Pub indésirable sur Google Chrome
JordanBrutal
Messages postés
1
Date d'inscription
Statut
Membre
Dernière intervention
-
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Malekal_morte- Messages postés 180304 Date d'inscription Statut Modérateur, Contributeur sécurité Dernière intervention -
Bonjour,
depuis hier je suis victime d'un virus qui provoque des Pub.
J'ai donc nettoyer mon navigateur avec ADW cleaner sans succès. J'ai donc utiliser OTL pour obtenir un rapport. esse que quelqu'un pourrais m'aider en me disant la marche a suivre s'il vous plait. Merci d'avance :)
OTL Extras logfile created on: 30/08/2014 18:17:18 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Laplace Jordan\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17239)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
7,89 Gb Total Physical Memory | 5,09 Gb Available Physical Memory | 64,59% Memory free
15,77 Gb Paging File | 12,70 Gb Available in Paging File | 80,49% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 684,98 Gb Total Space | 562,50 Gb Free Space | 82,12% Space Free | Partition Type: NTFS
Computer Name: LAPLACEJORDAN | User Name: Laplace Jordan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
[color=#E56717]========== Security Center Settings ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[color=#E56717]========== Authorized Applications List ==========[/color]
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02E79E44-12D3-44AD-89F8-83740A533C72}" = lport=57943 | protocol=6 | dir=in | name=pando media booster |
"{0BBA3C15-E3A0-4CD3-AB91-8A5F75D53C87}" = lport=57943 | protocol=17 | dir=in | name=pando media booster |
"{1AADFAC0-5BFC-4533-94C9-9B79A7F0E17A}" = lport=57943 | protocol=17 | dir=in | name=pando media booster |
"{7CFB5509-7201-413D-9472-1AEBAC043728}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{BDB4AF2A-1F54-4BD0-BBB3-503057CA5853}" = lport=57943 | protocol=6 | dir=in | name=pando media booster |
"{F081EEF5-632D-48E2-B10F-AE3F0D82F64E}" = lport=8317 | protocol=6 | dir=in | name=techsmith camtasia studio |
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02259244-AACB-459A-9FCB-80A095BED7B4}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{055543B8-79F7-4C35-8FD2-F85ACDE5195A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0A6DBB95-2465-4E3A-B326-925AAECEFD12}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{0D52AEB0-89A5-4770-AE2C-DC4481E9CF16}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{1057E33A-7AB0-4EB3-A1EA-1BD8D3257B9C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe |
"{168BEBCD-DC95-46B6-B410-C27922B9B803}" = protocol=17 | dir=in | app=c:\users\laplace jordan\appdata\roaming\utorrent\utorrent.exe |
"{172A03CB-B92C-41ED-8D1B-6CCFF7569E21}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{1C4C6369-50DC-43DC-A01C-E14404210211}" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{23616CB9-AB34-4F37-9D6F-F1624C622F21}" = protocol=6 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"{241CCA12-E9E1-4C85-B9CC-87EE6FD96C00}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{26683F86-21CD-4748-92C9-EE5C9EE8F730}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{26C83EF0-85D6-42DD-A198-A79B3640A2F3}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2753\agent.exe |
"{28433620-34BB-4C3B-980D-D367E3C0BAF2}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\garrysmod\hl2.exe |
"{2984E58B-C05B-45E8-941D-046965303A08}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3023\agent.exe |
"{2B47D493-6FB0-4AFE-B0C0-5F48EDF05EA9}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{2E8A9299-D9D9-40A7-87B6-3AB3CBA54F82}" = protocol=6 | dir=in | app=c:\users\laplace jordan\appdata\roaming\utorrent\utorrent.exe |
"{31EB22DC-8C85-4F2A-9BA0-8642EA5F34AA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"{34866323-3961-4463-9413-0AF35B24F9DD}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{3F51C519-790C-4F37-A02E-F6E7EADA5D5C}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{51D1B819-FEF0-4077-83F9-4D70696E1754}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{523CFA11-2A29-4B6E-9185-D44D1B848026}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"{5332143B-5FEF-4DB9-8CE9-EE4F8A60A090}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\garrysmod\hl2.exe |
"{5551B14E-35D5-43C4-9923-2828B6DB51AD}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe |
"{5AD1CB21-30E2-4D15-B3FD-81F3DD76F299}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\alien swarm\swarm.exe |
"{6500F5A7-E1C3-432D-A65D-0B309F8F734C}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe |
"{6BA978BD-91DF-4598-85FF-6A5F3CA62CC0}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2717\agent.exe |
"{6CD17297-6602-477F-B3CA-3B947AB08C6E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\alien swarm\swarm.exe |
"{7145C628-63E5-43FE-9348-D283F7C2E275}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{71FB49A3-F6B2-4672-AEB1-E4944F91990D}" = protocol=6 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{77922ED2-B124-41AB-AEDC-178ED00FE9F1}" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{7911E08A-A25E-4E10-A86A-9621FF0524DC}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe |
"{7916599B-195D-427C-A16D-611CBA86D5DB}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"{7A5C3DC6-A5EB-4AE4-A449-2E041521C151}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{7C1BB169-7633-4C6F-B247-A3641B6CBDB9}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe |
"{862F7104-C894-4F8A-9734-7444B3720BBD}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2737\agent.exe |
"{8A6B182C-693A-4B8B-B15A-39AD4B569DB6}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3023\agent.exe |
"{8FAA1AE3-37C1-4551-8E92-32FDB2926FBD}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{8FE2F840-B9E6-4E54-A116-B8E5F66DFD52}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{9067DEA9-F1A8-4FC5-B967-AE60B33C702A}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{955643C6-4F3A-4C35-A23A-1119860CF186}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2753\agent.exe |
