cjoint

Publicité


Publicité

Format du document : text/plain

Prévisualisation

ÿþOTL Extras logfile created on: 06/05/2015 21:14:22 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\ouine\Desktop
64bit- Professional (Version = 6.2.9200) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.17728)
Locale: 0000040c | Country: France | Language: FRA | Date Format: dd/MM/yyyy

4,00 Gb Total Physical Memory | 2,25 Gb Available Physical Memory | 56,40% Memory free
8,00 Gb Paging File | 6,01 Gb Available in Paging File | 75,22% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 256,59 Gb Free Space | 55,10% Space Free | Partition Type: NTFS
Drive D: | 298,09 Gb Total Space | 192,49 Gb Free Space | 64,58% Space Free | Partition Type: NTFS

Computer Name: ALEX-PC | User Name: ouine | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html[@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)
.url[@ = InternetShortcut] -- C:\WINDOWS\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\WINDOWS\SysWow64\control.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-789996440-3301068057-4012857233-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\OpenWith.exe "%1" (Microsoft Corporation)
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error.

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = AC 1C AE C5 46 9F CE 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = [binary data]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Upgrade]
"UpgradeTime" = Reg Error: Unknown registry data type -- File not found

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{031D6441-B754-4BB8-91D0-40A203B89585}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office15\outlook.exe |
"{2C1339FF-5D42-4573-A097-F1AC4AC24013}" = lport=48113 | protocol=6 | dir=in | name=maconfig_tcp |
"{310F4876-BD8F-4A9D-9EE9-C22651DC8BD0}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{3549F5C3-9AA9-4CF4-BC60-47C3877E2A5F}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{425A43EF-B37F-4D9E-8372-9D539E90848C}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{4C678BB3-BD28-4A88-979A-494A5BCA54CF}" = rport=2869 | protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{6577259F-96FC-444D-A611-99CD94C327B2}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{6F605E6E-B36B-483C-85D1-A68AB5B8CE3A}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe |
"{84A8A806-22BA-490E-B4A4-A097CA36AD6D}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{8FB60A44-15E2-49BE-B39E-E5A5EB8E1E03}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe |
"{905DDB1C-231E-4341-802D-32D6BCAE4FE4}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{9AF80C64-F8AF-42BD-8FED-43BFAE1173E7}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{9F153F16-A58E-49D3-976C-A9A58916AEBC}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A927572C-DCB8-4454-B47F-23C3C24EBD11}" = lport=10243 | protocol=6 | dir=in | app=system |
"{AA83AC12-0674-4C34-85A1-BFE81C7A93C1}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B2FC643B-5BCA-412E-AF5D-CAA6910CE16F}" = lport=48114 | protocol=6 | dir=in | name=maconfig_tcptls |
"{B3A06AB8-05BC-4BB2-86F0-2478927732BE}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{B4349501-DE58-4DCA-9030-6A167C46447B}" = lport=3702 | protocol=17 | dir=in | app=%systemroot%\system32\dashost.exe |
"{B4EDB5A0-5E07-4AEB-BDEC-D36B14470F3F}" = rport=10243 | protocol=6 | dir=out | app=system |
"{BB658D4B-D569-4E49-81C2-CDFC11918115}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{CA437310-7063-430C-B2B9-09074B1DC3A1}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CAF014FE-0BB1-4092-97B6-D41E29B04CC3}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{D9F1EF50-7F72-4238-A4CD-1AF295015A11}" = lport=2869 | protocol=6 | dir=in | app=system |
"{DF3398D8-5834-44E6-A1D7-D1200BD6FE23}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{E53AE658-1D4F-4C86-BCCA-85663485A969}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe |
"{E6CCAEBE-5FDE-4709-B1E1-9FE1E6801B3C}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F5B74131-ED71-4F79-8DD0-75ABA3A500CD}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{F7945C70-0E95-4F02-8080-2B999916FEC2}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03ECAD96-5770-464E-ABFC-AB3210419E82}" = protocol=17 | dir=in | app=c:\program files\kmspico\kmseldi.exe |
"{061BA016-AFCD-468B-85CE-6E9ABAF1254B}" = dir=in | name=bred |
"{0A3E5178-0F3E-4DFC-881A-09CCAE49DF1C}" = dir=out | name=@{microsoft.binghealthandfitness_3.0.4.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.binghealthandfitness/resources/apptitle} |
"{0A65AC69-9167-4C67-99CE-30855D963804}" = dir=in | name=streetview rush |
"{0CC413DF-FDCB-4CEF-90E9-751B891AA447}" = dir=out | name=@{microsoft.zunemusic_1.5.216.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{0DD799E8-1048-44BE-ADEC-C1881C83693D}" = protocol=17 | dir=in | app=c:\program files (x86)\smart technologies\smart product drivers\smartsnmpagent.exe |
"{0FD6787F-FC59-4746-A86E-46799329670B}" = dir=out | name=radios francaises |
"{10A0D818-57EA-4000-BE69-C3FC3B358971}" = protocol=6 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"{12337517-480D-459E-89C4-B66DB46F1C07}" = protocol=17 | dir=in | app=c:\program files\freemi upnp media server\freemi.windowsservice.exe |
"{154F57EB-3A30-4D7B-B8AC-F67A8E0006C6}" = dir=out | name=google search |
"{19826270-1C3D-42A6-B15E-704EF733C0C6}" = dir=out | name=alarm clock hd |
"{1BEC3925-E024-4AC3-8551-FC11DD739B18}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{1C526F95-CC33-4FF4-B5BE-A72353104CF3}" = protocol=6 | dir=in | app=c:\program files (x86)\smart technologies\smart product drivers\smartsnmpagent.exe |
