Additional scan result of Farbar Recovery Scan Tool (x64) Version:26-07-2015 Ran by Axel at 2015-07-27 21:27:48 Running from C:\Users\Axel\Downloads Boot Mode: Normal ========================================================== ==================== Accounts: ============================= Administrateur (S-1-5-21-879377979-3755063216-1828256292-500 - Administrator - Disabled) Axel (S-1-5-21-879377979-3755063216-1828256292-1001 - Administrator - Enabled) => C:\Users\Axel HomeGroupUser$ (S-1-5-21-879377979-3755063216-1828256292-1003 - Limited - Enabled) Invité (S-1-5-21-879377979-3755063216-1828256292-501 - Limited - Disabled) ==================== Security Center ======================== (If an entry is included in the fixlist, it will be removed.) AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B} AV: Protection antivirus et antispyware McAfee (Enabled - Up to date) {DA9F8ED0-D0DE-39CC-F55A-51AB4CC1B556} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736} AS: Protection antivirus et antispyware McAfee (Enabled - Up to date) {61FE6F34-F6E4-3642-CFEA-6AD93746FFEB} FW: Pare-feu McAfee (Enabled) {E2A40FF5-9AB1-3894-DE05-F89EB212F22D} ==================== Installed Programs ====================== (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.) Adobe Acrobat Reader DC - Français (HKLM-x32\...\{AC76BA86-7AD7-1036-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated) Anno 1404 (HKLM-x32\...\Steam App 33250) (Version: - Blue Byte) ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS) ASUS Screen Saver (HKLM-x32\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 2.1.0 - ASUS) ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 3.0.12 - ASUS) ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 3.03.0006 - ASUS) ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 4.0.2 - ASUS) ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0037 - ASUS) AudioWizard (HKLM-x32\...\{57E770A2-2BAF-4CAA-BAA3-BD896E2254D3}) (Version: 1.0.0.53 - ICEpower a/s) Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.2.2218 - AVAST Software) CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform) Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 8.66.3.0 - Conexant) Device Setup (HKLM-x32\...\{1F07F2C7-596F-4F34-B805-2C61A3E50E5A}) (Version: 1.0.18 - ASUSTek Computer Inc.) Don't Starve (HKLM-x32\...\Steam App 219740) (Version: - Klei Entertainment) Don't Starve Together Beta (HKLM-x32\...\Steam App 322330) (Version: - Klei Entertainment) Empire: Total War (HKLM-x32\...\Steam App 10500) (Version: - The Creative Assembly) Foxit PhantomPDF (HKLM-x32\...\{FC76E6BB-7CBB-4CD6-8178-3BCADC0526C3}) (Version: 6.0.62.801 - Foxit Corporation) globalupdate Helper (x32 Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ATTENTION Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.107 - Google Inc.) Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden Intel Collaborative Processor Performance Control (HKLM-x32\...\0E7DAF70-FB54-4B91-B192-7E771C25AEEB) (Version: 1.0.0.1018 - Intel Corporation) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.23.1766 - Intel Corporation) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation) Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation) Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation) McAfee LiveSafe – Internet Security (HKLM-x32\...\MSC) (Version: 14.0.1076 - McAfee, Inc.) McAfee SiteAdvisor (HKLM-x32\...\{35ED3F83-4BDC-4c44-8EC6-6A8301C7413A}) (Version: 3.7.235 - McAfee, Inc.) Medieval II: Total War (HKLM-x32\...\Steam App 4700) (Version: - The Creative Assembly) Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4641.3004 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Mises à jour NVIDIA 2.4.5.57 (Version: 2.4.5.57 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation) NVIDIA Graphics Driver 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation) NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation) Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.332 - Qualcomm Atheros Communications) Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.21243 - Realtek Semiconductor Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.29.314.2014 - Realtek) Robocraft (HKLM-x32\...\Steam App 301520) (Version: - Freejam) SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN) WebStorage (HKLM-x32\...