"{96622776-78E2-450B-8336-9072EA2BB0EE}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{98403D65-52E5-483C-91DC-01849B6CAC10}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2787\agent.exe |
"{9FF6065F-A761-4B17-8485-5FC759858812}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{A87E2426-7259-4690-9DCE-37E975D9C0D1}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{B0B935F0-B449-44BB-9C87-EDF586F47EB8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2787\agent.exe |
"{B19D9963-EB65-431E-8A7A-04794CFDB794}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{B42681C8-E5E3-414A-89A1-78E6EDB58E97}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{B901EADC-C47D-4EAC-813C-E270D4C28C0F}" = protocol=17 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"{BF0C7788-0420-4B4D-89A5-44768BB5E376}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2737\agent.exe |
"{BFA6F101-31E1-453B-9B43-8A13E1B824A8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe |
"{C8A9CFBB-254D-4971-8C4F-FB8498D4A3B0}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{CC2A53BA-17FD-4BCF-B113-6A5181B287B8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"{D75759DE-7179-47E4-BE6B-1DB422990E66}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{D922F3FA-3A7A-468F-A926-5E750ECCE5DA}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2717\agent.exe |
"{EEFA4C2C-A70A-4986-A53F-F2725504698F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{F3030C2B-A794-4EAF-8886-B88033B8D5D0}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{F6256475-EBAF-4A1D-BE6B-28322B11675B}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{F959E3D7-EAF7-4D1D-B682-86F0D4EA1598}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{F9782F93-D6FD-4C77-9516-21EAF75FFD0A}" = protocol=17 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{FDD942B3-5C29-4CBC-B5D6-F90380F832CB}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{FFADB9C8-ADCD-4D7B-8F12-252B1A4217F2}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"TCP Query User{062B44EE-2445-4989-9155-B8BA26926AB6}C:\users\laplace jordan\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\laplace jordan\appdata\local\akamai\netsession_win.exe |
"TCP Query User{0B38EAEB-374C-4713-BF55-4049D0E172FA}C:\program files (x86)\tera\tera-launcher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"TCP Query User{1CD4C030-A78B-404F-90C7-8ECBF346B9E7}C:\program files (x86)\hearthstone\hearthstone.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"TCP Query User{2F5E9140-F910-4987-9CC9-A56AB92129BB}C:\users\laplace jordan\desktop\gros bordel\jeu\cube word\server.exe" = protocol=6 | dir=in | app=c:\users\laplace jordan\desktop\gros bordel\jeu\cube word\server.exe |
"TCP Query User{5039135D-87EE-40D0-9877-FE7745A5B527}C:\programdata\battle.net\agent\agent.2880\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"TCP Query User{57F57714-BAF2-46CF-B2B4-C97F508F0A7B}C:\programdata\battle.net\agent\agent.3109\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe |
"TCP Query User{711D537B-35BE-4E1B-B132-F9DC7E0E96D8}C:\users\laplace jordan\desktop\gros bordel\jeu\goat simulator\binaries\win32\goatgame-win32-shipping.exe" = protocol=6 | dir=in | app=c:\users\laplace jordan\desktop\gros bordel\jeu\goat simulator\binaries\win32\goatgame-win32-shipping.exe |
"TCP Query User{8B5B3053-FEB7-45D9-8722-9B21A646230D}C:\users\laplace jordan\desktop\terraria crack 1.2.4.1\terrariaserver.exe" = protocol=6 | dir=in | app=c:\users\laplace jordan\desktop\terraria crack 1.2.4.1\terrariaserver.exe |
"TCP Query User{B9B2D43C-9A46-4BA7-859C-D6DAE5ABA130}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{C8E9B30C-C16F-45F8-AEC1-BC8FE6ADF4E0}C:\users\laplace jordan\desktop\goat simulator\binaries\win32\goatgame-win32-shipping.exe" = protocol=6 | dir=in | app=c:\users\laplace jordan\desktop\goat simulator\binaries\win32\goatgame-win32-shipping.exe |
"TCP Query User{F17DE05F-2ABF-4BD7-B385-33F74AACED86}C:\programdata\battle.net\agent\agent.3286\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"UDP Query User{2194A350-F859-42CE-8E60-64141A6BEEC5}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{2AD979AA-39D2-47FD-970A-478F98B590BF}C:\program files (x86)\hearthstone\hearthstone.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"UDP Query User{41EAE182-5D34-42CE-AE33-EA606B252B9F}C:\users\laplace jordan\desktop\gros bordel\jeu\goat simulator\binaries\win32\goatgame-win32-shipping.exe" = protocol=17 | dir=in | app=c:\users\laplace jordan\desktop\gros bordel\jeu\goat simulator\binaries\win32\goatgame-win32-shipping.exe |
"UDP Query User{71E58BDE-6178-4497-A02F-2C0BC43E6E15}C:\users\laplace jordan\desktop\goat simulator\binaries\win32\goatgame-win32-shipping.exe" = protocol=17 | dir=in | app=c:\users\laplace jordan\desktop\goat simulator\binaries\win32\goatgame-win32-shipping.exe |
"UDP Query User{8FFE3A25-18E2-40A8-BA85-FAD32025364C}C:\programdata\battle.net\agent\agent.3109\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe |
"UDP Query User{92D438D0-74DD-4889-A3E3-7F4886F7A164}C:\users\laplace jordan\desktop\gros bordel\jeu\cube word\server.exe" = protocol=17 | dir=in | app=c:\users\laplace jordan\desktop\gros bordel\jeu\cube word\server.exe |
"UDP Query User{B90CE647-6263-4CC9-8F7E-C95A9C6F2604}C:\users\laplace jordan\desktop\terraria crack 1.2.4.1\terrariaserver.exe" = protocol=17 | dir=in | app=c:\users\laplace jordan\desktop\terraria crack 1.2.4.1\terrariaserver.exe |
"UDP Query User{C14C7056-CCC5-4EF9-9AFE-97F80E7A0F2D}C:\users\laplace jordan\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\laplace jordan\appdata\local\akamai\netsession_win.exe |
"UDP Query User{C5268588-418E-4A40-BFAC-2340568FC847}C:\programdata\battle.net\agent\agent.2880\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"UDP Query User{D4FED11F-8560-41C9-BF5C-A95B04452F24}C:\program files (x86)\tera\tera-launcher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"UDP Query User{E032B141-C02A-4CBA-A45E-CC480C73C6A5}C:\programdata\battle.net\agent\agent.3286\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{409CB30E-E457-4008-9B1A-ED1B9EA21140}" = Intel(R) Rapid Storage Technology
"{44B72151-611E-429D-9765-9BA093D7E48A}" = Intel® Trusted Connect Service Client