"{1D3B5836-CD49-4E26-A7B3-0416EF663C0C}" = dir=out | name=@{solidappsgmbh.feiertageundschulferien_1.1.0.2_x64__71vdsmjkcyn38?ms-resource://solidappsgmbh.feiertageundschulferien/resources/appdisplayname} |
"{1F1BAFD8-9935-435F-9E6C-7D4DDA4828E7}" = dir=out | name=@{14c78905.trendmicromalwaremap_6.5.0.1049_x86__y1xsffnhj35f6?ms-resource://14c78905.trendmicromalwaremap/resources/productname} |
"{219B9D06-1D2B-4F33-8883-3C2857BA5F0D}" = dir=out | name=@{microsoft.remotedesktop_6.3.9600.16419_neutral__8wekyb3d8bbwe?ms-resource://microsoft.remotedesktop/resources/displayname} |
"{224B1EBD-F122-4332-8118-7928CC725CC2}" = dir=out | name=mes députés |
"{23933BF6-16D5-4BCB-90D4-F68E41898095}" = dir=in | name=@{14c78905.trendmicromalwaremap_6.5.0.1049_x86__y1xsffnhj35f6?ms-resource://14c78905.trendmicromalwaremap/resources/productname} |
"{263044AE-CAF0-48F8-9521-D215C3C1BF29}" = dir=out | name=sonicwall mobile connect |
"{292D3D62-CA24-467B-8519-03CF42BDEFB7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{2B3BB913-9BA5-4EBE-B88E-E700BBAA918B}" = dir=in | name=f5 vpn |
"{2D1A0309-A904-4E9F-B875-7B3B37D0BBE1}" = dir=out | name=instant tv |
"{2D90BF80-7063-4F19-9340-BBE9677A19CF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{2E381BE3-6DC7-4A25-8117-D214A0CC1F1A}" = protocol=6 | dir=in | app=c:\program files\freemi upnp media server\freemi.windowsservice.exe |
"{343C7846-1CA2-483E-9950-AE276E906E23}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{34EDB451-17C5-47D4-84A2-E49482B8CF6B}" = dir=in | name=geogebra |
"{35E6CA4E-DD54-48A6-9D2A-C1F21FA83F20}" = protocol=17 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"{3B2CFB5B-75B1-43E6-877B-1B84B5E3349A}" = dir=out | name=nuit étoilée |
"{3D58BCFF-0F34-4F05-A640-C19F96784CD7}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{3DDA1022-8A11-4790-8DD7-EC1C16202682}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{3F261CFD-4CB3-4856-8565-6B8E71F8B9B8}" = dir=out | name=@{14c78905.trendmicrogoeverywhere_6.0.0.2170_neutral__y1xsffnhj35f6?ms-resource://14c78905.trendmicrogoeverywhere/resources/common_appname} |
"{417DB684-5242-401C-8E21-66B802784484}" = protocol=6 | dir=in | app=c:\program files\kmspico\kmseldi.exe |
"{4186E1CF-3AAC-48E0-98A7-CA39C166D029}" = protocol=17 | dir=in | app=c:\program files\ma-config.com\maconfigagent.exe |
"{4282FE99-8560-4BC7-9576-5F3ED84E263F}" = dir=in | name=checkpoint.vpn |
"{43379214-6FF1-44F3-9861-26F6C16454EB}" = dir=out | name=météo-france |
"{44CDD7CC-2015-4EEA-A481-4035CB931C16}" = dir=in | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{450C0918-4974-4F6D-A055-2725B87AF124}" = dir=in | name=@{microsoft.remotedesktop_6.3.9600.16419_neutral__8wekyb3d8bbwe?ms-resource://microsoft.remotedesktop/resources/displayname} |
"{4F5A4DE4-133B-415D-8D4D-6DD5C5A37BCA}" = dir=out | name=toolbox for windows 8 |
"{4F6267EB-728A-46C3-A59E-D352BD2D5201}" = protocol=17 | dir=in | app=c:\users\ouine\appdata\roaming\utorrent\utorrent.exe |
"{50DCFA81-8EB1-4ACE-A013-5A4AA76A2E4D}" = dir=out | name=@{microsoft.bingtravel_3.0.4.309_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/brandedapptitle} |
"{51245FF1-C095-438B-8603-57B486E0961C}" = dir=out | name=@{microsoft.bingfoodanddrink_3.0.4.313_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfoodanddrink/resources/apptitlewithbranding} |
"{538016D4-24E7-441D-98AC-292DC2AA13EB}" = protocol=17 | dir=in | app=c:\windows\system32\lxducoms.exe |
"{548DCF8C-BFF2-4BA4-AA88-FBAF9AC8BCC6}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{560448D6-095C-4907-B046-AC7F710701A7}" = dir=in | name=sonicwall.mobileconnect |
"{577A99FE-15B8-4063-9B08-6AD3EB7220A9}" = dir=out | name=télé-loisirs programme tv |
"{589596FF-D917-4B47-B6A9-CE6B1BEC8A91}" = protocol=6 | dir=in | app=c:\program files\kmspico\kmseldi.exe |
"{59B54C17-BFE1-4A57-8EC8-5472913A1274}" = dir=in | name=météo-france |
"{5C828095-8D06-4C3D-BCD1-DB1B5220C172}" = dir=out | name=@{mcnext.jaifaim_1.2.1.4_neutral__ptt4xv5hcsz3a?ms-resource://mcnext.jaifaim/resources/app_displayname} |
"{5D0EC95D-4F20-4914-AFB4-BBBA98D98E30}" = dir=in | name=skype |
"{5D5DBE4F-AAF2-4E5F-A3EC-005E8CBEFC01}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{5D83344A-69D4-4C33-BA98-8865692478E0}" = dir=out | name=@{microsoft.bingnews_3.0.4.268_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/brandedapptitle} |
"{5F4632C0-D5B1-40C3-B0D9-E3A759C81B9E}" = dir=out | name=sonicwall.mobileconnect |
"{608E9712-4EC4-45F3-8A32-900A0C54E1E3}" = protocol=17 | dir=in | app=c:\program files\kmspico\kmseldi.exe |
"{6293A17C-D0B5-41AC-9909-0B85ADF71083}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{62A75FF1-23DF-49EE-A9D5-FE12F4681904}" = dir=out | name=geogebra |
"{6995A3AB-1AFF-4F29-B355-34C38EEF0C0E}" = dir=out | name=juniper networks junos pulse |
"{6A96261B-B0C4-43C1-B29E-B9439825E61B}" = dir=out | name=@{microsoft.xboxlivegames_1.3.10.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{6B7F62FC-F785-4030-939C-5E507274331F}" = dir=out | name=windows_ie_ac_001 |
"{6BCA2216-B9D4-4ECF-8575-1C99528F3918}" = dir=out | name=appbar |
"{6D22466A-75D8-41E0-9B88-2067755051AF}" = dir=out | name=@{microsoft.bingsports_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingsports/resources/brandedapptitle} |
"{6EAE40EF-B140-41B5-AD04-C8479F1F4392}" = dir=out | name=@{microsoft.xboxlivegames_2.0.139.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.xboxlivegames/resources/34150} |
"{708A56BE-F5D8-46DF-A9B1-BB6435CCDF11}" = dir=out | name=@{microsoft.bingtravel_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtravel/resources/apptitle} |
"{73E5196C-C4BC-4E11-99D1-AEEEEDEC09F8}" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{7D2C688D-3A76-4398-9D07-B58568F4658D}" = protocol=6 | dir=in | app=c:\program files\ma-config.com\maconfigagent.exe |