\WebStorage) (Version: 2.1.11.399 - ASUS Cloud Corporation) WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-asus) (Version: 4.0.11.14 - WildTangent) Windows Driver Package - ASUS (ATP) Mouse (07/02/2014 6.0.0.39) (HKLM\...\51B9B97722559D76D6429B83B71A86106A35BFCE) (Version: 07/02/2014 6.0.0.39 - ASUS) WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS) ==================== Custom CLSID (Whitelisted): ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) CustomCLSID: HKU\S-1-5-21-879377979-3755063216-1828256292-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation) ==================== Restore Points ========================= 09-07-2015 16:20:33 Windows Update 18-07-2015 17:24:46 Windows Update 21-07-2015 17:47:27 Windows Update ==================== Hosts content: =============================== (If needed Hosts: directive could be included in the fixlist to reset Hosts.) 2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Scheduled Tasks (Whitelisted) ============= (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) Task: {25588DB7-2DE8-4076-8AE0-9944C6B796FE} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] () Task: {36E27157-D0DB-4D2D-A708-3BCE4417161E} - System32\Tasks\ASUS\ASUS Product Register Service => C:\Program Files (x86)\ASUS\APRP\aprp.exe [2014-09-02] (ASUSTek Computer Inc.) Task: {4C5B4292-CB75-4F8B-84AD-C201063FD193} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.) Task: {69A5EDD7-A741-44F7-8B00-DB03C7BC0FDE} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2014-09-11] (ASUS) Task: {6C1FA441-AE48-47A2-93D9-46F8B985149F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-28] (Google Inc.) Task: {70AE6EB3-8885-4631-A59E-59BA5E26DE65} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-07-03] (Microsoft Corporation) Task: {76AAA319-4447-452A-A947-5ECFEA8B4C03} - System32\Tasks\McAfee\McAfee Auto Maintenance Task Agent Task: {84CA1201-7097-4420-B76A-71A348D0B9E8} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-06-27] (Avast Software s.r.o.) Task: {9D8F37AC-402E-438A-9E03-C2D70802E990} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-01] (Piriform Ltd) Task: {AD677C0F-463F-4A87-901D-7E1B77D2488B} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-06-28] (Google Inc.) Task: {AEFEBF61-DFD3-489A-9E28-1E6C0C6AEA58} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated) Task: {E197AA45-CAD7-4DCC-9B41-CAF07208C92C} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-12-31] (AsusTek) Task: {E41EA340-EE00-4B12-947D-71638488683C} - System32\Tasks\avastBCLRestart_chrome.exe => Chrome.exe Task: {E8C98E6F-C239-4FB6-9EE2-FBE716D51B7A} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-06-11] (ASUSTek Computer Inc.) Task: {EB9A53C4-99F0-4590-AD74-7D2CE08C024F} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-09-11] (ASUSTek Computer Inc.) Task: {F149489A-69CF-4040-A9AE-1B51CDC79694} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.) (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.) Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (Whitelisted) ============== 2015-04-14 16:38 - 2015-01-10 01:29 - 00117392 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-09-28 23:22 - 2014-09-28 23:22 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll 2014-09-28 23:18 - 2014-09-28 23:18 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll 2014-09-28 23:26 - 2014-09-28 23:26 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe 2015-06-01 19:28 - 2015-06-01 19:28 - 00065536 _____ () C:\Program Files\CCleaner\lang\lang-1036.dll 2015-06-27 19:38 - 2015-06-27 19:38 - 00104400 _____ () C:\Program Files\AVAST Software\Avast\log.dll 2015-06-27 19:38 - 2015-06-27 19:38 - 00081728 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll 2015-07-27 20:56 - 2015-07-27 20:56 - 02960384 _____ () C:\Program Files\AVAST Software\Avast\defs\15072705\algo.dll 2014-09-11 19:31 - 2014-09-11 19:31 - 00037424 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll 2014-09-11 19:31 - 2014-09-11 19:31 - 00124928 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll 2014-09-11 19:31 - 2014-09-11 19:31 - 00018992 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDColorEnhance.dll 2014-09-11 19:31 - 2014-09-11 19:31 - 00020528 _____ () C:\Program Files (x86)\ASUS\Splendid\AMDRegammaAndGamut.dll 2015-06-28 19:20 - 2015-06-24 13:37 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll 2015-06-28 17:26 - 2015-07-03 18:12 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll 2015-06-28 17:26 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll 2015-06-28 17:26 - 2015-07-24 01:24 - 02410176 _____ () C:\Program Files (x86)\Steam\video.dll 2015-06-28 17:26 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll 2015-06-28 17:26 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll 2015-06-28 17:26 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll 2015-06-28 17:26 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll 2015-06-28 17:26 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll 2015-06-28 17:26 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll 2015-06-28 17:26 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll 2015-06-28 17:26 - 2015-07-24 01:23 - 00703168 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL 2015-07-22 18:46 - 2015-07-07 22:41 - 00169984 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll 2015-06-27 19:38 - 2015-06-27 19:38 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll 2015-06-28 17:26 - 2015-07-03 18:12 - 39553928 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll 2015-04-14 16:33 - 2013-12-09 16:26 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2015-07-24 20:13 - 2015-07-24 00:39 - 01405768 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\libglesv2.dll 2015-07-24 20:13 - 2015-07-24 00:39 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\libegl.dll 2015-07-24 20:13 - 2015-07-24 00:39 - 16308040 _____ () C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\PepperFlash\pepflashplayer.dll ==================== Alternate Data Streams (Whitelisted) ========= (If an entry is included in the fixlist, only the ADS will be removed.) AlternateDataStreams: C:\Users\Axel\OneDrive:ms-properties ==================== Safe Mode (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""="" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeaack.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfeavfk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfemms => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k => ""="Service" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfetdi2k.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Service" ==================== EXE Association (Whitelisted) =============== (If an entry is included in the fixlist, the registry item will be restored to default or removed.) ==================== Internet Explorer trusted/restricted =============== (If an entry is included in the fixlist, it will be removed from the registry.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-879377979-3755063216-1828256292-1001\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Theme2\img7.jpg DNS Servers: 192.168.1.254 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall is enabled. ==================== MSCONFIG/TASK MANAGER disabled items == (Currently there is no automatic fix for this section.) ==================== FirewallRules (Whitelisted) =============== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{D48F6F7F-BD46-41F0-BD6B-37F58504FF32}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{90770AFA-D6EC-43EC-ABB5-481EA5D19F04}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{79B35256-35B4-460D-ADB3-2144B4F53C8A}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe FirewallRules: [{52E0C386-EDA7-43FF-BEB2-F1907CAEC20F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{0393CF32-8175-4FAB-AF79-DECA8B4E24ED}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe FirewallRules: [{36AB15AE-1C7E-430B-B546-934285DECE62}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{9F3C0BE1-FE4A-46CE-A130-5DE311053C38}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe FirewallRules: [{2CA76313-8ECD-4CF8-9359-2F1CA55CDBB5}] => (Allow) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe FirewallRules: [{7CE1B67D-D099-4DBA-A156-BE3C39D70713}] => (Allow) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe FirewallRules: [{5B23A506-81C4-4357-8B1F-BA38511D41A1}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{99209583-B3C9-43B9-9ECA-01CEB7786C2E}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe FirewallRules: [{3991C78B-6EEA-45EF-9856-6F57FE6F760D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{C6340759-0A11-44E6-A0F4-EC6BBB81ACB0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe FirewallRules: [{192C2BDB-CDAE-4480-A373-875E1AE36C73}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{794EDAAA-44B5-4C31-B4DD-7C2B2947C741}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe FirewallRules: [{4A8199BF-E0A1-47B9-9EB1-5AEF0BA859E4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe FirewallRules: [{2249AB21-04DE-4C1C-B594-FA153FFEE4F6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Empire Total War\Empire.exe FirewallRules: [{4C9511DE-DFD8-4C55-8436-42681DFC416B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Medieval II Total War\medieval2.exe FirewallRules: [{2BAAB811-D3FE-493A-AE86-AFA5B111CEF4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Medieval II Total War\medieval2.exe FirewallRules: [{A7E57BF9-B1E5-4DD7-931D-155675EBB2B5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{44D768EA-6BF0-4BB1-9824-6DB21C104654}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe FirewallRules: [{8808313E-C2AA-45AD-880B-C6D424043523}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe FirewallRules: [{485F6E48-4F47-4F9D-B89E-D79039685000}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\dont_starve\bin\dontstarve_steam.exe FirewallRules: [{89677E3B-0EC5-4AB5-ABC1-404D4A32C25D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [{D22D1844-5034-4B43-B89A-394C5F66E143}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [{E4E3611D-265E-483A-88B7-D22DC9DD46E9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 1404\Anno4.exe FirewallRules: [{59F01032-24D9-452E-A919-3BE77CE15E8C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Anno 1404\Anno4.exe FirewallRules: [{2FF1D6C6-8FDE-4DA3-92CB-50B70DC10376}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{EC5062A2-3AB1-4289-9D67-374BB4E79A91}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe FirewallRules: [{EC38338B-12A4-40E6-9A3C-10F23E16647A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Don't Starve Together\bin\dontstarve_steam.exe ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (07/27/2015 02:00:55 PM) (Source: ESENT) (EventID: 455) (User: ) Description: LiveComm (4412) C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: L'Erreur -1032 (0xfffffbf8) s'est produite lors de l'ouverture du fichier journal C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log. Error: (07/27/2015 02:00:55 PM) (Source: ESENT) (EventID: 489) (User: ) Description: LiveComm (4412) C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: Une tentative d'ouverture du fichier "C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log" pour accès en lecture seule a échoué en indiquant l'erreur système 32 (0x00000020) : "Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. ". L'opération d'ouverture de fichier échouera en indiquant l'erreur -1032 (0xfffffbf8). Error: (07/27/2015 02:00:24 PM) (Source: ESENT) (EventID: 455) (User: ) Description: LiveComm (4412) C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: L'Erreur -1032 (0xfffffbf8) s'est produite lors de l'ouverture du fichier journal C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log. Error: (07/27/2015 02:00:24 PM) (Source: ESENT) (EventID: 489) (User: ) Description: LiveComm (4412) C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: Une tentative d'ouverture du fichier "C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log" pour accès en lecture seule a échoué en indiquant l'erreur système 32 (0x00000020) : "Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. ". L'opération d'ouverture de fichier échouera en indiquant l'erreur -1032 (0xfffffbf8). Error: (07/27/2015 01:59:54 PM) (Source: ESENT) (EventID: 455) (User: ) Description: LiveComm (4412) C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: L'Erreur -1032 (0xfffffbf8) s'est produite lors de l'ouverture du fichier journal C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log. Error: (07/27/2015 01:59:54 PM) (Source: ESENT) (EventID: 489) (User: ) Description: LiveComm (4412) C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: Une tentative d'ouverture du fichier "C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log" pour