"{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{74322A53-04C5-4DEB-9932-D99DD9A230B9}" = Killer Windows 7/8 Wifi 64bit Driver
"{787136D2-F0F8-4625-AA3F-72D7795AC842}" = Apple Mobile Device Support
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{9D859F0D-B405-4B1F-9084-13BBF5D3DB32}" = Intel(R) Rapid Storage Technology
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{A84A4FB1-D703-48DB-89E0-68B6499D2801}" = Qualcomm Atheros Bluetooth Suite (64)
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Pilote 3D Vision 327.45
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panneau de configuration NVIDIA 327.45
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Pilote graphique 327.45
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.14.17
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Logiciel système PhysX 9.13.0725
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Mises à jour NVIDIA 1.14.17
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Pilote audio HD : 1.3.26.4
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B8BA155B-1E75-405F-9CB4-8A99615D09DC}" = iTunes
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{D4CE21D4-27E5-46DB-9FFE-553A90AD4B9F}" = Alienware Command Center
"{F7A70D00-F283-45C8-B163-49EC365D7E27}" = DSC/AA Factory Installer
"CCleaner" = CCleaner
"Logitech Gaming Software" = Logitech - Assistant pour jeux vidéo 8.53
"PC-Doctor for Windows" = AlienAutopsy
"SmarterPower" = SmarterPower
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR 5.01 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0D69462F-99CC-4F8D-942E-666E21CE59F8}" = Alienware On-Screen Display
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = AlienRespawn
"{10C10382-F201-4466-9346-3646B181DF63}_is1" = Dragonica
"{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83217051FF}" = Java 7 Update 60
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{35E13884-BAC3-5F4A-799B-05F882E0BD9F}" = SaveLotts
"{3E75652D-99B1-417E-B163-BEF33CAD3F16}" = League of Legends
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5303CFB5-D635-44F0-A94B-9611E81F07C4}" = Camtasia Studio 8
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{7611D9EC-002A-438B-B51F-FB31C44896ED}" = Killer Windows 7/8 Wifi Driver Suite
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype(TM) 6.18
"{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90150000-0138-0409-0000-0000000FF1CE}" = Microsoft Office
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AAA35D1-B21D-4610-BBAE-18FE2D00C3E0}" = Alienware Customer Surveys
"{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}" = ST Microelectronics 3 Axis Digital Accelerometer Solution
"{9D9BEFAE-9499-F52B-6CC4-94818CCC2AB5}" = Fun2Save
"{A2F166A0-F031-4E27-A057-C69733219434}_is1" = TERA
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = AlienRespawn - Support Software
"{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}" = Apple Application Support
"{AC76BA86-7AD7-FFFF-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) MUI
"{B26438B4-BF51-49C3-9567-7F14A5E40CB9}" = Dolby Home Theater v4
"{B92C2C6C-F70E-497B-88A7-1FEF9888272B}" = Adobe AIR
"{BDA0EB29-8B31-4BF4-8B05-04AA52340AC4}" = LogMeIn Hamachi
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F5853CDF-2C63-6D1D-B286-CBB1CD5DFD62}" = AllSavEEr
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FEF06E73-A519-4510-8CF3-B66041B91D8A}" = EMSC
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 14 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 14 Plugin
"Avast" = avast! Free Antivirus
"Battle.net" = Battle.net
"Dolphin" = Dolphin
"Google Chrome" = Google Chrome
"Hearthstone" = Hearthstone
"InstallShield_{0D69462F-99CC-4F8D-942E-666E21CE59F8}" = Alienware On-Screen Display
"InstallShield_{D4CE21D4-27E5-46DB-9FFE-553A90AD4B9F}" = Alienware Command Center
"League of Legends 3.0.1" = League of Legends
"LogMeIn Hamachi" = LogMeIn Hamachi
"McPixel_is1" = McPixel version 1.0.4
"Mp3tag" = Mp3tag v2.58
"NSS" = Norton Security Scan
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Peggle Nights Deluxe 1.0" = Peggle Nights Deluxe 1.0
"Steam App 4000" = Garry's Mod
"Steam App 630" = Alien Swarm
"VLC media player" = VLC media player 2.1.3
[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"Dropbox" = Dropbox
"uTorrent" = µTorrent
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
[ Application Events ]
Error - 12/08/2014 21:55:39 | Computer Name = LaplaceJordan | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 5428
Error - 12/08/2014 21:55:42 | Computer Name = LaplaceJordan | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 12/08/2014 21:55:42 | Computer Name = LaplaceJordan | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 8221
Error - 12/08/2014 21:55:42 | Computer Name = LaplaceJordan | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 8221
Error - 13/08/2014 19:24:11 | Computer Name = LaplaceJordan | Source = .NET Runtime | ID = 1026
Description =
Error - 13/08/2014 19:24:12 | Computer Name = LaplaceJordan | Source = Application Error | ID = 1000
Description = Nom de l'application défaillante pcdrcui.exe, version : 6.0.6426.22,
horodatage : 0x52cfaf51 Nom du module défaillant : KERNELBASE.dll, version : 6.1.7601.18409,
horodatage : 0x5315a05a Code d'exception : 0xe0434352 Décalage d'erreur : 0x000000000000940d
ID
du processus défaillant : 0x528 Heure de début de l'application défaillante : 0x01cfb74d9d193922
Chemin
d'accès de l'application défaillante : C:\Program Files\AlienAutopsy\pcdrcui.exe
Chemin
d'accès du module défaillant: C:\Windows\system32\KERNELBASE.dll ID de rapport :
eed1317e-2340-11e4-bbdb-485ab647f158
Error - 15/08/2014 08:37:00 | Computer Name = LaplaceJordan | Source = WinMgmt | ID = 10
Description =
Error - 15/08/2014 21:18:16 | Computer Name = LaplaceJordan | Source = WinMgmt | ID = 10
Description =
Error - 15/08/2014 21:19:08 | Computer Name = LaplaceJordan | Source = Application Hang | ID = 1002
Description = Le programme chrome.exe version 34.0.1847.131 a cessé d'interagir
avec Windows et a été fermé. Pour déterminer si des informations supplémentaires
sont disponibles, consultez l'historique du problème dans le Centre de maintenance.