"{7D630E48-7E06-45E3-85FD-2E35B2CCA4A9}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{801024C0-4164-4F6E-B922-A4BCC86FD437}" = dir=in | name=francetv pluzz |
"{808F1451-4108-46FD-ADBB-F17324B5F0BD}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{80A27E19-95FE-4F08-BA91-51FEED52747F}" = protocol=17 | dir=in | app=c:\program files\freemi upnp media server\freemi upnp media server.exe |
"{81152F69-1188-4B91-A61A-4B540413E8D2}" = dir=out | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{8228FB14-0839-4F8D-88E2-30402C55FECA}" = dir=out | name=@{microsoft.zunevideo_2.6.440.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{839E756F-520A-461B-8F31-6D6E84A24990}" = protocol=6 | dir=in | app=c:\program files (x86)\smart technologies\smart product drivers\ucgui.exe |
"{860158F5-48E1-45E5-85C7-72A2CE1CB705}" = dir=out | name=gosail ireland |
"{86B94227-C176-4A48-9679-7D814E394D39}" = protocol=6 | dir=in | app=c:\program files\freemi upnp media server\freemi upnp media server.exe |
"{8888027D-EC46-4809-B78A-EBA90000D1A9}" = dir=out | name=nasa news now |
"{8A0965D9-9FC3-4090-9D99-396C9471942D}" = dir=out | name=@{microsoft.bingweather_2.0.0.310_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/apptitle} |
"{8FC8B211-A3B8-455C-B461-A46B8A2BBA6C}" = protocol=6 | dir=in | app=c:\users\ouine\appdata\roaming\utorrent\utorrent.exe |
"{93912F41-E5BF-40B3-B3F3-D94F3DBD1CCF}" = dir=in | name=voice record |
"{95A7F103-40C8-46B5-9F82-567CEA275AAC}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{95A80D8A-A700-4696-A7BF-02276958B0A5}" = dir=out | name=windows_ie_ac_001 |
"{98524F9A-9843-4527-A256-C2194BA88BFF}" = dir=out | name=@{microsoft.bingweather_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingweather/resources/brandedapptitle} |
"{9A520FF1-7BB7-4411-99A1-7AF16E346F53}" = dir=out | name=bred |
"{9C3AB44E-9577-4DCD-A5DC-4389405FDADA}" = dir=out | name=@{microsoft.bingtranslator_1.12.0.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingtranslator/resources/appname} |
"{9C92CD40-36E6-4B07-9990-C7147A1220C5}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{9DAE5EB4-A01E-4D9C-B692-472726E7A424}" = dir=in | name=@{14c78905.directpass_1.2.0.1037_x86__y1xsffnhj35f6?ms-resource://14c78905.directpass/resources/productname} |
"{9E3D57FC-7C37-4424-9352-4831E97D029D}" = dir=out | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{A167A8AE-2F05-465D-9FB3-06880E6D545B}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{A3568BE8-9E42-4737-AE05-32306F9E6CAF}" = protocol=6 | dir=out | app=system |
"{A599D0B3-E57A-4611-A0ED-0F0F5D431FD3}" = protocol=17 | dir=in | app=c:\program files (x86)\smart technologies\smart product drivers\ucservice.exe |
"{A73890CA-23AB-48BC-AB75-3206174B570E}" = dir=out | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{A794B420-E4A9-492B-B287-ADACACEAE647}" = dir=in | name=check point vpn |
"{A7B1E4D9-C714-49BD-9951-3C0B8374A9FC}" = dir=out | name=voice record |
"{A878A5F3-B387-49E4-88D4-1C64E4748948}" = dir=out | name=trucs et astuces sur windows 8.1 |
"{A90B6BD6-BBA0-4BD0-A14E-34AC980D402E}" = dir=out | name=bred |
"{A90FB6B2-1CC2-4D1B-89E9-83E1934446BF}" = dir=out | name=@{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{ACF18C0E-7D3A-4643-92AF-F0CEAF5283CB}" = dir=out | name=@{microsoft.zunevideo_1.5.338.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunevideo/resources/ids_manifest_video_app_name} |
"{AEC2678C-D392-4D76-A984-CF5FBE1186EF}" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"{AF6AC403-E275-4813-B809-524E3384C216}" = dir=out | name=@{microsoft.zunemusic_2.6.672.0_x64__8wekyb3d8bbwe?ms-resource://microsoft.zunemusic/resources/ids_manifest_music_app_name} |
"{B184086B-AAB1-4B71-85A3-BC5E258AD745}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{B1E9B4B1-B49E-4366-B126-2E9F39C4723A}" = dir=in | name=juniper networks junos pulse |
"{BD3C62F5-3C46-4A66-8934-312F223F59D9}" = dir=out | name=wikipedia |
"{BD7767B7-71D6-4301-84A7-7EDF5499F764}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{BD798C0E-49AE-46D2-BC78-7079D414733B}" = dir=out | name=dropbox |
"{BF66E373-782F-4FF1-9BBD-9F82AF306E2C}" = dir=out | name=streetview rush |
"{BFB620A4-5697-44C1-8C57-446101A5B327}" = dir=out | name=photowindow |
"{C2EE77C0-6369-4F65-AD3E-0E6FD3BABF09}" = dir=out | name=shipvault |
"{C5237F40-0751-488A-899B-A4B73DBB773C}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{C57F606C-BA9E-437A-BF84-E40038AFF192}" = dir=in | name=@{14c78905.trendmicrosafeguard_6.0.0.2209_neutral__y1xsffnhj35f6?ms-resource://14c78905.trendmicrosafeguard/resources/productname} |
"{C8C8BEC6-850C-4524-8C43-327F743D4B48}" = dir=in | name=@{microsoft.reader_6.2.9200.20780_x64__8wekyb3d8bbwe?ms-resource://microsoft.reader/resources/shortdisplayname} |
"{CB1E83CB-D30A-41A6-B90B-79EEDF7E5392}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CD2405A5-9D33-4B0F-84B8-FCD8A07EF00F}" = dir=out | name=skype |
"{CDF8AB59-F61C-46E1-83D8-E8B641DA89D6}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\ucmapi.exe |
"{D06DAE20-ADA1-4221-B2AA-79F85C2433C4}" = protocol=17 | dir=in | app=c:\program files (x86)\smart technologies\smart product drivers\ucgui.exe |
"{D0DB4699-FEFF-4CEC-BAFB-FD1039A46901}" = dir=out | name=@{microsoft.bingmaps_1.6.1821.2624_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{D19AC319-C83B-48EA-9796-58A4422B6A8C}" = dir=out | name=francetv pluzz |
"{D25E695B-526A-49EF-8E89-CB49BC1C4EE0}" = dir=out | name=f5 vpn |
"{D561066E-C96B-4D38-9E77-54F39A9A4323}" = dir=out | name=@{14c78905.directpass_1.2.0.1037_x86__y1xsffnhj35f6?ms-resource://14c78905.directpass/resources/productname} |
"{D5AC8EE3-ACAD-4004-904A-A136E92DB6EF}" = dir=out | name=bred |
