Additional scan result of Farbar Recovery Scan Tool (x86) Version: 08-06-2015
Ran by Tu y yo at 2015-06-11 19:24:55
Running from C:\Users\Tu y yo\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrateur (S-1-5-21-2803995656-3907551314-2027165841-500 - Administrator - Disabled)
Invité (S-1-5-21-2803995656-3907551314-2027165841-501 - Limited - Disabled)
Tu y yo (S-1-5-21-2803995656-3907551314-2027165841-1001 - Administrator - Enabled) => C:\Users\Tu y yo

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

1 Media Player version 1.7.8 (HKLM\...\{6C566E3B-CBFB-4A3C-A8B6-88EA54DE7CA9}_is1) (Version: 1.7.8 - OneFloorApp Ltd.)
Adobe Creative Cloud (HKLM\...\Adobe Creative Cloud) (Version: 2.9.1.474 - Adobe Systems Incorporated)
Adobe InDesign CC 2014 (32-bit) (HKLM\...\{37BEE0A4-72B9-1014-A77C-C46F3F2C3207}) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (32 Bit) (HKLM\...\{7C25E7A0-A0A1-4B87-BB30-BF0FBDC37878}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Français (HKLM\...\{AC76BA86-7AD7-1036-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Android SDK Tools (HKLM\...\Android SDK Tools) (Version: 1.16 - Google Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.03 - Piriform)
DriverIdentifier 4.2.8 (HKLM\...\{40A3E5DB-5EF8-4F04-BF3E-7AB87C4AE85A}_is1) (Version: - DriverIdentifier)
Google Chrome (HKLM\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Update Helper (Version: 1.3.27.5 - Google Inc.) Hidden
iRoot (HKLM\...\{1295E43F-382A-4CB2-9E0F-079C0D7401BB}_is1) (Version: 1.7.9.10454 - Shenzhen Xinyi Network Co.,Ltd.)
Java 7 Update 79 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F03217079FF}) (Version: 7.0.790 - Oracle)
Java 8 Update 40 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Java SE Development Kit 7 Update 75 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0170750}) (Version: 1.7.0.750 - Oracle)
Java SE Development Kit 7 Update 79 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0170790}) (Version: 1.7.0.790 - Oracle)
Java SE Development Kit 8 Update 40 (HKLM\...\{32A3A4F4-B792-11D6-A78A-00B0D0180400}) (Version: 8.0.400.26 - Oracle Corporation)
Maintenance de Samsung CLX-3180 Series (HKLM\...\Samsung CLX-3180 Series) (Version: - Samsung Electronics Co., Ltd.)
Malwarebytes Anti-Malware version 2.1.4.1018 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
media center Bbox (HKLM\...\{FFBE505B-2644-432A-836A-6170AD3A9B61}) (Version: 3.2.0 - Bouygues Télécom)
Microsoft Office Professionnel Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{3C3D696B-0DB7-3C6D-A356-3DB8CE541918}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Module linguistique Microsoft Visual Studio 2010 Tools pour Office Runtime (x86) - FRA (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - FRA) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 31.5.0 - Mozilla)
Mozilla Thunderbird 31.7.0 (x86 fr) (HKLM\...\Mozilla Thunderbird 31.7.0 (x86 fr)) (Version: 31.7.0 - Mozilla)
Notepad++ (HKLM\...\Notepad++) (Version: 6.7.7 - Notepad++ Team)
NVIDIA Stereoscopic 3D Driver (HKLM\...\NVIDIAStereo) (Version: 7.17.12.6514 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Panneau de configuration NVIDIA 347.52 (Version: 347.52 - NVIDIA Corporation) Hidden
Qualcomm USB Drivers For Windows (HKLM\...\{D9FB7F91-9687-4B09-894D-072903CADEA4}) (Version: 1.00.30 - QUALCOMM Incorporated)
RIDGE 4G_V28 version 1.0 (HKLM\...\{F377D371-C4FB-4255-80E2-ABDDDED07CE5}_is1) (Version: 1.0 - )
Samsung Scan Assistant (HKLM\...\Samsung Scan Assistant) (Version: 1.04.20.00 - Samsung Electronics Co., Ltd.)
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
SmarThru 4 (HKLM\...\{90F1943D-EA4A-4460-B59F-30023F3BA69A}) (Version: - Samsung Electronics Co., Ltd.)
Update for Skype for Business 2015 (KB2889853) 32-Bit Edition (HKLM\...\{90150000-012B-040C-0000-0000000FF1CE}_Office15.PROPLUSR_{AE1BB975-11D1-49A0-82E8-1D26DD62AFE7}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3054791) 32-Bit Edition (HKLM\...\{90150000-012B-040C-0000-0000000FF1CE}_Office15.PROPLUSR_{04ADDEC1-208F-4295-AA61-16789EA56814}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3054791) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{04ADDEC1-208F-4295-AA61-16789EA56814}) (Version: - Microsoft)
WinRAR 5.21 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
ZHPDiag 2015 (HKLM\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{00b7e0ab-817a-44ad-a04b-d1148d524136}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{7c6e29bc-8b8b-4c3d-859e-af6cd158be0f}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969c0-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969c1-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969c2-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969c3-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969c4-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969c5-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969c6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969c8-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969c9-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969ca-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2803995656-3907551314-2027165841-1001_Classes\CLSID\{88d969d6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\SYSTEM32\msxml4.dll (Microsoft Corporation)

