samedi 12 octobre 2013

STOP: C0000135 The program can't start because %hs is missing. Try resintalling

Dear all,


My parents computer is experiencing bootloop with the error code in topic name (disabling auto restart failure led me to this).


I'd be glad if you could help me out on this topic ! ♥


I've checked your topics on the subject and ran a farbar scan with the following result :


FRST:


Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2013

Ran by SYSTEM on MININT-GAD3T5M on 12-10-2013 12:59:36

Running from H:\

Windows 7 Home Premium (X64) OS Language: English(US)

Internet Explorer Version 10

Boot Mode: Recovery


The current controlset is ControlSet001

ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.


==================== Registry (Whitelisted) ==================


HKLM\...\Run: [hpsysdrv] - c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe [62768 2008-11-20] (Hewlett-Packard)

HKLM\...\Run: [SmartMenu] - C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe [611896 2010-09-15] ()

HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [112512 2010-03-13] (Microsoft Corporation)

HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1356240 2013-06-20] (Microsoft Corporation)

HKLM\...\RunOnce: [*Restore] - C:\Windows\system32\rstrui.exe /RUNONCE [296960 2010-11-20] (Microsoft Corporation)

HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1

HKLM-x32\...\Run: [HP Software Update] - c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [54576 2008-12-08] (Hewlett-Packard)

HKLM-x32\...\Run: [] - [x]

HKLM-x32\...\Run: [PDF Complete] - C:\Program Files (x86)\PDF Complete\pdfsty.exe [664600 2010-09-28] (PDF Complete Inc)

HKLM-x32\...\Run: [Norton Online Backup] - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe [1155928 2010-06-01] (Symantec Corporation)

HKLM-x32\...\Run: [VirtualCloneDrive] - C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe [89456 2011-03-07] (Elaborate Bytes AG)

HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254696 2012-01-18] (Sun Microsystems, Inc.)

HKU\SAEZ\...\Run: [Google Update] - C:\Users\SAEZ\AppData\Local\Google\Update\GoogleUpdate.exe [136176 2011-11-10] (Google Inc.)

HKU\SAEZ\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-01-13] (Google Inc.)

HKU\SAEZ\...\Run: [] - C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1106288 2013-05-22] (Samsung)

HKU\SAEZ\...\Run: [KiesPreload] - C:\Program Files (x86)\Samsung\Kies\Kies.exe [1561968 2013-05-22] (Samsung)

HKU\SAEZ\...\Run: [GoogleChromeAutoLaunch_F067251C011F2E5B23B4D9EE596E2BA8] - C:\Users\SAEZ\AppData\Local\Google\Chrome\Application\chrome.exe [844752 2013-10-02] (Google Inc.)

HKU\SAEZ\...\Policies\system: [DisableLockWorkstation] 0

HKU\SAEZ\...\Policies\system: [DisableChangePassword] 0

AppInit_DLLs: [0 ] ()


==================== Services (Whitelisted) =================


S2 dealplylive; C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [148000 2013-08-28] (DealPly Technologies Ltd)

S3 dealplylivem; C:\Program Files (x86)\DealPlyLive\Update\DealPlyLive.exe [148000 2013-08-28] (DealPly Technologies Ltd)

S2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe [496232 2010-03-04] ()

S2 MaConfigAgent; C:\Program Files\ma-config.com\MaConfigAgent.exe [1141072 2013-04-21] (CybelSoft)

S2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-06-20] (Microsoft Corporation)

S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-06-20] (Microsoft Corporation)

S2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-01] (Symantec Corporation)

S2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe [209000 2010-03-04] ()

S2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1119768 2010-09-28] (PDF Complete Inc)

S2 SpyHunter 4 Service; C:\PROGRA~2\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE [769920 2013-01-14] (Enigma Software Group USA, LLC.)


==================== Drivers (Whitelisted) ====================


S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2012-07-03] (Google Inc)

S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2012-07-03] (LG Electronics Inc.)

S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2012-07-03] (LG Electronics Inc.)