"{D6145CB1-03B6-44CE-882F-576E300D1062}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D6980480-941A-4DF6-AB81-3734ECD3D779}" = dir=out | name=junipernetworks.junospulsevpn |
"{D8659D46-B299-413B-B3F3-0A29DABDE03F}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D8CD57D5-5199-4999-AA8C-E5B18B094360}" = dir=out | name=@{browserchoice_6.2.0.0_neutral_neutral_cw5n1h2txyewy?ms-resource://browserchoice/resources/displayname} |
"{DA4D3130-AA45-4204-9480-2ED3BB09EFAF}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{DA9DF8D3-F544-4A0E-B247-189949CBE618}" = dir=in | name=@{microsoft.windowsreadinglist_6.3.9654.20540_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowsreadinglist/resources/apppackagename} |
"{DB59588E-ED90-4C47-A7B5-7929DD0C0BD2}" = dir=out | name=checkpoint.vpn |
"{DBCFE4B0-A54C-45F8-B451-56E5B5D974C9}" = dir=out | name=check point vpn |
"{DBED35A2-C762-4B31-88FD-33C5E6ED6DD7}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office15\lync.exe |
"{DC701A82-B659-4AFD-B06F-3172D9A21C80}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe |
"{DCC5BDCF-3BF4-4203-A97E-68457FB6F5B4}" = dir=in | name=sonicwall mobile connect |
"{DD466092-F8BB-43DC-9126-D9689359ED9F}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{DF084F2D-514F-42D9-823A-F2C0AC24F359}" = dir=in | name=bred |
"{E3E673C8-81CC-4ABD-B2FC-9789AD2C50F2}" = protocol=6 | dir=in | app=c:\program files (x86)\smart technologies\smart product drivers\ucservice.exe |
"{E54814E4-719B-4061-805F-4E3329FBC583}" = protocol=6 | dir=in | app=c:\windows\system32\lxducoms.exe |
"{E7985E1D-C36F-4787-80A8-6350D07E9266}" = dir=in | name=@{c:\windows\winstore\resources.pri?ms-resource://winstore/resources/displayname} |
"{E9929D70-0A86-4E7C-B215-0649EC29CB45}" = dir=out | name=@{microsoft.bingmaps_2.1.3230.2048_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingmaps/resources/appdisplayname} |
"{EC799E33-72BA-42D7-9127-DEFE68F9799D}" = dir=in | name=junipernetworks.junospulsevpn |
"{F138B07A-60D8-4CF4-9935-DF0E99D94B9F}" = dir=out | name=deezer |
"{F4A8078E-43A1-43F5-B6A9-91468045C36A}" = dir=out | name=@{microsoft.bingnews_2.0.0.308_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingnews/resources/news} |
"{F64300AD-D559-4000-BD45-0997BCC8E70A}" = dir=out | name=f5.vpn.client |
"{F7762C9E-ADC4-4281-A88F-7686A4142819}" = dir=out | name=@{microsoft.bingfinance_3.0.4.298_x64__8wekyb3d8bbwe?ms-resource://microsoft.bingfinance/resources/brandedapptitle} |
"{F77E5446-4378-4E99-8B7A-7061AAAEA193}" = dir=in | name=f5.vpn.client |
"{F89CA9BB-5E7E-4237-B1D3-016ECEE4CF3B}" = dir=in | name=@{microsoft.windowscommunicationsapps_17.0.1119.516_x64__8wekyb3d8bbwe?ms-resource://microsoft.windowscommunicationsapps/resources/communicationspackagename} |
"{FDC7D2F9-922D-4F0B-9B62-317ABE68D9D1}" = dir=out | name=@{14c78905.trendmicrosafeguard_6.0.0.2209_neutral__y1xsffnhj35f6?ms-resource://14c78905.trendmicrosafeguard/resources/productname} |
"TCP Query User{011D9A09-765C-4176-BF4D-7BA460A7833C}C:\awroot\bin\mmi\wstransformer\wstransformer.exe" = protocol=6 | dir=in | app=c:\awroot\bin\mmi\wstransformer\wstransformer.exe |
"TCP Query User{05113F5A-F396-43AC-98AB-82736213DB70}C:\program files (x86)\western digital\wd discovery\wddiscovery.exe" = protocol=6 | dir=in | app=c:\program files (x86)\western digital\wd discovery\wddiscovery.exe |
"TCP Query User{08378D32-FED8-4A6F-A2B6-84A650B184A0}C:\program files (x86)\ubisoft\rayman origins\rayman origins.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\rayman origins\rayman origins.exe |
"TCP Query User{2945589A-A953-4DF4-942B-AFFF41A45DDF}C:\program files (x86)\rarmaradio\rarmaradio.exe" = protocol=6 | dir=in | app=c:\program files (x86)\rarmaradio\rarmaradio.exe |
"TCP Query User{3199F9B8-0010-4653-9AB7-C5C1238265CD}C:\app\ddc\opt\apache\bin\httpd_ddc.exe" = protocol=6 | dir=in | app=c:\app\ddc\opt\apache\bin\httpd_ddc.exe |
"TCP Query User{3223D18E-9659-44FA-A55A-16092ADFCBA4}C:\awroot\bin\common\mcc\mccomm.exe" = protocol=6 | dir=in | app=c:\awroot\bin\common\mcc\mccomm.exe |
"TCP Query User{455294E0-28CB-4D6D-A48A-85B4407C1DAE}C:\program files\freemi upnp media server\freemi upnp media server.exe" = protocol=6 | dir=in | app=c:\program files\freemi upnp media server\freemi upnp media server.exe |
"TCP Query User{5A851833-DEE5-4062-A86E-C395E2FF62D2}C:\app\ddc\bin\ddcecureader.exe" = protocol=6 | dir=in | app=c:\app\ddc\bin\ddcecureader.exe |
"TCP Query User{6EFCF5BA-011C-4B07-A7A9-E7A17FEB53F7}C:\program files (x86)\qbittorrent\qbittorrent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"TCP Query User{7222BFBE-7221-4D10-8FE2-F3B3F2011297}C:\awroot\bin\common\rcmd\awrcmd.exe" = protocol=6 | dir=in | app=c:\awroot\bin\common\rcmd\awrcmd.exe |
"TCP Query User{74BE8628-CDEF-438F-9742-590FF9AE04F1}C:\program files (x86)\western digital\wd discovery\wddiscovery.exe" = protocol=6 | dir=in | app=c:\program files (x86)\western digital\wd discovery\wddiscovery.exe |
"TCP Query User{75101581-1E16-4876-87FF-D250EFA944FA}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=6 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"TCP Query User{7D62E823-BC51-4886-BE04-6EBC8EFCF316}C:\app\ddc\bin\dccfsmrunner.exe" = protocol=6 | dir=in | app=c:\app\ddc\bin\dccfsmrunner.exe |
"TCP Query User{A23F707D-3812-4B4F-9053-BA9916A387A0}D:\office 2013\office 2013 + kms\kmsmicro v3.10\qemu\qemu.exe" = protocol=6 | dir=in | app=d:\office 2013\office 2013 + kms\kmsmicro v3.10\qemu\qemu.exe |
"TCP Query User{BC8C4BB1-D93A-4A44-A5FC-24B1CAE74C1F}C:\awroot\bin\common\rsvr\awrsrv.exe" = protocol=6 | dir=in | app=c:\awroot\bin\common\rsvr\awrsrv.exe |
"TCP Query User{C2855DC4-7524-4228-A477-1E4611B4EDE0}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"TCP Query User{C3DA20E4-BD71-413C-9A47-98BFB0B0EA25}C:\app\ediag\importedj9\jre\bin\j9w.exe" = protocol=6 | dir=in | app=c:\app\ediag\importedj9\jre\bin\j9w.exe |