==================== Restore Points =========================

20-05-2015 20:17:19 Windows Update
30-05-2015 08:28:22 Point de contrôle planifié
08-06-2015 10:01:14 Point de contrôle planifié
11-06-2015 11:16:20 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 08:13 - 2013-08-22 08:13 - 00000824 ____N C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0AC140D3-118D-4F34-B438-CD5433DBFA44} - System32\Tasks\ContradeMirror => c:\programdata\{b2bd79b5-b603-6faa-b2bd-d79b5b60e6d6}\4308891925316739666b.exe
Task: {0B5615EF-80ED-4146-954E-808075F26CFA} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {36461962-4392-484B-BC47-756DF442D5FB} - System32\Tasks\BLZYASW => C:\ProgramData\3e2a3a4b2e7d4a2ca793dd4127047b9e\3e2a3a4b2e7d4a2ca793dd4127047b9e.exe
Task: {487464B4-5942-495D-B66B-25A56FDB481A} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\WINDOWS\system32\compattel\DiagTrackRunner.exe [2015-03-16] (Microsoft Corporation)
Task: {4FE15894-DF60-4541-B2EC-C455C7B245D3} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {5C303C5B-F326-4BF1-87F6-D1248207613D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-02-19] (Piriform Ltd)
Task: {5FA8C0CE-273A-4BEA-9A22-DF86B77EA61A} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: {7A87DB6E-A63B-4381-A158-66AC599108BA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {960A9AC3-6B40-4A0D-86FC-2BB7D34EC666} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\WINDOWS\system32\GWX\GWXConfigManager.exe [2015-05-06] (Microsoft Corporation)
Task: {9EAEEE31-A7F2-4622-93B4-59B6B053CF28} - \AutoKMS No Task File <==== ATTENTION
Task: {A106511D-1B08-48D9-BA1E-AA0A28BFAAF3} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-06-11] (Microsoft Corporation)
Task: {D70EBCD2-8910-4C0C-98D0-3B11C32C6976} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\WINDOWS\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {D8254EB7-F5AD-42B4-A690-EF60601D3CF3} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\WINDOWS\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)
Task: {E010E0AF-EDA7-43AB-AF1B-DFB41505F657} - System32\Tasks\{1D8755D3-9CCC-4DB6-8809-644053D37AAA} => pcalua.exe -a "C:\Users\Tu y yo\Downloads\360RootSetup (1).exe" -d "C:\Users\Tu y yo\Downloads"
Task: {E81DC211-3A39-4531-9512-17CA1019B2EF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {EE37122E-3DA4-421D-B1F4-0BBC40BBA252} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\WINDOWS\system32\GWX\GWX.exe [2015-05-06] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\ContradeMirror.job => c:\programdata\{b2bd79b5-b603-6faa-b2bd-d79b5b60e6d6}\4308891925316739666b.exe