S3 driverhardwarev2x64; C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys [16640 2011-07-21] (CybelSoft)

S3 EsgScanner; C:\Windows\SysWow64\DRIVERS\EsgScanner.sys [19984 2012-06-22] ()

S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()

S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] ()

S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [32000 2013-07-23] ()

S0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation)

S2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation)

S3 esgiguard; \??\C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [x]

S3 EsgScanner; system32\DRIVERS\EsgScanner.sys [x]


========================== Drivers MD5 =======================


C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit

C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit

C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit

C:\Windows\system32\drivers\afd.sys 1C7857B62DE5994A75B054A9FD4C3825

C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit

C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit

C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\amdk8.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\amdppm.sys ==> MD5 is legit

C:\Windows\system32\drivers\amdsata.sys D4121AE6D0C0E7E13AA221AA57EF2D49

C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit

C:\Windows\System32\drivers\amdxata.sys 540DAF1CEA6094886D72126FD7C33048

C:\Windows\System32\Drivers\lgandnetadb.sys EFD1765905491B742C531FF6C38E9EC7

C:\Windows\System32\DRIVERS\lgandnetdiag64.sys 8660C7BFE2CBA7E0B3F5D9ECD05D780E

C:\Windows\System32\DRIVERS\lgandnetmodem64.sys 620F9CDFC8987FE26F6E0DC37D645B45

C:\Windows\system32\drivers\appid.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\arc.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit

C:\Windows\system32\drivers\atapi.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\bxvbda.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\b57nd60a.sys ==> MD5 is legit

C:\Windows\System32\Drivers\Beep.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit

C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit

C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit

C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit

C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 is legit

C:\Windows\System32\CLFS.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\CmBatt.sys ==> MD5 is legit

C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit

C:\Windows\System32\Drivers\cng.sys AAFCB52FE0037207FB6FBEA070D25EFE

C:\Windows\system32\DRIVERS\compbatt.sys ==> MD5 is legit

C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit

C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\ssudbus.sys 0B3F6C8F93C5C25977EA5A8B2E656357

C:\Windows\System32\drivers\discache.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\disk.sys ==> MD5 is legit

C:\Program Files\ma-config.com\Drivers\driverhardwarev2x64.sys B28C853770C995552B9F5760D8245F44

C:\Windows\System32\drivers\drmkaud.sys ==> MD5 is legit

C:\Windows\System32\drivers\dxgkrnl.sys AF2E16242AA723F68F461B6EAE2EAD3D

C:\Windows\system32\DRIVERS\evbda.sys ==> MD5 is legit

C:\Windows\System32\Drivers\ElbyCDIO.sys A05FC7ECA0966EBB70E4D17B855A853B

C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit

C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit

C:\Windows\SysWow64\DRIVERS\EsgScanner.sys 01CE484FF6D70A39479BC6D619DE7ED6

C:\Windows\system32\DRIVERS\fdc.sys ==> MD5 is legit

C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit

C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\flpydisk.sys ==> MD5 is legit

C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit

C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit

C:\Windows\SysWOW64\FsUsbExDisk.SYS DDEE99DC54EFA20BD5A442CD733C4462

C:\Windows\SysWOW64\FsUsbExDisk.SYS DDEE99DC54EFA20BD5A442CD733C4462

C:\Windows\System32\DRIVERS\fvevol.sys 8F6322049018354F45F05A2FD2D4E5E0

C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\GEARAspiWDM.sys 8E98D21EE06192492A5671A6144D092F

C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit

C:\Windows\system32\drivers\HdAudio.sys 975761C778E33CD22498059B91E7373A

C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit

C:\Windows\system32\drivers\hitmanpro37.sys 6B415E7AE774B9118360F559F627468E

C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit

C:\Windows\System32\drivers\HTTP.sys ==> MD5 is legit

C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit

C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit

C:\Windows\system32\drivers\iaStorV.sys AAAF44DB3BD0B9D1FB6969B23ECC8366

C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit

C:\Windows\System32\drivers\RTKVHD64.sys 91ED47813243B455E2D81115A8255F0E

C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\intelppm.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit

C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit

C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit

C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit

C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit

C:\Windows\system32\drivers\msiscsi.sys ==> MD5 is legit

C:\Windows\system32\drivers\kbdclass.sys ==> MD5 is legit

C:\Windows\system32\drivers\kbdhid.sys ==> MD5 is legit

C:\Windows\System32\Drivers\ksecdd.sys 97A7070AEA4C058B6418519E869A63B4

C:\Windows\System32\Drivers\ksecpkg.sys 7EFB9333E4ECCE6AE4AE9D777D9E553E

C:\Windows\system32\drivers\ksthunk.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit

C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit

C:\Windows\System32\drivers\modem.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit

C:\Windows\System32\drivers\mountmgr.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\MpFilter.sys FC1D590039EF06A381768710E6C07E75

C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit

C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit

C:\Windows\system32\drivers\mrxdav.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\mrxsmb.sys A5D9106A73DC88564C825D317CAC68AC

C:\Windows\System32\DRIVERS\mrxsmb10.sys D711B3C1D5F42C0C2415687BE09FC163

C:\Windows\System32\DRIVERS\mrxsmb20.sys 9423E9D355C8D303E76B8CFBD8A5C30C

C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit

C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit

C:\Windows\System32\Drivers\Msfs.sys ==> MD5 is legit

C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit

C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit

C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit

C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit

C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit

C:\Windows\System32\Drivers\MsRPC.sys ==> MD5 is legit

C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit

C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit

C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit

C:\Windows\System32\drivers\ndis.sys 760E38053BF56E501D562B70AD796B88

C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit

C:\Windows\System32\Drivers\NDProxy.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\netr28x.sys 2EED549279D7FBD10B846B5397573967

C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\NisDrvWFP.sys 8FB3C853E886E1E4D57271672486111C

C:\Windows\System32\Drivers\Npfs.sys ==> MD5 is legit

C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit

C:\Windows\System32\Drivers\Ntfs.sys B98F8C6E31CD07B2E6F71F7F648E38C0

C:\Windows\System32\Drivers\Null.sys ==> MD5 is legit

C:\Windows\System32\drivers\nvhda64v.sys 1F07B814C0BB5AABA703ABFF1F31F2E8

C:\Windows\System32\DRIVERS\nvlddmkm.sys C013E857695D231E9E02088E4CD0982B

C:\Windows\System32\DRIVERS\nvmf6264.sys BD25E03EAD63AC3365F25175B4DBD56A

C:\Windows\system32\drivers\nvraid.sys 0A92CB65770442ED0DC44834632F66AD

C:\Windows\system32\drivers\nvstor.sys DAB0E87525C10052BF65F06152F37E4A

C:\Windows\System32\DRIVERS\nvstor64.sys 1E45F96342429D63DC30E0D9117DA3D8

C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit

C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\parport.sys ==> MD5 is legit

C:\Windows\System32\drivers\partmgr.sys E9766131EEADE40A27DC27D2D68FBA9C

C:\Windows\System32\drivers\pci.sys ==> MD5 is legit

C:\Windows\system32\drivers\pciide.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit

C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit

C:\Windows\System32\drivers\peauth.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\processr.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit

C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\rdpbus.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit

C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit

C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit

C:\Windows\System32\drivers\rdpvideominiport.sys 313F68E1A3E6345A4F47A36B07062F34

C:\Windows\System32\Drivers\RDPWD.sys E61608AA35E98999AF9AAEEEA6114B0A

C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit

C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit

C:\Windows\System32\Drivers\secdrv.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\serenum.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\serial.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit

C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit

C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit

C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit

C:\Windows\System32\Drivers\spldr.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\srv.sys 441FBA48BFF01FDB9D5969EBC1838F0B

C:\Windows\System32\DRIVERS\srv2.sys B4ADEBBF5E3677CCE9651E0F01F7CC28

C:\Windows\System32\DRIVERS\srvnet.sys 27E461F0BE5BFF5FC737328F749538C3

C:\Windows\System32\DRIVERS\ssudmdm.sys EA8F41484CCC5BA6A1455C2AD3D1BE3C

C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\serscan.sys DECACB6921DED1A38642642685D77DAC

C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit

C:\Windows\System32\drivers\tcpip.sys DB74544B75566C974815E79A62433F29

C:\Windows\System32\DRIVERS\tcpip.sys DB74544B75566C974815E79A62433F29

C:\Windows\System32\drivers\tcpipreg.sys 1B16D0BD9841794A6E0CDE0CEF744ABC

C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit

C:\Windows\System32\drivers\tdtcp.sys 51C5ECEB1CDEE2468A1748BE550CFBC8

C:\Windows\System32\DRIVERS\tdx.sys ==> MD5 is legit

C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\tssecsrv.sys 4CE278FC9671BA81A138D70823FCAA09

C:\Windows\System32\drivers\tsusbflt.sys 17C6B51CBCCDED95B3CC14E22791F85E

C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit

C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit

C:\Windows\system32\drivers\umbus.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 is legit