"TCP Query User{D734E23F-BB07-4EBE-9142-09F03005BEC8}C:\users\ouine\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\ouine\appdata\roaming\dropbox\bin\dropbox.exe |
"TCP Query User{E1444758-DD85-456B-95D1-AD596D142064}C:\awroot\bin\common\rasrv\awacsserver.exe" = protocol=6 | dir=in | app=c:\awroot\bin\common\rasrv\awacsserver.exe |
"TCP Query User{E6D5D371-1B0D-4674-860F-298BEC4C1FEE}C:\awroot\bin\fi\awfinterpreter_vc80.exe" = protocol=6 | dir=in | app=c:\awroot\bin\fi\awfinterpreter_vc80.exe |
"TCP Query User{FC0D367D-7E40-4ED4-BCA0-F61A4C76FAC5}C:\awroot\bin\mmi\diagnostic.exe" = protocol=6 | dir=in | app=c:\awroot\bin\mmi\diagnostic.exe |
"UDP Query User{068C96AB-6D9D-4651-A1CF-530AA5D8684F}C:\app\ddc\bin\ddcecureader.exe" = protocol=17 | dir=in | app=c:\app\ddc\bin\ddcecureader.exe |
"UDP Query User{0B0432B0-2B47-43DA-9B5A-AF4722A26589}C:\program files\freemi upnp media server\freemi upnp media server.exe" = protocol=17 | dir=in | app=c:\program files\freemi upnp media server\freemi upnp media server.exe |
"UDP Query User{227E6D3A-9C94-4998-930B-6FD33D660B5F}C:\program files (x86)\qbittorrent\qbittorrent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\qbittorrent\qbittorrent.exe |
"UDP Query User{24D7CE93-2DA0-4318-A2C0-5850470A00DB}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe" = protocol=17 | dir=in | app=c:\windows\microsoft.net\framework\v2.0.50727\vbc.exe |
"UDP Query User{2D591FB6-8C5E-4D84-9DCB-01B36A88F791}C:\program files (x86)\western digital\wd discovery\wddiscovery.exe" = protocol=17 | dir=in | app=c:\program files (x86)\western digital\wd discovery\wddiscovery.exe |
"UDP Query User{2FB28CC0-2458-4918-84B6-DCF9B769E8B8}C:\program files (x86)\rarmaradio\rarmaradio.exe" = protocol=17 | dir=in | app=c:\program files (x86)\rarmaradio\rarmaradio.exe |
"UDP Query User{3FE4C8BD-AE31-4238-9A4A-8DCE089A8520}C:\users\ouine\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\ouine\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{4A2376BE-85A0-45F1-A0E1-3CA4E711EAED}C:\awroot\bin\mmi\diagnostic.exe" = protocol=17 | dir=in | app=c:\awroot\bin\mmi\diagnostic.exe |
"UDP Query User{5FD0D3AF-38C7-4421-AE25-674557684B63}D:\office 2013\office 2013 + kms\kmsmicro v3.10\qemu\qemu.exe" = protocol=17 | dir=in | app=d:\office 2013\office 2013 + kms\kmsmicro v3.10\qemu\qemu.exe |
"UDP Query User{7254F85A-13F7-4D10-A429-11A33A89AD7F}C:\program files (x86)\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files (x86)\mozilla firefox\firefox.exe |
"UDP Query User{97075F44-5415-45FF-BC5F-AC13A6473449}C:\app\ddc\bin\dccfsmrunner.exe" = protocol=17 | dir=in | app=c:\app\ddc\bin\dccfsmrunner.exe |
"UDP Query User{9810819C-7B4E-49BF-944D-651D3E532CE6}C:\awroot\bin\common\rcmd\awrcmd.exe" = protocol=17 | dir=in | app=c:\awroot\bin\common\rcmd\awrcmd.exe |
"UDP Query User{98DD9CC7-28D6-4D0A-B09B-DAB81376D199}C:\awroot\bin\common\rasrv\awacsserver.exe" = protocol=17 | dir=in | app=c:\awroot\bin\common\rasrv\awacsserver.exe |
"UDP Query User{A00ACEA5-BA25-479A-9E4D-4926EF8C63C1}C:\awroot\bin\fi\awfinterpreter_vc80.exe" = protocol=17 | dir=in | app=c:\awroot\bin\fi\awfinterpreter_vc80.exe |
"UDP Query User{A32CAC14-5DD7-4F36-AF69-B1DCB2CFAD04}C:\awroot\bin\common\rsvr\awrsrv.exe" = protocol=17 | dir=in | app=c:\awroot\bin\common\rsvr\awrsrv.exe |
"UDP Query User{A73BDC49-7403-49D8-8E3D-A1E033EDA807}C:\program files (x86)\western digital\wd discovery\wddiscovery.exe" = protocol=17 | dir=in | app=c:\program files (x86)\western digital\wd discovery\wddiscovery.exe |
"UDP Query User{A847D3BE-CB55-447D-AC98-AE726D3A4A8F}C:\app\ediag\importedj9\jre\bin\j9w.exe" = protocol=17 | dir=in | app=c:\app\ediag\importedj9\jre\bin\j9w.exe |
"UDP Query User{DFEFCDF0-7654-40DA-B123-E943BEC9422C}C:\app\ddc\opt\apache\bin\httpd_ddc.exe" = protocol=17 | dir=in | app=c:\app\ddc\opt\apache\bin\httpd_ddc.exe |
"UDP Query User{EE6B54D3-3E97-418A-B70C-7A948B3A352B}C:\awroot\bin\common\mcc\mccomm.exe" = protocol=17 | dir=in | app=c:\awroot\bin\common\mcc\mccomm.exe |
"UDP Query User{F2C71B0B-2627-4BA7-93E0-81BFC4EDF714}C:\program files (x86)\ubisoft\rayman origins\rayman origins.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\rayman origins\rayman origins.exe |
"UDP Query User{FEC0FC1E-DFFE-46AF-8F8A-1F2BB63C53D2}C:\awroot\bin\mmi\wstransformer\wstransformer.exe" = protocol=17 | dir=in | app=c:\awroot\bin\mmi\wstransformer\wstransformer.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0DA20600-6130-443B-9D4B-F30520315FA6}" = Services d impression Bonjour
"{19D411B5-350C-4DEA-BCA3-9E7B632A642D}" = Ma-Config.com (64 bits)
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{3082756C-2147-411F-AE6A-9DCEF0121903}" = WD My Cloud
"{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1" = Revo Uninstaller Pro 3.0.8
"{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour
"{709A2D23-C25E-47B5-9268-CB6FEE648504}" = iCloud
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D0A0EC6-9A3C-354F-9BFC-A61E96BE1846}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA
"{90150000-0015-040C-1000-0000000FF1CE}" = Microsoft Access MUI (French) 2013
"{90150000-0016-040C-1000-0000000FF1CE}" = Microsoft Excel MUI (French) 2013
"{90150000-0018-040C-1000-0000000FF1CE}" = Microsoft PowerPoint MUI (French) 2013
"{90150000-0019-040C-1000-0000000FF1CE}" = Microsoft Publisher MUI (French) 2013
"{90150000-001A-040C-1000-0000000FF1CE}" = Microsoft Outlook MUI (French) 2013
"{90150000-001B-040C-1000-0000000FF1CE}" = Microsoft Word MUI (French) 2013
"{90150000-001F-0401-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - 'DD:) 'D91(J)
"{90150000-001F-0407-1000-0000000FF1CE}" = Microsoft Office Korrekturhilfen 2013 - Deutsch