ID
de processus : 14bc Heure de début : 01cfb8eff8e2c836 Heure de fin : 31 Chemin d'accès
de l'application : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ID
de rapport : 46b8158e-24e3-11e4-89a2-485ab647f158
Error - 16/08/2014 06:40:54 | Computer Name = LaplaceJordan | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 14/05/2014 06:19:47 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7030
Description = Le service LogMeIn Hamachi Tunneling Engine est marqué comme étant
interactif. Cependant, le système est configuré pour ne pas autoriser les services
interactifs. Ce service peut ne pas fonctionner correctement.
Error - 18/05/2014 15:39:52 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7031
Description = Le service avast! Antivirus s'est terminé de manière inattendue. Ceci
s'est produit 1 fois. L'action corrective suivante va être effectuée dans 5000
millisecondes : Redémarrer le service.
Error - 18/05/2014 15:39:57 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7038
Description = Le service avast! Antivirus n'a pas pu ouvrir de session en tant que
NT AUTHORITY\SYSTEM avec le mot de passe actuellement configuré en raison de l'erreur
suivante : %%50 Pour vous assurer que le service est configuré correctement, utilisez
le composant logiciel enfichable Services dans Microsoft Management Console (MMC).
Error - 18/05/2014 15:39:57 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7000
Description = Le service avast! Antivirus n'a pas pu démarrer en raison de l'erreur :
%%1069
Error - 08/06/2014 19:33:40 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7009
Description = Le dépassement de délai (30000 millisecondes) a été atteint lors de
l'attente de la connexion du service Apple Mobile Device.
Error - 08/06/2014 19:33:40 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7000
Description = Le service Apple Mobile Device n'a pas pu démarrer en raison de l'erreur :
%%1053
Error - 12/06/2014 15:42:47 | Computer Name = LaplaceJordan | Source = DCOM | ID = 10005
Description =
Error - 12/06/2014 15:42:47 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7038
Description = Le service upnphost n'a pas pu ouvrir de session en tant que NT AUTHORITY\LocalService
avec le mot de passe actuellement configuré en raison de l'erreur suivante : %%50
Pour
vous assurer que le service est configuré correctement, utilisez le composant logiciel
enfichable Services dans Microsoft Management Console (MMC).
Error - 12/06/2014 15:42:47 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7000
Description = Le service Hôte de périphérique UPnP n'a pas pu démarrer en raison
de l'erreur : %%1069
Error - 13/06/2014 15:49:57 | Computer Name = LaplaceJordan | Source = volsnap | ID = 393252
Description = Les clichés instantanés du volume C: ont été annulés car le stockage
du cliché instantané n'a pas pu s'agrandir en raison d'une limite utilisateur.
< End of report >
depuis hier je suis victime d'un virus qui provoque des Pub.
J'ai donc nettoyer mon navigateur avec ADW cleaner sans succès. J'ai donc utiliser OTL pour obtenir un rapport. esse que quelqu'un pourrais m'aider en me disant la marche a suivre s'il vous plait. Merci d'avance :)
OTL Extras logfile created on: 30/08/2014 18:17:18 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Laplace Jordan\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17239)
Locale: 0000040C | Country: France | Language: FRA | Date Format: dd/MM/yyyy
7,89 Gb Total Physical Memory | 5,09 Gb Available Physical Memory | 64,59% Memory free
15,77 Gb Paging File | 12,70 Gb Available in Paging File | 80,49% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 684,98 Gb Total Space | 562,50 Gb Free Space | 82,12% Space Free | Partition Type: NTFS
Computer Name: LAPLACEJORDAN | User Name: Laplace Jordan | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.