C:\Windows\System32\Drivers\usbaapl64.sys 43228F8EDD1B0BCDD3145AD246E63D39

C:\Windows\System32\DRIVERS\usbccgp.sys 6F1A3157A1C89435352CEB543CDB359C

C:\Windows\system32\drivers\usbcir.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\usbehci.sys C025055FE7B87701EB042095DF1A2D7B

C:\Windows\System32\DRIVERS\usbhub.sys 287C6C9410B111B68B52CA298F7B8C24

C:\Windows\System32\DRIVERS\usbohci.sys 9840FC418B4CBD632D3D0A667A725C31

C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\usbscan.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\USBSTOR.SYS FED648B01349A3C8395A5169DB5FB7D6

C:\Windows\system32\drivers\usbuhci.sys 62069A34518BCF9C1FD9E74B3F6DB7CD

C:\Windows\System32\DRIVERS\VClone.sys FD911873C0BB6945FA38C16E9A2B58F9

C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit

C:\Windows\System32\drivers\vga.sys ==> MD5 is legit

C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit

C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit

C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit

C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit

C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\vwifibus.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\vwififlt.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit

C:\Windows\system32\DRIVERS\wd.sys ==> MD5 is legit

C:\Windows\System32\drivers\Wdf01000.sys 442783E2CB0DA19873B7A63833FF4CB4

C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit

C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit

C:\Windows\SysWow64\drivers\wimmount.sys ==> MD5 is legit

C:\Windows\System32\DRIVERS\WinUsb.sys FE88B288356E7B47B74B13372ADD906D

C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit

C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit

C:\Windows\System32\drivers\WudfPf.sys AB886378EEB55C6C75B4F2D14B6C869F

C:\Windows\System32\DRIVERS\WUDFRd.sys DDA4CAF29D8C0A297F886BFE561E6659


==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========


2013-10-12 12:59 - 2013-10-12 12:59 - 00000000 ____D C:\FRST

2013-10-08 04:12 - 2013-10-08 04:13 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{C8158441-D16A-48A0-952C-8EB32D192D22}

2013-10-07 04:28 - 2013-10-07 04:28 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{8C04E2BA-725B-49C9-AD6E-4D8DCFB2099D}

2013-10-01 04:05 - 2013-10-01 04:06 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{4560BDD8-4273-4C7C-8C11-094DB8276022}

2013-09-30 04:18 - 2013-09-30 04:18 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{2D9737F8-55C0-4635-9EDC-10F8C55CF110}

2013-09-26 01:39 - 2013-09-26 01:39 - 00003707 _____ C:\Users\SAEZ\Desktop\2013-09-26_11-00_auto.html

2013-09-25 03:35 - 2013-09-25 03:36 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{F9148E96-2623-4FF3-88E9-C769DC59713D}

2013-09-23 03:54 - 2013-09-23 03:54 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{134CF029-0BFF-4F5A-8CCD-DA3EF29E58FB}

2013-09-23 03:49 - 2013-09-23 03:49 - 00008087 _____ C:\Users\SAEZ\Downloads\SENDER_EMAILlorainicol54 (1)

2013-09-20 05:17 - 2013-09-20 05:17 - 00008087 _____ C:\Users\SAEZ\Downloads\SENDER_EMAILlorainicol54

2013-09-13 01:40 - 2013-09-13 01:41 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{1CE86D99-3EC7-41EF-9575-1B9AFFDBC4FB}


==================== One Month Modified Files and Folders =======


2013-10-12 12:59 - 2013-10-12 12:59 - 00000000 ____D C:\FRST

2013-10-09 19:11 - 2013-08-03 06:36 - 00000000 ____D C:\ProgramData\Recovery

2013-10-09 18:57 - 2013-03-13 21:32 - 00000000 ____D C:\Program Files\Microsoft Silverlight

2013-10-09 18:57 - 2013-03-13 21:32 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight

2013-10-09 18:57 - 2011-11-10 09:13 - 00000000 ____D C:\users\SAEZ

2013-10-09 18:57 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\AppCompat

2013-10-09 18:57 - 2009-07-13 19:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared

2013-10-09 18:56 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\registration

2013-10-08 20:50 - 2011-11-10 09:27 - 00000000 ____D C:\ProgramData\Microsoft Help