"{90150000-001F-0409-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - English
"{90150000-001F-040C-1000-0000000FF1CE}" = Outils de vérification linguistique 2013 de Microsoft Office - Français
"{90150000-001F-0413-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Nederlands
"{90150000-001F-0C0A-1000-0000000FF1CE}" = Microsoft Office Proofing Tools 2013 - Español
"{90150000-002C-040C-1000-0000000FF1CE}" = Microsoft Office Proofing (French) 2013
"{90150000-0044-040C-1000-0000000FF1CE}" = Microsoft InfoPath MUI (French) 2013
"{90150000-006E-040C-1000-0000000FF1CE}" = Microsoft Office Shared MUI (French) 2013
"{90150000-0090-040C-1000-0000000FF1CE}" = Microsoft DCF MUI (French) 2013
"{90150000-00A1-040C-1000-0000000FF1CE}" = Microsoft OneNote MUI (French) 2013
"{90150000-00BA-040C-1000-0000000FF1CE}" = Microsoft Groove MUI (French) 2013
"{90150000-00C1-0000-1000-0000000FF1CE}" = Microsoft Office 32-bit Components 2013
"{90150000-00C1-040C-1000-0000000FF1CE}" = Microsoft Office Shared 32-bit MUI (French) 2013
"{90150000-00E1-040C-1000-0000000FF1CE}" = Microsoft Office OSM MUI (French) 2013
"{90150000-00E2-040C-1000-0000000FF1CE}" = Microsoft Office OSM UX MUI (French) 2013
"{90150000-012B-040C-1000-0000000FF1CE}" = Microsoft Lync MUI (French) 2013
"{91150000-0011-0000-1000-0000000FF1CE}" = Microsoft Office Professional Plus 2013
"{93F2A022-6C37-48B8-B241-FFABD9F60C30}" = iTunes
"{9495AEB4-AB97-39DE-8C42-806EEF75ECA7}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{95E349C8-E8FC-464D-8A70-C5017F48D8E3}" = Update for Microsoft en-us Dictionary
"{ABBD4BA8-6703-40D2-AB1E-5BB1F7DB49A4}" = Trend Micro Titanium Internet Security
"{ABBD4BA9-6703-40D2-AB1E-5BB1F7DB49A4}" = Trend Micro Titanium
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Pilote 3D Vision 341.44
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panneau de configuration NVIDIA 341.44
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Pilote graphique 341.44
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.1.2
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Logiciel système PhysX 9.13.1220
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Mises à jour NVIDIA 16.13.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Pilote audio HD : 1.3.30.1
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 16.13.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.25
"{C4123106-B685-48E6-B9BD-E4F911841EB4}" = Apple Mobile Device Support
"{D7B824DE-DA32-4772-9E5E-39C5158136A7}" = Apple Application Support (64 bits)
"{EF57D552-244A-401F-A23B-74685718601F}" = WD SmartWare
"06330AEC489EF74CA815EB51EB0BFB271730A066" = Package de pilotes Windows - ACTIA Automotive ACTIA USB Devices Driver Installation Media (06/16/2010 1.00.00)
"CCleaner" = CCleaner
"CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFAOR2C06_118" = HDAUDIO Soft Data Fax Modem with SmartCP
"EPSON Printer and Utilities" = EPSON Printer Software
"FreeMi UPnP Media Server" = FreeMi UPnP Media Server
"KMSpico_is1" = KMSpico v9.1.0.20131125 (Beta)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - FRA" = Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x64) - FRA
"Office15.PROPLUSR" = Microsoft Office Professionnel Plus 2013
"WinRAR archiver" = WinRAR 4.00 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{08D2E121-7F6A-43EB-97FD-629B44903403}" = Microsoft_VC90_CRT_x86
"{09764316-ABC4-4469-AD5B-D3EACE45EE3D}" = Drivers For Free
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}" = Microsoft ASP.NET MVC 4 Runtime
"{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}" = Google Earth
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{647175e1-9944-4a82-bac1-102c95f0a99a}" = WD SmartWare Installer
"{6C36881B-0E51-4231-9D02-BF2149664D34}" = Google Drive
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{80407BA7-7763-4395-AB98-5233F1B34E65}" = NVIDIA PhysX
"{91057632-CA70-413C-B628-2D3CDBBB906B}" = Macromedia Flash Player 8 Plugin
"{92D58719-BBC1-4CC3-A08B-56C9E884CC2C}" = Microsoft_VC80_CRT_x86
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A80AE043-EF68-4B64-9C6F-088405FED315}" = WD Discovery
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-0804-1033-1959-001802114130}" = Adobe Refresh Manager
"{AC76BA86-7AD7-1036-7B44-AB0000000001}" = Adobe Reader XI (11.0.10) - Français
"{AF37176A-78CA-545B-34EF-8B6A21514DD1}" = Adobe Help Manager
"{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}" = Apple Application Support (32 bits)
"{EDBCC917-ADE2-4470-83F1-D0A233D9495C}" = WD Quick View
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F1100000-0008-0000-0001-074957833700}" = ABBYY FineReader 11
"{FE23D063-934D-4829-A0D8-00634CE79B4A}" = Adobe AIR
"Adobe AIR" = Adobe AIR
"Adobe Flash Player NPAPI" = Adobe Flash Player 17 NPAPI
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"Arsenal of Democracy_is1" = Arsenal of Democracy
"chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Adobe Help Manager
"DiagBox Update V7.02 to V7.06 V7.02" = DiagBox Update V7.02 to V7.06 V7.02
"DiagBox Update V7.06 to V7.07 V7.07" = DiagBox Update V7.06 to V7.07 V7.07
"iColorFolder" = iColorFolder
"iFunbox_is1" = iFunbox (v2.95.2610.819), iFunbox DevTeam
"LinuxLive USB Creator" = LinuxLive USB Creator
"Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware version 2.0.4.1028
"Mon grand Imagier, Père Castor" = Mon grand Imagier, Père Castor
"Mozilla Firefox 37.0.2 (x86 fr)" = Mozilla Firefox 37.0.2 (x86 fr)
"Mozilla Thunderbird 31.6.0 (x86 fr)" = Mozilla Thunderbird 31.6.0 (x86 fr)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver
"qBittorrent" = qBittorrent 3.1.12
"Questy" = Questy 3.3
"VirtualCloneDrive" = VirtualCloneDrive
"VLC media player" = VLC media player
"WinRAR archiver" = WinRAR 5.01 (32-bit)