[color=#E56717]========== Security Center Settings ==========[/color]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
[color=#E56717]========== Firewall Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
[color=#E56717]========== Authorized Applications List ==========[/color]
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02E79E44-12D3-44AD-89F8-83740A533C72}" = lport=57943 | protocol=6 | dir=in | name=pando media booster |
"{0BBA3C15-E3A0-4CD3-AB91-8A5F75D53C87}" = lport=57943 | protocol=17 | dir=in | name=pando media booster |
"{1AADFAC0-5BFC-4533-94C9-9B79A7F0E17A}" = lport=57943 | protocol=17 | dir=in | name=pando media booster |
"{7CFB5509-7201-413D-9472-1AEBAC043728}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe |
"{BDB4AF2A-1F54-4BD0-BBB3-503057CA5853}" = lport=57943 | protocol=6 | dir=in | name=pando media booster |
"{F081EEF5-632D-48E2-B10F-AE3F0D82F64E}" = lport=8317 | protocol=6 | dir=in | name=techsmith camtasia studio |
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{02259244-AACB-459A-9FCB-80A095BED7B4}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{055543B8-79F7-4C35-8FD2-F85ACDE5195A}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{0A6DBB95-2465-4E3A-B326-925AAECEFD12}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{0D52AEB0-89A5-4770-AE2C-DC4481E9CF16}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{1057E33A-7AB0-4EB3-A1EA-1BD8D3257B9C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe |
"{168BEBCD-DC95-46B6-B410-C27922B9B803}" = protocol=17 | dir=in | app=c:\users\laplace jordan\appdata\roaming\utorrent\utorrent.exe |
"{172A03CB-B92C-41ED-8D1B-6CCFF7569E21}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{1C4C6369-50DC-43DC-A01C-E14404210211}" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{23616CB9-AB34-4F37-9D6F-F1624C622F21}" = protocol=6 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"{241CCA12-E9E1-4C85-B9CC-87EE6FD96C00}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2689\agent.exe |
"{26683F86-21CD-4748-92C9-EE5C9EE8F730}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{26C83EF0-85D6-42DD-A198-A79B3640A2F3}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2753\agent.exe |
"{28433620-34BB-4C3B-980D-D367E3C0BAF2}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\garrysmod\hl2.exe |
"{2984E58B-C05B-45E8-941D-046965303A08}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3023\agent.exe |
"{2B47D493-6FB0-4AFE-B0C0-5F48EDF05EA9}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{2E8A9299-D9D9-40A7-87B6-3AB3CBA54F82}" = protocol=6 | dir=in | app=c:\users\laplace jordan\appdata\roaming\utorrent\utorrent.exe |
"{31EB22DC-8C85-4F2A-9BA0-8642EA5F34AA}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"{34866323-3961-4463-9413-0AF35B24F9DD}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{3F51C519-790C-4F37-A02E-F6E7EADA5D5C}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{51D1B819-FEF0-4077-83F9-4D70696E1754}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{523CFA11-2A29-4B6E-9185-D44D1B848026}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"{5332143B-5FEF-4DB9-8CE9-EE4F8A60A090}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\garrysmod\hl2.exe |
"{5551B14E-35D5-43C4-9923-2828B6DB51AD}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe |
"{5AD1CB21-30E2-4D15-B3FD-81F3DD76F299}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\alien swarm\swarm.exe |
"{6500F5A7-E1C3-432D-A65D-0B309F8F734C}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3147\agent.exe |
"{6BA978BD-91DF-4598-85FF-6A5F3CA62CC0}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2717\agent.exe |
"{6CD17297-6602-477F-B3CA-3B947AB08C6E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\alien swarm\swarm.exe |
"{7145C628-63E5-43FE-9348-D283F7C2E275}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{71FB49A3-F6B2-4672-AEB1-E4944F91990D}" = protocol=6 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{77922ED2-B124-41AB-AEDC-178ED00FE9F1}" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"{7911E08A-A25E-4E10-A86A-9621FF0524DC}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3235\agent.exe |
"{7916599B-195D-427C-A16D-611CBA86D5DB}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"{7A5C3DC6-A5EB-4AE4-A449-2E041521C151}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{7C1BB169-7633-4C6F-B247-A3641B6CBDB9}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe |
"{862F7104-C894-4F8A-9734-7444B3720BBD}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2737\agent.exe |
"{8A6B182C-693A-4B8B-B15A-39AD4B569DB6}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3023\agent.exe |
"{8FAA1AE3-37C1-4551-8E92-32FDB2926FBD}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{8FE2F840-B9E6-4E54-A116-B8E5F66DFD52}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe |
"{9067DEA9-F1A8-4FC5-B967-AE60B33C702A}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{955643C6-4F3A-4C35-A23A-1119860CF186}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2753\agent.exe |
"{96622776-78E2-450B-8336-9072EA2BB0EE}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{98403D65-52E5-483C-91DC-01849B6CAC10}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2787\agent.exe |
"{9FF6065F-A761-4B17-8485-5FC759858812}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{A87E2426-7259-4690-9DCE-37E975D9C0D1}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{B0B935F0-B449-44BB-9C87-EDF586F47EB8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2787\agent.exe |
"{B19D9963-EB65-431E-8A7A-04794CFDB794}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{B42681C8-E5E3-414A-89A1-78E6EDB58E97}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2581\agent.exe |
"{B901EADC-C47D-4EAC-813C-E270D4C28C0F}" = protocol=17 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"{BF0C7788-0420-4B4D-89A5-44768BB5E376}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2737\agent.exe |
"{BFA6F101-31E1-453B-9B43-8A13E1B824A8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3182\agent.exe |