==================== Loaded Modules (Whitelisted) ==============

2015-02-28 20:33 - 2015-02-05 20:27 - 00108864 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2011-06-22 11:43 - 2011-06-22 11:43 - 00024064 _____ () C:\WINDOWS\System32\sst2cl3.dll
2015-02-11 16:12 - 2015-02-11 16:12 - 00908960 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x86.dll
2015-04-15 22:13 - 2015-04-15 22:13 - 00260608 _____ () C:\Program Files\Notepad++\NppShell_06.dll
2015-03-01 21:28 - 2011-04-29 09:58 - 01990144 _____ () C:\Windows\twain_32\Samsung\CLX3180\Scan2Pc.exe
2015-03-01 21:28 - 2009-10-31 15:42 - 01384520 _____ () C:\Windows\twain_32\Samsung\CLX3180\ssole.dll
2015-02-15 15:58 - 2015-02-15 15:58 - 36730032 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CEF\libcef.dll
2015-02-19 23:40 - 2015-02-19 23:40 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll
2013-07-04 18:55 - 2013-07-04 18:55 - 00846848 _____ () C:\Program Files\media center Bbox\media center\external\MediaServerTray.exe
2015-05-25 20:26 - 2015-05-22 22:22 - 01281864 _____ () C:\Program Files\Google\Chrome\Application\43.0.2357.81\libglesv2.dll
2015-05-25 20:26 - 2015-05-22 22:22 - 00080712 _____ () C:\Program Files\Google\Chrome\Application\43.0.2357.81\libegl.dll
2015-02-11 16:12 - 2015-02-11 16:12 - 05739680 _____ () C:\Program Files\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm
AlternateDataStreams: C:\Users\Tu y yo\Desktop\2.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Tu y yo\Desktop\2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\Tu y yo\Desktop\cg1.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Tu y yo\Desktop\cg1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\Tu y yo\Desktop\cg2.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Tu y yo\Desktop\cg2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\Tu y yo\Desktop\facture autoradio.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Tu y yo\Desktop\facture autoradio.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\Tu y yo\Desktop\relevé info auto.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Tu y yo\Desktop\relevé info auto.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\Tu y yo\Desktop\remboursement prêt.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Tu y yo\Desktop\remboursement prêt.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\Tu y yo\Desktop\signature.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Tu y yo\Desktop\signature.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\Tu y yo\Desktop\Thomas CALABRO.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Tu y yo\Desktop\Thomas CALABRO.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
AlternateDataStreams: C:\Users\Tu y yo\Documents\signature thomas.jpeg:3or4kl4x13tuuug3Byamue2s4b
AlternateDataStreams: C:\Users\Tu y yo\Documents\signature thomas.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2803995656-3907551314-2027165841-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.254

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [TCP Query User{0E160A64-986E-455B-949A-5BB3DEEEBF50}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [UDP Query User{82E1D9DB-12FC-4ED6-A120-2EABA81B7ABE}C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe] => (Allow) C:\windows\microsoft.net\framework\v2.0.50727\vbc.exe
FirewallRules: [{E3F1B5D3-E289-4138-8980-10C01B6CA7AE}] => (Allow) C:\Windows\twain_32\Samsung\ScanMgr.exe
FirewallRules: [{94B29C75-3E12-406A-AF2F-652E684BE5BA}] => (Allow) C:\Windows\twain_32\Samsung\ScanMgr.exe
FirewallRules: [{870AE9E0-3A9F-4D12-A848-C37C3CAC2A60}] => (Allow) C:\Windows\twain_32\Samsung\CLX3180\Scan2Pc.exe
FirewallRules: [{42A1AA9B-92F1-4F41-931B-D5D246FA48C0}] => (Allow) C:\Windows\twain_32\Samsung\CLX3180\Scan2Pc.exe
FirewallRules: [{75765178-563D-41E4-B42C-B0E6E485F89A}] => (Allow) C:\Windows\twain_32\Samsung\CLX3180\Sscan2io.exe
FirewallRules: [{E0AA0486-B267-4B7E-8653-F938578653B6}] => (Allow) C:\Windows\twain_32\Samsung\CLX3180\Sscan2io.exe
FirewallRules: [{AA0F5D48-8050-48E6-BB94-6CB11D157D68}] => (Allow) C:\Program Files\Scan Assistant\USDAgent.exe
FirewallRules: [{A7D1D5DE-6FC0-47E0-A92F-593603A874F7}] => (Allow) C:\Program Files\Scan Assistant\USDAgent.exe
FirewallRules: [{EECD7C16-9B72-4EA5-9162-50BD05B2A48D}] => (Allow) C:\program files\common files\tencent\qqdownload\123\tencentdl.exe
FirewallRules: [{DCC383C8-4784-495D-B34F-0339F401C843}] => (Allow) C:\Program Files\media center Bbox\media center\external\MediaServerTray.exe
FirewallRules: [{4CBB3CD6-9E92-4256-8DAA-F60C4E834EC5}] => (Allow) C:\ProgramData\media center Bouygues Telecom\MediaServer.exe
FirewallRules: [{BE332A37-7111-431E-A839-D179607D25B9}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (06/11/2015 01:20:16 PM) (Source: Microsoft-Windows-WMI) (EventID: 5601) (User: AUTORITE NT)
Description: Le service Windows Management Instrumentation n’a pas pu charger les fichiers de stockage du répertoire %windir%\system32\wbem\repository. Cela peut être dû à des fichiers de stockage endommagés, aux paramètres de sécurité de ce répertoire, à un espace disque insuffisant ou à d’autres problèmes de ressources système tels qu’une mémoire insuffisante. Si cette erreur se produit à chaque démarrage de l’ordinateur, l’administrateur de cet ordinateur devra peut-être arrêter le service WMI, revoir les paramètres de sécurité de ce dossier et des fichiers qu’il contient, et exécuter WMIDiag pour valider l’intégrité de Windows Management Instrumentation.