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-789996440-3301068057-4012857233-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Ccleaner Business Edition x64 x86 Tom_Da_Man" = Ccleaner Business Edition x64 x86 Tom_Da_Man

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 05/05/2015 02:26:26 | Computer Name = Alex-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 2125

Error - 05/05/2015 02:26:26 | Computer Name = Alex-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 2125

Error - 05/05/2015 06:24:28 | Computer Name = Alex-PC | Source = Application Error | ID = 1000
Description = Nom de l application défaillante iFunBox_x64.exe, version : 2.95.2610.819,
horodatage : 0x552aec36 Nom du module défaillant : iFunBox_x64.exe, version : 2.95.2610.819,
horodatage : 0x552aec36 Code d exception : 0xc000041d Décalage d erreur : 0x000000000048c358
ID
du processus défaillant : 0x1530 Heure de début de l application défaillante : 0x01d086f8b20c5ec3
Chemin
d accès de l application défaillante : C:\Program Files (x86)\i-Funbox DevTeam\iFunBox_x64.exe
Chemin
d accès du module défaillant: C:\Program Files (x86)\i-Funbox DevTeam\iFunBox_x64.exe
ID
de rapport : e8a8a015-f310-11e4-bfc2-00262d5c8e3d Nom complet du package défaillant :
ID de l application relative au package défaillant :