"{C8A9CFBB-254D-4971-8C4F-FB8498D4A3B0}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{CC2A53BA-17FD-4BCF-B113-6A5181B287B8}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"{D75759DE-7179-47E4-BE6B-1DB422990E66}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{D922F3FA-3A7A-468F-A926-5E750ECCE5DA}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2717\agent.exe |
"{EEFA4C2C-A70A-4986-A53F-F2725504698F}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{F3030C2B-A794-4EAF-8886-B88033B8D5D0}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2380\agent.exe |
"{F6256475-EBAF-4A1D-BE6B-28322B11675B}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2680\agent.exe |
"{F959E3D7-EAF7-4D1D-B682-86F0D4EA1598}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"{F9782F93-D6FD-4C77-9516-21EAF75FFD0A}" = protocol=17 | dir=in | app=c:\program files (x86)\battle.net\battle.net.exe |
"{FDD942B3-5C29-4CBC-B5D6-F90380F832CB}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.beta.2638\agent.exe |
"{FFADB9C8-ADCD-4D7B-8F12-252B1A4217F2}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe |
"TCP Query User{062B44EE-2445-4989-9155-B8BA26926AB6}C:\users\laplace jordan\appdata\local\akamai\netsession_win.exe" = protocol=6 | dir=in | app=c:\users\laplace jordan\appdata\local\akamai\netsession_win.exe |
"TCP Query User{0B38EAEB-374C-4713-BF55-4049D0E172FA}C:\program files (x86)\tera\tera-launcher.exe" = protocol=6 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"TCP Query User{1CD4C030-A78B-404F-90C7-8ECBF346B9E7}C:\program files (x86)\hearthstone\hearthstone.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"TCP Query User{2F5E9140-F910-4987-9CC9-A56AB92129BB}C:\users\laplace jordan\desktop\gros bordel\jeu\cube word\server.exe" = protocol=6 | dir=in | app=c:\users\laplace jordan\desktop\gros bordel\jeu\cube word\server.exe |
"TCP Query User{5039135D-87EE-40D0-9877-FE7745A5B527}C:\programdata\battle.net\agent\agent.2880\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"TCP Query User{57F57714-BAF2-46CF-B2B4-C97F508F0A7B}C:\programdata\battle.net\agent\agent.3109\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe |
"TCP Query User{711D537B-35BE-4E1B-B132-F9DC7E0E96D8}C:\users\laplace jordan\desktop\gros bordel\jeu\goat simulator\binaries\win32\goatgame-win32-shipping.exe" = protocol=6 | dir=in | app=c:\users\laplace jordan\desktop\gros bordel\jeu\goat simulator\binaries\win32\goatgame-win32-shipping.exe |
"TCP Query User{8B5B3053-FEB7-45D9-8722-9B21A646230D}C:\users\laplace jordan\desktop\terraria crack 1.2.4.1\terrariaserver.exe" = protocol=6 | dir=in | app=c:\users\laplace jordan\desktop\terraria crack 1.2.4.1\terrariaserver.exe |
"TCP Query User{B9B2D43C-9A46-4BA7-859C-D6DAE5ABA130}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{C8E9B30C-C16F-45F8-AEC1-BC8FE6ADF4E0}C:\users\laplace jordan\desktop\goat simulator\binaries\win32\goatgame-win32-shipping.exe" = protocol=6 | dir=in | app=c:\users\laplace jordan\desktop\goat simulator\binaries\win32\goatgame-win32-shipping.exe |
"TCP Query User{F17DE05F-2ABF-4BD7-B385-33F74AACED86}C:\programdata\battle.net\agent\agent.3286\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
"UDP Query User{2194A350-F859-42CE-8E60-64141A6BEEC5}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{2AD979AA-39D2-47FD-970A-478F98B590BF}C:\program files (x86)\hearthstone\hearthstone.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hearthstone\hearthstone.exe |
"UDP Query User{41EAE182-5D34-42CE-AE33-EA606B252B9F}C:\users\laplace jordan\desktop\gros bordel\jeu\goat simulator\binaries\win32\goatgame-win32-shipping.exe" = protocol=17 | dir=in | app=c:\users\laplace jordan\desktop\gros bordel\jeu\goat simulator\binaries\win32\goatgame-win32-shipping.exe |
"UDP Query User{71E58BDE-6178-4497-A02F-2C0BC43E6E15}C:\users\laplace jordan\desktop\goat simulator\binaries\win32\goatgame-win32-shipping.exe" = protocol=17 | dir=in | app=c:\users\laplace jordan\desktop\goat simulator\binaries\win32\goatgame-win32-shipping.exe |
"UDP Query User{8FFE3A25-18E2-40A8-BA85-FAD32025364C}C:\programdata\battle.net\agent\agent.3109\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3109\agent.exe |
"UDP Query User{92D438D0-74DD-4889-A3E3-7F4886F7A164}C:\users\laplace jordan\desktop\gros bordel\jeu\cube word\server.exe" = protocol=17 | dir=in | app=c:\users\laplace jordan\desktop\gros bordel\jeu\cube word\server.exe |
"UDP Query User{B90CE647-6263-4CC9-8F7E-C95A9C6F2604}C:\users\laplace jordan\desktop\terraria crack 1.2.4.1\terrariaserver.exe" = protocol=17 | dir=in | app=c:\users\laplace jordan\desktop\terraria crack 1.2.4.1\terrariaserver.exe |
"UDP Query User{C14C7056-CCC5-4EF9-9AFE-97F80E7A0F2D}C:\users\laplace jordan\appdata\local\akamai\netsession_win.exe" = protocol=17 | dir=in | app=c:\users\laplace jordan\appdata\local\akamai\netsession_win.exe |
"UDP Query User{C5268588-418E-4A40-BFAC-2340568FC847}C:\programdata\battle.net\agent\agent.2880\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2880\agent.exe |
"UDP Query User{D4FED11F-8560-41C9-BF5C-A95B04452F24}C:\program files (x86)\tera\tera-launcher.exe" = protocol=17 | dir=in | app=c:\program files (x86)\tera\tera-launcher.exe |
"UDP Query User{E032B141-C02A-4CBA-A45E-CC480C73C6A5}C:\programdata\battle.net\agent\agent.3286\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.3286\agent.exe |
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{37B8F9C7-03FB-3253-8781-2517C99D7C00}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030
"{409CB30E-E457-4008-9B1A-ED1B9EA21140}" = Intel(R) Rapid Storage Technology
"{44B72151-611E-429D-9765-9BA093D7E48A}" = Intel® Trusted Connect Service Client
"{690285C2-2481-44FB-8402-162EA970A6DD}" = Logitech Gaming Software
"{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{74322A53-04C5-4DEB-9932-D99DD9A230B9}" = Killer Windows 7/8 Wifi 64bit Driver
"{787136D2-F0F8-4625-AA3F-72D7795AC842}" = Apple Mobile Device Support
"{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{9D859F0D-B405-4B1F-9084-13BBF5D3DB32}" = Intel(R) Rapid Storage Technology
"{A2CB1ACB-94A2-32BA-A15E-7D80319F7589}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
"{A84A4FB1-D703-48DB-89E0-68B6499D2801}" = Qualcomm Atheros Bluetooth Suite (64)
"{AC53FC8B-EE18-3F9C-9B59-60937D0B182C}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Pilote 3D Vision 327.45