2013-10-08 20:41 - 2013-07-11 00:45 - 00000000 ____D C:\Windows\System32\MRT

2013-10-08 05:59 - 2011-12-19 09:59 - 00266240 ___SH C:\Users\SAEZ\Documents\Thumbs.db

2013-10-08 04:13 - 2013-10-08 04:12 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{C8158441-D16A-48A0-952C-8EB32D192D22}

2013-10-07 04:28 - 2013-10-07 04:28 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{8C04E2BA-725B-49C9-AD6E-4D8DCFB2099D}

2013-10-07 04:28 - 2013-07-26 08:20 - 00000000 ____D C:\ProgramData\PDFC

2013-10-04 21:07 - 2013-03-16 03:41 - 00001002 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-10-04 21:07 - 2011-10-10 07:16 - 01447113 _____ C:\Windows\WindowsUpdate.log

2013-10-04 21:03 - 2009-07-13 20:45 - 00015792 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-10-04 21:03 - 2009-07-13 20:45 - 00015792 ____H C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-10-04 21:02 - 2011-11-10 09:22 - 00001074 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3284695655-3591258121-1218543414-1001UA.job

2013-10-04 20:56 - 2013-08-28 10:38 - 00000898 _____ C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineCore.job

2013-10-04 20:56 - 2012-07-06 00:40 - 00000294 _____ C:\Windows\Tasks\AutoKMS.job

2013-10-04 20:56 - 2011-11-22 10:53 - 00001060 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2013-10-04 20:56 - 2009-07-13 21:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2013-10-04 20:56 - 2009-07-13 20:51 - 00167217 _____ C:\Windows\setupact.log

2013-10-03 20:00 - 2011-11-10 09:22 - 00001022 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3284695655-3591258121-1218543414-1001Core.job

2013-10-03 19:47 - 2011-11-22 10:53 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2013-10-03 19:43 - 2013-08-28 10:38 - 00000902 _____ C:\Windows\Tasks\DealPlyLiveUpdateTaskMachineUA.job

2013-10-03 19:38 - 2013-08-28 10:38 - 00000286 _____ C:\Windows\Tasks\Dealply.job

2013-10-01 04:06 - 2013-10-01 04:05 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{4560BDD8-4273-4C7C-8C11-094DB8276022}

2013-09-30 04:18 - 2013-09-30 04:18 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{2D9737F8-55C0-4635-9EDC-10F8C55CF110}

2013-09-30 04:15 - 2011-11-25 04:48 - 00012832 _____ C:\Users\SAEZ\Documents\Décompte salaire.xlsx

2013-09-26 01:39 - 2013-09-26 01:39 - 00003707 _____ C:\Users\SAEZ\Desktop\2013-09-26_11-00_auto.html

2013-09-25 05:05 - 2013-04-14 10:48 - 00000000 ____D C:\Users\SAEZ\AppData\Roaming\vlc

2013-09-25 03:36 - 2013-09-25 03:35 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{F9148E96-2623-4FF3-88E9-C769DC59713D}

2013-09-23 03:54 - 2013-09-23 03:54 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{134CF029-0BFF-4F5A-8CCD-DA3EF29E58FB}

2013-09-23 03:54 - 2011-11-22 11:12 - 00000000 ____D C:\Users\SAEZ\AppData\Local\Windows Live

2013-09-23 03:49 - 2013-09-23 03:49 - 00008087 _____ C:\Users\SAEZ\Downloads\SENDER_EMAILlorainicol54 (1)

2013-09-20 05:17 - 2013-09-20 05:17 - 00008087 _____ C:\Users\SAEZ\Downloads\SENDER_EMAILlorainicol54

2013-09-19 20:07 - 2013-03-16 03:41 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe

2013-09-19 20:07 - 2013-03-16 03:41 - 00003940 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater

2013-09-19 20:07 - 2011-11-11 08:42 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl

2013-09-17 09:05 - 2011-10-10 07:48 - 00704464 _____ C:\Windows\System32\perfh00C.dat

2013-09-17 09:05 - 2011-10-10 07:48 - 00130770 _____ C:\Windows\System32\perfc00C.dat

2013-09-17 09:05 - 2009-07-13 21:13 - 01549936 _____ C:\Windows\System32\PerfStringBackup.INI

