdate => "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
MSCONFIG\startupreg: EgisUpdate => "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
MSCONFIG\startupreg: FrozenWay => C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\FrozenWay.exe
MSCONFIG\startupreg: Gyazo => C:\Program Files (x86)\Gyazo\GyStation.exe
MSCONFIG\startupreg: HearthstoneTracker => "C:\Program Files (x86)\HearthstoneTracker\HearthCap.exe" -logon
MSCONFIG\startupreg: HotKeysCmds => C:\Windows\system32\hkcmd.exe
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
MSCONFIG\startupreg: IgfxTray => C:\Windows\system32\igfxtray.exe
MSCONFIG\startupreg: LManager => C:\Program Files (x86)\Launch Manager\LManager.exe
MSCONFIG\startupreg: mcui_exe => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
MSCONFIG\startupreg: MSC => "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: mwlDaemon => C:\Program Files (x86)\EgisTec MyWinLocker\x86\mwlDaemon.exe
MSCONFIG\startupreg: Norton Online Backup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
MSCONFIG\startupreg: Persistence => C:\Windows\system32\igfxpers.exe
MSCONFIG\startupreg: RESTART_STICKY_NOTES => C:\Windows\System32\StikyNot.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: SuiteTray => "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SynTPEnh => %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: Updater => C:\ProgramData\Updater\updater.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (08/24/2014 05:54:07 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: La création du contexte d'activation a échoué pour « C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1 ». Erreur dans le fichier de manifeste ou de stratégie « C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 » à la ligne C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Une version de composant nécessaire à l'application est en conflit avec une autre version de composant déjà active.
Les composants en conflit sont :
Composant 1 : C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Composant 2 : C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (08/24/2014 02:51:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante updater.exe, version : 1.0.0.1, horodatage : 0x52b217a4
Nom du module défaillant : updater.exe, version : 1.0.0.1, horodatage : 0x52b217a4
Code d'exception : 0xc0000005
Décalage d'erreur : 0x0000bb62
ID du processus défaillant : 0xce0
Heure de début de l'application défaillante : 0xupdater.exe0
Chemin d'accès de l'application défaillante : updater.exe1
Chemin d'accès du module défaillant: updater.exe2
ID de rapport : updater.exe3
Error: (08/24/2014 02:34:12 PM) (Source: McLogEvent) (EventID: 5022) (User: AUTORITE NT)
Description: Échec de l'initialisation du moteur MCSCAN32.
Le moteur a renvoyé l'erreur : 1
Error: (08/24/2014 02:31:30 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Battle.net.exe version 1.1.7.4944 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.
ID de processus : 163c
Heure de début : 01cfbf041aca203f
Heure de fin : 1175
Chemin d'accès de l'application : C:\Program Files (x86)\Battle.net\Battle.net.4944\Battle.net.exe
ID de rapport : 874fb6af-2b8a-11e4-b4ce-1c7508e2cbb0
Error: (08/23/2014 08:50:18 PM) (Source: McLogEvent) (EventID: 5022) (User: AUTORITE NT)
Description: Échec de l'initialisation du moteur MCSCAN32.
Le moteur a renvoyé l'erreur : 1
Error: (08/23/2014 06:37:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante MsMpEng.exe, version : 4.5.216.0, horodatage : 0x531f64e3
Nom du module défaillant : msvcrt.dll, version : 7.0.7601.17744, horodatage : 0x4eeb033f
Code d'exception : 0xc0000005
Décalage d'erreur : 0x00000000000011fd
ID du processus défaillant : 0x3f8
Heure de début de l'application défaillante : 0xMsMpEng.exe0
Chemin d'accès de l'application défaillante : MsMpEng.exe1
Chemin d'accès du module défaillant: MsMpEng.exe2
ID de rapport : MsMpEng.exe3
Error: (08/23/2014 06:32:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nom de l'application défaillante svchost.exe_MMCSS, version : 6.1.7600.16385, horodatage : 0x4a5bc3c1
Nom du module défaillant : unknown, version : 0.0.0.0, horodatage : 0x00000000
Code d'exception : 0xc0000005
Décalage d'erreur : 0x000000007705000a
ID du processus défaillant : 0x410
Heure de début de l'application défaillante : 0xsvchost.exe_MMCSS0
Chemin d'accès de l'application défaillante : svchost.exe_MMCSS1
Chemin d'accès du module défaillant: svchost.exe_MMCSS2
ID de rapport : svchost.exe_MMCSS3
Error: (08/23/2014 05:55:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme chrome.exe version 34.0.1847.131 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.