Error: (06/11/2015 11:23:58 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (06/08/2015 01:27:26 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (06/07/2015 06:35:47 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/30/2015 07:51:56 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/28/2015 08:31:33 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/27/2015 08:28:10 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/26/2015 07:51:09 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/25/2015 08:03:32 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/24/2015 10:33:54 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154


System errors:
=============
Error: (06/11/2015 07:15:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Le service Service Google Update (gupdate) n’a pas pu démarrer en raison de l’erreur :
%%2

Error: (06/11/2015 07:13:07 PM) (Source: DCOM) (EventID: 10016) (User: Tuyyo)
Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}TuyyoTu y yoS-1-5-21-2803995656-3907551314-2027165841-1001LocalHost (avec LRPC)Non disponibleNon disponible

Error: (06/11/2015 07:12:38 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: AUTORITE NT)
Description: Certaines fonctionnalités de gestion de l’alimentation relatives aux performances du processeur ont été désactivées en raison d’un problème connu avec le microprogramme. Contactez le fabricant de l’ordinateur pour obtenir la mise à jour du microprogramme.

Error: (06/11/2015 07:11:44 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Windows Search, mais cette action a échoué en raison de l’erreur suivante :
%%1056

Error: (06/11/2015 07:11:40 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Le Gestionnaire de services de contrôle a essayé d’entreprendre une action corrective (Redémarrer le service) après la fin inattendue du service Windows Search, mais cette action a échoué en raison de l’erreur suivante :
%%1056

Error: (06/11/2015 07:11:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Spouleur d’impression s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 5000 millisecondes : Redémarrer le service.

Error: (06/11/2015 07:11:14 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 2 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.

Error: (06/11/2015 07:11:10 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Le service Windows Search s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 30000 millisecondes : Redémarrer le service.

Error: (06/11/2015 07:11:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service Qualcomm MTU Service s’est terminé de façon inattendue pour la 1ème fois.

Error: (06/11/2015 07:11:09 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Le service media center Bouygues Telecom s’est terminé de façon inattendue pour la 1ème fois.


Microsoft Office:
=========================
Error: (06/11/2015 01:20:16 PM) (Source: Microsoft-Windows-WMI) (EventID: 5601) (User: AUTORITE NT)
Description:

Error: (06/11/2015 11:23:58 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (06/08/2015 01:27:26 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (06/07/2015 06:35:47 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/30/2015 07:51:56 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/28/2015 08:31:33 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/27/2015 08:28:10 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/26/2015 07:51:09 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/25/2015 08:03:32 PM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154

Error: (05/24/2015 10:33:54 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073418154


CodeIntegrity Errors:
===================================
Date: 2015-06-11 13:38:34.382
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-06-08 10:21:16.550
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-05-17 13:29:41.939
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-05-16 11:34:16.253
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-05-10 21:38:19.665
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-05-02 14:01:14.824
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-04-27 23:08:31.019
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-04-26 12:15:47.554
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-04-19 10:27:57.023
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-04-16 10:57:30.142
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.


==================== Memory info ===========================

Processor: Genuine Intel(R) CPU 2140 @ 1.60GHz
Percentage of memory in use: 36%
Total physical RAM: 2047.3 MB
Available physical RAM: 1291.76 MB
Total Pagefile: 4223.3 MB
Available Pagefile: 3277.84 MB
Total Virtual: 2047.88 MB
Available Virtual: 1910.8 MB

==================== Drives ================================

Drive c: (HDD) (Fixed) (Total:290.09 GB) (Free:165.47 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:208.4 GB) (Free:99.53 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 194E4B8D)
Partition 1: (Not Active) - (Size=8 GB) - (Type=27)
Partition 2: (Active) - (Size=290.1 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or Vista) (Size: 298.1 GB) (Disk ID: 477F7814)
Partition 1: (Not Active) - (Size=8 GB) - (Type=27)
Partition 2: (Not Active) - (Size=208.4 GB) - (Type=07 NTFS)
Partition 3: (Active) - (Size=81.7 GB) - (Type=07 NTFS)

==================== End of log ============================