2013-09-13 01:41 - 2013-09-13 01:40 - 00000000 ____D C:\Users\SAEZ\AppData\Local\{1CE86D99-3EC7-41EF-9575-1B9AFFDBC4FB}

2013-09-13 00:43 - 2009-07-13 19:20 - 00000000 ____D C:\Windows\rescache

2013-09-12 19:44 - 2009-07-13 20:45 - 00428072 _____ C:\Windows\System32\FNTCACHE.DAT


Some content of TEMP:

====================

C:\Users\SAEZ\AppData\Local\Temp\45289uninstall.exe

C:\Users\SAEZ\AppData\Local\Temp\BackupSetup.exe

C:\Users\SAEZ\AppData\Local\Temp\dpgjewt.dll

C:\Users\SAEZ\AppData\Local\Temp\hpjp.dll

C:\Users\SAEZ\AppData\Local\Temp\jre-7u25-windows-i586-iftw.exe

C:\Users\SAEZ\AppData\Local\Temp\lqeoydx.dll

C:\Users\SAEZ\AppData\Local\Temp\luwbx.dll

C:\Users\SAEZ\AppData\Local\Temp\pcrev0.dll

C:\Users\SAEZ\AppData\Local\Temp\ponkuni.dll

C:\Users\SAEZ\AppData\Local\Temp\rvirhrc.dll

C:\Users\SAEZ\AppData\Local\Temp\SHSetup.exe

C:\Users\SAEZ\AppData\Local\Temp\Sqlite3.dll

C:\Users\SAEZ\AppData\Local\Temp\txkt.dll

C:\Users\SAEZ\AppData\Local\Temp\whbwgpa.dll


==================== Known DLLs (Whitelisted) ================


C:\Windows\System32\LPK.dll IS MISSING <==== ATTENTION!

C:\Windows\SysWOW64\LPK.dll IS MISSING <==== ATTENTION!


==================== Bamital & volsnap Check =================


C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


==================== EXE ASSOCIATION =====================


HKLM\...\.exe: exefile => OK

HKLM\...\exefile\DefaultIcon: %1 => OK

HKLM\...\exefile\open\command: "%1" %* => OK


==================== Restore Points =========================


7

Restore point made on: 2013-09-19 19:54:01

Restore point made on: 2013-09-23 20:03:27

Restore point made on: 2013-09-27 21:23:58

Restore point made on: 2013-10-01 01:25:37

Restore point made on: 2013-10-04 21:07:42

Restore point made on: 2013-10-08 04:11:21

Restore point made on: 2013-10-08 20:34:09


==================== Memory info ===========================


Percentage of memory in use: 15%

Total physical RAM: 6143.3 MB

Available physical RAM: 5176.71 MB

Total Pagefile: 6141.45 MB

Available Pagefile: 5155.81 MB

Total Virtual: 8192 MB

Available Virtual: 8191.88 MB


==================== Drives ================================


Drive c: (OS) (Fixed) (Total:917.52 GB) (Free:772.67 GB) NTFS

Drive e: (HP_RECOVERY) (Fixed) (Total:13.89 GB) (Free:1.72 GB) NTFS ==>[System with boot components (obtained from reading drive)]

Drive g: (FREECOM HDD) (Fixed) (Total:465.65 GB) (Free:394.89 GB) FAT32

Drive h: (STORE N GO) (Removable) (Total:3.77 GB) (Free:3.77 GB) FAT32

Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

Drive y: (SYSTEM) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System with boot components (obtained from reading drive)]


==================== MBR & Partition Table ==================


========================================================

Disk: 0 (Size: 932 GB) (Disk ID: 13F94CA2)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=918 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=14 GB) - (Type=07 NTFS)


========================================================

Disk: 1 (Size: 466 GB) (Disk ID: 000A324A)

Partition 1: (Not Active) - (Size=466 GB) - (Type=0C)


========================================================

Disk: 2 (MBR Code: Windows XP) (Size: 4 GB) (Disk ID: C3072E18)

Partition 1: (Active) - (Size=4 GB) - (Type=0B)


LastRegBack: 2013-10-06 06:24


==================== End Of Log ============================








via Bleeping Computer Last 20 Posts http://www.bleepingcomputer.com/forums/t/510580/stop-c0000135-the-program-cant-start-because-hs-is-missing-try-resintalling/

Aucun commentaire:

Enregistrer un commentaire