ID de processus : 9918
Heure de début : 01cfbeea9ace904c
Heure de fin : 142
Chemin d'accès de l'application : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
ID de rapport : eedd048c-2add-11e4-bd07-1c7508e2cbb0
Error: (08/22/2014 09:00:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Hearthstone.exe version 1.1.0.6284 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.
ID de processus : 1cfc
Heure de début : 01cfbe36db1930e0
Heure de fin : 426
Chemin d'accès de l'application : C:\Program Files (x86)\Hearthstone\Hearthstone.exe
ID de rapport : 8353ddbd-2a2e-11e4-bd07-1c7508e2cbb0
Error: (08/22/2014 06:57:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Le programme Hearthstone.exe version 1.1.0.6284 a cessé d'interagir avec Windows et a été fermé. Pour déterminer si des informations supplémentaires sont disponibles, consultez l'historique du problème dans le Centre de maintenance.
ID de processus : 15c8
Heure de début : 01cfbe29d3f7313c
Heure de fin : 363
Chemin d'accès de l'application : C:\Program Files (x86)\Hearthstone\Hearthstone.exe
ID de rapport : 2cb13dae-2a1d-11e4-bd07-1c7508e2cbb0
System errors:
=============
Error: (08/24/2014 02:34:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service McAfee SiteAdvisor Service n'a pas pu démarrer en raison de l'erreur :
%%2
Error: (08/24/2014 02:33:54 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: L'arrêt système précédant à 14:31:26 le ?24/?08/?2014 n'était pas prévu.
Error: (08/24/2014 01:58:51 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service ShellHWDetection.
Error: (08/24/2014 01:32:32 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service InternetUpdater.
Error: (08/24/2014 01:32:32 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service ShellHWDetection.
Error: (08/24/2014 00:10:54 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service ShellHWDetection.
Error: (08/24/2014 00:10:54 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l'attente de la réponse transactionnelle du service NlaSvc.
Error: (08/23/2014 09:16:46 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %AUTORITE NT60 a rencontré une erreur lors de la tentative de mise à jour des signatures.
Nouvelle version des signatures :
Version précédente des signatures : 1.183.96.0
Source de la mise à jour : %AUTORITE NT59
Étape de la mise à jour : 4.5.0216.00
Chemin d'accès source : 4.5.0216.01
Type de signature : %AUTORITE NT602
Type de la mise à jour : %AUTORITE NT604
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur : %AUTORITE NT605
Version précédente du moteur : %AUTORITE NT606
Code d'erreur : %AUTORITE NT607
Description de l'erreur : %AUTORITE NT608
Error: (08/23/2014 09:16:46 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: %AUTORITE NT60 a rencontré une erreur lors de la tentative de mise à jour des signatures.
Nouvelle version des signatures :
Version précédente des signatures : 1.183.96.0
Source de la mise à jour : %AUTORITE NT59
Étape de la mise à jour : 4.5.0216.00
Chemin d'accès source : 4.5.0216.01
Type de signature : %AUTORITE NT602
Type de la mise à jour : %AUTORITE NT604
Utilisateur : AUTORITE NT\Système
Version actuelle du moteur : %AUTORITE NT605
Version précédente du moteur : %AUTORITE NT606
Code d'erreur : %AUTORITE NT607
Description de l'erreur : %AUTORITE NT608
Error: (08/23/2014 08:56:26 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Le service Windows Update est en attente de démarrage.