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panneau de configuration NVIDIA 327.45
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Pilote graphique 327.45
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus 1.14.17
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Logiciel système PhysX 9.13.0725
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Mises à jour NVIDIA 1.14.17
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Pilote audio HD : 1.3.26.4
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B8BA155B-1E75-405F-9CB4-8A99615D09DC}" = iTunes
"{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030
"{D4CE21D4-27E5-46DB-9FFE-553A90AD4B9F}" = Alienware Command Center
"{F7A70D00-F283-45C8-B163-49EC365D7E27}" = DSC/AA Factory Installer
"CCleaner" = CCleaner
"Logitech Gaming Software" = Logitech - Assistant pour jeux vidéo 8.53
"PC-Doctor for Windows" = AlienAutopsy
"SmarterPower" = SmarterPower
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"WinRAR archiver" = WinRAR 5.01 (64-bit)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0D69462F-99CC-4F8D-942E-666E21CE59F8}" = Alienware On-Screen Display
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = AlienRespawn
"{10C10382-F201-4466-9346-3646B181DF63}_is1" = Dragonica
"{15134cb0-b767-4960-a911-f2d16ae54797}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22154f09-719a-4619-bb71-5b3356999fbf}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel(R) USB 3.0 eXtensible Host Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83217051FF}" = Java 7 Update 60
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{2F73A7B2-E50E-39A6-9ABC-EF89E4C62E36}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
"{35E13884-BAC3-5F4A-799B-05F882E0BD9F}" = SaveLotts
"{3E75652D-99B1-417E-B163-BEF33CAD3F16}" = League of Legends
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5303CFB5-D635-44F0-A94B-9611E81F07C4}" = Camtasia Studio 8
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components
"{7611D9EC-002A-438B-B51F-FB31C44896ED}" = Killer Windows 7/8 Wifi Driver Suite
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype(TM) 6.18
"{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX
"{820B6609-4C97-3A2B-B644-573B06A0F0CC}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90150000-0138-0409-0000-0000000FF1CE}" = Microsoft Office
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9AAA35D1-B21D-4610-BBAE-18FE2D00C3E0}" = Alienware Customer Surveys
"{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}" = ST Microelectronics 3 Axis Digital Accelerometer Solution
"{9D9BEFAE-9499-F52B-6CC4-94818CCC2AB5}" = Fun2Save
"{A2F166A0-F031-4E27-A057-C69733219434}_is1" = TERA
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = AlienRespawn - Support Software
"{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}" = Apple Application Support
"{AC76BA86-7AD7-FFFF-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) MUI
"{B26438B4-BF51-49C3-9567-7F14A5E40CB9}" = Dolby Home Theater v4
"{B92C2C6C-F70E-497B-88A7-1FEF9888272B}" = Adobe AIR
"{BDA0EB29-8B31-4BF4-8B05-04AA52340AC4}" = LogMeIn Hamachi
"{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F5853CDF-2C63-6D1D-B286-CBB1CD5DFD62}" = AllSavEEr
"{FDB30193-FDA0-3DAA-ACCA-A75EEFE53607}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
"{FEF06E73-A519-4510-8CF3-B66041B91D8A}" = EMSC
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 14 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 14 Plugin
"Avast" = avast! Free Antivirus
"Battle.net" = Battle.net
"Dolphin" = Dolphin
"Google Chrome" = Google Chrome
"Hearthstone" = Hearthstone
"InstallShield_{0D69462F-99CC-4F8D-942E-666E21CE59F8}" = Alienware On-Screen Display
"InstallShield_{D4CE21D4-27E5-46DB-9FFE-553A90AD4B9F}" = Alienware Command Center
"League of Legends 3.0.1" = League of Legends
"LogMeIn Hamachi" = LogMeIn Hamachi
"McPixel_is1" = McPixel version 1.0.4
"Mp3tag" = Mp3tag v2.58
"NSS" = Norton Security Scan
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"Peggle Nights Deluxe 1.0" = Peggle Nights Deluxe 1.0
"Steam App 4000" = Garry's Mod
"Steam App 630" = Alien Swarm
"VLC media player" = VLC media player 2.1.3
[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Akamai" = Akamai NetSession Interface
"Dropbox" = Dropbox
"uTorrent" = µTorrent
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
[ Application Events ]
Error - 12/08/2014 21:55:39 | Computer Name = LaplaceJordan | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 5428
Error - 12/08/2014 21:55:42 | Computer Name = LaplaceJordan | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second
Error - 12/08/2014 21:55:42 | Computer Name = LaplaceJordan | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 8221
Error - 12/08/2014 21:55:42 | Computer Name = LaplaceJordan | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 8221
Error - 13/08/2014 19:24:11 | Computer Name = LaplaceJordan | Source = .NET Runtime | ID = 1026
Description =
Error - 13/08/2014 19:24:12 | Computer Name = LaplaceJordan | Source = Application Error | ID = 1000
Description = Nom de l'application défaillante pcdrcui.exe, version : 6.0.6426.22,
horodatage : 0x52cfaf51 Nom du module défaillant : KERNELBASE.dll, version : 6.1.7601.18409,
horodatage : 0x5315a05a Code d'exception : 0xe0434352 Décalage d'erreur : 0x000000000000940d
ID
du processus défaillant : 0x528 Heure de début de l'application défaillante : 0x01cfb74d9d193922
Chemin
d'accès de l'application défaillante : C:\Program Files\AlienAutopsy\pcdrcui.exe
Chemin
d'accès du module défaillant: C:\Windows\system32\KERNELBASE.dll ID de rapport :
eed1317e-2340-11e4-bbdb-485ab647f158
Error - 15/08/2014 08:37:00 | Computer Name = LaplaceJordan | Source = WinMgmt | ID = 10
Description =
Error - 15/08/2014 21:18:16 | Computer Name = LaplaceJordan | Source = WinMgmt | ID = 10
Description =
Error - 15/08/2014 21:19:08 | Computer Name = LaplaceJordan | Source = Application Hang | ID = 1002
Description = Le programme chrome.exe version 34.0.1847.131 a cessé d'interagir
avec Windows et a été fermé. Pour déterminer si des informations supplémentaires
sont disponibles, consultez l'historique du problème dans le Centre de maintenance.