accès en lecture seule a échoué en indiquant l'erreur système 32 (0x00000020) : "Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. ". L'opération d'ouverture de fichier échouera en indiquant l'erreur -1032 (0xfffffbf8). Error: (07/26/2015 08:41:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante saUpd.exe, version : 3.7.2.235, horodatage : 0x558320ac Nom du module défaillant : ntdll.dll, version : 6.3.9600.17736, horodatage : 0x550f4336 Code d’exception : 0xc0000374 Décalage d’erreur : 0x00000000000f0f20 ID du processus défaillant : 0x12bc Heure de début de l’application défaillante : 0xsaUpd.exe0 Chemin d’accès de l’application défaillante : saUpd.exe1 Chemin d’accès du module défaillant: saUpd.exe2 ID de rapport : saUpd.exe3 Nom complet du package défaillant : saUpd.exe4 ID de l’application relative au package défaillant : saUpd.exe5 Error: (07/26/2015 08:31:21 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante saUpd.exe, version : 3.7.2.235, horodatage : 0x558320ac Nom du module défaillant : ntdll.dll, version : 6.3.9600.17736, horodatage : 0x550f4336 Code d’exception : 0xc0000374 Décalage d’erreur : 0x00000000000f0f20 ID du processus défaillant : 0x280 Heure de début de l’application défaillante : 0xsaUpd.exe0 Chemin d’accès de l’application défaillante : saUpd.exe1 Chemin d’accès du module défaillant: saUpd.exe2 ID de rapport : saUpd.exe3 Nom complet du package défaillant : saUpd.exe4 ID de l’application relative au package défaillant : saUpd.exe5 Error: (07/26/2015 07:27:37 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante AsusTPCenter.exe, version : 1.0.0.77, horodatage : 0x54a0f524 Nom du module défaillant : AsusTPApi.dll, version : 1.0.36.0, horodatage : 0x54a0f51a Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000000169de ID du processus défaillant : 0x890 Heure de début de l’application défaillante : 0xAsusTPCenter.exe0 Chemin d’accès de l’application défaillante : AsusTPCenter.exe1 Chemin d’accès du module défaillant: AsusTPCenter.exe2 ID de rapport : AsusTPCenter.exe3 Nom complet du package défaillant : AsusTPCenter.exe4 ID de l’application relative au package défaillant : AsusTPCenter.exe5 Error: (07/24/2015 11:31:31 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante AsusTPCenter.exe, version : 1.0.0.77, horodatage : 0x54a0f524 Nom du module défaillant : AsusTPApi.dll, version : 1.0.36.0, horodatage : 0x54a0f51a Code d’exception : 0xc0000005 Décalage d’erreur : 0x00000000000169de ID du processus défaillant : 0x2158 Heure de début de l’application défaillante : 0xAsusTPCenter.exe0 Chemin d’accès de l’application défaillante : AsusTPCenter.exe1 Chemin d’accès du module défaillant: AsusTPCenter.exe2 ID de rapport : AsusTPCenter.exe3 Nom complet du package défaillant : AsusTPCenter.exe4 ID de l’application relative au package défaillant : AsusTPCenter.exe5 System errors: ============= Error: (07/27/2015 09:03:42 PM) (Source: DCOM) (EventID: 10016) (User: AXEL) Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AxelAxelS-1-5-21-879377979-3755063216-1828256292-1001LocalHost (avec LRPC)Non disponibleNon disponible Error: (07/27/2015 09:03:41 PM) (Source: DCOM) (EventID: 10016) (User: AXEL) Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AxelAxelS-1-5-21-879377979-3755063216-1828256292-1001LocalHost (avec LRPC)Non disponibleNon disponible Error: (07/27/2015 09:03:41 PM) (Source: DCOM) (EventID: 10016) (User: AXEL) Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AxelAxelS-1-5-21-879377979-3755063216-1828256292-1001LocalHost (avec LRPC)Non disponibleNon disponible Error: (07/27/2015 09:03:41 PM) (Source: DCOM) (EventID: 10016) (User: AXEL) Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AxelAxelS-1-5-21-879377979-3755063216-1828256292-1001LocalHost (avec LRPC)Non disponibleNon disponible Error: (07/27/2015 09:03:41 PM) (Source: DCOM) (EventID: 10016) (User: AXEL) Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AxelAxelS-1-5-21-879377979-3755063216-1828256292-1001LocalHost (avec LRPC)Non disponibleNon disponible Error: (07/27/2015 09:03:40 PM) (Source: DCOM) (EventID: 10016) (User: AXEL) Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AxelAxelS-1-5-21-879377979-3755063216-1828256292-1001LocalHost (avec LRPC)Non disponibleNon disponible Error: (07/27/2015 09:03:40 PM) (Source: DCOM) (EventID: 10016) (User: AXEL) Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AxelAxelS-1-5-21-879377979-3755063216-1828256292-1001LocalHost (avec LRPC)Non disponibleNon disponible Error: (07/27/2015 09:03:40 PM) (Source: DCOM) (EventID: 10016) (User: AXEL) Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AxelAxelS-1-5-21-879377979-3755063216-1828256292-1001LocalHost (avec LRPC)Non disponibleNon disponible Error: (07/27/2015 09:03:40 PM) (Source: DCOM) (EventID: 10016) (User: AXEL) Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AxelAxelS-1-5-21-879377979-3755063216-1828256292-1001LocalHost (avec LRPC)Non disponibleNon disponible Error: (07/27/2015 09:03:40 PM) (Source: DCOM) (EventID: 10016) (User: AXEL) Description: propres à l’applicationLocalExécution{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}AxelAxelS-1-5-21-879377979-3755063216-1828256292-1001LocalHost (avec LRPC)Non disponibleNon disponible Microsoft Office: ========================= Error: (07/27/2015 02:00:55 PM) (Source: ESENT) (EventID: 455) (User: ) Description: LiveComm4412C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log-1032 (0xfffffbf8) Error: (07/27/2015 02:00:55 PM) (Source: ESENT) (EventID: 489) (User: ) Description: LiveComm4412C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log-1032 (0xfffffbf8)32 (0x00000020)Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. Error: (07/27/2015 02:00:24 PM) (Source: ESENT) (EventID: 455) (User: ) Description: LiveComm4412C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log-1032 (0xfffffbf8) Error: (07/27/2015 02:00:24 PM) (Source: ESENT) (EventID: 489) (User: ) Description: LiveComm4412C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log-1032 (0xfffffbf8)32 (0x00000020)Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. Error: (07/27/2015 01:59:54 PM) (Source: ESENT) (EventID: 455) (User: ) Description: LiveComm4412C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log-1032 (0xfffffbf8) Error: (07/27/2015 01:59:54 PM) (Source: ESENT) (EventID: 489) (User: ) Description: LiveComm4412C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\: C:\Users\Axel\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\LiveComm\d1010ee22565c1da\120712-0049\DBStore\LogFiles\edb.log-1032 (0xfffffbf8)32 (0x00000020)Le processus ne peut pas accéder au fichier car ce fichier est utilisé par un autre processus. Error: (07/26/2015 08:41:45 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: saUpd.exe3.7.2.235558320acntdll.dll6.3.9600.17736550f4336c000037400000000000f0f2012bc01d0c7d2ac2ede09c:\PROGRA~2\mcafee\SITEAD~1\saUpd.exeC:\Windows\SYSTEM32\ntdll.dllf6af5822-33c5-11e5-8271-1cb72c1a6211 Error: (07/26/2015 08:31:21 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: saUpd.exe3.7.2.235558320acntdll.dll6.3.9600.17736550f4336c000037400000000000f0f2028001d0c7d1382de859c:\PROGRA~2\mcafee\SITEAD~1\saUpd.exeC:\Windows\SYSTEM32\ntdll.dll82de6dfd-33c4-11e5-8271-1cb72c1a6211 Error: (07/26/2015 07:27:37 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: AsusTPCenter.exe1.0.0.7754a0f524AsusTPApi.dll1.0.36.054a0f51ac000000500000000000169de89001d0c7c85c53e222C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exeC:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPApi.dll9b4711d8-33bb-11e5-8271-1cb72c1a6211 Error: (07/24/2015 11:31:31 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: AsusTPCenter.exe1.0.0.7754a0f524AsusTPApi.dll1.0.36.054a0f51ac000000500000000000169de215801d0c657f533d787C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exeC:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPApi.dll58ec163f-324b-11e5-8270-1cb72c1a6211 ==================== Memory info =========================== Processor: Intel(R) Core(TM) i5-4200H CPU @ 2.80GHz Percentage of memory in use: 32% Total physical RAM: 8080.91 MB Available physical RAM: 5463.69 MB Total Virtual: 9360.91 MB Available Virtual: 6438.57 MB ==================== Drives ================================ Drive c: (OS) (Fixed) (Total:372.6 GB) (Free:289.51 GB) NTFS ==>[system with boot components (obtained from reading drive)] Drive d: (Data) (Fixed) (Total:542.8 GB) (Free:541.96 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: 98134126) Partition: GPT Partition Type. ==================== End of log ============================