Error - 06/05/2015 10:47:54 | Computer Name = Alex-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Échec de l activation de l application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1
avec l erreur : -2144927141 Pour plus d informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error - 06/05/2015 10:47:54 | Computer Name = Alex-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Échec de l activation de l application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1
avec l erreur : -2144927141 Pour plus d informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error - 06/05/2015 10:47:54 | Computer Name = Alex-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Échec de l activation de l application microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1
avec l erreur : -2144927141 Pour plus d informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error - 06/05/2015 10:47:54 | Computer Name = Alex-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Échec de l activation de l application Microsoft.SkypeApp_kzf8qxf38zg5c!App
avec l erreur : -2144927141 Pour plus d informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error - 06/05/2015 10:47:54 | Computer Name = Alex-PC | Source = Microsoft-Windows-Immersive-Shell | ID = 5973
Description = Échec de l activation de l application METEOFRANCE.Mto-France_x15hyjpa1740a!App
avec l erreur : -2144927141 Pour plus d informations, voir le journal Microsoft-Windows-TWinUI/Opérationnel.

Error - 06/05/2015 13:33:36 | Computer Name = Alex-PC | Source = Application Error | ID = 1000
Description = Nom de l application défaillante coreServiceShell.exe, version : 2.5.0.1331,
horodatage : 0x50000315 Nom du module défaillant : rabbitmq.1.dll, version : 0.0.0.0,
horodatage : 0x5124fa1b Code d exception : 0xc0000005 Décalage d erreur : 0x0000000000018c33
ID
du processus défaillant : 0x1418 Heure de début de l application défaillante : 0x01d08822c03cdc11
Chemin
d accès de l application défaillante : C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
Chemin
d accès du module défaillant: C:\Program Files\Trend Micro\Titanium\plugin\rabbitmq.1.dll
ID
de rapport : 05d5d266-f416-11e4-bfc4-00262d5c8e3d Nom complet du package défaillant :
ID de l application relative au package défaillant :

Error - 06/05/2015 15:28:38 | Computer Name = Alex-PC | Source = Application Error | ID = 1000
Description = Nom de l application défaillante coreServiceShell.exe, version : 2.5.0.1331,
horodatage : 0x50000315 Nom du module défaillant : TmMetroPkgMgr.dll_unloaded, version
: 6.0.0.1083, horodatage : 0x51555159 Code d exception : 0xc0000005 Décalage d erreur
: 0x0000000000018c33 ID du processus défaillant : 0x16f4 Heure de début de l application
défaillante : 0x01d08832cdbd5a5a Chemin d accès de l application défaillante : C:\Program
Files\Trend Micro\AMSP\coreServiceShell.exe Chemin d accès du module défaillant:
TmMetroPkgMgr.dll ID de rapport : 17cae9cc-f426-11e4-bfc5-00262d5c8e3d Nom complet
du package défaillant : ID de l application relative au package défaillant :

[ System Events ]
Error - 06/05/2015 14:06:27 | Computer Name = Alex-PC | Source = Service Control Manager | ID = 7034
Description = Le service Trend Micro Solution Platform s est terminé de façon inattendue
pour la 7ème fois.

Error - 06/05/2015 14:06:42 | Computer Name = Alex-PC | Source = Service Control Manager | ID = 7034
Description = Le service Trend Micro Solution Platform s est terminé de façon inattendue
pour la 8ème fois.

Error - 06/05/2015 14:27:48 | Computer Name = Alex-PC | Source = Service Control Manager | ID = 7034
Description = Le service Trend Micro Solution Platform s est terminé de façon inattendue
pour la 9ème fois.

Error - 06/05/2015 15:03:30 | Computer Name = Alex-PC | Source = DCOM | ID = 10010
Description =

Error - 06/05/2015 15:03:36 | Computer Name = Alex-PC | Source = Service Control Manager | ID = 7034
Description = Le service Trend Micro Solution Platform s est terminé de façon inattendue
pour la 10ème fois.

Error - 06/05/2015 15:04:59 | Computer Name = Alex-PC | Source = Service Control Manager | ID = 7000
Description = Le service PortableVBoxDRV n a pas pu démarrer en raison de l erreur :
%%3

Error - 06/05/2015 15:04:59 | Computer Name = Alex-PC | Source = Service Control Manager | ID = 7000
Description = Le service PortableVBoxUSBMon n a pas pu démarrer en raison de l erreur :
%%3

Error - 06/05/2015 15:17:34 | Computer Name = Alex-PC | Source = Service Control Manager | ID = 7034
Description = Le service Trend Micro Solution Platform s est terminé de façon inattendue
pour la 1ème fois.

Error - 06/05/2015 15:17:54 | Computer Name = Alex-PC | Source = Service Control Manager | ID = 7034
Description = Le service Trend Micro Solution Platform s est terminé de façon inattendue
pour la 2ème fois.

Error - 06/05/2015 15:29:17 | Computer Name = Alex-PC | Source = Service Control Manager | ID = 7034
Description = Le service Trend Micro Solution Platform s est terminé de façon inattendue
pour la 3ème fois.


< End of report >

Publicité


Signaler le contenu de ce document

Publicité