ID
de processus : 14bc Heure de début : 01cfb8eff8e2c836 Heure de fin : 31 Chemin d'accès
de l'application : C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ID
de rapport : 46b8158e-24e3-11e4-89a2-485ab647f158
Error - 16/08/2014 06:40:54 | Computer Name = LaplaceJordan | Source = WinMgmt | ID = 10
Description =
[ System Events ]
Error - 14/05/2014 06:19:47 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7030
Description = Le service LogMeIn Hamachi Tunneling Engine est marqué comme étant
interactif. Cependant, le système est configuré pour ne pas autoriser les services
interactifs. Ce service peut ne pas fonctionner correctement.
Error - 18/05/2014 15:39:52 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7031
Description = Le service avast! Antivirus s'est terminé de manière inattendue. Ceci
s'est produit 1 fois. L'action corrective suivante va être effectuée dans 5000
millisecondes : Redémarrer le service.
Error - 18/05/2014 15:39:57 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7038
Description = Le service avast! Antivirus n'a pas pu ouvrir de session en tant que
NT AUTHORITY\SYSTEM avec le mot de passe actuellement configuré en raison de l'erreur
suivante : %%50 Pour vous assurer que le service est configuré correctement, utilisez
le composant logiciel enfichable Services dans Microsoft Management Console (MMC).
Error - 18/05/2014 15:39:57 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7000
Description = Le service avast! Antivirus n'a pas pu démarrer en raison de l'erreur :
%%1069
Error - 08/06/2014 19:33:40 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7009
Description = Le dépassement de délai (30000 millisecondes) a été atteint lors de
l'attente de la connexion du service Apple Mobile Device.
Error - 08/06/2014 19:33:40 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7000
Description = Le service Apple Mobile Device n'a pas pu démarrer en raison de l'erreur :
%%1053
Error - 12/06/2014 15:42:47 | Computer Name = LaplaceJordan | Source = DCOM | ID = 10005
Description =
Error - 12/06/2014 15:42:47 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7038
Description = Le service upnphost n'a pas pu ouvrir de session en tant que NT AUTHORITY\LocalService
avec le mot de passe actuellement configuré en raison de l'erreur suivante : %%50
Pour
vous assurer que le service est configuré correctement, utilisez le composant logiciel
enfichable Services dans Microsoft Management Console (MMC).
Error - 12/06/2014 15:42:47 | Computer Name = LaplaceJordan | Source = Service Control Manager | ID = 7000
Description = Le service Hôte de périphérique UPnP n'a pas pu démarrer en raison
de l'erreur : %%1069
Error - 13/06/2014 15:49:57 | Computer Name = LaplaceJordan | Source = volsnap | ID = 393252
Description = Les clichés instantanés du volume C: ont été annulés car le stockage
du cliché instantané n'a pas pu s'agrandir en raison d'une limite utilisateur.
< End of report >
A voir également:
- Pub indésirable sur Google Chrome
- Google maps satellite - Guide
- Dns google - Guide
- Google maps - Guide
- Mise a jour google chrome - Accueil - Applications & Logiciels
- Google chrome - Télécharger - Navigateurs
1 réponse
Salut,
Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :
Télécharge https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= AdwCleaner ( d'Xplode ) sur ton bureau.
Sur la page d'AdwCleaner, à droite, clic sur la disquette grise avec la flèche verte pour lancer le téléchargement.
Lance AdwCleaner, clique sur [Scanner].
Le scan peux durer plusieurs minutes, patienter.
Une fois le scan terminé, clique sur [Nettoyer]
Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt
Tu as installé des adwares et programmes parasites sur ton PC qui ouvrent des publicités et ralentissent l'ordinateur et les navigateurs WEB.
Voici la procédure à suivre pour les supprimer :
Télécharge https://www.malekal.com/adwcleaner-supprimer-virus-adwares-pup/?t=33839&start= AdwCleaner ( d'Xplode ) sur ton bureau.
Sur la page d'AdwCleaner, à droite, clic sur la disquette grise avec la flèche verte pour lancer le téléchargement.
Lance AdwCleaner, clique sur [Scanner].
Le scan peux durer plusieurs minutes, patienter.
Une fois le scan terminé, clique sur [Nettoyer]
Une fois le nettoyage terminé, un rapport s'ouvrira. Copie/colle le contenu du rapport dans ta prochaine réponse par un copier/coller.
Si cela ne fonctionne pas, utilise le site http://pjjoint.malekal.com pour héberger le rapport, donne le lien du rapport dans un nouveau message.
Note : Le rapport est également sauvegardé sous C:\AdwCleaner[S1].txt