Microsoft Office Sessions:
=========================
Error: (08/24/2014 05:54:07 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\Logan\Downloads\SoftonicDownloader_pour_atube-catcher.exe
Error: (08/24/2014 02:51:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: updater.exe1.0.0.152b217a4updater.exe1.0.0.152b217a4c00000050000bb62ce001cfbf99813e72c0C:\ProgramData\Updater\updater.exeC:\ProgramData\Updater\updater.exe4dca445e-2b8d-11e4-9a37-1c7508e2cbb0
Error: (08/24/2014 02:34:12 PM) (Source: McLogEvent) (EventID: 5022) (User: AUTORITE NT)
Description: 1
Error: (08/24/2014 02:31:30 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Battle.net.exe1.1.7.4944163c01cfbf041aca203f1175C:\Program Files (x86)\Battle.net\Battle.net.4944\Battle.net.exe874fb6af-2b8a-11e4-b4ce-1c7508e2cbb0
Error: (08/23/2014 08:50:18 PM) (Source: McLogEvent) (EventID: 5022) (User: AUTORITE NT)
Description: 1
Error: (08/23/2014 06:37:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: MsMpEng.exe4.5.216.0531f64e3msvcrt.dll7.0.7601.177444eeb033fc000000500000000000011fd3f801cfbe28b6378c91c:\Program Files\Microsoft Security Client\MsMpEng.exeC:\Windows\system32\msvcrt.dllc1bcffa2-2ae3-11e4-bd07-1c7508e2cbb0
Error: (08/23/2014 06:32:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_MMCSS6.1.7600.163854a5bc3c1unknown0.0.0.000000000c0000005000000007705000a41001cfbe28b6d96a23C:\Windows\system32\svchost.exeunknown1bc55e93-2ae3-11e4-bd07-1c7508e2cbb0
Error: (08/23/2014 05:55:55 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe34.0.1847.131991801cfbeea9ace904c142C:\Program Files (x86)\Google\Chrome\Application\chrome.exeeedd048c-2add-11e4-bd07-1c7508e2cbb0
Error: (08/22/2014 09:00:41 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Hearthstone.exe1.1.0.62841cfc01cfbe36db1930e0426C:\Program Files (x86)\Hearthstone\Hearthstone.exe8353ddbd-2a2e-11e4-bd07-1c7508e2cbb0
Error: (08/22/2014 06:57:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Hearthstone.exe1.1.0.628415c801cfbe29d3f7313c363C:\Program Files (x86)\Hearthstone\Hearthstone.exe2cb13dae-2a1d-11e4-bd07-1c7508e2cbb0
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-08-2014 03
Ran by Logan (administrator) on FAMILLEAIMÉ-PC on 24-08-2014 17:50:57
Running from C:\Users\Logan\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Français (France)
Internet Explorer Version 11
Boot Mode: Normal
The only official download link for FRST:
Download link for 32-Bit version: https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: https://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Comodo Security Solutions, Inc.) C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
(Parallel Lines Development, LLC) C:\ProgramData\InternetUpdater\InternetUpdaterService.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfevtps.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\FrozenWay.exe
(Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.4944\Battle.net.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
() C:\Program Files (x86)\FreeWifi Manager\FreeWifi_Manager.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4086432 2014-08-22] (AVAST Software)
HKLM-x32\...\Run: [FrozenWay] => C:\Users\Logan\Downloads\FrozenWay 1.6.5\FrozenWay 1.6.5\FrozenWay.exe [1209856 2014-02-17] ()
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\.DEFAULT\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-01-17] (Microsoft Corporation)
HKU\S-1-5-21-456767707-2278922208-3380423735-1000\...\Run: [Updater] => C:\ProgramData\Updater\updater.exe [486264 2013-12-18] (Updater)
HKU\S-1-5-21-456767707-2278922208-3380423735-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-456767707-2278922208-3380423735-1000\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net Launcher.exe [2869808 2014-08-22] (Blizzard Entertainment)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FreeWifi Manager.lnk
ShortcutTarget: FreeWifi Manager.lnk -> C:\Program Files (x86)\FreeWifi Manager\FWM_Start.exe ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x64\psdprotect.dll (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: egisPSDP -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec MyWinLocker\x86\psdprotect.dll (Egis Technology Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://www.msn.com/fr-fr/?cobrand=acer.msn.com&ocid=AARDHP&pc=MAAR
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/...
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/...
SearchScopes: HKLM - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL =
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL =
BHO: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\PROGRA~1\mcafee\msk\MSKAPB~1.DLL No File
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: McAfee Phishing Filter -> {27B4851A-3207-45A2-B947-BE8AFE6163AB} -> c:\progra~1\mcafee\msk\mskapbho.dll No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Programme d'aide de l'Assistant de connexion au compte Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: No Name -> {EF5625A3-37AB-4BDB-9875-2A3D91CD0DFD} -> No File
Toolbar: HKLM-x32 - No Name - {3004627E-F8E9-4E8B-909D-316753CBA923} - No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 109.0.66.10 109.0.66.20
FireFox:
========
FF ProfilePath: C:\Users\Logan\AppData\Roaming\Mozilla\Firefox\Profiles\7mr2m1ev.default
FF DefaultSearchEngine: Yahoo! (Avast)
FF SearchEngineOrder.1: Yahoo! (Avast)
FF SelectedSearchEngine: Yahoo! (Avast)
FF Homepage: https://fr.yahoo.com?fr=hp-avast&type=avastbcl
FF Keyword.URL: https://fr.search.yahoo.com/web?fr=yhs-invalid
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_179.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_179.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF SearchPlugin: C:\Users\Logan\AppData\Roaming\Mozilla\Firefox\Profiles\7mr2m1ev.default\searchplugins\yahoo-avast.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\cnrtl-tlfi-fr.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-france.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-france.xml
FF Extension: Adblock Plus - C:\Users\Logan\AppData\Roaming\Mozilla\Firefox\Profiles\7mr2m1ev.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-05-01]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-08-22]
Chrome:
=======
CHR HomePage: hxxp://www.google.fr/
CHR StartupUrls: "hxxp://www.google.fr/", "https://fr.yahoo.com?fr=hp-avast&type=avastbcl"
CHR DefaultSuggestURL: {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter}
CHR Extension: (Google Docs) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-30]
CHR Extension: (Google Drive) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-30]
CHR Extension: (Eredan iTCG) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdakdeclmfcolipiknbfealnjddfibfo [2014-04-30]
CHR Extension: (YouTube) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-30]
CHR Extension: (Adblock Plus) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-04-30]
CHR Extension: (Recherche Google) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-30]
CHR Extension: (Skype Click to Call) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-04-30]
CHR Extension: (Google Wallet) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-30]
CHR Extension: (Gmail) - C:\Users\Logan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-30]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-22]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKCU\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-22] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [106488 2014-08-22] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 DragonUpdater; C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe [2139328 2014-05-27] (Comodo Security Solutions, Inc.)
R2 InternetUpdater; C:\ProgramData\InternetUpdater\InternetUpdaterService.exe [45568 2014-01-15] (Parallel Lines Development, LLC) [File not signed]
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [199032 2010-01-06] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-11-04] (McAfee, Inc.)
R2 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [182752 2013-11-04] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2014-03-11] (Microsoft Corporation)
S4 MWLService; C:\Program Files (x86)\EgisTec MyWinLocker\x86\MWLService.exe [305520 2010-05-27] (Egis Technology Inc.)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [347872 2014-03-11] (Microsoft Corporation)
S4 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)
S2 McAfee SiteAdvisor Service; c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe [X]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-08-22] ()
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28184 2014-08-22] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-08-22] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [448400 2014-08-22] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-08-22] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-08-22] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-08-22] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [426848 2014-08-22] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-08-22] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-08-22] ()
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [70112 2013-11-04] (McAfee, Inc.)
S3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [179792 2013-11-04] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [311120 2013-11-04] (McAfee, Inc.)
U3 mfeavfk01; No ImagePath
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [519576 2013-11-04] (McAfee, Inc.)
R2 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [782360 2013-11-04] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [93840 2010-01-06] (McAfee, Inc.)
R2 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [343696 2013-11-04] (McAfee, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [268512 2014-01-25] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133928 2014-03-11] (Microsoft Corporation)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-08-24 17:50 - 2014-08-24 17:51 - 00000000 ____D () C:\FRST
2014-08-24 17:48 - 2014-08-24 17:49 - 02103296 _____ (Farbar) C:\Users\Logan\Downloads\FRST64.exe
2014-08-24 16:41 - 2014-08-24 16:41 - 00895120 _____ (Google Inc.) C:\Users\Logan\Downloads\ChromeSetup (1).exe
2014-08-22 10:48 - 2014-08-22 10:48 - 00000000 ____D () C:\Users\Logan\AppData\Roaming\AVAST Software
2014-08-22 10:46 - 2014-08-22 10:46 - 00002016 _____ () C:\Users\Public\Desktop\avast! SafeZone.lnk
2014-08-22 10:46 - 2014-08-22 10:46 - 00001956 _____ () C:\Users\Public\Desktop\avast! Premier.lnk
2014-08-22 10:46 - 2014-08-22 10:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-08-22 10:41 - 2014-08-24 15:50 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-08-22 10:06 - 2014-08-22 10:06 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00426848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-08-22 10:06 - 2014-08-22 10:06 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-08-22 10:06 - 2014-08-22 10:06 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-08-22 10:06 - 2014-08-22 10:04 - 00028184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2014-08-22 10:05 - 2014-08-22 10:05 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-08-22 10:04 - 2014-08-22 10:04 - 00448400 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNdisFlt.sys
2014-08-22 09:34 - 2014-08-22 09:34 - 00000000 ____D () C:\Program Files\AVAST Software
2014-08-22 09:24 - 2014-08-22 09:26 - 04834344 _____ (AVAST Software) C:\Users\Logan\Downloads\avast_premier_antivirus_setup_online.exe
2014-08-21 08:47 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-08-21 08:47 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-08-21 08:47 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-08-21 08:47 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-08-21 08:46 - 2014-05-14 18:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-08-21 08:46 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-08-21 08:46 - 2014-05-14 18:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-08-21 08:46 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-08-21 08:46 - 2014-05-14 18:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-08-21 08:46 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-08-21 08:46 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-08-21 08:46 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-08-21 08:46 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-08-21 08:46 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-08-20 20:07 - 2014-08-20 20:13 - 35007882 _____ () C:\Users\Logan\Downloads\Eredan Arena 1.7.5_[ApkSteed.com].apk
2014-08-20 19:47 - 2014-08-23 10:37 - 00000000 ____D () C:\Users\Logan\AppData\Local\Adobe
2014-08-20 18:27 - 2014-08-20 18:33 - 34870009 _____ () C:\Users\Logan\Downloads\eredan arena apk.apk
2014-08-14 19:45 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 19:45 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-08-14 19:45 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-14 19:45 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 19:45 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-08-14 19:45 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-08-14 19:44 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-08-14 19:44 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 16:34 - 2014-08-01 01:41 - 00348856 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-14 16:34 - 2014-08-01 01:16 - 00307384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-14 16:34 - 2014-07-25 16:52 - 23645696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-14 16:34 - 2014-07-25 16:02 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-14 16:34 - 2014-07-25 16:01 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-14 16:34 - 2014-07-25 15:51 - 17524224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-14 16:34 - 2014-07-25 15:30 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-14 16:34 - 2014-07-25 15:28 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-14 16:34 - 2014-07-25 15:28 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-14 16:34 - 2014-07-25 15:25 - 02774528 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-14 16:34 - 2014-07-25 15:25 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-14 16:34 - 2014-07-25 15:11 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-14 16:34 - 2014-
poppen
Messages postés
4
Date d'inscription
samedi 23 août 2014
Statut
Membre
Dernière intervention
25 août 2014
24 août 2014 à 20:33
24 août 2014 à 20:33
Merci encore pour ta réponse !
J'ai suivi ce que tu m'as dit le rapport est hebergé ici : https://pjjoint.malekal.com/files.php?id=20140824_j12g11u12d7k15
C'est grâve docteur ?
Cordialement poppen
J'ai suivi ce que tu m'as dit le rapport est hebergé ici : https://pjjoint.malekal.com/files.php?id=20140824_j12g11u12d7k15
C'est grâve docteur ?
Cordialement poppen
poppen
Messages postés
4
Date d'inscription
samedi 23 août 2014
Statut
Membre
Dernière intervention
25 août 2014
25 août 2014 à 10:44
25 août 2014 à 10:44
Le rapport est ici : https://pjjoint.malekal.com/files.php?id=20140825_j10q13n7o7v14
D'autres chose à faire ?
Un grand merci à toi en tout càs mon ordi lag déja moins!
D'autres chose à faire ?
Un grand merci à toi en tout càs mon ordi lag déja moins!